X-Git-Url: https://git.netwichtig.de/gitweb/?a=blobdiff_plain;f=src%2Fmodules%2Fm_cloaking.cpp;h=a236300f18404bf623e7ad73a12b738862dd4530;hb=2630a87bb13b089e6d0fdcff4bcd0f3a9612e52f;hp=0583930d5dbfec86e554f6479f3b4d1730763d42;hpb=71f99fd5b1f41b0229284a8799b338515cdba529;p=user%2Fhenk%2Fcode%2Finspircd.git

diff --git a/src/modules/m_cloaking.cpp b/src/modules/m_cloaking.cpp
index 0583930d5..a236300f1 100644
--- a/src/modules/m_cloaking.cpp
+++ b/src/modules/m_cloaking.cpp
@@ -2,8 +2,8 @@
  *       | Inspire Internet Relay Chat Daemon |
  *       +------------------------------------+
  *
- *  InspIRCd: (C) 2002-2008 InspIRCd Development Team
- * See: http://www.inspircd.org/wiki/index.php/Credits
+ *  InspIRCd: (C) 2002-2009 InspIRCd Development Team
+ * See: http://wiki.inspircd.org/Credits
  *
  * This program is free but copyrighted software; see
  *	    the file COPYING for details.
@@ -32,74 +32,6 @@ class CloakUser : public ModeHandler
 	Module* HashProvider;
 	const char *xtab[4];
 
-	void ApplyCloak(User *dest)
-	{
-		if (dest->host.find('.') != std::string::npos || dest->host.find(':') != std::string::npos)
-		{
-			unsigned int iv[] = { key1, key2, key3, key4 };
-			std::string a = LastTwoDomainParts(dest->host);
-			std::string b;
-
-			/* InspIRCd users have two hostnames; A displayed
-			 * hostname which can be modified by modules (e.g.
-			 * to create vhosts, implement chghost, etc) and a
-			 * 'real' hostname which you shouldnt write to.
-			 */
-
-			/* 2008/08/18: add <cloak:ipalways> which always cloaks
-			 * the IP, for anonymity. --nenolod
-			 */
-			if (!ipalways)
-			{
-				/** Reset the Hash module, and send it our IV and hex table */
-				HashResetRequest(Sender, HashProvider).Send();
-				HashKeyRequest(Sender, HashProvider, iv).Send();
-				HashHexRequest(Sender, HashProvider, xtab[(dest->host[0]) % 4]);
-
-				/* Generate a cloak using specialized Hash */
-				std::string hostcloak = prefix + "-" + std::string(HashSumRequest(Sender, HashProvider, dest->host.c_str()).Send()).substr(0,8) + a;
-
-				/* Fix by brain - if the cloaked host is > the max length of a host (64 bytes
-				 * according to the DNS RFC) then tough titty, they get cloaked as an IP.
-				 * Their ISP shouldnt go to town on subdomains, or they shouldnt have a kiddie
-				 * vhost.
-				 */
-#ifdef IPV6
-				in6_addr testaddr;
-				in_addr testaddr2;
-				if ((dest->GetProtocolFamily() == AF_INET6) && (inet_pton(AF_INET6,dest->host.c_str(),&testaddr) < 1) && (hostcloak.length() <= 64))
-					/* Invalid ipv6 address, and ipv6 user (resolved host) */
-					b = hostcloak;
-				else if ((dest->GetProtocolFamily() == AF_INET) && (inet_aton(dest->host.c_str(),&testaddr2) < 1) && (hostcloak.length() <= 64))
-					/* Invalid ipv4 address, and ipv4 user (resolved host) */
-					b = hostcloak;
-				else
-					/* Valid ipv6 or ipv4 address (not resolved) ipv4 or ipv6 user */
-					b = ((!strchr(dest->host.c_str(),':')) ? Cloak4(dest->host.c_str()) : Cloak6(dest->host.c_str()));
-#else
-				in_addr testaddr;
-				if ((inet_aton(dest->host.c_str(),&testaddr) < 1) && (hostcloak.length() <= 64))
-					/* Invalid ipv4 address, and ipv4 user (resolved host) */
-					b = hostcloak;
-				else
-					/* Valid ipv4 address (not resolved) ipv4 user */
-					b = Cloak4(dest->host.c_str());
-#endif
-			}
-			else
-			{
-#ifdef IPV6
-				if (dest->GetProtocolFamily() == AF_INET6)
-					b = Cloak6(dest->GetIPString());
-#endif
-				if (dest->GetProtocolFamily() == AF_INET)
-					b = Cloak4(dest->GetIPString());
-			}
-
-			dest->Extend("cloaked_host", new std::string(b));
-		}
-	}
-
 	/** This function takes a domain name string and returns just the last two domain parts,
 	 * or the last domain part if only two are available. Failing that it just returns what it was given.
 	 *
@@ -137,9 +69,6 @@ class CloakUser : public ModeHandler
 
 	ModeAction OnModeChange(User* source, User* dest, Channel* channel, std::string &parameter, bool adding, bool)
 	{
-		if (source != dest)
-			return MODEACTION_DENY;
-
 		/* For remote clients, we dont take any action, we just allow it.
 		 * The local server where they are will set their cloak instead.
 		 * This is fine, as we will recieve it later.
@@ -170,15 +99,15 @@ class CloakUser : public ModeHandler
 
 				if (!dest->GetExt("cloaked_host", cloak))
 				{
-					/* Cloaked host has not been calculated previously */
-					this->ApplyCloak(dest);
-					if (!dest->GetExt("cloaked_host", cloak))
-						throw "ack, can't cloak!";
+					/* Force creation of missing cloak */
+					Sender->OnUserConnect(dest);
+				}
+				if (dest->GetExt("cloaked_host", cloak))
+				{
+					dest->ChangeDisplayedHost(cloak->c_str());
+					dest->SetMode('x',true);
+					return MODEACTION_ALLOW;
 				}
-
-				dest->ChangeDisplayedHost(cloak->c_str());
-				dest->SetMode('x',true);
-				return MODEACTION_ALLOW;
 			}
 		}
 		else
@@ -231,11 +160,6 @@ class CloakUser : public ModeHandler
 
 	std::string Cloak6(const char* ip)
 	{
-		/* Theyre using 4in6 (YUCK). Translate as ipv4 cloak */
-		if (!strncmp(ip, "0::ffff:", 8))
-			return Cloak4(ip + 8);
-
-		/* If we get here, yes it really is an ipv6 ip */
 		unsigned int iv[] = { key1, key2, key3, key4 };
 		std::vector<std::string> hashies;
 		std::string item;
@@ -326,16 +250,14 @@ class CloakUser : public ModeHandler
 class ModuleCloaking : public Module
 {
  private:
-
  	CloakUser* cu;
-	Module* HashModule;
 
  public:
 	ModuleCloaking(InspIRCd* Me)
 		: Module(Me)
 	{
 		/* Attempt to locate the md5 service provider, bail if we can't find it */
-		HashModule = ServerInstance->Modules->Find("m_md5.so");
+		Module* HashModule = ServerInstance->Modules->Find("m_md5.so");
 		if (!HashModule)
 			throw ModuleException("Can't find m_md5.so. Please load m_md5.so before m_cloaking.so.");
 
@@ -343,7 +265,7 @@ class ModuleCloaking : public Module
 
 		try
 		{
-			OnRehash(NULL,"");
+			OnRehash(NULL);
 		}
 		catch (ModuleException &e)
 		{
@@ -360,8 +282,10 @@ class ModuleCloaking : public Module
 
 		ServerInstance->Modules->UseInterface("HashRequest");
 
-		Implementation eventlist[] = { I_OnRehash, I_OnUserDisconnect, I_OnCleanup, I_OnCheckBan, I_OnUserConnect, I_OnSyncUserMetaData };
+		Implementation eventlist[] = { I_OnRehash, I_OnUserDisconnect, I_OnCleanup, I_OnCheckBan, I_OnUserConnect, I_OnSyncUserMetaData, I_OnCleanup };
 		ServerInstance->Modules->Attach(eventlist, this, 6);
+
+		CloakExistingUsers();
 	}
 
 	void OnSyncUserMetaData(User* user, Module* proto,void* opaque, const std::string &extname, bool displayable)
@@ -374,6 +298,17 @@ class ModuleCloaking : public Module
 		}
 	}
 
+	void CloakExistingUsers()
+	{
+		std::string* cloak;
+		for (std::vector<User*>::iterator u = ServerInstance->Users->local_users.begin(); u != ServerInstance->Users->local_users.end(); u++)
+		{
+			if (!(*u)->GetExt("cloaked_host", cloak))
+			{
+				OnUserConnect(*u);
+			}
+		}
+	}
 
 	virtual int OnCheckBan(User* user, Channel* chan)
 	{
@@ -395,14 +330,21 @@ class ModuleCloaking : public Module
  	void Prioritize()
 	{
 		/* Needs to be after m_banexception etc. */
-		ServerInstance->Modules->SetPriority(this, I_OnCheckBan, PRIO_LAST);
+		ServerInstance->Modules->SetPriority(this, I_OnCheckBan, PRIORITY_LAST);
+
+		/* but before m_conn_umodes, so host is generated ready to apply */
+		Module *um = ServerInstance->Modules->Find("m_conn_umodes.so");
+		ServerInstance->Modules->SetPriority(this, I_OnUserConnect, PRIORITY_AFTER, &um);
 	}
 
 	virtual void OnUserDisconnect(User* user)
 	{
 		std::string* tofree;
 		if (user->GetExt("cloaked_host", tofree))
+		{
 			delete tofree;
+			user->Shrink("cloaked_host");
+		}
 	}
 
 	virtual void OnCleanup(int target_type, void* item)
@@ -425,11 +367,69 @@ class ModuleCloaking : public Module
 		return Version("$Id$", VF_COMMON|VF_VENDOR,API_VERSION);
 	}
 
-	virtual void OnRehash(User* user, const std::string &parameter)
+	virtual void OnRehash(User* user)
 	{
 		cu->DoRehash();
 	}
 
+	virtual void OnUserConnect(User* dest)
+	{
+		std::string* tofree;
+		if (dest->GetExt("cloaked_host", tofree))
+			return;
+
+		if (dest->host.find('.') != std::string::npos || dest->host.find(':') != std::string::npos)
+		{
+			unsigned int iv[] = { cu->key1, cu->key2, cu->key3, cu->key4 };
+			std::string a = cu->LastTwoDomainParts(dest->host);
+			std::string b;
+
+			/* InspIRCd users have two hostnames; A displayed
+			 * hostname which can be modified by modules (e.g.
+			 * to create vhosts, implement chghost, etc) and a
+			 * 'real' hostname which you shouldnt write to.
+			 */
+
+			/* 2008/08/18: add <cloak:ipalways> which always cloaks
+			 * the IP, for anonymity. --nenolod
+			 */
+			if (!cu->ipalways)
+			{
+				/** Reset the Hash module, and send it our IV and hex table */
+				HashResetRequest(this, cu->HashProvider).Send();
+				HashKeyRequest(this, cu->HashProvider, iv).Send();
+				HashHexRequest(this, cu->HashProvider, cu->xtab[(dest->host[0]) % 4]);
+
+				/* Generate a cloak using specialized Hash */
+				std::string hostcloak = cu->prefix + "-" + std::string(HashSumRequest(this, cu->HashProvider, dest->host.c_str()).Send()).substr(0,8) + a;
+
+				/* Fix by brain - if the cloaked host is > the max length of a host (64 bytes
+				 * according to the DNS RFC) then tough titty, they get cloaked as an IP.
+				 * Their ISP shouldnt go to town on subdomains, or they shouldnt have a kiddie
+				 * vhost.
+				 */
+				std::string testaddr;
+				int testport;
+				if (!irc::sockets::satoap(&dest->client_sa, testaddr, testport) && (hostcloak.length() <= 64))
+					/* not a valid address, must have been a host, so cloak as a host */
+					b = hostcloak;
+				else if (dest->client_sa.sa.sa_family == AF_INET6)
+					b = cu->Cloak6(dest->GetIPString());
+				else
+					b = cu->Cloak4(dest->GetIPString());
+			}
+			else
+			{
+				if (dest->client_sa.sa.sa_family == AF_INET6)
+					b = cu->Cloak6(dest->GetIPString());
+				else
+					b = cu->Cloak4(dest->GetIPString());
+			}
+
+			dest->Extend("cloaked_host", new std::string(b));
+		}
+	}
+
 };
 
 MODULE_INIT(ModuleCloaking)