UNPKG

@nictool/dns-resource-record

Version:

DNS Resource Records

github.com/NicTool/dns-resource-record

NicTool/dns-resource-record

114 lines (92 loc) 2.85 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
import RR from '../rr.js' import * as TINYDNS from '../lib/tinydns.js' export default class TLSA extends RR { constructor(opts) { super(opts) } /****** Resource record specific setters *******/ setCertificateUsage(val) { if (![0, 1, 2, 3].includes(val)) this.throwHelp(`TLSA: certificate usage invalid`) this.set('certificate usage', val) } setSelector(val) { if (![0, 1].includes(val)) this.throwHelp(`TLSA: selector invalid`) this.set('selector', val) } setMatchingType(val) { if (![0, 1, 2].includes(val)) this.throwHelp(`TLSA: matching type`) this.set('matching type', val) } setCertificateAssociationData(val) { this.set('certificate association data', val) } getDescription() { return 'TLSA certificate association' } getRdataFields(arg) { return [ 'certificate usage', 'selector', 'matching type', 'certificate association data', ] } getRFCs() { return [6698] } getTypeId() { return 52 } getQuotedFields() { return [] } /****** IMPORTERS *******/ fromBind(opts) { // test.example.com 3600 IN TLSA, usage, selector, match, data const match = opts.bindline .trim() .split( /^([^\s]+)\s+([0-9]{1,10})\s+(IN)\s+(TLSA)\s+([0-9]+)\s+([0-9]+)\s+([0-9]+)\s+(.*?)$/, ) if (!match) this.throwHelp(`unable to parse TLSA: ${opts.bindline}`) const [owner, ttl, c, type, usage, selector, matchtype, cad] = match.slice(1) return new TLSA({ owner: this.fullyQualify(owner), ttl: parseInt(ttl, 10), class: c, type, 'certificate usage': parseInt(usage, 10), selector: parseInt(selector, 10), 'matching type': parseInt(matchtype, 10), 'certificate association data': cad, }) } fromTinydns(opts) { const [fqdn, n, rdata, ttl, ts, loc] = opts.tinyline.substring(1).split(':') if (n != 52) this.throwHelp('TLSA fromTinydns, invalid n') const bytes = Buffer.from(TINYDNS.octalToChar(rdata), 'binary') return new TLSA({ owner: this.fullyQualify(fqdn), ttl: parseInt(ttl, 10), type: 'TLSA', 'certificate usage': bytes.readUInt8(0), selector: bytes.readUInt8(1), 'matching type': bytes.readUInt8(2), 'certificate association data': bytes.slice(3).toString(), timestamp: ts, location: loc !== '' && loc !== '\n' ? loc : '', }) } /****** EXPORTERS *******/ toTinydns() { const dataRe = new RegExp(/[\r\n\t:\\/]/, 'g') return this.getTinydnsGeneric( TINYDNS.UInt8toOctal(this.get('certificate usage')) + TINYDNS.UInt8toOctal(this.get('selector')) + TINYDNS.UInt8toOctal(this.get('matching type')) + TINYDNS.escapeOctal(dataRe, this.get('certificate association data')), ) } }