Forum: The Wastelands BBS

src/sbbs3/userdat.c

From Rob Swindell@VERT to Git commit to main/sbbs/master on Tuesday, March 29, 2022 01:16:22

https://gitlab.synchro.net/main/sbbs/-/commit/40eec7fa665daee9c365e43f
Modified Files:
src/sbbs3/userdat.c
Log Message:
Posts from QWKnet users don't count as "posts" for local stats

Might add some other statistic for these relayed posts at some point.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell@VERT to Git commit to main/sbbs/master on Monday, April 25, 2022 14:21:49

https://gitlab.synchro.net/main/sbbs/-/commit/14940b8a7f261cb137b69035
Modified Files:
src/sbbs3/userdat.c
Log Message:
Fix possible underflow conditions in gettimeleft()

If a non-'T' exempt user had already used more time today than their security level allows, their timeleft would be computed as a negative value due to integer underflow. Since the return value of this function is assigned to a ulong (timeleft), this becomes a large positive number. Cap the floor of the computed time left at 0.

Also fix the potential for underflow that could occur if the system clock changes while a user is online and 'now' becomes greater than 'starttime'.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell@VERT to Git commit to main/sbbs/master on Thursday, August 11, 2022 12:21:54

https://gitlab.synchro.net/main/sbbs/-/commit/8ad5e191568032ec2d91c79f
Modified Files:
src/sbbs3/userdat.c
Log Message:
matchuser() now always returns 0 when passed an empty 'name'

Also, don't match against deleted (blank) usernames in name.dat
(e.g. when 'name' value consists of a single ETX character).
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell@VERT to Git commit to main/sbbs/master on Saturday, January 21, 2023 19:51:15

https://gitlab.synchro.net/main/sbbs/-/commit/6c0e423a38920f64abfb7013
Modified Files:
src/sbbs3/userdat.c
Log Message:
Don't truncate a user's record if the default download protocol or gender are '\0'

A blank download protocol field in a user.dat, when parsed, sets the 'prot' field
of user_t to 0. When writing the record back to the user.dat, this would prematurely
truncate all other fields off the user record (since strings in C are NUL terminated
and we're using sprintf() to format the record and %c specifier for that field).

The fix is to write a ' ' character instead of '\0' if the user_t.prot is '\0'. As part of this fix, I'm writing a '?' if a user_t.sex is '\0' (not sure if this
is actually possible, but just as insurance). Those are the only 2 single-character
user properties/fields today.

Bug reported/debugged by Al of The Rusty Mailbox (1:153/757.2) - thank you!
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (in GitKraken)@VERT to Git commit to main/sbbs/master on Thursday, March 02, 2023 18:56:50

https://gitlab.synchro.net/main/sbbs/-/commit/14125aa4b0aa0bf027f77361
Modified Files:
src/sbbs3/userdat.c
Log Message:
The NoAccess* text.dat strings are not appropriate 'reason' codes

These text.dat strings require an argument (and normally used with the NOACCESS @-code which uses the noaccess_str and noaccess_val member variables), so not appropriate to use as a reason code here. Use more generic (no argument) text.dat item numbers instead.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (in GitKraken)@VERT to Git commit to main/sbbs/master on Friday, March 10, 2023 19:59:26

https://gitlab.synchro.net/main/sbbs/-/commit/edc931be6282acafdf043532
Modified Files:
src/sbbs3/userdat.c
Log Message:
More strict login-by-user-number support (parsing logic)

Before now, if the sysop enabled login-by-user-number and the specified login ID *started* with a decimal digit, it'd be treated as a user number and converted to a 32-bit integer. This could result in weird stuff, like this error I got today:
SMTP ... !ERROR -2 getting data on user (7000401005.gc7gg@synchro.net)

7,000,401,005 is clearly greater than the number of users in my user base
on Vert, but since 7B is > 2.1B (0x7fffffff), the number would be parsed as
a *negative* integer value and thus less than the total number of users in my userbase.

An obvious solution would be to just turn of login-by-user-number, and for
most systems, I suggest doing that (a system is less secure with it enabled).

However, I want to leave the option for sysops (at least for now) and don't want this weird behavior so, a login by user number now requires that the entire login ID is just decimal numbers, nothing else, and the number is
parsed as an unsigned integer. So yes, roll-over can happen for very high numbers (>4.2B), but in no instance will the number be parsed as negative and thus lead to an invalid user record look-up attempt.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Debian Linux)@VERT to Git commit to main/sbbs/master on Monday, April 03, 2023 14:07:29

https://gitlab.synchro.net/main/sbbs/-/commit/e0979e270d947bc8a9e64e70
Modified Files:
src/sbbs3/userdat.c
Log Message:
Fix GCC 9.4.0 warning reported by Nelgin

warning: format not a string literal and no format arguments

Weird this warning is happening for me with GCC 12.2 (debug or release build) ---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows)@VERT to Git commit to main/sbbs/master on Monday, May 08, 2023 18:07:50

https://gitlab.synchro.net/main/sbbs/-/commit/c1d6e2c764781b0400578600
Modified Files:
src/sbbs3/userdat.c
Log Message:
The "user" directory is special: you don't need "access" to download from it.

When sending a user-to-user file transfer, SBBS (since v3.19) will check that the file recipient will be able to download it (e.g. doesn't have restrictions preventing it) and this was failing for most (non-sysop) recipient users since they wouldn't normally meet the "access restrictions" of the user directory
(by design).
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Debian Linux)@VERT to Git commit to main/sbbs/master on Thursday, August 22, 2024 19:54:56

https://gitlab.synchro.net/main/sbbs/-/commit/69fc70ab9e59914f5bfceb9f
Modified Files:
src/sbbs3/userdat.c
Log Message:
Extend (and back-off) the user.tab record lock attempts

I'v been getting errors locking user.tab (for read) for a while (over samba), so hopefully this helps. The lockuserdat() total timeout duration extends from about 5 seconds to about 45 seconds (with an incremental back-off).

Implement the same lock-retry logic/limit in putuserdat().
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on ChromeOS)@VERT to Git commit to main/sbbs/master on Saturday, September 14, 2024 18:48:08

https://gitlab.synchro.net/main/sbbs/-/commit/3de5f432ff45b91c838f28c8
Modified Files:
src/sbbs3/userdat.c
Log Message:
Delete data/file/*.out directory for new user (if exists)

emailfiles.js puts files here that the user requested to download "via email" and might not have been successfully delivered and deleted. So clean-up.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Saturday, September 21, 2024 13:08:41

https://gitlab.synchro.net/main/sbbs/-/commit/d7ed70e42df440ef47895b65
Modified Files:
src/sbbs3/userdat.c
Log Message:
user_downloaded_file() now return false upon statistics update failure
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Debian Linux)@VERT to Git commit to main/sbbs/master on Sunday, September 14, 2025 19:48:26

https://gitlab.synchro.net/main/sbbs/-/commit/869dac47e01978f4e7f20fb5
Modified Files:
src/sbbs3/userdat.c
Log Message:
Fix inverted "GUEST" ARS keyword logic bug

introduced in commit 661f5084fca81a01

Fixes issue #975
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Wednesday, December 17, 2025 15:49:56

https://gitlab.synchro.net/main/sbbs/-/commit/2f7623fe054d6c2b9c1e41ec
Modified Files:
src/sbbs3/userdat.c
Log Message:
Do some error checking in logoutuserdat()

(i.e. user.tab open/lock/read/write failures)

I suspect this function has been failing on Vertrauen under heavy (Guest login/out) load, but there was no actual error reporting from this function which opens, locks, read and writes the user.tab file 4 times (!) for every user logout.

Ideally:
- this function would return more error details than simply success/failure
- this function would only open/lock/read/write the user.tab file only once ---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Wednesday, December 17, 2025 19:09:19

https://gitlab.synchro.net/main/sbbs/-/commit/5ccd9e8ccc6fd0158c7228b6
Modified Files:
src/sbbs3/userdat.c
Log Message:
Fix bug in subtract_cdt() handling free credit roll-under to regular credits

Bug introduced in commit 8deac23222b3a3db (copy/paste/typo)

Caught during manual code review.

When a user has any amount of free credits, but the amount being subtracted
was greater than their free credits available, the underflow was supposed to
be deducted from their regular credits. Instead, the underflow was (attempted) to be deducted from their free credits, which were alreay zeroed.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Saturday, December 20, 2025 04:34:42

https://gitlab.synchro.net/main/sbbs/-/commit/a12a964a5ffbf5ab30e0fd8d
Modified Files:
src/sbbs3/userdat.c
Log Message:
Better user name/alias validity checking check_name() and check_realname()

- detect/reject strings with control characters
- detect/reject strings with non-ASCII character
(when configured to do so by the sysop)

Since the newuser.cpp already disallows this illegal input for new user values this likely only really makes a difference for any JS code that uses system.check_name() or system.check_realname() which is probably none.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Saturday, December 20, 2025 04:34:42

https://gitlab.synchro.net/main/sbbs/-/commit/93cefd0e8f0a54e2711b8ae8
Modified Files:
src/sbbs3/userdat.c
Log Message:
check_realname() now rejects 0xff char and names from name.can file
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Friday, January 02, 2026 21:28:56

https://gitlab.synchro.net/main/sbbs/-/commit/83a11c0359921d21e7b3b14e
Modified Files:
src/sbbs3/userdat.c
Log Message:
Add valid range enforcement in getbirthmonth() and getbirthday()

This is required to pass the tests/user/birthdate.js tests/user/birthdate.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Saturday, January 03, 2026 00:14:09

https://gitlab.synchro.net/main/sbbs/-/commit/2b773f32ee03f5b95fcb026a
Modified Files:
src/sbbs3/userdat.c
Log Message:
Reject blank strings as an invalid birthdate
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Saturday, January 03, 2026 04:45:04

https://gitlab.synchro.net/main/sbbs/-/commit/d3a398d76a1a224c6254b7f5
Modified Files:
src/sbbs3/userdat.c
Log Message:
Fix the begin/end with white space checks in check_name and check_realname

char is signed (usually)

This was rejected names that ended in extended-ASCII chars (when allowed)
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Tuesday, January 13, 2026 22:16:37

https://gitlab.synchro.net/main/sbbs/-/commit/fe0ef584fb420831e37e4174
Modified Files:
src/sbbs3/userdat.c
Log Message:
Address new Coverity issue

CID 640988: Null pointer dereferences (FORWARD_NULL)
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

From Rob Swindell (on Windows 11)@VERT to Git commit to main/sbbs/master on Thursday, January 15, 2026 16:38:13

https://gitlab.synchro.net/main/sbbs/-/commit/abf06be881e9b986937c72de
Modified Files:
src/sbbs3/userdat.c
Log Message:
Fix "executing xtrn" node_activity() for multiple-concurrent logons (Guests)

The name of the external program was pulled from the user record which in this case would always be the last program executed by (any) Guest. Instead, use
the (slightly more ambiguous) node.aux field for external program being executed by Guest users or upon any failure to read the user record.
---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Who's Online
Recent Visitors
- Guest
  Saturday, February 14, 2026 04:41:42
  from System via Telnet
- Death
  Thursday, January 29, 2026 18:45:47
  from Raleigh, Nc via Telnet
- Guest
  Thursday, January 22, 2026 13:19:33
  from System via Telnet
- Guest
  Thursday, December 25, 2025 09:32:40
  from Corpus Christi, T via Telnet

System Info

Sysop:	Thumper
Location:	Copperopolis, CA
Users:	5
Nodes:	10 (0 / 10)
Uptime:	30:14:21
Calls:	157
Files:	4,897
Messages:	52,215

src/sbbs3/userdat.c

Who's Online

Recent Visitors

System Info