2021-02-22 15:10:52 +00:00
|
|
|
package example
|
2021-02-22 15:11:18 +00:00
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
2021-02-22 16:02:41 +00:00
|
|
|
|
2021-02-22 15:11:18 +00:00
|
|
|
"github.com/miekg/dns"
|
|
|
|
)
|
|
|
|
|
|
|
|
func (e *exampleSolver) handleDNSRequest(w dns.ResponseWriter, req *dns.Msg) {
|
|
|
|
msg := new(dns.Msg)
|
|
|
|
msg.SetReply(req)
|
|
|
|
switch req.Opcode {
|
|
|
|
case dns.OpcodeQuery:
|
|
|
|
for _, q := range msg.Question {
|
2021-02-22 16:02:41 +00:00
|
|
|
if err := e.addDNSAnswer(q, msg, req); err != nil {
|
2021-02-22 15:11:18 +00:00
|
|
|
msg.SetRcode(req, dns.RcodeServerFailure)
|
|
|
|
break
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
w.WriteMsg(msg)
|
|
|
|
}
|
2021-02-22 16:02:41 +00:00
|
|
|
|
|
|
|
func (e *exampleSolver) addDNSAnswer(q dns.Question, msg *dns.Msg, req *dns.Msg) error {
|
|
|
|
switch q.Qtype {
|
|
|
|
// Always return loopback for any A query
|
|
|
|
case dns.TypeA:
|
|
|
|
rr, err := dns.NewRR(fmt.Sprintf("%s 5 IN A 127.0.0.1", q.Name))
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
msg.Answer = append(msg.Answer, rr)
|
|
|
|
return nil
|
|
|
|
|
|
|
|
// TXT records are the only important record for ACME dns-01 challenges
|
|
|
|
case dns.TypeTXT:
|
|
|
|
e.RLock()
|
|
|
|
record, found := e.txtRecords[q.Name]
|
|
|
|
e.RUnlock()
|
|
|
|
if !found {
|
|
|
|
msg.SetRcode(req, dns.RcodeNameError)
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
rr, err := dns.NewRR(fmt.Sprintf("%s 5 IN TXT %s", q.Name, record))
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
msg.Answer = append(msg.Answer, rr)
|
|
|
|
return nil
|
|
|
|
|
|
|
|
// NS and SOA are for authoritative lookups, return obviously invalid data
|
|
|
|
case dns.TypeNS:
|
|
|
|
rr, err := dns.NewRR(fmt.Sprintf("%s 5 IN NS ns.example-acme-webook.invalid.", q.Name))
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
msg.Answer = append(msg.Answer, rr)
|
|
|
|
return nil
|
|
|
|
case dns.TypeSOA:
|
|
|
|
rr, err := dns.NewRR(fmt.Sprintf("%s 5 IN SOA %s 20 5 5 5 5", "ns.example-acme-webook.invalid.", "ns.example-acme-webook.invalid."))
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
msg.Answer = append(msg.Answer, rr)
|
|
|
|
return nil
|
|
|
|
default:
|
|
|
|
return fmt.Errorf("unimplemented record type %v", q.Qtype)
|
|
|
|
}
|
|
|
|
}
|