123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722 |
- /*
- * Copyright (c) Contributors, http://opensimulator.org/
- * See CONTRIBUTORS.TXT for a full list of copyright holders.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions are met:
- * * Redistributions of source code must retain the above copyright
- * notice, this list of conditions and the following disclaimer.
- * * Redistributions in binary form must reproduce the above copyright
- * notice, this list of conditions and the following disclaimer in the
- * documentation and/or other materials provided with the distribution.
- * * Neither the name of the OpenSimulator Project nor the
- * names of its contributors may be used to endorse or promote products
- * derived from this software without specific prior written permission.
- *
- * THIS SOFTWARE IS PROVIDED BY THE DEVELOPERS ``AS IS'' AND ANY
- * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
- * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
- * DISCLAIMED. IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY
- * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
- * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
- * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
- * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
- * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
- * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
- */
- using System;
- using System.Xml;
- using System.Collections;
- using System.Collections.Generic;
- using System.Diagnostics;
- using System.Reflection;
- using System.Text;
- using System.Text.RegularExpressions;
- using System.Threading;
- using System.Timers;
- using OpenMetaverse;
- using Nini.Config;
- using OpenSim.Framework.Servers.HttpServer;
- using log4net;
- namespace OpenSim.Framework.Console
- {
- // A console that uses REST interfaces
- //
- public class RemoteConsole : CommandConsole
- {
- // Connection specific data, indexed by a session ID
- // we create when a client connects.
- protected class ConsoleConnection
- {
- // Last activity from the client
- public int last;
- // Last line of scrollback posted to this client
- public long lastLineSeen;
- // True if this is a new connection, e.g. has never
- // displayed a prompt to the user.
- public bool newConnection = true;
- }
- // A line in the scrollback buffer.
- protected class ScrollbackEntry
- {
- // The line number of this entry
- public long lineNumber;
- // The text to send to the client
- public string text;
- // The level this should be logged as. Omitted for
- // prompts and input echo.
- public string level;
- // True if the text above is a prompt, e.g. the
- // client should turn on the cursor / accept input
- public bool isPrompt;
- // True if the requested input is a command. A
- // client may offer help or validate input if
- // this is set. If false, input should be sent
- // as typed.
- public bool isCommand;
- // True if this text represents a line of text that
- // was input in response to a prompt. A client should
- // turn off the cursor and refrain from sending commands
- // until a new prompt is received.
- public bool isInput;
- }
- // Data that is relevant to all connections
- // The scrollback buffer
- protected List<ScrollbackEntry> m_Scrollback = new List<ScrollbackEntry>();
- // Monotonously incrementing line number. This may eventually
- // wrap. No provision is made for that case because 64 bits
- // is a long, long time.
- protected long m_lineNumber = 0;
- // These two variables allow us to send the correct
- // information about the prompt status to the client,
- // irrespective of what may have run off the top of the
- // scrollback buffer;
- protected bool m_expectingInput = false;
- protected bool m_expectingCommand = true;
- protected string m_lastPromptUsed;
- // This is the list of things received from clients.
- // Note: Race conditions can happen. If a client sends
- // something while nothing is expected, it will be
- // intepreted as input to the next prompt. For
- // commands this is largely correct. For other prompts,
- // YMMV.
- // TODO: Find a better way to fix this
- protected List<string> m_InputData = new List<string>();
- // Event to allow ReadLine to wait synchronously even though
- // everthing else is asynchronous here.
- protected ManualResetEvent m_DataEvent = new ManualResetEvent(false);
- // The list of sessions we maintain. Unlike other console types,
- // multiple users on the same console are explicitly allowed.
- protected Dictionary<UUID, ConsoleConnection> m_Connections =
- new Dictionary<UUID, ConsoleConnection>();
- // Timer to control expiration of sessions that have been
- // disconnected.
- protected System.Timers.Timer m_expireTimer = new System.Timers.Timer(5000);
- // The less interesting stuff that makes the actual server
- // work.
- protected IHttpServer m_Server = null;
- protected IConfigSource m_Config = null;
- protected string m_UserName = String.Empty;
- protected string m_Password = String.Empty;
- protected string m_AllowedOrigin = String.Empty;
- public RemoteConsole(string defaultPrompt) : base(defaultPrompt)
- {
- // There is something wrong with this architecture.
- // A prompt is sent on every single input, so why have this?
- // TODO: Investigate and fix.
- m_lastPromptUsed = defaultPrompt;
- // Start expiration of sesssions.
- m_expireTimer.Elapsed += DoExpire;
- m_expireTimer.Start();
- }
- public void ReadConfig(IConfigSource config)
- {
- m_Config = config;
- // We're pulling this from the 'Network' section for legacy
- // compatibility. However, this is so essentially insecure
- // that TLS and client certs should be used instead of
- // a username / password.
- IConfig netConfig = m_Config.Configs["Network"];
- if (netConfig == null)
- return;
- // Get the username and password.
- m_UserName = netConfig.GetString("ConsoleUser", String.Empty);
- m_Password = netConfig.GetString("ConsolePass", String.Empty);
- // Woefully underdocumented, this is what makes javascript
- // console clients work. Set to "*" for anywhere or (better)
- // to specific addresses.
- m_AllowedOrigin = netConfig.GetString("ConsoleAllowedOrigin", String.Empty);
- }
- public void SetServer(IHttpServer server)
- {
- // This is called by the framework to give us the server
- // instance (means: port) to work with.
- m_Server = server;
- // Add our handlers
- m_Server.AddHTTPHandler("/StartSession/", HandleHttpStartSession);
- m_Server.AddHTTPHandler("/CloseSession/", HandleHttpCloseSession);
- m_Server.AddHTTPHandler("/SessionCommand/", HandleHttpSessionCommand);
- }
- public override void Output(string text, string level)
- {
- Output(text, level, false, false, false);
- }
- protected void Output(string text, string level, bool isPrompt, bool isCommand, bool isInput)
- {
- // Increment the line number. It was 0 and they start at 1
- // so we need to pre-increment.
- m_lineNumber++;
- // Create and populate the new entry.
- ScrollbackEntry newEntry = new ScrollbackEntry();
- newEntry.lineNumber = m_lineNumber;
- newEntry.text = text;
- newEntry.level = level;
- newEntry.isPrompt = isPrompt;
- newEntry.isCommand = isCommand;
- newEntry.isInput = isInput;
- // Add a line to the scrollback. In some cases, that may not
- // actually be a line of text.
- lock (m_Scrollback)
- {
- // Prune the scrollback to the length se send as connect
- // burst to give the user some context.
- while (m_Scrollback.Count >= 1000)
- m_Scrollback.RemoveAt(0);
- m_Scrollback.Add(newEntry);
- }
- // Let the rest of the system know we have output something.
- FireOnOutput(text.Trim());
- // Also display it for debugging.
- System.Console.WriteLine(text.Trim());
- }
- public override void Output(string text)
- {
- // Output plain (non-logging style) text.
- Output(text, String.Empty, false, false, false);
- }
- public override string ReadLine(string p, bool isCommand, bool e)
- {
- // Output the prompt an prepare to wait. This
- // is called on a dedicated console thread and
- // needs to be synchronous. Old architecture but
- // not worth upgrading.
- if (isCommand)
- {
- m_expectingInput = true;
- m_expectingCommand = true;
- Output(p, String.Empty, true, true, false);
- m_lastPromptUsed = p;
- }
- else
- {
- m_expectingInput = true;
- Output(p, String.Empty, true, false, false);
- }
- // Here is where we wait for the user to input something.
- m_DataEvent.WaitOne();
- string cmdinput;
- // Check for empty input. Read input if not empty.
- lock (m_InputData)
- {
- if (m_InputData.Count == 0)
- {
- m_DataEvent.Reset();
- m_expectingInput = false;
- m_expectingCommand = false;
- return "";
- }
- cmdinput = m_InputData[0];
- m_InputData.RemoveAt(0);
- if (m_InputData.Count == 0)
- m_DataEvent.Reset();
- }
- m_expectingInput = false;
- m_expectingCommand = false;
- // Echo to all the other users what we have done. This
- // will also go to ourselves.
- Output (cmdinput, String.Empty, false, false, true);
- // If this is a command, we need to resolve and execute it.
- if (isCommand)
- {
- // This call will actually execute the command and create
- // any output associated with it. The core just gets an
- // empty string so it will call again immediately.
- string[] cmd = Commands.Resolve(Parser.Parse(cmdinput));
- if (cmd.Length != 0)
- {
- int i;
- for (i=0 ; i < cmd.Length ; i++)
- {
- if (cmd[i].Contains(" "))
- cmd[i] = "\"" + cmd[i] + "\"";
- }
- return String.Empty;
- }
- }
- // Return the raw input string if not a command.
- return cmdinput;
- }
- // Very simplistic static access control header.
- protected Hashtable CheckOrigin(Hashtable result)
- {
- if (!string.IsNullOrEmpty(m_AllowedOrigin))
- result["access_control_allow_origin"] = m_AllowedOrigin;
- return result;
- }
- /* TODO: Figure out how PollServiceHTTPHandler can access the request headers
- * in order to use m_AllowedOrigin as a regular expression
- protected Hashtable CheckOrigin(Hashtable headers, Hashtable result)
- {
- if (!string.IsNullOrEmpty(m_AllowedOrigin))
- {
- if (headers.ContainsKey("origin"))
- {
- string origin = headers["origin"].ToString();
- if (Regex.IsMatch(origin, m_AllowedOrigin))
- result["access_control_allow_origin"] = origin;
- }
- }
- return result;
- }
- */
- protected void DoExpire(Object sender, ElapsedEventArgs e)
- {
- // Iterate the list of console connections and find those we
- // haven't heard from for longer then the longpoll interval.
- // Remove them.
- List<UUID> expired = new List<UUID>();
- lock (m_Connections)
- {
- // Mark the expired ones
- foreach (KeyValuePair<UUID, ConsoleConnection> kvp in m_Connections)
- {
- if (System.Environment.TickCount - kvp.Value.last > 500000)
- expired.Add(kvp.Key);
- }
- // Delete them
- foreach (UUID id in expired)
- {
- m_Connections.Remove(id);
- CloseConnection(id);
- }
- }
- }
- // Start a new session.
- protected Hashtable HandleHttpStartSession(Hashtable request)
- {
- // The login is in the form of a http form post
- Hashtable post = DecodePostString(request["body"].ToString());
- Hashtable reply = new Hashtable();
- reply["str_response_string"] = "";
- reply["int_response_code"] = 401;
- reply["content_type"] = "text/plain";
- // Check user name and password
- if (m_UserName == String.Empty)
- return reply;
- if (post["USER"] == null || post["PASS"] == null)
- return reply;
- if (m_UserName != post["USER"].ToString() ||
- m_Password != post["PASS"].ToString())
- {
- return reply;
- }
- // Set up the new console connection record
- ConsoleConnection c = new ConsoleConnection();
- c.last = System.Environment.TickCount;
- c.lastLineSeen = 0;
- // Assign session ID
- UUID sessionID = UUID.Random();
- // Add connection to list.
- lock (m_Connections)
- {
- m_Connections[sessionID] = c;
- }
- // This call is a CAP. The URL is the authentication.
- string uri = "/ReadResponses/" + sessionID.ToString() + "/";
- m_Server.AddPollServiceHTTPHandler(
- uri, new PollServiceEventArgs(null, uri, HasEvents, GetEvents, NoEvents, null, sessionID,25000)); // 25 secs timeout
- // Our reply is an XML document.
- // TODO: Change this to Linq.Xml
- XmlDocument xmldoc = new XmlDocument();
- XmlNode xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration,
- "", "");
- xmldoc.AppendChild(xmlnode);
- XmlElement rootElement = xmldoc.CreateElement("", "ConsoleSession",
- "");
- xmldoc.AppendChild(rootElement);
- XmlElement id = xmldoc.CreateElement("", "SessionID", "");
- id.AppendChild(xmldoc.CreateTextNode(sessionID.ToString()));
- rootElement.AppendChild(id);
- XmlElement prompt = xmldoc.CreateElement("", "Prompt", "");
- prompt.AppendChild(xmldoc.CreateTextNode(m_lastPromptUsed));
- rootElement.AppendChild(prompt);
- rootElement.AppendChild(MainConsole.Instance.Commands.GetXml(xmldoc));
- // Set up the response and check origin
- reply["str_response_string"] = xmldoc.InnerXml;
- reply["int_response_code"] = 200;
- reply["content_type"] = "text/xml";
- reply = CheckOrigin(reply);
- return reply;
- }
- // Client closes session. Clean up.
- protected Hashtable HandleHttpCloseSession(Hashtable request)
- {
- Hashtable post = DecodePostString(request["body"].ToString());
- Hashtable reply = new Hashtable();
- reply["str_response_string"] = "";
- reply["int_response_code"] = 404;
- reply["content_type"] = "text/plain";
- if (post["ID"] == null)
- return reply;
- UUID id;
- if (!UUID.TryParse(post["ID"].ToString(), out id))
- return reply;
- lock (m_Connections)
- {
- if (m_Connections.ContainsKey(id))
- {
- m_Connections.Remove(id);
- CloseConnection(id);
- }
- }
- XmlDocument xmldoc = new XmlDocument();
- XmlNode xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration,
- "", "");
- xmldoc.AppendChild(xmlnode);
- XmlElement rootElement = xmldoc.CreateElement("", "ConsoleSession",
- "");
- xmldoc.AppendChild(rootElement);
- XmlElement res = xmldoc.CreateElement("", "Result", "");
- res.AppendChild(xmldoc.CreateTextNode("OK"));
- rootElement.AppendChild(res);
- reply["str_response_string"] = xmldoc.InnerXml;
- reply["int_response_code"] = 200;
- reply["content_type"] = "text/xml";
- reply = CheckOrigin(reply);
- return reply;
- }
- // Command received from the client.
- protected Hashtable HandleHttpSessionCommand(Hashtable request)
- {
- Hashtable post = DecodePostString(request["body"].ToString());
- Hashtable reply = new Hashtable();
- reply["str_response_string"] = "";
- reply["int_response_code"] = 404;
- reply["content_type"] = "text/plain";
- // Check the ID
- if (post["ID"] == null)
- return reply;
- UUID id;
- if (!UUID.TryParse(post["ID"].ToString(), out id))
- return reply;
- // Find the connection for that ID.
- lock (m_Connections)
- {
- if (!m_Connections.ContainsKey(id))
- return reply;
- }
- // Empty post. Just error out.
- if (post["COMMAND"] == null)
- return reply;
- // Place the input data in the buffer.
- lock (m_InputData)
- {
- m_DataEvent.Set();
- m_InputData.Add(post["COMMAND"].ToString());
- }
- // Create the XML reply document.
- XmlDocument xmldoc = new XmlDocument();
- XmlNode xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration,
- "", "");
- xmldoc.AppendChild(xmlnode);
- XmlElement rootElement = xmldoc.CreateElement("", "ConsoleSession",
- "");
- xmldoc.AppendChild(rootElement);
- XmlElement res = xmldoc.CreateElement("", "Result", "");
- res.AppendChild(xmldoc.CreateTextNode("OK"));
- rootElement.AppendChild(res);
- reply["str_response_string"] = xmldoc.InnerXml;
- reply["int_response_code"] = 200;
- reply["content_type"] = "text/xml";
- reply = CheckOrigin(reply);
- return reply;
- }
- // Decode a HTTP form post to a Hashtable
- protected Hashtable DecodePostString(string data)
- {
- Hashtable result = new Hashtable();
- string[] terms = data.Split(new char[] {'&'});
- foreach (string term in terms)
- {
- string[] elems = term.Split(new char[] {'='});
- if (elems.Length == 0)
- continue;
- string name = System.Web.HttpUtility.UrlDecode(elems[0]);
- string value = String.Empty;
- if (elems.Length > 1)
- value = System.Web.HttpUtility.UrlDecode(elems[1]);
- result[name] = value;
- }
- return result;
- }
- // Close the CAP receiver for the responses for a given client.
- public void CloseConnection(UUID id)
- {
- try
- {
- string uri = "/ReadResponses/" + id.ToString() + "/";
- m_Server.RemovePollServiceHTTPHandler("", uri);
- }
- catch (Exception)
- {
- }
- }
- // Check if there is anything to send. Return true if this client has
- // lines pending.
- protected bool HasEvents(UUID RequestID, UUID sessionID)
- {
- ConsoleConnection c = null;
- lock (m_Connections)
- {
- if (!m_Connections.ContainsKey(sessionID))
- return false;
- c = m_Connections[sessionID];
- }
- c.last = System.Environment.TickCount;
- if (c.lastLineSeen < m_lineNumber)
- return true;
- return false;
- }
- // Send all pending output to the client.
- protected Hashtable GetEvents(UUID RequestID, UUID sessionID)
- {
- // Find the connection that goes with this client.
- ConsoleConnection c = null;
- lock (m_Connections)
- {
- if (!m_Connections.ContainsKey(sessionID))
- return NoEvents(RequestID, UUID.Zero);
- c = m_Connections[sessionID];
- }
- // If we have nothing to send, send the no events response.
- c.last = System.Environment.TickCount;
- if (c.lastLineSeen >= m_lineNumber)
- return NoEvents(RequestID, UUID.Zero);
- Hashtable result = new Hashtable();
- // Create the response document.
- XmlDocument xmldoc = new XmlDocument();
- XmlNode xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration,
- "", "");
- xmldoc.AppendChild(xmlnode);
- XmlElement rootElement = xmldoc.CreateElement("", "ConsoleSession",
- "");
- //if (c.newConnection)
- //{
- // c.newConnection = false;
- // Output("+++" + DefaultPrompt);
- //}
- lock (m_Scrollback)
- {
- long startLine = m_lineNumber - m_Scrollback.Count;
- long sendStart = startLine;
- if (sendStart < c.lastLineSeen)
- sendStart = c.lastLineSeen;
- for (long i = sendStart ; i < m_lineNumber ; i++)
- {
- ScrollbackEntry e = m_Scrollback[(int)(i - startLine)];
- XmlElement res = xmldoc.CreateElement("", "Line", "");
- res.SetAttribute("Number", e.lineNumber.ToString());
- res.SetAttribute("Level", e.level);
- // Don't include these for the scrollback, we'll send the
- // real state later.
- if (!c.newConnection)
- {
- res.SetAttribute("Prompt", e.isPrompt ? "true" : "false");
- res.SetAttribute("Command", e.isCommand ? "true" : "false");
- res.SetAttribute("Input", e.isInput ? "true" : "false");
- }
- else if (i == m_lineNumber - 1) // Last line for a new connection
- {
- res.SetAttribute("Prompt", m_expectingInput ? "true" : "false");
- res.SetAttribute("Command", m_expectingCommand ? "true" : "false");
- res.SetAttribute("Input", (!m_expectingInput) ? "true" : "false");
- }
- else
- {
- res.SetAttribute("Input", e.isInput ? "true" : "false");
- }
- res.AppendChild(xmldoc.CreateTextNode(e.text));
- rootElement.AppendChild(res);
- }
- }
- c.lastLineSeen = m_lineNumber;
- c.newConnection = false;
- xmldoc.AppendChild(rootElement);
- result["str_response_string"] = xmldoc.InnerXml;
- result["int_response_code"] = 200;
- result["content_type"] = "application/xml";
- result["keepalive"] = false;
- result["reusecontext"] = false;
- result = CheckOrigin(result);
- return result;
- }
- // This is really just a no-op. It generates what is sent
- // to the client if the poll times out without any events.
- protected Hashtable NoEvents(UUID RequestID, UUID id)
- {
- Hashtable result = new Hashtable();
- XmlDocument xmldoc = new XmlDocument();
- XmlNode xmlnode = xmldoc.CreateNode(XmlNodeType.XmlDeclaration,
- "", "");
- xmldoc.AppendChild(xmlnode);
- XmlElement rootElement = xmldoc.CreateElement("", "ConsoleSession",
- "");
- xmldoc.AppendChild(rootElement);
- result["str_response_string"] = xmldoc.InnerXml;
- result["int_response_code"] = 200;
- result["content_type"] = "text/xml";
- result["keepalive"] = false;
- result["reusecontext"] = false;
- result = CheckOrigin(result);
- return result;
- }
- }
- }
|