diff options
Diffstat (limited to 'src/login/login.cpp')
| -rw-r--r-- | src/login/login.cpp | 5038 |
1 files changed, 5038 insertions, 0 deletions
diff --git a/src/login/login.cpp b/src/login/login.cpp new file mode 100644 index 0000000..543f32f --- /dev/null +++ b/src/login/login.cpp @@ -0,0 +1,5038 @@ +// $Id: login.c,v 1.1.1.1 2004/09/10 17:26:53 MagicalTux Exp $ +// new version of the login-server by [Yor] + +#include <sys/types.h> +#include <sys/socket.h> +#include <stdio.h> +#include <stdlib.h> +#include <netinet/in.h> +#include <sys/time.h> +#include <time.h> +#include <sys/ioctl.h> +#include <sys/stat.h> // for stat/lstat/fstat +#include <unistd.h> +#include <signal.h> +#include <fcntl.h> +#include <string.h> +#include <arpa/inet.h> +#include <netdb.h> +#include <sys/wait.h> + +#include "../common/core.hpp" +#include "../common/socket.hpp" +#include "../common/timer.hpp" +#include "login.hpp" +#include "../common/mmo.hpp" +#include "../common/version.hpp" +#include "../common/db.hpp" +#include "../common/lock.hpp" +#include "../common/mt_rand.hpp" + +#include "../common/md5calc.hpp" + +#ifdef MEMWATCH +#include "memwatch.hpp" +#endif + +int account_id_count = START_ACCOUNT_NUM; +int server_num; +int new_account_flag = 0; +int login_port = 6900; +char lan_char_ip[16]; +int subneti[4]; +int subnetmaski[4]; +char update_host[128] = ""; +char main_server[20] = ""; + +char account_filename[1024] = "save/account.txt"; +char GM_account_filename[1024] = "conf/GM_account.txt"; +char login_log_filename[1024] = "log/login.log"; +char login_log_unknown_packets_filename[1024] = + "log/login_unknown_packets.log"; +char date_format[32] = "%Y-%m-%d %H:%M:%S"; +int save_unknown_packets = 0; +long creation_time_GM_account_file; +int gm_account_filename_check_timer = 15; // Timer to check if GM_account file has been changed and reload GM account automaticaly (in seconds; default: 15) + +int display_parse_login = 0; // 0: no, 1: yes +int display_parse_admin = 0; // 0: no, 1: yes +int display_parse_fromchar = 0; // 0: no, 1: yes (without packet 0x2714), 2: all packets + +struct mmo_char_server server[MAX_SERVERS]; +int server_fd[MAX_SERVERS]; +int server_freezeflag[MAX_SERVERS]; // Char-server anti-freeze system. Counter. 5 ok, 4...0 freezed +int anti_freeze_enable = 0; +int ANTI_FREEZE_INTERVAL = 15; + +int login_fd; + +enum +{ + ACO_DENY_ALLOW = 0, + ACO_ALLOW_DENY, + ACO_MUTUAL_FAILTURE, + ACO_STRSIZE = 128, +}; + +int access_order = ACO_DENY_ALLOW; +int access_allownum = 0; +int access_denynum = 0; +char *access_allow = NULL; +char *access_deny = NULL; + +int access_ladmin_allownum = 0; +char *access_ladmin_allow = NULL; + +int min_level_to_connect = 0; // minimum level of player/GM (0: player, 1-99: gm) to connect on the server +int add_to_unlimited_account = 0; // Give possibility or not to adjust (ladmin command: timeadd) the time of an unlimited account. +int start_limited_time = -1; // Starting additional sec from now for the limited time at creation of accounts (-1: unlimited time, 0 or more: additional sec from now) +int check_ip_flag = 1; // It's to check IP of a player between login-server and char-server (part of anti-hacking system) + +struct login_session_data +{ + int md5keylen; + char md5key[20]; +}; + +#define AUTH_FIFO_SIZE 256 +struct +{ + int account_id, login_id1, login_id2; + int ip, sex, delflag; +} auth_fifo[AUTH_FIFO_SIZE]; +int auth_fifo_pos = 0; + +struct auth_dat +{ + int account_id, sex; + char userid[24], pass[40], lastlogin[24]; + int logincount; + int state; // packet 0x006a value + 1 (0: compte OK) + char email[40]; // e-mail (by default: a@a.com) + char error_message[20]; // Message of error code #6 = Your are Prohibited to log in until %s (packet 0x006a) + time_t ban_until_time; // # of seconds 1/1/1970 (timestamp): ban time limit of the account (0 = no ban) + time_t connect_until_time; // # of seconds 1/1/1970 (timestamp): Validity limit of the account (0 = unlimited) + char last_ip[16]; // save of last IP of connection + char memo[255]; // a memo field + int account_reg2_num; + struct global_reg account_reg2[ACCOUNT_REG2_NUM]; +} *auth_dat; + +int auth_num = 0, auth_max = 0; + +int admin_state = 0; +char admin_pass[24] = ""; +char gm_pass[64] = ""; +int level_new_gm = 60; + +static struct dbt *gm_account_db; + +pid_t pid = 0; // For forked DB writes + + +#define VERSION_2_UPDATEHOST 0x01 // client supports updatehost +#define VERSION_2_SERVERORDER 0x02 // send servers in forward order +//------------------------------ +// Writing function of logs file +//------------------------------ +int login_log (char *fmt, ...) +{ + FILE *logfp; + va_list ap; + struct timeval tv; + char tmpstr[2048]; + + va_start (ap, fmt); + + logfp = fopen_ (login_log_filename, "a"); + if (logfp) + { + if (fmt[0] == '\0') // jump a line if no message + fprintf (logfp, "\n"); + else + { + gettimeofday (&tv, NULL); + strftime (tmpstr, 24, date_format, gmtime (&(tv.tv_sec))); + sprintf (tmpstr + strlen (tmpstr), ".%03d: %s", + (int) tv.tv_usec / 1000, fmt); + vfprintf (logfp, tmpstr, ap); + } + fclose_ (logfp); + } + + va_end (ap); + return 0; +} + +//---------------------------------------------------------------------- +// Determine if an account (id) is a GM account +// and returns its level (or 0 if it isn't a GM account or if not found) +//---------------------------------------------------------------------- +int isGM (int account_id) +{ + struct gm_account *p = (struct gm_account*) numdb_search (gm_account_db, account_id); + if (p == NULL) + return 0; + return p->level; +} + +//------------------------------------------------------- +// Reading function of GM accounts file (and their level) +//------------------------------------------------------- +int read_gm_account (void) +{ + char line[512]; + struct gm_account *p; + FILE *fp; + int c = 0; + int GM_level; + struct stat file_stat; + + free (gm_account_db); + gm_account_db = numdb_init (); + + // get last modify time/date + if (stat (GM_account_filename, &file_stat)) + creation_time_GM_account_file = 0; // error + else + creation_time_GM_account_file = file_stat.st_mtime; + + if ((fp = fopen_ (GM_account_filename, "r")) == NULL) + { + printf ("read_gm_account: GM accounts file [%s] not found.\n", + GM_account_filename); + printf + (" Actually, there is no GM accounts on the server.\n"); + login_log ("read_gm_account: GM accounts file [%s] not found.\n", + GM_account_filename); + login_log + (" Actually, there is no GM accounts on the server.\n"); + return 1; + } + // limited to 4000, because we send information to char-servers (more than 4000 GM accounts???) + // int (id) + int (level) = 8 bytes * 4000 = 32k (limit of packets in windows) + while (fgets (line, sizeof (line) - 1, fp) && c < 4000) + { + if ((line[0] == '/' && line[1] == '/') || line[0] == '\0' + || line[0] == '\n' || line[0] == '\r') + continue; + CREATE (p, struct gm_account, 1); + if (sscanf (line, "%d %d", &p->account_id, &p->level) != 2 + && sscanf (line, "%d: %d", &p->account_id, &p->level) != 2) + printf + ("read_gm_account: file [%s], invalid 'id_acount level' format.\n", + GM_account_filename); + else if (p->level <= 0) + printf + ("read_gm_account: file [%s] %dth account (invalid level [0 or negative]: %d).\n", + GM_account_filename, c + 1, p->level); + else + { + if (p->level > 99) + { + printf + ("read_gm_account: file [%s] %dth account (invalid level, but corrected: %d->99).\n", + GM_account_filename, c + 1, p->level); + p->level = 99; + } + if ((GM_level = isGM (p->account_id)) > 0) + { // if it's not a new account + if (GM_level == p->level) + printf + ("read_gm_account: GM account %d defined twice (same level: %d).\n", + p->account_id, p->level); + else + printf + ("read_gm_account: GM account %d defined twice (levels: %d and %d).\n", + p->account_id, GM_level, p->level); + } + if (GM_level != p->level) + { // if new account or new level + numdb_insert (gm_account_db, p->account_id, p); + //printf("GM account:%d, level: %d->%d\n", p->account_id, GM_level, p->level); + if (GM_level == 0) + { // if new account + c++; + if (c >= 4000) + { + printf + ("***WARNING: 4000 GM accounts found. Next GM accounts are not readed.\n"); + login_log + ("***WARNING: 4000 GM accounts found. Next GM accounts are not readed.\n"); + } + } + } + } + } + fclose_ (fp); + + printf ("read_gm_account: file '%s' readed (%d GM accounts found).\n", + GM_account_filename, c); + login_log ("read_gm_account: file '%s' readed (%d GM accounts found).\n", + GM_account_filename, c); + + return 0; +} + +//-------------------------------------------------------------- +// Test of the IP mask +// (ip: IP to be tested, str: mask x.x.x.x/# or x.x.x.x/y.y.y.y) +//-------------------------------------------------------------- +int check_ipmask (unsigned int ip, const unsigned char *str) +{ + unsigned int mask = 0, i = 0, m, ip2, a0, a1, a2, a3; + unsigned char *p = (unsigned char *) &ip2, *p2 = (unsigned char *) &mask; + + if (sscanf (str, "%d.%d.%d.%d/%n", &a0, &a1, &a2, &a3, &i) != 4 || i == 0) + return 0; + p[0] = a0; + p[1] = a1; + p[2] = a2; + p[3] = a3; + + if (sscanf (str + i, "%d.%d.%d.%d", &a0, &a1, &a2, &a3) == 4) + { + p2[0] = a0; + p2[1] = a1; + p2[2] = a2; + p2[3] = a3; + mask = ntohl (mask); + } + else if (sscanf (str + i, "%d", &m) == 1 && m >= 0 && m <= 32) + { + for (i = 0; i < m && i < 32; i++) + mask = (mask >> 1) | 0x80000000; + } + else + { + printf ("check_ipmask: invalid mask [%s].\n", str); + return 0; + } + +// printf("Tested IP: %08x, network: %08x, network mask: %08x\n", +// (unsigned int)ntohl(ip), (unsigned int)ntohl(ip2), (unsigned int)mask); + return ((ntohl (ip) & mask) == (ntohl (ip2) & mask)); +} + +//--------------------- +// Access control by IP +//--------------------- +int check_ip (unsigned int ip) +{ + int i; + unsigned char *p = (unsigned char *) &ip; + char buf[32]; + enum + { ACF_DEF, ACF_ALLOW, ACF_DENY } flag = ACF_DEF; + + if (access_allownum == 0 && access_denynum == 0) + return 1; // When there is no restriction, all IP are authorised. + +// + 012.345.: front match form, or +// all: all IP are matched, or +// 012.345.678.901/24: network form (mask with # of bits), or +// 012.345.678.901/255.255.255.0: network form (mask with ip mask) +// + Note about the DNS resolution (like www.ne.jp, etc.): +// There is no guarantee to have an answer. +// If we have an answer, there is no guarantee to have a 100% correct value. +// And, the waiting time (to check) can be long (over 1 minute to a timeout). That can block the software. +// So, DNS notation isn't authorised for ip checking. + sprintf (buf, "%d.%d.%d.%d.", p[0], p[1], p[2], p[3]); + + for (i = 0; i < access_allownum; i++) + { + const char *p = access_allow + i * ACO_STRSIZE; + if (memcmp (p, buf, strlen (p)) == 0 || check_ipmask (ip, p)) + { + flag = ACF_ALLOW; + if (access_order == ACO_ALLOW_DENY) + return 1; // With 'allow, deny' (deny if not allow), allow has priority + break; + } + } + + for (i = 0; i < access_denynum; i++) + { + const char *p = access_deny + i * ACO_STRSIZE; + if (memcmp (p, buf, strlen (p)) == 0 || check_ipmask (ip, p)) + { + flag = ACF_DENY; + return 0; // At this point, if it's 'deny', we refuse connection. + break; + } + } + + return (flag == ACF_ALLOW || access_order == ACO_DENY_ALLOW) ? 1 : 0; + // With 'mutual-failture', only 'allow' and non 'deny' IP are authorised. + // A non 'allow' (even non 'deny') IP is not authorised. It's like: if allowed and not denied, it's authorised. + // So, it's disapproval if you have no description at the time of 'mutual-failture'. + // With 'deny,allow' (allow if not deny), because here it's not deny, we authorise. +} + +//-------------------------------- +// Access control by IP for ladmin +//-------------------------------- +int check_ladminip (unsigned int ip) +{ + int i; + unsigned char *p = (unsigned char *) &ip; + char buf[32]; + + if (access_ladmin_allownum == 0) + return 1; // When there is no restriction, all IP are authorised. + +// + 012.345.: front match form, or +// all: all IP are matched, or +// 012.345.678.901/24: network form (mask with # of bits), or +// 012.345.678.901/255.255.255.0: network form (mask with ip mask) +// + Note about the DNS resolution (like www.ne.jp, etc.): +// There is no guarantee to have an answer. +// If we have an answer, there is no guarantee to have a 100% correct value. +// And, the waiting time (to check) can be long (over 1 minute to a timeout). That can block the software. +// So, DNS notation isn't authorised for ip checking. + sprintf (buf, "%d.%d.%d.%d.", p[0], p[1], p[2], p[3]); + + for (i = 0; i < access_ladmin_allownum; i++) + { + const char *p = access_ladmin_allow + i * ACO_STRSIZE; + if (memcmp (p, buf, strlen (p)) == 0 || check_ipmask (ip, p)) + { + return 1; + } + } + + return 0; +} + +//----------------------------------------------------- +// Function to suppress control characters in a string. +//----------------------------------------------------- +int remove_control_chars (unsigned char *str) +{ + int i; + int change = 0; + + for (i = 0; str[i]; i++) + { + if (str[i] < 32) + { + str[i] = '_'; + change = 1; + } + } + + return change; +} + +//--------------------------------------------------- +// E-mail check: return 0 (not correct) or 1 (valid). +//--------------------------------------------------- +int e_mail_check (unsigned char *email) +{ + char ch; + unsigned char *last_arobas; + + // athena limits + if (strlen (email) < 3 || strlen (email) > 39) + return 0; + + // part of RFC limits (official reference of e-mail description) + if (strchr (email, '@') == NULL || email[strlen (email) - 1] == '@') + return 0; + + if (email[strlen (email) - 1] == '.') + return 0; + + last_arobas = strrchr (email, '@'); + + if (strstr (last_arobas, "@.") != NULL || + strstr (last_arobas, "..") != NULL) + return 0; + + for (ch = 1; ch < 32; ch++) + { + if (strchr (last_arobas, ch) != NULL) + { + return 0; + break; + } + } + + if (strchr (last_arobas, ' ') != NULL || + strchr (last_arobas, ';') != NULL) + return 0; + + // all correct + return 1; +} + +//----------------------------------------------- +// Search an account id +// (return account index or -1 (if not found)) +// If exact account name is not found, +// the function checks without case sensitive +// and returns index if only 1 account is found +// and similar to the searched name. +//----------------------------------------------- +int search_account_index (char *account_name) +{ + int i, quantity, index; + + quantity = 0; + index = -1; + for (i = 0; i < auth_num; i++) + { + // Without case sensitive check (increase the number of similar account names found) + if (strcasecmp (auth_dat[i].userid, account_name) == 0) + { + // Strict comparison (if found, we finish the function immediatly with correct value) + if (strcmp (auth_dat[i].userid, account_name) == 0) + return i; + quantity++; + index = i; + } + } + // Here, the exact account name is not found + // We return the found index of a similar account ONLY if there is 1 similar account + if (quantity == 1) + return index; + + // Exact account name is not found and 0 or more than 1 similar accounts have been found ==> we say not found + return -1; +} + +//-------------------------------------------------------- +// Create a string to save the account in the account file +//-------------------------------------------------------- +int mmo_auth_tostr (char *str, struct auth_dat *p) +{ + int i; + char *str_p = str; + + str_p += sprintf (str_p, "%d\t%s\t%s\t%s\t%c\t%d\t%d\t" + "%s\t%s\t%ld\t%s\t%s\t%ld\t", + p->account_id, p->userid, p->pass, p->lastlogin, + (p->sex == 2) ? 'S' : (p->sex ? 'M' : 'F'), + p->logincount, p->state, + p->email, p->error_message, + p->connect_until_time, p->last_ip, p->memo, + p->ban_until_time); + + for (i = 0; i < p->account_reg2_num; i++) + if (p->account_reg2[i].str[0]) + str_p += + sprintf (str_p, "%s,%d ", p->account_reg2[i].str, + p->account_reg2[i].value); + + return 0; +} + +//--------------------------------- +// Reading of the accounts database +//--------------------------------- +int mmo_auth_init (void) +{ + FILE *fp; + int account_id, logincount, state, n, i, j, v; + char line[2048], *p, userid[2048], pass[2048], lastlogin[2048], sex, + email[2048], error_message[2048], last_ip[2048], memo[2048]; + time_t ban_until_time; + time_t connect_until_time; + char str[2048]; + int GM_count = 0; + int server_count = 0; + + CREATE (auth_dat, struct auth_dat, 256); + auth_max = 256; + + fp = fopen_ (account_filename, "r"); + if (fp == NULL) + { + // no account file -> no account -> no login, including char-server (ERROR) + printf + ("\033[1;31mmmo_auth_init: Accounts file [%s] not found.\033[0m\n", + account_filename); + return 0; + } + + while (fgets (line, sizeof (line) - 1, fp) != NULL) + { + if (line[0] == '/' && line[1] == '/') + continue; + line[sizeof (line) - 1] = '\0'; + p = line; + + // database version reading (v2) + if (((i = sscanf (line, "%d\t%[^\t]\t%[^\t]\t%[^\t]\t%c\t%d\t%d\t" + "%[^\t]\t%[^\t]\t%ld\t%[^\t]\t%[^\t]\t%ld%n", + &account_id, userid, pass, lastlogin, &sex, + &logincount, &state, email, error_message, + &connect_until_time, last_ip, memo, &ban_until_time, + &n)) == 13 && line[n] == '\t') + || + ((i = + sscanf (line, + "%d\t%[^\t]\t%[^\t]\t%[^\t]\t%c\t%d\t%d\t" + "%[^\t]\t%[^\t]\t%ld\t%[^\t]\t%[^\t]%n", &account_id, + userid, pass, lastlogin, &sex, &logincount, &state, + email, error_message, &connect_until_time, last_ip, + memo, &n)) == 12 && line[n] == '\t')) + { + n = n + 1; + + // Some checks + if (account_id > END_ACCOUNT_NUM) + { + printf + ("\033[1;31mmmo_auth_init: ******Error: an account has an id higher than %d\n", + END_ACCOUNT_NUM); + printf + (" account id #%d -> account not read (saved in log file).\033[0m\n", + account_id); + login_log + ("mmmo_auth_init: ******Error: an account has an id higher than %d.\n", + END_ACCOUNT_NUM); + login_log + (" account id #%d -> account not read (saved in next line):\n", + account_id); + login_log ("%s", line); + continue; + } + userid[23] = '\0'; + remove_control_chars (userid); + for (j = 0; j < auth_num; j++) + { + if (auth_dat[j].account_id == account_id) + { + printf + ("\033[1;31mmmo_auth_init: ******Error: an account has an identical id to another.\n"); + printf + (" account id #%d -> new account not read (saved in log file).\033[0m\n", + account_id); + login_log + ("mmmo_auth_init: ******Error: an account has an identical id to another.\n"); + login_log + (" account id #%d -> new account not read (saved in next line):\n", + account_id); + login_log ("%s", line); + break; + } + else if (strcmp (auth_dat[j].userid, userid) == 0) + { + printf + ("\033[1;31mmmo_auth_init: ******Error: account name already exists.\n"); + printf (" account name '%s' -> new account not read.\n", userid); // 2 lines, account name can be long. + printf + (" Account saved in log file.\033[0m\n"); + login_log + ("mmmo_auth_init: ******Error: an account has an identical id to another.\n"); + login_log + (" account id #%d -> new account not read (saved in next line):\n", + account_id); + login_log ("%s", line); + break; + } + } + if (j != auth_num) + continue; + + if (auth_num >= auth_max) + { + auth_max += 256; + RECREATE (auth_dat, struct auth_dat, auth_max); + } + + memset (&auth_dat[auth_num], '\0', sizeof (struct auth_dat)); + + auth_dat[auth_num].account_id = account_id; + + strncpy (auth_dat[auth_num].userid, userid, 24); + + memo[254] = '\0'; + remove_control_chars (memo); + strncpy (auth_dat[auth_num].memo, memo, 255); + + pass[39] = '\0'; + remove_control_chars (pass); + // If a password is not encrypted, we encrypt it now. + // A password beginning with ! and - in the memo field is our magic + if (pass[0] != '!' && memo[0] == '-') { + strcpy(auth_dat[auth_num].pass, MD5_saltcrypt(pass, make_salt())); + auth_dat[auth_num].memo[0] = '!'; + printf("encrypting pass: %s %s\n", pass, auth_dat[auth_num].pass); + } + else + strcpy(auth_dat[auth_num].pass, pass); + + lastlogin[23] = '\0'; + remove_control_chars (lastlogin); + strncpy (auth_dat[auth_num].lastlogin, lastlogin, 24); + + auth_dat[auth_num].sex = (sex == 'S' + || sex == 's') ? 2 : (sex == 'M' + || sex == 'm'); + + if (logincount >= 0) + auth_dat[auth_num].logincount = logincount; + else + auth_dat[auth_num].logincount = 0; + + if (state > 255) + auth_dat[auth_num].state = 100; + else if (state < 0) + auth_dat[auth_num].state = 0; + else + auth_dat[auth_num].state = state; + + if (e_mail_check (email) == 0) + { + printf + ("Account %s (%d): invalid e-mail (replaced par a@a.com).\n", + auth_dat[auth_num].userid, + auth_dat[auth_num].account_id); + strncpy (auth_dat[auth_num].email, "a@a.com", 40); + } + else + { + remove_control_chars (email); + strncpy (auth_dat[auth_num].email, email, 40); + } + + error_message[19] = '\0'; + remove_control_chars (error_message); + if (error_message[0] == '\0' || state != 7) + { // 7, because state is packet 0x006a value + 1 + strncpy (auth_dat[auth_num].error_message, "-", 20); + } + else + { + strncpy (auth_dat[auth_num].error_message, error_message, 20); + } + + if (i == 13) + auth_dat[auth_num].ban_until_time = ban_until_time; + else + auth_dat[auth_num].ban_until_time = 0; + + auth_dat[auth_num].connect_until_time = connect_until_time; + + last_ip[15] = '\0'; + remove_control_chars (last_ip); + strncpy (auth_dat[auth_num].last_ip, last_ip, 16); + + for (j = 0; j < ACCOUNT_REG2_NUM; j++) + { + p += n; + if (sscanf (p, "%[^\t,],%d %n", str, &v, &n) != 2) + { + // We must check if a str is void. If it's, we can continue to read other REG2. + // Account line will have something like: str2,9 ,9 str3,1 (here, ,9 is not good) + if (p[0] == ',' && sscanf (p, ",%d %n", &v, &n) == 1) + { + j--; + continue; + } + else + break; + } + str[31] = '\0'; + remove_control_chars (str); + strncpy (auth_dat[auth_num].account_reg2[j].str, str, 32); + auth_dat[auth_num].account_reg2[j].value = v; + } + auth_dat[auth_num].account_reg2_num = j; + + if (isGM (account_id) > 0) + GM_count++; + if (auth_dat[auth_num].sex == 2) + server_count++; + + auth_num++; + if (account_id >= account_id_count) + account_id_count = account_id + 1; + + // Old athena database version reading (v1) + } + else if ((i = + sscanf (line, "%d\t%[^\t]\t%[^\t]\t%[^\t]\t%c\t%d\t%d\t%n", + &account_id, userid, pass, lastlogin, &sex, + &logincount, &state, &n)) >= 5) + { + if (account_id > END_ACCOUNT_NUM) + { + printf + ("\033[1;31mmmo_auth_init: ******Error: an account has an id higher than %d\n", + END_ACCOUNT_NUM); + printf + (" account id #%d -> account not read (saved in log file).\033[0m\n", + account_id); + login_log + ("mmmo_auth_init: ******Error: an account has an id higher than %d.\n", + END_ACCOUNT_NUM); + login_log + (" account id #%d -> account not read (saved in next line):\n", + account_id); + login_log ("%s", line); + continue; + } + userid[23] = '\0'; + remove_control_chars (userid); + for (j = 0; j < auth_num; j++) + { + if (auth_dat[j].account_id == account_id) + { + printf + ("\033[1;31mmmo_auth_init: ******Error: an account has an identical id to another.\n"); + printf + (" account id #%d -> new account not read (saved in log file).\033[0m\n", + account_id); + login_log + ("mmmo_auth_init: ******Error: an account has an identical id to another.\n"); + login_log + (" account id #%d -> new account not read (saved in next line):\n", + account_id); + login_log ("%s", line); + break; + } + else if (strcmp (auth_dat[j].userid, userid) == 0) + { + printf + ("\033[1;31mmmo_auth_init: ******Error: account name already exists.\n"); + printf (" account name '%s' -> new account not read.\n", userid); // 2 lines, account name can be long. + printf + (" Account saved in log file.\033[0m\n"); + login_log + ("mmmo_auth_init: ******Error: an account has an identical id to another.\n"); + login_log + (" account id #%d -> new account not read (saved in next line):\n", + account_id); + login_log ("%s", line); + break; + } + } + if (j != auth_num) + continue; + + if (auth_num >= auth_max) + { + auth_max += 256; + RECREATE (auth_dat, struct auth_dat, auth_max); + } + + memset (&auth_dat[auth_num], '\0', sizeof (struct auth_dat)); + + auth_dat[auth_num].account_id = account_id; + + strncpy (auth_dat[auth_num].userid, userid, 24); + + lastlogin[23] = '\0'; + remove_control_chars (lastlogin); + strncpy (auth_dat[auth_num].lastlogin, lastlogin, 24); + + auth_dat[auth_num].sex = (sex == 'S' + || sex == 's') ? 2 : (sex == 'M' + || sex == 'm'); + + if (i >= 6) + { + if (logincount >= 0) + auth_dat[auth_num].logincount = logincount; + else + auth_dat[auth_num].logincount = 0; + } + else + auth_dat[auth_num].logincount = 0; + + if (i >= 7) + { + if (state > 255) + auth_dat[auth_num].state = 100; + else if (state < 0) + auth_dat[auth_num].state = 0; + else + auth_dat[auth_num].state = state; + } + else + auth_dat[auth_num].state = 0; + + // Initialization of new data + strncpy (auth_dat[auth_num].email, "a@a.com", 40); + strncpy (auth_dat[auth_num].error_message, "-", 20); + auth_dat[auth_num].ban_until_time = 0; + auth_dat[auth_num].connect_until_time = 0; + strncpy (auth_dat[auth_num].last_ip, "-", 16); + strncpy (auth_dat[auth_num].memo, "!", 255); + + for (j = 0; j < ACCOUNT_REG2_NUM; j++) + { + p += n; + if (sscanf (p, "%[^\t,],%d %n", str, &v, &n) != 2) + { + // We must check if a str is void. If it's, we can continue to read other REG2. + // Account line will have something like: str2,9 ,9 str3,1 (here, ,9 is not good) + if (p[0] == ',' && sscanf (p, ",%d %n", &v, &n) == 1) + { + j--; + continue; + } + else + break; + } + str[31] = '\0'; + remove_control_chars (str); + strncpy (auth_dat[auth_num].account_reg2[j].str, str, 32); + auth_dat[auth_num].account_reg2[j].value = v; + } + auth_dat[auth_num].account_reg2_num = j; + + if (isGM (account_id) > 0) + GM_count++; + if (auth_dat[auth_num].sex == 2) + server_count++; + + auth_num++; + if (account_id >= account_id_count) + account_id_count = account_id + 1; + + } + else + { + i = 0; + if (sscanf (line, "%d\t%%newid%%\n%n", &account_id, &i) == 1 && + i > 0 && account_id > account_id_count) + account_id_count = account_id; + } + } + fclose_ (fp); + + if (auth_num == 0) + { + printf ("mmo_auth_init: No account found in %s.\n", account_filename); + sprintf (line, "No account found in %s.", account_filename); + } + else + { + if (auth_num == 1) + { + printf ("mmo_auth_init: 1 account read in %s,\n", + account_filename); + sprintf (line, "1 account read in %s,", account_filename); + } + else + { + printf ("mmo_auth_init: %d accounts read in %s,\n", auth_num, + account_filename); + sprintf (line, "%d accounts read in %s,", auth_num, + account_filename); + } + if (GM_count == 0) + { + printf (" of which is no GM account, and "); + sprintf (str, "%s of which is no GM account and", line); + } + else if (GM_count == 1) + { + printf (" of which is 1 GM account, and "); + sprintf (str, "%s of which is 1 GM account and", line); + } + else + { + printf (" of which is %d GM accounts, and ", + GM_count); + sprintf (str, "%s of which is %d GM accounts and", line, + GM_count); + } + if (server_count == 0) + { + printf ("no server account ('S').\n"); + sprintf (line, "%s no server account ('S').", str); + } + else if (server_count == 1) + { + printf ("1 server account ('S').\n"); + sprintf (line, "%s 1 server account ('S').", str); + } + else + { + printf ("%d server accounts ('S').\n", server_count); + sprintf (line, "%s %d server accounts ('S').", str, server_count); + } + } + login_log ("%s\n", line); + + return 0; +} + +//------------------------------------------ +// Writing of the accounts database file +// (accounts are sorted by id before save) +//------------------------------------------ +void mmo_auth_sync (void) +{ + FILE *fp; + int i, j, k, lock; + int id[auth_num]; + char line[65536]; + + // Sorting before save + for (i = 0; i < auth_num; i++) + { + id[i] = i; + for (j = 0; j < i; j++) + { + if (auth_dat[i].account_id < auth_dat[id[j]].account_id) + { + for (k = i; k > j; k--) + id[k] = id[k - 1]; + id[j] = i; // id[i] + break; + } + } + } + + // Data save + fp = lock_fopen (account_filename, &lock); + if (fp == NULL) + return; + fprintf (fp, + "// Accounts file: here are saved all information about the accounts.\n"); + fprintf (fp, + "// Structure: ID, account name, password, last login time, sex, # of logins, state, email, error message for state 7, validity time, last (accepted) login ip, memo field, ban timestamp, repeated(register text, register value)\n"); + fprintf (fp, "// Some explanations:\n"); + fprintf (fp, + "// account name : between 4 to 23 char for a normal account (standard client can't send less than 4 char).\n"); + fprintf (fp, "// account password: between 4 to 23 char\n"); + fprintf (fp, + "// sex : M or F for normal accounts, S for server accounts\n"); + fprintf (fp, + "// state : 0: account is ok, 1 to 256: error code of packet 0x006a + 1\n"); + fprintf (fp, + "// email : between 3 to 39 char (a@a.com is like no email)\n"); + fprintf (fp, + "// error message : text for the state 7: 'Your are Prohibited to login until <text>'. Max 19 char\n"); + fprintf (fp, + "// valitidy time : 0: unlimited account, <other value>: date calculated by addition of 1/1/1970 + value (number of seconds since the 1/1/1970)\n"); + fprintf (fp, "// memo field : max 254 char\n"); + fprintf (fp, + "// ban time : 0: no ban, <other value>: banned until the date: date calculated by addition of 1/1/1970 + value (number of seconds since the 1/1/1970)\n"); + for (i = 0; i < auth_num; i++) + { + k = id[i]; // use of sorted index + if (auth_dat[k].account_id < 0) + continue; + + mmo_auth_tostr (line, &auth_dat[k]); + fprintf (fp, "%s\n", line); + } + fprintf (fp, "%d\t%%newid%%\n", account_id_count); + + lock_fclose (fp, account_filename, &lock); + + return; +} + +// We want to sync the DB to disk as little as possible as it's fairly +// resource intensive. therefore most player-triggerable events that +// update the account DB will not immideately trigger a save. Instead +// we save periodicly on a timer. +//----------------------------------------------------- +void check_auth_sync (timer_id tid, tick_t tick, custom_id_t id, custom_data_t data) +{ + if (pid != 0) + { + int status; + pid_t temp = waitpid (pid, &status, WNOHANG); + + // Need to check status too? + if (temp == 0) + { + return; + } + } + + // This can take a lot of time. Fork a child to handle the work and return at once + // If we're unable to fork just continue running the function normally + if ((pid = fork ()) > 0) + return; + + mmo_auth_sync (); + + // If we're a child we should suicide now. + if (pid == 0) + _exit (0); + + return; +} + +//-------------------------------------------------------------------- +// Packet send to all char-servers, except one (wos: without our self) +//-------------------------------------------------------------------- +int charif_sendallwos (int sfd, unsigned char *buf, unsigned int len) +{ + int i, c; + + for (i = 0, c = 0; i < MAX_SERVERS; i++) + { + int fd; + if ((fd = server_fd[i]) >= 0 && fd != sfd) + { + memcpy (WFIFOP (fd, 0), buf, len); + WFIFOSET (fd, len); + c++; + } + } + return c; +} + +//----------------------------------------------------- +// Send GM accounts to all char-server +//----------------------------------------------------- +void send_GM_accounts (void) +{ + int i; + char buf[32000]; + int GM_value; + int len; + + len = 4; + WBUFW (buf, 0) = 0x2732; + for (i = 0; i < auth_num; i++) + // send only existing accounts. We can not create a GM account when server is online. + if ((GM_value = isGM (auth_dat[i].account_id)) > 0) + { + WBUFL (buf, len) = auth_dat[i].account_id; + WBUFB (buf, len + 4) = (unsigned char) GM_value; + len += 5; + } + WBUFW (buf, 2) = len; + charif_sendallwos (-1, buf, len); + + return; +} + +//----------------------------------------------------- +// Check if GM file account have been changed +//----------------------------------------------------- +void check_GM_file (timer_id tid, tick_t tick, custom_id_t id, custom_data_t data) +{ + struct stat file_stat; + long new_time; + + // if we would not check + if (gm_account_filename_check_timer < 1) + return; + + // get last modify time/date + if (stat (GM_account_filename, &file_stat)) + new_time = 0; // error + else + new_time = file_stat.st_mtime; + + if (new_time != creation_time_GM_account_file) + { + read_gm_account (); + send_GM_accounts (); + } +} + +//------------------------------------- +// Account creation (with e-mail check) +//------------------------------------- +int mmo_auth_new (struct mmo_account *account, char sex, char *email) +{ + time_t timestamp, timestamp_temp; + struct tm *tmtime; + int i = auth_num; + + if (auth_num >= auth_max) + { + auth_max += 256; + RECREATE (auth_dat, struct auth_dat, auth_max); + } + + memset (&auth_dat[i], '\0', sizeof (struct auth_dat)); + + while (isGM (account_id_count) > 0) + account_id_count++; + + auth_dat[i].account_id = account_id_count++; + + strncpy (auth_dat[i].userid, account->userid, 24); + auth_dat[i].userid[23] = '\0'; + + strcpy(auth_dat[i].pass, MD5_saltcrypt(account->passwd, make_salt())); + auth_dat[i].pass[39] = '\0'; + + memcpy (auth_dat[i].lastlogin, "-", 2); + + auth_dat[i].sex = (sex == 'M'); + + auth_dat[i].logincount = 0; + + auth_dat[i].state = 0; + + if (e_mail_check (email) == 0) + strncpy (auth_dat[i].email, "a@a.com", 40); + else + strncpy (auth_dat[i].email, email, 40); + + strncpy (auth_dat[i].error_message, "-", 20); + + auth_dat[i].ban_until_time = 0; + + if (start_limited_time < 0) + auth_dat[i].connect_until_time = 0; // unlimited + else + { // limited time + timestamp = time (NULL) + start_limited_time; + // double conversion to be sure that it is possible + tmtime = gmtime (×tamp); + timestamp_temp = mktime (tmtime); + if (timestamp_temp != -1 && (timestamp_temp + 3600) >= timestamp) // check possible value and overflow (and avoid summer/winter hour) + auth_dat[i].connect_until_time = timestamp_temp; + else + auth_dat[i].connect_until_time = 0; // unlimited + } + + strncpy (auth_dat[i].last_ip, "-", 16); + + strncpy (auth_dat[i].memo, "!", 255); + + auth_dat[i].account_reg2_num = 0; + + auth_num++; + + return (account_id_count - 1); +} + +//--------------------------------------- +// Check/authentification of a connection +//--------------------------------------- +int mmo_auth (struct mmo_account *account, int fd) +{ + int i; + struct timeval tv; + char tmpstr[256]; + int len, newaccount = 0; +#ifdef PASSWDENC + char md5str[64], md5bin[32]; +#endif + char ip[16]; + unsigned char *sin_addr = + (unsigned char *) &session[fd]->client_addr.sin_addr; + + sprintf (ip, "%d.%d.%d.%d", sin_addr[0], sin_addr[1], sin_addr[2], + sin_addr[3]); + + len = strlen (account->userid) - 2; + // Account creation with _M/_F + if (account->passwdenc == 0 && account->userid[len] == '_' && + (account->userid[len + 1] == 'F' || account->userid[len + 1] == 'M') + && new_account_flag == 1 && account_id_count <= END_ACCOUNT_NUM + && len >= 4 && strlen (account->passwd) >= 4) + { + if (new_account_flag == 1) + newaccount = 1; + account->userid[len] = '\0'; + } + + // Strict account search + for (i = 0; i < auth_num; i++) + { + if (strcmp (account->userid, auth_dat[i].userid) == 0) + break; + } + // if there is no creation request and strict account search fails, we do a no sensitive case research for index + if (newaccount == 0 && i == auth_num) + { + i = search_account_index (account->userid); + if (i == -1) + i = auth_num; + else + memcpy (account->userid, auth_dat[i].userid, 24); // for the possible tests/checks afterwards (copy correcte sensitive case). + } + + if (i != auth_num) + { + int encpasswdok = 0; + struct login_session_data *ld; + if (newaccount) + { + login_log + ("Attempt of creation of an already existant account (account: %s_%c, ip: %s)\n", + account->userid, account->userid[len + 1], ip); + return 9; // 9 = Account already exists + } + ld = (struct login_session_data*) session[fd]->session_data; +#ifdef PASSWORDENC + if (account->passwdenc > 0) + { + int j = account->passwdenc; + if (!ld) + { + login_log ("Md5 key not created (account: %s, ip: %s)\n", + account->userid, ip); + return 1; // 1 = Incorrect Password + } + if (j > 2) + j = 1; + do + { + if (j == 1) + { + strncpy (md5str, ld->md5key, sizeof (ld->md5key)); // 20 + strcat (md5str, auth_dat[i].pass); // 24 + } + else if (j == 2) + { + strncpy (md5str, auth_dat[i].pass, sizeof (auth_dat[i].pass)); // 24 + strcat (md5str, ld->md5key); // 20 + } + else + md5str[0] = '\0'; + md5str[sizeof (md5str) - 1] = '\0'; // 64 + MD5_String2binary (md5str, md5bin); + encpasswdok = (memcmp (account->passwd, md5bin, 16) == 0); + } + while (j < 2 && !encpasswdok && (j++) != account->passwdenc); +// printf("key[%s] md5 [%s] ", md5key, md5); +// printf("client [%s] accountpass [%s]\n", account->passwd, auth_dat[i].pass); + } +#endif + if ((!pass_ok (account->passwd, auth_dat[i].pass)) && !encpasswdok) + { + if (account->passwdenc == 0) + login_log + ("Invalid password (account: %s, ip: %s)\n", + account->userid, ip); + +#ifdef PASSWORDENC + else + { + char logbuf[512], *p = logbuf; + int j; + p += sprintf (p, + "Invalid password (account: %s, received md5[", + account->userid); + for (j = 0; j < 16; j++) + p += sprintf (p, "%02x", + ((unsigned char *) account->passwd)[j]); + p += sprintf (p, "] calculated md5["); + for (j = 0; j < 16; j++) + p += sprintf (p, "%02x", ((unsigned char *) md5bin)[j]); + p += sprintf (p, "] md5 key["); + for (j = 0; j < ld->md5keylen; j++) + p += sprintf (p, "%02x", + ((unsigned char *) ld->md5key)[j]); + p += sprintf (p, "], ip: %s)\n", ip); + login_log (logbuf); + } +#endif + return 1; // 1 = Incorrect Password + } + + if (auth_dat[i].state) + { + login_log + ("Connection refused (account: %s, state: %d, ip: %s)\n", + account->userid, auth_dat[i].state, + ip); + switch (auth_dat[i].state) + { // packet 0x006a value + 1 + case 1: // 0 = Unregistered ID + case 2: // 1 = Incorrect Password + case 3: // 2 = This ID is expired + case 4: // 3 = Rejected from Server + case 5: // 4 = You have been blocked by the GM Team + case 6: // 5 = Your Game's EXE file is not the latest version + case 7: // 6 = Your are Prohibited to log in until %s + case 8: // 7 = Server is jammed due to over populated + case 9: // 8 = No MSG (actually, all states after 9 except 99 are No MSG, use only this) + case 100: // 99 = This ID has been totally erased + return auth_dat[i].state - 1; + break; + default: + return 99; // 99 = ID has been totally erased + break; + } + } + + if (auth_dat[i].ban_until_time != 0) + { // if account is banned + strftime (tmpstr, 20, date_format, + gmtime (&auth_dat[i].ban_until_time)); + tmpstr[19] = '\0'; + if (auth_dat[i].ban_until_time > time (NULL)) + { // always banned + login_log + ("Connection refused (account: %s, banned until %s, ip: %s)\n", + account->userid, tmpstr, ip); + return 6; // 6 = Your are Prohibited to log in until %s + } + else + { // ban is finished + login_log + ("End of ban (account: %s, previously banned until %s -> not more banned, ip: %s)\n", + account->userid, tmpstr, ip); + auth_dat[i].ban_until_time = 0; // reset the ban time + } + } + + if (auth_dat[i].connect_until_time != 0 + && auth_dat[i].connect_until_time < time (NULL)) + { + login_log + ("Connection refused (account: %s, expired ID, ip: %s)\n", + account->userid, ip); + return 2; // 2 = This ID is expired + } + + login_log ("Authentification accepted (account: %s (id: %d), ip: %s)\n", + account->userid, auth_dat[i].account_id, ip); + } + else + { + if (newaccount == 0) + { + login_log + ("Unknown account (account: %s, ip: %s)\n", + account->userid, ip); + return 0; // 0 = Unregistered ID + } + else + { + int new_id = + mmo_auth_new (account, account->userid[len + 1], "a@a.com"); + login_log + ("Account creation and authentification accepted (account %s (id: %d), sex: %c, connection with _F/_M, ip: %s)\n", + account->userid, new_id, + account->userid[len + 1], ip); + } + } + + gettimeofday (&tv, NULL); + strftime (tmpstr, 24, date_format, gmtime (&(tv.tv_sec))); + sprintf (tmpstr + strlen (tmpstr), ".%03d", (int) tv.tv_usec / 1000); + + account->account_id = auth_dat[i].account_id; + account->login_id1 = mt_random (); + account->login_id2 = mt_random (); + memcpy (account->lastlogin, auth_dat[i].lastlogin, 24); + memcpy (auth_dat[i].lastlogin, tmpstr, 24); + account->sex = auth_dat[i].sex; + strncpy (auth_dat[i].last_ip, ip, 16); + auth_dat[i].logincount++; + + return -1; // account OK +} + +//------------------------------- +// Char-server anti-freeze system +//------------------------------- +void char_anti_freeze_system (timer_id tid, tick_t tick, custom_id_t id, custom_data_t data) +{ + int i; + + //printf("Entering in char_anti_freeze_system function to check freeze of servers.\n"); + for (i = 0; i < MAX_SERVERS; i++) + { + if (server_fd[i] >= 0) + { // if char-server is online + //printf("char_anti_freeze_system: server #%d '%s', flag: %d.\n", i, server[i].name, server_freezeflag[i]); + if (server_freezeflag[i]-- < 1) + { // Char-server anti-freeze system. Counter. 5 ok, 4...0 freezed + printf + ("Char-server anti-freeze system: char-server #%d '%s' is freezed -> disconnection.\n", + i, server[i].name); + login_log + ("Char-server anti-freeze system: char-server #%d '%s' is freezed -> disconnection.\n", + i, server[i].name); + session[server_fd[i]]->eof = 1; + } + } + } +} + +//-------------------------------- +// Packet parsing for char-servers +//-------------------------------- +void parse_fromchar (int fd) +{ + int i, j, id; + unsigned char *p = (unsigned char *) &session[fd]->client_addr.sin_addr; + char ip[16]; + + sprintf (ip, "%d.%d.%d.%d", p[0], p[1], p[2], p[3]); + + for (id = 0; id < MAX_SERVERS; id++) + if (server_fd[id] == fd) + break; + if (id == MAX_SERVERS || session[fd]->eof) + { + if (id < MAX_SERVERS) + { + printf ("Char-server '%s' has disconnected.\n", server[id].name); + login_log ("Char-server '%s' has disconnected (ip: %s).\n", + server[id].name, ip); + server_fd[id] = -1; + memset (&server[id], 0, sizeof (struct mmo_char_server)); + } + close (fd); + delete_session (fd); + return; + } + + while (RFIFOREST (fd) >= 2) + { + if (display_parse_fromchar == 2 || (display_parse_fromchar == 1 && RFIFOW (fd, 0) != 0x2714)) // 0x2714 is done very often (number of players) + printf + ("parse_fromchar: connection #%d, packet: 0x%x (with being read: %d bytes).\n", + fd, RFIFOW (fd, 0), RFIFOREST (fd)); + + switch (RFIFOW (fd, 0)) + { + // request from map-server via char-server to reload GM accounts (by Yor). + case 0x2709: + login_log + ("Char-server '%s': Request to re-load GM configuration file (ip: %s).\n", + server[id].name, ip); + read_gm_account (); + // send GM accounts to all char-servers + send_GM_accounts (); + RFIFOSKIP (fd, 2); + break; + + case 0x2712: // request from char-server to authentify an account + if (RFIFOREST (fd) < 19) + return; + { + int acc; + acc = RFIFOL (fd, 2); // speed up + for (i = 0; i < AUTH_FIFO_SIZE; i++) + { + if (auth_fifo[i].account_id == acc && + auth_fifo[i].login_id1 == RFIFOL (fd, 6) && +#if CMP_AUTHFIFO_LOGIN2 != 0 + auth_fifo[i].login_id2 == RFIFOL (fd, 10) && // relate to the versions higher than 18 +#endif + auth_fifo[i].sex == RFIFOB (fd, 14) && + (!check_ip_flag + || auth_fifo[i].ip == RFIFOL (fd, 15)) + && !auth_fifo[i].delflag) + { + int p, k; + auth_fifo[i].delflag = 1; + login_log + ("Char-server '%s': authentification of the account %d accepted (ip: %s).\n", + server[id].name, acc, ip); +// printf("%d\n", i); + for (k = 0; k < auth_num; k++) + { + if (auth_dat[k].account_id == acc) + { + WFIFOW (fd, 0) = 0x2729; // Sending of the account_reg2 + WFIFOL (fd, 4) = acc; + for (p = 8, j = 0; + j < auth_dat[k].account_reg2_num; + p += 36, j++) + { + memcpy (WFIFOP (fd, p), + auth_dat[k]. + account_reg2[j].str, 32); + WFIFOL (fd, p + 32) = + auth_dat[k].account_reg2[j].value; + } + WFIFOW (fd, 2) = p; + WFIFOSET (fd, p); +// printf("parse_fromchar: Sending of account_reg2: login->char (auth fifo)\n"); + WFIFOW (fd, 0) = 0x2713; + WFIFOL (fd, 2) = acc; + WFIFOB (fd, 6) = 0; + memcpy (WFIFOP (fd, 7), auth_dat[k].email, + 40); + WFIFOL (fd, 47) = + (unsigned long) + auth_dat[k].connect_until_time; + WFIFOSET (fd, 51); + break; + } + } + break; + } + } + // authentification not found + if (i == AUTH_FIFO_SIZE) + { + login_log + ("Char-server '%s': authentification of the account %d REFUSED (ip: %s).\n", + server[id].name, acc, ip); + WFIFOW (fd, 0) = 0x2713; + WFIFOL (fd, 2) = acc; + WFIFOB (fd, 6) = 1; + // It is unnecessary to send email + // It is unnecessary to send validity date of the account + WFIFOSET (fd, 51); + } + } + RFIFOSKIP (fd, 19); + break; + + case 0x2714: + if (RFIFOREST (fd) < 6) + return; + //printf("parse_fromchar: Receiving of the users number of the server '%s': %d\n", server[id].name, RFIFOL(fd,2)); + server[id].users = RFIFOL (fd, 2); + if (anti_freeze_enable) + server_freezeflag[id] = 5; // Char anti-freeze system. Counter. 5 ok, 4...0 freezed + RFIFOSKIP (fd, 6); + break; + + // we receive a e-mail creation of an account with a default e-mail (no answer) + case 0x2715: + { + int acc; + char email[40]; + if (RFIFOREST (fd) < 46) + return; + acc = RFIFOL (fd, 2); // speed up + memcpy (email, RFIFOP (fd, 6), 40); + email[39] = '\0'; + remove_control_chars (email); + //printf("parse_fromchar: an e-mail creation of an account with a default e-mail: server '%s', account: %d, e-mail: '%s'.\n", server[id].name, acc, RFIFOP(fd,6)); + if (e_mail_check (email) == 0) + login_log + ("Char-server '%s': Attempt to create an e-mail on an account with a default e-mail REFUSED - e-mail is invalid (account: %d, ip: %s)\n", + server[id].name, acc, ip); + else + { + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc + && (strcmp (auth_dat[i].email, "a@a.com") == 0 + || auth_dat[i].email[0] == '\0')) + { + memcpy (auth_dat[i].email, email, 40); + login_log + ("Char-server '%s': Create an e-mail on an account with a default e-mail (account: %d, new e-mail: %s, ip: %s).\n", + server[id].name, acc, email, ip); + break; + } + } + if (i == auth_num) + login_log + ("Char-server '%s': Attempt to create an e-mail on an account with a default e-mail REFUSED - account doesn't exist or e-mail of account isn't default e-mail (account: %d, ip: %s).\n", + server[id].name, acc, ip); + } + RFIFOSKIP (fd, 46); + break; + + // We receive an e-mail/limited time request, because a player comes back from a map-server to the char-server + } + case 0x2716: + if (RFIFOREST (fd) < 6) + return; + //printf("parse_fromchar: E-mail/limited time request from '%s' server (concerned account: %d)\n", server[id].name, RFIFOL(fd,2)); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == RFIFOL (fd, 2)) + { + login_log + ("Char-server '%s': e-mail of the account %d found (ip: %s).\n", + server[id].name, RFIFOL (fd, 2), ip); + WFIFOW (fd, 0) = 0x2717; + WFIFOL (fd, 2) = RFIFOL (fd, 2); + memcpy (WFIFOP (fd, 6), auth_dat[i].email, 40); + WFIFOL (fd, 46) = + (unsigned long) auth_dat[i].connect_until_time; + WFIFOSET (fd, 50); + break; + } + } + if (i == auth_num) + { + login_log + ("Char-server '%s': e-mail of the account %d NOT found (ip: %s).\n", + server[id].name, RFIFOL (fd, 2), ip); + } + RFIFOSKIP (fd, 6); + break; + + case 0x2720: // To become GM request + if (RFIFOREST (fd) < 4 || RFIFOREST (fd) < RFIFOW (fd, 2)) + return; + { + int acc; + unsigned char buf[10]; + FILE *fp; + acc = RFIFOL (fd, 4); + //printf("parse_fromchar: Request to become a GM acount from %d account.\n", acc); + WBUFW (buf, 0) = 0x2721; + WBUFL (buf, 2) = acc; + WBUFL (buf, 6) = 0; + if (strcmp (RFIFOP (fd, 8), gm_pass) == 0) + { + // only non-GM can become GM + if (isGM (acc) == 0) + { + // if we autorise creation + if (level_new_gm > 0) + { + // if we can open the file to add the new GM + if ((fp = + fopen_ (GM_account_filename, + "a")) != NULL) + { + char tmpstr[24]; + struct timeval tv; + gettimeofday (&tv, NULL); + strftime (tmpstr, 23, date_format, + gmtime (&(tv.tv_sec))); + fprintf (fp, + "\n// %s: @GM command on account %d\n%d %d\n", + tmpstr, + acc, acc, level_new_gm); + fclose_ (fp); + WBUFL (buf, 6) = level_new_gm; + read_gm_account (); + send_GM_accounts (); + printf + ("GM Change of the account %d: level 0 -> %d.\n", + acc, level_new_gm); + login_log + ("Char-server '%s': GM Change of the account %d: level 0 -> %d (ip: %s).\n", + server[id].name, acc, + level_new_gm, ip); + } + else + { + printf + ("Error of GM change (suggested account: %d, correct password, unable to add a GM account in GM accounts file)\n", + acc); + login_log + ("Char-server '%s': Error of GM change (suggested account: %d, correct password, unable to add a GM account in GM accounts file, ip: %s).\n", + server[id].name, acc, ip); + } + } + else + { + printf + ("Error of GM change (suggested account: %d, correct password, but GM creation is disable (level_new_gm = 0))\n", + acc); + login_log + ("Char-server '%s': Error of GM change (suggested account: %d, correct password, but GM creation is disable (level_new_gm = 0), ip: %s).\n", + server[id].name, acc, ip); + } + } + else + { + printf + ("Error of GM change (suggested account: %d (already GM), correct password).\n", + acc); + login_log + ("Char-server '%s': Error of GM change (suggested account: %d (already GM), correct password, ip: %s).\n", + server[id].name, acc, ip); + } + } + else + { + printf + ("Error of GM change (suggested account: %d, invalid password).\n", + acc); + login_log + ("Char-server '%s': Error of GM change (suggested account: %d, invalid password, ip: %s).\n", + server[id].name, acc, ip); + } + charif_sendallwos (-1, buf, 10); + } + RFIFOSKIP (fd, RFIFOW (fd, 2)); + return; + + // Map server send information to change an email of an account via char-server + case 0x2722: // 0x2722 <account_id>.L <actual_e-mail>.40B <new_e-mail>.40B + if (RFIFOREST (fd) < 86) + return; + { + int acc; + char actual_email[40], new_email[40]; + acc = RFIFOL (fd, 2); + memcpy (actual_email, RFIFOP (fd, 6), 40); + actual_email[39] = '\0'; + remove_control_chars (actual_email); + memcpy (new_email, RFIFOP (fd, 46), 40); + new_email[39] = '\0'; + remove_control_chars (new_email); + if (e_mail_check (actual_email) == 0) + login_log + ("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command), but actual email is invalid (account: %d, ip: %s)\n", + server[id].name, acc, ip); + else if (e_mail_check (new_email) == 0) + login_log + ("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command) with a invalid new e-mail (account: %d, ip: %s)\n", + server[id].name, acc, ip); + else if (strcasecmp (new_email, "a@a.com") == 0) + login_log + ("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command) with a default e-mail (account: %d, ip: %s)\n", + server[id].name, acc, ip); + else + { + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc) + { + if (strcasecmp (auth_dat[i].email, actual_email) + == 0) + { + memcpy (auth_dat[i].email, new_email, 40); + login_log + ("Char-server '%s': Modify an e-mail on an account (@email GM command) (account: %d (%s), new e-mail: %s, ip: %s).\n", + server[id].name, acc, + auth_dat[i].userid, new_email, ip); + } + else + login_log + ("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command), but actual e-mail is incorrect (account: %d (%s), actual e-mail: %s, proposed e-mail: %s, ip: %s).\n", + server[id].name, acc, + auth_dat[i].userid, + auth_dat[i].email, actual_email, ip); + break; + } + } + if (i == auth_num) + login_log + ("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command), but account doesn't exist (account: %d, ip: %s).\n", + server[id].name, acc, ip); + } + } + RFIFOSKIP (fd, 86); + break; + + // Receiving of map-server via char-server a status change resquest (by Yor) + case 0x2724: + if (RFIFOREST (fd) < 10) + return; + { + int acc, statut; + acc = RFIFOL (fd, 2); + statut = RFIFOL (fd, 6); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc) + { + if (auth_dat[i].state != statut) + { + login_log + ("Char-server '%s': Status change (account: %d, new status %d, ip: %s).\n", + server[id].name, acc, statut, + ip); + if (statut != 0) + { + unsigned char buf[16]; + WBUFW (buf, 0) = 0x2731; + WBUFL (buf, 2) = acc; + WBUFB (buf, 6) = 0; // 0: change of statut, 1: ban + WBUFL (buf, 7) = statut; // status or final date of a banishment + charif_sendallwos (-1, buf, 11); + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == acc) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + } + auth_dat[i].state = statut; + } + else + login_log + ("Char-server '%s': Error of Status change - actual status is already the good status (account: %d, status %d, ip: %s).\n", + server[id].name, acc, statut, + ip); + break; + } + } + if (i == auth_num) + { + login_log + ("Char-server '%s': Error of Status change (account: %d not found, suggested status %d, ip: %s).\n", + server[id].name, acc, statut, ip); + } + RFIFOSKIP (fd, 10); + } + return; + + case 0x2725: // Receiving of map-server via char-server a ban resquest (by Yor) + if (RFIFOREST (fd) < 18) + return; + { + int acc; + acc = RFIFOL (fd, 2); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc) + { + time_t timestamp; + struct tm *tmtime; + if (auth_dat[i].ban_until_time == 0 + || auth_dat[i].ban_until_time < time (NULL)) + timestamp = time (NULL); + else + timestamp = auth_dat[i].ban_until_time; + tmtime = gmtime (×tamp); + tmtime->tm_year = + tmtime->tm_year + (short) RFIFOW (fd, 6); + tmtime->tm_mon = + tmtime->tm_mon + (short) RFIFOW (fd, 8); + tmtime->tm_mday = + tmtime->tm_mday + (short) RFIFOW (fd, 10); + tmtime->tm_hour = + tmtime->tm_hour + (short) RFIFOW (fd, 12); + tmtime->tm_min = + tmtime->tm_min + (short) RFIFOW (fd, 14); + tmtime->tm_sec = + tmtime->tm_sec + (short) RFIFOW (fd, 16); + timestamp = timegm (tmtime); + if (timestamp != -1) + { + if (timestamp <= time (NULL)) + timestamp = 0; + if (auth_dat[i].ban_until_time != timestamp) + { + if (timestamp != 0) + { + unsigned char buf[16]; + char tmpstr[2048]; + strftime (tmpstr, 24, date_format, + gmtime (×tamp)); + login_log + ("Char-server '%s': Ban request (account: %d, new final date of banishment: %d (%s), ip: %s).\n", + server[id].name, acc, + timestamp, + (timestamp == + 0 ? "no banishment" : tmpstr), + ip); + WBUFW (buf, 0) = 0x2731; + WBUFL (buf, 2) = + auth_dat[i].account_id; + WBUFB (buf, 6) = 1; // 0: change of statut, 1: ban + WBUFL (buf, 7) = timestamp; // status or final date of a banishment + charif_sendallwos (-1, buf, 11); + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == + acc) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + } + else + { + login_log + ("Char-server '%s': Error of ban request (account: %d, new date unbans the account, ip: %s).\n", + server[id].name, acc, + ip); + } + auth_dat[i].ban_until_time = timestamp; + } + else + { + login_log + ("Char-server '%s': Error of ban request (account: %d, no change for ban date, ip: %s).\n", + server[id].name, acc, ip); + } + } + else + { + login_log + ("Char-server '%s': Error of ban request (account: %d, invalid date, ip: %s).\n", + server[id].name, acc, ip); + } + break; + } + } + if (i == auth_num) + { + login_log + ("Char-server '%s': Error of ban request (account: %d not found, ip: %s).\n", + server[id].name, acc, ip); + } + RFIFOSKIP (fd, 18); + } + return; + + case 0x2727: // Change of sex (sex is reversed) + if (RFIFOREST (fd) < 6) + return; + { + int acc, sex; + acc = RFIFOL (fd, 2); + for (i = 0; i < auth_num; i++) + { +// printf("%d,", auth_dat[i].account_id); + if (auth_dat[i].account_id == acc) + { + if (auth_dat[i].sex == 2) + login_log + ("Char-server '%s': Error of sex change - Server account (suggested account: %d, actual sex %d (Server), ip: %s).\n", + server[id].name, acc, + auth_dat[i].sex, ip); + else + { + unsigned char buf[16]; + if (auth_dat[i].sex == 0) + sex = 1; + else + sex = 0; + login_log + ("Char-server '%s': Sex change (account: %d, new sex %c, ip: %s).\n", + server[id].name, acc, + (sex == 2) ? 'S' : (sex ? 'M' : 'F'), + ip); + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == acc) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + auth_dat[i].sex = sex; + WBUFW (buf, 0) = 0x2723; + WBUFL (buf, 2) = acc; + WBUFB (buf, 6) = sex; + charif_sendallwos (-1, buf, 7); + } + break; + } + } + if (i == auth_num) + { + login_log + ("Char-server '%s': Error of sex change (account: %d not found, sex would be reversed, ip: %s).\n", + server[id].name, acc, ip); + } + RFIFOSKIP (fd, 6); + } + return; + + case 0x2728: // We receive account_reg2 from a char-server, and we send them to other char-servers. + if (RFIFOREST (fd) < 4 || RFIFOREST (fd) < RFIFOW (fd, 2)) + return; + { + int acc, p; + acc = RFIFOL (fd, 4); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc) + { + unsigned char buf[RFIFOW (fd, 2) + 1]; + login_log + ("Char-server '%s': receiving (from the char-server) of account_reg2 (account: %d, ip: %s).\n", + server[id].name, acc, ip); + for (p = 8, j = 0; + p < RFIFOW (fd, 2) && j < ACCOUNT_REG2_NUM; + p += 36, j++) + { + memcpy (auth_dat[i].account_reg2[j].str, + RFIFOP (fd, p), 32); + auth_dat[i].account_reg2[j].str[31] = '\0'; + remove_control_chars (auth_dat[i].account_reg2 + [j].str); + auth_dat[i].account_reg2[j].value = + RFIFOL (fd, p + 32); + } + auth_dat[i].account_reg2_num = j; + // Sending information towards the other char-servers. + memcpy (WBUFP (buf, 0), RFIFOP (fd, 0), + RFIFOW (fd, 2)); + WBUFW (buf, 0) = 0x2729; + charif_sendallwos (fd, buf, WBUFW (buf, 2)); +// printf("parse_fromchar: receiving (from the char-server) of account_reg2 (account id: %d).\n", acc); + break; + } + } + if (i == auth_num) + { +// printf("parse_fromchar: receiving (from the char-server) of account_reg2 (unknwon account id: %d).\n", acc); + login_log + ("Char-server '%s': receiving (from the char-server) of account_reg2 (account: %d not found, ip: %s).\n", + server[id].name, acc, ip); + } + } + RFIFOSKIP (fd, RFIFOW (fd, 2)); + break; + + case 0x272a: // Receiving of map-server via char-server a unban resquest (by Yor) + if (RFIFOREST (fd) < 6) + return; + { + int acc; + acc = RFIFOL (fd, 2); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc) + { + if (auth_dat[i].ban_until_time != 0) + { + auth_dat[i].ban_until_time = 0; + login_log + ("Char-server '%s': UnBan request (account: %d, ip: %s).\n", + server[id].name, acc, ip); + } + else + { + login_log + ("Char-server '%s': Error of UnBan request (account: %d, no change for unban date, ip: %s).\n", + server[id].name, acc, ip); + } + break; + } + } + if (i == auth_num) + { + login_log + ("Char-server '%s': Error of UnBan request (account: %d not found, ip: %s).\n", + server[id].name, acc, ip); + } + RFIFOSKIP (fd, 6); + } + return; + + // request from char-server to change account password + case 0x2740: // 0x2740 <account_id>.L <actual_password>.24B <new_password>.24B + if (RFIFOREST (fd) < 54) + return; + { + int acc; + char actual_pass[24], new_pass[24]; + acc = RFIFOL (fd, 2); + memcpy (actual_pass, RFIFOP (fd, 6), 24); + actual_pass[23] = '\0'; + remove_control_chars (actual_pass); + memcpy (new_pass, RFIFOP (fd, 30), 24); + new_pass[23] = '\0'; + remove_control_chars (new_pass); + + int status = 0; + + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == acc) + { + if (pass_ok (actual_pass, auth_dat[i].pass)) + { + if (strlen (new_pass) < 4) + status = 3; + else + { + status = 1; + strcpy (auth_dat[i].pass, MD5_saltcrypt(new_pass, make_salt())); + login_log + ("Char-server '%s': Change pass success (account: %d (%s), ip: %s.\n", + server[id].name, acc, + auth_dat[i].userid, ip); + } + } + else + { + status = 2; + login_log + ("Char-server '%s': Attempt to modify a pass failed, wrong password. (account: %d (%s), ip: %s).\n", + server[id].name, acc, + auth_dat[i].userid, ip); + } + break; + } + } + WFIFOW (fd, 0) = 0x2741; + WFIFOL (fd, 2) = acc; + WFIFOB (fd, 6) = status; // 0: acc not found, 1: success, 2: password mismatch, 3: pass too short + WFIFOSET (fd, 7); + } + + RFIFOSKIP (fd, 54); + break; + + default: + { + FILE *logfp; + char tmpstr[24]; + struct timeval tv; + logfp = fopen_ (login_log_unknown_packets_filename, "a"); + if (logfp) + { + gettimeofday (&tv, NULL); + strftime (tmpstr, 23, date_format, gmtime (&(tv.tv_sec))); + fprintf (logfp, + "%s.%03d: receiving of an unknown packet -> disconnection\n", + tmpstr, (int) tv.tv_usec / 1000); + fprintf (logfp, + "parse_fromchar: connection #%d (ip: %s), packet: 0x%x (with being read: %d).\n", + fd, ip, RFIFOW (fd, 0), RFIFOREST (fd)); + fprintf (logfp, "Detail (in hex):\n"); + fprintf (logfp, + "---- 00-01-02-03-04-05-06-07 08-09-0A-0B-0C-0D-0E-0F\n"); + memset (tmpstr, '\0', sizeof (tmpstr)); + for (i = 0; i < RFIFOREST (fd); i++) + { + if ((i & 15) == 0) + fprintf (logfp, "%04X ", i); + fprintf (logfp, "%02x ", RFIFOB (fd, i)); + if (RFIFOB (fd, i) > 0x1f) + tmpstr[i % 16] = RFIFOB (fd, i); + else + tmpstr[i % 16] = '.'; + if ((i - 7) % 16 == 0) // -8 + 1 + fprintf (logfp, " "); + else if ((i + 1) % 16 == 0) + { + fprintf (logfp, " %s\n", tmpstr); + memset (tmpstr, '\0', sizeof (tmpstr)); + } + } + if (i % 16 != 0) + { + for (j = i; j % 16 != 0; j++) + { + fprintf (logfp, " "); + if ((j - 7) % 16 == 0) // -8 + 1 + fprintf (logfp, " "); + } + fprintf (logfp, " %s\n", tmpstr); + } + fprintf (logfp, "\n"); + fclose_ (logfp); + } + } + printf + ("parse_fromchar: Unknown packet 0x%x (from a char-server)! -> disconnection.\n", + RFIFOW (fd, 0)); + session[fd]->eof = 1; + printf + ("Char-server has been disconnected (unknown packet).\n"); + return; + } + } + return; +} + +//--------------------------------------- +// Packet parsing for administation login +//--------------------------------------- +void parse_admin (int fd) +{ + int i, j; + unsigned char *p = (unsigned char *) &session[fd]->client_addr.sin_addr; + char *account_name; + char ip[16]; + + sprintf (ip, "%d.%d.%d.%d", p[0], p[1], p[2], p[3]); + + if (session[fd]->eof) + { + close (fd); + delete_session (fd); + printf ("Remote administration has disconnected (session #%d).\n", + fd); + return; + } + + while (RFIFOREST (fd) >= 2) + { + if (display_parse_admin == 1) + printf + ("parse_admin: connection #%d, packet: 0x%x (with being read: %d).\n", + fd, RFIFOW (fd, 0), RFIFOREST (fd)); + + switch (RFIFOW (fd, 0)) + { + case 0x7530: // Request of the server version + login_log ("'ladmin': Sending of the server version (ip: %s)\n", + ip); + WFIFOW (fd, 0) = 0x7531; + WFIFOB (fd, 2) = ATHENA_MAJOR_VERSION; + WFIFOB (fd, 3) = ATHENA_MINOR_VERSION; + WFIFOB (fd, 4) = ATHENA_REVISION; + WFIFOB (fd, 5) = ATHENA_RELEASE_FLAG; + WFIFOB (fd, 6) = ATHENA_OFFICIAL_FLAG; + WFIFOB (fd, 7) = ATHENA_SERVER_LOGIN; + WFIFOW (fd, 8) = ATHENA_MOD_VERSION; + WFIFOSET (fd, 10); + RFIFOSKIP (fd, 2); + break; + + case 0x7532: // Request of end of connection + login_log ("'ladmin': End of connection (ip: %s)\n", + ip); + RFIFOSKIP (fd, 2); + session[fd]->eof = 1; + break; + + case 0x7920: // Request of an accounts list + if (RFIFOREST (fd) < 10) + return; + { + int st, ed, len; + int id[auth_num]; + st = RFIFOL (fd, 2); + ed = RFIFOL (fd, 6); + RFIFOSKIP (fd, 10); + WFIFOW (fd, 0) = 0x7921; + if (st < 0) + st = 0; + if (ed > END_ACCOUNT_NUM || ed < st || ed <= 0) + ed = END_ACCOUNT_NUM; + login_log + ("'ladmin': Sending an accounts list (ask: from %d to %d, ip: %s)\n", + st, ed, ip); + // Sort before send + for (i = 0; i < auth_num; i++) + { + int k; + id[i] = i; + for (j = 0; j < i; j++) + { + if (auth_dat[id[i]].account_id < + auth_dat[id[j]].account_id) + { + for (k = i; k > j; k--) + { + id[k] = id[k - 1]; + } + id[j] = i; // id[i] + break; + } + } + } + // Sending accounts information + len = 4; + for (i = 0; i < auth_num && len < 30000; i++) + { + int account_id = auth_dat[id[i]].account_id; // use sorted index + if (account_id >= st && account_id <= ed) + { + j = id[i]; + WFIFOL (fd, len) = account_id; + WFIFOB (fd, len + 4) = + (unsigned char) isGM (account_id); + memcpy (WFIFOP (fd, len + 5), auth_dat[j].userid, + 24); + WFIFOB (fd, len + 29) = auth_dat[j].sex; + WFIFOL (fd, len + 30) = auth_dat[j].logincount; + if (auth_dat[j].state == 0 && auth_dat[j].ban_until_time != 0) // if no state and banished + WFIFOL (fd, len + 34) = 7; // 6 = Your are Prohibited to log in until %s + else + WFIFOL (fd, len + 34) = auth_dat[j].state; + len += 38; + } + } + WFIFOW (fd, 2) = len; + WFIFOSET (fd, len); + } + break; + + case 0x7924: + { // [Fate] Itemfrob package: change item IDs + if (RFIFOREST (fd) < 10) + return; + charif_sendallwos (-1, RFIFOP (fd, 0), 10); // forward package to char servers + RFIFOSKIP (fd, 10); + WFIFOW (fd, 0) = 0x7925; + WFIFOSET (fd, 2); + break; + } + + case 0x7930: // Request for an account creation + if (RFIFOREST (fd) < 91) + return; + { + struct mmo_account ma; + ma.userid = RFIFOP (fd, 2); + ma.passwd = RFIFOP (fd, 26); + memcpy (ma.lastlogin, "-", 2); + ma.sex = RFIFOB (fd, 50); + WFIFOW (fd, 0) = 0x7931; + WFIFOL (fd, 2) = -1; + memcpy (WFIFOP (fd, 6), RFIFOP (fd, 2), 24); + if (strlen (ma.userid) > 23 || strlen (ma.passwd) > 23) + { + login_log + ("'ladmin': Attempt to create an invalid account (account or pass is too long, ip: %s)\n", + ip); + } + else if (strlen (ma.userid) < 4 || strlen (ma.passwd) < 4) + { + login_log + ("'ladmin': Attempt to create an invalid account (account or pass is too short, ip: %s)\n", + ip); + } + else if (ma.sex != 'F' && ma.sex != 'M') + { + login_log + ("'ladmin': Attempt to create an invalid account (account: %s, invalid sex, ip: %s)\n", + ma.userid, ip); + } + else if (account_id_count > END_ACCOUNT_NUM) + { + login_log + ("'ladmin': Attempt to create an account, but there is no more available id number (account: %s, sex: %c, ip: %s)\n", + ma.userid, ma.sex, ip); + } + else + { + remove_control_chars (ma.userid); + remove_control_chars (ma.passwd); + for (i = 0; i < auth_num; i++) + { + if (strncmp (auth_dat[i].userid, ma.userid, 24) == + 0) + { + login_log + ("'ladmin': Attempt to create an already existing account (account: %s ip: %s)\n", + auth_dat[i].userid, ip); + break; + } + } + if (i == auth_num) + { + int new_id; + char email[40]; + memcpy (email, RFIFOP (fd, 51), 40); + email[39] = '\0'; + remove_control_chars (email); + new_id = mmo_auth_new (&ma, ma.sex, email); + login_log + ("'ladmin': Account creation (account: %s (id: %d), sex: %c, email: %s, ip: %s)\n", + ma.userid, new_id, + ma.sex, auth_dat[i].email, ip); + WFIFOL (fd, 2) = new_id; + } + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 91); + } + break; + + case 0x7932: // Request for an account deletion + if (RFIFOREST (fd) < 26) + return; + WFIFOW (fd, 0) = 0x7933; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + // Char-server is notified of deletion (for characters deletion). + unsigned char buf[65535]; + WBUFW (buf, 0) = 0x2730; + WBUFL (buf, 2) = auth_dat[i].account_id; + charif_sendallwos (-1, buf, 6); + // send answer + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + WFIFOL (fd, 2) = auth_dat[i].account_id; + // save deleted account in log file + login_log + ("'ladmin': Account deletion (account: %s, id: %d, ip: %s) - saved in next line:\n", + auth_dat[i].userid, auth_dat[i].account_id, + ip); + mmo_auth_tostr (buf, &auth_dat[i]); + login_log ("%s\n", buf); + // delete account + memset (auth_dat[i].userid, '\0', + sizeof (auth_dat[i].userid)); + auth_dat[i].account_id = -1; + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to delete an unknown account (account: %s, ip: %s)\n", + account_name, ip); + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 26); + break; + + case 0x7934: // Request to change a password + if (RFIFOREST (fd) < 50) + return; + WFIFOW (fd, 0) = 0x7935; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + strcpy (auth_dat[i].pass, MD5_saltcrypt(RFIFOP (fd, 26), make_salt())); + auth_dat[i].pass[39] = '\0'; + WFIFOL (fd, 2) = auth_dat[i].account_id; + login_log + ("'ladmin': Modification of a password (account: %s, new password: %s, ip: %s)\n", + auth_dat[i].userid, auth_dat[i].pass, ip); + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to modify the password of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 50); + break; + + case 0x7936: // Request to modify a state + if (RFIFOREST (fd) < 50) + return; + { + char error_message[20]; + int statut; + WFIFOW (fd, 0) = 0x7937; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + statut = RFIFOL (fd, 26); + memcpy (error_message, RFIFOP (fd, 30), 20); + error_message[19] = '\0'; + remove_control_chars (error_message); + if (statut != 7 || error_message[0] == '\0') + { // 7: // 6 = Your are Prohibited to log in until %s + strcpy (error_message, "-"); + } + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + WFIFOL (fd, 2) = auth_dat[i].account_id; + if (auth_dat[i].state == statut + && strcmp (auth_dat[i].error_message, + error_message) == 0) + login_log + ("'ladmin': Modification of a state, but the state of the account is already the good state (account: %s, received state: %d, ip: %s)\n", + account_name, statut, ip); + else + { + if (statut == 7) + login_log + ("'ladmin': Modification of a state (account: %s, new state: %d - prohibited to login until '%s', ip: %s)\n", + auth_dat[i].userid, statut, + error_message, ip); + else + login_log + ("'ladmin': Modification of a state (account: %s, new state: %d, ip: %s)\n", + auth_dat[i].userid, statut, ip); + if (auth_dat[i].state == 0) + { + unsigned char buf[16]; + WBUFW (buf, 0) = 0x2731; + WBUFL (buf, 2) = auth_dat[i].account_id; + WBUFB (buf, 6) = 0; // 0: change of statut, 1: ban + WBUFL (buf, 7) = statut; // status or final date of a banishment + charif_sendallwos (-1, buf, 11); + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == + auth_dat[i].account_id) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + } + auth_dat[i].state = statut; + memcpy (auth_dat[i].error_message, error_message, + 20); + } + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to modify the state of an unknown account (account: %s, received state: %d, ip: %s)\n", + account_name, statut, ip); + } + WFIFOL (fd, 30) = statut; + } + WFIFOSET (fd, 34); + RFIFOSKIP (fd, 50); + break; + + case 0x7938: // Request for servers list and # of online players + login_log ("'ladmin': Sending of servers list (ip: %s)\n", ip); + server_num = 0; + for (i = 0; i < MAX_SERVERS; i++) + { + if (server_fd[i] >= 0) + { + WFIFOL (fd, 4 + server_num * 32) = server[i].ip; + WFIFOW (fd, 4 + server_num * 32 + 4) = server[i].port; + memcpy (WFIFOP (fd, 4 + server_num * 32 + 6), + server[i].name, 20); + WFIFOW (fd, 4 + server_num * 32 + 26) = + server[i].users; + WFIFOW (fd, 4 + server_num * 32 + 28) = + server[i].maintenance; + WFIFOW (fd, 4 + server_num * 32 + 30) = server[i].is_new; + server_num++; + } + } + WFIFOW (fd, 0) = 0x7939; + WFIFOW (fd, 2) = 4 + 32 * server_num; + WFIFOSET (fd, 4 + 32 * server_num); + RFIFOSKIP (fd, 2); + break; + + case 0x793a: // Request to password check + if (RFIFOREST (fd) < 50) + return; + WFIFOW (fd, 0) = 0x793b; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + if ( pass_ok(RFIFOP (fd, 26), auth_dat[i].pass) ) + { + WFIFOL (fd, 2) = auth_dat[i].account_id; + login_log + ("'ladmin': Check of password OK (account: %s, password: %s, ip: %s)\n", + auth_dat[i].userid, auth_dat[i].pass, + ip); + } + else + { + char pass[24]; + memcpy (pass, RFIFOP (fd, 26), 24); + pass[23] = '\0'; + remove_control_chars (pass); + login_log + ("'ladmin': Failure of password check (account: %s, proposed pass: %s, ip: %s)\n", + auth_dat[i].userid, pass, ip); + } + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to check the password of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 50); + break; + + case 0x793c: // Request to modify sex + if (RFIFOREST (fd) < 27) + return; + WFIFOW (fd, 0) = 0x793d; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + memcpy (WFIFOP (fd, 6), account_name, 24); + { + char sex; + sex = RFIFOB (fd, 26); + if (sex != 'F' && sex != 'M') + { + if (sex > 31) + login_log + ("'ladmin': Attempt to give an invalid sex (account: %s, received sex: %c, ip: %s)\n", + account_name, sex, ip); + else + login_log + ("'ladmin': Attempt to give an invalid sex (account: %s, received sex: 'control char', ip: %s)\n", + account_name, ip); + } + else + { + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + if (auth_dat[i].sex != + ((sex == 'S' || sex == 's') ? 2 : (sex == 'M' + || sex == + 'm'))) + { + unsigned char buf[16]; + WFIFOL (fd, 2) = auth_dat[i].account_id; + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == + auth_dat[i].account_id) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + auth_dat[i].sex = (sex == 'S' + || sex == + 's') ? 2 : (sex == 'M' + || sex == 'm'); + login_log + ("'ladmin': Modification of a sex (account: %s, new sex: %c, ip: %s)\n", + auth_dat[i].userid, sex, ip); + // send to all char-server the change + WBUFW (buf, 0) = 0x2723; + WBUFL (buf, 2) = auth_dat[i].account_id; + WBUFB (buf, 6) = auth_dat[i].sex; + charif_sendallwos (-1, buf, 7); + } + else + { + login_log + ("'ladmin': Modification of a sex, but the sex is already the good sex (account: %s, sex: %c, ip: %s)\n", + auth_dat[i].userid, sex, ip); + } + } + else + { + login_log + ("'ladmin': Attempt to modify the sex of an unknown account (account: %s, received sex: %c, ip: %s)\n", + account_name, sex, ip); + } + } + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 27); + break; + + case 0x793e: // Request to modify GM level + if (RFIFOREST (fd) < 27) + return; + WFIFOW (fd, 0) = 0x793f; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + memcpy (WFIFOP (fd, 6), account_name, 24); + { + char new_gm_level; + new_gm_level = RFIFOB (fd, 26); + if (new_gm_level < 0 || new_gm_level > 99) + { + login_log + ("'ladmin': Attempt to give an invalid GM level (account: %s, received GM level: %d, ip: %s)\n", + account_name, (int) new_gm_level, ip); + } + else + { + i = search_account_index (account_name); + if (i != -1) + { + int acc = auth_dat[i].account_id; + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + if (isGM (acc) != new_gm_level) + { + // modification of the file + FILE *fp, *fp2; + int lock; + char line[512]; + int GM_account, GM_level; + int modify_flag; + char tmpstr[24]; + struct timeval tv; + if ((fp2 = + lock_fopen (GM_account_filename, + &lock)) != NULL) + { + if ((fp = + fopen_ (GM_account_filename, + "r")) != NULL) + { + gettimeofday (&tv, NULL); + strftime (tmpstr, 23, date_format, + gmtime (&(tv.tv_sec))); + modify_flag = 0; + // read/write GM file + while (fgets + (line, sizeof (line) - 1, fp)) + { + while (line[0] != '\0' + && (line[strlen (line) - 1] + == '\n' + || line[strlen (line) - + 1] == '\r')) + line[strlen (line) - 1] = + '\0'; + if ((line[0] == '/' + && line[1] == '/') + || line[0] == '\0') + fprintf (fp2, "%s\n", + line); + else + { + if (sscanf + (line, "%d %d", + &GM_account, + &GM_level) != 2 + && sscanf (line, "%d: %d", + &GM_account, + &GM_level) != + 2) + fprintf (fp2, + "%s\n", + line); + else if (GM_account != acc) + fprintf (fp2, + "%s\n", + line); + else if (new_gm_level < 1) + { + fprintf (fp2, + "// %s: 'ladmin' GM level removed on account %d '%s' (previous level: %d)\n//%d %d\n", + tmpstr, + acc, + auth_dat + [i].userid, + GM_level, acc, + new_gm_level); + modify_flag = 1; + } + else + { + fprintf (fp2, + "// %s: 'ladmin' GM level on account %d '%s' (previous level: %d)\n%d %d\n", + tmpstr, + acc, + auth_dat + [i].userid, + GM_level, acc, + new_gm_level); + modify_flag = 1; + } + } + } + if (modify_flag == 0) + fprintf (fp2, + "// %s: 'ladmin' GM level on account %d '%s' (previous level: 0)\n%d %d\n", + tmpstr, acc, + auth_dat[i].userid, acc, + new_gm_level); + fclose_ (fp); + } + else + { + login_log + ("'ladmin': Attempt to modify of a GM level - impossible to read GM accounts file (account: %s (%d), received GM level: %d, ip: %s)\n", + auth_dat[i].userid, acc, + (int) new_gm_level, ip); + } + lock_fclose(fp2, GM_account_filename, &lock); + WFIFOL (fd, 2) = acc; + login_log + ("'ladmin': Modification of a GM level (account: %s (%d), new GM level: %d, ip: %s)\n", + auth_dat[i].userid, acc, + (int) new_gm_level, ip); + // read and send new GM informations + read_gm_account (); + send_GM_accounts (); + } + else + { + login_log + ("'ladmin': Attempt to modify of a GM level - impossible to write GM accounts file (account: %s (%d), received GM level: %d, ip: %s)\n", + auth_dat[i].userid, acc, + (int) new_gm_level, ip); + } + } + else + { + login_log + ("'ladmin': Attempt to modify of a GM level, but the GM level is already the good GM level (account: %s (%d), GM level: %d, ip: %s)\n", + auth_dat[i].userid, acc, + (int) new_gm_level, ip); + } + } + else + { + login_log + ("'ladmin': Attempt to modify the GM level of an unknown account (account: %s, received GM level: %d, ip: %s)\n", + account_name, (int) new_gm_level, + ip); + } + } + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 27); + break; + + case 0x7940: // Request to modify e-mail + if (RFIFOREST (fd) < 66) + return; + WFIFOW (fd, 0) = 0x7941; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + memcpy (WFIFOP (fd, 6), account_name, 24); + { + char email[40]; + memcpy (email, RFIFOP (fd, 26), 40); + if (e_mail_check (email) == 0) + { + login_log + ("'ladmin': Attempt to give an invalid e-mail (account: %s, ip: %s)\n", + account_name, ip); + } + else + { + remove_control_chars (email); + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + memcpy (auth_dat[i].email, email, 40); + WFIFOL (fd, 2) = auth_dat[i].account_id; + login_log + ("'ladmin': Modification of an email (account: %s, new e-mail: %s, ip: %s)\n", + auth_dat[i].userid, email, ip); + } + else + { + login_log + ("'ladmin': Attempt to modify the e-mail of an unknown account (account: %s, received e-mail: %s, ip: %s)\n", + account_name, email, ip); + } + } + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 66); + break; + + case 0x7942: // Request to modify memo field + if (RFIFOREST (fd) < 28 + || RFIFOREST (fd) < (28 + RFIFOW (fd, 26))) + return; + WFIFOW (fd, 0) = 0x7943; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + int size_of_memo = sizeof (auth_dat[i].memo); + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + memset (auth_dat[i].memo, '\0', size_of_memo); + if (RFIFOW (fd, 26) == 0) + { + strncpy (auth_dat[i].memo, "!", size_of_memo); + } + else if (RFIFOW (fd, 26) > size_of_memo - 1) + { + memcpy (auth_dat[i].memo, RFIFOP (fd, 28), + size_of_memo - 1); + } + else + { + memcpy (auth_dat[i].memo, RFIFOP (fd, 28), + RFIFOW (fd, 26)); + } + auth_dat[i].memo[size_of_memo - 1] = '\0'; + remove_control_chars (auth_dat[i].memo); + WFIFOL (fd, 2) = auth_dat[i].account_id; + login_log + ("'ladmin': Modification of a memo field (account: %s, new memo: %s, ip: %s)\n", + auth_dat[i].userid, auth_dat[i].memo, ip); + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to modify the memo field of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 28 + RFIFOW (fd, 26)); + break; + + case 0x7944: // Request to found an account id + if (RFIFOREST (fd) < 26) + return; + WFIFOW (fd, 0) = 0x7945; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + WFIFOL (fd, 2) = auth_dat[i].account_id; + login_log + ("'ladmin': Request (by the name) of an account id (account: %s, id: %d, ip: %s)\n", + auth_dat[i].userid, auth_dat[i].account_id, + ip); + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': ID request (by the name) of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 26); + break; + + case 0x7946: // Request to found an account name + if (RFIFOREST (fd) < 6) + return; + WFIFOW (fd, 0) = 0x7947; + WFIFOL (fd, 2) = RFIFOL (fd, 2); + memset (WFIFOP (fd, 6), '\0', 24); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == RFIFOL (fd, 2)) + { + strncpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + login_log + ("'ladmin': Request (by id) of an account name (account: %s, id: %d, ip: %s)\n", + auth_dat[i].userid, RFIFOL (fd, 2), ip); + break; + } + } + if (i == auth_num) + { + login_log + ("'ladmin': Name request (by id) of an unknown account (id: %d, ip: %s)\n", + RFIFOL (fd, 2), ip); + strncpy (WFIFOP (fd, 6), "", 24); + } + WFIFOSET (fd, 30); + RFIFOSKIP (fd, 6); + break; + + case 0x7948: // Request to change the validity limit (timestamp) (absolute value) + if (RFIFOREST (fd) < 30) + return; + { + time_t timestamp; + char tmpstr[2048]; + WFIFOW (fd, 0) = 0x7949; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + timestamp = (time_t) RFIFOL (fd, 26); + strftime (tmpstr, 24, date_format, gmtime (×tamp)); + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + login_log + ("'ladmin': Change of a validity limit (account: %s, new validity: %d (%s), ip: %s)\n", + auth_dat[i].userid, timestamp, + (timestamp == 0 ? "unlimited" : tmpstr), ip); + auth_dat[i].connect_until_time = timestamp; + WFIFOL (fd, 2) = auth_dat[i].account_id; + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to change the validity limit of an unknown account (account: %s, received validity: %d (%s), ip: %s)\n", account_name, timestamp, + (timestamp == 0 ? "unlimited" : tmpstr), ip); + } + WFIFOL (fd, 30) = timestamp; + } + WFIFOSET (fd, 34); + RFIFOSKIP (fd, 30); + break; + + case 0x794a: // Request to change the final date of a banishment (timestamp) (absolute value) + if (RFIFOREST (fd) < 30) + return; + { + time_t timestamp; + char tmpstr[2048]; + WFIFOW (fd, 0) = 0x794b; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + timestamp = (time_t) RFIFOL (fd, 26); + if (timestamp <= time (NULL)) + timestamp = 0; + strftime (tmpstr, 24, date_format, gmtime (×tamp)); + i = search_account_index (account_name); + if (i != -1) + { + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + WFIFOL (fd, 2) = auth_dat[i].account_id; + login_log + ("'ladmin': Change of the final date of a banishment (account: %s, new final date of banishment: %d (%s), ip: %s)\n", + auth_dat[i].userid, timestamp, + (timestamp == 0 ? "no banishment" : tmpstr), ip); + if (auth_dat[i].ban_until_time != timestamp) + { + if (timestamp != 0) + { + unsigned char buf[16]; + WBUFW (buf, 0) = 0x2731; + WBUFL (buf, 2) = auth_dat[i].account_id; + WBUFB (buf, 6) = 1; // 0: change of statut, 1: ban + WBUFL (buf, 7) = timestamp; // status or final date of a banishment + charif_sendallwos (-1, buf, 11); + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == + auth_dat[i].account_id) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + } + auth_dat[i].ban_until_time = timestamp; + } + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to change the final date of a banishment of an unknown account (account: %s, received final date of banishment: %d (%s), ip: %s)\n", + account_name, timestamp, + (timestamp == 0 ? "no banishment" : tmpstr), ip); + } + WFIFOL (fd, 30) = timestamp; + } + WFIFOSET (fd, 34); + RFIFOSKIP (fd, 30); + break; + + case 0x794c: // Request to change the final date of a banishment (timestamp) (relative change) + if (RFIFOREST (fd) < 38) + return; + { + time_t timestamp; + struct tm *tmtime; + char tmpstr[2048]; + WFIFOW (fd, 0) = 0x794d; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + WFIFOL (fd, 2) = auth_dat[i].account_id; + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + if (auth_dat[i].ban_until_time == 0 + || auth_dat[i].ban_until_time < time (NULL)) + timestamp = time (NULL); + else + timestamp = auth_dat[i].ban_until_time; + tmtime = gmtime (×tamp); + tmtime->tm_year = + tmtime->tm_year + (short) RFIFOW (fd, 26); + tmtime->tm_mon = + tmtime->tm_mon + (short) RFIFOW (fd, 28); + tmtime->tm_mday = + tmtime->tm_mday + (short) RFIFOW (fd, 30); + tmtime->tm_hour = + tmtime->tm_hour + (short) RFIFOW (fd, 32); + tmtime->tm_min = + tmtime->tm_min + (short) RFIFOW (fd, 34); + tmtime->tm_sec = + tmtime->tm_sec + (short) RFIFOW (fd, 36); + timestamp = mktime (tmtime); + if (timestamp != -1) + { + if (timestamp <= time (NULL)) + timestamp = 0; + strftime (tmpstr, 24, date_format, + gmtime (×tamp)); + login_log + ("'ladmin': Adjustment of a final date of a banishment (account: %s, (%+d y %+d m %+d d %+d h %+d mn %+d s) -> new validity: %d (%s), ip: %s)\n", + auth_dat[i].userid, + (short) RFIFOW (fd, 26), (short) RFIFOW (fd, + 28), + (short) RFIFOW (fd, 30), (short) RFIFOW (fd, + 32), + (short) RFIFOW (fd, 34), (short) RFIFOW (fd, + 36), + timestamp, + (timestamp == 0 ? "no banishment" : tmpstr), + ip); + if (auth_dat[i].ban_until_time != timestamp) + { + if (timestamp != 0) + { + unsigned char buf[16]; + WBUFW (buf, 0) = 0x2731; + WBUFL (buf, 2) = auth_dat[i].account_id; + WBUFB (buf, 6) = 1; // 0: change of statut, 1: ban + WBUFL (buf, 7) = timestamp; // status or final date of a banishment + charif_sendallwos (-1, buf, 11); + for (j = 0; j < AUTH_FIFO_SIZE; j++) + if (auth_fifo[j].account_id == + auth_dat[i].account_id) + auth_fifo[j].login_id1++; // to avoid reconnection error when come back from map-server (char-server will ask again the authentification) + } + auth_dat[i].ban_until_time = timestamp; + } + } + else + { + strftime (tmpstr, 24, date_format, + gmtime (&auth_dat[i].ban_until_time)); + login_log + ("'ladmin': Impossible to adjust the final date of a banishment (account: %s, %d (%s) + (%+d y %+d m %+d d %+d h %+d mn %+d s) -> ???, ip: %s)\n", + auth_dat[i].userid, + auth_dat[i].ban_until_time, + (auth_dat[i].ban_until_time == + 0 ? "no banishment" : tmpstr), + (short) RFIFOW (fd, 26), (short) RFIFOW (fd, + 28), + (short) RFIFOW (fd, 30), (short) RFIFOW (fd, + 32), + (short) RFIFOW (fd, 34), (short) RFIFOW (fd, + 36), + ip); + } + WFIFOL (fd, 30) = + (unsigned long) auth_dat[i].ban_until_time; + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to adjust the final date of a banishment of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + WFIFOL (fd, 30) = 0; + } + } + WFIFOSET (fd, 34); + RFIFOSKIP (fd, 38); + break; + + case 0x794e: // Request to send a broadcast message + if (RFIFOREST (fd) < 8 + || RFIFOREST (fd) < (8 + RFIFOL (fd, 4))) + return; + WFIFOW (fd, 0) = 0x794f; + WFIFOW (fd, 2) = -1; + if (RFIFOL (fd, 4) < 1) + { + login_log + ("'ladmin': Receiving a message for broadcast, but message is void (ip: %s)\n", + ip); + } + else + { + // at least 1 char-server + for (i = 0; i < MAX_SERVERS; i++) + if (server_fd[i] >= 0) + break; + if (i == MAX_SERVERS) + { + login_log + ("'ladmin': Receiving a message for broadcast, but no char-server is online (ip: %s)\n", + ip); + } + else + { + char buf[32000]; + char message[32000]; + WFIFOW (fd, 2) = 0; + memset (message, '\0', sizeof (message)); + memcpy (message, RFIFOP (fd, 8), RFIFOL (fd, 4)); + message[sizeof (message) - 1] = '\0'; + remove_control_chars (message); + if (RFIFOW (fd, 2) == 0) + login_log + ("'ladmin': Receiving a message for broadcast (message (in yellow): %s, ip: %s)\n", + message, ip); + else + login_log + ("'ladmin': Receiving a message for broadcast (message (in blue): %s, ip: %s)\n", + message, ip); + // send same message to all char-servers (no answer) + memcpy (WBUFP (buf, 0), RFIFOP (fd, 0), + 8 + RFIFOL (fd, 4)); + WBUFW (buf, 0) = 0x2726; + charif_sendallwos (-1, buf, 8 + RFIFOL (fd, 4)); + } + } + WFIFOSET (fd, 4); + RFIFOSKIP (fd, 8 + RFIFOL (fd, 4)); + break; + + case 0x7950: // Request to change the validity limite (timestamp) (relative change) + if (RFIFOREST (fd) < 38) + return; + { + time_t timestamp; + struct tm *tmtime; + char tmpstr[2048]; + char tmpstr2[2048]; + WFIFOW (fd, 0) = 0x7951; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + WFIFOL (fd, 2) = auth_dat[i].account_id; + memcpy (WFIFOP (fd, 6), auth_dat[i].userid, 24); + timestamp = auth_dat[i].connect_until_time; + if (add_to_unlimited_account == 0 && timestamp == 0) + { + login_log + ("'ladmin': Attempt to adjust the validity limit of an unlimited account (account: %s, ip: %s)\n", + auth_dat[i].userid, ip); + WFIFOL (fd, 30) = 0; + } + else + { + if (timestamp == 0 || timestamp < time (NULL)) + timestamp = time (NULL); + tmtime = gmtime (×tamp); + tmtime->tm_year = + tmtime->tm_year + (short) RFIFOW (fd, 26); + tmtime->tm_mon = + tmtime->tm_mon + (short) RFIFOW (fd, 28); + tmtime->tm_mday = + tmtime->tm_mday + (short) RFIFOW (fd, 30); + tmtime->tm_hour = + tmtime->tm_hour + (short) RFIFOW (fd, 32); + tmtime->tm_min = + tmtime->tm_min + (short) RFIFOW (fd, 34); + tmtime->tm_sec = + tmtime->tm_sec + (short) RFIFOW (fd, 36); + timestamp = mktime (tmtime); + if (timestamp != -1) + { + strftime (tmpstr, 24, date_format, + gmtime (&auth_dat + [i].connect_until_time)); + strftime (tmpstr2, 24, date_format, + gmtime (×tamp)); + login_log + ("'ladmin': Adjustment of a validity limit (account: %s, %d (%s) + (%+d y %+d m %+d d %+d h %+d mn %+d s) -> new validity: %d (%s), ip: %s)\n", + auth_dat[i].userid, + auth_dat[i].connect_until_time, + (auth_dat[i].connect_until_time == + 0 ? "unlimited" : tmpstr), + (short) RFIFOW (fd, 26), + (short) RFIFOW (fd, 28), + (short) RFIFOW (fd, 30), + (short) RFIFOW (fd, 32), + (short) RFIFOW (fd, 34), + (short) RFIFOW (fd, 36), timestamp, + (timestamp == 0 ? "unlimited" : tmpstr2), + ip); + auth_dat[i].connect_until_time = timestamp; + WFIFOL (fd, 30) = + (unsigned long) + auth_dat[i].connect_until_time; + } + else + { + strftime (tmpstr, 24, date_format, + gmtime (&auth_dat + [i].connect_until_time)); + login_log + ("'ladmin': Impossible to adjust a validity limit (account: %s, %d (%s) + (%+d y %+d m %+d d %+d h %+d mn %+d s) -> ???, ip: %s)\n", + auth_dat[i].userid, + auth_dat[i].connect_until_time, + (auth_dat[i].connect_until_time == + 0 ? "unlimited" : tmpstr), + (short) RFIFOW (fd, 26), + (short) RFIFOW (fd, 28), + (short) RFIFOW (fd, 30), + (short) RFIFOW (fd, 32), + (short) RFIFOW (fd, 34), + (short) RFIFOW (fd, 36), ip); + WFIFOL (fd, 30) = 0; + } + } + } + else + { + memcpy (WFIFOP (fd, 6), account_name, 24); + login_log + ("'ladmin': Attempt to adjust the validity limit of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + WFIFOL (fd, 30) = 0; + } + } + WFIFOSET (fd, 34); + RFIFOSKIP (fd, 38); + break; + + case 0x7952: // Request about informations of an account (by account name) + if (RFIFOREST (fd) < 26) + return; + WFIFOW (fd, 0) = 0x7953; + WFIFOL (fd, 2) = -1; + account_name = RFIFOP (fd, 2); + account_name[23] = '\0'; + remove_control_chars (account_name); + i = search_account_index (account_name); + if (i != -1) + { + WFIFOL (fd, 2) = auth_dat[i].account_id; + WFIFOB (fd, 6) = + (unsigned char) isGM (auth_dat[i].account_id); + memcpy (WFIFOP (fd, 7), auth_dat[i].userid, 24); + WFIFOB (fd, 31) = auth_dat[i].sex; + WFIFOL (fd, 32) = auth_dat[i].logincount; + WFIFOL (fd, 36) = auth_dat[i].state; + memcpy (WFIFOP (fd, 40), auth_dat[i].error_message, 20); + memcpy (WFIFOP (fd, 60), auth_dat[i].lastlogin, 24); + memcpy (WFIFOP (fd, 84), auth_dat[i].last_ip, 16); + memcpy (WFIFOP (fd, 100), auth_dat[i].email, 40); + WFIFOL (fd, 140) = + (unsigned long) auth_dat[i].connect_until_time; + WFIFOL (fd, 144) = + (unsigned long) auth_dat[i].ban_until_time; + WFIFOW (fd, 148) = strlen (auth_dat[i].memo); + if (auth_dat[i].memo[0]) + { + memcpy (WFIFOP (fd, 150), auth_dat[i].memo, + strlen (auth_dat[i].memo)); + } + login_log + ("'ladmin': Sending information of an account (request by the name; account: %s, id: %d, ip: %s)\n", + auth_dat[i].userid, auth_dat[i].account_id, + ip); + WFIFOSET (fd, 150 + strlen (auth_dat[i].memo)); + } + else + { + memcpy (WFIFOP (fd, 7), account_name, 24); + WFIFOW (fd, 148) = 0; + login_log + ("'ladmin': Attempt to obtain information (by the name) of an unknown account (account: %s, ip: %s)\n", + account_name, ip); + WFIFOSET (fd, 150); + } + RFIFOSKIP (fd, 26); + break; + + case 0x7954: // Request about information of an account (by account id) + if (RFIFOREST (fd) < 6) + return; + WFIFOW (fd, 0) = 0x7953; + WFIFOL (fd, 2) = RFIFOL (fd, 2); + memset (WFIFOP (fd, 7), '\0', 24); + for (i = 0; i < auth_num; i++) + { + if (auth_dat[i].account_id == RFIFOL (fd, 2)) + { + login_log + ("'ladmin': Sending information of an account (request by the id; account: %s, id: %d, ip: %s)\n", + auth_dat[i].userid, RFIFOL (fd, 2), ip); + WFIFOB (fd, 6) = + (unsigned char) isGM (auth_dat[i].account_id); + memcpy (WFIFOP (fd, 7), auth_dat[i].userid, 24); + WFIFOB (fd, 31) = auth_dat[i].sex; + WFIFOL (fd, 32) = auth_dat[i].logincount; + WFIFOL (fd, 36) = auth_dat[i].state; + memcpy (WFIFOP (fd, 40), auth_dat[i].error_message, + 20); + memcpy (WFIFOP (fd, 60), auth_dat[i].lastlogin, 24); + memcpy (WFIFOP (fd, 84), auth_dat[i].last_ip, 16); + memcpy (WFIFOP (fd, 100), auth_dat[i].email, 40); + WFIFOL (fd, 140) = + (unsigned long) auth_dat[i].connect_until_time; + WFIFOL (fd, 144) = + (unsigned long) auth_dat[i].ban_until_time; + WFIFOW (fd, 148) = strlen (auth_dat[i].memo); + if (auth_dat[i].memo[0]) + { + memcpy (WFIFOP (fd, 150), auth_dat[i].memo, + strlen (auth_dat[i].memo)); + } + WFIFOSET (fd, 150 + strlen (auth_dat[i].memo)); + break; + } + } + if (i == auth_num) + { + login_log + ("'ladmin': Attempt to obtain information (by the id) of an unknown account (id: %d, ip: %s)\n", + RFIFOL (fd, 2), ip); + strncpy (WFIFOP (fd, 7), "", 24); + WFIFOW (fd, 148) = 0; + WFIFOSET (fd, 150); + } + RFIFOSKIP (fd, 6); + break; + + case 0x7955: // Request to reload GM file (no answer) + login_log + ("'ladmin': Request to re-load GM configuration file (ip: %s).\n", + ip); + read_gm_account (); + // send GM accounts to all char-servers + send_GM_accounts (); + RFIFOSKIP (fd, 2); + break; + + default: + { + FILE *logfp; + char tmpstr[24]; + struct timeval tv; + logfp = fopen_ (login_log_unknown_packets_filename, "a"); + if (logfp) + { + gettimeofday (&tv, NULL); + strftime (tmpstr, 23, date_format, gmtime (&(tv.tv_sec))); + fprintf (logfp, + "%s.%03d: receiving of an unknown packet -> disconnection\n", + tmpstr, (int) tv.tv_usec / 1000); + fprintf (logfp, + "parse_admin: connection #%d (ip: %s), packet: 0x%x (with being read: %d).\n", + fd, ip, RFIFOW (fd, 0), RFIFOREST (fd)); + fprintf (logfp, "Detail (in hex):\n"); + fprintf (logfp, + "---- 00-01-02-03-04-05-06-07 08-09-0A-0B-0C-0D-0E-0F\n"); + memset (tmpstr, '\0', sizeof (tmpstr)); + for (i = 0; i < RFIFOREST (fd); i++) + { + if ((i & 15) == 0) + fprintf (logfp, "%04X ", i); + fprintf (logfp, "%02x ", RFIFOB (fd, i)); + if (RFIFOB (fd, i) > 0x1f) + tmpstr[i % 16] = RFIFOB (fd, i); + else + tmpstr[i % 16] = '.'; + if ((i - 7) % 16 == 0) // -8 + 1 + fprintf (logfp, " "); + else if ((i + 1) % 16 == 0) + { + fprintf (logfp, " %s\n", tmpstr); + memset (tmpstr, '\0', sizeof (tmpstr)); + } + } + if (i % 16 != 0) + { + for (j = i; j % 16 != 0; j++) + { + fprintf (logfp, " "); + if ((j - 7) % 16 == 0) // -8 + 1 + fprintf (logfp, " "); + } + fprintf (logfp, " %s\n", tmpstr); + } + fprintf (logfp, "\n"); + fclose_ (logfp); + } + } + login_log + ("'ladmin': End of connection, unknown packet (ip: %s)\n", + ip); + session[fd]->eof = 1; + printf + ("Remote administration has been disconnected (unknown packet).\n"); + return; + } + //WFIFOW(fd,0) = 0x791f; + //WFIFOSET(fd,2); + } + return; +} + +//-------------------------------------------- +// Test to know if an IP come from LAN or WAN. +//-------------------------------------------- +int lan_ip_check (unsigned char *p) +{ + int i; + int lancheck = 1; + +// printf("lan_ip_check: to compare: %d.%d.%d.%d, network: %d.%d.%d.%d/%d.%d.%d.%d\n", +// p[0], p[1], p[2], p[3], +// subneti[0], subneti[1], subneti[2], subneti[3], +// subnetmaski[0], subnetmaski[1], subnetmaski[2], subnetmaski[3]); + for (i = 0; i < 4; i++) + { + if ((subneti[i] & subnetmaski[i]) != (p[i] & subnetmaski[i])) + { + lancheck = 0; + break; + } + } + printf ("LAN test (result): %s source\033[0m.\n", + (lancheck) ? "\033[1;36mLAN" : "\033[1;32mWAN"); + return lancheck; +} + +//---------------------------------------------------------------------------------------- +// Default packet parsing (normal players or administation/char-server connexion requests) +//---------------------------------------------------------------------------------------- +void parse_login (int fd) +{ + struct mmo_account account; + int result, i, j; + unsigned char *p = (unsigned char *) &session[fd]->client_addr.sin_addr; + char ip[16]; + int host_len; + + sprintf (ip, "%d.%d.%d.%d", p[0], p[1], p[2], p[3]); + + if (session[fd]->eof) + { + close (fd); + delete_session (fd); + return; + } + + while (RFIFOREST (fd) >= 2) + { + if (display_parse_login == 1) + { + if (RFIFOW (fd, 0) == 0x64 || RFIFOW (fd, 0) == 0x01dd) + { + if (RFIFOREST (fd) >= ((RFIFOW (fd, 0) == 0x64) ? 55 : 47)) + printf + ("parse_login: connection #%d, packet: 0x%x (with being read: %d), account: %s.\n", + fd, RFIFOW (fd, 0), RFIFOREST (fd), RFIFOP (fd, 6)); + } + else if (RFIFOW (fd, 0) == 0x2710) + { + if (RFIFOREST (fd) >= 86) + printf + ("parse_login: connection #%d, packet: 0x%x (with being read: %d), server: %s.\n", + fd, RFIFOW (fd, 0), RFIFOREST (fd), RFIFOP (fd, 60)); + } + else + printf + ("parse_login: connection #%d, packet: 0x%x (with being read: %d).\n", + fd, RFIFOW (fd, 0), RFIFOREST (fd)); + } + + switch (RFIFOW (fd, 0)) + { + case 0x200: // New alive packet: structure: 0x200 <account.userid>.24B. used to verify if client is always alive. + if (RFIFOREST (fd) < 26) + return; + RFIFOSKIP (fd, 26); + break; + + case 0x204: // New alive packet: structure: 0x204 <encrypted.account.userid>.16B. (new ragexe from 22 june 2004) + if (RFIFOREST (fd) < 18) + return; + RFIFOSKIP (fd, 18); + break; + + case 0x64: // Ask connection of a client + case 0x01dd: // Ask connection of a client (encryption mode) + if (RFIFOREST (fd) < ((RFIFOW (fd, 0) == 0x64) ? 55 : 47)) + return; + + account.userid = RFIFOP (fd, 6); + account.userid[23] = '\0'; + remove_control_chars (account.userid); + account.passwd = RFIFOP (fd, 30); + if (RFIFOW (fd, 0) == 0x64) + { + account.passwd[23] = '\0'; + remove_control_chars (account.passwd); + } +#ifdef PASSWORDENC + account.passwdenc = + (RFIFOW (fd, 0) == 0x64) ? 0 : PASSWORDENC; +#else + account.passwdenc = 0; +#endif + + if (RFIFOW (fd, 0) == 0x64) + { + login_log + ("Request for connection (non encryption mode) of %s (ip: %s).\n", + account.userid, ip); + } + else + { + login_log + ("Request for connection (encryption mode) of %s (ip: %s).\n", + account.userid, ip); + } + + if (!check_ip (session[fd]->client_addr.sin_addr.s_addr)) + { + login_log + ("Connection refused: IP isn't authorised (deny/allow, ip: %s).\n", + ip); + WFIFOW (fd, 0) = 0x6a; + WFIFOB (fd, 2) = 0x03; + WFIFOSET (fd, 3); + RFIFOSKIP (fd, (RFIFOW (fd, 0) == 0x64) ? 55 : 47); + break; + } + + result = mmo_auth (&account, fd); + if (result == -1) + { + int gm_level = isGM (account.account_id); + if (min_level_to_connect > gm_level) + { + login_log + ("Connection refused: the minimum GM level for connection is %d (account: %s, GM level: %d, ip: %s).\n", + min_level_to_connect, account.userid, + gm_level, ip); + WFIFOW (fd, 0) = 0x81; + WFIFOL (fd, 2) = 1; // 01 = Server closed + WFIFOSET (fd, 3); + } + else + { + int version_2 = RFIFOB (fd, 54); // version 2 + + if (gm_level) + printf + ("Connection of the GM (level:%d) account '%s' accepted.\n", + gm_level, account.userid); + else + printf + ("Connection of the account '%s' accepted.\n", + account.userid); + + /* + * Add a 0x0063 packet, which contains the name of the update host. The packet will only + * be sent if login_athena.conf contains a non-null entry for "update_host:" + * + * Because older clients cannot handle the 0x63 packet, we check the "version 2" value + * from the incoming 0x64 packet (the byte at offset 54). If bit 0 of this is set, + * then the client can safely accept the 0x63 packet. The "version 2" value is not + * otherwise used by eAthena. + */ + if ((RFIFOW (fd, 0) == 0x64) + && (version_2 & VERSION_2_UPDATEHOST)) + { + host_len = (int) strlen (update_host); + if (host_len > 0) + { + WFIFOW (fd, 0) = 0x63; + WFIFOW (fd, 2) = 4 + host_len; + memcpy (WFIFOP (fd, 4), update_host, + host_len); + WFIFOSET (fd, 4 + host_len); + } + } + + // Load list of char servers into outbound packet + server_num = 0; + if (version_2 && VERSION_2_SERVERORDER) + for (i = 0; i < MAX_SERVERS; i++) + { + if (server_fd[i] >= 0) + { + if (lan_ip_check (p)) + WFIFOL (fd, 47 + server_num * 32) = + inet_addr (lan_char_ip); + else + WFIFOL (fd, 47 + server_num * 32) = + server[i].ip; + WFIFOW (fd, 47 + server_num * 32 + 4) = + server[i].port; + memcpy (WFIFOP + (fd, 47 + server_num * 32 + 6), + server[i].name, 20); + WFIFOW (fd, 47 + server_num * 32 + 26) = + server[i].users; + WFIFOW (fd, 47 + server_num * 32 + 28) = + server[i].maintenance; + WFIFOW (fd, 47 + server_num * 32 + 30) = + server[i].is_new; + server_num++; + } + } + else // Send them in reverse, as the client defaults to the second (!) one + for (i = MAX_SERVERS - 1; i >= 0; i--) + { + if (server_fd[i] >= 0) + { + if (lan_ip_check (p)) + WFIFOL (fd, 47 + server_num * 32) = + inet_addr (lan_char_ip); + else + WFIFOL (fd, 47 + server_num * 32) = + server[i].ip; + WFIFOW (fd, 47 + server_num * 32 + 4) = + server[i].port; + memcpy (WFIFOP + (fd, 47 + server_num * 32 + 6), + server[i].name, 20); + WFIFOW (fd, 47 + server_num * 32 + 26) = + server[i].users; + WFIFOW (fd, 47 + server_num * 32 + 28) = + server[i].maintenance; + WFIFOW (fd, 47 + server_num * 32 + 30) = + server[i].is_new; + server_num++; + } + } + // if at least 1 char-server + if (server_num > 0) + { + WFIFOW (fd, 0) = 0x69; + WFIFOW (fd, 2) = 47 + 32 * server_num; + WFIFOL (fd, 4) = account.login_id1; + WFIFOL (fd, 8) = account.account_id; + WFIFOL (fd, 12) = account.login_id2; + WFIFOL (fd, 16) = 0; // in old version, that was for ip (not more used) + memcpy (WFIFOP (fd, 20), account.lastlogin, 24); // in old version, that was for name (not more used) + WFIFOB (fd, 46) = account.sex; + WFIFOSET (fd, 47 + 32 * server_num); + if (auth_fifo_pos >= AUTH_FIFO_SIZE) + auth_fifo_pos = 0; + auth_fifo[auth_fifo_pos].account_id = + account.account_id; + auth_fifo[auth_fifo_pos].login_id1 = + account.login_id1; + auth_fifo[auth_fifo_pos].login_id2 = + account.login_id2; + auth_fifo[auth_fifo_pos].sex = account.sex; + auth_fifo[auth_fifo_pos].delflag = 0; + auth_fifo[auth_fifo_pos].ip = + session[fd]->client_addr.sin_addr.s_addr; + auth_fifo_pos++; + // if no char-server, don't send void list of servers, just disconnect the player with proper message + } + else + { + login_log + ("Connection refused: there is no char-server online (account: %s, ip: %s).\n", + account.userid, ip); + WFIFOW (fd, 0) = 0x81; + WFIFOL (fd, 2) = 1; // 01 = Server closed + WFIFOSET (fd, 3); + } + } + } + else + { + memset (WFIFOP (fd, 0), '\0', 23); + WFIFOW (fd, 0) = 0x6a; + WFIFOB (fd, 2) = result; + if (result == 6) + { // 6 = Your are Prohibited to log in until %s + i = search_account_index (account.userid); + if (i != -1) + { + if (auth_dat[i].ban_until_time != 0) + { // if account is banned, we send ban timestamp + char tmpstr[256]; + strftime (tmpstr, 20, date_format, + gmtime (&auth_dat + [i].ban_until_time)); + tmpstr[19] = '\0'; + memcpy (WFIFOP (fd, 3), tmpstr, 20); + } + else + { // we send error message + memcpy (WFIFOP (fd, 3), + auth_dat[i].error_message, 20); + } + } + } + WFIFOSET (fd, 23); + } + RFIFOSKIP (fd, (RFIFOW (fd, 0) == 0x64) ? 55 : 47); + break; + + case 0x01db: // Sending request of the coding key + case 0x791a: // Sending request of the coding key (administration packet) + { + struct login_session_data *ld; + if (session[fd]->session_data) + { + printf + ("login: abnormal request of MD5 key (already opened session).\n"); + session[fd]->eof = 1; + return; + } + CREATE (ld, struct login_session_data, 1); + session[fd]->session_data = ld; + if (!ld) + { + printf + ("login: Request for md5 key: memory allocation failure (malloc)!\n"); + session[fd]->eof = 1; + return; + } + if (RFIFOW (fd, 0) == 0x01db) + { + login_log ("Sending request of the coding key (ip: %s)\n", + ip); + } + else + { + login_log + ("'ladmin': Sending request of the coding key (ip: %s)\n", + ip); + } + // Creation of the coding key + memset (ld->md5key, '\0', sizeof (ld->md5key)); + ld->md5keylen = rand () % 4 + 12; + for (i = 0; i < ld->md5keylen; i++) + ld->md5key[i] = rand () % 255 + 1; + + RFIFOSKIP (fd, 2); + WFIFOW (fd, 0) = 0x01dc; + WFIFOW (fd, 2) = 4 + ld->md5keylen; + memcpy (WFIFOP (fd, 4), ld->md5key, ld->md5keylen); + WFIFOSET (fd, WFIFOW (fd, 2)); + } + break; + + case 0x2710: // Connection request of a char-server + if (RFIFOREST (fd) < 86) + return; + { + int GM_value, len; + unsigned char *server_name; + account.userid = RFIFOP (fd, 2); + account.userid[23] = '\0'; + remove_control_chars (account.userid); + account.passwd = RFIFOP (fd, 26); + account.passwd[23] = '\0'; + remove_control_chars (account.passwd); + account.passwdenc = 0; + server_name = RFIFOP (fd, 60); + server_name[19] = '\0'; + remove_control_chars (server_name); + login_log + ("Connection request of the char-server '%s' @ %d.%d.%d.%d:%d (ip: %s)\n", + server_name, RFIFOB (fd, 54), RFIFOB (fd, 55), + RFIFOB (fd, 56), RFIFOB (fd, 57), RFIFOW (fd, 58), + ip); + result = mmo_auth (&account, fd); + + if (result == -1 && account.sex == 2) + { + // If this is the main server, and we don't already have a main server + if (server_fd[0] <= 0 + && strcasecmp (server_name, main_server) == 0) + { + account.account_id = 0; + } + else + { + int i; + for (i = 1; i < MAX_SERVERS; i++) + { + if (server_fd[i] <= 0) + { + account.account_id = i; + break; + } + } + } + } + + if (result == -1 && account.sex == 2 + && account.account_id < MAX_SERVERS + && server_fd[account.account_id] == -1) + { + login_log + ("Connection of the char-server '%s' accepted (account: %s, pass: %s, ip: %s)\n", + server_name, account.userid, + account.passwd, ip); + printf + ("Connection of the char-server '%s' accepted.\n", + server_name); + memset (&server[account.account_id], 0, + sizeof (struct mmo_char_server)); + server[account.account_id].ip = RFIFOL (fd, 54); + server[account.account_id].port = RFIFOW (fd, 58); + memcpy (server[account.account_id].name, server_name, + 20); + server[account.account_id].users = 0; + server[account.account_id].maintenance = + RFIFOW (fd, 82); + server[account.account_id].is_new = RFIFOW (fd, 84); + server_fd[account.account_id] = fd; + if (anti_freeze_enable) + server_freezeflag[account.account_id] = 5; // Char-server anti-freeze system. Counter. 5 ok, 4...0 freezed + WFIFOW (fd, 0) = 0x2711; + WFIFOB (fd, 2) = 0; + WFIFOSET (fd, 3); + session[fd]->func_parse = parse_fromchar; + realloc_fifo (fd, FIFOSIZE_SERVERLINK, + FIFOSIZE_SERVERLINK); + // send GM account to char-server + len = 4; + WFIFOW (fd, 0) = 0x2732; + for (i = 0; i < auth_num; i++) + // send only existing accounts. We can not create a GM account when server is online. + if ((GM_value = + isGM (auth_dat[i].account_id)) > 0) + { + WFIFOL (fd, len) = auth_dat[i].account_id; + WFIFOB (fd, len + 4) = + (unsigned char) GM_value; + len += 5; + } + WFIFOW (fd, 2) = len; + WFIFOSET (fd, len); + } + else + { + login_log + ("Connexion of the char-server '%s' REFUSED (account: %s, pass: %s, ip: %s)\n", + server_name, account.userid, + account.passwd, ip); + WFIFOW (fd, 0) = 0x2711; + WFIFOB (fd, 2) = 3; + WFIFOSET (fd, 3); + } + } + RFIFOSKIP (fd, 86); + return; + + case 0x7530: // Request of the server version + login_log ("Sending of the server version (ip: %s)\n", + ip); + WFIFOW (fd, 0) = 0x7531; + WFIFOB (fd, 2) = -1; + WFIFOB (fd, 3) = 'T'; + WFIFOB (fd, 4) = 'M'; + WFIFOB (fd, 5) = 'W'; + WFIFOL (fd, 6) = new_account_flag ? 1 : 0; + WFIFOSET (fd, 10); + RFIFOSKIP (fd, 2); + break; + + case 0x7532: // Request to end connection + login_log ("End of connection (ip: %s)\n", ip); + session[fd]->eof = 1; + return; + + case 0x7918: // Request for administation login + if (RFIFOREST (fd) < 4 + || RFIFOREST (fd) < ((RFIFOW (fd, 2) == 0) ? 28 : 20)) + return; + WFIFOW (fd, 0) = 0x7919; + WFIFOB (fd, 2) = 1; + if (!check_ladminip + (session[fd]->client_addr.sin_addr.s_addr)) + { + login_log + ("'ladmin'-login: Connection in administration mode refused: IP isn't authorised (ladmin_allow, ip: %s).\n", + ip); + } + else + { + struct login_session_data *ld = (struct login_session_data *)session[fd]->session_data; + if (RFIFOW (fd, 2) == 0) + { // non encrypted password + unsigned char *password; + password = RFIFOP (fd, 4); + password[23] = '\0'; + remove_control_chars (password); + // If remote administration is enabled and password sent by client matches password read from login server configuration file + if ((admin_state == 1) + && (strcmp (password, admin_pass) == 0)) + { + login_log + ("'ladmin'-login: Connection in administration mode accepted (non encrypted password: %s, ip: %s)\n", + password, ip); + printf + ("Connection of a remote administration accepted (non encrypted password).\n"); + WFIFOB (fd, 2) = 0; + session[fd]->func_parse = parse_admin; + } + else if (admin_state != 1) + login_log + ("'ladmin'-login: Connection in administration mode REFUSED - remote administration is disabled (non encrypted password: %s, ip: %s)\n", + password, ip); + else + login_log + ("'ladmin'-login: Connection in administration mode REFUSED - invalid password (non encrypted password: %s, ip: %s)\n", + password, ip); + } + else + { // encrypted password + if (!ld) + printf + ("'ladmin'-login: error! MD5 key not created/requested for an administration login.\n"); + else + { + char md5str[64] = "", md5bin[32]; + if (RFIFOW (fd, 2) == 1) + { + strncpy (md5str, ld->md5key, sizeof (ld->md5key)); // 20 + strcat (md5str, admin_pass); // 24 + } + else if (RFIFOW (fd, 2) == 2) + { + strncpy (md5str, admin_pass, sizeof (admin_pass)); // 24 + strcat (md5str, ld->md5key); // 20 + } + MD5_to_bin(MD5_from_cstring(md5str), md5bin); + // If remote administration is enabled and password hash sent by client matches hash of password read from login server configuration file + if ((admin_state == 1) + && (memcmp (md5bin, RFIFOP (fd, 4), 16) == 0)) + { + login_log + ("'ladmin'-login: Connection in administration mode accepted (encrypted password, ip: %s)\n", + ip); + printf + ("Connection of a remote administration accepted (encrypted password).\n"); + WFIFOB (fd, 2) = 0; + session[fd]->func_parse = parse_admin; + } + else if (admin_state != 1) + login_log + ("'ladmin'-login: Connection in administration mode REFUSED - remote administration is disabled (encrypted password, ip: %s)\n", + ip); + else + login_log + ("'ladmin'-login: Connection in administration mode REFUSED - invalid password (encrypted password, ip: %s)\n", + ip); + } + } + } + WFIFOSET (fd, 3); + RFIFOSKIP (fd, (RFIFOW (fd, 2) == 0) ? 28 : 20); + break; + + default: + if (save_unknown_packets) + { + FILE *logfp; + char tmpstr[24]; + struct timeval tv; + logfp = fopen_ (login_log_unknown_packets_filename, "a"); + if (logfp) + { + gettimeofday (&tv, NULL); + strftime (tmpstr, 23, date_format, + gmtime (&(tv.tv_sec))); + fprintf (logfp, + "%s.%03d: receiving of an unknown packet -> disconnection\n", + tmpstr, (int) tv.tv_usec / 1000); + fprintf (logfp, + "parse_login: connection #%d (ip: %s), packet: 0x%x (with being read: %d).\n", + fd, ip, RFIFOW (fd, 0), + RFIFOREST (fd)); + fprintf (logfp, "Detail (in hex):\n"); + fprintf (logfp, + "---- 00-01-02-03-04-05-06-07 08-09-0A-0B-0C-0D-0E-0F\n"); + memset (tmpstr, '\0', sizeof (tmpstr)); + for (i = 0; i < RFIFOREST (fd); i++) + { + if ((i & 15) == 0) + fprintf (logfp, "%04X ", i); + fprintf (logfp, "%02x ", RFIFOB (fd, i)); + if (RFIFOB (fd, i) > 0x1f) + tmpstr[i % 16] = RFIFOB (fd, i); + else + tmpstr[i % 16] = '.'; + if ((i - 7) % 16 == 0) // -8 + 1 + fprintf (logfp, " "); + else if ((i + 1) % 16 == 0) + { + fprintf (logfp, " %s\n", tmpstr); + memset (tmpstr, '\0', sizeof (tmpstr)); + } + } + if (i % 16 != 0) + { + for (j = i; j % 16 != 0; j++) + { + fprintf (logfp, " "); + if ((j - 7) % 16 == 0) // -8 + 1 + fprintf (logfp, " "); + } + fprintf (logfp, " %s\n", tmpstr); + } + fprintf (logfp, "\n"); + fclose_ (logfp); + } + } + login_log ("End of connection, unknown packet (ip: %s)\n", ip); + session[fd]->eof = 1; + return; + } + } + return; +} + +//------------------------------------------------- +// Return numerical value of a switch configuration +// on/off, english, français, deutsch, español +//------------------------------------------------- +int config_switch (const char *str) +{ + if (strcasecmp (str, "on") == 0 || strcasecmp (str, "yes") == 0 + || strcasecmp (str, "oui") == 0 || strcasecmp (str, "ja") == 0 + || strcasecmp (str, "si") == 0) + return 1; + if (strcasecmp (str, "off") == 0 || strcasecmp (str, "no") == 0 + || strcasecmp (str, "non") == 0 || strcasecmp (str, "nein") == 0) + return 0; + + return atoi (str); +} + +//---------------------------------- +// Reading Lan Support configuration +//---------------------------------- +int login_lan_config_read (const char *lancfgName) +{ + int j; + struct hostent *h = NULL; + char line[1024], w1[1024], w2[1024]; + FILE *fp; + + // set default configuration + strncpy (lan_char_ip, "127.0.0.1", sizeof (lan_char_ip)); + subneti[0] = 127; + subneti[1] = 0; + subneti[2] = 0; + subneti[3] = 1; + for (j = 0; j < 4; j++) + subnetmaski[j] = 255; + + fp = fopen_ (lancfgName, "r"); + + if (fp == NULL) + { + printf + ("***WARNING: LAN Support configuration file is not found: %s\n", + lancfgName); + return 1; + } + + printf ("---Start reading Lan Support configuration file\n"); + + while (fgets (line, sizeof (line) - 1, fp)) + { + if (line[0] == '/' && line[1] == '/') + continue; + + line[sizeof (line) - 1] = '\0'; + if (sscanf (line, "%[^:]: %[^\r\n]", w1, w2) != 2) + continue; + + remove_control_chars (w1); + remove_control_chars (w2); + if (strcasecmp (w1, "lan_char_ip") == 0) + { // Read Char-Server Lan IP Address + h = gethostbyname (w2); + if (h != NULL) + { + sprintf (lan_char_ip, "%d.%d.%d.%d", + (unsigned char) h->h_addr[0], + (unsigned char) h->h_addr[1], + (unsigned char) h->h_addr[2], + (unsigned char) h->h_addr[3]); + } + else + { + strncpy (lan_char_ip, w2, sizeof (lan_char_ip)); + lan_char_ip[sizeof (lan_char_ip) - 1] = '\0'; + } + printf ("LAN IP of char-server: %s.\n", lan_char_ip); + } + else if (strcasecmp (w1, "subnet") == 0) + { // Read Subnetwork + for (j = 0; j < 4; j++) + subneti[j] = 0; + h = gethostbyname (w2); + if (h != NULL) + { + for (j = 0; j < 4; j++) + subneti[j] = (unsigned char) h->h_addr[j]; + } + else + { + sscanf (w2, "%d.%d.%d.%d", &subneti[0], &subneti[1], + &subneti[2], &subneti[3]); + } + printf ("Sub-network of the char-server: %d.%d.%d.%d.\n", + subneti[0], subneti[1], subneti[2], subneti[3]); + } + else if (strcasecmp (w1, "subnetmask") == 0) + { // Read Subnetwork Mask + for (j = 0; j < 4; j++) + subnetmaski[j] = 255; + h = gethostbyname (w2); + if (h != NULL) + { + for (j = 0; j < 4; j++) + subnetmaski[j] = (unsigned char) h->h_addr[j]; + } + else + { + sscanf (w2, "%d.%d.%d.%d", &subnetmaski[0], &subnetmaski[1], + &subnetmaski[2], &subnetmaski[3]); + } + printf ("Sub-network mask of the char-server: %d.%d.%d.%d.\n", + subnetmaski[0], subnetmaski[1], subnetmaski[2], + subnetmaski[3]); + } + } + fclose_ (fp); + + // log the LAN configuration + login_log ("The LAN configuration of the server is set:\n"); + login_log ("- with LAN IP of char-server: %s.\n", lan_char_ip); + login_log + ("- with the sub-network of the char-server: %d.%d.%d.%d/%d.%d.%d.%d.\n", + subneti[0], subneti[1], subneti[2], subneti[3], + subnetmaski[0], subnetmaski[1], subnetmaski[2], subnetmaski[3]); + + // sub-network check of the char-server + { + unsigned int a0, a1, a2, a3; + unsigned char p[4]; + sscanf (lan_char_ip, "%d.%d.%d.%d", &a0, &a1, &a2, &a3); + p[0] = a0; + p[1] = a1; + p[2] = a2; + p[3] = a3; + printf ("LAN test of LAN IP of the char-server: "); + if (lan_ip_check (p) == 0) + { + printf + ("\033[1;31m***ERROR: LAN IP of the char-server doesn't belong to the specified Sub-network\033[0m\n"); + login_log + ("***ERROR: LAN IP of the char-server doesn't belong to the specified Sub-network.\n"); + } + } + + printf ("---End reading of Lan Support configuration file\n"); + + return 0; +} + +//----------------------------------- +// Reading general configuration file +//----------------------------------- +int login_config_read (const char *cfgName) +{ + char line[1024], w1[1024], w2[1024]; + FILE *fp; + + fp = fopen_ (cfgName, "r"); + if (fp == NULL) + { + printf ("Configuration file (%s) not found.\n", cfgName); + return 1; + } + + printf ("---Start reading of Login Server configuration file (%s)\n", + cfgName); + while (fgets (line, sizeof (line) - 1, fp)) + { + if (line[0] == '/' && line[1] == '/') + continue; + + line[sizeof (line) - 1] = '\0'; + if (sscanf (line, "%[^:]: %[^\r\n]", w1, w2) == 2) + { + remove_control_chars (w1); + remove_control_chars (w2); + + if (strcasecmp (w1, "admin_state") == 0) + { + admin_state = config_switch (w2); + } + else if (strcasecmp (w1, "admin_pass") == 0) + { + strncpy (admin_pass, w2, sizeof (admin_pass)); + admin_pass[sizeof (admin_pass) - 1] = '\0'; + } + else if (strcasecmp (w1, "ladminallowip") == 0) + { + if (strcasecmp (w2, "clear") == 0) + { + if (access_ladmin_allow) + free (access_ladmin_allow); + access_ladmin_allow = NULL; + access_ladmin_allownum = 0; + } + else + { + if (strcasecmp (w2, "all") == 0) + { + // reset all previous values + if (access_ladmin_allow) + free (access_ladmin_allow); + // set to all + CREATE (access_ladmin_allow, char, ACO_STRSIZE); + access_ladmin_allownum = 1; + } + else if (w2[0] + && !(access_ladmin_allownum == 1 + && access_ladmin_allow[0] == '\0')) + { // don't add IP if already 'all' + if (access_ladmin_allow) + RECREATE (access_ladmin_allow, char, (access_ladmin_allownum + 1) * ACO_STRSIZE); + else + CREATE (access_ladmin_allow, char, ACO_STRSIZE); + strncpy (access_ladmin_allow + + (access_ladmin_allownum++) * ACO_STRSIZE, w2, + ACO_STRSIZE); + access_ladmin_allow[access_ladmin_allownum * + ACO_STRSIZE - 1] = '\0'; + } + } + } + else if (strcasecmp (w1, "gm_pass") == 0) + { + strncpy (gm_pass, w2, sizeof (gm_pass)); + gm_pass[sizeof (gm_pass) - 1] = '\0'; + } + else if (strcasecmp (w1, "level_new_gm") == 0) + { + level_new_gm = atoi (w2); + } + else if (strcasecmp (w1, "new_account") == 0) + { + new_account_flag = config_switch (w2); + } + else if (strcasecmp (w1, "login_port") == 0) + { + login_port = atoi (w2); + } + else if (strcasecmp (w1, "account_filename") == 0) + { + strncpy (account_filename, w2, sizeof (account_filename)); + account_filename[sizeof (account_filename) - 1] = '\0'; + } + else if (strcasecmp (w1, "gm_account_filename") == 0) + { + strncpy (GM_account_filename, w2, + sizeof (GM_account_filename)); + GM_account_filename[sizeof (GM_account_filename) - 1] = '\0'; + } + else if (strcasecmp (w1, "gm_account_filename_check_timer") == 0) + { + gm_account_filename_check_timer = atoi (w2); + } + else if (strcasecmp (w1, "login_log_filename") == 0) + { + strncpy (login_log_filename, w2, sizeof (login_log_filename)); + login_log_filename[sizeof (login_log_filename) - 1] = '\0'; + } + else if (strcasecmp (w1, "login_log_unknown_packets_filename") == 0) + { + strncpy (login_log_unknown_packets_filename, w2, + sizeof (login_log_unknown_packets_filename)); + login_log_unknown_packets_filename[sizeof + (login_log_unknown_packets_filename) + - 1] = '\0'; + } + else if (strcasecmp (w1, "save_unknown_packets") == 0) + { + save_unknown_packets = config_switch (w2); + } + else if (strcasecmp (w1, "display_parse_login") == 0) + { + display_parse_login = config_switch (w2); // 0: no, 1: yes + } + else if (strcasecmp (w1, "display_parse_admin") == 0) + { + display_parse_admin = config_switch (w2); // 0: no, 1: yes + } + else if (strcasecmp (w1, "display_parse_fromchar") == 0) + { + display_parse_fromchar = config_switch (w2); // 0: no, 1: yes (without packet 0x2714), 2: all packets + } + else if (strcasecmp (w1, "date_format") == 0) + { // note: never have more than 19 char for the date! + switch (atoi (w2)) + { + case 0: + strcpy (date_format, "%d-%m-%Y %H:%M:%S"); // 31-12-2004 23:59:59 + break; + case 1: + strcpy (date_format, "%m-%d-%Y %H:%M:%S"); // 12-31-2004 23:59:59 + break; + case 2: + strcpy (date_format, "%Y-%d-%m %H:%M:%S"); // 2004-31-12 23:59:59 + break; + case 3: + strcpy (date_format, "%Y-%m-%d %H:%M:%S"); // 2004-12-31 23:59:59 + break; + } + } + else if (strcasecmp (w1, "min_level_to_connect") == 0) + { + min_level_to_connect = atoi (w2); + } + else if (strcasecmp (w1, "add_to_unlimited_account") == 0) + { + add_to_unlimited_account = config_switch (w2); + } + else if (strcasecmp (w1, "start_limited_time") == 0) + { + start_limited_time = atoi (w2); + } + else if (strcasecmp (w1, "check_ip_flag") == 0) + { + check_ip_flag = config_switch (w2); + } + else if (strcasecmp (w1, "order") == 0) + { + access_order = atoi (w2); + if (strcasecmp (w2, "deny,allow") == 0 || + strcasecmp (w2, "deny, allow") == 0) + access_order = ACO_DENY_ALLOW; + if (strcasecmp (w2, "allow,deny") == 0 || + strcasecmp (w2, "allow, deny") == 0) + access_order = ACO_ALLOW_DENY; + if (strcasecmp (w2, "mutual-failture") == 0 || + strcasecmp (w2, "mutual-failure") == 0) + access_order = ACO_MUTUAL_FAILTURE; + } + else if (strcasecmp (w1, "allow") == 0) + { + if (strcasecmp (w2, "clear") == 0) + { + if (access_allow) + free (access_allow); + access_allow = NULL; + access_allownum = 0; + } + else + { + if (strcasecmp (w2, "all") == 0) + { + // reset all previous values + if (access_allow) + free (access_allow); + // set to all + CREATE (access_allow, char, ACO_STRSIZE); + access_allownum = 1; + } + else if (w2[0] + && !(access_allownum == 1 + && access_allow[0] == '\0')) + { // don't add IP if already 'all' + if (access_allow) + RECREATE (access_allow, char, (access_allownum + 1) * ACO_STRSIZE); + else + CREATE (access_allow, char, ACO_STRSIZE); + strncpy (access_allow + + (access_allownum++) * ACO_STRSIZE, w2, + ACO_STRSIZE); + access_allow[access_allownum * ACO_STRSIZE - 1] = + '\0'; + } + } + } + else if (strcasecmp (w1, "deny") == 0) + { + if (strcasecmp (w2, "clear") == 0) + { + if (access_deny) + free (access_deny); + access_deny = NULL; + access_denynum = 0; + } + else + { + if (strcasecmp (w2, "all") == 0) + { + // reset all previous values + if (access_deny) + free (access_deny); + // set to all + CREATE (access_deny, char, ACO_STRSIZE); + access_denynum = 1; + } + else if (w2[0] + && !(access_denynum == 1 + && access_deny[0] == '\0')) + { // don't add IP if already 'all' + if (access_deny) + RECREATE (access_deny, char, (access_denynum + 1) * ACO_STRSIZE); + else + CREATE (access_deny, char, ACO_STRSIZE); + strncpy (access_deny + + (access_denynum++) * ACO_STRSIZE, w2, + ACO_STRSIZE); + access_deny[access_denynum * ACO_STRSIZE - 1] = '\0'; + } + } + } + else if (strcasecmp (w1, "anti_freeze_enable") == 0) + { + anti_freeze_enable = config_switch (w2); + } + else if (strcasecmp (w1, "anti_freeze_interval") == 0) + { + ANTI_FREEZE_INTERVAL = atoi (w2); + if (ANTI_FREEZE_INTERVAL < 5) + ANTI_FREEZE_INTERVAL = 5; // minimum 5 seconds + } + else if (strcasecmp (w1, "import") == 0) + { + login_config_read (w2); + } + else if (strcasecmp (w1, "update_host") == 0) + { + strncpy (update_host, w2, sizeof (update_host)); + update_host[sizeof (update_host) - 1] = '\0'; + } + else if (strcasecmp (w1, "main_server") == 0) + { + strncpy (main_server, w2, sizeof (main_server)); + main_server[sizeof (main_server) - 1] = '\0'; + } + } + } + fclose_ (fp); + + printf ("---End reading of Login Server configuration file.\n"); + + return 0; +} + +//------------------------------------- +// Displaying of configuration warnings +//------------------------------------- +void display_conf_warnings (void) +{ + if (admin_state != 0 && admin_state != 1) + { + printf + ("***WARNING: Invalid value for admin_state parameter -> set to 0 (no remote admin).\n"); + admin_state = 0; + } + + if (admin_state == 1) + { + if (admin_pass[0] == '\0') + { + printf + ("***WARNING: Administrator password is void (admin_pass).\n"); + } + else if (strcmp (admin_pass, "admin") == 0) + { + printf + ("***WARNING: You are using the default administrator password (admin_pass).\n"); + printf (" We highly recommend that you change it.\n"); + } + } + + if (gm_pass[0] == '\0') + { + printf ("***WARNING: 'To GM become' password is void (gm_pass).\n"); + printf + (" We highly recommend that you set one password.\n"); + } + else if (strcmp (gm_pass, "gm") == 0) + { + printf + ("***WARNING: You are using the default GM password (gm_pass).\n"); + printf (" We highly recommend that you change it.\n"); + } + + if (level_new_gm < 0 || level_new_gm > 99) + { + printf + ("***WARNING: Invalid value for level_new_gm parameter -> set to 60 (default).\n"); + level_new_gm = 60; + } + + if (new_account_flag != 0 && new_account_flag != 1) + { + printf + ("***WARNING: Invalid value for new_account parameter -> set to 0 (no new account).\n"); + new_account_flag = 0; + } + + if (login_port < 1024 || login_port > 65535) + { + printf + ("***WARNING: Invalid value for login_port parameter -> set to 6900 (default).\n"); + login_port = 6900; + } + + if (gm_account_filename_check_timer < 0) + { + printf + ("***WARNING: Invalid value for gm_account_filename_check_timer parameter.\n"); + printf (" -> set to 15 sec (default).\n"); + gm_account_filename_check_timer = 15; + } + else if (gm_account_filename_check_timer == 1) + { + printf + ("***WARNING: Invalid value for gm_account_filename_check_timer parameter.\n"); + printf (" -> set to 2 sec (minimum value).\n"); + gm_account_filename_check_timer = 2; + } + + if (save_unknown_packets != 0 && save_unknown_packets != 1) + { + printf + ("WARNING: Invalid value for save_unknown_packets parameter -> set to 0-no save.\n"); + save_unknown_packets = 0; + } + + if (display_parse_login != 0 && display_parse_login != 1) + { // 0: no, 1: yes + printf + ("***WARNING: Invalid value for display_parse_login parameter\n"); + printf (" -> set to 0 (no display).\n"); + display_parse_login = 0; + } + + if (display_parse_admin != 0 && display_parse_admin != 1) + { // 0: no, 1: yes + printf + ("***WARNING: Invalid value for display_parse_admin parameter\n"); + printf (" -> set to 0 (no display).\n"); + display_parse_admin = 0; + } + + if (display_parse_fromchar < 0 || display_parse_fromchar > 2) + { // 0: no, 1: yes (without packet 0x2714), 2: all packets + printf + ("***WARNING: Invalid value for display_parse_fromchar parameter\n"); + printf (" -> set to 0 (no display).\n"); + display_parse_fromchar = 0; + } + + if (min_level_to_connect < 0) + { // 0: all players, 1-99 at least gm level x + printf + ("***WARNING: Invalid value for min_level_to_connect (%d) parameter\n", + min_level_to_connect); + printf (" -> set to 0 (any player).\n"); + min_level_to_connect = 0; + } + else if (min_level_to_connect > 99) + { // 0: all players, 1-99 at least gm level x + printf + ("***WARNING: Invalid value for min_level_to_connect (%d) parameter\n", + min_level_to_connect); + printf (" -> set to 99 (only GM level 99).\n"); + min_level_to_connect = 99; + } + + if (add_to_unlimited_account != 0 && add_to_unlimited_account != 1) + { // 0: no, 1: yes + printf + ("***WARNING: Invalid value for add_to_unlimited_account parameter\n"); + printf + (" -> set to 0 (impossible to add a time to an unlimited account).\n"); + add_to_unlimited_account = 0; + } + + if (start_limited_time < -1) + { // -1: create unlimited account, 0 or more: additionnal sec from now to create limited time + printf + ("***WARNING: Invalid value for start_limited_time parameter\n"); + printf + (" -> set to -1 (new accounts are created with unlimited time).\n"); + start_limited_time = -1; + } + + if (check_ip_flag != 0 && check_ip_flag != 1) + { // 0: no, 1: yes + printf ("***WARNING: Invalid value for check_ip_flag parameter\n"); + printf + (" -> set to 1 (check players ip between login-server & char-server).\n"); + check_ip_flag = 1; + } + + if (access_order == ACO_DENY_ALLOW) + { + if (access_denynum == 1 && access_deny[0] == '\0') + { + printf + ("***WARNING: The IP security order is 'deny,allow' (allow if not deny).\n"); + printf (" And you refuse ALL IP.\n"); + } + } + else if (access_order == ACO_ALLOW_DENY) + { + if (access_allownum == 0) + { + printf + ("***WARNING: The IP security order is 'allow,deny' (deny if not allow).\n"); + printf (" But, NO IP IS AUTHORISED!\n"); + } + } + else + { // ACO_MUTUAL_FAILTURE + if (access_allownum == 0) + { + printf + ("***WARNING: The IP security order is 'mutual-failture'\n"); + printf + (" (allow if in the allow list and not in the deny list).\n"); + printf (" But, NO IP IS AUTHORISED!\n"); + } + else if (access_denynum == 1 && access_deny[0] == '\0') + { + printf ("***WARNING: The IP security order is mutual-failture\n"); + printf + (" (allow if in the allow list and not in the deny list).\n"); + printf (" But, you refuse ALL IP!\n"); + } + } + + return; +} + +//------------------------------- +// Save configuration in log file +//------------------------------- +void save_config_in_log (void) +{ + int i; + + // a newline in the log... + login_log (""); + login_log ("The login-server starting...\n"); + + // save configuration in log file + login_log ("The configuration of the server is set:\n"); + + if (admin_state != 1) + login_log ("- with no remote administration.\n"); + else if (admin_pass[0] == '\0') + login_log ("- with a remote administration with a VOID password.\n"); + else if (strcmp (admin_pass, "admin") == 0) + login_log ("- with a remote administration with the DEFAULT password.\n"); + else + login_log + ("- with a remote administration with the password of %d character(s).\n", + strlen (admin_pass)); + if (access_ladmin_allownum == 0 + || (access_ladmin_allownum == 1 && access_ladmin_allow[0] == '\0')) + { + login_log ("- to accept any IP for remote administration\n"); + } + else + { + login_log ("- to accept following IP for remote administration:\n"); + for (i = 0; i < access_ladmin_allownum; i++) + login_log (" %s\n", + (char *) (access_ladmin_allow + i * ACO_STRSIZE)); + } + + if (gm_pass[0] == '\0') + login_log ("- with a VOID 'To GM become' password (gm_pass).\n"); + else if (strcmp (gm_pass, "gm") == 0) + login_log ("- with the DEFAULT 'To GM become' password (gm_pass).\n"); + else + login_log + ("- with a 'To GM become' password (gm_pass) of %d character(s).\n", + strlen (gm_pass)); + if (level_new_gm == 0) + login_log ("- to refuse any creation of GM with @gm.\n"); + else + login_log ("- to create GM with level '%d' when @gm is used.\n", + level_new_gm); + + if (new_account_flag == 1) + login_log ("- to ALLOW new users (with _F/_M).\n"); + else + login_log ("- to NOT ALLOW new users (with _F/_M).\n"); + login_log ("- with port: %d.\n", login_port); + login_log ("- with the accounts file name: '%s'.\n", + account_filename); + login_log ("- with the GM accounts file name: '%s'.\n", + GM_account_filename); + if (gm_account_filename_check_timer == 0) + login_log ("- to NOT check GM accounts file modifications.\n"); + else + login_log + ("- to check GM accounts file modifications every %d seconds.\n", + gm_account_filename_check_timer); + + // not necessary to log the 'login_log_filename', we are inside :) + + login_log ("- with the unknown packets file name: '%s'.\n", + login_log_unknown_packets_filename); + if (save_unknown_packets) + login_log ("- to SAVE all unkown packets.\n"); + else + login_log + ("- to SAVE only unkown packets sending by a char-server or a remote administration.\n"); + if (display_parse_login) + login_log ("- to display normal parse packets on console.\n"); + else + login_log ("- to NOT display normal parse packets on console.\n"); + if (display_parse_admin) + login_log ("- to display administration parse packets on console.\n"); + else + login_log ("- to NOT display administration parse packets on console.\n"); + if (display_parse_fromchar) + login_log ("- to display char-server parse packets on console.\n"); + else + login_log ("- to NOT display char-server parse packets on console.\n"); + + if (min_level_to_connect == 0) // 0: all players, 1-99 at least gm level x + login_log ("- with no minimum level for connection.\n"); + else if (min_level_to_connect == 99) + login_log ("- to accept only GM with level 99.\n"); + else + login_log ("- to accept only GM with level %d or more.\n", + min_level_to_connect); + + if (add_to_unlimited_account) + login_log + ("- to authorize adjustment (with timeadd ladmin) on an unlimited account.\n"); + else + login_log + ("- to refuse adjustment (with timeadd ladmin) on an unlimited account. You must use timeset (ladmin command) before.\n"); + + if (start_limited_time < 0) + login_log ("- to create new accounts with an unlimited time.\n"); + else if (start_limited_time == 0) + login_log + ("- to create new accounts with a limited time: time of creation.\n"); + else + login_log + ("- to create new accounts with a limited time: time of creation + %d second(s).\n", + start_limited_time); + + if (check_ip_flag) + login_log + ("- with control of players IP between login-server and char-server.\n"); + else + login_log + ("- to not check players IP between login-server and char-server.\n"); + + if (access_order == ACO_DENY_ALLOW) + { + if (access_denynum == 0) + { + login_log + ("- with the IP security order: 'deny,allow' (allow if not deny). You refuse no IP.\n"); + } + else if (access_denynum == 1 && access_deny[0] == '\0') + { + login_log + ("- with the IP security order: 'deny,allow' (allow if not deny). You refuse ALL IP.\n"); + } + else + { + login_log + ("- with the IP security order: 'deny,allow' (allow if not deny). Refused IP are:\n"); + for (i = 0; i < access_denynum; i++) + login_log (" %s\n", + (char *) (access_deny + i * ACO_STRSIZE)); + } + } + else if (access_order == ACO_ALLOW_DENY) + { + if (access_allownum == 0) + { + login_log + ("- with the IP security order: 'allow,deny' (deny if not allow). But, NO IP IS AUTHORISED!\n"); + } + else if (access_allownum == 1 && access_allow[0] == '\0') + { + login_log + ("- with the IP security order: 'allow,deny' (deny if not allow). You authorise ALL IP.\n"); + } + else + { + login_log + ("- with the IP security order: 'allow,deny' (deny if not allow). Authorised IP are:\n"); + for (i = 0; i < access_allownum; i++) + login_log (" %s\n", + (char *) (access_allow + i * ACO_STRSIZE)); + } + } + else + { // ACO_MUTUAL_FAILTURE + login_log + ("- with the IP security order: 'mutual-failture' (allow if in the allow list and not in the deny list).\n"); + if (access_allownum == 0) + { + login_log (" But, NO IP IS AUTHORISED!\n"); + } + else if (access_denynum == 1 && access_deny[0] == '\0') + { + login_log (" But, you refuse ALL IP!\n"); + } + else + { + if (access_allownum == 1 && access_allow[0] == '\0') + { + login_log (" You authorise ALL IP.\n"); + } + else + { + login_log (" Authorised IP are:\n"); + for (i = 0; i < access_allownum; i++) + login_log (" %s\n", + (char *) (access_allow + i * ACO_STRSIZE)); + } + login_log (" Refused IP are:\n"); + for (i = 0; i < access_denynum; i++) + login_log (" %s\n", + (char *) (access_deny + i * ACO_STRSIZE)); + } + } +} + +//-------------------------------------- +// Function called at exit of the server +//-------------------------------------- +void term_func (void) +{ + int i, fd; + + mmo_auth_sync (); + + free (auth_dat); + free (gm_account_db); + for (i = 0; i < MAX_SERVERS; i++) + { + if ((fd = server_fd[i]) >= 0) + delete_session (fd); + } + delete_session (login_fd); + + login_log + ("----End of login-server (normal end with closing of all files).\n"); +} + +//------------------------------ +// Main function of login-server +//------------------------------ +int do_init (int argc, char **argv) +{ + int i, j; + + // read login-server configuration + login_config_read ((argc > 1) ? argv[1] : LOGIN_CONF_NAME); + display_conf_warnings (); // not in login_config_read, because we can use 'import' option, and display same message twice or more + save_config_in_log (); // not before, because log file name can be changed + login_lan_config_read ((argc > 1) ? argv[1] : LAN_CONF_NAME); + + for (i = 0; i < AUTH_FIFO_SIZE; i++) + auth_fifo[i].delflag = 1; + for (i = 0; i < MAX_SERVERS; i++) + server_fd[i] = -1; + + gm_account_db = numdb_init (); + + read_gm_account (); + mmo_auth_init (); +// set_termfunc (mmo_auth_sync); + set_defaultparse (parse_login); + login_fd = make_listen_port (login_port); + +// add_timer_func_list (check_auth_sync, "check_auth_sync"); + + // Trigger auth sync every 5 minutes + i = add_timer_interval (gettick () + 300000, check_auth_sync, 0, 0, 300000); + + if (anti_freeze_enable > 0) + { +// add_timer_func_list (char_anti_freeze_system, "char_anti_freeze_system"); + i = add_timer_interval (gettick () + 1000, char_anti_freeze_system, 0, + 0, ANTI_FREEZE_INTERVAL * 1000); + } + + // add timer to check GM accounts file modification + j = gm_account_filename_check_timer; + if (j == 0) // if we would not to check, we check every 60 sec, just to have timer (if we change timer, is was not necessary to check if timer already exists) + j = 60; +// add_timer_func_list (check_GM_file, "check_GM_file"); + i = add_timer_interval (gettick () + j * 1000, check_GM_file, 0, 0, j * 1000); // every x sec we check if gm file has been changed + + login_log + ("The login-server is ready (Server is listening on the port %d).\n", + login_port); + + printf + ("The login-server is \033[1;32mready\033[0m (Server is listening on the port %d).\n\n", + login_port); + + return 0; +} |