coredns/plugin/rewrite/reverter.go

package rewrite

import (
	"regexp"
	"strconv"
	"strings"

	"github.com/miekg/dns"
)

// ResponseRule contains a rule to rewrite a response with.
type ResponseRule struct {
	Active      bool
	Type        string
	Pattern     *regexp.Regexp
	Replacement string
	TTL         uint32
}

// ResponseReverter reverses the operations done on the question section of a packet.
// This is need because the client will otherwise disregards the response, i.e.
// dig will complain with ';; Question section mismatch: got example.org/HINFO/IN'
type ResponseReverter struct {
	dns.ResponseWriter
	originalQuestion dns.Question
	ResponseRewrite  bool
	ResponseRules    []ResponseRule
}

// NewResponseReverter returns a pointer to a new ResponseReverter.
func NewResponseReverter(w dns.ResponseWriter, r *dns.Msg) *ResponseReverter {
	return &ResponseReverter{
		ResponseWriter:   w,
		originalQuestion: r.Question[0],
	}
}

// WriteMsg records the status code and calls the underlying ResponseWriter's WriteMsg method.
func (r *ResponseReverter) WriteMsg(res1 *dns.Msg) error {
	// Deep copy 'res' as to not (e.g). rewrite a message that's also stored in the cache.
	res := res1.Copy()

	res.Question[0] = r.originalQuestion
	if r.ResponseRewrite {
		for _, rr := range res.Ns {
			rewriteResourceRecord(res, rr, r)
		}

		for _, rr := range res.Answer {
			rewriteResourceRecord(res, rr, r)
		}

		for _, rr := range res.Extra {
			rewriteResourceRecord(res, rr, r)
		}

	}
	return r.ResponseWriter.WriteMsg(res)
}

func rewriteResourceRecord(res *dns.Msg, rr dns.RR, r *ResponseReverter) {
	var (
		isNameRewritten   bool
		isTTLRewritten    bool
		isValueRewritten  bool
		name              = rr.Header().Name
		ttl               = rr.Header().Ttl
		value             string
	)

	for _, rule := range r.ResponseRules {
		if rule.Type == "" {
			rule.Type = "name"
		}
		switch rule.Type {
		case "name":
			rewriteString(rule, &name, &isNameRewritten)
		case "value":
			value = getRecordValueForRewrite(rr)
			if value != "" {
				rewriteString(rule, &value, &isValueRewritten)
			}
		case "ttl":
			ttl = rule.TTL
			isTTLRewritten = true
		}
	}

	if isNameRewritten {
		rr.Header().Name = name
	}
	if isTTLRewritten {
		rr.Header().Ttl = ttl
	}
	if isValueRewritten {
		setRewrittenRecordValue(rr, value)
	}
}

func getRecordValueForRewrite(rr dns.RR) (name string) {
	switch rr.Header().Rrtype {
	case dns.TypeSRV:
		return rr.(*dns.SRV).Target
	case dns.TypeMX:
		return rr.(*dns.MX).Mx
	case dns.TypeCNAME:
		return rr.(*dns.CNAME).Target
	case dns.TypeNS:
		return rr.(*dns.NS).Ns
	case dns.TypeDNAME:
		return rr.(*dns.DNAME).Target
	case dns.TypeNAPTR:
		return rr.(*dns.NAPTR).Replacement
	case dns.TypeSOA:
		return rr.(*dns.SOA).Ns
	default:
		return ""
	}
}

func setRewrittenRecordValue(rr dns.RR, value string) {
	switch rr.Header().Rrtype {
	case dns.TypeSRV:
		rr.(*dns.SRV).Target = value
	case dns.TypeMX:
		rr.(*dns.MX).Mx = value
	case dns.TypeCNAME:
		rr.(*dns.CNAME).Target = value
	case dns.TypeNS:
		rr.(*dns.NS).Ns = value
	case dns.TypeDNAME:
		rr.(*dns.DNAME).Target = value
	case dns.TypeNAPTR:
		rr.(*dns.NAPTR).Replacement = value
	case dns.TypeSOA:
		rr.(*dns.SOA).Ns = value
	}
}

func rewriteString(rule ResponseRule, str *string, isStringRewritten *bool) {
	regexGroups := rule.Pattern.FindStringSubmatch(*str)
	if len(regexGroups) == 0 {
		return
	}
	s := rule.Replacement
	for groupIndex, groupValue := range regexGroups {
		groupIndexStr := "{" + strconv.Itoa(groupIndex) + "}"
		s = strings.Replace(s, groupIndexStr, groupValue, -1)
	}

	*isStringRewritten = true
	*str = s
}

// Write is a wrapper that records the size of the message that gets written.
func (r *ResponseReverter) Write(buf []byte) (int, error) {
	n, err := r.ResponseWriter.Write(buf)
	return n, err
}
First commit 2016-03-18 20:57:35 +00:00			`package rewrite`

feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`import (`
			`"regexp"`
			`"strconv"`
			`"strings"`
Run gofmt -s and golint on the codebase (#2918) * Run gofmt -s and golint on the codebase Run golint and fix everythign it flagged (except the context arg ordering), mostly edits in the rewrite plugin. Signed-off-by: Miek Gieben <miek@miek.nl> * ... and ofcourse the test as well Signed-off-by: Miek Gieben <miek@miek.nl> 2019-06-25 08:00:33 +01:00
			`"github.com/miekg/dns"`
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`)`

			`// ResponseRule contains a rule to rewrite a response with.`
			`type ResponseRule struct {`
			`Active bool`
plugin/rewrite: add handling of TTL field rewrites (#2048) Resolves: #1981 Signed-off-by: Paul Greenberg <greenpau@outlook.com> 2018-08-29 10:41:03 -04:00			`Type string`
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`Pattern *regexp.Regexp`
			`Replacement string`
Run gofmt -s and golint on the codebase (#2918) * Run gofmt -s and golint on the codebase Run golint and fix everythign it flagged (except the context arg ordering), mostly edits in the rewrite plugin. Signed-off-by: Miek Gieben <miek@miek.nl> * ... and ofcourse the test as well Signed-off-by: Miek Gieben <miek@miek.nl> 2019-06-25 08:00:33 +01:00			`TTL uint32`
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`}`
First commit 2016-03-18 20:57:35 +00:00
Golint2 (#280) * Fix linter errors * More linting fixes * More docs and making members private that dont need to be public * Fix linter errors * More linting fixes * More docs and making members private that dont need to be public * More lint fixes This leaves: ~~~ middleware/kubernetes/nametemplate/nametemplate.go:64:6: exported type NameTemplate should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:71:1: exported method NameTemplate.SetTemplate should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:108:1: exported method NameTemplate.GetZoneFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:116:1: exported method NameTemplate.GetNamespaceFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:120:1: exported method NameTemplate.GetServiceFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:124:1: exported method NameTemplate.GetTypeFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:135:1: exported method NameTemplate.GetSymbolFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:167:1: exported method NameTemplate.IsValid should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:182:6: exported type NameValues should have comment or be unexported middleware/kubernetes/util/util.go:1:1: package comment should be of the form "Package util ..." middleware/kubernetes/util/util.go:27:2: exported const WildcardStar should have comment (or a comment on this block) or be unexported middleware/proxy/lookup.go:66:1: exported method Proxy.Forward should have comment or be unexported middleware/proxy/proxy.go:24:6: exported type Client should have comment or be unexported middleware/proxy/proxy.go:107:1: exported function Clients should have comment or be unexported middleware/proxy/reverseproxy.go:10:6: exported type ReverseProxy should have comment or be unexported middleware/proxy/reverseproxy.go:16:1: exported method ReverseProxy.ServeDNS should have comment or be unexported middleware/proxy/upstream.go:42:6: exported type Options should have comment or be unexported ~~~ I plan on reworking the proxy anyway, so I'll leave that be. 2016-09-23 09:14:12 +01:00			`// ResponseReverter reverses the operations done on the question section of a packet.`
First commit 2016-03-18 20:57:35 +00:00			`// This is need because the client will otherwise disregards the response, i.e.`
plugin/rewrite: prevent illegal names (#1972) Log and returns an error when the name rewrite creates a name that is illegal. Add test in name_test.go to see if an error is returned. Possible followup could be the only check this if a name-rewrite is done. Fixes: #1638 Signed-off-by: Miek Gieben <miek@miek.nl> 2018-07-13 14:32:07 +01:00			`// dig will complain with ';; Question section mismatch: got example.org/HINFO/IN'`
First commit 2016-03-18 20:57:35 +00:00			`type ResponseReverter struct {`
			`dns.ResponseWriter`
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`originalQuestion dns.Question`
			`ResponseRewrite bool`
			`ResponseRules []ResponseRule`
First commit 2016-03-18 20:57:35 +00:00			`}`

Golint2 (#280) * Fix linter errors * More linting fixes * More docs and making members private that dont need to be public * Fix linter errors * More linting fixes * More docs and making members private that dont need to be public * More lint fixes This leaves: ~~~ middleware/kubernetes/nametemplate/nametemplate.go:64:6: exported type NameTemplate should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:71:1: exported method NameTemplate.SetTemplate should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:108:1: exported method NameTemplate.GetZoneFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:116:1: exported method NameTemplate.GetNamespaceFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:120:1: exported method NameTemplate.GetServiceFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:124:1: exported method NameTemplate.GetTypeFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:135:1: exported method NameTemplate.GetSymbolFromSegmentArray should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:167:1: exported method NameTemplate.IsValid should have comment or be unexported middleware/kubernetes/nametemplate/nametemplate.go:182:6: exported type NameValues should have comment or be unexported middleware/kubernetes/util/util.go:1:1: package comment should be of the form "Package util ..." middleware/kubernetes/util/util.go:27:2: exported const WildcardStar should have comment (or a comment on this block) or be unexported middleware/proxy/lookup.go:66:1: exported method Proxy.Forward should have comment or be unexported middleware/proxy/proxy.go:24:6: exported type Client should have comment or be unexported middleware/proxy/proxy.go:107:1: exported function Clients should have comment or be unexported middleware/proxy/reverseproxy.go:10:6: exported type ReverseProxy should have comment or be unexported middleware/proxy/reverseproxy.go:16:1: exported method ReverseProxy.ServeDNS should have comment or be unexported middleware/proxy/upstream.go:42:6: exported type Options should have comment or be unexported ~~~ I plan on reworking the proxy anyway, so I'll leave that be. 2016-09-23 09:14:12 +01:00			`// NewResponseReverter returns a pointer to a new ResponseReverter.`
First commit 2016-03-18 20:57:35 +00:00			`func NewResponseReverter(w dns.ResponseWriter, r dns.Msg) ResponseReverter {`
			`return &ResponseReverter{`
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`ResponseWriter: w,`
			`originalQuestion: r.Question[0],`
First commit 2016-03-18 20:57:35 +00:00			`}`
			`}`

plugin/rewrite: use request.Request and other cleanups (#1920) This was done anyway, but only deep in the functions, just do this everywhere; allows for shorter code and request.Request allows for caching as well. Cleanups, make it more Go like. * remove unneeded switches * remove testdir (why was this there??) * simplify the logic * remove unneeded variables * put short functions on a single line * fix documentation. * spin off wire funcs in wire.go, make them functions. Signed-off-by: Miek Gieben <miek@miek.nl> 2018-07-02 15:39:50 +01:00			`// WriteMsg records the status code and calls the underlying ResponseWriter's WriteMsg method.`
plugin/rewrite: copy msg before rewritting (#4443) Copy the msg to prevent messing with the (via the pointer) original created message that may be stored in the cache or anything other data store. Signed-off-by: Miek Gieben <miek@miek.nl> 2021-02-01 15:52:50 +01:00			`func (r ResponseReverter) WriteMsg(res1 dns.Msg) error {`
			`// Deep copy 'res' as to not (e.g). rewrite a message that's also stored in the cache.`
			`res := res1.Copy()`

feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`res.Question[0] = r.originalQuestion`
			`if r.ResponseRewrite {`
Rewrite SRV targets and additional names in response (#4287) * Rewrite plugin - rewrite SRV targets and names in response answer and additional records Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added README content to describe new behaviour Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added more record types to rewrite handling based on PR/Issue feedback Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated README.md for plugin Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated unit tests. Small refactor of getTarget... function. Signed-off-by: Nic Colledge <nic@njcolledge.net> * Refactor to add response value rewrite as answer value option Signed-off-by: Nic Colledge <nic@njcolledge.net> * Removed TODO comment, added test for NAPTR record. Signed-off-by: Nic Colledge <nic@njcolledge.net> 2021-02-23 09:12:40 +00:00			`for _, rr := range res.Ns {`
			`rewriteResourceRecord(res, rr, r)`
			`}`

feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`for _, rr := range res.Answer {`
Rewrite SRV targets and additional names in response (#4287) * Rewrite plugin - rewrite SRV targets and names in response answer and additional records Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added README content to describe new behaviour Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added more record types to rewrite handling based on PR/Issue feedback Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated README.md for plugin Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated unit tests. Small refactor of getTarget... function. Signed-off-by: Nic Colledge <nic@njcolledge.net> * Refactor to add response value rewrite as answer value option Signed-off-by: Nic Colledge <nic@njcolledge.net> * Removed TODO comment, added test for NAPTR record. Signed-off-by: Nic Colledge <nic@njcolledge.net> 2021-02-23 09:12:40 +00:00			`rewriteResourceRecord(res, rr, r)`
			`}`

			`for _, rr := range res.Extra {`
			`rewriteResourceRecord(res, rr, r)`
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`}`
Rewrite SRV targets and additional names in response (#4287) * Rewrite plugin - rewrite SRV targets and names in response answer and additional records Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added README content to describe new behaviour Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added more record types to rewrite handling based on PR/Issue feedback Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated README.md for plugin Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated unit tests. Small refactor of getTarget... function. Signed-off-by: Nic Colledge <nic@njcolledge.net> * Refactor to add response value rewrite as answer value option Signed-off-by: Nic Colledge <nic@njcolledge.net> * Removed TODO comment, added test for NAPTR record. Signed-off-by: Nic Colledge <nic@njcolledge.net> 2021-02-23 09:12:40 +00:00
feature: plugin/rewrite: rewrite ANSWER SECTION (#1318) Resolves: #1313 2018-01-18 10:41:14 -05:00			`}`
First commit 2016-03-18 20:57:35 +00:00			`return r.ResponseWriter.WriteMsg(res)`
			`}`

Rewrite SRV targets and additional names in response (#4287) * Rewrite plugin - rewrite SRV targets and names in response answer and additional records Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added README content to describe new behaviour Signed-off-by: Nic Colledge <nic@njcolledge.net> * Added more record types to rewrite handling based on PR/Issue feedback Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated README.md for plugin Signed-off-by: Nic Colledge <nic@njcolledge.net> * Updated unit tests. Small refactor of getTarget... function. Signed-off-by: Nic Colledge <nic@njcolledge.net> * Refactor to add response value rewrite as answer value option Signed-off-by: Nic Colledge <nic@njcolledge.net> * Removed TODO comment, added test for NAPTR record. Signed-off-by: Nic Colledge <nic@njcolledge.net> 2021-02-23 09:12:40 +00:00			`func rewriteResourceRecord(res dns.Msg, rr dns.RR, r ResponseReverter) {`
			`var (`
			`isNameRewritten bool`
			`isTTLRewritten bool`
			`isValueRewritten bool`
			`name = rr.Header().Name`
			`ttl = rr.Header().Ttl`
			`value string`
			`)`

			`for _, rule := range r.ResponseRules {`
			`if rule.Type == "" {`
			`rule.Type = "name"`
			`}`
			`switch rule.Type {`
			`case "name":`
			`rewriteString(rule, &name, &isNameRewritten)`
			`case "value":`
			`value = getRecordValueForRewrite(rr)`
			`if value != "" {`
			`rewriteString(rule, &value, &isValueRewritten)`
			`}`
			`case "ttl":`
			`ttl = rule.TTL`
			`isTTLRewritten = true`
			`}`
			`}`

			`if isNameRewritten {`
			`rr.Header().Name = name`
			`}`
			`if isTTLRewritten {`
			`rr.Header().Ttl = ttl`
			`}`
			`if isValueRewritten {`
			`setRewrittenRecordValue(rr, value)`
			`}`
			`}`

			`func getRecordValueForRewrite(rr dns.RR) (name string) {`
			`switch rr.Header().Rrtype {`
			`case dns.TypeSRV:`
			`return rr.(*dns.SRV).Target`
			`case dns.TypeMX:`
			`return rr.(*dns.MX).Mx`
			`case dns.TypeCNAME:`
			`return rr.(*dns.CNAME).Target`
			`case dns.TypeNS:`
			`return rr.(*dns.NS).Ns`
			`case dns.TypeDNAME:`
			`return rr.(*dns.DNAME).Target`
			`case dns.TypeNAPTR:`
			`return rr.(*dns.NAPTR).Replacement`
			`case dns.TypeSOA:`
			`return rr.(*dns.SOA).Ns`
			`default:`
			`return ""`
			`}`
			`}`

			`func setRewrittenRecordValue(rr dns.RR, value string) {`
			`switch rr.Header().Rrtype {`
			`case dns.TypeSRV:`
			`rr.(*dns.SRV).Target = value`
			`case dns.TypeMX:`
			`rr.(*dns.MX).Mx = value`
			`case dns.TypeCNAME:`
			`rr.(*dns.CNAME).Target = value`
			`case dns.TypeNS:`
			`rr.(*dns.NS).Ns = value`
			`case dns.TypeDNAME:`
			`rr.(*dns.DNAME).Target = value`
			`case dns.TypeNAPTR:`
			`rr.(*dns.NAPTR).Replacement = value`
			`case dns.TypeSOA:`
			`rr.(*dns.SOA).Ns = value`
			`}`
			`}`

			`func rewriteString(rule ResponseRule, str string, isStringRewritten bool) {`
			`regexGroups := rule.Pattern.FindStringSubmatch(*str)`
			`if len(regexGroups) == 0 {`
			`return`
			`}`
			`s := rule.Replacement`
			`for groupIndex, groupValue := range regexGroups {`
			`groupIndexStr := "{" + strconv.Itoa(groupIndex) + "}"`
			`s = strings.Replace(s, groupIndexStr, groupValue, -1)`
			`}`

			`*isStringRewritten = true`
			`*str = s`
			`}`

First commit 2016-03-18 20:57:35 +00:00			`// Write is a wrapper that records the size of the message that gets written.`
			`func (r *ResponseReverter) Write(buf []byte) (int, error) {`
			`n, err := r.ResponseWriter.Write(buf)`
			`return n, err`
			`}`