trunk/src/ircd.c

/*
 *  ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
 *
 *  Copyright (c) 1997-2014 ircd-hybrid development team
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
 *  USA
 */

/*! \file ircd.c
 * \brief Starts up and runs the ircd.
 * \version $Id$
 */

#include "stdinc.h"
#include "user.h"
#include "list.h"
#include "ircd.h"
#include "channel.h"
#include "client.h"
#include "event.h"
#include "fdlist.h"
#include "hash.h"
#include "irc_string.h"
#include "ircd_signal.h"
#include "gline.h"
#include "motd.h"
#include "conf.h"
#include "hostmask.h"
#include "parse.h"
#include "res.h"
#include "restart.h"
#include "rng_mt.h"
#include "auth.h"
#include "s_bsd.h"
#include "log.h"
#include "server.h"      /* try_connections */
#include "send.h"
#include "whowas.h"
#include "modules.h"
#include "memory.h"
#include "mempool.h"
#include "ircd_getopt.h"
#include "watch.h"
#include "conf_db.h"
#include "conf_class.h"
#include "ipcache.h"


#ifdef HAVE_LIBGEOIP
GeoIP *geoip_ctx;
#endif

struct ServerStatistics ServerStats;
struct timeval SystemTime;
struct Client me;             /* That's me */
struct Connection meConnection; /* That's also part of me */

const char *logFileName = LPATH;
const char *pidFileName = PPATH;

char **myargv;

int dorehash = 0;
int doremotd = 0;

/* Set to zero because it should be initialized later using
 * initialize_server_capabs
 */
unsigned int default_server_capabs;
unsigned int splitmode;
unsigned int splitchecking;
unsigned int split_users;
unsigned int split_servers;

static struct event event_cleanup_glines =
{
  .name = "cleanup_glines",
  .handler = cleanup_glines,
  .when = CLEANUP_GLINES_TIME
};

static struct event event_cleanup_tklines =
{
  .name = "cleanup_tklines",
  .handler = cleanup_tklines,
  .when = CLEANUP_TKLINES_TIME
};

static struct event event_try_connections =
{
  .name = "try_connections",
  .handler = try_connections,
  .when = STARTUP_CONNECTIONS_TIME
};

static struct event event_comm_checktimeouts =
{
  .name = "comm_checktimeouts",
  .handler = comm_checktimeouts,
  .when = 1
};

static struct event event_save_all_databases =
{
  .name = "save_all_databases",
  .handler = save_all_databases,
  .when = DATABASE_UPDATE_TIMEOUT
};

struct event event_write_links_file =
{
  .name = "write_links_file",
  .handler = write_links_file,
};


/*
 * print_startup - print startup information
 */
static void
print_startup(int pid)
{
  printf("ircd: version %s(%s)\n", ircd_version, serno);
  printf("ircd: pid %d\n", pid);
  printf("ircd: running in %s mode from %s\n", !server_state.foreground ? "background"
         : "foreground", ConfigGeneral.dpath);
}

static void
make_daemon(void)
{
  int pid;

  if ((pid = fork()) < 0)
  {
    perror("fork");
    exit(EXIT_FAILURE);
  }
  else if (pid > 0)
  {
    print_startup(pid);
    exit(EXIT_SUCCESS);
  }

  setsid();
}

static int printVersion = 0;

static struct lgetopt myopts[] =
{
  {"configfile", &ConfigGeneral.configfile,
   STRING, "File to use for ircd.conf"},
  {"glinefile",  &ConfigGeneral.glinefile,
   STRING, "File to use for gline database"},
  {"klinefile",  &ConfigGeneral.klinefile,
   STRING, "File to use for kline database"},
  {"dlinefile",  &ConfigGeneral.dlinefile,
   STRING, "File to use for dline database"},
  {"xlinefile",  &ConfigGeneral.xlinefile,
   STRING, "File to use for xline database"},
  {"resvfile",  &ConfigGeneral.resvfile,
   STRING, "File to use for resv database"},
  {"logfile",    &logFileName,
   STRING, "File to use for ircd.log"},
  {"pidfile",    &pidFileName,
   STRING, "File to use for process ID"},
  {"foreground", &server_state.foreground,
   YESNO, "Run in foreground (don't detach)"},
  {"version",    &printVersion,
   YESNO, "Print version and exit"},
  {"help", NULL, USAGE, "Print this text"},
  {NULL, NULL, STRING, NULL},
};

void
set_time(void)
{
  struct timeval newtime = { .tv_sec = 0, .tv_usec = 0 };

  if (gettimeofday(&newtime, NULL) == -1)
  {
    ilog(LOG_TYPE_IRCD, "Clock Failure (%s), TS can be corrupted",
         strerror(errno));
    sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
                         "Clock Failure (%s), TS can be corrupted",
                         strerror(errno));
    server_die("Clock Failure", 1);
  }

  if (newtime.tv_sec < CurrentTime)
  {
    ilog(LOG_TYPE_IRCD, "System clock is running backwards - (%lu < %lu)",
         (unsigned long)newtime.tv_sec, (unsigned long)CurrentTime);
    sendto_realops_flags(UMODE_DEBUG, L_ALL, SEND_NOTICE,
                         "System clock is running backwards - (%lu < %lu)",
                         (unsigned long)newtime.tv_sec,
                         (unsigned long)CurrentTime);
    set_back_events(CurrentTime - newtime.tv_sec);
  }

  SystemTime.tv_sec  = newtime.tv_sec;
  SystemTime.tv_usec = newtime.tv_usec;
}

static void
io_loop(void)
{
  while (1)
  {
    if (listing_client_list.head)
    {
      dlink_node *ptr = NULL, *ptr_next = NULL;
      DLINK_FOREACH_SAFE(ptr, ptr_next, listing_client_list.head)
        safe_list_channels(ptr->data, 0);
    }

    /* Run pending events */
    event_run();

    comm_select();
    exit_aborted_clients();
    free_exited_clients();

    /* Check to see whether we have to rehash the configuration .. */
    if (dorehash)
    {
      rehash(1);
      dorehash = 0;
    }

    if (doremotd)
    {
      motd_recache();
      sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
                           "Got signal SIGUSR1, reloading motd file(s)");
      doremotd = 0;
    }
  }
}

/* initalialize_global_set_options()
 *
 * inputs       - none
 * output       - none
 * side effects - This sets all global set options needed
 */
static void
initialize_global_set_options(void)
{
  GlobalSetOptions.autoconn  = 1;
  GlobalSetOptions.spam_time = MIN_JOIN_LEAVE_TIME;
  GlobalSetOptions.spam_num  = MAX_JOIN_LEAVE_COUNT;

  if (ConfigGeneral.default_floodcount)
    GlobalSetOptions.floodcount = ConfigGeneral.default_floodcount;
  else
    GlobalSetOptions.floodcount = 10;

  /* XXX I have no idea what to try here - Dianora */
  GlobalSetOptions.joinfloodcount = 16;
  GlobalSetOptions.joinfloodtime = 8;

  split_servers = ConfigChannel.default_split_server_count;
  split_users   = ConfigChannel.default_split_user_count;

  if (split_users && split_servers && (ConfigChannel.no_create_on_split ||
                                       ConfigChannel.no_join_on_split))
  {
    splitmode     = 1;
    splitchecking = 1;
  }

  GlobalSetOptions.ident_timeout = IDENT_TIMEOUT;
}

/* initialize_server_capabs()
 *
 * inputs       - none
 * output       - none
 */
static void
initialize_server_capabs(void)
{
  add_capability("QS", CAP_QS, 1);
  add_capability("EOB", CAP_EOB, 1);
  add_capability("TS6", CAP_TS6, 0);
  add_capability("CLUSTER", CAP_CLUSTER, 1);
  add_capability("SVS", CAP_SVS, 1);
  add_capability("CHW", CAP_CHW, 1);
  add_capability("HOPS", CAP_HOPS, 1);
}

/* write_pidfile()
 *
 * inputs       - filename+path of pid file
 * output       - NONE
 * side effects - write the pid of the ircd to filename
 */
static void
write_pidfile(const char *filename)
{
  FILE *fb;

  if ((fb = fopen(filename, "w")))
  {
    char buff[IRCD_BUFSIZE];
    unsigned int pid = (unsigned int)getpid();

    snprintf(buff, sizeof(buff), "%u\n", pid);

    if ((fputs(buff, fb) == -1))
      ilog(LOG_TYPE_IRCD, "Error writing %u to pid file %s (%s)",
           pid, filename, strerror(errno));

    fclose(fb);
  }
  else
  {
    ilog(LOG_TYPE_IRCD, "Error opening pid file %s", filename);
  }
}

/* check_pidfile()
 *
 * inputs       - filename+path of pid file
 * output       - none
 * side effects - reads pid from pidfile and checks if ircd is in process
 *                list. if it is, gracefully exits
 * -kre
 */
static void
check_pidfile(const char *filename)
{
  FILE *fb;
  char buff[IRCD_BUFSIZE];
  pid_t pidfromfile;

  /* Don't do logging here, since we don't have log() initialised */
  if ((fb = fopen(filename, "r")))
  {
    if (fgets(buff, 20, fb) == NULL)
    {
      /* log(L_ERROR, "Error reading from pid file %s (%s)", filename,
       * strerror(errno));
       */
    }
    else
    {
      pidfromfile = atoi(buff);

      if (!kill(pidfromfile, 0))
      {
        /* log(L_ERROR, "Server is already running"); */
        printf("ircd: daemon is already running\n");
        exit(-1);
      }
    }

    fclose(fb);
  }
  else if (errno != ENOENT)
  {
    /* log(L_ERROR, "Error opening pid file %s", filename); */
  }
}

/* setup_corefile()
 *
 * inputs       - nothing
 * output       - nothing
 * side effects - setups corefile to system limits.
 * -kre
 */
static void
setup_corefile(void)
{
#ifdef HAVE_SYS_RESOURCE_H
  struct rlimit rlim; /* resource limits */

  /* Set corefilesize to maximum */
  if (!getrlimit(RLIMIT_CORE, &rlim))
  {
    rlim.rlim_cur = rlim.rlim_max;
    setrlimit(RLIMIT_CORE, &rlim);
  }
#endif
}

#ifdef HAVE_LIBCRYPTO
static int
always_accept_verify_cb(int preverify_ok, X509_STORE_CTX *x509_ctx)
{
  return 1;
}
#endif

/* init_ssl()
 *
 * inputs       - nothing
 * output       - nothing
 * side effects - setups SSL context.
 */
static void
ssl_init(void)
{
#ifdef HAVE_LIBCRYPTO
  const unsigned char session_id[] = "ircd-hybrid";

  SSL_load_error_strings();
  SSLeay_add_ssl_algorithms();

  if ((ConfigServerInfo.server_ctx = SSL_CTX_new(SSLv23_server_method())) == NULL)
  {
    const char *s = ERR_lib_error_string(ERR_get_error());

    fprintf(stderr, "ERROR: Could not initialize the SSL Server context -- %s\n", s);
    ilog(LOG_TYPE_IRCD, "ERROR: Could not initialize the SSL Server context -- %s\n", s);
    exit(EXIT_FAILURE);
  }

  SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3);
  SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_SINGLE_DH_USE|SSL_OP_CIPHER_SERVER_PREFERENCE);
  SSL_CTX_set_verify(ConfigServerInfo.server_ctx, SSL_VERIFY_PEER|SSL_VERIFY_CLIENT_ONCE,
                     always_accept_verify_cb);
  SSL_CTX_set_session_id_context(ConfigServerInfo.server_ctx, session_id, sizeof(session_id) - 1);

#if OPENSSL_VERSION_NUMBER >= 0x1000005FL && !defined(OPENSSL_NO_ECDH)
  {
    EC_KEY *key = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);

    if (key)
    {
      SSL_CTX_set_tmp_ecdh(ConfigServerInfo.server_ctx, key);
      EC_KEY_free(key);
    }
  }

  SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_SINGLE_ECDH_USE);
#endif

  if ((ConfigServerInfo.client_ctx = SSL_CTX_new(SSLv23_client_method())) == NULL)
  {
    const char *s = ERR_lib_error_string(ERR_get_error());

    fprintf(stderr, "ERROR: Could not initialize the SSL Client context -- %s\n", s);
    ilog(LOG_TYPE_IRCD, "ERROR: Could not initialize the SSL Client context -- %s\n", s);
    exit(EXIT_FAILURE);
  }

  SSL_CTX_set_options(ConfigServerInfo.client_ctx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3);
  SSL_CTX_set_options(ConfigServerInfo.client_ctx, SSL_OP_SINGLE_DH_USE);
  SSL_CTX_set_verify(ConfigServerInfo.client_ctx, SSL_VERIFY_PEER|SSL_VERIFY_CLIENT_ONCE,
                     always_accept_verify_cb);
#endif /* HAVE_LIBCRYPTO */
}

int
main(int argc, char *argv[])
{
  /* Check to see if the user is running us as root, which is a nono */
  if (geteuid() == 0)
  {
    fprintf(stderr, "ERROR: This server won't run as root/superuser\n");
    return -1;
  }

  /* Setup corefile size immediately after boot -kre */
  setup_corefile();

  /* save server boot time right away, so getrusage works correctly */
  set_time();

  /* It ain't random, but it ought to be a little harder to guess */
  init_genrand(SystemTime.tv_sec ^ (SystemTime.tv_usec | (getpid() << 20)));

  me.connection = &meConnection;
  dlinkAdd(&me, &me.node, &global_client_list);  /* Pointer to beginning
                                                   of Client list */
  ConfigLog.use_logging = 1;
  ConfigGeneral.dpath      = DPATH;
  ConfigGeneral.spath      = SPATH;
  ConfigGeneral.mpath      = MPATH;
  ConfigGeneral.configfile = CPATH;    /* Server configuration file */
  ConfigGeneral.klinefile  = KPATH;    /* Server kline file         */
  ConfigGeneral.glinefile  = GPATH;    /* Server gline file         */
  ConfigGeneral.xlinefile  = XPATH;    /* Server xline file         */
  ConfigGeneral.dlinefile  = DLPATH;   /* dline file                */
  ConfigGeneral.resvfile   = RESVPATH; /* resv file                 */

  myargv = argv;
  umask(077);                /* better safe than sorry --SRB */

  parseargs(&argc, &argv, myopts);

  if (printVersion)
  {
    printf("ircd: version %s(%s)\n", ircd_version, serno);
    exit(EXIT_SUCCESS);
  }

  if (chdir(ConfigGeneral.dpath))
  {
    perror("chdir");
    exit(EXIT_FAILURE);
  }

  ssl_init();

  if (!server_state.foreground)
  {
    make_daemon();
    close_standard_fds(); /* this needs to be before init_netio()! */
  }
  else
    print_startup(getpid());

  setup_signals();

  /* We need this to initialise the fd array before anything else */
  fdlist_init();
  log_set_file(LOG_TYPE_IRCD, 0, logFileName);

  init_netio();         /* This needs to be setup early ! -- adrian */

  /* Check if there is pidfile and daemon already running */
  check_pidfile(pidFileName);

  mp_pool_init();
  init_dlink_nodes();
  init_isupport();
  dbuf_init();
  hash_init();
  ipcache_init();
  init_host_hash();          /* Host-hashtable. */
  client_init();
  class_init();
  whowas_init();
  watch_init();
  auth_init();          /* Initialise the auth code */
  init_resolver();      /* Needs to be setup before the io loop */
  modules_init();
  read_conf_files(1);   /* cold start init conf files */
  init_uid();
  initialize_server_capabs();   /* Set up default_server_capabs */
  initialize_global_set_options();
  channel_init();
  read_links_file();
  motd_init();
#ifdef HAVE_LIBGEOIP
  geoip_ctx = GeoIP_new(GEOIP_MEMORY_CACHE);
#endif

  if (EmptyString(ConfigServerInfo.sid))
  {
    ilog(LOG_TYPE_IRCD, "ERROR: No server id specified in serverinfo block.");
    exit(EXIT_FAILURE);
  }

  strlcpy(me.id, ConfigServerInfo.sid, sizeof(me.id));

  if (EmptyString(ConfigServerInfo.name))
  {
    ilog(LOG_TYPE_IRCD, "ERROR: No server name specified in serverinfo block.");
    exit(EXIT_FAILURE);
  }

  strlcpy(me.name, ConfigServerInfo.name, sizeof(me.name));

  /* serverinfo{} description must exist.  If not, error out.*/
  if (EmptyString(ConfigServerInfo.description))
  {
    ilog(LOG_TYPE_IRCD, "ERROR: No server description specified in serverinfo block.");
    exit(EXIT_FAILURE);
  }

  strlcpy(me.info, ConfigServerInfo.description, sizeof(me.info));

  me.from                   = &me;
  me.servptr                = &me;
  me.connection->lasttime  = CurrentTime;
  me.connection->since     = CurrentTime;
  me.connection->firsttime = CurrentTime;

  SetMe(&me);
  make_server(&me);

  hash_add_id(&me);
  hash_add_client(&me);

  dlinkAdd(&me, make_dlink_node(), &global_server_list);

  load_kline_database();
  load_dline_database();
  load_gline_database();
  load_xline_database();
  load_resv_database();

  if (chdir(MODPATH))
  {
    ilog(LOG_TYPE_IRCD, "Could not load core modules. Terminating!");
    exit(EXIT_FAILURE);
  }

  load_all_modules(1);
  load_conf_modules();
  load_core_modules(1);

  /* Go back to DPATH after checking to see if we can chdir to MODPATH */
  if (chdir(ConfigGeneral.dpath))
  {
    perror("chdir");
    exit(EXIT_FAILURE);
  }

  /*
   * assemble_umode_buffer() has to be called after
   * reading conf/loading modules.
   */
  assemble_umode_buffer();

  write_pidfile(pidFileName);

  ilog(LOG_TYPE_IRCD, "Server Ready");

  event_addish(&event_cleanup_glines, NULL);
  event_addish(&event_cleanup_tklines, NULL);

  /* We want try_connections to be called as soon as possible now! -- adrian */
  /* No, 'cause after a restart it would cause all sorts of nick collides */
  event_addish(&event_try_connections, NULL);

  /* Setup the timeout check. I'll shift it later :)  -- adrian */
  event_add(&event_comm_checktimeouts, NULL);

  event_addish(&event_save_all_databases, NULL);

  if (ConfigServerHide.links_delay > 0)
  {
    event_write_links_file.when = ConfigServerHide.links_delay;
    event_addish(&event_write_links_file, NULL);
  }
  else
    ConfigServerHide.links_disabled = 1;

  if (splitmode)
    event_addish(&splitmode_event, NULL);

  io_loop();
  return 0;
}
Revision:	4593
Committed:	Wed Aug 27 16:26:46 2014 UTC (9 years, 7 months ago) by michael
Content type:	text/x-csrc
File size:	17041 byte(s)
Log Message:	- ircd.c:ssl_init(): add SSL_OP_CIPHER_SERVER_PREFERENCE to server options
#	Content
1	/*
2	* ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
3	*
4	* Copyright (c) 1997-2014 ircd-hybrid development team
5	*
6	* This program is free software; you can redistribute it and/or modify
7	* it under the terms of the GNU General Public License as published by
8	* the Free Software Foundation; either version 2 of the License, or
9	* (at your option) any later version.
10	*
11	* This program is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14	* GNU General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License
17	* along with this program; if not, write to the Free Software
18	* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
19	* USA
20	*/
21
22	/*! \file ircd.c
23	* \brief Starts up and runs the ircd.
24	* \version $Id$
25	*/
26
27	#include "stdinc.h"
28	#include "user.h"
29	#include "list.h"
30	#include "ircd.h"
31	#include "channel.h"
32	#include "client.h"
33	#include "event.h"
34	#include "fdlist.h"
35	#include "hash.h"
36	#include "irc_string.h"
37	#include "ircd_signal.h"
38	#include "gline.h"
39	#include "motd.h"
40	#include "conf.h"
41	#include "hostmask.h"
42	#include "parse.h"
43	#include "res.h"
44	#include "restart.h"
45	#include "rng_mt.h"
46	#include "auth.h"
47	#include "s_bsd.h"
48	#include "log.h"
49	#include "server.h" /* try_connections */
50	#include "send.h"
51	#include "whowas.h"
52	#include "modules.h"
53	#include "memory.h"
54	#include "mempool.h"
55	#include "ircd_getopt.h"
56	#include "watch.h"
57	#include "conf_db.h"
58	#include "conf_class.h"
59	#include "ipcache.h"
60
61
62	#ifdef HAVE_LIBGEOIP
63	GeoIP *geoip_ctx;
64	#endif
65
66	struct ServerStatistics ServerStats;
67	struct timeval SystemTime;
68	struct Client me; /* That's me */
69	struct Connection meConnection; /* That's also part of me */
70
71	const char *logFileName = LPATH;
72	const char *pidFileName = PPATH;
73
74	char **myargv;
75
76	int dorehash = 0;
77	int doremotd = 0;
78
79	/* Set to zero because it should be initialized later using
80	* initialize_server_capabs
81	*/
82	unsigned int default_server_capabs;
83	unsigned int splitmode;
84	unsigned int splitchecking;
85	unsigned int split_users;
86	unsigned int split_servers;
87
88	static struct event event_cleanup_glines =
89	{
90	.name = "cleanup_glines",
91	.handler = cleanup_glines,
92	.when = CLEANUP_GLINES_TIME
93	};
94
95	static struct event event_cleanup_tklines =
96	{
97	.name = "cleanup_tklines",
98	.handler = cleanup_tklines,
99	.when = CLEANUP_TKLINES_TIME
100	};
101
102	static struct event event_try_connections =
103	{
104	.name = "try_connections",
105	.handler = try_connections,
106	.when = STARTUP_CONNECTIONS_TIME
107	};
108
109	static struct event event_comm_checktimeouts =
110	{
111	.name = "comm_checktimeouts",
112	.handler = comm_checktimeouts,
113	.when = 1
114	};
115
116	static struct event event_save_all_databases =
117	{
118	.name = "save_all_databases",
119	.handler = save_all_databases,
120	.when = DATABASE_UPDATE_TIMEOUT
121	};
122
123	struct event event_write_links_file =
124	{
125	.name = "write_links_file",
126	.handler = write_links_file,
127	};
128
129
130	/*
131	* print_startup - print startup information
132	*/
133	static void
134	print_startup(int pid)
135	{
136	printf("ircd: version %s(%s)\n", ircd_version, serno);
137	printf("ircd: pid %d\n", pid);
138	printf("ircd: running in %s mode from %s\n", !server_state.foreground ? "background"
139	: "foreground", ConfigGeneral.dpath);
140	}
141
142	static void
143	make_daemon(void)
144	{
145	int pid;
146
147	if ((pid = fork()) < 0)
148	{
149	perror("fork");
150	exit(EXIT_FAILURE);
151	}
152	else if (pid > 0)
153	{
154	print_startup(pid);
155	exit(EXIT_SUCCESS);
156	}
157
158	setsid();
159	}
160
161	static int printVersion = 0;
162
163	static struct lgetopt myopts[] =
164	{
165	{"configfile", &ConfigGeneral.configfile,
166	STRING, "File to use for ircd.conf"},
167	{"glinefile", &ConfigGeneral.glinefile,
168	STRING, "File to use for gline database"},
169	{"klinefile", &ConfigGeneral.klinefile,
170	STRING, "File to use for kline database"},
171	{"dlinefile", &ConfigGeneral.dlinefile,
172	STRING, "File to use for dline database"},
173	{"xlinefile", &ConfigGeneral.xlinefile,
174	STRING, "File to use for xline database"},
175	{"resvfile", &ConfigGeneral.resvfile,
176	STRING, "File to use for resv database"},
177	{"logfile", &logFileName,
178	STRING, "File to use for ircd.log"},
179	{"pidfile", &pidFileName,
180	STRING, "File to use for process ID"},
181	{"foreground", &server_state.foreground,
182	YESNO, "Run in foreground (don't detach)"},
183	{"version", &printVersion,
184	YESNO, "Print version and exit"},
185	{"help", NULL, USAGE, "Print this text"},
186	{NULL, NULL, STRING, NULL},
187	};
188
189	void
190	set_time(void)
191	{
192	struct timeval newtime = { .tv_sec = 0, .tv_usec = 0 };
193
194	if (gettimeofday(&newtime, NULL) == -1)
195	{
196	ilog(LOG_TYPE_IRCD, "Clock Failure (%s), TS can be corrupted",
197	strerror(errno));
198	sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
199	"Clock Failure (%s), TS can be corrupted",
200	strerror(errno));
201	server_die("Clock Failure", 1);
202	}
203
204	if (newtime.tv_sec < CurrentTime)
205	{
206	ilog(LOG_TYPE_IRCD, "System clock is running backwards - (%lu < %lu)",
207	(unsigned long)newtime.tv_sec, (unsigned long)CurrentTime);
208	sendto_realops_flags(UMODE_DEBUG, L_ALL, SEND_NOTICE,
209	"System clock is running backwards - (%lu < %lu)",
210	(unsigned long)newtime.tv_sec,
211	(unsigned long)CurrentTime);
212	set_back_events(CurrentTime - newtime.tv_sec);
213	}
214
215	SystemTime.tv_sec = newtime.tv_sec;
216	SystemTime.tv_usec = newtime.tv_usec;
217	}
218
219	static void
220	io_loop(void)
221	{
222	while (1)
223	{
224	if (listing_client_list.head)
225	{
226	dlink_node ptr = NULL, ptr_next = NULL;
227	DLINK_FOREACH_SAFE(ptr, ptr_next, listing_client_list.head)
228	safe_list_channels(ptr->data, 0);
229	}
230
231	/* Run pending events */
232	event_run();
233
234	comm_select();
235	exit_aborted_clients();
236	free_exited_clients();
237
238	/* Check to see whether we have to rehash the configuration .. */
239	if (dorehash)
240	{
241	rehash(1);
242	dorehash = 0;
243	}
244
245	if (doremotd)
246	{
247	motd_recache();
248	sendto_realops_flags(UMODE_ALL, L_ALL, SEND_NOTICE,
249	"Got signal SIGUSR1, reloading motd file(s)");
250	doremotd = 0;
251	}
252	}
253	}
254
255	/* initalialize_global_set_options()
256	*
257	* inputs - none
258	* output - none
259	* side effects - This sets all global set options needed
260	*/
261	static void
262	initialize_global_set_options(void)
263	{
264	GlobalSetOptions.autoconn = 1;
265	GlobalSetOptions.spam_time = MIN_JOIN_LEAVE_TIME;
266	GlobalSetOptions.spam_num = MAX_JOIN_LEAVE_COUNT;
267
268	if (ConfigGeneral.default_floodcount)
269	GlobalSetOptions.floodcount = ConfigGeneral.default_floodcount;
270	else
271	GlobalSetOptions.floodcount = 10;
272
273	/* XXX I have no idea what to try here - Dianora */
274	GlobalSetOptions.joinfloodcount = 16;
275	GlobalSetOptions.joinfloodtime = 8;
276
277	split_servers = ConfigChannel.default_split_server_count;
278	split_users = ConfigChannel.default_split_user_count;
279
280	if (split_users && split_servers && (ConfigChannel.no_create_on_split \|\|
281	ConfigChannel.no_join_on_split))
282	{
283	splitmode = 1;
284	splitchecking = 1;
285	}
286
287	GlobalSetOptions.ident_timeout = IDENT_TIMEOUT;
288	}
289
290	/* initialize_server_capabs()
291	*
292	* inputs - none
293	* output - none
294	*/
295	static void
296	initialize_server_capabs(void)
297	{
298	add_capability("QS", CAP_QS, 1);
299	add_capability("EOB", CAP_EOB, 1);
300	add_capability("TS6", CAP_TS6, 0);
301	add_capability("CLUSTER", CAP_CLUSTER, 1);
302	add_capability("SVS", CAP_SVS, 1);
303	add_capability("CHW", CAP_CHW, 1);
304	add_capability("HOPS", CAP_HOPS, 1);
305	}
306
307	/* write_pidfile()
308	*
309	* inputs - filename+path of pid file
310	* output - NONE
311	* side effects - write the pid of the ircd to filename
312	*/
313	static void
314	write_pidfile(const char *filename)
315	{
316	FILE *fb;
317
318	if ((fb = fopen(filename, "w")))
319	{
320	char buff[IRCD_BUFSIZE];
321	unsigned int pid = (unsigned int)getpid();
322
323	snprintf(buff, sizeof(buff), "%u\n", pid);
324
325	if ((fputs(buff, fb) == -1))
326	ilog(LOG_TYPE_IRCD, "Error writing %u to pid file %s (%s)",
327	pid, filename, strerror(errno));
328
329	fclose(fb);
330	}
331	else
332	{
333	ilog(LOG_TYPE_IRCD, "Error opening pid file %s", filename);
334	}
335	}
336
337	/* check_pidfile()
338	*
339	* inputs - filename+path of pid file
340	* output - none
341	* side effects - reads pid from pidfile and checks if ircd is in process
342	* list. if it is, gracefully exits
343	* -kre
344	*/
345	static void
346	check_pidfile(const char *filename)
347	{
348	FILE *fb;
349	char buff[IRCD_BUFSIZE];
350	pid_t pidfromfile;
351
352	/* Don't do logging here, since we don't have log() initialised */
353	if ((fb = fopen(filename, "r")))
354	{
355	if (fgets(buff, 20, fb) == NULL)
356	{
357	/* log(L_ERROR, "Error reading from pid file %s (%s)", filename,
358	* strerror(errno));
359	*/
360	}
361	else
362	{
363	pidfromfile = atoi(buff);
364
365	if (!kill(pidfromfile, 0))
366	{
367	/* log(L_ERROR, "Server is already running"); */
368	printf("ircd: daemon is already running\n");
369	exit(-1);
370	}
371	}
372
373	fclose(fb);
374	}
375	else if (errno != ENOENT)
376	{
377	/* log(L_ERROR, "Error opening pid file %s", filename); */
378	}
379	}
380
381	/* setup_corefile()
382	*
383	* inputs - nothing
384	* output - nothing
385	* side effects - setups corefile to system limits.
386	* -kre
387	*/
388	static void
389	setup_corefile(void)
390	{
391	#ifdef HAVE_SYS_RESOURCE_H
392	struct rlimit rlim; /* resource limits */
393
394	/* Set corefilesize to maximum */
395	if (!getrlimit(RLIMIT_CORE, &rlim))
396	{
397	rlim.rlim_cur = rlim.rlim_max;
398	setrlimit(RLIMIT_CORE, &rlim);
399	}
400	#endif
401	}
402
403	#ifdef HAVE_LIBCRYPTO
404	static int
405	always_accept_verify_cb(int preverify_ok, X509_STORE_CTX *x509_ctx)
406	{
407	return 1;
408	}
409	#endif
410
411	/* init_ssl()
412	*
413	* inputs - nothing
414	* output - nothing
415	* side effects - setups SSL context.
416	*/
417	static void
418	ssl_init(void)
419	{
420	#ifdef HAVE_LIBCRYPTO
421	const unsigned char session_id[] = "ircd-hybrid";
422
423	SSL_load_error_strings();
424	SSLeay_add_ssl_algorithms();
425
426	if ((ConfigServerInfo.server_ctx = SSL_CTX_new(SSLv23_server_method())) == NULL)
427	{
428	const char *s = ERR_lib_error_string(ERR_get_error());
429
430	fprintf(stderr, "ERROR: Could not initialize the SSL Server context -- %s\n", s);
431	ilog(LOG_TYPE_IRCD, "ERROR: Could not initialize the SSL Server context -- %s\n", s);
432	exit(EXIT_FAILURE);
433	}
434
435	SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_NO_SSLv2\|SSL_OP_NO_SSLv3);
436	SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_SINGLE_DH_USE\|SSL_OP_CIPHER_SERVER_PREFERENCE);
437	SSL_CTX_set_verify(ConfigServerInfo.server_ctx, SSL_VERIFY_PEER\|SSL_VERIFY_CLIENT_ONCE,
438	always_accept_verify_cb);
439	SSL_CTX_set_session_id_context(ConfigServerInfo.server_ctx, session_id, sizeof(session_id) - 1);
440
441	#if OPENSSL_VERSION_NUMBER >= 0x1000005FL && !defined(OPENSSL_NO_ECDH)
442	{
443	EC_KEY *key = EC_KEY_new_by_curve_name(NID_X9_62_prime256v1);
444
445	if (key)
446	{
447	SSL_CTX_set_tmp_ecdh(ConfigServerInfo.server_ctx, key);
448	EC_KEY_free(key);
449	}
450	}
451
452	SSL_CTX_set_options(ConfigServerInfo.server_ctx, SSL_OP_SINGLE_ECDH_USE);
453	#endif
454
455	if ((ConfigServerInfo.client_ctx = SSL_CTX_new(SSLv23_client_method())) == NULL)
456	{
457	const char *s = ERR_lib_error_string(ERR_get_error());
458
459	fprintf(stderr, "ERROR: Could not initialize the SSL Client context -- %s\n", s);
460	ilog(LOG_TYPE_IRCD, "ERROR: Could not initialize the SSL Client context -- %s\n", s);
461	exit(EXIT_FAILURE);
462	}
463
464	SSL_CTX_set_options(ConfigServerInfo.client_ctx, SSL_OP_NO_SSLv2\|SSL_OP_NO_SSLv3);
465	SSL_CTX_set_options(ConfigServerInfo.client_ctx, SSL_OP_SINGLE_DH_USE);
466	SSL_CTX_set_verify(ConfigServerInfo.client_ctx, SSL_VERIFY_PEER\|SSL_VERIFY_CLIENT_ONCE,
467	always_accept_verify_cb);
468	#endif /* HAVE_LIBCRYPTO */
469	}
470
471	int
472	main(int argc, char *argv[])
473	{
474	/* Check to see if the user is running us as root, which is a nono */
475	if (geteuid() == 0)
476	{
477	fprintf(stderr, "ERROR: This server won't run as root/superuser\n");
478	return -1;
479	}
480
481	/* Setup corefile size immediately after boot -kre */
482	setup_corefile();
483
484	/* save server boot time right away, so getrusage works correctly */
485	set_time();
486
487	/* It ain't random, but it ought to be a little harder to guess */
488	init_genrand(SystemTime.tv_sec ^ (SystemTime.tv_usec \| (getpid() << 20)));
489
490	me.connection = &meConnection;
491	dlinkAdd(&me, &me.node, &global_client_list); /* Pointer to beginning
492	of Client list */
493	ConfigLog.use_logging = 1;
494	ConfigGeneral.dpath = DPATH;
495	ConfigGeneral.spath = SPATH;
496	ConfigGeneral.mpath = MPATH;
497	ConfigGeneral.configfile = CPATH; /* Server configuration file */
498	ConfigGeneral.klinefile = KPATH; /* Server kline file */
499	ConfigGeneral.glinefile = GPATH; /* Server gline file */
500	ConfigGeneral.xlinefile = XPATH; /* Server xline file */
501	ConfigGeneral.dlinefile = DLPATH; /* dline file */
502	ConfigGeneral.resvfile = RESVPATH; /* resv file */
503
504	myargv = argv;
505	umask(077); /* better safe than sorry --SRB */
506
507	parseargs(&argc, &argv, myopts);
508
509	if (printVersion)
510	{
511	printf("ircd: version %s(%s)\n", ircd_version, serno);
512	exit(EXIT_SUCCESS);
513	}
514
515	if (chdir(ConfigGeneral.dpath))
516	{
517	perror("chdir");
518	exit(EXIT_FAILURE);
519	}
520
521	ssl_init();
522
523	if (!server_state.foreground)
524	{
525	make_daemon();
526	close_standard_fds(); /* this needs to be before init_netio()! */
527	}
528	else
529	print_startup(getpid());
530
531	setup_signals();
532
533	/* We need this to initialise the fd array before anything else */
534	fdlist_init();
535	log_set_file(LOG_TYPE_IRCD, 0, logFileName);
536
537	init_netio(); /* This needs to be setup early ! -- adrian */
538
539	/* Check if there is pidfile and daemon already running */
540	check_pidfile(pidFileName);
541
542	mp_pool_init();
543	init_dlink_nodes();
544	init_isupport();
545	dbuf_init();
546	hash_init();
547	ipcache_init();
548	init_host_hash(); /* Host-hashtable. */
549	client_init();
550	class_init();
551	whowas_init();
552	watch_init();
553	auth_init(); /* Initialise the auth code */
554	init_resolver(); /* Needs to be setup before the io loop */
555	modules_init();
556	read_conf_files(1); /* cold start init conf files */
557	init_uid();
558	initialize_server_capabs(); /* Set up default_server_capabs */
559	initialize_global_set_options();
560	channel_init();
561	read_links_file();
562	motd_init();
563	#ifdef HAVE_LIBGEOIP
564	geoip_ctx = GeoIP_new(GEOIP_MEMORY_CACHE);
565	#endif
566
567	if (EmptyString(ConfigServerInfo.sid))
568	{
569	ilog(LOG_TYPE_IRCD, "ERROR: No server id specified in serverinfo block.");
570	exit(EXIT_FAILURE);
571	}
572
573	strlcpy(me.id, ConfigServerInfo.sid, sizeof(me.id));
574
575	if (EmptyString(ConfigServerInfo.name))
576	{
577	ilog(LOG_TYPE_IRCD, "ERROR: No server name specified in serverinfo block.");
578	exit(EXIT_FAILURE);
579	}
580
581	strlcpy(me.name, ConfigServerInfo.name, sizeof(me.name));
582
583	/* serverinfo{} description must exist. If not, error out.*/
584	if (EmptyString(ConfigServerInfo.description))
585	{
586	ilog(LOG_TYPE_IRCD, "ERROR: No server description specified in serverinfo block.");
587	exit(EXIT_FAILURE);
588	}
589
590	strlcpy(me.info, ConfigServerInfo.description, sizeof(me.info));
591
592	me.from = &me;
593	me.servptr = &me;
594	me.connection->lasttime = CurrentTime;
595	me.connection->since = CurrentTime;
596	me.connection->firsttime = CurrentTime;
597
598	SetMe(&me);
599	make_server(&me);
600
601	hash_add_id(&me);
602	hash_add_client(&me);
603
604	dlinkAdd(&me, make_dlink_node(), &global_server_list);
605
606	load_kline_database();
607	load_dline_database();
608	load_gline_database();
609	load_xline_database();
610	load_resv_database();
611
612	if (chdir(MODPATH))
613	{
614	ilog(LOG_TYPE_IRCD, "Could not load core modules. Terminating!");
615	exit(EXIT_FAILURE);
616	}
617
618	load_all_modules(1);
619	load_conf_modules();
620	load_core_modules(1);
621
622	/* Go back to DPATH after checking to see if we can chdir to MODPATH */
623	if (chdir(ConfigGeneral.dpath))
624	{
625	perror("chdir");
626	exit(EXIT_FAILURE);
627	}
628
629	/*
630	* assemble_umode_buffer() has to be called after
631	* reading conf/loading modules.
632	*/
633	assemble_umode_buffer();
634
635	write_pidfile(pidFileName);
636
637	ilog(LOG_TYPE_IRCD, "Server Ready");
638
639	event_addish(&event_cleanup_glines, NULL);
640	event_addish(&event_cleanup_tklines, NULL);
641
642	/* We want try_connections to be called as soon as possible now! -- adrian */
643	/* No, 'cause after a restart it would cause all sorts of nick collides */
644	event_addish(&event_try_connections, NULL);
645
646	/* Setup the timeout check. I'll shift it later :) -- adrian */
647	event_add(&event_comm_checktimeouts, NULL);
648
649	event_addish(&event_save_all_databases, NULL);
650
651	if (ConfigServerHide.links_delay > 0)
652	{
653	event_write_links_file.when = ConfigServerHide.links_delay;
654	event_addish(&event_write_links_file, NULL);
655	}
656	else
657	ConfigServerHide.links_disabled = 1;
658
659	if (splitmode)
660	event_addish(&splitmode_event, NULL);
661
662	io_loop();
663	return 0;
664	}