]>
Commit | Line | Data |
---|---|---|
1 | /* | |
2 | * ircd-ratbox: A slightly useful ircd. | |
3 | * m_webirc.c: Makes CGI:IRC users appear as coming from their real host | |
4 | * | |
5 | * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center | |
6 | * Copyright (C) 1996-2002 Hybrid Development Team | |
7 | * Copyright (C) 2002-2006 ircd-ratbox development team | |
8 | * | |
9 | * This program is free software; you can redistribute it and/or modify | |
10 | * it under the terms of the GNU General Public License as published by | |
11 | * the Free Software Foundation; either version 2 of the License, or | |
12 | * (at your option) any later version. | |
13 | * | |
14 | * This program is distributed in the hope that it will be useful, | |
15 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
16 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
17 | * GNU General Public License for more details. | |
18 | * | |
19 | * You should have received a copy of the GNU General Public License | |
20 | * along with this program; if not, write to the Free Software | |
21 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 | |
22 | * USA | |
23 | * | |
24 | * $Id: m_webirc.c 3458 2007-05-18 19:51:22Z jilles $ | |
25 | */ | |
26 | /* Usage: | |
27 | * auth { | |
28 | * user = "webirc@<cgiirc ip>"; # if identd used, put ident username instead | |
29 | * password = "<password>"; # encryption possible | |
30 | * spoof = "webirc." | |
31 | * class = "users"; | |
32 | * }; | |
33 | * Possible flags: | |
34 | * encrypted - password is encrypted (recommended) | |
35 | * kline_exempt - klines on the cgiirc ip are ignored | |
36 | * dlines are checked on the cgiirc ip (of course). | |
37 | * k/d/x lines, auth blocks, user limits, etc are checked using the | |
38 | * real host/ip. | |
39 | * The password should be specified unencrypted in webirc_password in | |
40 | * cgiirc.config | |
41 | */ | |
42 | ||
43 | #include "stdinc.h" | |
44 | #include "client.h" /* client struct */ | |
45 | #include "match.h" | |
46 | #include "hostmask.h" | |
47 | #include "send.h" /* sendto_one */ | |
48 | #include "numeric.h" /* ERR_xxx */ | |
49 | #include "ircd.h" /* me */ | |
50 | #include "msg.h" | |
51 | #include "parse.h" | |
52 | #include "modules.h" | |
53 | #include "s_serv.h" | |
54 | #include "hash.h" | |
55 | #include "s_conf.h" | |
56 | #include "reject.h" | |
57 | ||
58 | static int mr_webirc(struct Client *, struct Client *, int, const char **); | |
59 | ||
60 | struct Message webirc_msgtab = { | |
61 | "WEBIRC", 0, 0, 0, MFLG_SLOW | MFLG_UNREG, | |
62 | {{mr_webirc, 5}, mg_reg, mg_ignore, mg_ignore, mg_ignore, mg_reg} | |
63 | }; | |
64 | ||
65 | mapi_clist_av1 webirc_clist[] = { &webirc_msgtab, NULL }; | |
66 | DECLARE_MODULE_AV1(webirc, NULL, NULL, webirc_clist, NULL, NULL, "$Revision: 20702 $"); | |
67 | ||
68 | /* | |
69 | * mr_webirc - webirc message handler | |
70 | * parv[0] = sender prefix | |
71 | * parv[1] = password | |
72 | * parv[2] = fake username (we ignore this) | |
73 | * parv[3] = fake hostname | |
74 | * parv[4] = fake ip | |
75 | */ | |
76 | static int | |
77 | mr_webirc(struct Client *client_p, struct Client *source_p, int parc, const char *parv[]) | |
78 | { | |
79 | struct ConfItem *aconf; | |
80 | const char *encr; | |
81 | ||
82 | if (!strchr(parv[4], '.') && !strchr(parv[4], ':')) | |
83 | { | |
84 | sendto_one(source_p, "NOTICE * :Invalid IP"); | |
85 | return 0; | |
86 | } | |
87 | ||
88 | aconf = find_address_conf(client_p->host, client_p->sockhost, | |
89 | IsGotId(client_p) ? client_p->username : "webirc", | |
90 | IsGotId(client_p) ? client_p->username : "webirc", | |
91 | (struct sockaddr *) &client_p->localClient->ip, | |
92 | client_p->localClient->ip.ss_family, NULL); | |
93 | if (aconf == NULL || !(aconf->status & CONF_CLIENT)) | |
94 | return 0; | |
95 | if (!IsConfDoSpoofIp(aconf) || irccmp(aconf->name, "webirc.")) | |
96 | { | |
97 | /* XXX */ | |
98 | sendto_one(source_p, "NOTICE * :Not a CGI:IRC auth block"); | |
99 | return 0; | |
100 | } | |
101 | if (EmptyString(aconf->passwd)) | |
102 | { | |
103 | sendto_one(source_p, "NOTICE * :CGI:IRC auth blocks must have a password"); | |
104 | return 0; | |
105 | } | |
106 | ||
107 | if (EmptyString(parv[1])) | |
108 | encr = ""; | |
109 | else if (IsConfEncrypted(aconf)) | |
110 | encr = crypt(parv[1], aconf->passwd); | |
111 | else | |
112 | encr = parv[1]; | |
113 | ||
114 | if (strcmp(encr, aconf->passwd)) | |
115 | { | |
116 | sendto_one(source_p, "NOTICE * :CGI:IRC password incorrect"); | |
117 | return 0; | |
118 | } | |
119 | ||
120 | ||
121 | rb_strlcpy(source_p->sockhost, parv[4], sizeof(source_p->sockhost)); | |
122 | ||
123 | if(strlen(parv[3]) <= HOSTLEN) | |
124 | rb_strlcpy(source_p->host, parv[3], sizeof(source_p->host)); | |
125 | else | |
126 | rb_strlcpy(source_p->host, source_p->sockhost, sizeof(source_p->host)); | |
127 | ||
128 | rb_inet_pton_sock(parv[4], (struct sockaddr *)&source_p->localClient->ip); | |
129 | ||
130 | /* Check dlines now, klines will be checked on registration */ | |
131 | if((aconf = find_dline((struct sockaddr *)&source_p->localClient->ip, | |
132 | source_p->localClient->ip.ss_family))) | |
133 | { | |
134 | if(!(aconf->status & CONF_EXEMPTDLINE)) | |
135 | { | |
136 | exit_client(client_p, source_p, &me, "D-lined"); | |
137 | return 0; | |
138 | } | |
139 | } | |
140 | ||
141 | sendto_one(source_p, "NOTICE * :CGI:IRC host/IP set to %s %s", parv[3], parv[4]); | |
142 | return 0; | |
143 | } |