WebSVN – wimsdev – Diff – /trunk/wims/src/wims.c

 /* Web exerciser */
 #include "wims.h"
 struct {
-    char *name;
+  char *name;
-    char *font;
+  char *font;
 } charname[]={
-      {"en","windows-1252"},
+  {"en","windows-1252"},
-      {"fr","windows-1252"},
+  {"fr","windows-1252"},
-      {"es","windows-1252"},
+  {"es","windows-1252"},
-      {"cn","gb2312"},
+  {"cn","gb2312"},
-      {"de","windows-1252"},
+  {"de","windows-1252"},
-      {"it","windows-1252"},
+  {"it","windows-1252"},
-      {"nl","windows-1252"},
+  {"nl","windows-1252"},
-      {"si","iso-8859-2"},
+  {"si","iso-8859-2"},
-      {"ar","iso-8859-6"},
+  {"ar","iso-8859-6"},
-      {"tw","big5"},
+  {"tw","big5"},
-      {"pt","windows-1252"},
+  {"pt","windows-1252"},
-      {"ca","windows-1252"},
+  {"ca","windows-1252"},
-      {"pt","windows-1252"},
+  {"pt","windows-1252"},
-      {"ru","iso-8859-5"},
+  {"ru","iso-8859-5"},
-      {"ty","iso-8859-13"}
+  {"ty","iso-8859-13"}
 };
 #define charname_no (sizeof(charname)/sizeof(charname[0]))
 /* left to right or right to left writing */
 struct {
-    char *name;
+  char *name;
-    char *dirn;
+  char *dirn;
 } dirnname[]={
-      {"en","ltr"},
+  {"en","ltr"},
-      {"fr","ltr"},
+  {"fr","ltr"},
-      {"es","ltr"},
+  {"es","ltr"},
-      {"cn","ltr"},
+  {"cn","ltr"},
-      {"de","ltr"},
+  {"de","ltr"},
-      {"it","ltr"},
+  {"it","ltr"},
-      {"nl","ltr"},
+  {"nl","ltr"},
-      {"si","ltr"},
+  {"si","ltr"},
-      {"ar","rtl"},
+  {"ar","rtl"},
-      {"tw","ltr"},
+  {"tw","ltr"},
-      {"pt","ltr"},
+  {"pt","ltr"},
-      {"ca","ltr"},
+  {"ca","ltr"},
-      {"pt","ltr"},
+  {"pt","ltr"},
-      {"ru","ltr"},
+  {"ru","ltr"},
-      {"ty","ltr"}
+  {"ty","ltr"}
 };
 #define dirnname_no (sizeof(dirnname)/sizeof(dirnname[0]))
 #define evalue strevalue
 char *robot_session="../tmp/robot";
 int robot_access=0,human_access=0;
 int user_error_nolog=0;
 char *good_agent[]={
-      "Mozilla","Netscape","Opera","WIMS",
+  "Mozilla","Netscape","Opera","WIMS",
-      "MSIE","Konqueror","Java"
+  "MSIE","Konqueror","Java"
 };
 #define good_agent_no (sizeof(good_agent)/sizeof(good_agent[0]))
 char *bad_agent[]={ /* These are really bad agents: prohibited. */
-      "HTTrack","MemoWeb","Teleport","Offline","Wget","eCatch",
+  "HTTrack","MemoWeb","Teleport","Offline","Wget","eCatch",
-      "Powermarks","EmailSiphon", "WebCopier"
+  "Powermarks","EmailSiphon", "WebCopier"
 };
 #define bad_agent_no (sizeof(bad_agent)/sizeof(bad_agent[0]))
 /* used for debugging */
 int debug=0;
 /* These are readonly environment variable names
  * special parm used for special cmds (getins, etc).
  */
 char *ro_name[]={
-      "cmd" ,
+  "cmd" ,
-      "empty",
+  "empty",
-      "lang" ,
+  "lang" ,
-      "module" ,
+  "module" ,
-      "session" ,
+  "session" ,
-      "special_parm",
+  "special_parm",
-      "special_parm2",
+  "special_parm2",
-      "special_parm3",
+  "special_parm3",
-      "special_parm4",
+  "special_parm4",
-      "useropts" ,
+  "useropts" ,
-      "wims_session",
+  "wims_session",
-      "wims_subsession",
+  "wims_subsession",
-      "wims_window",
+  "wims_window",
-      "worksheet"
+  "worksheet"
 };
 int RO_NAME_NO=(sizeof(ro_name)/sizeof(ro_name[0]));
 int cmd_type;
 /* stat=0: saved variables
  * all names starting with wims_priv_ are also internal.
  */
 struct internal_name internal_name[]={
-      {"accessright", 1}, /* right to access commercial resources */
+  {"accessright", 1}, /* right to access commercial resources */
-      {"caller", 1}, /* caller session */
+  {"caller", 1}, /* caller session */
-      {"check", 1}, /* for exam check use */
+  {"check", 1}, /* for exam check use */
-      {"class", 1},
+  {"class", 1},
-      {"class_examlog", 1},
+  {"class_examlog", 1},
-      {"class_exolog", 1},
+  {"class_exolog", 1},
-      {"class_limit", 1},
+  {"class_limit", 1},
-      {"class_quota", 1},
+  {"class_quota", 1},
-      {"class_regpass", 1},
+  {"class_regpass", 1},
-      {"class_user_limit", 1},
+  {"class_user_limit", 1},
-      {"classdir", 1},
+  {"classdir", 1},
-      {"classname", 1},
+  {"classname", 1},
-      {"devel_modules", 1},
+  {"devel_modules", 1},
-      {"developer", 1},
+  {"developer", 1},
-      {"doc_quota", 1},
+  {"doc_quota", 1},
-      {"doc_regpass", 1},
+  {"doc_regpass", 1},
-      {"email", 1},
+  {"email", 1},
-      {"exo", 0}, /* exercise number */
+  {"exo", 0}, /* exercise number */
-      {"exoption", 1}, /* exercise option */
+  {"exoption", 1}, /* exercise option */
-      {"firstname", 1},
+  {"firstname", 1},
-      {"forum_limit", 1},
+  {"forum_limit", 1},
-      {"home", 1},
+  {"home", 1},
-      {"institutionname", 1},
+  {"institutionname", 1},
-      {"isexam", 0}, /* whether the sheet is an exam sheet */
+  {"isexam", 0}, /* whether the sheet is an exam sheet */
-      {"ismanager", 0},
+  {"ismanager", 0},
-      {"lastname", 1},
+  {"lastname", 1},
-      {"mode", 0}, /* operating mode */
+  {"mode", 0}, /* operating mode */
-      {"module_start_time", 0},
+  {"module_start_time", 0},
-      {"now", 1}, /* date and time, yyyymmdd.hh:mm:ss */
+  {"now", 1}, /* date and time, yyyymmdd.hh:mm:ss */
-      {"nowseconds", 1}, /* date and time, seconds since EPOCH */
+  {"nowseconds", 1}, /* date and time, seconds since EPOCH */
-      {"nr", 1}, /* non-readable variables in user file, words */
+  {"nr", 1}, /* non-readable variables in user file, words */
-      {"nw", 1}, /* non-writable variables in user file, words */
+  {"nw", 1}, /* non-writable variables in user file, words */
-      {"otherclass", 1}, /* Remember other logins */
+  {"otherclass", 1}, /* Remember other logins */
-      {"participate", 1}, /* superclass definition */
+  {"participate", 1}, /* superclass definition */
-      {"prefix", 1}, /* user file prefix */
+  {"prefix", 1}, /* user file prefix */
-      {"protocol", 0}, /* http protocol */
+  {"protocol", 0}, /* http protocol */
-      {"rafale", 0}, /* rapidfire request information */
+  {"rafale", 0}, /* rapidfire request information */
-      {"readable", 1}, /* readable variables in user file, words */
+  {"readable", 1}, /* readable variables in user file, words */
-      {"realuser", 1}, /* real user for supervisor in gateway */
+  {"realuser", 1}, /* real user for supervisor in gateway */
-      {"req_time", 0}, /* time of the request */
+  {"req_time", 0}, /* time of the request */
-      {"sclassdir", 1},
+  {"sclassdir", 1},
-      {"scorereg", 0}, /* score registration flag */
+  {"scorereg", 0}, /* score registration flag */
-      {"seed", 0},
+  {"seed", 0},
-      {"seed_repeat",0},
+  {"seed_repeat",0},
-      {"seed_score", 0},
+  {"seed_score", 0},
-      {"sequence", 0}, /* sequence number */
+  {"sequence", 0}, /* sequence number */
-      {"sescookie", 1}, /* session cookie */
+  {"sescookie", 1}, /* session cookie */
-      {"sesdir", 1},
+  {"sesdir", 1},
-      {"session_serial", 0}, /* request serial in the session */
+  {"session_serial", 0}, /* request serial in the session */
-      {"session_start_time", 0},
+  {"session_start_time", 0},
-      {"sheet", 0}, /* sheet number */
+  {"sheet", 0}, /* sheet number */
-      {"sup_secure", 1}, /* secure level of supervisor */
+  {"sup_secure", 1}, /* secure level of supervisor */
-      {"superclass", 1}, /* superclass code */
+  {"superclass", 1}, /* superclass code */
-      {"superclass_quota", 1},
+  {"superclass_quota", 1},
-      {"supertype", 1}, /* superclass type */
+  {"supertype", 1}, /* superclass type */
-      {"supervise", 1}, /* superclass definition */
+  {"supervise", 1}, /* superclass definition */
-      {"supervisor", 1}, /* real name of the supervisor */
+  {"supervisor", 1}, /* real name of the supervisor */
-      {"supervisormail",1}, /* email of supervisor */
+  {"supervisormail",1}, /* email of supervisor */
-      {"trustfile", 1}, /* trusted files in special adm modules */
+  {"trustfile", 1}, /* trusted files in special adm modules */
-      {"useropts", 1}, /* user options */
+  {"useropts", 1}, /* user options */
-      {"writable", 1}, /* writable variables in user file, words */
+  {"writable", 1}, /* writable variables in user file, words */
 };
 int INTERNAL_NAME_NO=(sizeof(internal_name)/sizeof(internal_name[0]));
 char *httpd_vars[]={
-      "HTTP_ACCEPT",
+  "HTTP_ACCEPT",
-      "HTTP_ACCEPT_CHARSET",
+  "HTTP_ACCEPT_CHARSET",
-      "HTTP_ACCEPT_LANGUAGE",
+  "HTTP_ACCEPT_LANGUAGE",
-      "HTTP_COOKIE",
+  "HTTP_COOKIE",
-      "HTTP_HOST",
+  "HTTP_HOST",
-      "HTTP_USER_AGENT",
+  "HTTP_USER_AGENT",
-      "HTTP_X_REQUESTED_WITH",
+  "HTTP_X_REQUESTED_WITH",
-      "HTTPS",
+  "HTTPS",
-      "QUERY_STRING",
+  "QUERY_STRING",
-      "REMOTE_HOST",
+  "REMOTE_HOST",
-      "REMOTE_ADDR",
+  "REMOTE_ADDR",
-      "REMOTE_PORT",
+  "REMOTE_PORT",
-      "REQUEST_METHOD",
+  "REQUEST_METHOD",
-      "SCRIPT_NAME",
+  "SCRIPT_NAME",
-      "SERVER_NAME",
+  "SERVER_NAME",
-      "SERVER_SOFTWARE",
+  "SERVER_SOFTWARE",
-      "SERVER_PROTOCOL"
+  "SERVER_PROTOCOL"
 };
 #define HTTPD_VAR_NO (sizeof(httpd_vars)/sizeof(httpd_vars[0]))
 /* security: these variables will not be visible to child processes */
 char *unsetvars[]={
- "DOCUMENT_ROOT","SERVER_SIGNATURE","SERVER_SOFTWARE",
+  "DOCUMENT_ROOT","SERVER_SIGNATURE","SERVER_SOFTWARE",
       "UNIQUE_ID","HTTP_KEEP_ALIVE","SSL_SESSION_ID"
 };
 #define unsetvarcnt (sizeof(unsetvars)/sizeof(unsetvars[0]))
 int httpd_type=httpd_apache;
 void useropts(void);
 /* Make certain httpd variables readable by modules */
 void take_httpd_vars(void)
+{
-    int i;
+  int i;
-    char *p, buf[MAX_NAMELEN+1];
+  char *p, buf[MAX_NAMELEN+1];
-    var_noexport=1;
+  var_noexport=1;
-    for(i=0;i<HTTPD_VAR_NO;i++) {
+  for(i=0;i<HTTPD_VAR_NO;i++) {
-     snprintf(buf,sizeof(buf),"httpd_%s",httpd_vars[i]);
+   snprintf(buf,sizeof(buf),"httpd_%s",httpd_vars[i]);
-     if((p=getenv(httpd_vars[i]))!=NULL) setvar(buf,p);
+   if((p=getenv(httpd_vars[i]))!=NULL) setvar(buf,p);
-    }
+  }
-    var_noexport=0;
+  var_noexport=0;
-    for(i=0;i<unsetvarcnt;i++) unsetenv(unsetvars[i]);
+  for(i=0;i<unsetvarcnt;i++) unsetenv(unsetvars[i]);
-     /* IPv4 IPv6*/
+   /* IPv4 IPv6*/
-    p=getenv("REMOTE_ADDR");if(p!=NULL && (strcmp(p,"127.0.0.1")==0 || strcmp(p,"::1")==0)) human_access=1;
+  p=getenv("REMOTE_ADDR");if(p!=NULL && (strcmp(p,"127.0.0.1")==0 || strcmp(p,"::1")==0)) human_access=1;
-    p=getenv("HTTP_REFERER"); if(p!=NULL && *p!=0) setvar("wims_referer",p);
+  p=getenv("HTTP_REFERER"); if(p!=NULL && *p!=0) setvar("wims_referer",p);
+}
 /* cookie2session */
 void cookie2session(void)
 {
-    char cksession[64], psession[32], *ckey, *p;
+  char cksession[64], psession[32], *ckey, *p;
-    char nbuf[MAX_FNAME+1];
+  char nbuf[MAX_FNAME+1];
-    if(mode==mode_popup) return;
+  if(mode==mode_popup) return;
-    if(cookiegot[0]==0) {
+  if(cookiegot[0]==0) {
-     ckset: cookiegot[0]=0; setcookie=1; return;
+   ckset: cookiegot[0]=0; setcookie=1; return;
-    }
+  }
-    p=getvar("special_parm");
+  p=getvar("special_parm");
-    if(p!=NULL && strcmp(p,"ignorecookie")==0) return;
+  if(p!=NULL && strcmp(p,"ignorecookie")==0) return;
-    mystrncpy(cksession,cookiegot,sizeof(cksession));
+  mystrncpy(cksession,cookiegot,sizeof(cksession));
-    ckey=strchr(cksession,'-');
+  ckey=strchr(cksession,'-');
-    if(ckey==NULL) goto ckset; else *ckey++=0;
+  if(ckey==NULL) goto ckset; else *ckey++=0;
-    p=getvar("wims_session"); if(p==NULL) p="";
+  p=getvar("wims_session"); if(p==NULL) p="";
-    if(strstr(p,"new")!=NULL) goto ckset;
+  if(strstr(p,"new")!=NULL) goto ckset;
-    mystrncpy(psession,p,sizeof(psession));
+  mystrncpy(psession,p,sizeof(psession));
-    p=strchr(psession,'_'); if(p!=NULL) *p=0;
+  p=strchr(psession,'_'); if(p!=NULL) *p=0;
-    if(psession[0]!=0) {
+  if(psession[0]!=0) {
-      if(strcmp(psession,cksession)==0) return;
+    if(strcmp(psession,cksession)==0) return;
-      if(session_exists(psession)) goto ckset;
+    if(session_exists(psession)) goto ckset;
-      if(session_exists(cksession)) goto change;
+    if(session_exists(cksession)) goto change;
-    }
+  }
-    else {
+  else {
-      if(!session_exists(cksession)) return;
+    if(!session_exists(cksession)) return;
-      change:
+    change:
-      p=getenv("HTTPS");
+    p=getenv("HTTPS");
-      if(p!=NULL && strcasecmp(p,"on")==0) goto ckset;
+    if(p!=NULL && strcasecmp(p,"on")==0) goto ckset;
-      mkfname(nbuf,"%s/%s/var",session_dir,cksession);
+    mkfname(nbuf,"%s/%s/var",session_dir,cksession);
-      getdef(nbuf,"w_wims_ismanager",tmplbuf);
+    getdef(nbuf,"w_wims_ismanager",tmplbuf);
-      if(tmplbuf[0]!=0 && tmplbuf[0]!='0') goto ckset;
+    if(tmplbuf[0]!=0 && tmplbuf[0]!='0') goto ckset;
-      getdef(nbuf,"w_wims_protocol",tmplbuf);
+    getdef(nbuf,"w_wims_protocol",tmplbuf);
-      if(strcasecmp(tmplbuf,"https")==0) goto ckset;
+    if(strcasecmp(tmplbuf,"https")==0) goto ckset;
-      mkfname(nbuf,"%s/%s/var.stat",session_dir,cksession);
+    mkfname(nbuf,"%s/%s/var.stat",session_dir,cksession);
-      getdef(nbuf,"wims_user",tmplbuf);
+    getdef(nbuf,"wims_user",tmplbuf);
-      if(tmplbuf[0]!=0) goto ckset;
+    if(tmplbuf[0]!=0) goto ckset;
-      force_setvar(ro_name[ro_session],cksession);
+    force_setvar(ro_name[ro_session],cksession);
-      setsesdir(cksession);
+    setsesdir(cksession);
-      force_setvar("wims_subsession","");
+    force_setvar("wims_subsession","");
-      session_serial=0;
+    session_serial=0;
-    }
+  }
+}
 void determine_font(char *l)
+{
-    int i;
+  int i;
-    if(l==NULL || *l==0) return;
+  if(l==NULL || *l==0) return;
-    for(i=0;i<charname_no && memcmp(charname[i].name,l,2);i++);
+  for(i=0;i<charname_no && memcmp(charname[i].name,l,2);i++);
-    if(i<charname_no) setvar("wims_main_font",charname[i].font);
+  if(i<charname_no) setvar("wims_main_font",charname[i].font);
+}
 void determine_dirn(char *l)
 {
-    int i;
+  int i;
-    if(l==NULL || *l==0) return;
+  if(l==NULL || *l==0) return;
-    for(i=0;i<dirnname_no && memcmp(dirnname[i].name,l,2);i++);
+  for(i=0;i<dirnname_no && memcmp(dirnname[i].name,l,2);i++);
-    if(i<dirnname_no) setvar("wims_main_dirn",dirnname[i].dirn);
+  if(i<dirnname_no) setvar("wims_main_dirn",dirnname[i].dirn);
+}
 void predetermine_language(void)
+{
-    char *p;
+  char *p;
-    int i,n;
+  int i,n;
-    if(pre_language[0]!=0) p=pre_language;
+  if(pre_language[0]!=0) p=pre_language;
-    else p=getenv("HTTP_ACCEPT_LANGUAGE");
+  else p=getenv("HTTP_ACCEPT_LANGUAGE");
-    if(p!=NULL && strlen(p)>=2) {
+  if(p!=NULL && strlen(p)>=2) {
-      for(i=0;i<available_lang_no && memcmp(p,available_lang[i],2)!=0;i++);
-      if(i<available_lang_no) goto lend;
-    }
-    p=getenv("HTTP_USER_AGENT");
-    if(p!=NULL && strlen(p)>=5) {
-      char *q;
-      if((q=strchr(p,'['))!=NULL && islower(*(q+1)) && islower(*(q+2)) && *(q+3)==']') {
-          char bb[4];
-          bb[0]=*(q+1);bb[1]=*(q+2);bb[2]=0;
-          for(i=0;i<available_lang_no && memcmp(bb,available_lang[i],2)!=0;i++);
-          if(i<available_lang_no) {
-            memmove(lang,bb,2); lang[2]=0;
-            goto lend2;
-          }
-      }
-    }
-    p=getenv("HTTP_HOST"); if(p==NULL) goto lend2;
-    n=strlen(p); if(n<=3 || *(p+n-3)!='.') goto lend2;
-    p=p+n-2;
     for(i=0;i<available_lang_no && memcmp(p,available_lang[i],2)!=0;i++);
+    if(i<available_lang_no) goto lend;
+  }
+  p=getenv("HTTP_USER_AGENT");
+  if(p!=NULL && strlen(p)>=5) {
+    char *q;
+    if((q=strchr(p,'['))!=NULL && islower(*(q+1)) && islower(*(q+2)) && *(q+3)==']') {
+        char bb[4];
+        bb[0]=*(q+1);bb[1]=*(q+2);bb[2]=0;
+        for(i=0;i<available_lang_no && memcmp(bb,available_lang[i],2)!=0;i++);
-    if(i<available_lang_no) {
+        if(i<available_lang_no) {
-      lend: memmove(lang,p,2); lang[2]=0;
+          memmove(lang,bb,2); lang[2]=0;
-      lend2: determine_font(lang);determine_dirn(lang);
+          goto lend2;
+        }
+    }
+  }
+  p=getenv("HTTP_HOST"); if(p==NULL) goto lend2;
+  n=strlen(p); if(n<=3 || *(p+n-3)!='.') goto lend2;
+  p=p+n-2;
+  for(i=0;i<available_lang_no && memcmp(p,available_lang[i],2)!=0;i++);
+  if(i<available_lang_no) {
+    lend: memmove(lang,p,2); lang[2]=0;
+    lend2: determine_font(lang);determine_dirn(lang);
+  }
+}
 /* print a special page */
 void put_special_page(char *pname)
+{
-    determine_font(lang);
+  determine_font(lang);
-    determine_dirn(lang);
+  determine_dirn(lang);
-    phtml_put_base(mkfname(NULL,"%s.phtml.%s",pname,lang),0);
+  phtml_put_base(mkfname(NULL,"%s.phtml.%s",pname,lang),0);
-    write_logs();free(var_str);
+  write_logs();free(var_str);
+}
 /* check whether the connection is a site manager. */
 void manager_check(void)
+{
-    char *p, *pp, buf[16];
+  char *p, *pp, buf[16];
-    struct stat confstat;
+  struct stat confstat;
-    int i;
+  int i;
-    manageable=0;
+  manageable=0;
-    if(robot_access || *manager_site==0 || checkhost(manager_site)<1)
+  if(robot_access || *manager_site==0 || checkhost(manager_site)<1)
-      goto mend;
+    goto mend;
-    if(manager_https) {
+  if(manager_https) {
-      p=getenv("HTTPS");
+    p=getenv("HTTPS");
-      if(p==NULL || strcmp(p,"on")!=0) goto mend;
+    if(p==NULL || strcmp(p,"on")!=0) goto mend;
-    }
+  }
 /* IPv4 IPv6*/
-    if(strcmp(remote_addr,"127.0.0.1")==0 || strcmp(remote_addr,"::1")==0) {
+  if(strcmp(remote_addr,"127.0.0.1")==0 || strcmp(remote_addr,"::1")==0) {
-      int port, port2;
+    int port, port2;
-      char tester[128];
+    char tester[128];
-      p=getenv("REMOTE_PORT"); if(p==NULL) goto mend;
+    p=getenv("REMOTE_PORT"); if(p==NULL) goto mend;
-      port=atoi(p); if(port<1024 || port>65535) goto mend;
+    port=atoi(p); if(port<1024 || port>65535) goto mend;
-      p=getenv("SERVER_PORT"); if(p==NULL) goto mend;
+    p=getenv("SERVER_PORT"); if(p==NULL) goto mend;
-      port2=atoi(p); if(port2>=10000 || port2<=0) goto mend;
+    port2=atoi(p); if(port2>=10000 || port2<=0) goto mend;
 /* this is very non-portable */
-      manageable=1;
+    manageable=1;
-      accessfile(tmplbuf,"r","/proc/net/tcp");
+    accessfile(tmplbuf,"r","/proc/net/tcp");
-      snprintf(tester,sizeof(tester)," 0100007F:%04X 0100007F:%04X ",
+    snprintf(tester,sizeof(tester)," 0100007F:%04X 0100007F:%04X ",
-             port,port2);
+           port,port2);
-      p=strstr(tmplbuf,tester);
+    p=strstr(tmplbuf,tester);
-      if(p!=NULL) {
+    if(p!=NULL) {
-          pp=strchr(p,'\n'); if(pp!=NULL) *pp=0;
+      pp=strchr(p,'\n'); if(pp!=NULL) *pp=0;
-          if(strlen(p)>=75) {
+      if(strlen(p)>=75) {
-            p=find_word_start(p+70); *find_word_end(p)=0;
+        p=find_word_start(p+70); *find_word_end(p)=0;
-            if(atoi(p)==geteuid()) manageable=2;
+        if(atoi(p)==geteuid()) manageable=2;
-          }
-      }
-    }
-    else manageable=1;
-    i=stat(config_file,&confstat);
-    if(i==0 && manageable>0 && (confstat.st_mode&(S_IRWXO|S_IRWXG))!=0) manageable=-1;
-    if(manageable>0 && !trusted_module()) manageable=0;
-    if(manageable==1) {
-      accessfile(tmplbuf,"r","%s/.manager",session_prefix);
-      if(strstr(tmplbuf,"yes")!=NULL) manageable=2;
-    }
-    if(manageable==1) {
-      p=getvar(ro_name[ro_module]);
-      if(p!=NULL && strncmp(p,"adm/manage",strlen("adm/manage"))==0) {
-          struct stat pstat;
-          if(stat("../log/.wimspass",&pstat)==0) {
-            if((S_IFMT&pstat.st_mode)!=S_IFREG ||
-               ((S_IRWXO|S_IRWXG)&pstat.st_mode)!=0)
-              manageable=-2;
-          }
+      }
+    }
+  }
+  else manageable=1;
+  i=stat(config_file,&confstat);
+  if(i==0 && manageable>0 && (confstat.st_mode&(S_IRWXO|S_IRWXG))!=0) manageable=-1;
+  if(manageable>0 && !trusted_module()) manageable=0;
+  if(manageable==1) {
+    accessfile(tmplbuf,"r","%s/.manager",session_prefix);
+    if(strstr(tmplbuf,"yes")!=NULL) manageable=2;
+  }
+  if(manageable==1) {
+    p=getvar(ro_name[ro_module]);
+    if(p!=NULL && strncmp(p,"adm/manage",strlen("adm/manage"))==0) {
+      struct stat pstat;
+      if(stat("../log/.wimspass",&pstat)==0) {
+        if((S_IFMT&pstat.st_mode)!=S_IFREG ||
+           ((S_IRWXO|S_IRWXG)&pstat.st_mode)!=0)
+          manageable=-2;
+      }
+    }
+  }
-    mend:
+  mend:
-    mystrncpy(buf,int2str(manageable),sizeof(buf));
+  mystrncpy(buf,int2str(manageable),sizeof(buf));
-    force_setvar("wims_ismanager",buf);
+  force_setvar("wims_ismanager",buf);
-    if(manageable>=2) {
+  if(manageable>=2) {
-      struct rlimit rlim;
+    struct rlimit rlim;
-      rlimit_cpu*=10;
+    rlimit_cpu*=10;
-      rlim.rlim_cur=rlim.rlim_max=rlimit_cpu;
+    rlim.rlim_cur=rlim.rlim_max=rlimit_cpu;
-      setrlimit(RLIMIT_CPU,&rlim);
+    setrlimit(RLIMIT_CPU,&rlim);
-      mystrncpy(buf,int2str(rlimit_cpu),sizeof(buf));
+    mystrncpy(buf,int2str(rlimit_cpu),sizeof(buf));
-      setvar("wims_cpu_limit",buf);
+    setvar("wims_cpu_limit",buf);
-      initalarm();
+    initalarm();
-    }
+  }
+}
 /* check for robot access */
 void robot_check(void)
+{
-    char *ua, *p, *ses, *c, *mod;
+  char *ua, *p, *ses, *c, *mod;
-    int i;
+  int i;
-    if(human_access) return;
+  if(human_access) return;
-    mod=getvar(ro_name[ro_module]);
+  mod=getvar(ro_name[ro_module]);
-    if(mod!=NULL && strcmp(mod,"adm/raw")==0) return;
+  if(mod!=NULL && strcmp(mod,"adm/raw")==0) return;
-    ses=getvar(ro_name[ro_session]);
+  ses=getvar(ro_name[ro_session]);
 /* user has valid session; OK */
-    if(ses!=NULL && strncmp(ses,robot_session,strlen(robot_session))!=0
+  if(ses!=NULL && strncmp(ses,robot_session,strlen(robot_session))!=0
-       && strchr(ses,'/')==NULL
+     && strchr(ses,'/')==NULL
-       && ftest(mkfname(NULL,"%s/%s",s2_dir,ses))==is_dir)
+     && ftest(mkfname(NULL,"%s/%s",s2_dir,ses))==is_dir)
-      return;
+    return;
-    ua=getenv("HTTP_USER_AGENT"); if(ua==NULL) ua="";
+  ua=getenv("HTTP_USER_AGENT"); if(ua==NULL) ua="";
-    ua=find_word_start(ua);
+  ua=find_word_start(ua);
-    if(strncasecmp(ua,"Mozilla",strlen("Mozilla"))==0 &&
+  if(strncasecmp(ua,"Mozilla",strlen("Mozilla"))==0 &&
-       (p=strstr(ua,"compatible"))!=NULL)
+     (p=strstr(ua,"compatible"))!=NULL)
-      ua=find_word_start(find_word_end(p));
+    ua=find_word_start(find_word_end(p));
-    if(*ua) {
+  if(*ua) {
-      for(i=0;i<good_agent_no
+    for(i=0;i<good_agent_no
-          && strncasecmp(ua,good_agent[i],strlen(good_agent[i]));i++);
+        && strncasecmp(ua,good_agent[i],strlen(good_agent[i]));i++);
-      if(i<good_agent_no) return;
+    if(i<good_agent_no) return;
-      for(i=0;i<bad_agent_no
+    for(i=0;i<bad_agent_no
-          && strstr(ua,bad_agent[i])==NULL;i++);
+        && strstr(ua,bad_agent[i])==NULL;i++);
-      if(i<bad_agent_no) user_error("trapped");
+    if(i<bad_agent_no) user_error("trapped");
-    }
+  }
-    force_setvar(ro_name[ro_session],robot_session);
+  force_setvar(ro_name[ro_session],robot_session);
-    setsesdir(robot_session);
+  setsesdir(robot_session);
-    c=getvar(ro_name[ro_cmd]);
+  c=getvar(ro_name[ro_cmd]);
-    robot_access=1;
+  robot_access=1;
-    if(c!=NULL && strcmp(c,"new") && strcmp(c,"intro")) {
+  if(c!=NULL && strcmp(c,"new") && strcmp(c,"intro")) {
-      force_setvar(ro_name[ro_cmd],"robot_error");
+    force_setvar(ro_name[ro_cmd],"robot_error");
-      nph_header(450); put_special_page("robot");
+    nph_header(450); put_special_page("robot");
-      flushoutput(); flushlog(); exit(0);
+    flushoutput(); flushlog(); exit(0);
-    }
+  }
 }
 /* type=0: ordinary; type=1: multipart/form-data */
 void parse_query_string(int len, int type)
+{
-    int i,j,l,v,cmd_defined;
+  int i,j,l,v,cmd_defined;
-    int parenth=-1, ll, lb, dlen;
+  int parenth=-1, ll, lb, dlen;
-    char *start, *p, *p1, *pt, *b1="";
+  char *start, *p, *p1, *pt, *b1="";
-    cmd_defined=0;
+  cmd_defined=0;
-    setvar("wims_subsession","");
+  setvar("wims_subsession","");
-    ll=lb=0;
+  ll=lb=0;
+  if(type) {
+    ll=strlen(mpboundary);
+    start=strstr(var_str,mpboundary);
+    if(start==NULL) start=var_str+strlen(var_str);
+    if(strstr(var_str,"\r\n\r\n")!=NULL) b1="\r\n\r\n";
+    else b1="\n\n";
+    lb=strlen(b1);
+  }
+  else start=var_str;
+  for(v=0, p1=start;p1<var_str+len;p1+=l) {
     if(type) {
-      ll=strlen(mpboundary);
-      start=strstr(var_str,mpboundary);
-      if(start==NULL) start=var_str+strlen(var_str);
-      if(strstr(var_str,"\r\n\r\n")!=NULL) b1="\r\n\r\n";
-      else b1="\n\n";
-      lb=strlen(b1);
-    }
-    else start=var_str;
-    for(v=0, p1=start;p1<var_str+len;p1+=l) {
-      if(type) {
-          char *p2, *p3, *p4, *p5;
+      char *p2, *p3, *p4, *p5;
-          p2=p1+ll; p3=memstr(p2,mpboundary,var_str+len-p2); l=p3-p1;
+      p2=p1+ll; p3=memstr(p2,mpboundary,var_str+len-p2); l=p3-p1;
-          p=memstr(p2,b1,var_str+len-p2); if(p>=p3) continue;
+      p=memstr(p2,b1,var_str+len-p2); if(p>=p3) continue;
+      p+=lb;
-          p+=lb; if(p3<var_str+len) {
+      if(p3<var_str+len) {
-            while(*p3!='\n' && p3>p2) p3--;
+        while(*p3!='\n' && p3>p2) p3--;
-            *p3=0;
+        *p3=0;
-            p3--; if(*p3=='\r') *p3=0;
+        p3--; if(*p3=='\r') *p3=0;
-          }
-          dlen=p3-p;
-          p2=memstr(p2,"name=",p3-p2); if(p2>=p3) continue;
-          p2+=strlen("name="); if(*p2=='"') p2++;
-          for(p3=p2; myisalnum(*p3) || strchr("._",*p3)!=NULL; p3++);
-          if(p3==p2) continue;
-          if(p3-p2==strlen("wims_deposit") &&
-             strncmp(p2,"wims_deposit",p3-p2)==0) {
-            p4=memstr(p1,"filename=",p-p1); if(p4<p) {
-                p4+=strlen("filename="); if(*p4=='"') {
-                  p4++; p5=strchr(p4,'"');
-                  if(p5==NULL || p5-p4>=MAX_FNAME) goto emptyquote;
-                }
-                else {
-                  emptyquote:
-                  for(p5=p4; p5<p && !isspace(*p5) &&
-                      strchr(";\"~#*?=,'",*p5)==NULL; p5++);
-                }
-                if(p5>p4) {
-                  *p5=0;
-                  for(p5--;
-                      p5>=p4 && !isspace(*p5) && strchr("/\\:",*p5)==NULL;
-                      p5--);
-                  if(p5>=p4) p4=p5+1;
-                  if(*p4==0) goto noname;
-                  if(strstr(p4,"..")!=NULL || *p4=='.')
-                    p4="noname.file";
-                  setvar("wims_deposit",p4);
-                }
-                else {
-                  noname: setvar("wims_deposit","noname.file");
-                }
-            }
-            deplen=dlen;
-          }
-          *p3=0; l-=p2-p1; p1=p2;
+      }
-      else {
+      dlen=p3-p;
+      p2=memstr(p2,"name=",p3-p2); if(p2>=p3) continue;
+      p2+=strlen("name="); if(*p2=='"') p2++;
+      for(p3=p2; myisalnum(*p3) || strchr("._",*p3)!=NULL; p3++);
-          p1=find_word_start(p1);
+      if(p3==p2) continue;
+        if(p3-p2==strlen("wims_deposit") &&
+           strncmp(p2,"wims_deposit",p3-p2)==0) {
+          p4=memstr(p1,"filename=",p-p1); if(p4<p) {
+            p4+=strlen("filename="); if(*p4=='"') {
-          l=strlen(p1)+1; p=strchr(p1,'=');
+              p4++; p5=strchr(p4,'"');
+              if(p5==NULL || p5-p4>=MAX_FNAME) goto emptyquote;
+            }
+            else {
+              emptyquote:
+              for(p5=p4; p5<p && !isspace(*p5) &&
+                  strchr(";\"~#*?=,'",*p5)==NULL; p5++);
+            }
+            if(p5>p4) {
+              *p5=0;
+              for(p5--;
+                  p5>=p4 && !isspace(*p5) && strchr("/\\:",*p5)==NULL;
+                  p5--);
-          if(p==NULL) p=p1+strlen(p1);
+              if(p5>=p4) p4=p5+1;
-          if(*p==0 && l>1) {
+              if(*p4==0) goto noname;
+              if(strstr(p4,"..")!=NULL || *p4=='.')
-            user_variable[v].name="no_name";
+                p4="noname.file";
-            user_variable[v].value=p1;
+              setvar("wims_deposit",p4);
-            coord_input=1;
+            }
-            goto nnext;
+            else {
+              noname: setvar("wims_deposit","noname.file");
+            }
+          }
-          *p++=0;
+          deplen=dlen;
+        }
+        *p3=0; l-=p2-p1; p1=p2;
+    }
+    else {
+      p1=find_word_start(p1);
+      l=strlen(p1)+1; p=strchr(p1,'=');
+      if(p==NULL) p=p1+strlen(p1);
+      if(*p==0 && l>1) {
+        user_variable[v].name="no_name";
+        user_variable[v].value=p1;
+        coord_input=1;
+        goto nnext;
+      }
+      *p++=0;
+    }
 /* empty name or empty value: ignore */
-        if(*p1==0 || *p==0) continue;
+    if(*p1==0 || *p==0) continue;
 /* We do not treat names containing '.' */
-      for(pt=strchr(p1,'.'); pt; pt=strchr(++pt,'.')) *pt='_';
+    for(pt=strchr(p1,'.'); pt; pt=strchr(++pt,'.')) *pt='_';
 /* Restrictions on variable names */
-      for(pt=p1; myisalnum(*pt) || *pt=='_'; pt++);
+    for(pt=p1; myisalnum(*pt) || *pt=='_'; pt++);
-      if(*pt) continue;
+    if(*pt) continue;
-      if(strcmp(p1,"wims_deposit")!=0) _tolinux(p);
+    if(strcmp(p1,"wims_deposit")!=0) _tolinux(p);
 /* This is a restriction:
  * Every parameter must have matching parentheses.
  */
-      if(parenth==-1 && strncmp(p1,"freepar_",strlen("freepar_"))!=0
+    if(parenth==-1 && strncmp(p1,"freepar_",strlen("freepar_"))!=0
          && strcmp(p1,"wims_deposit")!=0
          && check_parentheses(p,1)) parenth=v;
-      if(strcmp(p1,"special_parm")==0 && strcmp(p,"wims")==0)
+    if(strcmp(p1,"special_parm")==0 && strcmp(p,"wims")==0)
         human_access=1;
-      j=search_list(ro_name,RO_NAME_NO,sizeof(ro_name[0]),p1);
+    j=search_list(ro_name,RO_NAME_NO,sizeof(ro_name[0]),p1);
-      if(j>=0) {
+    if(j>=0) {
-          if(j==ro_session) {
+      if(j==ro_session) {
-            p=find_word_start(p); *find_word_end(p)=0;
+        p=find_word_start(p); *find_word_end(p)=0;
-            if(strlen(p)>MAX_SESSIONLEN) continue;
+        if(strlen(p)>MAX_SESSIONLEN) continue;
-            if(strcmp(p,robot_session)==0) p="";
+        if(strcmp(p,robot_session)==0) p="";
-            if(strcasecmp(p,"popup")==0) {
+        if(strcasecmp(p,"popup")==0) {
-                mode=mode_popup;
+          mode=mode_popup;
-                force_setvar("wims_mode","popup");
+          force_setvar("wims_mode","popup");
-                force_setvar("session","");
+          force_setvar("session","");
-                continue;
-            }
-          }
-          if(j==ro_module) module_defined=1;
-          if(j==ro_cmd) {
-            p=find_word_start(p); *find_word_end(p)=0;
-            if(strlen(p)>16) continue;
-            cmd_defined=1;
-          }
-          if(j==ro_lang) {
-            if(strlen(p)!=2) continue;
-            for(i=0;i<available_lang_no && strcmp(available_lang[i],p)!=0;i++);
-            if(i<available_lang_no) {user_lang=1; ovlstrcpy(lang,p);}
-            else continue;
-          }
-/* strip leading and trailing '/'s in module name */
-          if(j==ro_module) {
-            p=find_word_start(p); *find_word_end(p)=0;
-            while(*p=='/') p++;
-            while(*p!=0 && *(p+strlen(p)-1)=='/') *(p+strlen(p)-1)=0;
-            if(strlen(p)>MAX_MODULELEN) continue;
-          }
-          setvar(p1,p);
-          if(j==ro_session && mode!=mode_popup) {
-            char *pp, *pr;
-            char buf[1024];
-            mystrncpy(buf,p,sizeof(buf));
-            if((pp=strchr(buf,'.'))!=NULL) {
-                *pp++=0; session_serial=atoi(pp);
-                if(pp<0) pp=0;
-            }
-            else session_serial=0;
-            pp=strchr(buf,'_');
-            if(pp!=NULL && (pr=strstr(pp,"_mhelp"))!=NULL) {
-                *pr=0; ismhelp=1; lastout_file=-1;
-                setvar("wims_inssub","mh");
-            }
-            force_setvar("wims_session",buf);
-            if(pp!=NULL) force_setvar("wims_subsession",pp);
-          }
           continue;
+        }
+      }
+      if(j==ro_module) module_defined=1;
+      if(j==ro_cmd) {
+        p=find_word_start(p); *find_word_end(p)=0;
+        if(strlen(p)>16) continue;
+        cmd_defined=1;
+      }
+      if(j==ro_lang) {
+        if(strlen(p)!=2) continue;
+        for(i=0;i<available_lang_no && strcmp(available_lang[i],p)!=0;i++);
+        if(i<available_lang_no) {user_lang=1; ovlstrcpy(lang,p);}
+        else continue;
+      }
+/* strip leading and trailing '/'s in module name */
+      if(j==ro_module) {
+        p=find_word_start(p); *find_word_end(p)=0;
+        while(*p=='/') p++;
+        while(*p!=0 && *(p+strlen(p)-1)=='/') *(p+strlen(p)-1)=0;
+        if(strlen(p)>MAX_MODULELEN) continue;
+      }
+      setvar(p1,p);
+      if(j==ro_session && mode!=mode_popup) {
+        char *pp, *pr;
+        char buf[1024];
+        mystrncpy(buf,p,sizeof(buf));
+        if((pp=strchr(buf,'.'))!=NULL) {
+          *pp++=0; session_serial=atoi(pp);
+          if(pp<0) pp=0;
+        }
+        else session_serial=0;
+        pp=strchr(buf,'_');
+        if(pp!=NULL && (pr=strstr(pp,"_mhelp"))!=NULL) {
+          *pr=0; ismhelp=1; lastout_file=-1;
+          setvar("wims_inssub","mh");
+        }
+        force_setvar("wims_session",buf);
+        if(pp!=NULL) force_setvar("wims_subsession",pp);
+      }
-      user_variable[v].name=p1;
-      user_variable[v].value=p;
+      continue;
-nnext:v++; if(v>=MAX_VAR_NUM) user_error("too_many_variables");
+    }
+    user_variable[v].name=p1;
+    user_variable[v].value=p;
+nnext:v++; if(v>=MAX_VAR_NUM) user_error("too_many_variables");
+  }
-    user_var_no=v;
+  user_var_no=v;
-    if(parenth>=0) {
+  if(parenth>=0) {
-      char buf[16];
+    char buf[16];
-      mystrncpy(buf,int2str(user_var_no),sizeof(buf));
+    mystrncpy(buf,int2str(user_var_no),sizeof(buf));
-      setvar("user_var_no",buf);
+    setvar("user_var_no",buf);
-      for(i=0;i<user_var_no;i++) {
+    for(i=0;i<user_var_no;i++) {
-          snprintf(buf,sizeof(buf),"name%d",i);
+      snprintf(buf,sizeof(buf),"name%d",i);
-          setvar(buf,user_variable[i].name);
+      setvar(buf,user_variable[i].name);
-          snprintf(buf,sizeof(buf),"value%d",i);
+      snprintf(buf,sizeof(buf),"value%d",i);
-          setvar(buf,user_variable[i].value);
+      setvar(buf,user_variable[i].value);
-      }
-      mystrncpy(buf,int2str(parenth),sizeof(buf));
-      setvar("bad_parentheses",buf);
-      user_error("unmatched_parentheses");
+    }
+    mystrncpy(buf,int2str(parenth),sizeof(buf));
+    setvar("bad_parentheses",buf);
+    user_error("unmatched_parentheses");
+  }
-    p=getenv("SCRIPT_NAME");
+  p=getenv("SCRIPT_NAME");
-    if(p!=NULL && (p=strstr(p,"/getfile/"))!=NULL) {
+  if(p!=NULL && (p=strstr(p,"/getfile/"))!=NULL) {
-      p+=strlen("/getfile/");
+    p+=strlen("/getfile/");
-      force_setvar(ro_name[ro_cmd],commands[cmd_getfile]);
+    force_setvar(ro_name[ro_cmd],commands[cmd_getfile]);
-      force_setvar("special_parm",p);
+    force_setvar("special_parm",p);
-      cmd_defined=1;
+    cmd_defined=1;
-    }
+  }
-    if(module_defined && !cmd_defined) setvar(ro_name[ro_cmd],commands[cmd_intro]);
+  if(module_defined && !cmd_defined) setvar(ro_name[ro_cmd],commands[cmd_intro]);
-    robot_check(); cookie2session();
+  robot_check(); cookie2session();
+}
 /* parse special commands */
 void special_cmds(void)
 {
-    char *c, *p;
+  char *c, *p;
-    int i;
+  int i;
-    long int l=-1;
+  long int l=-1;
-    c=getvar(ro_name[ro_cmd]);
+  c=getvar(ro_name[ro_cmd]);
-    if(c==NULL || *c==0) {  /* no module name nor command */
+  if(c==NULL || *c==0) {  /* no module name nor command */
-      setvar(ro_name[ro_module],home_module);
+    setvar(ro_name[ro_module],home_module);
-      setvar(ro_name[ro_cmd],commands[cmd_new]);
+    setvar(ro_name[ro_cmd],commands[cmd_new]);
+    return;
+  }
+  for(i=0;i<CMD_NO && strcmp(commands[i],c)!=0; i++);
+  switch(i) {
+    case cmd_intro: {
+      set_module_prefix();
+      default_form_method="get";
+      if(ftest(mkfname(NULL,"%s/%s",module_prefix,intro_file))<0) {
+        force_setvar(ro_name[ro_cmd],commands[cmd_new]);
-      return;
+        return;
+      }
+      p=getvar("wims_session");
+      if(p!=NULL && *p!=0) {
+        if(set_session_prefix()==0) check_session();
+        else {
+          trap_check(p);
+          if(strchr(p,'_')!=NULL && strchr(p,'/')==NULL) {
+            get_static_session_var();
+          }
+        }
+      }
+/* determine http protocol name. How to detect? */
+      p=getenv("HTTPS");
+      if(p!=NULL && strcmp(p,"on")==0) {
+        protocol="https"; set_protocol();
+      }
+      force_setvar("wims_protocol",protocol);
+      determine_font(lang);
+      determine_dirn(lang);
+      main_phtml_put(intro_file); debug_output();
+      introend: write_logs();free(var_str);
+      delete_pid(); exit(0);
+    }
+    case cmd_ref: {
+      set_module_prefix();
+      default_form_method="get";
+      p=getvar("wims_session");
+      if(p!=NULL && *p!=0) {
+        if(set_session_prefix()==0) check_session();
+        else trap_check(p);
+      }
+      determine_font(lang);
+      determine_dirn(lang);
+      main_phtml_put(ref_file); goto introend;
+    }
-    for(i=0;i<CMD_NO && strcmp(commands[i],c)!=0; i++);
-    switch(i) {
-      case cmd_intro: {
-          set_module_prefix();
-          default_form_method="get";
-          if(ftest(mkfname(NULL,"%s/%s",module_prefix,intro_file))<0) {
-            force_setvar(ro_name[ro_cmd],commands[cmd_new]);
-            return;
-          }
-          p=getvar("wims_session");
-          if(p!=NULL && *p!=0) {
-            if(set_session_prefix()==0) check_session();
-            else {
-                trap_check(p);
-                if(strchr(p,'_')!=NULL && strchr(p,'/')==NULL) {
-                  get_static_session_var();
-                }
-            }
-          }
-/* determine http protocol name. How to detect? */
-          p=getenv("HTTPS"); if(p!=NULL && strcmp(p,"on")==0) {
-            protocol="https"; set_protocol();
-          }
-          force_setvar("wims_protocol",protocol);
-          determine_font(lang);
-          determine_dirn(lang);
-          main_phtml_put(intro_file); debug_output();
-          introend: write_logs();free(var_str);
-          delete_pid(); exit(0);
-      }
-      case cmd_ref: {
-          set_module_prefix();
-          default_form_method="get";
-          p=getvar("wims_session");
-          if(p!=NULL && *p!=0) {
-            if(set_session_prefix()==0) check_session();
-            else trap_check(p);
-          }
-          determine_font(lang);
-          determine_dirn(lang);
-          main_phtml_put(ref_file); goto introend;
-      }
-      case cmd_getins: {
+    case cmd_getins: {
-          c=getvar(ro_name[ro_special_parm]);
+      c=getvar(ro_name[ro_special_parm]);
-          if(c==NULL || *c==0) {
+      if(c==NULL || *c==0) {
-            user_error_nolog=1; user_error("no_insnum");
+        user_error_nolog=1; user_error("no_insnum");
-          }
+      }
-          if(*c=='/' || strstr(c,"..")!=NULL) goto badins;
+      if(*c=='/' || strstr(c,"..")!=NULL) goto badins;
-          set_session_prefix();
+      set_session_prefix();
-          if(strstr(session_prefix,"robot")!=NULL) exit(0);
+      if(strstr(session_prefix,"robot")!=NULL) exit(0);
-          l=filelength("%s/%s",s2_prefix,c);
+      l=filelength("%s/%s",s2_prefix,c);
-          if(l<0) {
+      if(l<0) {
-            badins: user_error_nolog=1; user_error("bad_insnum");
+        badins: user_error_nolog=1; user_error("bad_insnum");
-          }
+      }
-          {
+      {
-            char *fmt;
+        char *fmt;
-            fmt=strchr(c,'.');
+        fmt=strchr(c,'.');
-            if(fmt==NULL) {
+        if(fmt==NULL) {
-                user_error_nolog=1; user_error("bad_insnum");
+            user_error_nolog=1; user_error("bad_insnum");
-            }
+        }
-            else fmt++;
+        else fmt++;
-            nph_header(200);
+        nph_header(200);
 /* insert format problem; bricolage */
-            printf("Content-type: image/%s\r\n\
+        printf("Content-type: image/%s\r\n\
 Content-length: %ld\r\n\r\n",fmt,l);
-            catfile(stdout,"%s/%s",s2_prefix,c); exit(0);
+        catfile(stdout,"%s/%s",s2_prefix,c); exit(0);
-          }
+      }
+    }
-      case cmd_getfile: {
+    case cmd_getfile: {
-          char fname[MAX_FNAME+1];
+      char fname[MAX_FNAME+1];
-          c=getvar(ro_name[ro_special_parm]);
+      c=getvar(ro_name[ro_special_parm]);
-          if(c==NULL || *c==0) {
+      if(c==NULL || *c==0) {
-            user_error_nolog=1; user_error("no_insnum");
+        user_error_nolog=1; user_error("no_insnum");
-          }
+      }
-          if(*c=='/' || strstr(c,"..")!=NULL) goto badfile;
+      if(*c=='/' || strstr(c,"..")!=NULL) goto badfile;
-          set_session_prefix();
+      set_session_prefix();
-          if(strstr(session_prefix,"robot")!=NULL) exit(0);
+      if(strstr(session_prefix,"robot")!=NULL) exit(0);
-          mkfname(fname,"%s/getfile/%s",session_prefix,c);
+      mkfname(fname,"%s/getfile/%s",session_prefix,c);
-          l=filelength("%s",fname);
+      l=filelength("%s",fname);
-          if(l<0 && strchr(session_prefix,'_')!=NULL) {
+      if(l<0 && strchr(session_prefix,'_')!=NULL) {
-            char *pt;
+        char *pt;
-            mystrncpy(fname,session_prefix,sizeof(fname));
+        mystrncpy(fname,session_prefix,sizeof(fname));
-            pt=strrchr(fname,'_'); if(pt) *pt=0;
+        pt=strrchr(fname,'_'); if(pt) *pt=0;
-            snprintf(fname+(pt-fname),sizeof(fname)-(pt-fname),
+        snprintf(fname+(pt-fname),sizeof(fname)-(pt-fname),
-                  "/getfile/%s",c);
+              "/getfile/%s",c);
-            l=filelength("%s",fname);
+        l=filelength("%s",fname);
-          }
+      }
-          if(l<0) {
+      if(l<0) {
-            badfile: user_error_nolog=1; user_error("bad_insnum");
+        badfile: user_error_nolog=1; user_error("bad_insnum");
-          }
+      }
-          if(l>512*1024) {
+      if(l>512*1024) {
-            struct rlimit rlim;
+        struct rlimit rlim;
-            rlimit_cpu*=l/(10*1024);
+        rlimit_cpu*=l/(10*1024);
-            rlim.rlim_cur=rlim.rlim_max=rlimit_cpu;
+        rlim.rlim_cur=rlim.rlim_max=rlimit_cpu;
-            initalarm();
+          initalarm();
-          }
+      }
-          {
+      {
-            char *p1;
+        char *p1;
-            char mime[MAX_LINELEN+1];
+        char mime[MAX_LINELEN+1];
-            for(p1=c+strlen(c);p1>c && isalpha(*(p1-1)); p1--);
+        for(p1=c+strlen(c);p1>c && isalpha(*(p1-1)); p1--);
-            ovlstrcpy(mime,"application/octet-stream");
+        ovlstrcpy(mime,"application/octet-stream");
-            if(p1>c && *(p1-1)=='.') {
+        if(p1>c && *(p1-1)=='.') {
-                setvar("translator_unknown",mime);
+          setvar("translator_unknown",mime);
-                setvar("dictionary","bases/sys/mime");
+          setvar("dictionary","bases/sys/mime");
-                snprintf(mime,sizeof(mime),"translator %s",p1);
+          snprintf(mime,sizeof(mime),"translator %s",p1);
-                calc_exec(mime);
+          calc_exec(mime);
-            }
+        }
-            nph_header(200);
+        nph_header(200);
-            printf("Content-type: %s\r\n\
+        printf("Content-type: %s\r\n\
 Content-length: %ld\r\n\r\n",mime,l);
-            catfile(stdout,"%s",fname); exit(0);
+        catfile(stdout,"%s",fname); exit(0);
-          }
+      }
+    }
       case cmd_close: {
-          char *p, b2[32]; int w;
+        char *p, b2[32]; int w;
-          char nbuf[MAX_FNAME+1], vbuf[MAX_LINELEN+1];
+        char nbuf[MAX_FNAME+1], vbuf[MAX_LINELEN+1];
-          p=getvar(ro_name[ro_session]);
+        p=getvar(ro_name[ro_session]);
-          if(p==NULL || strlen(p)<10 ||
+        if(p==NULL || strlen(p)<10 ||
-             strchr(p,'/')!=NULL) return;
+           strchr(p,'/')!=NULL) return;
-          mystrncpy(b2,p,sizeof(b2));
+        mystrncpy(b2,p,sizeof(b2));
-          p=strchr(b2,'.'); if(p!=NULL) *p=0;
+        p=strchr(b2,'.'); if(p!=NULL) *p=0;
-          mkfname(nbuf,"%s/%s/var.stat",session_dir,b2);
+        mkfname(nbuf,"%s/%s/var.stat",session_dir,b2);
-          getdef(nbuf,"wims_caller",vbuf);
+        getdef(nbuf,"wims_caller",vbuf);
-          if(vbuf[0]!=0) force_setvar(ro_name[ro_session],vbuf);
+        if(vbuf[0]!=0) force_setvar(ro_name[ro_session],vbuf);
-          w=wrapexec; wrapexec=1;
+        w=wrapexec; wrapexec=1;
-          call_sh("rm -Rf %s/%s* %s/%s* >/dev/null 2>&1",session_dir,b2,s2_dir,b2);
+        call_sh("rm -Rf %s/%s* %s/%s* >/dev/null 2>&1",session_dir,b2,s2_dir,b2);
-          wrapexec=w; cookiegot[0]=0;
+        wrapexec=w; cookiegot[0]=0;
-          force_setvar(ro_name[ro_cmd],"new");
+        force_setvar(ro_name[ro_cmd],"new");
+      }
       default: return;
-    }
+  }
+}
 /* This is run only when manually invoking the program.
  * Verifies the orderedness of various list tables.
  */
 void readstdin(int len)
+{
     int ll, l1, lt, lr;
     int cpulim;
     cpulim=rlimit_cpu; rlimit_cpu=3;
     lr=len; l1=0;
     while(lr>0) {
       nowtime=time(0); initalarm();
       ll=lr; if(ll>READSTDIN_WINDOW) ll=READSTDIN_WINDOW;
     special_cmds();
     parse_ro_names();
     manager_check();
     access_check(0);
 /* it is really for developing in wims, so no use in general */
-   if (1==1) {
+  if (1==1) {
     if(strstr(tmp_debug,"yes")!=NULL && checkhost(manager_site)>=1)
        trace_file = fopen(mkfname(NULL,"%s/%s",tmp_dir,"trace.txt"),"a");
-   }
+  }
-    set_variables();
+  set_variables();
-    determine_font(getvar("module_language"));
+  determine_font(getvar("module_language"));
-    determine_dirn(getvar("module_language"));
+  determine_dirn(getvar("module_language"));
-    if(!robot_access && session_prefix[0]!=0 && cmd_type!=cmd_help && !ismhelp)
+  if(!robot_access && session_prefix[0]!=0 && cmd_type!=cmd_help && !ismhelp)
-      lastout_file=creat(mkfname(NULL,"%s/%s",s2_prefix,lastout),
+    lastout_file=creat(mkfname(NULL,"%s/%s",s2_prefix,lastout),
-                   S_IRUSR|S_IWUSR);
+                 S_IRUSR|S_IWUSR);
-    p=getvar("module_score");
+  p=getvar("module_score");
-    if(p!=NULL) force_setvar("wims_seed_score",p);
+  if(p!=NULL) force_setvar("wims_seed_score",p);
-    p=getvar("module_category");
+  p=getvar("module_category");
-    if(p==NULL || strstr(p,"tool")==NULL) default_form_method="get";
+  if(p==NULL || strstr(p,"tool")==NULL) default_form_method="get";
-    if(noout) {
+  if(noout) {
-      write_logs(); save_session_vars();
+    write_logs(); save_session_vars();
-      goto outgo;
+    goto outgo;
-    }
+  }
-    if(ismhelp) {
+  if(ismhelp) {
-      mhelp();
+    mhelp();
-    }
+  }
-    else {
+  else {
-      main_phtml_put(html_file);
+    main_phtml_put(html_file);
-      if(lastout_file!=-1) {
+    if(lastout_file!=-1) {
-          flushoutput(); close(lastout_file); putlastout();
+        flushoutput(); close(lastout_file); putlastout();
-      }
+    }
-      write_logs(); save_session_vars();
+    write_logs(); save_session_vars();
-    }
+  }
-    outgo:
+  outgo:
-    debug_output();
+  debug_output();
-    if (trace_file)  { fclose(trace_file); trace_file=NULL; }
+  if (trace_file)  { fclose(trace_file); trace_file=NULL; }
-    if(var_str!=stdinbuf) free(var_str);
+  if(var_str!=stdinbuf) free(var_str);
-    delete_pid();
+  delete_pid();
-    if(mode!=mode_popup && trusted_module()) {
+  if(mode!=mode_popup && trusted_module()) {
-      p=getvar("wims_mode");
+    p=getvar("wims_mode");
-      if(p!=NULL && strcmp(p,"popup")==0) mode=mode_popup;
+    if(p!=NULL && strcmp(p,"popup")==0) mode=mode_popup;
-    }
+  }
-    if(mode==mode_popup && insert_no==0) {
+  if(mode==mode_popup && insert_no==0) {
-      p=getvar("wims_mode");
+    p=getvar("wims_mode");
-      if(p!=NULL && strcmp(p,"popup")==0) {
+    if(p!=NULL && strcmp(p,"popup")==0) {
-          remove_tree(session_prefix);
+      remove_tree(session_prefix);
-          remove_tree(s2_prefix);
+      remove_tree(s2_prefix);
-      }
+    }
+  }
-    return 0;
+  return 0;
+}

Subversion Repositories wimsdev

(root)/trunk/wims/src/wims.c – Rev 12011 → 12263