Limit script location when webcontrol is open

Author: Mr-Dave

doc/motion_config.html

@@ -2028,6 +2028,16 @@ <h3><a name="static_object_time"></a>static_object_time</h3>
       </ul>
 
       <h3><a name="OptDetail_Scripts"></a> Script Execution </h3>
+      <p></p>
+      The following applies to all scripts being executed by Motion.
+      If <a href="#webcontrol_parms">webcontrol_parms</a> is
+      set to a value greater than or equal 3(i.e. the webcontrol allows changes
+      to scripts), then the program/script must be saved in a subdirectory from
+      the motion.conf file called 'scripts'.  For example, if the
+      <code><small>motion.conf</small></code> file is located
+      at <code><small>/var/lib/motion/motion.conf</small></code>, the scripts
+      must be saved in the directory
+      <code><small>/var/lib/motion/scripts</small></code>.
       <ul>
         <h3><a name="on_event_start"></a> on_event_start </h3>
         <ul>
@@ -2513,6 +2523,15 @@ <h3><a name="webcontrol_lock_script"></a> webcontrol_lock_script</h3>
           <li> Values: String | Default: Not Defined</li>
           Script to execute when a lockout has been triggered.  Two additional parameters are passed to this script
           when executed.  The number of times the userid failed as well as the IP address attempting to log in.
+          <p></p>
+          If <a href="#webcontrol_parms">webcontrol_parms</a> is
+          set to a value greater than or equal 3(i.e. the webcontrol allows changes
+          to scripts), then the program/script must be saved in a subdirectory from
+          the motion.conf file called 'scripts'.  For example, if the
+          <code><small>motion.conf</small></code> file is located
+          at <code><small>/var/lib/motion/motion.conf</small></code>, the scripts
+          must be saved in the directory
+          <code><small>/var/lib/motion/scripts</small></code>.
         </ul>
         <p></p>
 
@@ -2791,6 +2810,16 @@ <h3><a name="sql_pic_save"></a> sql_pic_save</h3>
       </ul>
 
       <h3><a name="OptDetail_Tracking"></a>Tracking</h3>
+      <p></p>
+      The following applies to all scripts being executed by Motion.
+      If <a href="#webcontrol_parms">webcontrol_parms</a> is
+      set to a value greater than or equal 3(i.e. the webcontrol allows changes
+      to scripts), then the program/script must be saved in a subdirectory from
+      the motion.conf file called 'scripts'.  For example, if the
+      <code><small>motion.conf</small></code> file is located
+      at <code><small>/var/lib/motion/motion.conf</small></code>, the scripts
+      must be saved in the directory
+      <code><small>/var/lib/motion/scripts</small></code>.
       <ul>
         <h3><a name="ptz_auto_track"></a>ptz_auto_track</h3>
         <ul>
@@ -3062,7 +3091,7 @@ <h3><a name="snd_show"></a>snd_show</h3>
     <h2><a name="command_line_options"></a>  Command Line Options </h2>
     <ul>
       <p></p>
-      <code>Motion [ -hbnsm ] [ -c config file path ] [ -d level ] [ -k level ] [ -p pid_file ] [ -l log_file ]</code>
+      <code>motion [ -hbnm ] [ -c config file path ] [ -d level ] [ -k level ] [ -p pid_file ] [ -l log_file ]</code>
       <p></p>
       <ul>
         <li>-c : Full path and filename of config file.</li>
@@ -3082,17 +3111,17 @@ <h2><a name="command_line_options"></a>  Command Line Options </h2>
     <h2><a name="config_files"></a>  The Configuration Files </h2>
     <ul>
       <p></p>
-      Motion will search for the configuration file called 'Motion.conf' in the following order:
+      Motion will search for the configuration file called 'motion.conf' in the following order:
       <p></p>
       <ol>
         <li> Current directory where Motion was invoked</li>
-        <li> The directory called '.Motion' in the current users home directory</li>
-        <li> The sub directory of lib/Motion from the directory defined
+        <li> The directory called '.motion' in the current users home directory</li>
+        <li> The sub directory of lib/motion from the directory defined
           by --localstatedir=DIR during the configure step of installation. If this was
-          not defined, it will default to /var/lib/Motion or /usr/local/var/lib/Motion
+          not defined, it will default to /var/lib/motion or /usr/local/var/lib/motion
           depending upon your system</li>
         <li> The directory defined by --sysconfdir=DIR during the configure step of installation.
-          If this was not defined, it will default to /etc/Motion or /usr/local/etc/Motion
+          If this was not defined, it will default to /etc/motion or /usr/local/etc/motion
           depending upon your system.  Please note that the use of this directory for the configuration
           files is deprecated.  Some significant functionality of Motion will not be available
           if the configuration files are in this directory.</li>

src/conf.cpp

@@ -109,18 +109,18 @@ ctx_parm config_parms[] = {
     {"pre_capture",               PARM_TYP_INT,    PARM_CAT_07, PARM_LEVEL_LIMITED },
     {"post_capture",              PARM_TYP_INT,    PARM_CAT_07, PARM_LEVEL_LIMITED },
 
-    {"on_event_start",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_event_end",              PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_picture_save",           PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_area_detected",          PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_motion_detected",        PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_movie_start",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_movie_end",              PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_camera_lost",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_camera_found",           PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_secondary_detect",       PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_action_user",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
-    {"on_sound_alert",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_RESTRICTED },
+    {"on_event_start",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_event_end",              PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_picture_save",           PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_area_detected",          PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_motion_detected",        PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_movie_start",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_movie_end",              PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_camera_lost",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_camera_found",           PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_secondary_detect",       PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_action_user",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
+    {"on_sound_alert",            PARM_TYP_STRING, PARM_CAT_08, PARM_LEVEL_SCRIPTS },
 
     {"picture_output",            PARM_TYP_LIST,   PARM_CAT_09, PARM_LEVEL_LIMITED },
     {"picture_output_motion",     PARM_TYP_LIST,   PARM_CAT_09, PARM_LEVEL_LIMITED },
@@ -167,10 +167,10 @@ ctx_parm config_parms[] = {
     {"webcontrol_key",            PARM_TYP_STRING, PARM_CAT_13, PARM_LEVEL_RESTRICTED },
     {"webcontrol_headers",        PARM_TYP_PARAMS, PARM_CAT_13, PARM_LEVEL_ADVANCED },
     {"webcontrol_html",           PARM_TYP_STRING, PARM_CAT_13, PARM_LEVEL_ADVANCED },
-    {"webcontrol_actions",        PARM_TYP_PARAMS, PARM_CAT_13, PARM_LEVEL_RESTRICTED },
+    {"webcontrol_actions",        PARM_TYP_PARAMS, PARM_CAT_13, PARM_LEVEL_ADVANCED },
     {"webcontrol_lock_minutes",   PARM_TYP_INT,    PARM_CAT_13, PARM_LEVEL_ADVANCED },
     {"webcontrol_lock_attempts",  PARM_TYP_INT,    PARM_CAT_13, PARM_LEVEL_ADVANCED },
-    {"webcontrol_lock_script",    PARM_TYP_STRING, PARM_CAT_13, PARM_LEVEL_RESTRICTED },
+    {"webcontrol_lock_script",    PARM_TYP_STRING, PARM_CAT_13, PARM_LEVEL_SCRIPTS },
 
     {"stream_preview_scale",      PARM_TYP_INT,    PARM_CAT_14, PARM_LEVEL_LIMITED },
     {"stream_preview_newline",    PARM_TYP_BOOL,   PARM_CAT_14, PARM_LEVEL_LIMITED },
@@ -200,13 +200,13 @@ ctx_parm config_parms[] = {
 
     {"ptz_auto_track",            PARM_TYP_BOOL,   PARM_CAT_17, PARM_LEVEL_LIMITED },
     {"ptz_wait",                  PARM_TYP_INT,    PARM_CAT_17, PARM_LEVEL_LIMITED },
-    {"ptz_move_track",            PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
-    {"ptz_pan_left",              PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
-    {"ptz_pan_right",             PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
-    {"ptz_tilt_up",               PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
-    {"ptz_tilt_down",             PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
-    {"ptz_zoom_in",               PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
-    {"ptz_zoom_out",              PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_RESTRICTED },
+    {"ptz_move_track",            PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
+    {"ptz_pan_left",              PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
+    {"ptz_pan_right",             PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
+    {"ptz_tilt_up",               PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
+    {"ptz_tilt_down",             PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
+    {"ptz_zoom_in",               PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
+    {"ptz_zoom_out",              PARM_TYP_STRING, PARM_CAT_17, PARM_LEVEL_SCRIPTS },
 
     {"snd_device",                PARM_TYP_STRING, PARM_CAT_18, PARM_LEVEL_ADVANCED },
     {"snd_params",                PARM_TYP_PARAMS, PARM_CAT_18, PARM_LEVEL_ADVANCED },
@@ -2378,10 +2378,10 @@ void cls_config::edit_webcontrol_parms(std::string &parm, enum PARM_ACT pact)
 {
     int parm_in;
     if (pact == PARM_ACT_DFLT) {
-        webcontrol_parms = 2;
+        webcontrol_parms = PARM_LEVEL_ADVANCED;
     } else if (pact == PARM_ACT_SET) {
         parm_in = atoi(parm.c_str());
-        if ((parm_in < 0) || (parm_in > 3)) {
+        if ((parm_in < PARM_LEVEL_ALWAYS) || (parm_in > PARM_LEVEL_RESTRICTED)) {
             MOTION_LOG(NTC, TYPE_ALL, NO_ERRNO, _("Invalid webcontrol_parms %d"),parm_in);
         } else {
             webcontrol_parms = parm_in;
@@ -2390,7 +2390,7 @@ void cls_config::edit_webcontrol_parms(std::string &parm, enum PARM_ACT pact)
         parm = std::to_string(webcontrol_parms);
     } else if (pact == PARM_ACT_LIST) {
         parm = "[";
-        parm = parm +  "\"0\",\"1\",\"2\",\"3\"";
+        parm = parm +  "\"0\",\"1\",\"2\",\"3\",\"4\"";
         parm = parm + "]";
     }
     return;

src/conf.hpp

@@ -55,7 +55,8 @@
         PARM_LEVEL_ALWAYS      = 0
         ,PARM_LEVEL_LIMITED    = 1
         ,PARM_LEVEL_ADVANCED   = 2
-        ,PARM_LEVEL_RESTRICTED = 3
+        ,PARM_LEVEL_SCRIPTS    = 3
+        ,PARM_LEVEL_RESTRICTED = 4
         ,PARM_LEVEL_NEVER      = 99
     };
 

src/sound.hpp

@@ -114,7 +114,7 @@ class cls_sound {
         ~cls_sound();
 
         enum DEVICE_STATUS      device_status;
-
+        cls_motapp      *app;
         cls_config      *conf_src;
         cls_config      *cfg;
         std::string     device_name;
@@ -131,7 +131,6 @@ class cls_sound {
         void            handler_shutdown();
 
     private:
-        cls_motapp      *app;
         int             watchdog;
 
         void cleanup();

src/util.cpp

@@ -666,15 +666,13 @@ AVPacket *mypacket_alloc(AVPacket *pkt)
 
 }
 
-void util_exec_command(cls_camera *cam, std::string usrcmd, std::string fname)
+void util_exec_base(cls_motapp *p_app, std::string rslt)
 {
-    std::string rslt, cmd_full, cmd_nm, tmp_parm;
+    std::string cmd_full, cmd_nm, cmd_tmp, parm_tmp, parm_log;
     std::vector<std::string> parms;
     int pid, indx;
     size_t pos;
 
-    mystrftime(cam, rslt, usrcmd, fname);
-    mytrim(rslt);
 
     /* Parse the full command*/
     if (rslt[0] == '"') {
@@ -693,11 +691,11 @@ void util_exec_command(cls_camera *cam, std::string usrcmd, std::string fname)
 
     /* Parse out the parameters */
     if (pos == std::string::npos) {
-        tmp_parm = "";
+        parm_tmp = "";
     } else {
-        tmp_parm = rslt.substr(pos+1);
+        parm_tmp = rslt.substr(pos+1);
     }
-    mytrim(tmp_parm);
+    mytrim(parm_tmp);
 
     /* Parse out the command name to execute */
     pos = cmd_full.find_last_of("/");
@@ -707,28 +705,47 @@ void util_exec_command(cls_camera *cam, std::string usrcmd, std::string fname)
         cmd_nm = cmd_full.substr(pos+1);
     }
     mytrim(cmd_nm);
+    parm_log = parm_tmp;
+
+    /* If webcontrol is opened up to allow changing of the
+      scripts, then limit the location of file being executed
+      to the scripts subdirectory
+    */
+    if (p_app->cfg->webcontrol_parms >= PARM_LEVEL_SCRIPTS) {
+        cmd_tmp = p_app->cfg->conf_filename.substr(0
+            , p_app->cfg->conf_filename.find_last_of("/"));
+        cmd_tmp += "/scripts/" + cmd_nm;
+        if (cmd_tmp != cmd_full) {
+            MOTION_LOG(NTC, TYPE_EVENTS, NO_ERRNO
+                ,_("Adjusting the path provided since webcontrol is open"));
+        }
+        MOTION_LOG(DBG, TYPE_EVENTS, NO_ERRNO,"Original >%s<",cmd_full.c_str());
+        MOTION_LOG(DBG, TYPE_EVENTS, NO_ERRNO,"New >%s<",cmd_tmp.c_str());
+        cmd_full = cmd_tmp;
+        MOTION_LOG(DBG, TYPE_EVENTS, NO_ERRNO,"Adjusted >%s<",cmd_full.c_str());
+    }
 
     /* The vector is being used for ease of programming
        and is likely not the most efficient way to get the
        values into the const char * array for execv
     */
     /* Parse the individual parameters into the vector*/
     parms.push_back(cmd_nm);
-    while (tmp_parm != "") {
-        if (tmp_parm[0] == '"') {
-            pos = tmp_parm.find('"', 1)+1;
-        } else if (tmp_parm[0] == '\'') {
-            pos = tmp_parm.find('\'', 1)+1;
+    while (parm_tmp != "") {
+        if (parm_tmp[0] == '"') {
+            pos = parm_tmp.find('"', 1)+1;
+        } else if (parm_tmp[0] == '\'') {
+            pos = parm_tmp.find('\'', 1)+1;
         } else {
-            pos = tmp_parm.find(" ", 0);
+            pos = parm_tmp.find(" ", 0);
         }
-        parms.push_back(tmp_parm.substr(0, pos));
+        parms.push_back(parm_tmp.substr(0, pos));
         if (pos == std::string::npos) {
-            tmp_parm = "";
+            parm_tmp = "";
         } else {
-            tmp_parm.erase(0, pos+1);
+            parm_tmp.erase(0, pos+1);
         }
-        mytrim(tmp_parm);
+        mytrim(parm_tmp);
     }
 
     /* Put the vector into an array that can be processed by execv*/
@@ -742,60 +759,59 @@ void util_exec_command(cls_camera *cam, std::string usrcmd, std::string fname)
     if (!pid) {
         /* Detach from parent */
         setsid();
-        execv (cmd_full.c_str(), (char **)parmv);
+        execv(cmd_full.c_str(), (char **)parmv);
         /* if above function succeeds the program never reaches here */
         MOTION_LOG(ALR, TYPE_EVENTS, SHOW_ERRNO
-            ,_("Unable to start external command >%s<"), rslt.c_str());
+            ,_("Unable to start external command >%s %s<")
+            , cmd_full.c_str(), parm_log.c_str());
 
         exit(1);
     }
 
     if (pid == 0) {
         MOTION_LOG(ALR, TYPE_EVENTS, SHOW_ERRNO
-            ,_("Unable to start external command >%s<"), rslt.c_str());
+            ,_("Unable to start external command >%s %s<")
+            , cmd_full.c_str(), parm_log.c_str());
     } else {
         MOTION_LOG(DBG, TYPE_EVENTS, NO_ERRNO
-            ,_("Executing external command >%s<"), rslt.c_str());
+            ,_("Executing external command >%s %s<")
+            , cmd_full.c_str(), parm_log.c_str());
     }
 
 }
 
-/* Legacy format with chars */
-void util_exec_command(cls_camera *cam, const char *c_usrcmd, const char *c_fname)
+void util_exec_command(cls_camera *cam, std::string usrcmd, std::string fname)
 {
-    util_exec_command(cam,std::string(c_usrcmd), std::string(c_fname));
+    std::string rslt;
+    mystrftime(cam, rslt, usrcmd, fname);
+    mytrim(rslt);
+    util_exec_base(cam->app, rslt);
 }
 
-void util_exec_command(cls_sound *snd, std::string cmd)
+/* Legacy format with chars */
+void util_exec_command(cls_camera *cam, const char *c_usrcmd, const char *c_fname)
 {
-    std::string dst;
-    int pid;
+    std::string usrcmd, fname;
 
-    mystrftime(snd, dst, cmd);
-
-    pid = fork();
-    if (!pid) {
-        /* Detach from parent */
-        setsid();
-
-        execl("/bin/sh", "sh", "-c", dst.c_str(), " &",(char*)NULL);
-
-        /* if above function succeeds the program never reaches here */
-        MOTION_LOG(ALR, TYPE_EVENTS, SHOW_ERRNO
-            ,_("Unable to start external command '%s'"),dst.c_str());
-
-        exit(1);
+    if (c_usrcmd == nullptr) {
+        usrcmd = "";
+    } else {
+        usrcmd = std::string(c_usrcmd);
     }
-
-    if (pid > 0) {
-        waitpid(pid, NULL, 0);
+    if (c_fname == nullptr){
+        fname = "";
     } else {
-        MOTION_LOG(ALR, TYPE_EVENTS, SHOW_ERRNO
-            ,_("Unable to start external command '%s'"), dst.c_str());
+        fname = std::string(c_fname);
     }
+    util_exec_command(cam, usrcmd, fname);
+}
 
-    MOTION_LOG(DBG, TYPE_EVENTS, NO_ERRNO
-        ,_("Executing external command '%s'"), dst.c_str());
+void util_exec_command(cls_sound *snd, std::string usrcmd)
+{
+    std::string rslt;
+    mystrftime(snd, rslt, usrcmd);
+    mytrim(rslt);
+    util_exec_base(snd->app, rslt);
 }
 
 /*********************************************/

src/util.hpp

@@ -85,9 +85,10 @@ struct ctx_params {
     void mystrftime(cls_camera *cam, std::string &rslt
         , std::string usrcmd, std::string fname);
     void mystrftime(cls_sound *snd, std::string &dst, std::string fmt);
-    void util_exec_command(cls_camera *cam, const char *command, const char *filename);
-    void util_exec_command(cls_sound *snd, std::string cmd);
+    void util_exec_base(cls_motapp *p_app, std::string rslt);
     void util_exec_command(cls_camera *cam, std::string usrcmd, std::string fname);
+    void util_exec_command(cls_camera *cam, const char *c_usrcmd, const char *c_fname);
+    void util_exec_command(cls_sound *snd, std::string usrcmd);
 
     void mythreadname_set(const char *abbr, int threadnbr, const char *threadname);
     void mythreadname_get(char *threadname);