2017-08-28 19:27:45 +03:00
/ * *
2018-01-04 23:15:21 +03:00
* @ description MeshCentral main module
2017-08-28 19:27:45 +03:00
* @ author Ylian Saint - Hilaire
2019-01-04 03:22:15 +03:00
* @ copyright Intel Corporation 2018 - 2019
2018-01-04 23:15:21 +03:00
* @ license Apache - 2.0
2017-08-28 19:27:45 +03:00
* @ version v0 . 0.1
* /
2018-08-30 22:05:23 +03:00
/*xjslint node: true */
/*xjslint plusplus: true */
/*xjslint maxlen: 256 */
/*jshint node: true */
/*jshint strict: false */
/*jshint esversion: 6 */
"use strict" ;
2018-08-27 22:24:15 +03:00
2018-11-30 04:59:29 +03:00
// If running NodeJS less than version 8, try to polyfill promisify
try { if ( Number ( process . version . match ( /^v(\d+\.\d+)/ ) [ 1 ] ) < 8 ) { require ( 'util.promisify' ) . shim ( ) ; } } catch ( ex ) { }
2018-01-10 07:13:41 +03:00
// If app metrics is available
if ( process . argv [ 2 ] == '--launch' ) { try { require ( 'appmetrics-dash' ) . monitor ( { url : '/' , title : 'MeshCentral' , port : 88 , host : '127.0.0.1' } ) ; } catch ( e ) { } }
2018-03-15 01:16:55 +03:00
function CreateMeshCentralServer ( config , args ) {
2017-08-28 19:27:45 +03:00
var obj = { } ;
2018-08-30 22:05:23 +03:00
obj . db = null ;
obj . webserver = null ;
obj . redirserver = null ;
obj . mpsserver = null ;
obj . swarmserver = null ;
obj . mailserver = null ;
obj . amtEventHandler = null ;
obj . amtScanner = null ;
obj . meshScanner = null ;
obj . letsencrypt = null ;
2017-08-28 19:27:45 +03:00
obj . eventsDispatch = { } ;
obj . fs = require ( 'fs' ) ;
obj . path = require ( 'path' ) ;
obj . crypto = require ( 'crypto' ) ;
2018-01-20 05:04:54 +03:00
obj . exeHandler = require ( './exeHandler.js' ) ;
2017-08-28 19:27:45 +03:00
obj . platform = require ( 'os' ) . platform ( ) ;
2018-03-15 01:16:55 +03:00
obj . args = args ;
2017-08-28 19:27:45 +03:00
obj . common = require ( './common.js' ) ;
obj . certificates = null ;
obj . connectivityByNode = { } ; // This object keeps a list of all connected CIRA and agents, by nodeid->value (value: 1 = Agent, 2 = CIRA, 4 = AmtDirect)
2017-09-13 21:25:57 +03:00
obj . peerConnectivityByNode = { } ; // This object keeps a list of all connected CIRA and agents of peers, by serverid->nodeid->value (value: 1 = Agent, 2 = CIRA, 4 = AmtDirect)
2017-08-28 19:27:45 +03:00
obj . debugLevel = 0 ;
2018-02-01 03:10:15 +03:00
obj . config = config ; // Configuration file
2017-08-28 19:27:45 +03:00
obj . dbconfig = { } ; // Persistance values, loaded from database
2018-01-10 07:13:41 +03:00
obj . certificateOperations = null ;
2017-12-13 03:04:54 +03:00
obj . defaultMeshCmd = null ;
2018-12-30 02:24:33 +03:00
obj . defaultMeshCores = { } ;
obj . defaultMeshCoresHash = { } ;
2017-10-15 09:22:19 +03:00
obj . meshAgentBinaries = { } ; // Mesh Agent Binaries, Architecture type --> { hash:(sha384 hash), size:(binary size), path:(binary path) }
obj . meshAgentInstallScripts = { } ; // Mesh Install Scripts, Script ID -- { hash:(sha384 hash), size:(binary size), path:(binary path) }
2017-08-28 19:27:45 +03:00
obj . multiServer = null ;
2017-09-07 04:10:24 +03:00
obj . maintenanceTimer = null ;
2017-09-13 21:25:57 +03:00
obj . serverId = null ;
2017-12-13 03:04:54 +03:00
obj . currentVer = null ;
2019-01-03 05:03:34 +03:00
obj . serverKey = Buffer . from ( obj . crypto . randomBytes ( 48 ) , 'binary' ) ;
2017-12-14 01:52:57 +03:00
obj . loginCookieEncryptionKey = null ;
2018-09-27 00:58:55 +03:00
obj . serverSelfWriteAllowed = true ;
2018-01-26 03:12:53 +03:00
try { obj . currentVer = JSON . parse ( obj . fs . readFileSync ( obj . path . join ( _ _dirname , 'package.json' ) , 'utf8' ) ) . version ; } catch ( e ) { } // Fetch server version
2017-09-15 21:45:06 +03:00
2017-09-27 22:43:20 +03:00
// Setup the default configuration and files paths
if ( ( _ _dirname . endsWith ( '/node_modules/meshcentral' ) ) || ( _ _dirname . endsWith ( '\\node_modules\\meshcentral' ) ) || ( _ _dirname . endsWith ( '/node_modules/meshcentral/' ) ) || ( _ _dirname . endsWith ( '\\node_modules\\meshcentral\\' ) ) ) {
2017-10-15 09:22:19 +03:00
obj . datapath = obj . path . join ( _ _dirname , '../../meshcentral-data' ) ;
obj . filespath = obj . path . join ( _ _dirname , '../../meshcentral-files' ) ;
2017-09-27 22:43:20 +03:00
} else {
2017-10-15 09:22:19 +03:00
obj . datapath = obj . path . join ( _ _dirname , '../meshcentral-data' ) ;
obj . filespath = obj . path . join ( _ _dirname , '../meshcentral-files' ) ;
2017-09-27 22:43:20 +03:00
}
2017-08-28 19:27:45 +03:00
// Create data and files folders if needed
try { obj . fs . mkdirSync ( obj . datapath ) ; } catch ( e ) { }
try { obj . fs . mkdirSync ( obj . filespath ) ; } catch ( e ) { }
// Windows Specific Code, setup service and event log
obj . service = null ;
obj . servicelog = null ;
if ( obj . platform == 'win32' ) {
var nodewindows = require ( 'node-windows' ) ;
obj . service = nodewindows . Service ;
var eventlogger = nodewindows . EventLogger ;
obj . servicelog = new eventlogger ( 'MeshCentral' ) ;
}
// Start the Meshcentral server
obj . Start = function ( ) {
2018-08-30 22:05:23 +03:00
var i ;
2017-08-28 19:27:45 +03:00
try { require ( './pass' ) . hash ( 'test' , function ( ) { } ) ; } catch ( e ) { console . log ( 'Old version of node, must upgrade.' ) ; return ; } // TODO: Not sure if this test works or not.
2018-07-24 03:34:24 +03:00
2017-08-28 19:27:45 +03:00
// Check for invalid arguments
2019-01-11 21:02:54 +03:00
var validArguments = [ '_' , 'notls' , 'user' , 'port' , 'aliasport' , 'mpsport' , 'mpsaliasport' , 'redirport' , 'cert' , 'mpscert' , 'deletedomain' , 'deletedefaultdomain' , 'showall' , 'showusers' , 'shownodes' , 'showmeshes' , 'showevents' , 'showpower' , 'clearpower' , 'showiplocations' , 'help' , 'exactports' , 'install' , 'uninstall' , 'start' , 'stop' , 'restart' , 'debug' , 'filespath' , 'datapath' , 'noagentupdate' , 'launch' , 'noserverbackup' , 'mongodb' , 'mongodbcol' , 'wanonly' , 'lanonly' , 'nousers' , 'mpsdebug' , 'mpspass' , 'ciralocalfqdn' , 'dbexport' , 'dbimport' , 'selfupdate' , 'tlsoffload' , 'userallowedip' , 'swarmallowedip' , 'fastcert' , 'swarmport' , 'swarmdebug' , 'logintoken' , 'logintokenkey' , 'logintokengen' , 'logintokengen' , 'mailtokengen' , 'admin' , 'unadmin' , 'sessionkey' , 'sessiontime' , 'minify' , 'minifycore' ] ;
2017-09-27 22:43:20 +03:00
for ( var arg in obj . args ) { obj . args [ arg . toLocaleLowerCase ( ) ] = obj . args [ arg ] ; if ( validArguments . indexOf ( arg . toLocaleLowerCase ( ) ) == - 1 ) { console . log ( 'Invalid argument "' + arg + '", use --help.' ) ; return ; } }
2017-08-28 19:27:45 +03:00
if ( obj . args . mongodb == true ) { console . log ( 'Must specify: --mongodb [connectionstring] \r\nSee https://docs.mongodb.com/manual/reference/connection-string/ for MongoDB connection string.' ) ; return ; }
2018-08-30 22:05:23 +03:00
for ( i in obj . config . settings ) { obj . args [ i ] = obj . config . settings [ i ] ; } // Place all settings into arguments, arguments have already been placed into settings so arguments take precedence.
2017-08-28 19:27:45 +03:00
if ( ( obj . args . help == true ) || ( obj . args [ '?' ] == true ) ) {
2017-10-15 09:22:19 +03:00
console . log ( 'MeshCentral2 Beta 2, a web-based remote computer management web portal.\r\n' ) ;
2017-08-28 19:27:45 +03:00
if ( obj . platform == 'win32' ) {
console . log ( 'Run as a Windows Service' ) ;
console . log ( ' --install/uninstall Install Meshcentral as a background service.' ) ;
console . log ( ' --start/stop/restart Control Meshcentral background service.' ) ;
console . log ( 'Run standalone, console application' ) ;
}
console . log ( ' --notls Use HTTP instead of HTTPS for the main web server.' ) ;
console . log ( ' --user [username] Always login as [username] if account exists.' ) ;
console . log ( ' --port [number] Web server port number.' ) ;
console . log ( ' --mpsport [number] Intel AMT server port number.' ) ;
console . log ( ' --redirport [number] Creates an additional HTTP server to redirect users to the HTTPS server.' ) ;
console . log ( ' --exactports Server must run with correct ports or exit.' ) ;
console . log ( ' --noagentupdate Server will not update mesh agent native binaries.' ) ;
2018-07-14 05:18:43 +03:00
console . log ( ' --fastcert Generate weaker RSA2048 certificates.' ) ;
2018-05-30 02:57:08 +03:00
console . log ( ' --cert [name], (country), (org) Create a web server certificate with [name] server name.' ) ;
2017-08-28 19:27:45 +03:00
console . log ( ' country and organization can optionaly be set.' ) ;
return ;
}
2018-08-30 22:05:23 +03:00
2017-08-28 19:27:45 +03:00
// Check if we need to install, start, stop, remove ourself as a background service
if ( ( obj . service != null ) && ( ( obj . args . install == true ) || ( obj . args . uninstall == true ) || ( obj . args . start == true ) || ( obj . args . stop == true ) || ( obj . args . restart == true ) ) ) {
2018-03-09 04:58:22 +03:00
var env = [ ] , xenv = [ 'user' , 'port' , 'aliasport' , 'mpsport' , 'mpsaliasport' , 'redirport' , 'exactport' , 'debug' ] ;
2018-08-30 22:05:23 +03:00
for ( i in xenv ) { if ( obj . args [ xenv [ i ] ] != null ) { env . push ( { name : 'mesh' + xenv [ i ] , value : obj . args [ xenv [ i ] ] } ) ; } } // Set some args as service environement variables.
var svc = new obj . service ( { name : 'MeshCentral' , description : 'MeshCentral Remote Management Server' , script : obj . path . join ( _ _dirname , 'winservice.js' ) , env : env , wait : 2 , grow : 0.5 } ) ;
2017-08-28 19:27:45 +03:00
svc . on ( 'install' , function ( ) { console . log ( 'MeshCentral service installed.' ) ; svc . start ( ) ; } ) ;
svc . on ( 'uninstall' , function ( ) { console . log ( 'MeshCentral service uninstalled.' ) ; process . exit ( ) ; } ) ;
svc . on ( 'start' , function ( ) { console . log ( 'MeshCentral service started.' ) ; process . exit ( ) ; } ) ;
svc . on ( 'stop' , function ( ) { console . log ( 'MeshCentral service stopped.' ) ; if ( obj . args . stop ) { process . exit ( ) ; } if ( obj . args . restart ) { console . log ( 'Holding 5 seconds...' ) ; setTimeout ( function ( ) { svc . start ( ) ; } , 5000 ) ; } } ) ;
svc . on ( 'alreadyinstalled' , function ( ) { console . log ( 'MeshCentral service already installed.' ) ; process . exit ( ) ; } ) ;
svc . on ( 'invalidinstallation' , function ( ) { console . log ( 'Invalid MeshCentral service installation.' ) ; process . exit ( ) ; } ) ;
2018-08-30 22:05:23 +03:00
2017-09-27 22:43:20 +03:00
if ( obj . args . install == true ) { try { svc . install ( ) ; } catch ( e ) { logException ( e ) ; } }
if ( obj . args . stop == true || obj . args . restart == true ) { try { svc . stop ( ) ; } catch ( e ) { logException ( e ) ; } }
if ( obj . args . start == true || obj . args . restart == true ) { try { svc . start ( ) ; } catch ( e ) { logException ( e ) ; } }
if ( obj . args . uninstall == true ) { try { svc . uninstall ( ) ; } catch ( e ) { logException ( e ) ; } }
return ;
2017-08-28 19:27:45 +03:00
}
// If "--launch" is in the arguments, launch now
if ( obj . args . launch == 1 ) {
obj . StartEx ( ) ;
} else {
// if "--launch" is not specified, launch the server as a child process.
var startLine = '' ;
2018-08-30 22:05:23 +03:00
for ( i in process . argv ) {
2017-08-28 19:27:45 +03:00
var arg = process . argv [ i ] ;
if ( arg . length > 0 ) {
if ( startLine . length > 0 ) startLine += ' ' ;
if ( arg . indexOf ( ' ' ) >= 0 ) { startLine += '"' + arg + '"' ; } else { startLine += arg ; }
}
}
obj . launchChildServer ( startLine ) ;
}
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
// Launch MeshCentral as a child server and monitor it.
obj . launchChildServer = function ( startLine ) {
var child _process = require ( 'child_process' ) ;
2017-10-11 22:20:59 +03:00
var xprocess = child _process . exec ( startLine + ' --launch' , { maxBuffer : Infinity } , function ( error , stdout , stderr ) {
2017-09-04 22:20:18 +03:00
if ( xprocess . xrestart == 1 ) {
setTimeout ( function ( ) { obj . launchChildServer ( startLine ) ; } , 500 ) ; // This is an expected restart.
} else if ( xprocess . xrestart == 2 ) {
console . log ( 'Expected exit...' ) ;
process . exit ( ) ; // User CTRL-C exit.
2017-09-07 04:10:24 +03:00
} else if ( xprocess . xrestart == 3 ) {
// Server self-update exit
var child _process = require ( 'child_process' ) ;
2017-10-11 22:20:59 +03:00
var xxprocess = child _process . exec ( 'npm install meshcentral' , { maxBuffer : Infinity , cwd : obj . path . join ( _ _dirname , '../..' ) } , function ( error , stdout , stderr ) { } ) ;
2017-09-07 04:10:24 +03:00
xxprocess . data = '' ;
xxprocess . stdout . on ( 'data' , function ( data ) { xxprocess . data += data ; } ) ;
xxprocess . stderr . on ( 'data' , function ( data ) { xxprocess . data += data ; } ) ;
xxprocess . on ( 'close' , function ( code ) { console . log ( 'Update completed...' ) ; setTimeout ( function ( ) { obj . launchChildServer ( startLine ) ; } , 1000 ) ; } ) ;
2017-08-28 19:27:45 +03:00
} else {
2017-09-02 03:34:02 +03:00
if ( error != null ) {
2017-09-04 22:20:18 +03:00
// This is an un-expected restart
2017-09-13 21:25:57 +03:00
console . log ( error ) ;
2017-10-04 04:31:20 +03:00
console . log ( 'ERROR: MeshCentral failed with critical error, check MeshErrors.txt. Restarting in 5 seconds...' ) ;
setTimeout ( function ( ) { obj . launchChildServer ( startLine ) ; } , 5000 ) ;
2018-08-30 22:05:23 +03:00
}
2017-08-28 19:27:45 +03:00
}
} ) ;
2018-01-15 08:01:06 +03:00
xprocess . stdout . on ( 'data' , function ( data ) { if ( data [ data . length - 1 ] == '\n' ) { data = data . substring ( 0 , data . length - 1 ) ; } if ( data . indexOf ( 'Updating settings folder...' ) >= 0 ) { xprocess . xrestart = 1 ; } else if ( data . indexOf ( 'Updating server certificates...' ) >= 0 ) { xprocess . xrestart = 1 ; } else if ( data . indexOf ( 'Server Ctrl-C exit...' ) >= 0 ) { xprocess . xrestart = 2 ; } else if ( data . indexOf ( 'Starting self upgrade...' ) >= 0 ) { xprocess . xrestart = 3 ; } console . log ( data ) ; } ) ;
xprocess . stderr . on ( 'data' , function ( data ) {
if ( data . startsWith ( 'le.challenges[tls-sni-01].loopback' ) ) { return ; } // Ignore this error output from GreenLock
2018-12-02 10:41:57 +03:00
if ( data [ data . length - 1 ] == '\n' ) { data = data . substring ( 0 , data . length - 1 ) ; }
try { obj . fs . appendFileSync ( obj . getConfigFilePath ( 'mesherrors.txt' ) , '-------- ' + new Date ( ) . toLocaleString ( ) + ' ---- ' + obj . currentVer + ' --------\r\n\r\n' + data + '\r\n\r\n\r\n' ) ; } catch ( ex ) { console . log ( 'ERROR: Unable to write to mesherrors.txt.' ) ; }
2018-01-15 08:01:06 +03:00
} ) ;
2017-09-02 03:34:02 +03:00
xprocess . on ( 'close' , function ( code ) { if ( ( code != 0 ) && ( code != 123 ) ) { /* console.log("Exited with code " + code); */ } } ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
// Get current and latest MeshCentral server versions using NPM
obj . getLatestServerVersion = function ( callback ) {
2017-09-15 21:45:06 +03:00
if ( callback == null ) return ;
2017-08-28 19:27:45 +03:00
var child _process = require ( 'child_process' ) ;
2017-10-04 04:31:20 +03:00
var xprocess = child _process . exec ( 'npm view meshcentral dist-tags.latest' , { maxBuffer : 512000 } , function ( error , stdout , stderr ) { } ) ;
2017-08-28 19:27:45 +03:00
xprocess . data = '' ;
xprocess . stdout . on ( 'data' , function ( data ) { xprocess . data += data ; } ) ;
xprocess . stderr . on ( 'data' , function ( data ) { } ) ;
xprocess . on ( 'close' , function ( code ) {
var latestVer = null ;
if ( code == 0 ) { try { latestVer = xprocess . data . split ( ' ' ) . join ( '' ) . split ( '\r' ) . join ( '' ) . split ( '\n' ) . join ( '' ) ; } catch ( e ) { } }
2017-12-13 03:04:54 +03:00
callback ( obj . currentVer , latestVer ) ;
2017-08-28 19:27:45 +03:00
} ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
2017-09-07 04:10:24 +03:00
// Initiate server self-update
2018-08-30 22:05:23 +03:00
obj . performServerUpdate = function ( ) { console . log ( 'Starting self upgrade...' ) ; process . exit ( 200 ) ; } ;
2017-09-07 04:10:24 +03:00
2018-01-15 08:01:06 +03:00
// Initiate server self-update
2018-08-30 22:05:23 +03:00
obj . performServerCertUpdate = function ( ) { console . log ( 'Updating server certificates...' ) ; process . exit ( 200 ) ; } ;
2018-01-15 08:01:06 +03:00
2017-08-28 19:27:45 +03:00
obj . StartEx = function ( ) {
2018-08-30 22:05:23 +03:00
var i ;
2018-03-15 01:16:55 +03:00
//var wincmd = require('node-windows');
//wincmd.list(function (svc) { console.log(svc); }, true);
2018-08-30 22:05:23 +03:00
2018-03-14 22:10:13 +03:00
// Write the server state
obj . updateServerState ( 'state' , 'starting' ) ;
2017-08-28 19:27:45 +03:00
// Look to see if data and/or file path is specified
if ( obj . args . datapath ) { obj . datapath = obj . args . datapath ; }
if ( obj . args . filespath ) { obj . filespath = obj . args . filespath ; }
2018-08-30 22:05:23 +03:00
2017-08-28 19:27:45 +03:00
// Read environment variables. For a subset of arguments, we allow them to be read from environment variables.
2018-03-07 04:50:44 +03:00
var xenv = [ 'user' , 'port' , 'mpsport' , 'mpsaliasport' , 'redirport' , 'exactport' , 'debug' ] ;
2018-08-30 22:05:23 +03:00
for ( i in xenv ) { if ( ( obj . args [ xenv [ i ] ] == null ) && ( process . env [ 'mesh' + xenv [ i ] ] ) ) { obj . args [ xenv [ i ] ] = obj . common . toNumber ( process . env [ 'mesh' + xenv [ i ] ] ) ; } }
2017-08-28 19:27:45 +03:00
// Validate the domains, this is used for multi-hosting
2017-09-15 21:45:06 +03:00
if ( obj . config . domains == null ) { obj . config . domains = { } ; }
2018-01-03 03:52:49 +03:00
if ( obj . config . domains [ '' ] == null ) { obj . config . domains [ '' ] = { } ; }
if ( obj . config . domains [ '' ] . dns != null ) { console . log ( "ERROR: Default domain can't have a DNS name." ) ; return ; }
2018-12-22 01:39:26 +03:00
var xdomains = { } ; for ( i in obj . config . domains ) { if ( obj . config . domains [ i ] . title == null ) { obj . config . domains [ i ] . title = 'MeshCentral' ; } if ( obj . config . domains [ i ] . title2 == null ) { obj . config . domains [ i ] . title2 = '2.0 Beta 2' ; } xdomains [ i . toLowerCase ( ) ] = obj . config . domains [ i ] ; } obj . config . domains = xdomains ;
2017-08-28 19:27:45 +03:00
var bannedDomains = [ 'public' , 'private' , 'images' , 'scripts' , 'styles' , 'views' ] ; // List of banned domains
2018-08-30 22:05:23 +03:00
for ( i in obj . config . domains ) { for ( var j in bannedDomains ) { if ( i == bannedDomains [ j ] ) { console . log ( "ERROR: Domain '" + i + "' is not allowed domain name in ./data/config.json." ) ; return ; } } }
for ( i in obj . config . domains ) {
2018-01-03 03:52:49 +03:00
if ( obj . config . domains [ i ] . dns == null ) { obj . config . domains [ i ] . url = ( i == '' ) ? '/' : ( '/' + i + '/' ) ; } else { obj . config . domains [ i ] . url = '/' ; }
obj . config . domains [ i ] . id = i ;
2019-01-08 06:28:38 +03:00
if ( typeof obj . config . domains [ i ] . userallowedip == 'string' ) { if ( obj . config . domains [ i ] . userallowedip == '' ) { obj . config . domains [ i ] . userallowedip = null ; } else { obj . config . domains [ i ] . userallowedip = obj . config . domains [ i ] . userallowedip . split ( ',' ) ; } }
2017-10-03 00:12:29 +03:00
}
2017-08-28 19:27:45 +03:00
// Log passed arguments into Windows Service Log
2018-08-30 22:05:23 +03:00
//if (obj.servicelog != null) { var s = ''; for (i in obj.args) { if (i != '_') { if (s.length > 0) { s += ', '; } s += i + "=" + obj.args[i]; } } logInfoEvent('MeshServer started with arguments: ' + s); }
2017-08-28 19:27:45 +03:00
// Look at passed in arguments
2018-03-27 03:13:32 +03:00
if ( ( obj . args . user != null ) && ( typeof obj . args . user != 'string' ) ) { delete obj . args . user ; }
2017-09-15 21:45:06 +03:00
if ( ( obj . args . ciralocalfqdn != null ) && ( ( obj . args . lanonly == true ) || ( obj . args . wanonly == true ) ) ) { console . log ( "WARNING: CIRA local FQDN's ignored when server in LAN-only or WAN-only mode." ) ; }
if ( ( obj . args . ciralocalfqdn != null ) && ( obj . args . ciralocalfqdn . split ( ',' ) . length > 4 ) ) { console . log ( "WARNING: Can't have more than 4 CIRA local FQDN's. Ignoring value." ) ; obj . args . ciralocalfqdn = null ; }
2018-12-15 23:34:55 +03:00
if ( obj . args . ignoreagenthashcheck === true ) { console . log ( "WARNING: Agent hash checking is being skipped, this is unsafe." ) ; }
2017-09-15 21:45:06 +03:00
if ( obj . args . port == null || typeof obj . args . port != 'number' ) { if ( obj . args . notls == null ) { obj . args . port = 443 ; } else { obj . args . port = 80 ; } }
2018-03-09 04:58:22 +03:00
if ( obj . args . aliasport != null && ( typeof obj . args . aliasport != 'number' ) ) obj . args . aliasport = null ;
2017-09-15 21:45:06 +03:00
if ( obj . args . mpsport == null || typeof obj . args . mpsport != 'number' ) obj . args . mpsport = 4433 ;
2018-03-07 04:50:44 +03:00
if ( obj . args . mpsaliasport != null && ( typeof obj . args . mpsaliasport != 'number' ) ) obj . args . mpsaliasport = null ;
2017-09-15 21:45:06 +03:00
if ( obj . args . notls == null && obj . args . redirport == null ) obj . args . redirport = 80 ;
2019-01-04 01:46:52 +03:00
if ( obj . args . minifycore === 0 ) obj . args . minifycore = false ;
2019-01-08 00:18:20 +03:00
if ( typeof obj . args . userallowedip == 'string' ) { if ( obj . args . userallowedip == '' ) { obj . args . userallowedip = null ; } else { obj . args . userallowedip = obj . args . userallowedip . split ( ',' ) ; } }
2019-01-11 21:02:54 +03:00
if ( typeof obj . args . swarmallowedip == 'string' ) { if ( obj . args . swarmallowedip == '' ) { obj . args . swarmallowedip = null ; } else { obj . args . swarmallowedip = obj . args . swarmallowedip . split ( ',' ) ; } }
2017-08-28 19:27:45 +03:00
if ( typeof obj . args . debug == 'number' ) obj . debugLevel = obj . args . debug ;
if ( obj . args . debug == true ) obj . debugLevel = 1 ;
2018-07-14 05:18:43 +03:00
obj . db = require ( './db.js' ) . CreateDB ( obj ) ;
2017-08-28 19:27:45 +03:00
obj . db . SetupDatabase ( function ( dbversion ) {
// See if any database operations needs to be completed
if ( obj . args . deletedomain ) { obj . db . DeleteDomain ( obj . args . deletedomain , function ( ) { console . log ( 'Deleted domain ' + obj . args . deletedomain + '.' ) ; process . exit ( ) ; } ) ; return ; }
if ( obj . args . deletedefaultdomain ) { obj . db . DeleteDomain ( '' , function ( ) { console . log ( 'Deleted default domain.' ) ; process . exit ( ) ; } ) ; return ; }
2017-10-15 09:22:19 +03:00
if ( obj . args . showall ) { obj . db . GetAll ( function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
2017-08-28 19:27:45 +03:00
if ( obj . args . showusers ) { obj . db . GetAllType ( 'user' , function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
if ( obj . args . shownodes ) { obj . db . GetAllType ( 'node' , function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
if ( obj . args . showmeshes ) { obj . db . GetAllType ( 'mesh' , function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
if ( obj . args . showevents ) { obj . db . GetAllType ( 'event' , function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
if ( obj . args . showpower ) { obj . db . GetAllType ( 'power' , function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
2018-01-03 03:52:49 +03:00
if ( obj . args . clearpower ) { obj . db . RemoveAllOfType ( 'power' , function ( ) { process . exit ( ) ; } ) ; return ; }
2017-09-06 20:08:01 +03:00
if ( obj . args . showiplocations ) { obj . db . GetAllType ( 'iploc' , function ( err , docs ) { console . log ( docs ) ; process . exit ( ) ; } ) ; return ; }
2017-12-14 01:52:57 +03:00
if ( obj . args . logintoken ) { obj . getLoginToken ( obj . args . logintoken , function ( r ) { console . log ( r ) ; process . exit ( ) ; } ) ; return ; }
if ( obj . args . logintokenkey ) { obj . showLoginTokenKey ( function ( r ) { console . log ( r ) ; process . exit ( ) ; } ) ; return ; }
2017-09-02 03:34:02 +03:00
if ( obj . args . dbexport ) {
// Export the entire database to a JSON file
2018-07-14 05:18:43 +03:00
if ( obj . args . dbexport == true ) { obj . args . dbexport = obj . getConfigFilePath ( 'meshcentral.db.json' ) ; }
2017-11-04 03:01:30 +03:00
obj . db . GetAll ( function ( err , docs ) {
obj . fs . writeFileSync ( obj . args . dbexport , JSON . stringify ( docs ) ) ;
console . log ( 'Exported ' + docs . length + ' objects(s) to ' + obj . args . dbexport + '.' ) ; process . exit ( ) ;
} ) ;
2017-09-02 03:34:02 +03:00
return ;
}
if ( obj . args . dbimport ) {
// Import the entire database from a JSON file
2018-07-14 05:18:43 +03:00
if ( obj . args . dbimport == true ) { obj . args . dbimport = obj . getConfigFilePath ( 'meshcentral.db.json' ) ; }
2018-07-17 03:49:55 +03:00
var json = null , json2 = "" , badCharCount = 0 ;
try { json = obj . fs . readFileSync ( obj . args . dbimport , { encoding : 'utf8' } ) ; } catch ( e ) { console . log ( 'Invalid JSON file: ' + obj . args . dbimport + '.' ) ; process . exit ( ) ; }
2018-08-30 22:05:23 +03:00
for ( i = 0 ; i < json . length ; i ++ ) { if ( json . charCodeAt ( i ) >= 32 ) { json2 += json [ i ] ; } else { var tt = json . charCodeAt ( i ) ; if ( tt != 10 && tt != 13 ) { badCharCount ++ ; } } } // Remove all bad chars
2018-07-17 03:49:55 +03:00
if ( badCharCount > 0 ) { console . log ( badCharCount + ' invalid character(s) where removed.' ) ; }
2018-07-14 05:18:43 +03:00
try { json = JSON . parse ( json2 ) ; } catch ( e ) { console . log ( 'Invalid JSON format: ' + obj . args . dbimport + ': ' + e ) ; process . exit ( ) ; }
2017-11-04 03:01:30 +03:00
if ( ( json == null ) || ( typeof json . length != 'number' ) || ( json . length < 1 ) ) { console . log ( 'Invalid JSON format: ' + obj . args . dbimport + '.' ) ; }
2018-08-30 22:05:23 +03:00
for ( i in json ) { if ( ( json [ i ] . type == "mesh" ) && ( json [ i ] . links != null ) ) { for ( var j in json [ i ] . links ) { var esc = obj . common . escapeFieldName ( j ) ; if ( esc !== j ) { json [ i ] . links [ esc ] = json [ i ] . links [ j ] ; delete json [ i ] . links [ j ] ; } } } } // Escape MongoDB invalid field chars
//for (i in json) { if ((json[i].type == "node") && (json[i].host != null)) { json[i].rname = json[i].host; delete json[i].host; } } // DEBUG: Change host to rname
2018-07-14 05:18:43 +03:00
obj . db . RemoveAll ( function ( ) { obj . db . InsertMany ( json , function ( err ) { if ( err != null ) { console . log ( err ) ; } else { console . log ( 'Imported ' + json . length + ' objects(s) from ' + obj . args . dbimport + '.' ) ; } process . exit ( ) ; } ) ; } ) ;
2017-09-02 03:34:02 +03:00
return ;
}
2017-08-28 19:27:45 +03:00
// Clear old event entries and power entires
obj . db . clearOldEntries ( 'event' , 30 ) ; // Clear all event entires that are older than 30 days.
obj . db . clearOldEntries ( 'power' , 10 ) ; // Clear all event entires that are older than 10 days. If a node is connected longer than 10 days, current power state will be used for everything.
2018-07-17 03:49:55 +03:00
// Setup a site administrator
if ( ( obj . args . admin ) && ( typeof obj . args . admin == 'string' ) ) {
var adminname = obj . args . admin . split ( '/' ) ;
if ( adminname . length == 1 ) { adminname = 'user//' + adminname [ 0 ] ; }
else if ( adminname . length == 2 ) { adminname = 'user/' + adminname [ 0 ] + '/' + adminname [ 1 ] ; }
else { console . log ( 'Invalid administrator name.' ) ; process . exit ( ) ; return ; }
obj . db . Get ( adminname , function ( err , user ) {
if ( user . length != 1 ) { console . log ( 'Invalid user name.' ) ; process . exit ( ) ; return ; }
user [ 0 ] . siteadmin = 0xFFFFFFFF ;
obj . db . Set ( user [ 0 ] , function ( ) {
if ( user [ 0 ] . domain == '' ) { console . log ( 'User ' + user [ 0 ] . name + ' set to site administrator.' ) ; } else { console . log ( 'User ' + user [ 0 ] . name + ' of domain ' + user [ 0 ] . domain + ' set to site administrator.' ) ; }
process . exit ( ) ;
return ;
} ) ;
} ) ;
return ;
}
// Remove a site administrator
if ( ( obj . args . unadmin ) && ( typeof obj . args . unadmin == 'string' ) ) {
var adminname = obj . args . unadmin . split ( '/' ) ;
if ( adminname . length == 1 ) { adminname = 'user//' + adminname [ 0 ] ; }
else if ( adminname . length == 2 ) { adminname = 'user/' + adminname [ 0 ] + '/' + adminname [ 1 ] ; }
else { console . log ( 'Invalid administrator name.' ) ; process . exit ( ) ; return ; }
obj . db . Get ( adminname , function ( err , user ) {
if ( user . length != 1 ) { console . log ( 'Invalid user name.' ) ; process . exit ( ) ; return ; }
if ( user [ 0 ] . siteadmin ) { delete user [ 0 ] . siteadmin ; }
obj . db . Set ( user [ 0 ] , function ( ) {
if ( user [ 0 ] . domain == '' ) { console . log ( 'User ' + user [ 0 ] . name + ' is not a site administrator.' ) ; } else { console . log ( 'User ' + user [ 0 ] . name + ' of domain ' + user [ 0 ] . domain + ' is not a site administrator.' ) ; }
process . exit ( ) ;
return ;
} ) ;
} ) ;
return ;
}
2017-08-28 19:27:45 +03:00
// Perform other database cleanup
obj . db . cleanup ( ) ;
// Set all nodes to power state of unknown (0)
2018-01-03 03:52:49 +03:00
if ( obj . multiServer == null ) {
obj . db . file . insert ( { type : 'power' , time : Date . now ( ) , node : '*' , power : 0 , s : 1 } ) ;
} else {
obj . db . file . insert ( { type : 'power' , time : Date . now ( ) , node : '*' , power : 0 , s : 1 , server : obj . multiServer . serverid } ) ;
}
2017-08-28 19:27:45 +03:00
// Read or setup database configuration values
obj . db . Get ( 'dbconfig' , function ( err , dbconfig ) {
if ( dbconfig . length == 1 ) { obj . dbconfig = dbconfig [ 0 ] ; } else { obj . dbconfig = { _id : 'dbconfig' , version : 1 } ; }
2017-09-15 21:45:06 +03:00
if ( obj . dbconfig . amtWsEventSecret == null ) { require ( 'crypto' ) . randomBytes ( 32 , function ( err , buf ) { obj . dbconfig . amtWsEventSecret = buf . toString ( 'hex' ) ; obj . db . Set ( obj . dbconfig ) ; } ) ; }
2018-08-30 22:05:23 +03:00
2017-08-28 19:27:45 +03:00
// This is used by the user to create a username/password for a Intel AMT WSMAN event subscription
if ( obj . args . getwspass ) {
if ( obj . args . getwspass . length == 64 ) {
require ( 'crypto' ) . randomBytes ( 6 , function ( err , buf ) {
2017-09-15 21:45:06 +03:00
while ( obj . dbconfig . amtWsEventSecret == null ) { process . nextTick ( ) ; }
2017-08-28 19:27:45 +03:00
var username = buf . toString ( 'hex' ) ;
var nodeid = obj . args . getwspass ;
2017-10-16 03:36:06 +03:00
var pass = require ( 'crypto' ) . createHash ( 'sha384' ) . update ( username . toLowerCase ( ) + ":" + nodeid + ":" + obj . dbconfig . amtWsEventSecret ) . digest ( "base64" ) . substring ( 0 , 12 ) . split ( "/" ) . join ( "x" ) . split ( "\\" ) . join ( "x" ) ;
2017-08-28 19:27:45 +03:00
console . log ( '--- Intel(r) AMT WSMAN eventing credentials ---' ) ;
console . log ( 'Username: ' + username ) ;
console . log ( 'Password: ' + pass ) ;
2017-10-16 03:36:06 +03:00
console . log ( 'Argument: ' + nodeid ) ;
2017-08-28 19:27:45 +03:00
process . exit ( ) ;
} ) ;
} else {
console . log ( 'Invalid NodeID.' ) ;
process . exit ( ) ;
}
return ;
}
2017-12-13 03:04:54 +03:00
// Load the default meshcore and meshcmd
2017-08-28 19:27:45 +03:00
obj . updateMeshCore ( ) ;
2017-12-13 03:04:54 +03:00
obj . updateMeshCmd ( ) ;
2017-08-28 19:27:45 +03:00
2018-11-13 05:36:20 +03:00
// Setup and start the redirection server if needed. We must start the redirection server before Let's Encrypt.
2018-01-15 08:01:06 +03:00
if ( ( obj . args . redirport != null ) && ( typeof obj . args . redirport == 'number' ) && ( obj . args . redirport != 0 ) ) {
obj . redirserver = require ( './redirserver.js' ) . CreateRedirServer ( obj , obj . db , obj . args , obj . StartEx2 ) ;
} else {
obj . StartEx2 ( ) ; // If not needed, move on.
}
} ) ;
} ) ;
2018-08-30 22:05:23 +03:00
} ;
2018-01-15 08:01:06 +03:00
// Done starting the redirection server, go on to load the server certificates
obj . StartEx2 = function ( ) {
// Load server certificates
2018-08-30 22:05:23 +03:00
obj . certificateOperations = require ( './certoperations.js' ) . CertificateOperations ( ) ;
2018-07-14 05:18:43 +03:00
obj . certificateOperations . GetMeshServerCertificate ( obj , obj . args , obj . config , function ( certs ) {
2018-11-13 05:36:20 +03:00
if ( ( obj . config . letsencrypt == null ) || ( obj . redirserver == null ) ) {
2018-01-15 08:01:06 +03:00
obj . StartEx3 ( certs ) ; // Just use the configured certificates
} else {
var le = require ( './letsencrypt.js' ) ;
obj . letsencrypt = le . CreateLetsEncrypt ( obj ) ;
if ( obj . letsencrypt != null ) {
obj . letsencrypt . getCertificate ( certs , obj . StartEx3 ) ; // Use Let's Encrypt certificate
} else {
console . log ( 'ERROR: Unable to setup GreenLock module.' ) ;
obj . StartEx3 ( certs ) ; // Let's Encrypt did not load, just use the configured certificates
}
}
} ) ;
2018-08-30 22:05:23 +03:00
} ;
2018-01-15 08:01:06 +03:00
2018-11-01 02:03:09 +03:00
// Start the server with the given certificates, but check if we have web certificates to load
2018-01-15 08:01:06 +03:00
obj . StartEx3 = function ( certs ) {
2018-11-01 02:03:09 +03:00
var i , webCertLoadCount = 0 ;
2018-01-15 08:01:06 +03:00
obj . certificates = certs ;
obj . certificateOperations . acceleratorStart ( certs ) ; // Set the state of the accelerators
2017-08-28 19:27:45 +03:00
2018-11-01 02:03:09 +03:00
// Load any domain web certificates
for ( i in obj . config . domains ) {
if ( obj . config . domains [ i ] . certurl != null ) {
2018-11-03 04:13:32 +03:00
// Fix the URL and add 'https://' if needed
if ( obj . config . domains [ i ] . certurl . indexOf ( '://' ) < 0 ) { obj . config . domains [ i ] . certurl = 'https://' + obj . config . domains [ i ] . certurl ; }
2018-11-01 02:03:09 +03:00
// Load web certs
webCertLoadCount ++ ;
obj . certificateOperations . loadCertificate ( obj . config . domains [ i ] . certurl , obj . config . domains [ i ] , function ( url , cert , xdomain ) {
if ( cert != null ) {
2018-12-01 03:42:58 +03:00
// Hash the entire cert
2018-12-05 05:31:33 +03:00
var hash = obj . crypto . createHash ( 'sha384' ) . update ( Buffer . from ( cert , 'binary' ) ) . digest ( 'hex' ) ;
2018-12-01 03:42:58 +03:00
if ( xdomain . certhash != hash ) {
xdomain . certkeyhash = hash ;
xdomain . certhash = hash ;
2018-11-01 02:03:09 +03:00
}
2018-12-01 03:42:58 +03:00
try {
// Decode a RSA certificate and hash the public key, if this is not RSA, skip this.
var forgeCert = obj . certificateOperations . forge . pki . certificateFromAsn1 ( obj . certificateOperations . forge . asn1 . fromDer ( cert ) ) ;
xdomain . certkeyhash = obj . certificateOperations . forge . pki . getPublicKeyFingerprint ( forgeCert . publicKey , { md : obj . certificateOperations . forge . md . sha384 . create ( ) , encoding : 'hex' } ) ;
2018-12-05 05:31:33 +03:00
//console.log('V1: ' + xdomain.certkeyhash);
2018-12-01 03:42:58 +03:00
} catch ( ex ) { }
console . log ( 'Loaded web certificate from ' + url ) ;
console . log ( ' SHA384 cert hash: ' + xdomain . certhash ) ;
if ( xdomain . certhash != xdomain . certkeyhash ) { console . log ( ' SHA384 key hash: ' + xdomain . certkeyhash ) ; }
2018-11-01 02:03:09 +03:00
} else {
console . log ( 'Failed to load web certificate at: ' + url ) ;
}
webCertLoadCount -- ;
if ( webCertLoadCount == 0 ) { obj . StartEx4 ( ) ; } // Done loading all certificates
} ) ;
}
}
// No certificate to load, start the server
if ( webCertLoadCount == 0 ) { obj . StartEx4 ( ) ; }
}
// Start the server with the given certificates
obj . StartEx4 = function ( ) {
var i ;
2018-01-15 08:01:06 +03:00
// If the certificate is un-configured, force LAN-only mode
2018-11-13 05:36:20 +03:00
if ( obj . certificates . CommonName == 'un-configured' ) { /*console.log('Server name not configured, running in LAN-only mode.');*/ obj . args . lanonly = true ; }
// Write server version and run mode
var productionMode = ( process . env . NODE _ENV && ( process . env . NODE _ENV == 'production' ) ) ;
var runmode = ( obj . args . lanonly ? 2 : ( obj . args . wanonly ? 1 : 0 ) ) ;
console . log ( 'MeshCentral v' + obj . currentVer + ', ' + ( [ 'Hybrid (LAN + WAN) mode' , 'WAN mode' , 'LAN mode' ] [ runmode ] ) + ( productionMode ? ', Production mode.' : '.' ) ) ;
2017-08-28 19:27:45 +03:00
2018-01-15 08:01:06 +03:00
// Check that no sub-domains have the same DNS as the parent
2018-08-30 22:05:23 +03:00
for ( i in obj . config . domains ) {
2018-01-15 08:01:06 +03:00
if ( ( obj . config . domains [ i ] . dns != null ) && ( obj . certificates . CommonName . toLowerCase ( ) === obj . config . domains [ i ] . dns . toLowerCase ( ) ) ) {
console . log ( "ERROR: Server sub-domain can't have same DNS name as the parent." ) ; process . exit ( 0 ) ; return ;
}
}
2018-01-03 03:52:49 +03:00
2018-01-15 08:01:06 +03:00
// Load the list of mesh agents and install scripts
2018-08-30 22:05:23 +03:00
if ( obj . args . noagentupdate == 1 ) { for ( i in obj . meshAgentsArchitectureNumbers ) { obj . meshAgentsArchitectureNumbers [ i ] . update = false ; } }
2018-01-15 08:01:06 +03:00
obj . updateMeshAgentsTable ( function ( ) {
obj . updateMeshAgentInstallScripts ( ) ;
// Setup and start the web server
require ( 'crypto' ) . randomBytes ( 48 , function ( err , buf ) {
// Setup Mesh Multi-Server if needed
obj . multiServer = require ( './multiserver.js' ) . CreateMultiServer ( obj , obj . args ) ;
if ( obj . multiServer != null ) {
obj . serverId = obj . multiServer . serverid ;
for ( var serverid in obj . config . peers . servers ) { obj . peerConnectivityByNode [ serverid ] = { } ; }
}
// If the server is set to "nousers", allow only loopback unless IP filter is set
if ( ( obj . args . nousers == true ) && ( obj . args . userallowedip == null ) ) { obj . args . userallowedip = "::1,127.0.0.1" ; }
2018-08-23 02:18:01 +03:00
// Set the session length to 60 minutes if not set and set a random key if needed
2018-08-27 22:24:15 +03:00
if ( ( obj . args . sessiontime != null ) && ( ( typeof obj . args . sessiontime != 'number' ) || ( obj . args . sessiontime < 1 ) ) ) { delete obj . args . sessiontime ; }
2018-08-23 02:18:01 +03:00
if ( ! obj . args . sessionkey ) { obj . args . sessionkey = buf . toString ( 'hex' ) . toUpperCase ( ) ; }
2018-11-01 02:03:09 +03:00
// Start the web server and if needed, the redirection web server.
2018-08-23 02:18:01 +03:00
obj . webserver = require ( './webserver.js' ) . CreateWebServer ( obj , obj . db , obj . args , obj . certificates ) ;
2018-01-15 08:01:06 +03:00
if ( obj . redirserver != null ) { obj . redirserver . hookMainWebServer ( obj . certificates ) ; }
// Setup the Intel AMT event handler
obj . amtEventHandler = require ( './amtevents.js' ) . CreateAmtEventsHandler ( obj ) ;
// Setup the Intel AMT local network scanner
if ( obj . args . wanonly != true ) {
obj . amtScanner = require ( './amtscanner.js' ) . CreateAmtScanner ( obj ) . start ( ) ;
obj . meshScanner = require ( './meshscanner.js' ) . CreateMeshScanner ( obj ) . start ( ) ;
}
// Setup and start the MPS server
2018-01-26 03:12:53 +03:00
if ( ( obj . args . lanonly != true ) && ( obj . args . mpsport !== 0 ) ) {
2018-01-15 08:01:06 +03:00
obj . mpsserver = require ( './mpsserver.js' ) . CreateMpsServer ( obj , obj . db , obj . args , obj . certificates ) ;
}
// Setup and start the legacy swarm server
2018-01-26 03:12:53 +03:00
if ( ( obj . certificates . swarmserver != null ) && ( obj . args . swarmport !== 0 ) ) {
2018-01-15 08:01:06 +03:00
if ( obj . args . swarmport == null ) { obj . args . swarmport = 8080 ; }
obj . swarmserver = require ( './swarmserver.js' ) . CreateSwarmServer ( obj , obj . db , obj . args , obj . certificates ) ;
}
// Setup email server
if ( ( obj . config . smtp != null ) && ( obj . config . smtp . host != null ) && ( obj . config . smtp . from != null ) ) {
2018-09-06 03:40:00 +03:00
obj . mailserver = require ( './meshmail.js' ) . CreateMeshMail ( obj ) ;
2018-01-15 08:01:06 +03:00
obj . mailserver . verify ( ) ;
}
// Start periodic maintenance
obj . maintenanceTimer = setInterval ( obj . maintenanceActions , 1000 * 60 * 60 ) ; // Run this every hour
// Dispatch an event that the server is now running
2018-08-30 22:05:23 +03:00
obj . DispatchEvent ( [ '*' ] , obj , { etype : 'server' , action : 'started' , msg : 'Server started' } ) ;
2018-01-15 08:01:06 +03:00
// Load the login cookie encryption key from the database if allowed
if ( ( obj . config ) && ( obj . config . settings ) && ( obj . config . settings . allowlogintoken == true ) ) {
obj . db . Get ( 'LoginCookieEncryptionKey' , function ( err , docs ) {
2018-12-29 22:38:05 +03:00
if ( ( docs . length > 0 ) && ( docs [ 0 ] . key != null ) && ( obj . args . logintokengen == null ) && ( docs [ 0 ] . key . length >= 160 ) ) {
2018-01-15 08:01:06 +03:00
obj . loginCookieEncryptionKey = Buffer . from ( docs [ 0 ] . key , 'hex' ) ;
} else {
obj . loginCookieEncryptionKey = obj . generateCookieKey ( ) ; obj . db . Set ( { _id : 'LoginCookieEncryptionKey' , key : obj . loginCookieEncryptionKey . toString ( 'hex' ) , time : Date . now ( ) } ) ;
}
2017-08-28 19:27:45 +03:00
} ) ;
2018-01-15 08:01:06 +03:00
}
2018-08-30 22:05:23 +03:00
//obj.debug(1, 'Server started');
2018-03-15 01:16:55 +03:00
if ( obj . args . nousers == true ) { obj . updateServerState ( 'nousers' , '1' ) ; }
2018-03-14 22:10:13 +03:00
obj . updateServerState ( 'state' , 'running' ) ;
2017-08-28 19:27:45 +03:00
} ) ;
} ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-09-07 04:10:24 +03:00
// Perform maintenance operations (called every hour)
obj . maintenanceActions = function ( ) {
// Check if we need to perform server self-update
2018-09-25 03:47:03 +03:00
if ( ( obj . args . selfupdate == true ) && ( obj . serverSelfWriteAllowed == true ) ) {
2017-09-07 04:10:24 +03:00
obj . db . getValueOfTheDay ( 'performSelfUpdate' , 1 , function ( performSelfUpdate ) {
if ( performSelfUpdate . value > 0 ) {
performSelfUpdate . value -- ;
obj . db . Set ( performSelfUpdate ) ;
obj . getLatestServerVersion ( function ( currentVer , latestVer ) { if ( currentVer != latestVer ) { obj . performServerUpdate ( ) ; return ; } } ) ;
}
} ) ;
}
// Clear old event entries and power entires
obj . db . clearOldEntries ( 'event' , 30 ) ; // Clear all event entires that are older than 30 days.
obj . db . clearOldEntries ( 'power' , 10 ) ; // Clear all event entires that are older than 10 days. If a node is connected longer than 10 days, current power state will be used for everything.
// Perform other database cleanup
obj . db . cleanup ( ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-09-07 04:10:24 +03:00
2017-08-28 19:27:45 +03:00
// Stop the Meshcentral server
obj . Stop = function ( restoreFile ) {
// If the database is not setup, exit now.
if ( ! obj . db ) return ;
// Dispatch an event saying the server is now stopping
2018-08-30 22:05:23 +03:00
obj . DispatchEvent ( [ '*' ] , obj , { etype : 'server' , action : 'stopped' , msg : 'Server stopped' } ) ;
2017-08-28 19:27:45 +03:00
// Set all nodes to power state of unknown (0)
2018-01-03 03:52:49 +03:00
var record = { type : 'power' , time : Date . now ( ) , node : '*' , power : 0 , s : 2 } ;
if ( obj . multiServer != null ) { record . server = obj . multiServer . serverid ; }
obj . db . file . insert ( record , function ( ) {
2017-08-28 19:27:45 +03:00
if ( restoreFile ) {
obj . debug ( 1 , 'Server stopped, updating settings: ' + restoreFile ) ;
console . log ( 'Updating settings folder...' ) ;
2018-05-03 02:19:45 +03:00
var yauzl = require ( "yauzl" ) ;
yauzl . open ( restoreFile , { lazyEntries : true } , function ( err , zipfile ) {
if ( err ) throw err ;
zipfile . readEntry ( ) ;
zipfile . on ( "entry" , function ( entry ) {
if ( /\/$/ . test ( entry . fileName ) ) {
// Directory file names end with '/'.
// Note that entires for directories themselves are optional.
// An entry's fileName implicitly requires its parent directories to exist.
zipfile . readEntry ( ) ;
} else {
// file entry
zipfile . openReadStream ( entry , function ( err , readStream ) {
if ( err ) throw err ;
readStream . on ( "end" , function ( ) { zipfile . readEntry ( ) ; } ) ;
2018-07-14 05:18:43 +03:00
// console.log('Extracting:', obj.getConfigFilePath(entry.fileName));
readStream . pipe ( obj . fs . createWriteStream ( obj . getConfigFilePath ( entry . fileName ) ) ) ;
2018-05-03 02:19:45 +03:00
} ) ;
}
} ) ;
2018-08-30 22:05:23 +03:00
zipfile . on ( "end" , function ( ) { setTimeout ( function ( ) { obj . fs . unlinkSync ( restoreFile ) ; process . exit ( 123 ) ; } ) ; } ) ;
2018-05-03 02:19:45 +03:00
} ) ;
2017-08-28 19:27:45 +03:00
} else {
obj . debug ( 1 , 'Server stopped' ) ;
process . exit ( 0 ) ;
}
} ) ;
2018-03-14 22:10:13 +03:00
// Update the server state
obj . updateServerState ( 'state' , 'stopped' ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
// Event Dispatch
obj . AddEventDispatch = function ( ids , target ) {
obj . debug ( 3 , 'AddEventDispatch' , ids ) ;
for ( var i in ids ) { var id = ids [ i ] ; if ( ! obj . eventsDispatch [ id ] ) { obj . eventsDispatch [ id ] = [ target ] ; } else { obj . eventsDispatch [ id ] . push ( target ) ; } }
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
obj . RemoveEventDispatch = function ( ids , target ) {
obj . debug ( 3 , 'RemoveEventDispatch' , id ) ;
2018-08-30 22:05:23 +03:00
for ( var i in ids ) { var id = ids [ i ] ; if ( obj . eventsDispatch [ id ] ) { var j = obj . eventsDispatch [ id ] . indexOf ( target ) ; if ( j >= 0 ) { obj . eventsDispatch [ id ] . splice ( j , 1 ) ; } } }
} ;
2017-08-28 19:27:45 +03:00
obj . RemoveEventDispatchId = function ( id ) {
obj . debug ( 3 , 'RemoveEventDispatchId' , id ) ;
2017-09-15 21:45:06 +03:00
if ( obj . eventsDispatch [ id ] != null ) { delete obj . eventsDispatch [ id ] ; }
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
obj . RemoveAllEventDispatch = function ( target ) {
obj . debug ( 3 , 'RemoveAllEventDispatch' ) ;
for ( var i in obj . eventsDispatch ) { var j = obj . eventsDispatch [ i ] . indexOf ( target ) ; if ( j >= 0 ) { obj . eventsDispatch [ i ] . splice ( j , 1 ) ; } }
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
obj . DispatchEvent = function ( ids , source , event , fromPeerServer ) {
// If the database is not setup, exit now.
if ( ! obj . db ) return ;
obj . debug ( 3 , 'DispatchEvent' , ids ) ;
2017-12-15 01:57:52 +03:00
if ( typeof event == 'object' ) {
event . type = 'event' ;
event . time = Date . now ( ) ;
event . ids = ids ;
if ( ! event . nolog ) { obj . db . StoreEvent ( ids , source , event ) ; }
}
2017-08-28 19:27:45 +03:00
var targets = [ ] ; // List of targets we dispatched the event to, we don't want to dispatch to the same target twice.
for ( var j in ids ) {
var id = ids [ j ] ;
if ( obj . eventsDispatch [ id ] ) {
for ( var i in obj . eventsDispatch [ id ] ) {
if ( targets . indexOf ( obj . eventsDispatch [ id ] [ i ] ) == - 1 ) { // Check if we already displatched to this target
targets . push ( obj . eventsDispatch [ id ] [ i ] ) ;
obj . eventsDispatch [ id ] [ i ] . HandleEvent ( source , event ) ;
}
}
}
}
2017-12-15 01:57:52 +03:00
if ( ( fromPeerServer == null ) && ( obj . multiServer != null ) && ( ( typeof event != 'object' ) || ( event . nopeers != 1 ) ) ) { obj . multiServer . DispatchEvent ( ids , source , event ) ; }
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
// Get the connection state of a node
2018-08-30 22:05:23 +03:00
obj . GetConnectivityState = function ( nodeid ) { return obj . connectivityByNode [ nodeid ] ; } ;
2017-09-13 21:25:57 +03:00
2017-09-15 21:45:06 +03:00
// Get the routing server id for a given node and connection type, can never be self.
obj . GetRoutingServerId = function ( nodeid , connectType ) {
if ( obj . multiServer == null ) return null ;
2018-08-30 22:05:23 +03:00
for ( var serverid in obj . peerConnectivityByNode ) {
2017-09-15 21:45:06 +03:00
if ( serverid == obj . serverId ) continue ;
var state = obj . peerConnectivityByNode [ serverid ] [ nodeid ] ;
if ( ( state != null ) && ( ( state . connectivity & connectType ) != 0 ) ) { return { serverid : serverid , meshid : state . meshid } ; }
}
return null ;
2018-08-30 22:05:23 +03:00
} ;
2017-09-15 21:45:06 +03:00
2017-09-13 21:25:57 +03:00
// Update the connection state of a node when in multi-server mode
// Update obj.connectivityByNode using obj.peerConnectivityByNode for the list of nodes in argument
obj . UpdateConnectivityState = function ( nodeids ) {
for ( var nodeid in nodeids ) {
var meshid = null , state = null , oldConnectivity = 0 , oldPowerState = 0 , newConnectivity = 0 , newPowerState = 0 ;
var oldState = obj . connectivityByNode [ nodeid ] ;
2018-08-30 22:05:23 +03:00
if ( oldState != null ) { meshid = oldState . meshid ; oldConnectivity = oldState . connectivity ; oldPowerState = oldState . powerState ; }
for ( var serverid in obj . peerConnectivityByNode ) {
2017-09-13 21:25:57 +03:00
var peerState = obj . peerConnectivityByNode [ serverid ] [ nodeid ] ;
if ( peerState != null ) {
if ( state == null ) {
// Copy the state
state = { } ;
newConnectivity = state . connectivity = peerState . connectivity ;
newPowerState = state . powerState = peerState . powerState ;
meshid = state . meshid = peerState . meshid ;
//if (peerState.agentPower) { state.agentPower = peerState.agentPower; }
//if (peerState.ciraPower) { state.ciraPower = peerState.ciraPower; }
//if (peerState.amtPower) { state.amtPower = peerState.amtPower; }
} else {
// Merge the state
state . connectivity |= peerState . connectivity ;
newConnectivity = state . connectivity ;
if ( ( peerState . powerState != 0 ) && ( ( state . powerState == 0 ) || ( peerState . powerState < state . powerState ) ) ) { newPowerState = state . powerState = peerState . powerState ; }
meshid = state . meshid = peerState . meshid ;
//if (peerState.agentPower) { state.agentPower = peerState.agentPower; }
//if (peerState.ciraPower) { state.ciraPower = peerState.ciraPower; }
//if (peerState.amtPower) { state.amtPower = peerState.amtPower; }
}
}
}
obj . connectivityByNode [ nodeid ] = state ;
//console.log('xx', nodeid, meshid, newConnectivity, oldPowerState, newPowerState, oldPowerState);
// Event any changes on this server only
if ( ( newConnectivity != oldPowerState ) || ( newPowerState != oldPowerState ) ) {
obj . DispatchEvent ( [ '*' , meshid ] , obj , { action : 'nodeconnect' , meshid : meshid , nodeid : nodeid , conn : newConnectivity , pwr : newPowerState , nolog : 1 , nopeers : 1 } ) ;
}
}
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
// Set the connectivity state of a node and setup the server so that messages can be routed correctly.
// meshId: mesh identifier of format mesh/domain/meshidhex
// nodeId: node identifier of format node/domain/nodeidhex
// connectTime: time of connection, milliseconds elapsed since the UNIX epoch.
// connectType: Bitmask, 1 = MeshAgent, 2 = Intel AMT CIRA, 4 = Intel AMT local.
// powerState: Value, 0 = Unknown, 1 = S0 power on, 2 = S1 Sleep, 3 = S2 Sleep, 4 = S3 Sleep, 5 = S4 Hibernate, 6 = S5 Soft-Off, 7 = Present
2018-08-30 22:05:23 +03:00
//var connectTypeStrings = ['', 'MeshAgent', 'Intel AMT CIRA', '', 'Intel AMT local'];
//var powerStateStrings = ['Unknown', 'Powered', 'Sleep', 'Sleep', 'Deep Sleep', 'Hibernating', 'Soft-Off', 'Present'];
2017-09-13 21:25:57 +03:00
obj . SetConnectivityState = function ( meshid , nodeid , connectTime , connectType , powerState , serverid ) {
//console.log('SetConnectivity for ' + nodeid.substring(0, 16) + ', Type: ' + connectTypeStrings[connectType] + ', Power: ' + powerStateStrings[powerState] + (serverid == null ? ('') : (', ServerId: ' + serverid)));
if ( ( serverid == null ) && ( obj . multiServer != null ) ) { obj . multiServer . DispatchMessage ( { action : 'SetConnectivityState' , meshid : meshid , nodeid : nodeid , connectTime : connectTime , connectType : connectType , powerState : powerState } ) ; }
if ( obj . multiServer == null ) {
// Single server mode
// Change the node connection state
var eventConnectChange = 0 ;
var state = obj . connectivityByNode [ nodeid ] ;
if ( state ) {
// Change the connection in the node and mesh state lists
if ( ( state . connectivity & connectType ) == 0 ) { state . connectivity |= connectType ; eventConnectChange = 1 ; }
state . meshid = meshid ;
} else {
// Add the connection to the node and mesh state list
obj . connectivityByNode [ nodeid ] = state = { connectivity : connectType , meshid : meshid } ;
eventConnectChange = 1 ;
}
// Set node power state
if ( connectType == 1 ) { state . agentPower = powerState ; } else if ( connectType == 2 ) { state . ciraPower = powerState ; } else if ( connectType == 4 ) { state . amtPower = powerState ; }
var powerState = 0 , oldPowerState = state . powerState ;
if ( ( state . connectivity & 1 ) != 0 ) { powerState = state . agentPower ; } else if ( ( state . connectivity & 2 ) != 0 ) { powerState = state . ciraPower ; } else if ( ( state . connectivity & 4 ) != 0 ) { powerState = state . amtPower ; }
2017-09-15 21:45:06 +03:00
if ( ( state . powerState == null ) || ( state . powerState != powerState ) ) {
2017-09-13 21:25:57 +03:00
state . powerState = powerState ;
2017-08-28 19:27:45 +03:00
eventConnectChange = 1 ;
2017-09-13 21:25:57 +03:00
// Set new power state in database
2018-01-03 03:52:49 +03:00
var record = { type : 'power' , time : connectTime , node : nodeid , power : powerState } ;
if ( oldPowerState != null ) record . oldPower = oldPowerState ;
obj . db . file . insert ( record ) ;
2017-08-28 19:27:45 +03:00
}
2017-09-13 21:25:57 +03:00
// Event the node connection change
if ( eventConnectChange == 1 ) { obj . DispatchEvent ( [ '*' , meshid ] , obj , { action : 'nodeconnect' , meshid : meshid , nodeid : nodeid , conn : state . connectivity , pwr : state . powerState , ct : connectTime , nolog : 1 , nopeers : 1 } ) ; }
2017-08-28 19:27:45 +03:00
} else {
2017-09-13 21:25:57 +03:00
// Multi server mode
// Change the node connection state
if ( serverid == null ) { serverid = obj . serverId ; }
if ( obj . peerConnectivityByNode [ serverid ] == null ) return ; // Guard against unknown serverid's
var state = obj . peerConnectivityByNode [ serverid ] [ nodeid ] ;
if ( state ) {
// Change the connection in the node and mesh state lists
if ( ( state . connectivity & connectType ) == 0 ) { state . connectivity |= connectType ; }
state . meshid = meshid ;
} else {
// Add the connection to the node and mesh state list
obj . peerConnectivityByNode [ serverid ] [ nodeid ] = state = { connectivity : connectType , meshid : meshid } ;
}
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
// Set node power state
if ( connectType == 1 ) { state . agentPower = powerState ; } else if ( connectType == 2 ) { state . ciraPower = powerState ; } else if ( connectType == 4 ) { state . amtPower = powerState ; }
2018-08-30 22:05:23 +03:00
var powerState = 0 , oldPowerState = state . powerState ;
2017-09-13 21:25:57 +03:00
if ( ( state . connectivity & 1 ) != 0 ) { powerState = state . agentPower ; } else if ( ( state . connectivity & 2 ) != 0 ) { powerState = state . ciraPower ; } else if ( ( state . connectivity & 4 ) != 0 ) { powerState = state . amtPower ; }
2018-01-03 03:52:49 +03:00
if ( ( state . powerState == null ) || ( state . powerState != powerState ) ) {
state . powerState = powerState ;
// Set new power state in database
var record = { type : 'power' , time : connectTime , node : nodeid , power : powerState , server : obj . multiServer . serverid } ;
if ( oldPowerState != null ) record . oldPower = oldPowerState ;
obj . db . file . insert ( record ) ;
}
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
// Update the combined node state
var x = { } ; x [ nodeid ] = 1 ;
obj . UpdateConnectivityState ( x ) ;
2017-08-28 19:27:45 +03:00
}
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
// Clear the connectivity state of a node and setup the server so that messages can be routed correctly.
// meshId: mesh identifier of format mesh/domain/meshidhex
// nodeId: node identifier of format node/domain/nodeidhex
// connectType: Bitmask, 1 = MeshAgent, 2 = Intel AMT CIRA, 3 = Intel AMT local.
2017-09-13 21:25:57 +03:00
obj . ClearConnectivityState = function ( meshid , nodeid , connectType , serverid ) {
//console.log('ClearConnectivity for ' + nodeid.substring(0, 16) + ', Type: ' + connectTypeStrings[connectType] + (serverid == null?(''):(', ServerId: ' + serverid)));
if ( ( serverid == null ) && ( obj . multiServer != null ) ) { obj . multiServer . DispatchMessage ( { action : 'ClearConnectivityState' , meshid : meshid , nodeid : nodeid , connectType : connectType } ) ; }
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
if ( obj . multiServer == null ) {
// Single server mode
2018-08-27 22:24:15 +03:00
var eventConnectChange = 0 ;
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
// Remove the agent connection from the nodes connection list
var state = obj . connectivityByNode [ nodeid ] ;
2017-09-15 21:45:06 +03:00
if ( state == null ) return ;
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
if ( ( state . connectivity & connectType ) != 0 ) {
state . connectivity -= connectType ;
// If the node is completely disconnected, clean it up completely
if ( state . connectivity == 0 ) { delete obj . connectivityByNode [ nodeid ] ; state . powerState = 0 ; }
eventConnectChange = 1 ;
2017-08-28 19:27:45 +03:00
}
2017-09-13 21:25:57 +03:00
// Clear node power state
if ( connectType == 1 ) { state . agentPower = 0 ; } else if ( connectType == 2 ) { state . ciraPower = 0 ; } else if ( connectType == 4 ) { state . amtPower = 0 ; }
var powerState = 0 , oldPowerState = state . powerState ;
if ( ( state . connectivity & 1 ) != 0 ) { powerState = state . agentPower ; } else if ( ( state . connectivity & 2 ) != 0 ) { powerState = state . ciraPower ; } else if ( ( state . connectivity & 4 ) != 0 ) { powerState = state . amtPower ; }
2017-09-15 21:45:06 +03:00
if ( ( state . powerState == null ) || ( state . powerState != powerState ) ) {
2017-09-13 21:25:57 +03:00
state . powerState = powerState ;
eventConnectChange = 1 ;
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
// Set new power state in database
obj . db . file . insert ( { type : 'power' , time : Date . now ( ) , node : nodeid , power : powerState , oldPower : oldPowerState } ) ;
}
2017-08-28 19:27:45 +03:00
2017-09-13 21:25:57 +03:00
// Event the node connection change
if ( eventConnectChange == 1 ) { obj . DispatchEvent ( [ '*' , meshid ] , obj , { action : 'nodeconnect' , meshid : meshid , nodeid : nodeid , conn : state . connectivity , pwr : state . powerState , nolog : 1 , nopeers : 1 } ) ; }
} else {
// Multi server mode
// Remove the agent connection from the nodes connection list
if ( serverid == null ) { serverid = obj . serverId ; }
if ( obj . peerConnectivityByNode [ serverid ] == null ) return ; // Guard against unknown serverid's
var state = obj . peerConnectivityByNode [ serverid ] [ nodeid ] ;
2017-09-15 21:45:06 +03:00
if ( state == null ) return ;
2017-09-13 21:25:57 +03:00
// If existing state exist, remove this connection
if ( ( state . connectivity & connectType ) != 0 ) {
state . connectivity -= connectType ; // Remove one connectivity mode
// If the node is completely disconnected, clean it up completely
if ( state . connectivity == 0 ) { delete obj . peerConnectivityByNode [ serverid ] [ nodeid ] ; state . powerState = 0 ; }
}
// Clear node power state
if ( connectType == 1 ) { state . agentPower = 0 ; } else if ( connectType == 2 ) { state . ciraPower = 0 ; } else if ( connectType == 4 ) { state . amtPower = 0 ; }
var powerState = 0 ;
if ( ( state . connectivity & 1 ) != 0 ) { powerState = state . agentPower ; } else if ( ( state . connectivity & 2 ) != 0 ) { powerState = state . ciraPower ; } else if ( ( state . connectivity & 4 ) != 0 ) { powerState = state . amtPower ; }
2017-09-15 21:45:06 +03:00
if ( ( state . powerState == null ) || ( state . powerState != powerState ) ) { state . powerState = powerState ; }
2017-09-13 21:25:57 +03:00
// Update the combined node state
var x = { } ; x [ nodeid ] = 1 ;
obj . UpdateConnectivityState ( x ) ;
}
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
2018-12-30 02:24:33 +03:00
// Escape a code string
obj . escapeCodeString = function ( str ) {
const escapeCodeStringTable = { '\'' : '\\\'' , '\"' : '\\"' , '\\' : '\\\\' , '\b' : '\\b' , '\f' : '\\f' , '\n' : '\\n' , '\r' : '\\r' , '\t' : '\\t' } ;
var r = '' , c , cr , table ;
for ( var i = 0 ; i < str . length ; i ++ ) {
c = str [ i ] ;
table = escapeCodeStringTable [ c ] ;
if ( table != null ) {
r += table ;
} else {
cr = c . charCodeAt ( 0 ) ;
if ( ( cr >= 32 ) && ( cr <= 127 ) ) { r += c ; }
}
}
return r ;
}
2017-08-28 19:27:45 +03:00
// Update the default mesh core
obj . updateMeshCore = function ( func ) {
2017-10-04 04:31:20 +03:00
// Figure out where meshcore.js is
var meshcorePath = obj . datapath ;
if ( obj . fs . existsSync ( obj . path . join ( meshcorePath , 'meshcore.js' ) ) == false ) {
meshcorePath = obj . path . join ( _ _dirname , 'agents' ) ;
if ( obj . fs . existsSync ( obj . path . join ( meshcorePath , 'meshcore.js' ) ) == false ) {
2018-12-30 02:24:33 +03:00
obj . defaultMeshCores = obj . defaultMeshCoresHash = { } ; if ( func != null ) { func ( false ) ; } // meshcore.js not found
2017-10-04 04:31:20 +03:00
}
}
// Read meshcore.js and all .js files in the modules folder.
2018-12-30 02:24:33 +03:00
var meshCore = null , modulesDir = null ;
const modulesAdd = {
'windows-amt' : 'var addedModules = [];\r\n' ,
'linux-amt' : 'var addedModules = [];\r\n' ,
'linux-noamt' : 'var addedModules = [];\r\n'
} ;
2019-01-04 01:46:52 +03:00
if ( obj . args . minifycore !== false ) { try { meshCore = obj . fs . readFileSync ( obj . path . join ( meshcorePath , 'meshcore.min.js' ) ) . toString ( ) ; } catch ( e ) { } } // Favor minified meshcore if present.
2018-12-30 02:24:33 +03:00
if ( meshCore == null ) { try { meshCore = obj . fs . readFileSync ( obj . path . join ( meshcorePath , 'meshcore.js' ) ) . toString ( ) ; } catch ( e ) { } } // Use non-minified meshcore.
2018-04-12 21:15:01 +03:00
if ( meshCore != null ) {
2018-12-30 02:24:33 +03:00
var moduleDirPath = null ;
2019-01-04 01:46:52 +03:00
if ( obj . args . minifycore !== false ) { try { moduleDirPath = obj . path . join ( meshcorePath , 'modules_meshcore_min' ) ; modulesDir = obj . fs . readdirSync ( moduleDirPath ) ; } catch ( e ) { } } // Favor minified modules if present.
2018-12-30 02:24:33 +03:00
if ( modulesDir == null ) { try { moduleDirPath = obj . path . join ( meshcorePath , 'modules_meshcore' ) ; modulesDir = obj . fs . readdirSync ( moduleDirPath ) ; } catch ( e ) { } } // Use non-minified mofules.
2018-04-12 21:15:01 +03:00
if ( modulesDir != null ) {
for ( var i in modulesDir ) {
if ( modulesDir [ i ] . toLowerCase ( ) . endsWith ( '.js' ) ) {
var moduleName = modulesDir [ i ] . substring ( 0 , modulesDir [ i ] . length - 3 ) ;
2018-12-30 02:24:33 +03:00
if ( moduleName . endsWith ( '.min' ) ) { moduleName = moduleName . substring ( 0 , moduleName . length - 4 ) ; } // Remove the ".min" for ".min.js" files.
var moduleData = 'try { addModule("' + moduleName + '", "' + obj . escapeCodeString ( obj . fs . readFileSync ( obj . path . join ( moduleDirPath , modulesDir [ i ] ) ) . toString ( 'binary' ) ) + '"); addedModules.push("' + moduleName + '"); } catch (e) { }\r\n' ;
// Merge this module
2018-12-31 00:32:40 +03:00
// NOTE: "smbios" module makes some non-AI Linux segfault, only include for IA platforms.
if ( moduleName . startsWith ( 'amt-' ) || ( moduleName == 'smbios' ) ) {
// Add to IA / Intel AMT cores only
2018-12-30 02:24:33 +03:00
modulesAdd [ 'windows-amt' ] += moduleData ;
modulesAdd [ 'linux-amt' ] += moduleData ;
} else if ( moduleName . startsWith ( 'win-' ) ) {
// Add to Windows cores only
modulesAdd [ 'windows-amt' ] += moduleData ;
} else if ( moduleName . startsWith ( 'linux-' ) ) {
// Add to Linux cores only
modulesAdd [ 'linux-amt' ] += moduleData ;
modulesAdd [ 'linux-noamt' ] += moduleData ;
} else {
// Add to all cores
modulesAdd [ 'windows-amt' ] += moduleData ;
modulesAdd [ 'linux-amt' ] += moduleData ;
modulesAdd [ 'linux-noamt' ] += moduleData ;
2018-04-12 21:15:01 +03:00
}
2017-12-13 03:04:54 +03:00
}
}
}
2018-12-30 02:24:33 +03:00
// Merge the cores and compute the hashes
for ( var i in modulesAdd ) {
obj . defaultMeshCores [ i ] = obj . common . IntToStr ( 0 ) + modulesAdd [ i ] + meshCore ;
obj . defaultMeshCoresHash [ i ] = obj . crypto . createHash ( 'sha384' ) . update ( obj . defaultMeshCores [ i ] ) . digest ( "binary" ) ;
obj . debug ( 1 , 'Core module ' + i + ' is ' + obj . defaultMeshCores [ i ] . length + ' bytes.' ) ;
//console.log('Core module ' + i + ' is ' + obj.defaultMeshCores[i].length + ' bytes.'); // DEBUG, Print the core size
//obj.fs.writeFile("C:\\temp\\" + i + ".js", obj.defaultMeshCores[i].substring(4)); // DEBUG, Write the core to file
}
}
// We are done creating all the mesh cores.
2017-12-13 03:04:54 +03:00
if ( func != null ) { func ( true ) ; }
2018-08-30 22:05:23 +03:00
} ;
2017-12-13 03:04:54 +03:00
// Update the default meshcmd
2018-01-05 02:59:57 +03:00
obj . updateMeshCmdTimer = 'notset' ;
2017-12-13 03:04:54 +03:00
obj . updateMeshCmd = function ( func ) {
2019-01-01 05:09:19 +03:00
// Figure out where meshcmd.js is and read it.
var meshCmd = null , meshcmdPath , moduleAdditions = 'var addedModules = [];\r\n' , moduleDirPath , modulesDir = null ;
2019-01-04 01:46:52 +03:00
if ( ( obj . args . minifycore !== false ) && ( obj . fs . existsSync ( obj . path . join ( obj . datapath , 'meshcmd.min.js' ) ) ) ) { meshcmdPath = obj . path . join ( obj . datapath , 'meshcmd.min.js' ) ; meshCmd = obj . fs . readFileSync ( meshcmdPath ) . toString ( ) ; }
2019-01-01 05:09:19 +03:00
else if ( obj . fs . existsSync ( obj . path . join ( obj . datapath , 'meshcmd.js' ) ) ) { meshcmdPath = obj . path . join ( obj . datapath , 'meshcmd.js' ) ; meshCmd = obj . fs . readFileSync ( meshcmdPath ) . toString ( ) ; }
2019-01-04 01:46:52 +03:00
else if ( ( obj . args . minifycore !== false ) && ( obj . fs . existsSync ( obj . path . join ( _ _dirname , 'agents' , 'meshcmd.min.js' ) ) ) ) { meshcmdPath = obj . path . join ( _ _dirname , 'agents' , 'meshcmd.min.js' ) ; meshCmd = obj . fs . readFileSync ( meshcmdPath ) . toString ( ) ; }
2019-01-01 05:09:19 +03:00
else if ( obj . fs . existsSync ( obj . path . join ( _ _dirname , 'agents' , 'meshcmd.js' ) ) ) { meshcmdPath = obj . path . join ( _ _dirname , 'agents' , 'meshcmd.js' ) ; meshCmd = obj . fs . readFileSync ( meshcmdPath ) . toString ( ) ; }
else { obj . defaultMeshCmd = null ; if ( func != null ) { func ( false ) ; } } // meshcmd.js not found
meshCmd = meshCmd . replace ( "'***Mesh*Cmd*Version***'" , '\'' + obj . currentVer + '\'' ) ;
// Figure out where the modules_meshcmd folder is.
2019-01-04 01:46:52 +03:00
if ( obj . args . minifycore !== false ) { try { moduleDirPath = obj . path . join ( meshcmdPath , 'modules_meshcmd_min' ) ; modulesDir = obj . fs . readdirSync ( moduleDirPath ) ; } catch ( e ) { } } // Favor minified modules if present.
2019-01-01 05:09:19 +03:00
if ( modulesDir == null ) { try { moduleDirPath = obj . path . join ( meshcmdPath , 'modules_meshcmd' ) ; modulesDir = obj . fs . readdirSync ( moduleDirPath ) ; } catch ( e ) { } } // Use non-minified mofules.
2019-01-04 01:46:52 +03:00
if ( obj . args . minifycore !== false ) { if ( modulesDir == null ) { try { moduleDirPath = obj . path . join ( _ _dirname , 'agents' , 'modules_meshcmd_min' ) ; modulesDir = obj . fs . readdirSync ( moduleDirPath ) ; } catch ( e ) { } } } // Favor minified modules if present.
2019-01-01 05:09:19 +03:00
if ( modulesDir == null ) { try { moduleDirPath = obj . path . join ( _ _dirname , 'agents' , 'modules_meshcmd' ) ; modulesDir = obj . fs . readdirSync ( moduleDirPath ) ; } catch ( e ) { } } // Use non-minified mofules.
// Read all .js files in the meshcmd modules folder.
2017-10-17 06:11:03 +03:00
if ( modulesDir != null ) {
for ( var i in modulesDir ) {
if ( modulesDir [ i ] . toLowerCase ( ) . endsWith ( '.js' ) ) {
// Merge this module
var moduleName = modulesDir [ i ] . substring ( 0 , modulesDir [ i ] . length - 3 ) ;
2019-01-01 05:09:19 +03:00
if ( moduleName . endsWith ( '.min' ) ) { moduleName = moduleName . substring ( 0 , moduleName . length - 4 ) ; } // Remove the ".min" for ".min.js" files.
moduleAdditions += 'try { addModule("' + moduleName + '", "' + obj . escapeCodeString ( obj . fs . readFileSync ( obj . path . join ( moduleDirPath , modulesDir [ i ] ) ) . toString ( 'binary' ) ) + '"); addedModules.push("' + moduleName + '"); } catch (e) { }\r\n' ;
2017-10-17 06:11:03 +03:00
}
2017-10-04 04:31:20 +03:00
}
}
2017-12-13 03:04:54 +03:00
// Set the new default meshcmd.js
obj . defaultMeshCmd = moduleAdditions + meshCmd ;
2019-01-01 05:09:19 +03:00
//console.log('MeshCmd is ' + obj.defaultMeshCmd.length + ' bytes.'); // DEBUG, Print the merged meshcmd.js size
//obj.fs.writeFile("C:\\temp\\meshcmd.js", obj.defaultMeshCmd.substring(4)); // DEBUG, Write merged meshcmd.js to file
2017-10-04 04:31:20 +03:00
if ( func != null ) { func ( true ) ; }
2018-01-05 02:59:57 +03:00
2019-01-01 05:09:19 +03:00
// Monitor for changes in meshcmd.js
if ( obj . updateMeshCmdTimer === 'notset' ) {
2018-01-05 02:59:57 +03:00
obj . updateMeshCmdTimer = null ;
2019-01-01 05:09:19 +03:00
obj . fs . watch ( meshcmdPath , function ( eventType , filename ) {
2018-01-05 02:59:57 +03:00
if ( obj . updateMeshCmdTimer != null ) { clearTimeout ( obj . updateMeshCmdTimer ) ; obj . updateMeshCmdTimer = null ; }
2019-01-04 03:22:15 +03:00
obj . updateMeshCmdTimer = setTimeout ( function ( ) { obj . updateMeshCmd ( ) ; /*console.log('Updated meshcmd.js.');*/ } , 5000 ) ;
2018-08-30 22:05:23 +03:00
} ) ;
2018-01-05 02:59:57 +03:00
}
2018-08-30 22:05:23 +03:00
} ;
2017-10-04 04:31:20 +03:00
2017-08-28 19:27:45 +03:00
// List of possible mesh agent install scripts
var meshAgentsInstallScriptList = {
2018-02-12 04:13:26 +03:00
1 : { id : 1 , localname : 'meshinstall-linux.sh' , rname : 'meshinstall.sh' } ,
2 : { id : 2 , localname : 'meshinstall-initd.sh' , rname : 'meshagent' }
2017-08-28 19:27:45 +03:00
} ;
// Update the list of available mesh agents
obj . updateMeshAgentInstallScripts = function ( ) {
for ( var scriptid in meshAgentsInstallScriptList ) {
var scriptpath = obj . path . join ( _ _dirname , 'agents' , meshAgentsInstallScriptList [ scriptid ] . localname ) ;
var stream = null ;
try {
stream = obj . fs . createReadStream ( scriptpath ) ;
2018-08-30 22:05:23 +03:00
stream . on ( 'data' , function ( data ) { this . hash . update ( data , 'binary' ) ; } ) ;
2017-08-28 19:27:45 +03:00
stream . on ( 'error' , function ( data ) {
// If there is an error reading this file, make sure this agent is not in the agent table
2017-09-15 21:45:06 +03:00
if ( obj . meshAgentInstallScripts [ this . info . id ] != null ) { delete obj . meshAgentInstallScripts [ this . info . id ] ; }
2017-08-28 19:27:45 +03:00
} ) ;
stream . on ( 'end' , function ( ) {
// Add the agent to the agent table with all information and the hash
obj . meshAgentInstallScripts [ this . info . id ] = obj . common . Clone ( this . info ) ;
obj . meshAgentInstallScripts [ this . info . id ] . hash = this . hash . digest ( 'hex' ) ;
obj . meshAgentInstallScripts [ this . info . id ] . path = this . agentpath ;
obj . meshAgentInstallScripts [ this . info . id ] . url = ( ( obj . args . notls == true ) ? 'http://' : 'https://' ) + obj . certificates . CommonName + ':' + obj . args . port + '/meshagents?script=' + this . info . id ;
var stats = null ;
2018-08-30 22:05:23 +03:00
try { stats = obj . fs . statSync ( this . agentpath ) ; } catch ( e ) { }
2017-08-28 19:27:45 +03:00
if ( stats != null ) { obj . meshAgentInstallScripts [ this . info . id ] . size = stats . size ; }
} ) ;
stream . info = meshAgentsInstallScriptList [ scriptid ] ;
stream . agentpath = scriptpath ;
2017-10-15 09:22:19 +03:00
stream . hash = obj . crypto . createHash ( 'sha384' , stream ) ;
2017-08-28 19:27:45 +03:00
} catch ( e ) { }
}
2018-08-30 22:05:23 +03:00
} ;
2018-12-30 02:24:33 +03:00
2017-08-28 19:27:45 +03:00
// List of possible mesh agents
2018-01-03 03:52:49 +03:00
obj . meshAgentsArchitectureNumbers = {
2018-12-30 02:24:33 +03:00
0 : { id : 0 , localname : 'Unknown' , rname : 'meshconsole.exe' , desc : 'Unknown agent' , update : false , amt : true , platform : 'unknown' , core : 'linux-noamt' } ,
1 : { id : 1 , localname : 'MeshConsole.exe' , rname : 'meshconsole.exe' , desc : 'Windows x86-32 console' , update : true , amt : true , platform : 'win32' , core : 'windows-amt' } ,
2 : { id : 2 , localname : 'MeshConsole64.exe' , rname : 'meshconsole.exe' , desc : 'Windows x86-64 console' , update : true , amt : true , platform : 'win32' , core : 'windows-amt' } ,
3 : { id : 3 , localname : 'MeshService-signed.exe' , rname : 'meshagent.exe' , desc : 'Windows x86-32 service' , update : true , amt : true , platform : 'win32' , core : 'windows-amt' } ,
4 : { id : 4 , localname : 'MeshService64-signed.exe' , rname : 'meshagent.exe' , desc : 'Windows x86-64 service' , update : true , amt : true , platform : 'win32' , core : 'windows-amt' } ,
5 : { id : 5 , localname : 'meshagent_x86' , rname : 'meshagent' , desc : 'Linux x86-32' , update : true , amt : true , platform : 'linux' , core : 'linux-amt' } ,
6 : { id : 6 , localname : 'meshagent_x86-64' , rname : 'meshagent' , desc : 'Linux x86-64' , update : true , amt : true , platform : 'linux' , core : 'linux-amt' } ,
7 : { id : 7 , localname : 'meshagent_mips' , rname : 'meshagent' , desc : 'Linux MIPS' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
8 : { id : 8 , localname : 'MeshAgent-Linux-XEN-x86-32' , rname : 'meshagent' , desc : 'XEN x86-64' , update : true , amt : false , platform : 'linux' , core : 'linux-amt' } ,
9 : { id : 9 , localname : 'meshagent_arm' , rname : 'meshagent' , desc : 'Linux ARM5' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
10 : { id : 10 , localname : 'MeshAgent-Linux-ARM-PlugPC' , rname : 'meshagent' , desc : 'Linux ARM PlugPC' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
11 : { id : 11 , localname : 'meshagent_osx-x86-32' , rname : 'meshosx' , desc : 'Apple OSX x86-32' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
12 : { id : 12 , localname : 'MeshAgent-Android-x86' , rname : 'meshandroid' , desc : 'Android x86-32' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
13 : { id : 13 , localname : 'meshagent_pogo' , rname : 'meshagent' , desc : 'Linux ARM PogoPlug' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
14 : { id : 14 , localname : 'MeshAgent-Android-APK' , rname : 'meshandroid' , desc : 'Android Market' , update : false , amt : false , platform : 'android' , core : 'linux-noamt' } , // Get this one from Google Play
15 : { id : 15 , localname : 'meshagent_poky' , rname : 'meshagent' , desc : 'Linux Poky x86-32' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
16 : { id : 16 , localname : 'meshagent_osx-x86-64' , rname : 'meshagent' , desc : 'Apple OSX x86-64' , update : true , amt : false , platform : 'osx' , core : 'linux-noamt' } ,
17 : { id : 17 , localname : 'MeshAgent-ChromeOS' , rname : 'meshagent' , desc : 'Google ChromeOS' , update : false , amt : false , platform : 'chromeos' , core : 'linux-noamt' } , // Get this one from Chrome store
18 : { id : 18 , localname : 'meshagent_poky64' , rname : 'meshagent' , desc : 'Linux Poky x86-64' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
19 : { id : 19 , localname : 'meshagent_x86_nokvm' , rname : 'meshagent' , desc : 'Linux x86-32 NoKVM' , update : true , amt : true , platform : 'linux' , core : 'linux-amt' } ,
20 : { id : 20 , localname : 'meshagent_x86-64_nokvm' , rname : 'meshagent' , desc : 'Linux x86-64 NoKVM' , update : true , amt : true , platform : 'linux' , core : 'linux-amt' } ,
21 : { id : 21 , localname : 'MeshAgent-WinMinCore-Console-x86-32.exe' , rname : 'meshagent.exe' , desc : 'Windows MinCore Console x86-32' , update : true , amt : false , platform : 'win32' , core : 'windows-amt' } ,
22 : { id : 22 , localname : 'MeshAgent-WinMinCore-Service-x86-64.exe' , rname : 'meshagent.exe' , desc : 'Windows MinCore Service x86-32' , update : true , amt : false , platform : 'win32' , core : 'windows-amt' } ,
23 : { id : 23 , localname : 'MeshAgent-NodeJS' , rname : 'meshagent' , desc : 'NodeJS' , update : false , amt : false , platform : 'node' , core : 'linux-noamt' } , // Get this one from NPM
24 : { id : 24 , localname : 'meshagent_arm-linaro' , rname : 'meshagent' , desc : 'Linux ARM Linaro' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } ,
2019-01-08 06:28:38 +03:00
25 : { id : 25 , localname : 'meshagent_armhf' , rname : 'meshagent' , desc : 'Linux ARM - HardFloat' , update : true , amt : false , platform : 'linux' , core : 'linux-noamt' } , // "armv6l" and "armv7l"
2018-12-30 02:24:33 +03:00
10003 : { id : 3 , localname : 'MeshService.exe' , rname : 'meshagent.exe' , desc : 'Windows x86-32 service' , update : true , amt : true , platform : 'win32' , core : 'windows-amt' } , // Unsigned version of the Windows MeshAgent x86
10004 : { id : 4 , localname : 'MeshService64.exe' , rname : 'meshagent.exe' , desc : 'Windows x86-64 service' , update : true , amt : true , platform : 'win32' , core : 'windows-amt' } // Unsigned version of the Windows MeshAgent x64
2017-08-28 19:27:45 +03:00
} ;
// Update the list of available mesh agents
2017-10-25 19:58:14 +03:00
obj . updateMeshAgentsTable = function ( func ) {
var archcount = 0 ;
2018-01-03 03:52:49 +03:00
for ( var archid in obj . meshAgentsArchitectureNumbers ) {
var agentpath = obj . path . join ( _ _dirname , 'agents' , obj . meshAgentsArchitectureNumbers [ archid ] . localname ) ;
2018-08-30 22:05:23 +03:00
2018-01-20 05:04:54 +03:00
// Fetch all the agent binary information
var stats = null ;
2018-08-30 22:05:23 +03:00
try { stats = obj . fs . statSync ( agentpath ) ; } catch ( e ) { }
2018-01-20 05:04:54 +03:00
if ( ( stats != null ) ) {
// If file exists
archcount ++ ;
2018-03-10 03:39:14 +03:00
obj . meshAgentBinaries [ archid ] = obj . common . Clone ( obj . meshAgentsArchitectureNumbers [ archid ] ) ;
obj . meshAgentBinaries [ archid ] . path = agentpath ;
obj . meshAgentBinaries [ archid ] . url = ( ( obj . args . notls == true ) ? 'http://' : 'https://' ) + obj . certificates . CommonName + ':' + obj . args . port + '/meshagents?id=' + archid ;
2018-01-20 05:04:54 +03:00
obj . meshAgentBinaries [ archid ] . size = stats . size ;
// If this is a windows binary, pull binary information
if ( obj . meshAgentsArchitectureNumbers [ archid ] . platform == 'win32' ) {
try { obj . meshAgentBinaries [ archid ] . pe = obj . exeHandler . parseWindowsExecutable ( agentpath ) ; } catch ( e ) { }
}
// Hash the binary
var hashStream = obj . crypto . createHash ( 'sha384' ) ;
hashStream . archid = archid ;
hashStream . on ( 'data' , function ( data ) {
obj . meshAgentBinaries [ this . archid ] . hash = data . toString ( 'hex' ) ;
2017-10-25 19:58:14 +03:00
if ( ( -- archcount == 0 ) && ( func != null ) ) { func ( ) ; }
2017-08-28 19:27:45 +03:00
} ) ;
2018-01-20 05:04:54 +03:00
var options = { sourcePath : agentpath , targetStream : hashStream , platform : obj . meshAgentsArchitectureNumbers [ archid ] . platform } ;
if ( obj . meshAgentBinaries [ archid ] . pe != null ) { options . peinfo = obj . meshAgentBinaries [ archid ] . pe ; }
obj . exeHandler . hashExecutableFile ( options ) ;
}
2017-08-28 19:27:45 +03:00
}
2018-03-10 03:39:14 +03:00
if ( ( obj . meshAgentBinaries [ 3 ] == null ) && ( obj . meshAgentBinaries [ 10003 ] != null ) ) { obj . meshAgentBinaries [ 3 ] = obj . meshAgentBinaries [ 10003 ] ; } // If only the unsigned windows binaries are present, use them.
if ( ( obj . meshAgentBinaries [ 4 ] == null ) && ( obj . meshAgentBinaries [ 10004 ] != null ) ) { obj . meshAgentBinaries [ 4 ] = obj . meshAgentBinaries [ 10004 ] ; } // If only the unsigned windows binaries are present, use them.
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
2017-12-14 01:52:57 +03:00
// Generate a time limited user login token
obj . getLoginToken = function ( userid , func ) {
2018-01-03 03:52:49 +03:00
if ( ( userid == null ) || ( typeof userid != 'string' ) ) { func ( 'Invalid userid.' ) ; return ; }
2017-12-14 01:52:57 +03:00
var x = userid . split ( '/' ) ;
if ( x == null || x . length != 3 || x [ 0 ] != 'user' ) { func ( 'Invalid userid.' ) ; return ; }
obj . db . Get ( userid , function ( err , docs ) {
if ( err != null || docs == null || docs . length == 0 ) {
func ( 'User ' + userid + ' not found.' ) ; return ;
} else {
// Load the login cookie encryption key from the database
obj . db . Get ( 'LoginCookieEncryptionKey' , function ( err , docs ) {
2018-12-29 22:38:05 +03:00
if ( ( docs . length > 0 ) && ( docs [ 0 ] . key != null ) && ( obj . args . logintokengen == null ) && ( docs [ 0 ] . key . length >= 160 ) ) {
2017-12-14 01:52:57 +03:00
// Key is present, use it.
obj . loginCookieEncryptionKey = Buffer . from ( docs [ 0 ] . key , 'hex' ) ;
func ( obj . encodeCookie ( { u : userid , a : 3 } , obj . loginCookieEncryptionKey ) ) ;
} else {
// Key is not present, generate one.
obj . loginCookieEncryptionKey = obj . generateCookieKey ( ) ;
obj . db . Set ( { _id : 'LoginCookieEncryptionKey' , key : obj . loginCookieEncryptionKey . toString ( 'hex' ) , time : Date . now ( ) } , function ( ) { func ( obj . encodeCookie ( { u : userid , a : 3 } , obj . loginCookieEncryptionKey ) ) ; } ) ;
}
} ) ;
}
} ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-12-14 01:52:57 +03:00
2018-12-29 08:55:23 +03:00
// Show the user login token generation key
2017-12-14 01:52:57 +03:00
obj . showLoginTokenKey = function ( func ) {
// Load the login cookie encryption key from the database
obj . db . Get ( 'LoginCookieEncryptionKey' , function ( err , docs ) {
2018-12-29 22:38:05 +03:00
if ( ( docs . length > 0 ) && ( docs [ 0 ] . key != null ) && ( obj . args . logintokengen == null ) && ( docs [ 0 ] . key . length >= 160 ) ) {
2017-12-14 01:52:57 +03:00
// Key is present, use it.
func ( docs [ 0 ] . key ) ;
} else {
// Key is not present, generate one.
obj . loginCookieEncryptionKey = obj . generateCookieKey ( ) ;
obj . db . Set ( { _id : 'LoginCookieEncryptionKey' , key : obj . loginCookieEncryptionKey . toString ( 'hex' ) , time : Date . now ( ) } , function ( ) { func ( obj . loginCookieEncryptionKey . toString ( 'hex' ) ) ; } ) ;
}
} ) ;
2018-08-30 22:05:23 +03:00
} ;
2017-12-14 01:52:57 +03:00
// Generate a cryptographic key used to encode and decode cookies
obj . generateCookieKey = function ( ) {
2019-01-03 05:03:34 +03:00
return Buffer . from ( obj . crypto . randomBytes ( 80 ) , 'binary' ) ;
2018-12-29 22:38:05 +03:00
//return Buffer.alloc(80, 0); // Sets the key to zeros, debug only.
2018-08-30 22:05:23 +03:00
} ;
2017-12-14 01:52:57 +03:00
2018-12-29 08:55:23 +03:00
// Encode an object as a cookie using a key using AES-GCM. (key must be 32 bytes or more)
2017-12-14 01:52:57 +03:00
obj . encodeCookie = function ( o , key ) {
try {
if ( key == null ) { key = obj . serverKey ; }
o . time = Math . floor ( Date . now ( ) / 1000 ) ; // Add the cookie creation time
2019-01-03 05:03:34 +03:00
const iv = Buffer . from ( obj . crypto . randomBytes ( 12 ) , 'binary' ) , cipher = obj . crypto . createCipheriv ( 'aes-256-gcm' , key . slice ( 0 , 32 ) , iv ) ;
2018-12-29 08:55:23 +03:00
const crypted = Buffer . concat ( [ cipher . update ( JSON . stringify ( o ) , 'utf8' ) , cipher . final ( ) ] ) ;
return Buffer . concat ( [ iv , cipher . getAuthTag ( ) , crypted ] ) . toString ( 'base64' ) . replace ( /\+/g , '@' ) . replace ( /\//g , '$' ) ;
2017-12-14 01:52:57 +03:00
} catch ( e ) { return null ; }
2018-08-30 22:05:23 +03:00
} ;
2017-12-14 01:52:57 +03:00
2018-12-29 22:38:05 +03:00
// Decode a cookie back into an object using a key using AES256-GCM or AES128-CBC/HMAC-SHA386. Return null if it's not a valid cookie. (key must be 32 bytes or more)
2017-12-14 01:52:57 +03:00
obj . decodeCookie = function ( cookie , key , timeout ) {
2018-12-29 08:55:23 +03:00
const r = obj . decodeCookieAESGCM ( cookie , key , timeout ) ;
if ( r == null ) { return obj . decodeCookieAESSHA ( cookie , key , timeout ) ; }
return r ;
}
2018-12-29 22:38:05 +03:00
// Decode a cookie back into an object using a key using AES256-GCM. Return null if it's not a valid cookie. (key must be 32 bytes or more)
2018-12-29 08:55:23 +03:00
obj . decodeCookieAESGCM = function ( cookie , key , timeout ) {
2017-12-14 01:52:57 +03:00
try {
if ( key == null ) { key = obj . serverKey ; }
2019-01-03 05:03:34 +03:00
cookie = Buffer . from ( cookie . replace ( /\@/g , '+' ) . replace ( /\$/g , '/' ) , 'base64' ) ;
2018-12-29 08:55:23 +03:00
const decipher = obj . crypto . createDecipheriv ( 'aes-256-gcm' , key . slice ( 0 , 32 ) , cookie . slice ( 0 , 12 ) ) ;
2017-12-14 01:52:57 +03:00
decipher . setAuthTag ( cookie . slice ( 12 , 16 ) ) ;
2018-12-29 08:55:23 +03:00
const o = JSON . parse ( decipher . update ( cookie . slice ( 28 ) , 'binary' , 'utf8' ) + decipher . final ( 'utf8' ) ) ;
2018-10-16 03:21:37 +03:00
if ( ( o . time == null ) || ( o . time == null ) || ( typeof o . time != 'number' ) ) { Debug ( 1 , 'ERR: Bad cookie due to invalid time' ) ; return null ; }
2017-12-14 01:52:57 +03:00
o . time = o . time * 1000 ; // Decode the cookie creation time
o . dtime = Date . now ( ) - o . time ; // Decode how long ago the cookie was created (in milliseconds)
if ( timeout == null ) { timeout = 2 ; }
2018-10-16 03:21:37 +03:00
if ( ( o . dtime > ( timeout * 60000 ) ) || ( o . dtime < - 30000 ) ) { Debug ( 1 , 'ERR: Bad cookie due to timeout' ) ; return null ; } // The cookie is only valid 120 seconds, or 30 seconds back in time (in case other server's clock is not quite right)
2017-12-14 01:52:57 +03:00
return o ;
} catch ( e ) { return null ; }
2018-08-30 22:05:23 +03:00
} ;
2017-12-14 01:52:57 +03:00
2018-12-29 22:38:05 +03:00
// Decode a cookie back into an object using a key using AES256 / HMAC-SHA386. Return null if it's not a valid cookie. (key must be 80 bytes or more)
// We do this because poor .NET does not support AES256-GCM.
2018-12-29 08:55:23 +03:00
obj . decodeCookieAESSHA = function ( cookie , key , timeout ) {
try {
if ( key == null ) { key = obj . serverKey ; }
2018-12-29 22:38:05 +03:00
if ( key . length < 80 ) { return null ; }
2019-01-03 05:03:34 +03:00
cookie = Buffer . from ( cookie . replace ( /\@/g , '+' ) . replace ( /\$/g , '/' ) , 'base64' ) ;
2018-12-29 22:38:05 +03:00
const decipher = obj . crypto . createDecipheriv ( 'aes-256-cbc' , key . slice ( 48 , 80 ) , cookie . slice ( 0 , 16 ) ) ;
2018-12-29 08:55:23 +03:00
const rawmsg = decipher . update ( cookie . slice ( 16 ) , 'binary' , 'binary' ) + decipher . final ( 'binary' ) ;
2018-12-29 22:38:05 +03:00
const hmac = obj . crypto . createHmac ( 'sha384' , key . slice ( 0 , 48 ) ) ;
hmac . update ( rawmsg . slice ( 48 ) ) ;
if ( Buffer . compare ( hmac . digest ( ) , Buffer . from ( rawmsg . slice ( 0 , 48 ) ) ) == false ) { return null ; }
const o = JSON . parse ( rawmsg . slice ( 48 ) . toString ( 'utf8' ) ) ;
2018-12-29 08:55:23 +03:00
if ( ( o . time == null ) || ( o . time == null ) || ( typeof o . time != 'number' ) ) { Debug ( 1 , 'ERR: Bad cookie due to invalid time' ) ; return null ; }
o . time = o . time * 1000 ; // Decode the cookie creation time
o . dtime = Date . now ( ) - o . time ; // Decode how long ago the cookie was created (in milliseconds)
if ( timeout == null ) { timeout = 2 ; }
if ( ( o . dtime > ( timeout * 60000 ) ) || ( o . dtime < - 30000 ) ) { obj . debug ( 1 , 'ERR: Bad cookie due to timeout' ) ; return null ; } // The cookie is only valid 120 seconds, or 30 seconds back in time (in case other server's clock is not quite right)
return o ;
} catch ( ex ) { console . log ( ex ) ; return null ; }
} ;
2017-08-28 19:27:45 +03:00
// Debug
obj . debug = function ( lvl ) {
if ( lvl > obj . debugLevel ) return ;
if ( arguments . length == 2 ) { console . log ( arguments [ 1 ] ) ; }
else if ( arguments . length == 3 ) { console . log ( arguments [ 1 ] , arguments [ 2 ] ) ; }
else if ( arguments . length == 4 ) { console . log ( arguments [ 1 ] , arguments [ 2 ] , arguments [ 3 ] ) ; }
else if ( arguments . length == 5 ) { console . log ( arguments [ 1 ] , arguments [ 2 ] , arguments [ 3 ] , arguments [ 4 ] ) ; }
2018-08-30 22:05:23 +03:00
} ;
2018-03-14 22:10:13 +03:00
// Update server state. Writes a server state file.
var meshServerState = { } ;
2018-08-30 22:05:23 +03:00
obj . updateServerState = function ( name , val ) {
2019-01-04 01:46:52 +03:00
//console.log('updateServerState', name, val);
2018-09-20 21:45:12 +03:00
try {
if ( ( name != null ) && ( val != null ) ) {
var changed = false ;
if ( ( name != null ) && ( meshServerState [ name ] != val ) ) { if ( ( val == null ) && ( meshServerState [ name ] != null ) ) { delete meshServerState [ name ] ; changed = true ; } else { if ( meshServerState [ name ] != val ) { meshServerState [ name ] = val ; changed = true ; } } }
if ( changed == false ) return ;
}
var r = 'time=' + Date . now ( ) + '\r\n' ;
for ( var i in meshServerState ) { r += ( i + '=' + meshServerState [ i ] + '\r\n' ) ; }
2018-09-27 00:58:55 +03:00
try {
obj . fs . writeFileSync ( obj . getConfigFilePath ( 'serverstate.txt' ) , r ) ; // Try to write the server state, this may fail if we don't have permission.
} catch ( ex ) { obj . serverSelfWriteAllowed = false ; }
} catch ( ex ) { } // Do nothing since this is not a critical feature.
2018-08-30 22:05:23 +03:00
} ;
2017-08-28 19:27:45 +03:00
// Logging funtions
function logException ( e ) { e += '' ; logErrorEvent ( e ) ; }
function logInfoEvent ( msg ) { if ( obj . servicelog != null ) { obj . servicelog . info ( msg ) ; } console . log ( msg ) ; }
function logWarnEvent ( msg ) { if ( obj . servicelog != null ) { obj . servicelog . warn ( msg ) ; } console . log ( msg ) ; }
function logErrorEvent ( msg ) { if ( obj . servicelog != null ) { obj . servicelog . error ( msg ) ; } console . error ( msg ) ; }
2018-07-14 05:18:43 +03:00
// Return the path of a file into the meshcentral-data path
obj . getConfigFilePath = function ( filename ) {
if ( ( obj . config != null ) && ( obj . config . configfiles != null ) && ( obj . config . configfiles [ filename ] != null ) && ( typeof obj . config . configfiles [ filename ] == 'string' ) ) {
//console.log('getConfigFilePath(\"' + filename + '\") = ' + obj.config.configfiles[filename]);
return obj . config . configfiles [ filename ] ;
}
//console.log('getConfigFilePath(\"' + filename + '\") = ' + obj.path.join(obj.datapath, filename));
return obj . path . join ( obj . datapath , filename ) ;
2018-08-30 22:05:23 +03:00
} ;
2018-07-14 05:18:43 +03:00
2017-08-28 19:27:45 +03:00
return obj ;
}
2018-02-01 03:10:15 +03:00
// Return the server configuration
function getConfig ( ) {
// Figure out the datapath location
2018-08-30 22:05:23 +03:00
var i ;
2018-02-01 03:10:15 +03:00
var fs = require ( 'fs' ) ;
var path = require ( 'path' ) ;
var datapath = null ;
var args = require ( 'minimist' ) ( process . argv . slice ( 2 ) ) ;
if ( ( _ _dirname . endsWith ( '/node_modules/meshcentral' ) ) || ( _ _dirname . endsWith ( '\\node_modules\\meshcentral' ) ) || ( _ _dirname . endsWith ( '/node_modules/meshcentral/' ) ) || ( _ _dirname . endsWith ( '\\node_modules\\meshcentral\\' ) ) ) {
datapath = path . join ( _ _dirname , '../../meshcentral-data' ) ;
} else {
datapath = path . join ( _ _dirname , '../meshcentral-data' ) ;
}
if ( args . datapath ) { datapath = args . datapath ; }
try { fs . mkdirSync ( datapath ) ; } catch ( e ) { }
// Read configuration file if present and change arguments.
var config = { } , configFilePath = path . join ( datapath , 'config.json' ) ;
if ( fs . existsSync ( configFilePath ) ) {
// Load and validate the configuration file
try { config = require ( configFilePath ) ; } catch ( e ) { console . log ( 'ERROR: Unable to parse ' + configFilePath + '.' ) ; return null ; }
if ( config . domains == null ) { config . domains = { } ; }
2018-08-30 22:05:23 +03:00
for ( i in config . domains ) { if ( ( i . split ( '/' ) . length > 1 ) || ( i . split ( ' ' ) . length > 1 ) ) { console . log ( "ERROR: Error in config.json, domain names can't have spaces or /." ) ; return null ; } }
2018-02-01 03:10:15 +03:00
} else {
// Copy the "sample-config.json" to give users a starting point
var sampleConfigPath = path . join ( _ _dirname , 'sample-config.json' ) ;
if ( fs . existsSync ( sampleConfigPath ) ) { fs . createReadStream ( sampleConfigPath ) . pipe ( fs . createWriteStream ( configFilePath ) ) ; }
}
// Set the command line arguments to the config file if they are not present
if ( ! config . settings ) { config . settings = { } ; }
2018-08-30 22:05:23 +03:00
for ( i in args ) { config . settings [ i ] = args [ i ] ; }
2018-02-01 03:10:15 +03:00
// Lower case all keys in the config file
2019-01-05 01:35:01 +03:00
try {
require ( './common.js' ) . objKeysToLower ( config ) ;
} catch ( ex ) {
console . log ( 'CRITICAL ERROR: Unable to access the file \"./common.js\".\r\nCheck folder & file permissions.' ) ;
process . exit ( ) ;
}
2018-02-01 03:10:15 +03:00
return config ;
}
// Check if a list of modules are present and install any missing ones
2017-08-28 19:27:45 +03:00
function InstallModules ( modules , func ) {
if ( modules . length > 0 ) { InstallModule ( modules . shift ( ) , InstallModules , modules , func ) ; } else { func ( ) ; }
}
2018-02-01 03:10:15 +03:00
// Check if a module is present and install it if missing
2017-08-28 19:27:45 +03:00
function InstallModule ( modulename , func , tag1 , tag2 ) {
try {
var module = require ( modulename ) ;
} catch ( e ) {
console . log ( 'Installing ' + modulename + '...' ) ;
var child _process = require ( 'child_process' ) ;
2017-10-04 04:31:20 +03:00
child _process . exec ( 'npm install ' + modulename + ' --save' , { maxBuffer : 512000 } , function ( error , stdout , stderr ) {
2017-08-28 19:27:45 +03:00
if ( error != null ) { console . log ( 'ERROR: Unable to install missing package \'' + modulename + '\', make sure npm is installed.' ) ; process . exit ( ) ; return ; }
func ( tag1 , tag2 ) ;
return ;
} ) ;
return ;
}
func ( tag1 , tag2 ) ;
}
// Detect CTRL-C on Linux and stop nicely
2017-09-04 22:20:18 +03:00
process . on ( 'SIGINT' , function ( ) { if ( meshserver != null ) { meshserver . Stop ( ) ; meshserver = null ; } console . log ( 'Server Ctrl-C exit...' ) ; process . exit ( ) ; } ) ;
2017-08-28 19:27:45 +03:00
2018-02-01 03:10:15 +03:00
// Load the really basic modules
2017-08-28 19:27:45 +03:00
var meshserver = null ;
2018-03-15 01:16:55 +03:00
function mainStart ( args ) {
2018-09-01 01:23:42 +03:00
// Check the NodeJS is version 6 or better.
if ( Number ( process . version . match ( /^v(\d+\.\d+)/ ) [ 1 ] ) < 6 ) { console . log ( "MeshCentral requires Node v6.x or above, current version is " + process . version + "." ) ; return ; }
// Check for any missing modules.
2018-03-15 01:16:55 +03:00
InstallModules ( [ 'minimist' ] , function ( ) {
// Get the server configuration
var config = getConfig ( ) ;
if ( config == null ) { process . exit ( ) ; }
2018-05-30 02:57:08 +03:00
// Check is Windows SSPI will be used
var sspi = false ;
if ( require ( 'os' ) . platform ( ) == 'win32' ) { for ( var i in config . domains ) { if ( config . domains [ i ] . auth == 'sspi' ) { sspi = true ; } } }
2018-03-15 01:16:55 +03:00
// Build the list of required modules
2018-05-03 02:19:45 +03:00
var modules = [ 'ws' , 'nedb' , 'https' , 'yauzl' , 'xmldom' , 'express' , 'archiver' , 'multiparty' , 'node-forge' , 'express-ws' , 'compression' , 'body-parser' , 'connect-redis' , 'express-session' , 'express-handlebars' ] ;
2018-05-30 02:57:08 +03:00
if ( require ( 'os' ) . platform ( ) == 'win32' ) { modules . push ( 'node-windows' ) ; if ( sspi == true ) { modules . push ( 'node-sspi' ) ; } } // Add Windows modules
2018-03-15 01:16:55 +03:00
if ( config . letsencrypt != null ) { modules . push ( 'greenlock' ) ; modules . push ( 'le-store-certbot' ) ; modules . push ( 'le-challenge-fs' ) ; modules . push ( 'le-acme-core' ) ; } // Add Greenlock Modules
if ( config . settings . mongodb != null ) { modules . push ( 'mongojs' ) ; } // Add MongoDB
if ( config . smtp != null ) { modules . push ( 'nodemailer' ) ; } // Add SMTP support
2018-11-30 04:59:29 +03:00
// If running NodeJS < 8, install "util.promisify"
if ( Number ( process . version . match ( /^v(\d+\.\d+)/ ) [ 1 ] ) < 8 ) { modules . push ( 'util.promisify' ) ; }
2018-03-15 01:16:55 +03:00
// Install any missing modules and launch the server
InstallModules ( modules , function ( ) { meshserver = CreateMeshCentralServer ( config , args ) ; meshserver . Start ( ) ; } ) ;
} ) ;
}
if ( require . main === module ) {
mainStart ( require ( 'minimist' ) ( process . argv . slice ( 2 ) ) ) ; // Called directly, launch normally.
} else {
module . exports . mainStart = mainStart ; // Required as a module, useful for winservice.js
}