VladPolskiy/webmin
1
0
Fork 0
mirror of https://github.com/webmin/webmin.git synced 2025-08-16 14:51:18 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
a20398e61d746d17cdbf6e989cea27d15a8629d7
webmin/bind8/save_trusted.cgi
iliajie d0ed6f944e Fix pointless warnings flooding error log
2022-06-30 13:08:38 +03:00

104 lines
2.8 KiB
Perl
Executable File
Raw Blame History

#!/usr/local/bin/perl
# Save DNSSEC verification options
use strict;
use warnings;
no warnings 'redefine';
no warnings 'uninitialized';
our (%access, %text, %in, %config);
require './bind8-lib.pl';
$access{'defaults'} || &error($text{'trusted_ecannot'});
&error_setup($text{'trusted_err'});
&ReadParse();
&lock_file(&make_chroot($config{'named_conf'}));
my $parent = &get_config_parent();
my $conf = $parent->{'members'};
my $options = &find("options", $conf);
# DNSSEC enabled
&save_choice("dnssec-enable", $options, 1);
if (&supports_dnssec_client() == 2) {
&save_choice("dnssec-validation", $options, 1);
}
# Save DLV zones
if (defined($in{'dlv_auto'})) {
my @dlvs = ( );
if ($in{'dlv_auto'} == 1) {
# Automatic mode
push(@dlvs, { 'name' => 'dnssec-lookaside',
'values' => [ 'auto' ] });
}
elsif ($in{'dlv_auto'} == 0) {
# Listed zones
my $dlv;
for(my $i=0; defined($in{"anchor_$i"}); $i++) {
if (!$in{"anchor_${i}_def"}) {
$in{"anchor_$i"} =~ /^[a-z0-9\.\-\_]+$/ ||
&error(&text('trusted_eanchor', $i+1));
$in{"anchor_$i"} .= "."
if ($in{"anchor_$i"} !~ /\.$/);
if ($in{"dlv_${i}_def"}) {
$dlv = ".";
}
else {
$in{"dlv_$i"} =~ /^[a-z0-9\.\-\_]+$/ ||
&error(&text('trusted_edlv', $i+1));
$dlv = $in{"dlv_$i"};
$dlv .= "." if ($dlv !~ /\.$/);
}
push(@dlvs, { 'name' => 'dnssec-lookaside',
'values' => [
$dlv, "trust-anchor",
$in{"anchor_$i"} ] });
}
}
}
elsif ($in{'dlv_auto'} == 2) {
# None
@dlvs = ( );
}
&save_directive($options, "dnssec-lookaside", \@dlvs, 1);
}
# Save trusted keys
if (defined($in{'zone_0'})) {
my @keys = ( );
my $trusted = &find("trusted-keys", $conf);
for(my $i=0; defined($in{"zone_$i"}); $i++) {
next if ($in{"zone_${i}_def"});
$in{"zone_$i"} =~ /^[a-z0-9\.\-\_]+$/ ||
&error(&text('trusted_ezone', $i+1));
$in{"zone_$i"} .= "." if ($in{"zone_$i"} !~ /\.$/);
$in{"flags_$i"} =~ /^\d+$/ ||
&error(&text('trusted_eflags', $i+1));
$in{"proto_$i"} =~ /^\d+$/ ||
&error(&text('trusted_eproto', $i+1));
$in{"alg_$i"} =~ /^\d+$/ ||
&error(&text('trusted_ealg', $i+1));
$in{"key_$i"} =~ s/\s//g;
$in{"key_$i"} || &error(&text('trusted_ekey', $i+1));
push(@keys, { 'name' => $in{"zone_$i"},
'values' => [ $in{"flags_$i"}, $in{"proto_$i"},
$in{"alg_$i"},
'"'.$in{"key_$i"}.'"' ],
});
}
if (!$trusted && @keys) {
# Need to create block
$trusted = { 'name' => 'trusted-keys',
'type' => 1,
'members' => [ ] };
&save_directive($parent, "trusted-keys", [ $trusted ]);
}
my @oldkeys = @{$trusted->{'members'}};
&save_directive($trusted, \@oldkeys, \@keys, 1);
}
&flush_file_lines();
&unlock_file(&make_chroot($config{'named_conf'}));
&webmin_log("trusted");
&redirect("");
Reference in New Issue View Git Blame Copy Permalink