3
0
mirror of https://github.com/ergochat/ergo.git synced 2024-12-29 14:12:38 +01:00
ergo/irc/gateways.go

133 lines
3.8 KiB
Go
Raw Normal View History

2017-10-15 08:18:14 +02:00
// Copyright (c) 2012-2014 Jeremy Latt
// Copyright (c) 2014-2015 Edmund Huber
// Copyright (c) 2017 Daniel Oaks <daniel@danieloaks.net>
// released under the MIT license
package irc
import (
"errors"
2017-10-15 08:18:14 +02:00
"net"
"github.com/oragono/oragono/irc/modes"
2017-10-15 08:18:14 +02:00
"github.com/oragono/oragono/irc/utils"
)
var (
errBadGatewayAddress = errors.New("PROXY/WEBIRC commands are not accepted from this IP address")
errBadProxyLine = errors.New("Invalid PROXY/WEBIRC command")
)
2019-11-20 23:14:42 +01:00
const (
// https://www.haproxy.org/download/1.8/doc/proxy-protocol.txt
// "a 108-byte buffer is always enough to store all the line and a trailing zero
// for string processing."
maxProxyLineLen = 107
)
2017-10-15 08:18:14 +02:00
type webircConfig struct {
2020-06-21 21:46:08 +02:00
PasswordString string `yaml:"password"`
Password []byte `yaml:"password-bytes"`
Fingerprint *string // legacy name for certfp, #1050
Certfp string
Hosts []string
2019-02-05 06:19:03 +01:00
allowedNets []net.IPNet
2017-10-15 08:18:14 +02:00
}
// Populate fills out our password or fingerprint.
func (wc *webircConfig) Populate() (err error) {
2020-06-21 21:46:08 +02:00
if wc.PasswordString != "" {
wc.Password, err = decodeLegacyPasswordHash(wc.PasswordString)
2020-06-21 21:46:08 +02:00
if err != nil {
return
}
}
2018-02-01 21:53:49 +01:00
2020-06-21 21:46:08 +02:00
certfp := wc.Certfp
if certfp == "" && wc.Fingerprint != nil {
certfp = *wc.Fingerprint
}
if certfp != "" {
wc.Certfp, err = utils.NormalizeCertfp(certfp)
}
if err != nil {
return
2019-12-29 17:59:49 +01:00
}
2020-06-21 21:46:08 +02:00
if wc.Certfp == "" && wc.PasswordString == "" {
return ErrNoFingerprintOrPassword
2018-02-01 21:53:49 +01:00
}
2020-06-21 21:46:08 +02:00
wc.allowedNets, err = utils.ParseNetList(wc.Hosts)
2019-02-05 06:19:03 +01:00
return err
2018-02-01 21:53:49 +01:00
}
2017-10-15 08:18:14 +02:00
// ApplyProxiedIP applies the given IP to the client.
2020-05-05 04:29:10 +02:00
func (client *Client) ApplyProxiedIP(session *Session, proxiedIP net.IP, tls bool) (err error, quitMsg string) {
2019-02-26 03:50:43 +01:00
// PROXY and WEBIRC are never accepted from a Tor listener, even if the address itself
// is whitelisted. Furthermore, don't accept PROXY or WEBIRC if we already accepted
// a proxied IP from any source (PROXY, WEBIRC, or X-Forwarded-For):
if session.isTor || session.proxiedIP != nil {
return errBadProxyLine, ""
2019-02-26 03:50:43 +01:00
}
2017-10-15 08:18:14 +02:00
// ensure IP is sane
2020-05-05 04:29:10 +02:00
if proxiedIP == nil {
return errBadProxyLine, "proxied IP is not valid"
}
2020-05-05 04:29:10 +02:00
proxiedIP = proxiedIP.To16()
2020-05-05 04:29:10 +02:00
isBanned, banMsg := client.server.checkBans(proxiedIP)
2017-10-15 08:18:14 +02:00
if isBanned {
return errBanned, banMsg
2017-10-15 08:18:14 +02:00
}
2019-09-01 08:36:56 +02:00
// successfully added a limiter entry for the proxied IP;
// remove the entry for the real IP if applicable (#197)
client.server.connectionLimiter.RemoveClient(session.realIP)
2017-10-15 08:18:14 +02:00
// given IP is sane! override the client's current IP
2020-05-05 04:29:10 +02:00
client.server.logger.Info("connect-ip", "Accepted proxy IP for client", proxiedIP.String())
2019-02-05 19:44:33 +01:00
2018-04-23 08:38:35 +02:00
client.stateMutex.Lock()
2019-02-05 19:44:33 +01:00
defer client.stateMutex.Unlock()
2020-05-05 04:29:10 +02:00
client.proxiedIP = proxiedIP
session.proxiedIP = proxiedIP
2018-04-23 08:38:35 +02:00
// nickmask will be updated when the client completes registration
// set tls info
session.certfp = ""
2018-04-23 00:47:10 +02:00
client.SetMode(modes.TLS, tls)
return nil, ""
}
// handle the PROXY command: http://www.haproxy.org/download/1.8/doc/proxy-protocol.txt
// PROXY must be sent as the first message in the session and has the syntax:
// PROXY TCP[46] SOURCEIP DESTIP SOURCEPORT DESTPORT\r\n
// unfortunately, an ipv6 SOURCEIP can start with a double colon; in this case,
// the message is invalid IRC and can't be parsed normally, hence the special handling.
func handleProxyCommand(server *Server, client *Client, session *Session, line string) (err error) {
var quitMsg string
defer func() {
if err != nil {
if quitMsg == "" {
quitMsg = client.t("Bad or unauthorized PROXY command")
}
client.Quit(quitMsg, session)
}
}()
2020-05-05 04:29:10 +02:00
ip, err := utils.ParseProxyLine(line)
if err != nil {
return err
}
2019-02-05 06:19:03 +01:00
if utils.IPInNets(client.realIP, server.Config().Server.proxyAllowedFromNets) {
// assume PROXY connections are always secure
2020-05-05 04:29:10 +02:00
err, quitMsg = client.ApplyProxiedIP(session, ip, true)
return
} else {
// real source IP is not authorized to issue PROXY:
return errBadGatewayAddress
}
2017-10-15 08:18:14 +02:00
}