Changeset 337

Timestamp:

05/25/12 17:31:09 (13 years ago)

Author:

Kris Deugau

Message:

/trunk

Checkpoint updating export for reverse DNS. See #26.

• _template4_expand moved up to join its relatives _ZONE and _zone2cidr
• SOA export updated to properly output multiple real SOA records if a logical v4 reverse zone is not octet-aligned
• PTR template and A+PTR template should now be complete
• Zone and record SELECTs updated so that records are retrieved in an order that lets us export the more specific records first so we can exclude those IPs from the 1->many template record expansion

SOA and (A+)PTR template changes should probably be tested
further for odd edge cases

File:

• trunk/DNSDB.pm (modified) (6 diffs)

trunk/DNSDB.pm

@@ -957 +957 @@
   return ('OK', $cidr);
 } # done _zone2cidr()
+
+# Record template %-parameter expansion, IPv4.  Note that IPv6 doesn't
+# really have a sane way to handle this type of expansion at the moment
+# due to the size of the address space.
+# Takes a reference to a template string to be expanded, and an IP to use in the replacement.
+sub _template4_expand {
+  my $tmpl = shift;
+  my $ip = shift;
+
+  my @ipparts = split /\./, $ip;
+  my @iphex;
+  my @ippad;
+  for (@ipparts) {
+    push @iphex, sprintf("%x", $_);
+    push @ippad, sprintf("%u.3", $_);
+  }
+
+  # IP substitutions in template records:
+  #major patterns:
+  #dashed IP, forward and reverse
+  #dotted IP, forward and reverse (even if forward is... dumb)
+  # -> %r for reverse, %i for forward, leading - or . to indicate separator, defaults to -
+  # %r or %-r   => %4d-%3d-%2d-%1d
+  # %.r         => %4d.%3d.%2d.%1d
+  # %i or %-i   => %1d-%2d-%3d-%4d
+  # %.i         => %1d.%2d.%3d.%4d
+  $$tmpl =~ s/\%r/\%4d-\%3d-\%2d-\%1d/g;
+  $$tmpl =~ s/\%([-.])r/\%4d$1\%3d$1\%2d$1\%1d/g;
+  $$tmpl =~ s/\%i/\%1d-\%2d-\%3d-\%4d/g;
+  $$tmpl =~ s/\%([-.])i/\%1d$1\%2d$1\%3d$1\%4d/g;
+
+  #hex-coded IP
+  # %h
+  $$tmpl =~ s/\%h/$iphex[0]$iphex[1]$iphex[2]$iphex[3]/g;
+
+  #IP as decimal-coded 32-bit value
+  # %d
+  my $iptmp = $ipparts[0]*256*256*256 + $ipparts[1]*256*256 + $ipparts[2]*256 + $ipparts[3];
+  $$tmpl =~ s/\%d/$iptmp/g;
+
+  #minor patterns (per-octet)
+  # %[1234][dh0]
+  #octet
+  #hex-coded octet
+  #0-padded octet
+  $$tmpl =~ s/\%([1234])d/$ipparts[$1-1]/g;
+  $$tmpl =~ s/\%([1234])h/$iphex[$1-1]/g;
+  $$tmpl =~ s/\%([1234])h/$ippad[$1-1]/g;
+} # _template4_expand()
 
 
@@ -3996 +4045 @@
   } # while ($domsth)
 
-  my $revsth = $dbh->prepare("SELECT rdns_id,revnet,status FROM revzones WHERE status=1");
+  my $revsth = $dbh->prepare("SELECT rdns_id,revnet,status FROM revzones WHERE status=1 ".
+        "ORDER BY masklen(revnet) DESC");
   $recsth = $dbh->prepare("SELECT host,type,val,distance,weight,port,ttl,record_id ".
-        "FROM records WHERE rdns_id=?");
+        "FROM records WHERE rdns_id=? AND type=6 UNION ".
+        "(SELECT host,type,val,distance,weight,port,ttl,record_id ".
+        "FROM records WHERE rdns_id=? AND not type=6 ".
+        "ORDER BY masklen(CAST(val AS inet)) DESC, CAST(val AS inet))");
   $revsth->execute();
   while (my ($revid,$revzone,$revstat) = $revsth->fetchrow_array) {
-    $recsth->execute($revid);
+    $recsth->execute($revid, $revid);
     while (my ($host,$type,$val,$dist,$weight,$port,$ttl,$recid) = $recsth->fetchrow_array) {
       next if $recflags{$recid};
@@ -4048 +4101 @@
         my ($refresh, $retry, $expire, $min_ttl) = (split /:/, $val)[0,1,2,3];
         if ($revrec eq 'y') {
+##fixme:  have to publish SOA records for each v4 /24 in sub-/16, and each /16 in sub-/8
+# what about v6?
+# -> only need SOA for local chunks offset from reverse delegation boundaries, so v6 is fine
           $zone = NetAddr::IP->new($zone);
+          # handle split-n-multiply SOA for off-octet (8 < mask < 16) or (16 < mask < 24) v4 zones
+          if (!$zone->{isv6} && ($zone->masklen < 24) && ($zone->masklen % 8 != 0)) {
+            foreach my $szone ($zone->split($zone->masklen + (8 - $zone->masklen % 8))) {
+              $szone = _ZONE($szone, 'ZONE.in-addr.arpa', 'r', '.');
+              print $datafile "Z$szone:$primary:$email"."::$refresh:$retry:$expire:$min_ttl:$ttl:$stamp:$loc\n";
+            }
+            return; # skips "default" bits just below
+          }
           $zone = _ZONE($zone, 'ZONE', 'r', '.').($zone->{isv6} ? '.ip6.arpa' : '.in-addr.arpa');
         }
@@ -4153 +4217 @@
 
         $zone = NetAddr::IP->new($zone);
+        $$recflags{$val}++;
         if (!$zone->{isv6} && $zone->masklen > 24) {
           ($val) = ($val =~ /\.(\d+)$/);
@@ -4166 +4231 @@
       } elsif ($type == 65280) { # A+PTR
 
+        $$recflags{$val}++;
         print $datafile "=$host:$val:$ttl:$stamp:$loc\n";
 
       } elsif ($type == 65281) { # AAAA+PTR
 
+#$$recflags{$val}++;
         # treat these as two separate records.  since tinydns doesn't have
         # a native combined type, we have to create them separately anyway.
@@ -4183 +4250 @@
       } elsif ($type == 65282) { # PTR template
 
+##work
         # only useful for v4 with standard DNS software, since this expands all
         # IPs in $zone (or possibly $val?) with autogenerated records
-
-##work
-use Data::Dumper;
-$zone = NetAddr::IP->new($zone);
-if (!$zone->{isv6}) {
-  $val = NetAddr::IP->new($val);
-  if ($zone == $val) {
-    my $iplist = $zone->hostenumref;
-    foreach (@$iplist) {
-      my $rec = $host;
-      _template4_expand(\$rec, $_->addr);
-      print "$_ ptr $rec\n";
-    }
-  } else {
-  }
-}
-
-sub _template4_expand {
-  my $tmpl = shift;
-  my $ip = shift;
-
-  my @ipparts = split /\./, $ip;
-  my @iphex;
-  my @ippad;
-  for (@ipparts) {
-    push @iphex, sprintf("%x", $_);
-    push @ippad, sprintf("%u.3", $_);
-  }
-
-# IP substitutions in template records:
-#major patterns:
-#dashed IP, forward and reverse
-#dotted IP, forward and reverse (even if forward is... dumb)
-# -> %r for reverse, %i for forward, leading - or . to indicate separator, defaults to -
-# %r or %-r     => %4d-%3d-%2d-%1d
-# %.r           => %4d.%3d.%2d.%1d
-# %i or %-i     => %1d-%2d-%3d-%4d
-# %.i           => %1d.%2d.%3d.%4d
-
-  $$tmpl =~ s/\%r/\%4d-\%3d-\%2d-\%1d/g;
-  $$tmpl =~ s/\%([-.])r/\%4d$1\%3d$1\%2d$1\%1d/g;
-  $$tmpl =~ s/\%i/\%1d-\%2d-\%3d-\%4d/g;
-  $$tmpl =~ s/\%([-.])i/\%1d$1\%2d$1\%3d$1\%4d/g;
-
-#hex-coded IP
-# %h
-  $$tmpl =~ s/\%h/$iphex[0]$iphex[1]$iphex[2]$iphex[3]/g;
-
-#IP as decimal-coded 32-bit value
-# %d
-  my $iptmp = $ipparts[0]*256*256*256 + $ipparts[1]*256*256 + $ipparts[2]*256 + $ipparts[3];
-  $$tmpl =~ s/\%d/$iptmp/g;
-
-#minor patterns (per-octet)
-# %[1234][dh0]
-#octet
-#hex-coded octet
-#0-padded octet
-  $$tmpl =~ s/\%([1234])d/$ipparts[$1-1]/g;
-  $$tmpl =~ s/\%([1234])h/$iphex[$1-1]/g;
-  $$tmpl =~ s/\%([1234])h/$ippad[$1-1]/g;
-
-} # _template4_expand()
+        $val = NetAddr::IP->new($val);
+        return if $val->{isv6};
+
+        my $iplist = $val->hostenumref;
+        foreach (@$iplist) {
+          my $ip = $_->addr;
+          # make as if we split the non-octet-aligned block into octet-aligned blocks as with SOA
+          next if $ip =~ /\.(0|255)$/;
+          next if $$recflags{$ip};
+          $$recflags{$ip}++;
+          my $rec = $host;      # start fresh with the template for each IP
+          _template4_expand(\$rec, $ip);
+          print $datafile "^"._ZONE($_, 'ZONE.in-addr.arpa', 'r', '.').":$rec:$ttl:$stamp:$loc\n";
+        }
 
       } elsif ($type == 65283) { # A+PTR template
 
-if (!$zone->{isv6}) {   # Just In Case.  An A+PTR should be impossible to add to a v6 revzone via API.
-}
+        $val = NetAddr::IP->new($val);
+        # Just In Case.  An A+PTR should be impossible to add to a v6 revzone via API.
+        return if $val->{isv6};
+        my $iplist = $val->hostenumref;
+        foreach (@$iplist) {
+          my $ip = $_->addr;
+          # make as if we split the non-octet-aligned block into octet-aligned blocks as with SOA
+          next if $ip =~ /\.(0|255)$/;
+          next if $$recflags{$ip};
+          $$recflags{$ip}++;
+          my $rec = $host;      # start fresh with the template for each IP
+          _template4_expand(\$rec, $ip);
+          print $datafile "=$rec:$ip:$ttl:$stamp:$loc\n";
+        }
 
       } elsif ($type == 65284) { # AAAA+PTR template