webmin/nftables/save_set.cgi

#!/usr/bin/perl
# save_set.cgi
# Save a new or existing set

require './nftables-lib.pl'; ## no critic
use strict;
use warnings;
our (%in, %text);
ReadParse();
error_setup($text{'set_err'});

my @tables = get_nftables_save();
my $table = $tables[$in{'table'}];
$table || error($text{'set_notable'});

my $is_new = $in{'new'} ? 1 : 0;
my $name = $in{'set_name'};
$name =~ /^\w[\w-]*$/ || error($text{'set_ename'});

if ($is_new && $table->{'sets'}->{$name}) {
    error($text{'set_edup'});
}

my $type = $in{'set_type'};
$type = undef if (defined($type) && $type =~ /^\s*$/);
error($text{'set_etype'}) if (!$type);

my $flags = $in{'set_flags'};
if (defined($flags) && $flags ne '') {
    my @vals = split(/\0/, $flags);
    @vals = grep { defined($_) && $_ ne '' } @vals;
    $flags = @vals ? join(" ", @vals) : undef;
}
$flags = undef if (defined($flags) && $flags =~ /^\s*$/);

my $elements = parse_set_elements_input($in{'set_elements'});

my $set;
if ($is_new) {
    $set = { 'name' => $name, 'raw_lines' => [ ] };
}
else {
    my $orig = $in{'set'};
    $set = $table->{'sets'}->{$orig};
    $set || error($text{'set_noset'});
    $name = $orig;
}

$set->{'name'} = $name;
$set->{'type'} = $type;
$set->{'flags'} = $flags;
$set->{'elements'} = $elements;
$set->{'raw_lines'} ||= [ ];

$table->{'sets'}->{$name} = $set;

my $set_err = validate_set_references($table);
error($set_err) if ($set_err);

my $err = save_table_configuration($table, @tables);
error(text('set_failed', $err)) if ($err);

webmin_log($is_new ? "create" : "save", "set", $name,
           { 'table' => $table->{'name'}, 'family' => $table->{'family'} });
redirect("index.cgi?table=$in{'table'}&view=sets");