cyberman/bin/writezone.pl

#!/usr/bin/env perl

# Zone writer for cyberman.
# This won't scale well, but it's a basic way to get domains online
# Tested with NSD but should work with your favourite

use strict;
use warnings;
use feature 'say';
use FindBin qw($Bin);
use YAML::Tiny;
use DBI;
use Capture::Tiny ':all';

my $yml = YAML::Tiny->read("$Bin/../config.yml");
my $tld = $yml->[0]->{"tld"};
my $conf = $yml->[0]->{"zonewriter"};

die "Unsupported database!"
	unless $yml->[0]->{"plugins"}->{"Database"}->{"driver"} eq "SQLite";
my $dbfile = "$Bin/../$yml->[0]->{plugins}->{Database}->{dbname}";
my $dbh = DBI->connect("dbi:SQLite:dbname=$dbfile", "", "");

my $sth = $dbh->prepare("SELECT * from cyberman");
$sth->execute;
my $cyberman = $sth->fetchrow_hashref;
exit unless $cyberman->{"intserial"} > $cyberman->{"lastserial"};

my $zone;

# Introduction
$zone .= <<"END";
; File produced by cyberman. Do not edit!
\$TTL 86400
\$ORIGIN $tld.

END

# Write SOA
# Uses mostly hard-coded values for now
$zone .= "@  1D  IN  SOA $conf->{ns} $conf->{responsible} (\n" . time . "\n";
$zone .= <<'END';
1800 ; refresh
15 ; retry
604800 ; expire
1h ; nxdomain ttl
)

END

# Time to get the records
$sth = $dbh->prepare("SELECT * FROM record");
$sth->execute;

while (my $r = $sth->fetchrow_hashref) {
	# Look up domain
	my $dsth = $dbh->prepare("select * from domain where id=?");
	$dsth->bind_param(1, $r->{"domainid"});
	$dsth->execute;
	my $d = $dsth->fetchrow_hashref;

	# domain name
	if ($r->{"name"} eq '@') {
		$zone .= $d->{"name"} . " ";
	} else {
		$zone .= $r->{"name"} . "." . $d->{"name"} . " ";
	}

	# record type
	$zone .= "IN $r->{type} ";

	# value
	$zone .= "$r->{value}\n";
}

if ($conf->{"validate"}) {
	my $checkzone_exit;
	capture {
		open my $checkzone, "| nsd-checkzone $tld -" or die $!;
		print $checkzone $zone;
		close $checkzone;
		$checkzone_exit = $?;
	};
	if ($checkzone_exit != 0) {
		$sth = $dbh->prepare("UPDATE cyberman SET zonecheckstatus=1");
		$sth->execute;
		exit;
	}
}

if ($conf->{"include"}->{"enabled"}) {
	$zone .= "\$INCLUDE $conf->{include}->{file}\n";
}

open my $out, ">", $conf->{"file"} or die $!;
say $out $zone;
close $out;

$sth = $dbh->prepare("UPDATE cyberman SET lastserial=?, zonecheckstatus=0");
$sth->bind_param(1, $cyberman->{"intserial"});
$sth->execute;
Basic zone writing script 2017-08-12 12:26:06 +02:00			`#!/usr/bin/env perl`

			`# Zone writer for cyberman.`
			`# This won't scale well, but it's a basic way to get domains online`
			`# Tested with NSD but should work with your favourite`

			`use strict;`
			`use warnings;`
			`use feature 'say';`
			`use FindBin qw($Bin);`
			`use YAML::Tiny;`
			`use DBI;`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`use Capture::Tiny ':all';`
Basic zone writing script 2017-08-12 12:26:06 +02:00
			`my $yml = YAML::Tiny->read("$Bin/../config.yml");`
			`my $tld = $yml->[0]->{"tld"};`
			`my $conf = $yml->[0]->{"zonewriter"};`

Don't keep updating the SOA every minute, it's not nice 2017-09-10 00:21:04 +02:00			`die "Unsupported database!"`
			`unless $yml->[0]->{"plugins"}->{"Database"}->{"driver"} eq "SQLite";`
			`my $dbfile = "$Bin/../$yml->[0]->{plugins}->{Database}->{dbname}";`
			`my $dbh = DBI->connect("dbi:SQLite:dbname=$dbfile", "", "");`

			`my $sth = $dbh->prepare("SELECT * from cyberman");`
			`$sth->execute;`
			`my $cyberman = $sth->fetchrow_hashref;`
			`exit unless $cyberman->{"intserial"} > $cyberman->{"lastserial"};`

(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`my $zone;`
Basic zone writing script 2017-08-12 12:26:06 +02:00
			`# Introduction`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$zone .= <<"END";`
Basic zone writing script 2017-08-12 12:26:06 +02:00			`; File produced by cyberman. Do not edit!`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`\$TTL 86400`
			`\$ORIGIN $tld.`

Basic zone writing script 2017-08-12 12:26:06 +02:00			`END`

			`# Write SOA`
			`# Uses mostly hard-coded values for now`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$zone .= "@ 1D IN SOA $conf->{ns} $conf->{responsible} (\n" . time . "\n";`
			`$zone .= <<'END';`
Faster refresh times 2017-09-09 19:22:24 +02:00			`1800 ; refresh`
Basic zone writing script 2017-08-12 12:26:06 +02:00			`15 ; retry`
			`604800 ; expire`
Faster refresh times 2017-09-09 19:22:24 +02:00			`1h ; nxdomain ttl`
Basic zone writing script 2017-08-12 12:26:06 +02:00			`)`

(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`END`
Basic zone writing script 2017-08-12 12:26:06 +02:00
			`# Time to get the records`
Don't keep updating the SOA every minute, it's not nice 2017-09-10 00:21:04 +02:00			`$sth = $dbh->prepare("SELECT * FROM record");`
Basic zone writing script 2017-08-12 12:26:06 +02:00			`$sth->execute;`

			`while (my $r = $sth->fetchrow_hashref) {`
Indentation cleanup (switch to tabs) 2017-08-20 00:45:25 +02:00			`# Look up domain`
			`my $dsth = $dbh->prepare("select * from domain where id=?");`
			`$dsth->bind_param(1, $r->{"domainid"});`
			`$dsth->execute;`
			`my $d = $dsth->fetchrow_hashref;`
Basic zone writing script 2017-08-12 12:26:06 +02:00
Indentation cleanup (switch to tabs) 2017-08-20 00:45:25 +02:00			`# domain name`
			`if ($r->{"name"} eq '@') {`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$zone .= $d->{"name"} . " ";`
Indentation cleanup (switch to tabs) 2017-08-20 00:45:25 +02:00			`} else {`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$zone .= $r->{"name"} . "." . $d->{"name"} . " ";`
Indentation cleanup (switch to tabs) 2017-08-20 00:45:25 +02:00			`}`
Basic zone writing script 2017-08-12 12:26:06 +02:00
Indentation cleanup (switch to tabs) 2017-08-20 00:45:25 +02:00			`# record type`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$zone .= "IN $r->{type} ";`
Basic zone writing script 2017-08-12 12:26:06 +02:00
Indentation cleanup (switch to tabs) 2017-08-20 00:45:25 +02:00			`# value`
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$zone .= "$r->{value}\n";`
Basic zone writing script 2017-08-12 12:26:06 +02:00			`}`

(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`if ($conf->{"validate"}) {`
			`my $checkzone_exit;`
			`capture {`
			`open my $checkzone, "\| nsd-checkzone $tld -" or die $!;`
			`print $checkzone $zone;`
			`close $checkzone;`
			`$checkzone_exit = $?;`
			`};`
			`if ($checkzone_exit != 0) {`
			`$sth = $dbh->prepare("UPDATE cyberman SET zonecheckstatus=1");`
			`$sth->execute;`
			`exit;`
			`}`
			`}`

			`if ($conf->{"include"}->{"enabled"}) {`
			`$zone .= "\$INCLUDE $conf->{include}->{file}\n";`
			`}`

			`open my $out, ">", $conf->{"file"} or die $!;`
			`say $out $zone;`
Basic zone writing script 2017-08-12 12:26:06 +02:00			`close $out;`
Don't keep updating the SOA every minute, it's not nice 2017-09-10 00:21:04 +02:00
(Optionally) check zones with nsd before they are written, to ensure safety 2017-09-14 18:15:02 +02:00			`$sth = $dbh->prepare("UPDATE cyberman SET lastserial=?, zonecheckstatus=0");`
Don't keep updating the SOA every minute, it's not nice 2017-09-10 00:21:04 +02:00			`$sth->bind_param(1, $cyberman->{"intserial"});`
			`$sth->execute;`