summaryrefslogtreecommitdiffstats
path: root/modules-available/serversetup-bwlp-ipxe/api.inc.php
blob: 61c664b8d0fb75016e029f8dc8f21ccdc9000461 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
<?php

// Menu mode

$serverIp = Property::getServerIp();

// Check if required arguments are given; if not, spit out according script and chain to self
$uuid = Request::any('uuid', false, 'string');
// Get platform - EFI or PCBIOS
$platform = Request::any('platform', false, 'string');
$manuf = Request::any('manuf', false, 'string');
$product = Request::any('product', false, 'string');
$slxExtensions = Request::any('slx-extensions', false, 'int');

if ($platform === false || ($uuid === false && $product === false) || $slxExtensions === false) {
	// Redirect to self with added parameters
	$url = parse_url($_SERVER['REQUEST_URI']);
	if (isset($_SERVER['SCRIPT_URI']) && preg_match('#^(\w+://[^/]+)#', $_SERVER['SCRIPT_URI'], $out)) {
		$urlbase = $out[1];
	} elseif (isset($_SERVER['REQUEST_SCHEME']) && isset($_SERVER['SERVER_NAME'])) {
		$urlbase = $_SERVER['REQUEST_SCHEME'] . '://' . $_SERVER['SERVER_NAME'];
	} elseif (isset($_SERVER['REQUEST_SCHEME']) && isset($_SERVER['SERVER_ADDR'])) {
		$urlbase = $_SERVER['REQUEST_SCHEME'] . '://' . $_SERVER['SERVER_ADDR'];
	} else {
		$urlbase = 'http://' . $serverIp;
	}
	$urlbase .= $url['path'];
	if (empty($url['query'])) {
		$arr = [];
	} else {
		parse_str($url['query'], $arr);
		foreach ($arr as &$v) {
			$v = urlencode($v);
		}
		unset($v);
	}
	$arr['uuid'] = '${uuid}';
	$arr['mac'] = '${mac}';
	$arr['manuf'] = '${manufacturer:uristring}';
	$arr['product'] = '${product:uristring}';
	$arr['platform'] = '${platform:uristring}';
	$query = '?';
	foreach ($arr as $k => $v) {
		$query .= $k . '=' . $v . '&';
	}
	//$query = substr($query, 0, -1);
	echo <<<HERE
#!ipxe
set slxtest:string something ||
iseq \${slxtest:md5} \${} && set slxext 0 || set slxext 1 ||
clear slxtest ||
set self {$urlbase}{$query}slx-extensions=\${slxext}
:retry
echo Chaining to \${self}
chain -ar \${self} ||
echo Chaining to self failed with \${errno}, retrying in a bit...
sleep 5
goto retry
HERE;
	exit;
}
// ipxe has it lowercase, but we use uppercase
$platform = strtoupper($platform);
if ($platform !== 'PCBIOS' && $platform !== 'EFI') {
	$platform = 'PCBIOS'; // Just hope for the best?
}

$BOOT_METHODS = Localboot::BOOT_METHODS[$platform];

$ip = $_SERVER['REMOTE_ADDR'];
if (substr($ip, 0, 7) === '::ffff:') {
	$ip = substr($ip, 7);
}
$menu = Request::get('menuid', false, 'int');
if ($menu !== false) {
	$menu = new IPxeMenu($menu);
	$initLabel = 'slx_menu';
} else {
	$menu = IPxeMenu::forClient($ip, $uuid);
	$initLabel = 'init';
}
// If this is a menu with a single item, treat a timeout of 0 as "boot immediately" instead of "infinite"
if ($menu->itemCount() === 1 && $menu->timeoutMs() === 0 && ($tmp = $menu->getDefaultScriptLabel()) !== false) {
	$directBoot = "goto $tmp ||";
	$initLabel = 'init';
} else {
	$directBoot = '';
}

// Get preferred localboot method, depending on system model
$localboot = false;
$model = false;
if ($uuid !== false && Module::get('statistics') !== false) {
	// If we have the machine table, we rather try to look up the system model from there, using the UUID
	$row = Database::queryFirst('SELECT systemmodel FROM machine WHERE machineuuid = :uuid', ['uuid' => $uuid]);
	if ($row !== false && !empty($row['systemmodel'])) {
		$model = $row['systemmodel'];
	}
}
if ($model === false) {
	// Otherwise use what iPXE sent us
	function modfilt($str)
	{
		if (empty($str) || preg_match('/product\s+name|be\s+filled|unknown|default\s+string|system\s+model|manufacturer/i', $str))
			return false;
		return trim(preg_replace('/\s+/', ' ', $str));
	}
	$manuf = modfilt($manuf);
	$product = modfilt($product);
	if (!empty($product)) {
		$model = $product;
		if (!empty($manuf)) {
			$model .= " ($manuf)";
		}
	}
}
// Query
if ($model !== false) {
	$e = strtolower($platform); // We made sure $platform is either PCBIOS or EFI, so no injection possible
	$row = Database::queryFirst("SELECT $e AS bootmethod FROM serversetup_localboot WHERE systemmodel = :model LIMIT 1",
		['model' => $model]);
	if ($row !== false) {
		$localboot = $row['bootmethod'];
	}
}
if ($localboot === false || !isset($BOOT_METHODS[$localboot])) {
	$localboot = Localboot::getDefault()[$platform];
	if (!isset($BOOT_METHODS[$localboot])) {
		$localboot = array_keys($BOOT_METHODS)[0];
	}
}
// Convert to actual ipxe code
if (isset($BOOT_METHODS[$localboot])) {
	$localboot = $BOOT_METHODS[$localboot];
} else {
	$localboot = 'prompt Localboot not possible';
}

if ($slxExtensions) {
	$slxConsoleUpdate = '--update';
	$slxPasswordOnly = '--nouser';
} else {
	$slxConsoleUpdate = '';
	$slxPasswordOnly = '';
}

$output = <<<HERE
#!ipxe

goto $initLabel || goto fail ||

# functions

# password check with gotos
# set slx_hash to the expected hash
#     slx_salt to the salt to use
#     slx_pw_ok to the label to jump on success
#     slx_pw_fail to label for wrong pw
:slx_pass_check
login $slxPasswordOnly ||
set slxtmp_pw \${password:md5}-\${slx_salt} || goto fail
set slxtmp_pw \${slxtmp_pw:md5} || goto fail
clear password ||
iseq \${slxtmp_pw} \${slx_hash} || prompt Wrong password. Press a key. ||
iseq \${slxtmp_pw} \${slx_hash} || goto \${slx_pw_fail} ||
iseq \${slxtmp_pw} \${slx_hash} && goto \${slx_pw_ok} ||
goto fail

:slx_localboot
imgfree ||
console ||
$localboot || goto fail

# start
:init

set ipappend1 ip=\${ip}:{$serverIp}:\${gateway}:\${netmask}
set ipappend2 BOOTIF=01-\${mac:hexhyp}
set serverip $serverIp ||

# Clean up in case we've been chained to
imgfree ||

$directBoot

imgfetch --name bg-menu /tftp/pxe-menu.png ||

:start

console --left 55 --top 88 --right 63 --bottom 64 --keep --picture bg-menu ||

colour --rgb 0xffffff 7
colour --rgb 0xcccccc 5
cpair --foreground 0 --background 4 1
cpair --foreground 7 --background 5 2
cpair --foreground 7 --background 9 0

:slx_menu

iseq \${serverip} \${} || goto ip_check_ok
goto init
:ip_check_ok

console --left 55 --top 88 --right 63 --bottom 64 $slxConsoleUpdate --keep --picture bg-menu ||

HERE;

$output .= $menu->getMenuDefinition('target', $platform, $slxExtensions);

$output .= <<<HERE

console --left 60 --top 130 --right 67 --bottom 86 $slxConsoleUpdate ||
goto \${target} ||
echo Could not find menu entry in script.
prompt Press any key to continue.
goto start

HERE;

$output .= $menu->getItemsCode($platform);

/*

:i5
chain -a /tftp/memtest.0 passes=1 onepass || goto membad
prompt Memory OK. Press a key.
goto init

:i8
set x:int32 0
:again
console --left 60 --top 130 --right 67 --bottom 96 --picture bg-load --keep ||
console --left 55 --top 88 --right 63 --bottom 64 --picture bg-menu --keep ||
inc x
iseq \${x} 20 || goto again
prompt DONE. Press dein Knie.
goto slx_menu

:membad
iseq \${errno} 0x1 || goto memaborted
params
param scrot \${vram}
imgfetch -a http://132.230.8.113/screen.php##params ||
prompt Memory is bad. Press a key.
goto init

:memaborted
params
param scrot \${vram}
imgfetch -a http://132.230.8.113/screen.php##params ||
prompt Memory test aborted. Press a key.
goto init

*/

$output .= <<<HERE
:fail
prompt Boot failed. Press any key to start.
goto init
HERE;

if ($platform === 'EFI') {
	$cs = 'ASCII';
} else {
	$cs = 'IBM437';
}
Header('Content-Type: text/plain; charset=' . $cs);

echo iconv('UTF-8', $cs . '//TRANSLIT//IGNORE', $output);