poweradmin: comparison inc/dns.inc.php

equal deleted inserted replaced

-:79c33038ca14
+:3e36ebbfe048
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */
-/*
+function validate_input($zid, $type, &$content, &$name, &$prio, &$ttl)
-* Validates an IPv4 IP.
-* returns true if valid.
-*/
-function validate_input($zoneid, $type, &$content, &$name, &$prio, &$ttl)
 {
 	global $db;
+	$domain = get_domain_name_from_id($zid);
-	// Has to validate content first then it can do the rest
-	// Since if content is invalid already it can aswell be just removed
-	// Check first if content is IPv4, IPv6 or Hostname
-	// We accomplish this by just running all tests over it
-	// We start with IPv6 since its not able to have these ip's in domains.
-	//
-	// <TODO>
-	// The nocheck has to move to the configuration file
-	// </TODO>
-	//
-	$domain = get_domain_name_from_id($zoneid);
 	$nocheck = array('SOA', 'HINFO', 'NAPTR', 'URL', 'MBOXFW', 'TXT');
 	$hostname = false;
 	$ip4 = false;
 	$ip6 = false;
 			error(ERR_DNS_NS_CNAME);
 			return false;
 		}
 	}
-	if ($type == 'SOA') {
+	if ($type == 'SOA' && !is_valid_rr_soa($content)) {
-		$status = is_valid_soa($content, $zoneid);
+		return false;
-		if($status == -1) {
-			error(ERR_DNS_SOA_UNIQUE);
-		} elseif($status == -2) {
-			error(ERR_DNS_SOA_NUMERIC);
-			return false;
-		}
 	}
 	// HINFO and TXT require no validation.
 	if ($type == 'URL') {
 	// Validate the TTL, it has to be numeric.
 	$ttl = (!isset($ttl) || !is_numeric($ttl)) ? $dns_ttl : $ttl;
 	return true;
 }
-		/****************************************
-		 *					*
-		 * RECORD VALIDATING PART.		*
-		 * CHANGES HERE SHOULD BE CONSIDERED	*
-		 * THEY REQUIRE KNOWLEDGE ABOUT THE 	*
-		 * DNS SPECIFICATIONS			*
-		 *					*
-		 ***************************************/
 /*
 * Validatis a CNAME record by the name it will have and its destination
 *
 */
 	}
 	return 1;
 }
-/*
+function is_valid_hostname_label($hostname_label) {
-* Function to check the validity of SOA records.
-* return values: true if succesful
+// See <https://www.poweradmin.org/trac/wiki/Documentation/DNS-hostnames>.
-*/
+if (!preg_match('/^[a-z\d]([a-z\d-]*[a-z\d])*$/i',$hostname_label)) {
-function is_valid_soa(&$content, $zoneid)
+		return false;
-{
+} elseif (preg_match('/^[\d]+$/i',$hostname_label)) {
+return false;
-	/*
+} elseif ((strlen($hostname_label) < 2) || (strlen($hostname_label) > 63)) {
-	 * The stored format is: primary hostmaster serial refresh retry expire default_ttl
+return false;
-	 */
+}
+return true;
-	$return = get_records_by_type_from_domid("SOA", $zoneid);
+}
-	if($return->numRows() > 1) {
-		return -1;
+function is_valid_hostname_fqdn($hostname) {
-	}
+// See <https://www.poweradmin.org/trac/wiki/Documentation/DNS-hostnames>.
-	$soacontent = preg_split("/\s+/", $content);
+	global $dns_strict_tld_check;
+	global $valid_tlds;
-	if(is_valid_hostname($soacontent[0])) {
+	$hostname = ereg_replace("\.$","",$hostname);
-		$totalsoa = $soacontent[0];
-		// It doesnt matter what field 2 contains, but lets check if its there
+	if (strlen($hostname) > 255) {
-		// We assume the 2nd field wont have numbers, otherwise its a TTL field
+		error(ERR_DNS_HN_TOO_LONG);
+		return false;
-		if(count($soacontent) > 1) {
+	}
-			if(is_numeric($soacontent[1])) {
-				// its a TTL field, or at least not hostmaster or alike
+$hostname_labels = explode ('.', $hostname);
-				// Set final string to the default hostmaster addy
+$label_count = count($hostname_labels);
-				global $dns_hostmaster;
-				$totalsoa .= " ". $dns_hostmaster;
+	if ($dns_strict_tld_check == "1" && !in_array($hostname_labels[$label_count-1], $valid_tlds)) {
-			} else {
+		error(ERR_DNS_INV_TLD);
-				$totalsoa .= " ".$soacontent[1];
+		return false;
-			}
+	}
-			// For loop to iterate over the numbers
-			$imax = count($soacontent);
+	if ($hostname_labels[$label_count-1] == "arpa") {
-			for($i = 2; ($i < $imax) && ($i < 7); $i++) {
+		// FIXME
-				if(!is_numeric($soacontent[$i])) {
+	} else {
-					return -2;
+		foreach ($hostname_labels as $hostname_label) {
+			if (!is_valid_hostname_label($hostname_label)) {
+				error(ERR_DNS_HOSTNAME);
+				return false;
+			}
+		}
+	}
+	return true;
+}
+function is_valid_rr_soa(&$content) {
+	// TODO move to appropiate location
+//	$return = get_records_by_type_from_domid("SOA", $zid);
+//	if($return->numRows() > 1) {
+//		return false;
+//	}
+	$fields = preg_split("/\s+/", trim($content));
+$field_count = count($fields);
+	if ($field_count == 0 || $field_count > 7) {
+		return false;
+	} else {
+		if (!is_valid_hostname_fqdn($fields[0]) || preg_match('/\.arpa\.?$/',$fields[0])) {
+			return false;
+		}
+		$final_soa = $fields[0];
+		if (isset($fields[1])) {
+			$addr_input = $fields[1];
+		} else {
+			global $dns_hostmaster;
+			$addr_input = $dns_hostmaster;
+		}
+		if (!preg_match("/@/", $addr_input)) {
+			$addr_input = preg_split('/(?<!\\\)\./', $addr_input, 2);
+			$addr_to_check = str_replace("\\", "", $addr_input[0]) . "@" . $addr_input[1];
+		} else {
+			$addr_to_check = $addr_input;
+		}
+		if (!is_valid_email($addr_to_check)) {
+			return false;
+		} else {
+			$addr_final = explode('@', $addr_to_check, 2);
+			$final_soa .= " " . str_replace(".", "\\.", $addr_final[0]) . "." . $addr_final[1];
+		}
+		if (isset($fields[2])) {
+			if (!is_numeric($fields[2])) {
+				return false;
+			}
+			$final_soa .= " " . $fields[2];
+		} else {
+			$final_soa .= " 0";
+		}
+		if ($field_count == 7) {
+			for ($i = 3; ($i < 7); $i++) {
+				if (!is_numeric($fields[$i])) {
+					return false;
 				} else {
-					$totalsoa .= " ".$soacontent[$i];
+					$final_soa .= " " . $fields[$i];
 				}
 			}
-			// if($i > 7) --> SOA contained too many fields, should we provide error?
+		}
-		}
+	}
-	} else {
+	$content = $final_soa;
-		error(ERR_DNS_SOA_HOSTNAME);
+	return true;
-	}
-	$content = $totalsoa;
-	return 1;
 }
 function is_valid_url($url)
 {

changeset 138	3e36ebbfe048
parent 136	c795dd75a77e
child 140	e68c3d6094d1