]>
Commit | Line | Data |
---|---|---|
46c01c09 MT |
1 | #!/usr/bin/perl |
2 | # | |
3 | # This code is distributed under the terms of the GPL | |
4 | # | |
4f4092e3 | 5 | # (c) 2006-2009 marco.s - http://update-accelerator.advproxy.net |
46c01c09 | 6 | # |
4f4092e3 CS |
7 | # Portions (c) 2008 by dotzball - http://www.blockouttraffic.de |
8 | # | |
9 | # $Id: updxlrator,v 2.1 2009/01/10 00:00:00 marco.s Exp $ | |
46c01c09 | 10 | # |
4f6b044f JIW |
11 | # ChangeLog: |
12 | # | |
13 | # 2012-10-26: nightshift - move curly bracket to capture AVG download source. | |
14 | # - Adding BIG HINT for new update source# | |
15 | # | |
46c01c09 MT |
16 | |
17 | use strict; | |
0a638396 | 18 | use HTTP::Date; |
46c01c09 MT |
19 | |
20 | $|=1; | |
21 | ||
22 | my $swroot="/var/ipfire"; | |
381f2e71 | 23 | my $updcachedir="/var/updatecache"; |
0a638396 CS |
24 | my $apphome="/var/ipfire/updatexlrator"; |
25 | my $logfile="/var/log/updatexlrator/cache.log"; | |
4f4092e3 | 26 | my $wget="/usr/bin/wget"; |
0a638396 CS |
27 | my $debug=(-e "$apphome/debug"); |
28 | my $http_port='81'; | |
46c01c09 | 29 | my %netsettings=(); |
0a638396 | 30 | my %proxysettings=(); |
46c01c09 | 31 | my %xlratorsettings=(); |
46c01c09 MT |
32 | my $logging=0; |
33 | my $passive_mode=0; | |
34 | my $maxusage=0; | |
35 | my $nice=''; | |
36 | my @tmp=(); | |
46c01c09 | 37 | my $request=''; |
0a638396 CS |
38 | my $xlrator_url=0; |
39 | my $source_url=''; | |
46c01c09 MT |
40 | my $hostaddr=''; |
41 | my $username=''; | |
42 | my $method=''; | |
0a638396 CS |
43 | my $unique = 0; |
44 | my $mirror = 1; | |
46c01c09 MT |
45 | |
46 | readhash("${swroot}/ethernet/settings", \%netsettings); | |
47 | ||
48 | if (-e "$swroot/updatexlrator/settings") | |
49 | { | |
50 | &readhash("$swroot/updatexlrator/settings", \%xlratorsettings); | |
51 | if ($xlratorsettings{'ENABLE_LOG'} eq 'on') { $logging=1; }; | |
52 | if ($xlratorsettings{'PASSIVE_MODE'} eq 'on') { $passive_mode=1; }; | |
53 | $maxusage=$xlratorsettings{'MAX_DISK_USAGE'}; | |
646750c5 | 54 | if ($xlratorsettings{'LOW_DOWNLOAD_PRIORITY'} eq 'on') { $nice='/bin/nice --adjustment=15 '; }; |
46c01c09 MT |
55 | } |
56 | if (!$maxusage) { $maxusage=75; }; | |
57 | ||
4f4092e3 CS |
58 | # dotzball: check for dead downloads |
59 | system("$apphome/bin/checkdeaddl &"); | |
46c01c09 MT |
60 | |
61 | while (<>) { | |
62 | ||
63 | $request=$_; | |
46c01c09 MT |
64 | |
65 | @tmp=split(/ /,$request); | |
66 | chomp(@tmp); | |
67 | ||
0a638396 CS |
68 | $source_url = $tmp[0]; |
69 | $hostaddr = $tmp[1]; while ($hostaddr =~ /.*\/$/) { chop $hostaddr; } | |
70 | $username = $tmp[2]; if ($username eq '') { $username='-'; }; | |
71 | $method = $tmp[3]; | |
72 | ||
9663c20e | 73 | $xlrator_url = ""; |
46c01c09 MT |
74 | |
75 | if (($method eq 'GET') || ($method eq 'HEAD')) | |
76 | { | |
77 | ||
78 | # ----------------------------------------------------------- | |
79 | # Section: Windows Update / Windows Downloads | |
80 | # ----------------------------------------------------------- | |
81 | ||
82 | if ( | |
bc689853 JIW |
83 | (($source_url =~ m@^http://[^/]*\.microsoft\.com/.*\.(exe|psf|msi|msp|msu|cab)$@i) || |
84 | ($source_url =~ m@^http://[^/]*\.windowsupdate\.com/.*\.(exe|psf|msi|msp|msu|cab)$@i)) | |
0a638396 CS |
85 | && ($source_url !~ m@^http://[^/]*\.microsoft\.com/.*(/autoupd|selfupdate/).*\.cab@i) |
86 | && ($source_url !~ m@\&@) | |
46c01c09 MT |
87 | ) |
88 | { | |
329631de JL |
89 | # NOTE: check_cache will change to $mirror instead of $unique if the filename contains an SHA1 hash |
90 | # and the URL is not found in cache! | |
0a638396 | 91 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Microsoft",$unique); |
46c01c09 MT |
92 | } |
93 | ||
94 | # ----------------------------------------------------------- | |
95 | # Section: Adobe Downloads | |
96 | # ----------------------------------------------------------- | |
97 | ||
4f6b044f | 98 | |
0a638396 | 99 | if ( |
01a3c346 MT |
100 | ($source_url =~ m@^http://(ar)?download\.adobe\.com/.*\.(exe|ms[ip]|bin|dmg|idx|gz)$@i) || |
101 | ($source_url =~ m@^http://swupdl\.adobe\.com/updates/.*\.(exe|ms[ip]|bin|dmg|idx|gz|[a-z][a-z]_[A-Z][A-Z])$@i) || | |
0a638396 CS |
102 | ($source_url =~ m@^http://swupmf\.adobe\.com/manifest/.*\.upd$@i) |
103 | ) | |
104 | { | |
105 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Adobe",$unique); | |
106 | } | |
107 | ||
108 | # ----------------------------------------------------------- | |
109 | # Section: Linux Downloads | |
110 | # ----------------------------------------------------------- | |
111 | ||
8dbba0e4 | 112 | if ( |
77fa792f | 113 | ($source_url =~ m@^[h|f]t?tp://[^?]+\.(pkg\.tar\.xz|deb|rpm)$@i) || |
1235b1f1 | 114 | ($source_url =~ m@^[h|f]t?tp://[^?]+/distfiles/[^?]+\.(tar\.gz|tar\.bz2|tar\.xz|tgz|zip|patch\.bz2|gz|docx|patch|pdf|exe)$@i) |
8dbba0e4 | 115 | ) |
46c01c09 | 116 | { |
0a638396 CS |
117 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Linux",$mirror); |
118 | } | |
119 | ||
120 | # ----------------------------------------------------------- | |
121 | # Section: Trend Micro Downloads | |
122 | # ----------------------------------------------------------- | |
123 | ||
124 | if ( | |
125 | ($source_url =~ m@^http://[^/]*\.trendmicro\.com/activeupdate/.*@i) && | |
126 | ($source_url !~ m@.*/tmnotify\.dat$@i) && | |
127 | ($source_url !~ m@.*/ini_xml\.zip$@i) && | |
128 | ($source_url !~ m@.*/server\.ini$@i) | |
129 | ) | |
130 | { | |
131 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"TrendMicro",$mirror); | |
46c01c09 MT |
132 | } |
133 | ||
134 | # ----------------------------------------------------------- | |
135 | # Section: Symantec Downloads | |
136 | # ----------------------------------------------------------- | |
137 | ||
0a638396 | 138 | if ($source_url =~ m@^[h|f]tt?p://[^/]*\.symantec(liveupdate)?\.com/.*\.(exe|zip|vdb|xdb)$@i) |
46c01c09 | 139 | { |
0a638396 | 140 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Symantec",$unique); |
46c01c09 | 141 | } |
0a638396 | 142 | |
5b2a12ff | 143 | # ----------------------------------------------------------- |
0a638396 | 144 | # Section: Apple Downloads |
46c01c09 | 145 | # ----------------------------------------------------------- |
0a638396 CS |
146 | |
147 | if ( | |
4f4092e3 | 148 | (($source_url =~ m@^http://swcdn\.apple\.com/content/downloads/.*\.(tar|pkg)$@i) || |
0a638396 CS |
149 | ($source_url =~ m@^http://appldnld\.apple\.com\.edgesuite\.net/.*\.(exe|dmg)$@i) || |
150 | ($source_url =~ m@^http://.*\.g.akamai.net/.*/3093/1/.*\.(tar|pkg|dmg|exe)$@i)) | |
151 | ) | |
5b2a12ff | 152 | { |
0a638396 | 153 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Apple",$unique); |
5b2a12ff | 154 | } |
0a638396 CS |
155 | |
156 | # ----------------------------------------------------------- | |
157 | # Section: Avast Downloads | |
158 | # ----------------------------------------------------------- | |
159 | ||
5150d373 | 160 | if ($source_url =~ m@^http://(ion|download)[\d]+\.avast\.com/.*\.(exe|vpu|vpx)$@i) |
0a638396 CS |
161 | { |
162 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Avast",$mirror); | |
186e3d2c | 163 | } |
0a638396 | 164 | |
219c963e JIW |
165 | # ----------------------------------------------------------- |
166 | # Section: Mozilla Downloads | |
167 | # ----------------------------------------------------------- | |
168 | ||
169 | if ($source_url=~ m@^http://.*\.mozilla\.net/.*\.((complete|partial)\.mar|exe)$@i) | |
170 | { | |
171 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Mozilla",$unique); | |
172 | } | |
173 | ||
0a638396 | 174 | # ----------------------------------------------------------- |
7b59d838 | 175 | # Section: Mcafee |
0a638396 | 176 | # ----------------------------------------------------------- |
186e3d2c | 177 | |
7b59d838 JIW |
178 | if ($source_url =~ m@^http://update\.nai\.com/.*\.(mcs|z|gem|dat|zip)$@i) |
179 | { | |
180 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"mcafee",$mirror); | |
181 | } | |
186e3d2c | 182 | |
0a638396 CS |
183 | # ----------------------------------------------------------- |
184 | # Section: Avira Downloads | |
185 | # ----------------------------------------------------------- | |
186 | ||
8dbba0e4 CS |
187 | if ( |
188 | ($source_url =~ m@^http://dl[0-9]\.avgate\.net/.*\.(htm|html|gz)$@i) || | |
189 | ($source_url =~ m@^http://80.190.130.19[4-5]/update/.*\.(htm|html|gz)$@i) || | |
190 | ($source_url =~ m@^http://62.146.64.14[6-7]/update/.*\.(htm|html|gz)$@i) | |
191 | ) | |
0a638396 CS |
192 | { |
193 | $xlrator_url = &check_cache($source_url,$hostaddr,$username,"Avira",$mirror); | |
2dfb38e6 | 194 | } |
4ae86474 | 195 | |
0a638396 CS |
196 | # ----------------------------------------------------------- |
197 | # Section: AVG Downloads | |
198 | # ----------------------------------------------------------- | |
46c01c09 | 199 | |
4f4092e3 CS |
200 | # if ($source_url =~ m@^http://[^/]*\.(grisoft|avg)\.com/.*\.(bin)$@i) |
201 | # { | |
202 | # $xlrator_url = &check_cache($source_url,$hostaddr,$username,"AVG",$mirror); | |
203 | # } | |
46c01c09 | 204 | |
4f6b044f JIW |
205 | # ----------- ADD NEW SOURCES BEFORE THIS LINE !!! ------------------ |
206 | } | |
207 | ||
9663c20e MT |
208 | if ($xlrator_url) { |
209 | print "OK rewrite-url=\"$xlrator_url\"\n"; | |
210 | } else { | |
211 | print "ERR\n"; | |
212 | } | |
46c01c09 MT |
213 | } |
214 | ||
215 | # ------------------------------------------------------------------- | |
216 | ||
217 | sub readhash | |
218 | { | |
219 | my $filename = $_[0]; | |
220 | my $hash = $_[1]; | |
221 | my ($var, $val); | |
222 | ||
223 | if (-e $filename) | |
224 | { | |
225 | open(FILE, $filename) or die "Unable to read file $filename"; | |
226 | while (<FILE>) | |
227 | { | |
228 | chop; | |
229 | ($var, $val) = split /=/, $_, 2; | |
230 | if ($var) | |
231 | { | |
232 | $val =~ s/^\'//g; | |
233 | $val =~ s/\'$//g; | |
234 | ||
235 | # Untaint variables read from hash | |
236 | $var =~ /([A-Za-z0-9_-]*)/; $var = $1; | |
237 | $val =~ /([\w\W]*)/; $val = $1; | |
238 | $hash->{$var} = $val; | |
239 | } | |
240 | } | |
241 | close FILE; | |
242 | } | |
243 | } | |
244 | ||
245 | # ------------------------------------------------------------------- | |
246 | ||
247 | sub writelog | |
248 | { | |
0a638396 CS |
249 | if ($logging) |
250 | { | |
251 | open(LOGFILE,">>$logfile"); | |
252 | print LOGFILE time." $_[0] $_[1] $_[2] $_[3] $_[4]\n"; | |
253 | close(LOGFILE); | |
254 | } | |
46c01c09 MT |
255 | } |
256 | ||
257 | # ------------------------------------------------------------------- | |
258 | ||
0a638396 | 259 | sub debuglog |
46c01c09 | 260 | { |
0a638396 | 261 | if ($debug) |
46c01c09 | 262 | { |
0a638396 CS |
263 | open(LOGFILE,">>/var/log/updatexlrator/debug.log"); |
264 | my @now = localtime(time); | |
265 | printf LOGFILE "%04d-%02d-%02d %02d:%02d:%02d [%d] [%s] %s\n",$now[5]+1900,$now[4]+1,$now[3],$now[2],$now[1],$now[0],$$,"updxlrator",$_[0]; | |
266 | close(LOGFILE); | |
46c01c09 | 267 | } |
0a638396 CS |
268 | } |
269 | ||
270 | # ------------------------------------------------------------------- | |
271 | ||
272 | sub setcachestatus | |
273 | { | |
274 | open (FILE,">>$_[0]"); | |
275 | print FILE "$_[1]\n"; | |
276 | close FILE; | |
277 | } | |
278 | ||
279 | # ------------------------------------------------------------------- | |
280 | ||
281 | sub diskfree | |
282 | { | |
283 | open(DF,"/bin/df --block-size=1 $_[0]|"); | |
284 | my @dfdata = <DF>; | |
46c01c09 | 285 | close DF; |
0a638396 CS |
286 | shift(@dfdata); |
287 | chomp(@dfdata); | |
288 | my $dfstr = join(' ',@dfdata); | |
289 | my ($device,$size,$used,$free,$percent,$mount) = split(' ',$dfstr); | |
290 | if ($free =~ m/^(\d+)$/) | |
291 | { | |
292 | return $free; | |
293 | } | |
46c01c09 MT |
294 | } |
295 | ||
296 | # ------------------------------------------------------------------- | |
297 | ||
298 | sub diskusage | |
299 | { | |
300 | open(DF,"/bin/df $_[0]|"); | |
0a638396 CS |
301 | my @dfdata = <DF>; |
302 | close DF; | |
303 | shift(@dfdata); | |
304 | chomp(@dfdata); | |
305 | my $dfstr = join(' ',@dfdata); | |
306 | my ($device,$size,$used,$free,$percent,$mount) = split(' ',$dfstr); | |
307 | if ($percent =~ m/^(\d+)%$/) | |
46c01c09 | 308 | { |
0a638396 CS |
309 | $percent =~ s/%$//; |
310 | return $percent; | |
46c01c09 | 311 | } |
46c01c09 MT |
312 | } |
313 | ||
314 | # ------------------------------------------------------------------- | |
315 | ||
0a638396 | 316 | sub getmtime |
46c01c09 | 317 | { |
0a638396 | 318 | my ($dev,$ino,$mode,$nlink,$uid,$gid,$rdev,$size,$atime,$mtime,$ctime,$blksize,$blocks) = stat($_[0]); |
46c01c09 | 319 | |
0a638396 CS |
320 | return $mtime; |
321 | } | |
46c01c09 | 322 | |
0a638396 | 323 | # ------------------------------------------------------------------- |
46c01c09 | 324 | |
0a638396 CS |
325 | sub check_cache |
326 | { | |
327 | my $updsource="UPDCACHE"; | |
328 | my $updfile=''; | |
329 | my $cacheurl=''; | |
330 | my $vendorid=''; | |
331 | my $uuid=''; | |
332 | my @http_header=(); | |
333 | my $remote_size=0; | |
334 | my $remote_mtime=0; | |
335 | my $login=''; | |
336 | my $useragent="Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)"; | |
337 | ||
338 | my $sourceurl=$_[0]; | |
339 | my $cfmirror=$_[4]; | |
340 | ||
39c0b5b3 | 341 | $sourceurl =~ s@\%2b@+@ig; |
0a638396 | 342 | $sourceurl =~ s@\%2f@/@ig; |
39c0b5b3 | 343 | $sourceurl =~ s@\%7e@~@ig; |
0a638396 CS |
344 | $updfile = substr($sourceurl,rindex($sourceurl,"/")+1); |
345 | $updfile =~ s@\%20@ @ig; | |
346 | ||
347 | if ($cfmirror) | |
46c01c09 | 348 | { |
0a638396 CS |
349 | $uuid = `echo $updfile | md5sum`; |
350 | } else { | |
351 | $uuid = `echo $sourceurl | md5sum`; | |
46c01c09 MT |
352 | } |
353 | ||
0a638396 CS |
354 | $uuid =~ s/[^0-9a-f]//g; |
355 | $uuid =~ s/([a-f\d]{8})([a-f\d]{4})([a-f\d]{4})([a-f\d]{4})([a-f\d]{12})/$1-$2-$3-$4-$5/; | |
356 | ||
357 | $vendorid = $_[3]; | |
358 | $vendorid =~ tr/A-Z/a-z/; | |
359 | ||
360 | &debuglog("Processing URL $sourceurl"); | |
361 | &debuglog("Vendor ID is $vendorid"); | |
362 | &debuglog("UUID is $uuid"); | |
363 | ||
364 | if (($proxysettings{'UPSTREAM_PROXY'}) && ($proxysettings{'UPSTREAM_USER'})) | |
46c01c09 | 365 | { |
0a638396 CS |
366 | $login = "--proxy-user=\"$proxysettings{'UPSTREAM_USER'}\""; |
367 | if ($proxysettings{'UPSTREAM_PASSWORD'}) | |
46c01c09 | 368 | { |
0a638396 | 369 | $login .= " --proxy-password=\"$proxysettings{'UPSTREAM_PASSWORD'}\""; |
46c01c09 MT |
370 | } |
371 | } | |
46c01c09 | 372 | |
0a638396 | 373 | if ($proxysettings{'UPSTREAM_PROXY'}) { &debuglog("Using upstream proxy $proxysettings{'UPSTREAM_PROXY'}"); } |
46c01c09 | 374 | |
0a638396 | 375 | $ENV{'http_proxy'} = $proxysettings{'UPSTREAM_PROXY'}; |
4f4092e3 | 376 | @http_header = `$wget $login --user-agent="$useragent" --spider -S $sourceurl 2>&1`; |
0a638396 | 377 | $ENV{'http_proxy'} = ''; |
46c01c09 | 378 | |
0a638396 | 379 | foreach (@http_header) |
46c01c09 | 380 | { |
0a638396 CS |
381 | chomp; |
382 | if (/^\s*Content-Length:\s/) { $remote_size = $_; $remote_size =~ s/[^0-9]//g; } | |
383 | if (/^\s*Last-Modified:\s/) { $remote_mtime = $_; $remote_mtime =~ s/^\s*Last-Modified:\s//; $remote_mtime = HTTP::Date::str2time($remote_mtime) } | |
46c01c09 MT |
384 | } |
385 | ||
0a638396 CS |
386 | if ( |
387 | (-e "$updcachedir/$vendorid/$uuid/$updfile") && | |
388 | ($remote_size == (-s "$updcachedir/$vendorid/$uuid/$updfile")) && | |
389 | ($remote_mtime == &getmtime("$updcachedir/$vendorid/$uuid/$updfile")) | |
390 | ) | |
46c01c09 | 391 | { |
0a638396 | 392 | &debuglog("File exists in cache and is up to date"); |
e331e22b | 393 | &debuglog("Retrieving file from cache ($updsource) for $hostaddr"); |
0a638396 | 394 | &setcachestatus("$updcachedir/$vendorid/$uuid/access.log",time); |
0a638396 | 395 | $cacheurl="http://$netsettings{'GREEN_ADDRESS'}:$http_port/updatecache/$vendorid/$uuid/$updfile"; |
329631de JL |
396 | } |
397 | elsif ( | |
398 | ($cfmirror == $unique) && | |
399 | ($vendorid == "microsoft") && | |
400 | ($source_url =~ m@.*[0-9a-f]{40}\.[^\.]+@i) | |
401 | ) | |
402 | { | |
403 | # Most Microsoft updates now have an SHA1 hash in the name. These should be treated as unique files. | |
404 | # Since it wasn't found in the URL cache, switch to mirror mode and try again using just the filename. | |
405 | &debuglog("SHA1: $vendorid $uuid not cached. Reprocessing as mirror $sourceurl"); | |
406 | $cacheurl = &check_cache($source_url,$hostaddr,$username,$vendorid,$mirror); | |
46c01c09 MT |
407 | } |
408 | else | |
409 | { | |
0a638396 CS |
410 | if (-e "$updcachedir/$vendorid/$uuid/$updfile") |
411 | { | |
412 | &debuglog("Local filesize: " . (-s "$updcachedir/$vendorid/$uuid/$updfile")); | |
413 | &debuglog("Local timestamp: " . &getmtime("$updcachedir/$vendorid/$uuid/$updfile")); | |
414 | } else { &debuglog("File not found in cache"); } | |
46c01c09 | 415 | $updsource="DLSOURCE"; |
0a638396 CS |
416 | &debuglog("Remote filesize: $remote_size"); |
417 | &debuglog("Remote timestamp: $remote_mtime"); | |
418 | &debuglog("Free disk space: " . &diskfree($updcachedir)); | |
419 | &debuglog("Disk usage: " . &diskusage($updcachedir) . "% (max. $maxusage%)"); | |
420 | if (-e "$updcachedir/download/$vendorid/$updfile") { &debuglog("File download/$vendorid/$updfile exists"); } | |
e331e22b | 421 | &debuglog("Retrieving file from source ($updsource) for $hostaddr"); |
0a638396 | 422 | if ((!$passive_mode) && (&diskusage($updcachedir) <= $maxusage) && ($remote_size <= &diskfree($updcachedir)) && (!-e "$updcachedir/download/$vendorid/$updfile")) |
46c01c09 | 423 | { |
0a638396 CS |
424 | &debuglog("Running command $nice$apphome/bin/download $vendorid $sourceurl $cfmirror &"); |
425 | system("$nice$apphome/bin/download $vendorid $sourceurl $cfmirror &"); | |
46c01c09 | 426 | } |
0a638396 | 427 | $cacheurl=$sourceurl; |
46c01c09 MT |
428 | } |
429 | ||
0a638396 | 430 | &writelog($_[1],$_[2],$_[3],$updsource,$sourceurl); |
46c01c09 | 431 | |
0a638396 | 432 | return $cacheurl; |
46c01c09 MT |
433 | } |
434 | ||
435 | # ------------------------------------------------------------------- |