// This file is part of the happyDomain (R) project. // Copyright (c) 2020-2026 happyDomain // Authors: Pierre-Olivier Mercier, et al. // // This program is offered under a commercial and under the AGPL license. // For commercial licensing, contact us at . // // For AGPL licensing: // This program is free software: you can redistribute it and/or modify // it under the terms of the GNU Affero General Public License as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // // This program is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU Affero General Public License for more details. // // You should have received a copy of the GNU Affero General Public License // along with this program. If not, see . package checker import ( "context" "fmt" "strings" sdk "git.happydns.org/checker-sdk-go/checker" ) type ruleTargetNotCNAME struct{} func RuleTargetNotCNAME() sdk.CheckRule { return &ruleTargetNotCNAME{} } func (ruleTargetNotCNAME) Name() string { return "srv_target_not_cname" } func (ruleTargetNotCNAME) Description() string { return "RFC 2782: SRV targets must resolve directly to A/AAAA, not through a CNAME." } func (ruleTargetNotCNAME) Evaluate(ctx context.Context, obs sdk.ObservationGetter, _ sdk.CheckerOptions) []sdk.CheckState { d, cs := getData(ctx, obs) if cs != nil { return []sdk.CheckState{*cs} } var bad []string for _, r := range d.Records { if r.IsNullTarget { continue } if r.IsCNAME { bad = append(bad, r.Target) } } if len(bad) == 0 { return []sdk.CheckState{{Status: sdk.StatusOK, Code: "srv_targets_not_cname", Message: "All SRV targets resolve directly (no CNAME)."}} } return []sdk.CheckState{{Status: sdk.StatusWarn, Code: "srv_targets_are_cname", Message: fmt.Sprintf("RFC 2782 violation, SRV target(s) are CNAMEs: %s", strings.Join(bad, ", "))}} }