search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
* Set all version numbers to 7.41 for upcoming beta.
[citadel.git] / citadel / citserver.c
bloba78e60113674b8eaac7003eb3418d2d331ab2954
1 /*
2 * $Id$
3 *
4 * Main source module for the Citadel server
5 *
6 */
7
8 #include "sysdep.h"
9 #include <stdlib.h>
10 #include <unistd.h>
11 #include <stdio.h>
12 #include <fcntl.h>
13 #include <signal.h>
14 #include <sys/types.h>
15 #include <sys/stat.h>
16
17
18 #if TIME_WITH_SYS_TIME
19 # include <sys/time.h>
20 # include <time.h>
21 #else
22 # if HAVE_SYS_TIME_H
23 # include <sys/time.h>
24 # else
25 # include <time.h>
26 # endif
27 #endif
28
29 #if HAVE_BACKTRACE
30 #include <execinfo.h>
31 #endif
32
33 #include <ctype.h>
34 #include <string.h>
35 #include <dirent.h>
36 #include <errno.h>
37 #include <limits.h>
38 #include <netdb.h>
39 #include <sys/types.h>
40 #include <sys/socket.h>
41 #include <netinet/in.h>
42 #include <arpa/inet.h>
43 #include <libcitadel.h>
44 #include "citadel.h"
45 #include "server.h"
46 #include "sysdep_decls.h"
47 #include "threads.h"
48 #include "citserver.h"
49 #include "config.h"
50 #include "database.h"
51 #include "housekeeping.h"
52 #include "user_ops.h"
53 #include "msgbase.h"
54 #include "support.h"
55 #include "locate_host.h"
56 #include "room_ops.h"
57 #include "file_ops.h"
58 #include "policy.h"
59 #include "control.h"
60 #include "euidindex.h"
61 #include "svn_revision.h"
62
63 #ifndef HAVE_SNPRINTF
64 #include "snprintf.h"
65 #endif
66
67 #include "ctdl_module.h"
68
69
70 struct CitContext *ContextList = NULL;
71 struct CitContext* next_session = NULL;
72 char *unique_session_numbers;
73 int ScheduledShutdown = 0;
74 time_t server_startup_time;
75 int panic_fd;
76
77 /**
78 * \brief print the actual stack frame.
79 */
80 void cit_backtrace(void)
81 {
82 #ifdef HAVE_BACKTRACE
83 void *stack_frames[50];
84 size_t size, i;
85 char **strings;
86
87
88 size = backtrace(stack_frames, sizeof(stack_frames) / sizeof(void*));
89 strings = backtrace_symbols(stack_frames, size);
90 for (i = 0; i < size; i++) {
91 if (strings != NULL)
92 CtdlLogPrintf(1, "%s\n", strings[i]);
93 else
94 CtdlLogPrintf(1, "%p\n", stack_frames[i]);
95 }
96 free(strings);
97 #endif
98 }
99
100 /**
101 * \brief print the actual stack frame.
102 */
103 void cit_panic_backtrace(int SigNum)
104 {
105 #ifdef HAVE_BACKTRACE
106 void *stack_frames[10];
107 size_t size, i;
108 char **strings;
109
110 printf("caught signal 11\n");
111 size = backtrace(stack_frames, sizeof(stack_frames) / sizeof(void*));
112 strings = backtrace_symbols(stack_frames, size);
113 for (i = 0; i < size; i++) {
114 if (strings != NULL)
115 CtdlLogPrintf(1, "%s\n", strings[i]);
116 else
117 CtdlLogPrintf(1, "%p\n", stack_frames[i]);
118 }
119 free(strings);
120 #endif
121 exit(-1);
122 }
123
124 /*
125 * Various things that need to be initialized at startup
126 */
127 void master_startup(void) {
128 struct timeval tv;
129 unsigned int seed;
130 FILE *urandom;
131 struct ctdlroom qrbuf;
132
133 CtdlLogPrintf(CTDL_DEBUG, "master_startup() started\n");
134 time(&server_startup_time);
135
136 CtdlLogPrintf(CTDL_INFO, "Opening databases\n");
137 open_databases();
138
139 ctdl_thread_internal_init_tsd();
140
141 CtdlThreadAllocTSD();
142
143 check_ref_counts();
144
145 CtdlLogPrintf(CTDL_INFO, "Creating base rooms (if necessary)\n");
146 create_room(config.c_baseroom, 0, "", 0, 1, 0, VIEW_BBS);
147 create_room(AIDEROOM, 3, "", 0, 1, 0, VIEW_BBS);
148 create_room(SYSCONFIGROOM, 3, "", 0, 1, 0, VIEW_BBS);
149 create_room(config.c_twitroom, 0, "", 0, 1, 0, VIEW_BBS);
150
151 /* The "Local System Configuration" room doesn't need to be visible */
152 if (lgetroom(&qrbuf, SYSCONFIGROOM) == 0) {
153 qrbuf.QRflags2 |= QR2_SYSTEM;
154 lputroom(&qrbuf);
155 }
156
157 /* Aide needs to be public postable, else we're not RFC conformant. */
158 if (lgetroom(&qrbuf, AIDEROOM) == 0) {
159 qrbuf.QRflags2 |= QR2_SMTP_PUBLIC;
160 lputroom(&qrbuf);
161 }
162
163 CtdlLogPrintf(CTDL_INFO, "Seeding the pseudo-random number generator...\n");
164 urandom = fopen("/dev/urandom", "r");
165 if (urandom != NULL) {
166 fread(&seed, sizeof seed, 1, urandom);
167 fclose(urandom);
168 }
169 else {
170 gettimeofday(&tv, NULL);
171 seed = tv.tv_usec;
172 }
173 srand(seed);
174 srandom(seed);
175
176 CtdlLogPrintf(CTDL_INFO, "Initializing ipgm secret\n");
177 get_config();
178 config.c_ipgm_secret = rand();
179 put_config();
180
181 CtdlLogPrintf(CTDL_DEBUG, "master_startup() finished\n");
182 }
183
184
185 /*
186 * Cleanup routine to be called when the server is shutting down.
187 */
188 void master_cleanup(int exitcode) {
189 struct CleanupFunctionHook *fcn;
190 static int already_cleaning_up = 0;
191
192 if (already_cleaning_up) while(1) sleep(1);
193 already_cleaning_up = 1;
194
195 /* Run any cleanup routines registered by loadable modules */
196 for (fcn = CleanupHookTable; fcn != NULL; fcn = fcn->next) {
197 (*fcn->h_function_pointer)();
198 }
199
200 /* Close the AdjRefCount queue file */
201 AdjRefCount(-1, 0);
202
203 /* Do system-dependent stuff */
204 sysdep_master_cleanup();
205
206 /* Close databases */
207 CtdlLogPrintf(CTDL_INFO, "Closing databases\n");
208 close_databases();
209
210 #ifdef DEBUG_MEMORY_LEAKS
211 dump_heap();
212 #endif
213
214 /* If the operator requested a halt but not an exit, halt here. */
215 if (shutdown_and_halt) {
216 CtdlLogPrintf(CTDL_NOTICE, "citserver: Halting server without exiting.\n");
217 fflush(stdout); fflush(stderr);
218 while(1) {
219 sleep(32767);
220 }
221 }
222
223 release_control();
224
225 /* Now go away. */
226 CtdlLogPrintf(CTDL_NOTICE, "citserver: Exiting with status %d\n", exitcode);
227 fflush(stdout); fflush(stderr);
228
229 if (restart_server != 0)
230 exit(1);
231 exit(exitcode);
232 }
233
234
235
236 /*
237 * Terminate a session.
238 */
239 void RemoveContext (struct CitContext *con)
240 {
241 if (con==NULL) {
242 CtdlLogPrintf(CTDL_ERR,
243 "WARNING: RemoveContext() called with NULL!\n");
244 return;
245 }
246 CtdlLogPrintf(CTDL_DEBUG, "RemoveContext() session %d\n", con->cs_pid);
247
248 /* Run any cleanup routines registered by loadable modules.
249 * Note: We have to "become_session()" because the cleanup functions
250 * might make references to "CC" assuming it's the right one.
251 */
252 become_session(con);
253 logout();
254 PerformSessionHooks(EVT_STOP);
255 become_session(NULL);
256
257 CtdlLogPrintf(CTDL_NOTICE, "[%3d] Session ended.\n", con->cs_pid);
258
259 /* If the client is still connected, blow 'em away. */
260 CtdlLogPrintf(CTDL_DEBUG, "Closing socket %d\n", con->client_socket);
261 close(con->client_socket);
262
263 CtdlLogPrintf(CTDL_DEBUG, "Done with RemoveContext()\n");
264 }
265
266
267
268
269
270 /*
271 * cmd_info() - tell the client about this server
272 */
273 void cmd_info(void) {
274 cprintf("%d Server info:\n", LISTING_FOLLOWS);
275 cprintf("%d\n", CC->cs_pid);
276 cprintf("%s\n", config.c_nodename);
277 cprintf("%s\n", config.c_humannode);
278 cprintf("%s\n", config.c_fqdn);
279 cprintf("%s\n", CITADEL);
280 cprintf("%d\n", REV_LEVEL);
281 cprintf("%s\n", config.c_site_location);
282 cprintf("%s\n", config.c_sysadm);
283 cprintf("%d\n", SERVER_TYPE);
284 cprintf("%s\n", config.c_moreprompt);
285 cprintf("1\n"); /* 1 = yes, this system supports floors */
286 cprintf("1\n"); /* 1 = we support the extended paging options */
287 cprintf("%s\n", CC->cs_nonce);
288 cprintf("1\n"); /* 1 = yes, this system supports the QNOP command */
289
290 #ifdef HAVE_LDAP
291 cprintf("1\n"); /* 1 = yes, this server is LDAP-enabled */
292 #else
293 cprintf("0\n"); /* 1 = no, this server is not LDAP-enabled */
294 #endif
295
296 if (config.c_auth_mode == AUTHMODE_NATIVE) {
297 cprintf("%d\n", config.c_disable_newu);
298 }
299 else {
300 cprintf("1\n"); /* "create new user" does not work with non-native auth modes */
301 }
302
303 cprintf("%s\n", config.c_default_cal_zone);
304
305 /* Output load averages */
306 cprintf("%f\n", CtdlThreadLoadAvg);
307 cprintf("%f\n", CtdlThreadWorkerAvg);
308 cprintf("%d\n", CtdlThreadGetCount());
309
310 cprintf("1\n"); /* yes, Sieve mail filtering is supported */
311 cprintf("%d\n", config.c_enable_fulltext);
312 cprintf("%s\n", svn_revision());
313
314 if (config.c_auth_mode == AUTHMODE_NATIVE) {
315 cprintf("1\n"); /* OpenID is enabled when using native auth */
316 }
317 else {
318 cprintf("0\n"); /* OpenID is disabled when using non-native auth */
319 }
320
321 cprintf("000\n");
322 }
323
324
325 /*
326 * returns an asterisk if there are any instant messages waiting,
327 * space otherwise.
328 */
329 char CtdlCheckExpress(void) {
330 if (CC->FirstExpressMessage == NULL) {
331 return(' ');
332 }
333 else {
334 return('*');
335 }
336 }
337
338 void cmd_time(void)
339 {
340 time_t tv;
341 struct tm tmp;
342
343 tv = time(NULL);
344 localtime_r(&tv, &tmp);
345
346 /* timezone and daylight global variables are not portable. */
347 #ifdef HAVE_STRUCT_TM_TM_GMTOFF
348 cprintf("%d %ld|%ld|%d\n", CIT_OK, (long)tv, tmp.tm_gmtoff, tmp.tm_isdst);
349 #else
350 cprintf("%d %ld|%ld|%d\n", CIT_OK, (long)tv, timezone, tmp.tm_isdst);
351 #endif
352 }
353
354
355 /*
356 * Check originating host against the public_clients file. This determines
357 * whether the client is allowed to change the hostname for this session
358 * (for example, to show the location of the user rather than the location
359 * of the client).
360 */
361 int is_public_client(void)
362 {
363 char buf[1024];
364 char addrbuf[1024];
365 FILE *fp;
366 int i;
367 char *public_clientspos;
368 char *public_clientsend;
369 char *paddr = NULL;
370 struct stat statbuf;
371 static time_t pc_timestamp = 0;
372 static char public_clients[SIZ];
373 static char public_clients_file[SIZ];
374
375 #define LOCALHOSTSTR "127.0.0.1"
376
377 snprintf(public_clients_file,
378 sizeof public_clients_file,
379 "%s/public_clients",
380 ctdl_etc_dir);
381
382 /*
383 * Check the time stamp on the public_clients file. If it's been
384 * updated since the last time we were here (or if this is the first
385 * time we've been through the loop), read its contents and learn
386 * the IP addresses of the listed hosts.
387 */
388 if (stat(public_clients_file, &statbuf) != 0) {
389 /* No public_clients file exists, so bail out */
390 CtdlLogPrintf(CTDL_WARNING, "Warning: '%s' does not exist\n",
391 public_clients_file);
392 return(0);
393 }
394
395 if (statbuf.st_mtime > pc_timestamp) {
396 begin_critical_section(S_PUBLIC_CLIENTS);
397 CtdlLogPrintf(CTDL_INFO, "Loading %s\n", public_clients_file);
398
399 public_clientspos = &public_clients[0];
400 public_clientsend = public_clientspos + SIZ;
401 safestrncpy(public_clientspos, LOCALHOSTSTR, sizeof public_clients);
402 public_clientspos += sizeof(LOCALHOSTSTR) - 1;
403
404 if (hostname_to_dotted_quad(addrbuf, config.c_fqdn) == 0) {
405 *(public_clientspos++) = '|';
406 paddr = &addrbuf[0];
407 while (!IsEmptyStr (paddr) &&
408 (public_clientspos < public_clientsend))
409 *(public_clientspos++) = *(paddr++);
410 }
411
412 fp = fopen(public_clients_file, "r");
413 if (fp != NULL)
414 while ((fgets(buf, sizeof buf, fp)!=NULL) &&
415 (public_clientspos < public_clientsend)){
416 char *ptr;
417 ptr = buf;
418 while (!IsEmptyStr(ptr)) {
419 if (*ptr == '#') {
420 *ptr = 0;
421 break;
422 }
423 else ptr++;
424 }
425 ptr--;
426 while (ptr>buf && isspace(*ptr)) {
427 *(ptr--) = 0;
428 }
429 if (hostname_to_dotted_quad(addrbuf, buf) == 0) {
430 *(public_clientspos++) = '|';
431 paddr = addrbuf;
432 while (!IsEmptyStr(paddr) &&
433 (public_clientspos < public_clientsend)){
434 *(public_clientspos++) = *(paddr++);
435 }
436 }
437 }
438 fclose(fp);
439 pc_timestamp = time(NULL);
440 end_critical_section(S_PUBLIC_CLIENTS);
441 }
442
443 CtdlLogPrintf(CTDL_DEBUG, "Checking whether %s is a local or public client\n",
444 CC->cs_addr);
445 for (i=0; i<num_parms(public_clients); ++i) {
446 extract_token(addrbuf, public_clients, i, '|', sizeof addrbuf);
447 if (!strcasecmp(CC->cs_addr, addrbuf)) {
448 CtdlLogPrintf(CTDL_DEBUG, "... yes it is.\n");
449 return(1);
450 }
451 }
452
453 /* No hits. This is not a public client. */
454 CtdlLogPrintf(CTDL_DEBUG, "... no it isn't.\n");
455 return(0);
456 }
457
458
459 /*
460 * the client is identifying itself to the server
461 */
462 void cmd_iden(char *argbuf)
463 {
464 int dev_code;
465 int cli_code;
466 int rev_level;
467 char desc[128];
468 char from_host[128];
469 struct in_addr addr;
470 int do_lookup = 0;
471
472 if (num_parms(argbuf)<4) {
473 cprintf("%d usage error\n", ERROR + ILLEGAL_VALUE);
474 return;
475 }
476
477 dev_code = extract_int(argbuf,0);
478 cli_code = extract_int(argbuf,1);
479 rev_level = extract_int(argbuf,2);
480 extract_token(desc, argbuf, 3, '|', sizeof desc);
481
482 safestrncpy(from_host, config.c_fqdn, sizeof from_host);
483 from_host[sizeof from_host - 1] = 0;
484 if (num_parms(argbuf)>=5) extract_token(from_host, argbuf, 4, '|', sizeof from_host);
485
486 CC->cs_clientdev = dev_code;
487 CC->cs_clienttyp = cli_code;
488 CC->cs_clientver = rev_level;
489 safestrncpy(CC->cs_clientname, desc, sizeof CC->cs_clientname);
490 CC->cs_clientname[31] = 0;
491
492 if (!IsEmptyStr(from_host)) {
493 if (CC->is_local_socket) do_lookup = 1;
494 else if (is_public_client()) do_lookup = 1;
495 }
496
497 if (do_lookup) {
498 CtdlLogPrintf(CTDL_DEBUG, "Looking up hostname '%s'\n", from_host);
499 if ((addr.s_addr = inet_addr(from_host)) != -1) {
500 locate_host(CC->cs_host, sizeof CC->cs_host,
501 CC->cs_addr, sizeof CC->cs_addr,
502 &addr);
503 }
504 else {
505 safestrncpy(CC->cs_host, from_host, sizeof CC->cs_host);
506 CC->cs_host[sizeof CC->cs_host - 1] = 0;
507 }
508 }
509
510 CtdlLogPrintf(CTDL_NOTICE, "Client %d/%d/%01d.%02d (%s) from %s\n",
511 dev_code,
512 cli_code,
513 (rev_level / 100),
514 (rev_level % 100),
515 desc,
516 CC->cs_host);
517 cprintf("%d Ok\n",CIT_OK);
518 }
519
520
521 /*
522 * display system messages or help
523 */
524 void cmd_mesg(char *mname)
525 {
526 FILE *mfp;
527 char targ[256];
528 char buf[256];
529 char buf2[256];
530 char *dirs[2];
531 DIR *dp;
532 struct dirent *d;
533
534 extract_token(buf, mname, 0, '|', sizeof buf);
535
536 dirs[0] = strdup(ctdl_message_dir);
537 dirs[1] = strdup(ctdl_hlp_dir);
538
539 snprintf(buf2, sizeof buf2, "%s.%d.%d",
540 buf, CC->cs_clientdev, CC->cs_clienttyp);
541
542 /* If the client requested "?" then produce a listing */
543 if (!strcmp(buf, "?")) {
544 cprintf("%d %s\n", LISTING_FOLLOWS, buf);
545 dp = opendir(dirs[1]);
546 if (dp != NULL) {
547 while (d = readdir(dp), d != NULL) {
548 if (d->d_name[0] != '.') {
549 cprintf(" %s\n", d->d_name);
550 }
551 }
552 closedir(dp);
553 }
554 cprintf("000\n");
555 free(dirs[0]);
556 free(dirs[1]);
557 return;
558 }
559
560 /* Otherwise, look for the requested file by name. */
561 else {
562 mesg_locate(targ, sizeof targ, buf2, 2, (const char **)dirs);
563 if (IsEmptyStr(targ)) {
564 snprintf(buf2, sizeof buf2, "%s.%d",
565 buf, CC->cs_clientdev);
566 mesg_locate(targ, sizeof targ, buf2, 2,
567 (const char **)dirs);
568 if (IsEmptyStr(targ)) {
569 mesg_locate(targ, sizeof targ, buf, 2,
570 (const char **)dirs);
571 }
572 }
573 }
574
575 free(dirs[0]);
576 free(dirs[1]);
577
578 if (IsEmptyStr(targ)) {
579 cprintf("%d '%s' not found. (Searching in %s and %s)\n",
580 ERROR + FILE_NOT_FOUND,
581 mname,
582 ctdl_message_dir,
583 ctdl_hlp_dir
584 );
585 return;
586 }
587
588 mfp = fopen(targ, "r");
589 if (mfp==NULL) {
590 cprintf("%d Cannot open '%s': %s\n",
591 ERROR + INTERNAL_ERROR, targ, strerror(errno));
592 return;
593 }
594 cprintf("%d %s\n", LISTING_FOLLOWS,buf);
595
596 while (fgets(buf, (sizeof buf - 1), mfp) != NULL) {
597 buf[strlen(buf)-1] = 0;
598 do_help_subst(buf);
599 cprintf("%s\n",buf);
600 }
601
602 fclose(mfp);
603 cprintf("000\n");
604 }
605
606
607 /*
608 * enter system messages or help
609 */
610 void cmd_emsg(char *mname)
611 {
612 FILE *mfp;
613 char targ[256];
614 char buf[256];
615 char *dirs[2];
616 int a;
617
618 unbuffer_output();
619
620 if (CtdlAccessCheck(ac_aide)) return;
621
622 extract_token(buf, mname, 0, '|', sizeof buf);
623 for (a=0; !IsEmptyStr(&buf[a]); ++a) { /* security measure */
624 if (buf[a] == '/') buf[a] = '.';
625 }
626
627 dirs[0] = strdup(ctdl_message_dir);
628 dirs[1] = strdup(ctdl_hlp_dir);
629
630 mesg_locate(targ, sizeof targ, buf, 2, (const char**)dirs);
631 free(dirs[0]);
632 free(dirs[1]);
633
634 if (IsEmptyStr(targ)) {
635 snprintf(targ, sizeof targ,
636 "%s/%s",
637 ctdl_hlp_dir, buf);
638 }
639
640 mfp = fopen(targ,"w");
641 if (mfp==NULL) {
642 cprintf("%d Cannot open '%s': %s\n",
643 ERROR + INTERNAL_ERROR, targ, strerror(errno));
644 return;
645 }
646 cprintf("%d %s\n", SEND_LISTING, targ);
647
648 while (client_getln(buf, sizeof buf) >=0 && strcmp(buf, "000")) {
649 fprintf(mfp, "%s\n", buf);
650 }
651
652 fclose(mfp);
653 }
654
655
656 /* Don't show the names of private rooms unless the viewing
657 * user also knows the rooms.
658 */
659 void GenerateRoomDisplay(char *real_room,
660 struct CitContext *viewed,
661 struct CitContext *viewer) {
662
663 int ra;
664
665 strcpy(real_room, viewed->room.QRname);
666 if (viewed->room.QRflags & QR_MAILBOX) {
667 strcpy(real_room, &real_room[11]);
668 }
669 if (viewed->room.QRflags & QR_PRIVATE) {
670 CtdlRoomAccess(&viewed->room, &viewer->user, &ra, NULL);
671 if ( (ra & UA_KNOWN) == 0) {
672 strcpy(real_room, "<private room>");
673 }
674 }
675
676 if (viewed->cs_flags & CS_CHAT) {
677 while (strlen(real_room) < 14) {
678 strcat(real_room, " ");
679 }
680 strcpy(&real_room[14], "<chat>");
681 }
682
683 }
684
685 /*
686 * Convenience function.
687 */
688 int CtdlAccessCheck(int required_level) {
689
690 if (CC->internal_pgm) return(0);
691 if (required_level >= ac_internal) {
692 cprintf("%d This is not a user-level command.\n",
693 ERROR + HIGHER_ACCESS_REQUIRED);
694 return(-1);
695 }
696
697 if ((required_level >= ac_logged_in) && (CC->logged_in == 0)) {
698 cprintf("%d Not logged in.\n", ERROR + NOT_LOGGED_IN);
699 return(-1);
700 }
701
702 if (CC->user.axlevel >= 6) return(0);
703 if (required_level >= ac_aide) {
704 cprintf("%d This command requires Aide access.\n",
705 ERROR + HIGHER_ACCESS_REQUIRED);
706 return(-1);
707 }
708
709 if (is_room_aide()) return(0);
710 if (required_level >= ac_room_aide) {
711 cprintf("%d This command requires Aide or Room Aide access.\n",
712 ERROR + HIGHER_ACCESS_REQUIRED);
713 return(-1);
714 }
715
716 /* shhh ... succeed quietly */
717 return(0);
718 }
719
720
721
722 /*
723 * Terminate another running session
724 */
725 void cmd_term(char *cmdbuf)
726 {
727 int session_num;
728 struct CitContext *ccptr;
729 int found_it = 0;
730 int allowed = 0;
731
732 session_num = extract_int(cmdbuf, 0);
733 if (session_num == CC->cs_pid) {
734 cprintf("%d You can't kill your own session.\n", ERROR + ILLEGAL_VALUE);
735 return;
736 }
737
738 CtdlLogPrintf(CTDL_DEBUG, "Locating session to kill\n");
739 begin_critical_section(S_SESSION_TABLE);
740 for (ccptr = ContextList; ccptr != NULL; ccptr = ccptr->next) {
741 if (session_num == ccptr->cs_pid) {
742 found_it = 1;
743 if ((ccptr->user.usernum == CC->user.usernum)
744 || (CC->user.axlevel >= 6)) {
745 allowed = 1;
746 ccptr->kill_me = 1;
747 }
748 else {
749 allowed = 0;
750 }
751 }
752 }
753 end_critical_section(S_SESSION_TABLE);
754
755 if (found_it) {
756 if (allowed) {
757 cprintf("%d Session terminated.\n", CIT_OK);
758 }
759 else {
760 cprintf("%d You are not allowed to do that.\n",
761 ERROR + HIGHER_ACCESS_REQUIRED);
762 }
763 }
764 else {
765 cprintf("%d No such session.\n", ERROR + ILLEGAL_VALUE);
766 }
767 }
768
769
770
771
772
773 /*
774 * get the paginator prompt
775 */
776 void cmd_more(void) {
777 cprintf("%d %s\n", CIT_OK, config.c_moreprompt);
778 }
779
780 /*
781 * echo
782 */
783 void cmd_echo(char *etext)
784 {
785 cprintf("%d %s\n", CIT_OK, etext);
786 }
787
788
789
790 /*
791 * identify as internal program
792 */
793 void cmd_ipgm(char *argbuf)
794 {
795 int secret;
796
797 secret = extract_int(argbuf, 0);
798
799 /* For security reasons, we do NOT allow this command to run
800 * over the network. Local sockets only.
801 */
802 if (!CC->is_local_socket) {
803 sleep(5);
804 cprintf("%d Authentication failed.\n",
805 ERROR + PASSWORD_REQUIRED);
806 }
807 else if (secret == config.c_ipgm_secret) {
808 CC->internal_pgm = 1;
809 strcpy(CC->curr_user, "<internal program>");
810 CC->cs_flags = CC->cs_flags|CS_STEALTH;
811 cprintf("%d Authenticated as an internal program.\n", CIT_OK);
812 }
813 else {
814 sleep(5);
815 cprintf("%d Authentication failed.\n",
816 ERROR + PASSWORD_REQUIRED);
817 CtdlLogPrintf(CTDL_ERR, "Warning: ipgm authentication failed.\n");
818 CC->kill_me = 1;
819 }
820
821 /* Now change the ipgm secret for the next round.
822 * (Disabled because it breaks concurrent scripts. The fact that
823 * we no longer accept IPGM over the network should be sufficient
824 * to prevent brute-force attacks. If you don't agree, uncomment
825 * this block.)
826 get_config();
827 config.c_ipgm_secret = rand();
828 put_config();
829 */
830 }
831
832
833 /*
834 * Shut down the server
835 */
836 void cmd_down(char *argbuf) {
837 char *Reply ="%d Shutting down server. Goodbye.\n";
838
839 if (CtdlAccessCheck(ac_aide)) return;
840
841 if (!IsEmptyStr(argbuf))
842 {
843 int state = CIT_OK;
844 restart_server = extract_int(argbuf, 0);
845
846 if (restart_server > 0)
847 Reply = "%d Restarting server. See you soon.\n";
848 if ((restart_server > 0) && !running_as_daemon)
849 {
850 CtdlLogPrintf(CTDL_ERR, "The user requested restart, but not running as deamon! Geronimooooooo!\n");
851 Reply = "%d Warning, not running in deamon mode. maybe we will come up again, but don't lean on it.\n";
852 state = ERROR;
853 }
854 cprintf(Reply, state);
855 }
856 else
857 {
858 cprintf(Reply, CIT_OK + SERVER_SHUTTING_DOWN);
859 }
860 CtdlThreadStopAll();
861 }
862
863 /*
864 * Halt the server without exiting the server process.
865 */
866 void cmd_halt(void) {
867
868 if (CtdlAccessCheck(ac_aide)) return;
869
870 cprintf("%d Halting server. Goodbye.\n", CIT_OK);
871 CtdlThreadStopAll();
872 shutdown_and_halt = 1;
873 }
874
875 /*
876 * Schedule or cancel a server shutdown
877 */
878 void cmd_scdn(char *argbuf)
879 {
880 int new_state;
881 int state = CIT_OK;
882 char *Reply = "%d %d\n";
883
884 if (CtdlAccessCheck(ac_aide)) return;
885
886 new_state = extract_int(argbuf, 0);
887 if ((new_state == 2) || (new_state == 3))
888 {
889 restart_server = 1;
890 if (!running_as_daemon)
891 {
892 CtdlLogPrintf(CTDL_ERR, "The user requested restart, but not running as deamon! Geronimooooooo!\n");
893 Reply = "%d %d Warning, not running in deamon mode. maybe we will come up again, but don't lean on it.\n";
894 state = ERROR;
895 }
896
897 restart_server = extract_int(argbuf, 0);
898 new_state -= 2;
899 }
900 if ((new_state == 0) || (new_state == 1)) {
901 ScheduledShutdown = new_state;
902 }
903 cprintf(Reply, state, ScheduledShutdown);
904 }
905
906
907 /*
908 * Set or unset asynchronous protocol mode
909 */
910 void cmd_asyn(char *argbuf)
911 {
912 int new_state;
913
914 new_state = extract_int(argbuf, 0);
915 if ((new_state == 0) || (new_state == 1)) {
916 CC->is_async = new_state;
917 }
918 cprintf("%d %d\n", CIT_OK, CC->is_async);
919 }
920
921
922 /*
923 * Generate a "nonce" for APOP-style authentication.
924 *
925 * RFC 1725 et al specify a PID to be placed in front of the nonce.
926 * Quoth BTX: That would be stupid.
927 */
928 void generate_nonce(struct CitContext *con) {
929 struct timeval tv;
930
931 memset(con->cs_nonce, NONCE_SIZE, 0);
932 gettimeofday(&tv, NULL);
933 memset(con->cs_nonce, NONCE_SIZE, 0);
934 snprintf(con->cs_nonce, NONCE_SIZE, "<%d%ld@%s>",
935 rand(), (long)tv.tv_usec, config.c_fqdn);
936 }
937
938
939
940
941 /*
942 * Back-end function for starting a session
943 */
944 void begin_session(struct CitContext *con)
945 {
946 socklen_t len;
947 struct sockaddr_in sin;
948
949 /*
950 * Initialize some variables specific to our context.
951 */
952 con->logged_in = 0;
953 con->internal_pgm = 0;
954 con->download_fp = NULL;
955 con->upload_fp = NULL;
956 con->FirstExpressMessage = NULL;
957 time(&con->lastcmd);
958 time(&con->lastidle);
959 strcpy(con->lastcmdname, " ");
960 strcpy(con->cs_clientname, "(unknown)");
961 strcpy(con->curr_user, NLI);
962 *con->net_node = '\0';
963 *con->fake_username = '\0';
964 *con->fake_hostname = '\0';
965 *con->fake_roomname = '\0';
966 generate_nonce(con);
967 safestrncpy(con->cs_host, config.c_fqdn, sizeof con->cs_host);
968 safestrncpy(con->cs_addr, "", sizeof con->cs_addr);
969 con->cs_host[sizeof con->cs_host - 1] = 0;
970 len = sizeof sin;
971 if (!CC->is_local_socket) {
972 if (!getpeername(con->client_socket, (struct sockaddr *) &sin, &len)) {
973 locate_host(con->cs_host, sizeof con->cs_host,
974 con->cs_addr, sizeof con->cs_addr,
975 &sin.sin_addr
976 );
977 }
978 }
979 else {
980 strcpy(con->cs_host, "");
981 }
982 con->cs_flags = 0;
983 con->upload_type = UPL_FILE;
984 con->dl_is_net = 0;
985
986 con->nologin = 0;
987 if (((config.c_maxsessions > 0)&&(num_sessions > config.c_maxsessions)) || CtdlWantSingleUser()) {
988 con->nologin = 1;
989 }
990
991 if (!CC->is_local_socket) {
992 CtdlLogPrintf(CTDL_NOTICE, "Session started from %s [%s].\n", con->cs_host, con->cs_addr);
993 }
994 else {
995 CtdlLogPrintf(CTDL_NOTICE, "Session started via local socket.\n");
996 }
997
998 /* Run any session startup routines registered by loadable modules */
999 PerformSessionHooks(EVT_START);
1000 }
1001
1002
1003 void citproto_begin_session() {
1004 if (CC->nologin==1) {
1005 cprintf("%d %s: Too many users are already online (maximum is %d)\n",
1006 ERROR + MAX_SESSIONS_EXCEEDED,
1007 config.c_nodename, config.c_maxsessions
1008 );
1009 CC->kill_me = 1;
1010 }
1011 else {
1012 cprintf("%d %s Citadel server ready.\n",
1013 CIT_OK, config.c_nodename);
1014 }
1015 }
1016
1017
1018
1019
1020 /*
1021 * This loop recognizes all server commands.
1022 */
1023 void do_command_loop(void) {
1024 char cmdbuf[SIZ];
1025 const char *old_name = NULL;
1026
1027 old_name = CtdlThreadName("do_command_loop");
1028
1029 time(&CC->lastcmd);
1030 memset(cmdbuf, 0, sizeof cmdbuf); /* Clear it, just in case */
1031 if (client_getln(cmdbuf, sizeof cmdbuf) < 1) {
1032 CtdlLogPrintf(CTDL_ERR, "Client disconnected: ending session.\n");
1033 CC->kill_me = 1;
1034 CtdlThreadName(old_name);
1035 return;
1036 }
1037
1038 /* Log the server command, but don't show passwords... */
1039 if ( (strncasecmp(cmdbuf, "PASS", 4))
1040 && (strncasecmp(cmdbuf, "SETP", 4)) ) {
1041 CtdlLogPrintf(CTDL_INFO, "%s\n", cmdbuf);
1042 }
1043 else {
1044 CtdlLogPrintf(CTDL_INFO, "<password command sent>\n");
1045 }
1046
1047 buffer_output();
1048
1049 /*
1050 * Let other clients see the last command we executed, and
1051 * update the idle time, but not NOOP, QNOP, PEXP, GEXP, RWHO, or TIME.
1052 */
1053 if ( (strncasecmp(cmdbuf, "NOOP", 4))
1054 && (strncasecmp(cmdbuf, "QNOP", 4))
1055 && (strncasecmp(cmdbuf, "PEXP", 4))
1056 && (strncasecmp(cmdbuf, "GEXP", 4))
1057 && (strncasecmp(cmdbuf, "RWHO", 4))
1058 && (strncasecmp(cmdbuf, "TIME", 4)) ) {
1059 strcpy(CC->lastcmdname, " ");
1060 safestrncpy(CC->lastcmdname, cmdbuf, sizeof(CC->lastcmdname));
1061 time(&CC->lastidle);
1062 }
1063
1064 CtdlThreadName(cmdbuf);
1065
1066 if ((strncasecmp(cmdbuf, "ENT0", 4))
1067 && (strncasecmp(cmdbuf, "MESG", 4))
1068 && (strncasecmp(cmdbuf, "MSGS", 4)))
1069 {
1070 CC->cs_flags &= ~CS_POSTING;
1071 }
1072
1073 if (!strncasecmp(cmdbuf, "NOOP", 4)) {
1074 cprintf("%d%cok\n", CIT_OK, CtdlCheckExpress() );
1075 }
1076
1077 else if (!strncasecmp(cmdbuf, "XYZZY", 5)) {
1078 cprintf("%d Nothing happens.\n", CIT_OK);
1079 }
1080
1081 else if (!strncasecmp(cmdbuf, "QNOP", 4)) {
1082 /* do nothing, this command returns no response */
1083 }
1084
1085 else if (!strncasecmp(cmdbuf,"QUIT",4)) {
1086 cprintf("%d Goodbye.\n", CIT_OK);
1087 CC->kill_me = 1;
1088 }
1089
1090 else if (!strncasecmp(cmdbuf,"ASYN",4)) {
1091 cmd_asyn(&cmdbuf[5]);
1092 }
1093
1094 else if (!strncasecmp(cmdbuf,"LOUT",4)) {
1095 if (CC->logged_in) logout();
1096 cprintf("%d logged out.\n", CIT_OK);
1097 }
1098
1099 else if (!strncasecmp(cmdbuf,"USER",4)) {
1100 cmd_user(&cmdbuf[5]);
1101 }
1102
1103 else if (!strncasecmp(cmdbuf,"PASS",4)) {
1104 cmd_pass(&cmdbuf[5]);
1105 }
1106
1107 else if (!strncasecmp(cmdbuf,"NEWU",4)) {
1108 cmd_newu(&cmdbuf[5]);
1109 }
1110
1111 else if (!strncasecmp(cmdbuf,"CREU",4)) {
1112 cmd_creu(&cmdbuf[5]);
1113 }
1114
1115 else if (!strncasecmp(cmdbuf,"SETP",4)) {
1116 cmd_setp(&cmdbuf[5]);
1117 }
1118
1119 else if (!strncasecmp(cmdbuf,"LRMS",4)) {
1120 cmd_lrms(&cmdbuf[5]);
1121 }
1122
1123 else if (!strncasecmp(cmdbuf,"LKRA",4)) {
1124 cmd_lkra(&cmdbuf[5]);
1125 }
1126
1127 else if (!strncasecmp(cmdbuf,"LKRN",4)) {
1128 cmd_lkrn(&cmdbuf[5]);
1129 }
1130
1131 else if (!strncasecmp(cmdbuf,"LKRO",4)) {
1132 cmd_lkro(&cmdbuf[5]);
1133 }
1134
1135 else if (!strncasecmp(cmdbuf,"LZRM",4)) {
1136 cmd_lzrm(&cmdbuf[5]);
1137 }
1138
1139 else if (!strncasecmp(cmdbuf,"LPRM",4)) {
1140 cmd_lprm(&cmdbuf[5]);
1141 }
1142
1143 else if (!strncasecmp(cmdbuf,"GETU",4)) {
1144 cmd_getu();
1145 }
1146
1147 else if (!strncasecmp(cmdbuf,"SETU",4)) {
1148 cmd_setu(&cmdbuf[5]);
1149 }
1150
1151 else if (!strncasecmp(cmdbuf,"GOTO",4)) {
1152 cmd_goto(&cmdbuf[5]);
1153 }
1154
1155 else if (!strncasecmp(cmdbuf,"MSGS",4)) {
1156 cmd_msgs(&cmdbuf[5]);
1157 }
1158
1159 else if (!strncasecmp(cmdbuf,"WHOK",4)) {
1160 cmd_whok();
1161 }
1162
1163 else if (!strncasecmp(cmdbuf,"RDIR",4)) {
1164 cmd_rdir();
1165 }
1166
1167 else if (!strncasecmp(cmdbuf,"EUID",4)) {
1168 cmd_euid(&cmdbuf[5]);
1169 }
1170
1171 else if (!strncasecmp(cmdbuf,"MSG0",4)) {
1172 cmd_msg0(&cmdbuf[5]);
1173 }
1174
1175 else if (!strncasecmp(cmdbuf,"MSG2",4)) {
1176 cmd_msg2(&cmdbuf[5]);
1177 }
1178
1179 else if (!strncasecmp(cmdbuf,"MSG3",4)) {
1180 cmd_msg3(&cmdbuf[5]);
1181 }
1182
1183 else if (!strncasecmp(cmdbuf,"MSG4",4)) {
1184 cmd_msg4(&cmdbuf[5]);
1185 }
1186
1187 else if (!strncasecmp(cmdbuf,"MSGP",4)) {
1188 cmd_msgp(&cmdbuf[5]);
1189 }
1190
1191 else if (!strncasecmp(cmdbuf,"OPNA",4)) {
1192 cmd_opna(&cmdbuf[5]);
1193 }
1194
1195 else if (!strncasecmp(cmdbuf,"DLAT",4)) {
1196 cmd_dlat(&cmdbuf[5]);
1197 }
1198
1199 else if (!strncasecmp(cmdbuf,"INFO",4)) {
1200 cmd_info();
1201 }
1202
1203 else if (!strncasecmp(cmdbuf,"SLRP",4)) {
1204 cmd_slrp(&cmdbuf[5]);
1205 }
1206
1207 else if (!strncasecmp(cmdbuf,"INVT",4)) {
1208 cmd_invt_kick(&cmdbuf[5],1);
1209 }
1210
1211 else if (!strncasecmp(cmdbuf,"KICK",4)) {
1212 cmd_invt_kick(&cmdbuf[5],0);
1213 }
1214
1215 else if (!strncasecmp(cmdbuf,"GETR",4)) {
1216 cmd_getr();
1217 }
1218
1219 else if (!strncasecmp(cmdbuf,"SETR",4)) {
1220 cmd_setr(&cmdbuf[5]);
1221 }
1222
1223 else if (!strncasecmp(cmdbuf,"GETA",4)) {
1224 cmd_geta();
1225 }
1226
1227 else if (!strncasecmp(cmdbuf,"SETA",4)) {
1228 cmd_seta(&cmdbuf[5]);
1229 }
1230
1231 else if (!strncasecmp(cmdbuf,"ENT0",4)) {
1232 cmd_ent0(&cmdbuf[5]);
1233 }
1234
1235 else if (!strncasecmp(cmdbuf,"RINF",4)) {
1236 cmd_rinf();
1237 }
1238
1239 else if (!strncasecmp(cmdbuf,"DELE",4)) {
1240 cmd_dele(&cmdbuf[5]);
1241 }
1242
1243 else if (!strncasecmp(cmdbuf,"KILL",4)) {
1244 cmd_kill(&cmdbuf[5]);
1245 }
1246
1247 else if (!strncasecmp(cmdbuf,"CRE8",4)) {
1248 cmd_cre8(&cmdbuf[5]);
1249 }
1250
1251 else if (!strncasecmp(cmdbuf,"MOVE",4)) {
1252 cmd_move(&cmdbuf[5]);
1253 }
1254
1255 else if (!strncasecmp(cmdbuf,"FORG",4)) {
1256 cmd_forg();
1257 }
1258
1259 else if (!strncasecmp(cmdbuf,"MESG",4)) {
1260 cmd_mesg(&cmdbuf[5]);
1261 }
1262
1263 else if (!strncasecmp(cmdbuf,"EMSG",4)) {
1264 cmd_emsg(&cmdbuf[5]);
1265 }
1266
1267 else if (!strncasecmp(cmdbuf,"GNUR",4)) {
1268 cmd_gnur();
1269 }
1270
1271 else if (!strncasecmp(cmdbuf,"VALI",4)) {
1272 cmd_vali(&cmdbuf[5]);
1273 }
1274
1275 else if (!strncasecmp(cmdbuf,"EINF",4)) {
1276 cmd_einf(&cmdbuf[5]);
1277 }
1278
1279 else if (!strncasecmp(cmdbuf,"LIST",4)) {
1280 cmd_list(&cmdbuf[5]);
1281 }
1282
1283 else if (!strncasecmp(cmdbuf,"CHEK",4)) {
1284 cmd_chek();
1285 }
1286
1287 else if (!strncasecmp(cmdbuf,"DELF",4)) {
1288 cmd_delf(&cmdbuf[5]);
1289 }
1290
1291 else if (!strncasecmp(cmdbuf,"MOVF",4)) {
1292 cmd_movf(&cmdbuf[5]);
1293 }
1294
1295 else if (!strncasecmp(cmdbuf,"OPEN",4)) {
1296 cmd_open(&cmdbuf[5]);
1297 }
1298
1299 else if (!strncasecmp(cmdbuf,"CLOS",4)) {
1300 cmd_clos();
1301 }
1302
1303 else if (!strncasecmp(cmdbuf,"UOPN",4)) {
1304 cmd_uopn(&cmdbuf[5]);
1305 }
1306
1307 else if (!strncasecmp(cmdbuf,"UCLS",4)) {
1308 cmd_ucls(&cmdbuf[5]);
1309 }
1310
1311 else if (!strncasecmp(cmdbuf,"READ",4)) {
1312 cmd_read(&cmdbuf[5]);
1313 }
1314
1315 else if (!strncasecmp(cmdbuf,"WRIT",4)) {
1316 cmd_writ(&cmdbuf[5]);
1317 }
1318
1319 else if (!strncasecmp(cmdbuf,"QUSR",4)) {
1320 cmd_qusr(&cmdbuf[5]);
1321 }
1322
1323 else if (!strncasecmp(cmdbuf,"ECHO",4)) {
1324 cmd_echo(&cmdbuf[5]);
1325 }
1326
1327 else if (!strncasecmp(cmdbuf,"OIMG",4)) {
1328 cmd_oimg(&cmdbuf[5]);
1329 }
1330
1331 else if (!strncasecmp(cmdbuf,"MORE",4)) {
1332 cmd_more();
1333 }
1334
1335 else if (!strncasecmp(cmdbuf,"NDOP",4)) {
1336 cmd_ndop(&cmdbuf[5]);
1337 }
1338
1339 else if (!strncasecmp(cmdbuf,"NUOP",4)) {
1340 cmd_nuop(&cmdbuf[5]);
1341 }
1342
1343 else if (!strncasecmp(cmdbuf,"LFLR",4)) {
1344 cmd_lflr();
1345 }
1346
1347 else if (!strncasecmp(cmdbuf,"CFLR",4)) {
1348 cmd_cflr(&cmdbuf[5]);
1349 }
1350
1351 else if (!strncasecmp(cmdbuf,"KFLR",4)) {
1352 cmd_kflr(&cmdbuf[5]);
1353 }
1354
1355 else if (!strncasecmp(cmdbuf,"EFLR",4)) {
1356 cmd_eflr(&cmdbuf[5]);
1357 }
1358
1359 else if (!strncasecmp(cmdbuf,"IDEN",4)) {
1360 cmd_iden(&cmdbuf[5]);
1361 }
1362
1363 else if (!strncasecmp(cmdbuf,"IPGM",4)) {
1364 cmd_ipgm(&cmdbuf[5]);
1365 }
1366
1367 else if (!strncasecmp(cmdbuf,"TERM",4)) {
1368 cmd_term(&cmdbuf[5]);
1369 }
1370
1371 else if (!strncasecmp(cmdbuf,"DOWN",4)) {
1372 cmd_down(&cmdbuf[5]);
1373 }
1374
1375 else if (!strncasecmp(cmdbuf,"HALT",4)) {
1376 cmd_halt();
1377 }
1378
1379 else if (!strncasecmp(cmdbuf,"SCDN",4)) {
1380 cmd_scdn(&cmdbuf[5]);
1381 }
1382
1383 else if (!strncasecmp(cmdbuf, "UIMG", 4)) {
1384 cmd_uimg(&cmdbuf[5]);
1385 }
1386
1387 else if (!strncasecmp(cmdbuf, "TIME", 4)) {
1388 cmd_time();
1389 }
1390
1391 else if (!strncasecmp(cmdbuf, "AGUP", 4)) {
1392 cmd_agup(&cmdbuf[5]);
1393 }
1394
1395 else if (!strncasecmp(cmdbuf, "ASUP", 4)) {
1396 cmd_asup(&cmdbuf[5]);
1397 }
1398
1399 else if (!strncasecmp(cmdbuf, "GPEX", 4)) {
1400 cmd_gpex(&cmdbuf[5]);
1401 }
1402
1403 else if (!strncasecmp(cmdbuf, "SPEX", 4)) {
1404 cmd_spex(&cmdbuf[5]);
1405 }
1406
1407 else if (!strncasecmp(cmdbuf, "CONF", 4)) {
1408 cmd_conf(&cmdbuf[5]);
1409 }
1410
1411 else if (!strncasecmp(cmdbuf, "SEEN", 4)) {
1412 cmd_seen(&cmdbuf[5]);
1413 }
1414
1415 else if (!strncasecmp(cmdbuf, "GTSN", 4)) {
1416 cmd_gtsn(&cmdbuf[5]);
1417 }
1418
1419 else if (!strncasecmp(cmdbuf, "VIEW", 4)) {
1420 cmd_view(&cmdbuf[5]);
1421 }
1422
1423 else if (!strncasecmp(cmdbuf, "ISME", 4)) {
1424 cmd_isme(&cmdbuf[5]);
1425 }
1426
1427 else if (!strncasecmp(cmdbuf, "RENU", 4)) {
1428 cmd_renu(&cmdbuf[5]);
1429 }
1430
1431 else if (!DLoader_Exec_Cmd(cmdbuf)) {
1432 cprintf("%d Unrecognized or unsupported command.\n", ERROR + CMD_NOT_SUPPORTED);
1433 }
1434
1435 unbuffer_output();
1436
1437 /* Run any after-each-command routines registered by modules */
1438 PerformSessionHooks(EVT_CMD);
1439 CtdlThreadName(old_name);
1440 }
1441
1442
1443 /*
1444 * This loop performs all asynchronous functions.
1445 */
1446 void do_async_loop(void) {
1447 PerformSessionHooks(EVT_ASYNC);
1448 }
Sam's citadel repo