… | |
… | |
2 | |
2 | |
3 | # login handling |
3 | # login handling |
4 | |
4 | |
5 | use Fcntl; |
5 | use Fcntl; |
6 | use Coro::AIO; |
6 | use Coro::AIO; |
|
|
7 | use Deliantra::Util (); |
7 | |
8 | |
8 | CONF MAX_DISCONNECT_TIME = 3600; |
9 | CONF MAX_DISCONNECT_TIME = 3600; |
|
|
10 | |
|
|
11 | our $VALID_LOGIN = qr<^[a-zA-Z0-9][a-zA-Z0-9\-_]{2,19}\z>; |
9 | |
12 | |
10 | sub query { |
13 | sub query { |
11 | my ($ns, $flags, $text) = @_; |
14 | my ($ns, $flags, $text) = @_; |
12 | |
15 | |
13 | $ns->query ($flags, $text, Coro::rouse_cb); |
16 | $ns->query ($flags, $text, Coro::rouse_cb); |
… | |
… | |
57 | my $y = $ob->y; |
60 | my $y = $ob->y; |
58 | |
61 | |
59 | # never happens normally, but helps when shell users make mistakes |
62 | # never happens normally, but helps when shell users make mistakes |
60 | $m->linkable |
63 | $m->linkable |
61 | or return 1; |
64 | or return 1; |
62 | |
|
|
63 | # return 0;#d# |
|
|
64 | # warn join ":", $m->at ($x, $y);#d# |
|
|
65 | # warn "FOO$m { ".scalar ($m->at ($x, $y))." }\n"; |
|
|
66 | # return 0; |
|
|
67 | |
65 | |
68 | scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) |
66 | scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) |
69 | } |
67 | } |
70 | |
68 | |
71 | sub enter_map { |
69 | sub enter_map { |
… | |
… | |
152 | my $temp = "$PLAYERDIR/~$Coro::current~deleting~"; |
150 | my $temp = "$PLAYERDIR/~$Coro::current~deleting~"; |
153 | aio_rename "$PLAYERDIR/$user", $temp; |
151 | aio_rename "$PLAYERDIR/$user", $temp; |
154 | IO::AIO::aio_rmtree $temp; |
152 | IO::AIO::aio_rmtree $temp; |
155 | } |
153 | } |
156 | |
154 | |
157 | sub login_done { |
155 | sub login { |
158 | my ($pl) = @_; |
156 | my ($pl) = @_; |
|
|
157 | |
|
|
158 | # handle character creation, if neccessary |
|
|
159 | # the rest of this function is character creation |
|
|
160 | |
|
|
161 | my $ns = $pl->ns; |
|
|
162 | my $ob = $pl->ob; |
|
|
163 | |
|
|
164 | $Coro::current->{desc} = "addme(" . $ob->name . ") login"; |
|
|
165 | |
|
|
166 | delete $pl->{deny_save}; # set by new |
|
|
167 | |
|
|
168 | if ($pl->{chargen} eq "init") { |
|
|
169 | # create the playerdir, if necessary, as chargen_race_done did it before |
|
|
170 | # presumably because of unique maps |
|
|
171 | aio_mkdir playerdir $pl, 0770; |
|
|
172 | $pl->save; |
|
|
173 | |
|
|
174 | $ob->goto ($pl->maplevel, $ob->x, $ob->y); |
|
|
175 | |
|
|
176 | $pl->{chargen} = "stats"; |
|
|
177 | } |
|
|
178 | |
|
|
179 | if ($pl->{chargen} eq "stats") { |
|
|
180 | while () { |
|
|
181 | $ob->update_stats; |
|
|
182 | $pl->save_stats; |
|
|
183 | |
|
|
184 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
185 | "[y] to roll new stats [n] to use stats\n[1-7] [1-7] to swap stats.\nRoll again (y/n/1-7)?"; |
|
|
186 | |
|
|
187 | if ($res =~ /^[Nn]/) { |
|
|
188 | last; |
|
|
189 | } elsif ($res > 0 && $res <= 7) { |
|
|
190 | my $swap = query $ns, cf::CS_QUERY_SINGLECHAR, "Swap stat with (will not roll new stats) [1-7]?"; |
|
|
191 | |
|
|
192 | if ($swap > 0 && $swap <= 7) { |
|
|
193 | $ob->swap_stats ($res - 1, $swap - 1); |
|
|
194 | } |
|
|
195 | } else { |
|
|
196 | $ob->roll_stats; |
|
|
197 | } |
|
|
198 | |
|
|
199 | Coro::Timer::sleep 0.05; |
|
|
200 | } |
|
|
201 | |
|
|
202 | $ob->set_animation (2); |
|
|
203 | $ob->add_statbonus; |
|
|
204 | |
|
|
205 | $pl->{chargen} = "race"; |
|
|
206 | } |
|
|
207 | |
|
|
208 | if ($pl->{chargen} eq "race") { |
|
|
209 | while () { |
|
|
210 | $ns->send_msg ("chargen-race-title", ucfirst $pl->title, -1); |
|
|
211 | my $msg = $ob->msg; |
|
|
212 | $msg =~ s/(?<=\S)\n(?=\S)/ /g; |
|
|
213 | $ns->send_msg ("chargen-race-description", $msg, cf::NDI_BLUE); |
|
|
214 | |
|
|
215 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
216 | "Now choose a character.\nPress any key to change outlook.\nPress `d' when you're pleased.\n"; |
|
|
217 | |
|
|
218 | last if $res =~ /[dD]/; |
|
|
219 | |
|
|
220 | $pl->chargen_race_next; |
|
|
221 | Coro::Timer::sleep 0.05; |
|
|
222 | } |
|
|
223 | |
|
|
224 | $pl->chargen_race_done; |
|
|
225 | $pl->{chargen} = "gender"; |
|
|
226 | } |
|
|
227 | |
|
|
228 | if ($pl->{chargen} eq "race") { |
|
|
229 | while () { |
|
|
230 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
231 | "Now choose a gender.\nPress 'f' to become female, and 'm' to become male.\n"; |
|
|
232 | |
|
|
233 | if ($res =~ /^[fF]/) { |
|
|
234 | $pl->gender (1); |
|
|
235 | last; |
|
|
236 | } elsif ($res =~ /^[mM]/) { |
|
|
237 | $pl->gender (0); |
|
|
238 | last; |
|
|
239 | } |
|
|
240 | Coro::Timer::sleep 0.05; |
|
|
241 | } |
|
|
242 | $pl->{chargen} = "done"; |
|
|
243 | } |
|
|
244 | |
|
|
245 | $ns->state (cf::ST_PLAYING); |
|
|
246 | |
|
|
247 | if ($pl->{chargen} eq "done") { |
|
|
248 | # XXX: Workaround for delayed client ext protocol handshake |
|
|
249 | $pl->esrv_new_player; |
|
|
250 | |
|
|
251 | $pl->{chargen} = "done"; |
|
|
252 | } |
|
|
253 | |
|
|
254 | $ob->reply (undef, "Welcome to Deliantra!"); |
159 | |
255 | |
160 | if (0 < Coro::AIO::aio_load "$cf::CONFDIR/motd", my $motd) { |
256 | if (0 < Coro::AIO::aio_load "$cf::CONFDIR/motd", my $motd) { |
161 | $pl->ns->send_msg ("c/motd" => $motd, cf::NDI_CLEAR); |
257 | $pl->ns->send_msg ("c/motd" => $motd, cf::NDI_CLEAR); |
162 | } |
258 | } |
163 | } |
259 | } |
164 | |
260 | |
165 | sub chargen { |
261 | sub chargen { |
166 | my ($ns, $user, $pass) = @_; |
262 | my ($ns, $user, $hasah) = @_; |
167 | |
263 | |
168 | # the rest of this function is character creation |
264 | # lock again, too lazy to make this nicer |
169 | $Coro::current->{desc} = "addme($user) chargen"; |
265 | local $cf::LOGIN_LOCK{$user} = 1; |
170 | |
266 | |
171 | # just to make sure nothing is left over |
267 | # just to make sure nothing is left over |
172 | # normally, nothing is there. |
268 | # normally, nothing is there. |
173 | nuke_playerdir $user; |
269 | nuke_playerdir $user; |
174 | |
270 | |
175 | my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; |
|
|
176 | |
|
|
177 | if ($pass2 ne $pass) { |
|
|
178 | $ns->send_drawinfo ( |
|
|
179 | "The passwords do not match, please try again.", |
|
|
180 | cf::NDI_RED |
|
|
181 | ); |
|
|
182 | Coro::Timer::sleep 0.5; |
|
|
183 | next; |
|
|
184 | } |
|
|
185 | |
|
|
186 | my $pl = cf::player::new $user; |
271 | my $pl = cf::player::new $user; |
187 | $pl->password (encode_password $pass); |
272 | $pl->password (encode_password $pass); |
188 | $pl->connect ($ns); |
273 | $pl->connect ($ns); |
189 | my $ob = $pl->ob; |
|
|
190 | |
274 | |
191 | $ob->goto ($pl->maplevel, $ob->x, $ob->y); |
275 | $pl->{chargen} = "init"; |
192 | |
276 | |
193 | while () { |
277 | login $pl; |
194 | $ob->update_stats; |
|
|
195 | $pl->save_stats; |
|
|
196 | |
|
|
197 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
198 | "[y] to roll new stats [n] to use stats\n[1-7] [1-7] to swap stats.\nRoll again (y/n/1-7)?"; |
|
|
199 | |
|
|
200 | if ($res =~ /^[Nn]/) { |
|
|
201 | last; |
|
|
202 | } elsif ($res > 0 && $res <= 7) { |
|
|
203 | my $swap = query $ns, cf::CS_QUERY_SINGLECHAR, "Swap stat with (will not roll new stats) [1-7]?"; |
|
|
204 | |
|
|
205 | if ($swap > 0 && $swap <= 7) { |
|
|
206 | $ob->swap_stats ($res - 1, $swap - 1); |
|
|
207 | } |
|
|
208 | } else { |
|
|
209 | $ob->roll_stats; |
|
|
210 | } |
|
|
211 | |
|
|
212 | Coro::Timer::sleep 0.05; |
|
|
213 | } |
|
|
214 | |
|
|
215 | $ob->set_animation (2); |
|
|
216 | $ob->add_statbonus; |
|
|
217 | |
|
|
218 | while () { |
|
|
219 | $ns->send_msg ("chargen-race-title", ucfirst $pl->title, -1); |
|
|
220 | my $msg = $ob->msg; |
|
|
221 | $msg =~ s/(?<=\S)\n(?=\S)/ /g; |
|
|
222 | $ns->send_msg ("chargen-race-description", $msg, cf::NDI_BLUE); |
|
|
223 | |
|
|
224 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
225 | "Now choose a character.\nPress any key to change outlook.\nPress `d' when you're pleased.\n"; |
|
|
226 | |
|
|
227 | last if $res =~ /[dD]/; |
|
|
228 | |
|
|
229 | $pl->chargen_race_next; |
|
|
230 | Coro::Timer::sleep 0.05; |
|
|
231 | } |
|
|
232 | |
|
|
233 | # create the playerdir, if necessary, as chargen_race_done did it before |
|
|
234 | # presumably because of unique maps |
|
|
235 | aio_mkdir playerdir $pl, 0770; |
|
|
236 | $pl->chargen_race_done; |
|
|
237 | |
|
|
238 | while () { |
|
|
239 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
240 | "Now choose a gender.\nPress 'f' to become female, and 'm' to become male.\n"; |
|
|
241 | |
|
|
242 | if ($res =~ /^[fF]/) { |
|
|
243 | $pl->gender (1); |
|
|
244 | last; |
|
|
245 | } elsif ($res =~ /^[mM]/) { |
|
|
246 | $pl->gender (0); |
|
|
247 | last; |
|
|
248 | } |
|
|
249 | Coro::Timer::sleep 0.05; |
|
|
250 | } |
|
|
251 | |
|
|
252 | $ob->reply (undef, "Welcome to Deliantra!"); |
|
|
253 | |
|
|
254 | # XXX: Workaround for delayed client ext protocol handshake |
|
|
255 | $pl->esrv_new_player; |
|
|
256 | |
|
|
257 | delete $pl->{deny_save}; |
|
|
258 | } |
278 | } |
259 | |
279 | |
260 | cf::client->attach (on_addme => sub { |
280 | cf::client->attach (on_addme => sub { |
261 | my ($ns) = @_; |
281 | my ($ns) = @_; |
262 | |
282 | |
263 | $ns->pl and return $ns->destroy; |
283 | $ns->{addme}++ and return $ns->destroy; |
264 | |
284 | |
265 | $ns->async (sub { |
285 | $ns->async (sub { |
266 | $Coro::current->{desc} = "addme init"; |
286 | $Coro::current->{desc} = "addme init"; |
267 | |
287 | |
268 | my ($user, $pass); |
288 | my ($user, $pass); |
… | |
… | |
285 | $ns->send_drawinfo ( |
305 | $ns->send_drawinfo ( |
286 | "That username is currently used in another login session. " |
306 | "That username is currently used in another login session. " |
287 | . "Chose another, or wait till the other session has ended.", |
307 | . "Chose another, or wait till the other session has ended.", |
288 | cf::NDI_RED |
308 | cf::NDI_RED |
289 | ); |
309 | ); |
290 | } elsif ($user =~ /^[a-zA-Z0-9][a-zA-Z0-9\-_]{2,19}\z/) { |
310 | } elsif ($user =~ $VALID_LOGIN) { |
291 | last; |
311 | last; |
292 | } else { |
312 | } else { |
293 | $ns->send_drawinfo ( |
313 | $ns->send_drawinfo ( |
294 | "Your username contains illegal characters " |
314 | "Your username contains illegal characters " |
295 | . "(only a-z, A-Z and 0-9 are allowed), " |
315 | . "(only a-z, A-Z and 0-9 are allowed), " |
… | |
… | |
345 | my $token = $pl->password; |
365 | my $token = $pl->password; |
346 | |
366 | |
347 | if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { |
367 | if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { |
348 | # player exists and passwords match - we can proceed |
368 | # player exists and passwords match - we can proceed |
349 | |
369 | |
350 | $pl->password (encode_password $pass); # make sure we store the new encoding #d# |
|
|
351 | # password matches, wonderful |
370 | # password matches, wonderful |
352 | my $pl = cf::player::find $user or next; |
371 | my $pl = cf::player::find $user or next; |
353 | $pl->connect ($ns); |
372 | $pl->connect ($ns); |
354 | enter_map $pl; |
373 | enter_map $pl; |
355 | login_done $pl; |
374 | login $pl; |
356 | return; |
375 | return; |
357 | } elsif (can_cleanup $pl, $mtime) { |
376 | } elsif (can_cleanup $pl, $mtime) { |
358 | Coro::Timer::sleep 1; |
377 | Coro::Timer::sleep 1; |
359 | |
378 | |
360 | $ns->send_drawinfo ( |
379 | $ns->send_drawinfo ( |
… | |
… | |
397 | ); |
416 | ); |
398 | next; |
417 | next; |
399 | } |
418 | } |
400 | } |
419 | } |
401 | |
420 | |
|
|
421 | my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; |
|
|
422 | |
|
|
423 | if ($pass2 ne $pass) { |
|
|
424 | $ns->send_drawinfo ( |
|
|
425 | "The passwords do not match, please try again.", |
|
|
426 | cf::NDI_RED |
|
|
427 | ); |
|
|
428 | Coro::Timer::sleep 0.5; |
|
|
429 | next; |
|
|
430 | } |
|
|
431 | |
402 | last; |
432 | last; |
403 | } |
433 | } |
404 | |
434 | |
405 | # lock again, too layz to make this nicer |
435 | chargen $ns, $user, Deliantra::Util::hash_pw $pass; |
406 | local $cf::LOGIN_LOCK{$user} = 1; |
|
|
407 | chargen $ns, $user, $pass; |
|
|
408 | login_done $ns->pl; |
|
|
409 | }); |
436 | }); |
410 | }); |
437 | }); |
|
|
438 | |
|
|
439 | cf::client->attach ( |
|
|
440 | on_version => sub { |
|
|
441 | my ($ns, $arg) = @_; |
|
|
442 | |
|
|
443 | # perl probably uses lrand48, which is not secure at all |
|
|
444 | # maybe require linux and use /dev/urandom. |
|
|
445 | $ns->{nonces} = [map { join "", map { chr rand 256 } 0..63 } 1..2]; |
|
|
446 | $ns->ext_msg (nonces => @{ $ns->{nonces} }); |
|
|
447 | }, |
|
|
448 | ); |
|
|
449 | |
|
|
450 | cf::register_async_exticmd create_login => sub { |
|
|
451 | my ($ns, $reply, $user, $pass) = @_; |
|
|
452 | |
|
|
453 | $ns->{addme}++ and return $ns->destroy; |
|
|
454 | |
|
|
455 | $ns->async (sub { |
|
|
456 | my $fail = sub { |
|
|
457 | $reply->(0, $_[0]); |
|
|
458 | $ns->flush; # does not ensure that the data reaches the client - TODO |
|
|
459 | # need to do this in another thread, as this one gets canceled |
|
|
460 | Coro::async_pool { |
|
|
461 | Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack |
|
|
462 | $ns->destroy; |
|
|
463 | }; |
|
|
464 | Coro::schedule; # do the destroy, should not return |
|
|
465 | }; |
|
|
466 | |
|
|
467 | $user =~ $VALID_LOGIN |
|
|
468 | or return $fail ( |
|
|
469 | "Your username contains illegal characters (only a-z, A-Z and 0-9 are allowed), " |
|
|
470 | . "or is not between 3 and 20 characters in length." |
|
|
471 | ); |
|
|
472 | |
|
|
473 | cf::player::find $user |
|
|
474 | and return $fail->("User '$user' already exists - choose another login name."); |
|
|
475 | |
|
|
476 | chargen $ns, $user, Deliantra::Util::hash_pw $pass; |
|
|
477 | }); |
|
|
478 | }; |
|
|
479 | |
|
|
480 | cf::register_async_exticmd login => sub { |
|
|
481 | my ($ns, $reply, $user, $hash) = @_; |
|
|
482 | |
|
|
483 | $ns->{addme}++ and return $ns->destroy; |
|
|
484 | |
|
|
485 | $ns->async (sub { |
|
|
486 | local $cf::LOGIN_LOCK{$user} = 1; |
|
|
487 | |
|
|
488 | $Coro::current->{desc} = "login($user) check"; |
|
|
489 | |
|
|
490 | my $fail = sub { |
|
|
491 | $reply->(0, $_[0]); |
|
|
492 | $ns->flush; # does not ensure that the data reaches the client - TODO |
|
|
493 | # need to do this in another thread, as this one gets canceled |
|
|
494 | Coro::async_pool { |
|
|
495 | Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack |
|
|
496 | $ns->destroy; |
|
|
497 | }; |
|
|
498 | Coro::schedule; # do the destroy, should not return |
|
|
499 | }; |
|
|
500 | |
|
|
501 | # try to read the user file and check the password |
|
|
502 | my $pl = cf::player::find $user |
|
|
503 | or return $fail->("User '$user' does not exist - wrong spelling?"); |
|
|
504 | |
|
|
505 | aio_stat $pl->path |
|
|
506 | and return $ns->destroy; |
|
|
507 | |
|
|
508 | my $mtime = (stat _)[9]; |
|
|
509 | my $token = $pl->password; |
|
|
510 | |
|
|
511 | $token = $token =~ /^!/ |
|
|
512 | ? Deliantra::Util::hash_pw pack "H*", substr $token, 1 |
|
|
513 | : pack "H*", $token; |
|
|
514 | |
|
|
515 | $token = Deliantra::Util::auth_pw $token, $ns->{nonces}[0], $ns->{nonces}[1]; |
|
|
516 | |
|
|
517 | $token eq $hash |
|
|
518 | or $cf::CFG{ext_login_nocheck} |
|
|
519 | or return $fail->("User exists, but the password doesn't match - check your spelling, NumLock/CapsLock etc."); |
|
|
520 | |
|
|
521 | # player exists and passwords match - we can proceed |
|
|
522 | |
|
|
523 | $reply->(1, "Success"); |
|
|
524 | |
|
|
525 | $pl->connect ($ns); |
|
|
526 | enter_map $pl; |
|
|
527 | login $pl; |
|
|
528 | }); |
|
|
529 | }; |
411 | |
530 | |
412 | cf::register_command password => sub { |
531 | cf::register_command password => sub { |
413 | my ($pl, $arg) = @_; |
532 | my ($pl, $arg) = @_; |
414 | |
533 | |
415 | unless ($pl->flag (cf::FLAG_WIZ)) { |
534 | unless ($pl->flag (cf::FLAG_WIZ)) { |
416 | $pl->message ( |
535 | $pl->message ( |
417 | "The password can currently only changed by a DM.", |
536 | "The password can currently only changed by a DM.", |
418 | cf::NDI_UNIQUE | cf::NDI_REPLY); |
537 | cf::NDI_UNIQUE | cf::NDI_REPLY); |
419 | return; |
538 | return; |
420 | } |
539 | } |
|
|
540 | |
|
|
541 | $pl->message (#d# |
|
|
542 | "Passwords cannot currently be changed.",#d# |
|
|
543 | cf::NDI_UNIQUE | cf::NDI_REPLY);#d# |
|
|
544 | return;#d# |
421 | |
545 | |
422 | my (@args) = split /\s+/, $arg; |
546 | my (@args) = split /\s+/, $arg; |
423 | my ($player, $new_pw) = @args; |
547 | my ($player, $new_pw) = @args; |
424 | |
548 | |
425 | if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { |
549 | if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { |