Changeset 891 for trunk/DNSDB/ExportBIND.pm

Timestamp:

06/25/25 17:27:31 (6 days ago)

Author:

Kris Deugau

Message:

/trunk

Fill in most bits of record "expiry"/"valid-after" for BIND-style zone
export, including a config option for the small TTL records will be set
to when actually preparing to "expire"

File:

• trunk/DNSDB/ExportBIND.pm (modified) (1 diff)

trunk/DNSDB/ExportBIND.pm

@@ -462 +462 @@
   $loc = '' if !$loc;
 
+  ## Records that are valid only before or after a set time
+  # Note that BIND-style zone files fundamentally don't support this directly
+  # unlike tinydns, as it's not a native feature/function.  Dropping TTLs to
+  # 15s or so is the best we can do for expiry.  "Valid-after" is only as good
+  # as the export cron job timing.
+  if ($stampactive) {
+    my $now = time();
+    if ($expires) {
+      # record expires at $stamp;  decide if we need to keep the TTL on file
+      # or set it to 15 so the record falls out of caches quickly sometime
+      # around the nominal expiry time.
+
+      # For weirdos who set huge TTLs, cap the TTL at one day.  30+ years ago
+      # long TTLs made sense when even DNS had a measurable cost in small
+      # networks;  today DNS is below the noise floor in all but the largest
+      # networks and systems.
+      my $ahead = (86400 < $ttl*2 ? 86400 : $ttl*2);
+      if (($now + $ahead) < $stamp) {
+        # more than 2x TTL OR more than one day (whichever is less) from expiry time;  publish normal record
+      } elsif ($now > $stamp) {
+        # record has expired;  return early as we don't need to publish anything
+        return;
+      } else {
+        # less than 2x TTL from expiry time, set a short TTL
+        $ttl = $dnsdb->{bind_export_autoexpire_ttl};
+      }
+    } else {
+      # record is "active after";  return unless it's now after the nominal validity timestamp.
+      return unless $now >= $stamp;
+    }
+  } # if $stampactive
+
   ## And now to the records!