From 1405e6ab474ba2d356e6005c857a673afc736abe Mon Sep 17 00:00:00 2001 From: Joona Hoikkala Date: Thu, 22 Dec 2022 12:52:38 +0200 Subject: [PATCH] Refactor core --- acmetxt.go | 93 --- api.go | 113 ---- config.cfg | 20 +- dns.go | 245 -------- go.mod | 75 ++- go.sum | 560 +++--------------- main.go | 259 +++----- main_test.go | 110 ---- pkg/acmedns/acmetxt.go | 46 ++ pkg/acmedns/cidrslice.go | 35 ++ pkg/acmedns/config.go | 48 ++ pkg/acmedns/interfaces.go | 22 + types.go => pkg/acmedns/types.go | 43 +- pkg/acmedns/util.go | 31 + pkg/api/api.go | 148 +++++ auth.go => pkg/api/auth.go | 55 +- .../api/challengeprovider.go | 14 +- pkg/api/healthcheck.go | 12 + pkg/api/register.go | 75 +++ pkg/api/update.go | 55 ++ validation.go => pkg/api/util.go | 57 +- db.go => pkg/database/db.go | 105 ++-- db_test.go => pkg/database/db_test.go | 0 pkg/nameserver/handler.go | 162 +++++ pkg/nameserver/initialize.go | 86 +++ pkg/nameserver/parseconfig.go | 51 ++ pkg/nameserver/util.go | 12 + pkg/nameserver/validation.go | 16 + util.go | 119 ---- 29 files changed, 1188 insertions(+), 1479 deletions(-) delete mode 100644 acmetxt.go delete mode 100644 api.go delete mode 100644 dns.go delete mode 100644 main_test.go create mode 100644 pkg/acmedns/acmetxt.go create mode 100644 pkg/acmedns/cidrslice.go create mode 100644 pkg/acmedns/config.go create mode 100644 pkg/acmedns/interfaces.go rename types.go => pkg/acmedns/types.go (69%) create mode 100644 pkg/acmedns/util.go create mode 100644 pkg/api/api.go rename auth.go => pkg/api/auth.go (50%) rename challengeprovider.go => pkg/api/challengeprovider.go (79%) create mode 100644 pkg/api/healthcheck.go create mode 100644 pkg/api/register.go create mode 100644 pkg/api/update.go rename validation.go => pkg/api/util.go (68%) rename db.go => pkg/database/db.go (70%) rename db_test.go => pkg/database/db_test.go (100%) create mode 100644 pkg/nameserver/handler.go create mode 100644 pkg/nameserver/initialize.go create mode 100644 pkg/nameserver/parseconfig.go create mode 100644 pkg/nameserver/util.go create mode 100644 pkg/nameserver/validation.go delete mode 100644 util.go diff --git a/acmetxt.go b/acmetxt.go deleted file mode 100644 index 63454a6..0000000 --- a/acmetxt.go +++ /dev/null @@ -1,93 +0,0 @@ -package main - -import ( - "encoding/json" - "net" - - "github.com/google/uuid" - log "github.com/sirupsen/logrus" -) - -// ACMETxt is the default structure for the user controlled record -type ACMETxt struct { - Username uuid.UUID - Password string - ACMETxtPost - AllowFrom cidrslice -} - -// ACMETxtPost holds the DNS part of the ACMETxt struct -type ACMETxtPost struct { - Subdomain string `json:"subdomain"` - Value string `json:"txt"` -} - -// cidrslice is a list of allowed cidr ranges -type cidrslice []string - -func (c *cidrslice) JSON() string { - ret, _ := json.Marshal(c.ValidEntries()) - return string(ret) -} - -func (c *cidrslice) isValid() error { - for _, v := range *c { - _, _, err := net.ParseCIDR(sanitizeIPv6addr(v)) - if err != nil { - return err - } - } - return nil -} - -func (c *cidrslice) ValidEntries() []string { - valid := []string{} - for _, v := range *c { - _, _, err := net.ParseCIDR(sanitizeIPv6addr(v)) - if err == nil { - valid = append(valid, sanitizeIPv6addr(v)) - } - } - return valid -} - -// Check if IP belongs to an allowed net -func (a ACMETxt) allowedFrom(ip string) bool { - remoteIP := net.ParseIP(ip) - // Range not limited - if len(a.AllowFrom.ValidEntries()) == 0 { - return true - } - log.WithFields(log.Fields{"ip": remoteIP}).Debug("Checking if update is permitted from IP") - for _, v := range a.AllowFrom.ValidEntries() { - _, vnet, _ := net.ParseCIDR(v) - if vnet.Contains(remoteIP) { - return true - } - } - return false -} - -// Go through list (most likely from headers) to check for the IP. -// Reason for this is that some setups use reverse proxy in front of acme-dns -func (a ACMETxt) allowedFromList(ips []string) bool { - if len(ips) == 0 { - // If no IP provided, check if no whitelist present (everyone has access) - return a.allowedFrom("") - } - for _, v := range ips { - if a.allowedFrom(v) { - return true - } - } - return false -} - -func newACMETxt() ACMETxt { - var a = ACMETxt{} - password := generatePassword(40) - a.Username = uuid.New() - a.Password = password - a.Subdomain = uuid.New().String() - return a -} diff --git a/api.go b/api.go deleted file mode 100644 index 864256c..0000000 --- a/api.go +++ /dev/null @@ -1,113 +0,0 @@ -package main - -import ( - "encoding/json" - "fmt" - "io/ioutil" - "net/http" - - "github.com/julienschmidt/httprouter" - log "github.com/sirupsen/logrus" -) - -// RegResponse is a struct for registration response JSON -type RegResponse struct { - Username string `json:"username"` - Password string `json:"password"` - Fulldomain string `json:"fulldomain"` - Subdomain string `json:"subdomain"` - Allowfrom []string `json:"allowfrom"` -} - -func webRegisterPost(w http.ResponseWriter, r *http.Request, _ httprouter.Params) { - var regStatus int - var reg []byte - var err error - aTXT := ACMETxt{} - bdata, _ := ioutil.ReadAll(r.Body) - if len(bdata) > 0 { - err = json.Unmarshal(bdata, &aTXT) - if err != nil { - regStatus = http.StatusBadRequest - reg = jsonError("malformed_json_payload") - w.Header().Set("Content-Type", "application/json") - w.WriteHeader(regStatus) - _, _ = w.Write(reg) - return - } - } - - // Fail with malformed CIDR mask in allowfrom - err = aTXT.AllowFrom.isValid() - if err != nil { - regStatus = http.StatusBadRequest - reg = jsonError("invalid_allowfrom_cidr") - w.Header().Set("Content-Type", "application/json") - w.WriteHeader(regStatus) - _, _ = w.Write(reg) - return - } - - // Create new user - nu, err := DB.Register(aTXT.AllowFrom) - if err != nil { - errstr := fmt.Sprintf("%v", err) - reg = jsonError(errstr) - regStatus = http.StatusInternalServerError - log.WithFields(log.Fields{"error": err.Error()}).Debug("Error in registration") - } else { - log.WithFields(log.Fields{"user": nu.Username.String()}).Debug("Created new user") - regStruct := RegResponse{nu.Username.String(), nu.Password, nu.Subdomain + "." + Config.General.Domain, nu.Subdomain, nu.AllowFrom.ValidEntries()} - regStatus = http.StatusCreated - reg, err = json.Marshal(regStruct) - if err != nil { - regStatus = http.StatusInternalServerError - reg = jsonError("json_error") - log.WithFields(log.Fields{"error": "json"}).Debug("Could not marshal JSON") - } - } - w.Header().Set("Content-Type", "application/json") - w.WriteHeader(regStatus) - _, _ = w.Write(reg) -} - -func webUpdatePost(w http.ResponseWriter, r *http.Request, _ httprouter.Params) { - var updStatus int - var upd []byte - // Get user - a, ok := r.Context().Value(ACMETxtKey).(ACMETxt) - if !ok { - log.WithFields(log.Fields{"error": "context"}).Error("Context error") - } - // NOTE: An invalid subdomain should not happen - the auth handler should - // reject POSTs with an invalid subdomain before this handler. Reject any - // invalid subdomains anyway as a matter of caution. - if !validSubdomain(a.Subdomain) { - log.WithFields(log.Fields{"error": "subdomain", "subdomain": a.Subdomain, "txt": a.Value}).Debug("Bad update data") - updStatus = http.StatusBadRequest - upd = jsonError("bad_subdomain") - } else if !validTXT(a.Value) { - log.WithFields(log.Fields{"error": "txt", "subdomain": a.Subdomain, "txt": a.Value}).Debug("Bad update data") - updStatus = http.StatusBadRequest - upd = jsonError("bad_txt") - } else if validSubdomain(a.Subdomain) && validTXT(a.Value) { - err := DB.Update(a.ACMETxtPost) - if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Debug("Error while trying to update record") - updStatus = http.StatusInternalServerError - upd = jsonError("db_error") - } else { - log.WithFields(log.Fields{"subdomain": a.Subdomain, "txt": a.Value}).Debug("TXT updated") - updStatus = http.StatusOK - upd = []byte("{\"txt\": \"" + a.Value + "\"}") - } - } - w.Header().Set("Content-Type", "application/json") - w.WriteHeader(updStatus) - _, _ = w.Write(upd) -} - -// Endpoint used to check the readiness and/or liveness (health) of the server. -func healthCheck(w http.ResponseWriter, r *http.Request, _ httprouter.Params) { - w.WriteHeader(http.StatusOK) -} diff --git a/config.cfg b/config.cfg index 5fc05cf..a180021 100644 --- a/config.cfg +++ b/config.cfg @@ -9,7 +9,7 @@ protocol = "both" domain = "auth.example.org" # zone name server nsname = "auth.example.org" -# admin email address, where @ is substituted with . +# admin email address, where @ is substituted with . nsadmin = "admin.example.org" # predefined records served in addition to the TXT records = [ @@ -22,11 +22,11 @@ records = [ debug = false [database] -# Database engine to use, sqlite3 or postgres -engine = "sqlite3" +# Database engine to use, sqlite or postgres +engine = "sqlite" # Connection string, filename for sqlite3 and postgres://$username:$password@$host/$db_name for postgres # Please note that the default Docker image uses path /var/lib/acme-dns/acme-dns.db for sqlite3 -connection = "/var/lib/acme-dns/acme-dns.db" +connection = "acme-dns.db" # connection = "postgres://user:password@localhost/acmedns_db" [api] @@ -37,7 +37,7 @@ disable_registration = false # listen port, eg. 443 for default HTTPS port = "443" # possible values: "letsencrypt", "letsencryptstaging", "cert", "none" -tls = "letsencryptstaging" +tls = "none" # only used if tls = "cert" tls_cert_privkey = "/etc/tls/example.org/privkey.pem" tls_cert_fullchain = "/etc/tls/example.org/fullchain.pem" @@ -56,10 +56,10 @@ header_name = "X-Forwarded-For" [logconfig] # logging level: "error", "warning", "info" or "debug" -loglevel = "debug" -# possible values: stdout, TODO file & integrations +loglevel = "info" +# possible values: stdout, file logtype = "stdout" -# file path for logfile TODO -# logfile = "./acme-dns.log" +# file path for logfile +logfile = "./acme-dns.log" # format, either "json" or "text" -logformat = "text" +logformat = "json" diff --git a/dns.go b/dns.go deleted file mode 100644 index a01fb9c..0000000 --- a/dns.go +++ /dev/null @@ -1,245 +0,0 @@ -package main - -import ( - "fmt" - "github.com/miekg/dns" - log "github.com/sirupsen/logrus" - "strings" - "time" -) - -// Records is a slice of ResourceRecords -type Records struct { - Records []dns.RR -} - -// DNSServer is the main struct for acme-dns DNS server -type DNSServer struct { - DB database - Domain string - Server *dns.Server - SOA dns.RR - PersonalKeyAuth string - Domains map[string]Records -} - -// NewDNSServer parses the DNS records from config and returns a new DNSServer struct -func NewDNSServer(db database, addr string, proto string, domain string) *DNSServer { - var server DNSServer - server.Server = &dns.Server{Addr: addr, Net: proto} - if !strings.HasSuffix(domain, ".") { - domain = domain + "." - } - server.Domain = strings.ToLower(domain) - server.DB = db - server.PersonalKeyAuth = "" - server.Domains = make(map[string]Records) - return &server -} - -// Start starts the DNSServer -func (d *DNSServer) Start(errorChannel chan error) { - // DNS server part - dns.HandleFunc(".", d.handleRequest) - log.WithFields(log.Fields{"addr": d.Server.Addr, "proto": d.Server.Net}).Info("Listening DNS") - err := d.Server.ListenAndServe() - if err != nil { - errorChannel <- err - } -} - -// ParseRecords parses a slice of DNS record string -func (d *DNSServer) ParseRecords(config DNSConfig) { - for _, v := range config.General.StaticRecords { - rr, err := dns.NewRR(strings.ToLower(v)) - if err != nil { - log.WithFields(log.Fields{"error": err.Error(), "rr": v}).Warning("Could not parse RR from config") - continue - } - // Add parsed RR - d.appendRR(rr) - } - // Create serial - serial := time.Now().Format("2006010215") - // Add SOA - SOAstring := fmt.Sprintf("%s. SOA %s. %s. %s 28800 7200 604800 86400", strings.ToLower(config.General.Domain), strings.ToLower(config.General.Nsname), strings.ToLower(config.General.Nsadmin), serial) - soarr, err := dns.NewRR(SOAstring) - if err != nil { - log.WithFields(log.Fields{"error": err.Error(), "soa": SOAstring}).Error("Error while adding SOA record") - } else { - d.appendRR(soarr) - d.SOA = soarr - } -} - -func (d *DNSServer) appendRR(rr dns.RR) { - addDomain := rr.Header().Name - _, ok := d.Domains[addDomain] - if !ok { - d.Domains[addDomain] = Records{[]dns.RR{rr}} - } else { - drecs := d.Domains[addDomain] - drecs.Records = append(drecs.Records, rr) - d.Domains[addDomain] = drecs - } - log.WithFields(log.Fields{"recordtype": dns.TypeToString[rr.Header().Rrtype], "domain": addDomain}).Debug("Adding new record to domain") -} - -func (d *DNSServer) handleRequest(w dns.ResponseWriter, r *dns.Msg) { - m := new(dns.Msg) - m.SetReply(r) - - // handle edns0 - opt := r.IsEdns0() - if opt != nil { - if opt.Version() != 0 { - // Only EDNS0 is standardized - m.MsgHdr.Rcode = dns.RcodeBadVers - m.SetEdns0(512, false) - } else { - // We can safely do this as we know that we're not setting other OPT RRs within acme-dns. - m.SetEdns0(512, false) - if r.Opcode == dns.OpcodeQuery { - d.readQuery(m) - } - } - } else { - if r.Opcode == dns.OpcodeQuery { - d.readQuery(m) - } - } - _ = w.WriteMsg(m) -} - -func (d *DNSServer) readQuery(m *dns.Msg) { - var authoritative = false - for _, que := range m.Question { - if rr, rc, auth, err := d.answer(que); err == nil { - if auth { - authoritative = auth - } - m.MsgHdr.Rcode = rc - m.Answer = append(m.Answer, rr...) - } - } - m.MsgHdr.Authoritative = authoritative - if authoritative { - if m.MsgHdr.Rcode == dns.RcodeNameError { - m.Ns = append(m.Ns, d.SOA) - } - } -} - -func (d *DNSServer) getRecord(q dns.Question) ([]dns.RR, error) { - var rr []dns.RR - var cnames []dns.RR - domain, ok := d.Domains[strings.ToLower(q.Name)] - if !ok { - return rr, fmt.Errorf("No records for domain %s", q.Name) - } - for _, ri := range domain.Records { - if ri.Header().Rrtype == q.Qtype { - rr = append(rr, ri) - } - if ri.Header().Rrtype == dns.TypeCNAME { - cnames = append(cnames, ri) - } - } - if len(rr) == 0 { - return cnames, nil - } - return rr, nil -} - -// answeringForDomain checks if we have any records for a domain -func (d *DNSServer) answeringForDomain(name string) bool { - if d.Domain == strings.ToLower(name) { - return true - } - _, ok := d.Domains[strings.ToLower(name)] - return ok -} - -func (d *DNSServer) isAuthoritative(q dns.Question) bool { - if d.answeringForDomain(q.Name) { - return true - } - domainParts := strings.Split(strings.ToLower(q.Name), ".") - for i := range domainParts { - if d.answeringForDomain(strings.Join(domainParts[i:], ".")) { - return true - } - } - return false -} - -// isOwnChallenge checks if the query is for the domain of this acme-dns instance. Used for answering its own ACME challenges -func (d *DNSServer) isOwnChallenge(name string) bool { - domainParts := strings.SplitN(name, ".", 2) - if len(domainParts) == 2 { - if strings.ToLower(domainParts[0]) == "_acme-challenge" { - domain := strings.ToLower(domainParts[1]) - if !strings.HasSuffix(domain, ".") { - domain = domain + "." - } - if domain == d.Domain { - return true - } - } - } - return false -} - -func (d *DNSServer) answer(q dns.Question) ([]dns.RR, int, bool, error) { - var rcode int - var err error - var txtRRs []dns.RR - var authoritative = d.isAuthoritative(q) - if !d.isOwnChallenge(q.Name) && !d.answeringForDomain(q.Name) { - rcode = dns.RcodeNameError - } - r, _ := d.getRecord(q) - if q.Qtype == dns.TypeTXT { - if d.isOwnChallenge(q.Name) { - txtRRs, err = d.answerOwnChallenge(q) - } else { - txtRRs, err = d.answerTXT(q) - } - if err == nil { - r = append(r, txtRRs...) - } - } - if len(r) > 0 { - // Make sure that we return NOERROR if there were dynamic records for the domain - rcode = dns.RcodeSuccess - } - log.WithFields(log.Fields{"qtype": dns.TypeToString[q.Qtype], "domain": q.Name, "rcode": dns.RcodeToString[rcode]}).Debug("Answering question for domain") - return r, rcode, authoritative, nil -} - -func (d *DNSServer) answerTXT(q dns.Question) ([]dns.RR, error) { - var ra []dns.RR - subdomain := sanitizeDomainQuestion(q.Name) - atxt, err := d.DB.GetTXTForDomain(subdomain) - if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Debug("Error while trying to get record") - return ra, err - } - for _, v := range atxt { - if len(v) > 0 { - r := new(dns.TXT) - r.Hdr = dns.RR_Header{Name: q.Name, Rrtype: dns.TypeTXT, Class: dns.ClassINET, Ttl: 1} - r.Txt = append(r.Txt, v) - ra = append(ra, r) - } - } - return ra, nil -} - -// answerOwnChallenge answers to ACME challenge for acme-dns own certificate -func (d *DNSServer) answerOwnChallenge(q dns.Question) ([]dns.RR, error) { - r := new(dns.TXT) - r.Hdr = dns.RR_Header{Name: q.Name, Rrtype: dns.TypeTXT, Class: dns.ClassINET, Ttl: 1} - r.Txt = append(r.Txt, d.PersonalKeyAuth) - return []dns.RR{r}, nil -} diff --git a/go.mod b/go.mod index cde2c50..28b8192 100644 --- a/go.mod +++ b/go.mod @@ -1,40 +1,69 @@ -module github.com/joohoi/acme-dns +module github.com/acme-dns/acme-dns -go 1.16 +go 1.19 require ( - github.com/BurntSushi/toml v1.2.0 + github.com/BurntSushi/toml v1.2.1 github.com/DATA-DOG/go-sqlmock v1.5.0 - github.com/ajg/form v1.5.1 // indirect - github.com/caddyserver/certmagic v0.16.2 + github.com/caddyserver/certmagic v0.17.2 github.com/erikstmartin/go-testdb v0.0.0-20160219214506-8d10e4a1bae5 - github.com/fasthttp-contrib/websocket v0.0.0-20160511215533-1f3b11f56072 // indirect github.com/gavv/httpexpect v2.0.0+incompatible - github.com/go-acme/lego/v3 v3.9.0 + github.com/glebarez/go-sqlite v1.20.0 github.com/google/uuid v1.3.0 - github.com/gorilla/websocket v1.4.2 // indirect - github.com/imkira/go-interpol v1.1.0 // indirect github.com/julienschmidt/httprouter v1.3.0 - github.com/klauspost/cpuid/v2 v2.1.0 // indirect - github.com/lib/pq v1.10.6 - github.com/mattn/go-colorable v0.1.12 // indirect - github.com/mattn/go-sqlite3 v1.14.14 + github.com/lib/pq v1.10.7 github.com/mholt/acmez v1.0.4 github.com/miekg/dns v1.1.50 - github.com/moul/http2curl v1.0.0 // indirect github.com/rs/cors v1.8.2 + github.com/sirupsen/logrus v1.4.2 + go.uber.org/zap v1.24.0 + golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa +) + +require ( + github.com/ajg/form v1.5.1 // indirect + github.com/andybalholm/brotli v1.0.4 // indirect + github.com/davecgh/go-spew v1.1.1 // indirect + github.com/fasthttp-contrib/websocket v0.0.0-20160511215533-1f3b11f56072 // indirect + github.com/fatih/structs v1.1.0 // indirect + github.com/google/go-querystring v1.0.0 // indirect + github.com/gorilla/websocket v1.5.0 // indirect + github.com/imkira/go-interpol v1.1.0 // indirect + github.com/klauspost/compress v1.15.9 // indirect + github.com/klauspost/cpuid/v2 v2.1.1 // indirect + github.com/konsorten/go-windows-terminal-sequences v1.0.2 // indirect + github.com/libdns/libdns v0.2.1 // indirect + github.com/mattn/go-colorable v0.1.13 // indirect + github.com/mattn/go-isatty v0.0.16 // indirect + github.com/moul/http2curl v1.0.0 // indirect + github.com/onsi/ginkgo v1.7.0 // indirect + github.com/onsi/gomega v1.4.3 // indirect + github.com/pkg/errors v0.9.1 // indirect + github.com/pmezard/go-difflib v1.0.0 // indirect + github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0 // indirect github.com/sergi/go-diff v1.2.0 // indirect - github.com/sirupsen/logrus v1.9.0 - github.com/valyala/fasthttp v1.31.0 // indirect + github.com/smartystreets/goconvey v1.6.4 // indirect + github.com/stretchr/testify v1.8.0 // indirect + github.com/valyala/bytebufferpool v1.0.0 // indirect + github.com/valyala/fasthttp v1.43.0 // indirect + github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect + github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect + github.com/xeipuuv/gojsonschema v1.2.0 // indirect github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0 // indirect github.com/yudai/gojsondiff v1.0.0 // indirect github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect github.com/yudai/pp v2.0.1+incompatible // indirect - go.uber.org/atomic v1.9.0 // indirect - go.uber.org/multierr v1.8.0 // indirect - go.uber.org/zap v1.22.0 // indirect - golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa - golang.org/x/net v0.0.0-20220809184613-07c6da5e1ced // indirect - golang.org/x/sys v0.0.0-20220808155132-1c4a2a72c664 // indirect - golang.org/x/tools v0.1.12 // indirect + go.uber.org/atomic v1.7.0 // indirect + go.uber.org/multierr v1.6.0 // indirect + golang.org/x/mod v0.4.2 // indirect + golang.org/x/net v0.0.0-20220906165146-f3363e06e74c // indirect + golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab // indirect + golang.org/x/text v0.3.7 // indirect + golang.org/x/tools v0.1.6-0.20210726203631-07bc1bf47fb2 // indirect + golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect + gopkg.in/yaml.v3 v3.0.1 // indirect + modernc.org/libc v1.21.5 // indirect + modernc.org/mathutil v1.5.0 // indirect + modernc.org/memory v1.4.0 // indirect + modernc.org/sqlite v1.20.0 // indirect ) diff --git a/go.sum b/go.sum index 52539fc..90e8dda 100644 --- a/go.sum +++ b/go.sum @@ -1,92 +1,24 @@ -cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= -cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= -cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU= -cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU= -cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY= -cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc= -cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0= -cloud.google.com/go v0.50.0/go.mod h1:r9sluTvynVuxRIOHXQEHMFffphuXHOMZMycpNR5e6To= -cloud.google.com/go v0.52.0/go.mod h1:pXajvRH/6o3+F9jDHZWQ5PbGhn+o8w9qiu/CffaVdO4= -cloud.google.com/go v0.53.0/go.mod h1:fp/UouUEsRkN6ryDKNW/Upv/JBKnv6WDthjR6+vze6M= -cloud.google.com/go v0.54.0/go.mod h1:1rq2OEkV3YMf6n/9ZvGWI3GWw0VoqH/1x2nd8Is/bPc= -cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o= -cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE= -cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc= -cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE= -cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk= -cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I= -cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw= -cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA= -cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw= -cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0ZeosJ0Rtdos= -cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk= -contrib.go.opencensus.io/exporter/ocagent v0.4.12/go.mod h1:450APlNTSR6FrvC3CTRqYosuDstRB9un7SOx2k/9ckA= -dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU= -github.com/Azure/azure-sdk-for-go v32.4.0+incompatible/go.mod h1:9XXNKU+eRnpl9moKnB4QOLf1HestfXbmab5FXxiDBjc= -github.com/Azure/go-autorest/autorest v0.1.0/go.mod h1:AKyIcETwSUFxIcs/Wnq/C+kwCtlEYGUVd7FPNb2slmg= -github.com/Azure/go-autorest/autorest v0.5.0/go.mod h1:9HLKlQjVBH6U3oDfsXOeVc56THsLPw1L03yban4xThw= -github.com/Azure/go-autorest/autorest/adal v0.1.0/go.mod h1:MeS4XhScH55IST095THyTxElntu7WqB7pNbZo8Q5G3E= -github.com/Azure/go-autorest/autorest/adal v0.2.0/go.mod h1:MeS4XhScH55IST095THyTxElntu7WqB7pNbZo8Q5G3E= -github.com/Azure/go-autorest/autorest/azure/auth v0.1.0/go.mod h1:Gf7/i2FUpyb/sGBLIFxTBzrNzBo7aPXXE3ZVeDRwdpM= -github.com/Azure/go-autorest/autorest/azure/cli v0.1.0/go.mod h1:Dk8CUAt/b/PzkfeRsWzVG9Yj3ps8mS8ECztu43rdU8U= -github.com/Azure/go-autorest/autorest/date v0.1.0/go.mod h1:plvfp3oPSKwf2DNjlBjWF/7vwR+cUD/ELuzDCXwHUVA= -github.com/Azure/go-autorest/autorest/mocks v0.1.0/go.mod h1:OTyCOPRA2IgIlWxVYxBee2F5Gr4kF2zd2J5cFRaIDN0= -github.com/Azure/go-autorest/autorest/to v0.2.0/go.mod h1:GunWKJp1AEqgMaGLV+iocmRAJWqST1wQYhyyjXJ3SJc= -github.com/Azure/go-autorest/autorest/validation v0.1.0/go.mod h1:Ha3z/SqBeaalWQvokg3NZAlQTalVMtOIAs1aGK7G6u8= -github.com/Azure/go-autorest/logger v0.1.0/go.mod h1:oExouG+K6PryycPJfVSxi/koC6LSNgds39diKLz7Vrc= -github.com/Azure/go-autorest/tracing v0.1.0/go.mod h1:ROEEAFwXycQw7Sn3DXNtEedEvdeRAgDr0izn4z5Ij88= -github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= -github.com/BurntSushi/toml v1.2.0 h1:Rt8g24XnyGTyglgET/PRUNlrUeu9F5L+7FilkXfZgs0= -github.com/BurntSushi/toml v1.2.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ= -github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo= +github.com/BurntSushi/toml v1.2.1 h1:9F2/+DoOYIOksmaJFPw1tGFy1eDnIJXg+UHjuD8lTak= +github.com/BurntSushi/toml v1.2.1/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ= github.com/DATA-DOG/go-sqlmock v1.5.0 h1:Shsta01QNfFxHCfpW6YH2STWB0MudeXXEWMr20OEh60= github.com/DATA-DOG/go-sqlmock v1.5.0/go.mod h1:f/Ixk793poVmq4qj/V1dPUg2JEAKC73Q5eFN3EC/SaM= -github.com/OpenDNS/vegadns2client v0.0.0-20180418235048-a3fa4a771d87/go.mod h1:iGLljf5n9GjT6kc0HBvyI1nOKnGQbNB66VzSNbK5iks= -github.com/Shopify/sarama v1.19.0/go.mod h1:FVkBWblsNy7DGZRfXLU0O9RCGt5g3g3yEuWXgklEdEo= -github.com/Shopify/toxiproxy v2.1.4+incompatible/go.mod h1:OXgGpZ6Cli1/URJOF1DMxUHB2q5Ap20/P/eIdh4G0pI= github.com/ajg/form v1.5.1 h1:t9c7v8JUKu/XxOGBU0yjNpaMloxGEJhUkqFRq0ibGeU= github.com/ajg/form v1.5.1/go.mod h1:uL1WgH+h2mgNtvBq0339dVnzXdBETtL2LeUXaIv25UY= -github.com/akamai/AkamaiOPEN-edgegrid-golang v0.9.18/go.mod h1:L+HB2uBoDgi3+r1pJEJcbGwyyHhd2QXaGsKLbDwtm8Q= -github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc= -github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0= -github.com/aliyun/alibaba-cloud-sdk-go v1.61.112/go.mod h1:pUKYbK5JQ+1Dfxk80P0qxGqe5dkxDoabbZS7zOcouyA= -github.com/andybalholm/brotli v1.0.2 h1:JKnhI/XQ75uFBTiuzXpzFrUriDPiZjlOSzh6wXogP0E= -github.com/andybalholm/brotli v1.0.2/go.mod h1:loMXtMfwqflxFJPmdbJO0a3KNoPuLBgiu3qAvBg8x/Y= -github.com/apache/thrift v0.12.0/go.mod h1:cp2SuWMxlEZw2r+iP2GNCdIi4C1qmUzdZFSVb+bacwQ= -github.com/aws/aws-sdk-go v1.30.20/go.mod h1:5zCpMtNQVjRREroY7sYe8lOMRSxkhG6MZveU8YkpAk0= +github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY= +github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig= github.com/benbjohnson/clock v1.1.0 h1:Q92kusRqC1XV2MjkWETPvjJVqKetz1OzxZB7mHJLju8= github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA= -github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q= -github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8= -github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw= -github.com/boombuler/barcode v1.0.1-0.20190219062509-6c824513bacc/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8= -github.com/caddyserver/certmagic v0.16.2 h1:k2n3LkkUG3aMUK/kckMuF9/0VFo+0FtMX3drPYESbmQ= -github.com/caddyserver/certmagic v0.16.2/go.mod h1:PgLIr/dSJa+WA7t7z6Je5xuS/e5A/GFCPHRuZ1QP+MQ= -github.com/cenkalti/backoff/v4 v4.0.0/go.mod h1:eEew/i+1Q6OrCDZh3WiXYv3+nJwBASZ8Bog/87DQnVg= -github.com/census-instrumentation/opencensus-proto v0.2.0/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU= -github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU= -github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI= -github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI= -github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU= -github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw= -github.com/cloudflare/cloudflare-go v0.10.2/go.mod h1:qhVI5MKwBGhdNU89ZRz2plgYutcJ5PCekLxXn56w6SY= -github.com/cpu/goacmedns v0.0.2/go.mod h1:4MipLkI+qScwqtVxcNO6okBhbgRrr7/tKXUSgSL0teQ= -github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU= +github.com/caddyserver/certmagic v0.17.2 h1:o30seC1T/dBqBCNNGNHWwj2i5/I/FMjBbTAhjADP3nE= +github.com/caddyserver/certmagic v0.17.2/go.mod h1:ouWUuC490GOLJzkyN35eXfV8bSbwMwSf4bdhkIxtdQE= +github.com/chzyer/logex v1.2.0/go.mod h1:9+9sk7u7pGNWYMkh0hdiL++6OeibzJccyQU4p4MedaY= +github.com/chzyer/readline v1.5.0/go.mod h1:x22KAscuvRqlLoK9CsoYsmxoXZMMFVyOl86cAH8qUic= +github.com/chzyer/test v0.0.0-20210722231415-061457976a23/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU= github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c= github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= -github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZmtrrCbhqsmaPHjLKYnJCaQ= -github.com/dimchansky/utfbom v1.1.0/go.mod h1:rO41eb7gLfo8SF1jd9F8HplJm1Fewwi4mQvIirEdv+8= -github.com/dnaeon/go-vcr v0.0.0-20180814043457-aafff18a5cc2/go.mod h1:aBB1+wY4s93YsC3HHjMBMrwTj2R9FHDzUr9KyGc8n1E= -github.com/dnsimple/dnsimple-go v0.60.0/go.mod h1:O5TJ0/U6r7AfT8niYNlmohpLbCSG+c71tQlGr9SeGrg= -github.com/eapache/go-resiliency v1.1.0/go.mod h1:kFI+JgMyC7bLPUVY133qvEBtVayf5mFgVsvEsIPBvNs= -github.com/eapache/go-xerial-snappy v0.0.0-20180814174437-776d5712da21/go.mod h1:+020luEh2TKB4/GOp8oxxtq0Daoen/Cii55CzbTV6DU= -github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I= -github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= -github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c= +github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk= github.com/erikstmartin/go-testdb v0.0.0-20160219214506-8d10e4a1bae5 h1:Yzb9+7DPaBjB8zlTR87/ElzFsnQfuHnVUVqpZZIcV5Y= github.com/erikstmartin/go-testdb v0.0.0-20160219214506-8d10e4a1bae5/go.mod h1:a2zkGnVExMxdzMo3M0Hi/3sEU+cWnZpSni0O6/Yb/P0= -github.com/exoscale/egoscale v0.18.1/go.mod h1:Z7OOdzzTOz1Q1PjQXumlz9Wn/CddH0zSYdCF3rnBKXE= github.com/fasthttp-contrib/websocket v0.0.0-20160511215533-1f3b11f56072 h1:DddqAaWDpywytcG8w/qoQ5sAN8X12d3Z3koB0C3Rxsc= github.com/fasthttp-contrib/websocket v0.0.0-20160511215533-1f3b11f56072/go.mod h1:duJ4Jxv5lDcvg4QuQr0oowTf7dz4/CR8NtyCooz9HL8= github.com/fatih/structs v1.1.0 h1:Q7juDM0QtcnhCpeyLGQKyg4TOIghuNXrkL32pHAUMxo= @@ -94,226 +26,94 @@ github.com/fatih/structs v1.1.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo= github.com/gavv/httpexpect v2.0.0+incompatible h1:1X9kcRshkSKEjNJJxX9Y9mQ5BRfbxU5kORdjhlA1yX8= github.com/gavv/httpexpect v2.0.0+incompatible/go.mod h1:x+9tiU1YnrOvnB725RkpoLv1M62hOWzwo5OXotisrKc= -github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04= -github.com/go-acme/lego/v3 v3.9.0 h1:Kyvg2GGqRJHfK2Stu57M45TDTx0y1bsxLH7lpeP3n0A= -github.com/go-acme/lego/v3 v3.9.0/go.mod h1:va0cvQpxpJ3u2OA534L8TDn+lsr2oujLzPckLOLnUGQ= -github.com/go-cmd/cmd v1.0.5/go.mod h1:y8q8qlK5wQibcw63djSl/ntiHUHXHGdCkPk0j4QeW4s= -github.com/go-errors/errors v1.0.1/go.mod h1:f4zRHt4oKfwPJE5k8C9vpYG+aDHdBFUsgrm6/TyX73Q= -github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU= -github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8= -github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8= -github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as= -github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE= -github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk= -github.com/go-sql-driver/mysql v1.5.0/go.mod h1:DCzpHaOWr8IXmIStZouvnhqoel9Qv2LBy8hT2VhHyBg= -github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY= -github.com/gofrs/uuid v3.2.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM= -github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ= -github.com/gogo/protobuf v1.2.0/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ= -github.com/goji/httpauth v0.0.0-20160601135302-2da839ab0f4d/go.mod h1:nnjvkQ9ptGaCkuDUx6wNykzzlUixGxvkme+H/lnzb+A= -github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q= -github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc= -github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc= -github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc= -github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A= -github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A= -github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y= -github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw= -github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw= +github.com/glebarez/go-sqlite v1.20.0 h1:6D9uRXq3Kd+W7At+hOU2eIAeahv6qcYfO8jzmvb4Dr8= +github.com/glebarez/go-sqlite v1.20.0/go.mod h1:uTnJoqtwMQjlULmljLT73Cg7HB+2X6evsBHODyyq1ak= github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= -github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= -github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= -github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw= -github.com/golang/protobuf v1.3.4/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw= -github.com/golang/snappy v0.0.0-20180518054509-2e65f85255db/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q= -github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q= -github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ= -github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ= -github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M= -github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= -github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= -github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= +github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= +github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY= github.com/google/go-querystring v1.0.0 h1:Xkwi/a1rcvNg1PPYe5vI8GbeBY/jrVuDX5ASuANWTrk= github.com/google/go-querystring v1.0.0/go.mod h1:odCYkC5MyYFN7vkCjXpyrEuKhc/BUO6wN/zVPAxq5ck= -github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg= -github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs= -github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc= -github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc= -github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM= -github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM= -github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM= -github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI= -github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= +github.com/google/pprof v0.0.0-20221118152302-e6195bd50e26/go.mod h1:dDKJzRmX4S37WGHujM7tX//fmj1uioxKzKxz3lo4HJo= github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I= github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= -github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg= -github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk= -github.com/gophercloud/gophercloud v0.6.1-0.20191122030953-d8ac278c1c9d/go.mod h1:ozGNgr9KYOVATV5jsgHl/ceCDXGuguqOZAzoQ/2vcNM= -github.com/gophercloud/gophercloud v0.7.0/go.mod h1:gmC5oQqMDOMO1t1gq5DquX/yAU808e/4mzjjDA76+Ss= -github.com/gophercloud/utils v0.0.0-20200508015959-b0167b94122c/go.mod h1:ehWUbLQJPqS0Ep+CxeD559hsm9pthPXadJNKwZkp43w= github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1 h1:EGx4pi6eqNxGaHF6qqu48+N2wcFQ5qg5FXgOdqsJ5d8= github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY= -github.com/gorilla/context v1.1.1/go.mod h1:kBGZzfjB9CEq2AlWe17Uuf7NDRt0dE0s8S51q0aT7Yg= -github.com/gorilla/mux v1.6.2/go.mod h1:1lud6UwP+6orDFRuTfBEV8e9/aOM/c4fVVCaMa2zaAs= -github.com/gorilla/mux v1.7.3/go.mod h1:1lud6UwP+6orDFRuTfBEV8e9/aOM/c4fVVCaMa2zaAs= -github.com/gorilla/websocket v1.4.2 h1:+/TMaTYc4QFitKJxsQ7Yye35DkWvkdLcvGKqM+x0Ufc= -github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE= -github.com/grpc-ecosystem/grpc-gateway v1.8.5/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY= -github.com/h2non/parth v0.0.0-20190131123155-b4df798d6542/go.mod h1:Ow0tF8D4Kplbc8s8sSb3V2oUCygFHVp8gC3Dn6U4MNI= -github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80= -github.com/hashicorp/go-hclog v0.9.2/go.mod h1:5CU+agLiy3J7N7QjHK5d05KxGsuXiQLrjA0H7acj2lQ= -github.com/hashicorp/go-retryablehttp v0.6.6/go.mod h1:vAew36LZh98gCBJNLH42IQ1ER/9wtLZZ8meHqQvEYWY= -github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro= -github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8= -github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8= +github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc= +github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE= github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI= github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU= -github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc= -github.com/iij/doapi v0.0.0-20190504054126-0bbf12d6d7df/go.mod h1:QMZY7/J/KSQEhKWFeDesPjMj+wCHReeknARU3wqlyN4= +github.com/ianlancetaylor/demangle v0.0.0-20220319035150-800ac71e25c2/go.mod h1:aYm2/VgdVmcIU8iMfdMvDMsRAQjcfZSKFby6HOFvi/w= github.com/imkira/go-interpol v1.1.0 h1:KIiKr0VSG2CUW1hl1jpiyuzuJeKUUpC8iM1AIE7N1Vk= github.com/imkira/go-interpol v1.1.0/go.mod h1:z0h2/2T3XF8kyEPpRgJ3kmNv+C43p+I/CoI+jC3w2iA= -github.com/jmespath/go-jmespath v0.0.0-20180206201540-c2b33e8439af/go.mod h1:Nht3zPeWKUH0NzdCt2Blrr5ys8VGpn0CEB0cQHVjt7k= -github.com/jmespath/go-jmespath v0.3.0/go.mod h1:9QtRXoHjLGCJ5IBSaohpXITPlowMeeYCZ7fLUTSywik= -github.com/json-iterator/go v1.1.5/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU= -github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU= -github.com/json-iterator/go v1.1.7/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4= -github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU= -github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk= github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo= github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU= -github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w= github.com/julienschmidt/httprouter v1.3.0 h1:U0609e9tgbseu3rBINet9P48AI/D3oJs4dN7jwJOQ1U= github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM= -github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck= -github.com/klauspost/compress v1.13.4 h1:0zhec2I8zGnjWcKyLl6i3gPqKANCCn5e9xmviEEeX6s= -github.com/klauspost/compress v1.13.4/go.mod h1:8dP1Hq4DHOhN9w426knH3Rhby4rFm6D8eO+e+Dq5Gzg= -github.com/klauspost/cpuid/v2 v2.0.11/go.mod h1:g2LTdtYhdyuGPqyWyv7qRAmj1WBqxuObKfj5c0PQa7c= -github.com/klauspost/cpuid/v2 v2.1.0 h1:eyi1Ad2aNJMW95zcSbmGg7Cg6cq3ADwLpMAP96d8rF0= -github.com/klauspost/cpuid/v2 v2.1.0/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY= -github.com/kolo/xmlrpc v0.0.0-20200310150728-e0350524596b/go.mod h1:o03bZfuBwAXHetKXuInt4S7omeXUu62/A845kiycsSQ= +github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51/go.mod h1:CzGEWj7cYgsdH8dAjBGEr58BoE7ScuLd+fwFZ44+/x8= +github.com/klauspost/compress v1.15.9 h1:wKRjX6JRtDdrE9qwa4b/Cip7ACOshUI4smpCQanqjSY= +github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU= +github.com/klauspost/cpuid/v2 v2.1.1 h1:t0wUqjowdm8ezddV5k0tLWVklVuvLJpoHeb4WBdydm0= +github.com/klauspost/cpuid/v2 v2.1.1/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY= github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= +github.com/konsorten/go-windows-terminal-sequences v1.0.2 h1:DB17ag19krx9CFsz4o3enTrPXyIXCl+2iCXH/aMAp9s= github.com/konsorten/go-windows-terminal-sequences v1.0.2/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= -github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc= github.com/kr/pretty v0.1.0 h1:L/CwN0zerZDmRFUapSPitk6f+Q3+0za1rQkzVuMiMFI= github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo= github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ= github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE= github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI= -github.com/labbsr0x/bindman-dns-webhook v1.0.2/go.mod h1:p6b+VCXIR8NYKpDr8/dg1HKfQoRHCdcsROXKvmoehKA= -github.com/labbsr0x/goh v1.0.1/go.mod h1:8K2UhVoaWXcCU7Lxoa2omWnC8gyW8px7/lmO61c027w= -github.com/lib/pq v1.10.6 h1:jbk+ZieJ0D7EVGJYpL9QTz7/YW6UHbmdnZWYyK5cdBs= -github.com/lib/pq v1.10.6/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o= +github.com/lib/pq v1.10.7 h1:p7ZhMD+KsSRozJr34udlUrhboJwWAgCg34+/ZZNvZZw= +github.com/lib/pq v1.10.7/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o= github.com/libdns/libdns v0.2.1 h1:Wu59T7wSHRgtA0cfxC+n1c/e+O3upJGWytknkmFEDis= github.com/libdns/libdns v0.2.1/go.mod h1:yQCXzk1lEZmmCPa857bnk4TsOiqYasqpyOEeSObbb40= -github.com/linode/linodego v0.10.0/go.mod h1:cziNP7pbvE3mXIPneHj0oRY8L1WtGEIKlZ8LANE4eXA= -github.com/liquidweb/liquidweb-go v1.6.0/go.mod h1:UDcVnAMDkZxpw4Y7NOHkqoeiGacVLEIG/i5J9cyixzQ= -github.com/mattn/go-colorable v0.1.12 h1:jF+Du6AlPIjs2BiUiQlKOX0rt3SujHxPnksPKZbaA40= -github.com/mattn/go-colorable v0.1.12/go.mod h1:u5H1YNBxpqRaxsYJYSkiCWKzEfiAb1Gb520KVy5xxl4= -github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4= -github.com/mattn/go-isatty v0.0.14 h1:yVuAays6BHfxijgZPzw+3Zlu5yQgKGP2/hcQbHb7S9Y= -github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94= -github.com/mattn/go-runewidth v0.0.2/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU= -github.com/mattn/go-runewidth v0.0.4/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU= -github.com/mattn/go-sqlite3 v1.14.14 h1:qZgc/Rwetq+MtyE18WhzjokPD93dNqLGNT3QJuLvBGw= -github.com/mattn/go-sqlite3 v1.14.14/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU= -github.com/mattn/go-tty v0.0.0-20180219170247-931426f7535a/go.mod h1:XPvLUNfbS4fJH25nqRHfWLMa1ONC8Amw+mIA639KxkE= -github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0= +github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA= +github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg= +github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ= +github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM= +github.com/mattn/go-sqlite3 v1.14.15/go.mod h1:2eHXhiwb8IkHr+BDWZGa96P6+rkvnG63S2DGjv9HUNg= github.com/mholt/acmez v1.0.4 h1:N3cE4Pek+dSolbsofIkAYz6H1d3pE+2G0os7QHslf80= github.com/mholt/acmez v1.0.4/go.mod h1:qFGLZ4u+ehWINeJZjzPlsnjJBCPAADWTcIqE/7DAYQY= -github.com/miekg/dns v1.1.27/go.mod h1:KNUDUusw/aVsxyTYZM1oqvCicbwhgbNgztCETuNZ7xM= -github.com/miekg/dns v1.1.46/go.mod h1:e3IlAVfNqAllflbibAZEWOXOQ+Ynzk/dDozDxY7XnME= github.com/miekg/dns v1.1.50 h1:DQUfb9uc6smULcREF09Uc+/Gd46YWqJd5DbpPE9xkcA= github.com/miekg/dns v1.1.50/go.mod h1:e3IlAVfNqAllflbibAZEWOXOQ+Ynzk/dDozDxY7XnME= -github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0= -github.com/mitchellh/go-vnc v0.0.0-20150629162542-723ed9867aed/go.mod h1:3rdaFaCv4AyBgu5ALFM0+tSuHrBh6v692nyQe3ikrq0= -github.com/mitchellh/mapstructure v1.3.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo= -github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q= -github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q= -github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0= -github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0= github.com/moul/http2curl v1.0.0 h1:dRMWoAtb+ePxMlLkrCbAqh4TlPHXvoGUSQ323/9Zahs= github.com/moul/http2curl v1.0.0/go.mod h1:8UbvGypXm98wA/IqH45anm5Y2Z6ep6O31QGOAZ3H0fQ= -github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U= -github.com/namedotcom/go v0.0.0-20180403034216-08470befbe04/go.mod h1:5sN+Lt1CaY4wsPvgQH/jsuJi4XO2ssZbdsIizr4CVC8= -github.com/nbio/st v0.0.0-20140626010706-e9e8d9816f32/go.mod h1:9wM+0iRr9ahx58uYLpLIr5fm8diHn0JbqRycJi6w0Ms= -github.com/nrdcg/auroradns v1.0.1/go.mod h1:y4pc0i9QXYlFCWrhWrUSIETnZgrf4KuwjDIWmmXo3JI= -github.com/nrdcg/desec v0.5.0/go.mod h1:2ejvMazkav1VdDbv2HeQO7w+Ta1CGHqzQr27ZBYTuEQ= -github.com/nrdcg/dnspod-go v0.4.0/go.mod h1:vZSoFSFeQVm2gWLMkyX61LZ8HI3BaqtHZWgPTGKr6KQ= -github.com/nrdcg/goinwx v0.7.0/go.mod h1:4tKJOCi/1lTxuw9/yB2Ez0aojwtUCSkckjc22eALpqE= -github.com/nrdcg/namesilo v0.2.1/go.mod h1:lwMvfQTyYq+BbjJd30ylEG4GPSS6PII0Tia4rRpRiyw= -github.com/olekukonko/tablewriter v0.0.1/go.mod h1:vsDQFd/mU46D+Z4whnwzcISnGGzXWMclvtLoiIKAKIo= github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE= github.com/onsi/ginkgo v1.7.0 h1:WSHQ+IS43OoUrWtD1/bbclrwK8TTH5hzp+umCiuxHgs= github.com/onsi/ginkgo v1.7.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE= github.com/onsi/gomega v1.4.3 h1:RE1xgDvH7imwFD45h+u2SgIfERHlS2yNG4DObb5BSKU= github.com/onsi/gomega v1.4.3/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY= -github.com/openzipkin/zipkin-go v0.1.6/go.mod h1:QgAqvLzwWbR/WpD4A3cGpPtJrZXNIiJc5AZX7/PBEpw= -github.com/oracle/oci-go-sdk v7.0.0+incompatible/go.mod h1:VQb79nF8Z2cwLkLS35ukwStZIg5F66tcBccjip/j888= -github.com/ovh/go-ovh v0.0.0-20181109152953-ba5adb4cf014/go.mod h1:joRatxRJaZBsY3JAOEMcoOp05CnZzsx4scTxi95DHyQ= -github.com/patrickmn/go-cache v2.1.0+incompatible/go.mod h1:3Qf8kWWT7OJRJbdiICTKqZju1ZixQ/KpMGzzAfe6+WQ= -github.com/pierrec/lz4 v2.0.5+incompatible/go.mod h1:pdkljMzZIN41W+lC3N2tnIh5sFi+IEE17M5jbnwPHcY= -github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4= github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM= github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4= -github.com/pquerna/otp v1.2.0/go.mod h1:dkJfzwRKNiegxyNb54X/3fLwhCynbMspSyWKnvi1AEg= -github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw= -github.com/prometheus/client_golang v0.9.3-0.20190127221311-3c4408c8b829/go.mod h1:p2iRAGwDERtqlqzRXnrOVns+ignqQo//hLXqYxZYVNs= -github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo= -github.com/prometheus/client_golang v1.1.0/go.mod h1:I1FGZT9+L76gKKOs5djB6ezCbFQP1xR9D75/vuwEF3g= -github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo= -github.com/prometheus/client_model v0.0.0-20190115171406-56726106282f/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo= -github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= -github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= -github.com/prometheus/common v0.2.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4= -github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4= -github.com/prometheus/common v0.6.0/go.mod h1:eBmuwkDJBwy6iBfxCBob6t6dR6ENT/y+J+Zk0j9GMYc= -github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk= -github.com/prometheus/procfs v0.0.0-20190117184657-bf6a532e95b1/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk= -github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA= -github.com/prometheus/procfs v0.0.3/go.mod h1:4A/X28fw3Fc593LaREMrKMqOKvUAntwMDaekg4FpcdQ= -github.com/rainycape/memcache v0.0.0-20150622160815-1031fa0ce2f2/go.mod h1:7tZKcyumwBO6qip7RNQ5r77yrssm9bfCowcLEBcU5IA= -github.com/rcrowley/go-metrics v0.0.0-20181016184325-3113b8401b8a/go.mod h1:bCqnVzQkZxMG4s8nGwiZ5l3QUCyqpo9Y+/ZMZ9VjZe4= -github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg= -github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4= +github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0 h1:OdAsTTz6OkFY5QxjkYwrChwuRruF69c169dPK26NUlk= +github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo= github.com/rs/cors v1.8.2 h1:KCooALfAYGs415Cwu5ABvv9n9509fSiG5SQJn/AQo4U= github.com/rs/cors v1.8.2/go.mod h1:XyqrcTp5zjWr1wsJ8PIRZssZ8b/WMcMf71DJnit4EMU= -github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM= -github.com/sacloud/libsacloud v1.26.1/go.mod h1:79ZwATmHLIFZIMd7sxA3LwzVy/B77uj3LDoToVTxDoQ= github.com/sergi/go-diff v1.2.0 h1:XU+rvMAioB0UC3q1MFrIQy4Vo5/4VsRDQQXHsEya6xQ= github.com/sergi/go-diff v1.2.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM= -github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc= -github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo= +github.com/sirupsen/logrus v1.4.2 h1:SPIRibHv4MatM3XXNO2BJeFLZwZ2LvZgfQ5+UNI2im4= github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE= -github.com/sirupsen/logrus v1.9.0 h1:trlNQbNUG3OdDrDil03MCb1H2o9nJ1x4/5LYw7byDE0= -github.com/sirupsen/logrus v1.9.0/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ= -github.com/skratchdot/open-golang v0.0.0-20160302144031-75fb7ed4208c/go.mod h1:sUM3LWHvSMaG192sy56D9F7CNvL7jUJVXoqM1QKLnog= github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM= github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc= -github.com/smartystreets/goconvey v0.0.0-20190330032615-68dc04aab96a/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA= github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s= github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA= github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= +github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw= github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs= github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI= github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4= -github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA= -github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= -github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY= github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= -github.com/timewasted/linode v0.0.0-20160829202747-37e84520dcf7/go.mod h1:imsgLplxEC/etjIhdr3dNzV3JeT27LbVu5pYWm0JCBY= -github.com/transip/gotransip/v6 v6.0.2/go.mod h1:pQZ36hWWRahCUXkFWlx9Hs711gLd8J4qdgLdRzmtY+g= -github.com/uber-go/atomic v1.3.2/go.mod h1:/Ct5t2lcmbJ4OSe/waGBoaVvVqtO0bmtfVNex1PFV8g= -github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0= +github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= +github.com/stretchr/testify v1.8.0 h1:pSgiaMZlXftHpm5L7V1+rVB+AZJydKsMxsQBIJw4PKk= +github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU= github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw= github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc= -github.com/valyala/fasthttp v1.31.0 h1:lrauRLII19afgCs2fnWRJ4M5IkV0lo2FqA61uGkNBfE= -github.com/valyala/fasthttp v1.31.0/go.mod h1:2rsYD01CKFrjjsvFxx75KlEUNpWNBY9JWD3K/7o2Cus= +github.com/valyala/fasthttp v1.43.0 h1:Gy4sb32C98fbzVWZlTM1oTMdLWGyvxR03VhM6cBIU4g= +github.com/valyala/fasthttp v1.43.0/go.mod h1:f6VbjjoI3z1NDOZOv17o6RvtRSWxC77seBFc2uWtgiY= github.com/valyala/tcplisten v1.0.0/go.mod h1:T0xQ8SeCZGxckz9qRXTfG43PvQ/mcWh7FwZEA7Ioqkc= -github.com/vultr/govultr v0.4.2/go.mod h1:TUuUizMOFc7z+PNMssb6iGjKjQfpw5arIaOLfocVudQ= github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f h1:J9EGpcZtP0E/raorCMxlFGSTBrsSlaDGf3jU/qvAE2c= github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f/go.mod h1:N2zxlSyiKSe5eX1tZViRH5QA0qijqEDrYZiPEAiq3wU= github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 h1:EzJWgHovont7NscjpAxXsDA8S8BMYve8Y5+7cuRE7R0= @@ -328,301 +128,125 @@ github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 h1:BHyfKlQyqbsFN5p3Ifn github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82/go.mod h1:lgjkn3NuSvDfVJdfcVVdX+jpBxNmX4rDAzaS45IcYoM= github.com/yudai/pp v2.0.1+incompatible h1:Q4//iY4pNF6yPLZIigmvcl7k/bPgrcTPIFIcmawg5bI= github.com/yudai/pp v2.0.1+incompatible/go.mod h1:PuxR/8QJ7cyCkFp/aUDS+JY727OFEZkTdatxwunjIkc= +github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k= -github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY= -go.opencensus.io v0.20.1/go.mod h1:6WKK9ahsWS3RSO+PY9ZHZUfv2irvY6gN279GOPZjmmk= -go.opencensus.io v0.20.2/go.mod h1:6WKK9ahsWS3RSO+PY9ZHZUfv2irvY6gN279GOPZjmmk= -go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU= -go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8= -go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw= -go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw= -go.uber.org/atomic v1.3.2/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE= +go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw= go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc= -go.uber.org/atomic v1.9.0 h1:ECmE8Bn/WFTYwEW/bpKD3M8VtR/zQVbavAoalC1PYyE= -go.uber.org/atomic v1.9.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc= go.uber.org/goleak v1.1.11 h1:wy28qYRKZgnJTxGxvye5/wgWr1EKjmUDGYox5mGlRlI= go.uber.org/goleak v1.1.11/go.mod h1:cwTWslyiVhfpKIDGSZEM2HlOvcqm+tG4zioyIeLoqMQ= +go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4= go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU= -go.uber.org/multierr v1.8.0 h1:dg6GjLku4EH+249NNmoIciG9N/jURbDG+pFlTkhzIC8= -go.uber.org/multierr v1.8.0/go.mod h1:7EAYxJLBy9rStEaz58O2t4Uvip6FSURkq8/ppBp95ak= -go.uber.org/ratelimit v0.0.0-20180316092928-c15da0234277/go.mod h1:2X8KaoNd1J0lZV+PxJk/5+DGbO/tpwLR1m++a7FnB/Y= go.uber.org/zap v1.21.0/go.mod h1:wjWOCqI0f2ZZrJF/UufIOkiC8ii6tm1iqIsLo76RfJw= -go.uber.org/zap v1.22.0 h1:Zcye5DUgBloQ9BaT4qc9BnjOFog5TvBSAGkJ3Nf70c0= -go.uber.org/zap v1.22.0/go.mod h1:H4siCOZOrAolnUPJEkfaSjDqyP+BDS0DdDWzwcgt3+U= -golang.org/x/crypto v0.0.0-20180621125126-a49355c7e3f8/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4= -golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4= +go.uber.org/zap v1.24.0 h1:FiJd5l1UOLj0wCgbSE0rwwXHzEdAZS6hiiSnxJN/D60= +go.uber.org/zap v1.24.0/go.mod h1:2kMP+WWQ8aoFoedH3T2sq6iJ2yDWpHbP0f6MQbS9Gkg= golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w= -golang.org/x/crypto v0.0.0-20190418165655-df01cb2cc480/go.mod h1:WFFai1msRO1wXaEeE5yQxYXgSfI8pQAWXbQop6sCtWE= -golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= -golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= -golang.org/x/crypto v0.0.0-20191202143827-86a70503ff7e/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= -golang.org/x/crypto v0.0.0-20200302210943-78000ba7a073/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= -golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8= -golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= -golang.org/x/crypto v0.0.0-20220210151621-f4118a5b28e2/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4= +golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= +golang.org/x/crypto v0.0.0-20220214200702-86341886e292/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4= golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa h1:zuSxTR4o9y82ebqCUJYNGJbGPo6sKVl54f/TVDObg1c= golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4= -golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= -golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= -golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8= -golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek= -golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136/go.mod h1:JXzH8nQsPlswgeRAPE3MuO9GYsAcnJvJ4vnMwN/5qkY= -golang.org/x/exp v0.0.0-20191129062945-2f5052295587/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4= -golang.org/x/exp v0.0.0-20191227195350-da58074b4299/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4= -golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4= -golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM= -golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU= -golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js= -golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0= -golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= -golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= -golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= -golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= -golang.org/x/lint v0.0.0-20190409202823-959b441ac422/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= -golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= -golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs= -golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY= -golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY= -golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE= -golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o= -golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc= -golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY= -golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg= -golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg= -golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= +golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= +golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo= golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= -golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 h1:6zppjxzCulZykYSLyVDYbneBfbaBIQPYMevg0bEwv2s= -golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4= -golang.org/x/net v0.0.0-20180611182652-db08ff08e862/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20190125091013-d26f9f9a57f3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= -golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= -golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= -golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks= -golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20190923162816-aa69164e4478/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20190930134127-c5a3c61f89f3/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20191126235420-ef20fe5d7933/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg= +golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU= golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM= -golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y= golang.org/x/net v0.0.0-20210726213435-c6fcb2dbf985/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y= golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y= golang.org/x/net v0.0.0-20220630215102-69896b714898/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c= -golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c= -golang.org/x/net v0.0.0-20220809184613-07c6da5e1ced h1:3dYNDff0VT5xj+mbj2XucFst9WKk6PdGOrb9n+SbIvw= -golang.org/x/net v0.0.0-20220809184613-07c6da5e1ced/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk= -golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= -golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= -golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= -golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= -golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= +golang.org/x/net v0.0.0-20220906165146-f3363e06e74c h1:yKufUcDwucU5urd+50/Opbt4AYpqthk7wHpHok8f1lo= +golang.org/x/net v0.0.0-20220906165146-f3363e06e74c/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk= golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20210220032951-036812b2e83c h1:5KslGYwFpkhGh+Q16bwMP3cOontH8FOep7tGV86Y7SQ= golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4 h1:uVc8UZUe6tr40fFVnUP5Oj+veunVezqYl9z7DYw9xzw= -golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sys v0.0.0-20180622082034-63fc586f45fe/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20181107165924-66b7b1311ac8/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20181122145206-62eef0e2fa9b/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190403152447-81d4e9dc473e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190801041406-cbf593c0f2f3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190924154521-2837fb4f24fe/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20191128015809-6d18c012aee9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= +golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20210927094055-39ccf1dd6fa6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220704084225-05e143d24a9e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20220808155132-1c4a2a72c664 h1:v1W7bwXHsnLLloWYTVEdvGvA7BHMeBYsPcF0GLDxIRs= -golang.org/x/sys v0.0.0-20220808155132-1c4a2a72c664/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab h1:2QkjZIsXupsJbJIdSjjUOgWK3aEtzyuh2mPt3l/CkeU= +golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= -golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= -golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= -golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk= golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk= golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ= -golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= -golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= -golang.org/x/time v0.0.0-20190921001708-c4c64cad1fd0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= -golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= -golang.org/x/time v0.0.0-20200630173020-3af7569d3a1e/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ= -golang.org/x/tools v0.0.0-20180828015842-6cd1fcedba52/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= -golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= -golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY= golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= -golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= -golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= golang.org/x/tools v0.0.0-20190328211700-ab21143f2384/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= -golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q= -golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q= -golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q= -golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc= -golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc= -golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc= -golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191113191852-77e3bb0ad9e7/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191115202509-3a792d9c32b2/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191125144606-a911d9008d1f/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191130070609-6e064ea0cf2d/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191203134012-c197fd4bf371/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191216052735-49a3e744a425/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20191216173652-a0e659d51361/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20191227053925-7b8e75db28f4/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200117161641-43d50277825c/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200122220014-bf1340f18c4a/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200130002326-2f3ba24bd6e7/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200204074204-1cc6d1ef6c74/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200207183749-b753a1ba74fa/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200212150539-ea181f53ac56/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28= -golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw= +golang.org/x/tools v0.0.0-20201124115921-2c860bdd6e78/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA= golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk= +golang.org/x/tools v0.1.6-0.20210726203631-07bc1bf47fb2 h1:BonxutuHCTL0rBDnZlKjpGIQFTjyUVTexFOdWkB6Fg0= golang.org/x/tools v0.1.6-0.20210726203631-07bc1bf47fb2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk= -golang.org/x/tools v0.1.12 h1:VveCTK38A2rkS8ZqFY25HIDFscX5X9OoEhJd3quQmXU= -golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= +golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE= golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= -google.golang.org/api v0.3.1/go.mod h1:6wY9I6uQWHQ8EM57III9mq/AjF+i8G65rmVagqKMtkk= -google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE= -google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M= -google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg= -google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg= -google.golang.org/api v0.13.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI= -google.golang.org/api v0.14.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI= -google.golang.org/api v0.15.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI= -google.golang.org/api v0.17.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE= -google.golang.org/api v0.18.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE= -google.golang.org/api v0.20.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE= -google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM= -google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= -google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= -google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0= -google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc= -google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc= -google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE= -google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE= -google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE= -google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE= -google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc= -google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc= -google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8= -google.golang.org/genproto v0.0.0-20191108220845-16a3f7862a1a/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc= -google.golang.org/genproto v0.0.0-20191115194625-c23dd37a84c9/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc= -google.golang.org/genproto v0.0.0-20191216164720-4f79533eabd1/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc= -google.golang.org/genproto v0.0.0-20191230161307-f3c370f40bfb/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc= -google.golang.org/genproto v0.0.0-20200115191322-ca5a22157cba/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc= -google.golang.org/genproto v0.0.0-20200122232147-0452cf42e150/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc= -google.golang.org/genproto v0.0.0-20200204135345-fa8e72b47b90/go.mod h1:GmwEX6Z4W5gMy59cAlVYjN9JhxgbQH6Gn+gFDQe2lzA= -google.golang.org/genproto v0.0.0-20200212174721-66ed5ce911ce/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c= -google.golang.org/genproto v0.0.0-20200224152610-e50cd9704f63/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c= -google.golang.org/genproto v0.0.0-20200305110556-506484158171/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c= -google.golang.org/grpc v1.17.0/go.mod h1:6QZJwpn2B+Zp71q/5VxRsJ6NXXVCE5NRUHRo+f3cWCs= -google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= -google.golang.org/grpc v1.19.1/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= -google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38= -google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM= -google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg= -google.golang.org/grpc v1.26.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk= -google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk= -google.golang.org/grpc v1.27.1/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk= -gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw= gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15 h1:YR8cESwS4TdDjEe65xsg0ogRM/Nc3DYOhEAlW+xobZo= gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= -gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI= gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4= gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys= -gopkg.in/h2non/gock.v1 v1.0.15/go.mod h1:sX4zAkdYX1TRGJ2JY156cFspQn4yRWn6p9EMdODlynE= -gopkg.in/ini.v1 v1.42.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k= -gopkg.in/ini.v1 v1.51.1/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k= -gopkg.in/ns1/ns1-go.v2 v2.0.0-20190730140822-b51389932cbc/go.mod h1:VV+3haRsgDiVLxyifmMBrBIuCWFBPYKbRssXB9z67Hw= -gopkg.in/resty.v1 v1.9.1/go.mod h1:vo52Hzryw9PnPHcJfPsBiFW62XhNx5OczbV9y+IMpgc= -gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo= -gopkg.in/square/go-jose.v2 v2.3.1/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI= gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ= gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw= -gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bli9HhUf9+ttbYbLASfIpnQbh74= gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= -gopkg.in/yaml.v2 v2.2.7/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v2 v2.2.8 h1:obN1ZagJSUGI0Ek/LBmuj4SNLPfIny3KsKFopxRdj10= gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA= gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= -honnef.co/go/tools v0.0.0-20180728063816-88497007e858/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg= -honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k= -rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8= -rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0= -rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA= +lukechampine.com/uint128 v1.1.1/go.mod h1:c4eWIwlEGaxC/+H1VguhU4PHXNWDCDMUlWdIWl2j1gk= +lukechampine.com/uint128 v1.2.0/go.mod h1:c4eWIwlEGaxC/+H1VguhU4PHXNWDCDMUlWdIWl2j1gk= +modernc.org/cc/v3 v3.37.0/go.mod h1:vtL+3mdHx/wcj3iEGz84rQa8vEqR6XM84v5Lcvfph20= +modernc.org/cc/v3 v3.38.1/go.mod h1:vtL+3mdHx/wcj3iEGz84rQa8vEqR6XM84v5Lcvfph20= +modernc.org/cc/v3 v3.40.0/go.mod h1:/bTg4dnWkSXowUO6ssQKnOV0yMVxDYNIsIrzqTFDGH0= +modernc.org/ccgo/v3 v3.0.0-20220904174949-82d86e1b6d56/go.mod h1:YSXjPL62P2AMSxBphRHPn7IkzhVHqkvOnRKAKh+W6ZI= +modernc.org/ccgo/v3 v3.0.0-20220910160915-348f15de615a/go.mod h1:8p47QxPkdugex9J4n9P2tLZ9bK01yngIVp00g4nomW0= +modernc.org/ccgo/v3 v3.16.13-0.20221017192402-261537637ce8/go.mod h1:fUB3Vn0nVPReA+7IG7yZDfjv1TMWjhQP8gCxrFAtL5g= +modernc.org/ccgo/v3 v3.16.13/go.mod h1:2Quk+5YgpImhPjv2Qsob1DnZ/4som1lJTodubIcoUkY= +modernc.org/ccorpus v1.11.6/go.mod h1:2gEUTrWqdpH2pXsmTM1ZkjeSrUWDpjMu2T6m29L/ErQ= +modernc.org/httpfs v1.0.6/go.mod h1:7dosgurJGp0sPaRanU53W4xZYKh14wfzX420oZADeHM= +modernc.org/libc v1.17.4/go.mod h1:WNg2ZH56rDEwdropAJeZPQkXmDwh+JCA1s/htl6r2fA= +modernc.org/libc v1.18.0/go.mod h1:vj6zehR5bfc98ipowQOM2nIDUZnVew/wNC/2tOGS+q0= +modernc.org/libc v1.19.0/go.mod h1:ZRfIaEkgrYgZDl6pa4W39HgN5G/yDW+NRmNKZBDFrk0= +modernc.org/libc v1.20.3/go.mod h1:ZRfIaEkgrYgZDl6pa4W39HgN5G/yDW+NRmNKZBDFrk0= +modernc.org/libc v1.21.4/go.mod h1:przBsL5RDOZajTVslkugzLBj1evTue36jEomFQOoYuI= +modernc.org/libc v1.21.5 h1:xBkU9fnHV+hvZuPSRszN0AXDG4M7nwPLwTWwkYcvLCI= +modernc.org/libc v1.21.5/go.mod h1:przBsL5RDOZajTVslkugzLBj1evTue36jEomFQOoYuI= +modernc.org/mathutil v1.5.0 h1:rV0Ko/6SfM+8G+yKiyI830l3Wuz1zRutdslNoQ0kfiQ= +modernc.org/mathutil v1.5.0/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E= +modernc.org/memory v1.3.0/go.mod h1:PkUhL0Mugw21sHPeskwZW4D6VscE/GQJOnIpCnW6pSU= +modernc.org/memory v1.4.0 h1:crykUfNSnMAXaOJnnxcSzbUGMqkLWjklJKkBK2nwZwk= +modernc.org/memory v1.4.0/go.mod h1:PkUhL0Mugw21sHPeskwZW4D6VscE/GQJOnIpCnW6pSU= +modernc.org/opt v0.1.1/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0= +modernc.org/opt v0.1.3/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0= +modernc.org/sqlite v1.20.0 h1:80zmD3BGkm8BZ5fUi/4lwJQHiO3GXgIUvZRXpoIfROY= +modernc.org/sqlite v1.20.0/go.mod h1:EsYz8rfOvLCiYTy5ZFsOYzoCcRMu98YYkwAcCw5YIYw= +modernc.org/strutil v1.1.3/go.mod h1:MEHNA7PdEnEwLvspRMtWTNnp2nnyvMfkimT1NKNAGbw= +modernc.org/tcl v1.15.0/go.mod h1:xRoGotBZ6dU+Zo2tca+2EqVEeMmOUBzHnhIwq4YrVnE= +modernc.org/token v1.0.1/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM= +modernc.org/z v1.7.0/go.mod h1:hVdgNMh8ggTuRG1rGU8x+xGRFfiQUIAw0ZqlPy8+HyQ= diff --git a/main.go b/main.go index 3c7ff6f..cc621f6 100644 --- a/main.go +++ b/main.go @@ -1,210 +1,109 @@ -//go:build !test -// +build !test - package main import ( - "context" - "crypto/tls" + "encoding/json" "flag" - stdlog "log" - "net/http" + "fmt" + "github.com/acme-dns/acme-dns/pkg/api" + "github.com/acme-dns/acme-dns/pkg/nameserver" "os" - "strings" "syscall" - "github.com/caddyserver/certmagic" - legolog "github.com/go-acme/lego/v3/log" - "github.com/julienschmidt/httprouter" - "github.com/rs/cors" - log "github.com/sirupsen/logrus" + "github.com/acme-dns/acme-dns/pkg/acmedns" + "github.com/acme-dns/acme-dns/pkg/database" + + "go.uber.org/zap" ) +func setupLogging(config acmedns.AcmeDnsConfig) (*zap.Logger, error) { + var logger *zap.Logger + logformat := "console" + if config.Logconfig.Format == "json" { + logformat = "json" + } + outputPath := "stdout" + if config.Logconfig.Logtype == "file" { + outputPath = config.Logconfig.File + } + errorPath := "stderr" + if config.Logconfig.Logtype == "file" { + errorPath = config.Logconfig.File + } + zapConfigJson := fmt.Sprintf(`{ + "level": "%s", + "encoding": "%s", + "outputPaths": ["%s"], + "errorOutputPaths": ["%s"], + "encoderConfig": { + "timeKey": "time", + "messageKey": "msg", + "levelKey": "level", + "levelEncoder": "lowercase", + "timeEncoder": "iso8601" + } + }`, config.Logconfig.Level, logformat, outputPath, errorPath) + var zapCfg zap.Config + if err := json.Unmarshal([]byte(zapConfigJson), &zapCfg); err != nil { + return logger, err + } + logger, err := zapCfg.Build() + return logger, err +} + +func readConfig(configFile string) (acmedns.AcmeDnsConfig, string, error) { + var usedConfigFile string + var config acmedns.AcmeDnsConfig + var err error + if acmedns.FileIsAccessible(configFile) { + usedConfigFile = configFile + config, err = acmedns.ReadConfig(configFile) + } else if acmedns.FileIsAccessible("./config.cfg") { + usedConfigFile = "./config.cfg" + config, err = acmedns.ReadConfig("./config.cfg") + } else { + err = fmt.Errorf("configuration file not found") + } + if err != nil { + err = fmt.Errorf("encountered an error while trying to read configuration file: %s\n", err) + } + return config, usedConfigFile, err +} + func main() { - // Created files are not world writable syscall.Umask(0077) configPtr := flag.String("c", "/etc/acme-dns/config.cfg", "config file location") flag.Parse() // Read global config var err error - if fileIsAccessible(*configPtr) { - log.WithFields(log.Fields{"file": *configPtr}).Info("Using config file") - Config, err = readConfig(*configPtr) - } else if fileIsAccessible("./config.cfg") { - log.WithFields(log.Fields{"file": "./config.cfg"}).Info("Using config file") - Config, err = readConfig("./config.cfg") - } else { - log.Errorf("Configuration file not found.") - os.Exit(1) - } + var logger *zap.Logger + config, usedConfigFile, err := readConfig(*configPtr) if err != nil { - log.Errorf("Encountered an error while trying to read configuration file: %s", err) + fmt.Printf("Error: %s\n", err) os.Exit(1) } - - setupLogging(Config.Logconfig.Format, Config.Logconfig.Level) - - // Open database - newDB := new(acmedb) - err = newDB.Init(Config.Database.Engine, Config.Database.Connection) + logger, err = setupLogging(config) if err != nil { - log.Errorf("Could not open database [%v]", err) + fmt.Printf("Could not set up logging: %s\n", err) os.Exit(1) - } else { - log.Info("Connected to database") } - DB = newDB - defer DB.Close() - + defer logger.Sync() + sugar := logger.Sugar() + sugar.Infow("Using config file", + "file", usedConfigFile) + sugar.Info("Starting up") + db, err := database.Init(&config, sugar) // Error channel for servers errChan := make(chan error, 1) - - // DNS server - dnsservers := make([]*DNSServer, 0) - if strings.HasPrefix(Config.General.Proto, "both") { - // Handle the case where DNS server should be started for both udp and tcp - udpProto := "udp" - tcpProto := "tcp" - if strings.HasSuffix(Config.General.Proto, "4") { - udpProto += "4" - tcpProto += "4" - } else if strings.HasSuffix(Config.General.Proto, "6") { - udpProto += "6" - tcpProto += "6" - } - dnsServerUDP := NewDNSServer(DB, Config.General.Listen, udpProto, Config.General.Domain) - dnsservers = append(dnsservers, dnsServerUDP) - dnsServerUDP.ParseRecords(Config) - dnsServerTCP := NewDNSServer(DB, Config.General.Listen, tcpProto, Config.General.Domain) - dnsservers = append(dnsservers, dnsServerTCP) - // No need to parse records from config again - dnsServerTCP.Domains = dnsServerUDP.Domains - dnsServerTCP.SOA = dnsServerUDP.SOA - go dnsServerUDP.Start(errChan) - go dnsServerTCP.Start(errChan) - } else { - dnsServer := NewDNSServer(DB, Config.General.Listen, Config.General.Proto, Config.General.Domain) - dnsservers = append(dnsservers, dnsServer) - dnsServer.ParseRecords(Config) - go dnsServer.Start(errChan) + api := api.Init(&config, db, sugar, errChan) + dnsservers := nameserver.InitAndStart(&config, db, sugar, errChan) + go api.Start(dnsservers) + if err != nil { + sugar.Error(err) } - - // HTTP API - go startHTTPAPI(errChan, Config, dnsservers) - - // block waiting for error for { err = <-errChan if err != nil { - log.Fatal(err) + sugar.Fatal(err) } } } - -func startHTTPAPI(errChan chan error, config DNSConfig, dnsservers []*DNSServer) { - // Setup http logger - logger := log.New() - logwriter := logger.Writer() - defer logwriter.Close() - // Setup logging for different dependencies to log with logrus - // Certmagic - stdlog.SetOutput(logwriter) - // Lego - legolog.Logger = logger - - api := httprouter.New() - c := cors.New(cors.Options{ - AllowedOrigins: Config.API.CorsOrigins, - AllowedMethods: []string{"GET", "POST"}, - OptionsPassthrough: false, - Debug: Config.General.Debug, - }) - if Config.General.Debug { - // Logwriter for saner log output - c.Log = stdlog.New(logwriter, "", 0) - } - if !Config.API.DisableRegistration { - api.POST("/register", webRegisterPost) - } - api.POST("/update", Auth(webUpdatePost)) - api.GET("/health", healthCheck) - - host := Config.API.IP + ":" + Config.API.Port - - // TLS specific general settings - cfg := &tls.Config{ - MinVersion: tls.VersionTLS12, - } - provider := NewChallengeProvider(dnsservers) - storage := certmagic.FileStorage{Path: Config.API.ACMECacheDir} - - // Set up certmagic for getting certificate for acme-dns api - certmagic.DefaultACME.DNS01Solver = &provider - certmagic.DefaultACME.Agreed = true - if Config.API.TLS == "letsencrypt" { - certmagic.DefaultACME.CA = certmagic.LetsEncryptProductionCA - } else { - certmagic.DefaultACME.CA = certmagic.LetsEncryptStagingCA - } - certmagic.DefaultACME.Email = Config.API.NotificationEmail - magicConf := certmagic.NewDefault() - magicConf.Storage = &storage - magicConf.DefaultServerName = Config.General.Domain - - magicCache := certmagic.NewCache(certmagic.CacheOptions{ - GetConfigForCert: func(cert certmagic.Certificate) (*certmagic.Config, error) { - return magicConf, nil - }, - }) - - magic := certmagic.New(magicCache, *magicConf) - var err error - switch Config.API.TLS { - case "letsencryptstaging": - err = magic.ManageAsync(context.Background(), []string{Config.General.Domain}) - if err != nil { - errChan <- err - return - } - cfg.GetCertificate = magic.GetCertificate - - srv := &http.Server{ - Addr: host, - Handler: c.Handler(api), - TLSConfig: cfg, - ErrorLog: stdlog.New(logwriter, "", 0), - } - log.WithFields(log.Fields{"host": host, "domain": Config.General.Domain}).Info("Listening HTTPS") - err = srv.ListenAndServeTLS("", "") - case "letsencrypt": - err = magic.ManageAsync(context.Background(), []string{Config.General.Domain}) - if err != nil { - errChan <- err - return - } - cfg.GetCertificate = magic.GetCertificate - srv := &http.Server{ - Addr: host, - Handler: c.Handler(api), - TLSConfig: cfg, - ErrorLog: stdlog.New(logwriter, "", 0), - } - log.WithFields(log.Fields{"host": host, "domain": Config.General.Domain}).Info("Listening HTTPS") - err = srv.ListenAndServeTLS("", "") - case "cert": - srv := &http.Server{ - Addr: host, - Handler: c.Handler(api), - TLSConfig: cfg, - ErrorLog: stdlog.New(logwriter, "", 0), - } - log.WithFields(log.Fields{"host": host}).Info("Listening HTTPS") - err = srv.ListenAndServeTLS(Config.API.TLSCertFullchain, Config.API.TLSCertPrivkey) - default: - log.WithFields(log.Fields{"host": host}).Info("Listening HTTP") - err = http.ListenAndServe(host, c.Handler(api)) - } - if err != nil { - errChan <- err - } -} diff --git a/main_test.go b/main_test.go deleted file mode 100644 index 66f4d6e..0000000 --- a/main_test.go +++ /dev/null @@ -1,110 +0,0 @@ -package main - -import ( - "flag" - "fmt" - log "github.com/sirupsen/logrus" - logrustest "github.com/sirupsen/logrus/hooks/test" - "io/ioutil" - "os" - "sync" - "testing" -) - -var loghook = new(logrustest.Hook) -var dnsserver *DNSServer - -var ( - postgres = flag.Bool("postgres", false, "run integration tests against PostgreSQL") -) - -var records = []string{ - "auth.example.org. A 192.168.1.100", - "ns1.auth.example.org. A 192.168.1.101", - "cn.example.org CNAME something.example.org.", - "!''b', unparseable ", - "ns2.auth.example.org. A 192.168.1.102", -} - -func TestMain(m *testing.M) { - setupTestLogger() - setupConfig() - flag.Parse() - - newDb := new(acmedb) - if *postgres { - Config.Database.Engine = "postgres" - err := newDb.Init("postgres", "postgres://acmedns:acmedns@localhost/acmedns") - if err != nil { - fmt.Println("PostgreSQL integration tests expect database \"acmedns\" running in localhost, with username and password set to \"acmedns\"") - os.Exit(1) - } - } else { - Config.Database.Engine = "sqlite3" - _ = newDb.Init("sqlite3", ":memory:") - } - DB = newDb - dnsserver = NewDNSServer(DB, Config.General.Listen, Config.General.Proto, Config.General.Domain) - dnsserver.ParseRecords(Config) - - // Make sure that we're not creating a race condition in tests - var wg sync.WaitGroup - wg.Add(1) - dnsserver.Server.NotifyStartedFunc = func() { - wg.Done() - } - go dnsserver.Start(make(chan error, 1)) - wg.Wait() - exitval := m.Run() - _ = dnsserver.Server.Shutdown() - DB.Close() - os.Exit(exitval) -} - -func setupConfig() { - var dbcfg = dbsettings{ - Engine: "sqlite3", - Connection: ":memory:", - } - - var generalcfg = general{ - Domain: "auth.example.org", - Listen: "127.0.0.1:15353", - Proto: "udp", - Nsname: "ns1.auth.example.org", - Nsadmin: "admin.example.org", - StaticRecords: records, - Debug: false, - } - - var httpapicfg = httpapi{ - Domain: "", - Port: "8080", - TLS: "none", - CorsOrigins: []string{"*"}, - UseHeader: false, - HeaderName: "X-Forwarded-For", - } - - var dnscfg = DNSConfig{ - Database: dbcfg, - General: generalcfg, - API: httpapicfg, - } - - Config = dnscfg -} - -func setupTestLogger() { - log.SetOutput(ioutil.Discard) - log.AddHook(loghook) -} - -func loggerHasEntryWithMessage(message string) bool { - for _, v := range loghook.Entries { - if v.Message == message { - return true - } - } - return false -} diff --git a/pkg/acmedns/acmetxt.go b/pkg/acmedns/acmetxt.go new file mode 100644 index 0000000..b162cb1 --- /dev/null +++ b/pkg/acmedns/acmetxt.go @@ -0,0 +1,46 @@ +package acmedns + +import ( + "github.com/google/uuid" + "net" +) + +// Check if IP belongs to an allowed net +func (a ACMETxt) AllowedFrom(ip string) bool { + remoteIP := net.ParseIP(ip) + // Range not limited + if len(a.AllowFrom.ValidEntries()) == 0 { + return true + } + for _, v := range a.AllowFrom.ValidEntries() { + _, vnet, _ := net.ParseCIDR(v) + if vnet.Contains(remoteIP) { + return true + } + } + return false +} + +// Go through list (most likely from headers) to check for the IP. +// Reason for this is that some setups use reverse proxy in front of acme-dns +func (a ACMETxt) AllowedFromList(ips []string) bool { + if len(ips) == 0 { + // If no IP provided, check if no whitelist present (everyone has access) + return a.AllowedFrom("") + } + for _, v := range ips { + if a.AllowedFrom(v) { + return true + } + } + return false +} + +func NewACMETxt() ACMETxt { + var a = ACMETxt{} + password := generatePassword(40) + a.Username = uuid.New() + a.Password = password + a.Subdomain = uuid.New().String() + return a +} diff --git a/pkg/acmedns/cidrslice.go b/pkg/acmedns/cidrslice.go new file mode 100644 index 0000000..b7ebafd --- /dev/null +++ b/pkg/acmedns/cidrslice.go @@ -0,0 +1,35 @@ +package acmedns + +import ( + "encoding/json" + "net" +) + +// cidrslice is a list of allowed cidr ranges +type Cidrslice []string + +func (c *Cidrslice) JSON() string { + ret, _ := json.Marshal(c.ValidEntries()) + return string(ret) +} + +func (c *Cidrslice) IsValid() error { + for _, v := range *c { + _, _, err := net.ParseCIDR(sanitizeIPv6addr(v)) + if err != nil { + return err + } + } + return nil +} + +func (c *Cidrslice) ValidEntries() []string { + valid := []string{} + for _, v := range *c { + _, _, err := net.ParseCIDR(sanitizeIPv6addr(v)) + if err == nil { + valid = append(valid, sanitizeIPv6addr(v)) + } + } + return valid +} diff --git a/pkg/acmedns/config.go b/pkg/acmedns/config.go new file mode 100644 index 0000000..35f618f --- /dev/null +++ b/pkg/acmedns/config.go @@ -0,0 +1,48 @@ +package acmedns + +import ( + "errors" + "os" + + "github.com/BurntSushi/toml" +) + +func FileIsAccessible(fname string) bool { + _, err := os.Stat(fname) + if err != nil { + return false + } + f, err := os.Open(fname) + if err != nil { + return false + } + f.Close() + return true +} + +func ReadConfig(fname string) (AcmeDnsConfig, error) { + var conf AcmeDnsConfig + _, err := toml.DecodeFile(fname, &conf) + if err != nil { + // Return with config file parsing errors from toml package + return conf, err + } + return prepareConfig(conf) +} + +// prepareConfig checks that mandatory values exist, and can be used to set default values in the future +func prepareConfig(conf AcmeDnsConfig) (AcmeDnsConfig, error) { + if conf.Database.Engine == "" { + return conf, errors.New("missing database configuration option \"engine\"") + } + if conf.Database.Connection == "" { + return conf, errors.New("missing database configuration option \"connection\"") + } + + // Default values for options added to config to keep backwards compatibility with old config + if conf.API.ACMECacheDir == "" { + conf.API.ACMECacheDir = "api-certs" + } + + return conf, nil +} diff --git a/pkg/acmedns/interfaces.go b/pkg/acmedns/interfaces.go new file mode 100644 index 0000000..01a7abd --- /dev/null +++ b/pkg/acmedns/interfaces.go @@ -0,0 +1,22 @@ +package acmedns + +import ( + "database/sql" + "github.com/google/uuid" +) + +type AcmednsDB interface { + Register(cidrslice Cidrslice) (ACMETxt, error) + GetByUsername(uuid.UUID) (ACMETxt, error) + GetTXTForDomain(string) ([]string, error) + Update(ACMETxtPost) error + GetBackend() *sql.DB + SetBackend(*sql.DB) + Close() +} + +type AcmednsNS interface { + Start(errorChannel chan error) + SetOwnAuthKey(key string) + ParseRecords() +} diff --git a/types.go b/pkg/acmedns/types.go similarity index 69% rename from types.go rename to pkg/acmedns/types.go index 05bf7ad..411f43f 100644 --- a/types.go +++ b/pkg/acmedns/types.go @@ -1,20 +1,15 @@ -package main +package acmedns -import ( - "database/sql" - "sync" +import "github.com/google/uuid" - "github.com/google/uuid" -) - -// Config is global configuration struct -var Config DNSConfig - -// DB is used to access the database functions in acme-dns -var DB database +type Account struct { + Username string + Password string + Subdomain string +} // DNSConfig holds the config structure -type DNSConfig struct { +type AcmeDnsConfig struct { General general Database dbsettings API httpapi @@ -62,18 +57,16 @@ type logconfig struct { Format string `toml:"logformat"` } -type acmedb struct { - Mutex sync.Mutex - DB *sql.DB +// ACMETxt is the default structure for the user controlled record +type ACMETxt struct { + Username uuid.UUID + Password string + ACMETxtPost + AllowFrom Cidrslice } -type database interface { - Init(string, string) error - Register(cidrslice) (ACMETxt, error) - GetByUsername(uuid.UUID) (ACMETxt, error) - GetTXTForDomain(string) ([]string, error) - Update(ACMETxtPost) error - GetBackend() *sql.DB - SetBackend(*sql.DB) - Close() +// ACMETxtPost holds the DNS part of the ACMETxt struct +type ACMETxtPost struct { + Subdomain string `json:"subdomain"` + Value string `json:"txt"` } diff --git a/pkg/acmedns/util.go b/pkg/acmedns/util.go new file mode 100644 index 0000000..573439c --- /dev/null +++ b/pkg/acmedns/util.go @@ -0,0 +1,31 @@ +package acmedns + +import ( + "crypto/rand" + "math/big" + "regexp" +) + +func sanitizeIPv6addr(s string) string { + // Remove brackets from IPv6 addresses, net.ParseCIDR needs this + re, _ := regexp.Compile(`[\[\]]+`) + return re.ReplaceAllString(s, "") +} + +func SanitizeString(s string) string { + // URL safe base64 alphabet without padding as defined in ACME + re, _ := regexp.Compile(`[^A-Za-z\-\_0-9]+`) + return re.ReplaceAllString(s, "") +} + +func generatePassword(length int) string { + ret := make([]byte, length) + const alphabet = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz1234567890-_" + alphalen := big.NewInt(int64(len(alphabet))) + for i := 0; i < length; i++ { + c, _ := rand.Int(rand.Reader, alphalen) + r := int(c.Int64()) + ret[i] = alphabet[r] + } + return string(ret) +} diff --git a/pkg/api/api.go b/pkg/api/api.go new file mode 100644 index 0000000..9fc96f6 --- /dev/null +++ b/pkg/api/api.go @@ -0,0 +1,148 @@ +package api + +import ( + "context" + "crypto/tls" + "net/http" + + "github.com/acme-dns/acme-dns/pkg/acmedns" + + "github.com/caddyserver/certmagic" + "github.com/julienschmidt/httprouter" + "github.com/rs/cors" + "go.uber.org/zap" +) + +type AcmednsAPI struct { + Config *acmedns.AcmeDnsConfig + DB acmedns.AcmednsDB + Logger *zap.SugaredLogger + errChan chan error +} + +func Init(config *acmedns.AcmeDnsConfig, db acmedns.AcmednsDB, logger *zap.SugaredLogger, errChan chan error) AcmednsAPI { + a := AcmednsAPI{Config: config, DB: db, Logger: logger, errChan: errChan} + return a +} + +func (a *AcmednsAPI) Start(dnsservers []acmedns.AcmednsNS) { + var err error + //TODO: do we want to debug log the HTTP server? + stderrorlog, err := zap.NewStdLogAt(a.Logger.Desugar(), zap.ErrorLevel) + if err != nil { + a.errChan <- err + return + } + //legolog.Logger = stderrorlog + api := httprouter.New() + c := cors.New(cors.Options{ + AllowedOrigins: a.Config.API.CorsOrigins, + AllowedMethods: []string{"GET", "POST"}, + OptionsPassthrough: false, + Debug: a.Config.General.Debug, + }) + if a.Config.General.Debug { + // Logwriter for saner log output + c.Log = stderrorlog + } + if !a.Config.API.DisableRegistration { + api.POST("/register", a.webRegisterPost) + } + api.POST("/update", a.Auth(a.webUpdatePost)) + api.GET("/health", a.healthCheck) + + host := a.Config.API.IP + ":" + a.Config.API.Port + + // TLS specific general settings + cfg := &tls.Config{ + MinVersion: tls.VersionTLS12, + } + + switch a.Config.API.TLS { + case "letsencryptstaging": + magic := a.setupTLS(dnsservers) + err = magic.ManageAsync(context.Background(), []string{a.Config.General.Domain}) + if err != nil { + a.errChan <- err + return + } + cfg.GetCertificate = magic.GetCertificate + + srv := &http.Server{ + Addr: host, + Handler: c.Handler(api), + TLSConfig: cfg, + ErrorLog: stderrorlog, + } + a.Logger.Infow("Listening HTTPS", + "host", host, + "domain", a.Config.General.Domain) + err = srv.ListenAndServeTLS("", "") + case "letsencrypt": + magic := a.setupTLS(dnsservers) + err = magic.ManageAsync(context.Background(), []string{a.Config.General.Domain}) + if err != nil { + a.errChan <- err + return + } + cfg.GetCertificate = magic.GetCertificate + srv := &http.Server{ + Addr: host, + Handler: c.Handler(api), + TLSConfig: cfg, + ErrorLog: stderrorlog, + } + a.Logger.Infow("Listening HTTPS", + "host", host, + "domain", a.Config.General.Domain) + err = srv.ListenAndServeTLS("", "") + case "cert": + srv := &http.Server{ + Addr: host, + Handler: c.Handler(api), + TLSConfig: cfg, + ErrorLog: stderrorlog, + } + a.Logger.Infow("Listening HTTPS", + "host", host, + "domain", a.Config.General.Domain) + err = srv.ListenAndServeTLS(a.Config.API.TLSCertFullchain, a.Config.API.TLSCertPrivkey) + default: + a.Logger.Infow("Listening HTTP", + "host", host) + err = http.ListenAndServe(host, c.Handler(api)) + } + if err != nil { + a.errChan <- err + } +} + +func (a *AcmednsAPI) setupTLS(dnsservers []acmedns.AcmednsNS) *certmagic.Config { + provider := NewChallengeProvider(dnsservers) + certmagic.Default.Logger = a.Logger.Desugar() + storage := certmagic.FileStorage{Path: a.Config.API.ACMECacheDir} + + // Set up certmagic for getting certificate for acme-dns api + certmagic.DefaultACME.DNS01Solver = &provider + certmagic.DefaultACME.Agreed = true + certmagic.DefaultACME.Logger = a.Logger.Desugar() + if a.Config.API.TLS == "letsencrypt" { + certmagic.DefaultACME.CA = certmagic.LetsEncryptProductionCA + } else { + certmagic.DefaultACME.CA = certmagic.LetsEncryptStagingCA + } + certmagic.DefaultACME.Email = a.Config.API.NotificationEmail + + magicConf := certmagic.Default + magicConf.Logger = a.Logger.Desugar() + magicConf.Storage = &storage + magicConf.DefaultServerName = a.Config.General.Domain + magicCache := certmagic.NewCache(certmagic.CacheOptions{ + GetConfigForCert: func(cert certmagic.Certificate) (*certmagic.Config, error) { + return &magicConf, nil + }, + Logger: a.Logger.Desugar(), + }) + magic := certmagic.New(magicCache, magicConf) + return magic +} diff --git a/auth.go b/pkg/api/auth.go similarity index 50% rename from auth.go rename to pkg/api/auth.go index c09f8b4..825e129 100644 --- a/auth.go +++ b/pkg/api/auth.go @@ -1,14 +1,14 @@ -package main +package api import ( "context" "encoding/json" "fmt" + "github.com/acme-dns/acme-dns/pkg/acmedns" "net" "net/http" "github.com/julienschmidt/httprouter" - log "github.com/sirupsen/logrus" ) type key int @@ -17,28 +17,34 @@ type key int const ACMETxtKey key = 0 // Auth middleware for update request -func Auth(update httprouter.Handle) httprouter.Handle { +func (a *AcmednsAPI) Auth(update httprouter.Handle) httprouter.Handle { return func(w http.ResponseWriter, r *http.Request, p httprouter.Params) { - postData := ACMETxt{} + postData := acmedns.ACMETxt{} userOK := false - user, err := getUserFromRequest(r) + user, err := a.getUserFromRequest(r) if err == nil { - if updateAllowedFromIP(r, user) { + if a.updateAllowedFromIP(r, user) { dec := json.NewDecoder(r.Body) err = dec.Decode(&postData) if err != nil { - log.WithFields(log.Fields{"error": "json_error", "string": err.Error()}).Error("Decode error") + a.Logger.Errorw("Decoding error", + "error", "json_error") } if user.Subdomain == postData.Subdomain { userOK = true } else { - log.WithFields(log.Fields{"error": "subdomain_mismatch", "name": postData.Subdomain, "expected": user.Subdomain}).Error("Subdomain mismatch") + a.Logger.Errorw("Subdomain mismatch", + "error", "subdomain_mismatch", + "name", postData.Subdomain, + "expected", user.Subdomain) } } else { - log.WithFields(log.Fields{"error": "ip_unauthorized"}).Error("Update not allowed from IP") + a.Logger.Errorw("Update not allowed from IP", + "error", "ip_unauthorized") } } else { - log.WithFields(log.Fields{"error": err.Error()}).Error("Error while trying to get user") + a.Logger.Errorw("Error while trying to get user", + "error", err.Error()) } if userOK { // Set user info to the decoded ACMETxt object @@ -55,39 +61,42 @@ func Auth(update httprouter.Handle) httprouter.Handle { } } -func getUserFromRequest(r *http.Request) (ACMETxt, error) { +func (a *AcmednsAPI) getUserFromRequest(r *http.Request) (acmedns.ACMETxt, error) { uname := r.Header.Get("X-Api-User") passwd := r.Header.Get("X-Api-Key") username, err := getValidUsername(uname) if err != nil { - return ACMETxt{}, fmt.Errorf("Invalid username: %s: %s", uname, err.Error()) + return acmedns.ACMETxt{}, fmt.Errorf("invalid username: %s: %s", uname, err.Error()) } if validKey(passwd) { - dbuser, err := DB.GetByUsername(username) + dbuser, err := a.DB.GetByUsername(username) if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Error while trying to get user") + a.Logger.Errorw("Error while trying to get user", + "error", err.Error()) // To protect against timed side channel (never gonna give you up) correctPassword(passwd, "$2a$10$8JEFVNYYhLoBysjAxe2yBuXrkDojBQBkVpXEQgyQyjn43SvJ4vL36") - return ACMETxt{}, fmt.Errorf("Invalid username: %s", uname) + return acmedns.ACMETxt{}, fmt.Errorf("invalid username: %s", uname) } if correctPassword(passwd, dbuser.Password) { return dbuser, nil } - return ACMETxt{}, fmt.Errorf("Invalid password for user %s", uname) + return acmedns.ACMETxt{}, fmt.Errorf("invalid password for user %s", uname) } - return ACMETxt{}, fmt.Errorf("Invalid key for user %s", uname) + return acmedns.ACMETxt{}, fmt.Errorf("invalid key for user %s", uname) } -func updateAllowedFromIP(r *http.Request, user ACMETxt) bool { - if Config.API.UseHeader { - ips := getIPListFromHeader(r.Header.Get(Config.API.HeaderName)) - return user.allowedFromList(ips) +func (a *AcmednsAPI) updateAllowedFromIP(r *http.Request, user acmedns.ACMETxt) bool { + if a.Config.API.UseHeader { + ips := getIPListFromHeader(r.Header.Get(a.Config.API.HeaderName)) + return user.AllowedFromList(ips) } host, _, err := net.SplitHostPort(r.RemoteAddr) if err != nil { - log.WithFields(log.Fields{"error": err.Error(), "remoteaddr": r.RemoteAddr}).Error("Error while parsing remote address") + a.Logger.Errorw("Error while parsing remote address", + "error", err.Error(), + "remoteaddr", r.RemoteAddr) host = "" } - return user.allowedFrom(host) + return user.AllowedFrom(host) } diff --git a/challengeprovider.go b/pkg/api/challengeprovider.go similarity index 79% rename from challengeprovider.go rename to pkg/api/challengeprovider.go index 6a278e1..d4b44b1 100644 --- a/challengeprovider.go +++ b/pkg/api/challengeprovider.go @@ -1,24 +1,26 @@ -package main +package api import ( "context" + "github.com/acme-dns/acme-dns/pkg/acmedns" + "github.com/mholt/acmez/acme" ) // ChallengeProvider implements go-acme/lego Provider interface which is used for ACME DNS challenge handling type ChallengeProvider struct { - servers []*DNSServer + servers []acmedns.AcmednsNS } // NewChallengeProvider creates a new instance of ChallengeProvider -func NewChallengeProvider(servers []*DNSServer) ChallengeProvider { +func NewChallengeProvider(servers []acmedns.AcmednsNS) ChallengeProvider { return ChallengeProvider{servers: servers} } // Present is used for making the ACME DNS challenge token available for DNS func (c *ChallengeProvider) Present(ctx context.Context, challenge acme.Challenge) error { for _, s := range c.servers { - s.PersonalKeyAuth = challenge.DNS01KeyAuthorization() + s.SetOwnAuthKey(challenge.DNS01KeyAuthorization()) } return nil } @@ -26,7 +28,7 @@ func (c *ChallengeProvider) Present(ctx context.Context, challenge acme.Challeng // CleanUp is called after the run to remove the ACME DNS challenge tokens from DNS records func (c *ChallengeProvider) CleanUp(ctx context.Context, _ acme.Challenge) error { for _, s := range c.servers { - s.PersonalKeyAuth = "" + s.SetOwnAuthKey("") } return nil } @@ -34,4 +36,4 @@ func (c *ChallengeProvider) CleanUp(ctx context.Context, _ acme.Challenge) error // Wait is a dummy function as we are just going to be ready to answer the challenge from the get-go func (c *ChallengeProvider) Wait(_ context.Context, _ acme.Challenge) error { return nil -} \ No newline at end of file +} diff --git a/pkg/api/healthcheck.go b/pkg/api/healthcheck.go new file mode 100644 index 0000000..f096e62 --- /dev/null +++ b/pkg/api/healthcheck.go @@ -0,0 +1,12 @@ +package api + +import ( + "net/http" + + "github.com/julienschmidt/httprouter" +) + +// Endpoint used to check the readiness and/or liveness (health) of the server. +func (a *AcmednsAPI) healthCheck(w http.ResponseWriter, r *http.Request, _ httprouter.Params) { + w.WriteHeader(http.StatusOK) +} diff --git a/pkg/api/register.go b/pkg/api/register.go new file mode 100644 index 0000000..a3bd84d --- /dev/null +++ b/pkg/api/register.go @@ -0,0 +1,75 @@ +package api + +import ( + "encoding/json" + "fmt" + "io" + "net/http" + + "github.com/acme-dns/acme-dns/pkg/acmedns" + "github.com/julienschmidt/httprouter" +) + +// RegResponse is a struct for registration response JSON +type RegResponse struct { + Username string `json:"username"` + Password string `json:"password"` + Fulldomain string `json:"fulldomain"` + Subdomain string `json:"subdomain"` + Allowfrom []string `json:"allowfrom"` +} + +func (a *AcmednsAPI) webRegisterPost(w http.ResponseWriter, r *http.Request, _ httprouter.Params) { + var regStatus int + var reg []byte + var err error + aTXT := acmedns.ACMETxt{} + bdata, _ := io.ReadAll(r.Body) + if len(bdata) > 0 { + err = json.Unmarshal(bdata, &aTXT) + if err != nil { + regStatus = http.StatusBadRequest + reg = jsonError("malformed_json_payload") + w.Header().Set("Content-Type", "application/json") + w.WriteHeader(regStatus) + _, _ = w.Write(reg) + return + } + } + + // Fail with malformed CIDR mask in allowfrom + err = aTXT.AllowFrom.IsValid() + if err != nil { + regStatus = http.StatusBadRequest + reg = jsonError("invalid_allowfrom_cidr") + w.Header().Set("Content-Type", "application/json") + w.WriteHeader(regStatus) + _, _ = w.Write(reg) + return + } + + // Create new user + nu, err := a.DB.Register(aTXT.AllowFrom) + if err != nil { + errstr := fmt.Sprintf("%v", err) + reg = jsonError(errstr) + regStatus = http.StatusInternalServerError + a.Logger.Errorw("Error in registration", + "error", err.Error()) + } else { + a.Logger.Debugw("Created new user", + "user", nu.Username.String()) + regStruct := RegResponse{nu.Username.String(), nu.Password, nu.Subdomain + "." + a.Config.General.Domain, nu.Subdomain, nu.AllowFrom.ValidEntries()} + regStatus = http.StatusCreated + reg, err = json.Marshal(regStruct) + if err != nil { + regStatus = http.StatusInternalServerError + reg = jsonError("json_error") + a.Logger.Errorw("Could not marshal JSON", + "error", "json") + } + } + w.Header().Set("Content-Type", "application/json") + w.WriteHeader(regStatus) + _, _ = w.Write(reg) +} diff --git a/pkg/api/update.go b/pkg/api/update.go new file mode 100644 index 0000000..dc514fa --- /dev/null +++ b/pkg/api/update.go @@ -0,0 +1,55 @@ +package api + +import ( + "net/http" + + "github.com/acme-dns/acme-dns/pkg/acmedns" + + "github.com/julienschmidt/httprouter" +) + +func (a *AcmednsAPI) webUpdatePost(w http.ResponseWriter, r *http.Request, _ httprouter.Params) { + var updStatus int + var upd []byte + // Get user + atxt, ok := r.Context().Value(ACMETxtKey).(acmedns.ACMETxt) + if !ok { + a.Logger.Errorw("Context error", + "error", "context") + } + // NOTE: An invalid subdomain should not happen - the auth handler should + // reject POSTs with an invalid subdomain before this handler. Reject any + // invalid subdomains anyway as a matter of caution. + if !validSubdomain(atxt.Subdomain) { + a.Logger.Errorw("Bad update data", + "error", "subdomain", + "subdomain", atxt.Subdomain, + "txt", atxt.Value) + updStatus = http.StatusBadRequest + upd = jsonError("bad_subdomain") + } else if !validTXT(atxt.Value) { + a.Logger.Errorw("Bad update data", + "error", "txt", + "subdomain", atxt.Subdomain, + "txt", atxt.Value) + updStatus = http.StatusBadRequest + upd = jsonError("bad_txt") + } else if validSubdomain(atxt.Subdomain) && validTXT(atxt.Value) { + err := a.DB.Update(atxt.ACMETxtPost) + if err != nil { + a.Logger.Errorw("Error while trying to update record", + "error", err.Error()) + updStatus = http.StatusInternalServerError + upd = jsonError("db_error") + } else { + a.Logger.Debugw("TXT record updated", + "subdomain", atxt.Subdomain, + "txt", atxt.Value) + updStatus = http.StatusOK + upd = []byte("{\"txt\": \"" + atxt.Value + "\"}") + } + } + w.Header().Set("Content-Type", "application/json") + w.WriteHeader(updStatus) + _, _ = w.Write(upd) +} diff --git a/validation.go b/pkg/api/util.go similarity index 68% rename from validation.go rename to pkg/api/util.go index 2cec5a9..1a6c733 100644 --- a/validation.go +++ b/pkg/api/util.go @@ -1,13 +1,19 @@ -package main +package api import ( - "unicode/utf8" - "regexp" - + "fmt" + "github.com/acme-dns/acme-dns/pkg/acmedns" "github.com/google/uuid" "golang.org/x/crypto/bcrypt" + "regexp" + "strings" + "unicode/utf8" ) +func jsonError(message string) []byte { + return []byte(fmt.Sprintf("{\"error\": \"%s\"}", message)) +} + func getValidUsername(u string) (uuid.UUID, error) { uname, err := uuid.Parse(u) if err != nil { @@ -17,7 +23,7 @@ func getValidUsername(u string) (uuid.UUID, error) { } func validKey(k string) bool { - kn := sanitizeString(k) + kn := acmedns.SanitizeString(k) if utf8.RuneCountInString(k) == 40 && utf8.RuneCountInString(kn) == 40 { // Correct length and all chars valid return true @@ -25,24 +31,35 @@ func validKey(k string) bool { return false } -func validSubdomain(s string) bool { - // URL safe base64 alphabet without padding as defined in ACME - RegExp := regexp.MustCompile("^[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?$") - return RegExp.MatchString(s) -} - -func validTXT(s string) bool { - sn := sanitizeString(s) - if utf8.RuneCountInString(s) == 43 && utf8.RuneCountInString(sn) == 43 { - // 43 chars is the current LE auth key size, but not limited / defined by ACME - return true - } - return false -} - func correctPassword(pw string, hash string) bool { if err := bcrypt.CompareHashAndPassword([]byte(hash), []byte(pw)); err == nil { return true } return false } + +func getIPListFromHeader(header string) []string { + iplist := []string{} + for _, v := range strings.Split(header, ",") { + if len(v) > 0 { + // Ignore empty values + iplist = append(iplist, strings.TrimSpace(v)) + } + } + return iplist +} + +func validSubdomain(s string) bool { + // URL safe base64 alphabet without padding as defined in ACME + RegExp := regexp.MustCompile("^[A-Za-z0-9](?:[A-Za-z0-9-]{0,61}[A-Za-z0-9])?$") + return RegExp.MatchString(s) +} + +func validTXT(s string) bool { + sn := acmedns.SanitizeString(s) + if utf8.RuneCountInString(s) == 43 && utf8.RuneCountInString(sn) == 43 { + // 43 chars is the current LE auth key size, but not limited / defined by ACME + return true + } + return false +} diff --git a/db.go b/pkg/database/db.go similarity index 70% rename from db.go rename to pkg/database/db.go index 301ac81..83f0095 100644 --- a/db.go +++ b/pkg/database/db.go @@ -1,4 +1,4 @@ -package main +package database import ( "database/sql" @@ -7,15 +7,24 @@ import ( "fmt" "regexp" "strconv" + "sync" "time" + "github.com/acme-dns/acme-dns/pkg/acmedns" + _ "github.com/glebarez/go-sqlite" "github.com/google/uuid" _ "github.com/lib/pq" - _ "github.com/mattn/go-sqlite3" - log "github.com/sirupsen/logrus" + "go.uber.org/zap" "golang.org/x/crypto/bcrypt" ) +type acmednsdb struct { + DB *sql.DB + Mutex sync.Mutex + Logger *zap.SugaredLogger + Config *acmedns.AcmeDnsConfig +} + // DBVersion shows the database version this code uses. This is used for update checks. var DBVersion = 1 @@ -54,12 +63,13 @@ func getSQLiteStmt(s string) string { return re.ReplaceAllString(s, "?") } -func (d *acmedb) Init(engine string, connection string) error { +func Init(config *acmedns.AcmeDnsConfig, logger *zap.SugaredLogger) (acmedns.AcmednsDB, error) { + var d = &acmednsdb{Config: config, Logger: logger} d.Mutex.Lock() defer d.Mutex.Unlock() - db, err := sql.Open(engine, connection) + db, err := sql.Open(config.Database.Engine, config.Database.Connection) if err != nil { - return err + return d, err } d.DB = db // Check version first to try to catch old versions without version string @@ -70,7 +80,7 @@ func (d *acmedb) Init(engine string, connection string) error { } _, _ = d.DB.Exec(acmeTable) _, _ = d.DB.Exec(userTable) - if Config.Database.Engine == "sqlite3" { + if config.Database.Engine == "sqlite" { _, _ = d.DB.Exec(txtTable) } else { _, _ = d.DB.Exec(txtTablePG) @@ -86,10 +96,10 @@ func (d *acmedb) Init(engine string, connection string) error { _, err = db.Exec(insversion) } } - return err + return d, err } -func (d *acmedb) checkDBUpgrades(versionString string) error { +func (d *acmednsdb) checkDBUpgrades(versionString string) error { var err error version, err := strconv.Atoi(versionString) if err != nil { @@ -102,19 +112,20 @@ func (d *acmedb) checkDBUpgrades(versionString string) error { } -func (d *acmedb) handleDBUpgrades(version int) error { +func (d *acmednsdb) handleDBUpgrades(version int) error { if version == 0 { return d.handleDBUpgradeTo1() } return nil } -func (d *acmedb) handleDBUpgradeTo1() error { +func (d *acmednsdb) handleDBUpgradeTo1() error { var err error var subdomains []string rows, err := d.DB.Query("SELECT Subdomain FROM records") if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Error in DB upgrade") + d.Logger.Errorw("Error in DB upgrade", + "error", err.Error()) return err } defer rows.Close() @@ -122,14 +133,16 @@ func (d *acmedb) handleDBUpgradeTo1() error { var subdomain string err = rows.Scan(&subdomain) if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Error in DB upgrade while reading values") + d.Logger.Errorw("Error in DB upgrade while reading values", + "error", err.Error()) return err } subdomains = append(subdomains, subdomain) } err = rows.Err() if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Error in DB upgrade while inserting values") + d.Logger.Errorw("Error in DB upgrade while inserting values", + "error", err.Error()) return err } tx, err := d.DB.Begin() @@ -147,13 +160,14 @@ func (d *acmedb) handleDBUpgradeTo1() error { // Insert two rows for each subdomain to txt table err = d.NewTXTValuesInTransaction(tx, subdomain) if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Error in DB upgrade while inserting values") + d.Logger.Errorw("Error in DB upgrade while inserting values", + "error", err.Error()) return err } } } // SQLite doesn't support dropping columns - if Config.Database.Engine != "sqlite3" { + if d.Config.Database.Engine != "sqlite" { _, _ = tx.Exec("ALTER TABLE records DROP COLUMN IF EXISTS Value") _, _ = tx.Exec("ALTER TABLE records DROP COLUMN IF EXISTS LastActive") } @@ -161,8 +175,8 @@ func (d *acmedb) handleDBUpgradeTo1() error { return err } -// Create two rows for subdomain to the txt table -func (d *acmedb) NewTXTValuesInTransaction(tx *sql.Tx, subdomain string) error { +// NewTXTValuesInTransaction creates two rows for subdomain to the txt table +func (d *acmednsdb) NewTXTValuesInTransaction(tx *sql.Tx, subdomain string) error { var err error instr := fmt.Sprintf("INSERT INTO txt (Subdomain, LastUpdate) values('%s', 0)", subdomain) _, _ = tx.Exec(instr) @@ -170,7 +184,7 @@ func (d *acmedb) NewTXTValuesInTransaction(tx *sql.Tx, subdomain string) error { return err } -func (d *acmedb) Register(afrom cidrslice) (ACMETxt, error) { +func (d *acmednsdb) Register(afrom acmedns.Cidrslice) (acmedns.ACMETxt, error) { d.Mutex.Lock() defer d.Mutex.Unlock() var err error @@ -183,8 +197,8 @@ func (d *acmedb) Register(afrom cidrslice) (ACMETxt, error) { } _ = tx.Commit() }() - a := newACMETxt() - a.AllowFrom = cidrslice(afrom.ValidEntries()) + a := acmedns.NewACMETxt() + a.AllowFrom = acmedns.Cidrslice(afrom.ValidEntries()) passwordHash, err := bcrypt.GenerateFromPassword([]byte(a.Password), 10) regSQL := ` INSERT INTO records( @@ -193,12 +207,13 @@ func (d *acmedb) Register(afrom cidrslice) (ACMETxt, error) { Subdomain, AllowFrom) values($1, $2, $3, $4)` - if Config.Database.Engine == "sqlite3" { + if d.Config.Database.Engine == "sqlite" { regSQL = getSQLiteStmt(regSQL) } sm, err := tx.Prepare(regSQL) if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Database error in prepare") + d.Logger.Errorw("Database error in prepare", + "error", err.Error()) return a, errors.New("SQL error") } defer sm.Close() @@ -209,53 +224,53 @@ func (d *acmedb) Register(afrom cidrslice) (ACMETxt, error) { return a, err } -func (d *acmedb) GetByUsername(u uuid.UUID) (ACMETxt, error) { +func (d *acmednsdb) GetByUsername(u uuid.UUID) (acmedns.ACMETxt, error) { d.Mutex.Lock() defer d.Mutex.Unlock() - var results []ACMETxt + var results []acmedns.ACMETxt getSQL := ` SELECT Username, Password, Subdomain, AllowFrom FROM records WHERE Username=$1 LIMIT 1 ` - if Config.Database.Engine == "sqlite3" { + if d.Config.Database.Engine == "sqlite" { getSQL = getSQLiteStmt(getSQL) } sm, err := d.DB.Prepare(getSQL) if err != nil { - return ACMETxt{}, err + return acmedns.ACMETxt{}, err } defer sm.Close() rows, err := sm.Query(u.String()) if err != nil { - return ACMETxt{}, err + return acmedns.ACMETxt{}, err } defer rows.Close() // It will only be one row though for rows.Next() { - txt, err := getModelFromRow(rows) + txt, err := d.getModelFromRow(rows) if err != nil { - return ACMETxt{}, err + return acmedns.ACMETxt{}, err } results = append(results, txt) } if len(results) > 0 { return results[0], nil } - return ACMETxt{}, errors.New("no user") + return acmedns.ACMETxt{}, errors.New("no user") } -func (d *acmedb) GetTXTForDomain(domain string) ([]string, error) { +func (d *acmednsdb) GetTXTForDomain(domain string) ([]string, error) { d.Mutex.Lock() defer d.Mutex.Unlock() - domain = sanitizeString(domain) + domain = acmedns.SanitizeString(domain) var txts []string getSQL := ` SELECT Value FROM txt WHERE Subdomain=$1 LIMIT 2 ` - if Config.Database.Engine == "sqlite3" { + if d.Config.Database.Engine == "sqlite" { getSQL = getSQLiteStmt(getSQL) } @@ -281,7 +296,7 @@ func (d *acmedb) GetTXTForDomain(domain string) ([]string, error) { return txts, nil } -func (d *acmedb) Update(a ACMETxtPost) error { +func (d *acmednsdb) Update(a acmedns.ACMETxtPost) error { d.Mutex.Lock() defer d.Mutex.Unlock() var err error @@ -293,7 +308,7 @@ func (d *acmedb) Update(a ACMETxtPost) error { WHERE rowid=( SELECT rowid FROM txt WHERE Subdomain=$3 ORDER BY LastUpdate LIMIT 1) ` - if Config.Database.Engine == "sqlite3" { + if d.Config.Database.Engine == "sqlite" { updSQL = getSQLiteStmt(updSQL) } @@ -309,8 +324,8 @@ func (d *acmedb) Update(a ACMETxtPost) error { return nil } -func getModelFromRow(r *sql.Rows) (ACMETxt, error) { - txt := ACMETxt{} +func (d *acmednsdb) getModelFromRow(r *sql.Rows) (acmedns.ACMETxt, error) { + txt := acmedns.ACMETxt{} afrom := "" err := r.Scan( &txt.Username, @@ -318,26 +333,28 @@ func getModelFromRow(r *sql.Rows) (ACMETxt, error) { &txt.Subdomain, &afrom) if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("Row scan error") + d.Logger.Errorw("Row scan error", + "error", err.Error()) } - cslice := cidrslice{} + cslice := acmedns.Cidrslice{} err = json.Unmarshal([]byte(afrom), &cslice) if err != nil { - log.WithFields(log.Fields{"error": err.Error()}).Error("JSON unmarshall error") + d.Logger.Errorw("JSON unmarshall error", + "error", err.Error()) } txt.AllowFrom = cslice return txt, err } -func (d *acmedb) Close() { +func (d *acmednsdb) Close() { d.DB.Close() } -func (d *acmedb) GetBackend() *sql.DB { +func (d *acmednsdb) GetBackend() *sql.DB { return d.DB } -func (d *acmedb) SetBackend(backend *sql.DB) { +func (d *acmednsdb) SetBackend(backend *sql.DB) { d.DB = backend } diff --git a/db_test.go b/pkg/database/db_test.go similarity index 100% rename from db_test.go rename to pkg/database/db_test.go diff --git a/pkg/nameserver/handler.go b/pkg/nameserver/handler.go new file mode 100644 index 0000000..cbf50c3 --- /dev/null +++ b/pkg/nameserver/handler.go @@ -0,0 +1,162 @@ +package nameserver + +import ( + "fmt" + "github.com/miekg/dns" + "strings" +) + +func (n *Nameserver) handleRequest(w dns.ResponseWriter, r *dns.Msg) { + m := new(dns.Msg) + m.SetReply(r) + + // handle edns0 + opt := r.IsEdns0() + if opt != nil { + if opt.Version() != 0 { + // Only EDNS0 is standardized + m.MsgHdr.Rcode = dns.RcodeBadVers + m.SetEdns0(512, false) + } else { + // We can safely do this as we know that we're not setting other OPT RRs within acme-dns. + m.SetEdns0(512, false) + if r.Opcode == dns.OpcodeQuery { + n.readQuery(m) + } + } + } else { + if r.Opcode == dns.OpcodeQuery { + n.readQuery(m) + } + } + _ = w.WriteMsg(m) +} + +func (n *Nameserver) readQuery(m *dns.Msg) { + var authoritative = false + for _, que := range m.Question { + if rr, rc, auth, err := n.answer(que); err == nil { + if auth { + authoritative = auth + } + m.MsgHdr.Rcode = rc + m.Answer = append(m.Answer, rr...) + } + } + m.MsgHdr.Authoritative = authoritative + if authoritative { + if m.MsgHdr.Rcode == dns.RcodeNameError { + m.Ns = append(m.Ns, n.SOA) + } + } +} + +func (n *Nameserver) answer(q dns.Question) ([]dns.RR, int, bool, error) { + var rcode int + var err error + var txtRRs []dns.RR + var authoritative = n.isAuthoritative(q) + if !n.isOwnChallenge(q.Name) && !n.answeringForDomain(q.Name) { + rcode = dns.RcodeNameError + } + r, _ := n.getRecord(q) + if q.Qtype == dns.TypeTXT { + if n.isOwnChallenge(q.Name) { + txtRRs, err = n.answerOwnChallenge(q) + } else { + txtRRs, err = n.answerTXT(q) + } + if err == nil { + r = append(r, txtRRs...) + } + } + if len(r) > 0 { + // Make sure that we return NOERROR if there were dynamic records for the domain + rcode = dns.RcodeSuccess + } + n.Logger.Debugw("Answering question for domain", + "qtype", dns.TypeToString[q.Qtype], + "domain", q.Name, + "rcode", dns.RcodeToString[rcode]) + return r, rcode, authoritative, nil +} + +func (n *Nameserver) answerTXT(q dns.Question) ([]dns.RR, error) { + var ra []dns.RR + subdomain := sanitizeDomainQuestion(q.Name) + atxt, err := n.DB.GetTXTForDomain(subdomain) + if err != nil { + n.Logger.Errorw("Error while trying to get record", + "error", err.Error()) + return ra, err + } + for _, v := range atxt { + if len(v) > 0 { + r := new(dns.TXT) + r.Hdr = dns.RR_Header{Name: q.Name, Rrtype: dns.TypeTXT, Class: dns.ClassINET, Ttl: 1} + r.Txt = append(r.Txt, v) + ra = append(ra, r) + } + } + return ra, nil +} + +func (n *Nameserver) isAuthoritative(q dns.Question) bool { + if n.answeringForDomain(q.Name) { + return true + } + domainParts := strings.Split(strings.ToLower(q.Name), ".") + for i := range domainParts { + if n.answeringForDomain(strings.Join(domainParts[i:], ".")) { + return true + } + } + return false +} + +// isOwnChallenge checks if the query is for the domain of this acme-dns instance. Used for answering its own ACME challenges +func (n *Nameserver) isOwnChallenge(name string) bool { + domainParts := strings.SplitN(name, ".", 2) + if len(domainParts) == 2 { + if strings.ToLower(domainParts[0]) == "_acme-challenge" { + domain := strings.ToLower(domainParts[1]) + if !strings.HasSuffix(domain, ".") { + domain = domain + "." + } + if domain == n.OwnDomain { + return true + } + } + } + return false +} + +// answeringForDomain checks if we have any records for a domain +func (n *Nameserver) answeringForDomain(name string) bool { + if n.OwnDomain == strings.ToLower(name) { + return true + } + _, ok := n.Domains[strings.ToLower(name)] + return ok +} + +func (n *Nameserver) getRecord(q dns.Question) ([]dns.RR, error) { + var rr []dns.RR + var cnames []dns.RR + domain, ok := n.Domains[strings.ToLower(q.Name)] + if !ok { + return rr, fmt.Errorf("no records for domain %s", q.Name) + } + for _, ri := range domain.Records { + if ri.Header().Rrtype == q.Qtype { + rr = append(rr, ri) + } + if ri.Header().Rrtype == dns.TypeCNAME { + cnames = append(cnames, ri) + } + } + if len(rr) == 0 { + return cnames, nil + } + return rr, nil +} diff --git a/pkg/nameserver/initialize.go b/pkg/nameserver/initialize.go new file mode 100644 index 0000000..2f6971e --- /dev/null +++ b/pkg/nameserver/initialize.go @@ -0,0 +1,86 @@ +package nameserver + +import ( + "strings" + + "github.com/acme-dns/acme-dns/pkg/acmedns" + + "github.com/miekg/dns" + "go.uber.org/zap" +) + +// Records is a slice of ResourceRecords +type Records struct { + Records []dns.RR +} + +type Nameserver struct { + Config *acmedns.AcmeDnsConfig + DB acmedns.AcmednsDB + Logger *zap.SugaredLogger + Server *dns.Server + OwnDomain string + SOA dns.RR + personalAuthKey string + Domains map[string]Records + errChan chan error +} + +func InitAndStart(config *acmedns.AcmeDnsConfig, db acmedns.AcmednsDB, logger *zap.SugaredLogger, errChan chan error) []acmedns.AcmednsNS { + dnsservers := make([]acmedns.AcmednsNS, 0) + + if strings.HasPrefix(config.General.Proto, "both") { + // Handle the case where DNS server should be started for both udp and tcp + udpProto := "udp" + tcpProto := "tcp" + if strings.HasSuffix(config.General.Proto, "4") { + udpProto += "4" + tcpProto += "4" + } else if strings.HasSuffix(config.General.Proto, "6") { + udpProto += "6" + tcpProto += "6" + } + dnsServerUDP := NewDNSServer(config, db, logger, udpProto) + dnsservers = append(dnsservers, dnsServerUDP) + dnsServerUDP.ParseRecords() + dnsServerTCP := NewDNSServer(config, db, logger, tcpProto) + dnsservers = append(dnsservers, dnsServerTCP) + dnsServerTCP.ParseRecords() + go dnsServerUDP.Start(errChan) + go dnsServerTCP.Start(errChan) + } else { + dnsServer := NewDNSServer(config, db, logger, config.General.Proto) + dnsservers = append(dnsservers, dnsServer) + dnsServer.ParseRecords() + go dnsServer.Start(errChan) + } + return dnsservers +} + +// NewDNSServer parses the DNS records from config and returns a new DNSServer struct +func NewDNSServer(config *acmedns.AcmeDnsConfig, db acmedns.AcmednsDB, logger *zap.SugaredLogger, proto string) acmedns.AcmednsNS { + // dnsServerTCP := NewDNSServer(DB, Config.General.Listen, tcpProto, Config.General.Domain) + server := Nameserver{Config: config, DB: db, Logger: logger} + server.Server = &dns.Server{Addr: config.General.Listen, Net: proto} + domain := config.General.Domain + if !strings.HasSuffix(domain, ".") { + domain = domain + "." + } + server.OwnDomain = strings.ToLower(domain) + server.DB = db + server.personalAuthKey = "" + server.Domains = make(map[string]Records) + return &server +} + +func (n *Nameserver) Start(errorChannel chan error) { + n.errChan = errorChannel + dns.HandleFunc(".", n.handleRequest) + n.Logger.Infow("Starting DNS listener", + "addr", n.Server.Addr, + "proto", n.Server.Net) + err := n.Server.ListenAndServe() + if err != nil { + errorChannel <- err + } +} diff --git a/pkg/nameserver/parseconfig.go b/pkg/nameserver/parseconfig.go new file mode 100644 index 0000000..f062e81 --- /dev/null +++ b/pkg/nameserver/parseconfig.go @@ -0,0 +1,51 @@ +package nameserver + +import ( + "fmt" + "github.com/miekg/dns" + "strings" + "time" +) + +// ParseRecords parses a slice of DNS record string +func (n *Nameserver) ParseRecords() { + for _, v := range n.Config.General.StaticRecords { + rr, err := dns.NewRR(strings.ToLower(v)) + if err != nil { + n.Logger.Errorw("Could not parse RR from config", + "error", err.Error(), + "rr", v) + continue + } + // Add parsed RR + n.appendRR(rr) + } + // Create serial + serial := time.Now().Format("2006010215") + // Add SOA + SOAstring := fmt.Sprintf("%s. SOA %s. %s. %s 28800 7200 604800 86400", strings.ToLower(n.Config.General.Domain), strings.ToLower(n.Config.General.Nsname), strings.ToLower(n.Config.General.Nsadmin), serial) + soarr, err := dns.NewRR(SOAstring) + if err != nil { + n.Logger.Errorw("Error while adding SOA record", + "error", err.Error(), + "soa", SOAstring) + } else { + n.appendRR(soarr) + n.SOA = soarr + } +} + +func (n *Nameserver) appendRR(rr dns.RR) { + addDomain := rr.Header().Name + _, ok := n.Domains[addDomain] + if !ok { + n.Domains[addDomain] = Records{[]dns.RR{rr}} + } else { + drecs := n.Domains[addDomain] + drecs.Records = append(drecs.Records, rr) + n.Domains[addDomain] = drecs + } + n.Logger.Debugw("Adding new record to domain", + "recordtype", dns.TypeToString[rr.Header().Rrtype], + "domain", addDomain) +} diff --git a/pkg/nameserver/util.go b/pkg/nameserver/util.go new file mode 100644 index 0000000..bbae3e0 --- /dev/null +++ b/pkg/nameserver/util.go @@ -0,0 +1,12 @@ +package nameserver + +import "strings" + +func sanitizeDomainQuestion(d string) string { + dom := strings.ToLower(d) + firstDot := strings.Index(d, ".") + if firstDot > 0 { + dom = dom[0:firstDot] + } + return dom +} diff --git a/pkg/nameserver/validation.go b/pkg/nameserver/validation.go new file mode 100644 index 0000000..ba9bf2b --- /dev/null +++ b/pkg/nameserver/validation.go @@ -0,0 +1,16 @@ +package nameserver + +import "github.com/miekg/dns" + +// SetOwnAuthKey sets the ACME challenge token for completing dns validation for acme-dns server itself +func (n *Nameserver) SetOwnAuthKey(key string) { + n.personalAuthKey = key +} + +// answerOwnChallenge answers to ACME challenge for acme-dns own certificate +func (n *Nameserver) answerOwnChallenge(q dns.Question) ([]dns.RR, error) { + r := new(dns.TXT) + r.Hdr = dns.RR_Header{Name: q.Name, Rrtype: dns.TypeTXT, Class: dns.ClassINET, Ttl: 1} + r.Txt = append(r.Txt, n.personalAuthKey) + return []dns.RR{r}, nil +} diff --git a/util.go b/util.go deleted file mode 100644 index 163683d..0000000 --- a/util.go +++ /dev/null @@ -1,119 +0,0 @@ -package main - -import ( - "crypto/rand" - "errors" - "fmt" - "math/big" - "os" - "regexp" - "strings" - - "github.com/BurntSushi/toml" - log "github.com/sirupsen/logrus" -) - -func jsonError(message string) []byte { - return []byte(fmt.Sprintf("{\"error\": \"%s\"}", message)) -} - -func fileIsAccessible(fname string) bool { - _, err := os.Stat(fname) - if err != nil { - return false - } - f, err := os.Open(fname) - if err != nil { - return false - } - f.Close() - return true -} - -func readConfig(fname string) (DNSConfig, error) { - var conf DNSConfig - _, err := toml.DecodeFile(fname, &conf) - if err != nil { - // Return with config file parsing errors from toml package - return conf, err - } - return prepareConfig(conf) -} - -// prepareConfig checks that mandatory values exist, and can be used to set default values in the future -func prepareConfig(conf DNSConfig) (DNSConfig, error) { - if conf.Database.Engine == "" { - return conf, errors.New("missing database configuration option \"engine\"") - } - if conf.Database.Connection == "" { - return conf, errors.New("missing database configuration option \"connection\"") - } - - // Default values for options added to config to keep backwards compatibility with old config - if conf.API.ACMECacheDir == "" { - conf.API.ACMECacheDir = "api-certs" - } - - return conf, nil -} - -func sanitizeString(s string) string { - // URL safe base64 alphabet without padding as defined in ACME - re, _ := regexp.Compile(`[^A-Za-z\-\_0-9]+`) - return re.ReplaceAllString(s, "") -} - -func sanitizeIPv6addr(s string) string { - // Remove brackets from IPv6 addresses, net.ParseCIDR needs this - re, _ := regexp.Compile(`[\[\]]+`) - return re.ReplaceAllString(s, "") -} - -func generatePassword(length int) string { - ret := make([]byte, length) - const alphabet = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz1234567890-_" - alphalen := big.NewInt(int64(len(alphabet))) - for i := 0; i < length; i++ { - c, _ := rand.Int(rand.Reader, alphalen) - r := int(c.Int64()) - ret[i] = alphabet[r] - } - return string(ret) -} - -func sanitizeDomainQuestion(d string) string { - dom := strings.ToLower(d) - firstDot := strings.Index(d, ".") - if firstDot > 0 { - dom = dom[0:firstDot] - } - return dom -} - -func setupLogging(format string, level string) { - if format == "json" { - log.SetFormatter(&log.JSONFormatter{}) - } - switch level { - default: - log.SetLevel(log.WarnLevel) - case "debug": - log.SetLevel(log.DebugLevel) - case "info": - log.SetLevel(log.InfoLevel) - case "error": - log.SetLevel(log.ErrorLevel) - } - // TODO: file logging -} - -func getIPListFromHeader(header string) []string { - iplist := []string{} - for _, v := range strings.Split(header, ",") { - if len(v) > 0 { - // Ignore empty values - iplist = append(iplist, strings.TrimSpace(v)) - } - } - return iplist -}