UNPKG

@nictool/dns-resource-record

Version:

DNS Resource Records

github.com/NicTool/dns-resource-record

NicTool/dns-resource-record

147 lines (117 loc) 3.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
import RR from '../rr.js' import * as TINYDNS from '../lib/tinydns.js' export default class DNSKEY extends RR { constructor(opts) { super(opts) } /****** Resource record specific setters *******/ setFlags(val) { // a 2 octet Flags Field this.is16bitInt('DNSKEY', 'flags', val) if (!this.getFlagsOptions().has(val)) { this.throwHelp(`DNSKEY: flags must be in the set: ${this.getFlagsOptions()}`) } this.set('flags', val) } // possible values are: 0, 256, and 257; RFC 4034 getFlagsOptions() { return new Map([[0], [256], [257]]) } setProtocol(val) { // 1 octet this.is8bitInt('DNSKEY', 'protocol', val) // The Protocol Field MUST be represented as an unsigned decimal integer with a value of 3. if (!this.getProtocolOptions().has(val)) this.throwHelp(`DNSKEY: protocol invalid`) this.set('protocol', val) } getProtocolOptions() { return new Map([[3]]) } setAlgorithm(val) { // 1 octet this.is8bitInt('DNSKEY', 'algorithm', val) // https://www.iana.org/assignments/dns-sec-alg-numbers/dns-sec-alg-numbers.xhtml if (!this.getAlgorithmOptions().has(val)) console.error(`DNSKEY: algorithm (${val}) not recognized`) this.set('algorithm', val) } getAlgorithmOptions() { return new Map([ [1, 'RSA/MD5 (DEPRECATED)'], [2, 'DH'], [3, 'DSA/SHA-1'], [4, 'EC'], [5, 'RSA/SHA-1'], [6, 'DSA-NSEC3-SHA1'], [7, 'RSASHA1-NSEC3-SHA1'], [8, 'RSA/SHA-256'], [9, ''], [10, 'RSA/SHA-512'], [13, 'ECDSA Curve P-256 with SHA-256'], [14, 'ECDSA Curve P-384 with SHA-384'], [15, 'Ed25519'], [16, 'Ed448'], [253], [254], ]) } setPublickey(val) { if (!val) this.throwHelp(`DNSKEY: publickey is required`) this.set('publickey', val) } getDescription() { return 'DNS Public Key' } getRdataFields(arg) { return ['flags', 'protocol', 'algorithm', 'publickey'] } getRFCs() { return [4034, 6014, 8624] } getTypeId() { return 48 } /****** IMPORTERS *******/ fromBind(opts) { // test.example.com 3600 IN DNSKEY Flags Protocol Algorithm PublicKey const regex = /^([^\s]+)\s+([0-9]+)\s+(\w+)\s+(\w+)\s+([0-9]+)\s+([0-9]+)\s+([0-9]+)\s+\s*(.*?)\s*$/ const match = opts.bindline.match(regex) if (!match) this.throwHelp(`unable to parse DNSKEY: ${opts.bindline}`) const [owner, ttl, c, type, flags, protocol, algorithm, publickey] = match.slice(1) return new DNSKEY({ owner, ttl: parseInt(ttl, 10), class: c, type: type, flags: parseInt(flags, 10), protocol: parseInt(protocol, 10), algorithm: parseInt(algorithm, 10), publickey: publickey, }) } fromTinydns(opts) { const [fqdn, n, rdata, ttl, ts, loc] = opts.tinyline.substring(1).split(':') if (n != 48) this.throwHelp('DNSKEY fromTinydns, invalid n') const bytes = Buffer.from(TINYDNS.octalToChar(rdata), 'binary') return new DNSKEY({ owner: this.fullyQualify(fqdn), ttl: parseInt(ttl, 10), type: 'DNSKEY', flags: bytes.readUInt16BE(0), protocol: bytes.readUInt8(2), algorithm: bytes.readUInt8(3), publickey: bytes.slice(4).toString(), timestamp: ts, location: loc !== '' && loc !== '\n' ? loc : '', }) } /****** EXPORTERS *******/ toTinydns() { const dataRe = new RegExp(/[\r\n\t:\\/]/, 'g') return this.getTinydnsGeneric( TINYDNS.UInt16toOctal(this.get('flags')) + TINYDNS.UInt8toOctal(this.get('protocol')) + TINYDNS.UInt8toOctal(this.get('algorithm')) + TINYDNS.escapeOctal(dataRe, this.get('publickey')), ) } }