construct/modules/m_whois.cc

/*
 *  ircd-ratbox: A slightly useful ircd.
 *  m_whois.c: Shows who a user is.
 *
 *  Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
 *  Copyright (C) 1996-2002 Hybrid Development Team
 *  Copyright (C) 2002-2005 ircd-ratbox development team
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307
 *  USA
 */

using namespace ircd;

static const char whois_desc[] =
	"Provides the WHOIS command to display information about a user";

static void do_whois(client::client &client, client::client &source, int parc, const char *parv[]);
static void single_whois(client::client &source, client::client *target_p, int operspy);

static void m_whois(struct MsgBuf *, client::client &, client::client &, int, const char **);
static void ms_whois(struct MsgBuf *, client::client &, client::client &, int, const char **);

struct Message whois_msgtab = {
	"WHOIS", 0, 0, 0, 0,
	{mg_unreg, {m_whois, 2}, {ms_whois, 2}, mg_ignore, mg_ignore, {m_whois, 2}}
};

int doing_whois_hook;
int doing_whois_global_hook;
int doing_whois_channel_visibility_hook;

mapi_clist_av1 whois_clist[] = { &whois_msgtab, NULL };
mapi_hlist_av1 whois_hlist[] = {
	{ "doing_whois",			&doing_whois_hook },
	{ "doing_whois_global",			&doing_whois_global_hook },
	{ "doing_whois_channel_visibility",	&doing_whois_channel_visibility_hook },
	{ NULL, NULL }
};

DECLARE_MODULE_AV2(whois, NULL, NULL, whois_clist, whois_hlist, NULL, NULL, NULL, whois_desc);

/*
 * m_whois
 *      parv[1] = nickname masklist
 */
static void
m_whois(struct MsgBuf *msgbuf_p, client::client &client, client::client &source, int parc, const char *parv[])
{
	static time_t last_used = 0;

	if(parc > 2)
	{
		if(EmptyString(parv[2]))
		{
			sendto_one(&source, form_str(ERR_NONICKNAMEGIVEN),
					me.name, source.name);
			return;
		}

		if(!is(source, umode::OPER))
		{
			/* seeing as this is going across servers, we should limit it */
			if((last_used + ConfigFileEntry.pace_wait_simple) > rb_current_time() || !ratelimit_client(&source, 2))
			{
				sendto_one(&source, form_str(RPL_LOAD2HI),
					   me.name, source.name, "WHOIS");
				sendto_one_numeric(&source, RPL_ENDOFWHOIS,
						   form_str(RPL_ENDOFWHOIS), parv[2]);
				return;
			}
			else
				last_used = rb_current_time();
		}

		if(hunt_server(&client, &source, ":%s WHOIS %s :%s", 1, parc, parv) !=
		   HUNTED_ISME)
			return;

		parv[1] = parv[2];

	}
	do_whois(client, source, parc, parv);
}

/*
 * ms_whois
 *      parv[1] = server to reply
 *      parv[2] = nickname to whois
 */
static void
ms_whois(struct MsgBuf *msgbuf_p, client::client &client, client::client &source, int parc, const char *parv[])
{
	client::client *target_p;

	/* note: early versions of ratbox allowed users to issue a remote
	 * whois with a blank parv[2], so we cannot treat it as a protocol
	 * violation. --anfl
	 */
	if(parc < 3 || EmptyString(parv[2]))
	{
		sendto_one(&source, form_str(ERR_NONICKNAMEGIVEN),
				me.name, source.name);
		return;
	}

	/* check if parv[1] exists */
	if((target_p = find_client(parv[1])) == NULL)
	{
		sendto_one_numeric(&source, ERR_NOSUCHSERVER,
				   form_str(ERR_NOSUCHSERVER),
				   rfc1459::is_digit(parv[1][0]) ? "*" : parv[1]);
		return;
	}

	/* if parv[1] isnt my client, or me, someone else is supposed
	 * to be handling the request.. so send it to them
	 */
	if(!my(*target_p) && !is_me(*target_p))
	{
		sendto_one(target_p, ":%s WHOIS %s :%s",
			   get_id(&source, target_p),
			   get_id(target_p, target_p), parv[2]);
		return;
	}

	/* ok, the target is either us, or a client on our server, so perform the whois
	 * but first, parv[1] == server to perform the whois on, parv[2] == person
	 * to whois, so make parv[1] = parv[2] so do_whois is ok -- fl_
	 */
	parv[1] = parv[2];
	do_whois(client, source, parc, parv);
}

/* do_whois
 *
 * inputs	- pointer to
 * output	-
 * side effects -
 */
static void
do_whois(client::client &client, client::client &source, int parc, const char *parv[])
{
	client::client *target_p;
	char *nick;
	char *p = NULL;
	int operspy = 0;

	nick = LOCAL_COPY(parv[1]);
	if((p = strchr(nick, ',')))
		*p = '\0';

	if(IsOperSpy(&source) && *nick == '!')
	{
		operspy = 1;
		nick++;
	}

	target_p = client::find_named_person(nick);
	if(target_p != NULL)
	{
		if(operspy)
		{
			char buffer[BUFSIZE];

			snprintf(buffer, sizeof(buffer), "%s!%s@%s %s",
				target_p->name, target_p->username,
				target_p->host, target_p->servptr->name);
//			report_operspy(&source, "WHOIS", buffer);
		}

		single_whois(source, target_p, operspy);
	}
	else
		sendto_one_numeric(&source, ERR_NOSUCHNICK,
				   form_str(ERR_NOSUCHNICK),
				   nick);

	sendto_one_numeric(&source, RPL_ENDOFWHOIS,
			   form_str(RPL_ENDOFWHOIS), parv[1]);
}

/*
 * single_whois()
 *
 * Inputs	- &source client to report to
 *		- target_p client to report on
 * Output	- if found return 1
 * Side Effects	- do a single whois on given client
 * 		  writing results to &source
 */
static void
single_whois(client::client &source, client::client *target_p, int operspy)
{
	char buf[BUFSIZE];
	rb_dlink_node *ptr;
	chan::membership *msptr;
	chan::chan *chptr;
	int cur_len = 0;
	int mlen;
	char *t;
	int tlen;
	hook_data_client hdata;
	int extra_space = 0;
#ifdef RB_IPV6
	struct sockaddr_in ip4;
#endif

	if(target_p->user == NULL)
	{
		s_assert(0);
		return;
	}

	sendto_one_numeric(&source, RPL_WHOISUSER, form_str(RPL_WHOISUSER),
			   target_p->name, target_p->username,
			   target_p->host, target_p->info);

	cur_len = mlen = sprintf(buf, form_str(RPL_WHOISCHANNELS),
				    get_id(&me, &source), get_id(&source, &source),
				    target_p->name);

	/* Make sure it won't overflow when sending it to the client
	 * in full names; note that serverhiding may require more space
	 * for a different server name (not done here) -- jilles
	 */
	if (!my_connect(source))
	{
		extra_space = strlen(source.name) - 9;
		if (extra_space < 0)
			extra_space = 0;
		extra_space += strlen(me.name) - 2; /* make sure >= 0 */
		cur_len += extra_space;
	}

	t = buf + mlen;

	hdata.client = &source;
	hdata.target = target_p;

	if (!is(*target_p, umode::SERVICE))
	{
		for(const auto &pit : chans(user(*target_p)))
		{
			auto &chptr(pit.first);
			auto &msptr(pit.second);

			hdata.chptr = chptr;

			hdata.approved = can_show(chptr, &source);
			call_hook(doing_whois_channel_visibility_hook, &hdata);

			if(hdata.approved || operspy)
			{
				if((cur_len + strlen(chptr->name.c_str()) + 3) > (BUFSIZE - 5))
				{
					sendto_one(&source, "%s", buf);
					cur_len = mlen + extra_space;
					t = buf + mlen;
				}

				tlen = sprintf(t, "%s%s%s ",
						hdata.approved ? "" : "!",
						find_status(msptr, 1),
						chptr->name.c_str());
				t += tlen;
				cur_len += tlen;
			}
		}
	}

	if(cur_len > mlen + extra_space)
		sendto_one(&source, "%s", buf);

	sendto_one_numeric(&source, RPL_WHOISSERVER, form_str(RPL_WHOISSERVER),
			   target_p->name, target_p->servptr->name,
			   target_p->servptr->info);

	if(away(user(*target_p)).size())
		sendto_one_numeric(&source, RPL_AWAY, form_str(RPL_AWAY),
				   target_p->name, away(user(*target_p)).c_str());

	if(is(*target_p, umode::OPER) && (!ConfigFileEntry.hide_opers_in_whois || is(source, umode::OPER)))
	{
		sendto_one_numeric(&source, RPL_WHOISOPERATOR, form_str(RPL_WHOISOPERATOR),
				   target_p->name,
				   is(*target_p, umode::SERVICE) ? ConfigFileEntry.servicestring :
				   (is(*target_p, umode::ADMIN) ? GlobalSetOptions.adminstring :
				    GlobalSetOptions.operstring));
	}

	if(my(*target_p) && !EmptyString(target_p->localClient->opername) && is(source, umode::OPER))
	{
		char buf[512];
		snprintf(buf, sizeof(buf), "is opered as %s, privset %s",
			    target_p->localClient->opername, target_p->localClient->privset->name);
		sendto_one_numeric(&source, RPL_WHOISSPECIAL, form_str(RPL_WHOISSPECIAL),
				   target_p->name, buf);
	}

	if(is(*target_p, umode::SSLCLIENT))
	{
		char cbuf[256] = "is using a secure connection";

		if (my(*target_p) && target_p->localClient->cipher_string != NULL)
			rb_snprintf_append(cbuf, sizeof(cbuf), " [%s]", target_p->localClient->cipher_string);

		sendto_one_numeric(&source, RPL_WHOISSECURE, form_str(RPL_WHOISSECURE),
				   target_p->name, cbuf);
		if((&source == target_p || is(source, umode::OPER)) &&
				target_p->certfp != NULL)
			sendto_one_numeric(&source, RPL_WHOISCERTFP,
					form_str(RPL_WHOISCERTFP),
					target_p->name, target_p->certfp);
	}

	if(my(*target_p))
	{
		if (is_dyn_spoof(*target_p) && (is(source, umode::OPER) || &source == target_p))
		{
			/* trick here: show a nonoper their own IP if
			 * dynamic spoofed but not if auth{} spoofed
			 * -- jilles */
			clear_dyn_spoof(*target_p);
			sendto_one_numeric(&source, RPL_WHOISHOST,
					   form_str(RPL_WHOISHOST),
					   target_p->name, target_p->orighost,
					   show_ip(&source, target_p) ? target_p->sockhost : "255.255.255.255");
			set_dyn_spoof(*target_p);
		}
		else if(ConfigFileEntry.use_whois_actually && show_ip(&source, target_p))
			sendto_one_numeric(&source, RPL_WHOISACTUALLY,
					   form_str(RPL_WHOISACTUALLY),
					   target_p->name, target_p->sockhost);

#ifdef RB_IPV6
		if (GET_SS_FAMILY(&target_p->localClient->ip) == AF_INET6 &&
				(show_ip(&source, target_p) ||
				 (&source == target_p && !is_ip_spoof(*target_p))) &&
				rb_ipv4_from_ipv6((struct sockaddr_in6 *)&target_p->localClient->ip, &ip4))
		{
			rb_inet_ntop_sock((struct sockaddr *)&ip4,
					buf, sizeof buf);
			sendto_one_numeric(&source, RPL_WHOISTEXT,
					"%s :Underlying IPv4 is %s",
					target_p->name, buf);
		}
#endif /* RB_IPV6 */

		sendto_one_numeric(&source, RPL_WHOISIDLE, form_str(RPL_WHOISIDLE),
				   target_p->name,
				   (long)(rb_current_time() - target_p->localClient->last),
				   (unsigned long)target_p->localClient->firsttime);
	}
	else
	{
		if (is_dyn_spoof(*target_p) && (is(source, umode::OPER) || &source == target_p))
		{
			clear_dyn_spoof(*target_p);
			sendto_one_numeric(&source, RPL_WHOISHOST,
					   form_str(RPL_WHOISHOST),
					   target_p->name, target_p->orighost,
					   show_ip(&source, target_p) && !EmptyString(target_p->sockhost) && strcmp(target_p->sockhost, "0")? target_p->sockhost : "255.255.255.255");
			set_dyn_spoof(*target_p);
		}
		else if(ConfigFileEntry.use_whois_actually && show_ip(&source, target_p) &&
		   !EmptyString(target_p->sockhost) && strcmp(target_p->sockhost, "0"))
		{
			sendto_one_numeric(&source, RPL_WHOISACTUALLY,
					   form_str(RPL_WHOISACTUALLY),
					   target_p->name, target_p->sockhost);

		}
	}

	/* doing_whois_hook must only be called for local clients,
	 * doing_whois_global_hook must only be called for local targets
	 */
	/* it is important that these are called *before* RPL_ENDOFWHOIS is
	 * sent, services compatibility code depends on it. --anfl
	 */
	if(my(source))
		call_hook(doing_whois_hook, &hdata);
	else
		call_hook(doing_whois_global_hook, &hdata);
}