… | |
… | |
2 | |
2 | |
3 | # login handling |
3 | # login handling |
4 | |
4 | |
5 | use Fcntl; |
5 | use Fcntl; |
6 | use Coro::AIO; |
6 | use Coro::AIO; |
|
|
7 | use Deliantra::Util (); |
7 | |
8 | |
8 | CONF MAX_DISCONNECT_TIME = 3600; |
9 | CONF MAX_DISCONNECT_TIME = 3600; |
9 | |
10 | |
10 | # paranoia function to overwrite a string-in-place |
11 | our $VALID_LOGIN = qr<^[a-zA-Z0-9][a-zA-Z0-9\-_]{2,19}\z>; |
11 | sub nuke_str { |
12 | our %LOGIN_LOCK; |
12 | substr $_[0], 0, (length $_[0]), "x" x length $_[0] |
13 | |
|
|
14 | # utility function to send messages to the client before |
|
|
15 | # we have a player object to format them for. does not |
|
|
16 | # escape anything. |
|
|
17 | sub send_log ($$$) { |
|
|
18 | $_[0]->send_packet ("msg $_[2] log $_[1]"); |
13 | } |
19 | } |
14 | |
20 | |
15 | sub query { |
21 | sub query { |
16 | my ($ns, $flags, $text) = @_; |
22 | my ($ns, $flags, $text) = @_; |
17 | |
23 | |
18 | $ns->query ($flags, $text, Coro::rouse_cb); |
24 | $ns->query ($flags, $text, Coro::rouse_cb); |
19 | Coro::rouse_wait |
25 | Coro::rouse_wait |
20 | } |
26 | } |
21 | |
27 | |
22 | sub can_cleanup { |
28 | sub can_cleanup { |
|
|
29 | # highscore list is not cleared out, rethink |
|
|
30 | # also, admin accounts can be hacked this way, if unused for long. |
|
|
31 | return 0; |
|
|
32 | |
23 | my ($pl, $mtime) = @_; |
33 | my ($pl, $mtime) = @_; |
24 | |
34 | |
25 | my $age = time - $mtime; |
35 | my $age = time - $mtime; |
26 | my $level = $pl->ob->level; |
36 | my $level = $pl->ob->level; |
27 | |
37 | |
… | |
… | |
29 | || ($level <= 9 && $age > 90 * 86400) # 3 months for level 4..9 |
39 | || ($level <= 9 && $age > 90 * 86400) # 3 months for level 4..9 |
30 | || ($level <= 20 && $age > 180 * 86400) # 6 months for level 10..20 |
40 | || ($level <= 20 && $age > 180 * 86400) # 6 months for level 10..20 |
31 | || $age > 700 * 86400 # 2 years for everybody else |
41 | || $age > 700 * 86400 # 2 years for everybody else |
32 | } |
42 | } |
33 | |
43 | |
34 | sub check_playing { |
44 | # return a guard object for a lock on the given username, if available |
|
|
45 | sub login_guard { |
35 | my ($ns, $user) = @_; |
46 | my ($user) = @_; |
36 | |
47 | |
|
|
48 | exists $LOGIN_LOCK{$user} |
|
|
49 | and return undef; |
|
|
50 | |
37 | return unless cf::player::find_active $user; |
51 | cf::player::find_active $user |
|
|
52 | and return undef; |
38 | |
53 | |
39 | $ns->send_drawinfo ( |
54 | undef $LOGIN_LOCK{$user}; |
40 | "That player is already logged in on this server. " |
55 | Guard::guard { delete $LOGIN_LOCK{$user} } |
41 | . "If you want to create a new player, choose another name. " |
|
|
42 | . "If you have already a registered, make sure nobody " |
|
|
43 | . "else is using your account at this time. If you lost your connection " |
|
|
44 | . "then the server will likely timeout within a minute. If you still " |
|
|
45 | . "cannot log-in after a minute, you are still logged in. Make sure " |
|
|
46 | . "you do not have another client running. If you use windows, reboot, " |
|
|
47 | . "this will fix anything.", |
|
|
48 | cf::NDI_RED |
|
|
49 | ); |
|
|
50 | |
|
|
51 | 1 |
|
|
52 | } |
56 | } |
53 | |
57 | |
54 | sub safe_spot($) { |
58 | sub safe_spot($) { |
55 | my ($pl) = @_; |
59 | my ($pl) = @_; |
56 | |
60 | |
… | |
… | |
62 | my $y = $ob->y; |
66 | my $y = $ob->y; |
63 | |
67 | |
64 | # never happens normally, but helps when shell users make mistakes |
68 | # never happens normally, but helps when shell users make mistakes |
65 | $m->linkable |
69 | $m->linkable |
66 | or return 1; |
70 | or return 1; |
67 | |
|
|
68 | # return 0;#d# |
|
|
69 | # warn join ":", $m->at ($x, $y);#d# |
|
|
70 | # warn "FOO$m { ".scalar ($m->at ($x, $y))." }\n"; |
|
|
71 | # return 0; |
|
|
72 | |
71 | |
73 | scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) |
72 | scalar grep $_->type == cf::SAVEBED, $m->at ($x, $y) |
74 | } |
73 | } |
75 | |
74 | |
76 | sub enter_map { |
75 | sub enter_map { |
… | |
… | |
99 | $ob->message ( |
98 | $ob->message ( |
100 | "You didn't use a bed to reality to leave this realm, leaving your body in great danger. " |
99 | "You didn't use a bed to reality to leave this realm, leaving your body in great danger. " |
101 | . "Unfortunately, nobody was near to help you when the monsters arrived to eat you. " |
100 | . "Unfortunately, nobody was near to help you when the monsters arrived to eat you. " |
102 | . "Maybe you can find comfort in the thought that your body was quite satisfying in taste... " |
101 | . "Maybe you can find comfort in the thought that your body was quite satisfying in taste... " |
103 | . "H<You disconnected too long without having used a savebed.>", |
102 | . "H<You disconnected too long without having used a savebed.>", |
104 | cf::NDI_RED |
103 | cf::NDI_RED | cf::NDI_REPLY |
105 | ); |
104 | ); |
106 | # kill them. |
105 | # kill them. |
107 | # reminds me of the famous badness 10000 syndrome... |
106 | # reminds me of the famous badness 10000 syndrome... |
108 | $ob->stats->hp (-10000); #] if they survive this they deserved to live |
107 | $ob->stats->hp (-10000); #] if they survive this they deserved to live |
109 | my $killer = cf::arch::get "killer_login"; $pl->killer ($killer); $killer->destroy; |
108 | my $killer = cf::arch::get "killer_login"; $pl->killer ($killer); $killer->destroy; |
… | |
… | |
113 | $ob->message ( |
112 | $ob->message ( |
114 | "You didn't use a bed to reality to leave this realm, leaving your body in great danger. " |
113 | "You didn't use a bed to reality to leave this realm, leaving your body in great danger. " |
115 | . "Fortunately, some friendly dwellers found you, checked your passport, and brought you to safety. " |
114 | . "Fortunately, some friendly dwellers found you, checked your passport, and brought you to safety. " |
116 | . "Better use a savebed next time, much worse things could have happened... " |
115 | . "Better use a savebed next time, much worse things could have happened... " |
117 | . "H<You disconnected without having used a savebed. When you do that for too long, you might die.>", |
116 | . "H<You disconnected without having used a savebed. When you do that for too long, you might die.>", |
118 | cf::NDI_RED |
117 | cf::NDI_RED | cf::NDI_REPLY |
119 | ); |
118 | ); |
120 | } |
119 | } |
121 | } else { |
120 | } else { |
122 | $ob->message ( |
121 | $ob->message ( |
123 | "You didn't use a bed to reality to leave this realm. This is very dangerous, " |
122 | "You didn't use a bed to reality to leave this realm. This is very dangerous, " |
124 | . "as lots of things could happen when you leave by other means, such as cave-ins, " |
123 | . "as lots of things could happen when you leave by other means, such as cave-ins, " |
125 | . "or monsters suddenly snapping your body. Better use a savebed next time. " |
124 | . "or monsters suddenly snapping your body. Better use a savebed next time. " |
126 | . "H<Always apply a bed of reality to disconnect from the server.>", |
125 | . "H<Always apply a bed of reality to disconnect from the server.>", |
127 | cf::NDI_RED |
126 | cf::NDI_RED | cf::NDI_REPLY |
128 | ); |
127 | ); |
129 | } |
128 | } |
130 | } |
129 | } |
131 | |
130 | |
132 | $ob->goto ($map, $x, $y); |
131 | $ob->goto ($map, $x, $y); |
133 | } |
132 | } |
134 | |
133 | |
135 | sub encode_password($) { |
134 | sub encode_password($) { |
136 | # crypt $_[0], |
135 | unpack "H*", Deliantra::Util::hash_pw $_[0] |
137 | # join '', |
|
|
138 | # ('.', '/', 0..9, 'A'..'Z', 'a'..'z')[(cf::rndm 64), (cf::rndm 64)] |
|
|
139 | "!" . unpack "H*", $_[0] |
|
|
140 | } |
136 | } |
141 | |
137 | |
142 | sub compare_password($$) { |
138 | sub compare_password($$) { |
143 | my ($pass, $token) = @_; |
139 | my ($pass, $token) = @_; |
144 | |
140 | |
145 | if ($token =~ /!!(.*)/) { |
141 | if ($token =~ /!!(.*)/) { |
146 | return +(substr $pass, 0, 8) eq pack "H*", $1; |
142 | return +(substr $pass, 0, 8) eq pack "H*", $1; |
147 | } elsif ($token =~ /!(.*)/) { |
143 | } elsif ($token =~ /!(.*)/) { |
148 | return $pass eq pack "H*", $1; |
144 | return $pass eq pack "H*", $1; |
149 | } else { |
145 | } else { |
150 | return $token eq crypt $pass, $token; |
146 | return $token eq encode_password $pass; |
151 | } |
147 | } |
152 | } |
148 | } |
153 | |
149 | |
154 | # delete a player directory |
150 | # delete a player directory |
155 | sub nuke_playerdir { |
151 | sub nuke_playerdir { |
… | |
… | |
160 | my $temp = "$PLAYERDIR/~$Coro::current~deleting~"; |
156 | my $temp = "$PLAYERDIR/~$Coro::current~deleting~"; |
161 | aio_rename "$PLAYERDIR/$user", $temp; |
157 | aio_rename "$PLAYERDIR/$user", $temp; |
162 | IO::AIO::aio_rmtree $temp; |
158 | IO::AIO::aio_rmtree $temp; |
163 | } |
159 | } |
164 | |
160 | |
|
|
161 | sub login { |
|
|
162 | my ($pl) = @_; |
|
|
163 | |
|
|
164 | # handle character creation, if neccessary |
|
|
165 | # the rest of this function is character creation |
|
|
166 | |
|
|
167 | my $ns = $pl->ns; |
|
|
168 | my $ob = $pl->ob; |
|
|
169 | |
|
|
170 | if ($pl->{chargen} eq "init") { |
|
|
171 | $ob->goto ($pl->maplevel, $ob->x, $ob->y); |
|
|
172 | |
|
|
173 | # create the playerdir, if necessary, as chargen_race_done did it before |
|
|
174 | # presumably because of unique maps |
|
|
175 | aio_mkdir playerdir $pl, 0770; |
|
|
176 | delete $pl->{deny_save}; # set by new |
|
|
177 | $pl->save; |
|
|
178 | |
|
|
179 | $pl->{chargen} = "stats"; |
|
|
180 | } |
|
|
181 | |
|
|
182 | if ($pl->{chargen} eq "stats") { |
|
|
183 | while () { |
|
|
184 | $ob->update_stats; |
|
|
185 | $pl->save_stats; |
|
|
186 | |
|
|
187 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
188 | "[y] to roll new stats [n] to use stats\n[1-7] [1-7] to swap stats.\nRoll again (y/n/1-7)?"; |
|
|
189 | |
|
|
190 | if ($res =~ /^[Nn]/) { |
|
|
191 | last; |
|
|
192 | } elsif ($res > 0 && $res <= 7) { |
|
|
193 | my $swap = query $ns, cf::CS_QUERY_SINGLECHAR, "Swap stat with (will not roll new stats) [1-7]?"; |
|
|
194 | |
|
|
195 | if ($swap > 0 && $swap <= 7) { |
|
|
196 | $ob->swap_stats ($res - 1, $swap - 1); |
|
|
197 | } |
|
|
198 | } else { |
|
|
199 | $ob->roll_stats; |
|
|
200 | } |
|
|
201 | |
|
|
202 | Coro::Timer::sleep 0.05; |
|
|
203 | } |
|
|
204 | |
|
|
205 | $ob->set_animation (2); |
|
|
206 | $ob->add_statbonus; |
|
|
207 | |
|
|
208 | $pl->{chargen} = "race"; |
|
|
209 | } |
|
|
210 | |
|
|
211 | if ($pl->{chargen} eq "race") { |
|
|
212 | while () { |
|
|
213 | $ns->send_msg ("chargen-race-title", ucfirst $pl->title, -1); |
|
|
214 | my $msg = $ob->msg; |
|
|
215 | $msg =~ s/(?<=\S)\n(?=\S)/ /g; |
|
|
216 | $ns->send_msg ("chargen-race-description", $msg, cf::NDI_BLUE); |
|
|
217 | |
|
|
218 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
219 | "Now choose a character.\nPress any key to change outlook.\nPress `d' when you're pleased.\n"; |
|
|
220 | |
|
|
221 | last if $res =~ /[dD]/; |
|
|
222 | |
|
|
223 | $pl->chargen_race_next; |
|
|
224 | Coro::Timer::sleep 0.05; |
|
|
225 | } |
|
|
226 | |
|
|
227 | $pl->chargen_race_done; |
|
|
228 | $pl->{chargen} = "gender"; |
|
|
229 | } |
|
|
230 | |
|
|
231 | if ($pl->{chargen} eq "race") { |
|
|
232 | while () { |
|
|
233 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
234 | "Now choose a gender.\nPress 'f' to become female, and 'm' to become male.\n"; |
|
|
235 | |
|
|
236 | if ($res =~ /^[fF]/) { |
|
|
237 | $pl->gender (1); |
|
|
238 | last; |
|
|
239 | } elsif ($res =~ /^[mM]/) { |
|
|
240 | $pl->gender (0); |
|
|
241 | last; |
|
|
242 | } |
|
|
243 | Coro::Timer::sleep 0.05; |
|
|
244 | } |
|
|
245 | $pl->{chargen} = "done"; |
|
|
246 | } |
|
|
247 | |
|
|
248 | $ns->state (cf::ST_PLAYING); |
|
|
249 | |
|
|
250 | if ($pl->{chargen} eq "done") { |
|
|
251 | # XXX: Workaround for delayed client ext protocol handshake |
|
|
252 | $pl->esrv_new_player; |
|
|
253 | |
|
|
254 | $pl->{chargen} = "done"; |
|
|
255 | } |
|
|
256 | |
|
|
257 | $ns->update_command_faces; |
|
|
258 | |
|
|
259 | $ob->reply (undef, "Welcome to Deliantra!"); |
|
|
260 | |
|
|
261 | if (0 < Coro::AIO::aio_load "$cf::CONFDIR/motd", my $motd) { |
|
|
262 | $pl->ns->send_msg ("c/motd" => $motd, cf::NDI_CLEAR); |
|
|
263 | } |
|
|
264 | } |
|
|
265 | |
|
|
266 | sub chargen { |
|
|
267 | my ($ns, $user, $hash) = @_; |
|
|
268 | |
|
|
269 | # just to make sure nothing is left over |
|
|
270 | # normally, nothing is there. |
|
|
271 | nuke_playerdir $user; |
|
|
272 | |
|
|
273 | my $pl = cf::player::new $user; |
|
|
274 | $pl->password (unpack "H*", $hash); |
|
|
275 | $pl->connect ($ns); |
|
|
276 | |
|
|
277 | $pl->{chargen} = "init"; |
|
|
278 | |
|
|
279 | login $pl; |
|
|
280 | } |
|
|
281 | |
165 | cf::client->attach (on_addme => sub { |
282 | cf::client->attach (on_addme => sub { |
166 | my ($ns) = @_; |
283 | my ($ns) = @_; |
167 | |
284 | |
168 | $ns->pl and return $ns->destroy; |
285 | $ns->{addme}++ and return $ns->destroy; |
169 | |
286 | |
170 | $ns->async (sub { |
287 | $ns->async (sub { |
171 | $Coro::current->{desc} = "addme init"; |
288 | $Coro::current->{desc} = "addme init"; |
172 | |
289 | |
173 | my ($user, $pass); |
290 | my ($user, $pass); |
174 | |
291 | |
175 | $ns->send_packet ("addme_success"); |
292 | $ns->send_packet ("addme_success"); |
176 | |
293 | |
177 | for (;;) { |
294 | for (;;) { |
178 | $ns->send_drawinfo ( |
295 | delete $ns->{login_guard}; |
|
|
296 | |
|
|
297 | send_log $ns, |
179 | "Please enter your username now. If you are a new user, " |
298 | "Please enter your username now. If you are a new user, " |
180 | . "make one up that describes your character best. " |
299 | . "make one up that describes your character best. " |
181 | . "Only letters and digits are allowed, though.", |
300 | . "Only letters and digits are allowed, though.", |
182 | cf::NDI_BLUE |
301 | cf::NDI_BLUE | cf::NDI_REPLY |
183 | ); |
302 | ; |
184 | |
303 | |
185 | # read username |
304 | # read username |
186 | while () { |
305 | while () { |
187 | $user = query $ns, 0, "What is your name? (login names are case-sensitive)\n:"; |
306 | $user = query $ns, 0, "What is your name? (login names are case-sensitive)\n:"; |
188 | |
307 | |
189 | if ($cf::LOGIN_LOCK{$user}) { |
308 | if ($user =~ $VALID_LOGIN) { |
190 | $ns->send_drawinfo ( |
|
|
191 | "That username is currently used in another login session. " |
|
|
192 | . "Chose another, or wait till the other session has ended.", |
|
|
193 | cf::NDI_RED |
|
|
194 | ); |
|
|
195 | } elsif ($user =~ /^[a-zA-Z0-9][a-zA-Z0-9\-_]{2,19}\z/) { |
|
|
196 | last; |
309 | last; |
197 | } else { |
310 | } else { |
198 | $ns->send_drawinfo ( |
311 | send_log $ns, |
199 | "Your username contains illegal characters " |
312 | "Your username contains illegal characters " |
200 | . "(only a-z, A-Z and 0-9 are allowed), " |
313 | . "(only a-z, A-Z and 0-9 are allowed), " |
201 | . "or is not between 3 and 20 characters in length.", |
314 | . "or is not between 3 and 20 characters in length.", |
202 | cf::NDI_RED |
315 | cf::NDI_RED | cf::NDI_REPLY |
203 | ); |
316 | ; |
204 | } |
317 | } |
205 | Coro::Timer::sleep 0.4; |
318 | Coro::Timer::sleep 0.4; |
206 | } |
319 | } |
207 | |
320 | |
208 | check_playing $ns, $user and next; |
|
|
209 | |
|
|
210 | $Coro::current->{desc} = "addme($user) pass"; |
321 | $Coro::current->{desc} = "addme($user)"; |
211 | |
322 | |
212 | $ns->send_drawinfo ( |
323 | send_log $ns, |
213 | "Welcome $user, please enter your password now. " |
324 | "Welcome $user, please enter your password now. " |
214 | . "New users should now choose a password. " |
325 | . "New users should now choose a password. " |
215 | . "Anything your client lets you enter is fine.", |
326 | . "Anything your client lets you enter is fine.", |
216 | cf::NDI_BLUE |
327 | cf::NDI_BLUE | cf::NDI_REPLY |
217 | ); |
328 | ; |
218 | |
329 | |
219 | # read password |
330 | # read password |
220 | while () { |
331 | while () { |
221 | $pass = query $ns, cf::CS_QUERY_HIDEINPUT, "What is your password?\n:"; |
332 | $pass = query $ns, cf::CS_QUERY_HIDEINPUT, "What is your password?\n:"; |
222 | last if $pass =~ /.../; |
333 | last if $pass =~ /.../; |
223 | $ns->send_drawinfo ( |
334 | send_log $ns, |
224 | "Try to use at least three characters as your password please, " |
335 | "Try to use at least three characters as your password please, " |
225 | . "that cannot be too much to ask for :)", |
336 | . "that cannot be too much to ask for :)", |
226 | cf::NDI_RED |
337 | cf::NDI_RED | cf::NDI_REPLY |
227 | ); |
338 | ; |
228 | Coro::Timer::sleep 0.4; |
339 | Coro::Timer::sleep 0.4; |
229 | } |
340 | } |
230 | |
341 | |
231 | # lock this username for the remainder of this login session |
342 | $ns->{login_guard} = login_guard $user |
232 | if ($cf::LOGIN_LOCK{$user}) { |
343 | or do { |
233 | $ns->send_drawinfo ( |
344 | send_log $ns, |
234 | "That username is currently used in another login session. " |
345 | "That user is already logged in (or is logging in)." |
235 | . "Chose another, or wait till the other session has ended.", |
346 | . "Chose another, or wait till the other session has ended.", |
236 | cf::NDI_RED |
347 | cf::NDI_RED | cf::NDI_REPLY |
|
|
348 | ; |
|
|
349 | next; |
237 | ); |
350 | }; |
238 | next; |
|
|
239 | } |
|
|
240 | local $cf::LOGIN_LOCK{$user} = 1; |
|
|
241 | |
|
|
242 | check_playing $ns, $user and next; |
|
|
243 | |
|
|
244 | $Coro::current->{desc} = "addme($user) check"; |
|
|
245 | |
351 | |
246 | # try to read the user file and check the password |
352 | # try to read the user file and check the password |
247 | if (my $pl = cf::player::find $user) { |
353 | if (my $pl = cf::player::find $user) { |
248 | aio_stat $pl->path and next; |
354 | aio_stat $pl->path and next; |
249 | my $mtime = (stat _)[9]; |
355 | my $mtime = (stat _)[9]; |
250 | my $token = $pl->password; |
356 | my $token = $pl->password; |
251 | |
357 | |
252 | if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { |
358 | if ($cf::CFG{ext_login_nocheck} or compare_password $pass, $token) { |
253 | $pl->password (encode_password $pass); # make sure we store the new encoding #d# |
359 | # player exists and passwords match - we can proceed |
254 | nuke_str $pass; |
360 | |
255 | # password matches, wonderful |
361 | # password matches, wonderful |
256 | my $pl = cf::player::find $user or next; |
362 | my $pl = cf::player::find $user or next; |
257 | $pl->connect ($ns); |
363 | $pl->connect ($ns); |
258 | enter_map $pl; |
364 | enter_map $pl; |
|
|
365 | login $pl; |
259 | last; |
366 | return; |
260 | } elsif (can_cleanup $pl, $mtime) { |
367 | } elsif (can_cleanup $pl, $mtime) { |
261 | Coro::Timer::sleep 1; |
368 | Coro::Timer::sleep 1; |
262 | |
369 | |
263 | $ns->send_drawinfo ( |
370 | send_log $ns, |
264 | "Player exists, but password does not match. If this is your account, " |
371 | "Player exists, but password does not match. If this is your account, " |
265 | . "please try again. If not, you can now decide to take over this account " |
372 | . "please try again. If not, you can now decide to take over this account " |
266 | . "because it has not been in-use for some time.", |
373 | . "because it has not been in-use for some time.", |
267 | cf::NDI_RED |
374 | cf::NDI_RED | cf::NDI_REPLY |
268 | ); |
375 | ; |
269 | |
376 | |
270 | #TODO: nuke_str |
|
|
271 | (query $ns, cf::CS_QUERY_SINGLECHAR, "Delete existing account and create a new one (Y/N)?") =~ /^[yY]/ |
377 | (query $ns, cf::CS_QUERY_SINGLECHAR, "Delete existing account and create a new one (Y/N)?") =~ /^[yY]/ |
272 | or next; |
378 | or next; |
273 | |
379 | |
274 | # check if the file hasn't changed |
380 | # check if the file hasn't changed |
275 | aio_stat cf::player::path $user and next; |
381 | aio_stat cf::player::path $user and next; |
… | |
… | |
277 | |
383 | |
278 | $pl->quit_character; |
384 | $pl->quit_character; |
279 | |
385 | |
280 | # fall through to creation |
386 | # fall through to creation |
281 | } else { |
387 | } else { |
282 | nuke_str $pass; |
|
|
283 | |
|
|
284 | Coro::Timer::sleep 1; |
388 | Coro::Timer::sleep 1; |
285 | |
389 | |
286 | $ns->send_drawinfo ( |
390 | send_log $ns, |
287 | "Wrong username or password. Please try again " |
391 | "Wrong username or password. Please try again " |
288 | . "(check for Numlock and other semi-obvious error sources).", |
392 | . "(check for Numlock and other semi-obvious error sources).", |
289 | cf::NDI_RED |
393 | cf::NDI_RED | cf::NDI_REPLY |
290 | ); |
394 | ; |
291 | next; |
395 | next; |
292 | } |
396 | } |
293 | } else { |
397 | } else { |
294 | # unable to load the playerfile: |
398 | # unable to load the playerfile: |
295 | # check whether the player dir exists, which means the file is corrupted or |
399 | # check whether the player dir exists, which means the file is corrupted or |
296 | # something very similar. |
400 | # something very similar. |
297 | if (!aio_stat cf::player::playerdir $user) { |
401 | if (!aio_stat cf::player::playerdir $user) { |
298 | $ns->send_drawinfo ( |
402 | send_log $ns, |
299 | "Unable to retrieve this player. It might be a locked or broken account. " |
403 | "Unable to retrieve this player. It might be a locked or broken account. " |
300 | . "If this is your account, ask a dungeon master for assistance. " |
404 | . "If this is your account, ask a dungeon master for assistance. " |
301 | . "Otherwise choose a different login name.", |
405 | . "Otherwise choose a different login name.", |
302 | cf::NDI_RED |
406 | cf::NDI_RED | cf::NDI_REPLY |
303 | ); |
407 | ; |
304 | next; |
408 | next; |
305 | } |
409 | } |
306 | } |
410 | } |
307 | |
411 | |
308 | # the rest of this function is character creation |
|
|
309 | $Coro::current->{desc} = "addme($user) chargen"; |
|
|
310 | |
|
|
311 | # just to make sure nothing is left over |
|
|
312 | # normally, nothing is there. |
|
|
313 | nuke_playerdir $user; |
|
|
314 | |
|
|
315 | my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; |
412 | my $pass2 = query $ns, cf::CS_QUERY_HIDEINPUT, "Please type your password again."; |
316 | |
413 | |
317 | if ($pass2 ne $pass) { |
414 | if ($pass2 ne $pass) { |
318 | nuke_str $pass; |
415 | send_log $ns, |
319 | nuke_str $pass2; |
|
|
320 | $ns->send_drawinfo ( |
|
|
321 | "The passwords do not match, please try again.", |
416 | "The passwords do not match, please try again.", |
322 | cf::NDI_RED |
417 | cf::NDI_RED | cf::NDI_REPLY |
323 | ); |
418 | ; |
324 | Coro::Timer::sleep 0.5; |
419 | Coro::Timer::sleep 0.5; |
325 | next; |
420 | next; |
326 | } |
421 | } |
327 | |
422 | |
328 | nuke_str $pass2; |
|
|
329 | |
|
|
330 | my $pl = cf::player::new $user; |
|
|
331 | $pl->password (encode_password $pass); |
|
|
332 | nuke_str $pass; |
|
|
333 | $pl->connect ($ns); |
|
|
334 | my $ob = $pl->ob; |
|
|
335 | |
|
|
336 | $ob->goto ($pl->maplevel, $ob->x, $ob->y); |
|
|
337 | |
|
|
338 | while () { |
|
|
339 | $ob->update_stats; |
|
|
340 | $pl->save_stats; |
|
|
341 | |
|
|
342 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
343 | "[y] to roll new stats [n] to use stats\n[1-7] [1-7] to swap stats.\nRoll again (y/n/1-7)?"; |
|
|
344 | |
|
|
345 | if ($res =~ /^[Nn]/) { |
|
|
346 | last; |
|
|
347 | } elsif ($res > 0 && $res <= 7) { |
|
|
348 | my $swap = query $ns, cf::CS_QUERY_SINGLECHAR, "Swap stat with (will not roll new stats) [1-7]?"; |
|
|
349 | |
|
|
350 | if ($swap > 0 && $swap <= 7) { |
|
|
351 | $ob->swap_stats ($res - 1, $swap - 1); |
|
|
352 | } |
|
|
353 | } else { |
|
|
354 | $ob->roll_stats; |
|
|
355 | } |
|
|
356 | |
|
|
357 | Coro::Timer::sleep 0.05; |
|
|
358 | } |
|
|
359 | |
|
|
360 | $ob->set_animation (2); |
|
|
361 | $ob->add_statbonus; |
|
|
362 | |
|
|
363 | while () { |
|
|
364 | $ns->send_msg ("chargen-race-title", ucfirst $pl->title, -1); |
|
|
365 | my $msg = $ob->msg; |
|
|
366 | $msg =~ s/(?<=\S)\n(?=\S)/ /g; |
|
|
367 | $ns->send_msg ("chargen-race-description", $msg, cf::NDI_BLUE); |
|
|
368 | |
|
|
369 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
370 | "Now choose a character.\nPress any key to change outlook.\nPress `d' when you're pleased.\n"; |
|
|
371 | |
|
|
372 | last if $res =~ /[dD]/; |
|
|
373 | |
|
|
374 | $pl->chargen_race_next; |
|
|
375 | Coro::Timer::sleep 0.05; |
|
|
376 | } |
|
|
377 | |
|
|
378 | # create the playerdir, if necessary, as chargen_race_done did it before |
|
|
379 | # presumably because of unique maps |
|
|
380 | aio_mkdir playerdir $pl, 0770; |
|
|
381 | $pl->chargen_race_done; |
|
|
382 | |
|
|
383 | while () { |
|
|
384 | my $res = query $ns, cf::CS_QUERY_SINGLECHAR, |
|
|
385 | "Now choose a gender.\nPress 'f' to become female, and 'm' to become male.\n"; |
|
|
386 | |
|
|
387 | if ($res =~ /^[fF]/) { |
|
|
388 | $pl->gender (1); |
|
|
389 | last; |
|
|
390 | } elsif ($res =~ /^[mM]/) { |
|
|
391 | $pl->gender (0); |
|
|
392 | last; |
|
|
393 | } |
|
|
394 | Coro::Timer::sleep 0.05; |
|
|
395 | } |
|
|
396 | |
|
|
397 | $ob->reply (undef, "Welcome to Deliantra!"); |
|
|
398 | |
|
|
399 | # XXX: Workaround for delayed client ext protocol handshake |
|
|
400 | $pl->esrv_new_player; |
|
|
401 | |
|
|
402 | delete $pl->{deny_save}; |
|
|
403 | |
|
|
404 | last; |
423 | last; |
405 | } |
424 | } |
406 | |
425 | |
407 | if (0 < Coro::AIO::aio_load "$cf::CONFDIR/motd", my $motd) { |
426 | chargen $ns, $user, Deliantra::Util::hash_pw $pass; |
408 | $ns->send_msg ("c/motd" => $motd, cf::NDI_CLEAR); |
|
|
409 | } |
|
|
410 | }); |
427 | }); |
411 | }); |
428 | }); |
|
|
429 | |
|
|
430 | cf::client->attach ( |
|
|
431 | on_version => sub { |
|
|
432 | my ($ns, $arg) = @_; |
|
|
433 | |
|
|
434 | # perl probably uses lrand48, which is not secure at all |
|
|
435 | # maybe require linux and use /dev/urandom. |
|
|
436 | $ns->{nonces} = [map { join "", map { chr rand 256 } 0..63 } 1..2]; |
|
|
437 | $ns->ext_msg (nonces => @{ $ns->{nonces} }); |
|
|
438 | }, |
|
|
439 | ); |
|
|
440 | |
|
|
441 | cf::register_async_exticmd create_login => sub { |
|
|
442 | my ($ns, $reply, $user, $pass) = @_; |
|
|
443 | |
|
|
444 | $ns->{addme}++ and return $ns->destroy; |
|
|
445 | |
|
|
446 | $ns->async (sub { |
|
|
447 | my $fail = sub { |
|
|
448 | $reply->(0, $_[0]); |
|
|
449 | $ns->flush; # does not ensure that the data reaches the client - TODO |
|
|
450 | # need to do this in another thread, as this one gets canceled |
|
|
451 | Coro::async_pool { |
|
|
452 | Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack |
|
|
453 | $ns->destroy if $ns->valid; |
|
|
454 | }; |
|
|
455 | Coro::schedule; # do the destroy, should not return |
|
|
456 | }; |
|
|
457 | |
|
|
458 | $user =~ $VALID_LOGIN |
|
|
459 | or return $fail ( |
|
|
460 | "Your username contains illegal characters (only a-z, A-Z and 0-9 are allowed), " |
|
|
461 | . "or is not between 3 and 20 characters in length." |
|
|
462 | ); |
|
|
463 | |
|
|
464 | $ns->{login_guard} = login_guard $user |
|
|
465 | or return $fail->("User name '$user' is in use - try another login name."); |
|
|
466 | |
|
|
467 | cf::player::find $user |
|
|
468 | and return $fail->("User name '$user' is already registered - choose another login name."); |
|
|
469 | |
|
|
470 | $reply->(1, "Account Created"); |
|
|
471 | |
|
|
472 | chargen $ns, $user, $pass; |
|
|
473 | }); |
|
|
474 | }; |
|
|
475 | |
|
|
476 | cf::register_async_exticmd login => sub { |
|
|
477 | my ($ns, $reply, $user, $hash) = @_; |
|
|
478 | |
|
|
479 | $ns->{addme}++ and return $ns->destroy; |
|
|
480 | |
|
|
481 | $ns->async (sub { |
|
|
482 | $Coro::current->{desc} = "login($user)"; |
|
|
483 | |
|
|
484 | my $fail = sub { |
|
|
485 | $reply->(0, $_[0]); |
|
|
486 | $ns->flush; # does not ensure that the data reaches the client - TODO |
|
|
487 | # need to do this in another thread, as this one gets canceled |
|
|
488 | Coro::async_pool { |
|
|
489 | Coro::AnyEvent::sleep 0.1; # TODO, see above, extra hack |
|
|
490 | $ns->destroy if $ns->valid; |
|
|
491 | }; |
|
|
492 | Coro::schedule; # do the destroy, should not return |
|
|
493 | }; |
|
|
494 | |
|
|
495 | $ns->{login_guard} = login_guard $user |
|
|
496 | or return $fail->("User '$user' is currently playing or logging in in another session. If that is your " |
|
|
497 | . "user name, make sure you are not running two clients. When in doubt, reboot."); |
|
|
498 | |
|
|
499 | # try to read the user file and check the password |
|
|
500 | my $pl = cf::player::find $user |
|
|
501 | or return $fail->("User '$user' does not exist - wrong spelling?"); |
|
|
502 | |
|
|
503 | aio_stat $pl->path |
|
|
504 | and return $ns->destroy; |
|
|
505 | |
|
|
506 | my $mtime = (stat _)[9]; |
|
|
507 | my $token = $pl->password; |
|
|
508 | |
|
|
509 | $token = $token =~ /^!/ |
|
|
510 | ? Deliantra::Util::hash_pw pack "H*", substr $token, 1 |
|
|
511 | : pack "H*", $token; |
|
|
512 | |
|
|
513 | $token = Deliantra::Util::auth_pw $token, $ns->{nonces}[0], $ns->{nonces}[1]; |
|
|
514 | |
|
|
515 | $token eq $hash |
|
|
516 | or $cf::CFG{ext_login_nocheck} |
|
|
517 | or return $fail->("User exists, but the password doesn't match - check your spelling, NumLock/CapsLock etc."); |
|
|
518 | |
|
|
519 | # player exists and passwords match - we can proceed |
|
|
520 | |
|
|
521 | $reply->(1, "Success"); |
|
|
522 | |
|
|
523 | $pl->connect ($ns); |
|
|
524 | enter_map $pl; |
|
|
525 | login $pl; |
|
|
526 | }); |
|
|
527 | }; |
412 | |
528 | |
413 | cf::register_command password => sub { |
529 | cf::register_command password => sub { |
414 | my ($pl, $arg) = @_; |
530 | my ($pl, $arg) = @_; |
415 | |
531 | |
416 | unless ($pl->flag (cf::FLAG_WIZ)) { |
532 | unless ($pl->flag (cf::FLAG_WIZ)) { |
417 | $pl->message ( |
533 | $pl->message ( |
418 | "The password can currently only changed by a DM.", |
534 | "The password can currently only changed by a DM.", |
419 | cf::NDI_UNIQUE | cf::NDI_REPLY); |
535 | cf::NDI_UNIQUE | cf::NDI_REPLY); |
420 | return; |
536 | return; |
421 | } |
537 | } |
|
|
538 | |
|
|
539 | $pl->message (#d# |
|
|
540 | "Passwords cannot currently be changed.",#d# |
|
|
541 | cf::NDI_UNIQUE | cf::NDI_REPLY);#d# |
|
|
542 | return;#d# |
422 | |
543 | |
423 | my (@args) = split /\s+/, $arg; |
544 | my (@args) = split /\s+/, $arg; |
424 | my ($player, $new_pw) = @args; |
545 | my ($player, $new_pw) = @args; |
425 | |
546 | |
426 | if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { |
547 | if ($pl->flag (cf::FLAG_WIZ) && $player eq '') { |