/* NickServ core functions * * (C) 2003-2009 Anope Team * Contact us at team@anope.org * * Please read COPYING and README for further details. * * Based on the original code of Epona by Lara. * Based on the original code of Services by Andy Church. * * $Id$ * */ /*************************************************************************/ #include "module.h" #include "encrypt.h" int do_confirm(User * u); int do_register(User * u); int do_resend(User * u); void myNickServHelp(User * u); NickRequest *makerequest(const char *nick); NickAlias *makenick(const char *nick); int do_sendregmail(User * u, NickRequest * nr); int ns_do_register(User * u); class NSRegister : public Module { public: NSRegister(const std::string &modname, const std::string &creator) : Module(modname, creator) { Command *c; this->SetAuthor("Anope"); this->SetVersion("$Id$"); this->SetType(CORE); c = createCommand("REGISTER", do_register, NULL, NICK_HELP_REGISTER, -1, -1, -1, -1); this->AddCommand(NICKSERV, c, MOD_UNIQUE); c = createCommand("CONFIRM", do_confirm, NULL, NICK_HELP_CONFIRM, -1, -1, -1, -1); this->AddCommand(NICKSERV, c, MOD_UNIQUE); c = createCommand("RESEND", do_resend, NULL, NICK_HELP_RESEND, -1, -1, -1, -1); this->AddCommand(NICKSERV, c, MOD_UNIQUE); this->SetNickHelp(myNickServHelp); } }; /** * Add the help response to anopes /ns help output. * @param u The user who is requesting help **/ void myNickServHelp(User * u) { notice_lang(s_NickServ, u, NICK_HELP_CMD_REGISTER); if (NSEmailReg) { notice_lang(s_NickServ, u, NICK_HELP_CMD_CONFIRM); notice_lang(s_NickServ, u, NICK_HELP_CMD_RESEND); } } /** * The /ns register command. * @param u The user who issued the command * @param MOD_CONT to continue processing other modules, MOD_STOP to stop processing. **/ int do_register(User * u) { NickRequest *nr = NULL, *anr = NULL; NickCore *nc = NULL; int prefixlen = strlen(NSGuestNickPrefix); int nicklen = strlen(u->nick); char *pass = strtok(NULL, " "); char *email = strtok(NULL, " "); char passcode[11]; int idx, min = 1, max = 62, i = 0; int chars[] = { ' ', 'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', 'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z', '0', '1', '2', '3', '4', '5', '6', '7', '8', '9' }; if (readonly) { notice_lang(s_NickServ, u, NICK_REGISTRATION_DISABLED); return MOD_CONT; } if (checkDefCon(DEFCON_NO_NEW_NICKS)) { notice_lang(s_NickServ, u, OPER_DEFCON_DENIED); return MOD_CONT; } if (!is_oper(u) && NickRegDelay && ((time(NULL) - u->my_signon) < NickRegDelay)) { notice_lang(s_NickServ, u, NICK_REG_DELAY, NickRegDelay); return MOD_CONT; } if ((anr = findrequestnick(u->nick))) { notice_lang(s_NickServ, u, NICK_REQUESTED); return MOD_CONT; } /* Prevent "Guest" nicks from being registered. -TheShadow */ /* Guest nick can now have a series of between 1 and 7 digits. * --lara */ if (nicklen <= prefixlen + 7 && nicklen >= prefixlen + 1 && stristr(u->nick, NSGuestNickPrefix) == u->nick && strspn(u->nick + prefixlen, "1234567890") == nicklen - prefixlen) { notice_lang(s_NickServ, u, NICK_CANNOT_BE_REGISTERED, u->nick); return MOD_CONT; } if (!ircdproto->IsNickValid(u->nick)) { notice_lang(s_NickServ, u, NICK_X_FORBIDDEN, u->nick); return MOD_CONT; } if (RestrictOperNicks) { for (i = 0; i < RootNumber; i++) { if (stristr(u->nick, ServicesRoots[i]) && !is_oper(u)) { notice_lang(s_NickServ, u, NICK_CANNOT_BE_REGISTERED, u->nick); return MOD_CONT; } } for (i = 0; i < servadmins.count && (nc = static_cast(servadmins.list[i])); i++) { if (stristr(u->nick, nc->display) && !is_oper(u)) { notice_lang(s_NickServ, u, NICK_CANNOT_BE_REGISTERED, u->nick); return MOD_CONT; } } for (i = 0; i < servopers.count && (nc = static_cast(servopers.list[i])); i++) { if (stristr(u->nick, nc->display) && !is_oper(u)) { notice_lang(s_NickServ, u, NICK_CANNOT_BE_REGISTERED, u->nick); return MOD_CONT; } } } if (!pass) { if (NSForceEmail) { syntax_error(s_NickServ, u, "REGISTER", NICK_REGISTER_SYNTAX_EMAIL); } else { syntax_error(s_NickServ, u, "REGISTER", NICK_REGISTER_SYNTAX); } } else if (NSForceEmail && !email) { syntax_error(s_NickServ, u, "REGISTER", NICK_REGISTER_SYNTAX_EMAIL); } else if (time(NULL) < u->lastnickreg + NSRegDelay) { notice_lang(s_NickServ, u, NICK_REG_PLEASE_WAIT, NSRegDelay); } else if (u->na) { /* i.e. there's already such a nick regged */ if (u->na->status & NS_VERBOTEN) { alog("%s: %s@%s tried to register FORBIDden nick %s", s_NickServ, u->username, u->host, u->nick); notice_lang(s_NickServ, u, NICK_CANNOT_BE_REGISTERED, u->nick); } else { notice_lang(s_NickServ, u, NICK_ALREADY_REGISTERED, u->nick); } } else if (stricmp(u->nick, pass) == 0 || (StrictPasswords && strlen(pass) < 5)) { notice_lang(s_NickServ, u, MORE_OBSCURE_PASSWORD); } else if (enc_encrypt_check_len(strlen(pass), PASSMAX - 1)) { notice_lang(s_NickServ, u, PASSWORD_TOO_LONG); } else if (email && !MailValidate(email)) { notice_lang(s_NickServ, u, MAIL_X_INVALID, email); } else { for (idx = 0; idx < 9; idx++) { passcode[idx] = chars[(1 + static_cast((static_cast(max - min)) * getrandom16() / (65535 + 1.0)) + min)]; } passcode[idx] = '\0'; nr = makerequest(u->nick); nr->passcode = sstrdup(passcode); strscpy(nr->password, pass, PASSMAX); memset(pass, 0, strlen(pass)); /* We are paranoid about keeping a plain text pass in memory, yet we would write * it to a database.. - Viper */ enc_encrypt_in_place(nr->password, PASSMAX); if (email) { nr->email = sstrdup(email); } nr->requested = time(NULL); if (NSEmailReg) { if (do_sendregmail(u, nr) == 0) { notice_lang(s_NickServ, u, NICK_ENTER_REG_CODE, email, s_NickServ); alog("%s: sent registration verification code to %s", s_NickServ, nr->email); } else { alog("%s: Unable to send registration verification mail", s_NickServ); notice_lang(s_NickServ, u, NICK_REG_UNABLE); delnickrequest(nr); /* Delete the NickRequest if we couldnt send the mail */ return MOD_CONT; } } else { do_confirm(u); } } return MOD_CONT; } /*************************************************************************/ int ns_do_register(User * u) { return do_register(u); } int do_confirm(User * u) { NickRequest *nr = NULL; NickAlias *na = NULL; char *passcode = strtok(NULL, " "); char *email = NULL; int forced = 0; User *utmp = NULL; char modes[512]; int len; nr = findrequestnick(u->nick); if (NSEmailReg) { if (!passcode) { notice_lang(s_NickServ, u, NICK_CONFIRM_INVALID); return MOD_CONT; } if (!nr) { if (is_services_admin(u)) { /* If an admin, their nick is obviously already regged, so look at the passcode to get the nick of the user they are trying to validate, and push that user through regardless of passcode */ nr = findrequestnick(passcode); if (nr) { utmp = finduser(passcode); if (utmp) { sprintf(passcode, "FORCE_ACTIVATION_DUE_TO_OPER_CONFIRM %s", nr->passcode); passcode = strtok(passcode, " "); notice_lang(s_NickServ, u, NICK_FORCE_REG, nr->nick); do_confirm(utmp); return MOD_CONT; } else { passcode = sstrdup(nr->passcode); forced = 1; } } else { notice_lang(s_NickServ, u, NICK_CONFIRM_NOT_FOUND, s_NickServ); return MOD_CONT; } } else { notice_lang(s_NickServ, u, NICK_CONFIRM_NOT_FOUND, s_NickServ); return MOD_CONT; } } if (stricmp(nr->passcode, passcode) != 0) { notice_lang(s_NickServ, u, NICK_CONFIRM_INVALID); if (forced) delete [] passcode; return MOD_CONT; } } if (!nr) { notice_lang(s_NickServ, u, NICK_REGISTRATION_FAILED); if (forced) delete [] passcode; return MOD_CONT; } if (nr->email) { email = sstrdup(nr->email); } na = makenick(nr->nick); if (na) { int i; char tsbuf[16]; char tmp_pass[PASSMAX]; memcpy(na->nc->pass, nr->password, PASSMAX); na->status = static_cast(NS_IDENTIFIED | NS_RECOGNIZED); /* na->nc->flags |= NI_ENCRYPTEDPW; */ na->nc->flags |= NSDefFlags; for (i = 0; i < RootNumber; i++) { if (!stricmp(ServicesRoots[i], nr->nick)) { na->nc->flags |= NI_SERVICES_ROOT; break; } } na->nc->memos.memomax = MSMaxMemos; if (forced == 1) { na->last_usermask = sstrdup("*@*"); na->last_realname = sstrdup("unknown"); } else { na->last_usermask = new char[strlen(common_get_vident(u)) + strlen(common_get_vhost(u)) + 2]; sprintf(na->last_usermask, "%s@%s", common_get_vident(u), common_get_vhost(u)); na->last_realname = sstrdup(u->realname); } na->time_registered = na->last_seen = time(NULL); if (NSAddAccessOnReg) { na->nc->accesscount = 1; na->nc->access = static_cast(scalloc(sizeof(char *), 1)); na->nc->access[0] = create_mask(u); } else { na->nc->accesscount = 0; na->nc->access = NULL; } na->nc->language = NSDefLanguage; if (email) na->nc->email = sstrdup(email); if (forced != 1) { u->na = na; na->u = u; alog("%s: '%s' registered by %s@%s (e-mail: %s)", s_NickServ, u->nick, u->username, u->host, (email ? email : "none")); if (NSAddAccessOnReg) notice_lang(s_NickServ, u, NICK_REGISTERED, u->nick, na->nc->access[0]); else notice_lang(s_NickServ, u, NICK_REGISTERED_NO_MASK, u->nick); ircdproto->SendAccountLogin(u, na->nc); send_event(EVENT_NICK_REGISTERED, 1, u->nick); if(enc_decrypt(na->nc->pass, tmp_pass, PASSMAX - 1)==1) notice_lang(s_NickServ, u, NICK_PASSWORD_IS, tmp_pass); u->lastnickreg = time(NULL); if (ircd->modeonreg) { len = strlen(ircd->modeonreg); strncpy(modes,ircd->modeonreg,512); if(ircd->rootmodeonid && is_services_root(u)) { strncat(modes,ircd->rootmodeonid,512-len); } else if(ircd->adminmodeonid && is_services_admin(u)) { strncat(modes,ircd->adminmodeonid,512-len); } else if(ircd->opermodeonid && is_services_oper(u)) { strncat(modes,ircd->opermodeonid,512-len); } if (ircd->tsonmode) { snprintf(tsbuf, sizeof(tsbuf), "%lu", static_cast(u->timestamp)); common_svsmode(u, modes, tsbuf); } else { common_svsmode(u, modes, NULL); } } } else { notice_lang(s_NickServ, u, NICK_FORCE_REG, nr->nick); } delnickrequest(nr); /* remove the nick request */ } else { alog("%s: makenick(%s) failed", s_NickServ, u->nick); notice_lang(s_NickServ, u, NICK_REGISTRATION_FAILED); } /* Enable nick tracking if enabled */ if (NSNickTracking) nsStartNickTracking(u); if (forced) delete [] passcode; if (email) delete [] email; return MOD_CONT; } NickRequest *makerequest(const char *nick) { NickRequest *nr; nr = new NickRequest; nr->nick = sstrdup(nick); insert_requestnick(nr); alog("%s: Nick %s has been requested", s_NickServ, nr->nick); return nr; } /* Creates a full new nick (alias + core) in NickServ database. */ NickAlias *makenick(const char *nick) { NickAlias *na; NickCore *nc; /* First make the core */ nc = new NickCore(); nc->display = sstrdup(nick); slist_init(&nc->aliases); insert_core(nc); alog("%s: group %s has been created", s_NickServ, nc->display); /* Then make the alias */ na = new NickAlias; na->nick = sstrdup(nick); na->nc = nc; slist_add(&nc->aliases, na); alpha_insert_alias(na); return na; } /* Register a nick. */ int do_resend(User * u) { NickRequest *nr = NULL; if (NSEmailReg) { if ((nr = findrequestnick(u->nick))) { if (time(NULL) < nr->lastmail + NSResendDelay) { notice_lang(s_NickServ, u, MAIL_LATER); return MOD_CONT; } if (do_sendregmail(u, nr) == 0) { nr->lastmail = time(NULL); notice_lang(s_NickServ, u, NICK_REG_RESENT, nr->email); alog("%s: re-sent registration verification code for %s to %s", s_NickServ, nr->nick, nr->email); } else { alog("%s: Unable to re-send registration verification mail for %s", s_NickServ, nr->nick); return MOD_CONT; } } } return MOD_CONT; } int do_sendregmail(User * u, NickRequest * nr) { MailInfo *mail = NULL; char buf[BUFSIZE]; if (!(nr || u)) { return -1; } snprintf(buf, sizeof(buf), getstring2(NULL, NICK_REG_MAIL_SUBJECT), nr->nick); mail = MailRegBegin(u, nr, buf, s_NickServ); if (!mail) { return -1; } fprintf(mail->pipe, getstring2(NULL, NICK_REG_MAIL_HEAD)); fprintf(mail->pipe, "\n\n"); fprintf(mail->pipe, getstring2(NULL, NICK_REG_MAIL_LINE_1), nr->nick); fprintf(mail->pipe, "\n\n"); fprintf(mail->pipe, getstring2(NULL, NICK_REG_MAIL_LINE_2), s_NickServ, nr->passcode); fprintf(mail->pipe, "\n\n"); fprintf(mail->pipe, getstring2(NULL, NICK_REG_MAIL_LINE_3)); fprintf(mail->pipe, "\n\n"); fprintf(mail->pipe, getstring2(NULL, NICK_REG_MAIL_LINE_4)); fprintf(mail->pipe, "\n\n"); fprintf(mail->pipe, getstring2(NULL, NICK_REG_MAIL_LINE_5), NetworkName); fprintf(mail->pipe, "\n.\n"); MailEnd(mail); return 0; } MODULE_INIT("ns_register", NSRegister)