############################################################################### ## Copyright 2005-2016 OCSInventory-NG/OCSInventory-Server contributors. ## See the Contributors file for more details about them. ## ## This file is part of OCSInventory-NG/OCSInventory-ocsreports. ## ## OCSInventory-NG/OCSInventory-Server is free software: you can redistribute ## it and/or modify it under the terms of the GNU General Public License as ## published by the Free Software Foundation, either version 2 of the License, ## or (at your option) any later version. ## ## OCSInventory-NG/OCSInventory-Server is distributed in the hope that it ## will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty ## of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ## GNU General Public License for more details. ## ## You should have received a copy of the GNU General Public License ## along with OCSInventory-NG/OCSInventory-ocsreports. if not, write to the ## Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, ## MA 02110-1301, USA. ################################################################################ package Apache::Ocsinventory; use strict; BEGIN{ if($ENV{'OCS_MODPERL_VERSION'} == 1){ require Apache::Ocsinventory::Server::Modperl1; Apache::Ocsinventory::Server::Modperl1->import(); }elsif($ENV{'OCS_MODPERL_VERSION'} == 2){ require Apache::Ocsinventory::Server::Modperl2; Apache::Ocsinventory::Server::Modperl2->import(); }else{ if(!defined($ENV{'OCS_MODPERL_VERSION'})){ die("OCS_MODPERL_VERSION not defined. Abort\n"); }else{ die("OCS_MODPERL_VERSION set to, a bad parameter. Must be '1' or '2'. Abort\n"); } } } $Apache::Ocsinventory::VERSION = '2.8.1'; $Apache::Ocsinventory::BUILD_VERSION = '780'; $XML::Simple::PREFERRED_PARSER = 'XML::Parser'; # Ocs modules use Apache::Ocsinventory::Server::Constants; use Apache::Ocsinventory::Server::System qw /:server _modules_get_request_handler /; use Apache::Ocsinventory::Server::Communication; use Apache::Ocsinventory::Server::Inventory; use Apache::Ocsinventory::Server::Groups; use Apache::Ocsinventory::Server::Useragent; # To compress the tx and read the rx use Compress::Zlib; use Encode; # Globale structure our %CURRENT_CONTEXT; our @XMLParseOptForceArray;# Obsolete, for 1.01 modules only my %XML_PARSER_OPT; our @TRUSTED_IP; sub handler{ my $d; my $status; my $r; my $data; my $raw_data; my $inflated; my $query; my $dbMode; # current context # Will be used to handle all globales %CURRENT_CONTEXT = ( 'APACHE_OBJECT' => undef, 'RAW_DATA' => undef, #'DBI_HANDLE' => undef, # DBI_SL_HANDLE => undef 'DEVICEID' => undef, 'DATABASE_ID' => undef, 'DATA' => undef, 'XML_ENTRY' => undef, 'XML_INVENTORY' => undef, 'LOCK_FL' => 0, 'EXIST_FL' => 0, 'MEMBER_OF' => undef, 'DEFLATE_SUB' => \&Compress::Zlib::compress, 'IS_TRUSTED' => 0, 'DETAILS' => undef, 'PARAMS' => undef, 'PARAMS_G' => undef, 'MEMBER_OF' => undef, 'IPADDRESS' => $ENV{'HTTP_X_FORWARDED_FOR'}?$ENV{'HTTP_X_FORWARDED_FOR'}:$ENV{'REMOTE_ADDR'}, 'USER_AGENT' => undef, 'LOCAL_FL' => undef ); # No buffer for STDOUT select(STDOUT); $|=1; # Get the data and the apache object $r=shift; $CURRENT_CONTEXT{'APACHE_OBJECT'} = $r; $CURRENT_CONTEXT{'USER_AGENT'} = &_get_http_header('User-agent', $r); @TRUSTED_IP = $r->dir_config->get('OCS_OPT_TRUSTED_IP'); #Connect to database $dbMode = 'write'; if($Apache::Ocsinventory::CURRENT_CONTEXT{'USER_AGENT'} =~ /local/i){ $CURRENT_CONTEXT{'LOCAL_FL'}=1; $dbMode = 'local'; } if(!($CURRENT_CONTEXT{'DBI_HANDLE'} = &_database_connect( $dbMode ))){ &_log(505,'handler','Database connection'); return &_end(APACHE_SERVER_ERROR); } if(!($CURRENT_CONTEXT{'DBI_SL_HANDLE'} = &_database_connect( 'read' ))){ &_log(505,'handler','Database Slave connection'); return &_end(APACHE_SERVER_ERROR); } #Retrieve server options if(&_get_sys_options()){ &_log(503,'handler', 'System options'); return &_end(APACHE_SERVER_ERROR); } # First, we determine the http method # The get method will be only available for the bootstrap to manage the deploy, and maybe, sometime to give files which will be stored in the database if($r->method() eq 'GET'){ # To manage the first contact with the bootstrap # The uri must be '/ocsinventory/deploy/[filename]' if($r->uri()=~/deploy\/([^\/]+)\/?$/){ if($ENV{'OCS_OPT_DEPLOY'}){ return &_end(&_send_file('deploy',$1)); }else{ return &_end(APACHE_FORBIDDEN); } }elsif($r->uri()=~/update\/(.+)\/(.+)\/(\d+)\/?/){ # We use the GET method for the update to use the proxies # The URL is built like that : [OCSFSERVER]/ocsinventory/[os]/[name]/[version] if($ENV{'OCS_OPT_UPDATE'}){ return &_end(&_send_file('update',$1,$2,$3)); }else{ return &_end(APACHE_FORBIDDEN); } }else{ # If the url is invalid return &_end(APACHE_BAD_REQUEST); } # Here is the post method management }elsif($r->method eq 'POST'){ # Get the data if( !read(STDIN, $data, $ENV{'CONTENT_LENGTH'}) ){ &_log(512,'handler','Reading request') if $ENV{'OCS_OPT_LOGLEVEL'}; return &_end(APACHE_SERVER_ERROR); } # Copying buffer because inflate() modify it $raw_data = $data; $CURRENT_CONTEXT{'RAW_DATA'} = \$raw_data; # Debug level for Apache::DBI (apache/error.log) # $Apache::DBI::DEBUG=2; # Read the request # Possibilities : # prolog : The agent wants to know if he have to send an inventory (and with which options) # update : The agent wants to know if there is a newer version available # inventory : It is an inventory # system : Request to know the server's time response (and if it's alive) not yet implemented # file : Download files when upgrading (For the moment, only when upgrading) ################################################## # # Inflate the data unless($d = Compress::Zlib::inflateInit()){ &_log(506,'handler','Compress stage') if $ENV{'OCS_OPT_LOGLEVEL'}; return &_end(APACHE_BAD_REQUEST); } ($inflated, $status) = $d->inflate($data); unless( $status == Z_OK or $status == Z_STREAM_END){ if( $ENV{OCS_OPT_COMPRESS_TRY_OTHERS} ){ &_inflate(\$raw_data, \$inflated); } else{ undef $inflated; } if(!$inflated){ &_log(506,'handler','Compress stage'); return &_end(APACHE_SERVER_ERROR); } } # Unicode support - The XML may not use UTF8 if($ENV{'OCS_OPT_UNICODE_SUPPORT'}) { if($inflated =~ /^.+encoding="([\w+\-]+)/) { my $enc = $1; $inflated =~ s/$enc/UTF-8/; Encode::from_to($inflated, "$enc", "utf8"); } } $CURRENT_CONTEXT{'DATA'} = \$inflated; ########################## # Parse the XML request # Retrieving xml parsing options if needed &_get_xml_parser_opt( \%XML_PARSER_OPT ) unless %XML_PARSER_OPT; eval { $query = XML::Simple::XMLin( $inflated, %XML_PARSER_OPT ); } or do { unless($query = XML::Simple::XMLin( encode('utf8',$inflated), %XML_PARSER_OPT )){ &_log(507,'handler','Xml stage'); return &_end(APACHE_BAD_REQUEST); } }; $query = verif_xml($query); $CURRENT_CONTEXT{'XML_ENTRY'} = $query; # Get the request type my $request=$query->{QUERY}; $CURRENT_CONTEXT{'DEVICEID'} = $query->{DEVICEID} or $CURRENT_CONTEXT{'DEVICEID'} = $query->{CONTENT}->{DEVICEID}; unless($request eq 'UPDATE'){ if(&_check_deviceid($Apache::Ocsinventory::CURRENT_CONTEXT{'DEVICEID'})){ &_log(502,'inventory','Bad deviceid') if $ENV{'OCS_OPT_LOGLEVEL'}; return &_end(APACHE_BAD_REQUEST); } } # Must be filled unless($request){ &_log(500,'handler','Request not defined'); return &_end(APACHE_BAD_REQUEST); } # Init global structure my $err = &_init(); return &_end($err) if $err; # The three above are hardcoded if($request eq 'PROLOG'){ my $ret = &_prolog(); return(&_end($ret)); }elsif($request eq 'INVENTORY'){ my $ret = &_inventory_handler(); return(&_end($ret)) }elsif($request eq 'SYSTEM'){ my $ret = &_system_handler(); return(&_end($ret)); }else{ # Other request are handled by options my $handler = &_modules_get_request_handler($request); if($handler == 0){ &_log(500,'handler', 'No handler'); return APACHE_BAD_REQUEST; }else{ my $ret = &{$handler}(\%CURRENT_CONTEXT); return(&_end($ret)); } } }else{ return APACHE_FORBIDDEN } } sub _init{ my $request; # Retrieve Device if exists $request = $CURRENT_CONTEXT{'DBI_HANDLE'}->prepare(' SELECT DEVICEID,ID,UNIX_TIMESTAMP(LASTCOME) AS LCOME,UNIX_TIMESTAMP(LASTDATE) AS LDATE,QUALITY,FIDELITY FROM hardware WHERE DEVICEID=?' ); unless($request->execute($CURRENT_CONTEXT{'DEVICEID'})){ return(APACHE_SERVER_ERROR); } for my $ipreg (@TRUSTED_IP){ if($CURRENT_CONTEXT{'IPADDRESS'}=~/^$ipreg$/){ &_log(310,'handler','trusted_computer') if $ENV{'OCS_OPT_LOGLEVEL'}; $CURRENT_CONTEXT{'IS_TRUSTED'} = 1; } } if($request->rows){ my $row = $request->fetchrow_hashref; $CURRENT_CONTEXT{'EXIST_FL'} = 1; $CURRENT_CONTEXT{'DATABASE_ID'} = $row->{'ID'}; $CURRENT_CONTEXT{'DETAILS'} = { 'LCOME' => $row->{'LCOME'}, 'LDATE' => $row->{'LDATE'}, 'QUALITY' => $row->{'QUALITY'}, 'FIDELITY' => $row->{'FIDELITY'}, }; # Computing groups list if($ENV{'OCS_OPT_ENABLE_GROUPS'}){ $CURRENT_CONTEXT{'MEMBER_OF'} = [ &_get_groups() ]; } else{ $CURRENT_CONTEXT{'MEMBER_OF'} = []; } $CURRENT_CONTEXT{'PARAMS'} = { &_get_spec_params() }; $CURRENT_CONTEXT{'PARAMS_G'} = { &_get_spec_params_g() }; }else{ $CURRENT_CONTEXT{'EXIST_FL'} = 0; $CURRENT_CONTEXT{'MEMBER_OF'} = []; } $request->finish; return; } # XML string verification sub verif_xml{ my ($query) = @_; my $key; my $exp; my $exp2; for(%{$query->{CONTENT}}){ if(ref($_) ne 'ARRAY'){ $key = $_; if(ref($query->{CONTENT}->{$key}) eq 'ARRAY'){ for(@{$query->{CONTENT}->{$key}}){ for(%{$_}){ $exp = $_; $exp2 = $exp =~ s/ //gr; if($exp2 =~ m/=\(/ && $exp2 =~ m/\)/){ $_ = 1; } } } } if(ref($query->{CONTENT}->{$key}) eq 'HASH'){ for(%{$query->{CONTENT}->{$key}}){ $exp = $_; $exp2 = $exp =~ s/ //gr; if($exp2 =~ m/=\(/ && $exp2 =~ m/\)/){ $_ = 1; } } } } } return $query; } 1;