{ config, lib, pkgs, ... }:
with lib;
{ timestamp, domain, zone, ... }:
let
removeBlankLines = str:
concatStringsSep "\n\n" (filter isString (split ''
+'' str));
joinLines = concatStringsSep "\n";
nSpaces = n: concatStrings (genList (_: " ") n);
padToLength = strlen: str:
let spaces = nSpaces (strlen - (stringLength str));
in str + spaces;
maxInt = foldr (a: b: if (a < b) then b else a) 0;
recordMatcher = match "^([^;].*) IN ([A-Z][A-Z0-9]*) (.+)$";
isRecord = str: (recordMatcher str) != null;
makeZoneFormatter = zonedata:
let
lines = splitString "\n" zonedata;
records = filter isRecord lines;
split-records = map recordMatcher records;
indexStrlen = i: record: stringLength (elemAt record i);
recordIndexMaxlen = i: maxInt (map (indexStrlen i) splitRecords);
in recordFormatter (recordIndexMaxlen 0) (recordIndexMaxlen 1);
recordFormatter = nameMax: typeMax:
let
namePadder = padToLength nameMax;
typePadder = padToLength typeMax;
in recordLine:
let recordParts = recordMatcher recordLine;
in if (recordParts == null) then
recordLine
else
(let
name = elemAt recordParts 0;
type = elemAt recordParts 1;
data = elemAt recordParts 2;
in "${namePadder name} IN ${typePadder type} ${data}");
formatZone = zonedata:
let
formatter = makeZoneFormatter zonedata;
lines = splitString "\n" zonedata;
in concatStringsSep "\n" (map formatter lines);
hostToFqdn = host:
if isNotNull (match ".+.$" host) then
host
else if isNotNull (match ".+..+$" host) then
"${host}."
else if (hasAttr host zone.hosts) then
"${host}.${domain}."
else
abort "unrecognized hostname: ${host}";
makeSrvRecords = protocol: service: records:
joinLines (map (record:
"_${service}._${protocol} IN SRV ${toString record.priority} ${
toString record.weight
} ${toString record.port} ${hostToFqdn record.host}") records);
makeSrvProtocolRecords = protocol: serviceRecords:
joinLines (mapAttrsToList (makeSrvRecords protocol) serviceRecords);
makeMetricRecords = metricType: makeSrvRecords "tcp" metricType;
makeHostRecords = hostname: hostData:
let
sshfpRecords =
map (sshfp: "${hostname} IN SSHFP ${sshfp}") hostData.sshfp-records;
aRecord = optional (hostData.ipv4-address != null)
"${hostname} IN A ${hostData.ipv4-address}";
aaaaRecord = optional (hostData.ipv6-address != null)
"${hostname} IN AAAA ${hostData.ipv6-address}";
descriptionRecord = optional (hostData.description != null)
''${hostname} IN TXT "${hostData.description}"'';
in joinLines (aRecord ++ aaaarecord ++ sshfpRecords ++ descriptionRecord);
cnameRecord = alias: host: "${alias} IN CNAME ${host}";
dmarkRecord = dmarcEmail:
optionalString (dmarcEmail != null) ''
_dmarc IN TXT "v=DMARC1;p=quarantine;sp=quarantine;rua=mailto:${dmarc-email};"'';
mxRecords = map (mx: "@ IN MX 10 ${mx}.");
nsRecords = map (ns-host: "@ IN NS ${ns-host}");
flatmapAttrsToList = f: attrs:
foldr (a: b: a ++ b) [ ] (mapAttrsToList f attrs);
domainRecords = domain: zone:
let
defaultHostRecords = optionals (cfg.default-host != null)
(makeHostRecords "@" cfg.default-host);
kerberosRecord = optionalString (zone.gssapi-realm != null)
''_kerberos IN TXT "${zone.gssapi-realm}"'';
subdomainRecords = joinLines (mapAttrsToList
(subdom: subdomCfg: domainRecords "${subdom}.${domain}" subdomCfg))
zone.subdomains;
in ''
$ORIGIN ${domain};
$TTL ${zone.default-ttl}
${joinLines defaultHostRecords}
${joinLines (mxRecords zone.mx)}
${dmarcRecord zone.dmarc-report-address}
${kerberosRecord}
${joinLines (nsRecords zone.nameservers)}
${joinLines (mapAttrsToList makeSrvProtocolRecords zone.srv-records)}
${joinLines (mapAttrsToList makeMetricRecords zone.metric-records)}
$TTL ${zone.host-record-ttl}
${joinLines (mapAttrsToList hostRecords zone.hosts)}
${joinLines (mapAttrsToList cnameRecord zone.aliases)}
${joinLines zone.verbatim-dns-records}
${subdomainRecords}
'';
in removeBlankLinkes (formatZone ''
$ORIGIN ${domain}.
$TTL ${zone.default-ttl}
@ IN SOA ns1.${domain}. hostmaster.${domain}. (
${toString timestamp}
30m
2m
3w
5m)
${domainRecords domain zone}
'')