Updates and some shuffling

Author: Al-Azif

.github/workflows/on-demand.yml

@@ -6,6 +6,21 @@ on:
       - 'main'
 
 jobs:
+  static-analysis:
+    name: Static Analysis
+    runs-on: ubuntu-latest
+    steps:
+      -
+        name: Checkout
+        uses: actions/checkout@v4
+      -
+        name: Run ShellCheck
+        uses: ludeeus/[email protected]
+      -
+        name: Run Hadolint
+        uses: hadolint/[email protected]
+        with:
+          dockerfile: Dockerfile
   docker:
     runs-on: ubuntu-latest
     steps:

.github/workflows/pull-request.yml

@@ -4,6 +4,21 @@ on:
   pull_request:
 
 jobs:
+  static-analysis:
+    name: Static Analysis
+    runs-on: ubuntu-latest
+    steps:
+      -
+        name: Checkout
+        uses: actions/checkout@v4
+      -
+        name: Run ShellCheck
+        uses: ludeeus/[email protected]
+      -
+        name: Run Hadolint
+        uses: hadolint/[email protected]
+        with:
+          dockerfile: Dockerfile
   docker:
     runs-on: ubuntu-latest
     steps:

Dockerfile

@@ -15,10 +15,11 @@ RUN \
         openssl=3.1.4-r1 \
         shadow=4.13-r4 \
         tini=0.19.0-r1 && \
-    # Remove default NGINX vHosts and website
+    # Remove default NGINX vHosts and websites
     rm -f /etc/nginx/sites-enabled/default && \
     rm -f /etc/nginx/sites-available/default && \
     rm -rf /var/www/* && \
+    mkdir -p /var/www && \
     # Setup templates directory
     mkdir -p /etc/nginx/templates/sites-available && \
     chmod 755 /etc/nginx/templates && \
@@ -55,26 +56,24 @@ COPY entrypoint.sh /entrypoint.sh
 # Copy HEALTHCHECK script to container
 COPY healthcheck.sh /healthcheck.sh
 
-# Copy "static" files
-COPY ps-sys-updates /var/www/ps-sys-updates
+# Copy system update metadata files
+COPY ps-sys-updates /srv/ps-sys-updates
+
+# Copy system update files (PUPs)
+COPY PUPs /srv/PUPs
 
 # Set permissions on copied files
 RUN \
     mkdir -p \
         /var/www/cache \
         /var/www/exploits \
         /var/www/themes/default && \
-    touch \
-        /var/www/menu.json \
-        /var/www/news.json \
-        /var/www/themes/default/index.html && \
+    echo "Exploit Landing Page" > /var/www/themes/default/index.html && \
     chmod -R 644 \
         /etc/nginx/templates/nginx.conf \
         /etc/nginx/templates/general.conf \
         /etc/nginx/templates/error.conf \
-        /etc/nginx/templates/sites-available/* \
-        /var/www/* && \
-    rm -rf /var/www/ps-sys-updates/readme.txt && \
+        /etc/nginx/templates/sites-available/* && \
     chmod +x \
         /entrypoint.sh \
         /healthcheck.sh

PUPs/README.md

@@ -0,0 +1,28 @@
+# PUP File Hosting
+
+To actually serve update files (PUPs) themselves take a look at the format of the updatelist files contained in `ps-sys-updates`. Notice the hash provided in the URL?
+
+## PS3
+
+  `/update/ps3/image/{{COUNTRY}}/0000_0000_$MD5/PS3PATCH.PUP` or
+  `/update/ps3/image/{{COUNTRY}}/0000_0000_$MD5/PS3UPDAT.PUP`
+  will be served from
+  `PS3PATCH_$MD5.PUP` and `PS3UPDAT_$MD5.PUP` from within this folder
+
+## Vita
+
+  `/update/psp2/image/0000_0000/(rel|sd|pre)_$MD5/PSP2UPDAT.PUP`
+  will be served from
+  `PSP2UPDAT_$md5.PUP` within this folder
+
+## PS4
+
+  `/update/ps4/image/0000_0000/(sys|rec)_$MD5/PS4UPDATE.PUP`
+  will be served from
+  `PS4UPDATE_$MD5.PUP` within this folder
+
+## PS5
+
+  `/update/ps5/official/00000000000000000000000000000000/image/\0000_00000/(sys|rec)_$SHA256/PS5UPDATE.PUP`
+  will be served from
+  `PS5UPDATE_$SHA256.PUP` within this folder

README.md

@@ -0,0 +1,68 @@
+# Exploit Host HTTP
+
+Purpose made HTTP Docker file setup for hosting exploits for the web browser for Sony PlayStation devices and the Nintendo WiiU/Switch. This essentially has to be used with the [Exploit Host DNS](https://github.com/Al-Azif/exploit-host-DNS) component. It's possible to use it "standalone", but will require something to make the browser send the correct `Host` header with it's HTTP(S) requests.
+
+## Features
+
+When used in conjunction with [Exploit Host DNS](https://github.com/Al-Azif/exploit-host-DNS) following features are available:
+
+- Enables internet speed tests
+- Enables serving custom system updates
+- Hijacks system update feature pages
+- Hijacks default browser landing pages (Connection Tests, User's Manuals, and Browser Homepages)
+  - Redirect is cached (It is not cached on PS5 as it becomes permanent)
+  - Prepackaged with the latest Exploit Host website
+  - Can redirect to an external page, to a self hosted site, or to the included Exploit Host website
+
+## Usage
+
+This is setup to work right out of the box with [Exploit Host DNS](https://github.com/Al-Azif/exploit-host-DNS). However there are lots of options for your individual hosting wants/needs. I'll only show the basic usage here.
+
+### Command Line
+
+This command will always pull the latest image from Docker Hub, run on the main Docker bridge network, and it will restart if it's not running until you explicitly tell it to stop.
+
+`docker run -d --network bridge -p 80:80/tcp -p 443:443/tcp --restart unless-stopped --pull always alazif/exploit-host-http:latest`
+
+### Composer
+
+This composer file will do the same as the commands above.
+
+```yml
+---
+version: "3.8"
+
+services:
+  exploit-host-http:
+    image: alazif/exploit-host-http:latest
+    network_mode: bridge
+    ports:
+      - 80:80/tcp
+      - 443:443/udp
+    pull_policy: always
+    restart: unless-stopped
+```
+
+Start the compose file by calling `docker compose up -d` from the same location as the composer file.
+
+## Options (Environment Variables)
+
+| Option                          | Default       | Type    | Info            |
+|:--------------------------------|:--------------|:--------|:----------------|
+| DEBUG                           | `false`       | boolean | Show debug output for `entrypoint.sh` in the Docker log. |
+| ROOT_DOMAIN                     | `the.gate`    | string  | |
+| NGINX_ACCESS_LOG                | `false`       | boolean | |
+| NGINX_ERROR_LOG                 | `false`       | boolean | |
+| NGINX_ERROR_LOG_LEVEL           | `warn`        | string  | |
+| REDIRECT_TYPE                   | `http`        | string  | |
+| HIJACK_URL                      | `ROOT_DOMAIN` | string  | |
+| TLS                             | `self`        | string  | |
+| CF_IP_CORRECTION                | `false`       | boolean | |
+| CF_STRICT                       | `false`       | boolean | |
+| OCSP_STAPLING                   | `false`       | boolean | |
+| SEVER_HASH_BUCKET_SIZE_OVERRIDE | `false`       | boolean | |
+| HEALTHCHECK_BYPASS              | `false`       | boolean | |
+
+## TODO
+
+TBD

entrypoint.sh

@@ -302,5 +302,17 @@ if [ ! -f /var/www/ps-net-tests/get_2m ] || [ ! -f /var/www/ps-net-tests/get_6m
   truncate -s 6M /var/www/ps-net-tests/get_6m || true
 fi
 
+# Move system update meta files if they don't exist in the correct location, fails silently
+mkdir -p /var/www/ps-sys-updates || true
+if [ -z "$(ls -A /var/www/ps-sys-updates)" ]; then
+  cp -r /srv/ps-sys-updates /var/www || true
+fi
+
+# Make PUP file directory if it doesn't exist, fails silently
+mkdir -p /var/www/PUPs || true
+if [ -z "$(ls -A /var/www/PUPs)" ]; then
+  cp -r /srv/PUPs /var/www || true
+fi
+
 echo "[-] Starting NGINX..."
 exec "$@"

nginx/vhosts/ps-sys-updates

@@ -21,22 +21,22 @@ server {
   ssl_certificate_key /etc/nginx/certs/private/snakeoil.key;
 
   location ~* "^/update/ps3/image/\D{2}/\d{4}_\d{4}_(?<md5>[a-fA-F0-9]{32})/PS3PATCH\.PUP$" {
-    alias /var/www/ps-sys-updates/PS3PATCH_$md5.PUP;
+    alias /var/www/PUPs/PS3PATCH_$md5.PUP;
   }
   location ~* "^/update/ps3/image/\D{2}/\d{4}_\d{4}_(?<md5>[a-fA-F0-9]{32}S)/PS3UPDAT\.PUP$" {
-    alias /var/www/ps-sys-updates/PS3UPDAT_$md5.PUP;
+    alias /var/www/PUPs/PS3UPDAT_$md5.PUP;
   }
 
   location ~* "^/update/ps4/image/\d{4}_\d{4}/(sys|rec)_(?<md5>[a-fA-F0-9]{32})/PS4UPDATE\.PUP$" {
-    alias /var/www/ps-sys-updates/PS4UPDATE_$md5.PUP;
+    alias /var/www/PUPs/PS4UPDATE_$md5.PUP;
   }
 
   location ~* "^/update/ps5/official/(?<unknown>[a-zA-Z0-9]{32})/image/\d{4}_\d{4}/(sys|rec)_(?<sha256>[a-fA-F0-9]{64})/PS5UPDATE\.PUP$" {
-    alias /var/www/ps-sys-updates/PS5UPDATE_$sha256.PUP;
+    alias /var/www/PUPs/PS5UPDATE_$sha256.PUP;
   }
 
   location ~* "^/update/psp2/image/\d{4}_\d{4}/(rel|sd|pre)_(?<md5>[a-fA-F0-9]{32})/PSP2UPDAT\.PUP$" {
-    alias /var/www/ps-sys-updates/PSP2UPDAT_$md5.PUP;
+    alias /var/www/PUPs/PSP2UPDAT_$md5.PUP;
   }
 
   # The pages here are built in NGINX to avoid needing to install PHP as the pages are built with simple substitution