]>
Commit | Line | Data |
---|---|---|
1 | /* | |
2 | * oper-override for charybdis. | |
3 | * | |
4 | * adds usermode +p and has a timer event that is iterated over to disable | |
5 | * usermode +p after a while... | |
6 | * | |
7 | * you need to have oper:override permission on the opers you want to be | |
8 | * able to use this extension. | |
9 | */ | |
10 | ||
11 | #include "stdinc.h" | |
12 | #include "modules.h" | |
13 | #include "hook.h" | |
14 | #include "client.h" | |
15 | #include "ircd.h" | |
16 | #include "send.h" | |
17 | #include "hash.h" | |
18 | #include "s_conf.h" | |
19 | #include "s_user.h" | |
20 | #include "s_serv.h" | |
21 | #include "numeric.h" | |
22 | #include "privilege.h" | |
23 | #include "s_newconf.h" | |
24 | ||
25 | static const char override_desc[] = | |
26 | "Adds user mode +p, an operator-only user mode that grants temporary privileges to override anything"; | |
27 | ||
28 | static void check_umode_change(void *data); | |
29 | static void hack_channel_access(void *data); | |
30 | static void hack_can_join(void *data); | |
31 | static void hack_can_kick(void *data); | |
32 | static void hack_can_send(void *data); | |
33 | static void handle_client_exit(void *data); | |
34 | ||
35 | mapi_hfn_list_av1 override_hfnlist[] = { | |
36 | { "umode_changed", (hookfn) check_umode_change }, | |
37 | { "get_channel_access", (hookfn) hack_channel_access }, | |
38 | { "can_join", (hookfn) hack_can_join }, | |
39 | { "can_kick", (hookfn) hack_can_kick }, | |
40 | { "can_send", (hookfn) hack_can_send }, | |
41 | { "client_exit", (hookfn) handle_client_exit }, | |
42 | { NULL, NULL } | |
43 | }; | |
44 | ||
45 | #define CHFL_OVERRIDE 0x0004 | |
46 | #define IsOperOverride(x) (HasPrivilege((x), "oper:override")) | |
47 | ||
48 | struct OverrideSession { | |
49 | rb_dlink_node node; | |
50 | ||
51 | struct Client *client; | |
52 | time_t deadline; | |
53 | }; | |
54 | ||
55 | rb_dlink_list overriding_opers = { NULL, NULL, 0 }; | |
56 | ||
57 | static void | |
58 | update_session_deadline(struct Client *source_p, struct OverrideSession *session_p) | |
59 | { | |
60 | if (session_p == NULL) | |
61 | { | |
62 | rb_dlink_node *n; | |
63 | ||
64 | RB_DLINK_FOREACH(n, overriding_opers.head) | |
65 | { | |
66 | struct OverrideSession *s = n->data; | |
67 | ||
68 | if (s->client == source_p) | |
69 | { | |
70 | session_p = s; | |
71 | break; | |
72 | } | |
73 | } | |
74 | } | |
75 | ||
76 | if (session_p == NULL) | |
77 | { | |
78 | session_p = rb_malloc(sizeof(struct OverrideSession)); | |
79 | session_p->client = source_p; | |
80 | } | |
81 | ||
82 | session_p->deadline = rb_current_time() + 1800; | |
83 | ||
84 | rb_dlinkDelete(&session_p->node, &overriding_opers); | |
85 | rb_dlinkAdd(session_p, &session_p->node, &overriding_opers); | |
86 | } | |
87 | ||
88 | static void | |
89 | expire_override_deadlines(void *unused) | |
90 | { | |
91 | rb_dlink_node *n, *tn; | |
92 | ||
93 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
94 | { | |
95 | struct OverrideSession *session_p = n->data; | |
96 | ||
97 | if (session_p->deadline > rb_current_time()) | |
98 | break; | |
99 | else if (session_p->deadline < rb_current_time()) | |
100 | { | |
101 | const char *parv[4] = {session_p->client->name, session_p->client->name, "-p", NULL}; | |
102 | user_mode(session_p->client, session_p->client, 3, parv); | |
103 | } | |
104 | } | |
105 | } | |
106 | ||
107 | static void | |
108 | check_umode_change(void *vdata) | |
109 | { | |
110 | hook_data_umode_changed *data = (hook_data_umode_changed *)vdata; | |
111 | bool changed = false; | |
112 | struct Client *source_p = data->client; | |
113 | ||
114 | if (!MyClient(source_p)) | |
115 | return; | |
116 | ||
117 | if (data->oldumodes & UMODE_OPER && !IsOper(source_p)) | |
118 | source_p->umodes &= ~user_modes['p']; | |
119 | ||
120 | changed = ((data->oldumodes ^ source_p->umodes) & user_modes['p']); | |
121 | ||
122 | if (source_p->umodes & user_modes['p']) | |
123 | { | |
124 | if (!IsOperOverride(source_p)) | |
125 | { | |
126 | sendto_one_notice(source_p, ":*** You need oper:override privilege for +p"); | |
127 | source_p->umodes &= ~user_modes['p']; | |
128 | return; | |
129 | } | |
130 | ||
131 | if (changed) | |
132 | { | |
133 | update_session_deadline(source_p, NULL); | |
134 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s has enabled oper-override (+p)", | |
135 | get_oper_name(source_p)); | |
136 | } | |
137 | } | |
138 | else if (changed && !(source_p->umodes & user_modes['p'])) | |
139 | { | |
140 | rb_dlink_node *n, *tn; | |
141 | ||
142 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
143 | { | |
144 | struct OverrideSession *session_p = n->data; | |
145 | ||
146 | if (session_p->client != source_p) | |
147 | continue; | |
148 | ||
149 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s has disabled oper-override (+p)", | |
150 | get_oper_name(session_p->client)); | |
151 | ||
152 | rb_dlinkDelete(n, &overriding_opers); | |
153 | rb_free(session_p); | |
154 | } | |
155 | } | |
156 | } | |
157 | ||
158 | static void | |
159 | hack_channel_access(void *vdata) | |
160 | { | |
161 | hook_data_channel_approval *data = (hook_data_channel_approval *) vdata; | |
162 | ||
163 | if (data->dir == MODE_QUERY) | |
164 | return; | |
165 | ||
166 | if (data->approved == CHFL_CHANOP) | |
167 | return; | |
168 | ||
169 | if (data->client->umodes & user_modes['p']) | |
170 | { | |
171 | update_session_deadline(data->client, NULL); | |
172 | data->approved = CHFL_OVERRIDE; | |
173 | ||
174 | /* we only want to report modehacks, which are always non-NULL */ | |
175 | if (data->modestr) | |
176 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (modehacking: %s)", | |
177 | get_oper_name(data->client), data->chptr->chname, data->modestr); | |
178 | } | |
179 | } | |
180 | ||
181 | static void | |
182 | hack_can_join(void *vdata) | |
183 | { | |
184 | hook_data_channel *data = (hook_data_channel *) vdata; | |
185 | ||
186 | if (data->approved == 0) | |
187 | return; | |
188 | ||
189 | if (data->client->umodes & user_modes['p']) | |
190 | { | |
191 | update_session_deadline(data->client, NULL); | |
192 | data->approved = 0; | |
193 | ||
194 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (banwalking)", | |
195 | get_oper_name(data->client), data->chptr->chname); | |
196 | } | |
197 | } | |
198 | ||
199 | static void | |
200 | hack_can_kick(void *vdata) | |
201 | { | |
202 | hook_data_channel_approval *data = (hook_data_channel_approval *) vdata; | |
203 | int alevel; | |
204 | ||
205 | alevel = get_channel_access(data->client, data->chptr, data->msptr, data->dir, NULL); | |
206 | if (alevel != CHFL_OVERRIDE) | |
207 | return; | |
208 | ||
209 | if (data->client->umodes & user_modes['p']) | |
210 | { | |
211 | update_session_deadline(data->client, NULL); | |
212 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (KICK %s)", | |
213 | get_oper_name(data->client), data->chptr->chname, data->target->name); | |
214 | } | |
215 | } | |
216 | ||
217 | static void | |
218 | hack_can_send(void *vdata) | |
219 | { | |
220 | hook_data_channel_approval *data = (hook_data_channel_approval *) vdata; | |
221 | ||
222 | if (data->dir == MODE_QUERY) | |
223 | return; | |
224 | ||
225 | if (data->approved == CAN_SEND_NONOP || data->approved == CAN_SEND_OPV) | |
226 | return; | |
227 | ||
228 | if (data->client->umodes & user_modes['p']) | |
229 | { | |
230 | data->approved = CAN_SEND_NONOP; | |
231 | ||
232 | if (MyClient(data->client)) | |
233 | { | |
234 | update_session_deadline(data->client, NULL); | |
235 | sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "%s is using oper-override on %s (forcing message)", | |
236 | get_oper_name(data->client), data->chptr->chname); | |
237 | } | |
238 | } | |
239 | } | |
240 | ||
241 | static void | |
242 | handle_client_exit(void *vdata) | |
243 | { | |
244 | hook_data_client_exit *data = (hook_data_client_exit *) vdata; | |
245 | rb_dlink_node *n, *tn; | |
246 | struct Client *source_p = data->target; | |
247 | ||
248 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
249 | { | |
250 | struct OverrideSession *session_p = n->data; | |
251 | ||
252 | if (session_p->client != source_p) | |
253 | continue; | |
254 | ||
255 | rb_dlinkDelete(n, &overriding_opers); | |
256 | rb_free(session_p); | |
257 | } | |
258 | } | |
259 | ||
260 | struct ev_entry *expire_override_deadlines_ev = NULL; | |
261 | ||
262 | static int | |
263 | _modinit(void) | |
264 | { | |
265 | rb_dlink_node *ptr; | |
266 | ||
267 | /* add the usermode to the available slot */ | |
268 | user_modes['p'] = find_umode_slot(); | |
269 | construct_umodebuf(); | |
270 | ||
271 | RB_DLINK_FOREACH(ptr, lclient_list.head) | |
272 | { | |
273 | struct Client *client_p = ptr->data; | |
274 | if (IsPerson(client_p) && (client_p->umodes & user_modes['p'])) | |
275 | update_session_deadline(client_p, NULL); | |
276 | } | |
277 | ||
278 | expire_override_deadlines_ev = rb_event_add("expire_override_deadlines", expire_override_deadlines, NULL, 60); | |
279 | ||
280 | return 0; | |
281 | } | |
282 | ||
283 | static void | |
284 | _moddeinit(void) | |
285 | { | |
286 | rb_dlink_node *n, *tn; | |
287 | ||
288 | /* disable the umode and remove it from the available list */ | |
289 | user_modes['p'] = 0; | |
290 | construct_umodebuf(); | |
291 | ||
292 | RB_DLINK_FOREACH_SAFE(n, tn, overriding_opers.head) | |
293 | { | |
294 | rb_dlinkDelete(n, &overriding_opers); | |
295 | rb_free(n->data); | |
296 | } | |
297 | ||
298 | rb_event_delete(expire_override_deadlines_ev); | |
299 | } | |
300 | ||
301 | DECLARE_MODULE_AV2(override, _modinit, _moddeinit, NULL, NULL, | |
302 | override_hfnlist, NULL, NULL, override_desc); |