ViewVC Help
View File | Revision Log | Show Annotations | View Changeset | Root Listing
root/svn/ircd-hybrid/trunk/src/conf.c
Revision: 5003
Committed: Tue Dec 9 14:09:22 2014 UTC (10 years, 8 months ago) by michael
Content type: text/x-csrc
File size: 51026 byte(s)
Log Message: 
- Style corrections

File Contents

# Content
1 /*
2 * ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
3 *
4 * Copyright (c) 1997-2014 ircd-hybrid development team
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
19 * USA
20 */
21
22 /*! \file conf.c
23 * \brief Configuration file functions.
24 * \version $Id$
25 */
26
27 #include "stdinc.h"
28 #include "list.h"
29 #include "ircd_defs.h"
30 #include "conf.h"
31 #include "conf_pseudo.h"
32 #include "server.h"
33 #include "resv.h"
34 #include "channel.h"
35 #include "client.h"
36 #include "event.h"
37 #include "irc_string.h"
38 #include "s_bsd.h"
39 #include "ircd.h"
40 #include "listener.h"
41 #include "hostmask.h"
42 #include "modules.h"
43 #include "numeric.h"
44 #include "fdlist.h"
45 #include "log.h"
46 #include "send.h"
47 #include "memory.h"
48 #include "res.h"
49 #include "userhost.h"
50 #include "user.h"
51 #include "channel_mode.h"
52 #include "parse.h"
53 #include "misc.h"
54 #include "conf_db.h"
55 #include "conf_class.h"
56 #include "motd.h"
57 #include "ipcache.h"
58
59
60 /* general conf items link list root, other than k lines etc. */
61 dlink_list service_items;
62 dlink_list server_items;
63 dlink_list cluster_items;
64 dlink_list oconf_items;
65 dlink_list uconf_items;
66 dlink_list xconf_items;
67 dlink_list nresv_items;
68 dlink_list cresv_items;
69
70 extern unsigned int lineno;
71 extern char linebuf[];
72 extern char conffilebuf[IRCD_BUFSIZE];
73 extern int yyparse(); /* defined in y.tab.c */
74
75
76 /* conf_dns_callback()
77 *
78 * inputs - pointer to struct MaskItem
79 * - pointer to DNSReply reply
80 * output - none
81 * side effects - called when resolver query finishes
82 * if the query resulted in a successful search, hp will contain
83 * a non-null pointer, otherwise hp will be null.
84 * if successful save hp in the conf item it was called with
85 */
86 static void
87 conf_dns_callback(void *vptr, const struct irc_ssaddr *addr, const char *name, size_t namelength)
88 {
89 struct MaskItem *const conf = vptr;
90
91 conf->dns_pending = 0;
92
93 if (addr)
94 memcpy(&conf->addr, addr, sizeof(conf->addr));
95 else
96 conf->dns_failed = 1;
97 }
98
99 /* conf_dns_lookup()
100 *
101 * do a nameserver lookup of the conf host
102 * if the conf entry is currently doing a ns lookup do nothing, otherwise
103 * allocate a dns_query and start ns lookup.
104 */
105 static void
106 conf_dns_lookup(struct MaskItem *conf)
107 {
108 if (conf->dns_pending)
109 return;
110
111 conf->dns_pending = 1;
112
113 if (conf->aftype == AF_INET)
114 gethost_byname_type(conf_dns_callback, conf, conf->host, T_A);
115 else
116 gethost_byname_type(conf_dns_callback, conf, conf->host, T_AAAA);
117 }
118
119 /* map_to_list()
120 *
121 * inputs - ConfType conf
122 * output - pointer to dlink_list to use
123 * side effects - none
124 */
125 static dlink_list *
126 map_to_list(enum maskitem_type type)
127 {
128 switch (type)
129 {
130 case CONF_XLINE:
131 return &xconf_items;
132 break;
133 case CONF_ULINE:
134 return &uconf_items;
135 break;
136 case CONF_NRESV:
137 return &nresv_items;
138 break;
139 case CONF_CRESV:
140 return &cresv_items;
141 break;
142 case CONF_OPER:
143 return &oconf_items;
144 break;
145 case CONF_SERVER:
146 return &server_items;
147 break;
148 case CONF_SERVICE:
149 return &service_items;
150 break;
151 case CONF_CLUSTER:
152 return &cluster_items;
153 break;
154 default:
155 return NULL;
156 }
157 }
158
159 struct MaskItem *
160 conf_make(enum maskitem_type type)
161 {
162 struct MaskItem *const conf = MyCalloc(sizeof(*conf));
163 dlink_list *list = NULL;
164
165 conf->type = type;
166 conf->active = 1;
167 conf->aftype = AF_INET;
168
169 if ((list = map_to_list(type)))
170 dlinkAdd(conf, &conf->node, list);
171 return conf;
172 }
173
174 void
175 conf_free(struct MaskItem *conf)
176 {
177 dlink_node *node = NULL, *node_next = NULL;
178 dlink_list *list = NULL;
179
180 if ((list = map_to_list(conf->type)))
181 dlinkFindDelete(list, conf);
182
183 MyFree(conf->name);
184
185 if (conf->dns_pending)
186 delete_resolver_queries(conf);
187 if (conf->passwd)
188 memset(conf->passwd, 0, strlen(conf->passwd));
189 if (conf->spasswd)
190 memset(conf->spasswd, 0, strlen(conf->spasswd));
191
192 conf->class = NULL;
193
194 MyFree(conf->passwd);
195 MyFree(conf->spasswd);
196 MyFree(conf->reason);
197 MyFree(conf->certfp);
198 MyFree(conf->user);
199 MyFree(conf->host);
200 #ifdef HAVE_LIBCRYPTO
201 MyFree(conf->cipher_list);
202
203 if (conf->rsa_public_key)
204 RSA_free(conf->rsa_public_key);
205 #endif
206 DLINK_FOREACH_SAFE(node, node_next, conf->hub_list.head)
207 {
208 MyFree(node->data);
209 dlinkDelete(node, &conf->hub_list);
210 free_dlink_node(node);
211 }
212
213 DLINK_FOREACH_SAFE(node, node_next, conf->leaf_list.head)
214 {
215 MyFree(node->data);
216 dlinkDelete(node, &conf->leaf_list);
217 free_dlink_node(node);
218 }
219
220 DLINK_FOREACH_SAFE(node, node_next, conf->exempt_list.head)
221 {
222 struct exempt *exptr = node->data;
223
224 dlinkDelete(node, &conf->exempt_list);
225 MyFree(exptr->name);
226 MyFree(exptr->user);
227 MyFree(exptr->host);
228 MyFree(exptr);
229 }
230
231 MyFree(conf);
232 }
233
234 /* attach_iline()
235 *
236 * inputs - client pointer
237 * - conf pointer
238 * output -
239 * side effects - do actual attach
240 */
241 static int
242 attach_iline(struct Client *client_p, struct MaskItem *conf)
243 {
244 const struct ClassItem *const class = conf->class;
245 struct ip_entry *ip_found;
246 int a_limit_reached = 0;
247 unsigned int local = 0, global = 0, ident = 0;
248
249 ip_found = ipcache_find_or_add_address(&client_p->connection->ip);
250 ip_found->count++;
251 AddFlag(client_p, FLAGS_IPHASH);
252
253 count_user_host(client_p->username, client_p->host,
254 &global, &local, &ident);
255
256 /* XXX blah. go down checking the various silly limits
257 * setting a_limit_reached if any limit is reached.
258 * - Dianora
259 */
260 if (class->max_total && class->ref_count >= class->max_total)
261 a_limit_reached = 1;
262 else if (class->max_perip && ip_found->count > class->max_perip)
263 a_limit_reached = 1;
264 else if (class->max_local && local >= class->max_local)
265 a_limit_reached = 1;
266 else if (class->max_global && global >= class->max_global)
267 a_limit_reached = 1;
268 else if (class->max_ident && ident >= class->max_ident &&
269 client_p->username[0] != '~')
270 a_limit_reached = 1;
271
272 if (a_limit_reached)
273 {
274 if (!IsConfExemptLimits(conf))
275 return TOO_MANY; /* Already at maximum allowed */
276
277 sendto_one_notice(client_p, &me, ":*** Your connection class is full, "
278 "but you have exceed_limit = yes;");
279 }
280
281 return attach_conf(client_p, conf);
282 }
283
284 /* verify_access()
285 *
286 * inputs - pointer to client to verify
287 * output - 0 if success -'ve if not
288 * side effect - find the first (best) I line to attach.
289 */
290 static int
291 verify_access(struct Client *client_p)
292 {
293 struct MaskItem *conf = NULL;
294 char non_ident[USERLEN + 1] = "~";
295
296 if (IsGotId(client_p))
297 {
298 conf = find_address_conf(client_p->host, client_p->username,
299 &client_p->connection->ip,
300 client_p->connection->aftype,
301 client_p->connection->password);
302 }
303 else
304 {
305 strlcpy(non_ident + 1, client_p->username, sizeof(non_ident) - 1);
306 conf = find_address_conf(client_p->host, non_ident,
307 &client_p->connection->ip,
308 client_p->connection->aftype,
309 client_p->connection->password);
310 }
311
312 if (conf)
313 {
314 if (IsConfClient(conf))
315 {
316 if (IsConfRedir(conf))
317 {
318 sendto_one_numeric(client_p, &me, RPL_REDIR,
319 conf->name ? conf->name : "",
320 conf->port);
321 return NOT_AUTHORIZED;
322 }
323
324 /* Thanks for spoof idea amm */
325 if (IsConfDoSpoofIp(conf))
326 {
327 if (IsConfSpoofNotice(conf))
328 sendto_realops_flags(UMODE_ALL, L_ADMIN, SEND_NOTICE, "%s spoofing: %s as %s",
329 client_p->name, client_p->host, conf->name);
330
331 strlcpy(client_p->host, conf->name, sizeof(client_p->host));
332 }
333
334 return attach_iline(client_p, conf);
335 }
336 else if (IsConfKill(conf) || (ConfigGeneral.glines && IsConfGline(conf)))
337 {
338 if (IsConfGline(conf))
339 sendto_one_notice(client_p, &me, ":*** G-lined");
340
341 sendto_one_notice(client_p, &me, ":*** Banned: %s", conf->reason);
342 return BANNED_CLIENT;
343 }
344 }
345
346 return NOT_AUTHORIZED;
347 }
348
349 /* check_client()
350 *
351 * inputs - pointer to client
352 * output - 0 = Success
353 * NOT_AUTHORIZED (-1) = Access denied (no I line match)
354 * IRCD_SOCKET_ERROR (-2) = Bad socket.
355 * I_LINE_FULL (-3) = I-line is full
356 * TOO_MANY (-4) = Too many connections from hostname
357 * BANNED_CLIENT (-5) = K-lined
358 * side effects - Ordinary client access check.
359 * Look for conf lines which have the same
360 * status as the flags passed.
361 */
362 int
363 check_client(struct Client *source_p)
364 {
365 int i;
366
367 if ((i = verify_access(source_p)))
368 ilog(LOG_TYPE_IRCD, "Access denied: %s[%s]",
369 source_p->name, source_p->sockhost);
370
371 switch (i)
372 {
373 case TOO_MANY:
374 sendto_realops_flags(UMODE_FULL, L_ALL, SEND_NOTICE,
375 "Too many on IP for %s (%s).",
376 get_client_name(source_p, SHOW_IP),
377 source_p->sockhost);
378 ilog(LOG_TYPE_IRCD, "Too many connections on IP from %s.",
379 get_client_name(source_p, SHOW_IP));
380 ++ServerStats.is_ref;
381 exit_client(source_p, "No more connections allowed on that IP");
382 break;
383
384 case I_LINE_FULL:
385 sendto_realops_flags(UMODE_FULL, L_ALL, SEND_NOTICE,
386 "auth {} block is full for %s (%s).",
387 get_client_name(source_p, SHOW_IP),
388 source_p->sockhost);
389 ilog(LOG_TYPE_IRCD, "Too many connections from %s.",
390 get_client_name(source_p, SHOW_IP));
391 ++ServerStats.is_ref;
392 exit_client(source_p, "No more connections allowed in your connection class");
393 break;
394
395 case NOT_AUTHORIZED:
396 /* jdc - lists server name & port connections are on */
397 /* a purely cosmetical change */
398 sendto_realops_flags(UMODE_UNAUTH, L_ALL, SEND_NOTICE,
399 "Unauthorized client connection from %s [%s] on [%s/%u].",
400 get_client_name(source_p, SHOW_IP),
401 source_p->sockhost,
402 source_p->connection->listener->name,
403 source_p->connection->listener->port);
404 ilog(LOG_TYPE_IRCD, "Unauthorized client connection from %s on [%s/%u].",
405 get_client_name(source_p, SHOW_IP),
406 source_p->connection->listener->name,
407 source_p->connection->listener->port);
408
409 ++ServerStats.is_ref;
410 exit_client(source_p, "You are not authorized to use this server");
411 break;
412
413 case BANNED_CLIENT:
414 ++ServerStats.is_ref;
415 exit_client(source_p, "Banned");
416 break;
417
418 case 0:
419 default:
420 break;
421 }
422
423 return !(i < 0);
424 }
425
426 /* detach_conf()
427 *
428 * inputs - pointer to client to detach
429 * - type of conf to detach
430 * output - 0 for success, -1 for failure
431 * side effects - Disassociate configuration from the client.
432 * Also removes a class from the list if marked for deleting.
433 */
434 void
435 detach_conf(struct Client *client_p, enum maskitem_type type)
436 {
437 dlink_node *node = NULL, *node_next = NULL;
438
439 DLINK_FOREACH_SAFE(node, node_next, client_p->connection->confs.head)
440 {
441 struct MaskItem *conf = node->data;
442
443 assert(conf->type & (CONF_CLIENT | CONF_OPER | CONF_SERVER));
444 assert(conf->ref_count > 0);
445 assert(conf->class->ref_count > 0);
446
447 if (!(conf->type & type))
448 continue;
449
450 dlinkDelete(node, &client_p->connection->confs);
451 free_dlink_node(node);
452
453 if (conf->type == CONF_CLIENT)
454 remove_from_cidr_check(&client_p->connection->ip, conf->class);
455
456 if (--conf->class->ref_count == 0 && conf->class->active == 0)
457 {
458 class_free(conf->class);
459 conf->class = NULL;
460 }
461
462 if (--conf->ref_count == 0 && conf->active == 0)
463 conf_free(conf);
464 }
465 }
466
467 /* attach_conf()
468 *
469 * inputs - client pointer
470 * - conf pointer
471 * output -
472 * side effects - Associate a specific configuration entry to a *local*
473 * client (this is the one which used in accepting the
474 * connection). Note, that this automatically changes the
475 * attachment if there was an old one...
476 */
477 int
478 attach_conf(struct Client *client_p, struct MaskItem *conf)
479 {
480 if (dlinkFind(&client_p->connection->confs, conf))
481 return 1;
482
483 if (conf->type == CONF_CLIENT)
484 if (cidr_limit_reached(IsConfExemptLimits(conf),
485 &client_p->connection->ip, conf->class))
486 return TOO_MANY; /* Already at maximum allowed */
487
488 conf->class->ref_count++;
489 conf->ref_count++;
490
491 dlinkAdd(conf, make_dlink_node(), &client_p->connection->confs);
492
493 return 0;
494 }
495
496 /* attach_connect_block()
497 *
498 * inputs - pointer to server to attach
499 * - name of server
500 * - hostname of server
501 * output - true (1) if both are found, otherwise return false (0)
502 * side effects - find connect block and attach them to connecting client
503 */
504 int
505 attach_connect_block(struct Client *client_p, const char *name,
506 const char *host)
507 {
508 dlink_node *node = NULL;
509
510 assert(host);
511
512 DLINK_FOREACH(node, server_items.head)
513 {
514 struct MaskItem *conf = node->data;
515
516 if (match(conf->name, name) || match(conf->host, host))
517 continue;
518
519 attach_conf(client_p, conf);
520 return -1;
521 }
522
523 return 0;
524 }
525
526 /* find_conf_name()
527 *
528 * inputs - pointer to conf link list to search
529 * - pointer to name to find
530 * - int mask of type of conf to find
531 * output - NULL or pointer to conf found
532 * side effects - find a conf entry which matches the name
533 * and has the given mask.
534 */
535 struct MaskItem *
536 find_conf_name(dlink_list *list, const char *name, enum maskitem_type type)
537 {
538 dlink_node *node = NULL;
539
540 DLINK_FOREACH(node, list->head)
541 {
542 struct MaskItem *conf = node->data;
543
544 if (conf->type == type)
545 {
546 if (conf->name && !irccmp(conf->name, name))
547 return conf;
548 }
549 }
550
551 return NULL;
552 }
553
554 /* find_matching_name_conf()
555 *
556 * inputs - type of link list to look in
557 * - pointer to name string to find
558 * - pointer to user
559 * - pointer to host
560 * - optional flags to match on as well
561 * output - NULL or pointer to found struct MaskItem
562 * side effects - looks for a match on name field
563 */
564 struct MaskItem *
565 find_matching_name_conf(enum maskitem_type type, const char *name, const char *user,
566 const char *host, unsigned int flags)
567 {
568 dlink_node *node = NULL;
569 dlink_list *list = map_to_list(type);
570 struct MaskItem *conf = NULL;
571
572 switch (type)
573 {
574 case CONF_SERVICE:
575 DLINK_FOREACH(node, list->head)
576 {
577 conf = node->data;
578
579 if (EmptyString(conf->name))
580 continue;
581 if (name && !irccmp(name, conf->name))
582 return conf;
583 }
584 break;
585
586 case CONF_XLINE:
587 case CONF_ULINE:
588 case CONF_NRESV:
589 case CONF_CRESV:
590 DLINK_FOREACH(node, list->head)
591 {
592 conf = node->data;
593
594 if (EmptyString(conf->name))
595 continue;
596 if (name && !match(conf->name, name))
597 {
598 if ((user == NULL && (host == NULL)))
599 return conf;
600 if ((conf->flags & flags) != flags)
601 continue;
602 if (EmptyString(conf->user) || EmptyString(conf->host))
603 return conf;
604 if (!match(conf->user, user) && !match(conf->host, host))
605 return conf;
606 }
607 }
608 break;
609
610 case CONF_SERVER:
611 DLINK_FOREACH(node, list->head)
612 {
613 conf = node->data;
614
615 if (name && !match(name, conf->name))
616 return conf;
617 if (host && !match(host, conf->host))
618 return conf;
619 }
620 break;
621
622 default:
623 break;
624 }
625 return NULL;
626 }
627
628 /* find_exact_name_conf()
629 *
630 * inputs - type of link list to look in
631 * - pointer to name string to find
632 * - pointer to user
633 * - pointer to host
634 * output - NULL or pointer to found struct MaskItem
635 * side effects - looks for an exact match on name field
636 */
637 struct MaskItem *
638 find_exact_name_conf(enum maskitem_type type, const struct Client *who, const char *name,
639 const char *user, const char *host)
640 {
641 dlink_node *node = NULL;
642 dlink_list *list = map_to_list(type);
643 struct MaskItem *conf = NULL;
644
645 switch(type)
646 {
647 case CONF_XLINE:
648 case CONF_ULINE:
649 case CONF_NRESV:
650 case CONF_CRESV:
651
652 DLINK_FOREACH(node, list->head)
653 {
654 conf = node->data;
655
656 if (EmptyString(conf->name))
657 continue;
658
659 if (irccmp(conf->name, name) == 0)
660 {
661 if ((user == NULL && (host == NULL)))
662 return conf;
663 if (EmptyString(conf->user) || EmptyString(conf->host))
664 return conf;
665 if (!match(conf->user, user) && !match(conf->host, host))
666 return conf;
667 }
668 }
669 break;
670
671 case CONF_OPER:
672 DLINK_FOREACH(node, list->head)
673 {
674 conf = node->data;
675
676 if (EmptyString(conf->name))
677 continue;
678
679 if (!irccmp(conf->name, name))
680 {
681 if (!who)
682 return conf;
683 if (EmptyString(conf->user) || EmptyString(conf->host))
684 return NULL;
685 if (!match(conf->user, who->username))
686 {
687 switch (conf->htype)
688 {
689 case HM_HOST:
690 if (!match(conf->host, who->host) || !match(conf->host, who->sockhost))
691 if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total)
692 return conf;
693 break;
694 case HM_IPV4:
695 if (who->connection->aftype == AF_INET)
696 if (match_ipv4(&who->connection->ip, &conf->addr, conf->bits))
697 if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total)
698 return conf;
699 break;
700 case HM_IPV6:
701 if (who->connection->aftype == AF_INET6)
702 if (match_ipv6(&who->connection->ip, &conf->addr, conf->bits))
703 if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total)
704 return conf;
705 break;
706 default:
707 assert(0);
708 }
709 }
710 }
711 }
712
713 break;
714
715 case CONF_SERVER:
716 DLINK_FOREACH(node, list->head)
717 {
718 conf = node->data;
719
720 if (EmptyString(conf->name))
721 continue;
722
723 if (name == NULL)
724 {
725 if (EmptyString(conf->host))
726 continue;
727 if (irccmp(conf->host, host) == 0)
728 return conf;
729 }
730 else if (irccmp(conf->name, name) == 0)
731 return conf;
732 }
733
734 break;
735
736 default:
737 break;
738 }
739
740 return NULL;
741 }
742
743 /* set_default_conf()
744 *
745 * inputs - NONE
746 * output - NONE
747 * side effects - Set default values here.
748 * This is called **PRIOR** to parsing the
749 * configuration file. If you want to do some validation
750 * of values later, put them in validate_conf().
751 */
752 static void
753 set_default_conf(void)
754 {
755 /* verify init_class() ran, this should be an unnecessary check
756 * but its not much work.
757 */
758 assert(class_default == class_get_list()->tail->data);
759
760 #ifdef HAVE_LIBCRYPTO
761 #if OPENSSL_VERSION_NUMBER >= 0x009080FFL && !defined(OPENSSL_NO_ECDH)
762 {
763 EC_KEY *key = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);
764
765 if (key)
766 {
767 SSL_CTX_set_tmp_ecdh(ConfigServerInfo.server_ctx, key);
768 EC_KEY_free(key);
769 }
770 }
771
772 SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_SINGLE_ECDH_USE);
773 #endif
774
775 SSL_CTX_set_cipher_list(ConfigServerInfo.server_ctx, "EECDH+HIGH:EDH+HIGH:HIGH:!aNULL");
776 ConfigServerInfo.message_digest_algorithm = EVP_sha256();
777 ConfigServerInfo.rsa_private_key = NULL;
778 ConfigServerInfo.rsa_private_key_file = NULL;
779 #endif
780
781 /* ConfigServerInfo.name is not rehashable */
782 /* ConfigServerInfo.name = ConfigServerInfo.name; */
783 ConfigServerInfo.description = NULL;
784 ConfigServerInfo.network_name = xstrdup(NETWORK_NAME_DEFAULT);
785 ConfigServerInfo.network_desc = xstrdup(NETWORK_DESC_DEFAULT);
786
787 memset(&ConfigServerInfo.ip, 0, sizeof(ConfigServerInfo.ip));
788 ConfigServerInfo.specific_ipv4_vhost = 0;
789 memset(&ConfigServerInfo.ip6, 0, sizeof(ConfigServerInfo.ip6));
790 ConfigServerInfo.specific_ipv6_vhost = 0;
791
792 ConfigServerInfo.max_clients = MAXCLIENTS_MAX;
793 ConfigServerInfo.max_nick_length = 9;
794 ConfigServerInfo.max_topic_length = 80;
795 ConfigServerInfo.hub = 0;
796
797 ConfigAdminInfo.name = NULL;
798 ConfigAdminInfo.email = NULL;
799 ConfigAdminInfo.description = NULL;
800
801 log_del_all();
802
803 ConfigLog.use_logging = 1;
804
805 ConfigChannel.disable_fake_channels = 0;
806 ConfigChannel.invite_client_count = 10;
807 ConfigChannel.invite_client_time = 300;
808 ConfigChannel.knock_client_count = 1;
809 ConfigChannel.knock_client_time = 300;
810 ConfigChannel.knock_delay_channel = 60;
811 ConfigChannel.max_channels = 25;
812 ConfigChannel.max_bans = 25;
813 ConfigChannel.default_split_user_count = 0;
814 ConfigChannel.default_split_server_count = 0;
815 ConfigChannel.no_join_on_split = 0;
816 ConfigChannel.no_create_on_split = 0;
817
818 ConfigServerHide.flatten_links = 0;
819 ConfigServerHide.links_delay = 300;
820 ConfigServerHide.hidden = 0;
821 ConfigServerHide.hide_servers = 0;
822 ConfigServerHide.hide_services = 0;
823 ConfigServerHide.hidden_name = xstrdup(NETWORK_NAME_DEFAULT);
824 ConfigServerHide.hide_server_ips = 0;
825 ConfigServerHide.disable_remote_commands = 0;
826
827 ConfigGeneral.away_count = 2;
828 ConfigGeneral.away_time = 10;
829 ConfigGeneral.max_watch = WATCHSIZE_DEFAULT;
830 ConfigGeneral.cycle_on_host_change = 1;
831 ConfigGeneral.glines = 0;
832 ConfigGeneral.gline_time = 12 * 3600;
833 ConfigGeneral.gline_request_time = GLINE_REQUEST_EXPIRE_DEFAULT;
834 ConfigGeneral.gline_min_cidr = 16;
835 ConfigGeneral.gline_min_cidr6 = 48;
836 ConfigGeneral.invisible_on_connect = 1;
837 ConfigGeneral.tkline_expire_notices = 1;
838 ConfigGeneral.ignore_bogus_ts = 0;
839 ConfigGeneral.disable_auth = 0;
840 ConfigGeneral.kill_chase_time_limit = 90;
841 ConfigGeneral.default_floodcount = 8;
842 ConfigGeneral.failed_oper_notice = 1;
843 ConfigGeneral.dots_in_ident = 0;
844 ConfigGeneral.min_nonwildcard = 4;
845 ConfigGeneral.min_nonwildcard_simple = 3;
846 ConfigGeneral.max_accept = 20;
847 ConfigGeneral.anti_nick_flood = 0;
848 ConfigGeneral.max_nick_time = 20;
849 ConfigGeneral.max_nick_changes = 5;
850 ConfigGeneral.anti_spam_exit_message_time = 0;
851 ConfigGeneral.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
852 ConfigGeneral.ts_max_delta = TS_MAX_DELTA_DEFAULT;
853 ConfigGeneral.warn_no_connect_block = 1;
854 ConfigGeneral.stats_e_disabled = 0;
855 ConfigGeneral.stats_o_oper_only = 0;
856 ConfigGeneral.stats_k_oper_only = 1; /* 1 = masked */
857 ConfigGeneral.stats_i_oper_only = 1; /* 1 = masked */
858 ConfigGeneral.stats_P_oper_only = 0;
859 ConfigGeneral.stats_u_oper_only = 0;
860 ConfigGeneral.caller_id_wait = 60;
861 ConfigGeneral.opers_bypass_callerid = 0;
862 ConfigGeneral.pace_wait = 10;
863 ConfigGeneral.pace_wait_simple = 1;
864 ConfigGeneral.short_motd = 0;
865 ConfigGeneral.ping_cookie = 0;
866 ConfigGeneral.no_oper_flood = 0;
867 ConfigGeneral.oper_pass_resv = 1;
868 ConfigGeneral.max_targets = MAX_TARGETS_DEFAULT;
869 ConfigGeneral.oper_only_umodes = UMODE_DEBUG;
870 ConfigGeneral.oper_umodes = UMODE_BOTS | UMODE_LOCOPS | UMODE_SERVNOTICE | UMODE_WALLOP;
871 ConfigGeneral.throttle_count = 1;
872 ConfigGeneral.throttle_time = 1;
873 }
874
875 static void
876 validate_conf(void)
877 {
878 if (ConfigGeneral.ts_warn_delta < TS_WARN_DELTA_MIN)
879 ConfigGeneral.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
880
881 if (ConfigGeneral.ts_max_delta < TS_MAX_DELTA_MIN)
882 ConfigGeneral.ts_max_delta = TS_MAX_DELTA_DEFAULT;
883
884 if (ConfigServerInfo.network_name == NULL)
885 ConfigServerInfo.network_name = xstrdup(NETWORK_NAME_DEFAULT);
886
887 if (ConfigServerInfo.network_desc == NULL)
888 ConfigServerInfo.network_desc = xstrdup(NETWORK_DESC_DEFAULT);
889
890 ConfigGeneral.max_watch = IRCD_MAX(ConfigGeneral.max_watch, WATCHSIZE_MIN);
891 }
892
893 /* read_conf()
894 *
895 * inputs - file descriptor pointing to config file to use
896 * output - None
897 * side effects - Read configuration file.
898 */
899 static void
900 read_conf(FILE *file)
901 {
902 lineno = 0;
903
904 set_default_conf(); /* Set default values prior to conf parsing */
905 conf_parser_ctx.pass = 1;
906 yyparse(); /* Pick up the classes first */
907
908 rewind(file);
909
910 conf_parser_ctx.pass = 2;
911 yyparse(); /* Load the values from the conf */
912 validate_conf(); /* Check to make sure some values are still okay. */
913 /* Some global values are also loaded here. */
914 class_delete_marked(); /* Delete unused classes that are marked for deletion */
915 }
916
917 /* conf_rehash()
918 *
919 * Actual REHASH service routine. Called with sig == 0 if it has been called
920 * as a result of an operator issuing this command, else assume it has been
921 * called as a result of the server receiving a HUP signal.
922 */
923 int
924 conf_rehash(int sig)
925 {
926 if (sig)
927 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
928 "Got signal SIGHUP, reloading configuration file(s)");
929
930 restart_resolver();
931
932 /* don't close listeners until we know we can go ahead with the rehash */
933
934 read_conf_files(0);
935
936 load_conf_modules();
937 check_conf_klines();
938
939 return 0;
940 }
941
942 /* lookup_confhost()
943 *
944 * start DNS lookups of all hostnames in the conf
945 * line and convert an IP addresses in a.b.c.d number for to IP#s.
946 */
947 void
948 lookup_confhost(struct MaskItem *conf)
949 {
950 struct addrinfo hints, *res;
951
952 /*
953 * Do name lookup now on hostnames given and store the
954 * ip numbers in conf structure.
955 */
956 memset(&hints, 0, sizeof(hints));
957
958 hints.ai_family = AF_UNSPEC;
959 hints.ai_socktype = SOCK_STREAM;
960
961 /* Get us ready for a bind() and don't bother doing dns lookup */
962 hints.ai_flags = AI_PASSIVE | AI_NUMERICHOST;
963
964 if (getaddrinfo(conf->host, NULL, &hints, &res))
965 {
966 conf_dns_lookup(conf);
967 return;
968 }
969
970 assert(res);
971
972 memcpy(&conf->addr, res->ai_addr, res->ai_addrlen);
973 conf->addr.ss_len = res->ai_addrlen;
974 conf->addr.ss.ss_family = res->ai_family;
975
976 freeaddrinfo(res);
977 }
978
979 /* conf_connect_allowed()
980 *
981 * inputs - pointer to inaddr
982 * - int type ipv4 or ipv6
983 * output - BANNED or accepted
984 * side effects - none
985 */
986 int
987 conf_connect_allowed(struct irc_ssaddr *addr, int aftype)
988 {
989 struct ip_entry *ip_found = NULL;
990 struct MaskItem *const conf = find_dline_conf(addr, aftype);
991
992 /* DLINE exempt also gets you out of static limits/pacing... */
993 if (conf && (conf->type == CONF_EXEMPT))
994 return 0;
995
996 if (conf)
997 return BANNED_CLIENT;
998
999 ip_found = ipcache_find_or_add_address(addr);
1000
1001 if ((CurrentTime - ip_found->last_attempt) < ConfigGeneral.throttle_time)
1002 {
1003 if (ip_found->connection_count >= ConfigGeneral.throttle_count)
1004 return TOO_FAST;
1005
1006 ++ip_found->connection_count;
1007 }
1008 else
1009 ip_found->connection_count = 1;
1010
1011 ip_found->last_attempt = CurrentTime;
1012 return 0;
1013 }
1014
1015 /* expire_tklines()
1016 *
1017 * inputs - tkline list pointer
1018 * output - NONE
1019 * side effects - expire tklines
1020 */
1021 static void
1022 expire_tklines(dlink_list *list)
1023 {
1024 dlink_node *node = NULL, *node_next = NULL;
1025
1026 DLINK_FOREACH_SAFE(node, node_next, list->head)
1027 {
1028 struct MaskItem *conf = node->data;
1029
1030 if (!conf->until || conf->until > CurrentTime)
1031 continue;
1032
1033 if (conf->type == CONF_XLINE)
1034 {
1035 if (ConfigGeneral.tkline_expire_notices)
1036 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1037 "Temporary X-line for [%s] expired", conf->name);
1038 conf_free(conf);
1039 }
1040 else if (conf->type == CONF_NRESV || conf->type == CONF_CRESV)
1041 {
1042 if (ConfigGeneral.tkline_expire_notices)
1043 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1044 "Temporary RESV for [%s] expired", conf->name);
1045 conf_free(conf);
1046 }
1047 }
1048 }
1049
1050 /* cleanup_tklines()
1051 *
1052 * inputs - NONE
1053 * output - NONE
1054 * side effects - call function to expire temporary k/d lines
1055 * This is an event started off in ircd.c
1056 */
1057 void
1058 cleanup_tklines(void *unused)
1059 {
1060 hostmask_expire_temporary();
1061 expire_tklines(&xconf_items);
1062 expire_tklines(&nresv_items);
1063 expire_tklines(&cresv_items);
1064 }
1065
1066 /* oper_privs_as_string()
1067 *
1068 * inputs - pointer to client_p
1069 * output - pointer to static string showing oper privs
1070 * side effects - return as string, the oper privs as derived from port
1071 */
1072 static const struct oper_privs
1073 {
1074 const unsigned int flag;
1075 const unsigned char c;
1076 } flag_list[] = {
1077 { OPER_FLAG_ADMIN, 'A' },
1078 { OPER_FLAG_REMOTEBAN, 'B' },
1079 { OPER_FLAG_DIE, 'D' },
1080 { OPER_FLAG_GLINE, 'G' },
1081 { OPER_FLAG_REHASH, 'H' },
1082 { OPER_FLAG_KLINE, 'K' },
1083 { OPER_FLAG_KILL, 'N' },
1084 { OPER_FLAG_KILL_REMOTE, 'O' },
1085 { OPER_FLAG_CONNECT, 'P' },
1086 { OPER_FLAG_CONNECT_REMOTE, 'Q' },
1087 { OPER_FLAG_SQUIT, 'R' },
1088 { OPER_FLAG_SQUIT_REMOTE, 'S' },
1089 { OPER_FLAG_UNKLINE, 'U' },
1090 { OPER_FLAG_XLINE, 'X' },
1091 { 0, '\0' }
1092 };
1093
1094 char *
1095 oper_privs_as_string(const unsigned int port)
1096 {
1097 static char privs_out[IRCD_BUFSIZE];
1098 char *privs_ptr = privs_out;
1099
1100 for (const struct oper_privs *opriv = flag_list; opriv->flag; ++opriv)
1101 {
1102 if (port & opriv->flag)
1103 *privs_ptr++ = opriv->c;
1104 else
1105 *privs_ptr++ = ToLower(opriv->c);
1106 }
1107
1108 *privs_ptr = '\0';
1109
1110 return privs_out;
1111 }
1112
1113 /*
1114 * Input: A client to find the active operator {} name for.
1115 * Output: The nick!user@host{oper} of the oper.
1116 * "oper" is server name for remote opers
1117 * Side effects: None.
1118 */
1119 const char *
1120 get_oper_name(const struct Client *client_p)
1121 {
1122 /* +5 for !,@,{,} and null */
1123 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1124
1125 if (IsServer(client_p))
1126 return client_p->name;
1127
1128 if (MyConnect(client_p))
1129 {
1130 const dlink_node *const node = client_p->connection->confs.head;
1131
1132 if (node)
1133 {
1134 const struct MaskItem *const conf = node->data;
1135
1136 if (conf->type == CONF_OPER)
1137 {
1138 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", client_p->name,
1139 client_p->username, client_p->host, conf->name);
1140 return buffer;
1141 }
1142 }
1143
1144 /*
1145 * Probably should assert here for now. If there is an oper out there
1146 * with no operator {} conf attached, it would be good for us to know...
1147 */
1148 assert(0); /* Oper without oper conf! */
1149 }
1150
1151 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", client_p->name,
1152 client_p->username, client_p->host, client_p->servptr->name);
1153 return buffer;
1154 }
1155
1156 /* clear_out_old_conf()
1157 *
1158 * inputs - none
1159 * output - none
1160 * side effects - Clear out the old configuration
1161 */
1162 static void
1163 clear_out_old_conf(void)
1164 {
1165 dlink_node *node = NULL, *node_next = NULL;
1166 dlink_list *free_items [] = {
1167 &server_items, &oconf_items,
1168 &uconf_items, &xconf_items,
1169 &nresv_items, &cluster_items, &service_items, &cresv_items, NULL
1170 };
1171
1172 dlink_list ** iterator = free_items; /* C is dumb */
1173
1174 /* We only need to free anything allocated by yyparse() here.
1175 * Resetting structs, etc, is taken care of by set_default_conf().
1176 */
1177
1178 for (; *iterator; iterator++)
1179 {
1180 DLINK_FOREACH_SAFE(node, node_next, (*iterator)->head)
1181 {
1182 struct MaskItem *conf = node->data;
1183
1184 conf->active = 0;
1185 dlinkDelete(&conf->node, *iterator);
1186
1187 /* XXX This is less than pretty */
1188 if (conf->type == CONF_SERVER || conf->type == CONF_OPER)
1189 {
1190 if (!conf->ref_count)
1191 conf_free(conf);
1192 }
1193 else if (conf->type == CONF_XLINE)
1194 {
1195 if (!conf->until)
1196 conf_free(conf);
1197 }
1198 else
1199 conf_free(conf);
1200 }
1201 }
1202
1203 motd_clear();
1204
1205 /*
1206 * don't delete the class table, rather mark all entries
1207 * for deletion. The table is cleaned up by class_delete_marked. - avalon
1208 */
1209 class_mark_for_deletion();
1210
1211 clear_out_address_conf();
1212
1213 /* clean out module paths */
1214 mod_clear_paths();
1215
1216 pseudo_clear();
1217
1218 /* clean out ConfigServerInfo */
1219 MyFree(ConfigServerInfo.description);
1220 ConfigServerInfo.description = NULL;
1221 MyFree(ConfigServerInfo.network_name);
1222 ConfigServerInfo.network_name = NULL;
1223 MyFree(ConfigServerInfo.network_desc);
1224 ConfigServerInfo.network_desc = NULL;
1225 #ifdef HAVE_LIBCRYPTO
1226 if (ConfigServerInfo.rsa_private_key)
1227 {
1228 RSA_free(ConfigServerInfo.rsa_private_key);
1229 ConfigServerInfo.rsa_private_key = NULL;
1230 }
1231
1232 MyFree(ConfigServerInfo.rsa_private_key_file);
1233 ConfigServerInfo.rsa_private_key_file = NULL;
1234 #endif
1235
1236 /* clean out ConfigAdminInfo */
1237 MyFree(ConfigAdminInfo.name);
1238 ConfigAdminInfo.name = NULL;
1239 MyFree(ConfigAdminInfo.email);
1240 ConfigAdminInfo.email = NULL;
1241 MyFree(ConfigAdminInfo.description);
1242 ConfigAdminInfo.description = NULL;
1243
1244 /* clean out listeners */
1245 close_listeners();
1246 }
1247
1248 /* read_conf_files()
1249 *
1250 * inputs - cold start YES or NO
1251 * output - none
1252 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1253 */
1254 void
1255 read_conf_files(int cold)
1256 {
1257 const char *filename = NULL;
1258 char chanmodes[IRCD_BUFSIZE] = "";
1259 char chanlimit[IRCD_BUFSIZE] = "";
1260
1261 conf_parser_ctx.boot = cold;
1262 filename = ConfigGeneral.configfile;
1263
1264 /* We need to know the initial filename for the yyerror() to report
1265 FIXME: The full path is in conffilenamebuf first time since we
1266 don't know anything else
1267
1268 - Gozem 2002-07-21
1269 */
1270 strlcpy(conffilebuf, filename, sizeof(conffilebuf));
1271
1272 if ((conf_parser_ctx.conf_file = fopen(filename, "r")) == NULL)
1273 {
1274 if (cold)
1275 {
1276 ilog(LOG_TYPE_IRCD, "Unable to read configuration file '%s': %s",
1277 filename, strerror(errno));
1278 exit(-1);
1279 }
1280 else
1281 {
1282 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1283 "Unable to read configuration file '%s': %s",
1284 filename, strerror(errno));
1285 return;
1286 }
1287 }
1288
1289 if (!cold)
1290 clear_out_old_conf();
1291
1292 read_conf(conf_parser_ctx.conf_file);
1293 fclose(conf_parser_ctx.conf_file);
1294
1295 log_reopen_all();
1296
1297 add_isupport("NICKLEN", NULL, ConfigServerInfo.max_nick_length);
1298 add_isupport("NETWORK", ConfigServerInfo.network_name, -1);
1299
1300 snprintf(chanmodes, sizeof(chanmodes), "beI:%d", ConfigChannel.max_bans);
1301 add_isupport("MAXLIST", chanmodes, -1);
1302 add_isupport("MAXTARGETS", NULL, ConfigGeneral.max_targets);
1303 add_isupport("CHANTYPES", "#", -1);
1304
1305 snprintf(chanlimit, sizeof(chanlimit), "#:%d",
1306 ConfigChannel.max_channels);
1307 add_isupport("CHANLIMIT", chanlimit, -1);
1308 snprintf(chanmodes, sizeof(chanmodes), "%s", "beI,k,l,cimnprstMORS");
1309 add_isupport("CHANNELLEN", NULL, CHANNELLEN);
1310 add_isupport("TOPICLEN", NULL, ConfigServerInfo.max_topic_length);
1311 add_isupport("CHANMODES", chanmodes, -1);
1312
1313 /*
1314 * message_locale may have changed. rebuild isupport since it relies
1315 * on strlen(form_str(RPL_ISUPPORT))
1316 */
1317 rebuild_isupport_message_line();
1318 }
1319
1320 /* conf_add_class_to_conf()
1321 *
1322 * inputs - pointer to config item
1323 * output - NONE
1324 * side effects - Add a class pointer to a conf
1325 */
1326 void
1327 conf_add_class_to_conf(struct MaskItem *conf, const char *class_name)
1328 {
1329 if (class_name == NULL)
1330 {
1331 conf->class = class_default;
1332
1333 if (conf->type == CONF_CLIENT || conf->type == CONF_OPER)
1334 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1335 "Warning *** Defaulting to default class for %s@%s",
1336 conf->user, conf->host);
1337 else
1338 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1339 "Warning *** Defaulting to default class for %s",
1340 conf->name);
1341 }
1342 else
1343 conf->class = class_find(class_name, 1);
1344
1345 if (conf->class == NULL)
1346 {
1347 if (conf->type == CONF_CLIENT || conf->type == CONF_OPER)
1348 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1349 "Warning *** Defaulting to default class for %s@%s",
1350 conf->user, conf->host);
1351 else
1352 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1353 "Warning *** Defaulting to default class for %s",
1354 conf->name);
1355 conf->class = class_default;
1356 }
1357 }
1358
1359 /* yyerror()
1360 *
1361 * inputs - message from parser
1362 * output - NONE
1363 * side effects - message to opers and log file entry is made
1364 */
1365 void
1366 yyerror(const char *msg)
1367 {
1368 char newlinebuf[IRCD_BUFSIZE];
1369
1370 if (conf_parser_ctx.pass != 1)
1371 return;
1372
1373 strip_tabs(newlinebuf, linebuf, sizeof(newlinebuf));
1374 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1375 "\"%s\", line %u: %s: %s",
1376 conffilebuf, lineno + 1, msg, newlinebuf);
1377 ilog(LOG_TYPE_IRCD, "\"%s\", line %u: %s: %s",
1378 conffilebuf, lineno + 1, msg, newlinebuf);
1379 }
1380
1381 void
1382 conf_error_report(const char *msg)
1383 {
1384 char newlinebuf[IRCD_BUFSIZE];
1385
1386 strip_tabs(newlinebuf, linebuf, sizeof(newlinebuf));
1387 sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
1388 "\"%s\", line %u: %s: %s",
1389 conffilebuf, lineno + 1, msg, newlinebuf);
1390 ilog(LOG_TYPE_IRCD, "\"%s\", line %u: %s: %s",
1391 conffilebuf, lineno + 1, msg, newlinebuf);
1392 }
1393
1394 /*
1395 * valid_tkline()
1396 *
1397 * inputs - pointer to ascii string to check
1398 * - whether the specified time is in seconds or minutes
1399 * output - -1 not enough parameters
1400 * - 0 if not an integer number, else the number
1401 * side effects - none
1402 * Originally written by Dianora (Diane, db@db.net)
1403 */
1404 time_t
1405 valid_tkline(const char *data, const int minutes)
1406 {
1407 const unsigned char *p = (const unsigned char *)data;
1408 unsigned char tmpch = '\0';
1409 time_t result = 0;
1410
1411 while ((tmpch = *p++))
1412 {
1413 if (!IsDigit(tmpch))
1414 return 0;
1415
1416 result *= 10;
1417 result += (tmpch & 0xF);
1418 }
1419
1420 /*
1421 * In the degenerate case where oper does a /quote kline 0 user@host :reason
1422 * i.e. they specifically use 0, I am going to return 1 instead
1423 * as a return value of non-zero is used to flag it as a temporary kline
1424 */
1425 if (result == 0)
1426 result = 1;
1427
1428 /*
1429 * If the incoming time is in seconds convert it to minutes for the purpose
1430 * of this calculation
1431 */
1432 if (!minutes)
1433 result = result / 60;
1434
1435 if (result > MAX_TDKLINE_TIME)
1436 result = MAX_TDKLINE_TIME;
1437
1438 result = result * 60; /* turn it into seconds */
1439
1440 return result;
1441 }
1442
1443 /* valid_wild_card_simple()
1444 *
1445 * inputs - data to check for sufficient non-wildcard characters
1446 * outputs - 1 if valid, else 0
1447 * side effects - none
1448 */
1449 int
1450 valid_wild_card_simple(const char *data)
1451 {
1452 const unsigned char *p = (const unsigned char *)data;
1453 unsigned char tmpch = '\0';
1454 unsigned int nonwild = 0;
1455
1456 while ((tmpch = *p++))
1457 {
1458 if (tmpch == '\\' && *p)
1459 {
1460 ++p;
1461 if (++nonwild >= ConfigGeneral.min_nonwildcard_simple)
1462 return 1;
1463 }
1464 else if (!IsMWildChar(tmpch))
1465 {
1466 if (++nonwild >= ConfigGeneral.min_nonwildcard_simple)
1467 return 1;
1468 }
1469 }
1470
1471 return 0;
1472 }
1473
1474 /* valid_wild_card()
1475 *
1476 * input - pointer to client
1477 * - int flag, 0 for no warning oper 1 for warning oper
1478 * - count of following varargs to check
1479 * output - 0 if not valid, 1 if valid
1480 * side effects - NOTICE is given to source_p if warn is 1
1481 */
1482 int
1483 valid_wild_card(struct Client *source_p, int warn, int count, ...)
1484 {
1485 unsigned char tmpch = '\0';
1486 unsigned int nonwild = 0;
1487 va_list args;
1488
1489 /*
1490 * Now we must check the user and host to make sure there
1491 * are at least NONWILDCHARS non-wildcard characters in
1492 * them, otherwise assume they are attempting to kline
1493 * *@* or some variant of that. This code will also catch
1494 * people attempting to kline *@*.tld, as long as NONWILDCHARS
1495 * is greater than 3. In that case, there are only 3 non-wild
1496 * characters (tld), so if NONWILDCHARS is 4, the kline will
1497 * be disallowed.
1498 * -wnder
1499 */
1500
1501 va_start(args, count);
1502
1503 while (count--)
1504 {
1505 const unsigned char *p = va_arg(args, const unsigned char *);
1506 if (p == NULL)
1507 continue;
1508
1509 while ((tmpch = *p++))
1510 {
1511 if (!IsKWildChar(tmpch))
1512 {
1513 /*
1514 * If we find enough non-wild characters, we can
1515 * break - no point in searching further.
1516 */
1517 if (++nonwild >= ConfigGeneral.min_nonwildcard)
1518 {
1519 va_end(args);
1520 return 1;
1521 }
1522 }
1523 }
1524 }
1525
1526 if (warn)
1527 sendto_one_notice(source_p, &me,
1528 ":Please include at least %u non-wildcard characters with the mask",
1529 ConfigGeneral.min_nonwildcard);
1530 va_end(args);
1531 return 0;
1532 }
1533
1534 /* find_user_host()
1535 *
1536 * inputs - pointer to client placing kline
1537 * - pointer to user_host_or_nick
1538 * - pointer to user buffer
1539 * - pointer to host buffer
1540 * output - 0 if not ok to kline, 1 to kline i.e. if valid user host
1541 * side effects -
1542 */
1543 static int
1544 find_user_host(struct Client *source_p, char *user_host_or_nick,
1545 char *luser, char *lhost, unsigned int flags)
1546 {
1547 struct Client *target_p = NULL;
1548 char *hostp = NULL;
1549
1550 if (lhost == NULL)
1551 {
1552 strlcpy(luser, user_host_or_nick, USERLEN*4 + 1);
1553 return 1;
1554 }
1555
1556 if ((hostp = strchr(user_host_or_nick, '@')) || *user_host_or_nick == '*')
1557 {
1558 /* Explicit user@host mask given */
1559 if (hostp) /* I'm a little user@host */
1560 {
1561 *(hostp++) = '\0'; /* short and squat */
1562
1563 if (*user_host_or_nick)
1564 strlcpy(luser, user_host_or_nick, USERLEN*4 + 1); /* here is my user */
1565 else
1566 strcpy(luser, "*");
1567
1568 if (*hostp)
1569 strlcpy(lhost, hostp, HOSTLEN + 1); /* here is my host */
1570 else
1571 strcpy(lhost, "*");
1572 }
1573 else
1574 {
1575 luser[0] = '*'; /* no @ found, assume its *@somehost */
1576 luser[1] = '\0';
1577 strlcpy(lhost, user_host_or_nick, HOSTLEN*4 + 1);
1578 }
1579
1580 return 1;
1581 }
1582 else
1583 {
1584 /* Try to find user@host mask from nick */
1585 /* Okay to use source_p as the first param, because source_p == client_p */
1586 if ((target_p =
1587 find_chasing(source_p, user_host_or_nick)) == NULL)
1588 return 0; /* find_chasing sends ERR_NOSUCHNICK */
1589
1590 if (IsExemptKline(target_p))
1591 {
1592 if (IsClient(source_p))
1593 sendto_one_notice(source_p, &me, ":%s is E-lined", target_p->name);
1594 return 0;
1595 }
1596
1597 /*
1598 * turn the "user" bit into "*user", blow away '~'
1599 * if found in original user name (non-idented)
1600 */
1601 strlcpy(luser, target_p->username, USERLEN*4 + 1);
1602
1603 if (target_p->username[0] == '~')
1604 luser[0] = '*';
1605
1606 if (!strcmp(target_p->sockhost, "0"))
1607 strlcpy(lhost, target_p->host, HOSTLEN*4 + 1);
1608 else
1609 strlcpy(lhost, target_p->sockhost, HOSTLEN*4 + 1);
1610 return 1;
1611 }
1612
1613 return 0;
1614 }
1615
1616 /* XXX should this go into a separate file ? -Dianora */
1617 /* parse_aline
1618 *
1619 * input - pointer to cmd name being used
1620 * - pointer to client using cmd
1621 * - parc parameter count
1622 * - parv[] list of parameters to parse
1623 * - parse_flags bit map of things to test
1624 * - pointer to user or string to parse into
1625 * - pointer to host or NULL to parse into if non NULL
1626 * - pointer to optional tkline time or NULL
1627 * - pointer to target_server to parse into if non NULL
1628 * - pointer to reason to parse into
1629 *
1630 * output - 1 if valid, -1 if not valid
1631 * side effects - A generalised k/d/x etc. line parser,
1632 * "ALINE [time] user@host|string [ON] target :reason"
1633 * will parse returning a parsed user, host if
1634 * h_p pointer is non NULL, string otherwise.
1635 * if tkline_time pointer is non NULL a tk line will be set
1636 * to non zero if found.
1637 * if tkline_time pointer is NULL and tk line is found,
1638 * error is reported.
1639 * if target_server is NULL and an "ON" is found error
1640 * is reported.
1641 * if reason pointer is NULL ignore pointer,
1642 * this allows use of parse_a_line in unkline etc.
1643 *
1644 * - Dianora
1645 */
1646 int
1647 parse_aline(const char *cmd, struct Client *source_p,
1648 int parc, char **parv,
1649 int parse_flags, char **up_p, char **h_p, time_t *tkline_time,
1650 char **target_server, char **reason)
1651 {
1652 int found_tkline_time=0;
1653 static char def_reason[] = CONF_NOREASON;
1654 static char user[USERLEN*4+1];
1655 static char host[HOSTLEN*4+1];
1656
1657 parv++;
1658 parc--;
1659
1660 found_tkline_time = valid_tkline(*parv, TK_MINUTES);
1661
1662 if (found_tkline_time)
1663 {
1664 parv++;
1665 parc--;
1666
1667 if (tkline_time)
1668 *tkline_time = found_tkline_time;
1669 else
1670 {
1671 sendto_one_notice(source_p, &me, ":temp_line not supported by %s", cmd);
1672 return -1;
1673 }
1674 }
1675
1676 if (parc == 0)
1677 {
1678 sendto_one_numeric(source_p, &me, ERR_NEEDMOREPARAMS, cmd);
1679 return -1;
1680 }
1681
1682 if (h_p == NULL)
1683 *up_p = *parv;
1684 else
1685 {
1686 if (find_user_host(source_p, *parv, user, host, parse_flags) == 0)
1687 return -1;
1688
1689 *up_p = user;
1690 *h_p = host;
1691 }
1692
1693 parc--;
1694 parv++;
1695
1696 if (parc)
1697 {
1698 if (irccmp(*parv, "ON") == 0)
1699 {
1700 parc--;
1701 parv++;
1702
1703 if (target_server == NULL)
1704 {
1705 sendto_one_notice(source_p, &me, ":ON server not supported by %s", cmd);
1706 return -1;
1707 }
1708
1709 if (!HasOFlag(source_p, OPER_FLAG_REMOTEBAN))
1710 {
1711 sendto_one_numeric(source_p, &me, ERR_NOPRIVS, "remoteban");
1712 return -1;
1713 }
1714
1715 if (parc == 0 || EmptyString(*parv))
1716 {
1717 sendto_one_numeric(source_p, &me, ERR_NEEDMOREPARAMS, cmd);
1718 return -1;
1719 }
1720
1721 *target_server = *parv;
1722 parc--;
1723 parv++;
1724 }
1725 else
1726 {
1727 /* Make sure target_server *is* NULL if no ON server found
1728 * caller probably NULL'd it first, but no harm to do it again -db
1729 */
1730 if (target_server)
1731 *target_server = NULL;
1732 }
1733 }
1734
1735 if (h_p)
1736 {
1737 if (strchr(user, '!'))
1738 {
1739 sendto_one_notice(source_p, &me, ":Invalid character '!' in kline");
1740 return -1;
1741 }
1742
1743 if ((parse_flags & AWILD) && !valid_wild_card(source_p, 1, 2, *up_p, *h_p))
1744 return -1;
1745 }
1746 else
1747 if ((parse_flags & AWILD) && !valid_wild_card(source_p, 1, 1, *up_p))
1748 return -1;
1749
1750 if (reason)
1751 {
1752 if (parc && !EmptyString(*parv))
1753 {
1754 *reason = *parv;
1755
1756 if (!valid_comment(source_p, *reason, 1))
1757 return -1;
1758 }
1759 else
1760 *reason = def_reason;
1761 }
1762
1763 return 1;
1764 }
1765
1766 /* valid_comment()
1767 *
1768 * inputs - pointer to client
1769 * - pointer to comment
1770 * output - 0 if no valid comment,
1771 * - 1 if valid
1772 * side effects - truncates reason where necessary
1773 */
1774 int
1775 valid_comment(struct Client *source_p, char *comment, int warn)
1776 {
1777 if (strlen(comment) > REASONLEN)
1778 comment[REASONLEN-1] = '\0';
1779
1780 return 1;
1781 }
1782
1783 /* match_conf_password()
1784 *
1785 * inputs - pointer to given password
1786 * - pointer to Conf
1787 * output - 1 or 0 if match
1788 * side effects - none
1789 */
1790 int
1791 match_conf_password(const char *password, const struct MaskItem *conf)
1792 {
1793 const char *encr = NULL;
1794
1795 if (EmptyString(password) || EmptyString(conf->passwd))
1796 return 0;
1797
1798 if (conf->flags & CONF_FLAGS_ENCRYPTED)
1799 encr = crypt(password, conf->passwd);
1800 else
1801 encr = password;
1802
1803 return encr && !strcmp(encr, conf->passwd);
1804 }
1805
1806 /*
1807 * cluster_a_line
1808 *
1809 * inputs - client sending the cluster
1810 * - command name "KLINE" "XLINE" etc.
1811 * - capab -- CAP_KLN etc. from server.h
1812 * - cluster type -- CLUSTER_KLINE etc. from conf.h
1813 * - pattern and args to send along
1814 * output - none
1815 * side effects - Take source_p send the pattern with args given
1816 * along to all servers that match capab and cluster type
1817 */
1818 void
1819 cluster_a_line(struct Client *source_p, const char *command,
1820 int capab, int cluster_type, const char *pattern, ...)
1821 {
1822 va_list args;
1823 char buffer[IRCD_BUFSIZE] = "";
1824 const dlink_node *node = NULL;
1825
1826 va_start(args, pattern);
1827 vsnprintf(buffer, sizeof(buffer), pattern, args);
1828 va_end(args);
1829
1830 DLINK_FOREACH(node, cluster_items.head)
1831 {
1832 const struct MaskItem *conf = node->data;
1833
1834 if (conf->flags & cluster_type)
1835 sendto_match_servs(source_p, conf->name, CAP_CLUSTER|capab,
1836 "%s %s %s", command, conf->name, buffer);
1837 }
1838 }
1839
1840 /*
1841 * split_nuh
1842 *
1843 * inputs - pointer to original mask (modified in place)
1844 * - pointer to pointer where nick should go
1845 * - pointer to pointer where user should go
1846 * - pointer to pointer where host should go
1847 * output - NONE
1848 * side effects - mask is modified in place
1849 * If nick pointer is NULL, ignore writing to it
1850 * this allows us to use this function elsewhere.
1851 *
1852 * mask nick user host
1853 * ---------------------- ------- ------- ------
1854 * Dianora!db@db.net Dianora db db.net
1855 * Dianora Dianora * *
1856 * db.net * * db.net
1857 * OR if nick pointer is NULL
1858 * Dianora - * Dianora
1859 * Dianora! Dianora * *
1860 * Dianora!@ Dianora * *
1861 * Dianora!db Dianora db *
1862 * Dianora!@db.net Dianora * db.net
1863 * db@db.net * db db.net
1864 * !@ * * *
1865 * @ * * *
1866 * ! * * *
1867 */
1868 void
1869 split_nuh(struct split_nuh_item *const iptr)
1870 {
1871 char *p = NULL, *q = NULL;
1872
1873 if (iptr->nickptr)
1874 strlcpy(iptr->nickptr, "*", iptr->nicksize);
1875
1876 if (iptr->userptr)
1877 strlcpy(iptr->userptr, "*", iptr->usersize);
1878
1879 if (iptr->hostptr)
1880 strlcpy(iptr->hostptr, "*", iptr->hostsize);
1881
1882 if ((p = strchr(iptr->nuhmask, '!')))
1883 {
1884 *p = '\0';
1885
1886 if (iptr->nickptr && *iptr->nuhmask)
1887 strlcpy(iptr->nickptr, iptr->nuhmask, iptr->nicksize);
1888
1889 if ((q = strchr(++p, '@')))
1890 {
1891 *q++ = '\0';
1892
1893 if (*p)
1894 strlcpy(iptr->userptr, p, iptr->usersize);
1895
1896 if (*q)
1897 strlcpy(iptr->hostptr, q, iptr->hostsize);
1898 }
1899 else
1900 {
1901 if (*p)
1902 strlcpy(iptr->userptr, p, iptr->usersize);
1903 }
1904 }
1905 else
1906 {
1907 /* No ! found so lets look for a user@host */
1908 if ((p = strchr(iptr->nuhmask, '@')))
1909 {
1910 /* if found a @ */
1911 *p++ = '\0';
1912
1913 if (*iptr->nuhmask)
1914 strlcpy(iptr->userptr, iptr->nuhmask, iptr->usersize);
1915
1916 if (*p)
1917 strlcpy(iptr->hostptr, p, iptr->hostsize);
1918 }
1919 else
1920 {
1921 /* no @ found */
1922 if (!iptr->nickptr || strpbrk(iptr->nuhmask, ".:"))
1923 strlcpy(iptr->hostptr, iptr->nuhmask, iptr->hostsize);
1924 else
1925 strlcpy(iptr->nickptr, iptr->nuhmask, iptr->nicksize);
1926 }
1927 }
1928 }

Properties

Name Value
svn:eol-style native
svn:keywords Id Revision