]>
Commit | Line | Data |
---|---|---|
1 | /* | |
2 | * oper-override for charybdis. | |
3 | * | |
4 | * adds usermode +p and has a timer event that is iterated over to disable | |
5 | * usermode +p after a while... | |
6 | * | |
7 | * you need to have oper:override permission on the opers you want to be | |
8 | * able to use this extension. | |
9 | */ | |
10 | ||
11 | #include "stdinc.h" | |
12 | #include "modules.h" | |
13 | #include "hook.h" | |
14 | #include "client.h" | |
15 | #include "ircd.h" | |
16 | #include "send.h" | |
17 | #include "hash.h" | |
18 | #include "s_conf.h" | |
19 | #include "s_user.h" | |
20 | #include "s_serv.h" | |
21 | #include "numeric.h" | |
22 | #include "privilege.h" | |
23 | #include "s_newconf.h" | |
24 | ||
25 | static const char override_desc[] = | |
26 | "Adds user mode +p, an operator-only user mode that grants temporary privileges to override anything"; | |
27 | ||
28 | static void check_umode_change(void *data); | |
29 | static void hack_channel_access(void *data); | |
30 | static void hack_can_join(void *data); | |
31 | static void hack_can_kick(void *data); | |
32 | static void hack_can_send(void *data); | |
33 | static void handle_client_exit(void *data); | |
34 | ||
35 | mapi_hfn_list_av1 override_hfnlist[] = { | |
36 | { "umode_changed", (hookfn) check_umode_change }, | |
37 | { "get_channel_access", (hookfn) hack_channel_access }, | |
38 | { "can_join", (hookfn) hack_can_join }, | |
39 | { "can_kick", (hookfn) hack_can_kick }, | |
40 | { "can_send", (hookfn) hack_can_send }, | |
41 | { "client_exit", (hookfn) handle_client_exit }, | |
42 | { NULL, NULL } | |
43 | }; | |
44 | ||
45 | #define CHFL_OVERRIDE 0x0004 | |
46 | #define IsOperOverride(x) (HasPrivilege((x), "oper:override")) | |
47 | ||
48 | struct OverrideSession { | |
49 | rb_dlink_node node; | |
50 | ||
51 | struct Client *client; | |
52 | time_t deadline; | |
53 | }; | |
54 | ||
55 | rb_dlink_list overriding_opers = { NULL, NULL, 0 }; | |
56 | ||
57 | static void | |
58 | update_session_deadline(struct Client *source_p, struct OverrideSession *session_p) | |
59 | { | |
60 | if (session_p == NULL) | |
61 | { | |
62 | rb_dlink_node *n; | |
63 | ||
64 | RB_DLINK_FOREACH(n, overriding_opers.head) | |
65 | { | |
66 | struct OverrideSession *s = n->data; | |
67 | ||
68 | if (s->client == source_p) | |
69 | { | |
70 | session_p = s; | |
71 | break; | |
72 | } | |
73 | } | |
74 | } | |
75 | ||
76 | if (session_p == NULL) | |
77 | { | |
78 | session_p = rb_malloc(sizeof(struct OverrideSession)); | |
79 | session_p->client = source_p; | |
80 | } | |
81 | ||
82 | session_p->deadline = rb_current_time() + 1800; | |
83 | ||
84 | rb_dlinkDelete(&session_p->node, &overriding_opers); | |
85 | rb_dlinkAdd(session_p, &session_p->node, &overriding_opers); | |
86 | } | |
87 | ||
88 | static void | |
89 | expire_override_deadlines(void *unused) | |
90 | { | |
91 | rb_dlink_node *n, *tn; | |
92 | ||
93 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
94 | { | |
95 | struct OverrideSession *session_p = n->data; | |
96 | ||
97 | if (session_p->deadline > rb_current_time()) | |
98 | break; | |
99 | else if (session_p->deadline < rb_current_time()) | |
100 | { | |
101 | const char *parv[4] = {session_p->client->name, session_p->client->name, "-p", NULL}; | |
102 | user_mode(session_p->client, session_p->client, 3, parv); | |
103 | } | |
104 | } | |
105 | } | |
106 | ||
107 | static void | |
108 | check_umode_change(void *vdata) | |
109 | { | |
110 | hook_data_umode_changed *data = (hook_data_umode_changed *)vdata; | |
111 | struct Client *source_p = data->client; | |
112 | ||
113 | if (!MyClient(source_p)) | |
114 | return; | |
115 | ||
116 | if (data->oldumodes & UMODE_OPER && !IsOper(source_p)) | |
117 | source_p->umodes &= ~user_modes['p']; | |
118 | ||
119 | /* didn't change +p umode, we don't need to do anything */ | |
120 | if (!((data->oldumodes ^ source_p->umodes) & user_modes['p'])) | |
121 | return; | |
122 | ||
123 | if (source_p->umodes & user_modes['p']) | |
124 | { | |
125 | if (!IsOperOverride(source_p)) | |
126 | { | |
127 | sendto_one_notice(source_p, ":*** You need oper:override privilege for +p"); | |
128 | source_p->umodes &= ~user_modes['p']; | |
129 | return; | |
130 | } | |
131 | ||
132 | update_session_deadline(source_p, NULL); | |
133 | ||
134 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s has enabled oper-override (+p)", | |
135 | get_oper_name(source_p)); | |
136 | } | |
137 | else if (!(source_p->umodes & user_modes['p'])) | |
138 | { | |
139 | rb_dlink_node *n, *tn; | |
140 | ||
141 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
142 | { | |
143 | struct OverrideSession *session_p = n->data; | |
144 | ||
145 | if (session_p->client != source_p) | |
146 | continue; | |
147 | ||
148 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s has disabled oper-override (+p)", | |
149 | get_oper_name(session_p->client)); | |
150 | ||
151 | rb_dlinkDelete(n, &overriding_opers); | |
152 | rb_free(session_p); | |
153 | } | |
154 | } | |
155 | } | |
156 | ||
157 | static void | |
158 | hack_channel_access(void *vdata) | |
159 | { | |
160 | hook_data_channel_approval *data = (hook_data_channel_approval *) vdata; | |
161 | ||
162 | if (data->dir == MODE_QUERY) | |
163 | return; | |
164 | ||
165 | if (data->approved == CHFL_CHANOP) | |
166 | return; | |
167 | ||
168 | if (data->client->umodes & user_modes['p']) | |
169 | { | |
170 | update_session_deadline(data->client, NULL); | |
171 | data->approved = CHFL_OVERRIDE; | |
172 | ||
173 | /* we only want to report modehacks, which are always non-NULL */ | |
174 | if (data->modestr) | |
175 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (modehacking: %s)", | |
176 | get_oper_name(data->client), data->chptr->chname, data->modestr); | |
177 | } | |
178 | } | |
179 | ||
180 | static void | |
181 | hack_can_join(void *vdata) | |
182 | { | |
183 | hook_data_channel *data = (hook_data_channel *) vdata; | |
184 | ||
185 | if (data->approved == 0) | |
186 | return; | |
187 | ||
188 | if (data->client->umodes & user_modes['p']) | |
189 | { | |
190 | update_session_deadline(data->client, NULL); | |
191 | data->approved = 0; | |
192 | ||
193 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (banwalking)", | |
194 | get_oper_name(data->client), data->chptr->chname); | |
195 | } | |
196 | } | |
197 | ||
198 | static void | |
199 | hack_can_kick(void *vdata) | |
200 | { | |
201 | hook_data_channel_approval *data = (hook_data_channel_approval *) vdata; | |
202 | int alevel; | |
203 | ||
204 | alevel = get_channel_access(data->client, data->chptr, data->msptr, data->dir, NULL); | |
205 | if (alevel != CHFL_OVERRIDE) | |
206 | return; | |
207 | ||
208 | if (data->client->umodes & user_modes['p']) | |
209 | { | |
210 | update_session_deadline(data->client, NULL); | |
211 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (KICK %s)", | |
212 | get_oper_name(data->client), data->chptr->chname, data->target->name); | |
213 | } | |
214 | } | |
215 | ||
216 | static void | |
217 | hack_can_send(void *vdata) | |
218 | { | |
219 | hook_data_channel_approval *data = (hook_data_channel_approval *) vdata; | |
220 | ||
221 | if (data->dir == MODE_QUERY) | |
222 | return; | |
223 | ||
224 | if (data->approved == CAN_SEND_NONOP || data->approved == CAN_SEND_OPV) | |
225 | return; | |
226 | ||
227 | if (data->client->umodes & user_modes['p']) | |
228 | { | |
229 | data->approved = CAN_SEND_NONOP; | |
230 | ||
231 | if (MyClient(data->client)) | |
232 | { | |
233 | update_session_deadline(data->client, NULL); | |
234 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (forcing message)", | |
235 | get_oper_name(data->client), data->chptr->chname); | |
236 | } | |
237 | } | |
238 | } | |
239 | ||
240 | static void | |
241 | handle_client_exit(void *vdata) | |
242 | { | |
243 | hook_data_client_exit *data = (hook_data_client_exit *) vdata; | |
244 | rb_dlink_node *n, *tn; | |
245 | struct Client *source_p = data->target; | |
246 | ||
247 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
248 | { | |
249 | struct OverrideSession *session_p = n->data; | |
250 | ||
251 | if (session_p->client != source_p) | |
252 | continue; | |
253 | ||
254 | rb_dlinkDelete(n, &overriding_opers); | |
255 | rb_free(session_p); | |
256 | } | |
257 | } | |
258 | ||
259 | struct ev_entry *expire_override_deadlines_ev = NULL; | |
260 | ||
261 | static int | |
262 | _modinit(void) | |
263 | { | |
264 | /* add the usermode to the available slot */ | |
265 | user_modes['p'] = find_umode_slot(); | |
266 | construct_umodebuf(); | |
267 | ||
268 | expire_override_deadlines_ev = rb_event_add("expire_override_deadlines", expire_override_deadlines, NULL, 60); | |
269 | ||
270 | return 0; | |
271 | } | |
272 | ||
273 | static void | |
274 | _moddeinit(void) | |
275 | { | |
276 | /* disable the umode and remove it from the available list */ | |
277 | user_modes['p'] = 0; | |
278 | construct_umodebuf(); | |
279 | ||
280 | rb_event_delete(expire_override_deadlines_ev); | |
281 | } | |
282 | ||
283 | DECLARE_MODULE_AV2(override, _modinit, _moddeinit, NULL, NULL, | |
284 | override_hfnlist, NULL, NULL, override_desc); |