![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
index cc58491b87c6d3cb465b942dc4c98278f948a429..ae94225520dbe79d3449fec53d9d05e68e85c6b2 100644 (file)
use Exporter;
@ISA = qw(Exporter);
my @functions = (
+ "create_passwd",
"create_xml_hash",
"get_content_from_xml_hash",
"add_content2xml_hash",
"get_limit_statement",
"get_orderby_statement",
"get_dns_domains",
+ "get_server_addresses",
+ "get_logged_in_users",
+ "import_events",
+ "del_doubles",
+ "get_ip",
+ "get_interface_for_ip",
+ "get_interfaces",
+ "is_local",
+ "run_as",
+ "inform_all_other_si_server",
);
@EXPORT = @functions;
use strict;
use Digest::MD5 qw(md5 md5_hex md5_base64);
use MIME::Base64;
use XML::Simple;
+use Data::Dumper;
+use Net::DNS;
+
my $op_hash = {
'eq' => '=',
'gt' => '>',
'le' => '<=',
'lt' => '<',
+ 'like' => ' LIKE ',
};
}
+sub create_passwd {
+ my $new_passwd = "";
+ for(my $i=0; $i<31; $i++) {
+ $new_passwd .= ("a".."z","A".."Z",0..9)[int(rand(62))]
+ }
+
+ return $new_passwd;
+}
+
+
+sub del_doubles {
+ my %all;
+ $all{$_}=0 for @_;
+ return (keys %all);
+}
#=== FUNCTION ================================================================
}
-#=== FUNCTION ================================================================
-# NAME: encrypt_msg
-# PARAMETERS: msg - string - message to encrypt
-# my_cipher - ref - reference to a Crypt::Rijndael object
-# RETURNS: crypted_msg - string - crypted message
-# DESCRIPTION: crypts the incoming message with the Crypt::Rijndael module
-#===============================================================================
-#sub encrypt_msg {
-# my ($msg, $key) = @_;
-# my $my_cipher = &create_ciphering($key);
-# {
-# use bytes;
-# $msg = "\0"x(16-length($msg)%16).$msg;
-# }
-# $msg = $my_cipher->encrypt($msg);
-# chomp($msg = &encode_base64($msg));
-# # there are no newlines allowed inside msg
-# $msg=~ s/\n//g;
-# return $msg;
-#}
-
-
-#=== FUNCTION ================================================================
-# NAME: decrypt_msg
-# PARAMETERS: crypted_msg - string - message to decrypt
-# my_cipher - ref - reference to a Crypt::Rijndael object
-# RETURNS: msg - string - decrypted message
-# DESCRIPTION: decrypts the incoming message with the Crypt::Rijndael module
-#===============================================================================
-#sub decrypt_msg {
-# my ($msg, $my_cipher) = @_ ;
-#
-# if(defined $msg && defined $my_cipher) {
-# $msg = &decode_base64($msg);
-# }
-# $msg = $my_cipher->decrypt($msg);
-# $msg =~ s/\0*//g;
-# return $msg;
-# my ($msg, $key) = @_ ;
-# $msg = &decode_base64($msg);
-# my $my_cipher = &create_ciphering($key);
-# $msg = $my_cipher->decrypt($msg);
-# $msg =~ s/\0*//g;
-# return $msg;
-#}
-
-
-#=== FUNCTION ================================================================
-# NAME: create_ciphering
-# PARAMETERS: passwd - string - used to create ciphering
-# RETURNS: cipher - object
-# DESCRIPTION: creates a Crypt::Rijndael::MODE_CBC object with passwd as key
-#===============================================================================
-#sub create_ciphering {
-# my ($passwd) = @_;
-# $passwd = substr(md5_hex("$passwd") x 32, 0, 32);
-# my $iv = substr(md5_hex('GONICUS GmbH'),0, 16);
-#
-# #daemon_log("iv: $iv", 7);
-# #daemon_log("key: $passwd", 7);
-# my $my_cipher = Crypt::Rijndael->new($passwd , Crypt::Rijndael::MODE_CBC());
-# $my_cipher->set_iv($iv);
-# return $my_cipher;
-#}
-
-
-#=== FUNCTION ================================================================
-# NAME: open_socket
-# PARAMETERS: PeerAddr string something like 192.168.1.1 or 192.168.1.1:10000
-# [PeerPort] string necessary if port not appended by PeerAddr
-# RETURNS: socket IO::Socket::INET
-# DESCRIPTION: open a socket to PeerAddr
-#===============================================================================
-#sub open_socket {
-# my ($PeerAddr, $PeerPort) = @_ ;
-# if(defined($PeerPort)){
-# $PeerAddr = $PeerAddr.":".$PeerPort;
-# }
-# my $socket;
-# $socket = new IO::Socket::INET(PeerAddr => $PeerAddr,
-# Porto => "tcp",
-# Type => SOCK_STREAM,
-# Timeout => 5,
-# );
-# if(not defined $socket) {
-# return;
-# }
-# &daemon_log("open_socket: $PeerAddr", 7);
-# return $socket;
-#}
-
-
sub get_time {
my ($seconds, $minutes, $hours, $monthday, $month,
$year, $weekday, $yearday, $sommertime) = localtime(time);
sub build_msg ($$$$) {
my ($header, $from, $to, $data) = @_;
+ # data is of form, i.e.
+ # %data= ('ip' => $address, 'mac' => $mac);
+
my $out_hash = &create_xml_hash($header, $from, $to);
while ( my ($key, $value) = each(%$data) ) {
if( exists $phrase->{'operator'} ) {
my $op = $op_hash->{$phrase->{'operator'}[0]};
if( not defined $op ) {
- &main::daemon_log("Can not translate operator '$operator' in where ".
+ &main::daemon_log("ERROR: Can not translate operator '$operator' in where-".
"statement to sql valid syntax. Please use 'eq', ".
"'ne', 'ge', 'gt', 'le', 'lt' in xml message\n", 1);
&main::daemon_log($msg, 8);
my @xml_tags = keys %{$phrase};
my $tag = $xml_tags[0];
my $val = $phrase->{$tag}[0];
- push(@phrase_l, "$tag$operator'$val'");
+ if( ref($val) eq "HASH" ) { next; } # empty xml-tags should not appear in where statement
+
+ # integer columns do not have to have single quotes besides the value
+ if ($tag eq "id") {
+ push(@phrase_l, "$tag$operator$val");
+ } else {
+ push(@phrase_l, "$tag$operator'$val'");
+ }
+ }
+
+ if (not 0 == @phrase_l) {
+ my $clause_str .= join(" $connector ", @phrase_l);
+ push(@clause_l, "($clause_str)");
}
- my $clause_str .= join(" $connector ", @phrase_l);
- push(@clause_l, $clause_str);
}
if( not 0 == @clause_l ) {
$clause_str = join(" AND ", @clause_l);
- $clause_str = "WHERE $clause_str ";
+ $clause_str = "WHERE ($clause_str) ";
}
}
my $select = "*";
if( exists $msg_hash->{'select'} ) {
my $select_l = \@{$msg_hash->{'select'}};
- $select = join(' AND ', @{$select_l});
+ $select = join(', ', @{$select_l});
}
return $select;
}
return @searches;
}
+
+sub get_server_addresses {
+ my $domain= shift;
+ my @result;
+
+ my $error = 0;
+ my $res = Net::DNS::Resolver->new;
+ my $query = $res->send("_gosa-si._tcp.".$domain, "SRV");
+ my @hits;
+
+ if ($query) {
+ foreach my $rr ($query->answer) {
+ push(@hits, $rr->target.":".$rr->port);
+ }
+ }
+ else {
+ #warn "query failed: ", $res->errorstring, "\n";
+ $error++;
+ }
+
+ if( $error == 0 ) {
+ foreach my $hit (@hits) {
+ my ($hit_name, $hit_port) = split(/:/, $hit);
+ chomp($hit_name);
+ chomp($hit_port);
+
+ my $address_query = $res->send($hit_name);
+ if( 1 == length($address_query->answer) ) {
+ foreach my $rr ($address_query->answer) {
+ push(@result, $rr->address.":".$hit_port);
+ }
+ }
+ }
+ }
+
+ return @result;
+}
+
+
+sub get_logged_in_users {
+ my $result = qx(/usr/bin/w -hs);
+ my @res_lines;
+
+ if( defined $result ) {
+ chomp($result);
+ @res_lines = split("\n", $result);
+ }
+
+ my @logged_in_user_list;
+ foreach my $line (@res_lines) {
+ chomp($line);
+ my @line_parts = split(/\s+/, $line);
+ push(@logged_in_user_list, $line_parts[0]);
+ }
+
+ return @logged_in_user_list;
+
+}
+
+
+sub import_events {
+ my ($event_dir) = @_;
+ my $event_hash;
+ my $error = 0;
+ my @result = ();
+ if (not -e $event_dir) {
+ $error++;
+ push(@result, "cannot find directory or directory is not readable: $event_dir");
+ }
+
+ my $DIR;
+ if ($error == 0) {
+ opendir ($DIR, $event_dir) or do {
+ $error++;
+ push(@result, "cannot open directory '$event_dir' for reading: $!\n");
+ }
+ }
+
+ if ($error == 0) {
+ while (defined (my $event = readdir ($DIR))) {
+ if( $event eq "." || $event eq ".." ) { next; }
+
+ # try to import event module
+ eval{ require $event; };
+ if( $@ ) {
+ $error++;
+ push(@result, "import of event module '$event' failed: $@");
+ next;
+ }
+
+ # fetch all single events
+ $event =~ /(\S*?).pm$/;
+ my $event_module = $1;
+ my $events_l = eval( $1."::get_events()") ;
+ foreach my $event_name (@{$events_l}) {
+ $event_hash->{$event_name} = $event_module;
+ }
+ my $events_string = join( ", ", @{$events_l});
+ push(@result, "import of event module '$event' succeed: $events_string");
+ }
+
+ close $DIR;
+ }
+
+ return ($error, \@result, $event_hash);
+
+}
+
+
+#=== FUNCTION ================================================================
+# NAME: get_ip
+# PARAMETERS: interface name (i.e. eth0)
+# RETURNS: (ip address)
+# DESCRIPTION: Uses ioctl to get ip address directly from system.
+#===============================================================================
+sub get_ip {
+ my $ifreq= shift;
+ my $result= "";
+ my $SIOCGIFADDR= 0x8915; # man 2 ioctl_list
+ my $proto= getprotobyname('ip');
+
+ socket SOCKET, PF_INET, SOCK_DGRAM, $proto
+ or die "socket: $!";
+
+ if(ioctl SOCKET, $SIOCGIFADDR, $ifreq) {
+ my ($if, $sin) = unpack 'a16 a16', $ifreq;
+ my ($port, $addr) = sockaddr_in $sin;
+ my $ip = inet_ntoa $addr;
+
+ if ($ip && length($ip) > 0) {
+ $result = $ip;
+ }
+ }
+
+ return $result;
+}
+
+
+#=== FUNCTION ================================================================
+# NAME: get_interface_for_ip
+# PARAMETERS: ip address (i.e. 192.168.0.1)
+# RETURNS: array: list of interfaces if ip=0.0.0.0, matching interface if found, undef else
+# DESCRIPTION: Uses proc fs (/proc/net/dev) to get list of interfaces.
+#===============================================================================
+sub get_interface_for_ip {
+ my $result;
+ my $ip= shift;
+ if ($ip && length($ip) > 0) {
+ my @ifs= &get_interfaces();
+ if($ip eq "0.0.0.0") {
+ $result = "all";
+ } else {
+ foreach (@ifs) {
+ my $if=$_;
+ if(&get_ip($if) eq $ip) {
+ $result = $if;
+ }
+ }
+ }
+ }
+ return $result;
+}
+
+#=== FUNCTION ================================================================
+# NAME: get_interfaces
+# PARAMETERS: none
+# RETURNS: (list of interfaces)
+# DESCRIPTION: Uses proc fs (/proc/net/dev) to get list of interfaces.
+#===============================================================================
+sub get_interfaces {
+ my @result;
+ my $PROC_NET_DEV= ('/proc/net/dev');
+
+ open(PROC_NET_DEV, "<$PROC_NET_DEV")
+ or die "Could not open $PROC_NET_DEV";
+
+ my @ifs = <PROC_NET_DEV>;
+
+ close(PROC_NET_DEV);
+
+ # Eat first two line
+ shift @ifs;
+ shift @ifs;
+
+ chomp @ifs;
+ foreach my $line(@ifs) {
+ my $if= (split /:/, $line)[0];
+ $if =~ s/^\s+//;
+ push @result, $if;
+ }
+
+ return @result;
+}
+
+
+#=== FUNCTION ================================================================
+# NAME: is_local
+# PARAMETERS: Server Address
+# RETURNS: true if Server Address is on this host, false otherwise
+# DESCRIPTION: Checks all interface addresses, stops on first match
+#===============================================================================
+sub is_local {
+ my $server_address = shift || "";
+ my $result = 0;
+
+ my $server_ip = $1 if $server_address =~ /^(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}):\d{1,6}$/;
+
+ if(defined($server_ip) && length($server_ip) > 0) {
+ foreach my $interface(&get_interfaces()) {
+ my $ip_address= &get_ip($interface);
+ if($ip_address eq $server_ip) {
+ $result = 1;
+ last;
+ }
+ }
+ }
+
+ return $result;
+}
+
+
+#=== FUNCTION ================================================================
+# NAME: run_as
+# PARAMETERS: uid, command
+# RETURNS: hash with keys 'resultCode' = resultCode of command and
+# 'output' = program output
+# DESCRIPTION: Runs command as uid using the sudo utility.
+#===============================================================================
+sub run_as {
+ my ($uid, $command) = @_;
+ my $sudo_cmd = `which sudo`;
+ chomp($sudo_cmd);
+ if(! -x $sudo_cmd) {
+ &main::daemon_log("ERROR: The sudo utility is not available! Please fix this!");
+ }
+ my $cmd_line= "$sudo_cmd su - $uid -c '$command'";
+ open(PIPE, "$cmd_line |");
+ my $result = {'resultCode' => $?};
+ $result->{'command'} = $cmd_line;
+ push @{$result->{'output'}}, <PIPE>;
+ return $result;
+}
+
+
+#=== FUNCTION ================================================================
+# NAME: inform_other_si_server
+# PARAMETERS: message
+# RETURNS: nothing
+# DESCRIPTION: Sends message to all other SI-server found in known_server_db.
+#===============================================================================
+sub inform_all_other_si_server {
+ my ($msg) = @_;
+
+ # determine all other si-server from known_server_db
+ my $sql_statement= "SELECT * FROM $main::known_server_tn";
+ my $res = $main::known_server_db->select_dbentry( $sql_statement );
+
+ while( my ($hit_num, $hit) = each %$res ) {
+ my $act_target_address = $hit->{hostname};
+ my $act_target_key = $hit->{hostkey};
+
+ # determine the source address corresponding to the actual target address
+ my ($act_target_ip, $act_target_port) = split(/:/, $act_target_address);
+ my $act_source_address = &main::get_local_ip_for_remote_ip($act_target_ip).":$act_target_port";
+
+ # fill into message the correct target and source addresses
+ my $act_msg = $msg;
+ $act_msg =~ s/<target>\w*<\/target>/<target>$act_target_address<\/target>/g;
+ $act_msg =~ s/<source>\w*<\/source>/<source>$act_source_address<\/source>/g;
+
+ # send message to the target
+ &main::send_msg_to_target($act_msg, $act_target_address, $act_target_key, "foreign_job_updates" , "J");
+ }
+
+ return;
+}
+
1;