/[svn]/ircd-hybrid/trunk/src/conf.c
ViewVC logotype

Contents of /ircd-hybrid/trunk/src/conf.c

Parent Directory Parent Directory | Revision Log Revision Log


Revision 8607 - (show annotations)
Mon Oct 29 21:26:54 2018 UTC (3 years, 9 months ago) by michael
File MIME type: text/x-chdr
File size: 43296 byte(s)
- Rewrite class based subnet limiting to use a patricia trie

1 /*
2 * ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
3 *
4 * Copyright (c) 1997-2018 ircd-hybrid development team
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
19 * USA
20 */
21
22 /*! \file conf.c
23 * \brief Configuration file functions.
24 * \version $Id$
25 */
26
27 #include "stdinc.h"
28 #include "list.h"
29 #include "ircd_defs.h"
30 #include "parse.h"
31 #include "conf.h"
32 #include "conf_cluster.h"
33 #include "conf_gecos.h"
34 #include "conf_pseudo.h"
35 #include "conf_resv.h"
36 #include "conf_service.h"
37 #include "conf_shared.h"
38 #include "server.h"
39 #include "channel.h"
40 #include "client.h"
41 #include "event.h"
42 #include "irc_string.h"
43 #include "s_bsd.h"
44 #include "ircd.h"
45 #include "listener.h"
46 #include "hostmask.h"
47 #include "modules.h"
48 #include "numeric.h"
49 #include "fdlist.h"
50 #include "log.h"
51 #include "send.h"
52 #include "memory.h"
53 #include "res.h"
54 #include "user.h"
55 #include "channel_mode.h"
56 #include "misc.h"
57 #include "conf_db.h"
58 #include "conf_class.h"
59 #include "motd.h"
60 #include "ipcache.h"
61 #include "isupport.h"
62 #include "whowas.h"
63
64
65 struct config_channel_entry ConfigChannel;
66 struct config_serverhide_entry ConfigServerHide;
67 struct config_general_entry ConfigGeneral;
68 struct config_log_entry ConfigLog = { .use_logging = 1 };
69 struct config_serverinfo_entry ConfigServerInfo;
70 struct config_admin_entry ConfigAdminInfo;
71 struct conf_parser_context conf_parser_ctx;
72
73 /* general conf items link list root, other than k lines etc. */
74 dlink_list connect_items;
75 dlink_list operator_items;
76
77 extern unsigned int lineno;
78 extern char linebuf[];
79 extern char conffilebuf[IRCD_BUFSIZE];
80 extern int yyparse(); /* defined in y.tab.c */
81
82
83 /* conf_dns_callback()
84 *
85 * inputs - pointer to struct MaskItem
86 * - pointer to DNSReply reply
87 * output - none
88 * side effects - called when resolver query finishes
89 * if the query resulted in a successful search, hp will contain
90 * a non-null pointer, otherwise hp will be null.
91 * if successful save hp in the conf item it was called with
92 */
93 static void
94 conf_dns_callback(void *vptr, const struct irc_ssaddr *addr, const char *name, size_t namelength)
95 {
96 struct MaskItem *const conf = vptr;
97
98 conf->dns_pending = 0;
99
100 if (addr)
101 memcpy(&conf->addr, addr, sizeof(conf->addr));
102 else
103 conf->dns_failed = 1;
104 }
105
106 /* conf_dns_lookup()
107 *
108 * do a nameserver lookup of the conf host
109 * if the conf entry is currently doing a ns lookup do nothing, otherwise
110 * allocate a dns_query and start ns lookup.
111 */
112 static void
113 conf_dns_lookup(struct MaskItem *conf)
114 {
115 if (conf->dns_pending)
116 return;
117
118 conf->dns_pending = 1;
119
120 if (conf->aftype == AF_INET)
121 gethost_byname_type(conf_dns_callback, conf, conf->host, T_A);
122 else
123 gethost_byname_type(conf_dns_callback, conf, conf->host, T_AAAA);
124 }
125
126 /* map_to_list()
127 *
128 * inputs - ConfType conf
129 * output - pointer to dlink_list to use
130 * side effects - none
131 */
132 static dlink_list *
133 map_to_list(enum maskitem_type type)
134 {
135 switch (type)
136 {
137 case CONF_OPER:
138 return &operator_items;
139 break;
140 case CONF_SERVER:
141 return &connect_items;
142 break;
143 default:
144 return NULL;
145 }
146 }
147
148 struct MaskItem *
149 conf_make(enum maskitem_type type)
150 {
151 struct MaskItem *const conf = xcalloc(sizeof(*conf));
152 dlink_list *list = NULL;
153
154 conf->type = type;
155 conf->active = 1;
156 conf->aftype = AF_INET;
157
158 if ((list = map_to_list(type)))
159 dlinkAdd(conf, &conf->node, list);
160 return conf;
161 }
162
163 void
164 conf_free(struct MaskItem *conf)
165 {
166 dlink_node *node = NULL, *node_next = NULL;
167 dlink_list *list = NULL;
168
169 if ((list = map_to_list(conf->type)))
170 dlinkFindDelete(list, conf);
171
172 xfree(conf->name);
173
174 if (conf->dns_pending)
175 delete_resolver_queries(conf);
176 if (conf->passwd)
177 memset(conf->passwd, 0, strlen(conf->passwd));
178 if (conf->spasswd)
179 memset(conf->spasswd, 0, strlen(conf->spasswd));
180
181 conf->class = NULL;
182
183 xfree(conf->passwd);
184 xfree(conf->spasswd);
185 xfree(conf->reason);
186 xfree(conf->certfp);
187 xfree(conf->whois);
188 xfree(conf->user);
189 xfree(conf->host);
190 xfree(conf->cipher_list);
191
192 DLINK_FOREACH_SAFE(node, node_next, conf->hub_list.head)
193 {
194 xfree(node->data);
195 dlinkDelete(node, &conf->hub_list);
196 free_dlink_node(node);
197 }
198
199 DLINK_FOREACH_SAFE(node, node_next, conf->leaf_list.head)
200 {
201 xfree(node->data);
202 dlinkDelete(node, &conf->leaf_list);
203 free_dlink_node(node);
204 }
205
206 xfree(conf);
207 }
208
209 /* attach_iline()
210 *
211 * inputs - client pointer
212 * - conf pointer
213 * output -
214 * side effects - do actual attach
215 */
216 static int
217 attach_iline(struct Client *client_p, struct MaskItem *conf)
218 {
219 const struct ClassItem *const class = conf->class;
220 int a_limit_reached = 0;
221
222 struct ip_entry *ipcache = ipcache_record_find_or_add(&client_p->ip);
223 ++ipcache->count_local;
224 AddFlag(client_p, FLAGS_IPHASH);
225
226 if (class->max_total && class->ref_count >= class->max_total)
227 a_limit_reached = 1;
228 else if (class->max_perip_local && ipcache->count_local > class->max_perip_local)
229 a_limit_reached = 1;
230 else if (class->max_perip_global &&
231 (ipcache->count_local + ipcache->count_remote) > class->max_perip_global)
232 a_limit_reached = 1;
233
234 if (a_limit_reached)
235 {
236 if (!IsConfExemptLimits(conf))
237 return TOO_MANY; /* Already at maximum allowed */
238
239 sendto_one_notice(client_p, &me, ":*** Your connection class is full, "
240 "but you have exceed_limit = yes;");
241 }
242
243 return conf_attach(client_p, conf);
244 }
245
246 /* verify_access()
247 *
248 * inputs - pointer to client to verify
249 * output - 0 if success -'ve if not
250 * side effect - find the first (best) I line to attach.
251 */
252 static int
253 verify_access(struct Client *client_p)
254 {
255 struct MaskItem *conf = NULL;
256
257 if (HasFlag(client_p, FLAGS_GOTID))
258 {
259 conf = find_address_conf(client_p->host, client_p->username,
260 &client_p->ip,
261 client_p->ip.ss.ss_family,
262 client_p->connection->password);
263 }
264 else
265 {
266 char non_ident[USERLEN + 1] = "~";
267
268 strlcpy(non_ident + 1, client_p->username, sizeof(non_ident) - 1);
269 conf = find_address_conf(client_p->host, non_ident,
270 &client_p->ip,
271 client_p->ip.ss.ss_family,
272 client_p->connection->password);
273 }
274
275 if (!conf)
276 return NOT_AUTHORIZED;
277
278 assert(IsConfClient(conf) || IsConfKill(conf));
279
280 if (IsConfClient(conf))
281 {
282 if (IsConfRedir(conf))
283 {
284 sendto_one_numeric(client_p, &me, RPL_REDIR,
285 conf->name ? conf->name : "",
286 conf->port);
287 return NOT_AUTHORIZED;
288 }
289
290 if (IsConfDoSpoofIp(conf))
291 {
292 if (IsConfSpoofNotice(conf))
293 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE, "%s spoofing: %s as %s",
294 client_p->name, client_p->host, conf->name);
295
296 strlcpy(client_p->host, conf->name, sizeof(client_p->host));
297 }
298
299 return attach_iline(client_p, conf);
300 }
301
302 sendto_one_notice(client_p, &me, ":*** Banned: %s", conf->reason);
303 return BANNED_CLIENT;
304 }
305
306 /* check_client()
307 *
308 * inputs - pointer to client
309 * output - 0 = Success
310 * NOT_AUTHORIZED (-1) = Access denied (no I line match)
311 * IRCD_SOCKET_ERROR (-2) = Bad socket.
312 * I_LINE_FULL (-3) = I-line is full
313 * TOO_MANY (-4) = Too many connections from hostname
314 * BANNED_CLIENT (-5) = K-lined
315 * side effects - Ordinary client access check.
316 * Look for conf lines which have the same
317 * status as the flags passed.
318 */
319 int
320 check_client(struct Client *source_p)
321 {
322 int i;
323
324 if ((i = verify_access(source_p)))
325 ilog(LOG_TYPE_IRCD, "Access denied: %s[%s]",
326 source_p->name, source_p->sockhost);
327
328 switch (i)
329 {
330 case TOO_MANY:
331 sendto_realops_flags(UMODE_FULL, L_ALL, SEND_NOTICE,
332 "Too many on IP for %s (%s).",
333 client_get_name(source_p, SHOW_IP),
334 source_p->sockhost);
335 ilog(LOG_TYPE_IRCD, "Too many connections on IP from %s.",
336 client_get_name(source_p, SHOW_IP));
337 ++ServerStats.is_ref;
338 exit_client(source_p, "No more connections allowed on that IP");
339 break;
340
341 case I_LINE_FULL:
342 sendto_realops_flags(UMODE_FULL, L_ALL, SEND_NOTICE,
343 "auth {} block is full for %s (%s).",
344 client_get_name(source_p, SHOW_IP),
345 source_p->sockhost);
346 ilog(LOG_TYPE_IRCD, "Too many connections from %s.",
347 client_get_name(source_p, SHOW_IP));
348 ++ServerStats.is_ref;
349 exit_client(source_p, "No more connections allowed in your connection class");
350 break;
351
352 case NOT_AUTHORIZED:
353 /* jdc - lists server name & port connections are on */
354 /* a purely cosmetical change */
355 sendto_realops_flags(UMODE_UNAUTH, L_ALL, SEND_NOTICE,
356 "Unauthorized client connection from %s on [%s/%u].",
357 client_get_name(source_p, SHOW_IP),
358 source_p->connection->listener->name,
359 source_p->connection->listener->port);
360 ilog(LOG_TYPE_IRCD, "Unauthorized client connection from %s on [%s/%u].",
361 client_get_name(source_p, SHOW_IP),
362 source_p->connection->listener->name,
363 source_p->connection->listener->port);
364
365 ++ServerStats.is_ref;
366 exit_client(source_p, "You are not authorized to use this server");
367 break;
368
369 case BANNED_CLIENT:
370 ++ServerStats.is_ref;
371 exit_client(source_p, "Banned");
372 break;
373
374 case 0:
375 default:
376 break;
377 }
378
379 return !(i < 0);
380 }
381
382 /*! \brief Disassociate configuration from the client. Also removes a class
383 * from the list if marked for deleting.
384 * \param client_p Client to operate on
385 * \param type Type of conf to detach
386 */
387 void
388 conf_detach(struct Client *client_p, enum maskitem_type type)
389 {
390 dlink_node *node, *node_next;
391
392 DLINK_FOREACH_SAFE(node, node_next, client_p->connection->confs.head)
393 {
394 struct MaskItem *conf = node->data;
395
396 assert(conf->type & (CONF_CLIENT | CONF_OPER | CONF_SERVER));
397 assert(conf->ref_count > 0);
398 assert(conf->class->ref_count > 0);
399
400 if (!(conf->type & type))
401 continue;
402
403 dlinkDelete(node, &client_p->connection->confs);
404 free_dlink_node(node);
405
406 if (conf->type == CONF_CLIENT)
407 class_ip_limit_remove(conf->class, (struct sockaddr *)&client_p->ip);
408
409 if (--conf->class->ref_count == 0 && conf->class->active == 0)
410 {
411 class_free(conf->class);
412 conf->class = NULL;
413 }
414
415 if (--conf->ref_count == 0 && conf->active == 0)
416 conf_free(conf);
417 }
418 }
419
420 /*! \brief Associate a specific configuration entry to a *local* client (this
421 * is the one which used in accepting the connection). Note, that this
422 * automatically changes the attachment if there was an old one.
423 * \param client_p Client to attach the conf to
424 * \param conf Configuration record to attach
425 */
426 int
427 conf_attach(struct Client *client_p, struct MaskItem *conf)
428 {
429 if (dlinkFind(&client_p->connection->confs, conf))
430 return 1;
431
432 if (conf->type == CONF_CLIENT)
433 if (class_ip_limit_add(conf->class, (struct sockaddr *)&client_p->ip, IsConfExemptLimits(conf)))
434 return TOO_MANY; /* Already at maximum allowed */
435
436 conf->class->ref_count++;
437 conf->ref_count++;
438
439 dlinkAdd(conf, make_dlink_node(), &client_p->connection->confs);
440
441 return 0;
442 }
443
444 /* find_conf_name()
445 *
446 * inputs - pointer to conf link list to search
447 * - pointer to name to find
448 * - int mask of type of conf to find
449 * output - NULL or pointer to conf found
450 * side effects - find a conf entry which matches the name
451 * and has the given mask.
452 */
453 struct MaskItem *
454 find_conf_name(dlink_list *list, const char *name, enum maskitem_type type)
455 {
456 dlink_node *node = NULL;
457
458 DLINK_FOREACH(node, list->head)
459 {
460 struct MaskItem *conf = node->data;
461
462 if (conf->type == type)
463 {
464 if (conf->name && !irccmp(conf->name, name))
465 return conf;
466 }
467 }
468
469 return NULL;
470 }
471
472 /*! \brief Find a connect {} conf that has a name that matches \a name.
473 * \param name Name to match
474 * \param compare Pointer to function to be used for string matching
475 */
476 struct MaskItem *
477 connect_find(const char *name, int (*compare)(const char *, const char *))
478 {
479 dlink_node *node;
480
481 DLINK_FOREACH(node, connect_items.head)
482 {
483 struct MaskItem *conf = node->data;
484
485 if (!compare(name, conf->name))
486 return conf;
487 }
488
489 return NULL;
490 }
491
492 /* find_exact_name_conf()
493 *
494 * inputs - type of link list to look in
495 * - pointer to name string to find
496 * - pointer to user
497 * - pointer to host
498 * output - NULL or pointer to found struct MaskItem
499 * side effects - looks for an exact match on name field
500 */
501 struct MaskItem *
502 operator_find(const struct Client *who, const char *name)
503 {
504 dlink_node *node = NULL;
505
506 DLINK_FOREACH(node, operator_items.head)
507 {
508 struct MaskItem *conf = node->data;
509
510 if (!irccmp(conf->name, name))
511 {
512 if (!who)
513 return conf;
514
515 if (!match(conf->user, who->username))
516 {
517 switch (conf->htype)
518 {
519 case HM_HOST:
520 if (!match(conf->host, who->host) || !match(conf->host, who->sockhost))
521 if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total)
522 return conf;
523 break;
524 case HM_IPV4:
525 if (who->ip.ss.ss_family == AF_INET)
526 if (match_ipv4(&who->ip, &conf->addr, conf->bits))
527 if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total)
528 return conf;
529 break;
530 case HM_IPV6:
531 if (who->ip.ss.ss_family == AF_INET6)
532 if (match_ipv6(&who->ip, &conf->addr, conf->bits))
533 if (!conf->class->max_total || conf->class->ref_count < conf->class->max_total)
534 return conf;
535 break;
536 default:
537 assert(0);
538 }
539 }
540 }
541 }
542
543 return NULL;
544 }
545
546 /* set_default_conf()
547 *
548 * inputs - NONE
549 * output - NONE
550 * side effects - Set default values here.
551 * This is called **PRIOR** to parsing the
552 * configuration file. If you want to do some validation
553 * of values later, put them in validate_conf().
554 */
555 static void
556 set_default_conf(void)
557 {
558 /* verify init_class() ran, this should be an unnecessary check
559 * but its not much work.
560 */
561 assert(class_default == class_get_list()->tail->data);
562
563 ConfigServerInfo.network_name = xstrdup(NETWORK_NAME_DEFAULT);
564 ConfigServerInfo.network_desc = xstrdup(NETWORK_DESC_DEFAULT);
565
566 memset(&ConfigServerInfo.ip, 0, sizeof(ConfigServerInfo.ip));
567 ConfigServerInfo.specific_ipv4_vhost = 0;
568 memset(&ConfigServerInfo.ip6, 0, sizeof(ConfigServerInfo.ip6));
569 ConfigServerInfo.specific_ipv6_vhost = 0;
570
571 ConfigServerInfo.default_max_clients = MAXCLIENTS_MAX;
572 ConfigServerInfo.max_nick_length = 9;
573 ConfigServerInfo.max_topic_length = 80;
574 ConfigServerInfo.hub = 0;
575
576 log_iterate(log_free);
577
578 ConfigLog.use_logging = 1;
579
580 ConfigChannel.disable_fake_channels = 0;
581 ConfigChannel.invite_client_count = 10;
582 ConfigChannel.invite_client_time = 300;
583 ConfigChannel.invite_delay_channel = 5;
584 ConfigChannel.invite_expire_time = 1800;
585 ConfigChannel.knock_client_count = 1;
586 ConfigChannel.knock_client_time = 300;
587 ConfigChannel.knock_delay_channel = 60;
588 ConfigChannel.max_channels = 25;
589 ConfigChannel.max_invites = 20;
590 ConfigChannel.max_bans = 100;
591 ConfigChannel.max_bans_large = 500;
592 ConfigChannel.default_join_flood_count = 18;
593 ConfigChannel.default_join_flood_time = 6;
594
595 ConfigServerHide.flatten_links = 0;
596 ConfigServerHide.flatten_links_delay = 300;
597 ConfigServerHide.hidden = 0;
598 ConfigServerHide.hide_servers = 0;
599 ConfigServerHide.hide_services = 0;
600 ConfigServerHide.hidden_name = xstrdup(NETWORK_NAME_DEFAULT);
601 ConfigServerHide.hide_server_ips = 0;
602 ConfigServerHide.disable_remote_commands = 0;
603
604 ConfigGeneral.away_count = 2;
605 ConfigGeneral.away_time = 10;
606 ConfigGeneral.max_watch = 50;
607 ConfigGeneral.whowas_history_length = 15000;
608 ConfigGeneral.cycle_on_host_change = 1;
609 ConfigGeneral.dline_min_cidr = 16;
610 ConfigGeneral.dline_min_cidr6 = 48;
611 ConfigGeneral.kline_min_cidr = 16;
612 ConfigGeneral.kline_min_cidr6 = 48;
613 ConfigGeneral.invisible_on_connect = 1;
614 ConfigGeneral.tkline_expire_notices = 1;
615 ConfigGeneral.ignore_bogus_ts = 0;
616 ConfigGeneral.disable_auth = 0;
617 ConfigGeneral.kill_chase_time_limit = 90;
618 ConfigGeneral.default_floodcount = 8;
619 ConfigGeneral.default_floodtime = 1;
620 ConfigGeneral.failed_oper_notice = 1;
621 ConfigGeneral.dots_in_ident = 0;
622 ConfigGeneral.min_nonwildcard = 4;
623 ConfigGeneral.min_nonwildcard_simple = 3;
624 ConfigGeneral.max_accept = 50;
625 ConfigGeneral.anti_nick_flood = 0;
626 ConfigGeneral.max_nick_time = 20;
627 ConfigGeneral.max_nick_changes = 5;
628 ConfigGeneral.anti_spam_exit_message_time = 0;
629 ConfigGeneral.ts_warn_delta = 30;
630 ConfigGeneral.ts_max_delta = 600;
631 ConfigGeneral.warn_no_connect_block = 1;
632 ConfigGeneral.stats_e_disabled = 0;
633 ConfigGeneral.stats_i_oper_only = 1; /* 1 = masked */
634 ConfigGeneral.stats_k_oper_only = 1; /* 1 = masked */
635 ConfigGeneral.stats_o_oper_only = 1;
636 ConfigGeneral.stats_m_oper_only = 1;
637 ConfigGeneral.stats_P_oper_only = 0;
638 ConfigGeneral.stats_u_oper_only = 0;
639 ConfigGeneral.caller_id_wait = 60;
640 ConfigGeneral.opers_bypass_callerid = 1;
641 ConfigGeneral.pace_wait = 10;
642 ConfigGeneral.pace_wait_simple = 1;
643 ConfigGeneral.short_motd = 0;
644 ConfigGeneral.ping_cookie = 0;
645 ConfigGeneral.no_oper_flood = 0;
646 ConfigGeneral.max_targets = MAX_TARGETS_DEFAULT;
647 ConfigGeneral.oper_only_umodes = UMODE_DEBUG | UMODE_LOCOPS | UMODE_HIDDEN | UMODE_FARCONNECT |
648 UMODE_UNAUTH | UMODE_EXTERNAL | UMODE_BOTS | UMODE_NCHANGE |
649 UMODE_SPY | UMODE_FULL | UMODE_SKILL | UMODE_REJ | UMODE_CCONN;
650 ConfigGeneral.oper_umodes = UMODE_BOTS | UMODE_LOCOPS | UMODE_SERVNOTICE | UMODE_WALLOP;
651 ConfigGeneral.throttle_count = 1;
652 ConfigGeneral.throttle_time = 1;
653 }
654
655 static void
656 validate_conf(void)
657 {
658 if (EmptyString(ConfigServerInfo.network_name))
659 ConfigServerInfo.network_name = xstrdup(NETWORK_NAME_DEFAULT);
660
661 if (EmptyString(ConfigServerInfo.network_desc))
662 ConfigServerInfo.network_desc = xstrdup(NETWORK_DESC_DEFAULT);
663 }
664
665 /* read_conf()
666 *
667 * inputs - file descriptor pointing to config file to use
668 * output - None
669 * side effects - Read configuration file.
670 */
671 static void
672 read_conf(FILE *file)
673 {
674 lineno = 1;
675
676 set_default_conf(); /* Set default values prior to conf parsing */
677 conf_parser_ctx.pass = 1;
678 yyparse(); /* Pick up the classes first */
679
680 rewind(file);
681
682 conf_parser_ctx.pass = 2;
683 yyparse(); /* Load the values from the conf */
684 validate_conf(); /* Check to make sure some values are still okay. */
685 /* Some global values are also loaded here. */
686 whowas_trim(); /* Attempt to trim whowas list if necessary */
687 class_delete_marked(); /* Delete unused classes that are marked for deletion */
688 }
689
690 /* conf_rehash()
691 *
692 * Actual REHASH service routine. Called with sig == 0 if it has been called
693 * as a result of an operator issuing this command, else assume it has been
694 * called as a result of the server receiving a HUP signal.
695 */
696 void
697 conf_rehash(int sig)
698 {
699 if (sig)
700 {
701 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
702 "Got signal SIGHUP, reloading configuration file(s)");
703 ilog(LOG_TYPE_IRCD, "Got signal SIGHUP, reloading configuration file(s)");
704 }
705
706 restart_resolver();
707
708 /* don't close listeners until we know we can go ahead with the rehash */
709
710 read_conf_files(0);
711
712 load_conf_modules();
713 check_conf_klines();
714 }
715
716 /* lookup_confhost()
717 *
718 * start DNS lookups of all hostnames in the conf
719 * line and convert an IP addresses in a.b.c.d number for to IP#s.
720 */
721 void
722 lookup_confhost(struct MaskItem *conf)
723 {
724 struct addrinfo hints, *res;
725
726 /*
727 * Do name lookup now on hostnames given and store the
728 * ip numbers in conf structure.
729 */
730 memset(&hints, 0, sizeof(hints));
731
732 hints.ai_family = AF_UNSPEC;
733 hints.ai_socktype = SOCK_STREAM;
734
735 /* Get us ready for a bind() and don't bother doing dns lookup */
736 hints.ai_flags = AI_PASSIVE | AI_NUMERICHOST;
737
738 if (getaddrinfo(conf->host, NULL, &hints, &res))
739 {
740 conf_dns_lookup(conf);
741 return;
742 }
743
744 assert(res);
745
746 memcpy(&conf->addr, res->ai_addr, res->ai_addrlen);
747 conf->addr.ss_len = res->ai_addrlen;
748 conf->addr.ss.ss_family = res->ai_family;
749
750 freeaddrinfo(res);
751 }
752
753 /* conf_connect_allowed()
754 *
755 * inputs - pointer to inaddr
756 * - int type ipv4 or ipv6
757 * output - BANNED or accepted
758 * side effects - none
759 */
760 int
761 conf_connect_allowed(struct irc_ssaddr *addr, int aftype)
762 {
763 struct ip_entry *ip_found = NULL;
764 const struct MaskItem *conf = find_dline_conf(addr, aftype);
765
766 if (conf)
767 {
768 /* DLINE exempt also gets you out of static limits/pacing... */
769 if (conf->type == CONF_EXEMPT)
770 return 0;
771 return BANNED_CLIENT;
772 }
773
774 ip_found = ipcache_record_find_or_add(addr);
775
776 if ((CurrentTime - ip_found->last_attempt) < ConfigGeneral.throttle_time)
777 {
778 if (ip_found->connection_count >= ConfigGeneral.throttle_count)
779 return TOO_FAST;
780
781 ++ip_found->connection_count;
782 }
783 else
784 ip_found->connection_count = 1;
785
786 ip_found->last_attempt = CurrentTime;
787 return 0;
788 }
789
790 /* cleanup_tklines()
791 *
792 * inputs - NONE
793 * output - NONE
794 * side effects - call function to expire temporary k/d lines
795 * This is an event started off in ircd.c
796 */
797 void
798 cleanup_tklines(void *unused)
799 {
800 hostmask_expire_temporary();
801 gecos_expire();
802 resv_expire();
803 }
804
805 /* oper_privs_as_string()
806 *
807 * inputs - pointer to client_p
808 * output - pointer to static string showing oper privs
809 * side effects - return as string, the oper privs as derived from port
810 */
811 static const struct oper_flags
812 {
813 const unsigned int flag;
814 const unsigned char c;
815 } flag_table[] = {
816 { OPER_FLAG_ADMIN, 'A' },
817 { OPER_FLAG_CLOSE, 'B' },
818 { OPER_FLAG_CONNECT, 'C' },
819 { OPER_FLAG_CONNECT_REMOTE, 'D' },
820 { OPER_FLAG_DIE, 'E' },
821 { OPER_FLAG_DLINE, 'F' },
822 { OPER_FLAG_GLOBOPS, 'G' },
823 { OPER_FLAG_JOIN_RESV, 'H' },
824 { OPER_FLAG_KILL, 'I' },
825 { OPER_FLAG_KILL_REMOTE, 'J' },
826 { OPER_FLAG_KLINE, 'K' },
827 { OPER_FLAG_LOCOPS, 'L' },
828 { OPER_FLAG_MODULE, 'M' },
829 { OPER_FLAG_NICK_RESV, 'N' },
830 { OPER_FLAG_OPME, 'O' },
831 { OPER_FLAG_REHASH, 'P' },
832 { OPER_FLAG_REMOTEBAN, 'Q' },
833 { OPER_FLAG_RESTART, 'R' },
834 { OPER_FLAG_RESV, 'S' },
835 { OPER_FLAG_SET, 'T' },
836 { OPER_FLAG_SQUIT, 'U' },
837 { OPER_FLAG_SQUIT_REMOTE, 'V' },
838 { OPER_FLAG_UNDLINE, 'W' },
839 { OPER_FLAG_UNKLINE, 'X' },
840 { OPER_FLAG_UNRESV, 'Y' },
841 { OPER_FLAG_UNXLINE, 'Z' },
842 { OPER_FLAG_WALLOPS, 'a' },
843 { OPER_FLAG_XLINE, 'b' },
844 { 0, '\0' }
845 };
846
847 const char *
848 oper_privs_as_string(const unsigned int flags)
849 {
850 static char buf[sizeof(flag_table) / sizeof(flag_table[0])];
851 char *p = buf;
852
853 for (const struct oper_flags *tab = flag_table; tab->flag; ++tab)
854 if (flags & tab->flag)
855 *p++ = tab->c;
856
857 if (p == buf)
858 *p++ = '0';
859
860 *p = '\0';
861
862 return buf;
863 }
864
865 /*
866 * Input: A client to find the active operator {} name for.
867 * Output: The nick!user@host{oper} of the oper.
868 * "oper" is server name for remote opers
869 * Side effects: None.
870 */
871 const char *
872 get_oper_name(const struct Client *client_p)
873 {
874 static char buffer[IRCD_BUFSIZE];
875
876 if (IsServer(client_p))
877 return client_p->name;
878
879 if (MyConnect(client_p))
880 {
881 const dlink_node *const node = client_p->connection->confs.head;
882
883 if (node)
884 {
885 const struct MaskItem *const conf = node->data;
886
887 if (conf->type == CONF_OPER)
888 {
889 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", client_p->name,
890 client_p->username, client_p->host, conf->name);
891 return buffer;
892 }
893 }
894
895 /*
896 * Probably should assert here for now. If there is an oper out there
897 * with no operator {} conf attached, it would be good for us to know...
898 */
899 assert(0); /* Oper without oper conf! */
900 }
901
902 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", client_p->name,
903 client_p->username, client_p->host, client_p->servptr->name);
904 return buffer;
905 }
906
907 /* clear_out_old_conf()
908 *
909 * inputs - none
910 * output - none
911 * side effects - Clear out the old configuration
912 */
913 static void
914 clear_out_old_conf(void)
915 {
916 dlink_node *node = NULL, *node_next = NULL;
917 dlink_list *free_items [] = {
918 &connect_items, &operator_items, NULL
919 };
920
921 dlink_list ** iterator = free_items; /* C is dumb */
922
923 /* We only need to free anything allocated by yyparse() here.
924 * Resetting structs, etc, is taken care of by set_default_conf().
925 */
926
927 for (; *iterator; iterator++)
928 {
929 DLINK_FOREACH_SAFE(node, node_next, (*iterator)->head)
930 {
931 struct MaskItem *conf = node->data;
932
933 conf->active = 0;
934 dlinkDelete(&conf->node, *iterator);
935
936 if (!conf->ref_count)
937 conf_free(conf);
938 }
939 }
940
941 /*
942 * Don't delete the class table, rather mark all entries for deletion.
943 * The table is cleaned up by class_delete_marked. - avalon
944 */
945 class_mark_for_deletion();
946
947 clear_out_address_conf();
948
949 modules_conf_clear(); /* Clear modules {} items */
950
951 motd_clear(); /* Clear motd {} items and re-cache default motd */
952
953 cluster_clear(); /* Clear cluster {} items */
954
955 gecos_clear(); /* Clear gecos {} items */
956
957 resv_clear(); /* Clear resv {} items */
958
959 service_clear(); /* Clear service {} items */
960
961 shared_clear(); /* Clear shared {} items */
962
963 pseudo_clear(); /* Clear pseudo {} items */
964
965 /* Clean out ConfigServerInfo */
966 xfree(ConfigServerInfo.description);
967 ConfigServerInfo.description = NULL;
968 xfree(ConfigServerInfo.network_name);
969 ConfigServerInfo.network_name = NULL;
970 xfree(ConfigServerInfo.network_desc);
971 ConfigServerInfo.network_desc = NULL;
972 xfree(ConfigServerInfo.rsa_private_key_file);
973 ConfigServerInfo.rsa_private_key_file = NULL;
974 xfree(ConfigServerInfo.ssl_certificate_file);
975 ConfigServerInfo.ssl_certificate_file = NULL;
976 xfree(ConfigServerInfo.ssl_dh_param_file);
977 ConfigServerInfo.ssl_dh_param_file = NULL;
978 xfree(ConfigServerInfo.ssl_dh_elliptic_curve);
979 ConfigServerInfo.ssl_dh_elliptic_curve = NULL;
980 xfree(ConfigServerInfo.ssl_cipher_list);
981 ConfigServerInfo.ssl_cipher_list = NULL;
982 xfree(ConfigServerInfo.ssl_message_digest_algorithm);
983 ConfigServerInfo.ssl_message_digest_algorithm = NULL;
984
985 /* Clean out ConfigAdminInfo */
986 xfree(ConfigAdminInfo.name);
987 ConfigAdminInfo.name = NULL;
988 xfree(ConfigAdminInfo.email);
989 ConfigAdminInfo.email = NULL;
990 xfree(ConfigAdminInfo.description);
991 ConfigAdminInfo.description = NULL;
992
993 /* Clean out ConfigServerHide */
994 xfree(ConfigServerHide.flatten_links_file);
995 ConfigServerHide.flatten_links_file = NULL;
996 xfree(ConfigServerHide.hidden_name);
997 ConfigServerHide.hidden_name = NULL;
998
999 /* Clean out listeners */
1000 listener_close_marked();
1001 }
1002
1003 static void
1004 conf_handle_tls(int cold)
1005 {
1006 if (!tls_new_cred())
1007 {
1008 if (cold)
1009 {
1010 ilog(LOG_TYPE_IRCD, "Error while initializing TLS");
1011 exit(EXIT_FAILURE);
1012 }
1013 else
1014 {
1015 /* Failed to load new settings/certs, old ones remain active */
1016 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
1017 "Error reloading TLS settings, check the ircd log"); // report_crypto_errors logs this
1018 }
1019 }
1020 }
1021
1022 /* read_conf_files()
1023 *
1024 * inputs - cold start YES or NO
1025 * output - none
1026 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1027 */
1028 void
1029 read_conf_files(int cold)
1030 {
1031 const char *filename = NULL;
1032 char chanmodes[IRCD_BUFSIZE] = "";
1033 char chanlimit[IRCD_BUFSIZE] = "";
1034
1035 conf_parser_ctx.boot = cold;
1036 filename = ConfigGeneral.configfile;
1037
1038 /* We need to know the initial filename for the yyerror() to report
1039 FIXME: The full path is in conffilenamebuf first time since we
1040 don't know anything else
1041
1042 - Gozem 2002-07-21
1043 */
1044 strlcpy(conffilebuf, filename, sizeof(conffilebuf));
1045
1046 if ((conf_parser_ctx.conf_file = fopen(filename, "r")) == NULL)
1047 {
1048 if (cold)
1049 {
1050 ilog(LOG_TYPE_IRCD, "Unable to read configuration file '%s': %s",
1051 filename, strerror(errno));
1052 exit(EXIT_FAILURE);
1053 }
1054 else
1055 {
1056 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
1057 "Unable to read configuration file '%s': %s",
1058 filename, strerror(errno));
1059 return;
1060 }
1061 }
1062
1063 if (!cold)
1064 clear_out_old_conf();
1065
1066 read_conf(conf_parser_ctx.conf_file);
1067 fclose(conf_parser_ctx.conf_file);
1068
1069 log_iterate(log_reopen);
1070 conf_handle_tls(cold);
1071
1072 isupport_add("NICKLEN", NULL, ConfigServerInfo.max_nick_length);
1073 isupport_add("NETWORK", ConfigServerInfo.network_name, -1);
1074
1075 snprintf(chanmodes, sizeof(chanmodes), "beI:%u", ConfigChannel.max_bans);
1076 isupport_add("MAXLIST", chanmodes, -1);
1077 isupport_add("MAXTARGETS", NULL, ConfigGeneral.max_targets);
1078 isupport_add("CHANTYPES", "#", -1);
1079
1080 snprintf(chanlimit, sizeof(chanlimit), "#:%u",
1081 ConfigChannel.max_channels);
1082 isupport_add("CHANLIMIT", chanlimit, -1);
1083 snprintf(chanmodes, sizeof(chanmodes), "%s", "beI,k,l,cimnprstuCLMNORST");
1084 isupport_add("CHANNELLEN", NULL, CHANNELLEN);
1085 isupport_add("TOPICLEN", NULL, ConfigServerInfo.max_topic_length);
1086 isupport_add("CHANMODES", chanmodes, -1);
1087 }
1088
1089 /* conf_add_class_to_conf()
1090 *
1091 * inputs - pointer to config item
1092 * output - NONE
1093 * side effects - Add a class pointer to a conf
1094 */
1095 void
1096 conf_add_class_to_conf(struct MaskItem *conf, const char *name)
1097 {
1098 if (EmptyString(name) || (conf->class = class_find(name, 1)) == NULL)
1099 {
1100 conf->class = class_default;
1101
1102 if (conf->type == CONF_CLIENT || conf->type == CONF_OPER)
1103 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
1104 "Warning *** Defaulting to default class for %s@%s",
1105 conf->user, conf->host);
1106 else
1107 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
1108 "Warning *** Defaulting to default class for %s",
1109 conf->name);
1110 }
1111 }
1112
1113 /* yyerror()
1114 *
1115 * inputs - message from parser
1116 * output - NONE
1117 * side effects - message to opers and log file entry is made
1118 */
1119 void
1120 yyerror(const char *msg)
1121 {
1122 if (conf_parser_ctx.pass != 1)
1123 return;
1124
1125 const char *p = stripws(linebuf);
1126 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
1127 "\"%s\", line %u: %s: %s",
1128 conffilebuf, lineno, msg, p);
1129 ilog(LOG_TYPE_IRCD, "\"%s\", line %u: %s: %s",
1130 conffilebuf, lineno, msg, p);
1131 }
1132
1133 void
1134 conf_error_report(const char *msg)
1135 {
1136 const char *p = stripws(linebuf);
1137 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
1138 "\"%s\", line %u: %s: %s",
1139 conffilebuf, lineno, msg, p);
1140 ilog(LOG_TYPE_IRCD, "\"%s\", line %u: %s: %s",
1141 conffilebuf, lineno, msg, p);
1142 }
1143
1144 /*
1145 * valid_tkline()
1146 *
1147 * inputs - pointer to ascii string to check
1148 * - whether the specified time is in seconds or minutes
1149 * output - -1 not enough parameters
1150 * - 0 if not an integer number, else the number
1151 * side effects - none
1152 * Originally written by Dianora (Diane, db@db.net)
1153 */
1154 uintmax_t
1155 valid_tkline(const char *data, const int minutes)
1156 {
1157 const unsigned char *p = (const unsigned char *)data;
1158 unsigned char tmpch = '\0';
1159 uintmax_t result = 0;
1160
1161 while ((tmpch = *p++))
1162 {
1163 if (!IsDigit(tmpch))
1164 return 0;
1165
1166 result *= 10;
1167 result += (tmpch & 0xF);
1168 }
1169
1170 /*
1171 * In the degenerate case where oper does a /quote kline 0 user@host :reason
1172 * i.e. they specifically use 0, I am going to return 1 instead as a return
1173 * value of non-zero is used to flag it as a temporary kline
1174 */
1175 if (result == 0)
1176 result = 1;
1177
1178 /*
1179 * If the incoming time is in seconds convert it to minutes for the purpose
1180 * of this calculation
1181 */
1182 if (minutes == 0)
1183 result = result / 60;
1184
1185 if (result > MAX_TDKLINE_TIME)
1186 result = MAX_TDKLINE_TIME;
1187
1188 result = result * 60; /* Turn it into seconds */
1189
1190 return result;
1191 }
1192
1193 /* valid_wild_card_simple()
1194 *
1195 * inputs - data to check for sufficient non-wildcard characters
1196 * outputs - 1 if valid, else 0
1197 * side effects - none
1198 */
1199 int
1200 valid_wild_card_simple(const char *data)
1201 {
1202 const unsigned char *p = (const unsigned char *)data;
1203 unsigned char tmpch = '\0';
1204 unsigned int nonwild = 0, wild = 0;
1205
1206 while ((tmpch = *p++))
1207 {
1208 if (tmpch == '\\' && *p)
1209 {
1210 ++p;
1211 if (++nonwild >= ConfigGeneral.min_nonwildcard_simple)
1212 return 1;
1213 }
1214 else if (!IsMWildChar(tmpch))
1215 {
1216 if (++nonwild >= ConfigGeneral.min_nonwildcard_simple)
1217 return 1;
1218 }
1219 else
1220 ++wild;
1221 }
1222
1223 return !wild;
1224 }
1225
1226 /* valid_wild_card()
1227 *
1228 * input - pointer to client
1229 * - int flag, 0 for no warning oper 1 for warning oper
1230 * - count of following varargs to check
1231 * output - 0 if not valid, 1 if valid
1232 * side effects - NOTICE is given to source_p if warn is 1
1233 */
1234 int
1235 valid_wild_card(int count, ...)
1236 {
1237 unsigned char tmpch = '\0';
1238 unsigned int nonwild = 0;
1239 va_list args;
1240
1241 /*
1242 * Now we must check the user and host to make sure there
1243 * are at least NONWILDCHARS non-wildcard characters in
1244 * them, otherwise assume they are attempting to kline
1245 * *@* or some variant of that. This code will also catch
1246 * people attempting to kline *@*.tld, as long as NONWILDCHARS
1247 * is greater than 3. In that case, there are only 3 non-wild
1248 * characters (tld), so if NONWILDCHARS is 4, the kline will
1249 * be disallowed.
1250 * -wnder
1251 */
1252
1253 va_start(args, count);
1254
1255 while (count--)
1256 {
1257 const unsigned char *p = va_arg(args, const unsigned char *);
1258 if (p == NULL)
1259 continue;
1260
1261 while ((tmpch = *p++))
1262 {
1263 if (!IsKWildChar(tmpch))
1264 {
1265 /*
1266 * If we find enough non-wild characters, we can
1267 * break - no point in searching further.
1268 */
1269 if (++nonwild >= ConfigGeneral.min_nonwildcard)
1270 {
1271 va_end(args);
1272 return 1;
1273 }
1274 }
1275 }
1276 }
1277
1278 va_end(args);
1279 return 0;
1280 }
1281
1282 /* find_user_host()
1283 *
1284 * inputs - pointer to client placing kline
1285 * - pointer to user_host_or_nick
1286 * - pointer to user buffer
1287 * - pointer to host buffer
1288 * output - 0 if not ok to kline, 1 to kline i.e. if valid user host
1289 * side effects -
1290 */
1291 static int
1292 find_user_host(struct Client *source_p, char *user_host_or_nick,
1293 char *luser, char *lhost)
1294 {
1295 struct Client *target_p = NULL;
1296 char *hostp = NULL;
1297
1298 if (lhost == NULL)
1299 {
1300 strlcpy(luser, user_host_or_nick, USERLEN*4 + 1);
1301 return 1;
1302 }
1303
1304 if ((hostp = strchr(user_host_or_nick, '@')) || *user_host_or_nick == '*')
1305 {
1306 /* Explicit user@host mask given */
1307 if (hostp) /* I'm a little user@host */
1308 {
1309 *(hostp++) = '\0'; /* short and squat */
1310
1311 if (*user_host_or_nick)
1312 strlcpy(luser, user_host_or_nick, USERLEN*4 + 1); /* here is my user */
1313 else
1314 strcpy(luser, "*");
1315
1316 if (*hostp)
1317 strlcpy(lhost, hostp, HOSTLEN + 1); /* here is my host */
1318 else
1319 strcpy(lhost, "*");
1320 }
1321 else
1322 {
1323 luser[0] = '*'; /* no @ found, assume its *@somehost */
1324 luser[1] = '\0';
1325 strlcpy(lhost, user_host_or_nick, HOSTLEN*4 + 1);
1326 }
1327
1328 return 1;
1329 }
1330 else
1331 {
1332 /* Try to find user@host mask from nick */
1333 /* Okay to use source_p as the first param, because source_p == client_p */
1334 if ((target_p =
1335 find_chasing(source_p, user_host_or_nick)) == NULL)
1336 return 0; /* find_chasing sends ERR_NOSUCHNICK */
1337
1338 if (HasFlag(target_p, FLAGS_EXEMPTKLINE))
1339 {
1340 if (IsClient(source_p))
1341 sendto_one_notice(source_p, &me, ":%s is E-lined", target_p->name);
1342 return 0;
1343 }
1344
1345 /*
1346 * Turn the "user" bit into "*user", blow away '~'
1347 * if found in original user name (non-idented)
1348 */
1349 strlcpy(luser, target_p->username, USERLEN*4 + 1);
1350
1351 if (target_p->username[0] == '~')
1352 luser[0] = '*';
1353
1354 strlcpy(lhost, target_p->sockhost, HOSTLEN*4 + 1);
1355 return 1;
1356 }
1357
1358 return 0;
1359 }
1360
1361 /* XXX should this go into a separate file ? -Dianora */
1362 /* parse_aline
1363 *
1364 * input - pointer to cmd name being used
1365 * - pointer to client using cmd
1366 * - parc parameter count
1367 * - parv[] list of parameters to parse
1368 * - parse_flags bit map of things to test
1369 * - pointer to user or string to parse into
1370 * - pointer to host or NULL to parse into if non NULL
1371 * - pointer to optional tkline time or NULL
1372 * - pointer to target_server to parse into if non NULL
1373 * - pointer to reason to parse into
1374 *
1375 * output - 1 if valid, 0 if not valid
1376 * side effects - A generalised k/d/x etc. line parser,
1377 * "ALINE [time] user@host|string [ON] target :reason"
1378 * will parse returning a parsed user, host if
1379 * h_p pointer is non NULL, string otherwise.
1380 * if tkline_time pointer is non NULL a tk line will be set
1381 * to non zero if found.
1382 * if tkline_time pointer is NULL and tk line is found,
1383 * error is reported.
1384 * if target_server is NULL and an "ON" is found error
1385 * is reported.
1386 * if reason pointer is NULL ignore pointer,
1387 * this allows use of parse_a_line in unkline etc.
1388 *
1389 * - Dianora
1390 */
1391 int
1392 parse_aline(const char *cmd, struct Client *source_p,
1393 int parc, char **parv,
1394 char **up_p, char **h_p, uintmax_t *tkline_time,
1395 char **target_server, char **reason)
1396 {
1397 uintmax_t found_tkline_time=0;
1398 static char default_reason[] = CONF_NOREASON;
1399 static char user[USERLEN*4+1];
1400 static char host[HOSTLEN*4+1];
1401
1402 parv++;
1403 parc--;
1404
1405 found_tkline_time = valid_tkline(*parv, TK_MINUTES);
1406
1407 if (found_tkline_time)
1408 {
1409 parv++;
1410 parc--;
1411
1412 if (tkline_time)
1413 *tkline_time = found_tkline_time;
1414 else
1415 {
1416 sendto_one_notice(source_p, &me, ":temp_line not supported by %s", cmd);
1417 return 0;
1418 }
1419 }
1420
1421 if (parc == 0)
1422 {
1423 sendto_one_numeric(source_p, &me, ERR_NEEDMOREPARAMS, cmd);
1424 return 0;
1425 }
1426
1427 if (h_p == NULL)
1428 *up_p = *parv;
1429 else
1430 {
1431 if (find_user_host(source_p, *parv, user, host) == 0)
1432 return 0;
1433
1434 *up_p = user;
1435 *h_p = host;
1436 }
1437
1438 parc--;
1439 parv++;
1440
1441 if (parc)
1442 {
1443 if (irccmp(*parv, "ON") == 0)
1444 {
1445 parc--;
1446 parv++;
1447
1448 if (!HasOFlag(source_p, OPER_FLAG_REMOTEBAN))
1449 {
1450 sendto_one_numeric(source_p, &me, ERR_NOPRIVS, "remoteban");
1451 return 0;
1452 }
1453
1454 if (parc == 0 || EmptyString(*parv))
1455 {
1456 sendto_one_numeric(source_p, &me, ERR_NEEDMOREPARAMS, cmd);
1457 return 0;
1458 }
1459
1460 *target_server = *parv;
1461 parc--;
1462 parv++;
1463 }
1464 else
1465 {
1466 /* Make sure target_server *is* NULL if no ON server found
1467 * caller probably NULL'd it first, but no harm to do it again -db
1468 */
1469 if (target_server)
1470 *target_server = NULL;
1471 }
1472 }
1473
1474 if (reason)
1475 {
1476 if (parc && !EmptyString(*parv))
1477 *reason = *parv;
1478 else
1479 *reason = default_reason;
1480 }
1481
1482 return 1;
1483 }
1484
1485 /* match_conf_password()
1486 *
1487 * inputs - pointer to given password
1488 * - pointer to Conf
1489 * output - 1 or 0 if match
1490 * side effects - none
1491 */
1492 int
1493 match_conf_password(const char *password, const struct MaskItem *conf)
1494 {
1495 const char *encr = NULL;
1496
1497 if (EmptyString(password) || EmptyString(conf->passwd))
1498 return 0;
1499
1500 if (conf->flags & CONF_FLAGS_ENCRYPTED)
1501 encr = crypt(password, conf->passwd);
1502 else
1503 encr = password;
1504
1505 return encr && !strcmp(encr, conf->passwd);
1506 }
1507
1508 /*
1509 * split_nuh
1510 *
1511 * inputs - pointer to original mask (modified in place)
1512 * - pointer to pointer where nick should go
1513 * - pointer to pointer where user should go
1514 * - pointer to pointer where host should go
1515 * output - NONE
1516 * side effects - mask is modified in place
1517 * If nick pointer is NULL, ignore writing to it
1518 * this allows us to use this function elsewhere.
1519 *
1520 * mask nick user host
1521 * ---------------------- ------- ------- ------
1522 * Dianora!db@db.net Dianora db db.net
1523 * Dianora Dianora * *
1524 * db.net * * db.net
1525 * OR if nick pointer is NULL
1526 * Dianora - * Dianora
1527 * Dianora! Dianora * *
1528 * Dianora!@ Dianora * *
1529 * Dianora!db Dianora db *
1530 * Dianora!@db.net Dianora * db.net
1531 * db@db.net * db db.net
1532 * !@ * * *
1533 * @ * * *
1534 * ! * * *
1535 */
1536 void
1537 split_nuh(struct split_nuh_item *const iptr)
1538 {
1539 char *p = NULL, *q = NULL;
1540
1541 if (iptr->nickptr)
1542 strlcpy(iptr->nickptr, "*", iptr->nicksize);
1543
1544 if (iptr->userptr)
1545 strlcpy(iptr->userptr, "*", iptr->usersize);
1546
1547 if (iptr->hostptr)
1548 strlcpy(iptr->hostptr, "*", iptr->hostsize);
1549
1550 if ((p = strchr(iptr->nuhmask, '!')))
1551 {
1552 *p = '\0';
1553
1554 if (iptr->nickptr && *iptr->nuhmask)
1555 strlcpy(iptr->nickptr, iptr->nuhmask, iptr->nicksize);
1556
1557 if ((q = strchr(++p, '@')))
1558 {
1559 *q++ = '\0';
1560
1561 if (*p)
1562 strlcpy(iptr->userptr, p, iptr->usersize);
1563
1564 if (*q)
1565 strlcpy(iptr->hostptr, q, iptr->hostsize);
1566 }
1567 else
1568 {
1569 if (*p)
1570 strlcpy(iptr->userptr, p, iptr->usersize);
1571 }
1572 }
1573 else
1574 {
1575 /* No ! found so lets look for a user@host */
1576 if ((p = strchr(iptr->nuhmask, '@')))
1577 {
1578 /* if found a @ */
1579 *p++ = '\0';
1580
1581 if (*iptr->nuhmask)
1582 strlcpy(iptr->userptr, iptr->nuhmask, iptr->usersize);
1583
1584 if (*p)
1585 strlcpy(iptr->hostptr, p, iptr->hostsize);
1586 }
1587 else
1588 {
1589 /* No @ found */
1590 if (!iptr->nickptr || strpbrk(iptr->nuhmask, ".:"))
1591 strlcpy(iptr->hostptr, iptr->nuhmask, iptr->hostsize);
1592 else
1593 strlcpy(iptr->nickptr, iptr->nuhmask, iptr->nicksize);
1594 }
1595 }
1596 }

Properties

Name Value
svn:eol-style native
svn:keywords Id

svnadmin@ircd-hybrid.org
ViewVC Help
Powered by ViewVC 1.1.28