aboutsummaryrefslogtreecommitdiff
path: root/middleware/file/lookup.go
diff options
context:
space:
mode:
Diffstat (limited to 'middleware/file/lookup.go')
-rw-r--r--middleware/file/lookup.go25
1 files changed, 21 insertions, 4 deletions
diff --git a/middleware/file/lookup.go b/middleware/file/lookup.go
index 34fb0252c..8ca652918 100644
--- a/middleware/file/lookup.go
+++ b/middleware/file/lookup.go
@@ -1,6 +1,8 @@
package file
import (
+ "fmt"
+
"github.com/miekg/coredns/middleware/file/tree"
"github.com/miekg/dns"
)
@@ -34,6 +36,7 @@ func (z *Zone) Lookup(qname string, qtype uint16, do bool) ([]dns.RR, []dns.RR,
rr.Header().Name = qname
elem := z.Tree.Get(rr)
if elem == nil {
+ // wildcard lookup
return z.nameError(elem, rr, do)
}
@@ -64,12 +67,17 @@ func (z *Zone) noData(elem *tree.Elem, do bool) ([]dns.RR, []dns.RR, []dns.RR, R
}
func (z *Zone) nameError(elem *tree.Elem, rr dns.RR, do bool) ([]dns.RR, []dns.RR, []dns.RR, Result) {
+ ret := []dns.RR{}
if do {
- ret := append([]dns.RR{z.SOA}, z.SIG...)
- return nil, ret, nil, Success
+ ret = append(ret, z.SIG...)
+ // Now we need two NSEC, one to deny the wildcard and one to deny the name.
+ elem := z.Tree.Prev(rr)
+ fmt.Printf("%+v\n", elem.All())
+ elem = z.Tree.Prev(wildcard(rr))
+ fmt.Printf("%+v\n", elem.All())
}
- // NSECs!
- return nil, []dns.RR{z.SOA}, nil, Success
+
+ return nil, ret, nil, Success
}
func (z *Zone) lookupSOA(do bool) ([]dns.RR, []dns.RR, []dns.RR, Result) {
@@ -136,3 +144,12 @@ func signatureForSubType(rrs []dns.RR, subtype uint16) []dns.RR {
}
return sigs
}
+
+// wildcard returns rr with the first label exchanged for a wildcard '*'.
+func wildcard(rr dns.RR) dns.RR {
+ // root label, TODO(miek)
+ s := rr.Header().Name
+ i, _ := dns.NextLabel(s, 0)
+ rr.Header().Name = "*" + s[i:]
+ return rr
+}
generated by cgit v1.2.3 (git 2.46.0) at 2025-08-16 04:30:43 +0000