63 lines
1.4 KiB
Go
63 lines
1.4 KiB
Go
// Read a list of reversed hostnames, separated by newlines. Print only those
|
|
// that are rejected by the current policy.
|
|
|
|
package notmain
|
|
|
|
import (
|
|
"bufio"
|
|
"flag"
|
|
"fmt"
|
|
"io"
|
|
"log"
|
|
"os"
|
|
|
|
"github.com/letsencrypt/boulder/cmd"
|
|
"github.com/letsencrypt/boulder/identifier"
|
|
"github.com/letsencrypt/boulder/policy"
|
|
"github.com/letsencrypt/boulder/sa"
|
|
)
|
|
|
|
func init() {
|
|
cmd.RegisterCommand("reversed-hostname-checker", main)
|
|
}
|
|
|
|
func main() {
|
|
inputFilename := flag.String("input", "", "File containing a list of reversed hostnames to check, newline separated. Defaults to stdin")
|
|
policyFile := flag.String("policy", "test/hostname-policy.yaml", "File containing a hostname policy in yaml.")
|
|
flag.Parse()
|
|
|
|
var input io.Reader
|
|
var err error
|
|
if *inputFilename == "" {
|
|
input = os.Stdin
|
|
} else {
|
|
input, err = os.Open(*inputFilename)
|
|
if err != nil {
|
|
log.Fatalf("opening %s: %s", *inputFilename, err)
|
|
}
|
|
}
|
|
|
|
scanner := bufio.NewScanner(input)
|
|
logger := cmd.NewLogger(cmd.SyslogConfig{StdoutLevel: 7})
|
|
pa, err := policy.New(nil, logger)
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
err = pa.SetHostnamePolicyFile(*policyFile)
|
|
if err != nil {
|
|
log.Fatalf("reading %s: %s", *policyFile, err)
|
|
}
|
|
var errors bool
|
|
for scanner.Scan() {
|
|
n := sa.ReverseName(scanner.Text())
|
|
err := pa.WillingToIssueWildcards([]identifier.ACMEIdentifier{identifier.DNSIdentifier(n)})
|
|
if err != nil {
|
|
errors = true
|
|
fmt.Printf("%s: %s\n", n, err)
|
|
}
|
|
}
|
|
if errors {
|
|
os.Exit(1)
|
|
}
|
|
}
|