fixes small fail2topic vulnerability

2022-08-09 18:22:02 -04:00
parent 036d85ec2b
commit f7ae896aeb
1 changed files with 14 additions and 0 deletions
--- a/code/controllers/subsystem/fail2topic.dm
+++ b/code/controllers/subsystem/fail2topic.dm
@@ -44,7 +44,19 @@ SUBSYSTEM_DEF(fail2topic)
 /datum/controller/subsystem/fail2topic/Shutdown()
 	DropFirewallRule()

+/datum/controller/subsystem/fail2topic/CanProcCall(procname)
+	. = ..()
+	if(.)
+		switch(procname)
+			if("IsRateLimited")
+				return FALSE
+			if("BanFromFirewall")
+				return FALSE
+
 /datum/controller/subsystem/fail2topic/proc/IsRateLimited(ip)
+	if(IsAdminAdvancedProcCall())
+		return FALSE
+
 	var/last_attempt = rate_limiting[ip]

 	var/static/datum/config_entry/keyed_list/topic_rate_limit_whitelist/cached_whitelist_entry
@@ -82,6 +94,8 @@ SUBSYSTEM_DEF(fail2topic)
 /datum/controller/subsystem/fail2topic/proc/BanFromFirewall(ip)
 	if (!enabled)
 		return
+	if(IsAdminAdvancedProcCall())
+		return

 	active_bans[ip] = REALTIMEOFDAY
 	fail_counts -= ip