1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
|
<?php
# global functions
function GET($index) {
if (isset($_GET[$index]))
return $_GET[$index];
return null;
}
function validate_get($value, $type) {
switch($type) {
case 'host':
if (!preg_match('/^[\d\w\W]+$/u', $value))
return NULL;
break;
case 'plugin':
case 'category':
case 'type':
if (!preg_match('/^\w+$/u', $value))
return NULL;
break;
case 'pinstance':
case 'tinstance':
if (!preg_match('/^[\d\w-]+$/u', $value))
return NULL;
break;
}
return $value;
}
function validateRRDPath($base, $path) {
$base = preg_replace('/\/$/', '', $base);
# resolve possible symlink
$base = realpath($base);
$realpath = realpath(sprintf('%s/%s', $base, $path));
if (strpos($realpath, $base) === false)
return false;
if (strpos($realpath, $base) !== 0)
return false;
if (!preg_match('/\.rrd$/', $realpath))
return false;
return $realpath;
}
function crc32hex($str) {
return sprintf("%x",crc32($str));
}
function error_image() {
header("Content-Type: image/png");
readfile('layout/error.png');
exit;
}
?>
|
