/* * ngIRCd -- The Next Generation IRC Daemon * Copyright (c)2001-2010 Alexander Barton (alex@barton.de) * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * Please read the file COPYING, README and AUTHORS for more information. */ #include "portab.h" /** * @file * IRC command parser and validator. */ #include "imp.h" #include #include #include #include #include #include "ngircd.h" #include "defines.h" #include "conn-func.h" #include "channel.h" #include "log.h" #include "messages.h" #include "tool.h" #include "exp.h" #include "parse.h" #include "imp.h" #include "irc.h" #include "irc-cap.h" #include "irc-channel.h" #include "irc-encoding.h" #include "irc-info.h" #include "irc-login.h" #include "irc-metadata.h" #include "irc-mode.h" #include "irc-op.h" #include "irc-oper.h" #include "irc-server.h" #include "irc-write.h" #include "numeric.h" #include "exp.h" #include "conf.h" struct _NUMERIC { int numeric; bool (*function) PARAMS(( CLIENT *Client, REQUEST *Request )); }; static COMMAND My_Commands[] = { { "ADMIN", IRC_ADMIN, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "AWAY", IRC_AWAY, CLIENT_USER, 0, 0, 0 }, { "CAP", IRC_CAP, 0xFFFF, 0, 0, 0 }, { "CONNECT", IRC_CONNECT, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "DIE", IRC_DIE, CLIENT_USER, 0, 0, 0 }, { "DISCONNECT", IRC_DISCONNECT, CLIENT_USER, 0, 0, 0 }, { "ERROR", IRC_ERROR, 0xFFFF, 0, 0, 0 }, { "GLINE", IRC_xLINE, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "HELP", IRC_HELP, CLIENT_USER, 0, 0, 0 }, { "INFO", IRC_INFO, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "INVITE", IRC_INVITE, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "ISON", IRC_ISON, CLIENT_USER, 0, 0, 0 }, { "JOIN", IRC_JOIN, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "KICK", IRC_KICK, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "KILL", IRC_KILL, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "KLINE", IRC_xLINE, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "LINKS", IRC_LINKS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "LIST", IRC_LIST, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "LUSERS", IRC_LUSERS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "METADATA", IRC_METADATA, CLIENT_SERVER, 0, 0, 0 }, { "MODE", IRC_MODE, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "MOTD", IRC_MOTD, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "NAMES", IRC_NAMES, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "NICK", IRC_NICK, 0xFFFF, 0, 0, 0 }, { "NJOIN", IRC_NJOIN, CLIENT_SERVER, 0, 0, 0 }, { "NOTICE", IRC_NOTICE, 0xFFFF, 0, 0, 0 }, { "OPER", IRC_OPER, CLIENT_USER, 0, 0, 0 }, { "PART", IRC_PART, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "PASS", IRC_PASS, 0xFFFF, 0, 0, 0 }, { "PING", IRC_PING, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "PONG", IRC_PONG, 0xFFFF, 0, 0, 0 }, { "PRIVMSG", IRC_PRIVMSG, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "QUIT", IRC_QUIT, 0xFFFF, 0, 0, 0 }, { "REHASH", IRC_REHASH, CLIENT_USER, 0, 0, 0 }, { "RESTART", IRC_RESTART, CLIENT_USER, 0, 0, 0 }, { "SERVER", IRC_SERVER, 0xFFFF, 0, 0, 0 }, { "SERVICE", IRC_SERVICE, 0xFFFF, 0, 0, 0 }, { "SERVLIST", IRC_SERVLIST, CLIENT_USER, 0, 0, 0 }, { "SQUERY", IRC_SQUERY, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "SQUIT", IRC_SQUIT, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "STATS", IRC_STATS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "SVSNICK", IRC_SVSNICK, CLIENT_SERVER, 0, 0, 0 }, { "SUMMON", IRC_SUMMON, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "TIME", IRC_TIME, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "TOPIC", IRC_TOPIC, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "TRACE", IRC_TRACE, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "USER", IRC_USER, 0xFFFF, 0, 0, 0 }, { "USERHOST", IRC_USERHOST, CLIENT_USER, 0, 0, 0 }, { "USERS", IRC_USERS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "VERSION", IRC_VERSION, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "WALLOPS", IRC_WALLOPS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "WEBIRC", IRC_WEBIRC, CLIENT_UNKNOWN, 0, 0, 0 }, { "WHO", IRC_WHO, CLIENT_USER, 0, 0, 0 }, { "WHOIS", IRC_WHOIS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, { "WHOWAS", IRC_WHOWAS, CLIENT_USER|CLIENT_SERVER, 0, 0, 0 }, #ifdef IRCPLUS { "CHANINFO", IRC_CHANINFO, CLIENT_SERVER, 0, 0, 0 }, # ifdef ICONV { "CHARCONV", IRC_CHARCONV, CLIENT_USER, 0, 0, 0 }, # endif #endif #ifndef STRICT_RFC { "GET", IRC_QUIT_HTTP, CLIENT_UNKNOWN, 0, 0, 0 }, { "POST", IRC_QUIT_HTTP, CLIENT_UNKNOWN, 0, 0, 0 }, #endif { NULL, NULL, 0x0, 0, 0, 0 } /* Ende-Marke */ }; static void Init_Request PARAMS(( REQUEST *Req )); static bool Validate_Prefix PARAMS(( CONN_ID Idx, REQUEST *Req, bool *Closed )); static bool Validate_Command PARAMS(( CONN_ID Idx, REQUEST *Req, bool *Closed )); static bool Validate_Args PARAMS(( CONN_ID Idx, REQUEST *Req, bool *Closed )); static bool Handle_Request PARAMS(( CONN_ID Idx, REQUEST *Req )); static bool ScrubCTCP PARAMS((char *Request)); /** * Return the pointer to the global "IRC command structure". * This structure, an array of type "COMMAND" describes all the IRC commands * implemented by ngIRCd and how to handle them. * @return Pointer to the global command structure. */ GLOBAL COMMAND * Parse_GetCommandStruct( void ) { return My_Commands; } /* Parse_GetCommandStruct */ /** * Parse a command ("request") received from a client. * * This function is called after the connection layer received a valid CR+LF * terminated line of text: we asume that this is a valid IRC command and * try to do something useful with it :-) * * All errors are reported to the client from which the command has been * received, and if the error is fatal this connection is closed down. * * This function is able to parse the syntax as described in RFC 2812, * section 2.3. * * @param Idx Index of the connection from which the command has been received. * @param Request NULL terminated line of text (the "command"). * @return true on success (valid command or "regular" error), false if a * fatal error occured and the connection has been shut down. */ GLOBAL bool Parse_Request( CONN_ID Idx, char *Request ) { REQUEST req; char *start, *ptr; bool closed; assert( Idx >= 0 ); assert( Request != NULL ); #ifdef SNIFFER if( NGIRCd_Sniffer ) Log( LOG_DEBUG, " <- connection %d: '%s'.", Idx, Request ); #endif Init_Request( &req ); /* remove leading & trailing whitespace */ ngt_TrimStr( Request ); if (Conf_ScrubCTCP && ScrubCTCP(Request)) return true; if (Request[0] == ':') { /* Prefix */ req.prefix = Request + 1; ptr = strchr( Request, ' ' ); if( ! ptr ) { LogDebug("Connection %d: Parse error: prefix without command!?", Idx); return Conn_WriteStr(Idx, "ERROR :Prefix without command"); } *ptr = '\0'; #ifndef STRICT_RFC /* ignore multiple spaces between prefix and command */ while( *(ptr + 1) == ' ' ) ptr++; #endif start = ptr + 1; } else start = Request; ptr = strchr( start, ' ' ); if( ptr ) { *ptr = '\0'; #ifndef STRICT_RFC /* ignore multiple spaces between parameters */ while( *(ptr + 1) == ' ' ) ptr++; #endif } req.command = start; /* Arguments, Parameters */ if( ptr ) { start = ptr + 1; while( start ) { if( start[0] == ':' ) { req.argv[req.argc] = start + 1; ptr = NULL; } else { req.argv[req.argc] = start; ptr = strchr( start, ' ' ); if( ptr ) { *ptr = '\0'; #ifndef STRICT_RFC while( *(ptr + 1) == ' ' ) ptr++; #endif } } req.argc++; if( start[0] == ':' ) break; if( req.argc > 14 ) break; if( ptr ) start = ptr + 1; else start = NULL; } } if( ! Validate_Prefix( Idx, &req, &closed )) return ! closed; if( ! Validate_Command( Idx, &req, &closed )) return ! closed; if( ! Validate_Args( Idx, &req, &closed )) return ! closed; return Handle_Request( Idx, &req ); } /* Parse_Request */ /** * Initialize request structure. * @param Req Request structure to be initialized. */ static void Init_Request( REQUEST *Req ) { /* Neue Request-Struktur initialisieren */ int i; assert( Req != NULL ); Req->prefix = NULL; Req->command = NULL; for( i = 0; i < 15; Req->argv[i++] = NULL ); Req->argc = 0; } /* Init_Request */ static bool Validate_Prefix( CONN_ID Idx, REQUEST *Req, bool *Closed ) { CLIENT *client, *c; assert( Idx >= 0 ); assert( Req != NULL ); *Closed = false; client = Conn_GetClient( Idx ); assert( client != NULL ); if (!Req->prefix && Client_Type(client) == CLIENT_SERVER && !(Conn_Options(Idx) & CONN_RFC1459) && strcasecmp(Req->command, "ERROR") != 0 && strcasecmp(Req->command, "PING") != 0) { Log(LOG_ERR, "Received command without prefix (connection %d, command \"%s\")!?", Idx, Req->command); if (!Conn_WriteStr(Idx, "ERROR :Prefix missing")) *Closed = true; return false; } if (!Req->prefix) return true; /* only validate if this connection is already registered */ if (Client_Type(client) != CLIENT_USER && Client_Type(client) != CLIENT_SERVER && Client_Type(client) != CLIENT_SERVICE) { /* not registered, ignore prefix */ Req->prefix = NULL; return true; } /* check if client in prefix is known */ c = Client_Search( Req->prefix ); if (!c) { Log(LOG_ERR, "Invalid prefix \"%s\", client not known (connection %d, command \"%s\")!?", Req->prefix, Idx, Req->command); if (!Conn_WriteStr(Idx, "ERROR :Invalid prefix \"%s\", client not known", Req->prefix)) *Closed = true; return false; } /* check if the client named in the prefix is expected * to come from that direction */ if (Client_NextHop(c) != client) { if (Client_Type(c) != CLIENT_SERVER) { Log(LOG_ERR, "Spoofed prefix \"%s\" from \"%s\" (connection %d, command \"%s\")!", Req->prefix, Client_Mask(Conn_GetClient(Idx)), Idx, Req->command); Conn_Close(Idx, NULL, "Spoofed prefix", true); *Closed = true; } else { Log(LOG_INFO, "Ignoring spoofed prefix \"%s\" from \"%s\" (connection %d, command \"%s\").", Req->prefix, Client_Mask(Conn_GetClient(Idx)), Idx, Req->command); } return false; } return true; } /* Validate_Prefix */ static bool Validate_Command( UNUSED CONN_ID Idx, UNUSED REQUEST *Req, bool *Closed ) { assert( Idx >= 0 ); assert( Req != NULL ); *Closed = false; return true; } /* Validate_Comman */ static bool #ifdef STRICT_RFC Validate_Args(CONN_ID Idx, REQUEST *Req, bool *Closed) #else Validate_Args(UNUSED CONN_ID Idx, UNUSED REQUEST *Req, bool *Closed) #endif { #ifdef STRICT_RFC int i; #endif *Closed = false; #ifdef STRICT_RFC assert( Idx >= 0 ); assert( Req != NULL ); /* CR and LF are never allowed in command parameters. * But since we do accept lines terminated only with CR or LF in * "non-RFC-compliant mode" (besides the correct CR+LF combination), * this check can only trigger in "strict RFC" mode; therefore we * optimize it away otherwise ... */ for (i = 0; i < Req->argc; i++) { if (strchr(Req->argv[i], '\r') || strchr(Req->argv[i], '\n')) { Log(LOG_ERR, "Invalid character(s) in parameter (connection %d, command %s)!?", Idx, Req->command); if (!Conn_WriteStr(Idx, "ERROR :Invalid character(s) in parameter!")) *Closed = true; return false; } } #endif return true; } /* Validate_Args */ /* Command is a status code ("numeric") from another server */ static bool Handle_Numeric(CLIENT *client, REQUEST *Req) { static const struct _NUMERIC Numerics[] = { { 5, IRC_Num_ISUPPORT }, { 20, NULL }, { 376, IRC_Num_ENDOFMOTD } }; int i, num; char str[LINE_LEN]; CLIENT *prefix, *target = NULL; /* Determine target */ if (Req->argc > 0) { if (strcmp(Req->argv[0], "*") != 0) target = Client_Search(Req->argv[0]); else target = Client_ThisServer(); } if (!target) { /* Status code without target!? */ if (Req->argc > 0) Log(LOG_WARNING, "Unknown target for status code %s: \"%s\"", Req->command, Req->argv[0]); else Log(LOG_WARNING, "Unknown target for status code %s!", Req->command); return true; } if (target == Client_ThisServer()) { /* This server is the target of the numeric */ num = atoi(Req->command); for (i = 0; i < (int) C_ARRAY_SIZE(Numerics); i++) { if (num == Numerics[i].numeric) { if (!Numerics[i].function) return CONNECTED; return Numerics[i].function(client, Req); } } LogDebug("Ignored status code %s from \"%s\".", Req->command, Client_ID(client)); return true; } /* Determine source */ if (! Req->prefix[0]) { /* Oops, no prefix!? */ Log(LOG_WARNING, "Got status code %s from \"%s\" without prefix!?", Req->command, Client_ID(client)); return true; } prefix = Client_Search(Req->prefix); if (! prefix) { /* Oops, unknown prefix!? */ Log(LOG_WARNING, "Got status code %s from unknown source: \"%s\"", Req->command, Req->prefix); return true; } /* Forward status code */ strlcpy(str, Req->command, sizeof(str)); for (i = 0; i < Req->argc; i++) { if (i < Req->argc - 1) strlcat(str, " ", sizeof(str)); else strlcat(str, " :", sizeof(str)); strlcat(str, Req->argv[i], sizeof(str)); } return IRC_WriteStrClientPrefix(target, prefix, "%s", str); } static bool Handle_Request( CONN_ID Idx, REQUEST *Req ) { CLIENT *client; bool result = true; int client_type; COMMAND *cmd; assert( Idx >= 0 ); assert( Req != NULL ); assert( Req->command != NULL ); client = Conn_GetClient( Idx ); assert( client != NULL ); /* Numeric? */ client_type = Client_Type(client); if ((client_type == CLIENT_SERVER || client_type == CLIENT_UNKNOWNSERVER) && strlen(Req->command) == 3 && atoi(Req->command) > 1) return Handle_Numeric(client, Req); cmd = My_Commands; while (cmd->name) { if (strcasecmp(Req->command, cmd->name) != 0) { cmd++; continue; } if (!(client_type & cmd->type)) { if (client_type == CLIENT_USER && cmd->type & CLIENT_SERVER) return IRC_WriteStrClient(client, ERR_NOTREGISTEREDSERVER_MSG, Client_ID(client)); else return IRC_WriteStrClient(client, ERR_NOTREGISTERED_MSG, Client_ID(client)); } /* Command is allowed for this client: call it and count * generated bytes in output */ Conn_ResetWCounter(); result = (cmd->function)(client, Req); cmd->bytes += Conn_WCounter(); /* Adjust counters */ if (client_type != CLIENT_SERVER) cmd->lcount++; else cmd->rcount++; return result; } if (client_type != CLIENT_USER && client_type != CLIENT_SERVER && client_type != CLIENT_SERVICE ) return true; /* Unknown command and registered connection: generate error: */ LogDebug("Connection %d: Unknown command \"%s\", %d %s,%s prefix.", Client_Conn( client ), Req->command, Req->argc, Req->argc == 1 ? "parameter" : "parameters", Req->prefix ? "" : " no" ); if (Client_Type(client) != CLIENT_SERVER) { result = IRC_WriteStrClient(client, ERR_UNKNOWNCOMMAND_MSG, Client_ID(client), Req->command); Conn_SetPenalty(Idx, 1); } return result; } /* Handle_Request */ /** * Check if incoming messages contains CTCP commands and should be dropped. * * @param Request NULL terminated incoming command. * @returns true, when the message should be dropped. */ static bool ScrubCTCP(char *Request) { static const char me_cmd[] = "ACTION "; static const char ctcp_char = 0x1; bool dropCommand = false; char *ptr = Request; char *ptrEnd = strchr(Request, '\0'); if (Request[0] == ':' && ptrEnd > ptr) ptr++; while (ptr != ptrEnd && *ptr != ':') ptr++; if ((ptrEnd - ptr) > 1) { ptr++; if (*ptr == ctcp_char) { dropCommand = true; ptr++; /* allow /me commands */ if ((size_t)(ptrEnd - ptr) >= strlen(me_cmd) && !strncmp(ptr, me_cmd, strlen(me_cmd))) dropCommand = false; } } return dropCommand; } /* -eof- */