2023-10-05 11:49:21 -07:00
|
|
|
{ lib, ... }:
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
{ timestamp, domain, zone, ... }:
|
|
|
|
|
2023-10-05 11:49:21 -07:00
|
|
|
with lib;
|
2023-10-04 09:31:17 -07:00
|
|
|
let
|
|
|
|
removeBlankLines = str:
|
2023-10-07 13:29:06 -07:00
|
|
|
concatStringsSep "\n\n" (filter isString (builtins.split ''
|
|
|
|
|
|
|
|
|
|
|
|
+'' str));
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
joinLines = concatStringsSep "\n";
|
|
|
|
|
|
|
|
nSpaces = n: concatStrings (genList (_: " ") n);
|
|
|
|
|
|
|
|
padToLength = strlen: str:
|
|
|
|
let spaces = nSpaces (strlen - (stringLength str));
|
|
|
|
in str + spaces;
|
|
|
|
|
|
|
|
maxInt = foldr (a: b: if (a < b) then b else a) 0;
|
|
|
|
|
2023-10-06 10:37:44 -07:00
|
|
|
recordMatcher = builtins.match "^([^;].*) IN ([A-Z][A-Z0-9]*) (.+)$";
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
isRecord = str: (recordMatcher str) != null;
|
|
|
|
|
|
|
|
makeZoneFormatter = zonedata:
|
|
|
|
let
|
|
|
|
lines = splitString "\n" zonedata;
|
|
|
|
records = filter isRecord lines;
|
2023-10-06 09:41:44 -07:00
|
|
|
splitRecords = map recordMatcher records;
|
2023-10-04 09:31:17 -07:00
|
|
|
indexStrlen = i: record: stringLength (elemAt record i);
|
|
|
|
recordIndexMaxlen = i: maxInt (map (indexStrlen i) splitRecords);
|
|
|
|
in recordFormatter (recordIndexMaxlen 0) (recordIndexMaxlen 1);
|
|
|
|
|
|
|
|
recordFormatter = nameMax: typeMax:
|
|
|
|
let
|
|
|
|
namePadder = padToLength nameMax;
|
|
|
|
typePadder = padToLength typeMax;
|
|
|
|
in recordLine:
|
|
|
|
let recordParts = recordMatcher recordLine;
|
|
|
|
in if (recordParts == null) then
|
|
|
|
recordLine
|
|
|
|
else
|
|
|
|
(let
|
|
|
|
name = elemAt recordParts 0;
|
|
|
|
type = elemAt recordParts 1;
|
|
|
|
data = elemAt recordParts 2;
|
|
|
|
in "${namePadder name} IN ${typePadder type} ${data}");
|
|
|
|
|
|
|
|
formatZone = zonedata:
|
|
|
|
let
|
|
|
|
formatter = makeZoneFormatter zonedata;
|
|
|
|
lines = splitString "\n" zonedata;
|
|
|
|
in concatStringsSep "\n" (map formatter lines);
|
|
|
|
|
2023-10-06 10:35:42 -07:00
|
|
|
isNotNull = o: !isNull o;
|
|
|
|
|
2023-10-04 09:31:17 -07:00
|
|
|
hostToFqdn = host:
|
2023-10-07 10:00:18 -07:00
|
|
|
let hostChars = "[a-zA-Z0-9_-]";
|
2023-10-07 10:03:36 -07:00
|
|
|
in if isNotNull (builtins.match "^${hostChars}+$") then
|
2023-10-07 10:00:18 -07:00
|
|
|
"${host}.${domain}."
|
|
|
|
else if isNotNull (builtins.match "${hostChars}+\\.$" host) then
|
2023-10-04 09:31:17 -07:00
|
|
|
host
|
2023-10-07 10:00:18 -07:00
|
|
|
else if isNotNull
|
|
|
|
(builtins.match "(${hostChars}+\\.)+${hostChars}+$" host) then
|
2023-10-04 09:31:17 -07:00
|
|
|
"${host}."
|
|
|
|
else
|
|
|
|
abort "unrecognized hostname: ${host}";
|
|
|
|
|
|
|
|
makeSrvRecords = protocol: service: records:
|
|
|
|
joinLines (map (record:
|
|
|
|
"_${service}._${protocol} IN SRV ${toString record.priority} ${
|
|
|
|
toString record.weight
|
|
|
|
} ${toString record.port} ${hostToFqdn record.host}") records);
|
|
|
|
|
|
|
|
makeSrvProtocolRecords = protocol: serviceRecords:
|
|
|
|
joinLines (mapAttrsToList (makeSrvRecords protocol) serviceRecords);
|
|
|
|
|
|
|
|
makeMetricRecords = metricType: makeSrvRecords "tcp" metricType;
|
|
|
|
|
|
|
|
makeHostRecords = hostname: hostData:
|
|
|
|
let
|
|
|
|
sshfpRecords =
|
|
|
|
map (sshfp: "${hostname} IN SSHFP ${sshfp}") hostData.sshfp-records;
|
|
|
|
aRecord = optional (hostData.ipv4-address != null)
|
|
|
|
"${hostname} IN A ${hostData.ipv4-address}";
|
|
|
|
aaaaRecord = optional (hostData.ipv6-address != null)
|
|
|
|
"${hostname} IN AAAA ${hostData.ipv6-address}";
|
|
|
|
descriptionRecord = optional (hostData.description != null)
|
|
|
|
''${hostname} IN TXT "${hostData.description}"'';
|
2023-10-06 10:43:00 -07:00
|
|
|
in joinLines (aRecord ++ aaaaRecord ++ sshfpRecords ++ descriptionRecord);
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
cnameRecord = alias: host: "${alias} IN CNAME ${host}";
|
|
|
|
|
2023-10-06 10:30:22 -07:00
|
|
|
dmarcRecord = dmarcEmail:
|
2023-10-04 09:31:17 -07:00
|
|
|
optionalString (dmarcEmail != null) ''
|
2023-10-06 10:31:59 -07:00
|
|
|
_dmarc IN TXT "v=DMARC1;p=quarantine;sp=quarantine;rua=mailto:${dmarcEmail};"'';
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
mxRecords = map (mx: "@ IN MX 10 ${mx}.");
|
|
|
|
|
|
|
|
nsRecords = map (ns-host: "@ IN NS ${ns-host}");
|
|
|
|
|
|
|
|
flatmapAttrsToList = f: attrs:
|
|
|
|
foldr (a: b: a ++ b) [ ] (mapAttrsToList f attrs);
|
|
|
|
|
|
|
|
domainRecords = domain: zone:
|
|
|
|
let
|
2023-10-06 10:16:02 -07:00
|
|
|
defaultHostRecords = optionals (zone.default-host != null)
|
|
|
|
(makeHostRecords "@" zone.default-host);
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
kerberosRecord = optionalString (zone.gssapi-realm != null)
|
|
|
|
''_kerberos IN TXT "${zone.gssapi-realm}"'';
|
|
|
|
|
|
|
|
subdomainRecords = joinLines (mapAttrsToList
|
2023-10-06 12:44:55 -07:00
|
|
|
(subdom: subdomCfg: domainRecords "${subdom}.${domain}" subdomCfg)
|
|
|
|
zone.subdomains);
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
in ''
|
2023-10-06 13:19:23 -07:00
|
|
|
$ORIGIN ${domain}.
|
2023-10-04 09:31:17 -07:00
|
|
|
$TTL ${zone.default-ttl}
|
|
|
|
|
|
|
|
${joinLines defaultHostRecords}
|
|
|
|
|
|
|
|
${joinLines (mxRecords zone.mx)}
|
|
|
|
|
|
|
|
${dmarcRecord zone.dmarc-report-address}
|
|
|
|
|
|
|
|
${kerberosRecord}
|
|
|
|
|
|
|
|
${joinLines (nsRecords zone.nameservers)}
|
|
|
|
|
|
|
|
${joinLines (mapAttrsToList makeSrvProtocolRecords zone.srv-records)}
|
|
|
|
|
|
|
|
${joinLines (mapAttrsToList makeMetricRecords zone.metric-records)}
|
|
|
|
|
|
|
|
$TTL ${zone.host-record-ttl}
|
|
|
|
|
2023-10-06 10:39:28 -07:00
|
|
|
${joinLines (mapAttrsToList makeHostRecords zone.hosts)}
|
2023-10-04 09:31:17 -07:00
|
|
|
|
|
|
|
${joinLines (mapAttrsToList cnameRecord zone.aliases)}
|
|
|
|
|
|
|
|
${joinLines zone.verbatim-dns-records}
|
|
|
|
|
|
|
|
${subdomainRecords}
|
|
|
|
'';
|
|
|
|
|
2023-10-06 09:39:43 -07:00
|
|
|
in removeBlankLines (formatZone ''
|
2023-10-04 09:31:17 -07:00
|
|
|
$ORIGIN ${domain}.
|
|
|
|
$TTL ${zone.default-ttl}
|
|
|
|
|
|
|
|
@ IN SOA ns1.${domain}. hostmaster.${domain}. (
|
|
|
|
${toString timestamp}
|
|
|
|
30m
|
|
|
|
2m
|
|
|
|
3w
|
|
|
|
5m)
|
|
|
|
|
|
|
|
${domainRecords domain zone}
|
|
|
|
'')
|