/** * This file is part of the Froxlor project. * Copyright (c) 2016 the Froxlor Team (see authors). * * For the full copyright and license information, please view the COPYING * file that was distributed with this source code. You can also view the * COPYING file online at http://files.froxlor.org/misc/COPYING.txt * * @copyright (c) the authors * @author Froxlor team <*****@*****.**> (2016-) * @license GPLv2 http://files.froxlor.org/misc/COPYING.txt * @package Functions * */ function createDomainZone($domain_id, $froxlorhostname = false, $isMainButSubTo = false) { if (!$froxlorhostname) { // get domain-name $dom_stmt = Database::prepare("SELECT * FROM `" . TABLE_PANEL_DOMAINS . "` WHERE id = :did"); $domain = Database::pexecute_first($dom_stmt, array('did' => $domain_id)); } else { $domain = $domain_id; } if ($domain['isbinddomain'] != '1') { return; } $dom_entries = array(); if (!$froxlorhostname) { // select all entries $sel_stmt = Database::prepare("SELECT * FROM `" . TABLE_DOMAIN_DNS . "` WHERE domain_id = :did ORDER BY id ASC"); Database::pexecute($sel_stmt, array('did' => $domain_id)); $dom_entries = $sel_stmt->fetchAll(PDO::FETCH_ASSOC); } // check for required records $required_entries = array(); addRequiredEntry('@', 'A', $required_entries); addRequiredEntry('@', 'AAAA', $required_entries); if (!$isMainButSubTo) { addRequiredEntry('@', 'NS', $required_entries); } if ($domain['isemaildomain'] === '1') { addRequiredEntry('@', 'MX', $required_entries); if (Settings::Get('system.dns_createmailentry')) { foreach (['imap', 'pop3', 'mail', 'smtp'] as $record) { foreach (['AAAA', 'A'] as $type) { addRequiredEntry($record, $type, $required_entries); } } } } // additional required records by setting if ($domain['iswildcarddomain'] == '1') { addRequiredEntry('*', 'A', $required_entries); addRequiredEntry('*', 'AAAA', $required_entries); } elseif ($domain['wwwserveralias'] == '1') { addRequiredEntry('www', 'A', $required_entries); addRequiredEntry('www', 'AAAA', $required_entries); } if (!$froxlorhostname) { // additional required records for subdomains $subdomains_stmt = Database::prepare("\n\t\t\tSELECT `domain`, `iswildcarddomain`, `wwwserveralias` FROM `" . TABLE_PANEL_DOMAINS . "`\n\t\t\tWHERE `parentdomainid` = :domainid\n\t\t"); Database::pexecute($subdomains_stmt, array('domainid' => $domain_id)); while ($subdomain = $subdomains_stmt->fetch(PDO::FETCH_ASSOC)) { // Listing domains is enough as there currently is no support for choosing // different ips for a subdomain => use same IPs as toplevel addRequiredEntry(str_replace('.' . $domain['domain'], '', $subdomain['domain']), 'A', $required_entries); addRequiredEntry(str_replace('.' . $domain['domain'], '', $subdomain['domain']), 'AAAA', $required_entries); // Check whether to add a www.-prefix if ($subdomain['iswildcarddomain'] == '1') { addRequiredEntry('*.' . str_replace('.' . $domain['domain'], '', $subdomain['domain']), 'A', $required_entries); addRequiredEntry('*.' . str_replace('.' . $domain['domain'], '', $subdomain['domain']), 'AAAA', $required_entries); } elseif ($subdomain['wwwserveralias'] == '1') { addRequiredEntry('www.' . str_replace('.' . $domain['domain'], '', $subdomain['domain']), 'A', $required_entries); addRequiredEntry('www.' . str_replace('.' . $domain['domain'], '', $subdomain['domain']), 'AAAA', $required_entries); } } } // additional required records for SPF and DKIM if activated if ($domain['isemaildomain'] == '1') { if (Settings::Get('spf.use_spf') == '1') { // check for SPF content later addRequiredEntry('@SPF@', 'TXT', $required_entries); } if (Settings::Get('dkim.use_dkim') == '1') { // check for DKIM content later addRequiredEntry('dkim_' . $domain['dkim_id'] . '._domainkey', 'TXT', $required_entries); // check for ASDP if (Settings::Get('dkim.dkim_add_adsp') == "1") { addRequiredEntry('_adsp._domainkey', 'TXT', $required_entries); } } } $primary_ns = null; $zonerecords = array(); // now generate all records and unset the required entries we have foreach ($dom_entries as $entry) { if (array_key_exists($entry['type'], $required_entries) && array_key_exists(md5($entry['record']), $required_entries[$entry['type']])) { unset($required_entries[$entry['type']][md5($entry['record'])]); } if (Settings::Get('spf.use_spf') == '1' && $entry['type'] == 'TXT' && $entry['record'] == '@' && strtolower(substr($entry['content'], 0, 7)) == '"v=spf1') { // unset special spf required-entry unset($required_entries[$entry['type']][md5("@SPF@")]); } if (empty($primary_ns) && $entry['type'] == 'NS') { // use the first NS entry as primary ns $primary_ns = $entry['content']; } $zonerecords[] = new DnsEntry($entry['record'], $entry['type'], $entry['content'], $entry['prio'], $entry['ttl']); } // add missing required entries if (!empty($required_entries)) { // A / AAAA records if (array_key_exists("A", $required_entries) || array_key_exists("AAAA", $required_entries)) { if ($froxlorhostname) { // use all available IP's for the froxlor-hostname $result_ip_stmt = Database::prepare("\n\t\t\t\t\tSELECT `ip` FROM `" . TABLE_PANEL_IPSANDPORTS . "` GROUP BY `ip`\n\t\t\t\t"); Database::pexecute($result_ip_stmt); } else { $result_ip_stmt = Database::prepare("\n\t\t\t\t\tSELECT `p`.`ip` AS `ip`\n\t\t\t\t\tFROM `" . TABLE_PANEL_IPSANDPORTS . "` `p`, `" . TABLE_DOMAINTOIP . "` `di`\n\t\t\t\t\tWHERE `di`.`id_domain` = :domainid AND `p`.`id` = `di`.`id_ipandports`\n\t\t\t\t\tGROUP BY `p`.`ip`;\n\t\t\t\t"); Database::pexecute($result_ip_stmt, array('domainid' => $domain_id)); } $all_ips = $result_ip_stmt->fetchAll(PDO::FETCH_ASSOC); foreach ($all_ips as $ip) { foreach ($required_entries as $type => $records) { foreach ($records as $record) { if ($type == 'A' && filter_var($ip['ip'], FILTER_VALIDATE_IP, FILTER_FLAG_IPV4) !== false) { $zonerecords[] = new DnsEntry($record, 'A', $ip['ip']); } elseif ($type == 'AAAA' && filter_var($ip['ip'], FILTER_VALIDATE_IP, FILTER_FLAG_IPV6) !== false) { $zonerecords[] = new DnsEntry($record, 'AAAA', $ip['ip']); } } } } unset($required_entries['A']); unset($required_entries['AAAA']); } // NS records if (array_key_exists("NS", $required_entries)) { if (Settings::Get('system.nameservers') != '') { $nameservers = explode(',', Settings::Get('system.nameservers')); foreach ($nameservers as $nameserver) { $nameserver = trim($nameserver); // append dot to hostname if (substr($nameserver, -1, 1) != '.') { $nameserver .= '.'; } foreach ($required_entries as $type => $records) { if ($type == 'NS') { foreach ($records as $record) { if (empty($primary_ns)) { // use the first NS entry as primary ns $primary_ns = $nameserver; } $zonerecords[] = new DnsEntry($record, 'NS', $nameserver); } } } } unset($required_entries['NS']); } } // MX records if (array_key_exists("MX", $required_entries)) { if (Settings::Get('system.mxservers') != '') { $mxservers = explode(',', Settings::Get('system.mxservers')); foreach ($mxservers as $mxserver) { if (substr($mxserver, -1, 1) != '.') { $mxserver .= '.'; } // split in prio and server $mx_details = explode(" ", $mxserver); if (count($mx_details) == 1) { $mx_details[1] = $mx_details[0]; $mx_details[0] = 10; } foreach ($required_entries as $type => $records) { if ($type == 'MX') { foreach ($records as $record) { $zonerecords[] = new DnsEntry($record, 'MX', $mx_details[1], $mx_details[0]); } } } } unset($required_entries['MX']); } } // TXT (SPF and DKIM) if (array_key_exists("TXT", $required_entries)) { if (Settings::Get('dkim.use_dkim') == '1') { $dkim_entries = generateDkimEntries($domain); } foreach ($required_entries as $type => $records) { if ($type == 'TXT') { foreach ($records as $record) { if ($record == '@SPF@') { $txt_content = Settings::Get('spf.spf_entry'); $zonerecords[] = new DnsEntry('@', 'TXT', encloseTXTContent($txt_content)); } elseif ($record == 'dkim_' . $domain['dkim_id'] . '._domainkey' && !empty($dkim_entries)) { // check for multiline entry $multiline = false; if (substr($dkim_entries[0], 0, 1) == '(') { $multiline = true; } $zonerecords[] = new DnsEntry($record, 'TXT', encloseTXTContent($dkim_entries[0], $multiline)); } elseif ($record == '_adsp._domainkey' && !empty($dkim_entries) && isset($dkim_entries[1])) { $zonerecords[] = new DnsEntry($record, 'TXT', encloseTXTContent($dkim_entries[1])); } } } } } } if (empty($primary_ns)) { // TODO log error: no NS given, use system-hostname $primary_ns = Settings::Get('system.hostname'); } if (!$isMainButSubTo) { $date = date('Ymd'); $domain['bindserial'] = preg_match('/^' . $date . '/', $domain['bindserial']) ? $domain['bindserial'] + 1 : $date . '00'; if (!$froxlorhostname) { $upd_stmt = Database::prepare("\n\t\t\t\t\tUPDATE `" . TABLE_PANEL_DOMAINS . "` SET\n\t\t\t\t\t`bindserial` = :serial\n\t\t\t\t\t WHERE `id` = :id\n\t\t\t\t"); Database::pexecute($upd_stmt, array('serial' => $domain['bindserial'], 'id' => $domain['id'])); } $soa_content = $primary_ns . " " . escapeSoaAdminMail(Settings::Get('panel.adminmail')) . " (" . PHP_EOL; $soa_content .= $domain['bindserial'] . "\t; serial" . PHP_EOL; // TODO for now, dummy time-periods $soa_content .= "1800\t; refresh (30 mins)" . PHP_EOL; $soa_content .= "900\t; retry (15 mins)" . PHP_EOL; $soa_content .= "604800\t; expire (7 days)" . PHP_EOL; $soa_content .= "1200\t)\t; minimum (20 mins)"; $soa_record = new DnsEntry('@', 'SOA', $soa_content); array_unshift($zonerecords, $soa_record); } $zone = new DnsZone((int) Settings::Get('system.defaultttl'), $domain['domain'], $domain['bindserial'], $zonerecords); return $zone; }
// append trailing dot (again) $content .= '.'; } elseif ($type == 'NS') { // check for trailing dot if (substr($content, -1) == '.') { // remove it for checks $content = substr($content, 0, -1); } if (!validateDomain($content)) { $errors[] = $lng['error']['dns_ns_invaliddom']; } // append trailing dot (again) $content .= '.'; } elseif ($type == 'TXT' && !empty($content)) { // check that TXT content is enclosed in " " $content = encloseTXTContent($content); } elseif ($type == 'SRV') { if ($prio === null || $prio < 0) { $errors[] = $lng['error']['dns_srv_prioempty']; } // check only last part of content, as it can look like: // _service._proto.name. TTL class SRV priority weight port target. $_split_content = explode(" ", $content); // SRV content must be [weight] [port] [target] if (count($_split_content) != 3) { $errors[] = $lng['error']['dns_srv_invalidcontent']; } $target = trim($_split_content[count($_split_content) - 1]); if ($target != '.') { // check for trailing dot if (substr($target, -1) == '.') {