more robust SRV record filter, disallow multiple :, negative and too high port numbers (0a43c60)

@@ -345,13 +345,13 @@ function save_dns_record($id, $record)
       if (! $record['data']) {
           system_failure('SRV target missing');
       }
-      $data = explode(':', $record['data'], 2);
+      $data = explode(':', $record['data']);
       if (count($data) != 2) {
           system_failure('Das eingegebene Ziel war nicht im Format hostname:port');
       }
       list($hostname, $port) = $data;
       verify_input_hostname($hostname);
-      if ($port != (int) $port || $port == 0) {
+      if ($port !== (string)(int) $port || (int)$port < 1 || (int)$port > 65535) {
           system_failure('Ungültige Portnummer');
       }
       $record['ip'] = null;


...	...	@@ -345,13 +345,13 @@ function save_dns_record($id, $record)
345	345	if (! $record['data']) {
346	346	system_failure('SRV target missing');
347	347	}
348		- $data = explode(':', $record['data'], 2);
	348	+ $data = explode(':', $record['data']);
349	349	if (count($data) != 2) {
350	350	system_failure('Das eingegebene Ziel war nicht im Format hostname:port');
351	351	}
352	352	list($hostname, $port) = $data;
353	353	verify_input_hostname($hostname);
354		- if ($port != (int) $port \|\| $port == 0) {
	354	+ if ($port !== (string)(int) $port \|\| (int)$port < 1 \|\| (int)$port > 65535) {
355	355	system_failure('Ungültige Portnummer');
356	356	}
357	357	$record['ip'] = null;
358	358

webinterface.git