[ViewVC] Diff of: svn/ircd-hybrid/trunk/src/s

Comparing:
ircd-hybrid-7.2/src/s_bsd.c (file contents), Revision 896 by michael, Sat Nov 3 08:54:09 2007 UTC vs.
ircd-hybrid/trunk/src/s_bsd.c (file contents), Revision 2228 by michael, Thu Jun 13 19:46:30 2013 UTC

+ */
+#include "stdinc.h"
-–
+#ifndef _WIN32
+#include <netinet/in_systm.h>
+#include <netinet/ip.h>
+#include <netinet/tcp.h>
-<
+#endif
->
+#include "list.h"
+#include "fdlist.h"
+#include "s_bsd.h"
+#include "client.h"
-–
+#include "common.h"
+#include "dbuf.h"
+#include "event.h"
+#include "irc_string.h"
-–
+#include "irc_getnameinfo.h"
-–
+#include "irc_getaddrinfo.h"
+#include "ircd.h"
-–
+#include "list.h"
+#include "listener.h"
+#include "numeric.h"
+#include "packet.h"
+#include "irc_res.h"
-–
+#include "inet_misc.h"
+#include "restart.h"
+#include "s_auth.h"
-<
+#include "s_conf.h"
-<
+#include "s_log.h"
->
+#include "conf.h"
->
+#include "log.h"
+#include "s_serv.h"
+#include "send.h"
+#include "memory.h"
+struct Callback *setup_socket_cb = NULL;
-<
+static void comm_connect_callback(fde_t *fd, int status);
->
+static void comm_connect_callback(fde_t *, int);
+static PF comm_connect_timeout;
-<
+static void comm_connect_dns_callback(void *vptr, struct DNSReply *reply);
->
+static void comm_connect_dns_callback(void *, const struct irc_ssaddr *, const char *);
+static PF comm_connect_tryconnect;
-–
+extern void init_netio(void);
+/* check_can_use_v6()
+ *  Check if the system can open AF_INET6 sockets
+  else
+    ServerInfo.can_use_v6 = 1;
-–
+#ifdef _WIN32
-–
+    closesocket(v6);
-–
+#else
+    close(v6);
-–
+#endif
+#else
+  ServerInfo.can_use_v6 = 0;
+int
+get_sockerr(int fd)
-–
+#ifndef _WIN32
+  int errtmp = errno;
-–
+#else
-–
+  int errtmp = WSAGetLastError();
-–
+#endif
+#ifdef SO_ERROR
+  int err = 0;
+  socklen_t len = sizeof(err);
-<
+  if (-1 < fd && !getsockopt(fd, SOL_SOCKET, SO_ERROR, (char*) &err, (socklen_t *)&len))
->
+  if (-1 < fd && !getsockopt(fd, SOL_SOCKET, SO_ERROR, &err, &len))
+    if (err)
+      errtmp = err;
+  who = (who) ? who : "";
-<
+  sendto_realops_flags(UMODE_DEBUG, level, text, who, strerror(error));
-<
+  log_oper_action(LOG_IOERR_TYPE, NULL, "%s %s %s\n", who, text, strerror(error));
-<
+  ilog(L_ERROR, text, who, strerror(error));
->
+  sendto_realops_flags(UMODE_DEBUG, level, SEND_NOTICE,
->
+                       text, who, strerror(error));
->
+  ilog(LOG_TYPE_IRCD, text, who, strerror(error));
+/*
+  int fd = va_arg(args, int);
+  int opt = 1;
-<
+  setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, (char *) &opt, sizeof(opt));
->
+  setsockopt(fd, IPPROTO_TCP, TCP_NODELAY, &opt, sizeof(opt));
+#ifdef IPTOS_LOWDELAY
+  opt = IPTOS_LOWDELAY;
-<
+  setsockopt(fd, IPPROTO_IP, IP_TOS, (char *) &opt, sizeof(opt));
->
+  setsockopt(fd, IPPROTO_IP, IP_TOS, &opt, sizeof(opt));
+#endif
-–
+#ifndef _WIN32
+  fcntl(fd, F_SETFL, fcntl(fd, F_GETFL, 0) | O_NONBLOCK);
-–
+#endif
+  return NULL;
+void
+close_connection(struct Client *client_p)
-<
+  struct ConfItem *conf;
-<
+  struct AccessItem *aconf;
-<
+  struct ClassItem *aclass;
->
+  dlink_node *ptr = NULL;
-<
+  assert(NULL != client_p);
->
+  assert(client_p);
+  if (!IsDead(client_p))
+    send_queued_write(client_p);
-<
+  if (IsServer(client_p))
->
+  if (IsClient(client_p))
->
+  {
->
+    ++ServerStats.is_cl;
->
+    ServerStats.is_cbs += client_p->localClient->send.bytes;
->
+    ServerStats.is_cbr += client_p->localClient->recv.bytes;
->
+    ServerStats.is_cti += CurrentTime - client_p->localClient->firsttime;
->
+  }
->
+  else if (IsServer(client_p))
+    ++ServerStats.is_sv;
+    ServerStats.is_sbs += client_p->localClient->send.bytes;
+    ServerStats.is_sbr += client_p->localClient->recv.bytes;
-<
+    ServerStats.is_sti += CurrentTime - client_p->firsttime;
->
+    ServerStats.is_sti += CurrentTime - client_p->localClient->firsttime;
-<
+    /* XXX Does this even make any sense at all anymore?
-<
+     * scheduling a 'quick' reconnect could cause a pile of
-<
+     * nick collides under TSora protocol... -db
-<
+     */
-<
+    /*
-<
+     * If the connection has been up for a long amount of time, schedule
-<
+     * a 'quick' reconnect, else reset the next-connect cycle.
-<
+     */
-<
+    if ((conf = find_conf_exact(SERVER_TYPE,
-<
+                                  client_p->name, client_p->username,
-<
+                                  client_p->host)))
->
+    DLINK_FOREACH(ptr, server_items.head)
-+
+      struct MaskItem *conf = ptr->data;
-+
-+
+      if (irccmp(conf->name, client_p->name))
-+
+        continue;
-+
+      /*
-<
+       * Reschedule a faster reconnect, if this was a automatically
-<
+       * connected configuration entry. (Note that if we have had
-<
+       * a rehash in between, the status has been changed to
-<
+       * CONF_ILLEGAL). But only do this if it was a "good" link.
->
+       * Reset next-connect cycle of all connect{} blocks that match
->
+       * this servername.
+       */
-<
+      aconf = (struct AccessItem *)map_to_conf(conf);
-<
+      aclass = (struct ClassItem *)map_to_conf(aconf->class_ptr);
-<
+      aconf->hold = time(NULL);
-<
+      aconf->hold += (aconf->hold - client_p->since > HANGONGOODLINK) ?
-<
+        HANGONRETRYDELAY : ConFreq(aclass);
-<
+      if (nextconnect > aconf->hold)
-<
+        nextconnect = aconf->hold;
->
+      conf->until = CurrentTime + conf->class->con_freq;
-–
+  else if (IsClient(client_p))
-–
+  {
-–
+    ++ServerStats.is_cl;
-–
+    ServerStats.is_cbs += client_p->localClient->send.bytes;
-–
+    ServerStats.is_cbr += client_p->localClient->recv.bytes;
-–
+    ServerStats.is_cti += CurrentTime - client_p->firsttime;
-–
+  }
+  else
+    ++ServerStats.is_ni;
+  if (client_p->localClient->fd.flags.open)
+    fd_close(&client_p->localClient->fd);
-–
+  if (HasServlink(client_p))
-–
+  {
-–
+    if (client_p->localClient->ctrlfd.flags.open)
-–
+      fd_close(&client_p->localClient->ctrlfd);
-–
+  }
-–
+  dbuf_clear(&client_p->localClient->buf_sendq);
+  dbuf_clear(&client_p->localClient->buf_recvq);
+  MyFree(client_p->localClient->passwd);
-<
+  detach_conf(client_p, CONF_TYPE);
->
+  detach_conf(client_p, CONF_CLIENT|CONF_OPER|CONF_SERVER);
+  client_p->from = NULL; /* ...this should catch them! >:) --msa */
-+
+/*  Base16 encoding is:
-+
+ *  Copyright (c) 2001-2004, Roger Dingledine
-+
+ *  Copyright (c) 2004-2007, Roger Dingledine, Nick Mathewson
-+
+ *
-+
+ *  Redistribution and use in source and binary forms, with or without
-+
+ *  modification, are permitted provided that the following conditions are
-+
+ *  met:
-+
+ *
-+
+ *  Redistributions of source code must retain the above copyright
-+
+ *  notice, this list of conditions and the following disclaimer.
-+
-+
+ * Redistributions in binary form must reproduce the above copyright notice,
-+
+ * this list of conditions and the following disclaimer
-+
+ * in the documentation and/or other materials provided with the distribution.
-+
+ *
-+
+ * Neither the names of the copyright owners nor the names of its
-+
+ * contributors may be used to endorse or promote products derived from
-+
+ * this software without specific prior written permission.
-+
-+
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-+
+ * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-+
+ * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-+
+ * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-+
+ * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-+
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-+
+ * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-+
+ * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-+
+ * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-+
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-+
+ * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-+
+ */
-+
+static void
-+
+base16_encode(char *dest, size_t destlen, const char *src, size_t srclen)
-+
+{
-+
+  const char *end;
-+
+  char *cp;
-+
-+
+  assert(destlen >= srclen * 2 + 1);
-+
-+
+  cp = dest;
-+
+  end = src + srclen;
-+
-+
+  while (src < end)
-+
+  {
-+
+    *cp++ = "0123456789ABCDEF"[(*(const uint8_t *)src) >>  4];
-+
+    *cp++ = "0123456789ABCDEF"[(*(const uint8_t *)src) & 0xf];
-+
+    ++src;
-+
+  }
-+
-+
+  *cp = '\0';
-+
+}
-+
+#ifdef HAVE_LIBCRYPTO
+/*
+ * ssl_handshake - let OpenSSL initialize the protocol. Register for
+static void
+ssl_handshake(int fd, struct Client *client_p)
-+
+  X509 *cert = NULL;
+  int ret = SSL_accept(client_p->localClient->fd.ssl);
-+
+  int err = SSL_get_error(client_p->localClient->fd.ssl, ret);
-+
-+
+  ilog(LOG_TYPE_IRCD, "SSL Error %d %s", err, ERR_error_string(err, NULL));
-+
-+
+  if ((cert = SSL_get_peer_certificate(client_p->localClient->fd.ssl)))
-+
+  {
-+
+    int res = SSL_get_verify_result(client_p->localClient->fd.ssl);
-+
-+
+    if (res == X509_V_OK || res == X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN ||
-+
+        res == X509_V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE ||
-+
+        res == X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT)
-+
+      base16_encode(client_p->certfp, sizeof(client_p->certfp),
-+
+                    (const char *)cert->sha1_hash, sizeof(cert->sha1_hash));
-+
+    else
-+
+      ilog(LOG_TYPE_IRCD, "Client %s!%s@%s gave bad SSL client certificate: %d",
-+
+           client_p->name, client_p->username, client_p->host, res);
-+
+    X509_free(cert);
-+
+  }
+  if (ret <= 0)
-+
+  {
+    switch (SSL_get_error(client_p->localClient->fd.ssl, ret))
+      case SSL_ERROR_WANT_WRITE:
+        exit_client(client_p, client_p, "Error during SSL handshake");
+        return;
-+
+  }
-<
+  execute_callback(auth_cb, client_p);
->
+  start_auth(client_p);
+#endif
+void
+add_connection(struct Listener *listener, struct irc_ssaddr *irn, int fd)
-<
+  struct Client *new_client;
-<
-<
+  assert(NULL != listener);
-<
-<
+  new_client = make_client(NULL);
->
+  struct Client *new_client = make_client(NULL);
+  fd_open(&new_client->localClient->fd, fd, 1,
+          (listener->flags & LISTENER_SSL) ?
+          "Incoming SSL connection" : "Incoming connection");
-<
+  /*
->
+  /*
+   * copy address to 'sockhost' as a string, copy it to host too
+   * so we have something valid to put into error messages...
+   */
+  memcpy(&new_client->localClient->ip, irn, sizeof(struct irc_ssaddr));
-<
+  irc_getnameinfo((struct sockaddr*)&new_client->localClient->ip,
-<
+        new_client->localClient->ip.ss_len,  new_client->sockhost,
-<
+        HOSTIPLEN, NULL, 0, NI_NUMERICHOST);
->
+  getnameinfo((struct sockaddr *)&new_client->localClient->ip,
->
+              new_client->localClient->ip.ss_len, new_client->sockhost,
->
+              sizeof(new_client->sockhost), NULL, 0, NI_NUMERICHOST);
+  new_client->localClient->aftype = new_client->localClient->ip.ss.ss_family;
-–
+#ifdef IPV6
-–
+  if (new_client->sockhost[0] == ':')
-–
+    strlcat(new_client->host, "0", HOSTLEN+1);
-<
+  if (new_client->localClient->aftype == AF_INET6 &&
-<
+      ConfigFileEntry.dot_in_ip6_addr == 1)
->
+#ifdef HAVE_LIBGEOIP
->
+  /* XXX IPV6 SUPPORT XXX */
->
+  if (irn->ss.ss_family == AF_INET && geoip_ctx)
-<
+    strlcat(new_client->host, new_client->sockhost,HOSTLEN+1);
-<
+    strlcat(new_client->host, ".", HOSTLEN+1);
->
+    const struct sockaddr_in *v4 = (const struct sockaddr_in *)&new_client->localClient->ip;
->
+    new_client->localClient->country_id = GeoIP_id_by_ipnum(geoip_ctx, (unsigned long)ntohl(v4->sin_addr.s_addr));
-–
+  else
+#endif
-–
+    strlcat(new_client->host, new_client->sockhost,HOSTLEN+1);
-<
+  new_client->connect_id = ++connect_id;
->
+  if (new_client->sockhost[0] == ':' && new_client->sockhost[1] == ':')
->
+  {
->
+    strlcpy(new_client->host, "0", sizeof(new_client->host));
->
+    strlcpy(new_client->host+1, new_client->sockhost, sizeof(new_client->host)-1);
->
+    memmove(new_client->sockhost+1, new_client->sockhost, sizeof(new_client->sockhost)-1);
->
+    new_client->sockhost[0] = '0';
->
+  }
->
+  else
->
+    strlcpy(new_client->host, new_client->sockhost, sizeof(new_client->host));
->
+  new_client->localClient->listener = listener;
+  ++listener->ref_count;
+#ifdef HAVE_LIBCRYPTO
+  if (listener->flags & LISTENER_SSL)
-<
+    if ((new_client->localClient->fd.ssl = SSL_new(ServerInfo.ctx)) == NULL)
->
+    if ((new_client->localClient->fd.ssl = SSL_new(ServerInfo.server_ctx)) == NULL)
-<
+      ilog(L_CRIT, "SSL_new() ERROR! -- %s",
->
+      ilog(LOG_TYPE_IRCD, "SSL_new() ERROR! -- %s",
+           ERR_error_string(ERR_get_error(), NULL));
+      SetDead(new_client);
+  else
+#endif
-<
+    execute_callback(auth_cb, new_client);
->
+    start_auth(new_client);
+/*
+                 void *data, int aftype, int timeout)
+  struct addrinfo hints, *res;
-<
+  char portname[PORTNAMELEN+1];
->
+  char portname[PORTNAMELEN + 1];
+  assert(callback);
+  fd->connect.callback = callback;
+  hints.ai_socktype = SOCK_STREAM;
+  hints.ai_flags = AI_PASSIVE | AI_NUMERICHOST;
-<
+  snprintf(portname, PORTNAMELEN, "%d", port);
->
+  snprintf(portname, sizeof(portname), "%d", port);
-<
+  if (irc_getaddrinfo(host, portname, &hints, &res))
->
+  if (getaddrinfo(host, portname, &hints, &res))
+    /* Send the DNS request, for the next level */
-–
+    fd->dns_query = MyMalloc(sizeof(struct DNSQuery));
-–
+    fd->dns_query->ptr = fd;
-–
+    fd->dns_query->callback = comm_connect_dns_callback;
+    if (aftype == AF_INET6)
-<
+      gethost_byname_type(host, fd->dns_query, T_AAAA);
->
+      gethost_byname_type(comm_connect_dns_callback, fd, host, T_AAAA);
+    else
-<
+      gethost_byname_type(host, fd->dns_query, T_A);
->
+      gethost_byname_type(comm_connect_dns_callback, fd, host, T_A);
+  else
+    memcpy(&fd->connect.hostaddr, res->ai_addr, res->ai_addrlen);
+    fd->connect.hostaddr.ss_len = res->ai_addrlen;
+    fd->connect.hostaddr.ss.ss_family = res->ai_family;
-<
+    irc_freeaddrinfo(res);
->
+    freeaddrinfo(res);
+    comm_settimeout(fd, timeout*1000, comm_connect_timeout, NULL);
+    comm_connect_tryconnect(fd, NULL);
+ * otherwise we initiate the connect()
+ */
+static void
-<
+comm_connect_dns_callback(void *vptr, struct DNSReply *reply)
->
+comm_connect_dns_callback(void *vptr, const struct irc_ssaddr *addr, const char *name)
+  fde_t *F = vptr;
-<
+  if (reply == NULL)
->
+  if (name == NULL)
-–
+    MyFree(F->dns_query);
-–
+    F->dns_query = NULL;
+    comm_connect_callback(F, COMM_ERR_DNS);
+    return;
+   * the DNS record around, and the DNS cache is gone anyway..
+   *     -- adrian
+   */
-<
+  memcpy(&F->connect.hostaddr, &reply->addr, reply->addr.ss_len);
->
+  memcpy(&F->connect.hostaddr, addr, addr->ss_len);
+  /* The cast is hacky, but safe - port offset is same on v4 and v6 */
+  ((struct sockaddr_in *) &F->connect.hostaddr)->sin_port =
+    F->connect.hostaddr.ss_port;
-<
+  F->connect.hostaddr.ss_len = reply->addr.ss_len;
->
+  F->connect.hostaddr.ss_len = addr->ss_len;
+  /* Now, call the tryconnect() routine to try a connect() */
-–
+  MyFree(F->dns_query);
-–
+  F->dns_query = NULL;
+  comm_connect_tryconnect(F, NULL);
+  /* Error? */
+  if (retval < 0)
-–
+#ifdef _WIN32
-–
+    errno = WSAGetLastError();
-–
+#endif
+    /*
+     * If we get EISCONN, then we've already connect()ed the socket,
+     * which is a good thing.
+   */
+  fd = socket(family, sock_type, proto);
+  if (fd < 0)
-–
+  {
-–
+#ifdef _WIN32
-–
+    errno = WSAGetLastError();
-–
+#endif
+    return -1; /* errno will be passed through, yay.. */
-–
+  }
+  execute_callback(setup_socket_cb, fd);
+   * reserved fd limit, but we can deal with that when comm_open()
+   * also does it. XXX -- adrian
+   */
-<
+  newfd = accept(lptr->fd.fd, (struct sockaddr *)pn, (socklen_t *)&addrlen);
->
+  newfd = accept(lptr->fd.fd, (struct sockaddr *)pn, &addrlen);
+  if (newfd < 0)
-–
+  {
-–
+#ifdef _WIN32
-–
+    errno = WSAGetLastError();
-–
+#endif
+    return -1;
-–
+  }
+#ifdef IPV6
+  remove_ipv6_mapping(pn);
+/*
+ * remove_ipv6_mapping() - Removes IPv4-In-IPv6 mapping from an address
-<
+ * This function should really inspect the struct itself rather than relying
-<
+ * on inet_pton and inet_ntop.  OSes with IPv6 mapping listening on both
->
+ * OSes with IPv6 mapping listening on both
+ * AF_INET and AF_INET6 map AF_INET connections inside AF_INET6 structures
+ */
+  if (addr->ss.ss_family == AF_INET6)
-<
+    struct sockaddr_in6 *v6;
-<
-<
+    v6 = (struct sockaddr_in6*)addr;
-<
+    if (IN6_IS_ADDR_V4MAPPED(&v6->sin6_addr))
->
+    if (IN6_IS_ADDR_V4MAPPED(&((struct sockaddr_in6 *)addr)->sin6_addr))
-<
+      char v4ip[HOSTIPLEN];
-<
+      struct sockaddr_in *v4 = (struct sockaddr_in*)addr;
-<
+      inetntop(AF_INET6, &v6->sin6_addr, v4ip, HOSTIPLEN);
-<
+      inet_pton(AF_INET, v4ip, &v4->sin_addr);
->
+      struct sockaddr_in6 v6;
->
+      struct sockaddr_in *v4 = (struct sockaddr_in *)addr;
->
->
+      memcpy(&v6, addr, sizeof(v6));
->
+      memset(v4, 0, sizeof(struct sockaddr_in));
->
+      memcpy(&v4->sin_addr, &v6.sin6_addr.s6_addr[12], sizeof(v4->sin_addr));
->
+      addr->ss.ss_family = AF_INET;
+      addr->ss_len = sizeof(struct sockaddr_in);

Diff Legend

-–
+Removed lines
-+
+Added lines
-<
+Changed lines (old)
->
+Changed lines (new)

Comparing: ircd-hybrid-7.2/src/s_bsd.c (file contents), Revision 896 by michael, Sat Nov 3 08:54:09 2007 UTC vs. ircd-hybrid/trunk/src/s_bsd.c (file contents), Revision 2228 by michael, Thu Jun 13 19:46:30 2013 UTC

Diff Legend

Comparing:
ircd-hybrid-7.2/src/s_bsd.c (file contents), Revision 896 by michael, Sat Nov 3 08:54:09 2007 UTC vs.
ircd-hybrid/trunk/src/s_bsd.c (file contents), Revision 2228 by michael, Thu Jun 13 19:46:30 2013 UTC