nagios4/cgi/cgiutils.c

2133 lines
62 KiB
C
Raw Normal View History

2017-05-19 22:22:40 +02:00
/***********************************************************************
*
* CGIUTILS.C - Common utilities for Nagios CGIs
*
*
* License:
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License version 2 as
* published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
***********************************************************************/
#include "../include/config.h"
#include "../include/common.h"
#include "../include/locations.h"
#include "../include/objects.h"
#include "../include/statusdata.h"
2017-05-19 23:37:19 +02:00
#include "../include/downtime.h"
2017-05-19 22:22:40 +02:00
#include "../include/cgiutils.h"
char main_config_file[MAX_FILENAME_LENGTH];
char log_file[MAX_FILENAME_LENGTH];
char log_archive_path[MAX_FILENAME_LENGTH];
char command_file[MAX_FILENAME_LENGTH];
char physical_html_path[MAX_FILENAME_LENGTH];
char physical_images_path[MAX_FILENAME_LENGTH];
char physical_ssi_path[MAX_FILENAME_LENGTH];
char url_html_path[MAX_FILENAME_LENGTH];
char url_docs_path[MAX_FILENAME_LENGTH];
char url_context_help_path[MAX_FILENAME_LENGTH];
char url_images_path[MAX_FILENAME_LENGTH];
char url_logo_images_path[MAX_FILENAME_LENGTH];
char url_stylesheets_path[MAX_FILENAME_LENGTH];
char url_media_path[MAX_FILENAME_LENGTH];
char url_js_path[MAX_FILENAME_LENGTH];
char *service_critical_sound = NULL;
char *service_warning_sound = NULL;
char *service_unknown_sound = NULL;
char *host_down_sound = NULL;
char *host_unreachable_sound = NULL;
char *normal_sound = NULL;
char *statusmap_background_image = NULL;
char *statuswrl_include = NULL;
char *notes_url_target = NULL;
char *action_url_target = NULL;
char *ping_syntax = NULL;
char nagios_process_info[MAX_INPUT_BUFFER] = "";
int nagios_process_state = STATE_OK;
int enable_splunk_integration = FALSE;
char *splunk_url = NULL;
int lock_author_names = TRUE;
2017-05-19 23:37:19 +02:00
int navbar_search_addresses = TRUE;
int navbar_search_aliases = TRUE;
2017-05-19 22:22:40 +02:00
2017-05-19 23:37:19 +02:00
int ack_no_sticky = FALSE;
int ack_no_send = FALSE;
int tac_cgi_hard_only = FALSE;
2017-05-19 22:22:40 +02:00
time_t this_scheduled_log_rotation = 0L;
time_t last_scheduled_log_rotation = 0L;
time_t next_scheduled_log_rotation = 0L;
int use_authentication = TRUE;
int show_context_help = FALSE;
int use_pending_states = TRUE;
int host_status_has_been_read = FALSE;
int service_status_has_been_read = FALSE;
int program_status_has_been_read = FALSE;
int refresh_rate = DEFAULT_REFRESH_RATE;
int result_limit = 100;
int escape_html_tags = FALSE;
int use_ssl_authentication = FALSE;
int default_statusmap_layout_method = 0;
int default_statuswrl_layout_method = 0;
int color_transparency_index_r = 255;
int color_transparency_index_g = 255;
int color_transparency_index_b = 255;
extern hoststatus *hoststatus_list;
extern servicestatus *servicestatus_list;
lifo *lifo_list = NULL;
char encoded_url_string[2][MAX_INPUT_BUFFER]; // 2 to be able use url_encode twice
char *encoded_html_string = NULL;
/*
* These function stubs allow us to compile a lot of the
* source-files common to cgi's and daemon without adding
* a whole bunch of #ifdef's everywhere. Note that we can't
* have them as macros, since the goal is to compile the
* source-files once. A decent linker will make the call
* a no-op anyway, so it's not a big issue
*/
void logit(int data_type, int display, const char *fmt, ...) {
return;
}
int log_debug_info(int leve, int verbosity, const char *fmt, ...) {
return 0;
}
2017-05-19 23:37:19 +02:00
/*** helpers ****/
/*
* find a command with arguments still attached
* if we're unsuccessful, the buffer pointed to by 'name' is modified
* to have only the real command name (everything up until the first '!')
*/
static command *find_bang_command(char *name)
{
char *bang;
command *cmd;
if (!name)
return NULL;
bang = strchr(name, '!');
if (!bang)
return find_command(name);
*bang = 0;
cmd = find_command(name);
*bang = '!';
return cmd;
}
2017-05-19 22:22:40 +02:00
/**********************************************************
***************** CLEANUP FUNCTIONS **********************
**********************************************************/
/* reset all variables used by the CGIs */
void reset_cgi_vars(void) {
strcpy(main_config_file, "");
strcpy(physical_html_path, "");
strcpy(physical_images_path, "");
strcpy(physical_ssi_path, "");
strcpy(url_html_path, "");
strcpy(url_docs_path, "");
strcpy(url_context_help_path, "");
strcpy(url_stylesheets_path, "");
strcpy(url_media_path, "");
strcpy(url_images_path, "");
strcpy(log_file, "");
strcpy(log_archive_path, DEFAULT_LOG_ARCHIVE_PATH);
if(log_archive_path[strlen(log_archive_path) - 1] != '/' && strlen(log_archive_path) < sizeof(log_archive_path) - 2)
strcat(log_archive_path, "/");
strcpy(command_file, get_cmd_file_location());
strcpy(nagios_process_info, "");
nagios_process_state = STATE_OK;
log_rotation_method = LOG_ROTATION_NONE;
use_authentication = TRUE;
interval_length = 60;
refresh_rate = DEFAULT_REFRESH_RATE;
default_statusmap_layout_method = 0;
default_statusmap_layout_method = 0;
service_critical_sound = NULL;
service_warning_sound = NULL;
service_unknown_sound = NULL;
host_down_sound = NULL;
host_unreachable_sound = NULL;
normal_sound = NULL;
statusmap_background_image = NULL;
color_transparency_index_r = 255;
color_transparency_index_g = 255;
color_transparency_index_b = 255;
statuswrl_include = NULL;
ping_syntax = NULL;
return;
}
/* free all memory for object definitions */
void free_memory(void) {
/* free memory for common object definitions */
free_object_data();
/* free memory for status data */
free_status_data();
/* free misc data */
free(service_critical_sound);
free(service_warning_sound);
free(service_unknown_sound);
free(host_down_sound);
free(host_unreachable_sound);
free(normal_sound);
free(statusmap_background_image);
free(statuswrl_include);
free(ping_syntax);
return;
}
/**********************************************************
*************** CONFIG FILE FUNCTIONS ********************
**********************************************************/
/* read the CGI config file location from an environment variable */
2017-05-19 23:37:19 +02:00
const char *get_cgi_config_location(void) {
2017-05-19 22:22:40 +02:00
static char *cgiloc = NULL;
if(!cgiloc) {
cgiloc = getenv("NAGIOS_CGI_CONFIG");
if(!cgiloc)
cgiloc = DEFAULT_CGI_CONFIG_FILE;
}
return cgiloc;
}
/* read the command file location from an environment variable */
2017-05-19 23:37:19 +02:00
const char *get_cmd_file_location(void) {
2017-05-19 22:22:40 +02:00
static char *cmdloc = NULL;
if(!cmdloc) {
cmdloc = getenv("NAGIOS_COMMAND_FILE");
if(!cmdloc)
cmdloc = DEFAULT_COMMAND_FILE;
}
return cmdloc;
}
/*read the CGI configuration file */
2017-05-19 23:37:19 +02:00
int read_cgi_config_file(const char *filename) {
2017-05-19 22:22:40 +02:00
char *input = NULL;
mmapfile *thefile;
char *var = NULL;
char *val = NULL;
2017-05-19 23:37:19 +02:00
char *p = NULL;
2017-05-19 22:22:40 +02:00
if((thefile = mmap_fopen(filename)) == NULL)
return ERROR;
while(1) {
/* free memory */
free(input);
/* read the next line */
if((input = mmap_fgets_multiline(thefile)) == NULL)
break;
strip(input);
var = strtok(input, "=");
val = strtok(NULL, "\n");
if(var == NULL || val == NULL)
continue;
if(!strcmp(var, "main_config_file")) {
strncpy(main_config_file, val, sizeof(main_config_file));
main_config_file[sizeof(main_config_file) - 1] = '\x0';
strip(main_config_file);
}
else if(!strcmp(var, "show_context_help"))
show_context_help = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "use_pending_states"))
use_pending_states = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "use_authentication"))
use_authentication = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "refresh_rate"))
refresh_rate = atoi(val);
/* page limit added 2/1/2012 -MG */
else if(!strcmp(var, "result_limit"))
result_limit = atoi(val);
else if(!strcmp(var, "physical_html_path")) {
strncpy(physical_html_path, val, sizeof(physical_html_path));
physical_html_path[sizeof(physical_html_path) - 1] = '\x0';
strip(physical_html_path);
if(physical_html_path[strlen(physical_html_path) - 1] != '/' && (strlen(physical_html_path) < sizeof(physical_html_path) - 1))
strcat(physical_html_path, "/");
snprintf(physical_images_path, sizeof(physical_images_path), "%simages/", physical_html_path);
physical_images_path[sizeof(physical_images_path) - 1] = '\x0';
snprintf(physical_ssi_path, sizeof(physical_images_path), "%sssi/", physical_html_path);
physical_ssi_path[sizeof(physical_ssi_path) - 1] = '\x0';
}
else if(!strcmp(var, "url_html_path")) {
strncpy(url_html_path, val, sizeof(url_html_path));
url_html_path[sizeof(url_html_path) - 1] = '\x0';
strip(url_html_path);
if(url_html_path[strlen(url_html_path) - 1] != '/' && (strlen(url_html_path) < sizeof(url_html_path) - 1))
strcat(url_html_path, "/");
snprintf(url_docs_path, sizeof(url_docs_path), "%sdocs/", url_html_path);
url_docs_path[sizeof(url_docs_path) - 1] = '\x0';
snprintf(url_context_help_path, sizeof(url_context_help_path), "%scontexthelp/", url_html_path);
url_context_help_path[sizeof(url_context_help_path) - 1] = '\x0';
snprintf(url_images_path, sizeof(url_images_path), "%simages/", url_html_path);
url_images_path[sizeof(url_images_path) - 1] = '\x0';
snprintf(url_logo_images_path, sizeof(url_logo_images_path), "%slogos/", url_images_path);
url_logo_images_path[sizeof(url_logo_images_path) - 1] = '\x0';
snprintf(url_stylesheets_path, sizeof(url_stylesheets_path), "%sstylesheets/", url_html_path);
url_stylesheets_path[sizeof(url_stylesheets_path) - 1] = '\x0';
snprintf(url_media_path, sizeof(url_media_path), "%smedia/", url_html_path);
url_media_path[sizeof(url_media_path) - 1] = '\x0';
/* added JS directory 2/1/2012 -MG */
snprintf(url_js_path, sizeof(url_js_path), "%sjs/", url_html_path);
url_js_path[sizeof(url_js_path) - 1] = '\x0';
}
else if(!strcmp(var, "service_critical_sound"))
service_critical_sound = strdup(val);
else if(!strcmp(var, "service_warning_sound"))
service_warning_sound = strdup(val);
else if(!strcmp(var, "service_unknown_sound"))
service_unknown_sound = strdup(val);
else if(!strcmp(var, "host_down_sound"))
host_down_sound = strdup(val);
else if(!strcmp(var, "host_unreachable_sound"))
host_unreachable_sound = strdup(val);
else if(!strcmp(var, "normal_sound"))
normal_sound = strdup(val);
else if(!strcmp(var, "statusmap_background_image"))
statusmap_background_image = strdup(val);
else if(!strcmp(var, "color_transparency_index_r"))
color_transparency_index_r = atoi(val);
else if(!strcmp(var, "color_transparency_index_g"))
color_transparency_index_g = atoi(val);
else if(!strcmp(var, "color_transparency_index_b"))
color_transparency_index_b = atoi(val);
else if(!strcmp(var, "default_statusmap_layout"))
default_statusmap_layout_method = atoi(val);
else if(!strcmp(var, "default_statuswrl_layout"))
default_statuswrl_layout_method = atoi(val);
else if(!strcmp(var, "statuswrl_include"))
statuswrl_include = strdup(val);
else if(!strcmp(var, "ping_syntax"))
ping_syntax = strdup(val);
else if(!strcmp(var, "action_url_target"))
action_url_target = strdup(val);
else if(!strcmp(var, "illegal_macro_output_chars"))
illegal_output_chars = strdup(val);
else if(!strcmp(var, "notes_url_target"))
notes_url_target = strdup(val);
else if(!strcmp(var, "enable_splunk_integration"))
enable_splunk_integration = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "splunk_url"))
splunk_url = strdup(val);
else if(!strcmp(var, "escape_html_tags"))
escape_html_tags = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "lock_author_names"))
lock_author_names = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "use_ssl_authentication"))
use_ssl_authentication = (atoi(val) > 0) ? TRUE : FALSE;
2017-05-19 23:37:19 +02:00
else if(!strcmp(var, "navbar_search_addresses"))
navbar_search_addresses = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "navbar_search_aliases"))
navbar_search_aliases = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "ack_no_sticky"))
ack_no_sticky = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "ack_no_send"))
ack_no_send = (atoi(val) > 0) ? TRUE : FALSE;
else if(!strcmp(var, "tac_cgi_hard_only"))
tac_cgi_hard_only = (atoi(val) > 0) ? TRUE : FALSE;
2017-05-19 22:22:40 +02:00
}
2017-05-19 23:37:19 +02:00
for(p = illegal_output_chars; p && *p; p++)
illegal_output_char_map[(int)*p] = 1;
2017-05-19 22:22:40 +02:00
/* free memory and close the file */
free(input);
mmap_fclose(thefile);
if(!strcmp(main_config_file, ""))
return ERROR;
else
return OK;
}
/* read the main configuration file */
2017-05-19 23:37:19 +02:00
int read_main_config_file(const char *filename) {
2017-05-19 22:22:40 +02:00
char *input = NULL;
char *temp_buffer;
mmapfile *thefile;
2017-05-19 23:37:19 +02:00
config_file_dir = nspath_absolute_dirname(filename, NULL);
2017-05-19 22:22:40 +02:00
if((thefile = mmap_fopen(filename)) == NULL)
return ERROR;
while(1) {
/* free memory */
free(input);
/* read the next line */
if((input = mmap_fgets_multiline(thefile)) == NULL)
break;
strip(input);
if(strstr(input, "interval_length=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
interval_length = (temp_buffer == NULL) ? 60 : atoi(temp_buffer);
}
else if(strstr(input, "log_file=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
2017-05-19 23:37:19 +02:00
strncpy(log_file, (temp_buffer == NULL) ? "" : nspath_absolute(temp_buffer, config_file_dir),sizeof(log_file) - 1);
2017-05-19 22:22:40 +02:00
log_file[sizeof(log_file) - 1] = '\x0';
strip(log_file);
}
2017-05-19 23:37:19 +02:00
else if(strstr(input, "object_cache_file=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
object_cache_file = nspath_absolute(temp_buffer, config_file_dir);
}
else if(strstr(input, "status_file=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
status_file = nspath_absolute(temp_buffer, config_file_dir);
}
2017-05-19 22:22:40 +02:00
else if(strstr(input, "log_archive_path=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\n");
strncpy(log_archive_path, (temp_buffer == NULL) ? "" : temp_buffer, sizeof(log_archive_path));
log_archive_path[sizeof(log_archive_path) - 1] = '\x0';
strip(physical_html_path);
if(log_archive_path[strlen(log_archive_path) - 1] != '/' && (strlen(log_archive_path) < sizeof(log_archive_path) - 1))
strcat(log_archive_path, "/");
}
else if(strstr(input, "log_rotation_method=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
if(temp_buffer == NULL)
log_rotation_method = LOG_ROTATION_NONE;
else if(!strcmp(temp_buffer, "h"))
log_rotation_method = LOG_ROTATION_HOURLY;
else if(!strcmp(temp_buffer, "d"))
log_rotation_method = LOG_ROTATION_DAILY;
else if(!strcmp(temp_buffer, "w"))
log_rotation_method = LOG_ROTATION_WEEKLY;
else if(!strcmp(temp_buffer, "m"))
log_rotation_method = LOG_ROTATION_MONTHLY;
}
else if(strstr(input, "command_file=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
strncpy(command_file, (temp_buffer == NULL) ? "" : temp_buffer, sizeof(command_file));
command_file[sizeof(command_file) - 1] = '\x0';
strip(command_file);
}
else if(strstr(input, "check_external_commands=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
check_external_commands = (temp_buffer == NULL) ? 0 : atoi(temp_buffer);
}
else if(strstr(input, "date_format=") == input) {
temp_buffer = strtok(input, "=");
temp_buffer = strtok(NULL, "\x0");
if(temp_buffer == NULL)
date_format = DATE_FORMAT_US;
else if(!strcmp(temp_buffer, "euro"))
date_format = DATE_FORMAT_EURO;
else if(!strcmp(temp_buffer, "iso8601"))
date_format = DATE_FORMAT_ISO8601;
else if(!strcmp(temp_buffer, "strict-iso8601"))
date_format = DATE_FORMAT_STRICT_ISO8601;
else
date_format = DATE_FORMAT_US;
}
}
/* free memory and close the file */
free(input);
mmap_fclose(thefile);
return OK;
}
/* read all object definitions */
2017-05-19 23:37:19 +02:00
int read_all_object_configuration_data(const char *cfgfile, int options) {
2017-05-19 22:22:40 +02:00
int result = OK;
2017-05-19 23:37:19 +02:00
host *temp_host = NULL;
host *parent_host = NULL;
hostsmember *temp_hostsmember = NULL;
service *temp_service = NULL;
service *parent_service = NULL;
servicesmember *temp_servicesmember = NULL;
2017-05-19 22:22:40 +02:00
/* read in all external config data of the desired type(s) */
2017-05-19 23:37:19 +02:00
result = read_object_config_data(cfgfile, options);
/* Resolve objects in the host object */
for(temp_host = host_list; temp_host != NULL; temp_host = temp_host->next) {
/* Find the command object for the check command */
temp_host->check_command_ptr =
find_bang_command(temp_host->check_command);
/* Find the command object for the event handler */
temp_host->event_handler_ptr =
find_bang_command(temp_host->event_handler);
/* Resolve host child->parent relationships */
for(temp_hostsmember = temp_host->parent_hosts;
temp_hostsmember != NULL;
temp_hostsmember = temp_hostsmember->next) {
if((parent_host = find_host(temp_hostsmember->host_name)) == NULL) {
logit(NSLOG_CONFIG_ERROR, TRUE,
"Error: '%s' is not a valid parent for host '%s'!",
temp_hostsmember->host_name, temp_host->name);
}
/* save the parent host pointer for later */
temp_hostsmember->host_ptr = parent_host;
/* add a reverse (child) link to make searches faster later on */
if(add_child_link_to_host(parent_host, temp_host) == NULL) {
logit(NSLOG_CONFIG_ERROR, TRUE,
"Error: Failed to add '%s' as a child host of '%s'",
temp_host->name, parent_host->name);
}
}
}
/* Resolve objects in the service object */
for(temp_service = service_list; temp_service != NULL;
temp_service = temp_service->next) {
/* Find the command object for the check command */
temp_service->check_command_ptr =
find_bang_command(temp_service->check_command);
/* Find the command object for the event handler */
temp_service->event_handler_ptr =
find_bang_command(temp_service->event_handler);
/* Resolve service child->parent relationships */
for(temp_servicesmember = temp_service->parents;
temp_servicesmember != NULL;
temp_servicesmember = temp_servicesmember->next) {
/* Find the parent service */
if((parent_service = find_service(temp_servicesmember->host_name,
temp_servicesmember->service_description)) == NULL) {
logit(NSLOG_CONFIG_ERROR, TRUE,
"Error: '%s:%s' is not a valid parent for service '%s:%s'!",
temp_servicesmember->host_name,
temp_servicesmember->service_description,
temp_service->host_name, temp_service->description);
}
/* add a reverse (child) link to make searches faster later on */
if(add_child_link_to_service(parent_service,
temp_service) == NULL) {
logit(NSLOG_CONFIG_ERROR, TRUE,
"Error: Failed to add '%s:%s' as a child service of '%s:%s'",
temp_service->host_name, temp_service->description,
parent_service->host_name, parent_service->description);
}
}
}
2017-05-19 22:22:40 +02:00
return result;
}
/* read all status data */
2017-05-19 23:37:19 +02:00
int read_all_status_data(const char *status_file_name, int options) {
2017-05-19 22:22:40 +02:00
int result = OK;
/* don't duplicate things we've already read in */
if(program_status_has_been_read == TRUE && (options & READ_PROGRAM_STATUS))
options -= READ_PROGRAM_STATUS;
if(host_status_has_been_read == TRUE && (options & READ_HOST_STATUS))
options -= READ_HOST_STATUS;
if(service_status_has_been_read == TRUE && (options & READ_SERVICE_STATUS))
options -= READ_SERVICE_STATUS;
/* bail out if we've already read what we need */
if(options <= 0)
return OK;
2017-05-19 23:37:19 +02:00
/* Initialize the downtime data */
initialize_downtime_data();
2017-05-19 22:22:40 +02:00
/* read in all external status data */
2017-05-19 23:37:19 +02:00
result = read_status_data(status_file_name, options);
2017-05-19 22:22:40 +02:00
/* mark what items we've read in... */
if(options & READ_PROGRAM_STATUS)
program_status_has_been_read = TRUE;
if(options & READ_HOST_STATUS)
host_status_has_been_read = TRUE;
if(options & READ_SERVICE_STATUS)
service_status_has_been_read = TRUE;
return result;
}
2017-05-19 23:37:19 +02:00
void cgi_init(void (*doc_header)(int), void (*doc_footer)(void), int object_options, int status_options) {
int result;
/* Initialize shared configuration variables */
init_shared_cfg_vars(1);
/* read the CGI configuration file */
result = read_cgi_config_file(get_cgi_config_location());
if(result == ERROR) {
doc_header(FALSE);
cgi_config_file_error(get_cgi_config_location());
doc_footer();
exit(EXIT_FAILURE);
}
/* read the main configuration file */
result = read_main_config_file(main_config_file);
if(result == ERROR) {
doc_header(FALSE);
main_config_file_error(main_config_file);
doc_footer();
exit(EXIT_FAILURE);
}
/* read all object configuration data */
result = read_all_object_configuration_data(main_config_file, object_options);
if(result == ERROR) {
doc_header(FALSE);
object_data_error();
doc_footer();
exit(EXIT_FAILURE);
}
/* read all status data */
result = read_all_status_data(status_file, status_options);
if(result == ERROR) {
doc_header(FALSE);
status_data_error();
doc_footer();
free_memory();
exit(EXIT_FAILURE);
}
}
2017-05-19 22:22:40 +02:00
/**********************************************************
******************* LIFO FUNCTIONS ***********************
**********************************************************/
/* reads contents of file into the lifo struct */
int read_file_into_lifo(char *filename) {
char *input = NULL;
mmapfile *thefile;
int lifo_result;
if((thefile = mmap_fopen(filename)) == NULL)
return LIFO_ERROR_FILE;
while(1) {
free(input);
if((input = mmap_fgets(thefile)) == NULL)
break;
lifo_result = push_lifo(input);
if(lifo_result != LIFO_OK) {
free_lifo_memory();
free(input);
mmap_fclose(thefile);
return lifo_result;
}
}
mmap_fclose(thefile);
return LIFO_OK;
}
/* frees all memory allocated to lifo */
void free_lifo_memory(void) {
lifo *temp_lifo;
lifo *next_lifo;
if(lifo_list == NULL)
return;
temp_lifo = lifo_list;
while(temp_lifo != NULL) {
next_lifo = temp_lifo->next;
if(temp_lifo->data != NULL)
free((void *)temp_lifo->data);
free((void *)temp_lifo);
temp_lifo = next_lifo;
}
return;
}
/* adds an item to lifo */
int push_lifo(char *buffer) {
lifo *temp_lifo;
temp_lifo = (lifo *)malloc(sizeof(lifo));
if(temp_lifo == NULL)
return LIFO_ERROR_MEMORY;
if(buffer == NULL)
temp_lifo->data = (char *)strdup("");
else
temp_lifo->data = (char *)strdup(buffer);
if(temp_lifo->data == NULL) {
free(temp_lifo);
return LIFO_ERROR_MEMORY;
}
/* add item to front of lifo... */
temp_lifo->next = lifo_list;
lifo_list = temp_lifo;
return LIFO_OK;
}
/* returns/clears an item from lifo */
char *pop_lifo(void) {
lifo *temp_lifo;
char *buf;
if(lifo_list == NULL || lifo_list->data == NULL)
return NULL;
buf = strdup(lifo_list->data);
temp_lifo = lifo_list->next;
if(lifo_list->data != NULL)
free((void *)lifo_list->data);
free((void *)lifo_list);
lifo_list = temp_lifo;
return buf;
}
/**********************************************************
*************** MISC UTILITY FUNCTIONS *******************
**********************************************************/
/* unescapes newlines in a string */
char *unescape_newlines(char *rawbuf) {
register int x, y;
for(x = 0, y = 0; rawbuf[x] != (char)'\x0'; x++) {
if(rawbuf[x] == '\\') {
/* unescape newlines */
if(rawbuf[x + 1] == 'n') {
rawbuf[y++] = '\n';
x++;
}
/* unescape backslashes and other stuff */
2017-05-19 23:37:19 +02:00
else if(rawbuf[x + 1] != '\x0') {
2017-05-19 22:22:40 +02:00
rawbuf[y++] = rawbuf[x + 1];
x++;
}
}
else
rawbuf[y++] = rawbuf[x];
}
rawbuf[y] = '\x0';
return rawbuf;
}
/* strips HTML and bad stuff from plugin output */
void sanitize_plugin_output(char *buffer) {
int x = 0;
int y = 0;
int in_html = FALSE;
char *new_buffer;
if(buffer == NULL)
return;
new_buffer = strdup(buffer);
if(new_buffer == NULL)
return;
/* check each character */
for(x = 0, y = 0; buffer[x] != '\x0'; x++) {
/* we just started an HTML tag */
if(buffer[x] == '<') {
in_html = TRUE;
continue;
}
/* end of an HTML tag */
else if(buffer[x] == '>') {
in_html = FALSE;
continue;
}
/* skip everything inside HTML tags */
else if(in_html == TRUE)
continue;
/* strip single and double quotes */
else if(buffer[x] == '\'' || buffer[x] == '\"')
new_buffer[y++] = ' ';
/* strip semicolons (replace with colons) */
else if(buffer[x] == ';')
new_buffer[y++] = ':';
/* strip pipe and ampersand */
else if(buffer[x] == '&' || buffer[x] == '|')
new_buffer[y++] = ' ';
/* normal character */
else
new_buffer[y++] = buffer[x];
}
/* terminate sanitized buffer */
new_buffer[y++] = '\x0';
/* copy the sanitized buffer back to the original */
strcpy(buffer, new_buffer);
/* free memory allocated to the new buffer */
free(new_buffer);
return;
}
/* get date/time string */
void get_time_string(time_t *raw_time, char *buffer, int buffer_length, int type) {
time_t t;
struct tm *tm_ptr = NULL;
int hour = 0;
int minute = 0;
int second = 0;
int month = 0;
int day = 0;
int year = 0;
2017-05-19 23:37:19 +02:00
const char *weekdays[7] = {"Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"};
const char *months[12] = {"Jan", "Feb", "Mar", "Apr", "May", "Jun", "Jul", "Aug", "Sep", "Oct", "Nov", "Dec"};
const char *tzone = "";
2017-05-19 22:22:40 +02:00
if(raw_time == NULL)
time(&t);
else
t = *raw_time;
if(type == HTTP_DATE_TIME)
tm_ptr = gmtime(&t);
else
tm_ptr = localtime(&t);
hour = tm_ptr->tm_hour;
minute = tm_ptr->tm_min;
second = tm_ptr->tm_sec;
month = tm_ptr->tm_mon + 1;
day = tm_ptr->tm_mday;
year = tm_ptr->tm_year + 1900;
#ifdef HAVE_TM_ZONE
tzone = (char *)tm_ptr->tm_zone;
#else
tzone = (tm_ptr->tm_isdst) ? tzname[1] : tzname[0];
#endif
/* ctime() style */
if(type == LONG_DATE_TIME)
snprintf(buffer, buffer_length, "%s %s %d %02d:%02d:%02d %s %d", weekdays[tm_ptr->tm_wday], months[tm_ptr->tm_mon], day, hour, minute, second, tzone, year);
/* short style */
else if(type == SHORT_DATE_TIME) {
if(date_format == DATE_FORMAT_EURO)
snprintf(buffer, buffer_length, "%02d-%02d-%04d %02d:%02d:%02d", tm_ptr->tm_mday, tm_ptr->tm_mon + 1, tm_ptr->tm_year + 1900, tm_ptr->tm_hour, tm_ptr->tm_min, tm_ptr->tm_sec);
else if(date_format == DATE_FORMAT_ISO8601 || date_format == DATE_FORMAT_STRICT_ISO8601)
snprintf(buffer, buffer_length, "%04d-%02d-%02d%c%02d:%02d:%02d", tm_ptr->tm_year + 1900, tm_ptr->tm_mon + 1, tm_ptr->tm_mday, (date_format == DATE_FORMAT_STRICT_ISO8601) ? 'T' : ' ', tm_ptr->tm_hour, tm_ptr->tm_min, tm_ptr->tm_sec);
else
snprintf(buffer, buffer_length, "%02d-%02d-%04d %02d:%02d:%02d", tm_ptr->tm_mon + 1, tm_ptr->tm_mday, tm_ptr->tm_year + 1900, tm_ptr->tm_hour, tm_ptr->tm_min, tm_ptr->tm_sec);
}
/* short date */
else if(type == SHORT_DATE) {
if(date_format == DATE_FORMAT_EURO)
snprintf(buffer, buffer_length, "%02d-%02d-%04d", day, month, year);
else if(date_format == DATE_FORMAT_ISO8601 || date_format == DATE_FORMAT_STRICT_ISO8601)
snprintf(buffer, buffer_length, "%04d-%02d-%02d", year, month, day);
else
snprintf(buffer, buffer_length, "%02d-%02d-%04d", month, day, year);
}
/* expiration date/time for HTTP headers */
else if(type == HTTP_DATE_TIME)
snprintf(buffer, buffer_length, "%s, %02d %s %d %02d:%02d:%02d GMT", weekdays[tm_ptr->tm_wday], day, months[tm_ptr->tm_mon], year, hour, minute, second);
/* short time */
else
snprintf(buffer, buffer_length, "%02d:%02d:%02d", hour, minute, second);
buffer[buffer_length - 1] = '\x0';
return;
}
/* get time string for an interval of time */
void get_interval_time_string(double time_units, char *buffer, int buffer_length) {
unsigned long total_seconds;
int hours = 0;
int minutes = 0;
int seconds = 0;
total_seconds = (unsigned long)(time_units * interval_length);
hours = (int)total_seconds / 3600;
total_seconds %= 3600;
minutes = (int)total_seconds / 60;
total_seconds %= 60;
seconds = (int)total_seconds;
snprintf(buffer, buffer_length, "%dh %dm %ds", hours, minutes, seconds);
buffer[buffer_length - 1] = '\x0';
return;
}
/* encodes a string in proper URL format */
2017-05-19 23:37:19 +02:00
const char *url_encode(const char *input) {
2017-05-19 22:22:40 +02:00
int len, output_len;
int x, y;
char temp_expansion[4];
static int i = 0;
char* str = encoded_url_string[i];
/* initialize return string */
strcpy(str, "");
if(input == NULL)
return str;
len = (int)strlen(input);
2017-05-19 23:37:19 +02:00
output_len = (int)sizeof(encoded_url_string[i]);
2017-05-19 22:22:40 +02:00
str[0] = '\x0';
for(x = 0, y = 0; x <= len && y < output_len - 1; x++) {
/* end of string */
if((char)input[x] == (char)'\x0') {
str[y] = '\x0';
break;
}
/* alpha-numeric characters and a few other characters don't get encoded */
else if(((char)input[x] >= '0' && (char)input[x] <= '9') || ((char)input[x] >= 'A' && (char)input[x] <= 'Z') || ((char)input[x] >= (char)'a' && (char)input[x] <= (char)'z') || (char)input[x] == (char)'.' || (char)input[x] == (char)'-' || (char)input[x] == (char)'_') {
str[y] = input[x];
y++;
}
/* spaces are pluses */
else if(input[x] == ' ') {
str[y] = '+';
y++;
}
/* anything else gets represented by its hex value */
else {
str[y] = '\x0';
if((int)strlen(str) < (output_len - 3)) {
2017-05-19 23:37:19 +02:00
sprintf(temp_expansion, "%%%02X", (unsigned int)(input[x] & 0xFF));
2017-05-19 22:22:40 +02:00
strcat(str, temp_expansion);
y += 3;
}
}
}
2017-05-19 23:37:19 +02:00
str[sizeof(encoded_url_string[i]) - 1] = '\x0';
i = !i;
2017-05-19 22:22:40 +02:00
return str;
}
2017-05-19 23:37:19 +02:00
static char * copy_wc_to_output(wchar_t wc, char *outstp, int output_max) {
int wctomb_result;
char mbtemp[ 10];
wctomb_result = wctomb(mbtemp, wc);
if(( wctomb_result > 0) &&
((( outstp - encoded_html_string) + wctomb_result) < output_max)) {
strncpy( outstp, mbtemp, wctomb_result);
outstp += wctomb_result;
}
return outstp;
}
static char * encode_character(wchar_t wc, char *outstp, int output_max) {
char temp_expansion[11];
sprintf(temp_expansion, "&#%u;", (unsigned int)wc);
if(((outstp - encoded_html_string) + strlen(temp_expansion)) <
(unsigned int)output_max) {
strncpy(outstp, temp_expansion, strlen( temp_expansion));
outstp += strlen( temp_expansion);
}
return outstp;
}
2017-05-19 22:22:40 +02:00
2017-05-19 23:37:19 +02:00
#define WHERE_OUTSIDE_TAG 0 /* Not in an HTML tag */
#define WHERE_IN_TAG_NAME 1 /* In HTML tag name (either opening
or closing tag) */
#define WHERE_IN_TAG_OUTSIDE_ATTRIBUTE 2 /* In HTML tag, but before or after
an attribute. Should be <, > or
space */
#define WHERE_IN_TAG_IN_ATTRIBUTE_NAME 3 /* In the attribute name */
#define WHERE_IN_TAG_AT_EQUALS 4 /* At the equals sign between the
attribute name and value */
#define WHERE_IN_TAG_IN_ATTRIBUTE_VALUE 5 /* In the attribute value */
#define WHERE_IN_COMMENT 6 /* In an HTML comment */
2017-05-19 22:22:40 +02:00
/* escapes a string used in HTML */
char * html_encode(char *input, int escape_newlines) {
int len;
int output_max;
char *outstp;
wchar_t *wcinput;
wchar_t *inwcp;
2017-05-19 23:37:19 +02:00
wchar_t *tagname = L"";
2017-05-19 22:22:40 +02:00
size_t mbstowcs_result;
int x;
2017-05-19 23:37:19 +02:00
int where_in_tag = WHERE_OUTSIDE_TAG; /* Location in HTML tag */
wchar_t attr_value_start = (wchar_t)0; /* character that starts the
attribute value */
int tag_depth = 0; /* depth of nested HTML tags */
2017-05-19 22:22:40 +02:00
/* we need up to six times the space to do the conversion */
len = (int)strlen(input);
output_max = len * 6;
2017-05-19 23:37:19 +02:00
if(( outstp = encoded_html_string = (char *)malloc(output_max + 1)) == NULL)
2017-05-19 22:22:40 +02:00
return "";
strcpy(encoded_html_string, "");
/* Convert the string to a wide character string */
2017-05-19 23:37:19 +02:00
if(( wcinput = malloc( len * sizeof( wchar_t))) == NULL) {
2017-05-19 22:22:40 +02:00
return "";
}
2017-05-19 23:37:19 +02:00
if((mbstowcs_result = mbstowcs( wcinput, input, len)) == (size_t)-1) {
free( wcinput);
2017-05-19 22:22:40 +02:00
return "";
}
/* Process all converted characters */
2017-05-19 23:37:19 +02:00
for( x = 0, inwcp = wcinput; x < (int)mbstowcs_result && '\0' != *inwcp;
x++, inwcp++) {
2017-05-19 22:22:40 +02:00
/* Most ASCII characters don't get encoded */
2017-05-19 23:37:19 +02:00
if(( *inwcp >= 0x20 && *inwcp <= 0x7e) &&
( !( '"' == *inwcp || '&' == *inwcp || '\'' == *inwcp ||
'<' == *inwcp || '>' == *inwcp))) {
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
switch(where_in_tag) {
case WHERE_IN_TAG_NAME:
switch(*inwcp) {
case 0x20:
where_in_tag = WHERE_IN_TAG_OUTSIDE_ATTRIBUTE;
*inwcp = 0;
break;
case '!':
where_in_tag = WHERE_IN_COMMENT;
break;
}
break;
case WHERE_IN_TAG_OUTSIDE_ATTRIBUTE:
if(*inwcp != 0x20) {
where_in_tag = WHERE_IN_TAG_IN_ATTRIBUTE_NAME;
}
break;
case WHERE_IN_TAG_IN_ATTRIBUTE_NAME:
if(*inwcp == '=') {
where_in_tag = WHERE_IN_TAG_AT_EQUALS;
}
break;
case WHERE_IN_TAG_AT_EQUALS:
if(*inwcp != 0x20) {
attr_value_start = *inwcp;
where_in_tag = WHERE_IN_TAG_IN_ATTRIBUTE_VALUE;
}
break;
case WHERE_IN_TAG_IN_ATTRIBUTE_VALUE:
if((*inwcp == 0x20) && (attr_value_start != '"') &&
(attr_value_start != '\'')) {
where_in_tag = WHERE_IN_TAG_OUTSIDE_ATTRIBUTE;
}
break;
}
}
/* Special handling for quotes */
else if(FALSE == escape_html_tags &&
('"' == *inwcp || '\'' == *inwcp)) {
switch(where_in_tag) {
case WHERE_OUTSIDE_TAG:
if(tag_depth >0) {
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
}
else {
outstp = encode_character(*inwcp, outstp, output_max);
}
break;
case WHERE_IN_COMMENT:
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
break;
case WHERE_IN_TAG_AT_EQUALS:
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
attr_value_start = *inwcp;
where_in_tag = WHERE_IN_TAG_IN_ATTRIBUTE_VALUE;
break;
case WHERE_IN_TAG_IN_ATTRIBUTE_VALUE:
if(*(inwcp-1) == '\\') {
/* This covers the case where the quote is backslash
escaped. */
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
}
else if(attr_value_start == *inwcp) {
/* If the quote is the same type of quote that started
the attribute value and it is not backslash
escaped, it signals the end of the attribute value */
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
where_in_tag = WHERE_IN_TAG_OUTSIDE_ATTRIBUTE;
}
else {
/* If we encounter an quote that did not start the
attribute value and is not backslash escaped,
use it as is */
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
}
break;
default:
if (tag_depth > 0 && !wcscmp(tagname, L"script"))
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
else
outstp = encode_character(*inwcp, outstp, output_max);
break;
2017-05-19 22:22:40 +02:00
}
}
/* newlines turn to <BR> tags */
else if(escape_newlines == TRUE && '\n' == *inwcp) {
2017-05-19 23:37:19 +02:00
strncpy( outstp, "<BR>", 4);
2017-05-19 22:22:40 +02:00
outstp += 4;
}
2017-05-19 23:37:19 +02:00
else if(escape_newlines == TRUE && '\\' == *inwcp && '\n' == *( inwcp + 1)) {
strncpy( outstp, "<BR>", 4);
2017-05-19 22:22:40 +02:00
outstp += 4;
inwcp++; /* needed so loop skips two wide characters */
}
/* TODO - strip all but allowed HTML tags out... */
2017-05-19 23:37:19 +02:00
else if(('<' == *inwcp) && (FALSE == escape_html_tags)) {
switch(where_in_tag) {
case WHERE_OUTSIDE_TAG:
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
where_in_tag = WHERE_IN_TAG_NAME;
switch(*(inwcp+1)) {
case '/':
tag_depth--;
break;
case '!':
break;
default:
tag_depth++;
tagname = inwcp + 1;
break;
2017-05-19 22:22:40 +02:00
}
2017-05-19 23:37:19 +02:00
break;
default:
if (tag_depth > 0 && !wcscmp(tagname, L"script"))
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
else
outstp = encode_character(*inwcp, outstp, output_max);
break;
2017-05-19 22:22:40 +02:00
}
}
2017-05-19 23:37:19 +02:00
else if(('>' == *inwcp) && (FALSE == escape_html_tags)) {
switch(where_in_tag) {
case WHERE_IN_TAG_NAME:
case WHERE_IN_TAG_OUTSIDE_ATTRIBUTE:
case WHERE_IN_COMMENT:
case WHERE_IN_TAG_IN_ATTRIBUTE_NAME:
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
where_in_tag = WHERE_OUTSIDE_TAG;
*inwcp = 0;
break;
case WHERE_IN_TAG_IN_ATTRIBUTE_VALUE:
if((attr_value_start != '"') && (attr_value_start != '\'')) {
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
where_in_tag = WHERE_OUTSIDE_TAG;
2017-05-19 22:22:40 +02:00
}
2017-05-19 23:37:19 +02:00
else {
outstp = encode_character(*inwcp, outstp, output_max);
2017-05-19 22:22:40 +02:00
}
2017-05-19 23:37:19 +02:00
break;
default:
if (tag_depth > 0 && !wcscmp(tagname, L"script"))
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
else
outstp = encode_character(*inwcp, outstp, output_max);
break;
2017-05-19 22:22:40 +02:00
}
}
2017-05-19 23:37:19 +02:00
/* check_multi puts out a '&ndash' so don't encode the '&' in that case */
else if (*inwcp == '&' && escape_html_tags == FALSE) {
if (tag_depth > 0 && !wcsncmp(inwcp, L"&ndash", 6))
outstp = copy_wc_to_output(*inwcp, outstp, output_max);
else
outstp = encode_character(*inwcp, outstp, output_max);
2017-05-19 22:22:40 +02:00
}
/* for simplicity, all other chars represented by their numeric value */
else {
2017-05-19 23:37:19 +02:00
outstp = encode_character(*inwcp, outstp, output_max);
2017-05-19 22:22:40 +02:00
}
}
/* Null terminate the encoded string */
*outstp = '\x0';
encoded_html_string[ output_max - 1] = '\x0';
return encoded_html_string;
}
/* strip > and < from string */
void strip_html_brackets(char *buffer) {
register int x;
register int y;
register int z;
if(buffer == NULL || buffer[0] == '\x0')
return;
2017-05-19 23:37:19 +02:00
/* remove all occurrences in string */
2017-05-19 22:22:40 +02:00
z = (int)strlen(buffer);
for(x = 0, y = 0; x < z; x++) {
if(buffer[x] == '<' || buffer[x] == '>')
continue;
buffer[y++] = buffer[x];
}
buffer[y++] = '\x0';
return;
}
/* escape string for html form usage */
2017-05-19 23:37:19 +02:00
char *escape_string(const char *input) {
2017-05-19 22:22:40 +02:00
int len;
int output_max;
wchar_t wctemp[1];
size_t mbtowc_result;
char mbtemp[ 10];
int wctomb_result;
char *stp;
2017-05-19 23:37:19 +02:00
char temp_expansion[11];
2017-05-19 22:22:40 +02:00
/* If they don't give us anything to do... */
2017-05-19 23:37:19 +02:00
if( NULL == input) {
2017-05-19 22:22:40 +02:00
return "";
}
/* We need up to six times the space to do the conversion */
len = (int)strlen(input);
output_max = len * 6;
2017-05-19 23:37:19 +02:00
if(( stp = encoded_html_string = (char *)malloc(output_max + 1)) == NULL)
2017-05-19 22:22:40 +02:00
return "";
strcpy(encoded_html_string, "");
/* Get the first multibyte character in the input string */
2017-05-19 23:37:19 +02:00
mbtowc_result = mbtowc( wctemp, input, MB_CUR_MAX);
2017-05-19 22:22:40 +02:00
/* Process all characters until a null character is found */
2017-05-19 23:37:19 +02:00
while( 0 != mbtowc_result) { /* 0 indicates a null character was found */
2017-05-19 22:22:40 +02:00
2017-05-19 23:37:19 +02:00
if(( size_t)-2 == mbtowc_result) {
2017-05-19 22:22:40 +02:00
/* No complete multibyte character found - try at next memory
address */
input++;
}
2017-05-19 23:37:19 +02:00
else if((( size_t)-1 == mbtowc_result) && ( EILSEQ == errno)) {
2017-05-19 22:22:40 +02:00
/* Invalid multibyte character found - try at next memory address */
input++;
}
/* Alpha-numeric characters and a few other characters don't get
encoded */
2017-05-19 23:37:19 +02:00
else if(( *wctemp >= '0' && *wctemp <= '9') ||
( *wctemp >= 'A' && *wctemp <= 'Z') ||
( *wctemp >= 'a' && *wctemp <= 'z') ||
' ' == *wctemp || '-' == *wctemp || '.' == *wctemp ||
'_' == *wctemp || ':' == *wctemp) {
wctomb_result = wctomb( mbtemp, wctemp[0]);
if(( wctomb_result > 0) &&
((( stp - encoded_html_string) + wctomb_result) < output_max)) {
strncpy( stp, mbtemp, wctomb_result);
2017-05-19 22:22:40 +02:00
stp += wctomb_result;
}
input += mbtowc_result;
}
/* Encode everything else (this may be excessive) */
else {
2017-05-19 23:37:19 +02:00
sprintf( temp_expansion, "&#%u;", ( unsigned int)wctemp[ 0]);
if((( stp - encoded_html_string) + strlen( temp_expansion)) <
(unsigned int)output_max) {
strncpy( stp, temp_expansion, strlen( temp_expansion));
stp += strlen( temp_expansion);
2017-05-19 22:22:40 +02:00
}
input += mbtowc_result;
}
/* Read the next character */
2017-05-19 23:37:19 +02:00
mbtowc_result = mbtowc( wctemp, input, MB_CUR_MAX);
2017-05-19 22:22:40 +02:00
}
/* Null terminate the encoded string */
*stp = '\x0';
encoded_html_string[ output_max - 1] = '\x0';
return encoded_html_string;
}
/* determines the log file we should use (from current time) */
void get_log_archive_to_use(int archive, char *buffer, int buffer_length) {
struct tm *t;
/* determine the time at which the log was rotated for this archive # */
determine_log_rotation_times(archive);
/* if we're not rotating the logs or if we want the current log, use the main one... */
if(log_rotation_method == LOG_ROTATION_NONE || archive <= 0) {
strncpy(buffer, log_file, buffer_length);
buffer[buffer_length - 1] = '\x0';
return;
}
t = localtime(&this_scheduled_log_rotation);
/* use the time that the log rotation occurred to figure out the name of the log file */
snprintf(buffer, buffer_length, "%snagios-%02d-%02d-%d-%02d.log", log_archive_path, t->tm_mon + 1, t->tm_mday, t->tm_year + 1900, t->tm_hour);
buffer[buffer_length - 1] = '\x0';
return;
}
/* determines log archive to use, given a specific time */
int determine_archive_to_use_from_time(time_t target_time) {
time_t current_time;
int current_archive = 0;
/* if log rotation is disabled, we don't have archives */
if(log_rotation_method == LOG_ROTATION_NONE)
return 0;
/* make sure target time is rational */
current_time = time(NULL);
if(target_time >= current_time)
return 0;
/* backtrack through archives to find the one we need for this time */
/* start with archive of 1, subtract one when we find the right time period to compensate for current (non-rotated) log */
for(current_archive = 1;; current_archive++) {
/* determine time at which the log rotation occurred for this archive number */
determine_log_rotation_times(current_archive);
/* if the target time falls within the times encompassed by this archive, we have the right archive! */
if(target_time >= this_scheduled_log_rotation)
return current_archive - 1;
}
return 0;
}
/* determines the log rotation times - past, present, future */
void determine_log_rotation_times(int archive) {
struct tm *t;
int current_month;
int is_dst_now = FALSE;
time_t current_time;
/* negative archive numbers don't make sense */
/* if archive=0 (current log), this_scheduled_log_rotation time is set to next rotation time */
if(archive < 0)
return;
time(&current_time);
t = localtime(&current_time);
is_dst_now = (t->tm_isdst > 0) ? TRUE : FALSE;
t->tm_min = 0;
t->tm_sec = 0;
switch(log_rotation_method) {
case LOG_ROTATION_HOURLY:
this_scheduled_log_rotation = mktime(t);
this_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - ((archive - 1) * 3600));
last_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - 3600);
break;
case LOG_ROTATION_DAILY:
t->tm_hour = 0;
this_scheduled_log_rotation = mktime(t);
this_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - ((archive - 1) * 86400));
last_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - 86400);
break;
case LOG_ROTATION_WEEKLY:
t->tm_hour = 0;
this_scheduled_log_rotation = mktime(t);
this_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - (86400 * t->tm_wday));
this_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - ((archive - 1) * 604800));
last_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - 604800);
break;
case LOG_ROTATION_MONTHLY:
t = localtime(&current_time);
t->tm_mon++;
t->tm_mday = 1;
t->tm_hour = 0;
t->tm_min = 0;
t->tm_sec = 0;
for(current_month = 0; current_month <= archive; current_month++) {
if(t->tm_mon == 0) {
t->tm_mon = 11;
t->tm_year--;
}
else
t->tm_mon--;
}
last_scheduled_log_rotation = mktime(t);
t = localtime(&current_time);
t->tm_mon++;
t->tm_mday = 1;
t->tm_hour = 0;
t->tm_min = 0;
t->tm_sec = 0;
for(current_month = 0; current_month < archive; current_month++) {
if(t->tm_mon == 0) {
t->tm_mon = 11;
t->tm_year--;
}
else
t->tm_mon--;
}
this_scheduled_log_rotation = mktime(t);
break;
default:
break;
}
/* adjust this rotation time for daylight savings time */
t = localtime(&this_scheduled_log_rotation);
if(t->tm_isdst > 0 && is_dst_now == FALSE)
this_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation - 3600);
else if(t->tm_isdst == 0 && is_dst_now == TRUE)
this_scheduled_log_rotation = (time_t)(this_scheduled_log_rotation + 3600);
/* adjust last rotation time for daylight savings time */
t = localtime(&last_scheduled_log_rotation);
if(t->tm_isdst > 0 && is_dst_now == FALSE)
last_scheduled_log_rotation = (time_t)(last_scheduled_log_rotation - 3600);
else if(t->tm_isdst == 0 && is_dst_now == TRUE)
last_scheduled_log_rotation = (time_t)(last_scheduled_log_rotation + 3600);
return;
}
/**********************************************************
*************** COMMON HTML FUNCTIONS ********************
**********************************************************/
2017-05-19 23:37:19 +02:00
void display_info_table(const char *title, int refresh, authdata *current_authdata) {
2017-05-19 22:22:40 +02:00
time_t current_time;
char date_time[MAX_DATETIME_LENGTH];
int result;
/* read program status */
2017-05-19 23:37:19 +02:00
result = read_all_status_data(status_file, READ_PROGRAM_STATUS);
2017-05-19 22:22:40 +02:00
printf("<TABLE CLASS='infoBox' BORDER=1 CELLSPACING=0 CELLPADDING=0>\n");
printf("<TR><TD CLASS='infoBox'>\n");
printf("<DIV CLASS='infoBoxTitle'>%s</DIV>\n", title);
time(&current_time);
get_time_string(&current_time, date_time, (int)sizeof(date_time), LONG_DATE_TIME);
printf("Last Updated: %s<BR>\n", date_time);
if(refresh == TRUE)
printf("Updated every %d seconds<br>\n", refresh_rate);
2017-05-19 23:37:19 +02:00
printf("Nagios&reg; Core&trade; %s - <A HREF='https://www.nagios.org' TARGET='_new' CLASS='homepageURL'>www.nagios.org</A><BR>\n", PROGRAM_VERSION);
2017-05-19 22:22:40 +02:00
if(current_authdata != NULL)
printf("Logged in as <i>%s</i><BR>\n", (!strcmp(current_authdata->username, "")) ? "?" : current_authdata->username);
if(nagios_process_state != STATE_OK)
printf("<DIV CLASS='infoBoxBadProcStatus'>Warning: Monitoring process may not be running!<BR>Click <A HREF='%s?type=%d'>here</A> for more info.</DIV>", EXTINFO_CGI, DISPLAY_PROCESS_INFO);
if(result == ERROR)
printf("<DIV CLASS='infoBoxBadProcStatus'>Warning: Could not read program status information!</DIV>");
else {
if(enable_notifications == FALSE)
printf("<DIV CLASS='infoBoxBadProcStatus'>- Notifications are disabled</DIV>");
if(execute_service_checks == FALSE)
printf("<DIV CLASS='infoBoxBadProcStatus'>- Service checks are disabled</DIV>");
}
printf("</TD></TR>\n");
printf("</TABLE>\n");
return;
}
void display_nav_table(char *url, int archive) {
char date_time[MAX_DATETIME_LENGTH];
char archive_file[MAX_INPUT_BUFFER];
char *archive_basename;
if(log_rotation_method != LOG_ROTATION_NONE) {
printf("<table border=0 cellspacing=0 cellpadding=0 CLASS='navBox'>\n");
printf("<tr>\n");
printf("<td align=center valign=center CLASS='navBoxItem'>\n");
if(archive == 0) {
printf("Latest Archive<br>");
printf("<a href='%sarchive=1'><img src='%s%s' border=0 alt='Latest Archive' title='Latest Archive'></a>", url, url_images_path, LEFT_ARROW_ICON);
}
else {
printf("Earlier Archive<br>");
printf("<a href='%sarchive=%d'><img src='%s%s' border=0 alt='Earlier Archive' title='Earlier Archive'></a>", url, archive + 1, url_images_path, LEFT_ARROW_ICON);
}
printf("</td>\n");
printf("<td width=15></td>\n");
printf("<td align=center CLASS='navBoxDate'>\n");
printf("<DIV CLASS='navBoxTitle'>Log File Navigation</DIV>\n");
get_time_string(&last_scheduled_log_rotation, date_time, (int)sizeof(date_time), LONG_DATE_TIME);
printf("%s", date_time);
printf("<br>to<br>");
if(archive == 0)
printf("Present..");
else {
get_time_string(&this_scheduled_log_rotation, date_time, (int)sizeof(date_time), LONG_DATE_TIME);
printf("%s", date_time);
}
printf("</td>\n");
printf("<td width=15></td>\n");
if(archive != 0) {
printf("<td align=center valign=center CLASS='navBoxItem'>\n");
if(archive == 1) {
printf("Current Log<br>");
printf("<a href='%s'><img src='%s%s' border=0 alt='Current Log' title='Current Log'></a>", url, url_images_path, RIGHT_ARROW_ICON);
}
else {
printf("More Recent Archive<br>");
printf("<a href='%sarchive=%d'><img src='%s%s' border=0 alt='More Recent Archive' title='More Recent Archive'></a>", url, archive - 1, url_images_path, RIGHT_ARROW_ICON);
}
printf("</td>\n");
}
else
printf("<td><img src='%s%s' border=0 width=75 height=1></td>\n", url_images_path, EMPTY_ICON);
printf("</tr>\n");
printf("</table>\n");
}
/* get archive to use */
get_log_archive_to_use(archive, archive_file, sizeof(archive_file) - 1);
/* cut the pathname for security, and the remaining slash for clarity */
archive_basename = (char *)&archive_file;
if(strrchr((char *)&archive_basename, '/') != NULL)
archive_basename = strrchr((char *)&archive_file, '/') + 1;
/* now it's safe to print the filename */
printf("<BR><DIV CLASS='navBoxFile'>File: %s</DIV>\n", archive_basename);
return;
}
/* prints the additional notes or action url for a hostgroup (with macros substituted) */
void print_extra_hostgroup_url(char *group_name, char *url) {
char input_buffer[MAX_INPUT_BUFFER] = "";
char output_buffer[MAX_INPUT_BUFFER] = "";
char *temp_buffer;
int in_macro = FALSE;
hostgroup *temp_hostgroup = NULL;
if(group_name == NULL || url == NULL)
return;
temp_hostgroup = find_hostgroup(group_name);
if(temp_hostgroup == NULL) {
printf("%s", url);
return;
}
strncpy(input_buffer, url, sizeof(input_buffer) - 1);
input_buffer[sizeof(input_buffer) - 1] = '\x0';
for(temp_buffer = my_strtok(input_buffer, "$"); temp_buffer != NULL; temp_buffer = my_strtok(NULL, "$")) {
if(in_macro == FALSE) {
if(strlen(output_buffer) + strlen(temp_buffer) < sizeof(output_buffer) - 1) {
strncat(output_buffer, temp_buffer, sizeof(output_buffer) - strlen(output_buffer) - 1);
output_buffer[sizeof(output_buffer) - 1] = '\x0';
}
in_macro = TRUE;
}
else {
if(strlen(output_buffer) + strlen(temp_buffer) < sizeof(output_buffer) - 1) {
if(!strcmp(temp_buffer, "HOSTGROUPNAME"))
strncat(output_buffer, url_encode(temp_hostgroup->group_name), sizeof(output_buffer) - strlen(output_buffer) - 1);
}
in_macro = FALSE;
}
}
printf("%s", output_buffer);
return;
}
/* prints the additional notes or action url for a servicegroup (with macros substituted) */
void print_extra_servicegroup_url(char *group_name, char *url) {
char input_buffer[MAX_INPUT_BUFFER] = "";
char output_buffer[MAX_INPUT_BUFFER] = "";
char *temp_buffer;
int in_macro = FALSE;
servicegroup *temp_servicegroup = NULL;
if(group_name == NULL || url == NULL)
return;
temp_servicegroup = find_servicegroup(group_name);
if(temp_servicegroup == NULL) {
printf("%s", url);
return;
}
strncpy(input_buffer, url, sizeof(input_buffer) - 1);
input_buffer[sizeof(input_buffer) - 1] = '\x0';
for(temp_buffer = my_strtok(input_buffer, "$"); temp_buffer != NULL; temp_buffer = my_strtok(NULL, "$")) {
if(in_macro == FALSE) {
if(strlen(output_buffer) + strlen(temp_buffer) < sizeof(output_buffer) - 1) {
strncat(output_buffer, temp_buffer, sizeof(output_buffer) - strlen(output_buffer) - 1);
output_buffer[sizeof(output_buffer) - 1] = '\x0';
}
in_macro = TRUE;
}
else {
if(strlen(output_buffer) + strlen(temp_buffer) < sizeof(output_buffer) - 1) {
if(!strcmp(temp_buffer, "SERVICEGROUPNAME"))
strncat(output_buffer, url_encode(temp_servicegroup->group_name), sizeof(output_buffer) - strlen(output_buffer) - 1);
}
in_macro = FALSE;
}
}
printf("%s", output_buffer);
return;
}
/* include user-defined SSI footers or headers */
2017-05-19 23:37:19 +02:00
void include_ssi_files(const char *cgi_name, int type) {
2017-05-19 22:22:40 +02:00
char common_ssi_file[MAX_INPUT_BUFFER];
char cgi_ssi_file[MAX_INPUT_BUFFER];
char raw_cgi_name[MAX_INPUT_BUFFER];
char *stripped_cgi_name;
/* common header or footer */
snprintf(common_ssi_file, sizeof(common_ssi_file) - 1, "%scommon-%s.ssi", physical_ssi_path, (type == SSI_HEADER) ? "header" : "footer");
common_ssi_file[sizeof(common_ssi_file) - 1] = '\x0';
/* CGI-specific header or footer */
strncpy(raw_cgi_name, cgi_name, sizeof(raw_cgi_name) - 1);
raw_cgi_name[sizeof(raw_cgi_name) - 1] = '\x0';
stripped_cgi_name = strtok(raw_cgi_name, ".");
snprintf(cgi_ssi_file, sizeof(cgi_ssi_file) - 1, "%s%s-%s.ssi", physical_ssi_path, (stripped_cgi_name == NULL) ? "" : stripped_cgi_name, (type == SSI_HEADER) ? "header" : "footer");
cgi_ssi_file[sizeof(cgi_ssi_file) - 1] = '\x0';
if(type == SSI_HEADER) {
2017-05-19 23:37:19 +02:00
printf("\n<!-- Produced by Nagios (https://www.nagios.org). Copyright (c) 1999-2007 Ethan Galstad. -->\n");
2017-05-19 22:22:40 +02:00
include_ssi_file(common_ssi_file);
include_ssi_file(cgi_ssi_file);
}
else {
include_ssi_file(cgi_ssi_file);
include_ssi_file(common_ssi_file);
2017-05-19 23:37:19 +02:00
printf("\n<!-- Produced by Nagios (https://www.nagios.org). Copyright (c) 1999-2007 Ethan Galstad. -->\n");
2017-05-19 22:22:40 +02:00
}
return;
}
/* include user-defined SSI footer or header */
2017-05-19 23:37:19 +02:00
void include_ssi_file(const char *filename) {
2017-05-19 22:22:40 +02:00
char buffer[MAX_INPUT_BUFFER];
FILE *fp;
struct stat stat_result;
int call_return;
/* if file is executable, we want to run it rather than print it */
call_return = stat(filename, &stat_result);
/* file is executable */
if(call_return == 0 && (stat_result.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))) {
/* must flush output stream first so that output
from script shows up in correct place. Other choice
is to open program under pipe and copy the data from
the program to our output stream.
*/
fflush(stdout);
/* ignore return status from system call. */
call_return = system(filename);
return;
}
/* an error occurred trying to stat() the file */
else if(call_return != 0) {
/* Handle error conditions. Assume that standard posix error codes and errno are available. If not, comment this section out. */
switch(errno) {
case ENOTDIR: /* - A component of the path is not a directory. */
case ELOOP: /* Too many symbolic links encountered while traversing the path. */
case EFAULT: /* Bad address. */
case ENOMEM: /* Out of memory (i.e. kernel memory). */
case ENAMETOOLONG: /* File name too long. */
printf("<br /> A stat call returned %d while looking for the file %s.<br />", errno, filename);
return;
case EACCES: /* Permission denied. -- The file should be accessible by nagios. */
printf("<br /> A stat call returned a permissions error(%d) while looking for the file %s.<br />", errno, filename);
return;
case ENOENT: /* A component of the path file_name does not exist, or the path is an empty string. Just return if the file doesn't exist. */
return;
default:
return;
}
}
fp = fopen(filename, "r");
if(fp == NULL)
return;
/* print all lines in the SSI file */
while(fgets(buffer, (int)(sizeof(buffer) - 1), fp) != NULL)
printf("%s", buffer);
fclose(fp);
return;
}
/* displays an error if CGI config file could not be read */
2017-05-19 23:37:19 +02:00
void cgi_config_file_error(const char *config_file) {
2017-05-19 22:22:40 +02:00
printf("<H1>Whoops!</H1>\n");
printf("<P><STRONG><FONT COLOR='RED'>Error: Could not open CGI config file '%s' for reading!</FONT></STRONG></P>\n", config_file);
printf("<P>\n");
printf("Here are some things you should check in order to resolve this error:\n");
printf("</P>\n");
printf("<P>\n");
printf("<OL>\n");
printf("<LI>Make sure you've installed a CGI config file in its proper location. See the error message about for details on where the CGI is expecting to find the configuration file. A sample CGI configuration file (named <b>cgi.cfg</b>) can be found in the <b>sample-config/</b> subdirectory of the Nagios source code distribution.\n");
printf("<LI>Make sure the user your web server is running as has permission to read the CGI config file.\n");
printf("</OL>\n");
printf("</P>\n");
printf("<P>\n");
2017-05-19 23:37:19 +02:00
printf("Make sure you read the documentation on installing and configuring Nagios thoroughly before continuing. If all else fails, try sending a message to one of the mailing lists. More information can be found at <a href='https://www.nagios.org'>https://www.nagios.org</a>.\n");
2017-05-19 22:22:40 +02:00
printf("</P>\n");
return;
}
/* displays an error if main config file could not be read */
2017-05-19 23:37:19 +02:00
void main_config_file_error(const char *config_file) {
2017-05-19 22:22:40 +02:00
printf("<H1>Whoops!</H1>\n");
printf("<P><STRONG><FONT COLOR='RED'>Error: Could not open main config file '%s' for reading!</FONT></STRONG></P>\n", config_file);
printf("<P>\n");
printf("Here are some things you should check in order to resolve this error:\n");
printf("</P>\n");
printf("<P>\n");
printf("<OL>\n");
printf("<LI>Make sure you've installed a main config file in its proper location. See the error message about for details on where the CGI is expecting to find the configuration file. A sample main configuration file (named <b>nagios.cfg</b>) can be found in the <b>sample-config/</b> subdirectory of the Nagios source code distribution.\n");
printf("<LI>Make sure the user your web server is running as has permission to read the main config file.\n");
printf("</OL>\n");
printf("</P>\n");
printf("<P>\n");
2017-05-19 23:37:19 +02:00
printf("Make sure you read the documentation on installing and configuring Nagios thoroughly before continuing. If all else fails, try sending a message to one of the mailing lists. More information can be found at <a href='https://www.nagios.org'>https://www.nagios.org</a>.\n");
2017-05-19 22:22:40 +02:00
printf("</P>\n");
return;
}
/* displays an error if object data could not be read */
void object_data_error(void) {
printf("<H1>Whoops!</H1>\n");
printf("<P><STRONG><FONT COLOR='RED'>Error: Could not read object configuration data!</FONT></STRONG></P>\n");
printf("<P>\n");
printf("Here are some things you should check in order to resolve this error:\n");
printf("</P>\n");
printf("<P>\n");
printf("<OL>\n");
printf("<LI>Verify configuration options using the <b>-v</b> command-line option to check for errors.\n");
printf("<LI>Check the Nagios log file for messages relating to startup or status data errors.\n");
printf("</OL>\n");
printf("</P>\n");
printf("<P>\n");
2017-05-19 23:37:19 +02:00
printf("Make sure you read the documentation on installing, configuring and running Nagios thoroughly before continuing. If all else fails, try sending a message to one of the mailing lists. More information can be found at <a href='https://www.nagios.org'>https://www.nagios.org</a>.\n");
2017-05-19 22:22:40 +02:00
printf("</P>\n");
return;
}
/* displays an error if status data could not be read */
void status_data_error(void) {
printf("<H1>Whoops!</H1>\n");
printf("<P><STRONG><FONT COLOR='RED'>Error: Could not read host and service status information!</FONT></STRONG></P>\n");
printf("<P>\n");
printf("The most common cause of this error message (especially for new users), is the fact that Nagios is not actually running. If Nagios is indeed not running, this is a normal error message. It simply indicates that the CGIs could not obtain the current status of hosts and services that are being monitored. If you've just installed things, make sure you read the documentation on starting Nagios.\n");
printf("</P>\n");
printf("<P>\n");
printf("Some other things you should check in order to resolve this error include:\n");
printf("</P>\n");
printf("<P>\n");
printf("<OL>\n");
printf("<LI>Check the Nagios log file for messages relating to startup or status data errors.\n");
printf("<LI>Always verify configuration options using the <b>-v</b> command-line option before starting or restarting Nagios!\n");
printf("</OL>\n");
printf("</P>\n");
printf("<P>\n");
2017-05-19 23:37:19 +02:00
printf("Make sure you read the documentation on installing, configuring and running Nagios thoroughly before continuing. If all else fails, try sending a message to one of the mailing lists. More information can be found at <a href='https://www.nagios.org'>https://www.nagios.org</a>.\n");
2017-05-19 22:22:40 +02:00
printf("</P>\n");
return;
}
/* displays context-sensitive help window */
2017-05-19 23:37:19 +02:00
void display_context_help(const char *chid) {
const char *icon = CONTEXT_HELP_ICON1;
2017-05-19 22:22:40 +02:00
if(show_context_help == FALSE)
return;
/* change icon if necessary */
if(!strcmp(chid, CONTEXTHELP_TAC))
icon = CONTEXT_HELP_ICON2;
printf("<a href='%s%s.html' target='cshw' onClick='javascript:window.open(\"%s%s.html\",\"cshw\",\"width=550,height=600,toolbar=0,location=0,status=0,resizable=1,scrollbars=1\");return true'><img src='%s%s' border=0 alt='Display context-sensitive help for this screen' title='Display context-sensitive help for this screen'></a>\n", url_context_help_path, chid, url_context_help_path, chid, url_images_path, icon);
return;
}
void display_splunk_host_url(host *hst) {
if(enable_splunk_integration == FALSE)
return;
if(hst == NULL)
return;
printf("<a href='%s?q=search %s' target='_blank'><img src='%s%s' alt='Splunk It' title='Splunk It' border='0'></a>\n", splunk_url, url_encode(hst->name), url_images_path, SPLUNK_SMALL_WHITE_ICON);
return;
}
void display_splunk_service_url(service *svc) {
if(enable_splunk_integration == FALSE)
return;
if(svc == NULL)
return;
printf("<a href='%s?q=search %s%%20", splunk_url, url_encode(svc->host_name));
printf("%s' target='_blank'><img src='%s%s' alt='Splunk It' title='Splunk It' border='0'></a>\n", url_encode(svc->description), url_images_path, SPLUNK_SMALL_WHITE_ICON);
return;
}
void display_splunk_generic_url(char *buf, int icon) {
char *newbuf = NULL;
if(enable_splunk_integration == FALSE)
return;
if(buf == NULL)
return;
if((newbuf = (char *)strdup(buf)) == NULL)
return;
strip_splunk_query_terms(newbuf);
printf("<a href='%s?q=search %s' target='_blank'>", splunk_url, url_encode(newbuf));
if(icon > 0)
printf("<img src='%s%s' alt='Splunk It' title='Splunk It' border='0'>", url_images_path, (icon == 1) ? SPLUNK_SMALL_WHITE_ICON : SPLUNK_SMALL_BLACK_ICON);
printf("</a>\n");
free(newbuf);
return;
}
/* strip quotes and from string */
void strip_splunk_query_terms(char *buffer) {
register int x;
register int y;
register int z;
if(buffer == NULL || buffer[0] == '\x0')
return;
2017-05-19 23:37:19 +02:00
/* remove all occurrences in string */
2017-05-19 22:22:40 +02:00
z = (int)strlen(buffer);
for(x = 0, y = 0; x < z; x++) {
if(buffer[x] == '\'' || buffer[x] == '\"' || buffer[x] == ';' || buffer[x] == ':' || buffer[x] == ',' || buffer[x] == '-' || buffer[x] == '=')
buffer[y++] = ' ';
else
buffer[y++] = buffer[x];
}
buffer[y++] = '\x0';
return;
}