-/* $Id$ */
+/*
+ * $Id$
+ *
+ * Main source module for the Citadel server
+ *
+ */
+
#include "sysdep.h"
#include <stdlib.h>
#include <unistd.h>
#include <errno.h>
#include <limits.h>
#include <syslog.h>
-#include <dlfcn.h>
+/* #include <dlfcn.h> */
#include <netdb.h>
#include <sys/types.h>
#include <sys/socket.h>
+#include <sys/time.h>
#include <netinet/in.h>
#include <arpa/inet.h>
#include "citadel.h"
* Various things that need to be initialized at startup
*/
void master_startup(void) {
+ struct timeval tv;
+
+ lprintf(9, "master_startup() started\n");
lprintf(7, "Opening databases\n");
open_databases();
- if (do_defrag)
+ if (do_defrag) {
defrag_databases();
+ }
- lprintf(7, "Checking floor reference counts\n");
check_ref_counts();
lprintf(7, "Creating base rooms (if necessary)\n");
create_room(AIDEROOM, 3, "", 0);
create_room(SYSCONFIGROOM, 3, "", 0);
create_room(config.c_twitroom, 0, "", 0);
- }
+
+ lprintf(7, "Seeding the pseudo-random number generator...\n");
+ gettimeofday(&tv, NULL);
+ srand(tv.tv_usec);
+ lprintf(9, "master_startup() finished\n");
+}
+
+
/*
* Cleanup routine to be called when the server is shutting down.
/* Run any cleanup routines registered by loadable modules */
for (fcn = CleanupHookTable; fcn != NULL; fcn = fcn->next) {
(*fcn->h_function_pointer)();
- }
+ }
/* Close databases */
lprintf(7, "Closing databases\n");
lprintf(3, "citserver: exiting.\n");
fflush(stdout); fflush(stderr);
exit(0);
- }
+}
/*
lprintf(3, "citserver[%3d]: ended.\n", con->cs_pid);
- syslog(LOG_NOTICE,"session %d ended", con->cs_pid);
+ syslog(LOG_NOTICE,"session %d: ended", con->cs_pid);
/* Deallocate any user-data attached to this session */
deallocate_user_data(con);
lprintf(7, "Closing socket %d\n", con->client_socket);
close(con->client_socket);
- /* Tell the housekeeping thread to check to see if this is the time
- * to initiate a scheduled shutdown event.
- */
- enter_housekeeping_cmd("SCHED_SHUTDOWN");
+ /* This is where we used to check for scheduled shutdowns. */
/* Free up the memory used by this context */
phree(con);
* cmd_info() - tell the client about this server
*/
void cmd_info(void) {
- cprintf("%d Server info:\n",LISTING_FOLLOWS);
- cprintf("%d\n",CC->cs_pid);
- cprintf("%s\n",config.c_nodename);
- cprintf("%s\n",config.c_humannode);
- cprintf("%s\n",config.c_fqdn);
- cprintf("%s\n",CITADEL);
- cprintf("%d\n",REV_LEVEL);
- cprintf("%s\n",config.c_bbs_city);
- cprintf("%s\n",config.c_sysadm);
- cprintf("%d\n",SERVER_TYPE);
- cprintf("%s\n",config.c_moreprompt);
+ cprintf("%d Server info:\n", LISTING_FOLLOWS);
+ cprintf("%d\n", CC->cs_pid);
+ cprintf("%s\n", config.c_nodename);
+ cprintf("%s\n", config.c_humannode);
+ cprintf("%s\n", config.c_fqdn);
+ cprintf("%s\n", CITADEL);
+ cprintf("%d\n", REV_LEVEL);
+ cprintf("%s\n", config.c_bbs_city);
+ cprintf("%s\n", config.c_sysadm);
+ cprintf("%d\n", SERVER_TYPE);
+ cprintf("%s\n", config.c_moreprompt);
cprintf("1\n"); /* 1 = yes, this system supports floors */
cprintf("1\n"); /* 1 = we support the extended paging options */
+ cprintf("%s\n", CC->cs_nonce);
cprintf("000\n");
- }
+}
/*
*/
int is_public_client(char *where)
{
- char buf[256];
+ char buf[SIZ];
FILE *fp;
- if (hostnames_match(where,"localhost")) return(1);
- if (hostnames_match(where,config.c_fqdn)) return(1);
+ lprintf(9, "Checking whether %s is a public client\n", where);
+
+ if (hostnames_match(where, "localhost")) return(1);
+ if (hostnames_match(where, config.c_fqdn)) return(1);
fp = fopen("public_clients","r");
if (fp == NULL) return(0);
- while (fgets(buf,256,fp)!=NULL) {
+ while (fgets(buf, sizeof buf, fp)!=NULL) {
while (isspace((buf[strlen(buf)-1])))
buf[strlen(buf)-1] = 0;
if (hostnames_match(where,buf)) {
int dev_code;
int cli_code;
int rev_level;
- char desc[256];
- char from_host[256];
+ char desc[SIZ];
+ char from_host[SIZ];
struct in_addr addr;
+ int do_lookup = 0;
if (num_parms(argbuf)<4) {
cprintf("%d usage error\n",ERROR);
safestrncpy(CC->cs_clientname, desc, sizeof CC->cs_clientname);
CC->cs_clientname[31] = 0;
- lprintf(9, "Looking up hostname '%s'\n", from_host);
- if ((strlen(from_host)>0)
- && ( (CC->is_local_socket) || (is_public_client(CC->cs_host)))) {
- if ((addr.s_addr = inet_addr(from_host)) != -1)
+ if (strlen(from_host) > 0) {
+ if (CC->is_local_socket) do_lookup = 1;
+ else if (is_public_client(CC->cs_host)) do_lookup = 1;
+ }
+
+ if (do_lookup) {
+ lprintf(9, "Looking up hostname '%s'\n", from_host);
+ if ((addr.s_addr = inet_addr(from_host)) != -1) {
locate_host(CC->cs_host, &addr);
+ }
else {
safestrncpy(CC->cs_host, from_host, sizeof CC->cs_host);
CC->cs_host[24] = 0;
}
}
- syslog(LOG_NOTICE,"client %d/%d/%01d.%02d (%s)\n",
+ lprintf(7, "client %d/%d/%01d.%02d (%s)\n",
dev_code,
cli_code,
(rev_level / 100),
(rev_level % 100),
desc);
- cprintf("%d Ok\n",OK);
+
+ syslog(LOG_NOTICE,"session %d: client %d/%d/%01d.%02d (%s) from %s\n",
+ CC->cs_pid,
+ dev_code,
+ cli_code,
+ (rev_level / 100),
+ (rev_level % 100),
+ desc,
+ CC->cs_host);
+ cprintf("%d Ok\n",OK);
}
void cmd_mesg(char *mname)
{
FILE *mfp;
- char targ[256];
- char buf[256];
+ char targ[SIZ];
+ char buf[SIZ];
char *dirs[2];
extract(buf,mname,0);
void cmd_emsg(char *mname)
{
FILE *mfp;
- char targ[256];
- char buf[256];
+ char targ[SIZ];
+ char buf[SIZ];
char *dirs[2];
int a;
- if (CC->usersupp.axlevel < 6) {
- cprintf("%d You must be an Aide to edit system messages.\n",
- ERROR+HIGHER_ACCESS_REQUIRED);
- return;
- }
+ if (CtdlAccessCheck(ac_aide)) return;
extract(buf,mname,0);
for (a=0; a<strlen(buf); ++a) { /* security measure */
}
+/*
+ * Convenience function.
+ */
+int CtdlAccessCheck(int required_level) {
+
+ if (CC->internal_pgm) return(0);
+ if (required_level >= ac_internal) {
+ cprintf("%d This is not a user-level command.\n",
+ ERROR+HIGHER_ACCESS_REQUIRED);
+ return(-1);
+ }
+
+ if (CC->usersupp.axlevel >= 6) return(0);
+ if (required_level >= ac_aide) {
+ cprintf("%d This command requires Aide access.\n",
+ ERROR+HIGHER_ACCESS_REQUIRED);
+ return(-1);
+ }
+
+ if (is_room_aide()) return(0);
+ if (required_level >= ac_room_aide) {
+ cprintf("%d This command requires Aide or Room Aide access.\n",
+ ERROR + HIGHER_ACCESS_REQUIRED);
+ return(-1);
+ }
+
+ if (CC->logged_in) return(0);
+ if (required_level >= ac_logged_in) {
+ cprintf("%d Not logged in.\n", ERROR+NOT_LOGGED_IN);
+ return(-1);
+ }
+
+ /* shhh ... succeed quietly */
+ return(0);
+}
+
/*
struct CitContext *ccptr;
int found_it = 0;
- if (!CC->logged_in) {
- cprintf("%d Not logged in.\n",ERROR+NOT_LOGGED_IN);
- return;
- }
-
- if (CC->usersupp.axlevel < 6) {
- cprintf("%d You must be an Aide to terminate sessions.\n",
- ERROR+HIGHER_ACCESS_REQUIRED);
- return;
- }
+ if (CtdlAccessCheck(ac_aide)) return;
session_num = extract_int(cmdbuf, 0);
if (session_num == CC->cs_pid) {
* Shut down the server
*/
void cmd_down(void) {
- if (!CC->logged_in) {
- cprintf("%d Not logged in.\n", ERROR+NOT_LOGGED_IN);
- return;
- }
- if (CC->usersupp.axlevel < 6) {
- cprintf("%d You must be an Aide to shut down the server.\n",
- ERROR+HIGHER_ACCESS_REQUIRED);
- return;
- }
+ if (CtdlAccessCheck(ac_aide)) return;
cprintf("%d Shutting down server. Goodbye.\n", OK);
master_cleanup();
{
int new_state;
- if (!CC->logged_in) {
- cprintf("%d Not logged in.\n",ERROR+NOT_LOGGED_IN);
- return;
- }
-
- if (CC->usersupp.axlevel < 6) {
- cprintf("%d You must be an Aide to schedule a shutdown.\n",
- ERROR+HIGHER_ACCESS_REQUIRED);
- return;
- }
+ if (CtdlAccessCheck(ac_aide)) return;
new_state = extract_int(argbuf, 0);
if ((new_state == 0) || (new_state == 1)) {
}
+/*
+ * Generate a "nonce" for APOP-style authentication.
+ *
+ * RFC 1725 et al specify a PID to be placed in front of the nonce.
+ * Quoth BTX: That would be stupid.
+ */
+void generate_nonce(struct CitContext *con) {
+ struct timeval tv;
+
+ memset(con->cs_nonce, NONCE_SIZE, 0);
+ gettimeofday(&tv, NULL);
+ memset(con->cs_nonce, NONCE_SIZE, 0);
+ snprintf(con->cs_nonce, NONCE_SIZE, "<%d%ld@%s>",
+ rand(), tv.tv_usec, config.c_fqdn);
+}
+
+
+
+
/*
* Back-end function for starting a session
*/
strcpy(con->cs_clientname, "(unknown)");
strcpy(con->curr_user, NLI);
strcpy(con->net_node,"");
+ strcpy(con->fake_username, "");
+ strcpy(con->fake_postname, "");
+ strcpy(con->fake_hostname, "");
+ strcpy(con->fake_roomname, "");
+ generate_nonce(con);
snprintf(con->temp, sizeof con->temp, tmpnam(NULL));
safestrncpy(con->cs_host, config.c_fqdn, sizeof con->cs_host);
con->cs_host[sizeof con->cs_host - 1] = 0;
* This loop recognizes all server commands.
*/
void do_command_loop(void) {
- char cmdbuf[256];
+ char cmdbuf[SIZ];
time(&CC->lastcmd);
memset(cmdbuf, 0, sizeof cmdbuf); /* Clear it, just in case */