bcc/symbiosis-dns-mythic
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

initial prototype

Browse source
This commit is contained in:
Ben Charlton 2019-04-14 10:29:57 +01:00
commit 5858499113
5 changed files with 635 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

77
lib/symbiosis/config_files/mythicdns.rb Normal file
View file

@ -0,0 +1,77 @@
require 'symbiosis/config_file'
require 'symbiosis/domain/dns'
require 'tempfile'
module Symbiosis
module ConfigFiles
class Tinydns < Symbiosis::ConfigFile
def ok?
#
# TODO: parse the dns file and make sure it is sane.
#
true
end
###################################################
#
# The following methods are used in the template.
#
#
# Return just the first IPv4.
#
def ip
ip = @domain.ipv4.first
warn "\tUsing one IP (#{ip}) where the domain has more than one configured!" if @domain.ipv4.length > 1 and $VERBOSE
raise ArgumentError, "No IPv4 addresses defined for this domain" if ip.nil?
ip.to_s
end
#
# Returns the domain's TTL
#
def ttl
@domain.ttl.to_s
end
#
# Returns true if the domain has an IPv4 address configured.
#
def ipv4?
!@domain.ipv4.empty?
end
#
# Return just the first IPv6, in the tinydns format, i.e. in full with no colons.
#
def ipv6
ip = @domain.ipv6.first
warn "\tUsing one IP (#{ip}) where the domain has more than one configured!" if @domain.ipv6.length > 1 and $VERBOSE
raise ArgumentError, "No IPv6 addresses defined for this domain" if ip.nil?
ip.to_s
end
#
# Returns true if the domain has an IPv6 address configured.
#
def ipv6?
!@domain.ipv6.empty?
end
class Eruby < ::Erubis::Eruby
include Erubis::EscapeEnhancer
include Erubis::PercentLineEnhancer
end
self.erb = Eruby
end
end
end

119
lib/symbiosis/domain/dns.rb Normal file
View file

@ -0,0 +1,119 @@
require 'symbiosis/domain/dkim'
module Symbiosis
class Domain
#
# This now returns false as the service has been withdrawn.
#
def uses_bytemark_antispam?
false
end
#
# Returns true if a domain has SPF enabled.
#
def spf_enabled?
spf_record.is_a?(String)
end
alias has_spf? spf_enabled?
def spf_record
spf = get_param("spf", self.config_dir)
spf = "v=spf1 +a +mx ?all" if spf === true
if spf.is_a?(String)
# We encode just the first line, and remove any whitespace from the ends.
line = spf.split($/).first.strip
tinydns_encode(line)
else
nil
end
end
def srv_record_for(priority, weight, port, target)
data = ([priority, weight, port].pack("nnn").bytes.to_a +
target.split(".").collect{|x| [x.length, x]} +
[ 0 ]).flatten
data.collect{|x| tinydns_encode(x)}.join
end
#
# Returns the DNS TTL as defined in config/ttl, or 300 if no TTL has been set.
#
def ttl
ttl = get_param("ttl", self.config_dir)
if ttl.is_a?(String) and ttl =~ /([0-9]+)/
begin
ttl = Integer($1)
rescue ArgumentError
ttl = 300
end
else
ttl = 300
end
if ttl < 60
ttl = 60
elsif ttl > 86400
ttl = 86400
end
ttl
end
def dmarc_enabled?
dmarc_record.is_a?(String)
end
alias has_dmarc? dmarc_enabled?
#
# Returns a DMARC record, based on various arguments in config/dmarc
#
def dmarc_record
raw_dmarc = get_param("dmarc", self.config_dir)
return nil unless raw_dmarc
return 'v=DMARC1; p=quarantine; sp=none' if true == raw_dmarc
#
# Make sure we're not matching against things other than strings.
#
return nil unless raw_dmarc.is_a?(String)
if raw_dmarc =~ /^(v=DMARC\d(;\s+\S+=[^;]+)+)/
# Take this as a raw record
return tinydns_encode($1)
end
puts "\tThe DMARC record looks wrong: #{raw_dmarc.inspect}" if $VERBOSE
return nil
end
private
#
# Encodes a given string into a format suitable for consupmtion by TinyDNS
#
def tinydns_encode(s)
s = [s].pack("c") if (s.is_a?(Integer) and 255 > s)
s.chars.collect{|c| c =~ /[\w .=+;?-]/ ? c : c.bytes.collect{|b| "\\%03o" % b}.join}.join
end
#
# Decodes a given string from a format suitable for consupmtion by TinyDNS
#
def tinydns_decode(s)
s.gsub(/(?:\\([0-7]{3,3})|.)/){|r| $1 ? [$1.oct].pack("c*") : r}
end
end
end