/* 3APA3A simpliest proxy server (c) 2002-2004 by ZARAZA <3APA3A@security.nnov.ru> please read License Agreement $Id: webadmin.c,v 1.14 2005/04/21 10:57:40 vlad Exp $ */ #include "proxy.h" #define RETURN(xxx) { param->res = xxx; goto CLEANRET; } #define LINESIZE 2048 extern FILE *writable; FILE * confopen(); extern void decodeurl(unsigned char *s, int filter); struct printparam { char buf[1024]; int inbuf; struct clientparam *cp; }; static void stdpr(struct printparam* pp, char *buf, int inbuf){ if((pp->inbuf + inbuf > 1024) || !buf) { socksend(pp->cp->clisock, pp->buf, pp->inbuf, conf.timeouts[STRING_S]); pp->inbuf = 0; if(!buf) return; } if(inbuf >= 1000){ socksend(pp->cp->clisock, buf, inbuf, conf.timeouts[STRING_S]); } else { memcpy(pp->buf + pp->inbuf, buf, inbuf); pp->inbuf += inbuf; } } static void stdcbf(void *cb, char *buf, int inbuf){ int delay = 0; int i; for(i = 0; i < inbuf; i++){ switch(buf[i]){ case '&': if(delay){ stdpr((struct printparam*)cb, buf+i-delay, delay); delay = 0; } stdpr((struct printparam*)cb, "&", 5); break; case '<': if(delay){ stdpr((struct printparam*)cb, buf+i-delay, delay); delay = 0; } stdpr((struct printparam*)cb, "<", 4); break; case '>': if(delay){ stdpr((struct printparam*)cb, buf+i-delay, delay); delay = 0; } stdpr((struct printparam*)cb, ">", 4); break; default: delay++; break; } } if(delay){ stdpr((struct printparam*)cb, buf+i-delay, delay); } } static char * templateprint(struct printparam* pp, int *level, struct dictionary *dict, char * template){ char *s, *s2; for(; template && *template; ){ if(!( s = strchr(template, '<'))){ stdpr(pp, template, strlen(template)); return template + strlen(template); } if(s[1] != '%' || s[2] == '%'){ stdpr(pp, template, (s - template) + 1); template = s + 1; continue; } if(s[2] == '/' && (s2 = strchr(s + 2, '>')) && *(s2 - 1) == '%'){ if(--*level < 0) return NULL; return s2 + 1; } } return template; } static void printstr(struct printparam* pp, char* str){ stdpr(pp, str, str?strlen(str):0); } static void printval(void *value, int type, int level, struct printparam* pp){ struct node pn, cn; struct property *p; int i; pn.iteration = NULL; pn.parent = NULL; pn.type = type; pn.value = value; for(p = datatypes[type].properties; p; ) { cn.iteration = NULL; cn.parent = &pn; cn.type = p->type; cn.value = (*p->e_f)(&pn); if(cn.value){ for(i = 0; i < level; i++) printstr(pp, "\t"); if(strcmp(p->name, "next")){ printstr(pp, p->name); printstr(pp, " ["); printstr(pp, datatypes[p->type].type); printstr(pp, "]: "); } if(datatypes[p->type].p_f){ (*datatypes[p->type].p_f)(&cn, stdcbf, pp); printstr(pp, "\n"); } else { if(!strcmp(p->name, "next")){ printstr(pp, "--------------------\n"); p = datatypes[type].properties; pn.value = value = cn.value; continue; } else { printstr(pp, "\n"); printval(cn.value, cn.type, level+1, pp); } } } p=p->next; } } char authreq[] = "HTTP/1.0 401 Authentication Required\r\n" "WWW-Authenticate: Basic realm=\"proxy\"\r\n" "Proxy-Connection: close\r\n" "Content-type: text/html; unsigned charset=us-ascii\r\n" "\r\n" "401 Authentication Required\r\n" "

401 Authentication Required

Access to requested resource disallowed by administrator or you need valid username/password to use this resource

\r\n" ; char ok[] = "HTTP/1.0 200 OK\r\n" "Connection: close\r\n" "Expires: Thu, 01 Dec 1994 16:00:00 GMT\r\n" "Cache-Control: no-cache\r\n" "Content-type: text/html\r\n" "\r\n" "%s configuration page\r\n" "\r\n" "
\r\n" "

         " "         

\r\n" "Counters
\r\n" "Reload
\r\n" "Statistics
\r\n" "Config\r\n" "		" "

%s %s configuration

" ; char tail[] = "










\r\n" "(c)2000-2004 by 3APA3A\r\n" "
" ; char counters[] = "

Counters

\r\n" "\r\n" "" "" "" "" "\r\n" ; char counterstail[] = "
DescriptionActiveUsersSource AddressDestination AddressPortLimitUnitsValueResetUpdatedNum
\r\n"; char * rotations[] = { "", "/min", "/hour", "/day", "/week", "/month", "" }; static int printportlist(char *buf, int bufsize, struct portlist* pl, char * delim){ int printed = 0; for(; pl; pl = pl->next){ if(printed > (bufsize - 64)) break; if(pl->startport != pl->endport) printed += sprintf(buf+printed, "%hu-%hu%s", pl->startport, pl->endport, pl->next?delim:""); else { struct servent *se; se = getservbyport((int)ntohs(pl->startport), NULL); printed += sprintf(buf+printed, "%hu(%s)%s", pl->startport, se?se->s_name:"unknown", pl->next?delim:""); } if(printed > (bufsize - 64)) { printed += sprintf(buf+printed, "..."); } } return printed; } static int printuserlist(char *buf, int bufsize, struct userlist* ul, char * delim){ int printed = 0; for(; ul; ul = ul->next){ if(printed > (bufsize - 64)) break; printed += sprintf(buf+printed, "%s%s", ul->user, ul->next?delim:""); if(printed > (bufsize - 64)) { printed += sprintf(buf+printed, "..."); } } return printed; } static int printiplist(char *buf, int bufsize, struct iplist* ipl, char * delim){ int printed = 0; for(; ipl; ipl = ipl->next){ if(printed > (bufsize - 64)) break; printed += sprintf(buf+printed, "%u.%u.%u.%u mask %u.%u.%u.%u%s", (unsigned)(ntohl(ipl->ip)&0xff000000)>>24, (unsigned)(ntohl(ipl->ip)&0x00ff0000)>>16, (unsigned)(ntohl(ipl->ip)&0x0000ff00)>>8, (unsigned)(ntohl(ipl->ip)&0x000000ff), (unsigned)(ntohl(ipl->mask)&0xff000000)>>24, (unsigned)(ntohl(ipl->mask)&0x00ff0000)>>16, (unsigned)(ntohl(ipl->mask)&0x0000ff00)>>8, (unsigned)(ntohl(ipl->mask)&0x000000ff), ipl->next?delim:""); if(printed > (bufsize - 64)) { printed += sprintf(buf+printed, "..."); } } return printed; } void * adminchild(void * data) { #define param ((struct clientparam*)data) int i, res; char * buf; char username[256]; char *sb; char *req = NULL; struct printparam pp; int contentlen = 0; int isform = 0; pp.inbuf = 0; pp.cp = param; buf = myalloc(LINESIZE); if(!buf) {RETURN(555);} i = sockgetlinebuf(param, CLIENT, buf, LINESIZE - 1, '\n', conf.timeouts[STRING_S]); if(i<5 || ((buf[0]!='G' || buf[1]!='E' || buf[2]!='T' || buf[3]!=' ' || buf[4]!='/') && (buf[0]!='P' || buf[1]!='O' || buf[2]!='S' || buf[3]!='T' || buf[4]!=' ' || buf[5]!='/'))) { RETURN(701); } buf[i] = 0; sb = strchr(buf+5, ' '); if(!sb){ RETURN(702); } *sb = 0; req = mystrdup(buf + ((*buf == 'P')? 6 : 5)); while((i = sockgetlinebuf(param, CLIENT, buf, LINESIZE - 1, '\n', conf.timeouts[STRING_S])) > 2){ buf[i] = 0; if(i > 19 && (!strncasecmp((char *)(buf), "authorization", 13))){ sb = (unsigned char *)strchr((char *)(buf), ':'); if(!sb)continue; ++sb; while(isspace(*sb))sb++; if(!*sb || strncasecmp((char *)sb, "basic", 5)){ continue; } sb+=5; while(isspace(*sb))sb++; i = de64(sb, username, 255); if(i<=0)continue; username[i] = 0; sb = (unsigned char *)strchr((char *)username, ':'); if(sb){ *sb = 0; if(param->password)myfree(param->password); param->password = (unsigned char *)mystrdup((char *)sb+1); } if(param->username) myfree(param->username); param->username = (unsigned char *)mystrdup((char *)username); continue; } else if(i > 15 && (!strncasecmp((char *) buf, "content-length:", 15))){ sb = buf + 15; while(isspace(*sb))sb++; contentlen = atoi(sb); } else if(i > 13 && (!strncasecmp((char *) buf, "content-type:", 13))){ sb = buf + 13; while(isspace(*sb))sb++; if(!strncasecmp(sb, "x-www-form-urlencoded", 21)) isform = 1; } } param->remsock = 1; param->operation = ADMIN; if(isform && contentlen) { printstr(&pp, "HTTP/1.0 100 Continue\r\n\r\n"); stdpr(&pp, NULL, 0); } res = (*param->authfunc)(param); param->remsock = INVALID_SOCKET; if(res && res != 10) { printstr(&pp, authreq); RETURN(res); } sprintf(buf, ok, stringtable?(char *)stringtable[2]:"3proxy", stringtable?(char *)stringtable[2]:"3[APA3A] tiny proxy", stringtable?(char *)stringtable[3]:""); printstr(&pp, buf); switch(*req){ case 'C': printstr(&pp, counters); { struct trafcount *cp; int num = 0; for(cp = conf.trafcounter; cp; cp = cp->next, num++){ int inbuf = 0; if(req[1] == 'S' && atoi(req+2) == num) cp->disabled=0; if(req[1] == 'D' && atoi(req+2) == num) cp->disabled=1; inbuf += sprintf(buf, "" "%s%s", (cp->comment)?cp->comment:" ", (cp->disabled)?'S':'D', num, (cp->disabled)?"NO":"YES" ); if(!cp->ace || !cp->ace->users){ inbuf += sprintf(buf+inbuf, "
ANY
"); } else { inbuf += printuserlist(buf+inbuf, LINESIZE-800, cp->ace->users, ",
\r\n"); } inbuf += sprintf(buf+inbuf, ""); if(!cp->ace || !cp->ace->src){ inbuf += sprintf(buf+inbuf, "
ANY
"); } else { inbuf += printiplist(buf+inbuf, LINESIZE-512, cp->ace->src, ",
\r\n"); } inbuf += sprintf(buf+inbuf, ""); if(!cp->ace || !cp->ace->dst){ inbuf += sprintf(buf+inbuf, "
ANY
"); } else { inbuf += printiplist(buf+inbuf, LINESIZE-512, cp->ace->dst, ",
\r\n"); } inbuf += sprintf(buf+inbuf, ""); if(!cp->ace || !cp->ace->ports){ inbuf += sprintf(buf+inbuf, "
ANY
"); } else { inbuf += printportlist(buf+inbuf, LINESIZE-128, cp->ace->ports, ",
\r\n"); } if(cp->type == NONE) { inbuf += sprintf(buf+inbuf, "exclude from limitation\r\n" ); } else { inbuf += sprintf(buf+inbuf, "%lu" "Mb%s" "%.3f Mb" "%s", (cp->traflimgb<<10) + (cp->traflim>>20), rotations[cp->type], 1024.0 * cp->trafgb + cp->traf/1048576.0, cp->cleared?ctime(&cp->cleared):"never" ); inbuf += sprintf(buf + inbuf, "%s" "%i" "\r\n", cp->updated?ctime(&cp->updated):"never", cp->number ); } printstr(&pp, buf); } } printstr(&pp, counterstail); break; case 'R': if((res = reload())){ sprintf(buf, "

reload failed: %d

", res); printstr(&pp, buf); } else { printstr(&pp, "

Reloaded

"); } break; case 'S': { printstr(&pp, "

Running services:

");
			printval(conf.services, TYPE_CLIENT, 0, &pp);
			printstr(&pp, "
"); } break; case 'F': { FILE *fp; char buf[256]; fp = confopen(); if(!fp){ printstr(&pp, "

Failed to open config file

"); break; } printstr(&pp, "

Please be careful editing config file remotely

"); printstr(&pp, "

"); break; } case 'U': { int l=0; int error = 0; if(!writable || fseek(writable, 0, 0)){ error = 1; } while((i = sockgetlinebuf(param, CLIENT, buf, LINESIZE - 1, '+', conf.timeouts[STRING_S])) > 0){ if(i > (contentlen - l)) i = (contentlen - l); buf[i] = 0; if(!l){ if(strncasecmp(buf, "conffile=", 9)) error = 1; } if(!error){ decodeurl(buf, 1); fprintf(writable, "%s", l? buf : buf + 9); } l += i; if(l >= contentlen) break; } if(writable && !error){ fflush(writable); ftruncate(fileno(writable), ftell(writable)); } printstr(&pp, error? "

Config file is not writable

Make sure you have \"writable\" command in configuration file": "

Configuration updated

"); } break; default: printstr(&pp, stringtable[WEBBANNERS]); break; } printstr(&pp, tail); CLEANRET: printstr(&pp, NULL); if(buf) myfree(buf); (*param->logfunc)(param, req); if(req)myfree(req); freeparam(param); return (NULL); }