Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php /* * prefixes.php * * part of pfSense (https://www.pfsense.org) * Copyright (c) ..
Decoded Output download
<?php
/*
* prefixes.php
*
* part of pfSense (https://www.pfsense.org)
* Copyright (c) 2004-2013 BSD Perimeter
* Copyright (c) 2013-2016 Electric Sheep Fencing
* Copyright (c) 2014-2024 Rubicon Communications, LLC (Netgate)
* All rights reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
require_once('system.inc');
require_once('util.inc');
$leases_file = "/var/dhcpd/var/db/dhcpd6.leases";
if (!file_exists($leases_file)) {
exit(1);
}
$fd = fopen($leases_file, 'r');
$duid_arr = array();
while (( $line = fgets($fd, 4096)) !== false) {
// echo "$line";
/* Originally: preg_match("/^(ia-[np][ad])[ ]+\"(.*?)\"/i", $line, $duidmatch)
That is: \"(.*?)\"
, which is a non-greedy matching. However that does not go well with the legal
substring \" in the IAID+DUID lease string format of ISC DHCPDv6,
because it truncates before we reach the end of the IAID+DUID string!
Instead we use: \"(.*)\"
(Might fail if content of the lease file is not well formed.)
Maybe someone would argue to e.g. use \"(.*?)\"[ ]*{[ ]*$
instead
(Either we get a valid result or nothing at all.)
, but I'll leave it to others to decide! */
if (preg_match("/^(ia-[np][ad])[ ]+\"(.*)\"/i", $line, $duidmatch)) {
$type = $duidmatch[1];
$duid = extract_duid($duidmatch[2]);
continue;
}
/* is it active? otherwise just discard */
if (preg_match("/binding state active/i", $line, $activematch)) {
$active = true;
continue;
}
if (preg_match("/iaaddr[ ]+([0-9a-f:]+)[ ]+/i", $line, $addressmatch)) {
$ia_na = $addressmatch[1];
continue;
}
if (preg_match("/iaprefix[ ]+([0-9a-f:\/]+)[ ]+/i", $line, $prefixmatch)) {
$ia_pd = $prefixmatch[1];
continue;
}
/* closing bracket */
if (preg_match("/^}/i", $line)) {
if (isset($duid) && $duid !== false && $active === true) {
switch ($type) {
case "ia-na":
$duid_arr[$duid][$type] = $ia_na;
break;
case "ia-pd":
$duid_arr[$duid][$type] = $ia_pd;
break;
default:
break;
}
}
unset($type);
unset($duid);
unset($active);
unset($ia_na);
unset($ia_pd);
continue;
}
}
fclose($fd);
$routes = array();
foreach ($duid_arr as $entry) {
if (!empty($entry['ia-pd'])) {
$routes[$entry['ia-na']] = $entry['ia-pd'];
}
}
// echo "add routes
";
if (count($routes) > 0) {
foreach ($routes as $address => $prefix) {
route_add_or_change($prefix, $address);
}
}
/* get log from dhcpd */
$dhcpdlogfile = "/var/log/dhcpd.log";
$expires = array();
if (file_exists($dhcpdlogfile)) {
$fd = popen(system_log_get_cat() . ' ' . sort_related_log_files($dhcpdlogfile, true, true), 'r');
while (($line = fgets($fd)) !== false) {
//echo $line;
if (preg_match("/releases[ ]+prefix[ ]+([0-9a-f:]+\/[0-9]+)/i", $line, $expire)) {
if (in_array($expire[1], $routes)) {
continue;
}
if (!in_array($expire[1], $expires)) {
$expires[] = $expire[1];
}
}
}
pclose($fd);
}
// echo "remove routes
";
if (count($expires) > 0) {
foreach ($expires as $prefix) {
route_del($prefix);
}
}
/* handle quotify_buf - https://gitlab.isc.org/isc-projects/dhcp/-/blob/master/common/print.c */
function extract_duid($ia_string) {
for ($i = 0, $iaid_counter = 0, $len = strlen($ia_string); $i < $len && $iaid_counter < 4; $i++, $iaid_counter++) {
if ($ia_string[$i] !== '\') {
continue;
}
else if ($len - $i >= 2) {
if (($ia_string[$i+1] === '\') || ($ia_string[$i+1] === '"')) {
$i += 1;
continue;
}
else if ($len - $i >= 4) {
if (preg_match('/[0-3][0-7]{2}/', substr($ia_string, $i+1, 3))) {
$i += 3;
continue;
}
}
}
return false;
}
/* Return anything after the first 4 octets! */
if ($iaid_counter === 4) {
/* substr returns false when $len == $i */
return substr($ia_string, $i);
}
return false;
}
?>
Did this file decode correctly?
Original Code
<?php
/*
* prefixes.php
*
* part of pfSense (https://www.pfsense.org)
* Copyright (c) 2004-2013 BSD Perimeter
* Copyright (c) 2013-2016 Electric Sheep Fencing
* Copyright (c) 2014-2024 Rubicon Communications, LLC (Netgate)
* All rights reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
require_once('system.inc');
require_once('util.inc');
$leases_file = "/var/dhcpd/var/db/dhcpd6.leases";
if (!file_exists($leases_file)) {
exit(1);
}
$fd = fopen($leases_file, 'r');
$duid_arr = array();
while (( $line = fgets($fd, 4096)) !== false) {
// echo "$line";
/* Originally: preg_match("/^(ia-[np][ad])[ ]+\"(.*?)\"/i", $line, $duidmatch)
That is: \"(.*?)\"
, which is a non-greedy matching. However that does not go well with the legal
substring \" in the IAID+DUID lease string format of ISC DHCPDv6,
because it truncates before we reach the end of the IAID+DUID string!
Instead we use: \"(.*)\"
(Might fail if content of the lease file is not well formed.)
Maybe someone would argue to e.g. use \"(.*?)\"[ \t]*{[ \t]*$
instead
(Either we get a valid result or nothing at all.)
, but I'll leave it to others to decide! */
if (preg_match("/^(ia-[np][ad])[ ]+\"(.*)\"/i", $line, $duidmatch)) {
$type = $duidmatch[1];
$duid = extract_duid($duidmatch[2]);
continue;
}
/* is it active? otherwise just discard */
if (preg_match("/binding state active/i", $line, $activematch)) {
$active = true;
continue;
}
if (preg_match("/iaaddr[ ]+([0-9a-f:]+)[ ]+/i", $line, $addressmatch)) {
$ia_na = $addressmatch[1];
continue;
}
if (preg_match("/iaprefix[ ]+([0-9a-f:\/]+)[ ]+/i", $line, $prefixmatch)) {
$ia_pd = $prefixmatch[1];
continue;
}
/* closing bracket */
if (preg_match("/^}/i", $line)) {
if (isset($duid) && $duid !== false && $active === true) {
switch ($type) {
case "ia-na":
$duid_arr[$duid][$type] = $ia_na;
break;
case "ia-pd":
$duid_arr[$duid][$type] = $ia_pd;
break;
default:
break;
}
}
unset($type);
unset($duid);
unset($active);
unset($ia_na);
unset($ia_pd);
continue;
}
}
fclose($fd);
$routes = array();
foreach ($duid_arr as $entry) {
if (!empty($entry['ia-pd'])) {
$routes[$entry['ia-na']] = $entry['ia-pd'];
}
}
// echo "add routes\n";
if (count($routes) > 0) {
foreach ($routes as $address => $prefix) {
route_add_or_change($prefix, $address);
}
}
/* get log from dhcpd */
$dhcpdlogfile = "/var/log/dhcpd.log";
$expires = array();
if (file_exists($dhcpdlogfile)) {
$fd = popen(system_log_get_cat() . ' ' . sort_related_log_files($dhcpdlogfile, true, true), 'r');
while (($line = fgets($fd)) !== false) {
//echo $line;
if (preg_match("/releases[ ]+prefix[ ]+([0-9a-f:]+\/[0-9]+)/i", $line, $expire)) {
if (in_array($expire[1], $routes)) {
continue;
}
if (!in_array($expire[1], $expires)) {
$expires[] = $expire[1];
}
}
}
pclose($fd);
}
// echo "remove routes\n";
if (count($expires) > 0) {
foreach ($expires as $prefix) {
route_del($prefix);
}
}
/* handle quotify_buf - https://gitlab.isc.org/isc-projects/dhcp/-/blob/master/common/print.c */
function extract_duid($ia_string) {
for ($i = 0, $iaid_counter = 0, $len = strlen($ia_string); $i < $len && $iaid_counter < 4; $i++, $iaid_counter++) {
if ($ia_string[$i] !== '\\') {
continue;
}
else if ($len - $i >= 2) {
if (($ia_string[$i+1] === '\\') || ($ia_string[$i+1] === '"')) {
$i += 1;
continue;
}
else if ($len - $i >= 4) {
if (preg_match('/[0-3][0-7]{2}/', substr($ia_string, $i+1, 3))) {
$i += 3;
continue;
}
}
}
return false;
}
/* Return anything after the first 4 octets! */
if ($iaid_counter === 4) {
/* substr returns false when $len == $i */
return substr($ia_string, $i);
}
return false;
}
?>
Function Calls
None |
Stats
MD5 | 76283db1c8f3cfc666a8c08693dcfcec |
Eval Count | 0 |
Decode Time | 91 ms |