]> git.r.bdr.sh - rbdr/mobius/blame - hotline/transaction_handlers.go
git.r.bdr.sh / rbdr / mobius / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Fix bug that clears account password on permission edit
[rbdr/mobius] / hotline / transaction_handlers.go
CommitLineData
6988a057
JH		 1package hotline
2
3import (
4 "bytes"
5 "encoding/binary"
6 "errors"
7 "fmt"
0197c3f5 8 "gopkg.in/yaml.v3"
6988a057
JH		 9 "math/big"
10 "os"
00d1ef67 11 "path"
2e08be58 12 "path/filepath"
6988a057
JH		 13 "sort"
14 "strings"
15 "time"
16)
17
d005ef04
JH		 18type HandlerFunc func(*ClientConn, *Transaction) ([]Transaction, error)
19
6988a057 20type TransactionType struct {
d005ef04
JH		 21 Handler HandlerFunc // function for handling the transaction type
22 Name string // Name of transaction as it will appear in logging
6988a057
JH		 23 RequiredFields []requiredField
24}
25
26var TransactionHandlers = map[uint16]TransactionType{
27 // Server initiated
d005ef04
JH		 28 TranChatMsg: {
29 Name: "TranChatMsg",
6988a057
JH		 30 },
31 // Server initiated
d005ef04
JH		 32 TranNotifyChangeUser: {
33 Name: "TranNotifyChangeUser",
6988a057 34 },
d005ef04
JH		 35 TranError: {
36 Name: "TranError",
6988a057 37 },
d005ef04
JH		 38 TranShowAgreement: {
39 Name: "TranShowAgreement",
6988a057 40 },
d005ef04
JH		 41 TranUserAccess: {
42 Name: "TranUserAccess",
6988a057 43 },
d005ef04
JH		 44 TranNotifyDeleteUser: {
45 Name: "TranNotifyDeleteUser",
5454019c 46 },
d005ef04
JH		 47 TranAgreed: {
48 Name: "TranAgreed",
6988a057
JH		 49 Handler: HandleTranAgreed,
50 },
d005ef04
JH		 51 TranChatSend: {
52 Name: "TranChatSend",
d4c152a4 53 Handler: HandleChatSend,
6988a057
JH		 54 RequiredFields: []requiredField{
55 {
d005ef04 56 ID: FieldData,
6988a057
JH		 57 minLen: 0,
58 },
59 },
60 },
d005ef04
JH		 61 TranDelNewsArt: {
62 Name: "TranDelNewsArt",
6988a057
JH		 63 Handler: HandleDelNewsArt,
64 },
d005ef04
JH		 65 TranDelNewsItem: {
66 Name: "TranDelNewsItem",
6988a057
JH		 67 Handler: HandleDelNewsItem,
68 },
d005ef04
JH		 69 TranDeleteFile: {
70 Name: "TranDeleteFile",
6988a057
JH		 71 Handler: HandleDeleteFile,
72 },
d005ef04
JH		 73 TranDeleteUser: {
74 Name: "TranDeleteUser",
6988a057
JH		 75 Handler: HandleDeleteUser,
76 },
d005ef04
JH		 77 TranDisconnectUser: {
78 Name: "TranDisconnectUser",
6988a057
JH		 79 Handler: HandleDisconnectUser,
80 },
d005ef04
JH		 81 TranDownloadFile: {
82 Name: "TranDownloadFile",
6988a057
JH		 83 Handler: HandleDownloadFile,
84 },
d005ef04
JH		 85 TranDownloadFldr: {
86 Name: "TranDownloadFldr",
6988a057
JH		 87 Handler: HandleDownloadFolder,
88 },
d005ef04
JH		 89 TranGetClientInfoText: {
90 Name: "TranGetClientInfoText",
df1ade54 91 Handler: HandleGetClientInfoText,
6988a057 92 },
d005ef04
JH		 93 TranGetFileInfo: {
94 Name: "TranGetFileInfo",
6988a057
JH		 95 Handler: HandleGetFileInfo,
96 },
d005ef04
JH		 97 TranGetFileNameList: {
98 Name: "TranGetFileNameList",
6988a057
JH		 99 Handler: HandleGetFileNameList,
100 },
d005ef04
JH		 101 TranGetMsgs: {
102 Name: "TranGetMsgs",
6988a057
JH		 103 Handler: HandleGetMsgs,
104 },
d005ef04
JH		 105 TranGetNewsArtData: {
106 Name: "TranGetNewsArtData",
6988a057
JH		 107 Handler: HandleGetNewsArtData,
108 },
d005ef04
JH		 109 TranGetNewsArtNameList: {
110 Name: "TranGetNewsArtNameList",
6988a057
JH		 111 Handler: HandleGetNewsArtNameList,
112 },
d005ef04
JH		 113 TranGetNewsCatNameList: {
114 Name: "TranGetNewsCatNameList",
6988a057
JH		 115 Handler: HandleGetNewsCatNameList,
116 },
d005ef04
JH		 117 TranGetUser: {
118 Name: "TranGetUser",
6988a057
JH		 119 Handler: HandleGetUser,
120 },
d005ef04 121 TranGetUserNameList: {
6988a057
JH		 122 Name: "tranHandleGetUserNameList",
123 Handler: HandleGetUserNameList,
124 },
d005ef04
JH		 125 TranInviteNewChat: {
126 Name: "TranInviteNewChat",
6988a057
JH		 127 Handler: HandleInviteNewChat,
128 },
d005ef04
JH		 129 TranInviteToChat: {
130 Name: "TranInviteToChat",
6988a057
JH		 131 Handler: HandleInviteToChat,
132 },
d005ef04
JH		 133 TranJoinChat: {
134 Name: "TranJoinChat",
6988a057
JH		 135 Handler: HandleJoinChat,
136 },
d005ef04
JH		 137 TranKeepAlive: {
138 Name: "TranKeepAlive",
6988a057
JH		 139 Handler: HandleKeepAlive,
140 },
d005ef04
JH		 141 TranLeaveChat: {
142 Name: "TranJoinChat",
6988a057
JH		 143 Handler: HandleLeaveChat,
144 },
d005ef04
JH		 145 TranListUsers: {
146 Name: "TranListUsers",
6988a057
JH		 147 Handler: HandleListUsers,
148 },
d005ef04
JH		 149 TranMoveFile: {
150 Name: "TranMoveFile",
6988a057
JH		 151 Handler: HandleMoveFile,
152 },
d005ef04
JH		 153 TranNewFolder: {
154 Name: "TranNewFolder",
6988a057
JH		 155 Handler: HandleNewFolder,
156 },
d005ef04
JH		 157 TranNewNewsCat: {
158 Name: "TranNewNewsCat",
6988a057
JH		 159 Handler: HandleNewNewsCat,
160 },
d005ef04
JH		 161 TranNewNewsFldr: {
162 Name: "TranNewNewsFldr",
6988a057
JH		 163 Handler: HandleNewNewsFldr,
164 },
d005ef04
JH		 165 TranNewUser: {
166 Name: "TranNewUser",
6988a057
JH		 167 Handler: HandleNewUser,
168 },
d005ef04
JH		 169 TranUpdateUser: {
170 Name: "TranUpdateUser",
d2810ae9
JH		 171 Handler: HandleUpdateUser,
172 },
d005ef04
JH		 173 TranOldPostNews: {
174 Name: "TranOldPostNews",
6988a057
JH		 175 Handler: HandleTranOldPostNews,
176 },
d005ef04
JH		 177 TranPostNewsArt: {
178 Name: "TranPostNewsArt",
6988a057
JH		 179 Handler: HandlePostNewsArt,
180 },
d005ef04
JH		 181 TranRejectChatInvite: {
182 Name: "TranRejectChatInvite",
6988a057
JH		 183 Handler: HandleRejectChatInvite,
184 },
d005ef04
JH		 185 TranSendInstantMsg: {
186 Name: "TranSendInstantMsg",
6988a057
JH		 187 Handler: HandleSendInstantMsg,
188 RequiredFields: []requiredField{
189 {
d005ef04 190 ID: FieldData,
6988a057
JH		 191 minLen: 0,
192 },
193 {
d005ef04 194 ID: FieldUserID,
6988a057
JH		 195 },
196 },
197 },
d005ef04
JH		 198 TranSetChatSubject: {
199 Name: "TranSetChatSubject",
6988a057
JH		 200 Handler: HandleSetChatSubject,
201 },
d005ef04
JH		 202 TranMakeFileAlias: {
203 Name: "TranMakeFileAlias",
decc2fbf
JH		 204 Handler: HandleMakeAlias,
205 RequiredFields: []requiredField{
d005ef04
JH		 206 {ID: FieldFileName, minLen: 1},
207 {ID: FieldFilePath, minLen: 1},
208 {ID: FieldFileNewPath, minLen: 1},
decc2fbf
JH		 209 },
210 },
d005ef04
JH		 211 TranSetClientUserInfo: {
212 Name: "TranSetClientUserInfo",
6988a057
JH		 213 Handler: HandleSetClientUserInfo,
214 },
d005ef04
JH		 215 TranSetFileInfo: {
216 Name: "TranSetFileInfo",
6988a057
JH		 217 Handler: HandleSetFileInfo,
218 },
d005ef04
JH		 219 TranSetUser: {
220 Name: "TranSetUser",
6988a057
JH		 221 Handler: HandleSetUser,
222 },
d005ef04
JH		 223 TranUploadFile: {
224 Name: "TranUploadFile",
6988a057
JH		 225 Handler: HandleUploadFile,
226 },
d005ef04
JH		 227 TranUploadFldr: {
228 Name: "TranUploadFldr",
6988a057
JH		 229 Handler: HandleUploadFolder,
230 },
d005ef04
JH		 231 TranUserBroadcast: {
232 Name: "TranUserBroadcast",
6988a057
JH		 233 Handler: HandleUserBroadcast,
234 },
d005ef04
JH		 235 TranDownloadBanner: {
236 Name: "TranDownloadBanner",
9067f234
JH		 237 Handler: HandleDownloadBanner,
238 },
6988a057
JH		 239}
240
241func HandleChatSend(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 242 if !cc.Authorize(accessSendChat) {
003a743e
JH		 243 res = append(res, cc.NewErrReply(t, "You are not allowed to participate in chat."))
244 return res, err
245 }
246
6988a057 247 // Truncate long usernames
72dd37f1 248 trunc := fmt.Sprintf("%13s", cc.UserName)
d005ef04 249 formattedMsg := fmt.Sprintf("\r%.14s: %s", trunc, t.GetField(FieldData).Data)
6988a057
JH		 250
251 // By holding the option key, Hotline chat allows users to send /me formatted messages like:
252 // *** Halcyon does stuff
d005ef04 253 // This is indicated by the presence of the optional field FieldChatOptions set to a value of 1.
2e43fd4e 254 // Most clients do not send this option for normal chat messages.
d005ef04
JH		 255 if t.GetField(FieldChatOptions).Data != nil && bytes.Equal(t.GetField(FieldChatOptions).Data, []byte{0, 1}) {
256 formattedMsg = fmt.Sprintf("\r*** %s %s", cc.UserName, t.GetField(FieldData).Data)
6988a057
JH		 257 }
258
361928c9
JH		 259 // The ChatID field is used to identify messages as belonging to a private chat.
260 // All clients *except* Frogblast omit this field for public chat, but Frogblast sends a value of 00 00 00 00.
d005ef04 261 chatID := t.GetField(FieldChatID).Data
361928c9 262 if chatID != nil && !bytes.Equal([]byte{0, 0, 0, 0}, chatID) {
6988a057
JH		 263 chatInt := binary.BigEndian.Uint32(chatID)
264 privChat := cc.Server.PrivateChats[chatInt]
265
481631f6
JH		 266 clients := sortedClients(privChat.ClientConn)
267
6988a057 268 // send the message to all connected clients of the private chat
481631f6 269 for _, c := range clients {
6988a057 270 res = append(res, *NewTransaction(
d005ef04 271 TranChatMsg,
6988a057 272 c.ID,
d005ef04
JH		 273 NewField(FieldChatID, chatID),
274 NewField(FieldData, []byte(formattedMsg)),
6988a057
JH		 275 ))
276 }
277 return res, err
278 }
279
280 for _, c := range sortedClients(cc.Server.Clients) {
281 // Filter out clients that do not have the read chat permission
187d6dc5 282 if c.Authorize(accessReadChat) {
d005ef04 283 res = append(res, *NewTransaction(TranChatMsg, c.ID, NewField(FieldData, []byte(formattedMsg))))
6988a057
JH		 284 }
285 }
286
287 return res, err
288}
289
290// HandleSendInstantMsg sends instant message to the user on the current server.
291// Fields used in the request:
33265393 292//
6988a057
JH		 293// 103 User ID
294// 113 Options
295// One of the following values:
296// - User message (myOpt_UserMessage = 1)
297// - Refuse message (myOpt_RefuseMessage = 2)
298// - Refuse chat (myOpt_RefuseChat = 3)
299// - Automatic response (myOpt_AutomaticResponse = 4)"
300// 101 Data Optional
301// 214 Quoting message Optional
302//
aebc4d36 303// Fields used in the reply:
6988a057
JH		 304// None
305func HandleSendInstantMsg(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
69c2fb50
JH		 306 if !cc.Authorize(accessSendPrivMsg) {
307 res = append(res, cc.NewErrReply(t, "You are not allowed to send private messages."))
d0ba21fc 308 return res, errors.New("user is not allowed to send private messages")
69c2fb50
JH		 309 }
310
d005ef04
JH		 311 msg := t.GetField(FieldData)
312 ID := t.GetField(FieldUserID)
6988a057 313
aeec1015 314 reply := NewTransaction(
d005ef04 315 TranServerMsg,
5ae50876 316 &ID.Data,
d005ef04
JH		 317 NewField(FieldData, msg.Data),
318 NewField(FieldUserName, cc.UserName),
319 NewField(FieldUserID, *cc.ID),
320 NewField(FieldOptions, []byte{0, 1}),
6988a057 321 )
6988a057 322
d005ef04 323 // Later versions of Hotline include the original message in the FieldQuotingMsg field so
5ae50876 324 // the receiving client can display both the received message and what it is in reply to
d005ef04
JH		 325 if t.GetField(FieldQuotingMsg).Data != nil {
326 reply.Fields = append(reply.Fields, NewField(FieldQuotingMsg, t.GetField(FieldQuotingMsg).Data))
5ae50876
JH		 327 }
328
d0ba21fc
JH		 329 id, err := byteToInt(ID.Data)
330 if err != nil {
331 return res, errors.New("invalid client ID")
332 }
aeec1015
JH		 333 otherClient, ok := cc.Server.Clients[uint16(id)]
334 if !ok {
335 return res, errors.New("invalid client ID")
6988a057
JH		 336 }
337
38f710ec
JH		 338 // Check if target user has "Refuse private messages" flag
339 flagBitmap := big.NewInt(int64(binary.BigEndian.Uint16(otherClient.Flags)))
1efbb15f 340 if flagBitmap.Bit(UserFlagRefusePM) == 1 {
38f710ec
JH		 341 res = append(res,
342 *NewTransaction(
d005ef04 343 TranServerMsg,
38f710ec 344 cc.ID,
d005ef04
JH		 345 NewField(FieldData, []byte(string(otherClient.UserName)+" does not accept private messages.")),
346 NewField(FieldUserName, otherClient.UserName),
347 NewField(FieldUserID, *otherClient.ID),
348 NewField(FieldOptions, []byte{0, 2}),
38f710ec
JH		 349 ),
350 )
351 } else {
352 res = append(res, *reply)
353 }
354
6988a057 355 // Respond with auto reply if other client has it enabled
aebc4d36 356 if len(otherClient.AutoReply) > 0 {
6988a057
JH		 357 res = append(res,
358 *NewTransaction(
d005ef04 359 TranServerMsg,
6988a057 360 cc.ID,
d005ef04
JH		 361 NewField(FieldData, otherClient.AutoReply),
362 NewField(FieldUserName, otherClient.UserName),
363 NewField(FieldUserID, *otherClient.ID),
364 NewField(FieldOptions, []byte{0, 1}),
6988a057
JH		 365 ),
366 )
367 }
368
369 res = append(res, cc.NewReply(t))
370
371 return res, err
372}
373
374func HandleGetFileInfo(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04
JH		 375 fileName := t.GetField(FieldFileName).Data
376 filePath := t.GetField(FieldFilePath).Data
6988a057 377
7cd900d6
JH		 378 fullFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, fileName)
379 if err != nil {
380 return res, err
381 }
382
383 fw, err := newFileWrapper(cc.Server.FS, fullFilePath, 0)
6988a057
JH		 384 if err != nil {
385 return res, err
386 }
387
2e1aec0f
JH		 388 encodedName, err := txtEncoder.String(fw.name)
389 if err != nil {
390 return res, fmt.Errorf("invalid filepath encoding: %w", err)
391 }
392
4a88189f 393 fields := []Field{
2e1aec0f 394 NewField(FieldFileName, []byte(encodedName)),
d005ef04
JH		 395 NewField(FieldFileTypeString, fw.ffo.FlatFileInformationFork.friendlyType()),
396 NewField(FieldFileCreatorString, fw.ffo.FlatFileInformationFork.friendlyCreator()),
d005ef04
JH		 397 NewField(FieldFileType, fw.ffo.FlatFileInformationFork.TypeSignature),
398 NewField(FieldFileCreateDate, fw.ffo.FlatFileInformationFork.CreateDate),
399 NewField(FieldFileModifyDate, fw.ffo.FlatFileInformationFork.ModifyDate),
4a88189f
JH		 400 }
401
402 // Include the optional FileComment field if there is a comment.
403 if len(fw.ffo.FlatFileInformationFork.Comment) != 0 {
404 fields = append(fields, NewField(FieldFileComment, fw.ffo.FlatFileInformationFork.Comment))
405 }
406
407 // Include the FileSize field for files.
408 if !bytes.Equal(fw.ffo.FlatFileInformationFork.TypeSignature, []byte{0x66, 0x6c, 0x64, 0x72}) {
409 fields = append(fields, NewField(FieldFileSize, fw.totalSize()))
410 }
411
412 res = append(res, cc.NewReply(t, fields...))
6988a057
JH		 413 return res, err
414}
415
416// HandleSetFileInfo updates a file or folder name and/or comment from the Get Info window
6988a057
JH		 417// Fields used in the request:
418// * 201 File name
419// * 202 File path Optional
420// * 211 File new name Optional
421// * 210 File comment Optional
422// Fields used in the reply: None
423func HandleSetFileInfo(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04
JH		 424 fileName := t.GetField(FieldFileName).Data
425 filePath := t.GetField(FieldFilePath).Data
92a7e455
JH		 426
427 fullFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, fileName)
428 if err != nil {
429 return res, err
430 }
431
7cd900d6
JH		 432 fi, err := cc.Server.FS.Stat(fullFilePath)
433 if err != nil {
434 return res, err
435 }
436
437 hlFile, err := newFileWrapper(cc.Server.FS, fullFilePath, 0)
438 if err != nil {
439 return res, err
440 }
d005ef04 441 if t.GetField(FieldFileComment).Data != nil {
7cd900d6
JH		 442 switch mode := fi.Mode(); {
443 case mode.IsDir():
187d6dc5 444 if !cc.Authorize(accessSetFolderComment) {
7cd900d6
JH		 445 res = append(res, cc.NewErrReply(t, "You are not allowed to set comments for folders."))
446 return res, err
447 }
448 case mode.IsRegular():
187d6dc5 449 if !cc.Authorize(accessSetFileComment) {
7cd900d6
JH		 450 res = append(res, cc.NewErrReply(t, "You are not allowed to set comments for files."))
451 return res, err
452 }
453 }
454
d005ef04 455 if err := hlFile.ffo.FlatFileInformationFork.setComment(t.GetField(FieldFileComment).Data); err != nil {
67db911d
JH		 456 return res, err
457 }
7cd900d6
JH		 458 w, err := hlFile.infoForkWriter()
459 if err != nil {
460 return res, err
461 }
462 _, err = w.Write(hlFile.ffo.FlatFileInformationFork.MarshalBinary())
463 if err != nil {
464 return res, err
465 }
466 }
467
d005ef04 468 fullNewFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, t.GetField(FieldFileNewName).Data)
92a7e455
JH		 469 if err != nil {
470 return nil, err
471 }
472
d005ef04 473 fileNewName := t.GetField(FieldFileNewName).Data
6988a057
JH		 474
475 if fileNewName != nil {
6988a057
JH		 476 switch mode := fi.Mode(); {
477 case mode.IsDir():
187d6dc5 478 if !cc.Authorize(accessRenameFolder) {
6988a057
JH		 479 res = append(res, cc.NewErrReply(t, "You are not allowed to rename folders."))
480 return res, err
481 }
7cd900d6
JH		 482 err = os.Rename(fullFilePath, fullNewFilePath)
483 if os.IsNotExist(err) {
484 res = append(res, cc.NewErrReply(t, "Cannot rename folder "+string(fileName)+" because it does not exist or cannot be found."))
485 return res, err
486 }
6988a057 487 case mode.IsRegular():
187d6dc5 488 if !cc.Authorize(accessRenameFile) {
6988a057
JH		 489 res = append(res, cc.NewErrReply(t, "You are not allowed to rename files."))
490 return res, err
491 }
7cd900d6
JH		 492 fileDir, err := readPath(cc.Server.Config.FileRoot, filePath, []byte{})
493 if err != nil {
494 return nil, err
495 }
2e1aec0f
JH		 496 hlFile.name, err = txtDecoder.String(string(fileNewName))
497 if err != nil {
498 return res, fmt.Errorf("invalid filepath encoding: %w", err)
499 }
500
7cd900d6
JH		 501 err = hlFile.move(fileDir)
502 if os.IsNotExist(err) {
503 res = append(res, cc.NewErrReply(t, "Cannot rename file "+string(fileName)+" because it does not exist or cannot be found."))
504 return res, err
505 }
506 if err != nil {
69af8ddb 507 return res, err
7cd900d6 508 }
6988a057
JH		 509 }
510 }
511
512 res = append(res, cc.NewReply(t))
513 return res, err
514}
515
516// HandleDeleteFile deletes a file or folder
517// Fields used in the request:
518// * 201 File name
519// * 202 File path
520// Fields used in the reply: none
521func HandleDeleteFile(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04
JH		 522 fileName := t.GetField(FieldFileName).Data
523 filePath := t.GetField(FieldFilePath).Data
6988a057 524
92a7e455
JH		 525 fullFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, fileName)
526 if err != nil {
527 return res, err
528 }
6988a057 529
7cd900d6
JH		 530 hlFile, err := newFileWrapper(cc.Server.FS, fullFilePath, 0)
531 if err != nil {
532 return res, err
533 }
6988a057 534
7cd900d6 535 fi, err := hlFile.dataFile()
6988a057 536 if err != nil {
92a7e455 537 res = append(res, cc.NewErrReply(t, "Cannot delete file "+string(fileName)+" because it does not exist or cannot be found."))
6988a057
JH		 538 return res, nil
539 }
7cd900d6 540
6988a057
JH		 541 switch mode := fi.Mode(); {
542 case mode.IsDir():
187d6dc5 543 if !cc.Authorize(accessDeleteFolder) {
6988a057
JH		 544 res = append(res, cc.NewErrReply(t, "You are not allowed to delete folders."))
545 return res, err
546 }
547 case mode.IsRegular():
187d6dc5 548 if !cc.Authorize(accessDeleteFile) {
6988a057
JH		 549 res = append(res, cc.NewErrReply(t, "You are not allowed to delete files."))
550 return res, err
551 }
552 }
553
7cd900d6 554 if err := hlFile.delete(); err != nil {
6988a057
JH		 555 return res, err
556 }
557
558 res = append(res, cc.NewReply(t))
559 return res, err
560}
561
562// HandleMoveFile moves files or folders. Note: seemingly not documented
563func HandleMoveFile(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 564 fileName := string(t.GetField(FieldFileName).Data)
7cd900d6 565
d005ef04 566 filePath, err := readPath(cc.Server.Config.FileRoot, t.GetField(FieldFilePath).Data, t.GetField(FieldFileName).Data)
7cd900d6
JH		 567 if err != nil {
568 return res, err
569 }
570
d005ef04 571 fileNewPath, err := readPath(cc.Server.Config.FileRoot, t.GetField(FieldFileNewPath).Data, nil)
7cd900d6
JH		 572 if err != nil {
573 return res, err
574 }
6988a057 575
67db911d 576 cc.logger.Infow("Move file", "src", filePath+"/"+fileName, "dst", fileNewPath+"/"+fileName)
6988a057 577
7cd900d6 578 hlFile, err := newFileWrapper(cc.Server.FS, filePath, 0)
67db911d
JH		 579 if err != nil {
580 return res, err
581 }
7cd900d6
JH		 582
583 fi, err := hlFile.dataFile()
584 if err != nil {
585 res = append(res, cc.NewErrReply(t, "Cannot delete file "+fileName+" because it does not exist or cannot be found."))
586 return res, err
587 }
6988a057
JH		 588 switch mode := fi.Mode(); {
589 case mode.IsDir():
187d6dc5 590 if !cc.Authorize(accessMoveFolder) {
6988a057
JH		 591 res = append(res, cc.NewErrReply(t, "You are not allowed to move folders."))
592 return res, err
593 }
594 case mode.IsRegular():
187d6dc5 595 if !cc.Authorize(accessMoveFile) {
6988a057
JH		 596 res = append(res, cc.NewErrReply(t, "You are not allowed to move files."))
597 return res, err
598 }
599 }
7cd900d6 600 if err := hlFile.move(fileNewPath); err != nil {
6988a057
JH		 601 return res, err
602 }
7cd900d6 603 // TODO: handle other possible errors; e.g. fileWrapper delete fails due to fileWrapper permission issue
6988a057
JH		 604
605 res = append(res, cc.NewReply(t))
606 return res, err
607}
608
609func HandleNewFolder(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 610 if !cc.Authorize(accessCreateFolder) {
d4c152a4
JH		 611 res = append(res, cc.NewErrReply(t, "You are not allowed to create folders."))
612 return res, err
613 }
d005ef04 614 folderName := string(t.GetField(FieldFileName).Data)
00d1ef67
JH		 615
616 folderName = path.Join("/", folderName)
6988a057 617
2e08be58
JH		 618 var subPath string
619
d005ef04
JH		 620 // FieldFilePath is only present for nested paths
621 if t.GetField(FieldFilePath).Data != nil {
72dd37f1 622 var newFp FilePath
d005ef04 623 _, err := newFp.Write(t.GetField(FieldFilePath).Data)
00d1ef67
JH		 624 if err != nil {
625 return nil, err
626 }
2e08be58
JH		 627
628 for _, pathItem := range newFp.Items {
629 subPath = filepath.Join("/", subPath, string(pathItem.Name))
630 }
6988a057 631 }
2e08be58 632 newFolderPath := path.Join(cc.Server.Config.FileRoot, subPath, folderName)
2e1aec0f
JH		 633 newFolderPath, err = txtDecoder.String(newFolderPath)
634 if err != nil {
635 return res, fmt.Errorf("invalid filepath encoding: %w", err)
636 }
6988a057 637
00d1ef67
JH		 638 // TODO: check path and folder name lengths
639
b196a50a 640 if _, err := cc.Server.FS.Stat(newFolderPath); !os.IsNotExist(err) {
00d1ef67
JH		 641 msg := fmt.Sprintf("Cannot create folder \"%s\" because there is already a file or folder with that name.", folderName)
642 return []Transaction{cc.NewErrReply(t, msg)}, nil
643 }
644
b196a50a 645 if err := cc.Server.FS.Mkdir(newFolderPath, 0777); err != nil {
00d1ef67
JH		 646 msg := fmt.Sprintf("Cannot create folder \"%s\" because an error occurred.", folderName)
647 return []Transaction{cc.NewErrReply(t, msg)}, nil
6988a057
JH		 648 }
649
650 res = append(res, cc.NewReply(t))
651 return res, err
652}
653
654func HandleSetUser(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 655 if !cc.Authorize(accessModifyUser) {
d4c152a4
JH		 656 res = append(res, cc.NewErrReply(t, "You are not allowed to modify accounts."))
657 return res, err
658 }
659
76d0c1f6 660 login := decodeString(t.GetField(FieldUserLogin).Data)
d005ef04 661 userName := string(t.GetField(FieldUserName).Data)
6988a057 662
d005ef04 663 newAccessLvl := t.GetField(FieldUserAccess).Data
6988a057
JH		 664
665 account := cc.Server.Accounts[login]
6988a057 666 account.Name = userName
187d6dc5 667 copy(account.Access[:], newAccessLvl)
6988a057
JH		 668
669 // If the password field is cleared in the Hotline edit user UI, the SetUser transaction does
d005ef04
JH		 670 // not include FieldUserPassword
671 if t.GetField(FieldUserPassword).Data == nil {
6988a057
JH		 672 account.Password = hashAndSalt([]byte(""))
673 }
d005ef04
JH		 674 if len(t.GetField(FieldUserPassword).Data) > 1 {
675 account.Password = hashAndSalt(t.GetField(FieldUserPassword).Data)
6988a057
JH		 676 }
677
6988a057
JH		 678 out, err := yaml.Marshal(&account)
679 if err != nil {
680 return res, err
681 }
31658ca1 682 if err := os.WriteFile(filepath.Join(cc.Server.ConfigDir, "Users", login+".yaml"), out, 0666); err != nil {
6988a057
JH		 683 return res, err
684 }
685
686 // Notify connected clients logged in as the user of the new access level
687 for _, c := range cc.Server.Clients {
688 if c.Account.Login == login {
689 // Note: comment out these two lines to test server-side deny messages
d005ef04 690 newT := NewTransaction(TranUserAccess, c.ID, NewField(FieldUserAccess, newAccessLvl))
6988a057
JH		 691 res = append(res, *newT)
692
a7216f67 693 flagBitmap := big.NewInt(int64(binary.BigEndian.Uint16(c.Flags)))
43754e31 694 if c.Authorize(accessDisconUser) {
b1658a46 695 flagBitmap.SetBit(flagBitmap, UserFlagAdmin, 1)
6988a057 696 } else {
b1658a46 697 flagBitmap.SetBit(flagBitmap, UserFlagAdmin, 0)
6988a057 698 }
a7216f67 699 binary.BigEndian.PutUint16(c.Flags, uint16(flagBitmap.Int64()))
6988a057
JH		 700
701 c.Account.Access = account.Access
702
703 cc.sendAll(
d005ef04
JH		 704 TranNotifyChangeUser,
705 NewField(FieldUserID, *c.ID),
706 NewField(FieldUserFlags, c.Flags),
707 NewField(FieldUserName, c.UserName),
708 NewField(FieldUserIconID, c.Icon),
6988a057
JH		 709 )
710 }
711 }
712
6988a057
JH		 713 res = append(res, cc.NewReply(t))
714 return res, err
715}
716
717func HandleGetUser(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 718 if !cc.Authorize(accessOpenUser) {
003a743e
JH		 719 res = append(res, cc.NewErrReply(t, "You are not allowed to view accounts."))
720 return res, err
721 }
722
d005ef04 723 account := cc.Server.Accounts[string(t.GetField(FieldUserLogin).Data)]
6988a057 724 if account == nil {
481631f6 725 res = append(res, cc.NewErrReply(t, "Account does not exist."))
6988a057
JH		 726 return res, err
727 }
728
729 res = append(res, cc.NewReply(t,
d005ef04 730 NewField(FieldUserName, []byte(account.Name)),
76d0c1f6 731 NewField(FieldUserLogin, encodeString(t.GetField(FieldUserLogin).Data)),
d005ef04
JH		 732 NewField(FieldUserPassword, []byte(account.Password)),
733 NewField(FieldUserAccess, account.Access[:]),
6988a057
JH		 734 ))
735 return res, err
736}
737
738func HandleListUsers(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 739 if !cc.Authorize(accessOpenUser) {
481631f6
JH		 740 res = append(res, cc.NewErrReply(t, "You are not allowed to view accounts."))
741 return res, err
742 }
743
6988a057 744 var userFields []Field
6988a057 745 for _, acc := range cc.Server.Accounts {
926c7f55
JH		 746 b := make([]byte, 0, 100)
747 n, err := acc.Read(b)
748 if err != nil {
749 return res, err
750 }
751
d005ef04 752 userFields = append(userFields, NewField(FieldData, b[:n]))
6988a057
JH		 753 }
754
755 res = append(res, cc.NewReply(t, userFields...))
756 return res, err
757}
758
d2810ae9
JH		 759// HandleUpdateUser is used by the v1.5+ multi-user editor to perform account editing for multiple users at a time.
760// An update can be a mix of these actions:
761// * Create user
762// * Delete user
763// * Modify user (including renaming the account login)
764//
765// The Transaction sent by the client includes one data field per user that was modified. This data field in turn
766// contains another data field encoded in its payload with a varying number of sub fields depending on which action is
767// performed. This seems to be the only place in the Hotline protocol where a data field contains another data field.
768func HandleUpdateUser(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
769 for _, field := range t.Fields {
770 subFields, err := ReadFields(field.Data[0:2], field.Data[2:])
771 if err != nil {
772 return res, err
773 }
774
775 if len(subFields) == 1 {
76d0c1f6 776 login := decodeString(getField(FieldData, &subFields).Data)
67db911d 777 cc.logger.Infow("DeleteUser", "login", login)
d2810ae9 778
187d6dc5 779 if !cc.Authorize(accessDeleteUser) {
d2810ae9
JH		 780 res = append(res, cc.NewErrReply(t, "You are not allowed to delete accounts."))
781 return res, err
782 }
783
784 if err := cc.Server.DeleteUser(login); err != nil {
785 return res, err
786 }
787 continue
788 }
789
76d0c1f6 790 login := decodeString(getField(FieldUserLogin, &subFields).Data)
d2810ae9 791
7cd900d6 792 // check if the login dataFile; if so, we know we are updating an existing user
d2810ae9 793 if acc, ok := cc.Server.Accounts[login]; ok {
67db911d 794 cc.logger.Infow("UpdateUser", "login", login)
d2810ae9 795
b33477b0 796 // account exists, so this is an update action
187d6dc5 797 if !cc.Authorize(accessModifyUser) {
d2810ae9
JH		 798 res = append(res, cc.NewErrReply(t, "You are not allowed to modify accounts."))
799 return res, err
800 }
801
b33477b0
JH		 802 // This part is a bit tricky. There are three possibilities:
803 // 1) The transaction is intended to update the password.
804 // In this case, FieldUserPassword is sent with the new password.
805 // 2) The transaction is intended to remove the password.
806 // In this case, FieldUserPassword is not sent.
807 // 3) The transaction updates the users access bits, but not the password.
808 // In this case, FieldUserPassword is sent with zero as the only byte..
d005ef04
JH		 809 if getField(FieldUserPassword, &subFields) != nil {
810 newPass := getField(FieldUserPassword, &subFields).Data
b33477b0
JH		 811 if !bytes.Equal([]byte{0}, newPass) {
812 acc.Password = hashAndSalt(newPass)
813 }
d2810ae9
JH		 814 } else {
815 acc.Password = hashAndSalt([]byte(""))
816 }
817
d005ef04
JH		 818 if getField(FieldUserAccess, &subFields) != nil {
819 copy(acc.Access[:], getField(FieldUserAccess, &subFields).Data)
d2810ae9
JH		 820 }
821
822 err = cc.Server.UpdateUser(
76d0c1f6
JH		 823 decodeString(getField(FieldData, &subFields).Data),
824 decodeString(getField(FieldUserLogin, &subFields).Data),
d005ef04 825 string(getField(FieldUserName, &subFields).Data),
d2810ae9 826 acc.Password,
187d6dc5 827 acc.Access,
d2810ae9
JH		 828 )
829 if err != nil {
830 return res, err
831 }
832 } else {
67db911d 833 cc.logger.Infow("CreateUser", "login", login)
d2810ae9 834
187d6dc5 835 if !cc.Authorize(accessCreateUser) {
d2810ae9
JH		 836 res = append(res, cc.NewErrReply(t, "You are not allowed to create new accounts."))
837 return res, err
838 }
839
187d6dc5 840 newAccess := accessBitmap{}
aeb97482 841 copy(newAccess[:], getField(FieldUserAccess, &subFields).Data)
187d6dc5 842
ecb1fcd9
JH		 843 // Prevent account from creating new account with greater permission
844 for i := 0; i < 64; i++ {
845 if newAccess.IsSet(i) {
846 if !cc.Authorize(i) {
847 return append(res, cc.NewErrReply(t, "Cannot create account with more access than yourself.")), err
848 }
849 }
850 }
851
d005ef04 852 err := cc.Server.NewUser(login, string(getField(FieldUserName, &subFields).Data), string(getField(FieldUserPassword, &subFields).Data), newAccess)
d2810ae9
JH		 853 if err != nil {
854 return []Transaction{}, err
855 }
856 }
857 }
858
859 res = append(res, cc.NewReply(t))
860 return res, err
861}
862
6988a057
JH		 863// HandleNewUser creates a new user account
864func HandleNewUser(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 865 if !cc.Authorize(accessCreateUser) {
481631f6
JH		 866 res = append(res, cc.NewErrReply(t, "You are not allowed to create new accounts."))
867 return res, err
868 }
869
76d0c1f6 870 login := decodeString(t.GetField(FieldUserLogin).Data)
6988a057 871
7cd900d6 872 // If the account already dataFile, reply with an error
6988a057
JH		 873 if _, ok := cc.Server.Accounts[login]; ok {
874 res = append(res, cc.NewErrReply(t, "Cannot create account "+login+" because there is already an account with that login."))
875 return res, err
876 }
877
187d6dc5 878 newAccess := accessBitmap{}
aeb97482 879 copy(newAccess[:], t.GetField(FieldUserAccess).Data)
187d6dc5 880
ecb1fcd9
JH		 881 // Prevent account from creating new account with greater permission
882 for i := 0; i < 64; i++ {
883 if newAccess.IsSet(i) {
884 if !cc.Authorize(i) {
885 res = append(res, cc.NewErrReply(t, "Cannot create account with more access than yourself."))
886 return res, err
887 }
888 }
889 }
890
d005ef04 891 if err := cc.Server.NewUser(login, string(t.GetField(FieldUserName).Data), string(t.GetField(FieldUserPassword).Data), newAccess); err != nil {
6988a057
JH		 892 return []Transaction{}, err
893 }
894
895 res = append(res, cc.NewReply(t))
896 return res, err
897}
898
899func HandleDeleteUser(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 900 if !cc.Authorize(accessDeleteUser) {
003a743e
JH		 901 res = append(res, cc.NewErrReply(t, "You are not allowed to delete accounts."))
902 return res, err
903 }
904
6988a057 905 // TODO: Handle case where account doesn't exist; e.g. delete race condition
76d0c1f6 906 login := decodeString(t.GetField(FieldUserLogin).Data)
6988a057
JH		 907
908 if err := cc.Server.DeleteUser(login); err != nil {
909 return res, err
910 }
911
912 res = append(res, cc.NewReply(t))
913 return res, err
914}
915
916// HandleUserBroadcast sends an Administrator Message to all connected clients of the server
917func HandleUserBroadcast(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 918 if !cc.Authorize(accessBroadcast) {
d4c152a4
JH		 919 res = append(res, cc.NewErrReply(t, "You are not allowed to send broadcast messages."))
920 return res, err
921 }
922
6988a057 923 cc.sendAll(
d005ef04
JH		 924 TranServerMsg,
925 NewField(FieldData, t.GetField(TranGetMsgs).Data),
926 NewField(FieldChatOptions, []byte{0}),
6988a057
JH		 927 )
928
929 res = append(res, cc.NewReply(t))
930 return res, err
931}
932
df1ade54
JH		 933// HandleGetClientInfoText returns user information for the specific user.
934//
935// Fields used in the request:
936// 103 User ID
937//
938// Fields used in the reply:
939// 102 User name
940// 101 Data User info text string
941func HandleGetClientInfoText(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 942 if !cc.Authorize(accessGetClientInfo) {
df1ade54 943 res = append(res, cc.NewErrReply(t, "You are not allowed to get client info."))
d4c152a4
JH		 944 return res, err
945 }
946
d005ef04 947 clientID, _ := byteToInt(t.GetField(FieldUserID).Data)
6988a057
JH		 948
949 clientConn := cc.Server.Clients[uint16(clientID)]
950 if clientConn == nil {
df1ade54 951 return append(res, cc.NewErrReply(t, "User not found.")), err
6988a057
JH		 952 }
953
6988a057 954 res = append(res, cc.NewReply(t,
d005ef04
JH		 955 NewField(FieldData, []byte(clientConn.String())),
956 NewField(FieldUserName, clientConn.UserName),
6988a057
JH		 957 ))
958 return res, err
959}
960
961func HandleGetUserNameList(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
962 res = append(res, cc.NewReply(t, cc.Server.connectedUsers()...))
963
964 return res, err
965}
966
6988a057 967func HandleTranAgreed(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 968 if t.GetField(FieldUserName).Data != nil {
ea5d8c51 969 if cc.Authorize(accessAnyName) {
d005ef04 970 cc.UserName = t.GetField(FieldUserName).Data
ea5d8c51
JH		 971 } else {
972 cc.UserName = []byte(cc.Account.Name)
973 }
974 }
975
d005ef04 976 cc.Icon = t.GetField(FieldUserIconID).Data
6988a057 977
67db911d 978 cc.logger = cc.logger.With("name", string(cc.UserName))
0db54aa7 979 cc.logger.Infow("Login successful", "clientVersion", fmt.Sprintf("%v", func() int { i, _ := byteToInt(cc.Version); return i }()))
67db911d 980
d005ef04 981 options := t.GetField(FieldOptions).Data
6988a057
JH		 982 optBitmap := big.NewInt(int64(binary.BigEndian.Uint16(options)))
983
a7216f67 984 flagBitmap := big.NewInt(int64(binary.BigEndian.Uint16(cc.Flags)))
6988a057
JH		 985
986 // Check refuse private PM option
987 if optBitmap.Bit(refusePM) == 1 {
b1658a46 988 flagBitmap.SetBit(flagBitmap, UserFlagRefusePM, 1)
a7216f67 989 binary.BigEndian.PutUint16(cc.Flags, uint16(flagBitmap.Int64()))
6988a057
JH		 990 }
991
992 // Check refuse private chat option
993 if optBitmap.Bit(refuseChat) == 1 {
b1658a46 994 flagBitmap.SetBit(flagBitmap, UserFlagRefusePChat, 1)
a7216f67 995 binary.BigEndian.PutUint16(cc.Flags, uint16(flagBitmap.Int64()))
6988a057
JH		 996 }
997
998 // Check auto response
999 if optBitmap.Bit(autoResponse) == 1 {
d005ef04 1000 cc.AutoReply = t.GetField(FieldAutomaticResponse).Data
6988a057 1001 } else {
aebc4d36 1002 cc.AutoReply = []byte{}
6988a057
JH		 1003 }
1004
ea5d8c51 1005 trans := cc.notifyOthers(
003a743e 1006 *NewTransaction(
d005ef04
JH		 1007 TranNotifyChangeUser, nil,
1008 NewField(FieldUserName, cc.UserName),
1009 NewField(FieldUserID, *cc.ID),
1010 NewField(FieldUserIconID, cc.Icon),
1011 NewField(FieldUserFlags, cc.Flags),
003a743e 1012 ),
ea5d8c51
JH		 1013 )
1014 res = append(res, trans...)
6988a057 1015
9067f234 1016 if cc.Server.Config.BannerFile != "" {
d005ef04 1017 res = append(res, *NewTransaction(TranServerBanner, cc.ID, NewField(FieldBannerType, []byte("JPEG"))))
9067f234
JH		 1018 }
1019
6988a057
JH		 1020 res = append(res, cc.NewReply(t))
1021
1022 return res, err
1023}
1024
6988a057
JH		 1025// HandleTranOldPostNews updates the flat news
1026// Fields used in this request:
1027// 101 Data
1028func HandleTranOldPostNews(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1029 if !cc.Authorize(accessNewsPostArt) {
d4c152a4
JH		 1030 res = append(res, cc.NewErrReply(t, "You are not allowed to post news."))
1031 return res, err
1032 }
1033
6988a057
JH		 1034 cc.Server.flatNewsMux.Lock()
1035 defer cc.Server.flatNewsMux.Unlock()
1036
1037 newsDateTemplate := defaultNewsDateFormat
1038 if cc.Server.Config.NewsDateFormat != "" {
1039 newsDateTemplate = cc.Server.Config.NewsDateFormat
1040 }
1041
1042 newsTemplate := defaultNewsTemplate
1043 if cc.Server.Config.NewsDelimiter != "" {
1044 newsTemplate = cc.Server.Config.NewsDelimiter
1045 }
1046
d005ef04 1047 newsPost := fmt.Sprintf(newsTemplate+"\r", cc.UserName, time.Now().Format(newsDateTemplate), t.GetField(FieldData).Data)
c8bfd606 1048 newsPost = strings.ReplaceAll(newsPost, "\n", "\r")
6988a057 1049
4d64a5b9
JH		 1050 // update news in memory
1051 cc.Server.FlatNews = append([]byte(newsPost), cc.Server.FlatNews...)
1052
6988a057 1053 // update news on disk
8a1512f9 1054 if err := cc.Server.FS.WriteFile(filepath.Join(cc.Server.ConfigDir, "MessageBoard.txt"), cc.Server.FlatNews, 0644); err != nil {
6988a057
JH		 1055 return res, err
1056 }
1057
1058 // Notify all clients of updated news
1059 cc.sendAll(
d005ef04
JH		 1060 TranNewMsg,
1061 NewField(FieldData, []byte(newsPost)),
6988a057
JH		 1062 )
1063
1064 res = append(res, cc.NewReply(t))
1065 return res, err
1066}
1067
1068func HandleDisconnectUser(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1069 if !cc.Authorize(accessDisconUser) {
d4c152a4
JH		 1070 res = append(res, cc.NewErrReply(t, "You are not allowed to disconnect users."))
1071 return res, err
1072 }
1073
d005ef04 1074 clientConn := cc.Server.Clients[binary.BigEndian.Uint16(t.GetField(FieldUserID).Data)]
6988a057 1075
187d6dc5 1076 if clientConn.Authorize(accessCannotBeDiscon) {
6988a057
JH		 1077 res = append(res, cc.NewErrReply(t, clientConn.Account.Login+" is not allowed to be disconnected."))
1078 return res, err
1079 }
1080
d005ef04 1081 // If FieldOptions is set, then the client IP is banned in addition to disconnected.
46862572
JH		 1082 // 00 01 = temporary ban
1083 // 00 02 = permanent ban
d005ef04
JH		 1084 if t.GetField(FieldOptions).Data != nil {
1085 switch t.GetField(FieldOptions).Data[1] {
46862572
JH		 1086 case 1:
1087 // send message: "You are temporarily banned on this server"
1088 cc.logger.Infow("Disconnect & temporarily ban " + string(clientConn.UserName))
1089
1090 res = append(res, *NewTransaction(
d005ef04 1091 TranServerMsg,
46862572 1092 clientConn.ID,
d005ef04
JH		 1093 NewField(FieldData, []byte("You are temporarily banned on this server")),
1094 NewField(FieldChatOptions, []byte{0, 0}),
46862572
JH		 1095 ))
1096
1097 banUntil := time.Now().Add(tempBanDuration)
1098 cc.Server.banList[strings.Split(clientConn.RemoteAddr, ":")[0]] = &banUntil
46862572
JH		 1099 case 2:
1100 // send message: "You are permanently banned on this server"
1101 cc.logger.Infow("Disconnect & ban " + string(clientConn.UserName))
1102
1103 res = append(res, *NewTransaction(
d005ef04 1104 TranServerMsg,
46862572 1105 clientConn.ID,
d005ef04
JH		 1106 NewField(FieldData, []byte("You are permanently banned on this server")),
1107 NewField(FieldChatOptions, []byte{0, 0}),
46862572
JH		 1108 ))
1109
1110 cc.Server.banList[strings.Split(clientConn.RemoteAddr, ":")[0]] = nil
b1658a46
JH		 1111 }
1112
1113 err := cc.Server.writeBanList()
1114 if err != nil {
1115 return res, err
46862572 1116 }
6988a057
JH		 1117 }
1118
46862572
JH		 1119 // TODO: remove this awful hack
1120 go func() {
1121 time.Sleep(1 * time.Second)
1122 clientConn.Disconnect()
1123 }()
1124
1125 return append(res, cc.NewReply(t)), err
6988a057
JH		 1126}
1127
d4c152a4
JH		 1128// HandleGetNewsCatNameList returns a list of news categories for a path
1129// Fields used in the request:
1130// 325 News path (Optional)
6988a057 1131func HandleGetNewsCatNameList(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1132 if !cc.Authorize(accessNewsReadArt) {
d4c152a4
JH		 1133 res = append(res, cc.NewErrReply(t, "You are not allowed to read news."))
1134 return res, err
1135 }
6988a057 1136
d005ef04 1137 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
6988a057
JH		 1138 cats := cc.Server.GetNewsCatByPath(pathStrs)
1139
1140 // To store the keys in slice in sorted order
1141 keys := make([]string, len(cats))
1142 i := 0
1143 for k := range cats {
1144 keys[i] = k
1145 i++
1146 }
1147 sort.Strings(keys)
1148
1149 var fieldData []Field
1150 for _, k := range keys {
1151 cat := cats[k]
72dd37f1 1152 b, _ := cat.MarshalBinary()
6988a057 1153 fieldData = append(fieldData, NewField(
d005ef04 1154 FieldNewsCatListData15,
72dd37f1 1155 b,
6988a057
JH		 1156 ))
1157 }
1158
1159 res = append(res, cc.NewReply(t, fieldData...))
1160 return res, err
1161}
1162
1163func HandleNewNewsCat(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1164 if !cc.Authorize(accessNewsCreateCat) {
d4c152a4
JH		 1165 res = append(res, cc.NewErrReply(t, "You are not allowed to create news categories."))
1166 return res, err
1167 }
1168
d005ef04
JH		 1169 name := string(t.GetField(FieldNewsCatName).Data)
1170 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
6988a057
JH		 1171
1172 cats := cc.Server.GetNewsCatByPath(pathStrs)
1173 cats[name] = NewsCategoryListData15{
1174 Name: name,
1175 Type: []byte{0, 3},
1176 Articles: map[uint32]*NewsArtData{},
1177 SubCats: make(map[string]NewsCategoryListData15),
1178 }
1179
1180 if err := cc.Server.writeThreadedNews(); err != nil {
1181 return res, err
1182 }
1183 res = append(res, cc.NewReply(t))
1184 return res, err
1185}
1186
d4c152a4
JH		 1187// Fields used in the request:
1188// 322 News category name
1189// 325 News path
6988a057 1190func HandleNewNewsFldr(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1191 if !cc.Authorize(accessNewsCreateFldr) {
d4c152a4
JH		 1192 res = append(res, cc.NewErrReply(t, "You are not allowed to create news folders."))
1193 return res, err
1194 }
1195
d005ef04
JH		 1196 name := string(t.GetField(FieldFileName).Data)
1197 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
6988a057 1198
67db911d 1199 cc.logger.Infof("Creating new news folder %s", name)
6988a057
JH		 1200
1201 cats := cc.Server.GetNewsCatByPath(pathStrs)
1202 cats[name] = NewsCategoryListData15{
1203 Name: name,
1204 Type: []byte{0, 2},
1205 Articles: map[uint32]*NewsArtData{},
1206 SubCats: make(map[string]NewsCategoryListData15),
1207 }
1208 if err := cc.Server.writeThreadedNews(); err != nil {
1209 return res, err
1210 }
1211 res = append(res, cc.NewReply(t))
1212 return res, err
1213}
1214
33265393
JH		 1215// HandleGetNewsArtData gets the list of article names at the specified news path.
1216
6988a057
JH		 1217// Fields used in the request:
1218// 325 News path Optional
33265393
JH		 1219
1220// Fields used in the reply:
6988a057
JH		 1221// 321 News article list data Optional
1222func HandleGetNewsArtNameList(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1223 if !cc.Authorize(accessNewsReadArt) {
d4c152a4
JH		 1224 res = append(res, cc.NewErrReply(t, "You are not allowed to read news."))
1225 return res, err
1226 }
d005ef04 1227 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
6988a057
JH		 1228
1229 var cat NewsCategoryListData15
1230 cats := cc.Server.ThreadedNews.Categories
1231
003a743e
JH		 1232 for _, fp := range pathStrs {
1233 cat = cats[fp]
1234 cats = cats[fp].SubCats
6988a057
JH		 1235 }
1236
1237 nald := cat.GetNewsArtListData()
1238
d005ef04 1239 res = append(res, cc.NewReply(t, NewField(FieldNewsArtListData, nald.Payload())))
6988a057
JH		 1240 return res, err
1241}
1242
33265393
JH		 1243// HandleGetNewsArtData requests information about the specific news article.
1244// Fields used in the request:
1245//
1246// Request fields
1247// 325 News path
1248// 326 News article ID
1249// 327 News article data flavor
1250//
1251// Fields used in the reply:
1252// 328 News article title
1253// 329 News article poster
1254// 330 News article date
1255// 331 Previous article ID
1256// 332 Next article ID
1257// 335 Parent article ID
1258// 336 First child article ID
1259// 327 News article data flavor "Should be “text/plain”
1260// 333 News article data Optional (if data flavor is “text/plain”)
6988a057 1261func HandleGetNewsArtData(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1262 if !cc.Authorize(accessNewsReadArt) {
d4c152a4
JH		 1263 res = append(res, cc.NewErrReply(t, "You are not allowed to read news."))
1264 return res, err
1265 }
1266
6988a057
JH		 1267 var cat NewsCategoryListData15
1268 cats := cc.Server.ThreadedNews.Categories
1269
d005ef04 1270 for _, fp := range ReadNewsPath(t.GetField(FieldNewsPath).Data) {
003a743e
JH		 1271 cat = cats[fp]
1272 cats = cats[fp].SubCats
6988a057 1273 }
6988a057 1274
33265393
JH		 1275 // The official Hotline clients will send the article ID as 2 bytes if possible, but
1276 // some third party clients such as Frogblast and Heildrun will always send 4 bytes
d005ef04 1277 convertedID, err := byteToInt(t.GetField(FieldNewsArtID).Data)
33265393
JH		 1278 if err != nil {
1279 return res, err
1280 }
6988a057 1281
33265393 1282 art := cat.Articles[uint32(convertedID)]
6988a057
JH		 1283 if art == nil {
1284 res = append(res, cc.NewReply(t))
1285 return res, err
1286 }
1287
6988a057 1288 res = append(res, cc.NewReply(t,
d005ef04
JH		 1289 NewField(FieldNewsArtTitle, []byte(art.Title)),
1290 NewField(FieldNewsArtPoster, []byte(art.Poster)),
1291 NewField(FieldNewsArtDate, art.Date),
1292 NewField(FieldNewsArtPrevArt, art.PrevArt),
1293 NewField(FieldNewsArtNextArt, art.NextArt),
1294 NewField(FieldNewsArtParentArt, art.ParentArt),
1295 NewField(FieldNewsArt1stChildArt, art.FirstChildArt),
1296 NewField(FieldNewsArtDataFlav, []byte("text/plain")),
1297 NewField(FieldNewsArtData, []byte(art.Data)),
6988a057
JH		 1298 ))
1299 return res, err
1300}
1301
8eb43f95
JH		 1302// HandleDelNewsItem deletes an existing threaded news folder or category from the server.
1303// Fields used in the request:
1304// 325 News path
1305// Fields used in the reply:
1306// None
6988a057 1307func HandleDelNewsItem(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 1308 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
6988a057 1309
6988a057 1310 cats := cc.Server.ThreadedNews.Categories
6988a057
JH		 1311 delName := pathStrs[len(pathStrs)-1]
1312 if len(pathStrs) > 1 {
7e2e07da
JH		 1313 for _, fp := range pathStrs[0 : len(pathStrs)-1] {
1314 cats = cats[fp].SubCats
6988a057
JH		 1315 }
1316 }
1317
043c00da 1318 if bytes.Equal(cats[delName].Type, []byte{0, 3}) {
8eb43f95
JH		 1319 if !cc.Authorize(accessNewsDeleteCat) {
1320 return append(res, cc.NewErrReply(t, "You are not allowed to delete news categories.")), nil
1321 }
1322 } else {
1323 if !cc.Authorize(accessNewsDeleteFldr) {
1324 return append(res, cc.NewErrReply(t, "You are not allowed to delete news folders.")), nil
1325 }
1326 }
1327
6988a057
JH		 1328 delete(cats, delName)
1329
8eb43f95 1330 if err := cc.Server.writeThreadedNews(); err != nil {
6988a057
JH		 1331 return res, err
1332 }
1333
8eb43f95 1334 return append(res, cc.NewReply(t)), nil
6988a057
JH		 1335}
1336
1337func HandleDelNewsArt(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1338 if !cc.Authorize(accessNewsDeleteArt) {
d4c152a4
JH		 1339 res = append(res, cc.NewErrReply(t, "You are not allowed to delete news articles."))
1340 return res, err
1341 }
1342
6988a057
JH		 1343 // Request Fields
1344 // 325 News path
1345 // 326 News article ID
1346 // 337 News article – recursive delete Delete child articles (1) or not (0)
d005ef04
JH		 1347 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
1348 ID, err := byteToInt(t.GetField(FieldNewsArtID).Data)
5890e1d2
JH		 1349 if err != nil {
1350 return res, err
1351 }
6988a057
JH		 1352
1353 // TODO: Delete recursive
1354 cats := cc.Server.GetNewsCatByPath(pathStrs[:len(pathStrs)-1])
1355
1356 catName := pathStrs[len(pathStrs)-1]
1357 cat := cats[catName]
1358
1359 delete(cat.Articles, uint32(ID))
1360
1361 cats[catName] = cat
1362 if err := cc.Server.writeThreadedNews(); err != nil {
1363 return res, err
1364 }
1365
1366 res = append(res, cc.NewReply(t))
1367 return res, err
1368}
1369
d4c152a4
JH		 1370// Request fields
1371// 325 News path
1372// 326 News article ID ID of the parent article?
1373// 328 News article title
1374// 334 News article flags
1375// 327 News article data flavor Currently “text/plain”
1376// 333 News article data
6988a057 1377func HandlePostNewsArt(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1378 if !cc.Authorize(accessNewsPostArt) {
d4c152a4
JH		 1379 res = append(res, cc.NewErrReply(t, "You are not allowed to post news articles."))
1380 return res, err
1381 }
6988a057 1382
d005ef04 1383 pathStrs := ReadNewsPath(t.GetField(FieldNewsPath).Data)
6988a057
JH		 1384 cats := cc.Server.GetNewsCatByPath(pathStrs[:len(pathStrs)-1])
1385
1386 catName := pathStrs[len(pathStrs)-1]
1387 cat := cats[catName]
1388
d005ef04 1389 artID, err := byteToInt(t.GetField(FieldNewsArtID).Data)
5890e1d2
JH		 1390 if err != nil {
1391 return res, err
1392 }
1393 convertedArtID := uint32(artID)
1394 bs := make([]byte, 4)
f808efcd 1395 binary.BigEndian.PutUint32(bs, convertedArtID)
5890e1d2 1396
6988a057 1397 newArt := NewsArtData{
d005ef04 1398 Title: string(t.GetField(FieldNewsArtTitle).Data),
72dd37f1 1399 Poster: string(cc.UserName),
3c9b1dcd 1400 Date: toHotlineTime(time.Now()),
6988a057
JH		 1401 PrevArt: []byte{0, 0, 0, 0},
1402 NextArt: []byte{0, 0, 0, 0},
5890e1d2 1403 ParentArt: bs,
6988a057
JH		 1404 FirstChildArt: []byte{0, 0, 0, 0},
1405 DataFlav: []byte("text/plain"),
d005ef04 1406 Data: string(t.GetField(FieldNewsArtData).Data),
6988a057
JH		 1407 }
1408
1409 var keys []int
1410 for k := range cat.Articles {
1411 keys = append(keys, int(k))
1412 }
1413
1414 nextID := uint32(1)
1415 if len(keys) > 0 {
1416 sort.Ints(keys)
1417 prevID := uint32(keys[len(keys)-1])
1418 nextID = prevID + 1
1419
1420 binary.BigEndian.PutUint32(newArt.PrevArt, prevID)
1421
1422 // Set next article ID
1423 binary.BigEndian.PutUint32(cat.Articles[prevID].NextArt, nextID)
1424 }
1425
1426 // Update parent article with first child reply
5890e1d2 1427 parentID := convertedArtID
6988a057 1428 if parentID != 0 {
5890e1d2 1429 parentArt := cat.Articles[parentID]
6988a057
JH		 1430
1431 if bytes.Equal(parentArt.FirstChildArt, []byte{0, 0, 0, 0}) {
1432 binary.BigEndian.PutUint32(parentArt.FirstChildArt, nextID)
1433 }
1434 }
1435
1436 cat.Articles[nextID] = &newArt
1437
1438 cats[catName] = cat
1439 if err := cc.Server.writeThreadedNews(); err != nil {
1440 return res, err
1441 }
1442
1443 res = append(res, cc.NewReply(t))
1444 return res, err
1445}
1446
1447// HandleGetMsgs returns the flat news data
1448func HandleGetMsgs(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1449 if !cc.Authorize(accessNewsReadArt) {
481631f6
JH		 1450 res = append(res, cc.NewErrReply(t, "You are not allowed to read news."))
1451 return res, err
1452 }
1453
d005ef04 1454 res = append(res, cc.NewReply(t, NewField(FieldData, cc.Server.FlatNews)))
6988a057
JH		 1455
1456 return res, err
1457}
1458
1459func HandleDownloadFile(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1460 if !cc.Authorize(accessDownloadFile) {
481631f6
JH		 1461 res = append(res, cc.NewErrReply(t, "You are not allowed to download files."))
1462 return res, err
1463 }
1464
d005ef04
JH		 1465 fileName := t.GetField(FieldFileName).Data
1466 filePath := t.GetField(FieldFilePath).Data
1467 resumeData := t.GetField(FieldFileResumeData).Data
16a4ad70
JH		 1468
1469 var dataOffset int64
1470 var frd FileResumeData
1471 if resumeData != nil {
d005ef04 1472 if err := frd.UnmarshalBinary(t.GetField(FieldFileResumeData).Data); err != nil {
16a4ad70
JH		 1473 return res, err
1474 }
7cd900d6 1475 // TODO: handle rsrc fork offset
16a4ad70
JH		 1476 dataOffset = int64(binary.BigEndian.Uint32(frd.ForkInfoList[0].DataSize[:]))
1477 }
1478
7cd900d6 1479 fullFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, fileName)
92a7e455
JH		 1480 if err != nil {
1481 return res, err
1482 }
1483
7cd900d6 1484 hlFile, err := newFileWrapper(cc.Server.FS, fullFilePath, dataOffset)
6988a057
JH		 1485 if err != nil {
1486 return res, err
1487 }
1488
df1ade54 1489 xferSize := hlFile.ffo.TransferSize(0)
6988a057 1490
df1ade54 1491 ft := cc.newFileTransfer(FileDownload, fileName, filePath, xferSize)
6988a057 1492
7cd900d6 1493 // TODO: refactor to remove this
16a4ad70
JH		 1494 if resumeData != nil {
1495 var frd FileResumeData
d005ef04 1496 if err := frd.UnmarshalBinary(t.GetField(FieldFileResumeData).Data); err != nil {
d4c152a4
JH		 1497 return res, err
1498 }
16a4ad70
JH		 1499 ft.fileResumeData = &frd
1500 }
1501
d1cd6664
JH		 1502 // Optional field for when a HL v1.5+ client requests file preview
1503 // Used only for TEXT, JPEG, GIFF, BMP or PICT files
1504 // The value will always be 2
d005ef04
JH		 1505 if t.GetField(FieldFileTransferOptions).Data != nil {
1506 ft.options = t.GetField(FieldFileTransferOptions).Data
7cd900d6 1507 xferSize = hlFile.ffo.FlatFileDataForkHeader.DataSize[:]
d1cd6664
JH		 1508 }
1509
6988a057 1510 res = append(res, cc.NewReply(t,
d005ef04
JH		 1511 NewField(FieldRefNum, ft.refNum[:]),
1512 NewField(FieldWaitingCount, []byte{0x00, 0x00}), // TODO: Implement waiting count
1513 NewField(FieldTransferSize, xferSize),
1514 NewField(FieldFileSize, hlFile.ffo.FlatFileDataForkHeader.DataSize[:]),
6988a057
JH		 1515 ))
1516
1517 return res, err
1518}
1519
1520// Download all files from the specified folder and sub-folders
6988a057 1521func HandleDownloadFolder(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1522 if !cc.Authorize(accessDownloadFile) {
d4c152a4
JH		 1523 res = append(res, cc.NewErrReply(t, "You are not allowed to download folders."))
1524 return res, err
1525 }
1526
d005ef04 1527 fullFilePath, err := readPath(cc.Server.Config.FileRoot, t.GetField(FieldFilePath).Data, t.GetField(FieldFileName).Data)
aebc4d36
JH		 1528 if err != nil {
1529 return res, err
1530 }
92a7e455 1531
6988a057
JH		 1532 transferSize, err := CalcTotalSize(fullFilePath)
1533 if err != nil {
1534 return res, err
1535 }
1536 itemCount, err := CalcItemCount(fullFilePath)
1537 if err != nil {
1538 return res, err
1539 }
df1ade54 1540
d005ef04 1541 fileTransfer := cc.newFileTransfer(FolderDownload, t.GetField(FieldFileName).Data, t.GetField(FieldFilePath).Data, transferSize)
df1ade54
JH		 1542
1543 var fp FilePath
d005ef04 1544 _, err = fp.Write(t.GetField(FieldFilePath).Data)
df1ade54
JH		 1545 if err != nil {
1546 return res, err
1547 }
1548
6988a057 1549 res = append(res, cc.NewReply(t,
d005ef04
JH		 1550 NewField(FieldRefNum, fileTransfer.ReferenceNumber),
1551 NewField(FieldTransferSize, transferSize),
1552 NewField(FieldFolderItemCount, itemCount),
1553 NewField(FieldWaitingCount, []byte{0x00, 0x00}), // TODO: Implement waiting count
6988a057
JH		 1554 ))
1555 return res, err
1556}
1557
1558// Upload all files from the local folder and its subfolders to the specified path on the server
1559// Fields used in the request
1560// 201 File name
1561// 202 File path
df2735b2 1562// 108 transfer size Total size of all items in the folder
6988a057
JH		 1563// 220 Folder item count
1564// 204 File transfer options "Optional Currently set to 1" (TODO: ??)
1565func HandleUploadFolder(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
7e2e07da 1566 var fp FilePath
d005ef04
JH		 1567 if t.GetField(FieldFilePath).Data != nil {
1568 if _, err = fp.Write(t.GetField(FieldFilePath).Data); err != nil {
7e2e07da
JH		 1569 return res, err
1570 }
1571 }
1572
1573 // Handle special cases for Upload and Drop Box folders
187d6dc5 1574 if !cc.Authorize(accessUploadAnywhere) {
7e2e07da 1575 if !fp.IsUploadDir() && !fp.IsDropbox() {
d005ef04 1576 res = append(res, cc.NewErrReply(t, fmt.Sprintf("Cannot accept upload of the folder \"%v\" because you are only allowed to upload to the \"Uploads\" folder.", string(t.GetField(FieldFileName).Data))))
7e2e07da
JH		 1577 return res, err
1578 }
1579 }
1580
df1ade54 1581 fileTransfer := cc.newFileTransfer(FolderUpload,
d005ef04
JH		 1582 t.GetField(FieldFileName).Data,
1583 t.GetField(FieldFilePath).Data,
1584 t.GetField(FieldTransferSize).Data,
df1ade54
JH		 1585 )
1586
d005ef04 1587 fileTransfer.FolderItemCount = t.GetField(FieldFolderItemCount).Data
6988a057 1588
d005ef04 1589 res = append(res, cc.NewReply(t, NewField(FieldRefNum, fileTransfer.ReferenceNumber)))
6988a057
JH		 1590 return res, err
1591}
1592
7e2e07da 1593// HandleUploadFile
16a4ad70
JH		 1594// Fields used in the request:
1595// 201 File name
1596// 202 File path
1597// 204 File transfer options "Optional
1598// Used only to resume download, currently has value 2"
1599// 108 File transfer size "Optional used if download is not resumed"
6988a057 1600func HandleUploadFile(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1601 if !cc.Authorize(accessUploadFile) {
a0241c25
JH		 1602 res = append(res, cc.NewErrReply(t, "You are not allowed to upload files."))
1603 return res, err
1604 }
1605
d005ef04
JH		 1606 fileName := t.GetField(FieldFileName).Data
1607 filePath := t.GetField(FieldFilePath).Data
1608 transferOptions := t.GetField(FieldFileTransferOptions).Data
1609 transferSize := t.GetField(FieldTransferSize).Data // not sent for resume
16a4ad70 1610
7e2e07da
JH		 1611 var fp FilePath
1612 if filePath != nil {
8fc43f8e 1613 if _, err = fp.Write(filePath); err != nil {
7e2e07da
JH		 1614 return res, err
1615 }
1616 }
1617
1618 // Handle special cases for Upload and Drop Box folders
187d6dc5 1619 if !cc.Authorize(accessUploadAnywhere) {
7e2e07da
JH		 1620 if !fp.IsUploadDir() && !fp.IsDropbox() {
1621 res = append(res, cc.NewErrReply(t, fmt.Sprintf("Cannot accept upload of the file \"%v\" because you are only allowed to upload to the \"Uploads\" folder.", string(fileName))))
1622 return res, err
1623 }
1624 }
df1ade54
JH		 1625 fullFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, fileName)
1626 if err != nil {
1627 return res, err
1628 }
7e2e07da 1629
df1ade54
JH		 1630 if _, err := cc.Server.FS.Stat(fullFilePath); err == nil {
1631 res = append(res, cc.NewErrReply(t, fmt.Sprintf("Cannot accept upload because there is already a file named \"%v\". Try choosing a different name.", string(fileName))))
1632 return res, err
6988a057
JH		 1633 }
1634
df1ade54
JH		 1635 ft := cc.newFileTransfer(FileUpload, fileName, filePath, transferSize)
1636
d005ef04 1637 replyT := cc.NewReply(t, NewField(FieldRefNum, ft.ReferenceNumber))
16a4ad70 1638
7cd900d6 1639 // client has requested to resume a partially transferred file
16a4ad70 1640 if transferOptions != nil {
b196a50a 1641 fileInfo, err := cc.Server.FS.Stat(fullFilePath + incompleteFileSuffix)
16a4ad70
JH		 1642 if err != nil {
1643 return res, err
1644 }
1645
1646 offset := make([]byte, 4)
1647 binary.BigEndian.PutUint32(offset, uint32(fileInfo.Size()))
1648
1649 fileResumeData := NewFileResumeData([]ForkInfoList{
1650 *NewForkInfoList(offset),
1651 })
1652
1653 b, _ := fileResumeData.BinaryMarshal()
1654
df1ade54
JH		 1655 ft.TransferSize = offset
1656
d005ef04 1657 replyT.Fields = append(replyT.Fields, NewField(FieldFileResumeData, b))
16a4ad70
JH		 1658 }
1659
1660 res = append(res, replyT)
6988a057
JH		 1661 return res, err
1662}
1663
6988a057 1664func HandleSetClientUserInfo(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04
JH		 1665 if len(t.GetField(FieldUserIconID).Data) == 4 {
1666 cc.Icon = t.GetField(FieldUserIconID).Data[2:]
6988a057 1667 } else {
d005ef04 1668 cc.Icon = t.GetField(FieldUserIconID).Data
264b7c27
JH		 1669 }
1670 if cc.Authorize(accessAnyName) {
d005ef04 1671 cc.UserName = t.GetField(FieldUserName).Data
6988a057 1672 }
6988a057
JH		 1673
1674 // the options field is only passed by the client versions > 1.2.3.
d005ef04 1675 options := t.GetField(FieldOptions).Data
6988a057
JH		 1676 if options != nil {
1677 optBitmap := big.NewInt(int64(binary.BigEndian.Uint16(options)))
a7216f67 1678 flagBitmap := big.NewInt(int64(binary.BigEndian.Uint16(cc.Flags)))
6988a057 1679
b1658a46 1680 flagBitmap.SetBit(flagBitmap, UserFlagRefusePM, optBitmap.Bit(refusePM))
a7216f67 1681 binary.BigEndian.PutUint16(cc.Flags, uint16(flagBitmap.Int64()))
6988a057 1682
b1658a46 1683 flagBitmap.SetBit(flagBitmap, UserFlagRefusePChat, optBitmap.Bit(refuseChat))
a7216f67 1684 binary.BigEndian.PutUint16(cc.Flags, uint16(flagBitmap.Int64()))
6988a057
JH		 1685
1686 // Check auto response
1687 if optBitmap.Bit(autoResponse) == 1 {
d005ef04 1688 cc.AutoReply = t.GetField(FieldAutomaticResponse).Data
6988a057 1689 } else {
aebc4d36 1690 cc.AutoReply = []byte{}
6988a057
JH		 1691 }
1692 }
1693
264b7c27
JH		 1694 for _, c := range sortedClients(cc.Server.Clients) {
1695 res = append(res, *NewTransaction(
d005ef04 1696 TranNotifyChangeUser,
264b7c27 1697 c.ID,
d005ef04
JH		 1698 NewField(FieldUserID, *cc.ID),
1699 NewField(FieldUserIconID, cc.Icon),
1700 NewField(FieldUserFlags, cc.Flags),
1701 NewField(FieldUserName, cc.UserName),
264b7c27
JH		 1702 ))
1703 }
6988a057
JH		 1704
1705 return res, err
1706}
1707
61c272e1
JH		 1708// HandleKeepAlive responds to keepalive transactions with an empty reply
1709// * HL 1.9.2 Client sends keepalive msg every 3 minutes
1710// * HL 1.2.3 Client doesn't send keepalives
6988a057
JH		 1711func HandleKeepAlive(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
1712 res = append(res, cc.NewReply(t))
1713
1714 return res, err
1715}
1716
1717func HandleGetFileNameList(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
92a7e455
JH		 1718 fullPath, err := readPath(
1719 cc.Server.Config.FileRoot,
d005ef04 1720 t.GetField(FieldFilePath).Data,
92a7e455
JH		 1721 nil,
1722 )
1723 if err != nil {
1724 return res, err
6988a057
JH		 1725 }
1726
7e2e07da 1727 var fp FilePath
d005ef04
JH		 1728 if t.GetField(FieldFilePath).Data != nil {
1729 if _, err = fp.Write(t.GetField(FieldFilePath).Data); err != nil {
7e2e07da
JH		 1730 return res, err
1731 }
1732 }
1733
1734 // Handle special case for drop box folders
187d6dc5 1735 if fp.IsDropbox() && !cc.Authorize(accessViewDropBoxes) {
2e08be58 1736 res = append(res, cc.NewErrReply(t, "You are not allowed to view drop boxes."))
7e2e07da
JH		 1737 return res, err
1738 }
1739
b8c0a83a 1740 fileNames, err := getFileNameList(fullPath, cc.Server.Config.IgnoreFiles)
6988a057
JH		 1741 if err != nil {
1742 return res, err
1743 }
1744
1745 res = append(res, cc.NewReply(t, fileNames...))
1746
1747 return res, err
1748}
1749
1750// =================================
1751// Hotline private chat flow
1752// =================================
d005ef04 1753// 1. ClientA sends TranInviteNewChat to server with user ID to invite
6988a057 1754// 2. Server creates new ChatID
d005ef04 1755// 3. Server sends TranInviteToChat to invitee
6988a057
JH		 1756// 4. Server replies to ClientA with new Chat ID
1757//
1758// A dialog box pops up in the invitee client with options to accept or decline the invitation.
1759// If Accepted is clicked:
d005ef04 1760// 1. ClientB sends TranJoinChat with FieldChatID
6988a057
JH		 1761
1762// HandleInviteNewChat invites users to new private chat
1763func HandleInviteNewChat(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1764 if !cc.Authorize(accessOpenChat) {
d4c152a4
JH		 1765 res = append(res, cc.NewErrReply(t, "You are not allowed to request private chat."))
1766 return res, err
1767 }
1768
6988a057 1769 // Client to Invite
d005ef04 1770 targetID := t.GetField(FieldUserID).Data
6988a057
JH		 1771 newChatID := cc.Server.NewPrivateChat(cc)
1772
c1c44744
JH		 1773 // Check if target user has "Refuse private chat" flag
1774 binary.BigEndian.Uint16(targetID)
1775 targetClient := cc.Server.Clients[binary.BigEndian.Uint16(targetID)]
1776
1777 flagBitmap := big.NewInt(int64(binary.BigEndian.Uint16(targetClient.Flags)))
b1658a46 1778 if flagBitmap.Bit(UserFlagRefusePChat) == 1 {
c1c44744
JH		 1779 res = append(res,
1780 *NewTransaction(
d005ef04 1781 TranServerMsg,
c1c44744 1782 cc.ID,
d005ef04
JH		 1783 NewField(FieldData, []byte(string(targetClient.UserName)+" does not accept private chats.")),
1784 NewField(FieldUserName, targetClient.UserName),
1785 NewField(FieldUserID, *targetClient.ID),
1786 NewField(FieldOptions, []byte{0, 2}),
c1c44744
JH		 1787 ),
1788 )
1789 } else {
1790 res = append(res,
1791 *NewTransaction(
d005ef04 1792 TranInviteToChat,
c1c44744 1793 &targetID,
d005ef04
JH		 1794 NewField(FieldChatID, newChatID),
1795 NewField(FieldUserName, cc.UserName),
1796 NewField(FieldUserID, *cc.ID),
c1c44744
JH		 1797 ),
1798 )
1799 }
6988a057
JH		 1800
1801 res = append(res,
1802 cc.NewReply(t,
d005ef04
JH		 1803 NewField(FieldChatID, newChatID),
1804 NewField(FieldUserName, cc.UserName),
1805 NewField(FieldUserID, *cc.ID),
1806 NewField(FieldUserIconID, cc.Icon),
1807 NewField(FieldUserFlags, cc.Flags),
6988a057
JH		 1808 ),
1809 )
1810
1811 return res, err
1812}
1813
1814func HandleInviteToChat(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1815 if !cc.Authorize(accessOpenChat) {
d4c152a4
JH		 1816 res = append(res, cc.NewErrReply(t, "You are not allowed to request private chat."))
1817 return res, err
1818 }
1819
6988a057 1820 // Client to Invite
d005ef04
JH		 1821 targetID := t.GetField(FieldUserID).Data
1822 chatID := t.GetField(FieldChatID).Data
6988a057
JH		 1823
1824 res = append(res,
1825 *NewTransaction(
d005ef04 1826 TranInviteToChat,
6988a057 1827 &targetID,
d005ef04
JH		 1828 NewField(FieldChatID, chatID),
1829 NewField(FieldUserName, cc.UserName),
1830 NewField(FieldUserID, *cc.ID),
6988a057
JH		 1831 ),
1832 )
1833 res = append(res,
1834 cc.NewReply(
1835 t,
d005ef04
JH		 1836 NewField(FieldChatID, chatID),
1837 NewField(FieldUserName, cc.UserName),
1838 NewField(FieldUserID, *cc.ID),
1839 NewField(FieldUserIconID, cc.Icon),
1840 NewField(FieldUserFlags, cc.Flags),
6988a057
JH		 1841 ),
1842 )
1843
1844 return res, err
1845}
1846
1847func HandleRejectChatInvite(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 1848 chatID := t.GetField(FieldChatID).Data
6988a057
JH		 1849 chatInt := binary.BigEndian.Uint32(chatID)
1850
1851 privChat := cc.Server.PrivateChats[chatInt]
1852
72dd37f1 1853 resMsg := append(cc.UserName, []byte(" declined invitation to chat")...)
6988a057
JH		 1854
1855 for _, c := range sortedClients(privChat.ClientConn) {
1856 res = append(res,
1857 *NewTransaction(
d005ef04 1858 TranChatMsg,
6988a057 1859 c.ID,
d005ef04
JH		 1860 NewField(FieldChatID, chatID),
1861 NewField(FieldData, resMsg),
6988a057
JH		 1862 ),
1863 )
1864 }
1865
1866 return res, err
1867}
1868
1869// HandleJoinChat is sent from a v1.8+ Hotline client when the joins a private chat
1870// Fields used in the reply:
1871// * 115 Chat subject
1872// * 300 User name with info (Optional)
1873// * 300 (more user names with info)
1874func HandleJoinChat(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 1875 chatID := t.GetField(FieldChatID).Data
6988a057
JH		 1876 chatInt := binary.BigEndian.Uint32(chatID)
1877
1878 privChat := cc.Server.PrivateChats[chatInt]
1879
d005ef04 1880 // Send TranNotifyChatChangeUser to current members of the chat to inform of new user
6988a057
JH		 1881 for _, c := range sortedClients(privChat.ClientConn) {
1882 res = append(res,
1883 *NewTransaction(
d005ef04 1884 TranNotifyChatChangeUser,
6988a057 1885 c.ID,
d005ef04
JH		 1886 NewField(FieldChatID, chatID),
1887 NewField(FieldUserName, cc.UserName),
1888 NewField(FieldUserID, *cc.ID),
1889 NewField(FieldUserIconID, cc.Icon),
1890 NewField(FieldUserFlags, cc.Flags),
6988a057
JH		 1891 ),
1892 )
1893 }
1894
1895 privChat.ClientConn[cc.uint16ID()] = cc
1896
d005ef04 1897 replyFields := []Field{NewField(FieldChatSubject, []byte(privChat.Subject))}
6988a057
JH		 1898 for _, c := range sortedClients(privChat.ClientConn) {
1899 user := User{
1900 ID: *c.ID,
a7216f67
JH		 1901 Icon: c.Icon,
1902 Flags: c.Flags,
72dd37f1 1903 Name: string(c.UserName),
6988a057
JH		 1904 }
1905
d005ef04 1906 replyFields = append(replyFields, NewField(FieldUsernameWithInfo, user.Payload()))
6988a057
JH		 1907 }
1908
1909 res = append(res, cc.NewReply(t, replyFields...))
1910 return res, err
1911}
1912
1913// HandleLeaveChat is sent from a v1.8+ Hotline client when the user exits a private chat
1914// Fields used in the request:
d005ef04 1915// - 114 FieldChatID
33265393 1916//
6988a057
JH		 1917// Reply is not expected.
1918func HandleLeaveChat(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 1919 chatID := t.GetField(FieldChatID).Data
6988a057
JH		 1920 chatInt := binary.BigEndian.Uint32(chatID)
1921
c74c1f28
JH		 1922 privChat, ok := cc.Server.PrivateChats[chatInt]
1923 if !ok {
1924 return res, nil
1925 }
6988a057
JH		 1926
1927 delete(privChat.ClientConn, cc.uint16ID())
1928
1929 // Notify members of the private chat that the user has left
1930 for _, c := range sortedClients(privChat.ClientConn) {
1931 res = append(res,
1932 *NewTransaction(
d005ef04 1933 TranNotifyChatDeleteUser,
6988a057 1934 c.ID,
d005ef04
JH		 1935 NewField(FieldChatID, chatID),
1936 NewField(FieldUserID, *cc.ID),
6988a057
JH		 1937 ),
1938 )
1939 }
1940
1941 return res, err
1942}
1943
1944// HandleSetChatSubject is sent from a v1.8+ Hotline client when the user sets a private chat subject
1945// Fields used in the request:
1946// * 114 Chat ID
2d92d26e 1947// * 115 Chat subject
6988a057
JH		 1948// Reply is not expected.
1949func HandleSetChatSubject(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
d005ef04 1950 chatID := t.GetField(FieldChatID).Data
6988a057
JH		 1951 chatInt := binary.BigEndian.Uint32(chatID)
1952
1953 privChat := cc.Server.PrivateChats[chatInt]
d005ef04 1954 privChat.Subject = string(t.GetField(FieldChatSubject).Data)
6988a057
JH		 1955
1956 for _, c := range sortedClients(privChat.ClientConn) {
1957 res = append(res,
1958 *NewTransaction(
d005ef04 1959 TranNotifyChatSubject,
6988a057 1960 c.ID,
d005ef04
JH		 1961 NewField(FieldChatID, chatID),
1962 NewField(FieldChatSubject, t.GetField(FieldChatSubject).Data),
6988a057
JH		 1963 ),
1964 )
1965 }
1966
1967 return res, err
1968}
decc2fbf 1969
2d92d26e 1970// HandleMakeAlias makes a file alias using the specified path.
decc2fbf
JH		 1971// Fields used in the request:
1972// 201 File name
1973// 202 File path
1974// 212 File new path Destination path
1975//
1976// Fields used in the reply:
1977// None
1978func HandleMakeAlias(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
187d6dc5 1979 if !cc.Authorize(accessMakeAlias) {
decc2fbf
JH		 1980 res = append(res, cc.NewErrReply(t, "You are not allowed to make aliases."))
1981 return res, err
1982 }
d005ef04
JH		 1983 fileName := t.GetField(FieldFileName).Data
1984 filePath := t.GetField(FieldFilePath).Data
1985 fileNewPath := t.GetField(FieldFileNewPath).Data
decc2fbf
JH		 1986
1987 fullFilePath, err := readPath(cc.Server.Config.FileRoot, filePath, fileName)
1988 if err != nil {
1989 return res, err
1990 }
1991
1992 fullNewFilePath, err := readPath(cc.Server.Config.FileRoot, fileNewPath, fileName)
1993 if err != nil {
1994 return res, err
1995 }
1996
67db911d 1997 cc.logger.Debugw("Make alias", "src", fullFilePath, "dst", fullNewFilePath)
decc2fbf 1998
b196a50a 1999 if err := cc.Server.FS.Symlink(fullFilePath, fullNewFilePath); err != nil {
decc2fbf
JH		 2000 res = append(res, cc.NewErrReply(t, "Error creating alias"))
2001 return res, nil
2002 }
2003
2004 res = append(res, cc.NewReply(t))
2005 return res, err
2006}
9067f234 2007
969e6481
JH		 2008// HandleDownloadBanner handles requests for a new banner from the server
2009// Fields used in the request:
2010// None
2011// Fields used in the reply:
d005ef04
JH		 2012// 107 FieldRefNum Used later for transfer
2013// 108 FieldTransferSize Size of data to be downloaded
9067f234 2014func HandleDownloadBanner(cc *ClientConn, t *Transaction) (res []Transaction, err error) {
9067f234
JH		 2015 fi, err := cc.Server.FS.Stat(filepath.Join(cc.Server.ConfigDir, cc.Server.Config.BannerFile))
2016 if err != nil {
2017 return res, err
2018 }
2019
df1ade54 2020 ft := cc.newFileTransfer(bannerDownload, []byte{}, []byte{}, make([]byte, 4))
9067f234 2021
df1ade54 2022 binary.BigEndian.PutUint32(ft.TransferSize, uint32(fi.Size()))
9067f234
JH		 2023
2024 res = append(res, cc.NewReply(t,
d005ef04
JH		 2025 NewField(FieldRefNum, ft.refNum[:]),
2026 NewField(FieldTransferSize, ft.TransferSize),
9067f234
JH		 2027 ))
2028
9067f234
JH		 2029 return res, err
2030}
Friendship Quest remix of mobius, a hotline server in go #cli