middleware/file/file.go

package file

import (
	"errors"
	"io"
	"log"

	"github.com/miekg/coredns/middleware"

	"github.com/miekg/dns"
	"golang.org/x/net/context"
)

type (
	File struct {
		Next  middleware.Handler
		Zones Zones
	}

	Zones struct {
		Z     map[string]*Zone
		Names []string
	}
)

func (f File) ServeDNS(ctx context.Context, w dns.ResponseWriter, r *dns.Msg) (int, error) {
	state := middleware.State{W: w, Req: r}

	if state.QClass() != dns.ClassINET {
		return dns.RcodeServerFailure, errors.New("can only deal with ClassINET")
	}
	qname := state.Name()
	zone := middleware.Zones(f.Zones.Names).Matches(qname)
	if zone == "" {
		if f.Next != nil {
			return f.Next.ServeDNS(ctx, w, r)
		}
		return dns.RcodeServerFailure, errors.New("no next middleware found")
	}
	z, ok := f.Zones.Z[zone]
	if !ok {
		return f.Next.ServeDNS(ctx, w, r)
	}
	if z == nil {
		return dns.RcodeServerFailure, nil
	}
	if r.Opcode == dns.OpcodeNotify {
		if z.isNotify(state) {
			m := new(dns.Msg)
			m.SetReply(r)
			m.Authoritative, m.RecursionAvailable, m.Compress = true, true, true
			state.SizeAndDo(m)
			w.WriteMsg(m)

			log.Printf("[INFO] Notify from %s for %s: checking transfer", state.IP(), zone)
			ok, err := z.shouldTransfer()
			if ok {
				z.TransferIn()
			} else {
				log.Printf("[INFO] Notify from %s for %s: no serial increase seen", state.IP(), zone)
			}
			if err != nil {
				log.Printf("[WARNING] Notify from %s for %s: failed primary check: %s", state.IP(), zone, err)
			}
			return dns.RcodeSuccess, nil
		}
		log.Printf("[INFO] Dropping notify from %s for %s", state.IP(), zone)
		return dns.RcodeSuccess, nil
	}

	if z.Expired != nil && *z.Expired {
		log.Printf("[ERROR] Zone %s is expired", zone)
		return dns.RcodeServerFailure, nil
	}

	if state.QType() == dns.TypeAXFR || state.QType() == dns.TypeIXFR {
		xfr := Xfr{z}
		return xfr.ServeDNS(ctx, w, r)
	}

	answer, ns, extra, result := z.Lookup(qname, state.QType(), state.Do())

	m := new(dns.Msg)
	m.SetReply(r)
	m.Authoritative, m.RecursionAvailable, m.Compress = true, true, true
	m.Answer, m.Ns, m.Extra = answer, ns, extra

	switch result {
	case Success:
	case NoData:
	case NameError:
		m.Rcode = dns.RcodeNameError
	case Delegation:
		m.Authoritative = false
	case ServerFailure:
		return dns.RcodeServerFailure, nil
	}

	state.SizeAndDo(m)
	m, _ = state.Scrub(m)
	w.WriteMsg(m)
	return dns.RcodeSuccess, nil
}

// Parse parses the zone in filename and returns a new Zone or an error.
func Parse(f io.Reader, origin, fileName string) (*Zone, error) {
	tokens := dns.ParseZone(f, dns.Fqdn(origin), fileName)
	z := NewZone(origin, fileName)
	for x := range tokens {
		if x.Error != nil {
			log.Printf("[ERROR] Failed to parse `%s': %v", origin, x.Error)
			return nil, x.Error
		}
		if err := z.Insert(x.RR); err != nil {
			return nil, err
		}
	}
	return z, nil
}
First commit 2016-03-18 20:57:35 +00:00			`package file`

			`import (`
Add middleware/dnssec (#133) This adds an online dnssec middleware. The middleware will sign responses on the fly. Negative responses are signed with NSEC black lies. 2016-04-26 17:57:11 +01:00			`"errors"`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`"io"`
			`"log"`
Use context.Context Rename the old Context to State and use context.Context in the middleware for intra-middleware communication and more. 2016-03-19 07:18:57 +00:00
First commit 2016-03-18 20:57:35 +00:00			`"github.com/miekg/coredns/middleware"`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
First commit 2016-03-18 20:57:35 +00:00			`"github.com/miekg/dns"`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`"golang.org/x/net/context"`
First commit 2016-03-18 20:57:35 +00:00			`)`

			`type (`
			`File struct {`
			`Next middleware.Handler`
			`Zones Zones`
			`}`

			`Zones struct {`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`Z map[string]*Zone`
First commit 2016-03-18 20:57:35 +00:00			`Names []string`
			`}`
			`)`

Use context.Context Rename the old Context to State and use context.Context in the middleware for intra-middleware communication and more. 2016-03-19 07:18:57 +00:00			`func (f File) ServeDNS(ctx context.Context, w dns.ResponseWriter, r *dns.Msg) (int, error) {`
			`state := middleware.State{W: w, Req: r}`
correct EDNS responses (#96) Tests updated as well and all the middleware. And Prometheus renamed to metrics (directive is still prometheus). 2016-04-09 16:17:53 +01:00
Cleanup docs and the chaos middleware Make the CH middleware actually work. Needs a bit of a hack to route the fake version.bind and friends zone to the correct handler. Fiddle with the order in directive.go so that CH queries get logged as well. Secondly add class rewriting to the rewrite middleware handler and also log the class by default. 2016-04-04 15:45:17 +01:00			`if state.QClass() != dns.ClassINET {`
Add middleware/dnssec (#133) This adds an online dnssec middleware. The middleware will sign responses on the fly. Negative responses are signed with NSEC black lies. 2016-04-26 17:57:11 +01:00			`return dns.RcodeServerFailure, errors.New("can only deal with ClassINET")`
Cleanup docs and the chaos middleware Make the CH middleware actually work. Needs a bit of a hack to route the fake version.bind and friends zone to the correct handler. Fiddle with the order in directive.go so that CH queries get logged as well. Secondly add class rewriting to the rewrite middleware handler and also log the class by default. 2016-04-04 15:45:17 +01:00			`}`
Use context.Context Rename the old Context to State and use context.Context in the middleware for intra-middleware communication and more. 2016-03-19 07:18:57 +00:00			`qname := state.Name()`
First commit 2016-03-18 20:57:35 +00:00			`zone := middleware.Zones(f.Zones.Names).Matches(qname)`
			`if zone == "" {`
Add middleware/dnssec (#133) This adds an online dnssec middleware. The middleware will sign responses on the fly. Negative responses are signed with NSEC black lies. 2016-04-26 17:57:11 +01:00			`if f.Next != nil {`
			`return f.Next.ServeDNS(ctx, w, r)`
			`}`
			`return dns.RcodeServerFailure, errors.New("no next middleware found")`
First commit 2016-03-18 20:57:35 +00:00			`}`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`z, ok := f.Zones.Z[zone]`
			`if !ok {`
			`return f.Next.ServeDNS(ctx, w, r)`
			`}`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`if z == nil {`
			`return dns.RcodeServerFailure, nil`
			`}`
Add complete secondary support Respond to notifies and allow a secondary to follow the SOA parameters to update a zone from a primary. Also sprinkle it with logging. Also extend monitoring to include qtype in more metrics. 2016-04-05 10:53:23 +01:00			`if r.Opcode == dns.OpcodeNotify {`
			`if z.isNotify(state) {`
			`m := new(dns.Msg)`
			`m.SetReply(r)`
			`m.Authoritative, m.RecursionAvailable, m.Compress = true, true, true`
correct EDNS responses (#96) Tests updated as well and all the middleware. And Prometheus renamed to metrics (directive is still prometheus). 2016-04-09 16:17:53 +01:00			`state.SizeAndDo(m)`
Add complete secondary support Respond to notifies and allow a secondary to follow the SOA parameters to update a zone from a primary. Also sprinkle it with logging. Also extend monitoring to include qtype in more metrics. 2016-04-05 10:53:23 +01:00			`w.WriteMsg(m)`

Add AXFR test Test shouldTransfer by upping a testserver and sending the SOA query. Remove state from DefaultErrorHandler and just get it from the request. Add more logging to show what is going on. This also adds the infrastructure for future tests. 2016-04-06 22:29:33 +01:00			`log.Printf("[INFO] Notify from %s for %s: checking transfer", state.IP(), zone)`
			`ok, err := z.shouldTransfer()`
			`if ok {`
Add complete secondary support Respond to notifies and allow a secondary to follow the SOA parameters to update a zone from a primary. Also sprinkle it with logging. Also extend monitoring to include qtype in more metrics. 2016-04-05 10:53:23 +01:00			`z.TransferIn()`
Add AXFR test Test shouldTransfer by upping a testserver and sending the SOA query. Remove state from DefaultErrorHandler and just get it from the request. Add more logging to show what is going on. This also adds the infrastructure for future tests. 2016-04-06 22:29:33 +01:00			`} else {`
			`log.Printf("[INFO] Notify from %s for %s: no serial increase seen", state.IP(), zone)`
			`}`
			`if err != nil {`
			`log.Printf("[WARNING] Notify from %s for %s: failed primary check: %s", state.IP(), zone, err)`
Add complete secondary support Respond to notifies and allow a secondary to follow the SOA parameters to update a zone from a primary. Also sprinkle it with logging. Also extend monitoring to include qtype in more metrics. 2016-04-05 10:53:23 +01:00			`}`
			`return dns.RcodeSuccess, nil`
			`}`
			`log.Printf("[INFO] Dropping notify from %s for %s", state.IP(), zone)`
			`return dns.RcodeSuccess, nil`
			`}`

Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`if z.Expired != nil && *z.Expired {`
Add complete secondary support Respond to notifies and allow a secondary to follow the SOA parameters to update a zone from a primary. Also sprinkle it with logging. Also extend monitoring to include qtype in more metrics. 2016-04-05 10:53:23 +01:00			`log.Printf("[ERROR] Zone %s is expired", zone)`
Add secondary support Allow specifying a primary server and retrieve the zone's content. Add tests and an Expired bool to zone struct, to stop server zones that are expired. The zone is retrieved on Startup, no updates of changed content are done. We also don't respond to notifies yet. 2016-04-03 09:02:34 +01:00			`return dns.RcodeServerFailure, nil`
			`}`
First commit 2016-03-18 20:57:35 +00:00
Middleware chaining fixes For prometheus use the plain value, not a pointer and change all usages. Allow AXFR to be requested over udp as well and some other more log printed when commencing an AXFR. 2016-04-05 15:54:06 +01:00			`if state.QType() == dns.TypeAXFR \|\| state.QType() == dns.TypeIXFR {`
Support outgoing zone transfers These can be enabled by adding "transfer out" to the Corefile. Without it no AXFR is allowed. For now only AXFR and no IXFR. No TSIG and no ACLs. 2016-03-28 12:08:05 +01:00			`xfr := Xfr{z}`
			`return xfr.ServeDNS(ctx, w, r)`
			`}`

Fix positive replies 2016-03-29 13:22:17 +00:00			`answer, ns, extra, result := z.Lookup(qname, state.QType(), state.Do())`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
			`m := new(dns.Msg)`
			`m.SetReply(r)`
			`m.Authoritative, m.RecursionAvailable, m.Compress = true, true, true`
middleware/file: Support delegations (#124) Return a delegation when seeing one while traversing the tree in search of an answer. Put the SOA and NS record in the zone.Apex as these are to be handled somewhat special. Lowercase record on insert to make compares easier. This lowercases all RR that have domain names in their rdata as well. 2016-04-16 16:16:52 +01:00			`m.Answer, m.Ns, m.Extra = answer, ns, extra`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00
			`switch result {`
			`case Success:`
middleware/file: Support delegations (#124) Return a delegation when seeing one while traversing the tree in search of an answer. Put the SOA and NS record in the zone.Apex as these are to be handled somewhat special. Lowercase record on insert to make compares easier. This lowercases all RR that have domain names in their rdata as well. 2016-04-16 16:16:52 +01:00			`case NoData:`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`case NameError:`
			`m.Rcode = dns.RcodeNameError`
middleware/file: Support delegations (#124) Return a delegation when seeing one while traversing the tree in search of an answer. Put the SOA and NS record in the zone.Apex as these are to be handled somewhat special. Lowercase record on insert to make compares easier. This lowercases all RR that have domain names in their rdata as well. 2016-04-16 16:16:52 +01:00			`case Delegation:`
			`m.Authoritative = false`
More stuff 2016-03-29 08:17:45 +01:00			`case ServerFailure:`
			`return dns.RcodeServerFailure, nil`
First commit 2016-03-18 20:57:35 +00:00			`}`
correct EDNS responses (#96) Tests updated as well and all the middleware. And Prometheus renamed to metrics (directive is still prometheus). 2016-04-09 16:17:53 +01:00
			`state.SizeAndDo(m)`
Scrub the returned result 2016-03-28 11:29:50 +01:00			`m, _ = state.Scrub(m)`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`w.WriteMsg(m)`
			`return dns.RcodeSuccess, nil`
First commit 2016-03-18 20:57:35 +00:00			`}`

Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`// Parse parses the zone in filename and returns a new Zone or an error.`
			`func Parse(f io.Reader, origin, fileName string) (*Zone, error) {`
			`tokens := dns.ParseZone(f, dns.Fqdn(origin), fileName)`
Reload zone when a write is detected (#122) Zone reloading 2016-04-15 14:26:27 +01:00			`z := NewZone(origin, fileName)`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`for x := range tokens {`
			`if x.Error != nil {`
Drop NSEC3 zone (#120) Error out when parsing and transferring such a zone. If we would serve it we would give out the wrong answers, leading to (probably) validation failures... Fixes #114 2016-04-14 07:33:03 +01:00			log.Printf("[ERROR] Failed to parse `%s': %v", origin, x.Error)
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`return nil, x.Error`
First commit 2016-03-18 20:57:35 +00:00			`}`
Reload zone when a write is detected (#122) Zone reloading 2016-04-15 14:26:27 +01:00			`if err := z.Insert(x.RR); err != nil {`
Drop NSEC3 zone (#120) Error out when parsing and transferring such a zone. If we would serve it we would give out the wrong answers, leading to (probably) validation failures... Fixes #114 2016-04-14 07:33:03 +01:00			`return nil, err`
Get positive dnssec stuff going 2016-03-28 21:18:16 +01:00			`}`
First commit 2016-03-18 20:57:35 +00:00			`}`
Implement a DNS zone Full implementation, DNS (and in the future DNSSEC). Returns answer in a hopefully standards compliant way. Testing with my miek.nl zone are included as well. This should correctly handle nodata, nxdomain and cnames. 2016-03-27 07:37:23 +01:00			`return z, nil`
First commit 2016-03-18 20:57:35 +00:00			`}`