cdromcheckin.php3 11.1 KB
Newer Older
1
2
3
<?php
#
# EMULAB-COPYRIGHT
4
# Copyright (c) 2000-2003 University of Utah and the Flux Group.
5
6
7
8
9
10
11
12
13
14
15
16
17
# All rights reserved.
#
require("defs.php3");

# These error codes must match whats in register.pl on the cd.
define("CDROMSTATUS_OKAY"	,	0);
define("CDROMSTATUS_MISSINGARGS",	100);
define("CDROMSTATUS_INVALIDARGS",	101);
define("CDROMSTATUS_BADCDKEY",		102);
define("CDROMSTATUS_BADPRIVKEY",	103);
define("CDROMSTATUS_BADIPADDR",		104);
define("CDROMSTATUS_BADREMOTEIP",	105);
define("CDROMSTATUS_IPADDRINUSE",	106);
18
define("CDROMSTATUS_UPGRADEERROR",	107);
19
20
21
22
23
24
25
26
27
define("CDROMSTATUS_OTHER",		199);

#
# Spit back a text message we can display to the user on the console
# of the node running the checkin. We could return an http error, but
# that would be of no help to the user on the other side.
# 
function SPITSTATUS($status)
{
Leigh B. Stoller's avatar
Leigh B. Stoller committed
28
29
    global $REMOTE_ADDR, $REQUEST_URI;
    
30
31
    header("Content-Type: text/plain");
    echo "emulab_status=$status\n";
Leigh B. Stoller's avatar
Leigh B. Stoller committed
32

33
34
35
36
    if ($status) {
	    TBERROR("CDROM Checkin Error ($status) from $REMOTE_ADDR:\n\n".
		    "$REQUEST_URI\n", 0);
    }
37
38
39
40
41
}

#
# This page is not intended to be invoked by humans!
#
Leigh B. Stoller's avatar
Leigh B. Stoller committed
42
if ((!isset($cdkey) || !strcmp($cdkey, ""))) {
43
44
45
46
    SPITSTATUS(CDROMSTATUS_MISSINGARGS);
    return;
}

Leigh B. Stoller's avatar
Leigh B. Stoller committed
47
if (!ereg("[0-9a-zA-Z]+", $cdkey)) {
48
49
50
51
    SPITSTATUS(CDROMSTATUS_INVALIDARGS);
    return;
}

52
53
54
55
56
57
58
59
60
#
# Make sure this is a valid CDkey.
#
$query_result =
    DBQueryFatal("select * from cdroms where cdkey='$cdkey'");
if (! mysql_num_rows($query_result)) {
    SPITSTATUS(CDROMSTATUS_BADCDKEY);
    return;
}
61
62
$row    = mysql_fetch_array($query_result);
$cdvers = $row[version];
63

Leigh B. Stoller's avatar
Leigh B. Stoller committed
64
65
#
# Node is requesting latest instructions. Give it the script. This could
66
# be on a per CDROM basis, but for now its hardwired.
Leigh B. Stoller's avatar
Leigh B. Stoller committed
67
68
69
70
71
# I know, the hardwired paths are bad; move into the cdroms DB table, even
# if duplicated. 
# 
if (isset($needscript)) {
    header("Content-Type: text/plain");
72
73
74
75
76
77
78
79
80

    if ($cdvers <= 3) {
	echo "MD5=5ed48bdf6def666d5a5d643cbc2ce4d0\n";
	echo "URL=https://${WWWHOST}/images/netbed-setup-v3.pl\n";
    }
    else {
	echo "URL=https://${WWWHOST}/images/netbed-setup-v4.pl\n";
	echo "SIG=https://${WWWHOST}/images/netbed-setup-v4.pl.sig\n";
    }
Leigh B. Stoller's avatar
Leigh B. Stoller committed
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
    echo "emulab_status=0\n";
    return;
}

#
# Otherwise, move onto config instructions.
#
if ((!isset($privkey) || !strcmp($privkey, "")) ||
    (!isset($IP) || !strcmp($IP, ""))) {
    SPITSTATUS(CDROMSTATUS_MISSINGARGS);
    return;
}

if (!ereg("[0-9a-zA-Z ]+", $privkey) ||
    !ereg("[0-9\.]+", $IP)) {
    SPITSTATUS(CDROMSTATUS_INVALIDARGS);
    return;
}

if (isset($wahostname) &&
    !ereg("[-_0-9a-zA-Z\.]+", $wahostname)) {
    SPITSTATUS(CDROMSTATUS_INVALIDARGS);
    return;
}

106
107
108
109
110
111
112
113
114
115
116
117
118
#
# Generate a nickname if given hostname.
#
unset($nickname);
if (isset($wahostname)) {
    if (strpos($wahostname, ".")) {
	$nickname = str_replace(".", "-", $wahostname);
    }
    else {
	$nickname = $wahostname;
    }
}

Leigh B. Stoller's avatar
Leigh B. Stoller committed
119
120
121
122
123
124
if (isset($roottag) &&
    !ereg("[0-9a-zA-Z]+", $roottag)) {
    SPITSTATUS(CDROMSTATUS_INVALIDARGS);
    return;
}

125
#
126
# Grab the privkey record. First squeeze out any spaces.
127
#
128
129
$privkey = str_replace(" ", "", $privkey);

130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
$query_result =
    DBQueryFatal("select * from widearea_privkeys where privkey='$privkey'");

if (!mysql_num_rows($query_result)) {
    SPITSTATUS(CDROMSTATUS_BADPRIVKEY);
    return;
}
$warow  = mysql_fetch_array($query_result);
$privIP = $warow[IP];

#
# If the node is reporting that its finished updating, then make its
# current privkey its nextprivkey.
# 
if (isset($updated) && $updated == 1) {
    if (! strcmp($privIP, "1.1.1.1")) {
        #
        # If the node is brand new, then need to create several records.
	# Pass it off to a perl script.
        #
	DBQueryFatal("update widearea_privkeys ".
		     "set IP='$IP' ".
		     "where privkey='$privkey'");
153

154
155
156
157
	$newargs = "-w -i $IP ";
	if (isset($nickname)) {
	    $newargs .= " -n $nickname ";
	}
158

159
160
	$type = "pcwa";
	if (isset($wahostname)) {
161
162
163
164
165
            #
            # XXX Parse hostname to see if a ron node.
	    # Silly, but effective since we will never have anything else
	    # besides wa/ron.
            #
166
167
	    if (strstr($wahostname, ".ron.") ||
		strstr($wahostname, "roncluster")) {
168
169
170
		$type = "pcron";
	    }
	}
171
172
	$newargs .= " -t $type ";
	SUEXEC("nobody", $TBADMINGROUP, "webnewwanode $newargs", 0);
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194

	#
	# Send email to user reminding to register node.
	#
	$user_name = $warow[user_name];
	$user_email= $warow[user_email];
	$lockkey   = $warow[lockkey];

	TBMAIL("$user_name <$user_email>",
	   "Thanks for installing a NetBed CDROM!",
	   "It would be very helpful if you could please go to:\n".
	   "\n".
	   "    ${TBBASE}/widearea_register.php?cdkey=$lockkey&IP=$IP\n".
	   "\n".
	   "and tell us a few things about the node (processor, connection\n".
	   "type, geographical info, etc.). You can also register for a\n".
	   "local account on your node by providing this info to us.\n".
	   "\n".
	   "Thanks,\n".
	   "Testbed Operations\n",
	   "From: $TBMAIL_OPS\n".
	   "Errors-To: $TBMAIL_WWW");
195
    }
196

197
198
    DBQueryFatal("update widearea_privkeys ".
		 "set privkey=nextprivkey,updated=now(),nextprivkey=NULL ".
199
		 (isset($roottag) ? ",rootkey='$roottag'" : "") .
200
201
		 "where privkey='$privkey'");

202
203
204
205
206
207
208
209
    #
    # Check for image upgrade completed. Delete record. 
    #
    $query_result =
	DBQueryFatal("delete from widearea_updates ".
		     "where IP='$IP' and roottag='$roottag' and " .
		     "      update_started is not null");

210
211
212
213
214
215
216
217
218
219
220
    #
    # Update with new nickname. Nice if node changes its real hostname.
    #
    if (isset($nickname)) {
	$nodeid = TBIPtoNodeID($IP);
	if ($nodeid) {
	    DBQueryFatal("update reserved set vname='$nickname' ".
			 "where node_id='$nodeid'");
	}
    }

221
222
223
224
225
226
227
228
229
230
231
232
233
    SPITSTATUS(CDROMSTATUS_OKAY);
    return;
}

#
# If the record has a valid IP address and matches the node connecting
# then all we do is return a new private key.
#
if (strcmp($privIP, "1.1.1.1")) {
    if (strcmp($privIP, $IP)) {
	SPITSTATUS(CDROMSTATUS_BADIPADDR);
	return;
    }
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
#    if (strcmp($REMOTE_ADDR, $IP)) {
#	SPITSTATUS(CDROMSTATUS_BADREMOTEIP);
#	return;
#    }

    $upgrade_instructions = "";
    #
    # Check for image upgrade. Rather simplistic right now.
    #
    $query_result =
	DBQueryFatal("select * from widearea_updates where IP='$IP'");
    if (mysql_num_rows($query_result)) {
	$row     = mysql_fetch_array($query_result);
	$newroot = $row["roottag"];

	# Do not upgrade if the root tag already matches. ???
	if (!isset($roottag) || strcmp($roottag, $newroot)) {
	    $update  = 1;

	    DBQueryFatal("update widearea_updates set update_started=now() ".
			 "where IP='$IP'");

	    switch ($newroot) {
	    case "d326a1f604489c43b488fa80a88221f4":
		$upgrade_instructions =
		    "slice1_image=slice1.ndz\n" .
		    "slice1_sig=slice1.ndz.sig\n" .
		    "slice1_md5=d326a1f604489c43b488fa80a88221f4";
		break;
	    default:
		SPITSTATUS(CDROMSTATUS_UPGRADEERROR);
		break;
	    }
	}
268
    }
269
270

    #
271
272
273
    # Generate a new privkey and stash in the DB. Always stash the root
    # tag the node is running. If upgrading, it will be overwritten above
    # when it completes. This helps to figure out where things went wrong.
274
275
276
    #
    $newkey = GENHASH();
    DBQueryFatal("update widearea_privkeys ".
277
		 "set nextprivkey='$newkey',updated=now(),cdkey='$cdkey' ".
278
		 (isset($roottag) ? ",rootkey='$roottag'" : "") .
279
280
281
282
		 "where IP='$IP' and privkey='$privkey'");

    header("Content-Type: text/plain");
    echo "privkey=$newkey\n";
283
    echo "$upgrade_instructions\n";
284
285
    echo "emulab_status=0\n";
    
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
    return;
}

#
# We need to check for duplicate IPs. 
#
$query_result =
    DBQueryFatal("select * from widearea_privkeys where IP='$IP'");

if (mysql_num_rows($query_result)) {
    SPITSTATUS(CDROMSTATUS_IPADDRINUSE);
    return;
}

#
# Generate a new privkey and return the info. The DB is updated with the
# next key, but it does not become effective until it responds that it
# finished okay. This leaves a window open, but the eventual plan it to
# get rid of these priv keys anyway and go to per-node cert files we update
# on the fly.
# 
$newkey = GENHASH();
DBQueryFatal("update widearea_privkeys ".
309
	     "set nextprivkey='$newkey',updated=now(),cdkey='$cdkey'".
310
311
	     "where privkey='$privkey'");

312
313
header("Content-Type: text/plain");
echo "privkey=$newkey\n";
314
if ($cdvers == 1) {
Mike Hibler's avatar
Mike Hibler committed
315
316
317
318
319
320
    if (0) {
	# one shot setup for ISI (or anyone else who has a corrupt image)
	echo "fdisk=http://${WWWHOST}/images/image.fdisk\n";
	echo "slice1_image=http://${WWWHOST}/images/slice1-v1.ndz\n";
	echo "slice1_md5=2970e2cf045f5872c6728eeea3b51dae\n";
	echo "slicex_mount=/users\n";
321
322
	echo "slicex_tarball=http://${WWWHOST}/images/slicex-v2.tar.gz\n";
	echo "slicex_md5=a5274072a40ebf2fda8b8596a6e60e0d\n";
Mike Hibler's avatar
Mike Hibler committed
323
324
325
326
327
    } else {
	echo "fdisk=image.fdisk\n";
	echo "slice1_image=slice1.ndz\n";
	echo "slice1_md5=cb810b43f49d15b3ac4122ff42f8925d\n";
	echo "slicex_mount=/users\n";
328
329
	echo "slicex_tarball=http://${WWWHOST}/images/slicex.tar.gz\n";
	echo "slicex_md5=a5274072a40ebf2fda8b8596a6e60e0d\n";
Mike Hibler's avatar
Mike Hibler committed
330
    }
331
}
Leigh B. Stoller's avatar
Leigh B. Stoller committed
332
elseif ($cdvers == 2) {
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
    if (0) {
	echo "fdisk=http://${WWWHOST}/images/image.fdisk\n";
	echo "slice1_image=http://${WWWHOST}/images/slice1-v2.ndz\n";
	echo "slice1_md5=402f00f2e46d22507cef3d19846b48f8\n";
	echo "slicex_mount=/users\n";
	echo "slicex_tarball=http://${WWWHOST}/images/slicex-v2.tar.gz\n";
	echo "slicex_md5=a5274072a40ebf2fda8b8596a6e60e0d\n";
    }
    else {
	echo "fdisk=image.fdisk\n";
	echo "slice1_image=slice1.ndz\n";
	echo "slice1_md5=402f00f2e46d22507cef3d19846b48f8\n";
	echo "slicex_mount=/users\n";
	echo "slicex_tarball=slicex.tar.gz\n";
	echo "slicex_md5=a5274072a40ebf2fda8b8596a6e60e0d\n";
    }
349
}
350
elseif ($cdvers == 3) {
Leigh B. Stoller's avatar
Leigh B. Stoller committed
351
352
353
    if (0) {
	echo "fdisk=http://${WWWHOST}/images/image.fdisk\n";
	echo "slice1_image=http://${WWWHOST}/images/slice1-v3.ndz\n";
354
	echo "slice1_md5=a9af4a08310a314c5b38e5e33a2b9c3e\n";
Leigh B. Stoller's avatar
Leigh B. Stoller committed
355
	echo "slicex_slice=3\n";
Leigh B. Stoller's avatar
Leigh B. Stoller committed
356
357
358
359
360
361
362
	echo "slicex_mount=/users\n";
	echo "slicex_tarball=http://${WWWHOST}/images/slicex-v3.tar.gz\n";
	echo "slicex_md5=0a3398cee6104850adaee7afbe75f008\n";
    }
    else {
	echo "fdisk=image.fdisk\n";
	echo "slice1_image=slice1.ndz\n";
363
	echo "slice1_md5=a9af4a08310a314c5b38e5e33a2b9c3e\n";
Leigh B. Stoller's avatar
Leigh B. Stoller committed
364
	echo "slicex_slice=3\n";
Leigh B. Stoller's avatar
Leigh B. Stoller committed
365
366
367
368
369
	echo "slicex_mount=/users\n";
	echo "slicex_tarball=slicex.tar.gz\n";
	echo "slicex_md5=0a3398cee6104850adaee7afbe75f008\n";
    }
}
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
else {
    if (0) {
	echo "fdisk=http://${WWWHOST}/images/image.fdisk\n";
	echo "fdisk_sig=https://${WWWHOST}/images/image.fdisk.sig\n";
	echo "slice1_image=http://${WWWHOST}/images/slice1-v4.ndz\n";
	echo "slice1_sig=https://${WWWHOST}/images/slice1-v4.ndz.sig\n";
	# Still return this for the root tag. Might change later.
	echo "slice1_md5=d326a1f604489c43b488fa80a88221f4\n";
	echo "slicex_slice=3\n";
	echo "slicex_mount=/users\n";
	echo "slicex_tarball=https://${WWWHOST}/images/slicex-v4.tar.gz\n";
	echo "slicex_sig=http://${WWWHOST}/images/slicex-v4.tar.gz.sig\n";
    }
    else {
	echo "fdisk=image.fdisk\n";
	echo "fdisk_sig=image.fdisk.sig\n";
	echo "slice1_image=slice1.ndz\n";
	echo "slice1_sig=slice1.ndz.sig\n";
	# Still return this for the root tag. Might change later.
	echo "slice1_md5=d326a1f604489c43b488fa80a88221f4\n";
	echo "slicex_slice=3\n";
	echo "slicex_mount=/users\n";
	echo "slicex_tarball=slicex.tar.gz\n";
	echo "slicex_sig=slicex.tar.gz.sig\n";
    }
}
396
echo "emulab_status=0\n";