jorj/martnet-ddns
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
9e090c2a9fcb2bfa563f2173bec6e83c3698af17
martnet-ddns/DDNS.pm
Jorj Bauer 006a7004b7 fix syntax error
2026-01-24 12:24:03 -05:00

301 lines
6.5 KiB
Perl
Raw Blame History

package Martnet::DDNS;
use strict;
use warnings;
use File::Temp qw/tempfile/;
use Memoize;
use JSON::PP qw/decode_json/;
memoize('_gethosts');
our $VERSION = '0.5';
# our $misterdns = '198.251.79.234';
our $misterdns = '5.78.68.64';
our $defaultmaster = '5.78.68.64'; # could be v4 and v6 like '198.251.79.234;2607:f1c0:86e:b66f:6b86:babb:c367:b0dc'
our $keyfile = '/etc/bind/zone-management.key';
sub new {
my $me = shift;
my %opts = @_;
return bless {
'keyfile' => $keyfile,
%opts
}, $me;
}
sub _validateTypeOrDie {
my ($t) = @_;
die "Invalid type"
unless ($t =~ /^_(vhosts|pureslave|custom)$/);
}
sub _fqdn {
my ($dom, $type) = @_;
$type ||= '_vhosts';
_validateTypeOrDie($type);
return $dom . "$type.private.invalid.";
}
sub _validateOrDie {
my ($dom) = @_;
die "No domain provided"
unless $dom;
die "Invalid domain name (must end in a dot)"
unless ($dom =~ /^[a-zA-Z0-9\.\-\_]+\.$/);
}
sub _lookupOrDie {
my ($dom, $type) = @_;
_validateOrDie($dom);
my $fqdn = _fqdn($dom, $type);
my $answer;
my $all = '';
my $fh;
open($fh, "dig +short -t txt \@${misterdns} $fqdn |")
|| die "Can't open dig: $!";
while (<$fh>) {
$all .= $_;
if ($_ =~ /^\"(.+)\"$/) {
$answer = $1;
}
}
if ($answer) {
# We found a record; that's all I care about.
return 1;
}
else {
die "query failed: $all\n";
}
# Unreached
die "Failed to find existing DNS record for $fqdn";
}
sub __docmd {
my ($this, $cmd) = @_;
my ($tmpfh, $filename) = tempfile();
close $tmpfh;
my $fh;
open($fh, "|nsupdate -k $this->{keyfile} > $filename")
|| die "Can't open nsupdate: $!";
print $fh "server localhost\nzone private.invalid.\n$cmd\nshow\nsend\n";
close $fh;
open($fh, $filename) || die "Can't re-open tmpfile $filename: $!";
while (<$fh>) {
print;
}
close $fh;
unlink $filename;
}
sub _txt_from_line {
my ($line) = @_;
# TXT in dig AXFR output may be one or more quoted segments.
# Collect all segments and concatenate.
my @parts;
while ($line =~ /\"((?:\\.|[^\"])*)\"/g) {
push @parts, $1;
}
my $txt = join('', @parts);
# Unescape common presentation escapes (at minimum \" and \\).
$txt =~ s/\\\"/\"/g;
$txt =~ s/\\\\/\\/g;
return $txt;
}
sub _parse_txt_payload {
my ($raw) = @_;
return (undef, undef) unless defined $raw;
my $v = $raw;
$v =~ s/^\s+|\s+$//g;
# Legacy format: plain string (single master or ';' separated list)
my $payload;
if ($v =~ /^[\[{]/) {
my $obj;
eval { $obj = decode_json($v); 1 } or do {
# If JSON decoding fails, treat as legacy string.
$obj = undef;
};
if (defined $obj) {
$payload = $obj if ref($obj) eq 'HASH';
# Normalize masters string from supported JSON shapes.
if (ref($obj) eq 'HASH') {
if (defined $obj->{masters}) {
if (ref($obj->{masters}) eq 'ARRAY') {
my @m = map { defined($_) ? $_ : () } @{$obj->{masters}};
$v = join(';', @m);
} else {
$v = $obj->{masters};
}
} elsif (defined $obj->{master}) {
$v = $obj->{master};
}
} elsif (ref($obj) eq 'ARRAY') {
my @m = map { defined($_) ? $_ : () } @$obj;
$v = join(';', @m);
}
}
}
# Normalize formatting for BIND masters blocks: no spaces, no trailing ';'
$v = '' unless defined $v;
$v =~ s/\s+//g;
$v =~ s/;+$//;
return ($v, $payload);
}
sub _quote_txt_rdata {
my ($s) = @_;
$s = '' unless defined $s;
$s =~ s/\\/\\\\/g;
$s =~ s/\"/\\\"/g;
return "\"$s\"";
}
{
my ($s) = @_;
$s = '' unless defined $s;
$s =~ s/\\/\\\\/g;
$s =~ s/\"/\\\"/g;
return "\"$s\"";
}
sub _gethosts {
my ($this, $type) = @_;
unless (!defined($type)) {
_validateTypeOrDie($type);
}
my $fh;
open($fh, "dig -t AXFR \@${misterdns} private.invalid. |")
|| die "Can't open dig: $!";
my @vh;
while (<$fh>) {
if ($type) {
if (/^(\S+)\.$type\.private\.invalid\.\s+\d+\s+IN\s+TXT\s+/) {
my $z = $1;
my ($m, $payload) = _parse_txt_payload(_txt_from_line($_));
push (@vh, { zone => $z, type => $type, master => $m, payload => $payload });
}
} else {
# Querying everything
if (/^(\S+)\.(\S+)\.private\.invalid\.\s+\d+\s+IN\s+TXT\s+/) {
my ($z, $t) = ($1, $2);
my ($m, $payload) = _parse_txt_payload(_txt_from_line($_));
push (@vh, { zone => $z, type => $t, master => $m, payload => $payload });
}
}
}
return @vh;
}
# Find the type of domin that $dom is. If we don't find it, return
# undef. (The domain $dom ends in a dot; the DNS info we find won't;
# hence the concat of the extra "." after the lc.)
sub type {
my ($this, $dom) = @_;
_validateOrDie($dom);
my @vh = $this->get();
foreach my $i (@vh) {
if (lc($i->{zone})."." eq lc($dom)) {
return $i->{type}
;
}
}
# Didn't find it.
return undef;
}
sub add {
my ($this, $dom, $master, $type) = @_;
_validateOrDie($dom);
my $fqdn = _fqdn($dom, $type);
if (my $existingtype = $this->type($dom)) {
die "Domain $dom already exists [of type $existingtype]";
}
# TXT RDATA must be quoted for JSON (and is safe for legacy strings too).
$this->__docmd("update add $fqdn 60 TXT " . _quote_txt_rdata($master));
$this->cleanup();
}
sub del {
my ($this, $dom, $type) = @_;
_lookupOrDie($dom, $type);
my $fqdn = _fqdn($dom, $type);
$this->__docmd("update delete $fqdn TXT");
$this->cleanup();
}
sub get {
my ($this, $type) = @_;
return $this->_gethosts($type);
}
sub cleanup {
my ($this) = @_;
# Merge the .jnl file in with the domain file
system("rndc sync -clean private.invalid");
# Rebuild and reload the master vhosts files
system("/usr/local/bin/sync-master-vhosts");
}
sub is_dnssec {
my ($this, $dom) = @_;
_validateOrDie($dom);
$dom =~ s/^(.+)\.$/$1/; # remove trailing dot
my @vh = $this->get();
foreach my $i (@vh) {
next unless (lc($i->{zone}) eq lc($dom));
my $p = $i->{payload};
return 1 if (defined $p && ref($p) eq 'HASH' && $p->{dnssec});
return 0;
}
return 0;
}
sub default_master {
my ($this, $type) = @_;
# This could return different masters for different types
return $defaultmaster;
}
1;
Reference in New Issue View Git Blame Copy Permalink