[irc/quakenet/newserv.git] / chanserv / authlib.c

/* authlib.c */

#include "chanserv.h"
#include "../lib/irc_string.h"
#include "authlib.h"

#include <stdio.h>
#include <string.h>
#include <ctype.h>
#include <sys/types.h>
#include <pcre.h>

static pcre *remail, *raccount;

void csa_initregex(void) {
  const char *errptr;
  int erroffset;

  if (!(remail=pcre_compile(VALID_EMAIL, PCRE_CASELESS, &errptr, &erroffset, NULL)))
    Error("chanserv", ERR_STOP, "Unable to compile email regex (error: %s, position: %d).", errptr, erroffset);

  if (!(raccount=pcre_compile(VALID_ACCOUNT_NAME, PCRE_CASELESS, &errptr, &erroffset, NULL)))
    Error("chanserv", ERR_STOP, "Unable to compile account name regex (error: %s, position: %d).", errptr, erroffset);
}

void csa_freeregex(void) {
  pcre_free(remail);
  pcre_free(raccount);
}

/*
 * use regex matching to determine if it's a valid eboy or not
 */
int csa_checkeboy_r(char *eboy)
{
  int len;

  len = (((strlen(eboy)) < (EMAILLEN)) ? (strlen(eboy)) : (EMAILLEN));
  if (len <= 4) {
    return QM_EMAILTOOSHORT;
  }

  /* catch some real lame attempts */
  if (!ircd_strncmp("user@mymailhost.xx", eboy, len) || !ircd_strncmp("info@quakenet.org", eboy, len)
      || !ircd_strncmp("user@mymail.xx", eboy, len) || !ircd_strncmp("user@mail.cc", eboy, len)
      || !ircd_strncmp("user@host.com", eboy, len) || !ircd_strncmp("Jackie@your.isp.com", eboy, len)
      || !ircd_strncmp("QBot@QuakeNet.org", eboy, len) || !ircd_strncmp("Q@CServe.quakenet.org", eboy, len)
      || !ircd_strncmp("badger@example.com", eboy, len)) {
    return QM_NOTYOUREMAIL;
  }

  if (pcre_exec(remail, NULL, eboy, strlen(eboy), 0, 0, NULL, 0) < 0) {
    return QM_INVALIDEMAIL;
  }

  return -1;
}

int csa_checkeboy(nick *sender, char *eboy)
{
  int r = csa_checkeboy_r(eboy);
  if (r == -1)
    return 0;

  if(sender)
    chanservstdmessage(sender, r, eboy);

  return 1;
}

/*
 * use regex matching to determine if it's a valid account name or not
 * returns 1 if bad, 0 if good
 */
int csa_checkaccountname_r(char *accountname) {
  if (pcre_exec(raccount, NULL, accountname, strlen(accountname), 0, 0, NULL, 0) < 0) {
    return (1);
  }
  return (0);
}

int csa_checkaccountname(nick *sender, char *accountname) {
  int r = csa_checkaccountname_r(accountname);
  if(r && sender)
    chanservstdmessage(sender, QM_INVALIDACCOUNTNAME);

  return r;
}

/*
 * create a random pw. code stolen from fox's O
 */
void csa_createrandompw(char *pw, int n)
{
  int i;
  char upwdchars[] = "ABCDEFGHIJKLMNPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz123456789-!";
  
  for (i = 0; i < n; i++) {
    pw[i] = upwdchars[rand() % (sizeof(upwdchars) - 1)];
  }
  pw[n] = '\0';
}

/*
 * check if account is "throttled"
 */
int csa_checkthrottled(nick *sender, reguser *rup, char *s)
{
  time_t now;
  long d;
  float t;

  now=time(NULL);
  d=MAX_RESEND_TIME+rup->lastemailchange-now;

  if (d>MAX_RESEND_TIME)
    d=MAX_RESEND_TIME;

  if (d>0L) {
    t = ((float) d) / ((float) 3600);
    chanservstdmessage(sender, QM_MAILTHROTTLED, t);
    cs_log(sender,"%s FAIL username %s, new request throttled for %.1f hours",s,rup->username,t);
    return 1;
  }
  return 0;
}

int csa_checkpasswordquality(char *password) {
  int i, cntweak = 0, cntdigits = 0, cntletters = 0;
  if (strlen(password) < 6)
    return QM_PWTOSHORT;

  if (strlen(password) > 10)
    return QM_PWTOLONG;

  for ( i = 0; password[i] && i < PASSLEN; i++ ) {
    if ( password[i] == password[i+1] || password[i] + 1 == password[i+1] || password[i] - 1 == password[i+1] )
      cntweak++;
    if(isdigit(password[i]))
      cntdigits++;
    if(islower(password[i]) || isupper(password[i]))
      cntletters++;
    if(password[i] < 32 || password[i] > 127)
      return QM_PWINVALID;
  }

  if( cntweak > 3 || !cntdigits || !cntletters)
    return QM_PWTOWEAK;

  return -1;
}

reguser *csa_createaccount(char *username, char *password, char *email) {
  time_t t = time(NULL);
  char *local, *dupemail;

  dupemail = strdup(email);
  local=strchr(dupemail, '@');
  if(!local) {
    free(dupemail);
    return NULL;
  }
  *(local++)='\0';

  reguser *rup=getreguser();
  rup->status=0;
  rup->ID=++lastuserID;
  strncpy(rup->username,username,NICKLEN); rup->username[NICKLEN]='\0';
  rup->created=t;
  rup->lastauth=0;
  rup->lastemailchange=t;
  rup->lastpasschange=t;
  rup->flags=QUFLAG_NOTICE;
  rup->languageid=0;
  rup->suspendby=0;
  rup->suspendexp=0;
  rup->suspendtime=0;
  rup->lockuntil=0;
  strncpy(rup->password,password,PASSLEN); rup->password[PASSLEN]='\0';
  rup->email=getsstring(email,EMAILLEN);
  rup->lastemail=NULL;

  rup->localpart=getsstring(dupemail,EMAILLEN);
  free(dupemail);

  rup->domain=findorcreatemaildomain(email);
  addregusertomaildomain(rup, rup->domain);
  rup->info=NULL;
  rup->lastuserhost=NULL;
  rup->suspendreason=NULL;
  rup->comment=NULL;
  rup->knownon=NULL;
  rup->checkshd=NULL;
  rup->stealcount=0;
  rup->fakeuser=NULL;
  addregusertohash(rup);

  return rup;
}
Commit	Line	Data
c86edd1d Q	1	/* authlib.c */
c86edd1d Q	2
c86edd1d Q	3	#include "chanserv.h"
c86edd1d Q	4	#include "../lib/irc_string.h"
6ff65e48	5	#include "authlib.h"
c86edd1d	6
6ff65e48	7	#include <stdio.h>
c86edd1d Q	8	#include <string.h>
	9	#include <ctype.h>
	10	#include <sys/types.h>
e7c9cef1	11	#include <pcre.h>
c86edd1d	12
e7c9cef1	13	static pcre remail, raccount;
c86edd1d	14
e7c9cef1 CP	15	void csa_initregex(void) {
	16	const char *errptr;
	17	int erroffset;
e2340b39	18
e7c9cef1 CP	19	if (!(remail=pcre_compile(VALID_EMAIL, PCRE_CASELESS, &errptr, &erroffset, NULL)))
e7c9cef1 CP	20	Error("chanserv", ERR_STOP, "Unable to compile email regex (error: %s, position: %d).", errptr, erroffset);
dc9548f4	21
e7c9cef1 CP	22	if (!(raccount=pcre_compile(VALID_ACCOUNT_NAME, PCRE_CASELESS, &errptr, &erroffset, NULL)))
e7c9cef1 CP	23	Error("chanserv", ERR_STOP, "Unable to compile account name regex (error: %s, position: %d).", errptr, erroffset);
c86edd1d Q	24	}
c86edd1d Q	25
dc9548f4	26	void csa_freeregex(void) {
e7c9cef1 CP	27	pcre_free(remail);
e7c9cef1 CP	28	pcre_free(raccount);
c86edd1d Q	29	}
	30
	31	/*
	32	* use regex matching to determine if it's a valid eboy or not
	33	*/
6ff65e48 CP	34	int csa_checkeboy_r(char *eboy)
6ff65e48 CP	35	{
e7c9cef1	36	int len;
c86edd1d Q	37
	38	len = (((strlen(eboy)) < (EMAILLEN)) ? (strlen(eboy)) : (EMAILLEN));
	39	if (len <= 4) {
6ff65e48	40	return QM_EMAILTOOSHORT;
c86edd1d Q	41	}
c86edd1d Q	42
c86edd1d Q	43	/* catch some real lame attempts */
	44	if (!ircd_strncmp("user@mymailhost.xx", eboy, len) \|\| !ircd_strncmp("info@quakenet.org", eboy, len)
	45	\|\| !ircd_strncmp("user@mymail.xx", eboy, len) \|\| !ircd_strncmp("user@mail.cc", eboy, len)
	46	\|\| !ircd_strncmp("user@host.com", eboy, len) \|\| !ircd_strncmp("Jackie@your.isp.com", eboy, len)
6ff65e48 CP	47	\|\| !ircd_strncmp("QBot@QuakeNet.org", eboy, len) \|\| !ircd_strncmp("Q@CServe.quakenet.org", eboy, len)
	48	\|\| !ircd_strncmp("badger@example.com", eboy, len)) {
	49	return QM_NOTYOUREMAIL;
c86edd1d Q	50	}
c86edd1d Q	51
e7c9cef1	52	if (pcre_exec(remail, NULL, eboy, strlen(eboy), 0, 0, NULL, 0) < 0) {
6ff65e48	53	return QM_INVALIDEMAIL;
c86edd1d Q	54	}
c86edd1d Q	55
6ff65e48 CP	56	return -1;
	57	}
	58
	59	int csa_checkeboy(nick sender, char eboy)
	60	{
	61	int r = csa_checkeboy_r(eboy);
	62	if (r == -1)
	63	return 0;
	64
	65	if(sender)
	66	chanservstdmessage(sender, r, eboy);
	67
	68	return 1;
c86edd1d Q	69	}
c86edd1d Q	70
dc9548f4 CP	71	/*
dc9548f4 CP	72	* use regex matching to determine if it's a valid account name or not
e7c9cef1	73	* returns 1 if bad, 0 if good
dc9548f4	74	*/
6ff65e48	75	int csa_checkaccountname_r(char *accountname) {
e7c9cef1	76	if (pcre_exec(raccount, NULL, accountname, strlen(accountname), 0, 0, NULL, 0) < 0) {
dc9548f4 CP	77	return (1);
	78	}
	79	return (0);
	80	}
	81
6ff65e48 CP	82	int csa_checkaccountname(nick sender, char accountname) {
	83	int r = csa_checkaccountname_r(accountname);
	84	if(r && sender)
	85	chanservstdmessage(sender, QM_INVALIDACCOUNTNAME);
	86
	87	return r;
	88	}
dc9548f4	89
c86edd1d Q	90	/*
	91	* create a random pw. code stolen from fox's O
	92	*/
	93	void csa_createrandompw(char *pw, int n)
	94	{
	95	int i;
	96	char upwdchars[] = "ABCDEFGHIJKLMNPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz123456789-!";
	97
	98	for (i = 0; i < n; i++) {
	99	pw[i] = upwdchars[rand() % (sizeof(upwdchars) - 1)];
	100	}
	101	pw[n] = '\0';
	102	}
1dd6d55d	103
	104	/*
	105	* check if account is "throttled"
	106	*/
	107	int csa_checkthrottled(nick sender, reguser rup, char *s)
	108	{
	109	time_t now;
	110	long d;
	111	float t;
	112
	113	now=time(NULL);
	114	d=MAX_RESEND_TIME+rup->lastemailchange-now;
	115
	116	if (d>MAX_RESEND_TIME)
	117	d=MAX_RESEND_TIME;
	118
	119	if (d>0L) {
	120	t = ((float) d) / ((float) 3600);
	121	chanservstdmessage(sender, QM_MAILTHROTTLED, t);
	122	cs_log(sender,"%s FAIL username %s, new request throttled for %.1f hours",s,rup->username,t);
	123	return 1;
	124	}
	125	return 0;
	126	}
6ff65e48 CP	127
	128	int csa_checkpasswordquality(char *password) {
	129	int i, cntweak = 0, cntdigits = 0, cntletters = 0;
	130	if (strlen(password) < 6)
	131	return QM_PWTOSHORT;
	132
14dc6de9 CP	133	if (strlen(password) > 10)
	134	return QM_PWTOLONG;
	135
6ff65e48 CP	136	for ( i = 0; password[i] && i < PASSLEN; i++ ) {
	137	if ( password[i] == password[i+1] \|\| password[i] + 1 == password[i+1] \|\| password[i] - 1 == password[i+1] )
	138	cntweak++;
	139	if(isdigit(password[i]))
	140	cntdigits++;
	141	if(islower(password[i]) \|\| isupper(password[i]))
	142	cntletters++;
9ca17abd CP	143	if(password[i] < 32 \|\| password[i] > 127)
9ca17abd CP	144	return QM_PWINVALID;
6ff65e48 CP	145	}
	146
	147	if( cntweak > 3 \|\| !cntdigits \|\| !cntletters)
	148	return QM_PWTOWEAK;
	149
	150	return -1;
	151	}
	152
	153	reguser csa_createaccount(char username, char password, char email) {
	154	time_t t = time(NULL);
	155	char local, dupemail;
	156
	157	dupemail = strdup(email);
	158	local=strchr(dupemail, '@');
	159	if(!local) {
	160	free(dupemail);
	161	return NULL;
	162	}
	163	*(local++)='\0';
	164
	165	reguser *rup=getreguser();
	166	rup->status=0;
	167	rup->ID=++lastuserID;
	168	strncpy(rup->username,username,NICKLEN); rup->username[NICKLEN]='\0';
	169	rup->created=t;
	170	rup->lastauth=0;
	171	rup->lastemailchange=t;
	172	rup->lastpasschange=t;
	173	rup->flags=QUFLAG_NOTICE;
	174	rup->languageid=0;
	175	rup->suspendby=0;
	176	rup->suspendexp=0;
	177	rup->suspendtime=0;
	178	rup->lockuntil=0;
	179	strncpy(rup->password,password,PASSLEN); rup->password[PASSLEN]='\0';
	180	rup->email=getsstring(email,EMAILLEN);
	181	rup->lastemail=NULL;
	182
	183	rup->localpart=getsstring(dupemail,EMAILLEN);
	184	free(dupemail);
	185
	186	rup->domain=findorcreatemaildomain(email);
	187	addregusertomaildomain(rup, rup->domain);
	188	rup->info=NULL;
	189	rup->lastuserhost=NULL;
	190	rup->suspendreason=NULL;
	191	rup->comment=NULL;
	192	rup->knownon=NULL;
	193	rup->checkshd=NULL;
	194	rup->stealcount=0;
	195	rup->fakeuser=NULL;
	196	addregusertohash(rup);
	197
	198	return rup;
	199	}