File Coverage

blib/lib/CGI/AuthRegister.pm

Criterion	Covered	Total	%
statement	18	504	3.5
branch	0	202	0.0
condition	0	39	0.0
subroutine	6	40	15.0
pod	2	33	6.0
total	26	818	3.1

line

stmt

bran

cond

sub

pod

time

code

# file: AuthRegister.pm

# CGI::AuthRegister - Simple CGI Authentication and Registration in Perl

# $Date: $

# $Id: $

package CGI::AuthRegister;

5558

use strict;

use vars qw($NAME $ABSTRACT $VERSION);

$NAME = 'AuthRegister';

$ABSTRACT = 'Simple CGI Authentication and Registration in Perl';

$VERSION = '1.0';

807169

use CGI qw(:standard);

29679

# Useful diagnostics:

# use CGI qw(:standard :Carp -debug);

# use CGI::Carp 'fatalsToBrowser';

# use diagnostics; # verbose error messages

# use strict; # check for mistakes

5172

use Carp;

115

require Exporter;

use vars qw(@ISA @EXPORT);

107

@ISA = qw(Exporter);

@EXPORT = qw($Error $SessionId $SiteId $SiteName $User

$UserEmail $SendLogs $LogReport

analyze_cookie header_delete_cookie header_session_cookie

import_dir_and_config login logout

require_https require_login send_email_reminder

get_user get_user_by_userid set_new_session store_log

);

8529

use vars qw($Email_from $Email_bcc $Error $ErrorInternal $LogReport $Sendmail

$Session $SessionId $SiteId $SiteName $Ticket $User $UserEmail $SendLogs);

# $Error = ''; # Appended error messages, OK to be sent to user

# $ErrorInternal = ''; # Appended internal error messages, intended

# for administrator

# $LogReport = ''; # Collecting some important log events if needed

# $Session = ''; # Session data structure

# $SessionId = ''; # Session identifier, generated

$SiteId = 'Site'; # Site identifier, used in cookies and emails

$SiteName = 'Site'; # Site name, can include spaces

# $Ticket = ''; # Session ticket for security, generated

# $User = ''; # User data structure

# $UserEmail = ''; # User email address

# $SendLogs = ''; # If true, send logs by email to admin ($Email_bcc)

$Email_from = ''; # Example: $SiteId.' ';

$Email_bcc = ''; # Example: $SiteId.' Bcc ';

$Sendmail = "/usr/lib/sendmail"; # Sendmail with full path

# Functions

sub putfile($@);

########################################################################

# Configuration

# sets site id as the base directory name; imports configuration.pl if exists

sub import_dir_and_config {

my $base = `pwd`; $base =~ /\/([^\/]*)$/; $base = $1; $base =~ s/\s+$//;

$SiteId = $SiteName = $base;

if (-r 'configuration.pl') { package main; require 'configuration.pl'; }

}

########################################################################

# HTTPS Connection and Cookies Management

# Check that the connection is HTTPS and if not, redirect to HTTPS.

# It must be done before script produces any output.

sub require_https {

if ($ENV{'HTTPS'} ne 'on') {

print "Status: 301 Moved Permanently\nLocation: https://$ENV{SERVER_NAME}$ENV{SCRIPT_NAME}\n\n";

exit 0;

}

# If not logged in, ask for userid/email and password. Catches ?logout

# request as well. Allows parentheses in userid/email for login, which are

# removed. This allows users to use auxiliary comments with userid, so that

# browser can distinguish passwords.

sub require_login {

my $title = "Login Page for Site: $SiteId";

my $HTMLstart = "$title

$title

\n";

my $Formstart = "

my $Back = "Click here for the main page.\n";

my $LoginForm = "

Please log in to access the site:
\n".$Formstart.

"\n\n".

Userid or email:	".
92		textfield(-name=>"userid")."
".
93		"Password:	".password_field(-name=>"password")."
94		'
	'.
95		"

\n";

my $SendResetForm = "

If you forgot your password, it may be possible to ".

"retrieve it by email:
\n".$Formstart."Email: ".

textfield(-name=>"email_pw_send")."\n".

''.

100

"\n".

101

"Or, you can reqest password to be reset and sent to you:
\n".

102

$Formstart."Email: ".textfield(-name=>"email_reset")."\n".

103

''.

104

"\n";

105

106

&analyze_cookie;

107

if ($SessionId ne '' && param('keywords') eq 'logout') {

108

logout(); print header_delete_cookie(), $HTMLstart,

109

You are logged out.\n", $LoginForm, $SendResetForm; exit; }

110

111

if ($SessionId ne '') { print header(); return 1; }

112

113

my $Request_type = param('request_type');

114

115

if ($Request_type eq 'Login') {

116

my $email = param('userid'); my $password = param('password');

117

$email =~ s/$.*$//g; $email =~ s/\s+$//; $email =~ s/^\s+//;

118

119

if (! &login($email, $password) ) { # checks for userid and email

120

print header(), $HTMLstart, "Unsuccessful login!\n";

121

print $LoginForm, $SendResetForm; exit;

122

}

123

else { print header_session_cookie(); return 1; }

124

}

125

elsif ($Request_type eq 'Send_Password') {

126

&send_email_reminder(param('email_pw_send'), 'raw');

127

print header(), $HTMLstart, "You should receive password reminder if ".

128

"your email is registered at this site.\n".

129

"If you do not receive remider, you can contact the administrator.\n",

130

$LoginForm, $SendResetForm;

131

$LogReport.=$Error; &store_log;

132

exit;

133

}

134

elsif ($Request_type eq 'Reset_Password') {

135

&reset_and_send_email_reminder(param('email_reset'), 'raw');

136

print header(), $HTMLstart, "You should receive new password if ".

137

"your email is registered at this site.\n".

138

"If you do not receive remider, you can contact the administrator.\n",

139

$LoginForm, $SendResetForm; exit;

140

}

141

else { # should be: $Request_type eq ''

142

print header(), $HTMLstart, $LoginForm, $SendResetForm; exit; }

143

144

die; # Not supposed to be reached

145

}

146

147

# Requires session (i.e., to be logged in). Otherwise, makes redirection.

148

sub require_session {

149

my %args=@_; my $defaultcgi = 'index.cgi';

150

if (exists($args{-redirect}) && $args{-redirect} ne '' &&

151

$args{-redirect} ne $ENV{SCRIPT_NAME})

152

{ $defaultcgi = $args{-redirect} }

153

if (exists($args{-back}) && $args{-back}) {

154

$defaultcgi.="?goto=$args{-back}";

155

}

156

&analyze_cookie;

157

if ($SessionId eq '') {

158

if ($ENV{SCRIPT_NAME} eq $defaultcgi) {

159

print CGI::header(), CGI::start_html, CGI::h1("147-ERR:Login required");

160

exit; }

161

print CGI::redirect(-uri=>$defaultcgi); exit;

162

}

163

}

164

165

# Prepare HTTP header. If SessionId is not empty, generate cookie with

166

# the sessionid and ticket.

167

sub header_session_cookie {

168

my %args=@_; my $redirect=$args{-redirect};

169

if ($redirect ne '') {

170

if ($SessionId eq '') { return redirect(-uri=>$redirect) }

171

else {

172

return redirect(-uri=>$redirect,-cookie=>

173

cookie(-name=>$SiteId,

174

-value=>"$SessionId $Ticket"));

175

}

176

} else {

177

if ($SessionId eq '') { return header } else

178

{ return header(-cookie=>cookie(-name=>$SiteId,

179

-value=>"$SessionId $Ticket")) }

180

}

181

}

182

183

# Delete cookie after logging out. Return string.

184

sub header_delete_cookie {

185

return header(-cookie=>cookie(-name=>$SiteId, -value=>'', -expires=>"now")) }

186

187

# Analyze cookie to detect session, and check the ticket as well. It

188

# should be called at the beginning of a script. $SessionId and

189

# $Ticket are set to empty string if not successful. The information

190

# about the session is stored in db/sessions.d/$SessionId/session.info

191

# file. The structures $Session and $User are set if successful.

192

sub analyze_cookie {

193

my $c = cookie(-name=>$SiteId); # sessionid and ticket

194

if ($c eq '') { $SessionId = $Ticket = ''; return; }

195

($SessionId, $Ticket) = split(/\s+/, $c);

196

if ($SessionId !~ /^[\w.:-]+$/ or $Ticket !~ /^\w+$/)

197

{ $User = $SessionId = $Ticket = ''; return; }

198

199

# check validity of session and set user variables

200

my $sessioninfofile = "db/sessions.d/$SessionId/session.info";

201

if (!-f $sessioninfofile) { $SessionId = $Ticket = ''; return; }

202

my $se = &read_db_record("file=$sessioninfofile");

203

if (!ref($se) or $Ticket ne $se->{'Ticket'})

204

{ $User = $SessionId = $Ticket = ''; return; }

205

$Session = $se;

206

$UserEmail = $se->{email};

207

$User = &get_user_by_email($UserEmail);

208

if ($Error ne '') { $User = $SessionId = $Ticket = ''; return; }

209

}

210

211

########################################################################

212

# Session Management

213

214

# params: $email, opt: pwstore type: md5 raw

215

sub reset_password {

216

my $email = shift; my $pwstore = shift; $pwstore = 'md5' if $pwstore eq '';

217

my $password = &random_password(6);

218

if (!-f 'db/passwords') {

219

putfile 'db/passwords', ''; chmod 0600, 'db/passwords' }

220

if (!&lock_mkdir('db/passwords')) { $Error.="95-ERR:\n"; return ''; }

221

local *PH; open(PH,"db/passwords") or croak($!);

222

my $content = '';

223

while () {

224

my ($e,$p) = split;

225

$content .= $_ if $e ne $email;

226

}

227

close(PH);

228

$content .= "$email ";

229

if ($pwstore eq 'raw') { $content.="raw:$password" }

230

elsif($pwstore eq 'md5') { $content.="md5:".md5_base64($password) }

231

#else { $content.="md5:".md5_base64($password) }

232

else { $content.="raw:$password" }

233

$content .= "\n";

234

putfile 'db/passwords', $content; chmod 0600, 'db/passwords';

235

&unlock_mkdir('db/passwords');

236

return $password;

237

}

238

239

sub md5_base64 {

240

my $arg=shift; require Digest::MD5; return Digest::MD5::md5_base64($arg); }

241

242

sub random_password {

243

my $n = shift; $n = 8 unless $n > 0;

244

my @chars = (2..9, 'a'..'k', 'm'..'z', 'A'..'N', 'P'..'Z',

245

qw(, . / ? ; : - = + ! @ $ % *) );

246

return join('', map { $chars[rand($#chars+1)] } (1..$n));

247

}

248

249

# removes session file and return the appropriate HTTP header

250

sub logout {

251

if ($Session eq '') { $Error.= "217-ERR: No session to log out\n"; return; }

252

if (!-d "db/sessions.d/$SessionId") { $Error.="218-ERR: No session dir\n" }

253

else {

254

unlink(); rmdir("db/sessions.d/$SessionId"); }

255

$LogReport.=$Error."User $UserEmail logged out."; &store_log;

256

$Session = $SessionId = $Ticket = '';

257

return 1;

258

}

259

260

# The first parameter can be an userid and email. (diff by @)

261

sub login {

262

my $email = shift; my $password = shift;

263

$email = lc $email; my $userid;

264

if ($email !~ /@/) { $userid=$email; $email=''; }

265

if ($email ne '') {

266

if (!&emailcheckok($email)) {

267

$Error.="242-ERR:Incorrect email address format"; return; }

268

#my $u = &get_user_by_email($email);

269

my $u = &get_user_unique('email', $email);

270

if ($u eq '') { $Error.='245-ERR:Email not registered'; return; }

271

$userid = $u->{userid};

272

$User = $u;

273

} else {

274

if ($userid eq '') { $Error.="249-ERR:Empty userid"; return; }

275

#my $u = &get_user_by_userid($userid);

276

my $u = &get_user_unique('userid', $userid);

277

if ($u eq '') { $Error.='252-ERR:Not exist-unique'; return; }

278

$email = $u->{email};

279

$User = $u;

280

}

281

282

if (!password_check($User, $password)) {

283

$Error.="258:Invalid password\n"; return ''; }

284

285

&set_new_session($User);

286

$LogReport.="User $UserEmail logged in.\n"; &store_log;

287

return 1;

288

}

289

290

sub set_new_session {

291

my $u = shift; my $email = $u->{email};

292

mkdir('db', 0700) or croak unless -d 'db';

293

mkdir('db/sessions.d', 0700) or croak unless -d 'db/sessions.d';

294

295

my $sessionid = $email."______"; $sessionid =~ /.*?(\w).*?(\w).*?(\w).*?(\w).*?(\w).*?(\w)/;

296

$sessionid = $1.$2.$3.$4.$5; $^T =~ /\d{6}$/; $sessionid.= "_$&";

297

if (! mkdir("db/sessions.d/$sessionid", 0700)) {

298

my $cnt=1; for(;$cnt<100 and !mkdir("db/sessions.d/${sessionid}_$cnt", 0700); ++$cnt) {}

299

croak "Cannot create sessions!" if $cnt == 100;

300

$sessionid = "${sessionid}_$cnt";

301

}

302

$SessionId = $sessionid; $Ticket = &random_name;

303

putfile("db/sessions.d/$SessionId/session.info",

304

"SessionId:$SessionId\nTicket:$Ticket\nemail:$email\n");

305

$UserEmail = $email;

306

return $SessionId;

307

}

308

309

# Return 1 if OK, '' otherwise

310

sub password_check {

311

my $u = shift; my $password = shift; my $pwstored = &find_password($u->{email});

312

if ($pwstored =~ /^raw:/) {

313

$pwstored=$'; return ( ($pwstored eq $password) ? 1 : '' ); }

314

if ($pwstored =~ /^md5:/) {

315

$pwstored=$'; return ( ($pwstored eq md5_base64($password)) ? 1 : ''); }

316

$Error.="316-ERR:PWCheck error($pwstored)\n"; $ErrorInternal="AuthRegister:$Error"; return '';

317

}

318

319

sub find_password {

320

my $email = shift; my $pwfile = "db/passwords";

321

$email = lc $email;

322

if (!-f $pwfile) { putfile $pwfile, ''; chmod 0600, $pwfile }

323

if (!&lock_mkdir($pwfile)) { $Error.="309-ERR:\n"; return ''; }

324

local *PH; if (!open(PH,$pwfile)) {

325

&unlock_mkdir($pwfile);

326

$Error.="312-ERR: Cannot open ($pwfile):$!\n"; return ''; }

327

while () {

328

my ($e,$p) = split; $e = lc $e;

329

if ($e eq $email) { close(PH); &unlock_mkdir($pwfile); return $p; }

330

}

331

$Error.="NOTFOUND($email)";

332

close(PH); &unlock_mkdir($pwfile); return '';

333

}

334

335

sub random_name {

336

my $n = shift; $n = 8 unless $n > 0;

337

my @chars = (0..9, 'a'..'z', 'A'..'Z');

338

return join('', map { $chars[rand($#chars+1)] } (1..$n));

339

}

340

341

sub store_log {

342

if($#_>=-1) { $LogReport.=$_[0] }

343

return if $LogReport eq '';

344

if ($SendLogs) { &send_email_to_admin('Log entry', $LogReport) }

345

$LogReport = '';

346

}

347

348

########################################################################

349

# Email communication

350

351

# params: $email, opt: 'raw' or 'md5' to generate passord

352

sub reset_and_send_email_reminder {

353

my $email = shift; my $pwstore = shift;

354

$email=lc $email; $email =~ s/\s/ /g;

355

if ($email eq '') {

356

$Error.="328-ERR:No e-mail provided to send password\n"; return; }

357

if (!emailcheckok($email)) {

358

$Error.="330-ERR:Invalid e-mail address provided($email)\n"; return; }

359

my $user = get_user_unique('email',$email);

360

if ($user eq '') {

361

$Error.="333-ERR: No user with email ($email)\n"; return; }

362

my $pw = &reset_password($email, $pwstore);

363

&send_email_reminder1($email, $pw);

364

return 1;

365

}

366

367

# params: $email, opt: 'raw' or 'md5' to generate new password if not found

368

sub send_email_reminder {

369

my $email = shift; my $pwstore = shift;

370

$email=lc $email; $email =~ s/\s/ /g;

371

if ($email eq '') {

372

$Error.="356-ERR:No e-mail provided to send password\n"; return; }

373

if (!emailcheckok($email)) {

374

$Error.="358-ERR:Invalid e-mail address provided($email)\n"; return; }

375

my $user = get_user_by_email($email);

376

if ($user eq '') {

377

$Error.="361-ERR: No user with email ($email)\n"; return; }

378

my $pw = find_password($email);

379

if ($pw =~ /^raw:/) { $pw = $' }

380

elsif ($pw ne '') { $Error.="364-ERR:Cannot retrieve password\n"; return; }

381

else { $pw = &reset_password($email, $pwstore) }

382

383

&send_email_reminder1($email, $pw);

384

return 1;

385

}

386

387

sub send_email_reminder1 {

388

my $email = shift; my $pw = shift;

389

my $httpslogin = "https://$ENV{SERVER_NAME}$ENV{SCRIPT_NAME}";

390

391

my $msg = "Hi,\n\nYour email and password for the $SiteId site is:\n\n".

392

"Email: $email\nPassword: $pw\n\n".

393

"You can log in at:\n\n$httpslogin\n\n\n".

394

# "$HttpsBaseLink/login.cgi\n\n\n".

395

"Best regards,\n$SiteId Admin\n";

396

&send_email_to($email, "Subject: $SiteId Password Reminder", $msg);

397

}

398

399

sub send_email_to_admin {

400

my $subject = shift; my $msg1 = shift;

401

$subject =~ s/\s+/ /g;

402

$subject = "Subject: [$SiteId System Report] $subject";

403

return if $Email_bcc eq '';

404

my $msg = '';

405

$msg.="From: $Email_from\n" unless $Email_from eq '';

406

$msg.="To: $Email_bcc\n";

407

$msg.="$subject\n\n$msg1";

408

&_send_email($msg);

409

}

410

411

sub send_email_to {

412

my $email = shift; croak unless &emailcheckok($email);

413

my $subject = shift; $subject =~ s/[\n\r]/ /g;

414

if ($subject !~ /^Subject: /) { $subject = "Subject: $subject" }

415

my $msg1 = shift;

416

417

my $msg = '';

418

$msg.="From: $Email_from\n" unless $Email_from eq '';

419

$msg.="To: $email\n";

420

$msg.="Bcc: $Email_bcc\n" unless $Email_bcc eq '';

421

$msg.="$subject\n\n$msg1";

422

&_send_email($msg);

423

}

424

425

sub _send_email {

426

my $fullmessage = shift;

427

if (! -x $Sendmail) {

428

$Error.="390-ERR:No sendmail ($Sendmail)\n"; return ''; }

429

local *S;

430

if (!open(S,"|$Sendmail -ti")) {

431

$Error.="393-ERR:Cannot run sendmail:$!\n"; return ''; }

432

print S $fullmessage; close(S);

433

}

434

435

########################################################################

436

# Data checks

437

438

sub emailcheckok {

439

my $email = shift;

440

if ($email =~ /^[a-zA-Z][\w\.+-]*[a-zA-Z0-9+-]@

441

[a-zA-Z0-9][\w\.-]*[a-zA-Z0-9]\.[a-zA-Z][a-zA-Z\.]*[a-zA-Z]$/x)

442

{ return 1 }

443

return '';

444

}

445

446

sub useridcheckok {

447

my $userid = shift; return 1 if $userid=~/^[a-zA-Z0-9-]+$/; return ''; }

448

449

# DB related functions

450

451

# Uses file db/users.db. Empty string returned if unsuccessful, with

452

# error message appended to $Error.

453

sub get_user_by_email {

454

my $email = shift;

455

if (!-f 'db/users.db')

456

{ $Error.= "454-ERR: no file db/users.db\n"; return; }

457

my @db = @{ &read_db('file=db/users.db') };

458

for my $r (@db) { if (lc($email) eq lc($r->{email})) { return $User=$r } }

459

$Error.="457-ERR: no user with email ($email)\n"; return $User='';

460

}

461

462

sub get_user_by_userid {

463

my $userid = shift;

464

if (!-f 'db/users.db')

465

{ $Error.= "463-ERR: no file db/users.db\n"; return; }

466

my @db = @{ &read_db('file=db/users.db') };

467

for my $r (@db) { if ($userid eq $r->{userid}) { return $User=$r } }

468

$Error.="466-ERR: no user with userid ($userid)."; return $User='';

469

}

470

471

sub get_user {

472

my $k = shift; my $v = shift;

473

if (!-f 'db/users.db')

474

{ $Error.= "472-ERR: no file db/users.db\n"; return; }

475

my @db = @{ &read_db('file=db/users.db') };

476

for my $r (@db)

477

{ if (exists($r->{$k}) && $v eq $r->{$k}) { return $User=$r } }

478

$Error.="476-ERR: no user with key=($k) v=($v)."; return $User='';

479

}

480

481

# Get user by a key,value, but make sure there is exactly one such user

482

# Normalizes whitespace and case insensitive

483

sub get_user_unique {

484

my $k = shift; my $v = shift;

485

if (!-f 'db/users.db')

486

{ $Error.= "455-ERR: no file db/users.db\n"; return ''; }

487

my @db = @{ &read_db('file=db/users.db') };

488

$v=~s/^\s+//; $v=~s/\s+$//; $v=~s/\s+/ /g; $v = lc $v;

489

if ($k eq '' or $v eq '')

490

{ $Error.="461-ERR:Empty k or v ($k:$v)\n"; return ''; }

491

my $u = '';

492

for my $r (@db) {

493

next unless exists($r->{$k}); my $v1 = $r->{$k};

494

$v1=~s/^\s+//; $v1=~s/\s+$//; $v1=~s/\s+/ /g; $v1 = lc $v1;

495

next unless $v eq $v1;

496

if ($u eq '') { $u = $r; next; }

497

$Error.= "467-ERR: double user key ($k:$v)\n"; return '';

498

}

499

return $User=$u unless $u eq '';

500

$Error.="470-ERR: no user with key ($k:$v)\n"; return '';

501

}

502

503

# Read DB records in the RFC822-like style (to add reference).

504

sub read_db {

505

my $arg = shift;

506

if ($arg =~ /^file=/) {

507

my $f = $'; if (!&lock_mkdir($f)) { return '' }

508

local *F; open(F, $f) or die "cannot open $f:$!";

509

$arg = join('', ); close(F); &unlock_mkdir($f);

510

}

511

512

my $db = [];

513

while ($arg) {

514

$arg =~ s/^\s*(#.*\s*)*//; # allow comments betwen records

515

my $record;

516

if ($arg =~ /\n\n+/) { $record = "$`\n"; $arg = $'; }

517

else { $record = $arg; $arg = ''; }

518

my $r = {};

519

while ($record) {

520

while ($record =~ /^(.*)(\\\n|\n[ \t]+)(.*)/)

521

{ $record = "$1 $3$'" }

522

$record =~ /^([^\n:]*):(.*)\n/ or die;

523

my $k = $1; my $v = $2; $record = $';

524

if (exists($r->{$k})) {

525

my $c = 0;

526

while (exists($r->{"$k-$c"})) { ++$c }

527

$k = "$k-$c";

528

}

529

$r->{$k} = $v;

530

}

531

push @{ $db }, $r;

532

}

533

return $db;

534

}

535

536

# Read one DB record in the RFC822-like style (to add reference).

537

sub read_db_record {

538

my $arg = shift;

539

if ($arg =~ /^file=/) {

540

my $f = $'; local *F; open(F, $f) or die "cannot open $f:$!";

541

$arg = join('', ); close(F);

542

}

543

544

while ($arg =~ s/^(\s*|\s*#.*)\n//) {} # allow comments before record

545

my $record;

546

if ($arg =~ /\n\n+/) { $record = "$`\n"; $arg = $'; }

547

else { $record = $arg; $arg = ''; }

548

my $r = {};

549

while ($record) {

550

while ($record =~ /^(.*)(\\\n|\n[ \t]+)(.*)/)

551

{ $record = "$1 $3$'" }

552

$record =~ /^([^\n:]*):(.*)\n/ or die;

553

my $k = $1; my $v = $2; $record = $';

554

if (exists($r->{$k})) {

555

my $c = 0;

556

while (exists($r->{"$k-$c"})) { ++$c }

557

$k = "$k-$c";

558

}

559

$r->{$k} = $v;

560

}

561

return $r;

562

}

563

564

sub putfile($@) {

565

my $f = shift; local *F;

566

if (!open(F, ">$f")) { $Error.="325-ERR:Cannot write ($f):$!\n"; return; }

567

for (@_) { print F } close(F);

568

}

569

570

########################################################################

571

# Simple file locking using mkdir

572

573

# Exlusive locking using mkdir

574

# lock_mkdir($fname); # return 1=success ''=fail

575

sub lock_mkdir {

576

my $fname = shift; my $lockd = "$fname.lock"; my $locked;

577

# First, hopefully most usual case

578

if (!-e $lockd && ($locked = mkdir($lockd,0700))) { return $locked }

579

my $tryfor=10; #sec

580

$locked = ''; # flag

581

for (my $i=0; $i<2*$tryfor; ++$i) {

582

select(undef,undef,undef,0.5); # wait for 0.5 sec

583

!-e $lockd && ($locked = mkdir($lockd,0700));

584

if ($locked) { return $locked }

585

}

586

$Error.="393-ERR:Could not lock file ($fname)\n"; return $locked;

587

}

588

589

# Unlock using mkdir

590

# unlock_mkdir($fname); # return 1=success ''=fail or no lock

591

sub unlock_mkdir {

592

my $fname = shift; my $lockd = "$fname.lock";

593

if (!-e $lockd) { $Error.="400-ERR:No lock on ($fname)\n"; return '' }

594

if (-d $lockd) { return rmdir($lockd) }

595

if (-f $lockd or -l $lockd) { unlink($lockd) }

596

$Error.="403-ERR:Unknown error"; return '';

597

}

598

599

600

601

__END__