ViewVC Help
View File | Revision Log | Show Annotations | View Changeset | Root Listing
root/svn/ircd-hybrid/trunk/src/server.c
Revision: 7997
Committed: Tue Mar 14 13:17:52 2017 UTC (8 years, 5 months ago) by michael
Content type: text/x-csrc
File size: 26603 byte(s)
Log Message: 
- Rename get_client_name() to client_get_name()

File Contents

# Content
1 /*
2 * ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
3 *
4 * Copyright (c) 1997-2017 ircd-hybrid development team
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
19 * USA
20 */
21
22 /*! \file s_serv.c
23 * \brief Server related functions.
24 * \version $Id$
25 */
26
27 #include "stdinc.h"
28 #include "list.h"
29 #include "client.h"
30 #include "event.h"
31 #include "hash.h"
32 #include "irc_string.h"
33 #include "ircd.h"
34 #include "ircd_defs.h"
35 #include "s_bsd.h"
36 #include "packet.h"
37 #include "conf.h"
38 #include "server.h"
39 #include "log.h"
40 #include "send.h"
41 #include "memory.h"
42 #include "parse.h"
43
44
45 dlink_list flatten_links;
46 static dlink_list server_capabilities_list;
47 static void serv_connect_callback(fde_t *, int, void *);
48
49
50 /*
51 * write_links_file
52 *
53 * inputs - void pointer which is not used
54 * output - NONE
55 * side effects - called from an event, write out list of linked servers
56 * but in no particular order.
57 */
58 void
59 write_links_file(void *unused)
60 {
61 FILE *file = NULL;
62 dlink_node *node, *node_next;
63 char buff[IRCD_BUFSIZE] = "";
64
65 if (EmptyString(ConfigServerHide.flatten_links_file))
66 return;
67
68 if ((file = fopen(ConfigServerHide.flatten_links_file, "w")) == NULL)
69 {
70 ilog(LOG_TYPE_IRCD, "Couldn't open \"%s\": %s", ConfigServerHide.flatten_links_file,
71 strerror(errno));
72 return;
73 }
74
75 DLINK_FOREACH_SAFE(node, node_next, flatten_links.head)
76 {
77 dlinkDelete(node, &flatten_links);
78 xfree(node->data);
79 free_dlink_node(node);
80 }
81
82 DLINK_FOREACH(node, global_server_list.head)
83 {
84 const struct Client *target_p = node->data;
85
86 /*
87 * Skip hidden servers, aswell as ourselves, since we already send
88 * ourselves in /links
89 */
90 if (IsHidden(target_p) || IsMe(target_p))
91 continue;
92
93 if (HasFlag(target_p, FLAGS_SERVICE) && ConfigServerHide.hide_services)
94 continue;
95
96 /*
97 * Attempt to format the file in such a way it follows the usual links output
98 * ie "servername uplink :hops info"
99 * Mostly for aesthetic reasons - makes it look pretty in mIRC ;)
100 * - madmax
101 */
102 snprintf(buff, sizeof(buff), "%s %s :1 %s", target_p->name,
103 me.name, target_p->info);
104 dlinkAddTail(xstrdup(buff), make_dlink_node(), &flatten_links);
105 snprintf(buff, sizeof(buff), "%s %s :1 %s\n", target_p->name,
106 me.name, target_p->info);
107
108 fputs(buff, file);
109 }
110
111 fclose(file);
112 }
113
114 void
115 read_links_file(void)
116 {
117 FILE *file = NULL;
118 char *p = NULL;
119 char buff[IRCD_BUFSIZE] = "";
120
121 if (EmptyString(ConfigServerHide.flatten_links_file))
122 return;
123
124 if ((file = fopen(ConfigServerHide.flatten_links_file, "r")) == NULL)
125 {
126 ilog(LOG_TYPE_IRCD, "Couldn't open \"%s\": %s", ConfigServerHide.flatten_links_file,
127 strerror(errno));
128 return;
129 }
130
131 while (fgets(buff, sizeof(buff), file))
132 {
133 if ((p = strchr(buff, '\n')))
134 *p = '\0';
135
136 dlinkAddTail(xstrdup(buff), make_dlink_node(), &flatten_links);
137 }
138
139 fclose(file);
140 }
141
142 /* server_hunt()
143 * Do the basic thing in delivering the message (command)
144 * across the relays to the specific server (server) for
145 * actions.
146 *
147 * Note: The command is a format string and *MUST* be
148 * of prefixed style (e.g. ":%s COMMAND %s ...").
149 * Command can have only max 8 parameters.
150 *
151 * server parv[server] is the parameter identifying the
152 * target server.
153 *
154 * *WARNING*
155 * parv[server] is replaced with the pointer to the
156 * real servername from the matched client (I'm lazy
157 * now --msa).
158 *
159 * returns: (see #defines)
160 */
161 const struct server_hunt *
162 server_hunt(struct Client *source_p, const char *command,
163 const int server, const int parc, char *parv[])
164 {
165 static struct server_hunt hunt;
166 struct server_hunt *const h = &hunt;
167 dlink_node *node;
168
169 /* Assume it's me, if no server */
170 if (parc <= server || EmptyString(parv[server]))
171 {
172 h->target_p = &me;
173 h->ret = HUNTED_ISME;
174 return h;
175 }
176
177 if ((h->target_p = find_person(source_p, parv[server])) == NULL)
178 h->target_p = hash_find_server(parv[server]);
179
180 /*
181 * These are to pickup matches that would cause the following
182 * message to go in the wrong direction while doing quick fast
183 * non-matching lookups.
184 */
185 if (h->target_p)
186 if (h->target_p->from == source_p->from && !MyConnect(h->target_p))
187 h->target_p = NULL;
188
189 if (!h->target_p && has_wildcards(parv[server]))
190 {
191 DLINK_FOREACH(node, global_server_list.head)
192 {
193 struct Client *tmp = node->data;
194
195 assert(IsMe(tmp) || IsServer(tmp));
196 if (!match(parv[server], tmp->name))
197 {
198 if (tmp->from == source_p->from && !MyConnect(tmp))
199 continue;
200
201 h->target_p = tmp;
202 break;
203 }
204 }
205
206 if (!h->target_p)
207 {
208 DLINK_FOREACH(node, global_client_list.head)
209 {
210 struct Client *tmp = node->data;
211
212 assert(IsClient(tmp));
213 if (!match(parv[server], tmp->name))
214 {
215 if (tmp->from == source_p->from && !MyConnect(tmp))
216 continue;
217
218 h->target_p = tmp;
219 break;
220 }
221 }
222 }
223 }
224
225 if (h->target_p)
226 {
227 assert(IsMe(h->target_p) || IsServer(h->target_p) || IsClient(h->target_p));
228 if (IsMe(h->target_p) || MyClient(h->target_p))
229 {
230 h->ret = HUNTED_ISME;
231 return h;
232 }
233
234 parv[server] = h->target_p->id;
235 sendto_one(h->target_p, command, source_p->id,
236 parv[1], parv[2], parv[3], parv[4],
237 parv[5], parv[6], parv[7], parv[8]);
238 h->ret = HUNTED_PASS;
239 return h;
240 }
241
242 sendto_one_numeric(source_p, &me, ERR_NOSUCHSERVER, parv[server]);
243 h->ret = HUNTED_NOSUCH;
244 return h;
245 }
246
247 /* try_connections()
248 *
249 * inputs - void pointer which is not used
250 * output - NONE
251 * side effects -
252 * scan through configuration and try new connections.
253 * Returns the calendar time when the next call to this
254 * function should be made latest. (No harm done if this
255 * is called earlier or later...)
256 */
257 void
258 try_connections(void *unused)
259 {
260 dlink_node *node;
261
262 if (GlobalSetOptions.autoconn == 0)
263 return;
264
265 DLINK_FOREACH(node, connect_items.head)
266 {
267 struct MaskItem *conf = node->data;
268
269 assert(conf->type == CONF_SERVER);
270 assert(conf->class);
271
272 /* Also when already connecting! (update holdtimes) --SRB */
273 if (!conf->port || !IsConfAllowAutoConn(conf))
274 continue;
275
276 /*
277 * Skip this entry if the use of it is still on hold until
278 * future. Otherwise handle this entry (and set it on hold
279 * until next time). Will reset only hold times, if already
280 * made one successfull connection... [this algorithm is
281 * a bit fuzzy... -- msa >;) ]
282 */
283 if (conf->until > CurrentTime)
284 continue;
285
286 conf->until = CurrentTime + conf->class->con_freq;
287
288 /*
289 * Found a CONNECT config with port specified, scan clients
290 * and see if this server is already connected?
291 */
292 if (hash_find_server(conf->name))
293 continue;
294
295 if (conf->class->ref_count < conf->class->max_total)
296 {
297 /* Move this entry to the end of the list, if not already last */
298 if (node->next)
299 {
300 dlinkDelete(node, &connect_items);
301 dlinkAddTail(conf, &conf->node, &connect_items);
302 }
303
304 if (find_servconn_in_progress(conf->name))
305 return;
306
307 /*
308 * We used to only print this if serv_connect() actually
309 * succeeded, but since comm_tcp_connect() can call the callback
310 * immediately if there is an error, we were getting error messages
311 * in the wrong order. SO, we just print out the activated line,
312 * and let serv_connect() / serv_connect_callback() print an
313 * error afterwards if it fails.
314 * -- adrian
315 */
316 if (ConfigServerHide.hide_server_ips)
317 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
318 "Connection to %s activated.",
319 conf->name);
320 else
321 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
322 "Connection to %s[%s] activated.",
323 conf->name, conf->host);
324
325 serv_connect(conf, NULL);
326 /* We connect only one at time... */
327 return;
328 }
329 }
330 }
331
332 int
333 valid_servname(const char *name)
334 {
335 unsigned int dots = 0;
336 const char *p = name;
337
338 for (; *p; ++p)
339 {
340 if (!IsServChar(*p))
341 return 0;
342
343 if (*p == '.')
344 ++dots;
345 }
346
347 return dots && (p - name) <= HOSTLEN;
348 }
349
350 /* server_capab_init()
351 *
352 * inputs - none
353 * output - none
354 */
355 void
356 server_capab_init(void)
357 {
358 add_capability("QS", CAPAB_QS);
359 add_capability("EOB", CAPAB_EOB);
360 add_capability("CLUSTER", CAPAB_CLUSTER);
361 add_capability("SVS", CAPAB_SVS);
362 add_capability("CHW", CAPAB_CHW);
363 add_capability("HOPS", CAPAB_HOPS);
364 }
365
366 /* add_capability()
367 *
368 * inputs - string name of CAPAB
369 * - int flag of capability
370 * output - NONE
371 * side effects - Adds given capability name and bit mask to
372 * current supported capabilities. This allows
373 * modules to dynamically add or subtract their capability.
374 */
375 void
376 add_capability(const char *name, unsigned int flag)
377 {
378 struct Capability *cap = xcalloc(sizeof(*cap));
379
380 cap->name = xstrdup(name);
381 cap->cap = flag;
382 dlinkAdd(cap, &cap->node, &server_capabilities_list);
383 }
384
385 /* delete_capability()
386 *
387 * inputs - string name of CAPAB
388 * output - NONE
389 * side effects - delete given capability from ones known.
390 */
391 void
392 delete_capability(const char *name)
393 {
394 dlink_node *node, *node_next;
395
396 DLINK_FOREACH_SAFE(node, node_next, server_capabilities_list.head)
397 {
398 struct Capability *cap = node->data;
399
400 if (!irccmp(cap->name, name))
401 {
402 dlinkDelete(node, &server_capabilities_list);
403 xfree(cap->name);
404 xfree(cap);
405 }
406 }
407 }
408
409 /*
410 * find_capability()
411 *
412 * inputs - string name of capab to find
413 * output - 0 if not found CAPAB otherwise
414 * side effects - none
415 */
416 unsigned int
417 find_capability(const char *name)
418 {
419 dlink_node *node;
420
421 DLINK_FOREACH(node, server_capabilities_list.head)
422 {
423 const struct Capability *cap = node->data;
424
425 if (!irccmp(cap->name, name))
426 return cap->cap;
427 }
428
429 return 0;
430 }
431
432 /*
433 * show_capabilities - show current server capabilities
434 *
435 * inputs - pointer to a struct Client
436 * output - pointer to static string
437 * side effects - build up string representing capabilities of server listed
438 */
439 const char *
440 get_capabilities(const struct Client *client_p)
441 {
442 static char buf[IRCD_BUFSIZE] = "";
443 dlink_node *node;
444
445 buf[0] = '\0';
446
447 DLINK_FOREACH(node, server_capabilities_list.head)
448 {
449 const struct Capability *cap = node->data;
450
451 if (client_p && !IsCapable(client_p, cap->cap))
452 continue;
453
454 strlcat(buf, cap->name, sizeof(buf));
455
456 if (node->next)
457 strlcat(buf, " ", sizeof(buf));
458 }
459
460 return buf;
461 }
462
463 /* make_server()
464 *
465 * inputs - pointer to client struct
466 * output - pointer to struct Server
467 * side effects - add's an Server information block to a client
468 * if it was not previously allocated.
469 */
470 struct Server *
471 make_server(struct Client *client_p)
472 {
473 if (client_p->serv == NULL)
474 client_p->serv = xcalloc(sizeof(struct Server));
475
476 return client_p->serv;
477 }
478
479 /* New server connection code
480 * Based upon the stuff floating about in s_bsd.c
481 * -- adrian
482 */
483
484 /* serv_connect() - initiate a server connection
485 *
486 * inputs - pointer to conf
487 * - pointer to client doing the connect
488 * output -
489 * side effects -
490 *
491 * This code initiates a connection to a server. It first checks to make
492 * sure the given server exists. If this is the case, it creates a socket,
493 * creates a client, saves the socket information in the client, and
494 * initiates a connection to the server through comm_connect_tcp(). The
495 * completion of this goes through serv_completed_connection().
496 *
497 * We return 1 if the connection is attempted, since we don't know whether
498 * it suceeded or not, and 0 if it fails in here somewhere.
499 */
500 int
501 serv_connect(struct MaskItem *conf, struct Client *by)
502 {
503 struct Client *client_p = NULL;
504 char buf[HOSTIPLEN + 1] = "";
505
506 /* conversion structs */
507 struct sockaddr_in *v4;
508
509 /* Make sure conf is useful */
510 assert(conf);
511
512 getnameinfo((const struct sockaddr *)&conf->addr, conf->addr.ss_len,
513 buf, sizeof(buf), NULL, 0, NI_NUMERICHOST);
514 ilog(LOG_TYPE_IRCD, "Connect to %s[%s] @%s", conf->name, conf->host,
515 buf);
516
517 /* Still processing a DNS lookup? -> exit */
518 if (conf->dns_pending)
519 {
520 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
521 "Error connecting to %s: DNS lookup for connect{} in progress.",
522 conf->name);
523 return 0;
524 }
525
526 if (conf->dns_failed)
527 {
528 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
529 "Error connecting to %s: DNS lookup for connect{} failed.",
530 conf->name);
531 return 0;
532 }
533
534 /*
535 * Make sure this server isn't already connected.
536 * Note: conf should ALWAYS be a valid connect {} block
537 */
538 if ((client_p = hash_find_server(conf->name)))
539 {
540 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
541 "Server %s already present from %s",
542 conf->name, client_get_name(client_p, SHOW_IP));
543 sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
544 "Server %s already present from %s",
545 conf->name, client_get_name(client_p, MASK_IP));
546 if (by && IsClient(by) && !MyClient(by))
547 sendto_one_notice(by, &me, ":Server %s already present from %s",
548 conf->name, client_get_name(client_p, MASK_IP));
549 return 0;
550 }
551
552 /* Create a local client */
553 client_p = client_make(NULL);
554
555 /* Copy in the server, hostname, fd */
556 strlcpy(client_p->name, conf->name, sizeof(client_p->name));
557 strlcpy(client_p->host, conf->host, sizeof(client_p->host));
558
559 /* We already converted the ip once, so lets use it - stu */
560 strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
561
562 /* Create a socket for the server connection */
563 if (comm_open(&client_p->connection->fd, conf->addr.ss.ss_family, SOCK_STREAM, 0, NULL) < 0)
564 {
565 /* Eek, failure to create the socket */
566 report_error(L_ALL, "opening stream socket to %s: %s", conf->name, errno);
567
568 SetDead(client_p);
569 exit_client(client_p, "Connection failed");
570 return 0;
571 }
572
573 /* Server names are always guaranteed under HOSTLEN chars */
574 fd_note(&client_p->connection->fd, "Server: %s", client_p->name);
575
576 /*
577 * Attach config entries to client here rather than in serv_connect_callback().
578 * This to avoid null pointer references.
579 */
580 if (!attach_connect_block(client_p, conf->name, conf->host))
581 {
582 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
583 "Host %s is not enabled for connecting: no connect {} block",
584 conf->name);
585 if (by && IsClient(by) && !MyClient(by))
586 sendto_one_notice(by, &me, ":Connect to host %s failed: no connect {} block", client_p->name);
587
588 SetDead(client_p);
589 exit_client(client_p, "Connection failed");
590 return 0;
591 }
592
593 /*
594 * At this point we have a connection in progress and a connect {} block
595 * attached to the client, the socket info should be saved in the client
596 * and it should either be resolved or have a valid address.
597 *
598 * The socket has been connected or connect is in progress.
599 */
600 make_server(client_p);
601
602 if (by && IsClient(by))
603 strlcpy(client_p->serv->by, by->name, sizeof(client_p->serv->by));
604 else
605 strlcpy(client_p->serv->by, "AutoConn.", sizeof(client_p->serv->by));
606
607 SetConnecting(client_p);
608 client_p->connection->aftype = conf->aftype;
609
610 /* Now, initiate the connection */
611 /* XXX assume that a non 0 type means a specific bind address
612 * for this connect.
613 */
614 switch (conf->aftype)
615 {
616 case AF_INET:
617 v4 = (struct sockaddr_in*)&conf->bind;
618 if (v4->sin_addr.s_addr)
619 {
620 struct irc_ssaddr ipn;
621 memset(&ipn, 0, sizeof(struct irc_ssaddr));
622 ipn.ss.ss_family = AF_INET;
623 ipn.ss_port = 0;
624 memcpy(&ipn, &conf->bind, sizeof(struct irc_ssaddr));
625 comm_connect_tcp(&client_p->connection->fd, conf->host, conf->port,
626 (struct sockaddr *)&ipn, ipn.ss_len,
627 serv_connect_callback, client_p, conf->aftype,
628 CONNECTTIMEOUT);
629 }
630 else if (ConfigServerInfo.specific_ipv4_vhost)
631 {
632 struct irc_ssaddr ipn;
633 memset(&ipn, 0, sizeof(struct irc_ssaddr));
634 ipn.ss.ss_family = AF_INET;
635 ipn.ss_port = 0;
636 memcpy(&ipn, &ConfigServerInfo.ip, sizeof(struct irc_ssaddr));
637 comm_connect_tcp(&client_p->connection->fd, conf->host, conf->port,
638 (struct sockaddr *)&ipn, ipn.ss_len,
639 serv_connect_callback, client_p, conf->aftype,
640 CONNECTTIMEOUT);
641 }
642 else
643 comm_connect_tcp(&client_p->connection->fd, conf->host, conf->port,
644 NULL, 0, serv_connect_callback, client_p, conf->aftype,
645 CONNECTTIMEOUT);
646 break;
647 case AF_INET6:
648 {
649 struct irc_ssaddr ipn;
650 struct sockaddr_in6 *v6;
651 struct sockaddr_in6 *v6conf;
652
653 memset(&ipn, 0, sizeof(struct irc_ssaddr));
654 v6conf = (struct sockaddr_in6 *)&conf->bind;
655 v6 = (struct sockaddr_in6 *)&ipn;
656
657 if (memcmp(&v6conf->sin6_addr, &v6->sin6_addr, sizeof(struct in6_addr)))
658 {
659 memcpy(&ipn, &conf->bind, sizeof(struct irc_ssaddr));
660 ipn.ss.ss_family = AF_INET6;
661 ipn.ss_port = 0;
662 comm_connect_tcp(&client_p->connection->fd,
663 conf->host, conf->port,
664 (struct sockaddr *)&ipn, ipn.ss_len,
665 serv_connect_callback, client_p,
666 conf->aftype, CONNECTTIMEOUT);
667 }
668 else if (ConfigServerInfo.specific_ipv6_vhost)
669 {
670 memcpy(&ipn, &ConfigServerInfo.ip6, sizeof(struct irc_ssaddr));
671 ipn.ss.ss_family = AF_INET6;
672 ipn.ss_port = 0;
673 comm_connect_tcp(&client_p->connection->fd,
674 conf->host, conf->port,
675 (struct sockaddr *)&ipn, ipn.ss_len,
676 serv_connect_callback, client_p,
677 conf->aftype, CONNECTTIMEOUT);
678 }
679 else
680 comm_connect_tcp(&client_p->connection->fd,
681 conf->host, conf->port,
682 NULL, 0, serv_connect_callback, client_p,
683 conf->aftype, CONNECTTIMEOUT);
684 }
685 }
686
687 return 1;
688 }
689
690 static void
691 finish_ssl_server_handshake(struct Client *client_p)
692 {
693 const struct MaskItem *conf = find_conf_name(&client_p->connection->confs,
694 client_p->name, CONF_SERVER);
695 if (!conf)
696 {
697 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
698 "Lost connect{} block for %s", client_get_name(client_p, SHOW_IP));
699 sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
700 "Lost connect{} block for %s", client_get_name(client_p, MASK_IP));
701
702 exit_client(client_p, "Lost connect{} block");
703 return;
704 }
705
706 sendto_one(client_p, "PASS %s TS %u %s", conf->spasswd, TS_CURRENT, me.id);
707
708 sendto_one(client_p, "CAPAB :%s", get_capabilities(NULL));
709
710 sendto_one(client_p, "SERVER %s 1 :%s%s",
711 me.name, ConfigServerHide.hidden ? "(H) " : "",
712 me.info);
713
714 /*
715 * If we've been marked dead because a send failed, just exit
716 * here now and save everyone the trouble of us ever existing.
717 */
718 if (IsDead(client_p))
719 {
720 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
721 "%s went dead during handshake", client_get_name(client_p, SHOW_IP));
722 sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
723 "%s went dead during handshake", client_get_name(client_p, MASK_IP));
724 return;
725 }
726
727 /* don't move to serv_list yet -- we haven't sent a burst! */
728 /* If we get here, we're ok, so lets start reading some data */
729 comm_setselect(&client_p->connection->fd, COMM_SELECT_READ, read_packet, client_p, 0);
730 }
731
732 static void
733 ssl_server_handshake(fde_t *fd, void *data)
734 {
735 struct Client *client_p = data;
736 const char *sslerr = NULL;
737
738 tls_handshake_status_t ret = tls_handshake(&client_p->connection->fd.ssl, TLS_ROLE_CLIENT, &sslerr);
739 if (ret != TLS_HANDSHAKE_DONE)
740 {
741 if ((CurrentTime - client_p->connection->firsttime) > CONNECTTIMEOUT)
742 {
743 exit_client(client_p, "Timeout during TLS handshake");
744 return;
745 }
746
747 switch (ret)
748 {
749 case TLS_HANDSHAKE_WANT_WRITE:
750 comm_setselect(&client_p->connection->fd, COMM_SELECT_WRITE,
751 ssl_server_handshake, client_p, CONNECTTIMEOUT);
752 return;
753 case TLS_HANDSHAKE_WANT_READ:
754 comm_setselect(&client_p->connection->fd, COMM_SELECT_READ,
755 ssl_server_handshake, client_p, CONNECTTIMEOUT);
756 return;
757 default:
758 {
759 sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
760 "Error connecting to %s: %s", client_p->name,
761 sslerr ? sslerr : "unknown TLS error");
762 exit_client(client_p, "Error during TLS handshake");
763 return;
764 }
765 }
766 }
767
768 comm_settimeout(&client_p->connection->fd, 0, NULL, NULL);
769
770 if (!tls_verify_cert(&client_p->connection->fd.ssl, ConfigServerInfo.message_digest_algorithm, &client_p->certfp))
771 ilog(LOG_TYPE_IRCD, "Server %s!%s@%s gave bad TLS client certificate",
772 client_p->name, client_p->username, client_p->host);
773
774 finish_ssl_server_handshake(client_p);
775 }
776
777 static void
778 ssl_connect_init(struct Client *client_p, const struct MaskItem *conf, fde_t *fd)
779 {
780 if (!tls_new(&client_p->connection->fd.ssl, fd->fd, TLS_ROLE_CLIENT))
781 {
782 SetDead(client_p);
783 exit_client(client_p, "TLS context initialization failed");
784 return;
785 }
786
787 if (!EmptyString(conf->cipher_list))
788 tls_set_ciphers(&client_p->connection->fd.ssl, conf->cipher_list);
789
790 ssl_server_handshake(NULL, client_p);
791 }
792
793 /* serv_connect_callback() - complete a server connection.
794 *
795 * This routine is called after the server connection attempt has
796 * completed. If unsucessful, an error is sent to ops and the client
797 * is closed. If sucessful, it goes through the initialisation/check
798 * procedures, the capabilities are sent, and the socket is then
799 * marked for reading.
800 */
801 static void
802 serv_connect_callback(fde_t *fd, int status, void *data)
803 {
804 struct Client *const client_p = data;
805
806 /* First, make sure it's a real client! */
807 assert(client_p);
808 assert(&client_p->connection->fd == fd);
809
810 /* Next, for backward purposes, record the ip of the server */
811 memcpy(&client_p->connection->ip, &fd->connect.hostaddr, sizeof(struct irc_ssaddr));
812
813 /* Check the status */
814 if (status != COMM_OK)
815 {
816 /* We have an error, so report it and quit */
817 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
818 "Error connecting to %s: %s",
819 client_get_name(client_p, SHOW_IP), comm_errstr(status));
820 sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
821 "Error connecting to %s: %s",
822 client_get_name(client_p, MASK_IP), comm_errstr(status));
823
824 /*
825 * If a fd goes bad, call dead_link() the socket is no
826 * longer valid for reading or writing.
827 */
828 dead_link_on_write(client_p, 0);
829 return;
830 }
831
832 /* COMM_OK, so continue the connection procedure */
833 /* Get the connect {} block */
834 const struct MaskItem *conf = find_conf_name(&client_p->connection->confs,
835 client_p->name, CONF_SERVER);
836 if (!conf)
837 {
838 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
839 "Lost connect{} block for %s", client_get_name(client_p, SHOW_IP));
840 sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
841 "Lost connect{} block for %s", client_get_name(client_p, MASK_IP));
842
843 exit_client(client_p, "Lost connect{} block");
844 return;
845 }
846
847 /* Next, send the initial handshake */
848 SetHandshake(client_p);
849
850 if (IsConfSSL(conf))
851 {
852 ssl_connect_init(client_p, conf, fd);
853 return;
854 }
855
856 sendto_one(client_p, "PASS %s TS %u %s", conf->spasswd, TS_CURRENT, me.id);
857
858 sendto_one(client_p, "CAPAB :%s", get_capabilities(NULL));
859
860 sendto_one(client_p, "SERVER %s 1 :%s%s", me.name,
861 ConfigServerHide.hidden ? "(H) " : "", me.info);
862
863 /*
864 * If we've been marked dead because a send failed, just exit
865 * here now and save everyone the trouble of us ever existing.
866 */
867 if (IsDead(client_p))
868 {
869 sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
870 "%s went dead during handshake", client_get_name(client_p, SHOW_IP));
871 sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
872 "%s went dead during handshake", client_get_name(client_p, MASK_IP));
873 return;
874 }
875
876 /* don't move to serv_list yet -- we haven't sent a burst! */
877 /* If we get here, we're ok, so lets start reading some data */
878 comm_setselect(fd, COMM_SELECT_READ, read_packet, client_p, 0);
879 }
880
881 struct Client *
882 find_servconn_in_progress(const char *name)
883 {
884 dlink_node *ptr;
885
886 DLINK_FOREACH(ptr, unknown_list.head)
887 {
888 struct Client *cptr = ptr->data;
889
890 if (cptr->name[0])
891 if (!irccmp(name, cptr->name))
892 return cptr;
893 }
894
895 return NULL;
896 }

Properties

Name Value
svn:eol-style native
svn:keywords Id