cmd_neonserv_giveowner.c

   1
   2 /*
   3 * argv[0] - nick / *auth
   4 * argv[1] - key
   5 */
   6
   7 #define GIVEOWNER_TIMEOUT 86400 /* 60*60*24 = 86400 */
   8
   9 static USERAUTH_CALLBACK(neonserv_cmd_giveowner_nick_lookup);
  10 static void neonserv_cmd_giveowner_async1(struct ClientSocket *client, struct ClientSocket *textclient, struct UserNode *user, struct ChanNode *chan, char *nick, char *auth, char *key);
  11
  12 struct neonserv_cmd_giveowner_cache {
  13     struct ClientSocket *client, *textclient;
  14     struct UserNode *user;
  15     struct ChanNode *chan;
  16     char *nick;
  17     char *key;
  18 };
  19
  20 static CMD_BIND(neonserv_cmd_giveowner) {
  21     check_mysql();
  22     if(getChannelAccess(user, chan, 0) != 500) {
  23         reply(getTextBot(), user, "NS_ACCESS_DENIED");
  24         return;
  25     }
  26     MYSQL_RES *res;
  27     MYSQL_ROW row;
  28     int userid;
  29     printf_mysql_query("SELECT `channel_lastgiveowner` FROM `channels` WHERE `channel_id` = '%s'", chan->channel_id);
  30     res = mysql_use();
  31     if ((row = mysql_fetch_row(res)) == NULL) return;
  32     if(strcmp(row[0], "0") && (atoi(row[0]) + GIVEOWNER_TIMEOUT) > time(0)) {
  33         char timeBuf[MAXLEN];
  34         reply(getTextBot(), user, "NS_GIVEOWNER_TIMEOUT", timeToStr(user, (GIVEOWNER_TIMEOUT - (time(0) - atoi(row[0]))), 2, timeBuf), chan->name);
  35         return;
  36     }
  37     if(argv[0][0] == '*') {
  38         //we've got an auth
  39         argv[0]++;
  40         neonserv_cmd_giveowner_async1(client, getTextBot(), user, chan, argv[0], argv[0], (argc != 1 ? argv[1] : NULL));
  41     } else {
  42         struct UserNode *cuser = getUserByNick(argv[0]);
  43         if(!cuser) {
  44             cuser = createTempUser(argv[0]);
  45             cuser->flags |= USERFLAG_ISTMPUSER;
  46         }
  47         if(cuser->flags & USERFLAG_ISAUTHED) {
  48             neonserv_cmd_giveowner_async1(client, getTextBot(), user, chan, argv[0], cuser->auth, (argc != 1 ? argv[1] : NULL));
  49         } else {
  50             struct neonserv_cmd_giveowner_cache *cache = malloc(sizeof(*cache));
  51             if (!cache) {
  52                 perror("malloc() failed");
  53                 return;
  54             }
  55             cache->client = client;
  56             cache->textclient = getTextBot();
  57             cache->user = user;
  58             cache->chan = chan;
  59             cache->nick = strdup(argv[0]);
  60             cache->key = (argc != 1 ? strdup(argv[1]) : NULL);
  61             get_userauth(cuser, neonserv_cmd_giveowner_nick_lookup, cache);
  62         }
  63     }
  64 }
  65
  66 static USERAUTH_CALLBACK(neonserv_cmd_giveowner_nick_lookup) {
  67     struct neonserv_cmd_giveowner_cache *cache = data;
  68     if(!user) {
  69         //USER_DOES_NOT_EXIST
  70         reply(cache->textclient, cache->user, "NS_USER_UNKNOWN", cache->nick);
  71     }
  72     else if(!(user->flags & USERFLAG_ISAUTHED)) {
  73         //USER_NOT_AUTHED
  74         reply(cache->textclient, cache->user, "NS_USER_NEED_AUTH", cache->nick);
  75     }
  76     else
  77         neonserv_cmd_giveowner_async1(cache->client, cache->textclient, cache->user, cache->chan, user->nick, user->auth, cache->key);
  78     free(cache->nick);
  79     if(cache->key)
  80         free(cache->key);
  81     free(cache);
  82 }
  83
  84 static void neonserv_cmd_giveowner_async1(struct ClientSocket *client, struct ClientSocket *textclient, struct UserNode *user, struct ChanNode *chan, char *nick, char *auth, char *key) {
  85     //we've got a valid auth now...
  86     if(!stricmp(user->auth, auth)) {
  87         reply(textclient, user, "NS_GIVEOWNER_SELF");
  88         return;
  89     }
  90     MYSQL_RES *res;
  91     MYSQL_ROW row;
  92     int userid;
  93     printf_mysql_query("SELECT `user_id` FROM `users` WHERE `user_user` = '%s'", escape_string(auth));
  94     res = mysql_use();
  95     if ((row = mysql_fetch_row(res)) != NULL) {
  96         userid = atoi(row[0]);
  97         //check if the user is already added
  98         printf_mysql_query("SELECT `chanuser_access`, `chanuser_id` FROM `chanusers` WHERE `chanuser_cid` = '%d' AND `chanuser_uid` = '%d'", chan->channel_id, userid);
  99         res = mysql_use();
 100         if ((row = mysql_fetch_row(res)) != NULL) {
 101             int seed = 0;
 102             char *tmp;
 103             char giveownerkey[16];
 104             for(tmp = user->auth; *tmp; tmp++)
 105                 seed = (seed * 0xEECE66DL ^ ((*tmp << 24) | (*tmp << 16) | (*tmp << 8) | *tmp));
 106             for(tmp = chan->name; *tmp; tmp++)
 107                 seed = (seed * 0xEECE66DL ^ ((*tmp << 24) | (*tmp << 16) | (*tmp << 8) | *tmp));
 108             sprintf(giveownerkey, "%08x", seed);
 109             if(key && !stricmp(giveownerkey, key)) {
 110                 //give ownership
 111                 printf_mysql_query("UPDATE `chanusers` SET `chanuser_access` = '500' WHERE `chanuser_id` = '%s'", row[1]);
 112                 printf_mysql_query("UPDATE `chanusers` SET `chanuser_access` = '499' WHERE `chanuser_cid` = '%d' AND `chanuser_uid` = (SELECT `user_id` FROM `users` WHERE `user_user` = '%s')", chan->channel_id, escape_string(user->auth));
 113                 printf_mysql_query("INSERT INTO `owner_history` (`owner_history_cid`, `owner_history_uid`, `owner_history_time`) VALUE ('%d', '%d', UNIX_TIMESTAMP())", chan->channel_id, userid);
 114                 reply(textclient, user, "NS_GIVEOWNER_DONE", chan->name, auth);
 115             } else {
 116                 reply(textclient, user, "NS_GIVEOWNER_CONFIRM", auth, giveownerkey);
 117             }
 118             return;
 119         }
 120     }
 121     reply(textclient, user, "NS_NOT_ON_USERLIST", nick, chan->name);
 122 }