src/modules/m_connflood.cpp

   1 /*
   2  * InspIRCd -- Internet Relay Chat Daemon
   3  *
   4  *   Copyright (C) 2007 Dennis Friis <peavey@inspircd.org>
   5  *   Copyright (C) 2007 Robin Burchell <robin+git@viroteck.net>
   6  *   Copyright (C) 2006 Craig Edwards <craigedwards@brainbox.cc>
   7  *
   8  * This file is part of InspIRCd.  InspIRCd is free software: you can
   9  * redistribute it and/or modify it under the terms of the GNU General Public
  10  * License as published by the Free Software Foundation, version 2.
  11  *
  12  * This program is distributed in the hope that it will be useful, but WITHOUT
  13  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
  14  * FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more
  15  * details.
  16  *
  17  * You should have received a copy of the GNU General Public License
  18  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  19  */
  20
  21
  22 #include "inspircd.h"
  23
  24 /* $ModDesc: Connection throttle */
  25
  26 class ModuleConnFlood : public Module
  27 {
  28 private:
  29         int seconds, timeout, boot_wait;
  30         unsigned int conns;
  31         unsigned int maxconns;
  32         bool throttled;
  33         time_t first;
  34         std::string quitmsg;
  35
  36 public:
  37         ModuleConnFlood()
  38                 : conns(0), throttled(false)
  39         {
  40         }
  41
  42         void init()
  43         {
  44                 InitConf();
  45                 Implementation eventlist[] = { I_OnRehash, I_OnUserRegister };
  46                 ServerInstance->Modules->Attach(eventlist, this, 2);
  47         }
  48
  49         virtual Version GetVersion()
  50         {
  51                 return Version("Connection throttle", VF_VENDOR);
  52         }
  53
  54         void InitConf()
  55         {
  56                 /* read configuration variables */
  57                 ConfigTag* tag = ServerInstance->Config->ConfValue("connflood");
  58                 /* throttle configuration */
  59                 seconds = tag->getInt("seconds");
  60                 maxconns = tag->getInt("maxconns");
  61                 timeout = tag->getInt("timeout");
  62                 quitmsg = tag->getString("quitmsg");
  63
  64                 /* seconds to wait when the server just booted */
  65                 boot_wait = tag->getInt("bootwait");
  66
  67                 first = ServerInstance->Time();
  68         }
  69
  70         virtual ModResult OnUserRegister(LocalUser* user)
  71         {
  72                 time_t next = ServerInstance->Time();
  73
  74                 if ((ServerInstance->startup_time + boot_wait) > next)
  75                         return MOD_RES_PASSTHRU;
  76
  77                 /* time difference between first and latest connection */
  78                 time_t tdiff = next - first;
  79
  80                 /* increase connection count */
  81                 conns++;
  82
  83                 if (throttled)
  84                 {
  85                         if (tdiff > seconds + timeout)
  86                         {
  87                                 /* expire throttle */
  88                                 throttled = false;
  89                                 ServerInstance->SNO->WriteGlobalSno('a', "Connection throttle deactivated");
  90                                 return MOD_RES_PASSTHRU;
  91                         }
  92
  93                         ServerInstance->Users->QuitUser(user, quitmsg);
  94                         return MOD_RES_DENY;
  95                 }
  96
  97                 if (tdiff <= seconds)
  98                 {
  99                         if (conns >= maxconns)
 100                         {
 101                                 throttled = true;
 102                                 ServerInstance->SNO->WriteGlobalSno('a', "Connection throttle activated");
 103                                 ServerInstance->Users->QuitUser(user, quitmsg);
 104                                 return MOD_RES_DENY;
 105                         }
 106                 }
 107                 else
 108                 {
 109                         conns = 1;
 110                         first = next;
 111                 }
 112                 return MOD_RES_PASSTHRU;
 113         }
 114
 115         virtual void OnRehash(User* user)
 116         {
 117                 InitConf();
 118         }
 119
 120 };
 121
 122 MODULE_INIT(ModuleConnFlood)