1 |
/* |
2 |
* ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd) |
3 |
* |
4 |
* Copyright (c) 1997-2014 ircd-hybrid development team |
5 |
* |
6 |
* This program is free software; you can redistribute it and/or modify |
7 |
* it under the terms of the GNU General Public License as published by |
8 |
* the Free Software Foundation; either version 2 of the License, or |
9 |
* (at your option) any later version. |
10 |
* |
11 |
* This program is distributed in the hope that it will be useful, |
12 |
* but WITHOUT ANY WARRANTY; without even the implied warranty of |
13 |
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
14 |
* GNU General Public License for more details. |
15 |
* |
16 |
* You should have received a copy of the GNU General Public License |
17 |
* along with this program; if not, write to the Free Software |
18 |
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 |
19 |
* USA |
20 |
*/ |
21 |
|
22 |
/*! \file conf.c |
23 |
* \brief Configuration file functions. |
24 |
* \version $Id$ |
25 |
*/ |
26 |
|
27 |
#include "stdinc.h" |
28 |
#include "list.h" |
29 |
#include "ircd_defs.h" |
30 |
#include "conf.h" |
31 |
#include "server.h" |
32 |
#include "resv.h" |
33 |
#include "channel.h" |
34 |
#include "client.h" |
35 |
#include "event.h" |
36 |
#include "irc_string.h" |
37 |
#include "s_bsd.h" |
38 |
#include "ircd.h" |
39 |
#include "listener.h" |
40 |
#include "hostmask.h" |
41 |
#include "modules.h" |
42 |
#include "numeric.h" |
43 |
#include "fdlist.h" |
44 |
#include "log.h" |
45 |
#include "send.h" |
46 |
#include "memory.h" |
47 |
#include "mempool.h" |
48 |
#include "res.h" |
49 |
#include "userhost.h" |
50 |
#include "user.h" |
51 |
#include "channel_mode.h" |
52 |
#include "parse.h" |
53 |
#include "misc.h" |
54 |
#include "conf_db.h" |
55 |
#include "conf_class.h" |
56 |
#include "motd.h" |
57 |
|
58 |
|
59 |
struct config_channel_entry ConfigChannel; |
60 |
struct config_server_hide ConfigServerHide; |
61 |
struct config_file_entry ConfigFileEntry; |
62 |
struct logging_entry ConfigLoggingEntry = { .use_logging = 1 }; |
63 |
struct server_info ServerInfo; |
64 |
struct admin_info AdminInfo; |
65 |
|
66 |
/* general conf items link list root, other than k lines etc. */ |
67 |
dlink_list service_items = { NULL, NULL, 0 }; |
68 |
dlink_list server_items = { NULL, NULL, 0 }; |
69 |
dlink_list cluster_items = { NULL, NULL, 0 }; |
70 |
dlink_list oconf_items = { NULL, NULL, 0 }; |
71 |
dlink_list uconf_items = { NULL, NULL, 0 }; |
72 |
dlink_list xconf_items = { NULL, NULL, 0 }; |
73 |
dlink_list nresv_items = { NULL, NULL, 0 }; |
74 |
dlink_list cresv_items = { NULL, NULL, 0 }; |
75 |
|
76 |
extern unsigned int lineno; |
77 |
extern char linebuf[]; |
78 |
extern char conffilebuf[IRCD_BUFSIZE]; |
79 |
extern int yyparse(); /* defined in y.tab.c */ |
80 |
|
81 |
struct conf_parser_context conf_parser_ctx = { 0, 0, NULL }; |
82 |
|
83 |
/* internally defined functions */ |
84 |
static void read_conf(FILE *); |
85 |
static void clear_out_old_conf(void); |
86 |
static void expire_tklines(dlink_list *); |
87 |
static void garbage_collect_ip_entries(void); |
88 |
static int hash_ip(struct irc_ssaddr *); |
89 |
static int verify_access(struct Client *); |
90 |
static int attach_iline(struct Client *, struct MaskItem *); |
91 |
static struct ip_entry *find_or_add_ip(struct irc_ssaddr *); |
92 |
static dlink_list *map_to_list(enum maskitem_type); |
93 |
static int find_user_host(struct Client *, char *, char *, char *, unsigned int); |
94 |
|
95 |
|
96 |
/* usually, with hash tables, you use a prime number... |
97 |
* but in this case I am dealing with ip addresses, |
98 |
* not ascii strings. |
99 |
*/ |
100 |
#define IP_HASH_SIZE 0x1000 |
101 |
|
102 |
struct ip_entry |
103 |
{ |
104 |
struct irc_ssaddr ip; |
105 |
unsigned int count; |
106 |
time_t last_attempt; |
107 |
struct ip_entry *next; |
108 |
}; |
109 |
|
110 |
static struct ip_entry *ip_hash_table[IP_HASH_SIZE]; |
111 |
static mp_pool_t *ip_entry_pool = NULL; |
112 |
static int ip_entries_count = 0; |
113 |
|
114 |
|
115 |
/* conf_dns_callback() |
116 |
* |
117 |
* inputs - pointer to struct MaskItem |
118 |
* - pointer to DNSReply reply |
119 |
* output - none |
120 |
* side effects - called when resolver query finishes |
121 |
* if the query resulted in a successful search, hp will contain |
122 |
* a non-null pointer, otherwise hp will be null. |
123 |
* if successful save hp in the conf item it was called with |
124 |
*/ |
125 |
static void |
126 |
conf_dns_callback(void *vptr, const struct irc_ssaddr *addr, const char *name) |
127 |
{ |
128 |
struct MaskItem *conf = vptr; |
129 |
|
130 |
conf->dns_pending = 0; |
131 |
|
132 |
if (addr) |
133 |
memcpy(&conf->addr, addr, sizeof(conf->addr)); |
134 |
else |
135 |
conf->dns_failed = 1; |
136 |
} |
137 |
|
138 |
/* conf_dns_lookup() |
139 |
* |
140 |
* do a nameserver lookup of the conf host |
141 |
* if the conf entry is currently doing a ns lookup do nothing, otherwise |
142 |
* allocate a dns_query and start ns lookup. |
143 |
*/ |
144 |
static void |
145 |
conf_dns_lookup(struct MaskItem *conf) |
146 |
{ |
147 |
if (!conf->dns_pending) |
148 |
{ |
149 |
conf->dns_pending = 1; |
150 |
gethost_byname(conf_dns_callback, conf, conf->host); |
151 |
} |
152 |
} |
153 |
|
154 |
struct MaskItem * |
155 |
conf_make(enum maskitem_type type) |
156 |
{ |
157 |
struct MaskItem *conf = MyCalloc(sizeof(*conf)); |
158 |
dlink_list *list = NULL; |
159 |
|
160 |
conf->type = type; |
161 |
conf->active = 1; |
162 |
conf->aftype = AF_INET; |
163 |
|
164 |
if ((list = map_to_list(type))) |
165 |
dlinkAdd(conf, &conf->node, list); |
166 |
return conf; |
167 |
} |
168 |
|
169 |
void |
170 |
conf_free(struct MaskItem *conf) |
171 |
{ |
172 |
dlink_node *ptr = NULL, *ptr_next = NULL; |
173 |
dlink_list *list = NULL; |
174 |
|
175 |
if (conf->node.next) |
176 |
if ((list = map_to_list(conf->type))) |
177 |
dlinkDelete(&conf->node, list); |
178 |
|
179 |
MyFree(conf->name); |
180 |
|
181 |
if (conf->dns_pending) |
182 |
delete_resolver_queries(conf); |
183 |
if (conf->passwd) |
184 |
memset(conf->passwd, 0, strlen(conf->passwd)); |
185 |
if (conf->spasswd) |
186 |
memset(conf->spasswd, 0, strlen(conf->spasswd)); |
187 |
|
188 |
conf->class = NULL; |
189 |
|
190 |
MyFree(conf->passwd); |
191 |
MyFree(conf->spasswd); |
192 |
MyFree(conf->reason); |
193 |
MyFree(conf->certfp); |
194 |
MyFree(conf->user); |
195 |
MyFree(conf->host); |
196 |
#ifdef HAVE_LIBCRYPTO |
197 |
MyFree(conf->cipher_list); |
198 |
|
199 |
if (conf->rsa_public_key) |
200 |
RSA_free(conf->rsa_public_key); |
201 |
#endif |
202 |
DLINK_FOREACH_SAFE(ptr, ptr_next, conf->hub_list.head) |
203 |
{ |
204 |
MyFree(ptr->data); |
205 |
dlinkDelete(ptr, &conf->hub_list); |
206 |
free_dlink_node(ptr); |
207 |
} |
208 |
|
209 |
DLINK_FOREACH_SAFE(ptr, ptr_next, conf->leaf_list.head) |
210 |
{ |
211 |
MyFree(ptr->data); |
212 |
dlinkDelete(ptr, &conf->leaf_list); |
213 |
free_dlink_node(ptr); |
214 |
} |
215 |
|
216 |
DLINK_FOREACH_SAFE(ptr, ptr_next, conf->exempt_list.head) |
217 |
{ |
218 |
struct exempt *exptr = ptr->data; |
219 |
|
220 |
dlinkDelete(ptr, &conf->exempt_list); |
221 |
MyFree(exptr->name); |
222 |
MyFree(exptr->user); |
223 |
MyFree(exptr->host); |
224 |
MyFree(exptr); |
225 |
} |
226 |
|
227 |
MyFree(conf); |
228 |
} |
229 |
|
230 |
/* check_client() |
231 |
* |
232 |
* inputs - pointer to client |
233 |
* output - 0 = Success |
234 |
* NOT_AUTHORIZED (-1) = Access denied (no I line match) |
235 |
* IRCD_SOCKET_ERROR (-2) = Bad socket. |
236 |
* I_LINE_FULL (-3) = I-line is full |
237 |
* TOO_MANY (-4) = Too many connections from hostname |
238 |
* BANNED_CLIENT (-5) = K-lined |
239 |
* side effects - Ordinary client access check. |
240 |
* Look for conf lines which have the same |
241 |
* status as the flags passed. |
242 |
*/ |
243 |
int |
244 |
check_client(struct Client *source_p) |
245 |
{ |
246 |
int i; |
247 |
|
248 |
if ((i = verify_access(source_p))) |
249 |
ilog(LOG_TYPE_IRCD, "Access denied: %s[%s]", |
250 |
source_p->name, source_p->sockhost); |
251 |
|
252 |
switch (i) |
253 |
{ |
254 |
case TOO_MANY: |
255 |
sendto_realops_flags(UMODE_FULL, L_ALL, SEND_NOTICE, |
256 |
"Too many on IP for %s (%s).", |
257 |
get_client_name(source_p, SHOW_IP), |
258 |
source_p->sockhost); |
259 |
ilog(LOG_TYPE_IRCD, "Too many connections on IP from %s.", |
260 |
get_client_name(source_p, SHOW_IP)); |
261 |
++ServerStats.is_ref; |
262 |
exit_client(source_p, "No more connections allowed on that IP"); |
263 |
break; |
264 |
|
265 |
case I_LINE_FULL: |
266 |
sendto_realops_flags(UMODE_FULL, L_ALL, SEND_NOTICE, |
267 |
"auth{} block is full for %s (%s).", |
268 |
get_client_name(source_p, SHOW_IP), |
269 |
source_p->sockhost); |
270 |
ilog(LOG_TYPE_IRCD, "Too many connections from %s.", |
271 |
get_client_name(source_p, SHOW_IP)); |
272 |
++ServerStats.is_ref; |
273 |
exit_client(source_p, "No more connections allowed in your connection class"); |
274 |
break; |
275 |
|
276 |
case NOT_AUTHORIZED: |
277 |
++ServerStats.is_ref; |
278 |
/* jdc - lists server name & port connections are on */ |
279 |
/* a purely cosmetical change */ |
280 |
sendto_realops_flags(UMODE_UNAUTH, L_ALL, SEND_NOTICE, |
281 |
"Unauthorized client connection from %s [%s] on [%s/%u].", |
282 |
get_client_name(source_p, SHOW_IP), |
283 |
source_p->sockhost, |
284 |
source_p->localClient->listener->name, |
285 |
source_p->localClient->listener->port); |
286 |
ilog(LOG_TYPE_IRCD, |
287 |
"Unauthorized client connection from %s on [%s/%u].", |
288 |
get_client_name(source_p, SHOW_IP), |
289 |
source_p->localClient->listener->name, |
290 |
source_p->localClient->listener->port); |
291 |
|
292 |
exit_client(source_p, "You are not authorized to use this server"); |
293 |
break; |
294 |
|
295 |
case BANNED_CLIENT: |
296 |
exit_client(source_p, "Banned"); |
297 |
++ServerStats.is_ref; |
298 |
break; |
299 |
|
300 |
case 0: |
301 |
default: |
302 |
break; |
303 |
} |
304 |
|
305 |
return (i < 0 ? 0 : 1); |
306 |
} |
307 |
|
308 |
/* verify_access() |
309 |
* |
310 |
* inputs - pointer to client to verify |
311 |
* output - 0 if success -'ve if not |
312 |
* side effect - find the first (best) I line to attach. |
313 |
*/ |
314 |
static int |
315 |
verify_access(struct Client *client_p) |
316 |
{ |
317 |
struct MaskItem *conf = NULL; |
318 |
char non_ident[USERLEN + 1] = "~"; |
319 |
|
320 |
if (IsGotId(client_p)) |
321 |
{ |
322 |
conf = find_address_conf(client_p->host, client_p->username, |
323 |
&client_p->localClient->ip, |
324 |
client_p->localClient->aftype, |
325 |
client_p->localClient->passwd); |
326 |
} |
327 |
else |
328 |
{ |
329 |
strlcpy(non_ident + 1, client_p->username, sizeof(non_ident) - 1); |
330 |
conf = find_address_conf(client_p->host,non_ident, |
331 |
&client_p->localClient->ip, |
332 |
client_p->localClient->aftype, |
333 |
client_p->localClient->passwd); |
334 |
} |
335 |
|
336 |
if (conf) |
337 |
{ |
338 |
if (IsConfClient(conf)) |
339 |
{ |
340 |
if (IsConfRedir(conf)) |
341 |
{ |
342 |
sendto_one_numeric(client_p, &me, RPL_REDIR, |
343 |
conf->name ? conf->name : "", |
344 |
conf->port); |
345 |
return NOT_AUTHORIZED; |
346 |
} |
347 |
|
348 |
if (IsConfDoIdentd(conf)) |
349 |
SetNeedId(client_p); |
350 |
|
351 |
/* Thanks for spoof idea amm */ |
352 |
if (IsConfDoSpoofIp(conf)) |
353 |
{ |
354 |
if (!ConfigFileEntry.hide_spoof_ips && IsConfSpoofNotice(conf)) |
355 |
sendto_realops_flags(UMODE_ALL, L_ADMIN, SEND_NOTICE, |
356 |
"%s spoofing: %s as %s", |
357 |
client_p->name, client_p->host, conf->name); |
358 |
strlcpy(client_p->host, conf->name, sizeof(client_p->host)); |
359 |
AddFlag(client_p, FLAGS_IP_SPOOFING | FLAGS_AUTH_SPOOF); |
360 |
} |
361 |
|
362 |
return attach_iline(client_p, conf); |
363 |
} |
364 |
else if (IsConfKill(conf) || (ConfigFileEntry.glines && IsConfGline(conf))) |
365 |
{ |
366 |
if (IsConfGline(conf)) |
367 |
sendto_one_notice(client_p, &me, ":*** G-lined"); |
368 |
sendto_one_notice(client_p, &me, ":*** Banned: %s", conf->reason); |
369 |
return BANNED_CLIENT; |
370 |
} |
371 |
} |
372 |
|
373 |
return NOT_AUTHORIZED; |
374 |
} |
375 |
|
376 |
/* attach_iline() |
377 |
* |
378 |
* inputs - client pointer |
379 |
* - conf pointer |
380 |
* output - |
381 |
* side effects - do actual attach |
382 |
*/ |
383 |
static int |
384 |
attach_iline(struct Client *client_p, struct MaskItem *conf) |
385 |
{ |
386 |
struct ClassItem *class = NULL; |
387 |
struct ip_entry *ip_found; |
388 |
int a_limit_reached = 0; |
389 |
unsigned int local = 0, global = 0, ident = 0; |
390 |
|
391 |
assert(conf->class); |
392 |
|
393 |
ip_found = find_or_add_ip(&client_p->localClient->ip); |
394 |
ip_found->count++; |
395 |
SetIpHash(client_p); |
396 |
|
397 |
class = conf->class; |
398 |
|
399 |
count_user_host(client_p->username, client_p->host, |
400 |
&global, &local, &ident); |
401 |
|
402 |
/* XXX blah. go down checking the various silly limits |
403 |
* setting a_limit_reached if any limit is reached. |
404 |
* - Dianora |
405 |
*/ |
406 |
if (class->max_total && class->ref_count >= class->max_total) |
407 |
a_limit_reached = 1; |
408 |
else if (class->max_perip && ip_found->count > class->max_perip) |
409 |
a_limit_reached = 1; |
410 |
else if (class->max_local && local >= class->max_local) |
411 |
a_limit_reached = 1; |
412 |
else if (class->max_global && global >= class->max_global) |
413 |
a_limit_reached = 1; |
414 |
else if (class->max_ident && ident >= class->max_ident && |
415 |
client_p->username[0] != '~') |
416 |
a_limit_reached = 1; |
417 |
|
418 |
if (a_limit_reached) |
419 |
{ |
420 |
if (!IsConfExemptLimits(conf)) |
421 |
return TOO_MANY; /* Already at maximum allowed */ |
422 |
|
423 |
sendto_one_notice(client_p, &me, ":*** Your connection class is full, " |
424 |
"but you have exceed_limit = yes;"); |
425 |
} |
426 |
|
427 |
return attach_conf(client_p, conf); |
428 |
} |
429 |
|
430 |
/* init_ip_hash_table() |
431 |
* |
432 |
* inputs - NONE |
433 |
* output - NONE |
434 |
* side effects - allocate memory for ip_entry(s) |
435 |
* - clear the ip hash table |
436 |
*/ |
437 |
void |
438 |
init_ip_hash_table(void) |
439 |
{ |
440 |
ip_entry_pool = mp_pool_new(sizeof(struct ip_entry), MP_CHUNK_SIZE_IP_ENTRY); |
441 |
memset(ip_hash_table, 0, sizeof(ip_hash_table)); |
442 |
} |
443 |
|
444 |
/* find_or_add_ip() |
445 |
* |
446 |
* inputs - pointer to struct irc_ssaddr |
447 |
* output - pointer to a struct ip_entry |
448 |
* side effects - |
449 |
* |
450 |
* If the ip # was not found, a new struct ip_entry is created, and the ip |
451 |
* count set to 0. |
452 |
*/ |
453 |
static struct ip_entry * |
454 |
find_or_add_ip(struct irc_ssaddr *ip_in) |
455 |
{ |
456 |
struct ip_entry *ptr, *newptr; |
457 |
int hash_index = hash_ip(ip_in), res; |
458 |
struct sockaddr_in *v4 = (struct sockaddr_in *)ip_in, *ptr_v4; |
459 |
#ifdef IPV6 |
460 |
struct sockaddr_in6 *v6 = (struct sockaddr_in6 *)ip_in, *ptr_v6; |
461 |
#endif |
462 |
|
463 |
for (ptr = ip_hash_table[hash_index]; ptr; ptr = ptr->next) |
464 |
{ |
465 |
#ifdef IPV6 |
466 |
if (ptr->ip.ss.ss_family != ip_in->ss.ss_family) |
467 |
continue; |
468 |
if (ip_in->ss.ss_family == AF_INET6) |
469 |
{ |
470 |
ptr_v6 = (struct sockaddr_in6 *)&ptr->ip; |
471 |
res = memcmp(&v6->sin6_addr, &ptr_v6->sin6_addr, sizeof(struct in6_addr)); |
472 |
} |
473 |
else |
474 |
#endif |
475 |
{ |
476 |
ptr_v4 = (struct sockaddr_in *)&ptr->ip; |
477 |
res = memcmp(&v4->sin_addr, &ptr_v4->sin_addr, sizeof(struct in_addr)); |
478 |
} |
479 |
if (res == 0) |
480 |
{ |
481 |
/* Found entry already in hash, return it. */ |
482 |
return ptr; |
483 |
} |
484 |
} |
485 |
|
486 |
if (ip_entries_count >= 2 * hard_fdlimit) |
487 |
garbage_collect_ip_entries(); |
488 |
|
489 |
newptr = mp_pool_get(ip_entry_pool); |
490 |
memset(newptr, 0, sizeof(*newptr)); |
491 |
ip_entries_count++; |
492 |
memcpy(&newptr->ip, ip_in, sizeof(struct irc_ssaddr)); |
493 |
|
494 |
newptr->next = ip_hash_table[hash_index]; |
495 |
ip_hash_table[hash_index] = newptr; |
496 |
|
497 |
return newptr; |
498 |
} |
499 |
|
500 |
/* remove_one_ip() |
501 |
* |
502 |
* inputs - unsigned long IP address value |
503 |
* output - NONE |
504 |
* side effects - The ip address given, is looked up in ip hash table |
505 |
* and number of ip#'s for that ip decremented. |
506 |
* If ip # count reaches 0 and has expired, |
507 |
* the struct ip_entry is returned to the ip_entry_heap |
508 |
*/ |
509 |
void |
510 |
remove_one_ip(struct irc_ssaddr *ip_in) |
511 |
{ |
512 |
struct ip_entry *ptr; |
513 |
struct ip_entry *last_ptr = NULL; |
514 |
int hash_index = hash_ip(ip_in), res; |
515 |
struct sockaddr_in *v4 = (struct sockaddr_in *)ip_in, *ptr_v4; |
516 |
#ifdef IPV6 |
517 |
struct sockaddr_in6 *v6 = (struct sockaddr_in6 *)ip_in, *ptr_v6; |
518 |
#endif |
519 |
|
520 |
for (ptr = ip_hash_table[hash_index]; ptr; ptr = ptr->next) |
521 |
{ |
522 |
#ifdef IPV6 |
523 |
if (ptr->ip.ss.ss_family != ip_in->ss.ss_family) |
524 |
continue; |
525 |
if (ip_in->ss.ss_family == AF_INET6) |
526 |
{ |
527 |
ptr_v6 = (struct sockaddr_in6 *)&ptr->ip; |
528 |
res = memcmp(&v6->sin6_addr, &ptr_v6->sin6_addr, sizeof(struct in6_addr)); |
529 |
} |
530 |
else |
531 |
#endif |
532 |
{ |
533 |
ptr_v4 = (struct sockaddr_in *)&ptr->ip; |
534 |
res = memcmp(&v4->sin_addr, &ptr_v4->sin_addr, sizeof(struct in_addr)); |
535 |
} |
536 |
if (res) |
537 |
continue; |
538 |
if (ptr->count > 0) |
539 |
ptr->count--; |
540 |
if (ptr->count == 0 && |
541 |
(CurrentTime-ptr->last_attempt) >= ConfigFileEntry.throttle_time) |
542 |
{ |
543 |
if (last_ptr != NULL) |
544 |
last_ptr->next = ptr->next; |
545 |
else |
546 |
ip_hash_table[hash_index] = ptr->next; |
547 |
|
548 |
mp_pool_release(ptr); |
549 |
ip_entries_count--; |
550 |
return; |
551 |
} |
552 |
last_ptr = ptr; |
553 |
} |
554 |
} |
555 |
|
556 |
/* hash_ip() |
557 |
* |
558 |
* input - pointer to an irc_inaddr |
559 |
* output - integer value used as index into hash table |
560 |
* side effects - hopefully, none |
561 |
*/ |
562 |
static int |
563 |
hash_ip(struct irc_ssaddr *addr) |
564 |
{ |
565 |
if (addr->ss.ss_family == AF_INET) |
566 |
{ |
567 |
struct sockaddr_in *v4 = (struct sockaddr_in *)addr; |
568 |
int hash; |
569 |
uint32_t ip; |
570 |
|
571 |
ip = ntohl(v4->sin_addr.s_addr); |
572 |
hash = ((ip >> 12) + ip) & (IP_HASH_SIZE-1); |
573 |
return hash; |
574 |
} |
575 |
#ifdef IPV6 |
576 |
else |
577 |
{ |
578 |
int hash; |
579 |
struct sockaddr_in6 *v6 = (struct sockaddr_in6 *)addr; |
580 |
uint32_t *ip = (uint32_t *)&v6->sin6_addr.s6_addr; |
581 |
|
582 |
hash = ip[0] ^ ip[3]; |
583 |
hash ^= hash >> 16; |
584 |
hash ^= hash >> 8; |
585 |
hash = hash & (IP_HASH_SIZE - 1); |
586 |
return hash; |
587 |
} |
588 |
#else |
589 |
return 0; |
590 |
#endif |
591 |
} |
592 |
|
593 |
/* count_ip_hash() |
594 |
* |
595 |
* inputs - pointer to counter of number of ips hashed |
596 |
* - pointer to memory used for ip hash |
597 |
* output - returned via pointers input |
598 |
* side effects - NONE |
599 |
* |
600 |
* number of hashed ip #'s is counted up, plus the amount of memory |
601 |
* used in the hash. |
602 |
*/ |
603 |
void |
604 |
count_ip_hash(unsigned int *number_ips_stored, uint64_t *mem_ips_stored) |
605 |
{ |
606 |
struct ip_entry *ptr; |
607 |
|
608 |
*number_ips_stored = 0; |
609 |
*mem_ips_stored = 0; |
610 |
|
611 |
for (unsigned int i = 0; i < IP_HASH_SIZE; ++i) |
612 |
{ |
613 |
for (ptr = ip_hash_table[i]; ptr; ptr = ptr->next) |
614 |
{ |
615 |
*number_ips_stored += 1; |
616 |
*mem_ips_stored += sizeof(struct ip_entry); |
617 |
} |
618 |
} |
619 |
} |
620 |
|
621 |
/* garbage_collect_ip_entries() |
622 |
* |
623 |
* input - NONE |
624 |
* output - NONE |
625 |
* side effects - free up all ip entries with no connections |
626 |
*/ |
627 |
static void |
628 |
garbage_collect_ip_entries(void) |
629 |
{ |
630 |
struct ip_entry *ptr; |
631 |
struct ip_entry *last_ptr; |
632 |
struct ip_entry *next_ptr; |
633 |
|
634 |
for (unsigned int i = 0; i < IP_HASH_SIZE; ++i) |
635 |
{ |
636 |
last_ptr = NULL; |
637 |
|
638 |
for (ptr = ip_hash_table[i]; ptr; ptr = next_ptr) |
639 |
{ |
640 |
next_ptr = ptr->next; |
641 |
|
642 |
if (ptr->count == 0 && |
643 |
(CurrentTime - ptr->last_attempt) >= ConfigFileEntry.throttle_time) |
644 |
{ |
645 |
if (last_ptr != NULL) |
646 |
last_ptr->next = ptr->next; |
647 |
else |
648 |
ip_hash_table[i] = ptr->next; |
649 |
mp_pool_release(ptr); |
650 |
ip_entries_count--; |
651 |
} |
652 |
else |
653 |
last_ptr = ptr; |
654 |
} |
655 |
} |
656 |
} |
657 |
|
658 |
/* detach_conf() |
659 |
* |
660 |
* inputs - pointer to client to detach |
661 |
* - type of conf to detach |
662 |
* output - 0 for success, -1 for failure |
663 |
* side effects - Disassociate configuration from the client. |
664 |
* Also removes a class from the list if marked for deleting. |
665 |
*/ |
666 |
void |
667 |
detach_conf(struct Client *client_p, enum maskitem_type type) |
668 |
{ |
669 |
dlink_node *ptr = NULL, *ptr_next = NULL; |
670 |
|
671 |
DLINK_FOREACH_SAFE(ptr, ptr_next, client_p->localClient->confs.head) |
672 |
{ |
673 |
struct MaskItem *conf = ptr->data; |
674 |
|
675 |
assert(conf->type & (CONF_CLIENT | CONF_OPER | CONF_SERVER)); |
676 |
assert(conf->ref_count > 0); |
677 |
assert(conf->class->ref_count > 0); |
678 |
|
679 |
if (!(conf->type & type)) |
680 |
continue; |
681 |
|
682 |
dlinkDelete(ptr, &client_p->localClient->confs); |
683 |
free_dlink_node(ptr); |
684 |
|
685 |
if (conf->type == CONF_CLIENT) |
686 |
remove_from_cidr_check(&client_p->localClient->ip, conf->class); |
687 |
|
688 |
if (--conf->class->ref_count == 0 && conf->class->active == 0) |
689 |
{ |
690 |
class_free(conf->class); |
691 |
conf->class = NULL; |
692 |
} |
693 |
|
694 |
if (--conf->ref_count == 0 && conf->active == 0) |
695 |
conf_free(conf); |
696 |
} |
697 |
} |
698 |
|
699 |
/* attach_conf() |
700 |
* |
701 |
* inputs - client pointer |
702 |
* - conf pointer |
703 |
* output - |
704 |
* side effects - Associate a specific configuration entry to a *local* |
705 |
* client (this is the one which used in accepting the |
706 |
* connection). Note, that this automatically changes the |
707 |
* attachment if there was an old one... |
708 |
*/ |
709 |
int |
710 |
attach_conf(struct Client *client_p, struct MaskItem *conf) |
711 |
{ |
712 |
if (dlinkFind(&client_p->localClient->confs, conf)) |
713 |
return 1; |
714 |
|
715 |
if (conf->type == CONF_CLIENT) |
716 |
if (cidr_limit_reached(IsConfExemptLimits(conf), |
717 |
&client_p->localClient->ip, conf->class)) |
718 |
return TOO_MANY; /* Already at maximum allowed */ |
719 |
|
720 |
conf->class->ref_count++; |
721 |
conf->ref_count++; |
722 |
|
723 |
dlinkAdd(conf, make_dlink_node(), &client_p->localClient->confs); |
724 |
|
725 |
return 0; |
726 |
} |
727 |
|
728 |
/* attach_connect_block() |
729 |
* |
730 |
* inputs - pointer to server to attach |
731 |
* - name of server |
732 |
* - hostname of server |
733 |
* output - true (1) if both are found, otherwise return false (0) |
734 |
* side effects - find connect block and attach them to connecting client |
735 |
*/ |
736 |
int |
737 |
attach_connect_block(struct Client *client_p, const char *name, |
738 |
const char *host) |
739 |
{ |
740 |
dlink_node *ptr; |
741 |
struct MaskItem *conf = NULL; |
742 |
|
743 |
assert(client_p != NULL); |
744 |
assert(host != NULL); |
745 |
|
746 |
if (client_p == NULL || host == NULL) |
747 |
return 0; |
748 |
|
749 |
DLINK_FOREACH(ptr, server_items.head) |
750 |
{ |
751 |
conf = ptr->data; |
752 |
|
753 |
if (match(conf->name, name) || match(conf->host, host)) |
754 |
continue; |
755 |
|
756 |
attach_conf(client_p, conf); |
757 |
return -1; |
758 |
} |
759 |
|
760 |
return 0; |
761 |
} |
762 |
|
763 |
/* find_conf_name() |
764 |
* |
765 |
* inputs - pointer to conf link list to search |
766 |
* - pointer to name to find |
767 |
* - int mask of type of conf to find |
768 |
* output - NULL or pointer to conf found |
769 |
* side effects - find a conf entry which matches the name |
770 |
* and has the given mask. |
771 |
*/ |
772 |
struct MaskItem * |
773 |
find_conf_name(dlink_list *list, const char *name, enum maskitem_type type) |
774 |
{ |
775 |
dlink_node *ptr; |
776 |
struct MaskItem* conf; |
777 |
|
778 |
DLINK_FOREACH(ptr, list->head) |
779 |
{ |
780 |
conf = ptr->data; |
781 |
|
782 |
if (conf->type == type) |
783 |
{ |
784 |
if (conf->name && (!irccmp(conf->name, name) || |
785 |
!match(conf->name, name))) |
786 |
return conf; |
787 |
} |
788 |
} |
789 |
|
790 |
return NULL; |
791 |
} |
792 |
|
793 |
/* map_to_list() |
794 |
* |
795 |
* inputs - ConfType conf |
796 |
* output - pointer to dlink_list to use |
797 |
* side effects - none |
798 |
*/ |
799 |
static dlink_list * |
800 |
map_to_list(enum maskitem_type type) |
801 |
{ |
802 |
switch(type) |
803 |
{ |
804 |
case CONF_XLINE: |
805 |
return(&xconf_items); |
806 |
break; |
807 |
case CONF_ULINE: |
808 |
return(&uconf_items); |
809 |
break; |
810 |
case CONF_NRESV: |
811 |
return(&nresv_items); |
812 |
break; |
813 |
case CONF_CRESV: |
814 |
return(&cresv_items); |
815 |
case CONF_OPER: |
816 |
return(&oconf_items); |
817 |
break; |
818 |
case CONF_SERVER: |
819 |
return(&server_items); |
820 |
break; |
821 |
case CONF_SERVICE: |
822 |
return(&service_items); |
823 |
break; |
824 |
case CONF_CLUSTER: |
825 |
return(&cluster_items); |
826 |
break; |
827 |
default: |
828 |
return NULL; |
829 |
} |
830 |
} |
831 |
|
832 |
/* find_matching_name_conf() |
833 |
* |
834 |
* inputs - type of link list to look in |
835 |
* - pointer to name string to find |
836 |
* - pointer to user |
837 |
* - pointer to host |
838 |
* - optional flags to match on as well |
839 |
* output - NULL or pointer to found struct MaskItem |
840 |
* side effects - looks for a match on name field |
841 |
*/ |
842 |
struct MaskItem * |
843 |
find_matching_name_conf(enum maskitem_type type, const char *name, const char *user, |
844 |
const char *host, unsigned int flags) |
845 |
{ |
846 |
dlink_node *ptr=NULL; |
847 |
struct MaskItem *conf=NULL; |
848 |
dlink_list *list_p = map_to_list(type); |
849 |
|
850 |
switch (type) |
851 |
{ |
852 |
case CONF_SERVICE: |
853 |
DLINK_FOREACH(ptr, list_p->head) |
854 |
{ |
855 |
conf = ptr->data; |
856 |
|
857 |
if (EmptyString(conf->name)) |
858 |
continue; |
859 |
if ((name != NULL) && !irccmp(name, conf->name)) |
860 |
return conf; |
861 |
} |
862 |
break; |
863 |
|
864 |
case CONF_XLINE: |
865 |
case CONF_ULINE: |
866 |
case CONF_NRESV: |
867 |
case CONF_CRESV: |
868 |
DLINK_FOREACH(ptr, list_p->head) |
869 |
{ |
870 |
conf = ptr->data; |
871 |
|
872 |
if (EmptyString(conf->name)) |
873 |
continue; |
874 |
if ((name != NULL) && !match(conf->name, name)) |
875 |
{ |
876 |
if ((user == NULL && (host == NULL))) |
877 |
return conf; |
878 |
if ((conf->flags & flags) != flags) |
879 |
continue; |
880 |
if (EmptyString(conf->user) || EmptyString(conf->host)) |
881 |
return conf; |
882 |
if (!match(conf->user, user) && !match(conf->host, host)) |
883 |
return conf; |
884 |
} |
885 |
} |
886 |
break; |
887 |
|
888 |
case CONF_SERVER: |
889 |
DLINK_FOREACH(ptr, list_p->head) |
890 |
{ |
891 |
conf = ptr->data; |
892 |
|
893 |
if ((name != NULL) && !match(name, conf->name)) |
894 |
return conf; |
895 |
else if ((host != NULL) && !match(host, conf->host)) |
896 |
return conf; |
897 |
} |
898 |
break; |
899 |
|
900 |
default: |
901 |
break; |
902 |
} |
903 |
return NULL; |
904 |
} |
905 |
|
906 |
/* find_exact_name_conf() |
907 |
* |
908 |
* inputs - type of link list to look in |
909 |
* - pointer to name string to find |
910 |
* - pointer to user |
911 |
* - pointer to host |
912 |
* output - NULL or pointer to found struct MaskItem |
913 |
* side effects - looks for an exact match on name field |
914 |
*/ |
915 |
struct MaskItem * |
916 |
find_exact_name_conf(enum maskitem_type type, const struct Client *who, const char *name, |
917 |
const char *user, const char *host) |
918 |
{ |
919 |
dlink_node *ptr = NULL; |
920 |
struct MaskItem *conf; |
921 |
dlink_list *list_p = map_to_list(type); |
922 |
|
923 |
switch(type) |
924 |
{ |
925 |
case CONF_XLINE: |
926 |
case CONF_ULINE: |
927 |
case CONF_NRESV: |
928 |
case CONF_CRESV: |
929 |
|
930 |
DLINK_FOREACH(ptr, list_p->head) |
931 |
{ |
932 |
conf = ptr->data; |
933 |
|
934 |
if (EmptyString(conf->name)) |
935 |
continue; |
936 |
|
937 |
if (irccmp(conf->name, name) == 0) |
938 |
{ |
939 |
if ((user == NULL && (host == NULL))) |
940 |
return conf; |
941 |
if (EmptyString(conf->user) || EmptyString(conf->host)) |
942 |
return conf; |
943 |
if (!match(conf->user, user) && !match(conf->host, host)) |
944 |
return conf; |
945 |
} |
946 |
} |
947 |
break; |
948 |
|
949 |
case CONF_OPER: |
950 |
DLINK_FOREACH(ptr, list_p->head) |
951 |
{ |
952 |
conf = ptr->data; |
953 |
|
954 |
if (EmptyString(conf->name)) |
955 |
continue; |
956 |
|
957 |
if (!irccmp(conf->name, name)) |
958 |
{ |
959 |
if (!who) |
960 |
return conf; |
961 |
if (EmptyString(conf->user) || EmptyString(conf->host)) |
962 |
return NULL; |
963 |
if (!match(conf->user, who->username)) |
964 |
{ |
965 |
switch (conf->htype) |
966 |
{ |
967 |
case HM_HOST: |
968 |
if (!match(conf->host, who->host) || !match(conf->host, who->sockhost)) |
969 |
if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total) |
970 |
return conf; |
971 |
break; |
972 |
case HM_IPV4: |
973 |
if (who->localClient->aftype == AF_INET) |
974 |
if (match_ipv4(&who->localClient->ip, &conf->addr, conf->bits)) |
975 |
if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total) |
976 |
return conf; |
977 |
break; |
978 |
#ifdef IPV6 |
979 |
case HM_IPV6: |
980 |
if (who->localClient->aftype == AF_INET6) |
981 |
if (match_ipv6(&who->localClient->ip, &conf->addr, conf->bits)) |
982 |
if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total) |
983 |
return conf; |
984 |
break; |
985 |
#endif |
986 |
default: |
987 |
assert(0); |
988 |
} |
989 |
} |
990 |
} |
991 |
} |
992 |
|
993 |
break; |
994 |
|
995 |
case CONF_SERVER: |
996 |
DLINK_FOREACH(ptr, list_p->head) |
997 |
{ |
998 |
conf = ptr->data; |
999 |
|
1000 |
if (EmptyString(conf->name)) |
1001 |
continue; |
1002 |
|
1003 |
if (name == NULL) |
1004 |
{ |
1005 |
if (EmptyString(conf->host)) |
1006 |
continue; |
1007 |
if (irccmp(conf->host, host) == 0) |
1008 |
return conf; |
1009 |
} |
1010 |
else if (irccmp(conf->name, name) == 0) |
1011 |
return conf; |
1012 |
} |
1013 |
|
1014 |
break; |
1015 |
|
1016 |
default: |
1017 |
break; |
1018 |
} |
1019 |
|
1020 |
return NULL; |
1021 |
} |
1022 |
|
1023 |
/* rehash() |
1024 |
* |
1025 |
* Actual REHASH service routine. Called with sig == 0 if it has been called |
1026 |
* as a result of an operator issuing this command, else assume it has been |
1027 |
* called as a result of the server receiving a HUP signal. |
1028 |
*/ |
1029 |
int |
1030 |
rehash(int sig) |
1031 |
{ |
1032 |
if (sig) |
1033 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1034 |
"Got signal SIGHUP, reloading configuration file(s)"); |
1035 |
|
1036 |
restart_resolver(); |
1037 |
|
1038 |
/* don't close listeners until we know we can go ahead with the rehash */ |
1039 |
|
1040 |
/* Check to see if we magically got(or lost) IPv6 support */ |
1041 |
check_can_use_v6(); |
1042 |
|
1043 |
read_conf_files(0); |
1044 |
|
1045 |
if (ServerInfo.description) |
1046 |
strlcpy(me.info, ServerInfo.description, sizeof(me.info)); |
1047 |
|
1048 |
load_conf_modules(); |
1049 |
|
1050 |
rehashed_klines = 1; |
1051 |
|
1052 |
return 0; |
1053 |
} |
1054 |
|
1055 |
/* set_default_conf() |
1056 |
* |
1057 |
* inputs - NONE |
1058 |
* output - NONE |
1059 |
* side effects - Set default values here. |
1060 |
* This is called **PRIOR** to parsing the |
1061 |
* configuration file. If you want to do some validation |
1062 |
* of values later, put them in validate_conf(). |
1063 |
*/ |
1064 |
static void |
1065 |
set_default_conf(void) |
1066 |
{ |
1067 |
/* verify init_class() ran, this should be an unnecessary check |
1068 |
* but its not much work. |
1069 |
*/ |
1070 |
assert(class_default == class_get_list()->tail->data); |
1071 |
|
1072 |
#ifdef HAVE_LIBCRYPTO |
1073 |
ServerInfo.rsa_private_key = NULL; |
1074 |
ServerInfo.rsa_private_key_file = NULL; |
1075 |
#endif |
1076 |
|
1077 |
/* ServerInfo.name is not rehashable */ |
1078 |
/* ServerInfo.name = ServerInfo.name; */ |
1079 |
ServerInfo.description = NULL; |
1080 |
ServerInfo.network_name = xstrdup(NETWORK_NAME_DEFAULT); |
1081 |
ServerInfo.network_desc = xstrdup(NETWORK_DESC_DEFAULT); |
1082 |
|
1083 |
memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip)); |
1084 |
ServerInfo.specific_ipv4_vhost = 0; |
1085 |
memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6)); |
1086 |
ServerInfo.specific_ipv6_vhost = 0; |
1087 |
|
1088 |
ServerInfo.max_clients = MAXCLIENTS_MAX; |
1089 |
ServerInfo.max_nick_length = 9; |
1090 |
ServerInfo.max_topic_length = 80; |
1091 |
|
1092 |
ServerInfo.hub = 0; |
1093 |
ServerInfo.dns_host.sin_addr.s_addr = 0; |
1094 |
ServerInfo.dns_host.sin_port = 0; |
1095 |
AdminInfo.name = NULL; |
1096 |
AdminInfo.email = NULL; |
1097 |
AdminInfo.description = NULL; |
1098 |
|
1099 |
log_del_all(); |
1100 |
|
1101 |
ConfigLoggingEntry.use_logging = 1; |
1102 |
|
1103 |
ConfigChannel.disable_fake_channels = 0; |
1104 |
|
1105 |
ConfigChannel.invite_delay = 300; |
1106 |
ConfigChannel.invite_delay_channel = 60; |
1107 |
ConfigChannel.knock_delay = 300; |
1108 |
ConfigChannel.knock_delay_channel = 60; |
1109 |
ConfigChannel.max_chans_per_user = 25; |
1110 |
ConfigChannel.max_chans_per_oper = 50; |
1111 |
ConfigChannel.max_bans = 25; |
1112 |
ConfigChannel.default_split_user_count = 0; |
1113 |
ConfigChannel.default_split_server_count = 0; |
1114 |
ConfigChannel.no_join_on_split = 0; |
1115 |
ConfigChannel.no_create_on_split = 0; |
1116 |
|
1117 |
ConfigServerHide.flatten_links = 0; |
1118 |
ConfigServerHide.links_delay = 300; |
1119 |
ConfigServerHide.hidden = 0; |
1120 |
ConfigServerHide.hide_servers = 0; |
1121 |
ConfigServerHide.hide_services = 0; |
1122 |
ConfigServerHide.hidden_name = xstrdup(NETWORK_NAME_DEFAULT); |
1123 |
ConfigServerHide.hide_server_ips = 0; |
1124 |
ConfigServerHide.disable_remote_commands = 0; |
1125 |
|
1126 |
ConfigFileEntry.service_name = xstrdup(SERVICE_NAME_DEFAULT); |
1127 |
ConfigFileEntry.max_watch = WATCHSIZE_DEFAULT; |
1128 |
ConfigFileEntry.cycle_on_host_change = 1; |
1129 |
ConfigFileEntry.glines = 0; |
1130 |
ConfigFileEntry.gline_time = 12 * 3600; |
1131 |
ConfigFileEntry.gline_request_time = GLINE_REQUEST_EXPIRE_DEFAULT; |
1132 |
ConfigFileEntry.gline_min_cidr = 16; |
1133 |
ConfigFileEntry.gline_min_cidr6 = 48; |
1134 |
ConfigFileEntry.invisible_on_connect = 1; |
1135 |
ConfigFileEntry.tkline_expire_notices = 1; |
1136 |
ConfigFileEntry.hide_spoof_ips = 1; |
1137 |
ConfigFileEntry.ignore_bogus_ts = 0; |
1138 |
ConfigFileEntry.disable_auth = 0; |
1139 |
ConfigFileEntry.kill_chase_time_limit = 90; |
1140 |
ConfigFileEntry.default_floodcount = 8; |
1141 |
ConfigFileEntry.failed_oper_notice = 1; |
1142 |
ConfigFileEntry.dots_in_ident = 0; |
1143 |
ConfigFileEntry.min_nonwildcard = 4; |
1144 |
ConfigFileEntry.min_nonwildcard_simple = 3; |
1145 |
ConfigFileEntry.max_accept = 20; |
1146 |
ConfigFileEntry.anti_nick_flood = 0; |
1147 |
ConfigFileEntry.max_nick_time = 20; |
1148 |
ConfigFileEntry.max_nick_changes = 5; |
1149 |
ConfigFileEntry.anti_spam_exit_message_time = 0; |
1150 |
ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT; |
1151 |
ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT; |
1152 |
ConfigFileEntry.warn_no_connect_block = 1; |
1153 |
ConfigFileEntry.stats_e_disabled = 0; |
1154 |
ConfigFileEntry.stats_o_oper_only = 0; |
1155 |
ConfigFileEntry.stats_k_oper_only = 1; /* 1 = masked */ |
1156 |
ConfigFileEntry.stats_i_oper_only = 1; /* 1 = masked */ |
1157 |
ConfigFileEntry.stats_P_oper_only = 0; |
1158 |
ConfigFileEntry.stats_u_oper_only = 0; |
1159 |
ConfigFileEntry.caller_id_wait = 60; |
1160 |
ConfigFileEntry.opers_bypass_callerid = 0; |
1161 |
ConfigFileEntry.pace_wait = 10; |
1162 |
ConfigFileEntry.pace_wait_simple = 1; |
1163 |
ConfigFileEntry.short_motd = 0; |
1164 |
ConfigFileEntry.ping_cookie = 0; |
1165 |
ConfigFileEntry.no_oper_flood = 0; |
1166 |
ConfigFileEntry.true_no_oper_flood = 0; |
1167 |
ConfigFileEntry.oper_pass_resv = 1; |
1168 |
ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT; |
1169 |
ConfigFileEntry.oper_only_umodes = UMODE_DEBUG; |
1170 |
ConfigFileEntry.oper_umodes = UMODE_BOTS | UMODE_LOCOPS | UMODE_SERVNOTICE | |
1171 |
UMODE_OPERWALL | UMODE_WALLOP; |
1172 |
ConfigFileEntry.use_egd = 0; |
1173 |
ConfigFileEntry.egdpool_path = NULL; |
1174 |
ConfigFileEntry.throttle_time = 10; |
1175 |
} |
1176 |
|
1177 |
static void |
1178 |
validate_conf(void) |
1179 |
{ |
1180 |
if (ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN) |
1181 |
ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT; |
1182 |
|
1183 |
if (ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN) |
1184 |
ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT; |
1185 |
|
1186 |
if (ServerInfo.network_name == NULL) |
1187 |
ServerInfo.network_name = xstrdup(NETWORK_NAME_DEFAULT); |
1188 |
|
1189 |
if (ServerInfo.network_desc == NULL) |
1190 |
ServerInfo.network_desc = xstrdup(NETWORK_DESC_DEFAULT); |
1191 |
|
1192 |
if (ConfigFileEntry.service_name == NULL) |
1193 |
ConfigFileEntry.service_name = xstrdup(SERVICE_NAME_DEFAULT); |
1194 |
|
1195 |
ConfigFileEntry.max_watch = IRCD_MAX(ConfigFileEntry.max_watch, WATCHSIZE_MIN); |
1196 |
} |
1197 |
|
1198 |
/* read_conf() |
1199 |
* |
1200 |
* inputs - file descriptor pointing to config file to use |
1201 |
* output - None |
1202 |
* side effects - Read configuration file. |
1203 |
*/ |
1204 |
static void |
1205 |
read_conf(FILE *file) |
1206 |
{ |
1207 |
lineno = 0; |
1208 |
|
1209 |
set_default_conf(); /* Set default values prior to conf parsing */ |
1210 |
conf_parser_ctx.pass = 1; |
1211 |
yyparse(); /* Pick up the classes first */ |
1212 |
|
1213 |
rewind(file); |
1214 |
|
1215 |
conf_parser_ctx.pass = 2; |
1216 |
yyparse(); /* Load the values from the conf */ |
1217 |
validate_conf(); /* Check to make sure some values are still okay. */ |
1218 |
/* Some global values are also loaded here. */ |
1219 |
class_delete_marked(); /* Delete unused classes that are marked for deletion */ |
1220 |
} |
1221 |
|
1222 |
/* lookup_confhost() |
1223 |
* |
1224 |
* start DNS lookups of all hostnames in the conf |
1225 |
* line and convert an IP addresses in a.b.c.d number for to IP#s. |
1226 |
*/ |
1227 |
void |
1228 |
lookup_confhost(struct MaskItem *conf) |
1229 |
{ |
1230 |
struct addrinfo hints, *res; |
1231 |
|
1232 |
/* |
1233 |
* Do name lookup now on hostnames given and store the |
1234 |
* ip numbers in conf structure. |
1235 |
*/ |
1236 |
memset(&hints, 0, sizeof(hints)); |
1237 |
|
1238 |
hints.ai_family = AF_UNSPEC; |
1239 |
hints.ai_socktype = SOCK_STREAM; |
1240 |
|
1241 |
/* Get us ready for a bind() and don't bother doing dns lookup */ |
1242 |
hints.ai_flags = AI_PASSIVE | AI_NUMERICHOST; |
1243 |
|
1244 |
if (getaddrinfo(conf->host, NULL, &hints, &res)) |
1245 |
{ |
1246 |
conf_dns_lookup(conf); |
1247 |
return; |
1248 |
} |
1249 |
|
1250 |
assert(res); |
1251 |
|
1252 |
memcpy(&conf->addr, res->ai_addr, res->ai_addrlen); |
1253 |
conf->addr.ss_len = res->ai_addrlen; |
1254 |
conf->addr.ss.ss_family = res->ai_family; |
1255 |
|
1256 |
freeaddrinfo(res); |
1257 |
} |
1258 |
|
1259 |
/* conf_connect_allowed() |
1260 |
* |
1261 |
* inputs - pointer to inaddr |
1262 |
* - int type ipv4 or ipv6 |
1263 |
* output - BANNED or accepted |
1264 |
* side effects - none |
1265 |
*/ |
1266 |
int |
1267 |
conf_connect_allowed(struct irc_ssaddr *addr, int aftype) |
1268 |
{ |
1269 |
struct ip_entry *ip_found; |
1270 |
struct MaskItem *conf = find_dline_conf(addr, aftype); |
1271 |
|
1272 |
/* DLINE exempt also gets you out of static limits/pacing... */ |
1273 |
if (conf && (conf->type == CONF_EXEMPT)) |
1274 |
return 0; |
1275 |
|
1276 |
if (conf) |
1277 |
return BANNED_CLIENT; |
1278 |
|
1279 |
ip_found = find_or_add_ip(addr); |
1280 |
|
1281 |
if ((CurrentTime - ip_found->last_attempt) < |
1282 |
ConfigFileEntry.throttle_time) |
1283 |
{ |
1284 |
ip_found->last_attempt = CurrentTime; |
1285 |
return TOO_FAST; |
1286 |
} |
1287 |
|
1288 |
ip_found->last_attempt = CurrentTime; |
1289 |
return 0; |
1290 |
} |
1291 |
|
1292 |
/* cleanup_tklines() |
1293 |
* |
1294 |
* inputs - NONE |
1295 |
* output - NONE |
1296 |
* side effects - call function to expire temporary k/d lines |
1297 |
* This is an event started off in ircd.c |
1298 |
*/ |
1299 |
void |
1300 |
cleanup_tklines(void *notused) |
1301 |
{ |
1302 |
hostmask_expire_temporary(); |
1303 |
expire_tklines(&xconf_items); |
1304 |
expire_tklines(&nresv_items); |
1305 |
expire_tklines(&cresv_items); |
1306 |
} |
1307 |
|
1308 |
/* expire_tklines() |
1309 |
* |
1310 |
* inputs - tkline list pointer |
1311 |
* output - NONE |
1312 |
* side effects - expire tklines |
1313 |
*/ |
1314 |
static void |
1315 |
expire_tklines(dlink_list *tklist) |
1316 |
{ |
1317 |
dlink_node *ptr = NULL, *ptr_next = NULL; |
1318 |
struct MaskItem *conf = NULL; |
1319 |
|
1320 |
DLINK_FOREACH_SAFE(ptr, ptr_next, tklist->head) |
1321 |
{ |
1322 |
conf = ptr->data; |
1323 |
|
1324 |
if (!conf->until || conf->until > CurrentTime) |
1325 |
continue; |
1326 |
|
1327 |
if (conf->type == CONF_XLINE) |
1328 |
{ |
1329 |
if (ConfigFileEntry.tkline_expire_notices) |
1330 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1331 |
"Temporary X-line for [%s] expired", conf->name); |
1332 |
conf_free(conf); |
1333 |
} |
1334 |
else if (conf->type == CONF_NRESV || conf->type == CONF_CRESV) |
1335 |
{ |
1336 |
if (ConfigFileEntry.tkline_expire_notices) |
1337 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1338 |
"Temporary RESV for [%s] expired", conf->name); |
1339 |
conf_free(conf); |
1340 |
} |
1341 |
} |
1342 |
} |
1343 |
|
1344 |
/* oper_privs_as_string() |
1345 |
* |
1346 |
* inputs - pointer to client_p |
1347 |
* output - pointer to static string showing oper privs |
1348 |
* side effects - return as string, the oper privs as derived from port |
1349 |
*/ |
1350 |
static const struct oper_privs |
1351 |
{ |
1352 |
const unsigned int flag; |
1353 |
const unsigned char c; |
1354 |
} flag_list[] = { |
1355 |
{ OPER_FLAG_ADMIN, 'A' }, |
1356 |
{ OPER_FLAG_REMOTEBAN, 'B' }, |
1357 |
{ OPER_FLAG_DIE, 'D' }, |
1358 |
{ OPER_FLAG_GLINE, 'G' }, |
1359 |
{ OPER_FLAG_REHASH, 'H' }, |
1360 |
{ OPER_FLAG_K, 'K' }, |
1361 |
{ OPER_FLAG_OPERWALL, 'L' }, |
1362 |
{ OPER_FLAG_KILL, 'N' }, |
1363 |
{ OPER_FLAG_KILL_REMOTE, 'O' }, |
1364 |
{ OPER_FLAG_CONNECT, 'P' }, |
1365 |
{ OPER_FLAG_CONNECT_REMOTE, 'Q' }, |
1366 |
{ OPER_FLAG_SQUIT, 'R' }, |
1367 |
{ OPER_FLAG_SQUIT_REMOTE, 'S' }, |
1368 |
{ OPER_FLAG_UNKLINE, 'U' }, |
1369 |
{ OPER_FLAG_XLINE, 'X' }, |
1370 |
{ 0, '\0' } |
1371 |
}; |
1372 |
|
1373 |
char * |
1374 |
oper_privs_as_string(const unsigned int port) |
1375 |
{ |
1376 |
static char privs_out[IRCD_BUFSIZE]; |
1377 |
char *privs_ptr = privs_out; |
1378 |
|
1379 |
for (const struct oper_privs *opriv = flag_list; opriv->flag; ++opriv) |
1380 |
{ |
1381 |
if (port & opriv->flag) |
1382 |
*privs_ptr++ = opriv->c; |
1383 |
else |
1384 |
*privs_ptr++ = ToLower(opriv->c); |
1385 |
} |
1386 |
|
1387 |
*privs_ptr = '\0'; |
1388 |
|
1389 |
return privs_out; |
1390 |
} |
1391 |
|
1392 |
/* |
1393 |
* Input: A client to find the active oper{} name for. |
1394 |
* Output: The nick!user@host{oper} of the oper. |
1395 |
* "oper" is server name for remote opers |
1396 |
* Side effects: None. |
1397 |
*/ |
1398 |
const char * |
1399 |
get_oper_name(const struct Client *client_p) |
1400 |
{ |
1401 |
const dlink_node *cnode = NULL; |
1402 |
/* +5 for !,@,{,} and null */ |
1403 |
static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5]; |
1404 |
|
1405 |
if (MyConnect(client_p)) |
1406 |
{ |
1407 |
if ((cnode = client_p->localClient->confs.head)) |
1408 |
{ |
1409 |
const struct MaskItem *conf = cnode->data; |
1410 |
|
1411 |
if (IsConfOperator(conf)) |
1412 |
{ |
1413 |
snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", client_p->name, |
1414 |
client_p->username, client_p->host, conf->name); |
1415 |
return buffer; |
1416 |
} |
1417 |
} |
1418 |
|
1419 |
/* Probably should assert here for now. If there is an oper out there |
1420 |
* with no oper{} conf attached, it would be good for us to know... |
1421 |
*/ |
1422 |
assert(0); /* Oper without oper conf! */ |
1423 |
} |
1424 |
|
1425 |
snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", client_p->name, |
1426 |
client_p->username, client_p->host, client_p->servptr->name); |
1427 |
return buffer; |
1428 |
} |
1429 |
|
1430 |
/* read_conf_files() |
1431 |
* |
1432 |
* inputs - cold start YES or NO |
1433 |
* output - none |
1434 |
* side effects - read all conf files needed, ircd.conf kline.conf etc. |
1435 |
*/ |
1436 |
void |
1437 |
read_conf_files(int cold) |
1438 |
{ |
1439 |
const char *filename = NULL; |
1440 |
char chanmodes[IRCD_BUFSIZE] = ""; |
1441 |
char chanlimit[IRCD_BUFSIZE] = ""; |
1442 |
|
1443 |
conf_parser_ctx.boot = cold; |
1444 |
filename = ConfigFileEntry.configfile; |
1445 |
|
1446 |
/* We need to know the initial filename for the yyerror() to report |
1447 |
FIXME: The full path is in conffilenamebuf first time since we |
1448 |
dont know anything else |
1449 |
|
1450 |
- Gozem 2002-07-21 |
1451 |
*/ |
1452 |
strlcpy(conffilebuf, filename, sizeof(conffilebuf)); |
1453 |
|
1454 |
if ((conf_parser_ctx.conf_file = fopen(filename, "r")) == NULL) |
1455 |
{ |
1456 |
if (cold) |
1457 |
{ |
1458 |
ilog(LOG_TYPE_IRCD, "Unable to read configuration file '%s': %s", |
1459 |
filename, strerror(errno)); |
1460 |
exit(-1); |
1461 |
} |
1462 |
else |
1463 |
{ |
1464 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1465 |
"Unable to read configuration file '%s': %s", |
1466 |
filename, strerror(errno)); |
1467 |
return; |
1468 |
} |
1469 |
} |
1470 |
|
1471 |
if (!cold) |
1472 |
clear_out_old_conf(); |
1473 |
|
1474 |
read_conf(conf_parser_ctx.conf_file); |
1475 |
fclose(conf_parser_ctx.conf_file); |
1476 |
|
1477 |
log_reopen_all(); |
1478 |
|
1479 |
add_isupport("NICKLEN", NULL, ServerInfo.max_nick_length); |
1480 |
add_isupport("NETWORK", ServerInfo.network_name, -1); |
1481 |
|
1482 |
snprintf(chanmodes, sizeof(chanmodes), "beI:%d", ConfigChannel.max_bans); |
1483 |
add_isupport("MAXLIST", chanmodes, -1); |
1484 |
add_isupport("MAXTARGETS", NULL, ConfigFileEntry.max_targets); |
1485 |
add_isupport("CHANTYPES", "#", -1); |
1486 |
|
1487 |
snprintf(chanlimit, sizeof(chanlimit), "#:%d", |
1488 |
ConfigChannel.max_chans_per_user); |
1489 |
add_isupport("CHANLIMIT", chanlimit, -1); |
1490 |
snprintf(chanmodes, sizeof(chanmodes), "%s", "beI,k,l,imnprstORS"); |
1491 |
add_isupport("CHANNELLEN", NULL, CHANNELLEN); |
1492 |
add_isupport("TOPICLEN", NULL, ServerInfo.max_topic_length); |
1493 |
add_isupport("CHANMODES", chanmodes, -1); |
1494 |
|
1495 |
/* |
1496 |
* message_locale may have changed. rebuild isupport since it relies |
1497 |
* on strlen(form_str(RPL_ISUPPORT)) |
1498 |
*/ |
1499 |
rebuild_isupport_message_line(); |
1500 |
} |
1501 |
|
1502 |
/* clear_out_old_conf() |
1503 |
* |
1504 |
* inputs - none |
1505 |
* output - none |
1506 |
* side effects - Clear out the old configuration |
1507 |
*/ |
1508 |
static void |
1509 |
clear_out_old_conf(void) |
1510 |
{ |
1511 |
dlink_node *ptr = NULL, *next_ptr = NULL; |
1512 |
struct MaskItem *conf; |
1513 |
dlink_list *free_items [] = { |
1514 |
&server_items, &oconf_items, |
1515 |
&uconf_items, &xconf_items, |
1516 |
&nresv_items, &cluster_items, &service_items, &cresv_items, NULL |
1517 |
}; |
1518 |
|
1519 |
dlink_list ** iterator = free_items; /* C is dumb */ |
1520 |
|
1521 |
/* We only need to free anything allocated by yyparse() here. |
1522 |
* Resetting structs, etc, is taken care of by set_default_conf(). |
1523 |
*/ |
1524 |
|
1525 |
for (; *iterator != NULL; iterator++) |
1526 |
{ |
1527 |
DLINK_FOREACH_SAFE(ptr, next_ptr, (*iterator)->head) |
1528 |
{ |
1529 |
conf = ptr->data; |
1530 |
|
1531 |
dlinkDelete(&conf->node, map_to_list(conf->type)); |
1532 |
|
1533 |
/* XXX This is less than pretty */ |
1534 |
if (conf->type == CONF_SERVER || conf->type == CONF_OPER) |
1535 |
{ |
1536 |
if (!conf->ref_count) |
1537 |
conf_free(conf); |
1538 |
} |
1539 |
else if (conf->type == CONF_XLINE) |
1540 |
{ |
1541 |
if (!conf->until) |
1542 |
conf_free(conf); |
1543 |
} |
1544 |
else |
1545 |
conf_free(conf); |
1546 |
} |
1547 |
} |
1548 |
|
1549 |
motd_clear(); |
1550 |
|
1551 |
/* |
1552 |
* don't delete the class table, rather mark all entries |
1553 |
* for deletion. The table is cleaned up by class_delete_marked. - avalon |
1554 |
*/ |
1555 |
class_mark_for_deletion(); |
1556 |
|
1557 |
clear_out_address_conf(); |
1558 |
|
1559 |
/* clean out module paths */ |
1560 |
mod_clear_paths(); |
1561 |
|
1562 |
/* clean out ServerInfo */ |
1563 |
MyFree(ServerInfo.description); |
1564 |
ServerInfo.description = NULL; |
1565 |
MyFree(ServerInfo.network_name); |
1566 |
ServerInfo.network_name = NULL; |
1567 |
MyFree(ServerInfo.network_desc); |
1568 |
ServerInfo.network_desc = NULL; |
1569 |
MyFree(ConfigFileEntry.egdpool_path); |
1570 |
ConfigFileEntry.egdpool_path = NULL; |
1571 |
#ifdef HAVE_LIBCRYPTO |
1572 |
if (ServerInfo.rsa_private_key) |
1573 |
{ |
1574 |
RSA_free(ServerInfo.rsa_private_key); |
1575 |
ServerInfo.rsa_private_key = NULL; |
1576 |
} |
1577 |
|
1578 |
MyFree(ServerInfo.rsa_private_key_file); |
1579 |
ServerInfo.rsa_private_key_file = NULL; |
1580 |
|
1581 |
if (ServerInfo.server_ctx) |
1582 |
SSL_CTX_set_options(ServerInfo.server_ctx, SSL_OP_NO_SSLv2| |
1583 |
SSL_OP_NO_SSLv3| |
1584 |
SSL_OP_NO_TLSv1); |
1585 |
if (ServerInfo.client_ctx) |
1586 |
SSL_CTX_set_options(ServerInfo.client_ctx, SSL_OP_NO_SSLv2| |
1587 |
SSL_OP_NO_SSLv3| |
1588 |
SSL_OP_NO_TLSv1); |
1589 |
#endif |
1590 |
|
1591 |
/* clean out AdminInfo */ |
1592 |
MyFree(AdminInfo.name); |
1593 |
AdminInfo.name = NULL; |
1594 |
MyFree(AdminInfo.email); |
1595 |
AdminInfo.email = NULL; |
1596 |
MyFree(AdminInfo.description); |
1597 |
AdminInfo.description = NULL; |
1598 |
|
1599 |
/* clean out listeners */ |
1600 |
close_listeners(); |
1601 |
|
1602 |
/* clean out general */ |
1603 |
MyFree(ConfigFileEntry.service_name); |
1604 |
ConfigFileEntry.service_name = NULL; |
1605 |
} |
1606 |
|
1607 |
/* conf_add_class_to_conf() |
1608 |
* |
1609 |
* inputs - pointer to config item |
1610 |
* output - NONE |
1611 |
* side effects - Add a class pointer to a conf |
1612 |
*/ |
1613 |
void |
1614 |
conf_add_class_to_conf(struct MaskItem *conf, const char *class_name) |
1615 |
{ |
1616 |
if (class_name == NULL) |
1617 |
{ |
1618 |
conf->class = class_default; |
1619 |
|
1620 |
if (conf->type == CONF_CLIENT) |
1621 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1622 |
"Warning *** Defaulting to default class for %s@%s", |
1623 |
conf->user, conf->host); |
1624 |
else |
1625 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1626 |
"Warning *** Defaulting to default class for %s", |
1627 |
conf->name); |
1628 |
} |
1629 |
else |
1630 |
conf->class = class_find(class_name, 1); |
1631 |
|
1632 |
if (conf->class == NULL) |
1633 |
{ |
1634 |
if (conf->type == CONF_CLIENT) |
1635 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1636 |
"Warning *** Defaulting to default class for %s@%s", |
1637 |
conf->user, conf->host); |
1638 |
else |
1639 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1640 |
"Warning *** Defaulting to default class for %s", |
1641 |
conf->name); |
1642 |
conf->class = class_default; |
1643 |
} |
1644 |
} |
1645 |
|
1646 |
/* yyerror() |
1647 |
* |
1648 |
* inputs - message from parser |
1649 |
* output - NONE |
1650 |
* side effects - message to opers and log file entry is made |
1651 |
*/ |
1652 |
void |
1653 |
yyerror(const char *msg) |
1654 |
{ |
1655 |
char newlinebuf[IRCD_BUFSIZE]; |
1656 |
|
1657 |
if (conf_parser_ctx.pass != 1) |
1658 |
return; |
1659 |
|
1660 |
strip_tabs(newlinebuf, linebuf, sizeof(newlinebuf)); |
1661 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1662 |
"\"%s\", line %u: %s: %s", |
1663 |
conffilebuf, lineno + 1, msg, newlinebuf); |
1664 |
ilog(LOG_TYPE_IRCD, "\"%s\", line %u: %s: %s", |
1665 |
conffilebuf, lineno + 1, msg, newlinebuf); |
1666 |
} |
1667 |
|
1668 |
void |
1669 |
conf_error_report(const char *msg) |
1670 |
{ |
1671 |
char newlinebuf[IRCD_BUFSIZE]; |
1672 |
|
1673 |
strip_tabs(newlinebuf, linebuf, sizeof(newlinebuf)); |
1674 |
sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE, |
1675 |
"\"%s\", line %u: %s: %s", |
1676 |
conffilebuf, lineno + 1, msg, newlinebuf); |
1677 |
ilog(LOG_TYPE_IRCD, "\"%s\", line %u: %s: %s", |
1678 |
conffilebuf, lineno + 1, msg, newlinebuf); |
1679 |
} |
1680 |
|
1681 |
/* |
1682 |
* valid_tkline() |
1683 |
* |
1684 |
* inputs - pointer to ascii string to check |
1685 |
* - whether the specified time is in seconds or minutes |
1686 |
* output - -1 not enough parameters |
1687 |
* - 0 if not an integer number, else the number |
1688 |
* side effects - none |
1689 |
* Originally written by Dianora (Diane, db@db.net) |
1690 |
*/ |
1691 |
time_t |
1692 |
valid_tkline(const char *data, const int minutes) |
1693 |
{ |
1694 |
const unsigned char *p = (const unsigned char *)data; |
1695 |
unsigned char tmpch = '\0'; |
1696 |
time_t result = 0; |
1697 |
|
1698 |
while ((tmpch = *p++)) |
1699 |
{ |
1700 |
if (!IsDigit(tmpch)) |
1701 |
return 0; |
1702 |
|
1703 |
result *= 10; |
1704 |
result += (tmpch & 0xF); |
1705 |
} |
1706 |
|
1707 |
/* |
1708 |
* In the degenerate case where oper does a /quote kline 0 user@host :reason |
1709 |
* i.e. they specifically use 0, I am going to return 1 instead |
1710 |
* as a return value of non-zero is used to flag it as a temporary kline |
1711 |
*/ |
1712 |
if (result == 0) |
1713 |
result = 1; |
1714 |
|
1715 |
/* |
1716 |
* If the incoming time is in seconds convert it to minutes for the purpose |
1717 |
* of this calculation |
1718 |
*/ |
1719 |
if (!minutes) |
1720 |
result = result / 60; |
1721 |
|
1722 |
if (result > MAX_TDKLINE_TIME) |
1723 |
result = MAX_TDKLINE_TIME; |
1724 |
|
1725 |
result = result * 60; /* turn it into seconds */ |
1726 |
|
1727 |
return result; |
1728 |
} |
1729 |
|
1730 |
/* valid_wild_card_simple() |
1731 |
* |
1732 |
* inputs - data to check for sufficient non-wildcard characters |
1733 |
* outputs - 1 if valid, else 0 |
1734 |
* side effects - none |
1735 |
*/ |
1736 |
int |
1737 |
valid_wild_card_simple(const char *data) |
1738 |
{ |
1739 |
const unsigned char *p = (const unsigned char *)data; |
1740 |
unsigned char tmpch = '\0'; |
1741 |
int nonwild = 0; |
1742 |
|
1743 |
while ((tmpch = *p++)) |
1744 |
{ |
1745 |
if (tmpch == '\\') |
1746 |
{ |
1747 |
++p; |
1748 |
if (++nonwild >= ConfigFileEntry.min_nonwildcard_simple) |
1749 |
return 1; |
1750 |
} |
1751 |
else if (!IsMWildChar(tmpch)) |
1752 |
{ |
1753 |
if (++nonwild >= ConfigFileEntry.min_nonwildcard_simple) |
1754 |
return 1; |
1755 |
} |
1756 |
} |
1757 |
|
1758 |
return 0; |
1759 |
} |
1760 |
|
1761 |
/* valid_wild_card() |
1762 |
* |
1763 |
* input - pointer to client |
1764 |
* - int flag, 0 for no warning oper 1 for warning oper |
1765 |
* - count of following varargs to check |
1766 |
* output - 0 if not valid, 1 if valid |
1767 |
* side effects - NOTICE is given to source_p if warn is 1 |
1768 |
*/ |
1769 |
int |
1770 |
valid_wild_card(struct Client *source_p, int warn, int count, ...) |
1771 |
{ |
1772 |
char tmpch; |
1773 |
int nonwild = 0; |
1774 |
va_list args; |
1775 |
|
1776 |
/* |
1777 |
* Now we must check the user and host to make sure there |
1778 |
* are at least NONWILDCHARS non-wildcard characters in |
1779 |
* them, otherwise assume they are attempting to kline |
1780 |
* *@* or some variant of that. This code will also catch |
1781 |
* people attempting to kline *@*.tld, as long as NONWILDCHARS |
1782 |
* is greater than 3. In that case, there are only 3 non-wild |
1783 |
* characters (tld), so if NONWILDCHARS is 4, the kline will |
1784 |
* be disallowed. |
1785 |
* -wnder |
1786 |
*/ |
1787 |
|
1788 |
va_start(args, count); |
1789 |
|
1790 |
while (count--) |
1791 |
{ |
1792 |
const char *p = va_arg(args, const char *); |
1793 |
if (p == NULL) |
1794 |
continue; |
1795 |
|
1796 |
while ((tmpch = *p++)) |
1797 |
{ |
1798 |
if (!IsKWildChar(tmpch)) |
1799 |
{ |
1800 |
/* |
1801 |
* If we find enough non-wild characters, we can |
1802 |
* break - no point in searching further. |
1803 |
*/ |
1804 |
if (++nonwild >= ConfigFileEntry.min_nonwildcard) |
1805 |
{ |
1806 |
va_end(args); |
1807 |
return 1; |
1808 |
} |
1809 |
} |
1810 |
} |
1811 |
} |
1812 |
|
1813 |
if (warn) |
1814 |
sendto_one_notice(source_p, &me, |
1815 |
":Please include at least %d non-wildcard characters with the mask", |
1816 |
ConfigFileEntry.min_nonwildcard); |
1817 |
va_end(args); |
1818 |
return 0; |
1819 |
} |
1820 |
|
1821 |
/* XXX should this go into a separate file ? -Dianora */ |
1822 |
/* parse_aline |
1823 |
* |
1824 |
* input - pointer to cmd name being used |
1825 |
* - pointer to client using cmd |
1826 |
* - parc parameter count |
1827 |
* - parv[] list of parameters to parse |
1828 |
* - parse_flags bit map of things to test |
1829 |
* - pointer to user or string to parse into |
1830 |
* - pointer to host or NULL to parse into if non NULL |
1831 |
* - pointer to optional tkline time or NULL |
1832 |
* - pointer to target_server to parse into if non NULL |
1833 |
* - pointer to reason to parse into |
1834 |
* |
1835 |
* output - 1 if valid, -1 if not valid |
1836 |
* side effects - A generalised k/d/x etc. line parser, |
1837 |
* "ALINE [time] user@host|string [ON] target :reason" |
1838 |
* will parse returning a parsed user, host if |
1839 |
* h_p pointer is non NULL, string otherwise. |
1840 |
* if tkline_time pointer is non NULL a tk line will be set |
1841 |
* to non zero if found. |
1842 |
* if tkline_time pointer is NULL and tk line is found, |
1843 |
* error is reported. |
1844 |
* if target_server is NULL and an "ON" is found error |
1845 |
* is reported. |
1846 |
* if reason pointer is NULL ignore pointer, |
1847 |
* this allows use of parse_a_line in unkline etc. |
1848 |
* |
1849 |
* - Dianora |
1850 |
*/ |
1851 |
int |
1852 |
parse_aline(const char *cmd, struct Client *source_p, |
1853 |
int parc, char **parv, |
1854 |
int parse_flags, char **up_p, char **h_p, time_t *tkline_time, |
1855 |
char **target_server, char **reason) |
1856 |
{ |
1857 |
int found_tkline_time=0; |
1858 |
static char def_reason[] = CONF_NOREASON; |
1859 |
static char user[USERLEN*4+1]; |
1860 |
static char host[HOSTLEN*4+1]; |
1861 |
|
1862 |
parv++; |
1863 |
parc--; |
1864 |
|
1865 |
found_tkline_time = valid_tkline(*parv, TK_MINUTES); |
1866 |
|
1867 |
if (found_tkline_time != 0) |
1868 |
{ |
1869 |
parv++; |
1870 |
parc--; |
1871 |
|
1872 |
if (tkline_time != NULL) |
1873 |
*tkline_time = found_tkline_time; |
1874 |
else |
1875 |
{ |
1876 |
sendto_one_notice(source_p, &me, ":temp_line not supported by %s", cmd); |
1877 |
return -1; |
1878 |
} |
1879 |
} |
1880 |
|
1881 |
if (parc == 0) |
1882 |
{ |
1883 |
sendto_one_numeric(source_p, &me, ERR_NEEDMOREPARAMS, cmd); |
1884 |
return -1; |
1885 |
} |
1886 |
|
1887 |
if (h_p == NULL) |
1888 |
*up_p = *parv; |
1889 |
else |
1890 |
{ |
1891 |
if (find_user_host(source_p, *parv, user, host, parse_flags) == 0) |
1892 |
return -1; |
1893 |
|
1894 |
*up_p = user; |
1895 |
*h_p = host; |
1896 |
} |
1897 |
|
1898 |
parc--; |
1899 |
parv++; |
1900 |
|
1901 |
if (parc != 0) |
1902 |
{ |
1903 |
if (irccmp(*parv, "ON") == 0) |
1904 |
{ |
1905 |
parc--; |
1906 |
parv++; |
1907 |
|
1908 |
if (target_server == NULL) |
1909 |
{ |
1910 |
sendto_one_notice(source_p, &me, ":ON server not supported by %s", cmd); |
1911 |
return -1; |
1912 |
} |
1913 |
|
1914 |
if (!HasOFlag(source_p, OPER_FLAG_REMOTEBAN)) |
1915 |
{ |
1916 |
sendto_one_numeric(source_p, &me, ERR_NOPRIVS, "remoteban"); |
1917 |
return -1; |
1918 |
} |
1919 |
|
1920 |
if (parc == 0 || EmptyString(*parv)) |
1921 |
{ |
1922 |
sendto_one_numeric(source_p, &me, ERR_NEEDMOREPARAMS, cmd); |
1923 |
return -1; |
1924 |
} |
1925 |
|
1926 |
*target_server = *parv; |
1927 |
parc--; |
1928 |
parv++; |
1929 |
} |
1930 |
else |
1931 |
{ |
1932 |
/* Make sure target_server *is* NULL if no ON server found |
1933 |
* caller probably NULL'd it first, but no harm to do it again -db |
1934 |
*/ |
1935 |
if (target_server != NULL) |
1936 |
*target_server = NULL; |
1937 |
} |
1938 |
} |
1939 |
|
1940 |
if (h_p != NULL) |
1941 |
{ |
1942 |
if (strchr(user, '!') != NULL) |
1943 |
{ |
1944 |
sendto_one_notice(source_p, &me, ":Invalid character '!' in kline"); |
1945 |
return -1; |
1946 |
} |
1947 |
|
1948 |
if ((parse_flags & AWILD) && !valid_wild_card(source_p, 1, 2, *up_p, *h_p)) |
1949 |
return -1; |
1950 |
} |
1951 |
else |
1952 |
if ((parse_flags & AWILD) && !valid_wild_card(source_p, 1, 1, *up_p)) |
1953 |
return -1; |
1954 |
|
1955 |
if (reason != NULL) |
1956 |
{ |
1957 |
if (parc != 0 && !EmptyString(*parv)) |
1958 |
{ |
1959 |
*reason = *parv; |
1960 |
if (!valid_comment(source_p, *reason, 1)) |
1961 |
return -1; |
1962 |
} |
1963 |
else |
1964 |
*reason = def_reason; |
1965 |
} |
1966 |
|
1967 |
return 1; |
1968 |
} |
1969 |
|
1970 |
/* find_user_host() |
1971 |
* |
1972 |
* inputs - pointer to client placing kline |
1973 |
* - pointer to user_host_or_nick |
1974 |
* - pointer to user buffer |
1975 |
* - pointer to host buffer |
1976 |
* output - 0 if not ok to kline, 1 to kline i.e. if valid user host |
1977 |
* side effects - |
1978 |
*/ |
1979 |
static int |
1980 |
find_user_host(struct Client *source_p, char *user_host_or_nick, |
1981 |
char *luser, char *lhost, unsigned int flags) |
1982 |
{ |
1983 |
struct Client *target_p = NULL; |
1984 |
char *hostp = NULL; |
1985 |
|
1986 |
if (lhost == NULL) |
1987 |
{ |
1988 |
strlcpy(luser, user_host_or_nick, USERLEN*4 + 1); |
1989 |
return 1; |
1990 |
} |
1991 |
|
1992 |
if ((hostp = strchr(user_host_or_nick, '@')) || *user_host_or_nick == '*') |
1993 |
{ |
1994 |
/* Explicit user@host mask given */ |
1995 |
|
1996 |
if (hostp != NULL) /* I'm a little user@host */ |
1997 |
{ |
1998 |
*(hostp++) = '\0'; /* short and squat */ |
1999 |
if (*user_host_or_nick) |
2000 |
strlcpy(luser, user_host_or_nick, USERLEN*4 + 1); /* here is my user */ |
2001 |
else |
2002 |
strcpy(luser, "*"); |
2003 |
|
2004 |
if (*hostp) |
2005 |
strlcpy(lhost, hostp, HOSTLEN + 1); /* here is my host */ |
2006 |
else |
2007 |
strcpy(lhost, "*"); |
2008 |
} |
2009 |
else |
2010 |
{ |
2011 |
luser[0] = '*'; /* no @ found, assume its *@somehost */ |
2012 |
luser[1] = '\0'; |
2013 |
strlcpy(lhost, user_host_or_nick, HOSTLEN*4 + 1); |
2014 |
} |
2015 |
|
2016 |
return 1; |
2017 |
} |
2018 |
else |
2019 |
{ |
2020 |
/* Try to find user@host mask from nick */ |
2021 |
/* Okay to use source_p as the first param, because source_p == client_p */ |
2022 |
if ((target_p = |
2023 |
find_chasing(source_p, user_host_or_nick)) == NULL) |
2024 |
return 0; /* find_chasing sends ERR_NOSUCHNICK */ |
2025 |
|
2026 |
if (IsExemptKline(target_p)) |
2027 |
{ |
2028 |
if (!IsServer(source_p)) |
2029 |
sendto_one_notice(source_p, &me, ":%s is E-lined", target_p->name); |
2030 |
return 0; |
2031 |
} |
2032 |
|
2033 |
/* |
2034 |
* turn the "user" bit into "*user", blow away '~' |
2035 |
* if found in original user name (non-idented) |
2036 |
*/ |
2037 |
strlcpy(luser, target_p->username, USERLEN*4 + 1); |
2038 |
|
2039 |
if (target_p->username[0] == '~') |
2040 |
luser[0] = '*'; |
2041 |
|
2042 |
if (target_p->sockhost[0] == '\0' || |
2043 |
(target_p->sockhost[0] == '0' && target_p->sockhost[1] == '\0')) |
2044 |
strlcpy(lhost, target_p->host, HOSTLEN*4 + 1); |
2045 |
else |
2046 |
strlcpy(lhost, target_p->sockhost, HOSTLEN*4 + 1); |
2047 |
return 1; |
2048 |
} |
2049 |
|
2050 |
return 0; |
2051 |
} |
2052 |
|
2053 |
/* valid_comment() |
2054 |
* |
2055 |
* inputs - pointer to client |
2056 |
* - pointer to comment |
2057 |
* output - 0 if no valid comment, |
2058 |
* - 1 if valid |
2059 |
* side effects - truncates reason where necessary |
2060 |
*/ |
2061 |
int |
2062 |
valid_comment(struct Client *source_p, char *comment, int warn) |
2063 |
{ |
2064 |
if (strlen(comment) > REASONLEN) |
2065 |
comment[REASONLEN-1] = '\0'; |
2066 |
|
2067 |
return 1; |
2068 |
} |
2069 |
|
2070 |
/* match_conf_password() |
2071 |
* |
2072 |
* inputs - pointer to given password |
2073 |
* - pointer to Conf |
2074 |
* output - 1 or 0 if match |
2075 |
* side effects - none |
2076 |
*/ |
2077 |
int |
2078 |
match_conf_password(const char *password, const struct MaskItem *conf) |
2079 |
{ |
2080 |
const char *encr = NULL; |
2081 |
|
2082 |
if (EmptyString(password) || EmptyString(conf->passwd)) |
2083 |
return 0; |
2084 |
|
2085 |
if (conf->flags & CONF_FLAGS_ENCRYPTED) |
2086 |
encr = crypt(password, conf->passwd); |
2087 |
else |
2088 |
encr = password; |
2089 |
|
2090 |
return encr && !strcmp(encr, conf->passwd); |
2091 |
} |
2092 |
|
2093 |
/* |
2094 |
* cluster_a_line |
2095 |
* |
2096 |
* inputs - client sending the cluster |
2097 |
* - command name "KLINE" "XLINE" etc. |
2098 |
* - capab -- CAP_KLN etc. from server.h |
2099 |
* - cluster type -- CLUSTER_KLINE etc. from conf.h |
2100 |
* - pattern and args to send along |
2101 |
* output - none |
2102 |
* side effects - Take source_p send the pattern with args given |
2103 |
* along to all servers that match capab and cluster type |
2104 |
*/ |
2105 |
void |
2106 |
cluster_a_line(struct Client *source_p, const char *command, |
2107 |
int capab, int cluster_type, const char *pattern, ...) |
2108 |
{ |
2109 |
va_list args; |
2110 |
char buffer[IRCD_BUFSIZE] = ""; |
2111 |
const dlink_node *ptr = NULL; |
2112 |
|
2113 |
va_start(args, pattern); |
2114 |
vsnprintf(buffer, sizeof(buffer), pattern, args); |
2115 |
va_end(args); |
2116 |
|
2117 |
DLINK_FOREACH(ptr, cluster_items.head) |
2118 |
{ |
2119 |
const struct MaskItem *conf = ptr->data; |
2120 |
|
2121 |
if (conf->flags & cluster_type) |
2122 |
sendto_match_servs(source_p, conf->name, CAP_CLUSTER|capab, |
2123 |
"%s %s %s", command, conf->name, buffer); |
2124 |
} |
2125 |
} |
2126 |
|
2127 |
/* |
2128 |
* split_nuh |
2129 |
* |
2130 |
* inputs - pointer to original mask (modified in place) |
2131 |
* - pointer to pointer where nick should go |
2132 |
* - pointer to pointer where user should go |
2133 |
* - pointer to pointer where host should go |
2134 |
* output - NONE |
2135 |
* side effects - mask is modified in place |
2136 |
* If nick pointer is NULL, ignore writing to it |
2137 |
* this allows us to use this function elsewhere. |
2138 |
* |
2139 |
* mask nick user host |
2140 |
* ---------------------- ------- ------- ------ |
2141 |
* Dianora!db@db.net Dianora db db.net |
2142 |
* Dianora Dianora * * |
2143 |
* db.net * * db.net |
2144 |
* OR if nick pointer is NULL |
2145 |
* Dianora - * Dianora |
2146 |
* Dianora! Dianora * * |
2147 |
* Dianora!@ Dianora * * |
2148 |
* Dianora!db Dianora db * |
2149 |
* Dianora!@db.net Dianora * db.net |
2150 |
* db@db.net * db db.net |
2151 |
* !@ * * * |
2152 |
* @ * * * |
2153 |
* ! * * * |
2154 |
*/ |
2155 |
void |
2156 |
split_nuh(struct split_nuh_item *const iptr) |
2157 |
{ |
2158 |
char *p = NULL, *q = NULL; |
2159 |
|
2160 |
if (iptr->nickptr) |
2161 |
strlcpy(iptr->nickptr, "*", iptr->nicksize); |
2162 |
if (iptr->userptr) |
2163 |
strlcpy(iptr->userptr, "*", iptr->usersize); |
2164 |
if (iptr->hostptr) |
2165 |
strlcpy(iptr->hostptr, "*", iptr->hostsize); |
2166 |
|
2167 |
if ((p = strchr(iptr->nuhmask, '!'))) |
2168 |
{ |
2169 |
*p = '\0'; |
2170 |
|
2171 |
if (iptr->nickptr && *iptr->nuhmask) |
2172 |
strlcpy(iptr->nickptr, iptr->nuhmask, iptr->nicksize); |
2173 |
|
2174 |
if ((q = strchr(++p, '@'))) |
2175 |
{ |
2176 |
*q++ = '\0'; |
2177 |
|
2178 |
if (*p) |
2179 |
strlcpy(iptr->userptr, p, iptr->usersize); |
2180 |
|
2181 |
if (*q) |
2182 |
strlcpy(iptr->hostptr, q, iptr->hostsize); |
2183 |
} |
2184 |
else |
2185 |
{ |
2186 |
if (*p) |
2187 |
strlcpy(iptr->userptr, p, iptr->usersize); |
2188 |
} |
2189 |
} |
2190 |
else |
2191 |
{ |
2192 |
/* No ! found so lets look for a user@host */ |
2193 |
if ((p = strchr(iptr->nuhmask, '@'))) |
2194 |
{ |
2195 |
/* if found a @ */ |
2196 |
*p++ = '\0'; |
2197 |
|
2198 |
if (*iptr->nuhmask) |
2199 |
strlcpy(iptr->userptr, iptr->nuhmask, iptr->usersize); |
2200 |
|
2201 |
if (*p) |
2202 |
strlcpy(iptr->hostptr, p, iptr->hostsize); |
2203 |
} |
2204 |
else |
2205 |
{ |
2206 |
/* no @ found */ |
2207 |
if (!iptr->nickptr || strpbrk(iptr->nuhmask, ".:")) |
2208 |
strlcpy(iptr->hostptr, iptr->nuhmask, iptr->hostsize); |
2209 |
else |
2210 |
strlcpy(iptr->nickptr, iptr->nuhmask, iptr->nicksize); |
2211 |
} |
2212 |
} |
2213 |
} |