We use cookies to ensure you get the best experience on our website
Página Principal Explorar Ajuda
Registe-se Iniciar Sessão
0ct0pu5
/
servnest
1
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Ramo: dev
Ramos Etiquetas
servnest
/
pg-act
/
ns
/
edit.php

edit.php 3.5 KB
Link permanente Histórico Em bruto

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081 
  1. <?php declare(strict_types=1);
    2. 

  2. 

  3. nsCheckZonePossession($_POST['domain']);
    4. 

  4. 

  5. $path = CONF['ns']['knot_zones_path'] . '/' . $_POST['domain'] . 'zone';
    6. 

  6. 

  7. if (isset($_POST['records'])) {
    8. 

  8. 

  9. 	// Get current SOA record
    10. 

  10. 	$current_zone_content = file_get_contents($path);
    11. 

  11. 	if ($current_zone_content === false)
    12. 

  12. 		output(500, 'Unable to read zone file.');
    13. 

  13. 	if (preg_match('/^(?<soa>' . preg_quote($_POST['domain'], '/') . '[\t ]+[0-9]{1,16}[\t ]+SOA[\t ]+.+)$/Dm', $current_zone_content, $matches) !== 1)
    14. 

  14. 		output(500, 'Unable to get current SOA record from zone file.');
    15. 

  15. 

  16. 	// Generate new content
    17. 

  17. 	$new_zone_content = $matches['soa'] . LF;
    18. 

  18. 	if (strlen($_POST['records']) > NS_TEXTAREA_MAX_CHARACTERS)
    19. 

  19. 		output(403, sprintf(_('The zone is limited to %s characters.'), NS_TEXTAREA_MAX_CHARACTERS));
    20. 

  20. 	foreach (explode("\r\n", $_POST['records']) as $record) {
    21. 

  21. 		if ($record === '') continue;
    22. 

  22. 		if (preg_match('/^(?<domain>[a-z0-9@._-]{1,256})(?:[\t ]+(?<ttl>[0-9]{1,16}))?(?:[\t ]+IN)?[\t ]+(?<type>[A-Z]{1,16})[\t ]+(?<value>.+)$/D', $record, $matches) !== 1)
    23. 

  23. 			output(403, _('The following line does not match the expected format: ') . '<code>' . htmlspecialchars($record) . '</code>');
    24. 

  24. 		if (in_array($matches['type'], NS_ALLOWED_TYPES, true) !== true)
    25. 

  25. 			output(403, sprintf(_('The %s type is not allowed.'), '<code>' . $matches['type'] . '</code>'));
    26. 

  26. 		if ($matches['ttl'] !== '' AND $matches['ttl'] < NS_MIN_TTL)
    27. 

  27. 			output(403, sprintf(_('TTLs shorter than %s seconds are forbidden.'), NS_MIN_TTL));
    28. 

  28. 		if ($matches['ttl'] !== '' AND $matches['ttl'] > NS_MAX_TTL)
    29. 

  29. 			output(403, sprintf(_('TTLs longer than %s seconds are forbidden.'), NS_MAX_TTL));
    30. 

  30. 		$new_zone_content .= $matches['domain'] . ' ' . (($matches['ttl'] === '') ? NS_DEFAULT_TTL : $matches['ttl']) . ' ' . $matches['type'] . ' ' . $matches['value'] . LF;
    31. 

  31. 	}
    32. 

  32. 

  33. 	// Send the zone content to kzonecheck's stdin
    34. 

  34. 	$process = proc_open(CONF['ns']['kzonecheck_path'] . ' --origin ' . escapeshellarg($_POST['domain']) . ' --dnssec off -', [0 => ['pipe', 'r']], $pipes);
    35. 

  35. 	if (is_resource($process) !== true)
    36. 

  36. 		output(500, 'Can\'t spawn kzonecheck.');
    37. 

  37. 	fwrite($pipes[0], $new_zone_content);
    38. 

  38. 	fclose($pipes[0]);
    39. 

  39. 	if (proc_close($process) !== 0)
    40. 

  40. 		output(403, _('Sent content is not correct (according to <code>kzonecheck</code>).'));
    41. 

  41. 

  42. 	ratelimit();
    43. 

  43. 

  44. 	knotc(['zone-freeze', $_POST['domain']], $output, $return_code);
    45. 

  45. 	if ($return_code !== 0)
    46. 

  46. 		output(500, 'Failed to freeze zone file.', $output);
    47. 

  47. 

  48. 	knotc(['zone-flush', $_POST['domain']], $output, $return_code);
    49. 

  49. 	if ($return_code !== 0)
    50. 

  50. 		output(500, 'Failed to flush zone file.', $output);
    51. 

  51. 

  52. 	if (file_put_contents($path, $new_zone_content) === false)
    53. 

  53. 		output(500, 'Failed to write zone file.');
    54. 

  54. 

  55. 	knotc(['zone-reload', $_POST['domain']], $output, $return_code);
    56. 

  56. 	if ($return_code !== 0)
    57. 

  57. 		output(500, 'Failed to reload zone file.', $output);
    58. 

  58. 

  59. 	knotc(['zone-thaw', $_POST['domain']], $output, $return_code);
    60. 

  60. 	if ($return_code !== 0)
    61. 

  61. 		output(500, 'Failed to thaw zone file.', $output);
    62. 

  62. 

  63. 	usleep(1000000);
    64. 

  64. }
    65. 

  65. 

  66. // Display zone
    67. 

  67. 

  68. if (($records = file_get_contents($path)) === false)
    69. 

  69. 	output(500, 'Unable to read zone file.');
    70. 

  70. 

  71. $data['records'] = '';
    72. 

  72. foreach (explode(LF, $records) as $zone_line) {
    73. 

  73. 	if (empty($zone_line) OR str_starts_with($zone_line, ';'))
    74. 

  74. 		continue;
    75. 

  75. 	if (preg_match('/^(?:(?:[a-z0-9_-]{1,63}\.){1,127})?' . preg_quote($_POST['domain'], '/') . '[\t ]+[0-9]{1,8}[\t ]+(?<type>[A-Z]{1,16})[\t ]+.+$/D', $zone_line, $matches)) {
    76. 

  76. 		if (in_array($matches['type'], NS_ALLOWED_TYPES, true) !== true)
    77. 

  77. 			continue;
    78. 

  78. 		$data['records'] .= $zone_line . LF;
    79. 

  79. 	}
    80. 

  80. }
    81. 

  81. $data['records'] .= LF;
    82.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5