|
|
|
/*==LICENSE==*
|
|
|
|
|
|
|
|
CyanWorlds.com Engine - MMOG client, server and tools
|
|
|
|
Copyright (C) 2011 Cyan Worlds, Inc.
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
it under the terms of the GNU General Public License as published by
|
|
|
|
the Free Software Foundation, either version 3 of the License, or
|
|
|
|
(at your option) any later version.
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
GNU General Public License for more details.
|
|
|
|
|
|
|
|
You should have received a copy of the GNU General Public License
|
|
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
|
|
|
Additional permissions under GNU GPL version 3 section 7
|
|
|
|
|
|
|
|
If you modify this Program, or any covered work, by linking or
|
|
|
|
combining it with any of RAD Game Tools Bink SDK, Autodesk 3ds Max SDK,
|
|
|
|
NVIDIA PhysX SDK, Microsoft DirectX SDK, OpenSSL library, Independent
|
|
|
|
JPEG Group JPEG library, Microsoft Windows Media SDK, or Apple QuickTime SDK
|
|
|
|
(or a modified version of those libraries),
|
|
|
|
containing parts covered by the terms of the Bink SDK EULA, 3ds Max EULA,
|
|
|
|
PhysX SDK EULA, DirectX SDK EULA, OpenSSL and SSLeay licenses, IJG
|
|
|
|
JPEG Library README, Windows Media SDK EULA, or QuickTime SDK EULA, the
|
|
|
|
licensors of this Program grant you additional
|
|
|
|
permission to convey the resulting work. Corresponding Source for a
|
|
|
|
non-source form of such a combination shall include the source code for
|
|
|
|
the parts of OpenSSL and IJG JPEG Library used as well as that of the covered
|
|
|
|
work.
|
|
|
|
|
|
|
|
You can contact Cyan Worlds, Inc. by email legal@cyan.com
|
|
|
|
or by snail mail at:
|
|
|
|
Cyan Worlds, Inc.
|
|
|
|
14617 N Newport Hwy
|
|
|
|
Mead, WA 99021
|
|
|
|
|
|
|
|
*==LICENSE==*/
|
|
|
|
#include "plCreatableIndex.h"
|
|
|
|
#include "plNetClientMsgScreener.h"
|
|
|
|
#include "plNetLinkingMgr.h"
|
|
|
|
|
|
|
|
#include "pfMessage/pfKIMsg.h"
|
|
|
|
#include "pnNetCommon/plNetApp.h"
|
|
|
|
#include "pnMessage/plMessage.h"
|
|
|
|
|
|
|
|
#include "plStatusLog/plStatusLog.h"
|
|
|
|
#include "plAvatar/plAvatarMgr.h"
|
|
|
|
#include "plAvatar/plArmatureMod.h"
|
|
|
|
|
|
|
|
///////////////////////////////////////////////////////////////
|
|
|
|
// CLIENT Version
|
|
|
|
///////////////////////////////////////////////////////////////
|
|
|
|
|
|
|
|
plNetClientMsgScreener::plNetClientMsgScreener()
|
|
|
|
{
|
|
|
|
DebugMsg("created");
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// For plLoggable base
|
|
|
|
//
|
|
|
|
void plNetClientMsgScreener::ICreateStatusLog() const
|
|
|
|
{
|
|
|
|
fStatusLog = plStatusLogMgr::GetInstance().CreateStatusLog(40, "NetScreener.log",
|
|
|
|
plStatusLog::kTimestamp | plStatusLog::kFilledBackground | plStatusLog::kAlignToTop);
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// return cur age name
|
|
|
|
//
|
|
|
|
const char* plNetClientMsgScreener::IGetAgeName() const
|
|
|
|
{
|
|
|
|
plNetLinkingMgr *lm = plNetLinkingMgr::GetInstance();
|
|
|
|
return lm && lm->GetAgeLink()->GetAgeInfo() ? lm->GetAgeLink()->GetAgeInfo()->GetAgeFilename() : "?";
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Check if key is local avatar
|
|
|
|
//
|
|
|
|
bool plNetClientMsgScreener::IIsLocalAvatarKey(plKey key, const plNetGameMember* gm) const
|
|
|
|
{
|
|
|
|
return (!key || key==plNetClientApp::GetInstance()->GetLocalPlayerKey());
|
|
|
|
}
|
|
|
|
|
|
|
|
bool plNetClientMsgScreener::IIsLocalArmatureModKey(plKey key, const plNetGameMember* gm) const
|
|
|
|
{
|
|
|
|
plKey playerKey = plNetClientApp::GetInstance()->GetLocalPlayerKey();
|
|
|
|
plArmatureMod* aMod = playerKey ? plAvatarMgr::GetInstance()->FindAvatar(playerKey) : nil;
|
|
|
|
return (!key || key==(aMod ? aMod->GetKey() : nil));
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Check if CCR
|
|
|
|
//
|
|
|
|
bool plNetClientMsgScreener::IIsSenderCCR(const plNetGameMember* gm) const
|
|
|
|
{
|
|
|
|
return plNetClientApp::GetInstance()->AmCCR();
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// return true if msg is allowed/accepted as a net msg
|
|
|
|
//
|
|
|
|
bool plNetClientMsgScreener::AllowOutgoingMessage(const plMessage* msg) const
|
|
|
|
{
|
|
|
|
if (!msg)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
Answer ans=IAllowMessageType(msg->ClassIndex());
|
|
|
|
if (ans==kYes)
|
|
|
|
return true;
|
|
|
|
if (ans==kNo)
|
|
|
|
{
|
|
|
|
WarningMsg("Rejected: (Outgoing) %s [Illegal Message]", msg->ClassName());
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!IValidateMessage(msg))
|
|
|
|
{
|
|
|
|
WarningMsg("Rejected: (Outgoing) %s [Validation Failed]", msg->ClassName());
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Return false for obvious hacked network messages
|
|
|
|
// This is all because we cannot trust Cyan's servers
|
|
|
|
//
|
|
|
|
bool plNetClientMsgScreener::AllowIncomingMessage(const plMessage* msg) const
|
|
|
|
{
|
|
|
|
if (!msg)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
bool result = IScreenIncoming(msg);
|
|
|
|
if (!result)
|
|
|
|
WarningMsg("Rejected: (Incoming) %s", msg->ClassName());
|
|
|
|
|
|
|
|
return result;
|
|
|
|
}
|
|
|
|
|
|
|
|
bool plNetClientMsgScreener::IScreenIncoming(const plMessage* msg) const
|
|
|
|
{
|
|
|
|
// Why would you EVER send a RefMsg accross the network???
|
|
|
|
if (plFactory::DerivesFrom(CLASS_INDEX_SCOPED(plRefMsg), msg->ClassIndex()))
|
|
|
|
return false;
|
|
|
|
|
|
|
|
// Blacklist some obvious hacks here...
|
|
|
|
switch (msg->ClassIndex())
|
|
|
|
{
|
|
|
|
case CLASS_INDEX_SCOPED(plAudioSysMsg):
|
|
|
|
// This message has a flawed read/write
|
|
|
|
return false;
|
|
|
|
case CLASS_INDEX_SCOPED(plConsoleMsg):
|
|
|
|
// Python remote code execution vunerability
|
|
|
|
return false;
|
|
|
|
case CLASS_INDEX_SCOPED(pfKIMsg):
|
|
|
|
{
|
|
|
|
// Only accept Chat Messages!
|
|
|
|
const pfKIMsg* ki = pfKIMsg::ConvertNoRef(msg);
|
|
|
|
if (ki->GetCommand() != pfKIMsg::kHACKChatMsg)
|
|
|
|
return false;
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
default:
|
|
|
|
// Default allow everything else, otherweise we
|
|
|
|
// might break something that we really shouldn't...
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|