mirror of
https://github.com/StackExchange/dnscontrol.git
synced 2025-01-21 15:05:24 +08:00
87ad01d194
* Add GetZoneRecords to DNSProvider interface * dnscontrol now uses ufave/cli/v2 * NEW: get-zones.md * HasRecordTypeName should be a method on models.Records not models.DomainConfig * Implement BIND's GetZoneRecords * new WriteZoneFile implemented * go mod vendor * Update docs to use get-zone instead of convertzone * Add CanGetZone capability and update all providers. * Get all zones for a provider at once (#626) * implement GetZoneRecords for cloudflare * munge cloudflare ttls * Implement GetZoneRecords for cloudflare (#625) Co-authored-by: Craig Peterson <192540+captncraig@users.noreply.github.com>
327 lines
8.4 KiB
Go
327 lines
8.4 KiB
Go
package linode
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"net/http"
|
|
"net/url"
|
|
"regexp"
|
|
"strings"
|
|
|
|
"github.com/miekg/dns/dnsutil"
|
|
"golang.org/x/oauth2"
|
|
|
|
"github.com/StackExchange/dnscontrol/v2/models"
|
|
"github.com/StackExchange/dnscontrol/v2/providers"
|
|
"github.com/StackExchange/dnscontrol/v2/providers/diff"
|
|
)
|
|
|
|
/*
|
|
|
|
Linode API DNS provider:
|
|
|
|
Info required in `creds.json`:
|
|
- token
|
|
|
|
*/
|
|
|
|
var allowedTTLValues = []uint32{
|
|
300, // 5 minutes
|
|
3600, // 1 hour
|
|
7200, // 2 hours
|
|
14400, // 4 hours
|
|
28800, // 8 hours
|
|
57600, // 16 hours
|
|
86400, // 1 day
|
|
172800, // 2 days
|
|
345600, // 4 days
|
|
604800, // 1 week
|
|
1209600, // 2 weeks
|
|
2419200, // 4 weeks
|
|
}
|
|
|
|
var srvRegexp = regexp.MustCompile(`^_(?P<Service>\w+)\.\_(?P<Protocol>\w+)$`)
|
|
|
|
// LinodeApi is the handle for this provider.
|
|
type LinodeApi struct {
|
|
client *http.Client
|
|
baseURL *url.URL
|
|
domainIndex map[string]int
|
|
}
|
|
|
|
var defaultNameServerNames = []string{
|
|
"ns1.linode.com",
|
|
"ns2.linode.com",
|
|
"ns3.linode.com",
|
|
"ns4.linode.com",
|
|
"ns5.linode.com",
|
|
}
|
|
|
|
// NewLinode creates the provider.
|
|
func NewLinode(m map[string]string, metadata json.RawMessage) (providers.DNSServiceProvider, error) {
|
|
if m["token"] == "" {
|
|
return nil, fmt.Errorf("Missing Linode token")
|
|
}
|
|
|
|
ctx := context.Background()
|
|
client := oauth2.NewClient(
|
|
ctx,
|
|
oauth2.StaticTokenSource(&oauth2.Token{AccessToken: m["token"]}),
|
|
)
|
|
|
|
baseURL, err := url.Parse(defaultBaseURL)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("Linode base URL not valid")
|
|
}
|
|
|
|
api := &LinodeApi{client: client, baseURL: baseURL}
|
|
|
|
// Get a domain to validate the token
|
|
if err := api.fetchDomainList(); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return api, nil
|
|
}
|
|
|
|
var features = providers.DocumentationNotes{
|
|
providers.DocDualHost: providers.Cannot(),
|
|
providers.DocOfficiallySupported: providers.Cannot(),
|
|
providers.CanGetZones: providers.Unimplemented(),
|
|
}
|
|
|
|
func init() {
|
|
// SRV support is in this provider, but Linode doesn't seem to support it properly
|
|
providers.RegisterDomainServiceProviderType("LINODE", NewLinode, features)
|
|
}
|
|
|
|
// GetNameservers returns the nameservers for a domain.
|
|
func (api *LinodeApi) GetNameservers(domain string) ([]*models.Nameserver, error) {
|
|
return models.StringsToNameservers(defaultNameServerNames), nil
|
|
}
|
|
|
|
// GetZoneRecords gets the records of a zone and returns them in RecordConfig format.
|
|
func (client *LinodeApi) GetZoneRecords(domain string) (models.Records, error) {
|
|
return nil, fmt.Errorf("not implemented")
|
|
// This enables the get-zones subcommand.
|
|
// Implement this by extracting the code from GetDomainCorrections into
|
|
// a single function. For most providers this should be relatively easy.
|
|
}
|
|
|
|
// GetDomainCorrections returns the corrections for a domain.
|
|
func (api *LinodeApi) GetDomainCorrections(dc *models.DomainConfig) ([]*models.Correction, error) {
|
|
dc, err := dc.Copy()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
dc.Punycode()
|
|
|
|
if api.domainIndex == nil {
|
|
if err := api.fetchDomainList(); err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
domainID, ok := api.domainIndex[dc.Name]
|
|
if !ok {
|
|
return nil, fmt.Errorf("'%s' not a zone in Linode account", dc.Name)
|
|
}
|
|
|
|
records, err := api.getRecords(domainID)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
existingRecords := make([]*models.RecordConfig, len(records), len(records)+len(defaultNameServerNames))
|
|
for i := range records {
|
|
existingRecords[i] = toRc(dc, &records[i])
|
|
}
|
|
|
|
// Linode always has read-only NS servers, but these are not mentioned in the API response
|
|
// https://github.com/linode/manager/blob/edd99dc4e1be5ab8190f243c3dbf8b830716255e/src/constants.js#L184
|
|
for _, name := range defaultNameServerNames {
|
|
rc := &models.RecordConfig{
|
|
Type: "NS",
|
|
Original: &domainRecord{},
|
|
}
|
|
rc.SetLabelFromFQDN(dc.Name, dc.Name)
|
|
rc.SetTarget(name)
|
|
|
|
existingRecords = append(existingRecords, rc)
|
|
}
|
|
|
|
// Normalize
|
|
models.PostProcessRecords(existingRecords)
|
|
|
|
// Linode doesn't allow selecting an arbitrary TTL, only a set of predefined values
|
|
// We need to make sure we don't change it every time if it is as close as it's going to get
|
|
// By experimentation, Linode always rounds up. 300 -> 300, 301 -> 3600.
|
|
// https://github.com/linode/manager/blob/edd99dc4e1be5ab8190f243c3dbf8b830716255e/src/domains/components/SelectDNSSeconds.js#L19
|
|
for _, record := range dc.Records {
|
|
record.TTL = fixTTL(record.TTL)
|
|
}
|
|
|
|
differ := diff.New(dc)
|
|
_, create, del, modify := differ.IncrementalDiff(existingRecords)
|
|
|
|
var corrections []*models.Correction
|
|
|
|
// Deletes first so changing type works etc.
|
|
for _, m := range del {
|
|
id := m.Existing.Original.(*domainRecord).ID
|
|
if id == 0 { // Skip ID 0, these are the default nameservers always present
|
|
continue
|
|
}
|
|
corr := &models.Correction{
|
|
Msg: fmt.Sprintf("%s, Linode ID: %d", m.String(), id),
|
|
F: func() error {
|
|
return api.deleteRecord(domainID, id)
|
|
},
|
|
}
|
|
corrections = append(corrections, corr)
|
|
}
|
|
for _, m := range create {
|
|
req, err := toReq(dc, m.Desired)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
j, err := json.Marshal(req)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
corr := &models.Correction{
|
|
Msg: fmt.Sprintf("%s: %s", m.String(), string(j)),
|
|
F: func() error {
|
|
record, err := api.createRecord(domainID, req)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
// TTL isn't saved when creating a record, so we will need to modify it immediately afterwards
|
|
return api.modifyRecord(domainID, record.ID, req)
|
|
},
|
|
}
|
|
corrections = append(corrections, corr)
|
|
}
|
|
for _, m := range modify {
|
|
id := m.Existing.Original.(*domainRecord).ID
|
|
if id == 0 { // Skip ID 0, these are the default nameservers always present
|
|
continue
|
|
}
|
|
req, err := toReq(dc, m.Desired)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
j, err := json.Marshal(req)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
corr := &models.Correction{
|
|
Msg: fmt.Sprintf("%s, Linode ID: %d: %s", m.String(), id, string(j)),
|
|
F: func() error {
|
|
return api.modifyRecord(domainID, id, req)
|
|
},
|
|
}
|
|
corrections = append(corrections, corr)
|
|
}
|
|
|
|
return corrections, nil
|
|
}
|
|
|
|
func toRc(dc *models.DomainConfig, r *domainRecord) *models.RecordConfig {
|
|
rc := &models.RecordConfig{
|
|
Type: r.Type,
|
|
TTL: r.TTLSec,
|
|
MxPreference: r.Priority,
|
|
SrvPriority: r.Priority,
|
|
SrvWeight: r.Weight,
|
|
SrvPort: uint16(r.Port),
|
|
Original: r,
|
|
}
|
|
rc.SetLabel(r.Name, dc.Name)
|
|
|
|
switch rtype := r.Type; rtype { // #rtype_variations
|
|
case "TXT":
|
|
rc.SetTargetTXT(r.Target)
|
|
case "CNAME", "MX", "NS", "SRV":
|
|
rc.SetTarget(dnsutil.AddOrigin(r.Target+".", dc.Name))
|
|
default:
|
|
rc.SetTarget(r.Target)
|
|
}
|
|
|
|
return rc
|
|
}
|
|
|
|
func toReq(dc *models.DomainConfig, rc *models.RecordConfig) (*recordEditRequest, error) {
|
|
req := &recordEditRequest{
|
|
Type: rc.Type,
|
|
Name: rc.GetLabel(),
|
|
Target: rc.GetTargetField(),
|
|
TTL: int(rc.TTL),
|
|
Priority: 0,
|
|
Port: int(rc.SrvPort),
|
|
Weight: int(rc.SrvWeight),
|
|
}
|
|
|
|
// Linode doesn't use "@", it uses an empty name
|
|
if req.Name == "@" {
|
|
req.Name = ""
|
|
}
|
|
|
|
// Linode uses the same property for MX and SRV priority
|
|
switch rc.Type { // #rtype_variations
|
|
case "A", "AAAA", "NS", "PTR", "TXT", "SOA", "TLSA", "CAA":
|
|
// Nothing special.
|
|
case "MX":
|
|
req.Priority = int(rc.MxPreference)
|
|
req.Target = fixTarget(req.Target, dc.Name)
|
|
case "SRV":
|
|
req.Priority = int(rc.SrvPriority)
|
|
|
|
// From softlayer provider
|
|
// This is to support SRV, it doesn't work yet for Linode
|
|
result := srvRegexp.FindStringSubmatch(req.Name)
|
|
|
|
if len(result) != 3 {
|
|
return nil, fmt.Errorf("SRV Record must match format \"_service._protocol\" not %s", req.Name)
|
|
}
|
|
|
|
var serviceName, protocol string = result[1], strings.ToLower(result[2])
|
|
|
|
req.Protocol = protocol
|
|
req.Service = serviceName
|
|
req.Name = ""
|
|
case "CNAME":
|
|
req.Target = fixTarget(req.Target, dc.Name)
|
|
default:
|
|
msg := fmt.Sprintf("linode.toReq rtype %v unimplemented", rc.Type)
|
|
panic(msg)
|
|
// We panic so that we quickly find any switch statements
|
|
// that have not been updated for a new RR type.
|
|
}
|
|
|
|
return req, nil
|
|
}
|
|
|
|
func fixTarget(target, domain string) string {
|
|
// Linode always wants a fully qualified target name
|
|
if target[len(target)-1] == '.' {
|
|
return target[:len(target)-1]
|
|
}
|
|
return fmt.Sprintf("%s.%s", target, domain)
|
|
}
|
|
|
|
func fixTTL(ttl uint32) uint32 {
|
|
// if the TTL is larger than the largest allowed value, return the largest allowed value
|
|
if ttl > allowedTTLValues[len(allowedTTLValues)-1] {
|
|
return allowedTTLValues[len(allowedTTLValues)-1]
|
|
}
|
|
|
|
for _, v := range allowedTTLValues {
|
|
if v >= ttl {
|
|
return v
|
|
}
|
|
}
|
|
|
|
return allowedTTLValues[0]
|
|
}
|