FEATURE: Detect simple CNAME loops (#2112)

2025-02-24 23:53:01 +08:00 · 2023-03-01 10:15:41 -05:00 · 2023-03-01 10:15:41 -05:00 · dde7e5daf7
commit dde7e5daf7
parent b54c5eab10
1 changed files with 5 additions and 0 deletions
--- a/pkg/normalize/validate.go
+++ b/pkg/normalize/validate.go
@ -187,6 +187,11 @@ func checkTargets(rec *models.RecordConfig, domain string) (errs []error) {
 		if label == "@" {
 			check(fmt.Errorf("cannot create CNAME record for bare domain"))
 		}
+		labelFQDN := dnsutil.AddOrigin(label, domain)
+		targetFQDN := dnsutil.AddOrigin(target, domain)
+		if labelFQDN == targetFQDN {
+			check(fmt.Errorf("CNAME loop (target points at itself)"))
+		}
 	case "MX":
 		check(checkTarget(target))
 	case "NAPTR":