prosody: plugins/mod_dialback.lua@841d61be198f (annotated)

1523 841d61be198f Remove version number from copyright headers Matthew Wild <mwild1@gmail.com> parents: 1337 diff changeset	1	-- Prosody IM
760 90ce865eebd8 Update copyright notices for 2009 Matthew Wild <mwild1@gmail.com> parents: 759 diff changeset	2	-- Copyright (C) 2008-2009 Matthew Wild
90ce865eebd8 Update copyright notices for 2009 Matthew Wild <mwild1@gmail.com> parents: 759 diff changeset	3	-- Copyright (C) 2008-2009 Waqas Hussain
519 cccd610a0ef9 Insert copyright/license headers Matthew Wild <mwild1@gmail.com> parents: 438 diff changeset	4	--
758 b1885732e979 GPL->MIT! Matthew Wild <mwild1@gmail.com> parents: 645 diff changeset	5	-- This project is MIT/X11 licensed. Please see the
b1885732e979 GPL->MIT! Matthew Wild <mwild1@gmail.com> parents: 645 diff changeset	6	-- COPYING file in the source package for more information.
519 cccd610a0ef9 Insert copyright/license headers Matthew Wild <mwild1@gmail.com> parents: 438 diff changeset	7	--
cccd610a0ef9 Insert copyright/license headers Matthew Wild <mwild1@gmail.com> parents: 438 diff changeset	8
cccd610a0ef9 Insert copyright/license headers Matthew Wild <mwild1@gmail.com> parents: 438 diff changeset	9
1042 a3d77353c18a mod_: Fix a load of global accesses Matthew Wild <mwild1@gmail.com>* parents: 896 diff changeset	10	local hosts = _G.hosts;
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	11	local send_s2s = require "core.s2smanager".send_to_host;
e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	12	local s2s_make_authenticated = require "core.s2smanager".make_authenticated;
e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	13	local s2s_verify_dialback = require "core.s2smanager".verify_dialback;
645 d0a8ff9ba3e0 Destroy session on failed dialback instead of throwing an error Matthew Wild <mwild1@gmail.com> parents: 621 diff changeset	14	local s2s_destroy_session = require "core.s2smanager".destroy_session;
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	15
1070 3b066968063b mod_dialback: Use module logger instead of creating a new one Matthew Wild <mwild1@gmail.com> parents: 1042 diff changeset	16	local log = module._log;
559 fa4a51fe6442 Remove an incorrect line which I didn't add, and fix the proper way. Corrects the sending of stanzas over unauthed s2sout's. Also fixes mod_dialback to send stanzas and not strings. Matthew Wild <mwild1@gmail.com> parents: 519 diff changeset	17
1070 3b066968063b mod_dialback: Use module logger instead of creating a new one Matthew Wild <mwild1@gmail.com> parents: 1042 diff changeset	18	local st = require "util.stanza";
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	19
e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	20	local xmlns_dialback = "jabber:server:dialback";
e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	21
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	22	local dialback_requests = setmetatable({}, { __mode = 'v' });
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	23
438 193f9dd64f17 Bumper commit for the new modulemanager API \o/ Updates all the modules, though some more changes may be in store. Matthew Wild <mwild1@gmail.com> parents: 352 diff changeset	24	module:add_handler({"s2sin_unauthed", "s2sin"}, "verify", xmlns_dialback,
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	25	function (origin, stanza)
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	26	-- We are being asked to verify the key, to ensure it was generated by us
1077 d6a885cacd8c mod_dialback: Miscellaneous logging improvements, changing levels, improving messages and using session loggers where possible Matthew Wild <mwild1@gmail.com> parents: 1070 diff changeset	27	origin.log("debug", "verifying that dialback key is ours...");
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	28	local attr = stanza.attr;
1337 16c5aa4696ca mod_dialback: Change FIXME comment to COMPAT Matthew Wild <mwild1@gmail.com> parents: 1077 diff changeset	29	-- COMPAT: Grr, ejabberd breaks this one too?? it is black and white in XEP-220 example 34
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	30	--if attr.from ~= origin.to_host then error("invalid-from"); end
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	31	local type;
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	32	if s2s_verify_dialback(attr.id, attr.from, attr.to, stanza[1]) then
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	33	type = "valid"
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	34	else
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	35	type = "invalid"
1077 d6a885cacd8c mod_dialback: Miscellaneous logging improvements, changing levels, improving messages and using session loggers where possible Matthew Wild <mwild1@gmail.com> parents: 1070 diff changeset	36	origin.log("warn", "Asked to verify a dialback key that was incorrect. An imposter is claiming to be %s?", attr.to);
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	37	end
1077 d6a885cacd8c mod_dialback: Miscellaneous logging improvements, changing levels, improving messages and using session loggers where possible Matthew Wild <mwild1@gmail.com> parents: 1070 diff changeset	38	origin.log("debug", "verified dialback key... it is %s", type);
560 6c07f15a34f4 Fix the last couple of places where we send strings from mod_dialback Matthew Wild <mwild1@gmail.com> parents: 559 diff changeset	39	origin.sends2s(st.stanza("db:verify", { from = attr.to, to = attr.from, id = attr.id, type = type }):text(stanza[1]));
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	40	end);
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	41
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	42	module:add_handler({ "s2sin_unauthed", "s2sin" }, "result", xmlns_dialback,
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	43	function (origin, stanza)
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	44	-- he wants to be identified through dialback
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	45	-- We need to check the key with the Authoritative server
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	46	local attr = stanza.attr;
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	47	origin.hosts[attr.from] = { dialback_key = stanza[1] };
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	48
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	49	if not hosts[attr.to] then
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	50	-- Not a host that we serve
1077 d6a885cacd8c mod_dialback: Miscellaneous logging improvements, changing levels, improving messages and using session loggers where possible Matthew Wild <mwild1@gmail.com> parents: 1070 diff changeset	51	origin.log("info", "%s tried to connect to %s, which we don't serve", attr.from, attr.to);
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	52	origin:close("host-unknown");
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	53	return;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	54	end
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	55
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	56	dialback_requests[attr.from] = origin;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	57
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	58	if not origin.from_host then
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	59	-- Just used for friendlier logging
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	60	origin.from_host = attr.from;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	61	end
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	62	if not origin.to_host then
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	63	-- Just used for friendlier logging
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	64	origin.to_host = attr.to;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	65	end
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	66
1077 d6a885cacd8c mod_dialback: Miscellaneous logging improvements, changing levels, improving messages and using session loggers where possible Matthew Wild <mwild1@gmail.com> parents: 1070 diff changeset	67	origin.log("debug", "asking %s if key %s belongs to them", attr.from, stanza[1]);
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	68	send_s2s(attr.to, attr.from,
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	69	st.stanza("db:verify", { from = attr.to, to = attr.from, id = origin.streamid }):text(stanza[1]));
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	70	end);
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	71
438 193f9dd64f17 Bumper commit for the new modulemanager API \o/ Updates all the modules, though some more changes may be in store. Matthew Wild <mwild1@gmail.com> parents: 352 diff changeset	72	module:add_handler({ "s2sout_unauthed", "s2sout" }, "verify", xmlns_dialback,
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	73	function (origin, stanza)
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	74	local attr = stanza.attr;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	75	local dialback_verifying = dialback_requests[attr.from];
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	76	if dialback_verifying then
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	77	local valid;
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	78	if attr.type == "valid" then
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	79	s2s_make_authenticated(dialback_verifying, attr.from);
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	80	valid = "valid";
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	81	else
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	82	-- Warn the original connection that is was not verified successfully
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	83	log("warn", "authoritative server for "..(attr.from or "(unknown)").." denied the key");
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	84	valid = "invalid";
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	85	end
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	86	if not dialback_verifying.sends2s then
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	87	log("warn", "Incoming s2s session %s was closed in the meantime, so we can't notify it of the db result", tostring(dialback_verifying):match("%w+$"));
347 fba39fda0879 Don't error if the original s2s connection has closed before we get the dialback result Matthew Wild <mwild1@gmail.com> parents: 260 diff changeset	88	else
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	89	dialback_verifying.sends2s(
560 6c07f15a34f4 Fix the last couple of places where we send strings from mod_dialback Matthew Wild <mwild1@gmail.com> parents: 559 diff changeset	90	st.stanza("db:result", { from = attr.to, to = attr.from, id = attr.id, type = valid })
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	91	:text(dialback_verifying.hosts[attr.from].dialback_key));
347 fba39fda0879 Don't error if the original s2s connection has closed before we get the dialback result Matthew Wild <mwild1@gmail.com> parents: 260 diff changeset	92	end
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	93	dialback_requests[attr.from] = nil;
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	94	end
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	95	end);
191 e64c8a44060f Fix s2s once and for all Matthew Wild <mwild1@gmail.com> parents: diff changeset	96
438 193f9dd64f17 Bumper commit for the new modulemanager API \o/ Updates all the modules, though some more changes may be in store. Matthew Wild <mwild1@gmail.com> parents: 352 diff changeset	97	module:add_handler({ "s2sout_unauthed", "s2sout" }, "result", xmlns_dialback,
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	98	function (origin, stanza)
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	99	-- Remote server is telling us whether we passed dialback
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	100
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	101	local attr = stanza.attr;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	102	if not hosts[attr.to] then
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	103	origin:close("host-unknown");
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	104	return;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	105	elseif hosts[attr.to].s2sout[attr.from] ~= origin then
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	106	-- This isn't right
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	107	origin:close("invalid-id");
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	108	return;
cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	109	end
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	110	if stanza.attr.type == "valid" then
621 cd2cab5400fc Add support for dialback piggy-backing. Fixes #37. Thanks to CShadowRun for helping me test :) Matthew Wild <mwild1@gmail.com> parents: 615 diff changeset	111	s2s_make_authenticated(origin, attr.from);
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	112	else
645 d0a8ff9ba3e0 Destroy session on failed dialback instead of throwing an error Matthew Wild <mwild1@gmail.com> parents: 621 diff changeset	113	s2s_destroy_session(origin)
219 f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	114	end
f06e97f525bc Fixed some whitespace. Waqas Hussain <waqas20@gmail.com> parents: 191 diff changeset	115	end);

author	Matthew Wild <mwild1@gmail.com>
	Fri, 10 Jul 2009 03:11:45 +0100
changeset 1523	841d61be198f
parent 1337	16c5aa4696ca
child 1876	6d33e0521667
permissions	-rw-r--r--