2011-01-31 18:50:49 +01:00
|
|
|
%%%----------------------------------------------------------------------
|
|
|
|
%%% File : mod_pres_counter.erl
|
|
|
|
%%% Author : Ahmed Omar
|
|
|
|
%%% Purpose : Presence subscription flood prevention
|
|
|
|
%%% Created : 23 Sep 2010 by Ahmed Omar
|
|
|
|
%%%
|
|
|
|
%%%
|
2017-01-02 21:41:53 +01:00
|
|
|
%%% ejabberd, Copyright (C) 2002-2017 ProcessOne
|
2011-01-31 18:50:49 +01:00
|
|
|
%%%
|
|
|
|
%%% This program is free software; you can redistribute it and/or
|
|
|
|
%%% modify it under the terms of the GNU General Public License as
|
|
|
|
%%% published by the Free Software Foundation; either version 2 of the
|
|
|
|
%%% License, or (at your option) any later version.
|
|
|
|
%%%
|
|
|
|
%%% This program is distributed in the hope that it will be useful,
|
|
|
|
%%% but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
%%% MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
%%% General Public License for more details.
|
|
|
|
%%%
|
2014-02-22 11:27:40 +01:00
|
|
|
%%% You should have received a copy of the GNU General Public License along
|
|
|
|
%%% with this program; if not, write to the Free Software Foundation, Inc.,
|
|
|
|
%%% 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
2011-01-31 18:50:49 +01:00
|
|
|
%%%
|
|
|
|
%%%----------------------------------------------------------------------
|
|
|
|
|
|
|
|
-module(mod_pres_counter).
|
|
|
|
|
|
|
|
-behavior(gen_mod).
|
|
|
|
|
2017-02-22 17:46:47 +01:00
|
|
|
-export([start/2, stop/1, reload/3, check_packet/4,
|
2016-07-07 11:17:38 +02:00
|
|
|
mod_opt_type/1, depends/2]).
|
2011-01-31 18:50:49 +01:00
|
|
|
|
|
|
|
-include("ejabberd.hrl").
|
2013-04-08 11:12:54 +02:00
|
|
|
-include("logger.hrl").
|
2013-03-14 10:33:02 +01:00
|
|
|
|
2016-07-29 12:21:00 +02:00
|
|
|
-include("xmpp.hrl").
|
2011-01-31 18:50:49 +01:00
|
|
|
|
2013-03-14 10:33:02 +01:00
|
|
|
-record(pres_counter,
|
|
|
|
{dir, start, count, logged = false}).
|
2011-01-31 18:50:49 +01:00
|
|
|
|
|
|
|
start(Host, _Opts) ->
|
2013-03-14 10:33:02 +01:00
|
|
|
ejabberd_hooks:add(privacy_check_packet, Host, ?MODULE,
|
|
|
|
check_packet, 25),
|
2011-01-31 18:50:49 +01:00
|
|
|
ok.
|
|
|
|
|
|
|
|
stop(Host) ->
|
|
|
|
ejabberd_hooks:delete(privacy_check_packet, Host,
|
|
|
|
?MODULE, check_packet, 25),
|
|
|
|
ok.
|
|
|
|
|
2017-02-22 17:46:47 +01:00
|
|
|
reload(_Host, _NewOpts, _OldOpts) ->
|
|
|
|
ok.
|
|
|
|
|
2016-07-07 11:17:38 +02:00
|
|
|
depends(_Host, _Opts) ->
|
|
|
|
[].
|
|
|
|
|
2017-01-09 15:02:17 +01:00
|
|
|
-spec check_packet(allow | deny, ejabberd_c2s:state() | jid(),
|
|
|
|
stanza(), in | out) -> allow | deny.
|
|
|
|
check_packet(Acc, #{jid := JID}, Packet, Dir) ->
|
|
|
|
check_packet(Acc, JID, Packet, Dir);
|
|
|
|
check_packet(_, #jid{lserver = LServer},
|
|
|
|
#presence{from = From, to = To, type = Type}, Dir) ->
|
2016-07-29 12:21:00 +02:00
|
|
|
IsSubscription = case Type of
|
|
|
|
subscribe -> true;
|
|
|
|
subscribed -> true;
|
|
|
|
unsubscribe -> true;
|
|
|
|
unsubscribed -> true;
|
|
|
|
_ -> false
|
|
|
|
end,
|
|
|
|
if IsSubscription ->
|
|
|
|
JID = case Dir of
|
|
|
|
in -> To;
|
|
|
|
out -> From
|
|
|
|
end,
|
2017-01-09 15:02:17 +01:00
|
|
|
update(LServer, JID, Dir);
|
2016-07-29 12:21:00 +02:00
|
|
|
true -> allow
|
|
|
|
end;
|
2017-01-09 15:02:17 +01:00
|
|
|
check_packet(Acc, _, _, _) ->
|
|
|
|
Acc.
|
2011-01-31 18:50:49 +01:00
|
|
|
|
|
|
|
update(Server, JID, Dir) ->
|
2017-04-30 18:01:47 +02:00
|
|
|
StormCount = gen_mod:get_module_opt(Server, ?MODULE, count, 5),
|
|
|
|
TimeInterval = gen_mod:get_module_opt(Server, ?MODULE, interval, 60),
|
2015-12-04 15:08:43 +01:00
|
|
|
TimeStamp = p1_time_compat:system_time(seconds),
|
2011-01-31 18:50:49 +01:00
|
|
|
case read(Dir) of
|
2013-03-14 10:33:02 +01:00
|
|
|
undefined ->
|
|
|
|
write(Dir,
|
|
|
|
#pres_counter{dir = Dir, start = TimeStamp, count = 1}),
|
|
|
|
allow;
|
|
|
|
#pres_counter{start = TimeStart, count = Count,
|
|
|
|
logged = Logged} =
|
|
|
|
R ->
|
|
|
|
if TimeStamp - TimeStart > TimeInterval ->
|
|
|
|
write(Dir,
|
|
|
|
R#pres_counter{start = TimeStamp, count = 1}),
|
|
|
|
allow;
|
|
|
|
(Count =:= StormCount) and Logged -> {stop, deny};
|
|
|
|
Count =:= StormCount ->
|
|
|
|
write(Dir, R#pres_counter{logged = true}),
|
|
|
|
case Dir of
|
|
|
|
in ->
|
|
|
|
?WARNING_MSG("User ~s is being flooded, ignoring received "
|
|
|
|
"presence subscriptions",
|
2017-02-26 08:07:12 +01:00
|
|
|
[jid:encode(JID)]);
|
2013-03-14 10:33:02 +01:00
|
|
|
out ->
|
|
|
|
IP = ejabberd_sm:get_user_ip(JID#jid.luser,
|
|
|
|
JID#jid.lserver,
|
|
|
|
JID#jid.lresource),
|
|
|
|
?WARNING_MSG("Flooder detected: ~s, on IP: ~s ignoring "
|
|
|
|
"sent presence subscriptions~n",
|
2017-02-26 08:07:12 +01:00
|
|
|
[jid:encode(JID),
|
2017-04-11 12:13:58 +02:00
|
|
|
misc:ip_to_list(IP)])
|
2013-03-14 10:33:02 +01:00
|
|
|
end,
|
|
|
|
{stop, deny};
|
|
|
|
true ->
|
|
|
|
write(Dir,
|
|
|
|
R#pres_counter{start = TimeStamp, count = Count + 1}),
|
|
|
|
allow
|
|
|
|
end
|
2011-01-31 18:50:49 +01:00
|
|
|
end.
|
|
|
|
|
2013-03-14 10:33:02 +01:00
|
|
|
read(K) -> get({pres_counter, K}).
|
2011-01-31 18:50:49 +01:00
|
|
|
|
2013-03-14 10:33:02 +01:00
|
|
|
write(K, V) -> put({pres_counter, K}, V).
|
2015-06-01 14:38:27 +02:00
|
|
|
|
|
|
|
mod_opt_type(count) ->
|
|
|
|
fun (I) when is_integer(I), I > 0 -> I end;
|
|
|
|
mod_opt_type(interval) ->
|
|
|
|
fun (I) when is_integer(I), I > 0 -> I end;
|
|
|
|
mod_opt_type(_) -> [count, interval].
|