~azzar1/unity/add-show-desktop-key

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
# IVLE
# Copyright (C) 2007-2008 The University of Melbourne
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA

# App: consoleservice
# Author: Matt Giuca, Tom Conway
# Date: 14/1/2008

import cStringIO
import md5
import os
import random
import socket
import sys
import uuid

import cjson

from common import (util, studpath, chat)
import conf

trampoline_path = os.path.join(conf.ivle_install_dir, "bin/trampoline")
python_path = "/usr/bin/python"                     # Within jail
console_dir = "/opt/ivle/scripts"                   # Within jail
console_path = "/opt/ivle/scripts/python-console"   # Within jail

def handle(req):
    """Handler for the Console Service AJAX backend application."""
    if len(req.path) > 0 and req.path[-1] == os.sep:
        path = req.path[:-1]
    else:
        path = req.path
    # The path determines which "command" we are receiving
    if req.path == "start":
        handle_start(req)
    elif req.path == "interrupt":
        handle_chat(req, kind='interrupt')
    elif req.path == "chat":
        handle_chat(req)
    elif req.path == "block":
        handle_chat(req, kind="block")
    else:
        req.throw_error(req.HTTP_BAD_REQUEST)

def handle_start(req):
    jail_path = os.path.join(conf.jail_base, req.user.login)
    working_dir = os.path.join("/home", req.user.login)   # Within jail

    # Get the UID of the logged-in user
    uid = req.user.unixid

    # Set request attributes
    req.content_type = "text/plain"
    req.write_html_head_foot = False

    # TODO: Figure out the host name the console server is running on.
    host = socket.gethostname()

    # Create magic
    # TODO
    magic = md5.new(uuid.uuid4().bytes).digest().encode('hex')

    # Try to find a free port on the server.
    # Just try some random ports in the range [3000,8000)
    # until we either succeed, or give up. If you think this
    # sounds risky, it isn't:
    # For N ports (e.g. 5000) with k (e.g. 100) in use, the
    # probability of failing to find a free port in t (e.g. 5) tries
    # is (k / N) ** t (e.g. 3.2*10e-9).

    tries = 0
    while tries < 5:
        port = int(random.uniform(3000, 8000))

        # Start the console server (port, magic)
        # trampoline usage: tramp uid jail_dir working_dir script_path args
        # console usage:    python-console port magic
        cmd = ' '.join([trampoline_path, str(uid), jail_path,
                            console_dir, python_path, console_path,
                            str(port), str(magic), working_dir])

        res = os.system(cmd)

        if res == 0:
            # success
            break;

        tries += 1

    if tries == 5:
        raise Exception, "unable to find a free port!"

    # Assemble the key and return it.
    key = cjson.encode({"host": host, "port": port, "magic": magic})
    req.write(cjson.encode(key.encode("hex")))

def handle_chat(req, kind = "chat"):
    # The request *should* have the following four fields:
    # host, port, magic: Host and port where the console server lives,
    # and the secret to use to digitally sign the communication with the
    # console server.
    # text: Fields to pass along to the console server
    # It simply acts as a proxy to the console server
    if req.method != "POST":
        req.throw_error(req.HTTP_BAD_REQUEST)
    fields = req.get_fieldstorage()
    try:
        key = cjson.decode(fields.getfirst("key").value.decode("hex"))
        host = key['host']
        port = key['port']
        magic = key['magic']
    except AttributeError:
        # Any of the getfirsts returned None
        req.throw_error(req.HTTP_BAD_REQUEST)
    # If text is None, it was probably just an empty line
    try:
        text = fields.getfirst("text").value
    except AttributeError:
        text = ""

    msg = {'cmd':kind, 'text':text}
    response = chat.chat(host, port, msg, magic, decode = False)
    req.content_type = "text/plain"
    req.write(response)