We use cookies to ensure you get the best experience on our website
Accueil Explorer Aide
S'inscrire Connexion
0ct0pu5
/
desec-stack
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: main
Branches Tags
desec-stack
/
api
/
desecapi
/
dns.py

dns.py 5.0 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144 
  1. import re
    2. 

  2. import struct
    3. 

  3. 

  4. from ipaddress import IPv6Address
    5. 

  5. 

  6. import dns
    7. 

  7. import dns.dnssec
    8. 

  8. import dns.name
    9. 

  9. import dns.rdtypes.txtbase, dns.rdtypes.svcbbase
    10. 

  10. import dns.rdtypes.ANY.CERT, dns.rdtypes.ANY.CNAME, dns.rdtypes.ANY.MX, dns.rdtypes.ANY.NS
    11. 

  11. import dns.rdtypes.IN.AAAA, dns.rdtypes.IN.SRV
    12. 

  12. 

  13. 

  14. def _strip_quotes_decorator(func):
    15. 

  15.     return lambda *args, **kwargs: func(*args, **kwargs)[1:-1]
    16. 

  16. 

  17. 

  18. # Ensure that dnspython agrees with pdns' expectations for SVCB / HTTPS parameters.
    19. 

  19. # WARNING: This is a global side-effect. It can't be done by extending a class, because dnspython hardcodes the use of
    20. 

  20. # their dns.rdtypes.svcbbase.*Param classes in the global dns.rdtypes.svcbbase._class_for_key dictionary. We either have
    21. 

  21. # to globally mess with that dict and insert our custom class, or we just mess with their classes directly.
    22. 

  22. dns.rdtypes.svcbbase.ALPNParam.to_text = _strip_quotes_decorator(
    23. 

  23.     dns.rdtypes.svcbbase.ALPNParam.to_text
    24. 

  24. )
    25. 

  25. dns.rdtypes.svcbbase.IPv4HintParam.to_text = _strip_quotes_decorator(
    26. 

  26.     dns.rdtypes.svcbbase.IPv4HintParam.to_text
    27. 

  27. )
    28. 

  28. dns.rdtypes.svcbbase.IPv6HintParam.to_text = _strip_quotes_decorator(
    29. 

  29.     dns.rdtypes.svcbbase.IPv6HintParam.to_text
    30. 

  30. )
    31. 

  31. dns.rdtypes.svcbbase.MandatoryParam.to_text = _strip_quotes_decorator(
    32. 

  32.     dns.rdtypes.svcbbase.MandatoryParam.to_text
    33. 

  33. )
    34. 

  34. dns.rdtypes.svcbbase.PortParam.to_text = _strip_quotes_decorator(
    35. 

  35.     dns.rdtypes.svcbbase.PortParam.to_text
    36. 

  36. )
    37. 

  37. 

  38. 

  39. @dns.immutable.immutable
    40. 

  40. class CERT(dns.rdtypes.ANY.CERT.CERT):
    41. 

  41.     def to_text(self, origin=None, relativize=True, **kw):
    42. 

  42.         certificate_type = str(
    43. 

  43.             self.certificate_type
    44. 

  44.         )  # upstream implementation calls _ctype_to_text
    45. 

  45.         algorithm = str(
    46. 

  46.             self.algorithm
    47. 

  47.         )  # upstream implementation calls dns.dnssec.algorithm_to_text
    48. 

  48.         return "%s %d %s %s" % (
    49. 

  49.             certificate_type,
    50. 

  50.             self.key_tag,
    51. 

  51.             algorithm,
    52. 

  52.             dns.rdata._base64ify(self.certificate, **kw),
    53. 

  53.         )
    54. 

  54. 

  55. 

  56. @dns.immutable.immutable
    57. 

  57. class AAAA(dns.rdtypes.IN.AAAA.AAAA):
    58. 

  58.     def to_text(self, origin=None, relativize=True, **kw):
    59. 

  59.         address = super().to_text(origin, relativize, **kw)
    60. 

  60.         return IPv6Address(address).compressed
    61. 

  61. 

  62. 

  63. @dns.immutable.immutable
    64. 

  64. class LongQuotedTXT(dns.rdtypes.txtbase.TXTBase):
    65. 

  65.     """
    66. 

  66.     A TXT record like RFC 1035, but
    67. 

  67.     - allows arbitrarily long tokens, and
    68. 

  68.     - all tokens must be quoted.
    69. 

  69.     """
    70. 

  70. 

  71.     def __init__(self, rdclass, rdtype, strings):
    72. 

  72.         # Same as in parent class, but with max_length=None. Note that we are calling __init__ from the grandparent.
    73. 

  73.         super(dns.rdtypes.txtbase.TXTBase, self).__init__(rdclass, rdtype)
    74. 

  74.         self.strings = self._as_tuple(
    75. 

  75.             strings, lambda x: self._as_bytes(x, True, max_length=None)
    76. 

  76.         )
    77. 

  77. 

  78.     @classmethod
    79. 

  79.     def from_text(cls, rdclass, rdtype, tok, origin=None, relativize=True):
    80. 

  80.         strings = []
    81. 

  81.         for token in tok.get_remaining():
    82. 

  82.             token = token.unescape_to_bytes()
    83. 

  83.             # The 'if' below is always true in the current code, but we
    84. 

  84.             # are leaving this check in in case things change some day.
    85. 

  85.             if not token.is_quoted_string():
    86. 

  86.                 raise dns.exception.SyntaxError("Content must be quoted.")
    87. 

  87.             strings.append(token.value)
    88. 

  88.         if len(strings) == 0:
    89. 

  89.             raise dns.exception.UnexpectedEnd
    90. 

  90.         return cls(rdclass, rdtype, strings)
    91. 

  91. 

  92.     def _to_wire(self, file, compress=None, origin=None, canonicalize=False):
    93. 

  93.         for long_s in self.strings:
    94. 

  94.             for s in [long_s[i : i + 255] for i in range(0, max(len(long_s), 1), 255)]:
    95. 

  95.                 l = len(s)
    96. 

  96.                 assert l < 256
    97. 

  97.                 file.write(struct.pack("!B", l))
    98. 

  98.                 file.write(s)
    99. 

  99. 

  100. 

  101. def _NameMixin(name_field, *, allow_root, hostname=True):
    102. 

  102.     pattern = (
    103. 

  103.         # https://github.com/PowerDNS/pdns/blob/4646277d05f293777a3d2423a3b188ccdf42c6bc/pdns/dnsname.cc#L419
    104. 

  104.         re.compile(r"^(([A-Za-z0-9]([A-Za-z0-9-]*[A-Za-z0-9])?)\.)+$")
    105. 

  105.         if hostname
    106. 

  106.         else
    107. 

  107.         # https://github.com/PowerDNS/pdns/blob/4646277d05f293777a3d2423a3b188ccdf42c6bc/pdns/dnsname.cc#L473
    108. 

  108.         # with the exception of [/@ :\\]
    109. 

  109.         re.compile(r"^(([A-Za-z0-9_*-]+)\.)+$")
    110. 

  110.     )
    111. 

  111. 

  112.     class Mixin:
    113. 

  113.         def to_text(self, origin=None, relativize=True, **kw):
    114. 

  114.             name = getattr(self, name_field)
    115. 

  115.             if (
    116. 

  116.                 not (allow_root and name == dns.name.root)
    117. 

  117.                 and pattern.match(str(name)) is None
    118. 

  118.             ):
    119. 

  119.                 raise ValueError(f"invalid {name_field}: {name}")
    120. 

  120.             return super().to_text(origin, relativize, **kw)
    121. 

  121. 

  122.     return Mixin
    123. 

  123. 

  124. 

  125. @dns.immutable.immutable
    126. 

  126. class CNAME(
    127. 

  127.     _NameMixin("target", allow_root=True, hostname=False), dns.rdtypes.ANY.CNAME.CNAME
    128. 

  128. ):
    129. 

  129.     pass
    130. 

  130. 

  131. 

  132. @dns.immutable.immutable
    133. 

  133. class MX(_NameMixin("exchange", allow_root=True), dns.rdtypes.ANY.MX.MX):
    134. 

  134.     pass
    135. 

  135. 

  136. 

  137. @dns.immutable.immutable
    138. 

  138. class NS(_NameMixin("target", allow_root=False), dns.rdtypes.ANY.NS.NS):
    139. 

  139.     pass
    140. 

  140. 

  141. 

  142. @dns.immutable.immutable
    143. 

  143. class SRV(_NameMixin("target", allow_root=True), dns.rdtypes.IN.SRV.SRV):
    144. 

  144.     pass
    145.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5