Context Navigation

source: code/trunk/downstream.go@ 679

Last change on this file since 679 was 677, checked in by contact, 4 years ago

Add context support to service

References: https://todo.sr.ht/~emersion/soju/141

File size: 65.6 KB

Line
1	package soju
2
3	import (
4	"context"
5	"crypto/tls"
6	"encoding/base64"
7	"errors"
8	"fmt"
9	"io"
10	"net"
11	"strconv"
12	"strings"
13	"time"
14
15	"github.com/emersion/go-sasl"
16	"golang.org/x/crypto/bcrypt"
17	"gopkg.in/irc.v3"
18	)
19
20	type ircError struct {
21	Message *irc.Message
22	}
23
24	func (err ircError) Error() string {
25	return err.Message.String()
26	}
27
28	func newUnknownCommandError(cmd string) ircError {
29	return ircError{&irc.Message{
30	Command: irc.ERR_UNKNOWNCOMMAND,
31	Params: []string{
32	"*",
33	cmd,
34	"Unknown command",
35	},
36	}}
37	}
38
39	func newNeedMoreParamsError(cmd string) ircError {
40	return ircError{&irc.Message{
41	Command: irc.ERR_NEEDMOREPARAMS,
42	Params: []string{
43	"*",
44	cmd,
45	"Not enough parameters",
46	},
47	}}
48	}
49
50	func newChatHistoryError(subcommand string, target string) ircError {
51	return ircError{&irc.Message{
52	Command: "FAIL",
53	Params: []string{"CHATHISTORY", "MESSAGE_ERROR", subcommand, target, "Messages could not be retrieved"},
54	}}
55	}
56
57	var errAuthFailed = ircError{&irc.Message{
58	Command: irc.ERR_PASSWDMISMATCH,
59	Params: []string{"*", "Invalid username or password"},
60	}}
61
62	func parseBouncerNetID(subcommand, s string) (int64, error) {
63	id, err := strconv.ParseInt(s, 10, 64)
64	if err != nil {
65	return 0, ircError{&irc.Message{
66	Command: "FAIL",
67	Params: []string{"BOUNCER", "INVALID_NETID", subcommand, s, "Invalid network ID"},
68	}}
69	}
70	return id, nil
71	}
72
73	func fillNetworkAddrAttrs(attrs irc.Tags, network *Network) {
74	u, err := network.URL()
75	if err != nil {
76	return
77	}
78
79	hasHostPort := true
80	switch u.Scheme {
81	case "ircs":
82	attrs["tls"] = irc.TagValue("1")
83	case "irc+insecure":
84	attrs["tls"] = irc.TagValue("0")
85	default: // e.g. unix://
86	hasHostPort = false
87	}
88	if host, port, err := net.SplitHostPort(u.Host); err == nil && hasHostPort {
89	attrs["host"] = irc.TagValue(host)
90	attrs["port"] = irc.TagValue(port)
91	} else if hasHostPort {
92	attrs["host"] = irc.TagValue(u.Host)
93	}
94	}
95
96	func getNetworkAttrs(network *network) irc.Tags {
97	state := "disconnected"
98	if uc := network.conn; uc != nil {
99	state = "connected"
100	}
101
102	attrs := irc.Tags{
103	"name": irc.TagValue(network.GetName()),
104	"state": irc.TagValue(state),
105	"nickname": irc.TagValue(GetNick(&network.user.User, &network.Network)),
106	}
107
108	if network.Username != "" {
109	attrs["username"] = irc.TagValue(network.Username)
110	}
111	if realname := GetRealname(&network.user.User, &network.Network); realname != "" {
112	attrs["realname"] = irc.TagValue(realname)
113	}
114
115	fillNetworkAddrAttrs(attrs, &network.Network)
116
117	return attrs
118	}
119
120	func networkAddrFromAttrs(attrs irc.Tags) string {
121	host, ok := attrs.GetTag("host")
122	if !ok {
123	return ""
124	}
125
126	addr := host
127	if port, ok := attrs.GetTag("port"); ok {
128	addr += ":" + port
129	}
130
131	if tlsStr, ok := attrs.GetTag("tls"); ok && tlsStr == "0" {
132	addr = "irc+insecure://" + tlsStr
133	}
134
135	return addr
136	}
137
138	func updateNetworkAttrs(record *Network, attrs irc.Tags, subcommand string) error {
139	addrAttrs := irc.Tags{}
140	fillNetworkAddrAttrs(addrAttrs, record)
141
142	updateAddr := false
143	for k, v := range attrs {
144	s := string(v)
145	switch k {
146	case "host", "port", "tls":
147	updateAddr = true
148	addrAttrs[k] = v
149	case "name":
150	record.Name = s
151	case "nickname":
152	record.Nick = s
153	case "username":
154	record.Username = s
155	case "realname":
156	record.Realname = s
157	case "pass":
158	record.Pass = s
159	default:
160	return ircError{&irc.Message{
161	Command: "FAIL",
162	Params: []string{"BOUNCER", "UNKNOWN_ATTRIBUTE", subcommand, k, "Unknown attribute"},
163	}}
164	}
165	}
166
167	if updateAddr {
168	record.Addr = networkAddrFromAttrs(addrAttrs)
169	if record.Addr == "" {
170	return ircError{&irc.Message{
171	Command: "FAIL",
172	Params: []string{"BOUNCER", "NEED_ATTRIBUTE", subcommand, "host", "Missing required host attribute"},
173	}}
174	}
175	}
176
177	return nil
178	}
179
180	// ' ' and ':' break the IRC message wire format, '@' and '!' break prefixes,
181	// '*' and '?' break masks, '$' breaks server masks in PRIVMSG/NOTICE
182	const illegalNickChars = " :@!*?$"
183
184	// permanentDownstreamCaps is the list of always-supported downstream
185	// capabilities.
186	var permanentDownstreamCaps = map[string]string{
187	"batch": "",
188	"cap-notify": "",
189	"echo-message": "",
190	"invite-notify": "",
191	"message-tags": "",
192	"sasl": "PLAIN",
193	"server-time": "",
194	"setname": "",
195
196	"soju.im/bouncer-networks": "",
197	"soju.im/bouncer-networks-notify": "",
198	}
199
200	// needAllDownstreamCaps is the list of downstream capabilities that
201	// require support from all upstreams to be enabled
202	var needAllDownstreamCaps = map[string]string{
203	"account-notify": "",
204	"account-tag": "",
205	"away-notify": "",
206	"extended-join": "",
207	"multi-prefix": "",
208	}
209
210	// passthroughIsupport is the set of ISUPPORT tokens that are directly passed
211	// through from the upstream server to downstream clients.
212	//
213	// This is only effective in single-upstream mode.
214	var passthroughIsupport = map[string]bool{
215	"AWAYLEN": true,
216	"BOT": true,
217	"CHANLIMIT": true,
218	"CHANMODES": true,
219	"CHANNELLEN": true,
220	"CHANTYPES": true,
221	"CLIENTTAGDENY": true,
222	"EXCEPTS": true,
223	"EXTBAN": true,
224	"HOSTLEN": true,
225	"INVEX": true,
226	"KICKLEN": true,
227	"MAXLIST": true,
228	"MAXTARGETS": true,
229	"MODES": true,
230	"NAMELEN": true,
231	"NETWORK": true,
232	"NICKLEN": true,
233	"PREFIX": true,
234	"SAFELIST": true,
235	"TARGMAX": true,
236	"TOPICLEN": true,
237	"USERLEN": true,
238	"UTF8ONLY": true,
239	"WHOX": true,
240	}
241
242	type downstreamConn struct {
243	conn
244
245	id uint64
246
247	registered bool
248	user *user
249	nick string
250	nickCM string
251	rawUsername string
252	networkName string
253	clientName string
254	realname string
255	hostname string
256	password string // empty after authentication
257	network *network // can be nil
258
259	negotiatingCaps bool
260	capVersion int
261	supportedCaps map[string]string
262	caps map[string]bool
263
264	lastBatchRef uint64
265
266	saslServer sasl.Server
267	}
268
269	func newDownstreamConn(srv Server, ic ircConn, id uint64) downstreamConn {
270	remoteAddr := ic.RemoteAddr().String()
271	logger := &prefixLogger{srv.Logger, fmt.Sprintf("downstream %q: ", remoteAddr)}
272	options := connOptions{Logger: logger}
273	dc := &downstreamConn{
274	conn: *newConn(srv, ic, &options),
275	id: id,
276	supportedCaps: make(map[string]string),
277	caps: make(map[string]bool),
278	}
279	dc.hostname = remoteAddr
280	if host, _, err := net.SplitHostPort(dc.hostname); err == nil {
281	dc.hostname = host
282	}
283	for k, v := range permanentDownstreamCaps {
284	dc.supportedCaps[k] = v
285	}
286	if srv.LogPath != "" {
287	dc.supportedCaps["draft/chathistory"] = ""
288	}
289	return dc
290	}
291
292	func (dc downstreamConn) prefix() irc.Prefix {
293	return &irc.Prefix{
294	Name: dc.nick,
295	User: dc.user.Username,
296	Host: dc.hostname,
297	}
298	}
299
300	func (dc downstreamConn) forEachNetwork(f func(network)) {
301	if dc.network != nil {
302	f(dc.network)
303	} else if !dc.caps["soju.im/bouncer-networks"] {
304	dc.user.forEachNetwork(f)
305	}
306	}
307
308	func (dc downstreamConn) forEachUpstream(f func(upstreamConn)) {
309	if dc.network == nil && dc.caps["soju.im/bouncer-networks"] {
310	return
311	}
312	dc.user.forEachUpstream(func(uc *upstreamConn) {
313	if dc.network != nil && uc.network != dc.network {
314	return
315	}
316	f(uc)
317	})
318	}
319
320	// upstream returns the upstream connection, if any. If there are zero or if
321	// there are multiple upstream connections, it returns nil.
322	func (dc downstreamConn) upstream() upstreamConn {
323	if dc.network == nil {
324	return nil
325	}
326	return dc.network.conn
327	}
328
329	func isOurNick(net *network, nick string) bool {
330	// TODO: this doesn't account for nick changes
331	if net.conn != nil {
332	return net.casemap(nick) == net.conn.nickCM
333	}
334	// We're not currently connected to the upstream connection, so we don't
335	// know whether this name is our nickname. Best-effort: use the network's
336	// configured nickname and hope it was the one being used when we were
337	// connected.
338	return net.casemap(nick) == net.casemap(GetNick(&net.user.User, &net.Network))
339	}
340
341	// marshalEntity converts an upstream entity name (ie. channel or nick) into a
342	// downstream entity name.
343	//
344	// This involves adding a "/<network>" suffix if the entity isn't the current
345	// user.
346	func (dc downstreamConn) marshalEntity(net network, name string) string {
347	if isOurNick(net, name) {
348	return dc.nick
349	}
350	name = partialCasemap(net.casemap, name)
351	if dc.network != nil {
352	if dc.network != net {
353	panic("soju: tried to marshal an entity for another network")
354	}
355	return name
356	}
357	return name + "/" + net.GetName()
358	}
359
360	func (dc downstreamConn) marshalUserPrefix(net network, prefix irc.Prefix) irc.Prefix {
361	if isOurNick(net, prefix.Name) {
362	return dc.prefix()
363	}
364	prefix.Name = partialCasemap(net.casemap, prefix.Name)
365	if dc.network != nil {
366	if dc.network != net {
367	panic("soju: tried to marshal a user prefix for another network")
368	}
369	return prefix
370	}
371	return &irc.Prefix{
372	Name: prefix.Name + "/" + net.GetName(),
373	User: prefix.User,
374	Host: prefix.Host,
375	}
376	}
377
378	// unmarshalEntityNetwork converts a downstream entity name (ie. channel or
379	// nick) into an upstream entity name.
380	//
381	// This involves removing the "/<network>" suffix.
382	func (dc downstreamConn) unmarshalEntityNetwork(name string) (network, string, error) {
383	if dc.network != nil {
384	return dc.network, name, nil
385	}
386
387	var net *network
388	if i := strings.LastIndexByte(name, '/'); i >= 0 {
389	network := name[i+1:]
390	name = name[:i]
391
392	for _, n := range dc.user.networks {
393	if network == n.GetName() {
394	net = n
395	break
396	}
397	}
398	}
399
400	if net == nil {
401	return nil, "", ircError{&irc.Message{
402	Command: irc.ERR_NOSUCHCHANNEL,
403	Params: []string{name, "Missing network suffix in name"},
404	}}
405	}
406
407	return net, name, nil
408	}
409
410	// unmarshalEntity is the same as unmarshalEntityNetwork, but returns the
411	// upstream connection and fails if the upstream is disconnected.
412	func (dc downstreamConn) unmarshalEntity(name string) (upstreamConn, string, error) {
413	net, name, err := dc.unmarshalEntityNetwork(name)
414	if err != nil {
415	return nil, "", err
416	}
417
418	if net.conn == nil {
419	return nil, "", ircError{&irc.Message{
420	Command: irc.ERR_NOSUCHCHANNEL,
421	Params: []string{name, "Disconnected from upstream network"},
422	}}
423	}
424
425	return net.conn, name, nil
426	}
427
428	func (dc downstreamConn) unmarshalText(uc upstreamConn, text string) string {
429	if dc.upstream() != nil {
430	return text
431	}
432	// TODO: smarter parsing that ignores URLs
433	return strings.ReplaceAll(text, "/"+uc.network.GetName(), "")
434	}
435
436	func (dc *downstreamConn) readMessages(ch chan<- event) error {
437	for {
438	msg, err := dc.ReadMessage()
439	if errors.Is(err, io.EOF) {
440	break
441	} else if err != nil {
442	return fmt.Errorf("failed to read IRC command: %v", err)
443	}
444
445	ch <- eventDownstreamMessage{msg, dc}
446	}
447
448	return nil
449	}
450
451	// SendMessage sends an outgoing message.
452	//
453	// This can only called from the user goroutine.
454	func (dc downstreamConn) SendMessage(msg irc.Message) {
455	if !dc.caps["message-tags"] {
456	if msg.Command == "TAGMSG" {
457	return
458	}
459	msg = msg.Copy()
460	for name := range msg.Tags {
461	supported := false
462	switch name {
463	case "time":
464	supported = dc.caps["server-time"]
465	case "account":
466	supported = dc.caps["account"]
467	}
468	if !supported {
469	delete(msg.Tags, name)
470	}
471	}
472	}
473	if !dc.caps["batch"] && msg.Tags["batch"] != "" {
474	msg = msg.Copy()
475	delete(msg.Tags, "batch")
476	}
477	if msg.Command == "JOIN" && !dc.caps["extended-join"] {
478	msg.Params = msg.Params[:1]
479	}
480	if msg.Command == "SETNAME" && !dc.caps["setname"] {
481	return
482	}
483	if msg.Command == "AWAY" && !dc.caps["away-notify"] {
484	return
485	}
486	if msg.Command == "ACCOUNT" && !dc.caps["account-notify"] {
487	return
488	}
489
490	dc.conn.SendMessage(msg)
491	}
492
493	func (dc *downstreamConn) SendBatch(typ string, params []string, tags irc.Tags, f func(batchRef irc.TagValue)) {
494	dc.lastBatchRef++
495	ref := fmt.Sprintf("%v", dc.lastBatchRef)
496
497	if dc.caps["batch"] {
498	dc.SendMessage(&irc.Message{
499	Tags: tags,
500	Prefix: dc.srv.prefix(),
501	Command: "BATCH",
502	Params: append([]string{"+" + ref, typ}, params...),
503	})
504	}
505
506	f(irc.TagValue(ref))
507
508	if dc.caps["batch"] {
509	dc.SendMessage(&irc.Message{
510	Prefix: dc.srv.prefix(),
511	Command: "BATCH",
512	Params: []string{"-" + ref},
513	})
514	}
515	}
516
517	// sendMessageWithID sends an outgoing message with the specified internal ID.
518	func (dc downstreamConn) sendMessageWithID(msg irc.Message, id string) {
519	dc.SendMessage(msg)
520
521	if id == "" \|\| !dc.messageSupportsBacklog(msg) {
522	return
523	}
524
525	dc.sendPing(id)
526	}
527
528	// advanceMessageWithID advances history to the specified message ID without
529	// sending a message. This is useful e.g. for self-messages when echo-message
530	// isn't enabled.
531	func (dc downstreamConn) advanceMessageWithID(msg irc.Message, id string) {
532	if id == "" \|\| !dc.messageSupportsBacklog(msg) {
533	return
534	}
535
536	dc.sendPing(id)
537	}
538
539	// ackMsgID acknowledges that a message has been received.
540	func (dc *downstreamConn) ackMsgID(id string) {
541	netID, entity, err := parseMsgID(id, nil)
542	if err != nil {
543	dc.logger.Printf("failed to ACK message ID %q: %v", id, err)
544	return
545	}
546
547	network := dc.user.getNetworkByID(netID)
548	if network == nil {
549	return
550	}
551
552	network.delivered.StoreID(entity, dc.clientName, id)
553	}
554
555	func (dc *downstreamConn) sendPing(msgID string) {
556	token := "soju-msgid-" + msgID
557	dc.SendMessage(&irc.Message{
558	Command: "PING",
559	Params: []string{token},
560	})
561	}
562
563	func (dc *downstreamConn) handlePong(token string) {
564	if !strings.HasPrefix(token, "soju-msgid-") {
565	dc.logger.Printf("received unrecognized PONG token %q", token)
566	return
567	}
568	msgID := strings.TrimPrefix(token, "soju-msgid-")
569	dc.ackMsgID(msgID)
570	}
571
572	// marshalMessage re-formats a message coming from an upstream connection so
573	// that it's suitable for being sent on this downstream connection. Only
574	// messages that may appear in logs are supported, except MODE messages which
575	// may only appear in single-upstream mode.
576	func (dc downstreamConn) marshalMessage(msg irc.Message, net network) irc.Message {
577	if dc.network != nil {
578	return msg
579	}
580
581	msg = msg.Copy()
582	msg.Prefix = dc.marshalUserPrefix(net, msg.Prefix)
583
584	switch msg.Command {
585	case "PRIVMSG", "NOTICE", "TAGMSG":
586	msg.Params[0] = dc.marshalEntity(net, msg.Params[0])
587	case "NICK":
588	// Nick change for another user
589	msg.Params[0] = dc.marshalEntity(net, msg.Params[0])
590	case "JOIN", "PART":
591	msg.Params[0] = dc.marshalEntity(net, msg.Params[0])
592	case "KICK":
593	msg.Params[0] = dc.marshalEntity(net, msg.Params[0])
594	msg.Params[1] = dc.marshalEntity(net, msg.Params[1])
595	case "TOPIC":
596	msg.Params[0] = dc.marshalEntity(net, msg.Params[0])
597	case "QUIT", "SETNAME":
598	// This space is intentionally left blank
599	default:
600	panic(fmt.Sprintf("unexpected %q message", msg.Command))
601	}
602
603	return msg
604	}
605
606	func (dc downstreamConn) handleMessage(msg irc.Message) error {
607	switch msg.Command {
608	case "QUIT":
609	return dc.Close()
610	default:
611	if dc.registered {
612	return dc.handleMessageRegistered(msg)
613	} else {
614	return dc.handleMessageUnregistered(msg)
615	}
616	}
617	}
618
619	func (dc downstreamConn) handleMessageUnregistered(msg irc.Message) error {
620	switch msg.Command {
621	case "NICK":
622	var nick string
623	if err := parseMessageParams(msg, &nick); err != nil {
624	return err
625	}
626	if strings.ContainsAny(nick, illegalNickChars) {
627	return ircError{&irc.Message{
628	Command: irc.ERR_ERRONEUSNICKNAME,
629	Params: []string{dc.nick, nick, "contains illegal characters"},
630	}}
631	}
632	nickCM := casemapASCII(nick)
633	if nickCM == serviceNickCM {
634	return ircError{&irc.Message{
635	Command: irc.ERR_NICKNAMEINUSE,
636	Params: []string{dc.nick, nick, "Nickname reserved for bouncer service"},
637	}}
638	}
639	dc.nick = nick
640	dc.nickCM = nickCM
641	case "USER":
642	if err := parseMessageParams(msg, &dc.rawUsername, nil, nil, &dc.realname); err != nil {
643	return err
644	}
645	case "PASS":
646	if err := parseMessageParams(msg, &dc.password); err != nil {
647	return err
648	}
649	case "CAP":
650	var subCmd string
651	if err := parseMessageParams(msg, &subCmd); err != nil {
652	return err
653	}
654	if err := dc.handleCapCommand(subCmd, msg.Params[1:]); err != nil {
655	return err
656	}
657	case "AUTHENTICATE":
658	if !dc.caps["sasl"] {
659	return ircError{&irc.Message{
660	Command: irc.ERR_SASLFAIL,
661	Params: []string{"*", "AUTHENTICATE requires the \"sasl\" capability to be enabled"},
662	}}
663	}
664	if len(msg.Params) == 0 {
665	return ircError{&irc.Message{
666	Command: irc.ERR_SASLFAIL,
667	Params: []string{"*", "Missing AUTHENTICATE argument"},
668	}}
669	}
670	if dc.nick == "" {
671	return ircError{&irc.Message{
672	Command: irc.ERR_SASLFAIL,
673	Params: []string{"*", "Expected NICK command before AUTHENTICATE"},
674	}}
675	}
676
677	var resp []byte
678	if msg.Params[0] == "*" {
679	dc.saslServer = nil
680	return ircError{&irc.Message{
681	Command: irc.ERR_SASLABORTED,
682	Params: []string{"*", "SASL authentication aborted"},
683	}}
684	} else if dc.saslServer == nil {
685	mech := strings.ToUpper(msg.Params[0])
686	switch mech {
687	case "PLAIN":
688	dc.saslServer = sasl.NewPlainServer(sasl.PlainAuthenticator(func(identity, username, password string) error {
689	return dc.authenticate(username, password)
690	}))
691	default:
692	return ircError{&irc.Message{
693	Command: irc.ERR_SASLFAIL,
694	Params: []string{"*", fmt.Sprintf("Unsupported SASL mechanism %q", mech)},
695	}}
696	}
697	} else if msg.Params[0] == "+" {
698	resp = nil
699	} else {
700	// TODO: multi-line messages
701	var err error
702	resp, err = base64.StdEncoding.DecodeString(msg.Params[0])
703	if err != nil {
704	dc.saslServer = nil
705	return ircError{&irc.Message{
706	Command: irc.ERR_SASLFAIL,
707	Params: []string{"*", "Invalid base64-encoded response"},
708	}}
709	}
710	}
711
712	challenge, done, err := dc.saslServer.Next(resp)
713	if err != nil {
714	dc.saslServer = nil
715	if ircErr, ok := err.(ircError); ok && ircErr.Message.Command == irc.ERR_PASSWDMISMATCH {
716	return ircError{&irc.Message{
717	Command: irc.ERR_SASLFAIL,
718	Params: []string{"*", ircErr.Message.Params[1]},
719	}}
720	}
721	dc.SendMessage(&irc.Message{
722	Prefix: dc.srv.prefix(),
723	Command: irc.ERR_SASLFAIL,
724	Params: []string{"*", "SASL error"},
725	})
726	return fmt.Errorf("SASL authentication failed: %v", err)
727	} else if done {
728	dc.saslServer = nil
729	dc.SendMessage(&irc.Message{
730	Prefix: dc.srv.prefix(),
731	Command: irc.RPL_LOGGEDIN,
732	Params: []string{dc.nick, dc.prefix().String(), dc.user.Username, "You are now logged in"},
733	})
734	dc.SendMessage(&irc.Message{
735	Prefix: dc.srv.prefix(),
736	Command: irc.RPL_SASLSUCCESS,
737	Params: []string{dc.nick, "SASL authentication successful"},
738	})
739	} else {
740	challengeStr := "+"
741	if len(challenge) > 0 {
742	challengeStr = base64.StdEncoding.EncodeToString(challenge)
743	}
744
745	// TODO: multi-line messages
746	dc.SendMessage(&irc.Message{
747	Prefix: dc.srv.prefix(),
748	Command: "AUTHENTICATE",
749	Params: []string{challengeStr},
750	})
751	}
752	case "BOUNCER":
753	var subcommand string
754	if err := parseMessageParams(msg, &subcommand); err != nil {
755	return err
756	}
757
758	switch strings.ToUpper(subcommand) {
759	case "BIND":
760	var idStr string
761	if err := parseMessageParams(msg, nil, &idStr); err != nil {
762	return err
763	}
764
765	if dc.user == nil {
766	return ircError{&irc.Message{
767	Command: "FAIL",
768	Params: []string{"BOUNCER", "ACCOUNT_REQUIRED", "BIND", "Authentication needed to bind to bouncer network"},
769	}}
770	}
771
772	id, err := parseBouncerNetID(subcommand, idStr)
773	if err != nil {
774	return err
775	}
776
777	var match *network
778	dc.user.forEachNetwork(func(net *network) {
779	if net.ID == id {
780	match = net
781	}
782	})
783	if match == nil {
784	return ircError{&irc.Message{
785	Command: "FAIL",
786	Params: []string{"BOUNCER", "INVALID_NETID", idStr, "Unknown network ID"},
787	}}
788	}
789
790	dc.networkName = match.GetName()
791	}
792	default:
793	dc.logger.Printf("unhandled message: %v", msg)
794	return newUnknownCommandError(msg.Command)
795	}
796	if dc.rawUsername != "" && dc.nick != "" && !dc.negotiatingCaps {
797	return dc.register()
798	}
799	return nil
800	}
801
802	func (dc *downstreamConn) handleCapCommand(cmd string, args []string) error {
803	cmd = strings.ToUpper(cmd)
804
805	replyTo := dc.nick
806	if !dc.registered {
807	replyTo = "*"
808	}
809
810	switch cmd {
811	case "LS":
812	if len(args) > 0 {
813	var err error
814	if dc.capVersion, err = strconv.Atoi(args[0]); err != nil {
815	return err
816	}
817	}
818	if !dc.registered && dc.capVersion >= 302 {
819	// Let downstream show everything it supports, and trim
820	// down the available capabilities when upstreams are
821	// known.
822	for k, v := range needAllDownstreamCaps {
823	dc.supportedCaps[k] = v
824	}
825	}
826
827	caps := make([]string, 0, len(dc.supportedCaps))
828	for k, v := range dc.supportedCaps {
829	if dc.capVersion >= 302 && v != "" {
830	caps = append(caps, k+"="+v)
831	} else {
832	caps = append(caps, k)
833	}
834	}
835
836	// TODO: multi-line replies
837	dc.SendMessage(&irc.Message{
838	Prefix: dc.srv.prefix(),
839	Command: "CAP",
840	Params: []string{replyTo, "LS", strings.Join(caps, " ")},
841	})
842
843	if dc.capVersion >= 302 {
844	// CAP version 302 implicitly enables cap-notify
845	dc.caps["cap-notify"] = true
846	}
847
848	if !dc.registered {
849	dc.negotiatingCaps = true
850	}
851	case "LIST":
852	var caps []string
853	for name, enabled := range dc.caps {
854	if enabled {
855	caps = append(caps, name)
856	}
857	}
858
859	// TODO: multi-line replies
860	dc.SendMessage(&irc.Message{
861	Prefix: dc.srv.prefix(),
862	Command: "CAP",
863	Params: []string{replyTo, "LIST", strings.Join(caps, " ")},
864	})
865	case "REQ":
866	if len(args) == 0 {
867	return ircError{&irc.Message{
868	Command: err_invalidcapcmd,
869	Params: []string{replyTo, cmd, "Missing argument in CAP REQ command"},
870	}}
871	}
872
873	// TODO: atomically ack/nak the whole capability set
874	caps := strings.Fields(args[0])
875	ack := true
876	for _, name := range caps {
877	name = strings.ToLower(name)
878	enable := !strings.HasPrefix(name, "-")
879	if !enable {
880	name = strings.TrimPrefix(name, "-")
881	}
882
883	if enable == dc.caps[name] {
884	continue
885	}
886
887	_, ok := dc.supportedCaps[name]
888	if !ok {
889	ack = false
890	break
891	}
892
893	if name == "cap-notify" && dc.capVersion >= 302 && !enable {
894	// cap-notify cannot be disabled with CAP version 302
895	ack = false
896	break
897	}
898
899	dc.caps[name] = enable
900	}
901
902	reply := "NAK"
903	if ack {
904	reply = "ACK"
905	}
906	dc.SendMessage(&irc.Message{
907	Prefix: dc.srv.prefix(),
908	Command: "CAP",
909	Params: []string{replyTo, reply, args[0]},
910	})
911
912	if !dc.registered {
913	dc.negotiatingCaps = true
914	}
915	case "END":
916	dc.negotiatingCaps = false
917	default:
918	return ircError{&irc.Message{
919	Command: err_invalidcapcmd,
920	Params: []string{replyTo, cmd, "Unknown CAP command"},
921	}}
922	}
923	return nil
924	}
925
926	func (dc *downstreamConn) setSupportedCap(name, value string) {
927	prevValue, hasPrev := dc.supportedCaps[name]
928	changed := !hasPrev \|\| prevValue != value
929	dc.supportedCaps[name] = value
930
931	if !dc.caps["cap-notify"] \|\| !changed {
932	return
933	}
934
935	replyTo := dc.nick
936	if !dc.registered {
937	replyTo = "*"
938	}
939
940	cap := name
941	if value != "" && dc.capVersion >= 302 {
942	cap = name + "=" + value
943	}
944
945	dc.SendMessage(&irc.Message{
946	Prefix: dc.srv.prefix(),
947	Command: "CAP",
948	Params: []string{replyTo, "NEW", cap},
949	})
950	}
951
952	func (dc *downstreamConn) unsetSupportedCap(name string) {
953	_, hasPrev := dc.supportedCaps[name]
954	delete(dc.supportedCaps, name)
955	delete(dc.caps, name)
956
957	if !dc.caps["cap-notify"] \|\| !hasPrev {
958	return
959	}
960
961	replyTo := dc.nick
962	if !dc.registered {
963	replyTo = "*"
964	}
965
966	dc.SendMessage(&irc.Message{
967	Prefix: dc.srv.prefix(),
968	Command: "CAP",
969	Params: []string{replyTo, "DEL", name},
970	})
971	}
972
973	func (dc *downstreamConn) updateSupportedCaps() {
974	supportedCaps := make(map[string]bool)
975	for cap := range needAllDownstreamCaps {
976	supportedCaps[cap] = true
977	}
978	dc.forEachUpstream(func(uc *upstreamConn) {
979	for cap, supported := range supportedCaps {
980	supportedCaps[cap] = supported && uc.caps[cap]
981	}
982	})
983
984	for cap, supported := range supportedCaps {
985	if supported {
986	dc.setSupportedCap(cap, needAllDownstreamCaps[cap])
987	} else {
988	dc.unsetSupportedCap(cap)
989	}
990	}
991
992	if dc.srv.LogPath != "" && dc.network != nil {
993	dc.setSupportedCap("draft/event-playback", "")
994	} else {
995	dc.unsetSupportedCap("draft/event-playback")
996	}
997	}
998
999	func (dc *downstreamConn) updateNick() {
1000	if uc := dc.upstream(); uc != nil && uc.nick != dc.nick {
1001	dc.SendMessage(&irc.Message{
1002	Prefix: dc.prefix(),
1003	Command: "NICK",
1004	Params: []string{uc.nick},
1005	})
1006	dc.nick = uc.nick
1007	dc.nickCM = casemapASCII(dc.nick)
1008	}
1009	}
1010
1011	func (dc *downstreamConn) updateRealname() {
1012	if uc := dc.upstream(); uc != nil && uc.realname != dc.realname && dc.caps["setname"] {
1013	dc.SendMessage(&irc.Message{
1014	Prefix: dc.prefix(),
1015	Command: "SETNAME",
1016	Params: []string{uc.realname},
1017	})
1018	dc.realname = uc.realname
1019	}
1020	}
1021
1022	func sanityCheckServer(addr string) error {
1023	dialer := net.Dialer{Timeout: 30 * time.Second}
1024	conn, err := tls.DialWithDialer(&dialer, "tcp", addr, nil)
1025	if err != nil {
1026	return err
1027	}
1028	return conn.Close()
1029	}
1030
1031	func unmarshalUsername(rawUsername string) (username, client, network string) {
1032	username = rawUsername
1033
1034	i := strings.IndexAny(username, "/@")
1035	j := strings.LastIndexAny(username, "/@")
1036	if i >= 0 {
1037	username = rawUsername[:i]
1038	}
1039	if j >= 0 {
1040	if rawUsername[j] == '@' {
1041	client = rawUsername[j+1:]
1042	} else {
1043	network = rawUsername[j+1:]
1044	}
1045	}
1046	if i >= 0 && j >= 0 && i < j {
1047	if rawUsername[i] == '@' {
1048	client = rawUsername[i+1 : j]
1049	} else {
1050	network = rawUsername[i+1 : j]
1051	}
1052	}
1053
1054	return username, client, network
1055	}
1056
1057	func (dc *downstreamConn) authenticate(username, password string) error {
1058	username, clientName, networkName := unmarshalUsername(username)
1059
1060	u, err := dc.srv.db.GetUser(context.TODO(), username)
1061	if err != nil {
1062	dc.logger.Printf("failed authentication for %q: user not found: %v", username, err)
1063	return errAuthFailed
1064	}
1065
1066	// Password auth disabled
1067	if u.Password == "" {
1068	return errAuthFailed
1069	}
1070
1071	err = bcrypt.CompareHashAndPassword([]byte(u.Password), []byte(password))
1072	if err != nil {
1073	dc.logger.Printf("failed authentication for %q: wrong password: %v", username, err)
1074	return errAuthFailed
1075	}
1076
1077	dc.user = dc.srv.getUser(username)
1078	if dc.user == nil {
1079	dc.logger.Printf("failed authentication for %q: user not active", username)
1080	return errAuthFailed
1081	}
1082	dc.clientName = clientName
1083	dc.networkName = networkName
1084	return nil
1085	}
1086
1087	func (dc *downstreamConn) register() error {
1088	if dc.registered {
1089	return fmt.Errorf("tried to register twice")
1090	}
1091
1092	password := dc.password
1093	dc.password = ""
1094	if dc.user == nil {
1095	if err := dc.authenticate(dc.rawUsername, password); err != nil {
1096	return err
1097	}
1098	}
1099
1100	if dc.clientName == "" && dc.networkName == "" {
1101	_, dc.clientName, dc.networkName = unmarshalUsername(dc.rawUsername)
1102	}
1103
1104	dc.registered = true
1105	dc.logger.Printf("registration complete for user %q", dc.user.Username)
1106	return nil
1107	}
1108
1109	func (dc *downstreamConn) loadNetwork() error {
1110	if dc.networkName == "" {
1111	return nil
1112	}
1113
1114	network := dc.user.getNetwork(dc.networkName)
1115	if network == nil {
1116	addr := dc.networkName
1117	if !strings.ContainsRune(addr, ':') {
1118	addr = addr + ":6697"
1119	}
1120
1121	dc.logger.Printf("trying to connect to new network %q", addr)
1122	if err := sanityCheckServer(addr); err != nil {
1123	dc.logger.Printf("failed to connect to %q: %v", addr, err)
1124	return ircError{&irc.Message{
1125	Command: irc.ERR_PASSWDMISMATCH,
1126	Params: []string{"*", fmt.Sprintf("Failed to connect to %q", dc.networkName)},
1127	}}
1128	}
1129
1130	// Some clients only allow specifying the nickname (and use the
1131	// nickname as a username too). Strip the network name from the
1132	// nickname when auto-saving networks.
1133	nick, _, _ := unmarshalUsername(dc.nick)
1134
1135	dc.logger.Printf("auto-saving network %q", dc.networkName)
1136	var err error
1137	network, err = dc.user.createNetwork(context.TODO(), &Network{
1138	Addr: dc.networkName,
1139	Nick: nick,
1140	Enabled: true,
1141	})
1142	if err != nil {
1143	return err
1144	}
1145	}
1146
1147	dc.network = network
1148	return nil
1149	}
1150
1151	func (dc *downstreamConn) welcome() error {
1152	if dc.user == nil \|\| !dc.registered {
1153	panic("tried to welcome an unregistered connection")
1154	}
1155
1156	// TODO: doing this might take some time. We should do it in dc.register
1157	// instead, but we'll potentially be adding a new network and this must be
1158	// done in the user goroutine.
1159	if err := dc.loadNetwork(); err != nil {
1160	return err
1161	}
1162
1163	isupport := []string{
1164	fmt.Sprintf("CHATHISTORY=%v", chatHistoryLimit),
1165	"CASEMAPPING=ascii",
1166	}
1167
1168	if dc.network != nil {
1169	isupport = append(isupport, fmt.Sprintf("BOUNCER_NETID=%v", dc.network.ID))
1170	}
1171	if dc.network == nil && dc.srv.Title != "" {
1172	isupport = append(isupport, "NETWORK="+encodeISUPPORT(dc.srv.Title))
1173	}
1174	if dc.network == nil && dc.caps["soju.im/bouncer-networks"] {
1175	isupport = append(isupport, "WHOX")
1176	}
1177
1178	if uc := dc.upstream(); uc != nil {
1179	for k := range passthroughIsupport {
1180	v, ok := uc.isupport[k]
1181	if !ok {
1182	continue
1183	}
1184	if v != nil {
1185	isupport = append(isupport, fmt.Sprintf("%v=%v", k, *v))
1186	} else {
1187	isupport = append(isupport, k)
1188	}
1189	}
1190	}
1191
1192	dc.SendMessage(&irc.Message{
1193	Prefix: dc.srv.prefix(),
1194	Command: irc.RPL_WELCOME,
1195	Params: []string{dc.nick, "Welcome to soju, " + dc.nick},
1196	})
1197	dc.SendMessage(&irc.Message{
1198	Prefix: dc.srv.prefix(),
1199	Command: irc.RPL_YOURHOST,
1200	Params: []string{dc.nick, "Your host is " + dc.srv.Hostname},
1201	})
1202	dc.SendMessage(&irc.Message{
1203	Prefix: dc.srv.prefix(),
1204	Command: irc.RPL_MYINFO,
1205	Params: []string{dc.nick, dc.srv.Hostname, "soju", "aiwroO", "OovaimnqpsrtklbeI"},
1206	})
1207	for _, msg := range generateIsupport(dc.srv.prefix(), dc.nick, isupport) {
1208	dc.SendMessage(msg)
1209	}
1210	if uc := dc.upstream(); uc != nil {
1211	dc.SendMessage(&irc.Message{
1212	Prefix: dc.srv.prefix(),
1213	Command: irc.RPL_UMODEIS,
1214	Params: []string{dc.nick, "+" + string(uc.modes)},
1215	})
1216	}
1217	if dc.network == nil && dc.caps["soju.im/bouncer-networks"] && dc.user.Admin {
1218	dc.SendMessage(&irc.Message{
1219	Prefix: dc.srv.prefix(),
1220	Command: irc.RPL_UMODEIS,
1221	Params: []string{dc.nick, "+o"},
1222	})
1223	}
1224
1225	if motd := dc.user.srv.MOTD(); motd != "" && dc.network == nil {
1226	for _, msg := range generateMOTD(dc.srv.prefix(), dc.nick, motd) {
1227	dc.SendMessage(msg)
1228	}
1229	} else {
1230	motdHint := "No MOTD"
1231	if dc.network != nil {
1232	motdHint = "Use /motd to read the message of the day"
1233	}
1234	dc.SendMessage(&irc.Message{
1235	Prefix: dc.srv.prefix(),
1236	Command: irc.ERR_NOMOTD,
1237	Params: []string{dc.nick, motdHint},
1238	})
1239	}
1240
1241	dc.updateNick()
1242	dc.updateRealname()
1243	dc.updateSupportedCaps()
1244
1245	if dc.caps["soju.im/bouncer-networks-notify"] {
1246	dc.SendBatch("soju.im/bouncer-networks", nil, nil, func(batchRef irc.TagValue) {
1247	dc.user.forEachNetwork(func(network *network) {
1248	idStr := fmt.Sprintf("%v", network.ID)
1249	attrs := getNetworkAttrs(network)
1250	dc.SendMessage(&irc.Message{
1251	Tags: irc.Tags{"batch": batchRef},
1252	Prefix: dc.srv.prefix(),
1253	Command: "BOUNCER",
1254	Params: []string{"NETWORK", idStr, attrs.String()},
1255	})
1256	})
1257	})
1258	}
1259
1260	dc.forEachUpstream(func(uc *upstreamConn) {
1261	for _, entry := range uc.channels.innerMap {
1262	ch := entry.value.(*upstreamChannel)
1263	if !ch.complete {
1264	continue
1265	}
1266	record := uc.network.channels.Value(ch.Name)
1267	if record != nil && record.Detached {
1268	continue
1269	}
1270
1271	dc.SendMessage(&irc.Message{
1272	Prefix: dc.prefix(),
1273	Command: "JOIN",
1274	Params: []string{dc.marshalEntity(ch.conn.network, ch.Name)},
1275	})
1276
1277	forwardChannel(dc, ch)
1278	}
1279	})
1280
1281	dc.forEachNetwork(func(net *network) {
1282	if dc.caps["draft/chathistory"] \|\| dc.user.msgStore == nil {
1283	return
1284	}
1285
1286	// Only send history if we're the first connected client with that name
1287	// for the network
1288	firstClient := true
1289	dc.user.forEachDownstream(func(c *downstreamConn) {
1290	if c != dc && c.clientName == dc.clientName && c.network == dc.network {
1291	firstClient = false
1292	}
1293	})
1294	if firstClient {
1295	net.delivered.ForEachTarget(func(target string) {
1296	lastDelivered := net.delivered.LoadID(target, dc.clientName)
1297	if lastDelivered == "" {
1298	return
1299	}
1300
1301	dc.sendTargetBacklog(net, target, lastDelivered)
1302
1303	// Fast-forward history to last message
1304	targetCM := net.casemap(target)
1305	lastID, err := dc.user.msgStore.LastMsgID(&net.Network, targetCM, time.Now())
1306	if err != nil {
1307	dc.logger.Printf("failed to get last message ID: %v", err)
1308	return
1309	}
1310	net.delivered.StoreID(target, dc.clientName, lastID)
1311	})
1312	}
1313	})
1314
1315	return nil
1316	}
1317
1318	// messageSupportsBacklog checks whether the provided message can be sent as
1319	// part of an history batch.
1320	func (dc downstreamConn) messageSupportsBacklog(msg irc.Message) bool {
1321	// Don't replay all messages, because that would mess up client
1322	// state. For instance we just sent the list of users, sending
1323	// PART messages for one of these users would be incorrect.
1324	switch msg.Command {
1325	case "PRIVMSG", "NOTICE":
1326	return true
1327	}
1328	return false
1329	}
1330
1331	func (dc downstreamConn) sendTargetBacklog(net network, target, msgID string) {
1332	if dc.caps["draft/chathistory"] \|\| dc.user.msgStore == nil {
1333	return
1334	}
1335
1336	ch := net.channels.Value(target)
1337
1338	ctx, cancel := context.WithTimeout(context.TODO(), backlogTimeout)
1339	defer cancel()
1340
1341	targetCM := net.casemap(target)
1342	history, err := dc.user.msgStore.LoadLatestID(ctx, &net.Network, targetCM, msgID, backlogLimit)
1343	if err != nil {
1344	dc.logger.Printf("failed to send backlog for %q: %v", target, err)
1345	return
1346	}
1347
1348	dc.SendBatch("chathistory", []string{dc.marshalEntity(net, target)}, nil, func(batchRef irc.TagValue) {
1349	for _, msg := range history {
1350	if ch != nil && ch.Detached {
1351	if net.detachedMessageNeedsRelay(ch, msg) {
1352	dc.relayDetachedMessage(net, msg)
1353	}
1354	} else {
1355	msg.Tags["batch"] = batchRef
1356	dc.SendMessage(dc.marshalMessage(msg, net))
1357	}
1358	}
1359	})
1360	}
1361
1362	func (dc downstreamConn) relayDetachedMessage(net network, msg *irc.Message) {
1363	if msg.Command != "PRIVMSG" && msg.Command != "NOTICE" {
1364	return
1365	}
1366
1367	sender := msg.Prefix.Name
1368	target, text := msg.Params[0], msg.Params[1]
1369	if net.isHighlight(msg) {
1370	sendServiceNOTICE(dc, fmt.Sprintf("highlight in %v: <%v> %v", dc.marshalEntity(net, target), sender, text))
1371	} else {
1372	sendServiceNOTICE(dc, fmt.Sprintf("message in %v: <%v> %v", dc.marshalEntity(net, target), sender, text))
1373	}
1374	}
1375
1376	func (dc *downstreamConn) runUntilRegistered() error {
1377	for !dc.registered {
1378	msg, err := dc.ReadMessage()
1379	if err != nil {
1380	return fmt.Errorf("failed to read IRC command: %w", err)
1381	}
1382
1383	err = dc.handleMessage(msg)
1384	if ircErr, ok := err.(ircError); ok {
1385	ircErr.Message.Prefix = dc.srv.prefix()
1386	dc.SendMessage(ircErr.Message)
1387	} else if err != nil {
1388	return fmt.Errorf("failed to handle IRC command %q: %v", msg, err)
1389	}
1390	}
1391
1392	return nil
1393	}
1394
1395	func (dc downstreamConn) handleMessageRegistered(msg irc.Message) error {
1396	ctx, cancel := context.WithTimeout(context.TODO(), handleDownstreamMessageTimeout)
1397	defer cancel()
1398
1399	switch msg.Command {
1400	case "CAP":
1401	var subCmd string
1402	if err := parseMessageParams(msg, &subCmd); err != nil {
1403	return err
1404	}
1405	if err := dc.handleCapCommand(subCmd, msg.Params[1:]); err != nil {
1406	return err
1407	}
1408	case "PING":
1409	var source, destination string
1410	if err := parseMessageParams(msg, &source); err != nil {
1411	return err
1412	}
1413	if len(msg.Params) > 1 {
1414	destination = msg.Params[1]
1415	}
1416	if destination != "" && destination != dc.srv.Hostname {
1417	return ircError{&irc.Message{
1418	Command: irc.ERR_NOSUCHSERVER,
1419	Params: []string{dc.nick, destination, "No such server"},
1420	}}
1421	}
1422	dc.SendMessage(&irc.Message{
1423	Prefix: dc.srv.prefix(),
1424	Command: "PONG",
1425	Params: []string{dc.srv.Hostname, source},
1426	})
1427	return nil
1428	case "PONG":
1429	if len(msg.Params) == 0 {
1430	return newNeedMoreParamsError(msg.Command)
1431	}
1432	token := msg.Params[len(msg.Params)-1]
1433	dc.handlePong(token)
1434	case "USER":
1435	return ircError{&irc.Message{
1436	Command: irc.ERR_ALREADYREGISTERED,
1437	Params: []string{dc.nick, "You may not reregister"},
1438	}}
1439	case "NICK":
1440	var rawNick string
1441	if err := parseMessageParams(msg, &rawNick); err != nil {
1442	return err
1443	}
1444
1445	nick := rawNick
1446	var upstream *upstreamConn
1447	if dc.upstream() == nil {
1448	uc, unmarshaledNick, err := dc.unmarshalEntity(nick)
1449	if err == nil { // NICK nick/network: NICK only on a specific upstream
1450	upstream = uc
1451	nick = unmarshaledNick
1452	}
1453	}
1454
1455	if strings.ContainsAny(nick, illegalNickChars) {
1456	return ircError{&irc.Message{
1457	Command: irc.ERR_ERRONEUSNICKNAME,
1458	Params: []string{dc.nick, rawNick, "contains illegal characters"},
1459	}}
1460	}
1461	if casemapASCII(nick) == serviceNickCM {
1462	return ircError{&irc.Message{
1463	Command: irc.ERR_NICKNAMEINUSE,
1464	Params: []string{dc.nick, rawNick, "Nickname reserved for bouncer service"},
1465	}}
1466	}
1467
1468	var err error
1469	dc.forEachNetwork(func(n *network) {
1470	if err != nil \|\| (upstream != nil && upstream.network != n) {
1471	return
1472	}
1473	n.Nick = nick
1474	err = dc.srv.db.StoreNetwork(ctx, dc.user.ID, &n.Network)
1475	})
1476	if err != nil {
1477	return err
1478	}
1479
1480	dc.forEachUpstream(func(uc *upstreamConn) {
1481	if upstream != nil && upstream != uc {
1482	return
1483	}
1484	uc.SendMessageLabeled(dc.id, &irc.Message{
1485	Command: "NICK",
1486	Params: []string{nick},
1487	})
1488	})
1489
1490	if dc.upstream() == nil && upstream == nil && dc.nick != nick {
1491	dc.SendMessage(&irc.Message{
1492	Prefix: dc.prefix(),
1493	Command: "NICK",
1494	Params: []string{nick},
1495	})
1496	dc.nick = nick
1497	dc.nickCM = casemapASCII(dc.nick)
1498	}
1499	case "SETNAME":
1500	var realname string
1501	if err := parseMessageParams(msg, &realname); err != nil {
1502	return err
1503	}
1504
1505	// If the client just resets to the default, just wipe the per-network
1506	// preference
1507	storeRealname := realname
1508	if realname == dc.user.Realname {
1509	storeRealname = ""
1510	}
1511
1512	var storeErr error
1513	var needUpdate []Network
1514	dc.forEachNetwork(func(n *network) {
1515	// We only need to call updateNetwork for upstreams that don't
1516	// support setname
1517	if uc := n.conn; uc != nil && uc.caps["setname"] {
1518	uc.SendMessageLabeled(dc.id, &irc.Message{
1519	Command: "SETNAME",
1520	Params: []string{realname},
1521	})
1522
1523	n.Realname = storeRealname
1524	if err := dc.srv.db.StoreNetwork(ctx, dc.user.ID, &n.Network); err != nil {
1525	dc.logger.Printf("failed to store network realname: %v", err)
1526	storeErr = err
1527	}
1528	return
1529	}
1530
1531	record := n.Network // copy network record because we'll mutate it
1532	record.Realname = storeRealname
1533	needUpdate = append(needUpdate, record)
1534	})
1535
1536	// Walk the network list as a second step, because updateNetwork
1537	// mutates the original list
1538	for _, record := range needUpdate {
1539	if _, err := dc.user.updateNetwork(ctx, &record); err != nil {
1540	dc.logger.Printf("failed to update network realname: %v", err)
1541	storeErr = err
1542	}
1543	}
1544	if storeErr != nil {
1545	return ircError{&irc.Message{
1546	Command: "FAIL",
1547	Params: []string{"SETNAME", "CANNOT_CHANGE_REALNAME", "Failed to update realname"},
1548	}}
1549	}
1550
1551	if dc.upstream() == nil {
1552	dc.SendMessage(&irc.Message{
1553	Prefix: dc.prefix(),
1554	Command: "SETNAME",
1555	Params: []string{realname},
1556	})
1557	}
1558	case "JOIN":
1559	var namesStr string
1560	if err := parseMessageParams(msg, &namesStr); err != nil {
1561	return err
1562	}
1563
1564	var keys []string
1565	if len(msg.Params) > 1 {
1566	keys = strings.Split(msg.Params[1], ",")
1567	}
1568
1569	for i, name := range strings.Split(namesStr, ",") {
1570	uc, upstreamName, err := dc.unmarshalEntity(name)
1571	if err != nil {
1572	return err
1573	}
1574
1575	var key string
1576	if len(keys) > i {
1577	key = keys[i]
1578	}
1579
1580	if !uc.isChannel(upstreamName) {
1581	dc.SendMessage(&irc.Message{
1582	Prefix: dc.srv.prefix(),
1583	Command: irc.ERR_NOSUCHCHANNEL,
1584	Params: []string{name, "Not a channel name"},
1585	})
1586	continue
1587	}
1588
1589	params := []string{upstreamName}
1590	if key != "" {
1591	params = append(params, key)
1592	}
1593	uc.SendMessageLabeled(dc.id, &irc.Message{
1594	Command: "JOIN",
1595	Params: params,
1596	})
1597
1598	ch := uc.network.channels.Value(upstreamName)
1599	if ch != nil {
1600	// Don't clear the channel key if there's one set
1601	// TODO: add a way to unset the channel key
1602	if key != "" {
1603	ch.Key = key
1604	}
1605	uc.network.attach(ch)
1606	} else {
1607	ch = &Channel{
1608	Name: upstreamName,
1609	Key: key,
1610	}
1611	uc.network.channels.SetValue(upstreamName, ch)
1612	}
1613	if err := dc.srv.db.StoreChannel(ctx, uc.network.ID, ch); err != nil {
1614	dc.logger.Printf("failed to create or update channel %q: %v", upstreamName, err)
1615	}
1616	}
1617	case "PART":
1618	var namesStr string
1619	if err := parseMessageParams(msg, &namesStr); err != nil {
1620	return err
1621	}
1622
1623	var reason string
1624	if len(msg.Params) > 1 {
1625	reason = msg.Params[1]
1626	}
1627
1628	for _, name := range strings.Split(namesStr, ",") {
1629	uc, upstreamName, err := dc.unmarshalEntity(name)
1630	if err != nil {
1631	return err
1632	}
1633
1634	if strings.EqualFold(reason, "detach") {
1635	ch := uc.network.channels.Value(upstreamName)
1636	if ch != nil {
1637	uc.network.detach(ch)
1638	} else {
1639	ch = &Channel{
1640	Name: name,
1641	Detached: true,
1642	}
1643	uc.network.channels.SetValue(upstreamName, ch)
1644	}
1645	if err := dc.srv.db.StoreChannel(ctx, uc.network.ID, ch); err != nil {
1646	dc.logger.Printf("failed to create or update channel %q: %v", upstreamName, err)
1647	}
1648	} else {
1649	params := []string{upstreamName}
1650	if reason != "" {
1651	params = append(params, reason)
1652	}
1653	uc.SendMessageLabeled(dc.id, &irc.Message{
1654	Command: "PART",
1655	Params: params,
1656	})
1657
1658	if err := uc.network.deleteChannel(ctx, upstreamName); err != nil {
1659	dc.logger.Printf("failed to delete channel %q: %v", upstreamName, err)
1660	}
1661	}
1662	}
1663	case "KICK":
1664	var channelStr, userStr string
1665	if err := parseMessageParams(msg, &channelStr, &userStr); err != nil {
1666	return err
1667	}
1668
1669	channels := strings.Split(channelStr, ",")
1670	users := strings.Split(userStr, ",")
1671
1672	var reason string
1673	if len(msg.Params) > 2 {
1674	reason = msg.Params[2]
1675	}
1676
1677	if len(channels) != 1 && len(channels) != len(users) {
1678	return ircError{&irc.Message{
1679	Command: irc.ERR_BADCHANMASK,
1680	Params: []string{dc.nick, channelStr, "Bad channel mask"},
1681	}}
1682	}
1683
1684	for i, user := range users {
1685	var channel string
1686	if len(channels) == 1 {
1687	channel = channels[0]
1688	} else {
1689	channel = channels[i]
1690	}
1691
1692	ucChannel, upstreamChannel, err := dc.unmarshalEntity(channel)
1693	if err != nil {
1694	return err
1695	}
1696
1697	ucUser, upstreamUser, err := dc.unmarshalEntity(user)
1698	if err != nil {
1699	return err
1700	}
1701
1702	if ucChannel != ucUser {
1703	return ircError{&irc.Message{
1704	Command: irc.ERR_USERNOTINCHANNEL,
1705	Params: []string{dc.nick, user, channel, "They are on another network"},
1706	}}
1707	}
1708	uc := ucChannel
1709
1710	params := []string{upstreamChannel, upstreamUser}
1711	if reason != "" {
1712	params = append(params, reason)
1713	}
1714	uc.SendMessageLabeled(dc.id, &irc.Message{
1715	Command: "KICK",
1716	Params: params,
1717	})
1718	}
1719	case "MODE":
1720	var name string
1721	if err := parseMessageParams(msg, &name); err != nil {
1722	return err
1723	}
1724
1725	var modeStr string
1726	if len(msg.Params) > 1 {
1727	modeStr = msg.Params[1]
1728	}
1729
1730	if casemapASCII(name) == dc.nickCM {
1731	if modeStr != "" {
1732	if uc := dc.upstream(); uc != nil {
1733	uc.SendMessageLabeled(dc.id, &irc.Message{
1734	Command: "MODE",
1735	Params: []string{uc.nick, modeStr},
1736	})
1737	} else {
1738	dc.SendMessage(&irc.Message{
1739	Prefix: dc.srv.prefix(),
1740	Command: irc.ERR_UMODEUNKNOWNFLAG,
1741	Params: []string{dc.nick, "Cannot change user mode in multi-upstream mode"},
1742	})
1743	}
1744	} else {
1745	var userMode string
1746	if uc := dc.upstream(); uc != nil {
1747	userMode = string(uc.modes)
1748	}
1749
1750	dc.SendMessage(&irc.Message{
1751	Prefix: dc.srv.prefix(),
1752	Command: irc.RPL_UMODEIS,
1753	Params: []string{dc.nick, "+" + userMode},
1754	})
1755	}
1756	return nil
1757	}
1758
1759	uc, upstreamName, err := dc.unmarshalEntity(name)
1760	if err != nil {
1761	return err
1762	}
1763
1764	if !uc.isChannel(upstreamName) {
1765	return ircError{&irc.Message{
1766	Command: irc.ERR_USERSDONTMATCH,
1767	Params: []string{dc.nick, "Cannot change mode for other users"},
1768	}}
1769	}
1770
1771	if modeStr != "" {
1772	params := []string{upstreamName, modeStr}
1773	params = append(params, msg.Params[2:]...)
1774	uc.SendMessageLabeled(dc.id, &irc.Message{
1775	Command: "MODE",
1776	Params: params,
1777	})
1778	} else {
1779	ch := uc.channels.Value(upstreamName)
1780	if ch == nil {
1781	return ircError{&irc.Message{
1782	Command: irc.ERR_NOSUCHCHANNEL,
1783	Params: []string{dc.nick, name, "No such channel"},
1784	}}
1785	}
1786
1787	if ch.modes == nil {
1788	// we haven't received the initial RPL_CHANNELMODEIS yet
1789	// ignore the request, we will broadcast the modes later when we receive RPL_CHANNELMODEIS
1790	return nil
1791	}
1792
1793	modeStr, modeParams := ch.modes.Format()
1794	params := []string{dc.nick, name, modeStr}
1795	params = append(params, modeParams...)
1796
1797	dc.SendMessage(&irc.Message{
1798	Prefix: dc.srv.prefix(),
1799	Command: irc.RPL_CHANNELMODEIS,
1800	Params: params,
1801	})
1802	if ch.creationTime != "" {
1803	dc.SendMessage(&irc.Message{
1804	Prefix: dc.srv.prefix(),
1805	Command: rpl_creationtime,
1806	Params: []string{dc.nick, name, ch.creationTime},
1807	})
1808	}
1809	}
1810	case "TOPIC":
1811	var channel string
1812	if err := parseMessageParams(msg, &channel); err != nil {
1813	return err
1814	}
1815
1816	uc, upstreamName, err := dc.unmarshalEntity(channel)
1817	if err != nil {
1818	return err
1819	}
1820
1821	if len(msg.Params) > 1 { // setting topic
1822	topic := msg.Params[1]
1823	uc.SendMessageLabeled(dc.id, &irc.Message{
1824	Command: "TOPIC",
1825	Params: []string{upstreamName, topic},
1826	})
1827	} else { // getting topic
1828	ch := uc.channels.Value(upstreamName)
1829	if ch == nil {
1830	return ircError{&irc.Message{
1831	Command: irc.ERR_NOSUCHCHANNEL,
1832	Params: []string{dc.nick, upstreamName, "No such channel"},
1833	}}
1834	}
1835	sendTopic(dc, ch)
1836	}
1837	case "LIST":
1838	// TODO: support ELIST when supported by all upstreams
1839
1840	pl := pendingLIST{
1841	downstreamID: dc.id,
1842	pendingCommands: make(map[int64]*irc.Message),
1843	}
1844	var upstream *upstreamConn
1845	var upstreamChannels map[int64][]string
1846	if len(msg.Params) > 0 {
1847	uc, upstreamMask, err := dc.unmarshalEntity(msg.Params[0])
1848	if err == nil && upstreamMask == "" { // LIST /network: send LIST only to one network
1849	upstream = uc
1850	} else {
1851	upstreamChannels = make(map[int64][]string)
1852	channels := strings.Split(msg.Params[0], ",")
1853	for _, channel := range channels {
1854	uc, upstreamChannel, err := dc.unmarshalEntity(channel)
1855	if err != nil {
1856	return err
1857	}
1858	upstreamChannels[uc.network.ID] = append(upstreamChannels[uc.network.ID], upstreamChannel)
1859	}
1860	}
1861	}
1862
1863	dc.user.pendingLISTs = append(dc.user.pendingLISTs, pl)
1864	dc.forEachUpstream(func(uc *upstreamConn) {
1865	if upstream != nil && upstream != uc {
1866	return
1867	}
1868	var params []string
1869	if upstreamChannels != nil {
1870	if channels, ok := upstreamChannels[uc.network.ID]; ok {
1871	params = []string{strings.Join(channels, ",")}
1872	} else {
1873	return
1874	}
1875	}
1876	pl.pendingCommands[uc.network.ID] = &irc.Message{
1877	Command: "LIST",
1878	Params: params,
1879	}
1880	uc.trySendLIST(dc.id)
1881	})
1882	case "NAMES":
1883	if len(msg.Params) == 0 {
1884	dc.SendMessage(&irc.Message{
1885	Prefix: dc.srv.prefix(),
1886	Command: irc.RPL_ENDOFNAMES,
1887	Params: []string{dc.nick, "*", "End of /NAMES list"},
1888	})
1889	return nil
1890	}
1891
1892	channels := strings.Split(msg.Params[0], ",")
1893	for _, channel := range channels {
1894	uc, upstreamName, err := dc.unmarshalEntity(channel)
1895	if err != nil {
1896	return err
1897	}
1898
1899	ch := uc.channels.Value(upstreamName)
1900	if ch != nil {
1901	sendNames(dc, ch)
1902	} else {
1903	// NAMES on a channel we have not joined, ask upstream
1904	uc.SendMessageLabeled(dc.id, &irc.Message{
1905	Command: "NAMES",
1906	Params: []string{upstreamName},
1907	})
1908	}
1909	}
1910	// For WHOX docs, see:
1911	// - http://faerion.sourceforge.net/doc/irc/whox.var
1912	// - https://github.com/quakenet/snircd/blob/master/doc/readme.who
1913	// Note, many features aren't widely implemented, such as flags and mask2
1914	case "WHO":
1915	if len(msg.Params) == 0 {
1916	// TODO: support WHO without parameters
1917	dc.SendMessage(&irc.Message{
1918	Prefix: dc.srv.prefix(),
1919	Command: irc.RPL_ENDOFWHO,
1920	Params: []string{dc.nick, "*", "End of /WHO list"},
1921	})
1922	return nil
1923	}
1924
1925	// Clients will use the first mask to match RPL_ENDOFWHO
1926	endOfWhoToken := msg.Params[0]
1927
1928	// TODO: add support for WHOX mask2
1929	mask := msg.Params[0]
1930	var options string
1931	if len(msg.Params) > 1 {
1932	options = msg.Params[1]
1933	}
1934
1935	optionsParts := strings.SplitN(options, "%", 2)
1936	// TODO: add support for WHOX flags in optionsParts[0]
1937	var fields, whoxToken string
1938	if len(optionsParts) == 2 {
1939	optionsParts := strings.SplitN(optionsParts[1], ",", 2)
1940	fields = strings.ToLower(optionsParts[0])
1941	if len(optionsParts) == 2 && strings.Contains(fields, "t") {
1942	whoxToken = optionsParts[1]
1943	}
1944	}
1945
1946	// TODO: support mixed bouncer/upstream WHO queries
1947	maskCM := casemapASCII(mask)
1948	if dc.network == nil && maskCM == dc.nickCM {
1949	// TODO: support AWAY (H/G) in self WHO reply
1950	flags := "H"
1951	if dc.user.Admin {
1952	flags += "*"
1953	}
1954	info := whoxInfo{
1955	Token: whoxToken,
1956	Username: dc.user.Username,
1957	Hostname: dc.hostname,
1958	Server: dc.srv.Hostname,
1959	Nickname: dc.nick,
1960	Flags: flags,
1961	Account: dc.user.Username,
1962	Realname: dc.realname,
1963	}
1964	dc.SendMessage(generateWHOXReply(dc.srv.prefix(), dc.nick, fields, &info))
1965	dc.SendMessage(&irc.Message{
1966	Prefix: dc.srv.prefix(),
1967	Command: irc.RPL_ENDOFWHO,
1968	Params: []string{dc.nick, endOfWhoToken, "End of /WHO list"},
1969	})
1970	return nil
1971	}
1972	if maskCM == serviceNickCM {
1973	info := whoxInfo{
1974	Token: whoxToken,
1975	Username: servicePrefix.User,
1976	Hostname: servicePrefix.Host,
1977	Server: dc.srv.Hostname,
1978	Nickname: serviceNick,
1979	Flags: "H*",
1980	Account: serviceNick,
1981	Realname: serviceRealname,
1982	}
1983	dc.SendMessage(generateWHOXReply(dc.srv.prefix(), dc.nick, fields, &info))
1984	dc.SendMessage(&irc.Message{
1985	Prefix: dc.srv.prefix(),
1986	Command: irc.RPL_ENDOFWHO,
1987	Params: []string{dc.nick, endOfWhoToken, "End of /WHO list"},
1988	})
1989	return nil
1990	}
1991
1992	// TODO: properly support WHO masks
1993	uc, upstreamMask, err := dc.unmarshalEntity(mask)
1994	if err != nil {
1995	return err
1996	}
1997
1998	params := []string{upstreamMask}
1999	if options != "" {
2000	params = append(params, options)
2001	}
2002
2003	uc.SendMessageLabeled(dc.id, &irc.Message{
2004	Command: "WHO",
2005	Params: params,
2006	})
2007	case "WHOIS":
2008	if len(msg.Params) == 0 {
2009	return ircError{&irc.Message{
2010	Command: irc.ERR_NONICKNAMEGIVEN,
2011	Params: []string{dc.nick, "No nickname given"},
2012	}}
2013	}
2014
2015	var target, mask string
2016	if len(msg.Params) == 1 {
2017	target = ""
2018	mask = msg.Params[0]
2019	} else {
2020	target = msg.Params[0]
2021	mask = msg.Params[1]
2022	}
2023	// TODO: support multiple WHOIS users
2024	if i := strings.IndexByte(mask, ','); i >= 0 {
2025	mask = mask[:i]
2026	}
2027
2028	if dc.network == nil && casemapASCII(mask) == dc.nickCM {
2029	dc.SendMessage(&irc.Message{
2030	Prefix: dc.srv.prefix(),
2031	Command: irc.RPL_WHOISUSER,
2032	Params: []string{dc.nick, dc.nick, dc.user.Username, dc.hostname, "*", dc.realname},
2033	})
2034	dc.SendMessage(&irc.Message{
2035	Prefix: dc.srv.prefix(),
2036	Command: irc.RPL_WHOISSERVER,
2037	Params: []string{dc.nick, dc.nick, dc.srv.Hostname, "soju"},
2038	})
2039	if dc.user.Admin {
2040	dc.SendMessage(&irc.Message{
2041	Prefix: dc.srv.prefix(),
2042	Command: irc.RPL_WHOISOPERATOR,
2043	Params: []string{dc.nick, dc.nick, "is a bouncer administrator"},
2044	})
2045	}
2046	dc.SendMessage(&irc.Message{
2047	Prefix: dc.srv.prefix(),
2048	Command: rpl_whoisaccount,
2049	Params: []string{dc.nick, dc.nick, dc.user.Username, "is logged in as"},
2050	})
2051	dc.SendMessage(&irc.Message{
2052	Prefix: dc.srv.prefix(),
2053	Command: irc.RPL_ENDOFWHOIS,
2054	Params: []string{dc.nick, dc.nick, "End of /WHOIS list"},
2055	})
2056	return nil
2057	}
2058	if casemapASCII(mask) == serviceNickCM {
2059	dc.SendMessage(&irc.Message{
2060	Prefix: dc.srv.prefix(),
2061	Command: irc.RPL_WHOISUSER,
2062	Params: []string{dc.nick, serviceNick, servicePrefix.User, servicePrefix.Host, "*", serviceRealname},
2063	})
2064	dc.SendMessage(&irc.Message{
2065	Prefix: dc.srv.prefix(),
2066	Command: irc.RPL_WHOISSERVER,
2067	Params: []string{dc.nick, serviceNick, dc.srv.Hostname, "soju"},
2068	})
2069	dc.SendMessage(&irc.Message{
2070	Prefix: dc.srv.prefix(),
2071	Command: irc.RPL_WHOISOPERATOR,
2072	Params: []string{dc.nick, serviceNick, "is the bouncer service"},
2073	})
2074	dc.SendMessage(&irc.Message{
2075	Prefix: dc.srv.prefix(),
2076	Command: rpl_whoisaccount,
2077	Params: []string{dc.nick, serviceNick, serviceNick, "is logged in as"},
2078	})
2079	dc.SendMessage(&irc.Message{
2080	Prefix: dc.srv.prefix(),
2081	Command: irc.RPL_ENDOFWHOIS,
2082	Params: []string{dc.nick, serviceNick, "End of /WHOIS list"},
2083	})
2084	return nil
2085	}
2086
2087	// TODO: support WHOIS masks
2088	uc, upstreamNick, err := dc.unmarshalEntity(mask)
2089	if err != nil {
2090	return err
2091	}
2092
2093	var params []string
2094	if target != "" {
2095	if target == mask { // WHOIS nick nick
2096	params = []string{upstreamNick, upstreamNick}
2097	} else {
2098	params = []string{target, upstreamNick}
2099	}
2100	} else {
2101	params = []string{upstreamNick}
2102	}
2103
2104	uc.SendMessageLabeled(dc.id, &irc.Message{
2105	Command: "WHOIS",
2106	Params: params,
2107	})
2108	case "PRIVMSG", "NOTICE":
2109	var targetsStr, text string
2110	if err := parseMessageParams(msg, &targetsStr, &text); err != nil {
2111	return err
2112	}
2113	tags := copyClientTags(msg.Tags)
2114
2115	for _, name := range strings.Split(targetsStr, ",") {
2116	if name == "$"+dc.srv.Hostname \|\| (name == "$*" && dc.network == nil) {
2117	// "$" means a server mask follows. If it's the bouncer's
2118	// hostname, broadcast the message to all bouncer users.
2119	if !dc.user.Admin {
2120	return ircError{&irc.Message{
2121	Prefix: dc.srv.prefix(),
2122	Command: irc.ERR_BADMASK,
2123	Params: []string{dc.nick, name, "Permission denied to broadcast message to all bouncer users"},
2124	}}
2125	}
2126
2127	dc.logger.Printf("broadcasting bouncer-wide %v: %v", msg.Command, text)
2128
2129	broadcastTags := tags.Copy()
2130	broadcastTags["time"] = irc.TagValue(time.Now().UTC().Format(serverTimeLayout))
2131	broadcastMsg := &irc.Message{
2132	Tags: broadcastTags,
2133	Prefix: servicePrefix,
2134	Command: msg.Command,
2135	Params: []string{name, text},
2136	}
2137	dc.srv.forEachUser(func(u *user) {
2138	u.events <- eventBroadcast{broadcastMsg}
2139	})
2140	continue
2141	}
2142
2143	if dc.network == nil && casemapASCII(name) == dc.nickCM {
2144	dc.SendMessage(&irc.Message{
2145	Tags: msg.Tags.Copy(),
2146	Prefix: dc.prefix(),
2147	Command: msg.Command,
2148	Params: []string{name, text},
2149	})
2150	continue
2151	}
2152
2153	if msg.Command == "PRIVMSG" && casemapASCII(name) == serviceNickCM {
2154	if dc.caps["echo-message"] {
2155	echoTags := tags.Copy()
2156	echoTags["time"] = irc.TagValue(time.Now().UTC().Format(serverTimeLayout))
2157	dc.SendMessage(&irc.Message{
2158	Tags: echoTags,
2159	Prefix: dc.prefix(),
2160	Command: msg.Command,
2161	Params: []string{name, text},
2162	})
2163	}
2164	handleServicePRIVMSG(ctx, dc, text)
2165	continue
2166	}
2167
2168	uc, upstreamName, err := dc.unmarshalEntity(name)
2169	if err != nil {
2170	return err
2171	}
2172
2173	if msg.Command == "PRIVMSG" && uc.network.casemap(upstreamName) == "nickserv" {
2174	dc.handleNickServPRIVMSG(ctx, uc, text)
2175	}
2176
2177	unmarshaledText := text
2178	if uc.isChannel(upstreamName) {
2179	unmarshaledText = dc.unmarshalText(uc, text)
2180	}
2181	uc.SendMessageLabeled(dc.id, &irc.Message{
2182	Tags: tags,
2183	Command: msg.Command,
2184	Params: []string{upstreamName, unmarshaledText},
2185	})
2186
2187	echoTags := tags.Copy()
2188	echoTags["time"] = irc.TagValue(time.Now().UTC().Format(serverTimeLayout))
2189	if uc.account != "" {
2190	echoTags["account"] = irc.TagValue(uc.account)
2191	}
2192	echoMsg := &irc.Message{
2193	Tags: echoTags,
2194	Prefix: &irc.Prefix{
2195	Name: uc.nick,
2196	User: uc.username,
2197	},
2198	Command: msg.Command,
2199	Params: []string{upstreamName, text},
2200	}
2201	uc.produce(upstreamName, echoMsg, dc)
2202
2203	uc.updateChannelAutoDetach(upstreamName)
2204	}
2205	case "TAGMSG":
2206	var targetsStr string
2207	if err := parseMessageParams(msg, &targetsStr); err != nil {
2208	return err
2209	}
2210	tags := copyClientTags(msg.Tags)
2211
2212	for _, name := range strings.Split(targetsStr, ",") {
2213	if dc.network == nil && casemapASCII(name) == dc.nickCM {
2214	dc.SendMessage(&irc.Message{
2215	Tags: msg.Tags.Copy(),
2216	Prefix: dc.prefix(),
2217	Command: "TAGMSG",
2218	Params: []string{name},
2219	})
2220	continue
2221	}
2222
2223	if casemapASCII(name) == serviceNickCM {
2224	continue
2225	}
2226
2227	uc, upstreamName, err := dc.unmarshalEntity(name)
2228	if err != nil {
2229	return err
2230	}
2231	if _, ok := uc.caps["message-tags"]; !ok {
2232	continue
2233	}
2234
2235	uc.SendMessageLabeled(dc.id, &irc.Message{
2236	Tags: tags,
2237	Command: "TAGMSG",
2238	Params: []string{upstreamName},
2239	})
2240
2241	uc.updateChannelAutoDetach(upstreamName)
2242	}
2243	case "INVITE":
2244	var user, channel string
2245	if err := parseMessageParams(msg, &user, &channel); err != nil {
2246	return err
2247	}
2248
2249	ucChannel, upstreamChannel, err := dc.unmarshalEntity(channel)
2250	if err != nil {
2251	return err
2252	}
2253
2254	ucUser, upstreamUser, err := dc.unmarshalEntity(user)
2255	if err != nil {
2256	return err
2257	}
2258
2259	if ucChannel != ucUser {
2260	return ircError{&irc.Message{
2261	Command: irc.ERR_USERNOTINCHANNEL,
2262	Params: []string{dc.nick, user, channel, "They are on another network"},
2263	}}
2264	}
2265	uc := ucChannel
2266
2267	uc.SendMessageLabeled(dc.id, &irc.Message{
2268	Command: "INVITE",
2269	Params: []string{upstreamUser, upstreamChannel},
2270	})
2271	case "CHATHISTORY":
2272	var subcommand string
2273	if err := parseMessageParams(msg, &subcommand); err != nil {
2274	return err
2275	}
2276	var target, limitStr string
2277	var boundsStr [2]string
2278	switch subcommand {
2279	case "AFTER", "BEFORE":
2280	if err := parseMessageParams(msg, nil, &target, &boundsStr[0], &limitStr); err != nil {
2281	return err
2282	}
2283	case "BETWEEN":
2284	if err := parseMessageParams(msg, nil, &target, &boundsStr[0], &boundsStr[1], &limitStr); err != nil {
2285	return err
2286	}
2287	case "TARGETS":
2288	if err := parseMessageParams(msg, nil, &boundsStr[0], &boundsStr[1], &limitStr); err != nil {
2289	return err
2290	}
2291	default:
2292	// TODO: support LATEST, AROUND
2293	return ircError{&irc.Message{
2294	Command: "FAIL",
2295	Params: []string{"CHATHISTORY", "INVALID_PARAMS", subcommand, "Unknown command"},
2296	}}
2297	}
2298
2299	// We don't save history for our service
2300	if casemapASCII(target) == serviceNickCM {
2301	dc.SendBatch("chathistory", []string{target}, nil, func(batchRef irc.TagValue) {})
2302	return nil
2303	}
2304
2305	store, ok := dc.user.msgStore.(chatHistoryMessageStore)
2306	if !ok {
2307	return ircError{&irc.Message{
2308	Command: irc.ERR_UNKNOWNCOMMAND,
2309	Params: []string{dc.nick, "CHATHISTORY", "Unknown command"},
2310	}}
2311	}
2312
2313	network, entity, err := dc.unmarshalEntityNetwork(target)
2314	if err != nil {
2315	return err
2316	}
2317	entity = network.casemap(entity)
2318
2319	// TODO: support msgid criteria
2320	var bounds [2]time.Time
2321	bounds[0] = parseChatHistoryBound(boundsStr[0])
2322	if bounds[0].IsZero() {
2323	return ircError{&irc.Message{
2324	Command: "FAIL",
2325	Params: []string{"CHATHISTORY", "INVALID_PARAMS", subcommand, boundsStr[0], "Invalid first bound"},
2326	}}
2327	}
2328
2329	if boundsStr[1] != "" {
2330	bounds[1] = parseChatHistoryBound(boundsStr[1])
2331	if bounds[1].IsZero() {
2332	return ircError{&irc.Message{
2333	Command: "FAIL",
2334	Params: []string{"CHATHISTORY", "INVALID_PARAMS", subcommand, boundsStr[1], "Invalid second bound"},
2335	}}
2336	}
2337	}
2338
2339	limit, err := strconv.Atoi(limitStr)
2340	if err != nil \|\| limit < 0 \|\| limit > chatHistoryLimit {
2341	return ircError{&irc.Message{
2342	Command: "FAIL",
2343	Params: []string{"CHATHISTORY", "INVALID_PARAMS", subcommand, limitStr, "Invalid limit"},
2344	}}
2345	}
2346
2347	eventPlayback := dc.caps["draft/event-playback"]
2348
2349	var history []*irc.Message
2350	switch subcommand {
2351	case "BEFORE":
2352	history, err = store.LoadBeforeTime(ctx, &network.Network, entity, bounds[0], time.Time{}, limit, eventPlayback)
2353	case "AFTER":
2354	history, err = store.LoadAfterTime(ctx, &network.Network, entity, bounds[0], time.Now(), limit, eventPlayback)
2355	case "BETWEEN":
2356	if bounds[0].Before(bounds[1]) {
2357	history, err = store.LoadAfterTime(ctx, &network.Network, entity, bounds[0], bounds[1], limit, eventPlayback)
2358	} else {
2359	history, err = store.LoadBeforeTime(ctx, &network.Network, entity, bounds[0], bounds[1], limit, eventPlayback)
2360	}
2361	case "TARGETS":
2362	// TODO: support TARGETS in multi-upstream mode
2363	targets, err := store.ListTargets(ctx, &network.Network, bounds[0], bounds[1], limit, eventPlayback)
2364	if err != nil {
2365	dc.logger.Printf("failed fetching targets for chathistory: %v", err)
2366	return ircError{&irc.Message{
2367	Command: "FAIL",
2368	Params: []string{"CHATHISTORY", "MESSAGE_ERROR", subcommand, "Failed to retrieve targets"},
2369	}}
2370	}
2371
2372	dc.SendBatch("draft/chathistory-targets", nil, nil, func(batchRef irc.TagValue) {
2373	for _, target := range targets {
2374	if ch := network.channels.Value(target.Name); ch != nil && ch.Detached {
2375	continue
2376	}
2377
2378	dc.SendMessage(&irc.Message{
2379	Tags: irc.Tags{"batch": batchRef},
2380	Prefix: dc.srv.prefix(),
2381	Command: "CHATHISTORY",
2382	Params: []string{"TARGETS", target.Name, target.LatestMessage.UTC().Format(serverTimeLayout)},
2383	})
2384	}
2385	})
2386
2387	return nil
2388	}
2389	if err != nil {
2390	dc.logger.Printf("failed fetching %q messages for chathistory: %v", target, err)
2391	return newChatHistoryError(subcommand, target)
2392	}
2393
2394	dc.SendBatch("chathistory", []string{target}, nil, func(batchRef irc.TagValue) {
2395	for _, msg := range history {
2396	msg.Tags["batch"] = batchRef
2397	dc.SendMessage(dc.marshalMessage(msg, network))
2398	}
2399	})
2400	case "BOUNCER":
2401	var subcommand string
2402	if err := parseMessageParams(msg, &subcommand); err != nil {
2403	return err
2404	}
2405
2406	switch strings.ToUpper(subcommand) {
2407	case "BIND":
2408	return ircError{&irc.Message{
2409	Command: "FAIL",
2410	Params: []string{"BOUNCER", "REGISTRATION_IS_COMPLETED", "BIND", "Cannot bind to a network after registration"},
2411	}}
2412	case "LISTNETWORKS":
2413	dc.SendBatch("soju.im/bouncer-networks", nil, nil, func(batchRef irc.TagValue) {
2414	dc.user.forEachNetwork(func(network *network) {
2415	idStr := fmt.Sprintf("%v", network.ID)
2416	attrs := getNetworkAttrs(network)
2417	dc.SendMessage(&irc.Message{
2418	Tags: irc.Tags{"batch": batchRef},
2419	Prefix: dc.srv.prefix(),
2420	Command: "BOUNCER",
2421	Params: []string{"NETWORK", idStr, attrs.String()},
2422	})
2423	})
2424	})
2425	case "ADDNETWORK":
2426	var attrsStr string
2427	if err := parseMessageParams(msg, nil, &attrsStr); err != nil {
2428	return err
2429	}
2430	attrs := irc.ParseTags(attrsStr)
2431
2432	record := &Network{Nick: dc.nick, Enabled: true}
2433	if err := updateNetworkAttrs(record, attrs, subcommand); err != nil {
2434	return err
2435	}
2436
2437	if record.Nick == dc.user.Username {
2438	record.Nick = ""
2439	}
2440	if record.Realname == dc.user.Realname {
2441	record.Realname = ""
2442	}
2443
2444	network, err := dc.user.createNetwork(ctx, record)
2445	if err != nil {
2446	return ircError{&irc.Message{
2447	Command: "FAIL",
2448	Params: []string{"BOUNCER", "UNKNOWN_ERROR", subcommand, fmt.Sprintf("Failed to create network: %v", err)},
2449	}}
2450	}
2451
2452	dc.SendMessage(&irc.Message{
2453	Prefix: dc.srv.prefix(),
2454	Command: "BOUNCER",
2455	Params: []string{"ADDNETWORK", fmt.Sprintf("%v", network.ID)},
2456	})
2457	case "CHANGENETWORK":
2458	var idStr, attrsStr string
2459	if err := parseMessageParams(msg, nil, &idStr, &attrsStr); err != nil {
2460	return err
2461	}
2462	id, err := parseBouncerNetID(subcommand, idStr)
2463	if err != nil {
2464	return err
2465	}
2466	attrs := irc.ParseTags(attrsStr)
2467
2468	net := dc.user.getNetworkByID(id)
2469	if net == nil {
2470	return ircError{&irc.Message{
2471	Command: "FAIL",
2472	Params: []string{"BOUNCER", "INVALID_NETID", subcommand, idStr, "Invalid network ID"},
2473	}}
2474	}
2475
2476	record := net.Network // copy network record because we'll mutate it
2477	if err := updateNetworkAttrs(&record, attrs, subcommand); err != nil {
2478	return err
2479	}
2480
2481	if record.Nick == dc.user.Username {
2482	record.Nick = ""
2483	}
2484	if record.Realname == dc.user.Realname {
2485	record.Realname = ""
2486	}
2487
2488	_, err = dc.user.updateNetwork(ctx, &record)
2489	if err != nil {
2490	return ircError{&irc.Message{
2491	Command: "FAIL",
2492	Params: []string{"BOUNCER", "UNKNOWN_ERROR", subcommand, fmt.Sprintf("Failed to update network: %v", err)},
2493	}}
2494	}
2495
2496	dc.SendMessage(&irc.Message{
2497	Prefix: dc.srv.prefix(),
2498	Command: "BOUNCER",
2499	Params: []string{"CHANGENETWORK", idStr},
2500	})
2501	case "DELNETWORK":
2502	var idStr string
2503	if err := parseMessageParams(msg, nil, &idStr); err != nil {
2504	return err
2505	}
2506	id, err := parseBouncerNetID(subcommand, idStr)
2507	if err != nil {
2508	return err
2509	}
2510
2511	net := dc.user.getNetworkByID(id)
2512	if net == nil {
2513	return ircError{&irc.Message{
2514	Command: "FAIL",
2515	Params: []string{"BOUNCER", "INVALID_NETID", subcommand, idStr, "Invalid network ID"},
2516	}}
2517	}
2518
2519	if err := dc.user.deleteNetwork(ctx, net.ID); err != nil {
2520	return err
2521	}
2522
2523	dc.SendMessage(&irc.Message{
2524	Prefix: dc.srv.prefix(),
2525	Command: "BOUNCER",
2526	Params: []string{"DELNETWORK", idStr},
2527	})
2528	default:
2529	return ircError{&irc.Message{
2530	Command: "FAIL",
2531	Params: []string{"BOUNCER", "UNKNOWN_COMMAND", subcommand, "Unknown subcommand"},
2532	}}
2533	}
2534	default:
2535	dc.logger.Printf("unhandled message: %v", msg)
2536
2537	// Only forward unknown commands in single-upstream mode
2538	uc := dc.upstream()
2539	if uc == nil {
2540	return newUnknownCommandError(msg.Command)
2541	}
2542
2543	uc.SendMessageLabeled(dc.id, msg)
2544	}
2545	return nil
2546	}
2547
2548	func (dc downstreamConn) handleNickServPRIVMSG(ctx context.Context, uc upstreamConn, text string) {
2549	username, password, ok := parseNickServCredentials(text, uc.nick)
2550	if !ok {
2551	return
2552	}
2553
2554	// User may have e.g. EXTERNAL mechanism configured. We do not want to
2555	// automatically erase the key pair or any other credentials.
2556	if uc.network.SASL.Mechanism != "" && uc.network.SASL.Mechanism != "PLAIN" {
2557	return
2558	}
2559
2560	dc.logger.Printf("auto-saving NickServ credentials with username %q", username)
2561	n := uc.network
2562	n.SASL.Mechanism = "PLAIN"
2563	n.SASL.Plain.Username = username
2564	n.SASL.Plain.Password = password
2565	if err := dc.srv.db.StoreNetwork(ctx, dc.user.ID, &n.Network); err != nil {
2566	dc.logger.Printf("failed to save NickServ credentials: %v", err)
2567	}
2568	}
2569
2570	func parseNickServCredentials(text, nick string) (username, password string, ok bool) {
2571	fields := strings.Fields(text)
2572	if len(fields) < 2 {
2573	return "", "", false
2574	}
2575	cmd := strings.ToUpper(fields[0])
2576	params := fields[1:]
2577	switch cmd {
2578	case "REGISTER":
2579	username = nick
2580	password = params[0]
2581	case "IDENTIFY":
2582	if len(params) == 1 {
2583	username = nick
2584	password = params[0]
2585	} else {
2586	username = params[0]
2587	password = params[1]
2588	}
2589	case "SET":
2590	if len(params) == 2 && strings.EqualFold(params[0], "PASSWORD") {
2591	username = nick
2592	password = params[1]
2593	}
2594	default:
2595	return "", "", false
2596	}
2597	return username, password, true
2598	}

Note: See TracBrowser for help on using the repository browser.

Download in other formats: