[ViewVC] Diff of: svn/ircd-hybrid/trunk/src/hostmask.c

Comparing ircd-hybrid/trunk/src/hostmask.c (file contents):
Revision 1628 by michael, Thu Nov 1 21:08:56 2012 UTC vs.
Revision 3005 by michael, Wed Feb 19 10:40:15 2014 UTC

+/*
-<
+ *  ircd-hybrid: an advanced Internet Relay Chat Daemon(ircd).
-<
+ *  hostmask.c: Code to efficiently find IP & hostmask based configs.
->
+ *  ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
-<
+ *  Copyright (C) 2005 by the past and present ircd coders, and others.
->
+ *  Copyright (c) 2001-2014 ircd-hybrid development team
+ *  This program is free software; you can redistribute it and/or modify
+ *  it under the terms of the GNU General Public License as published by
+ *  along with this program; if not, write to the Free Software
+ *  Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307
+ *  USA
-<
+ *
-<
+ *  $Id$
->
+ */
->
->
+/*! \file hostmask.c
->
+ * \brief Code to efficiently find IP & hostmask based configs.
->
+ * \version $Id$
+ */
+#include "stdinc.h"
+ * Side effects: None
+ * Comments: Called from parse_netmask
+ */
-<
+/* Fixed so ::/0 (any IPv6 address) is valid
->
+/* Fixed so ::/0 (any IPv6 address) is valid
+   Also a bug in DigitParse above.
+   -Gozem 2002-07-19 gozem@linux.nu
+*/
+  struct sockaddr_in6 *v6 = (struct sockaddr_in6 *)addr;
+  for (p = text; (c = *p); p++)
-+
+  {
+    if (IsXDigit(c))
+      if (nyble == 0)
+    else
+      return HM_HOST;
-+
+  }
+  d[dp] = d[dp] >> 4 * nyble;
+  digits[n++] = text;
+  for (p = text; (c = *p); p++)
-+
+  {
+    if (c >= '0' && c <= '9')   /* empty */
+    else if (c == '.')
+      char *after;
+      bits = strtoul(p + 1, &after, 10);
-<
+      if (!bits || *after)
->
+      if (bits < 0 || *after)
+        return HM_HOST;
+      if (bits > n * 8)
+        return HM_HOST;
+    else
+      return HM_HOST;
-+
+  }
+  if (n < 4 && bits == 0)
+    bits = n * 8;
+int
+parse_netmask(const char *text, struct irc_ssaddr *addr, int *b)
-+
+  if (strchr(text, '.'))
-+
+    return try_parse_v4_netmask(text, addr, b);
+#ifdef IPV6
+  if (strchr(text, ':'))
+    return try_parse_v6_netmask(text, addr, b);
+#endif
-–
+  if (strchr(text, '.'))
-–
+    return try_parse_v4_netmask(text, addr, b);
+  return HM_HOST;
+ * Side effects: None
+ */
+static uint32_t
-<
+hash_ipv4(struct irc_ssaddr *addr, int bits)
->
+hash_ipv4(const struct irc_ssaddr *addr, int bits)
+  if (bits != 0)
-<
+    struct sockaddr_in *v4 = (struct sockaddr_in *)addr;
->
+    const struct sockaddr_in *v4 = (const struct sockaddr_in *)addr;
+    uint32_t av = ntohl(v4->sin_addr.s_addr) & ~((1 << (32 - bits)) - 1);
+    return (av ^ (av >> 12) ^ (av >> 24)) & (ATABLE_SIZE - 1);
+ */
+#ifdef IPV6
+static uint32_t
-<
+hash_ipv6(struct irc_ssaddr *addr, int bits)
->
+hash_ipv6(const struct irc_ssaddr *addr, int bits)
+  uint32_t v = 0, n;
-<
+  struct sockaddr_in6 *v6 = (struct sockaddr_in6 *)addr;
->
+  const struct sockaddr_in6 *v6 = (const struct sockaddr_in6 *)addr;
+  for (n = 0; n < 16; n++)
+  uint32_t h = 0;
+  for (; *p; ++p)
-<
+    h = (h << 4) - (h + (unsigned char)ToLower(*p));
->
+    h = (h << 4) - (h + ToLower(*p));
+  return h & (ATABLE_SIZE - 1);
+  return hash_text(text);
-<
+/* struct AccessItem *find_conf_by_address(const char *, struct irc_ssaddr *,
->
+/* struct MaskItem *find_conf_by_address(const char *, struct irc_ssaddr *,
+ *                                         int type, int fam, const char *username)
+ * Input: The hostname, the address, the type of mask to find, the address
+ *        family, the username.
+ * Side-effects: None
+ * Note: Setting bit 0 of the type means that the username is ignored.
+ * Warning: IsNeedPassword for everything that is not an auth{} entry
-<
+ * should always be true (i.e. aconf->flags & CONF_FLAGS_NEED_PASSWORD == 0)
->
+ * should always be true (i.e. conf->flags & CONF_FLAGS_NEED_PASSWORD == 0)
+ */
-<
+struct AccessItem *
->
+struct MaskItem *
+find_conf_by_address(const char *name, struct irc_ssaddr *addr, unsigned int type,
+                     int fam, const char *username, const char *password, int do_match)
+  unsigned int hprecv = 0;
+  dlink_node *ptr = NULL;
-<
+  struct AccessItem *hprec = NULL;
-<
+  struct AddressRec *arec;
->
+  struct MaskItem *hprec = NULL;
->
+  struct AddressRec *arec = NULL;
+  int b;
+  int (*cmpfunc)(const char *, const char *) = do_match ? match : irccmp;
-–
+  if (username == NULL)
-–
+    username = "";
-–
+  if (password == NULL)
-–
+    password = "";
-–
+  if (addr)
+    /* Check for IPV6 matches... */
+        DLINK_FOREACH(ptr, atable[hash_ipv6(addr, b)].head)
-<
+          arec = ptr->data;
->
+          arec = ptr->data;
-<
+          if (arec->type == (type & ~0x1) &&
->
+          if ((arec->type == type) &&
+              arec->precedence > hprecv &&
+              arec->masktype == HM_IPV6 &&
+              match_ipv6(addr, &arec->Mask.ipa.addr,
+                         arec->Mask.ipa.bits) &&
-<
+              (type & 0x1 || cmpfunc(arec->username, username) == do_match) &&
-<
+              (IsNeedPassword(arec->aconf) || arec->aconf->passwd == NULL ||
-<
+               match_conf_password(password, arec->aconf)))
->
+              (!username || !cmpfunc(arec->username, username)) &&
->
+              (IsNeedPassword(arec->conf) || arec->conf->passwd == NULL ||
->
+               match_conf_password(password, arec->conf)))
+            hprecv = arec->precedence;
-<
+            hprec = arec->aconf;
->
+            hprec = arec->conf;
+          arec = ptr->data;
-<
+          if (arec->type == (type & ~0x1) &&
->
+          if ((arec->type == type) &&
+              arec->precedence > hprecv &&
+              arec->masktype == HM_IPV4 &&
+              match_ipv4(addr, &arec->Mask.ipa.addr,
+                         arec->Mask.ipa.bits) &&
-<
+              (type & 0x1 || cmpfunc(arec->username, username) == do_match) &&
-<
+              (IsNeedPassword(arec->aconf) || arec->aconf->passwd == NULL ||
-<
+               match_conf_password(password, arec->aconf)))
->
+              (!username || !cmpfunc(arec->username, username)) &&
->
+              (IsNeedPassword(arec->conf) || arec->conf->passwd == NULL ||
->
+               match_conf_password(password, arec->conf)))
+            hprecv = arec->precedence;
-<
+            hprec = arec->aconf;
->
+            hprec = arec->conf;
+        DLINK_FOREACH(ptr, atable[hash_text(p)].head)
+          arec = ptr->data;
-<
+          if ((arec->type == (type & ~0x1)) &&
->
+          if ((arec->type == type) &&
+            arec->precedence > hprecv &&
+            (arec->masktype == HM_HOST) &&
-<
+            cmpfunc(arec->Mask.hostname, name) == do_match &&
-<
+            (type & 0x1 || cmpfunc(arec->username, username) == do_match) &&
-<
+            (IsNeedPassword(arec->aconf) || arec->aconf->passwd == NULL ||
-<
+             match_conf_password(password, arec->aconf)))
->
+            !cmpfunc(arec->Mask.hostname, name) &&
->
+            (!username || !cmpfunc(arec->username, username)) &&
->
+            (IsNeedPassword(arec->conf) || arec->conf->passwd == NULL ||
->
+             match_conf_password(password, arec->conf)))
+          hprecv = arec->precedence;
-<
+          hprec = arec->aconf;
->
+          hprec = arec->conf;
+      p = strchr(p, '.');
+      arec = ptr->data;
-<
+      if (arec->type == (type & ~0x1) &&
->
+      if (arec->type == type &&
+          arec->precedence > hprecv &&
+          arec->masktype == HM_HOST &&
-<
+          cmpfunc(arec->Mask.hostname, name) == do_match &&
-<
+          (type & 0x1 || cmpfunc(arec->username, username) == do_match) &&
-<
+          (IsNeedPassword(arec->aconf) || arec->aconf->passwd == NULL ||
-<
+           match_conf_password(password, arec->aconf)))
->
+          !cmpfunc(arec->Mask.hostname, name) &&
->
+          (!username || !cmpfunc(arec->username, username)) &&
->
+          (IsNeedPassword(arec->conf) || arec->conf->passwd == NULL ||
->
+           match_conf_password(password, arec->conf)))
+        hprecv = arec->precedence;
-<
+        hprec = arec->aconf;
->
+        hprec = arec->conf;
+  return hprec;
-<
+/* struct AccessItem* find_address_conf(const char*, const char*,
->
+/* struct MaskItem* find_address_conf(const char*, const char*,
+ *                                     struct irc_ssaddr*, int, char *);
+ * Input: The hostname, username, address, address family.
-<
+ * Output: The applicable AccessItem.
->
+ * Output: The applicable MaskItem.
+ * Side-effects: None
+ */
-<
+struct AccessItem *
->
+struct MaskItem *
+find_address_conf(const char *host, const char *user,
+                  struct irc_ssaddr *ip, int aftype, char *password)
-<
+  struct AccessItem *iconf, *kconf;
->
+  struct MaskItem *authcnf = NULL, *killcnf = NULL;
+  /* Find the best auth{} block... If none, return NULL -A1kmm */
-<
+  if ((iconf = find_conf_by_address(host, ip, CONF_CLIENT, aftype, user,
-<
+                                    password, 1)) == NULL)
->
+  if ((authcnf = find_conf_by_address(host, ip, CONF_CLIENT, aftype, user,
->
+                                      password, 1)) == NULL)
+    return NULL;
+  /* If they are exempt from K-lines, return the best auth{} block. -A1kmm */
-<
+  if (IsConfExemptKline(iconf))
-<
+    return iconf;
->
+  if (IsConfExemptKline(authcnf))
->
+    return authcnf;
+  /* Find the best K-line... -A1kmm */
-<
+  kconf = find_conf_by_address(host, ip, CONF_KLINE, aftype, user, NULL, 1);
->
+  killcnf = find_conf_by_address(host, ip, CONF_KLINE, aftype, user, NULL, 1);
+  /*
+   * If they are K-lined, return the K-line. Otherwise, return the
+   * auth{} block. -A1kmm
+   */
-<
+  if (kconf != NULL)
-<
+    return kconf;
->
+  if (killcnf != NULL)
->
+    return killcnf;
->
->
+  if (IsConfExemptGline(authcnf))
->
+    return authcnf;
-<
+  kconf = find_conf_by_address(host, ip, CONF_GLINE, aftype, user, NULL, 1);
-<
+  if (kconf != NULL && !IsConfExemptGline(iconf))
-<
+    return kconf;
->
+  killcnf = find_conf_by_address(host, ip, CONF_GLINE, aftype, user, NULL, 1);
->
+  if (killcnf != NULL)
->
+    return killcnf;
-<
+  return iconf;
->
+  return authcnf;
-<
+/* struct AccessItem* find_dline_conf(struct irc_ssaddr*, int)
->
+/* struct MaskItem* find_dline_conf(struct irc_ssaddr*, int)
+ * Input:       An address, an address family.
+ * Output:      The best matching D-line or exempt line.
+ * Side effects: None.
+ */
-<
+struct AccessItem *
->
+struct MaskItem *
+find_dline_conf(struct irc_ssaddr *addr, int aftype)
-<
+  struct AccessItem *eline;
->
+  struct MaskItem *eline;
-<
+  eline = find_conf_by_address(NULL, addr, CONF_EXEMPTDLINE | 1, aftype,
-<
+                               NULL, NULL, 1);
->
+  eline = find_conf_by_address(NULL, addr, CONF_EXEMPT, aftype, NULL, NULL, 1);
+  if (eline != NULL)
+    return eline;
-<
+  return find_conf_by_address(NULL, addr, CONF_DLINE | 1, aftype, NULL, NULL, 1);
->
+  return find_conf_by_address(NULL, addr, CONF_DLINE, aftype, NULL, NULL, 1);
-<
+/* void add_conf_by_address(int, struct AccessItem *aconf)
-<
+ * Input:
->
+/* void add_conf_by_address(int, struct MaskItem *aconf)
->
+ * Input:
+ * Output: None
+ * Side-effects: Adds this entry to the hash table.
+ */
-<
+void
-<
+add_conf_by_address(const unsigned int type, struct AccessItem *aconf)
->
+struct AddressRec *
->
+add_conf_by_address(const unsigned int type, struct MaskItem *conf)
-<
+  const char *address;
-<
+  const char *username;
->
+  const char *hostname = conf->host;
->
+  const char *username = conf->user;
+  static unsigned int prec_value = 0xFFFFFFFF;
+  int bits = 0;
-<
+  struct AddressRec *arec;
->
+  struct AddressRec *arec = NULL;
-<
+  address = aconf->host;
-<
+  username = aconf->user;
-<
-<
+  assert(type != 0);
-<
+  assert(aconf != NULL);
-<
-<
+  if (EmptyString(address))
-<
+    address = "/NOMATCH!/";
->
+  assert(type && !EmptyString(hostname));
+  arec = MyMalloc(sizeof(struct AddressRec));
-<
+  arec->masktype = parse_netmask(address, &arec->Mask.ipa.addr, &bits);
->
+  arec->masktype = parse_netmask(hostname, &arec->Mask.ipa.addr, &bits);
+  arec->Mask.ipa.bits = bits;
+  arec->username = username;
-<
+  arec->aconf = aconf;
->
+  arec->conf = conf;
+  arec->precedence = prec_value--;
+  arec->type = type;
+      break;
+#endif
+    default: /* HM_HOST */
-<
+      arec->Mask.hostname = address;
-<
+      dlinkAdd(arec, &arec->node, &atable[get_mask_hash(address)]);
->
+      arec->Mask.hostname = hostname;
->
+      dlinkAdd(arec, &arec->node, &atable[get_mask_hash(hostname)]);
+      break;
-+
-+
+  return arec;
-<
+/* void delete_one_address(const char*, struct AccessItem*)
-<
+ * Input: An address string, the associated AccessItem.
->
+/* void delete_one_address(const char*, struct MaskItem*)
->
+ * Input: An address string, the associated MaskItem.
+ * Output: None
-<
+ * Side effects: Deletes an address record. Frees the AccessItem if there
->
+ * Side effects: Deletes an address record. Frees the MaskItem if there
+ *               is nothing referencing it, sets it as illegal otherwise.
+ */
+void
-<
+delete_one_address_conf(const char *address, struct AccessItem *aconf)
->
+delete_one_address_conf(const char *address, struct MaskItem *conf)
+  int bits = 0;
+  uint32_t hv = 0;
+    struct AddressRec *arec = ptr->data;
-<
+    if (arec->aconf == aconf)
->
+    if (arec->conf == conf)
+      dlinkDelete(&arec->node, &atable[hv]);
-–
+      aconf->status |= CONF_ILLEGAL;
-<
+      if (!aconf->clients)
-<
+        free_access_item(aconf);
->
+      if (!conf->ref_count)
->
+        conf_free(conf);
+      MyFree(arec);
+      return;
+ * Input: None
+ * Output: None
+ * Side effects: Clears out all address records in the hash table,
-<
+ *               frees them, and frees the AccessItems if nothing references
-<
+ *               them, otherwise sets them as illegal.
->
+ *               frees them, and frees the MaskItems if nothing references
->
+ *               them, otherwise sets them as illegal.
+ */
+void
+clear_out_address_conf(void)
+  unsigned int i = 0;
+  dlink_node *ptr = NULL, *ptr_next = NULL;
-<
->
+  for (i = 0; i < ATABLE_SIZE; ++i)
+    DLINK_FOREACH_SAFE(ptr, ptr_next, atable[i].head)
+       * We keep the temporary K-lines and destroy the permanent ones,
+       * just to be confusing :) -A1kmm
+       */
-<
+      if (arec->aconf->hold || IsConfDatabase(arec->aconf))
->
+      if (arec->conf->until || IsConfDatabase(arec->conf))
+        continue;
+      dlinkDelete(&arec->node, &atable[i]);
-–
+      arec->aconf->status |= CONF_ILLEGAL;
-<
+      if (!arec->aconf->clients)
-<
+        free_access_item(arec->aconf);
->
+      if (!arec->conf->ref_count)
->
+        conf_free(arec->conf);
+      MyFree(arec);
+    case CONF_GLINE:
+      ban_type = 'G';
+      break;
-+
+    default: break;
-<
->
+  sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
+                       "Temporary %c-line for [%s@%s] expired", ban_type,
-<
+                       (arec->aconf->user) ? arec->aconf->user : "*",
-<
+                       (arec->aconf->host) ? arec->aconf->host : "*");
->
+                       (arec->conf->user) ? arec->conf->user : "*",
->
+                       (arec->conf->host) ? arec->conf->host : "*");
+void
+      struct AddressRec *arec = ptr->data;
-<
+      if (!arec->aconf->hold || arec->aconf->hold > CurrentTime)
->
+      if (!arec->conf->until || arec->conf->until > CurrentTime)
+        continue;
+      switch (arec->type)
+          hostmask_send_expiration(arec);
+          dlinkDelete(&arec->node, &atable[i]);
-<
+          free_access_item(arec->aconf);
->
+          conf_free(arec->conf);
+          MyFree(arec);
+          break;
-+
+        default: break;

Diff Legend

-–
+Removed lines
-+
+Added lines
-<
+Changed lines (old)
->
+Changed lines (new)

Comparing ircd-hybrid/trunk/src/hostmask.c (file contents): Revision 1628 by michael, Thu Nov 1 21:08:56 2012 UTC vs. Revision 3005 by michael, Wed Feb 19 10:40:15 2014 UTC

Diff Legend

Comparing ircd-hybrid/trunk/src/hostmask.c (file contents):
Revision 1628 by michael, Thu Nov 1 21:08:56 2012 UTC vs.
Revision 3005 by michael, Wed Feb 19 10:40:15 2014 UTC