acme-dns/main.go

174 lines
4.6 KiB
Go
Raw Normal View History

//+build !test
2016-11-11 21:48:00 +07:00
package main
import (
"crypto/tls"
"flag"
stdlog "log"
"net/http"
2016-11-11 21:48:00 +07:00
"os"
"strings"
"syscall"
2017-01-30 17:19:22 +07:00
"github.com/julienschmidt/httprouter"
"github.com/miekg/dns"
"github.com/rs/cors"
log "github.com/sirupsen/logrus"
"golang.org/x/crypto/acme/autocert"
2016-11-11 21:48:00 +07:00
)
func main() {
// Created files are not world writable
syscall.Umask(0077)
configPtr := flag.String("c", "/etc/acme-dns/config.cfg", "config file location")
flag.Parse()
2016-11-13 19:50:44 +07:00
// Read global config
var err error
if fileIsAccessible(*configPtr) {
log.WithFields(log.Fields{"file": *configPtr}).Info("Using config file")
Config, err = readConfig(*configPtr)
} else if fileIsAccessible("./config.cfg") {
log.WithFields(log.Fields{"file": "./config.cfg"}).Info("Using config file")
Config, err = readConfig("./config.cfg")
} else {
log.Errorf("Configuration file not found.")
os.Exit(1)
}
if err != nil {
log.Errorf("Encountered an error while trying to read configuration file: %s", err)
os.Exit(1)
}
2016-11-23 22:11:31 +07:00
setupLogging(Config.Logconfig.Format, Config.Logconfig.Level)
2016-11-13 19:50:44 +07:00
// Read the default records in
RR.Parse(Config.General)
2016-11-11 21:48:00 +07:00
// Open database
2016-11-28 04:21:46 +07:00
newDB := new(acmedb)
err = newDB.Init(Config.Database.Engine, Config.Database.Connection)
2016-11-11 21:48:00 +07:00
if err != nil {
log.Errorf("Could not open database [%v]", err)
os.Exit(1)
} else {
log.Info("Connected to database")
2016-11-11 21:48:00 +07:00
}
2016-11-28 04:21:46 +07:00
DB = newDB
defer DB.Close()
2016-11-11 21:48:00 +07:00
// Error channel for servers
errChan := make(chan error, 1)
2016-11-28 02:21:38 +07:00
// DNS server
if strings.HasPrefix(Config.General.Proto, "both") {
// Handle the case where DNS server should be started for both udp and tcp
udpProto := "udp"
tcpProto := "tcp"
if strings.HasSuffix(Config.General.Proto, "4") {
udpProto += "4"
tcpProto += "4"
} else if strings.HasSuffix(Config.General.Proto, "6") {
udpProto += "6"
tcpProto += "6"
}
dnsServerUDP := setupDNSServer(udpProto)
dnsServerTCP := setupDNSServer(tcpProto)
go startDNS(dnsServerUDP, errChan)
go startDNS(dnsServerTCP, errChan)
} else {
dnsServer := setupDNSServer(Config.General.Proto)
go startDNS(dnsServer, errChan)
}
2016-11-11 21:48:00 +07:00
2016-11-28 03:09:13 +07:00
// HTTP API
go startHTTPAPI(errChan)
2016-11-28 03:09:13 +07:00
// block waiting for error
select {
case err = <-errChan:
if err != nil {
log.Fatal(err)
}
}
2016-11-11 21:48:00 +07:00
log.Debugf("Shutting down...")
}
2016-11-28 18:09:10 +07:00
func startDNS(server *dns.Server, errChan chan error) {
// DNS server part
dns.HandleFunc(".", handleRequest)
log.WithFields(log.Fields{"addr": Config.General.Listen, "proto": server.Net}).Info("Listening DNS")
err := server.ListenAndServe()
if err != nil {
errChan <- err
}
}
func setupDNSServer(proto string) *dns.Server {
return &dns.Server{Addr: Config.General.Listen, Net: proto}
}
func startHTTPAPI(errChan chan error) {
// Setup http logger
logger := log.New()
logwriter := logger.Writer()
defer logwriter.Close()
api := httprouter.New()
c := cors.New(cors.Options{
AllowedOrigins: Config.API.CorsOrigins,
2016-11-28 18:09:10 +07:00
AllowedMethods: []string{"GET", "POST"},
OptionsPassthrough: false,
Debug: Config.General.Debug,
})
if Config.General.Debug {
// Logwriter for saner log output
c.Log = stdlog.New(logwriter, "", 0)
}
if !Config.API.DisableRegistration {
api.POST("/register", webRegisterPost)
}
api.POST("/update", Auth(webUpdatePost))
host := Config.API.IP + ":" + Config.API.Port
cfg := &tls.Config{
MinVersion: tls.VersionTLS12,
}
var err error
switch Config.API.TLS {
2016-11-28 18:09:10 +07:00
case "letsencrypt":
m := autocert.Manager{
Cache: autocert.DirCache(Config.API.ACMECacheDir),
Prompt: autocert.AcceptTOS,
HostPolicy: autocert.HostWhitelist(Config.API.Domain),
}
autocerthost := Config.API.IP + ":" + Config.API.AutocertPort
log.WithFields(log.Fields{"autocerthost": autocerthost, "domain": Config.API.Domain}).Debug("Opening HTTP port for autocert")
go http.ListenAndServe(autocerthost, m.HTTPHandler(nil))
cfg.GetCertificate = m.GetCertificate
srv := &http.Server{
Addr: host,
Handler: c.Handler(api),
TLSConfig: cfg,
ErrorLog: stdlog.New(logwriter, "", 0),
}
log.WithFields(log.Fields{"host": host, "domain": Config.API.Domain}).Info("Listening HTTPS, using certificate from autocert")
err = srv.ListenAndServeTLS("", "")
2016-11-28 18:09:10 +07:00
case "cert":
srv := &http.Server{
Addr: host,
Handler: c.Handler(api),
TLSConfig: cfg,
ErrorLog: stdlog.New(logwriter, "", 0),
}
log.WithFields(log.Fields{"host": host}).Info("Listening HTTPS")
err = srv.ListenAndServeTLS(Config.API.TLSCertFullchain, Config.API.TLSCertPrivkey)
2016-11-28 18:09:10 +07:00
default:
log.WithFields(log.Fields{"host": host}).Info("Listening HTTP")
err = http.ListenAndServe(host, c.Handler(api))
}
if err != nil {
errChan <- err
2016-11-28 18:09:10 +07:00
}
}