Merge insp20

[user/henk/code/inspircd.git] / src / modules / m_sasl.cpp
diff --git a/src/modules/m_sasl.cpp b/src/modules/m_sasl.cpp

index 341b3aea7166139068f75039e4ebc1b101e98bb4..2b247a198a138ebc6e7cd9943db59002a58b0599 100644 (file)
--- a/src/modules/m_sasl.cpp
+++ b/src/modules/m_sasl.cpp
@@ -23,11 +23,114 @@
  #include "modules/account.h"
  #include "modules/sasl.h"
  #include "modules/ssl.h"
+#include "modules/spanningtree.h"
+
+static std::string sasl_target;
+
+class ServerTracker : public SpanningTreeEventListener
+{
+       bool online;
+
+       void Update(const Server* server, bool linked)
+       {
+               if (sasl_target == "*")
+                       return;
+
+               if (InspIRCd::Match(server->GetName(), sasl_target))
+               {
+                       ServerInstance->Logs->Log(MODNAME, LOG_VERBOSE, "SASL target server \"%s\" %s", sasl_target.c_str(), (linked ? "came online" : "went offline"));
+                       online = linked;
+               }
+       }
+
+       void OnServerLink(const Server* server) CXX11_OVERRIDE
+       {
+               Update(server, true);
+       }
+
+       void OnServerSplit(const Server* server) CXX11_OVERRIDE
+       {
+               Update(server, false);
+       }
+
+ public:
+       ServerTracker(Module* mod)
+               : SpanningTreeEventListener(mod)
+       {
+               Reset();
+       }
+
+       void Reset()
+       {
+               if (sasl_target == "*")
+               {
+                       online = true;
+                       return;
+               }
+
+               online = false;
+
+               ProtocolInterface::ServerList servers;
+               ServerInstance->PI->GetServerList(servers);
+               for (ProtocolInterface::ServerList::const_iterator i = servers.begin(); i != servers.end(); ++i)
+               {
+                       const ProtocolInterface::ServerInfo& server = *i;
+                       if (InspIRCd::Match(server.servername, sasl_target))
+                       {
+                               online = true;
+                               break;
+                       }
+               }
+       }
+
+       bool IsOnline() const { return online; }
+};
+
+class SASLCap : public Cap::Capability
+{
+       std::string mechlist;
+       const ServerTracker& servertracker;
+
+       bool OnRequest(LocalUser* user, bool adding) CXX11_OVERRIDE
+       {
+               // Requesting this cap is allowed anytime
+               if (adding)
+                       return true;
+
+               // But removing it can only be done when unregistered
+               return (user->registered != REG_ALL);
+       }
+
+       bool OnList(LocalUser* user) CXX11_OVERRIDE
+       {
+               return servertracker.IsOnline();
+       }
+
+       const std::string* GetValue(LocalUser* user) const CXX11_OVERRIDE
+       {
+               return &mechlist;
+       }
+
+ public:
+       SASLCap(Module* mod, const ServerTracker& tracker)
+               : Cap::Capability(mod, "sasl")
+               , servertracker(tracker)
+       {
+       }
+
+       void SetMechlist(const std::string& newmechlist)
+       {
+               if (mechlist == newmechlist)
+                       return;
+
+               mechlist = newmechlist;
+               NotifyValueChange();
+       }
+};
  
  enum SaslState { SASL_INIT, SASL_COMM, SASL_DONE };
  enum SaslResult { SASL_OK, SASL_FAIL, SASL_ABORT };
  
-static std::string sasl_target = "*";
  static Events::ModuleEventProvider* saslevprov;
  
  static void SendSASL(const parameterlist& params)
@@ -107,7 +210,7 @@ class SaslAuthenticator
                                 this->result = this->GetSaslResult(msg[3]);
                         }
                         else if (msg[2] == "M")
-                               this->user->WriteNumeric(908, "%s %s :are available SASL mechanisms", this->user->nick.c_str(), msg[3].c_str());
+                               this->user->WriteNumeric(908, msg[3], "are available SASL mechanisms");
                         else
                                 ServerInstance->Logs->Log(MODNAME, LOG_DEFAULT, "Services sent an unknown SASL message \"%s\" \"%s\"", msg[2].c_str(), msg[3].c_str());
  
@@ -142,7 +245,7 @@ class SaslAuthenticator
  
                 SendSASL(params);
  
-               if (parameters[0][0] == '*')
+               if (parameters[0].c_str()[0] == '*')
                 {
                         this->Abort();
                         return false;
@@ -159,13 +262,13 @@ class SaslAuthenticator
                 switch (this->result)
                 {
                  case SASL_OK:
-                       this->user->WriteNumeric(903, ":SASL authentication successful");
+                       this->user->WriteNumeric(903, "SASL authentication successful");
                         break;
                  case SASL_ABORT:
-                       this->user->WriteNumeric(906, ":SASL authentication aborted");
+                       this->user->WriteNumeric(906, "SASL authentication aborted");
                         break;
                  case SASL_FAIL:
-                       this->user->WriteNumeric(904, ":SASL authentication failed");
+                       this->user->WriteNumeric(904, "SASL authentication failed");
                         break;
                  default:
                         break;
@@ -179,8 +282,8 @@ class CommandAuthenticate : public Command
  {
   public:
         SimpleExtItem<SaslAuthenticator>& authExt;
-       GenericCap& cap;
-       CommandAuthenticate(Module* Creator, SimpleExtItem<SaslAuthenticator>& ext, GenericCap& Cap)
+       Cap::Capability& cap;
+       CommandAuthenticate(Module* Creator, SimpleExtItem<SaslAuthenticator>& ext, Cap::Capability& Cap)
                 : Command(Creator, "AUTHENTICATE", 1), authExt(ext), cap(Cap)
         {
                 works_before_reg = true;
@@ -188,10 +291,8 @@ class CommandAuthenticate : public Command
  
         CmdResult Handle (const std::vector<std::string>& parameters, User *user)
         {
-               /* Only allow AUTHENTICATE on unregistered clients */
-               if (user->registered != REG_ALL)
                 {
-                       if (!cap.ext.get(user))
+                       if (!cap.get(user))
                                 return CMD_FAILURE;
  
                         SaslAuthenticator *sasl = authExt.get(user);
@@ -218,8 +319,8 @@ class CommandSASL : public Command
  
         CmdResult Handle(const std::vector<std::string>& parameters, User *user)
         {
-               User* target = ServerInstance->FindNick(parameters[1]);
-               if ((!target) || (IS_SERVER(target)))
+               User* target = ServerInstance->FindUUID(parameters[1]);
+               if (!target)
                 {
                         ServerInstance->Logs->Log(MODNAME, LOG_DEBUG, "User not found in sasl ENCAP event: %s", parameters[1].c_str());
                         return CMD_FAILURE;
@@ -247,7 +348,8 @@ class CommandSASL : public Command
  class ModuleSASL : public Module
  {
         SimpleExtItem<SaslAuthenticator> authExt;
-       GenericCap cap;
+       ServerTracker servertracker;
+       SASLCap cap;
         CommandAuthenticate auth;
         CommandSASL sasl;
         Events::ModuleEventProvider sasleventprov;
@@ -255,7 +357,8 @@ class ModuleSASL : public Module
   public:
         ModuleSASL()
                 : authExt("sasl_auth", ExtensionItem::EXT_USER, this)
-               , cap(this, "sasl")
+               , servertracker(this)
+               , cap(this, servertracker)
                 , auth(this, authExt, cap)
                 , sasl(this, authExt)
                 , sasleventprov(this, "event/sasl")
@@ -272,6 +375,7 @@ class ModuleSASL : public Module
         void ReadConfig(ConfigStatus& status) CXX11_OVERRIDE
         {
                 sasl_target = ServerInstance->Config->ConfValue("sasl")->getString("target", "*");
+               servertracker.Reset();
         }
  
         ModResult OnUserRegister(LocalUser *user) CXX11_OVERRIDE
@@ -286,6 +390,12 @@ class ModuleSASL : public Module
                 return MOD_RES_PASSTHRU;
         }
  
+       void OnDecodeMetaData(Extensible* target, const std::string& extname, const std::string& extdata) CXX11_OVERRIDE
+       {
+               if ((target == NULL) && (extname == "saslmechlist"))
+                       cap.SetMechlist(extdata);
+       }
+
         Version GetVersion() CXX11_OVERRIDE
         {
                 return Version("Provides support for IRC Authentication Layer (aka: SASL) via AUTHENTICATE.", VF_VENDOR);