| 6 |
use Net::DNS::Nameserver; |
use Net::DNS::Nameserver; |
| 7 |
use Net::DNS::Resolver; |
use Net::DNS::Resolver; |
| 8 |
use Data::Dump qw/dump/; |
use Data::Dump qw/dump/; |
| 9 |
|
use CouchDB; |
| 10 |
|
|
| 11 |
use server; |
use server; |
| 12 |
|
use client; |
| 13 |
our $debug = server::debug; |
our $debug = server::debug; |
| 14 |
|
|
| 15 |
my $res = Net::DNS::Resolver->new( |
my $res = Net::DNS::Resolver->new( |
| 18 |
debug => $debug, |
debug => $debug, |
| 19 |
); |
); |
| 20 |
|
|
| 21 |
our $ptr_cache; |
our ( $ptr_cache, $a_cache ); |
| 22 |
sub name_ip { |
sub name_ip { |
| 23 |
my ( $name, $ip ) = @_; |
my ( $name, $ip ) = @_; |
| 24 |
$ptr_cache->{ join('.', reverse split(/\./, $ip)) } = $name; |
$ptr_cache->{ join('.', reverse split(/\./, $ip)) } = $name; |
| 25 |
|
$a_cache->{$name} = $ip; |
| 26 |
return $ip; |
return $ip; |
| 27 |
} |
} |
| 28 |
|
|
| 29 |
|
name_ip 'server' => $server::ip; |
| 30 |
|
|
| 31 |
|
foreach my $ip ( client::all_ips ) { |
| 32 |
|
if ( my $name = client::conf( $ip => 'hostname' ) ) { |
| 33 |
|
name_ip $name => $ip; |
| 34 |
|
} |
| 35 |
|
} |
| 36 |
|
|
| 37 |
sub reply_handler { |
sub reply_handler { |
| 38 |
my ($qname, $qclass, $qtype, $peerhost,$query,$conn) = @_; |
my ($qname, $qclass, $qtype, $peerhost,$query,$conn) = @_; |
| 39 |
my ($rcode, @ans, @auth, @add); |
my ($rcode, @ans, @auth, @add); |
| 40 |
|
|
|
server->refresh; |
|
| 41 |
$debug = server::debug; |
$debug = server::debug; |
| 42 |
|
|
| 43 |
print "$qname $qclass $qtype $peerhost to ". $conn->{"sockhost"}. "\n"; |
my $audit = { |
| 44 |
|
qname => $qname, |
| 45 |
|
qclass => $qclass, |
| 46 |
|
qtype => $qtype, |
| 47 |
|
peerhost => $peerhost, |
| 48 |
|
sockhost => $conn->{"sockhost"}, |
| 49 |
|
source => 'unknown', |
| 50 |
|
}; |
| 51 |
|
|
| 52 |
$query->print if $debug; |
$query->print if $debug; |
| 53 |
|
|
| 54 |
my $local = $1 if $qname =~ m{^(.+)\.\Q$server::domain_name\E$}; |
my $local = $1 if $qname =~ m{^(.+)\.\Q$server::domain\E$}; |
| 55 |
$local = $qname if $qname !~ m{\.}; |
$local = $qname if $qname !~ m{\.}; |
| 56 |
|
|
| 57 |
my $ttl = 3600; |
my $ttl = 3600; |
| 60 |
warn "local[$local] $qname $qtype"; |
warn "local[$local] $qname $qtype"; |
| 61 |
$rcode = "NOERROR"; |
$rcode = "NOERROR"; |
| 62 |
my $rdata; |
my $rdata; |
| 63 |
if ( $qtype eq "A" && $local eq "server" ) { |
if ( $qtype eq "A" ) { |
| 64 |
$rdata = name_ip( $local, $server::ip ); |
if ( $rdata = $a_cache->{$local} ) { |
| 65 |
|
$audit->{source} = 'local'; |
| 66 |
|
} else { |
| 67 |
|
$rcode = "NXDOMAIN"; |
| 68 |
|
warn "## no $local in ",dump( $a_cache ); |
| 69 |
|
} |
| 70 |
|
} elsif ( $qtype eq 'PTR' ) { |
| 71 |
|
$qname =~ s{\.in-addr\.arpa$}{} || warn "W: can't strip suffix from $qtype $qname"; |
| 72 |
|
if ( my $rdata = $ptr_cache->{$qname} ) { |
| 73 |
|
$rdata .= '.' . $server::domain; |
| 74 |
|
push @ans, Net::DNS::RR->new("$qname $ttl $qclass $qtype $rdata"); |
| 75 |
|
$audit->{source} = 'PTR'; |
| 76 |
|
} else { |
| 77 |
|
warn "## no $qname in ",dump( $ptr_cache ); |
| 78 |
|
$rcode = "NXDOMAIN"; |
| 79 |
|
} |
| 80 |
} else { |
} else { |
| 81 |
$rcode = "NXDOMAIN"; |
$audit->{warn} = "qtype $qtype not supported"; |
| 82 |
} |
} |
| 83 |
|
|
| 84 |
push @ans, Net::DNS::RR->new("$qname $ttl $qclass $qtype $rdata") if $ttl; |
push @ans, Net::DNS::RR->new("$qname $ttl $qclass $qtype $rdata") if $ttl; |
| 85 |
|
|
|
} elsif ( $qtype eq 'PTR' && $qname =~ m{^([0-9\.]*)\.in-addr\.arpa$} ) { |
|
|
if ( my $rdata = $ptr_cache->{$1} ) { |
|
|
$rdata .= '.' . $server::domain_name; |
|
|
push @ans, Net::DNS::RR->new("$qname $ttl $qclass $qtype $rdata"); |
|
|
} else { |
|
|
warn "## ",dump( $ptr_cache ); |
|
|
$rcode = "NXDOMAIN"; |
|
|
} |
|
| 86 |
} elsif ( my $packet = $res->query( $qname, $qtype ) ) { |
} elsif ( my $packet = $res->query( $qname, $qtype ) ) { |
| 87 |
|
|
| 88 |
|
$audit->{source} = 'upstream'; |
| 89 |
$packet->print; |
$packet->print; |
| 90 |
push @ans, $_ foreach $packet->answer; |
push @ans, $_ foreach $packet->answer; |
| 91 |
$rcode = "NOERROR"; |
$rcode = "NOERROR"; |
| 97 |
|
|
| 98 |
warn "rcode: $rcode ",dump( @ans ); |
warn "rcode: $rcode ",dump( @ans ); |
| 99 |
|
|
| 100 |
|
$audit->{rcode} = $rcode; |
| 101 |
|
$audit->{ans} = [ map { |
| 102 |
|
my $data; |
| 103 |
|
foreach my $n ( keys %$_ ) { |
| 104 |
|
$data->{$n} = $_->{$n}; |
| 105 |
|
} |
| 106 |
|
$data; |
| 107 |
|
} @ans ]; |
| 108 |
|
|
| 109 |
|
CouchDB::audit( 'response', $audit ); |
| 110 |
|
|
| 111 |
# mark the answer as authoritive (by setting the 'aa' flag |
# mark the answer as authoritive (by setting the 'aa' flag |
| 112 |
return ($rcode, \@ans, \@auth, \@add, { aa => 1 }); |
return ($rcode, \@ans, \@auth, \@add, { aa => 1 }); |
| 113 |
} |
} |
| 115 |
sub start { |
sub start { |
| 116 |
my $ns = Net::DNS::Nameserver->new( |
my $ns = Net::DNS::Nameserver->new( |
| 117 |
LocalPort => 53, |
LocalPort => 53, |
| 118 |
ReplyHandler => \&reply_handler, |
ReplyHandler => sub { |
| 119 |
|
server->refresh; |
| 120 |
|
reply_handler(@_); |
| 121 |
|
}, |
| 122 |
Verbose => $debug, |
Verbose => $debug, |
| 123 |
) || die "couldn't create nameserver object\n"; |
) || die "couldn't create nameserver object\n"; |
| 124 |
|
|
| 125 |
warn "DNS $server::domain_name"; |
CouchDB::audit('start', { port => 53, domain => $server::domain }); |
| 126 |
|
warn "DNS $server::domain"; |
| 127 |
|
|
| 128 |
$ns->main_loop; |
$ns->main_loop; |
| 129 |
} |
} |
Parent Directory
| 
Revision Log
| 
Patch