trunk/src/server.c

/*
 *  ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
 *
 *  Copyright (c) 1997-2019 ircd-hybrid development team
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License as published by
 *  the Free Software Foundation; either version 2 of the License, or
 *  (at your option) any later version.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
 *  USA
 */

/*! \file server.c
 * \brief Server related functions.
 * \version $Id$
 */

#include "stdinc.h"
#include "list.h"
#include "client.h"
#include "event.h"
#include "hash.h"
#include "irc_string.h"
#include "ircd.h"
#include "ircd_defs.h"
#include "s_bsd.h"
#include "packet.h"
#include "conf.h"
#include "server.h"
#include "server_capab.h"
#include "log.h"
#include "send.h"
#include "memory.h"
#include "parse.h"


dlink_list flatten_links;
static void server_connect_callback(fde_t *, int, void *);


/*
 * write_links_file
 *
 * inputs       - void pointer which is not used
 * output       - NONE
 * side effects - called from an event, write out list of linked servers
 *                but in no particular order.
 */
void
write_links_file(void *unused)
{
  FILE *file = NULL;
  dlink_node *node, *node_next;
  char buff[IRCD_BUFSIZE] = "";

  if (EmptyString(ConfigServerHide.flatten_links_file))
    return;

  if ((file = fopen(ConfigServerHide.flatten_links_file, "w")) == NULL)
  {
    ilog(LOG_TYPE_IRCD, "Couldn't open \"%s\": %s", ConfigServerHide.flatten_links_file,
         strerror(errno));
    return;
  }

  DLINK_FOREACH_SAFE(node, node_next, flatten_links.head)
  {
    dlinkDelete(node, &flatten_links);
    xfree(node->data);
    free_dlink_node(node);
  }

  DLINK_FOREACH(node, global_server_list.head)
  {
    const struct Client *target_p = node->data;

    /*
     * Skip hidden servers, aswell as ourselves, since we already send
     * ourselves in /links
     */
    if (IsHidden(target_p) || IsMe(target_p))
      continue;

    if (HasFlag(target_p, FLAGS_SERVICE) && ConfigServerHide.hide_services)
      continue;

    /*
     * Attempt to format the file in such a way it follows the usual links output
     * ie  "servername uplink :hops info"
     * Mostly for aesthetic reasons - makes it look pretty in mIRC ;)
     * - madmax
     */
    snprintf(buff, sizeof(buff), "%s %s :1 %s",   target_p->name,
             me.name, target_p->info);
    dlinkAddTail(xstrdup(buff), make_dlink_node(), &flatten_links);
    snprintf(buff, sizeof(buff), "%s %s :1 %s\n", target_p->name,
             me.name, target_p->info);

    fputs(buff, file);
  }

  fclose(file);
}

void
read_links_file(void)
{
  FILE *file = NULL;
  char *p = NULL;
  char buff[IRCD_BUFSIZE] = "";

  if (EmptyString(ConfigServerHide.flatten_links_file))
    return;

  if ((file = fopen(ConfigServerHide.flatten_links_file, "r")) == NULL)
  {
    ilog(LOG_TYPE_IRCD, "Couldn't open \"%s\": %s", ConfigServerHide.flatten_links_file,
         strerror(errno));
    return;
  }

  while (fgets(buff, sizeof(buff), file))
  {
    if ((p = strchr(buff, '\n')))
      *p = '\0';

    dlinkAddTail(xstrdup(buff), make_dlink_node(), &flatten_links);
  }

  fclose(file);
}

/* server_hunt()
 *      Do the basic thing in delivering the message (command)
 *      across the relays to the specific server (server) for
 *      actions.
 *
 *      Note:   The command is a format string and *MUST* be
 *              of prefixed style (e.g. ":%s COMMAND %s ...").
 *              Command can have only max 8 parameters.
 *
 *      server  parv[server] is the parameter identifying the
 *              target server.
 *
 *      *WARNING*
 *              parv[server] is replaced with the pointer to the
 *              real servername from the matched client (I'm lazy
 *              now --msa).
 *
 *      returns: (see #defines)
 */
const struct server_hunt *
server_hunt(struct Client *source_p, const char *command,
            const int server, const int parc, char *parv[])
{
  static struct server_hunt hunt;
  struct server_hunt *const h = &hunt;
  dlink_node *node;

  /* Assume it's me, if no server */
  if (parc <= server || EmptyString(parv[server]))
  {
    h->target_p = &me;
    h->ret = HUNTED_ISME;
    return h;
  }

  if ((h->target_p = find_person(source_p, parv[server])) == NULL)
    h->target_p = hash_find_server(parv[server]);

  /*
   * These are to pickup matches that would cause the following
   * message to go in the wrong direction while doing quick fast
   * non-matching lookups.
   */
  if (h->target_p)
    if (h->target_p->from == source_p->from && !MyConnect(h->target_p))
      h->target_p = NULL;

  if (h->target_p == NULL && has_wildcards(parv[server]))
  {
    DLINK_FOREACH(node, global_server_list.head)
    {
      struct Client *tmp = node->data;

      assert(IsMe(tmp) || IsServer(tmp));
      if (match(parv[server], tmp->name) == 0)
      {
        if (tmp->from == source_p->from && !MyConnect(tmp))
          continue;

        h->target_p = tmp;
        break;
      }
    }

    if (h->target_p == NULL)
    {
      DLINK_FOREACH(node, global_client_list.head)
      {
        struct Client *tmp = node->data;

        assert(IsClient(tmp));
        if (match(parv[server], tmp->name) == 0)
        {
          if (tmp->from == source_p->from && !MyConnect(tmp))
            continue;

          h->target_p = tmp;
          break;
        }
      }
    }
  }

  if (h->target_p)
  {
    assert(IsMe(h->target_p) || IsServer(h->target_p) || IsClient(h->target_p));
    if (IsMe(h->target_p) || MyClient(h->target_p))
    {
      h->ret = HUNTED_ISME;
      return h;
    }

    parv[server] = h->target_p->id;
    sendto_one(h->target_p, command, source_p->id,
               parv[1], parv[2], parv[3], parv[4],
               parv[5], parv[6], parv[7], parv[8]);
    h->ret = HUNTED_PASS;
    return h;
  }

  sendto_one_numeric(source_p, &me, ERR_NOSUCHSERVER, parv[server]);
  h->ret = HUNTED_NOSUCH;
  return h;
}

/* try_connections()
 *
 * inputs       - void pointer which is not used
 * output       - NONE
 * side effects -
 * scan through configuration and try new connections.
 * Returns the calendar time when the next call to this
 * function should be made latest. (No harm done if this
 * is called earlier or later...)
 */
void
try_connections(void *unused)
{
  dlink_node *node;

  if (GlobalSetOptions.autoconn == false)
    return;

  DLINK_FOREACH(node, connect_items.head)
  {
    struct MaskItem *conf = node->data;

    assert(conf->type == CONF_SERVER);
    assert(conf->class);

    /* Also when already connecting! (update holdtimes) --SRB */
    if (conf->port == 0 || !IsConfAllowAutoConn(conf))
      continue;

    /*
     * Skip this entry if the use of it is still on hold until
     * future. Otherwise handle this entry (and set it on hold
     * until next time). Will reset only hold times, if already
     * made one successfull connection... [this algorithm is
     * a bit fuzzy... -- msa >;) ]
     */
    if (conf->until > CurrentTime)
      continue;

    conf->until = CurrentTime + conf->class->con_freq;

    /*
     * Found a CONNECT config with port specified, scan clients
     * and see if this server is already connected?
     */
    if (hash_find_server(conf->name))
      continue;

    if (conf->class->ref_count < conf->class->max_total)
    {
      /* Move this entry to the end of the list, if not already last */
      if (node->next)
      {
        dlinkDelete(node, &connect_items);
        dlinkAddTail(conf, &conf->node, &connect_items);
      }

      if (find_servconn_in_progress(conf->name))
        return;

      /*
       * We used to only print this if server_connect() actually
       * succeeded, but since comm_tcp_connect() can call the callback
       * immediately if there is an error, we were getting error messages
       * in the wrong order. SO, we just print out the activated line,
       * and let server_connect() / server_connect_callback() print an
       * error afterwards if it fails.
       *   -- adrian
       */
      if (ConfigServerHide.hide_server_ips)
        sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
                             "Connection to %s activated.",
                             conf->name);
      else
        sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
                             "Connection to %s[%s] activated.",
                             conf->name, conf->host);

      server_connect(conf, NULL);
      /* We connect only one at time... */
      return;
    }
  }
}

bool
server_valid_name(const char *name)
{
  unsigned int dots = 0;
  const char *p = name;

  for (; *p; ++p)
  {
    if (!IsServChar(*p))
      return false;

    if (*p == '.')
      ++dots;
  }

  return dots && (p - name) <= HOSTLEN;
}

/* server_make()
 *
 * inputs       - pointer to client struct
 * output       - pointer to struct Server
 * side effects - add's an Server information block to a client
 *                if it was not previously allocated.
 */
struct Server *
server_make(struct Client *client_p)
{
  if (client_p->serv == NULL)
    client_p->serv = xcalloc(sizeof(*client_p->serv));

  return client_p->serv;
}

/* server_connect() - initiate a server connection
 *
 * inputs       - pointer to conf
 *              - pointer to client doing the connect
 * output       -
 * side effects -
 *
 * This code initiates a connection to a server. It first checks to make
 * sure the given server exists. If this is the case, it creates a socket,
 * creates a client, saves the socket information in the client, and
 * initiates a connection to the server through comm_connect_tcp(). The
 * completion of this goes through serv_completed_connection().
 *
 * We return 1 if the connection is attempted, since we don't know whether
 * it suceeded or not, and 0 if it fails in here somewhere.
 */
bool
server_connect(struct MaskItem *conf, struct Client *by)
{
  char buf[HOSTIPLEN + 1] = "";

  /* conversion structs */
  struct sockaddr_in *v4;

  /* Make sure conf is useful */
  assert(conf);
  assert(conf->type == CONF_SERVER);
  assert(hash_find_server(conf->name) == NULL);  /* This should have been checked by the caller */

  getnameinfo((const struct sockaddr *)&conf->addr, conf->addr.ss_len,
              buf, sizeof(buf), NULL, 0, NI_NUMERICHOST);
  ilog(LOG_TYPE_IRCD, "Connect to %s[%s] @%s", conf->name, conf->host, buf);

  /* Still processing a DNS lookup? -> exit */
  if (conf->dns_pending == true)
  {
    sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
                         "Error connecting to %s: DNS lookup for connect{} in progress.",
                         conf->name);
    return false;
  }

  if (conf->dns_failed == true)
  {
    sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
                         "Error connecting to %s: DNS lookup for connect{} failed.",
                         conf->name);
    return false;
  }

  /* Create a socket for the server connection */
  int fd = comm_socket(conf->addr.ss.ss_family, SOCK_STREAM, 0);
  if (fd == -1)
  {
    /* Eek, failure to create the socket */
    report_error(L_ALL, "opening stream socket to %s: %s", conf->name, errno);
    return false;
  }

  /* Create a local client */
  struct Client *client_p = client_make(NULL);

  /* Copy in the server, hostname, fd */
  strlcpy(client_p->name, conf->name, sizeof(client_p->name));
  strlcpy(client_p->host, conf->host, sizeof(client_p->host));

  /* We already converted the ip once, so lets use it - stu */
  strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));

  client_p->connection->fd = fd_open(fd, true, NULL);

  /* Server names are always guaranteed under HOSTLEN chars */
  fd_note(client_p->connection->fd, "Server: %s", client_p->name);

  /*
   * Attach config entries to client here rather than in server_connect_callback().
   * This to avoid null pointer references.
   */
  conf_attach(client_p, conf);

  server_make(client_p);

  if (by && IsClient(by))
    strlcpy(client_p->serv->by, by->name, sizeof(client_p->serv->by));
  else
    strlcpy(client_p->serv->by, "AutoConn.", sizeof(client_p->serv->by));

  SetConnecting(client_p);
  client_p->ip.ss.ss_family = conf->aftype;

  /* Now, initiate the connection */
  /* XXX assume that a non 0 type means a specific bind address
   * for this connect.
   */
  switch (conf->aftype)
  {
    case AF_INET:
      v4 = (struct sockaddr_in*)&conf->bind;

      if (v4->sin_addr.s_addr)
      {
        struct irc_ssaddr ipn;

        memset(&ipn, 0, sizeof(ipn));
        ipn.ss.ss_family = AF_INET;
        ipn.ss_port = 0;
        memcpy(&ipn, &conf->bind, sizeof(ipn));

        comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
                         (struct sockaddr *)&ipn, ipn.ss_len,
                         server_connect_callback, client_p, conf->aftype,
                         CONNECTTIMEOUT);
      }
      else
        comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
                         NULL, 0, server_connect_callback, client_p, conf->aftype,
                         CONNECTTIMEOUT);
      break;
    case AF_INET6:
      {
        struct irc_ssaddr ipn;
        struct sockaddr_in6 *v6;
        struct sockaddr_in6 *v6conf;

        memset(&ipn, 0, sizeof(ipn));
        v6conf = (struct sockaddr_in6 *)&conf->bind;
        v6 = (struct sockaddr_in6 *)&ipn;

        if (memcmp(&v6conf->sin6_addr, &v6->sin6_addr, sizeof(struct in6_addr)))
        {
          memcpy(&ipn, &conf->bind, sizeof(ipn));
          ipn.ss.ss_family = AF_INET6;
          ipn.ss_port = 0;

          comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
                           (struct sockaddr *)&ipn, ipn.ss_len,
                           server_connect_callback, client_p,
                           conf->aftype, CONNECTTIMEOUT);
        }
        else
          comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
                           NULL, 0, server_connect_callback, client_p,
                           conf->aftype, CONNECTTIMEOUT);
      }
  }

  /*
   * At this point we have a connection in progress and a connect {} block
   * attached to the client, the socket info should be saved in the client
   * and it should either be resolved or have a valid address.
   *
   * The socket has been connected or connect is in progress.
   */
  return true;
}

static void
server_finish_tls_handshake(struct Client *client_p)
{
  const struct MaskItem *conf = find_conf_name(&client_p->connection->confs,
                                                client_p->name, CONF_SERVER);
  if (!conf)
  {
    sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
                         "Lost connect{} block for %s", client_get_name(client_p, SHOW_IP));
    sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
                         "Lost connect{} block for %s", client_get_name(client_p, MASK_IP));

    exit_client(client_p, "Lost connect{} block");
    return;
  }

  /* Next, send the initial handshake */
  SetHandshake(client_p);

  sendto_one(client_p, "PASS %s TS %u %s", conf->spasswd, TS_CURRENT, me.id);

  sendto_one(client_p, "CAPAB :%s", capab_get(NULL));

  sendto_one(client_p, "SERVER %s 1 :%s%s",
             me.name, ConfigServerHide.hidden ? "(H) " : "",
             me.info);

  /* If we get here, we're ok, so lets start reading some data */
  read_packet(client_p->connection->fd, client_p); 
}

static void
server_tls_handshake(fde_t *F, void *data)
{
  struct Client *client_p = data;
  const char *sslerr = NULL;

  assert(client_p);
  assert(client_p->connection);
  assert(client_p->connection->fd);
  assert(client_p->connection->fd == F);

  tls_handshake_status_t ret = tls_handshake(&F->ssl, TLS_ROLE_CLIENT, &sslerr);
  if (ret != TLS_HANDSHAKE_DONE)
  {
    if ((CurrentTime - client_p->connection->firsttime) > CONNECTTIMEOUT)
    {
      exit_client(client_p, "Timeout during TLS handshake");
      return;
    }

    switch (ret)
    {
      case TLS_HANDSHAKE_WANT_WRITE:
        comm_setselect(F, COMM_SELECT_WRITE,
                       server_tls_handshake, client_p, CONNECTTIMEOUT);
        return;
      case TLS_HANDSHAKE_WANT_READ:
        comm_setselect(F, COMM_SELECT_READ,
                       server_tls_handshake, client_p, CONNECTTIMEOUT);
        return;
      default:
      {
        sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
                             "Error connecting to %s: %s", client_p->name,
                             sslerr ? sslerr : "unknown TLS error");
        exit_client(client_p, "Error during TLS handshake");
        return;
      }
    }
  }

  comm_settimeout(F, 0, NULL, NULL);

  if (tls_verify_cert(&F->ssl, ConfigServerInfo.message_digest_algorithm, &client_p->certfp) == false)
    ilog(LOG_TYPE_IRCD, "Server %s!%s@%s gave bad TLS client certificate",
         client_p->name, client_p->username, client_p->host);

  server_finish_tls_handshake(client_p);
}

static void
server_tls_connect_init(struct Client *client_p, const struct MaskItem *conf, fde_t *F)
{
  assert(client_p);
  assert(client_p->connection);
  assert(client_p->connection->fd);
  assert(client_p->connection->fd == F);

  if (tls_new(&F->ssl, F->fd, TLS_ROLE_CLIENT) == false)
  {
    SetDead(client_p);
    exit_client(client_p, "TLS context initialization failed");
    return;
  }

  if (!EmptyString(conf->cipher_list))
    tls_set_ciphers(&F->ssl, conf->cipher_list);

  server_tls_handshake(F, client_p);
}

/* server_connect_callback() - complete a server connection.
 *
 * This routine is called after the server connection attempt has
 * completed. If unsucessful, an error is sent to ops and the client
 * is closed. If sucessful, it goes through the initialisation/check
 * procedures, the capabilities are sent, and the socket is then
 * marked for reading.
 */
static void
server_connect_callback(fde_t *F, int status, void *data)
{
  struct Client *const client_p = data;

  /* First, make sure it's a real client! */
  assert(client_p);
  assert(client_p->connection);
  assert(client_p->connection->fd);
  assert(client_p->connection->fd == F);

  /* Next, for backward purposes, record the ip of the server */
  memcpy(&client_p->ip, &F->connect.hostaddr, sizeof(client_p->ip));

  /* Check the status */
  if (status != COMM_OK)
  {
    /* We have an error, so report it and quit */
    sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
                         "Error connecting to %s: %s",
                         client_get_name(client_p, SHOW_IP), comm_errstr(status));
    sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
                         "Error connecting to %s: %s",
                         client_get_name(client_p, MASK_IP), comm_errstr(status));

    /*
     * If a fd goes bad, call dead_link() the socket is no
     * longer valid for reading or writing.
     */
    dead_link_on_write(client_p, 0);
    return;
  }

  /* COMM_OK, so continue the connection procedure */
  /* Get the connect {} block */
  const struct MaskItem *conf = find_conf_name(&client_p->connection->confs,
                                                client_p->name, CONF_SERVER);
  if (!conf)
  {
    sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
                         "Lost connect{} block for %s", client_get_name(client_p, SHOW_IP));
    sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
                         "Lost connect{} block for %s", client_get_name(client_p, MASK_IP));

    exit_client(client_p, "Lost connect{} block");
    return;
  }

  if (IsConfSSL(conf))
  {
    server_tls_connect_init(client_p, conf, F);
    return;
  }

  /* Next, send the initial handshake */
  SetHandshake(client_p);

  sendto_one(client_p, "PASS %s TS %u %s", conf->spasswd, TS_CURRENT, me.id);

  sendto_one(client_p, "CAPAB :%s", capab_get(NULL));

  sendto_one(client_p, "SERVER %s 1 :%s%s", me.name,
             ConfigServerHide.hidden ? "(H) " : "", me.info);

  /* If we get here, we're ok, so lets start reading some data */
  read_packet(client_p->connection->fd, client_p);
}

struct Client *
find_servconn_in_progress(const char *name)
{
  dlink_node *ptr;

  DLINK_FOREACH(ptr, unknown_list.head)
  {
    struct Client *cptr = ptr->data;

    if (cptr->name[0])
      if (!irccmp(name, cptr->name))
        return cptr;
  }

  return NULL;
}
Revision:	8864
Committed:	Sat Feb 16 09:54:03 2019 UTC (6 years, 6 months ago) by michael
Content type:	text/x-csrc
File size:	20939 byte(s)
Log Message:	- The 'serverinfo::vhost' and 'serverinfo:vhost6' configuration directives have been deprecated. If you need to bind() a specific address you can specify one in the connect {} block - The 'connect::vhost' configuration directive has been renamed to 'connect::bind'
#	Content
1	/*
2	* ircd-hybrid: an advanced, lightweight Internet Relay Chat Daemon (ircd)
3	*
4	* Copyright (c) 1997-2019 ircd-hybrid development team
5	*
6	* This program is free software; you can redistribute it and/or modify
7	* it under the terms of the GNU General Public License as published by
8	* the Free Software Foundation; either version 2 of the License, or
9	* (at your option) any later version.
10	*
11	* This program is distributed in the hope that it will be useful,
12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14	* GNU General Public License for more details.
15	*
16	* You should have received a copy of the GNU General Public License
17	* along with this program; if not, write to the Free Software
18	* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
19	* USA
20	*/
21
22	/*! \file server.c
23	* \brief Server related functions.
24	* \version $Id$
25	*/
26
27	#include "stdinc.h"
28	#include "list.h"
29	#include "client.h"
30	#include "event.h"
31	#include "hash.h"
32	#include "irc_string.h"
33	#include "ircd.h"
34	#include "ircd_defs.h"
35	#include "s_bsd.h"
36	#include "packet.h"
37	#include "conf.h"
38	#include "server.h"
39	#include "server_capab.h"
40	#include "log.h"
41	#include "send.h"
42	#include "memory.h"
43	#include "parse.h"
44
45
46	dlink_list flatten_links;
47	static void server_connect_callback(fde_t , int, void );
48
49
50	/*
51	* write_links_file
52	*
53	* inputs - void pointer which is not used
54	* output - NONE
55	* side effects - called from an event, write out list of linked servers
56	* but in no particular order.
57	*/
58	void
59	write_links_file(void *unused)
60	{
61	FILE *file = NULL;
62	dlink_node node, node_next;
63	char buff[IRCD_BUFSIZE] = "";
64
65	if (EmptyString(ConfigServerHide.flatten_links_file))
66	return;
67
68	if ((file = fopen(ConfigServerHide.flatten_links_file, "w")) == NULL)
69	{
70	ilog(LOG_TYPE_IRCD, "Couldn't open \"%s\": %s", ConfigServerHide.flatten_links_file,
71	strerror(errno));
72	return;
73	}
74
75	DLINK_FOREACH_SAFE(node, node_next, flatten_links.head)
76	{
77	dlinkDelete(node, &flatten_links);
78	xfree(node->data);
79	free_dlink_node(node);
80	}
81
82	DLINK_FOREACH(node, global_server_list.head)
83	{
84	const struct Client *target_p = node->data;
85
86	/*
87	* Skip hidden servers, aswell as ourselves, since we already send
88	* ourselves in /links
89	*/
90	if (IsHidden(target_p) \|\| IsMe(target_p))
91	continue;
92
93	if (HasFlag(target_p, FLAGS_SERVICE) && ConfigServerHide.hide_services)
94	continue;
95
96	/*
97	* Attempt to format the file in such a way it follows the usual links output
98	* ie "servername uplink :hops info"
99	* Mostly for aesthetic reasons - makes it look pretty in mIRC ;)
100	* - madmax
101	*/
102	snprintf(buff, sizeof(buff), "%s %s :1 %s", target_p->name,
103	me.name, target_p->info);
104	dlinkAddTail(xstrdup(buff), make_dlink_node(), &flatten_links);
105	snprintf(buff, sizeof(buff), "%s %s :1 %s\n", target_p->name,
106	me.name, target_p->info);
107
108	fputs(buff, file);
109	}
110
111	fclose(file);
112	}
113
114	void
115	read_links_file(void)
116	{
117	FILE *file = NULL;
118	char *p = NULL;
119	char buff[IRCD_BUFSIZE] = "";
120
121	if (EmptyString(ConfigServerHide.flatten_links_file))
122	return;
123
124	if ((file = fopen(ConfigServerHide.flatten_links_file, "r")) == NULL)
125	{
126	ilog(LOG_TYPE_IRCD, "Couldn't open \"%s\": %s", ConfigServerHide.flatten_links_file,
127	strerror(errno));
128	return;
129	}
130
131	while (fgets(buff, sizeof(buff), file))
132	{
133	if ((p = strchr(buff, '\n')))
134	*p = '\0';
135
136	dlinkAddTail(xstrdup(buff), make_dlink_node(), &flatten_links);
137	}
138
139	fclose(file);
140	}
141
142	/* server_hunt()
143	* Do the basic thing in delivering the message (command)
144	* across the relays to the specific server (server) for
145	* actions.
146	*
147	* Note: The command is a format string and MUST be
148	* of prefixed style (e.g. ":%s COMMAND %s ...").
149	* Command can have only max 8 parameters.
150	*
151	* server parv[server] is the parameter identifying the
152	* target server.
153	*
154	* WARNING
155	* parv[server] is replaced with the pointer to the
156	* real servername from the matched client (I'm lazy
157	* now --msa).
158	*
159	* returns: (see #defines)
160	*/
161	const struct server_hunt *
162	server_hunt(struct Client source_p, const char command,
163	const int server, const int parc, char *parv[])
164	{
165	static struct server_hunt hunt;
166	struct server_hunt *const h = &hunt;
167	dlink_node *node;
168
169	/* Assume it's me, if no server */
170	if (parc <= server \|\| EmptyString(parv[server]))
171	{
172	h->target_p = &me;
173	h->ret = HUNTED_ISME;
174	return h;
175	}
176
177	if ((h->target_p = find_person(source_p, parv[server])) == NULL)
178	h->target_p = hash_find_server(parv[server]);
179
180	/*
181	* These are to pickup matches that would cause the following
182	* message to go in the wrong direction while doing quick fast
183	* non-matching lookups.
184	*/
185	if (h->target_p)
186	if (h->target_p->from == source_p->from && !MyConnect(h->target_p))
187	h->target_p = NULL;
188
189	if (h->target_p == NULL && has_wildcards(parv[server]))
190	{
191	DLINK_FOREACH(node, global_server_list.head)
192	{
193	struct Client *tmp = node->data;
194
195	assert(IsMe(tmp) \|\| IsServer(tmp));
196	if (match(parv[server], tmp->name) == 0)
197	{
198	if (tmp->from == source_p->from && !MyConnect(tmp))
199	continue;
200
201	h->target_p = tmp;
202	break;
203	}
204	}
205
206	if (h->target_p == NULL)
207	{
208	DLINK_FOREACH(node, global_client_list.head)
209	{
210	struct Client *tmp = node->data;
211
212	assert(IsClient(tmp));
213	if (match(parv[server], tmp->name) == 0)
214	{
215	if (tmp->from == source_p->from && !MyConnect(tmp))
216	continue;
217
218	h->target_p = tmp;
219	break;
220	}
221	}
222	}
223	}
224
225	if (h->target_p)
226	{
227	assert(IsMe(h->target_p) \|\| IsServer(h->target_p) \|\| IsClient(h->target_p));
228	if (IsMe(h->target_p) \|\| MyClient(h->target_p))
229	{
230	h->ret = HUNTED_ISME;
231	return h;
232	}
233
234	parv[server] = h->target_p->id;
235	sendto_one(h->target_p, command, source_p->id,
236	parv[1], parv[2], parv[3], parv[4],
237	parv[5], parv[6], parv[7], parv[8]);
238	h->ret = HUNTED_PASS;
239	return h;
240	}
241
242	sendto_one_numeric(source_p, &me, ERR_NOSUCHSERVER, parv[server]);
243	h->ret = HUNTED_NOSUCH;
244	return h;
245	}
246
247	/* try_connections()
248	*
249	* inputs - void pointer which is not used
250	* output - NONE
251	* side effects -
252	* scan through configuration and try new connections.
253	* Returns the calendar time when the next call to this
254	* function should be made latest. (No harm done if this
255	* is called earlier or later...)
256	*/
257	void
258	try_connections(void *unused)
259	{
260	dlink_node *node;
261
262	if (GlobalSetOptions.autoconn == false)
263	return;
264
265	DLINK_FOREACH(node, connect_items.head)
266	{
267	struct MaskItem *conf = node->data;
268
269	assert(conf->type == CONF_SERVER);
270	assert(conf->class);
271
272	/* Also when already connecting! (update holdtimes) --SRB */
273	if (conf->port == 0 \|\| !IsConfAllowAutoConn(conf))
274	continue;
275
276	/*
277	* Skip this entry if the use of it is still on hold until
278	* future. Otherwise handle this entry (and set it on hold
279	* until next time). Will reset only hold times, if already
280	* made one successfull connection... [this algorithm is
281	* a bit fuzzy... -- msa >;) ]
282	*/
283	if (conf->until > CurrentTime)
284	continue;
285
286	conf->until = CurrentTime + conf->class->con_freq;
287
288	/*
289	* Found a CONNECT config with port specified, scan clients
290	* and see if this server is already connected?
291	*/
292	if (hash_find_server(conf->name))
293	continue;
294
295	if (conf->class->ref_count < conf->class->max_total)
296	{
297	/* Move this entry to the end of the list, if not already last */
298	if (node->next)
299	{
300	dlinkDelete(node, &connect_items);
301	dlinkAddTail(conf, &conf->node, &connect_items);
302	}
303
304	if (find_servconn_in_progress(conf->name))
305	return;
306
307	/*
308	* We used to only print this if server_connect() actually
309	* succeeded, but since comm_tcp_connect() can call the callback
310	* immediately if there is an error, we were getting error messages
311	* in the wrong order. SO, we just print out the activated line,
312	* and let server_connect() / server_connect_callback() print an
313	* error afterwards if it fails.
314	* -- adrian
315	*/
316	if (ConfigServerHide.hide_server_ips)
317	sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
318	"Connection to %s activated.",
319	conf->name);
320	else
321	sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
322	"Connection to %s[%s] activated.",
323	conf->name, conf->host);
324
325	server_connect(conf, NULL);
326	/* We connect only one at time... */
327	return;
328	}
329	}
330	}
331
332	bool
333	server_valid_name(const char *name)
334	{
335	unsigned int dots = 0;
336	const char *p = name;
337
338	for (; *p; ++p)
339	{
340	if (!IsServChar(*p))
341	return false;
342
343	if (*p == '.')
344	++dots;
345	}
346
347	return dots && (p - name) <= HOSTLEN;
348	}
349
350	/* server_make()
351	*
352	* inputs - pointer to client struct
353	* output - pointer to struct Server
354	* side effects - add's an Server information block to a client
355	* if it was not previously allocated.
356	*/
357	struct Server *
358	server_make(struct Client *client_p)
359	{
360	if (client_p->serv == NULL)
361	client_p->serv = xcalloc(sizeof(*client_p->serv));
362
363	return client_p->serv;
364	}
365
366	/* server_connect() - initiate a server connection
367	*
368	* inputs - pointer to conf
369	* - pointer to client doing the connect
370	* output -
371	* side effects -
372	*
373	* This code initiates a connection to a server. It first checks to make
374	* sure the given server exists. If this is the case, it creates a socket,
375	* creates a client, saves the socket information in the client, and
376	* initiates a connection to the server through comm_connect_tcp(). The
377	* completion of this goes through serv_completed_connection().
378	*
379	* We return 1 if the connection is attempted, since we don't know whether
380	* it suceeded or not, and 0 if it fails in here somewhere.
381	*/
382	bool
383	server_connect(struct MaskItem conf, struct Client by)
384	{
385	char buf[HOSTIPLEN + 1] = "";
386
387	/* conversion structs */
388	struct sockaddr_in *v4;
389
390	/* Make sure conf is useful */
391	assert(conf);
392	assert(conf->type == CONF_SERVER);
393	assert(hash_find_server(conf->name) == NULL); /* This should have been checked by the caller */
394
395	getnameinfo((const struct sockaddr *)&conf->addr, conf->addr.ss_len,
396	buf, sizeof(buf), NULL, 0, NI_NUMERICHOST);
397	ilog(LOG_TYPE_IRCD, "Connect to %s[%s] @%s", conf->name, conf->host, buf);
398
399	/* Still processing a DNS lookup? -> exit */
400	if (conf->dns_pending == true)
401	{
402	sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
403	"Error connecting to %s: DNS lookup for connect{} in progress.",
404	conf->name);
405	return false;
406	}
407
408	if (conf->dns_failed == true)
409	{
410	sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
411	"Error connecting to %s: DNS lookup for connect{} failed.",
412	conf->name);
413	return false;
414	}
415
416	/* Create a socket for the server connection */
417	int fd = comm_socket(conf->addr.ss.ss_family, SOCK_STREAM, 0);
418	if (fd == -1)
419	{
420	/* Eek, failure to create the socket */
421	report_error(L_ALL, "opening stream socket to %s: %s", conf->name, errno);
422	return false;
423	}
424
425	/* Create a local client */
426	struct Client *client_p = client_make(NULL);
427
428	/* Copy in the server, hostname, fd */
429	strlcpy(client_p->name, conf->name, sizeof(client_p->name));
430	strlcpy(client_p->host, conf->host, sizeof(client_p->host));
431
432	/* We already converted the ip once, so lets use it - stu */
433	strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
434
435	client_p->connection->fd = fd_open(fd, true, NULL);
436
437	/* Server names are always guaranteed under HOSTLEN chars */
438	fd_note(client_p->connection->fd, "Server: %s", client_p->name);
439
440	/*
441	* Attach config entries to client here rather than in server_connect_callback().
442	* This to avoid null pointer references.
443	*/
444	conf_attach(client_p, conf);
445
446	server_make(client_p);
447
448	if (by && IsClient(by))
449	strlcpy(client_p->serv->by, by->name, sizeof(client_p->serv->by));
450	else
451	strlcpy(client_p->serv->by, "AutoConn.", sizeof(client_p->serv->by));
452
453	SetConnecting(client_p);
454	client_p->ip.ss.ss_family = conf->aftype;
455
456	/* Now, initiate the connection */
457	/* XXX assume that a non 0 type means a specific bind address
458	* for this connect.
459	*/
460	switch (conf->aftype)
461	{
462	case AF_INET:
463	v4 = (struct sockaddr_in*)&conf->bind;
464
465	if (v4->sin_addr.s_addr)
466	{
467	struct irc_ssaddr ipn;
468
469	memset(&ipn, 0, sizeof(ipn));
470	ipn.ss.ss_family = AF_INET;
471	ipn.ss_port = 0;
472	memcpy(&ipn, &conf->bind, sizeof(ipn));
473
474	comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
475	(struct sockaddr *)&ipn, ipn.ss_len,
476	server_connect_callback, client_p, conf->aftype,
477	CONNECTTIMEOUT);
478	}
479	else
480	comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
481	NULL, 0, server_connect_callback, client_p, conf->aftype,
482	CONNECTTIMEOUT);
483	break;
484	case AF_INET6:
485	{
486	struct irc_ssaddr ipn;
487	struct sockaddr_in6 *v6;
488	struct sockaddr_in6 *v6conf;
489
490	memset(&ipn, 0, sizeof(ipn));
491	v6conf = (struct sockaddr_in6 *)&conf->bind;
492	v6 = (struct sockaddr_in6 *)&ipn;
493
494	if (memcmp(&v6conf->sin6_addr, &v6->sin6_addr, sizeof(struct in6_addr)))
495	{
496	memcpy(&ipn, &conf->bind, sizeof(ipn));
497	ipn.ss.ss_family = AF_INET6;
498	ipn.ss_port = 0;
499
500	comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
501	(struct sockaddr *)&ipn, ipn.ss_len,
502	server_connect_callback, client_p,
503	conf->aftype, CONNECTTIMEOUT);
504	}
505	else
506	comm_connect_tcp(client_p->connection->fd, conf->host, conf->port,
507	NULL, 0, server_connect_callback, client_p,
508	conf->aftype, CONNECTTIMEOUT);
509	}
510	}
511
512	/*
513	* At this point we have a connection in progress and a connect {} block
514	* attached to the client, the socket info should be saved in the client
515	* and it should either be resolved or have a valid address.
516	*
517	* The socket has been connected or connect is in progress.
518	*/
519	return true;
520	}
521
522	static void
523	server_finish_tls_handshake(struct Client *client_p)
524	{
525	const struct MaskItem *conf = find_conf_name(&client_p->connection->confs,
526	client_p->name, CONF_SERVER);
527	if (!conf)
528	{
529	sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
530	"Lost connect{} block for %s", client_get_name(client_p, SHOW_IP));
531	sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
532	"Lost connect{} block for %s", client_get_name(client_p, MASK_IP));
533
534	exit_client(client_p, "Lost connect{} block");
535	return;
536	}
537
538	/* Next, send the initial handshake */
539	SetHandshake(client_p);
540
541	sendto_one(client_p, "PASS %s TS %u %s", conf->spasswd, TS_CURRENT, me.id);
542
543	sendto_one(client_p, "CAPAB :%s", capab_get(NULL));
544
545	sendto_one(client_p, "SERVER %s 1 :%s%s",
546	me.name, ConfigServerHide.hidden ? "(H) " : "",
547	me.info);
548
549	/* If we get here, we're ok, so lets start reading some data */
550	read_packet(client_p->connection->fd, client_p);
551	}
552
553	static void
554	server_tls_handshake(fde_t F, void data)
555	{
556	struct Client *client_p = data;
557	const char *sslerr = NULL;
558
559	assert(client_p);
560	assert(client_p->connection);
561	assert(client_p->connection->fd);
562	assert(client_p->connection->fd == F);
563
564	tls_handshake_status_t ret = tls_handshake(&F->ssl, TLS_ROLE_CLIENT, &sslerr);
565	if (ret != TLS_HANDSHAKE_DONE)
566	{
567	if ((CurrentTime - client_p->connection->firsttime) > CONNECTTIMEOUT)
568	{
569	exit_client(client_p, "Timeout during TLS handshake");
570	return;
571	}
572
573	switch (ret)
574	{
575	case TLS_HANDSHAKE_WANT_WRITE:
576	comm_setselect(F, COMM_SELECT_WRITE,
577	server_tls_handshake, client_p, CONNECTTIMEOUT);
578	return;
579	case TLS_HANDSHAKE_WANT_READ:
580	comm_setselect(F, COMM_SELECT_READ,
581	server_tls_handshake, client_p, CONNECTTIMEOUT);
582	return;
583	default:
584	{
585	sendto_realops_flags(UMODE_SERVNOTICE, L_ALL, SEND_NOTICE,
586	"Error connecting to %s: %s", client_p->name,
587	sslerr ? sslerr : "unknown TLS error");
588	exit_client(client_p, "Error during TLS handshake");
589	return;
590	}
591	}
592	}
593
594	comm_settimeout(F, 0, NULL, NULL);
595
596	if (tls_verify_cert(&F->ssl, ConfigServerInfo.message_digest_algorithm, &client_p->certfp) == false)
597	ilog(LOG_TYPE_IRCD, "Server %s!%s@%s gave bad TLS client certificate",
598	client_p->name, client_p->username, client_p->host);
599
600	server_finish_tls_handshake(client_p);
601	}
602
603	static void
604	server_tls_connect_init(struct Client client_p, const struct MaskItem conf, fde_t *F)
605	{
606	assert(client_p);
607	assert(client_p->connection);
608	assert(client_p->connection->fd);
609	assert(client_p->connection->fd == F);
610
611	if (tls_new(&F->ssl, F->fd, TLS_ROLE_CLIENT) == false)
612	{
613	SetDead(client_p);
614	exit_client(client_p, "TLS context initialization failed");
615	return;
616	}
617
618	if (!EmptyString(conf->cipher_list))
619	tls_set_ciphers(&F->ssl, conf->cipher_list);
620
621	server_tls_handshake(F, client_p);
622	}
623
624	/* server_connect_callback() - complete a server connection.
625	*
626	* This routine is called after the server connection attempt has
627	* completed. If unsucessful, an error is sent to ops and the client
628	* is closed. If sucessful, it goes through the initialisation/check
629	* procedures, the capabilities are sent, and the socket is then
630	* marked for reading.
631	*/
632	static void
633	server_connect_callback(fde_t F, int status, void data)
634	{
635	struct Client *const client_p = data;
636
637	/* First, make sure it's a real client! */
638	assert(client_p);
639	assert(client_p->connection);
640	assert(client_p->connection->fd);
641	assert(client_p->connection->fd == F);
642
643	/* Next, for backward purposes, record the ip of the server */
644	memcpy(&client_p->ip, &F->connect.hostaddr, sizeof(client_p->ip));
645
646	/* Check the status */
647	if (status != COMM_OK)
648	{
649	/* We have an error, so report it and quit */
650	sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
651	"Error connecting to %s: %s",
652	client_get_name(client_p, SHOW_IP), comm_errstr(status));
653	sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
654	"Error connecting to %s: %s",
655	client_get_name(client_p, MASK_IP), comm_errstr(status));
656
657	/*
658	* If a fd goes bad, call dead_link() the socket is no
659	* longer valid for reading or writing.
660	*/
661	dead_link_on_write(client_p, 0);
662	return;
663	}
664
665	/* COMM_OK, so continue the connection procedure */
666	/* Get the connect {} block */
667	const struct MaskItem *conf = find_conf_name(&client_p->connection->confs,
668	client_p->name, CONF_SERVER);
669	if (!conf)
670	{
671	sendto_realops_flags(UMODE_SERVNOTICE, L_ADMIN, SEND_NOTICE,
672	"Lost connect{} block for %s", client_get_name(client_p, SHOW_IP));
673	sendto_realops_flags(UMODE_SERVNOTICE, L_OPER, SEND_NOTICE,
674	"Lost connect{} block for %s", client_get_name(client_p, MASK_IP));
675
676	exit_client(client_p, "Lost connect{} block");
677	return;
678	}
679
680	if (IsConfSSL(conf))
681	{
682	server_tls_connect_init(client_p, conf, F);
683	return;
684	}
685
686	/* Next, send the initial handshake */
687	SetHandshake(client_p);
688
689	sendto_one(client_p, "PASS %s TS %u %s", conf->spasswd, TS_CURRENT, me.id);
690
691	sendto_one(client_p, "CAPAB :%s", capab_get(NULL));
692
693	sendto_one(client_p, "SERVER %s 1 :%s%s", me.name,
694	ConfigServerHide.hidden ? "(H) " : "", me.info);
695
696	/* If we get here, we're ok, so lets start reading some data */
697	read_packet(client_p->connection->fd, client_p);
698	}
699
700	struct Client *
701	find_servconn_in_progress(const char *name)
702	{
703	dlink_node *ptr;
704
705	DLINK_FOREACH(ptr, unknown_list.head)
706	{
707	struct Client *cptr = ptr->data;
708
709	if (cptr->name[0])
710	if (!irccmp(name, cptr->name))
711	return cptr;
712	}
713
714	return NULL;
715	}