]>
git.ipfire.org Git - thirdparty/pdns.git/blob - pdns/lua-record.cc
f3f6bc1776042b232127bf3b0e2bf2efd3fb8e2f
2 #include "ext/luawrapper/include/LuaContext.hpp"
3 #include "lua-auth4.hh"
8 #include "ueberbackend.hh"
9 #include <boost/format.hpp>
10 #include "dnsrecords.hh"
11 #include "dns_random.hh"
13 #include "../modules/geoipbackend/geoipinterface.hh" // only for the enum
16 block AXFR unless TSIG, or override
20 check the wildcard 'no cache' stuff, we may get it wrong
22 ponder ECS scopemask setting
24 ponder netmask tree from file for huge number of netmasks
26 unify ifupurl/ifupport
27 add attribute for certificate check
28 add list of current monitors
31 pool of UeberBackends?
36 extern int g_luaRecordExecLimit
;
38 using iplist_t
= vector
<pair
<int, string
> >;
39 using wiplist_t
= std::unordered_map
<int, string
>;
40 using ipunitlist_t
= vector
<pair
<int, iplist_t
> >;
41 using opts_t
= std::unordered_map
<string
,string
>;
51 bool operator<(const CheckDesc
& rhs
) const
53 std::map
<string
,string
> oopts
, rhsoopts
;
54 for(const auto& m
: opts
)
55 oopts
[m
.first
]=m
.second
;
56 for(const auto& m
: rhs
.opts
)
57 rhsoopts
[m
.first
]=m
.second
;
59 return std::make_tuple(rem
, url
, oopts
) <
60 std::make_tuple(rhs
.rem
, rhs
.url
, rhsoopts
);
64 bool isUp(const ComboAddress
& remote
, const opts_t
& opts
);
65 bool isUp(const ComboAddress
& remote
, const std::string
& url
, const opts_t
& opts
);
66 bool isUp(const CheckDesc
& cd
);
69 void checkURLThread(ComboAddress rem
, std::string url
, const opts_t
& opts
);
70 void checkTCPThread(ComboAddress rem
, const opts_t
& opts
);
78 typedef map
<CheckDesc
, Checker
> statuses_t
;
79 statuses_t d_statuses
;
83 void setStatus(const CheckDesc
& cd
, bool status
)
85 std::lock_guard
<std::mutex
> l(d_mutex
);
86 d_statuses
[cd
].status
=status
;
89 void setDown(const ComboAddress
& rem
, const std::string
& url
=std::string(), const opts_t
& opts
= opts_t())
91 CheckDesc cd
{rem
, url
, opts
};
95 void setUp(const ComboAddress
& rem
, const std::string
& url
=std::string(), const opts_t
& opts
= opts_t())
97 CheckDesc cd
{rem
, url
, opts
};
102 void setDown(const CheckDesc
& cd
)
104 setStatus(cd
, false);
107 void setUp(const CheckDesc
& cd
)
112 bool upStatus(const ComboAddress
& rem
, const std::string
& url
=std::string(), const opts_t
& opts
= opts_t())
114 CheckDesc cd
{rem
, url
, opts
};
115 std::lock_guard
<std::mutex
> l(d_mutex
);
116 return d_statuses
[cd
].status
;
120 bool IsUpOracle::isUp(const CheckDesc
& cd
)
122 std::lock_guard
<std::mutex
> l(d_mutex
);
123 auto iter
= d_statuses
.find(cd
);
124 if(iter
== d_statuses
.end()) {
125 d_statuses
[cd
]=Checker
{std::thread(&IsUpOracle::checkTCPThread
, this, cd
.rem
, cd
.opts
), false};
128 return iter
->second
.status
;
132 bool IsUpOracle::isUp(const ComboAddress
& remote
, const opts_t
& opts
)
134 CheckDesc cd
{remote
, "", opts
};
138 bool IsUpOracle::isUp(const ComboAddress
& remote
, const std::string
& url
, const opts_t
& opts
)
140 CheckDesc cd
{remote
, url
, opts
};
141 std::lock_guard
<std::mutex
> l(d_mutex
);
142 auto iter
= d_statuses
.find(cd
);
143 if(iter
== d_statuses
.end()) {
144 // g_log<<Logger::Warning<<"Launching HTTP(s) status checker for "<<remote.toStringWithPort()<<" and URL "<<url<<endl;
145 d_statuses
[cd
]=Checker
{std::thread(&IsUpOracle::checkURLThread
, this, remote
, url
, opts
), false};
149 return iter
->second
.status
;
152 void IsUpOracle::checkTCPThread(ComboAddress rem
, const opts_t
& opts
)
154 CheckDesc cd
{rem
, "", opts
};
156 for(bool first
=true;;first
=false) {
158 Socket
s(rem
.sin4
.sin_family
, SOCK_STREAM
);
161 if(opts
.count("source")) {
162 src
=ComboAddress(opts
.at("source"));
167 g_log
<<Logger::Warning
<<"Lua record monitoring declaring TCP/IP "<<rem
.toStringWithPort()<<" ";
168 if(opts
.count("source"))
169 g_log
<<"(source "<<src
.toString()<<") ";
174 catch(NetworkError
& ne
) {
175 if(isUp(rem
, opts
) || first
)
176 g_log
<<Logger::Warning
<<"Lua record monitoring declaring TCP/IP "<<rem
.toStringWithPort()<<" DOWN: "<<ne
.what()<<endl
;
184 void IsUpOracle::checkURLThread(ComboAddress rem
, std::string url
, const opts_t
& opts
)
186 setDown(rem
, url
, opts
);
187 for(bool first
=true;;first
=false) {
189 string useragent
= productName();
190 if (opts
.count("useragent")) {
191 useragent
= opts
.at("useragent");
193 MiniCurl
mc(useragent
);
196 if(opts
.count("source")) {
197 ComboAddress
src(opts
.at("source"));
198 content
=mc
.getURL(url
, &rem
, &src
);
201 content
=mc
.getURL(url
, &rem
);
203 if(opts
.count("stringmatch") && content
.find(opts
.at("stringmatch")) == string::npos
) {
204 throw std::runtime_error(boost::str(boost::format("unable to match content with `%s`") % opts
.at("stringmatch")));
206 if(!upStatus(rem
,url
,opts
))
207 g_log
<<Logger::Warning
<<"LUA record monitoring declaring "<<rem
.toString()<<" UP for URL "<<url
<<"!"<<endl
;
208 setUp(rem
, url
,opts
);
210 catch(std::exception
& ne
) {
211 if(upStatus(rem
,url
,opts
) || first
)
212 g_log
<<Logger::Warning
<<"LUA record monitoring declaring "<<rem
.toString()<<" DOWN for URL "<<url
<<", error: "<<ne
.what()<<endl
;
213 setDown(rem
,url
,opts
);
222 template<typename T
, typename C
>
223 bool doCompare(const T
& var
, const std::string
& res
, const C
& cmp
)
225 if(auto country
= boost::get
<string
>(&var
))
226 return cmp(*country
, res
);
228 auto countries
=boost::get
<vector
<pair
<int,string
> > >(&var
);
229 for(const auto& country
: *countries
) {
230 if(cmp(country
.second
, res
))
238 std::string
getGeo(const std::string
& ip
, GeoIPInterface::GeoIPQueryAttribute qa
)
240 static bool initialized
;
241 extern std::function
<std::string(const std::string
& ip
, int)> g_getGeo
;
244 g_log
<<Logger::Error
<<"LUA Record attempted to use GeoIPBackend functionality, but backend not launched"<<endl
;
250 return g_getGeo(ip
, (int)qa
);
253 static ComboAddress
pickrandom(const vector
<ComboAddress
>& ips
)
256 throw std::invalid_argument("The IP list cannot be empty");
258 return ips
[dns_random(ips
.size())];
261 static ComboAddress
hashed(const ComboAddress
& who
, const vector
<ComboAddress
>& ips
)
264 throw std::invalid_argument("The IP list cannot be empty");
266 ComboAddress::addressOnlyHash aoh
;
267 return ips
[aoh(who
) % ips
.size()];
271 static ComboAddress
pickwrandom(const vector
<pair
<int,ComboAddress
> >& wips
)
274 throw std::invalid_argument("The IP list cannot be empty");
277 vector
<pair
<int, ComboAddress
> > pick
;
278 for(auto& i
: wips
) {
280 pick
.push_back({sum
, i
.second
});
282 int r
= dns_random(sum
);
283 auto p
= upper_bound(pick
.begin(), pick
.end(), r
, [](int rarg
, const decltype(pick
)::value_type
& a
) { return rarg
< a
.first
; });
287 static ComboAddress
pickwhashed(const ComboAddress
& bestwho
, vector
<pair
<int,ComboAddress
> >& wips
)
290 return ComboAddress();
293 vector
<pair
<int, ComboAddress
> > pick
;
294 for(auto& i
: wips
) {
296 pick
.push_back({sum
, i
.second
});
298 ComboAddress::addressOnlyHash aoh
;
299 int r
= aoh(bestwho
) % sum
;
300 auto p
= upper_bound(pick
.begin(), pick
.end(), r
, [](int rarg
, const decltype(pick
)::value_type
& a
) { return rarg
< a
.first
; });
304 static bool getLatLon(const std::string
& ip
, double& lat
, double& lon
)
306 string inp
= getGeo(ip
, GeoIPInterface::Location
);
309 lat
=atof(inp
.c_str());
310 auto pos
=inp
.find(' ');
311 if(pos
!= string::npos
)
312 lon
=atof(inp
.c_str() + pos
);
316 static bool getLatLon(const std::string
& ip
, string
& loc
)
318 int latdeg
, latmin
, londeg
, lonmin
;
319 double latsec
, lonsec
;
320 char lathem
='X', lonhem
='X';
323 if(!getLatLon(ip
, lat
, lon
))
344 >>> min = int((R - int(R)) * 60.0)
345 >>> sec = (((R - int(R)) * 60.0) - min) * 60.0
346 >>> print("{}º {}' {}\"".format(deg, min, sec))
351 latmin
= (lat
- latdeg
)*60.0;
352 latsec
= (((lat
- latdeg
)*60.0) - latmin
)*60.0;
355 lonmin
= (lon
- londeg
)*60.0;
356 lonsec
= (((lon
- londeg
)*60.0) - lonmin
)*60.0;
358 // 51 59 00.000 N 5 55 00.000 E 4.00m 1.00m 10000.00m 10.00m
360 boost::format
fmt("%d %d %d %c %d %d %d %c 0.00m 1.00m 10000.00m 10.00m");
362 loc
= (fmt
% latdeg
% latmin
% latsec
% lathem
% londeg
% lonmin
% lonsec
% lonhem
).str();
366 static ComboAddress
pickclosest(const ComboAddress
& bestwho
, const vector
<ComboAddress
>& wips
)
369 throw std::invalid_argument("The IP list cannot be empty");
371 map
<double,vector
<ComboAddress
> > ranked
;
372 double wlat
=0, wlon
=0;
373 getLatLon(bestwho
.toString(), wlat
, wlon
);
374 // cout<<"bestwho "<<wlat<<", "<<wlon<<endl;
376 for(const auto& c
: wips
) {
378 getLatLon(c
.toString(), lat
, lon
);
379 // cout<<c.toString()<<": "<<lat<<", "<<lon<<endl;
380 double latdiff
= wlat
-lat
;
381 double londiff
= wlon
-lon
;
383 londiff
= 360 - londiff
;
384 double dist2
=latdiff
*latdiff
+ londiff
*londiff
;
385 // cout<<" distance: "<<sqrt(dist2) * 40000.0/360<<" km"<<endl; // length of a degree
386 ranked
[dist2
].push_back(c
);
388 return ranked
.begin()->second
[dns_random(ranked
.begin()->second
.size())];
391 static std::vector
<DNSZoneRecord
> lookup(const DNSName
& name
, uint16_t qtype
, int zoneid
)
393 static UeberBackend ub
;
394 static std::mutex mut
;
395 std::lock_guard
<std::mutex
> lock(mut
);
396 ub
.lookup(QType(qtype
), name
, zoneid
);
398 vector
<DNSZoneRecord
> ret
;
405 static std::string
getOptionValue(const boost::optional
<std::unordered_map
<string
, string
>>& options
, const std::string
&name
, const std::string
&defaultValue
)
407 string selector
=defaultValue
;
409 if(options
->count(name
))
410 selector
=options
->find(name
)->second
;
415 static vector
<ComboAddress
> useSelector(const std::string
&selector
, const ComboAddress
& bestwho
, const vector
<ComboAddress
>& candidates
)
417 vector
<ComboAddress
> ret
;
421 else if(selector
=="random")
422 ret
.emplace_back(pickrandom(candidates
));
423 else if(selector
=="pickclosest")
424 ret
.emplace_back(pickclosest(bestwho
, candidates
));
425 else if(selector
=="hashed")
426 ret
.emplace_back(hashed(bestwho
, candidates
));
428 g_log
<<Logger::Warning
<<"LUA Record called with unknown selector '"<<selector
<<"'"<<endl
;
429 ret
.emplace_back(pickrandom(candidates
));
435 static vector
<string
> convIpListToString(const vector
<ComboAddress
> &comboAddresses
)
439 for (const auto& c
: comboAddresses
) {
440 ret
.emplace_back(c
.toString());
446 static vector
<ComboAddress
> convIplist(const iplist_t
& src
)
448 vector
<ComboAddress
> ret
;
450 for(const auto& ip
: src
) {
451 ret
.emplace_back(ip
.second
);
457 static vector
<pair
<int, ComboAddress
> > convWIplist(std::unordered_map
<int, wiplist_t
> src
)
459 vector
<pair
<int,ComboAddress
> > ret
;
461 for(const auto& i
: src
) {
462 ret
.emplace_back(atoi(i
.second
.at(1).c_str()), ComboAddress(i
.second
.at(2)));
468 static thread_local unique_ptr
<AuthLua4
> s_LUA
;
469 bool g_LuaRecordSharedState
;
471 typedef struct AuthLuaRecordContext
473 ComboAddress bestwho
;
479 static thread_local unique_ptr
<lua_record_ctx_t
> s_lua_record_ctx
;
481 void setupLuaRecords()
483 LuaContext
& lua
= *s_LUA
->getLua();
485 lua
.writeFunction("latlon", []() {
487 getLatLon(s_lua_record_ctx
->bestwho
.toString(), lat
, lon
);
488 return std::to_string(lat
)+" "+std::to_string(lon
);
490 lua
.writeFunction("latlonloc", []() {
492 getLatLon(s_lua_record_ctx
->bestwho
.toString(), loc
);
495 lua
.writeFunction("closestMagic", []() {
496 vector
<ComboAddress
> candidates
;
497 // Getting something like 192-0-2-1.192-0-2-2.198-51-100-1.example.org
498 for(auto l
: s_lua_record_ctx
->qname
.getRawLabels()) {
499 boost::replace_all(l
, "-", ".");
501 candidates
.emplace_back(l
);
502 } catch (const PDNSException
& e
) {
503 // no need to continue as we most likely reached the end of the ip list
507 return pickclosest(s_lua_record_ctx
->bestwho
, candidates
).toString();
509 lua
.writeFunction("latlonMagic", [](){
510 auto labels
= s_lua_record_ctx
->qname
.getRawLabels();
512 return std::string("unknown");
514 getLatLon(labels
[3]+"."+labels
[2]+"."+labels
[1]+"."+labels
[0], lat
, lon
);
515 return std::to_string(lat
)+" "+std::to_string(lon
);
519 lua
.writeFunction("createReverse", [](string suffix
, boost::optional
<std::unordered_map
<string
,string
>> e
){
521 auto labels
= s_lua_record_ctx
->qname
.getRawLabels();
523 return std::string("unknown");
525 vector
<ComboAddress
> candidates
;
527 // exceptions are relative to zone
528 // so, query comes in for 4.3.2.1.in-addr.arpa, zone is called 2.1.in-addr.arpa
529 // e["1.2.3.4"]="bert.powerdns.com" - should match, easy enough to do
530 // the issue is with classless delegation..
532 ComboAddress
req(labels
[3]+"."+labels
[2]+"."+labels
[1]+"."+labels
[0], 0);
533 const auto& uom
= *e
;
534 for(const auto& c
: uom
)
535 if(ComboAddress(c
.first
, 0) == req
)
538 boost::format
fmt(suffix
);
539 fmt
.exceptions( boost::io::all_error_bits
^ ( boost::io::too_many_args_bit
| boost::io::too_few_args_bit
) );
540 fmt
% labels
[3] % labels
[2] % labels
[1] % labels
[0];
542 fmt
% (labels
[3]+"-"+labels
[2]+"-"+labels
[1]+"-"+labels
[0]);
544 boost::format
fmt2("%02x%02x%02x%02x");
545 for(int i
=3; i
>=0; --i
)
546 fmt2
% atoi(labels
[i
].c_str());
552 catch(std::exception
& ex
) {
553 g_log
<<Logger::Error
<<"error: "<<ex
.what()<<endl
;
555 return std::string("error");
557 lua
.writeFunction("createForward", []() {
558 DNSName rel
=s_lua_record_ctx
->qname
.makeRelative(s_lua_record_ctx
->zone
);
559 auto parts
= rel
.getRawLabels();
561 return parts
[0]+"."+parts
[1]+"."+parts
[2]+"."+parts
[3];
562 if(parts
.size()==1) {
563 // either hex string, or 12-13-14-15
564 // cout<<parts[0]<<endl;
565 unsigned int x1
, x2
, x3
, x4
;
566 if(sscanf(parts
[0].c_str()+2, "%02x%02x%02x%02x", &x1
, &x2
, &x3
, &x4
)==4) {
567 return std::to_string(x1
)+"."+std::to_string(x2
)+"."+std::to_string(x3
)+"."+std::to_string(x4
);
572 return std::string("0.0.0.0");
575 lua
.writeFunction("createForward6", []() {
576 DNSName rel
=s_lua_record_ctx
->qname
.makeRelative(s_lua_record_ctx
->zone
);
577 auto parts
= rel
.getRawLabels();
578 if(parts
.size()==8) {
580 for(int i
=0; i
<8; ++i
) {
585 ComboAddress
ca(tot
);
586 return ca
.toString();
588 else if(parts
.size()==1) {
589 boost::replace_all(parts
[0],"-",":");
590 ComboAddress
ca(parts
[0]);
591 return ca
.toString();
594 return std::string("::");
596 lua
.writeFunction("createReverse6", [](string suffix
, boost::optional
<std::unordered_map
<string
,string
>> e
){
597 vector
<ComboAddress
> candidates
;
600 auto labels
= s_lua_record_ctx
->qname
.getRawLabels();
602 return std::string("unknown");
603 boost::format
fmt(suffix
);
604 fmt
.exceptions( boost::io::all_error_bits
^ ( boost::io::too_many_args_bit
| boost::io::too_few_args_bit
) );
608 vector
<string
> quads
;
609 for(int i
=0; i
<8; ++i
) {
613 for(int j
=0; j
<4; ++j
) {
614 quad
.append(1, labels
[31-i
*4-j
][0]);
615 together
+= labels
[31-i
*4-j
][0];
617 quads
.push_back(quad
);
619 ComboAddress
ip6(together
,0);
623 for(const auto& addr
: addrs
) {
624 // this makes sure we catch all forms of the address
625 if(ComboAddress(addr
.first
,0)==ip6
)
630 string dashed
=ip6
.toString();
631 boost::replace_all(dashed
, ":", "-");
633 for(int i
=31; i
>=0; --i
)
637 for(const auto& quad
: quads
)
642 catch(std::exception
& ex
) {
643 g_log
<<Logger::Error
<<"LUA Record xception: "<<ex
.what()<<endl
;
645 catch(PDNSException
& ex
) {
646 g_log
<<Logger::Error
<<"LUA Record exception: "<<ex
.reason
<<endl
;
648 return std::string("unknown");
652 * Simplistic test to see if an IP address listens on a certain port
653 * Will return a single IP address from the set of available IP addresses. If
654 * no IP address is available, will return a random element of the set of
655 * addresses suppplied for testing.
657 * @example ifportup(443, { '1.2.3.4', '5.4.3.2' })"
659 lua
.writeFunction("ifportup", [](int port
, const vector
<pair
<int, string
> >& ips
, const boost::optional
<std::unordered_map
<string
,string
>> options
) {
660 vector
<ComboAddress
> candidates
, unavailables
;
662 vector
<ComboAddress
> conv
;
663 std::string selector
;
667 for(const auto& i
: ips
) {
668 ComboAddress
rem(i
.second
, port
);
669 if(g_up
.isUp(rem
, opts
)) {
670 candidates
.push_back(rem
);
673 unavailables
.push_back(rem
);
676 if(!candidates
.empty()) {
677 // use regular selector
678 selector
= getOptionValue(options
, "selector", "random");
680 // All units are down, apply backupSelector on all candidates
681 candidates
= std::move(unavailables
);
682 selector
= getOptionValue(options
, "backupSelector", "random");
685 vector
<ComboAddress
> res
= useSelector(selector
, s_lua_record_ctx
->bestwho
, candidates
);
686 return convIpListToString(res
);
689 lua
.writeFunction("ifurlup", [](const std::string
& url
,
690 const boost::variant
<iplist_t
, ipunitlist_t
>& ips
,
691 boost::optional
<opts_t
> options
) {
692 vector
<vector
<ComboAddress
> > candidates
;
696 if(auto simple
= boost::get
<iplist_t
>(&ips
)) {
697 vector
<ComboAddress
> unit
= convIplist(*simple
);
698 candidates
.push_back(unit
);
700 auto units
= boost::get
<ipunitlist_t
>(ips
);
701 for(const auto& u
: units
) {
702 vector
<ComboAddress
> unit
= convIplist(u
.second
);
703 candidates
.push_back(unit
);
707 for(const auto& unit
: candidates
) {
708 vector
<ComboAddress
> available
;
709 for(const auto& c
: unit
) {
710 if(g_up
.isUp(c
, url
, opts
)) {
711 available
.push_back(c
);
714 if(!available
.empty()) {
715 vector
<ComboAddress
> res
= useSelector(getOptionValue(options
, "selector", "random"), s_lua_record_ctx
->bestwho
, available
);
716 return convIpListToString(res
);
720 // All units down, apply backupSelector on all candidates
721 vector
<ComboAddress
> ret
{};
722 for(const auto& unit
: candidates
) {
723 ret
.insert(ret
.end(), unit
.begin(), unit
.end());
726 vector
<ComboAddress
> res
= useSelector(getOptionValue(options
, "backupSelector", "random"), s_lua_record_ctx
->bestwho
, ret
);
727 return convIpListToString(res
);
730 * Returns a random IP address from the supplied list
731 * @example pickrandom({ '1.2.3.4', '5.4.3.2' })"
733 lua
.writeFunction("pickrandom", [](const iplist_t
& ips
) {
734 vector
<ComboAddress
> conv
= convIplist(ips
);
736 return pickrandom(conv
).toString();
741 * Returns a random IP address from the supplied list, as weighted by the
742 * various ``weight`` parameters
743 * @example pickwrandom({ {100, '1.2.3.4'}, {50, '5.4.3.2'}, {1, '192.168.1.0'} })
745 lua
.writeFunction("pickwrandom", [](std::unordered_map
<int, wiplist_t
> ips
) {
746 vector
<pair
<int,ComboAddress
> > conv
= convWIplist(ips
);
748 return pickwrandom(conv
).toString();
752 * Based on the hash of `bestwho`, returns an IP address from the list
753 * supplied, as weighted by the various `weight` parameters
754 * @example pickwhashed({ {15, '1.2.3.4'}, {50, '5.4.3.2'} })
756 lua
.writeFunction("pickwhashed", [](std::unordered_map
<int, wiplist_t
> ips
) {
757 vector
<pair
<int,ComboAddress
> > conv
;
760 conv
.emplace_back(atoi(i
.second
[1].c_str()), ComboAddress(i
.second
[2]));
762 return pickwhashed(s_lua_record_ctx
->bestwho
, conv
).toString();
766 lua
.writeFunction("pickclosest", [](const iplist_t
& ips
) {
767 vector
<ComboAddress
> conv
= convIplist(ips
);
769 return pickclosest(s_lua_record_ctx
->bestwho
, conv
).toString();
773 if (g_luaRecordExecLimit
> 0) {
774 lua
.executeCode(boost::str(boost::format("debug.sethook(report, '', %d)") % g_luaRecordExecLimit
));
777 lua
.writeFunction("report", [](string event
, boost::optional
<string
> line
){
778 throw std::runtime_error("Script took too long");
781 lua
.writeFunction("geoiplookup", [](const string
&ip
, const GeoIPInterface::GeoIPQueryAttribute attr
) {
782 return getGeo(ip
, attr
);
785 typedef const boost::variant
<string
,vector
<pair
<int,string
> > > combovar_t
;
786 lua
.writeFunction("continent", [](const combovar_t
& continent
) {
787 string res
=getGeo(s_lua_record_ctx
->bestwho
.toString(), GeoIPInterface::Continent
);
788 return doCompare(continent
, res
, [](const std::string
& a
, const std::string
& b
) {
789 return !strcasecmp(a
.c_str(), b
.c_str());
792 lua
.writeFunction("asnum", [](const combovar_t
& asns
) {
793 string res
=getGeo(s_lua_record_ctx
->bestwho
.toString(), GeoIPInterface::ASn
);
794 return doCompare(asns
, res
, [](const std::string
& a
, const std::string
& b
) {
795 return !strcasecmp(a
.c_str(), b
.c_str());
798 lua
.writeFunction("country", [](const combovar_t
& var
) {
799 string res
= getGeo(s_lua_record_ctx
->bestwho
.toString(), GeoIPInterface::Country2
);
800 return doCompare(var
, res
, [](const std::string
& a
, const std::string
& b
) {
801 return !strcasecmp(a
.c_str(), b
.c_str());
805 lua
.writeFunction("netmask", [](const iplist_t
& ips
) {
806 for(const auto& i
:ips
) {
807 Netmask
nm(i
.second
);
808 if(nm
.match(s_lua_record_ctx
->bestwho
))
815 {'192.168.0.0/16', '10.0.0.0/8'},
816 {'192.168.20.20', '192.168.20.21'}
819 {'0.0.0.0/0'}, {'192.0.2.1'}
823 lua
.writeFunction("view", [](const vector
<pair
<int, vector
<pair
<int, iplist_t
> > > >& in
) {
824 for(const auto& rule
: in
) {
825 const auto& netmasks
=rule
.second
[0].second
;
826 const auto& destinations
=rule
.second
[1].second
;
827 for(const auto& nmpair
: netmasks
) {
828 Netmask
nm(nmpair
.second
);
829 if(nm
.match(s_lua_record_ctx
->bestwho
)) {
830 if (destinations
.empty()) {
831 throw std::invalid_argument("The IP list cannot be empty (for netmask " + nm
.toString() + ")");
833 return destinations
[dns_random(destinations
.size())].second
;
837 return std::string();
842 lua
.writeFunction("include", [&lua
](string record
) {
844 vector
<DNSZoneRecord
> drs
= lookup(DNSName(record
) + s_lua_record_ctx
->zone
, QType::LUA
, s_lua_record_ctx
->zoneid
);
845 for(const auto& dr
: drs
) {
846 auto lr
= getRR
<LUARecordContent
>(dr
.dr
);
847 lua
.executeCode(lr
->getCode());
850 catch(std::exception
& e
) {
851 g_log
<<Logger::Error
<<"Failed to load include record for LUArecord "<<(DNSName(record
)+s_lua_record_ctx
->zone
)<<": "<<e
.what()<<endl
;
856 std::vector
<shared_ptr
<DNSRecordContent
>> luaSynth(const std::string
& code
, const DNSName
& query
, const DNSName
& zone
, int zoneid
, const DNSPacket
& dnsp
, uint16_t qtype
)
858 if(!s_LUA
|| // we don't have a Lua state yet
859 !g_LuaRecordSharedState
) { // or we want a new one even if we had one
860 s_LUA
= make_unique
<AuthLua4
>();
864 std::vector
<shared_ptr
<DNSRecordContent
>> ret
;
866 LuaContext
& lua
= *s_LUA
->getLua();
868 s_lua_record_ctx
= std::unique_ptr
<lua_record_ctx_t
>(new lua_record_ctx_t());
869 s_lua_record_ctx
->qname
= query
;
870 s_lua_record_ctx
->zone
= zone
;
871 s_lua_record_ctx
->zoneid
= zoneid
;
873 lua
.writeVariable("qname", query
);
874 lua
.writeVariable("zone", zone
);
875 lua
.writeVariable("zoneid", zoneid
);
876 lua
.writeVariable("who", dnsp
.getRemote());
877 lua
.writeVariable("dh", (dnsheader
*)&dnsp
.d
);
878 lua
.writeVariable("dnssecOK", dnsp
.d_dnssecOk
);
879 lua
.writeVariable("tcp", dnsp
.d_tcp
);
880 lua
.writeVariable("ednsPKTSize", dnsp
.d_ednsRawPacketSizeLimit
);
881 if(dnsp
.hasEDNSSubnet()) {
882 lua
.writeVariable("ecswho", dnsp
.getRealRemote());
883 s_lua_record_ctx
->bestwho
= dnsp
.getRealRemote().getNetwork();
886 lua
.writeVariable("ecswho", nullptr);
887 s_lua_record_ctx
->bestwho
= dnsp
.getRemote();
889 lua
.writeVariable("bestwho", s_lua_record_ctx
->bestwho
);
893 if(!code
.empty() && code
[0]!=';')
894 actual
= "return " + code
;
896 actual
= code
.substr(1);
898 auto content
=lua
.executeCode
<boost::variant
<string
, vector
<pair
<int, string
> > > >(actual
);
900 vector
<string
> contents
;
901 if(auto str
= boost::get
<string
>(&content
))
902 contents
.push_back(*str
);
904 for(const auto& c
: boost::get
<vector
<pair
<int,string
>>>(content
))
905 contents
.push_back(c
.second
);
907 for(const auto& content_it
: contents
) {
908 if(qtype
==QType::TXT
)
909 ret
.push_back(DNSRecordContent::mastermake(qtype
, QClass::IN
, '"'+content_it
+'"' ));
911 ret
.push_back(DNSRecordContent::mastermake(qtype
, QClass::IN
, content_it
));
913 } catch(std::exception
&e
) {
914 g_log
<<Logger::Error
<<"Lua record reported: "<<e
.what();
916 std::rethrow_if_nested(e
);
918 } catch(const std::exception
& ne
) {
919 g_log
<< ": " << ne
.what() << std::endl
;
921 catch(const PDNSException
& ne
) {
922 g_log
<< ": " << ne
.reason
<< std::endl
;