mirror
/
oragono
镜像自地址 https://github.com/oragono/oragono
关注 1
点赞 0
派生 0
代码 工单 0 版本发布 69 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
1209 提交
21 分支
分支: devel+metadata
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'devel+metadata'
${ noResults }
oragono/irc/gateways.go

gateways.go 2.0KB
永久链接 文件历史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. // Copyright (c) 2012-2014 Jeremy Latt

  2. // Copyright (c) 2014-2015 Edmund Huber

  3. // Copyright (c) 2017 Daniel Oaks <daniel@danieloaks.net>

  4. // released under the MIT license

  5. 

  6. package irc

  7. 

  8. import (

  9. 	"fmt"

  10. 	"net"

  11. 

  12. 	"github.com/oragono/oragono/irc/modes"

  13. 	"github.com/oragono/oragono/irc/passwd"

  14. 	"github.com/oragono/oragono/irc/utils"

  15. )

  16. 

  17. type webircConfig struct {

  18. 	PasswordString string `yaml:"password"`

  19. 	Password       []byte `yaml:"password-bytes"`

  20. 	Fingerprint    string

  21. 	Hosts          []string

  22. }

  23. 

  24. // Populate fills out our password or fingerprint.

  25. func (wc *webircConfig) Populate() (err error) {

  26. 	if wc.Fingerprint == "" && wc.PasswordString == "" {

  27. 		return ErrNoFingerprintOrPassword

  28. 	}

  29. 

  30. 	if wc.PasswordString != "" {

  31. 		var password []byte

  32. 		password, err = passwd.DecodePasswordHash(wc.PasswordString)

  33. 		wc.Password = password

  34. 	}

  35. 	return err

  36. }

  37. 

  38. func isGatewayAllowed(addr net.Addr, gatewaySpec string) bool {

  39. 	// "localhost" includes any loopback IP or unix domain socket

  40. 	if gatewaySpec == "localhost" {

  41. 		return utils.AddrIsLocal(addr)

  42. 	}

  43. 

  44. 	ip := utils.AddrToIP(addr)

  45. 	if ip == nil {

  46. 		return false

  47. 	}

  48. 

  49. 	// exact IP match

  50. 	if ip.String() == gatewaySpec {

  51. 		return true

  52. 	}

  53. 

  54. 	// CIDR match

  55. 	_, gatewayNet, err := net.ParseCIDR(gatewaySpec)

  56. 	if err != nil {

  57. 		return false

  58. 	}

  59. 	return gatewayNet.Contains(ip)

  60. }

  61. 

  62. // ApplyProxiedIP applies the given IP to the client.

  63. func (client *Client) ApplyProxiedIP(proxiedIP string, tls bool) (exiting bool) {

  64. 	// ensure IP is sane

  65. 	parsedProxiedIP := net.ParseIP(proxiedIP)

  66. 	if parsedProxiedIP == nil {

  67. 		client.Quit(fmt.Sprintf(client.t("Proxied IP address is not valid: [%s]"), proxiedIP))

  68. 		return true

  69. 	}

  70. 

  71. 	isBanned, banMsg := client.server.checkBans(parsedProxiedIP)

  72. 	if isBanned {

  73. 		client.Quit(banMsg)

  74. 		return true

  75. 	}

  76. 

  77. 	// given IP is sane! override the client's current IP

  78. 	client.proxiedIP = parsedProxiedIP

  79. 	client.rawHostname = utils.LookupHostname(proxiedIP)

  80. 	client.hostname = client.rawHostname

  81. 

  82. 	// set tls info

  83. 	client.certfp = ""

  84. 	if tls {

  85. 		client.flags[modes.TLS] = true

  86. 	} else {

  87. 		delete(client.flags, modes.TLS)

  88. 	}

  89. 

  90. 	return false

  91. }