cronekorkn/bundlewrap
1
0
Fork 0
Code Issues Pull requests 8 Projects Releases Wiki Activity

wip

Browse source
This commit is contained in:
mwiegand 2021-06-20 12:57:16 +02:00
parent 946b6c439a
commit c1ad072f8e
6 changed files with 99 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
bundles/bind/files/db
View file

@ -13,9 +13,13 @@ $TTL 600
% for record in sorted(records, key=lambda r: (r['name'], r['type'], r['value'])): % for record in sorted(records, key=lambda r: (r['name'], r['type'], r['value'])):
% for part in (record['value'][i:i+255] for i in range(0, len(record['value']), 255)): % for part in (record['value'][i:i+255] for i in range(0, len(record['value']), 255)):
${record['name'].rjust(column_width('name', records))} \ ${record['name'].ljust(column_width('name', records))} \
IN \ IN \
${record['type'].ljust(column_width('type', records))} \ ${record['type'].ljust(column_width('type', records))} \
"${part}" % if record['type'] == 'TXT':
"${part}"
% else:
${part}
% endif
% endfor % endfor
% endfor % endfor

8
bundles/bind/files/named.conf.local Normal file
View file

@ -0,0 +1,8 @@
% for zone in zones:
zone "${zone}" {
type master;
file "/var/lib/bind/db.${zone}";
};
% endfor
// include "/etc/bind/zones.rfc1918";

45
bundles/bind/items.py
View file

@ -1,16 +1,59 @@
directories['/var/lib/bind'] = { directories['/var/lib/bind'] = {
'purge': True, 'purge': True,
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
} }
files['/etc/default/bind9'] = { files['/etc/default/bind9'] = {
'source': 'defaults', 'source': 'defaults',
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
}
files['/etc/bind/named.conf.local'] = {
'content_type': 'mako',
'context': {
'zones': sorted(node.metadata.get('bind/zones')),
},
'owner': 'root',
'group': 'bind',
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
} }
for zone, records in node.metadata.get('bind/zones').items(): for zone, records in node.metadata.get('bind/zones').items():
files[f'/var/lib/bind/db.{zone}'] = { files[f'/var/lib/bind/db.{zone}'] = {
'group': 'bind',
'source': 'db', 'source': 'db',
'content_type': 'mako', 'content_type': 'mako',
'context': { 'context': {
'records': records, 'records': records,
} },
'needed_by': [
'svc_systemd:bind9',
],
'triggers': [
'svc_systemd:bind9:restart',
],
} }
svc_systemd['bind9'] = {}
actions['named-checkconf'] = {
'command': 'named-checkconf -z',
'needs': [
'svc_systemd:bind9',
]
}

42
bundles/bind/metadata.py
View file

@ -1,3 +1,6 @@
from ipaddress import ip_interface
defaults = { defaults = {
'apt': { 'apt': {
'packages': { 'packages': {
@ -10,22 +13,40 @@ defaults = {
} }
@metadata_reactor.provides(
'bind/zones',
)
def dns(metadata):
return {
'dns': {
'ns.sublimity.de': {
'A': [
str(ip_interface(metadata.get('network/ipv4')).ip)
],
'AAAA': [
str(ip_interface(metadata.get('network/ipv6')).ip)
]
},
},
}
@metadata_reactor.provides( @metadata_reactor.provides(
'bind/zones', 'bind/zones',
) )
def collect_records(metadata): def collect_records(metadata):
zones = metadata.get('bind/zones') zones = {}
for other_node in repo.nodes: for other_node in repo.nodes:
for fqdn, records in other_node.metadata.get('dns').items(): for fqdn, records in other_node.metadata.get('dns').items():
matching_zones = sorted( matching_zones = sorted(
filter( filter(
lambda potential_zone: fqdn.endswith(potential_zone), lambda potential_zone: fqdn.endswith(potential_zone),
zones metadata.get('bind/zones').keys()
), ),
key=len, key=len,
) )
if matching_zones: if matching_zones:
zone = matching_zones[0] zone = matching_zones[0]
else: else:
@ -46,3 +67,18 @@ def collect_records(metadata):
'zones': zones, 'zones': zones,
}, },
} }
@metadata_reactor.provides(
'bind/zones',
)
def ns_records(metadata):
return {
'bind': {
'zones': {
zone: [
{'name': '', 'type': 'NS', 'value': f"{metadata.get('bind/domain')}."},
] for zone in metadata.get('bind/zones').keys()
},
},
}

2
bundles/mailserver/metadata.py
View file

@ -45,7 +45,7 @@ def dns(metadata):
for domain in metadata.get('mailserver/domains'): for domain in metadata.get('mailserver/domains'):
dns[domain] = { dns[domain] = {
'MX': [domain], 'MX': [f'5 {domain}'],
'TXT': ['v=spf1 a mx -all'], 'TXT': ['v=spf1 a mx -all'],
} }

1
nodes/htz.mails.py
View file

@ -15,6 +15,7 @@
], ],
'metadata': { 'metadata': {
'bind': { 'bind': {
'domain': 'ns.sublimity.de',
'zones': { 'zones': {
'mail2.sublimity.de': [], 'mail2.sublimity.de': [],
'sublimity.de': [], 'sublimity.de': [],