]>
jfr.im git - irc/freenode/ircd-seven.git/log
Stephen Bennett [Wed, 15 Nov 2017 22:55:50 +0000 (22:55 +0000)]
1.1.5
Stephen Bennett [Wed, 15 Nov 2017 22:43:06 +0000 (22:43 +0000)]
Make $j match even if user is +e in the target channel, to prevent use as an invisible banlist
Ed Kellett [Tue, 27 Dec 2016 00:38:51 +0000 (00:38 +0000)]
Generate fingerprints for untrusted certificates
yes, I know. they're fingerprints, it doesn't matter.
Aaron Jones [Tue, 24 Mar 2015 05:25:38 +0000 (05:25 +0000)]
Generate fingerprints for chained certificates with an unknown root
Ed Kellett [Wed, 28 Dec 2016 15:42:02 +0000 (15:42 +0000)]
chantrace: really don't disclose oper status
Ed Kellett [Mon, 2 Jan 2017 18:07:09 +0000 (18:07 +0000)]
remove m_encap from makefile
mniip [Wed, 28 Dec 2016 15:10:00 +0000 (18:10 +0300)]
Merge m_encap into the ircd core so that it does not cause issues with modrestart
William Pitcock [Mon, 12 Oct 2015 00:32:31 +0000 (19:32 -0500)]
monitor: additional cleanup pointed out by mr_flea
William Pitcock [Sun, 11 Oct 2015 23:48:53 +0000 (18:48 -0500)]
monitor: fix the resource leak properly, unlike the moronic elemental-ircd developers
Stephen Bennett [Wed, 4 Oct 2017 13:41:04 +0000 (13:41 +0000)]
remove EGD support and fix build with more recent openssl
Gareth Pulham [Sun, 16 Oct 2016 23:55:14 +0000 (00:55 +0100)]
Fix challenge oper for low-rank staff
Bring testing for pre-existing oper stats in line with the m_oper module
Stephen Bennett [Tue, 13 Sep 2016 18:17:50 +0000 (18:17 +0000)]
1.1.4
Ed Kellett [Mon, 19 Sep 2016 22:38:55 +0000 (23:38 +0100)]
don't die if an admin whoises a user mid-challenge
William Pitcock [Mon, 12 Oct 2015 00:11:01 +0000 (19:11 -0500)]
monitor: additional cleanups, and add a missing free_monitor() in m_monitor
(cherry picked from commit
7485e86073a77f03191e417d5975a5670793a3eb )
William Pitcock [Wed, 25 Jul 2012 15:33:18 +0000 (10:33 -0500)]
sigio: use siginfo_t instead of struct siginfo, per glibc commit r4efeffc1d5
(cherry picked from commit
a85566b1519993f1bea1b4c7f576c7b530cd62cc )
Ed Kellett [Sun, 4 Sep 2016 16:01:26 +0000 (16:01 +0000)]
cherry-pick security fix from chary
d06dab5
SASL: Disallow beginning : and space anywhere in AUTHENTICATE parameter
This is a FIX FOR A SECURITY VULNERABILITY. All Charybdis users must
apply this fix if you support SASL on your servers, or unload m_sasl.so
in the meantime.
Christel Dahlskjaer [Fri, 2 Sep 2016 20:21:12 +0000 (21:21 +0100)]
Merge pull request #15 from mniip/sasl
m_sasl: relay certfp (SASL EXTERNAL) and host information
mniip [Thu, 21 Jul 2016 15:06:07 +0000 (18:06 +0300)]
m_sasl: relay certfp (SASL EXTERNAL) and host information
Stephen Bennett [Tue, 1 Jan 2013 19:15:45 +0000 (19:15 +0000)]
chmode: Allow mode queries on mlocked modes.
Check mlock at the same point where chanops are checked (except for
querying a +e/+I list) and abstract this check into a function.
In particular, /mode #channel f is now again allowed if +f is mlocked.
Taken from
f3b3ad0b07251e703e526f494c18f9e4286e1bd3 by jilles.
William Pitcock [Mon, 31 Dec 2012 19:13:05 +0000 (13:13 -0600)]
m_capab: fix a possible remote crash triggered by the CAPAB parsing code.
Stephen Bennett [Sat, 12 Nov 2011 15:02:46 +0000 (15:02 +0000)]
1.1.3
Stephen Bennett [Sat, 12 Nov 2011 14:41:01 +0000 (14:41 +0000)]
Apply extended-join client cap to QJM joins
Stephen Bennett [Sat, 12 Nov 2011 15:00:30 +0000 (15:00 +0000)]
Don't treat +r specially when displaying supported channel modes.
This used to be only advertised if a service was linked, which made
sense in ratbox when +r was only settable if services were available.
Now, however, +r is always available and so should always be advertised.
Conflicts:
src/chmode.c
Stephen Bennett [Wed, 30 Mar 2011 10:30:47 +0000 (11:30 +0100)]
Disallow mIRC italics in channel names when disable_fake_channels
Stephen Bennett [Fri, 11 Mar 2011 13:12:40 +0000 (13:12 +0000)]
Don't allow +Z to be set by default_umodes
Stephen Bennett [Wed, 19 Oct 2011 19:45:57 +0000 (20:45 +0100)]
1.1.2
Stephen Bennett [Wed, 19 Oct 2011 20:41:59 +0000 (21:41 +0100)]
Show kline duration to opers in stats and testline output, now that it's not in the user reason
Stephen Bennett [Wed, 19 Oct 2011 19:34:03 +0000 (20:34 +0100)]
remove spaces from version string, to make it machine parseable again
Stephen Bennett [Wed, 19 Oct 2011 19:25:01 +0000 (20:25 +0100)]
chantrace: don't disclose oper status where it shouldn't be visible
Stephen Bennett [Wed, 19 Oct 2011 19:23:34 +0000 (20:23 +0100)]
Don't disclose kline durations to users
Stephen Bennett [Sat, 10 Sep 2011 10:08:03 +0000 (11:08 +0100)]
1.1.1
Stephen Bennett [Sat, 10 Sep 2011 10:07:35 +0000 (11:07 +0100)]
reinstate +M hiding that got lost during a charybdis merge
Stephen Bennett [Thu, 8 Sep 2011 12:57:03 +0000 (13:57 +0100)]
1.1.0
Stephen Bennett [Sun, 13 Mar 2011 17:34:14 +0000 (17:34 +0000)]
1.1.0_rc4
Stephen Bennett [Sun, 13 Mar 2011 17:15:49 +0000 (17:15 +0000)]
Update NEWS
Stephen Bennett [Sun, 13 Mar 2011 17:00:18 +0000 (17:00 +0000)]
Make flood control settings configurable by those who know exactly what they're doing.
Stephen Bennett [Sun, 13 Mar 2011 15:17:13 +0000 (15:17 +0000)]
update .gitignore
Stephen Bennett [Fri, 11 Mar 2011 23:12:01 +0000 (23:12 +0000)]
fix list
Stephen Bennett [Thu, 3 Feb 2011 20:37:42 +0000 (20:37 +0000)]
1.1.0 rc3
Stephen Bennett [Thu, 3 Feb 2011 20:33:40 +0000 (20:33 +0000)]
Merge charybdis trunk
Elizabeth Jennifer Myers [Tue, 25 Jan 2011 02:03:00 +0000 (21:03 -0500)]
Add endian test to autoconf and convert crypt to use it.
Jilles Tjoelker [Mon, 24 Jan 2011 23:39:07 +0000 (00:39 +0100)]
Fix memory leak of operator certfp fields.
Elizabeth Jennifer Myers [Sun, 23 Jan 2011 21:56:36 +0000 (16:56 -0500)]
newconf: fix a warning
Elizabeth Jennifer Myers [Sun, 23 Jan 2011 21:12:32 +0000 (16:12 -0500)]
newconf: fix certificate fingerprint auth.
yy_oper->certfp was not copied into yy_tmpoper->certfp, thus the information was lost and certfp auth was never really working, since the string was always empty.
Elizabeth Jennifer Myers [Mon, 17 Jan 2011 10:01:11 +0000 (05:01 -0500)]
Add blowfish to libratbox crypt.
Also change u_int*_t to uint*_t whilst I'm here.
Jilles Tjoelker [Mon, 10 Jan 2011 23:26:15 +0000 (00:26 +0100)]
Remove nickTS from extended-join.
Jilles Tjoelker [Mon, 10 Jan 2011 23:26:05 +0000 (00:26 +0100)]
Fix extended-join not sending any joins at all.
Note that IsCapable(x, NOCAPS) always returns true.
Jilles Tjoelker [Sat, 8 Jan 2011 16:47:05 +0000 (17:47 +0100)]
hunt_server: Disallow wildcarded nicknames.
Any hunted parameter with wildcards is now assumed
to be a server, never a user.
Reasons:
* fewer match() calls
* do not disclose existing nicknames
* more intuitive behaviour for CONNECT
m_trace has a copy of some hunt_server logic in it
(for the RPL_TRACELINK reply), so adjust that too.
Jilles Tjoelker [Sat, 8 Jan 2011 16:40:12 +0000 (17:40 +0100)]
Fix compiler warnings.
Keith Buck [Thu, 6 Jan 2011 08:40:08 +0000 (00:40 -0800)]
Move list-related isupport items to the list module itself.
Elizabeth Jennifer Myers [Thu, 6 Jan 2011 06:56:47 +0000 (01:56 -0500)]
Make SHA512 the default for mkpasswd again, as SHA512 support is guaranteed to *always* be in libratbox.
Elizabeth Jennifer Myers [Thu, 6 Jan 2011 06:41:57 +0000 (01:41 -0500)]
Overhaul extensions/m_mkpasswd. It now allows SHA256/SHA512 hashes. DES support is removed, as it is insecure and can be broken on my desktop in about 20 minutes.
Elizabeth Jennifer Myers [Thu, 6 Jan 2011 06:29:22 +0000 (01:29 -0500)]
Add SHA256/SHA512 support to crypt.c and fix up the MD5 component (it seemed to have been broken). In addition, unconditionally use the libratbox crypt.
Lee T. Starnes [Thu, 6 Jan 2011 05:20:04 +0000 (23:20 -0600)]
cosmetic fix: Blowfish doesn't use CamelCase
Keith Buck [Thu, 6 Jan 2011 05:15:36 +0000 (21:15 -0800)]
Add topic TS and channel TS constraints for /LIST.
Keith Buck [Thu, 6 Jan 2011 02:57:27 +0000 (18:57 -0800)]
Implement operspy for /LIST.
Keith Buck [Sun, 2 Jan 2011 08:43:11 +0000 (00:43 -0800)]
Fix multiple RPL_LISTEND replies when aborting a /LIST.
Stephen Bennett [Fri, 31 Dec 2010 17:14:05 +0000 (17:14 +0000)]
Expire umode +p correctly if it's set via oper_umodes, as well as by user_mode. Bug found by tgies.
Stephen Bennett [Fri, 31 Dec 2010 17:11:50 +0000 (17:11 +0000)]
Don't allow opers without the override privilege to get +p via the oper_umodes config setting
Jilles Tjoelker [Fri, 31 Dec 2010 01:43:38 +0000 (02:43 +0100)]
override: Provide an error message if +p may not be set.
Jilles Tjoelker [Fri, 31 Dec 2010 01:43:16 +0000 (02:43 +0100)]
Tweak previous commit to avoid problems with OMODE.
Do not allow a user to op themselves if they are
already opped, as "already opped" could be because
of OMODE's hack which will be unconditionally
reverted after the mode change.
Also, this matches old behaviour for users not
being able to generate mode changes redundantly
opping themselves.
Note that this change should only be taken advantage
of if all servers run patched code. Otherwise, mode
changes will be silently dropped and a desync
results.
William Pitcock [Fri, 31 Dec 2010 01:21:14 +0000 (19:21 -0600)]
Remove stupid hybrid-esque 'impossible to op yourself' hack.
Who the fuck thought that check was a good idea?
Jilles Tjoelker [Mon, 27 Dec 2010 16:31:11 +0000 (17:31 +0100)]
Fix topic changes after
6af636dce2e6 .
Stephen Bennett [Tue, 21 Dec 2010 20:53:39 +0000 (20:53 +0000)]
Add default for disable_local_channels. Missed this last time.
Stephen Bennett [Tue, 21 Dec 2010 20:38:04 +0000 (20:38 +0000)]
Bring across disable_local_channels config option from ircd-seven
William Pitcock [Thu, 16 Dec 2010 06:35:12 +0000 (00:35 -0600)]
account-notify spec: with the extended-join capability, doing a WHO on new users is not necessary.
William Pitcock [Thu, 16 Dec 2010 06:32:48 +0000 (00:32 -0600)]
Accountname should not be prefixed with a colon to allow future expansion.
William Pitcock [Thu, 16 Dec 2010 06:24:54 +0000 (00:24 -0600)]
Add extended-join client capability.
The extended-join client capability extends the JOIN message with information clients typically
query using WHO including accountname, signon TS and realname.
William Pitcock [Thu, 16 Dec 2010 06:19:24 +0000 (00:19 -0600)]
Add sendto_channel_local_with_capability().
William Pitcock [Thu, 16 Dec 2010 06:13:42 +0000 (00:13 -0600)]
Use send_channel_join().
William Pitcock [Thu, 16 Dec 2010 06:09:29 +0000 (00:09 -0600)]
Add send_channel_join().
William Pitcock [Thu, 16 Dec 2010 05:59:47 +0000 (23:59 -0600)]
Update specification.
William Pitcock [Thu, 16 Dec 2010 05:38:35 +0000 (23:38 -0600)]
Add specification for the account-notify protocol extension.
William Pitcock [Thu, 16 Dec 2010 05:04:57 +0000 (23:04 -0600)]
Rough implementation of the new account-notify client capability.
This replaces identify-msg in ircd-seven.
William Pitcock [Thu, 16 Dec 2010 04:55:05 +0000 (22:55 -0600)]
Add capability parameter to sendto_common_channels_local() and sendto_common_channels_local_butone().
Jilles Tjoelker [Wed, 15 Dec 2010 20:49:47 +0000 (21:49 +0100)]
Remove redundant prototypes in src/ircd_lexer.l.
These seem unnecessary and may cause problems because they
are wrong in some cases.
A comment says these were needed for GCC 3.3. If you are
still using this compiler, check this and if it breaks,
some other approach is needed.
Jilles Tjoelker [Wed, 15 Dec 2010 20:48:26 +0000 (21:48 +0100)]
libratbox: Unbreak compile.
B.Greenham [Wed, 15 Dec 2010 20:43:35 +0000 (15:43 -0500)]
extensions/roleplay: Fix NPCA/FACTION not showing up properly on some clients.
William Pitcock [Wed, 15 Dec 2010 05:04:11 +0000 (23:04 -0600)]
Don't bother running the get_channel_access hook if the client is not really on the channel.
William Pitcock [Wed, 15 Dec 2010 04:57:23 +0000 (22:57 -0600)]
Don't bother running the can_send() hook if we're not on the channel.
William Pitcock [Wed, 15 Dec 2010 03:28:35 +0000 (21:28 -0600)]
ssld: Request fingerprint when connecting to the server, not just on inbound connections.
William Pitcock [Wed, 15 Dec 2010 03:25:44 +0000 (21:25 -0600)]
Correct error message involving no fingerprint credentials or password credentials being available.
William Pitcock [Tue, 14 Dec 2010 08:24:23 +0000 (02:24 -0600)]
Send ERR_TOOMANYCHANNELS for each channel join that fails due to channel limits.
The reason why we do this is because some clients are dependent on receiving a numeric
for every channel join failure, even due to this limit where it can be assumed that
subsequent joins failed.
William Pitcock [Tue, 14 Dec 2010 05:15:19 +0000 (23:15 -0600)]
Add mr_flea to contributors.
William Pitcock [Tue, 14 Dec 2010 05:14:00 +0000 (23:14 -0600)]
Add support for linking using SSL certificate fingerprints as the link credential rather than the traditional server-password pair.
William Pitcock [Tue, 14 Dec 2010 04:58:09 +0000 (22:58 -0600)]
libratbox: Use the server SSL certificate on outgoing connections.
William Pitcock [Sun, 12 Dec 2010 02:21:47 +0000 (20:21 -0600)]
Fix regressions in can_send() caused by hooking it for override and modularized channel modules.
B.Greenham [Sat, 11 Dec 2010 20:51:11 +0000 (15:51 -0500)]
Make ENCAP ROLEPLAY originate from the user running the command, rather than just including the user in the message, as per jilles' suggestion.
This has the benefit of checking ROLEPLAY messages for fake direction.
B.Greenham [Thu, 9 Dec 2010 23:48:05 +0000 (18:48 -0500)]
CREDITS: Add myself to contributors.
B.Greenham [Thu, 9 Dec 2010 23:44:24 +0000 (18:44 -0500)]
Add extensions/m_roleplay, which provides various roleplay commands.
B.Greenham [Thu, 9 Dec 2010 23:29:56 +0000 (18:29 -0500)]
Move flood_attack_channel to channel.c so it can be used outside m_message.c
B.Greenham [Thu, 9 Dec 2010 17:02:24 +0000 (12:02 -0500)]
Add strip_unprintable, a function that strips all unprintable characters from a string.
William Pitcock [Tue, 7 Dec 2010 06:27:00 +0000 (00:27 -0600)]
Clean up OverrideSession struct on client exit.
William Pitcock [Tue, 7 Dec 2010 06:18:22 +0000 (00:18 -0600)]
override: Hack can_send().
William Pitcock [Tue, 7 Dec 2010 06:14:42 +0000 (00:14 -0600)]
Use get_channel_access() for KICK/TOPIC.
William Pitcock [Tue, 7 Dec 2010 06:12:36 +0000 (00:12 -0600)]
Actually make get_channel_access() public.
William Pitcock [Tue, 7 Dec 2010 06:11:53 +0000 (00:11 -0600)]
Reorder CHFL flags so that they can be used as ranks.
William Pitcock [Tue, 7 Dec 2010 06:09:46 +0000 (00:09 -0600)]
Add can_send hook.
William Pitcock [Tue, 7 Dec 2010 05:55:42 +0000 (23:55 -0600)]
override: Allow banwalking too.
William Pitcock [Tue, 7 Dec 2010 05:52:44 +0000 (23:52 -0600)]
Make the can_join hook more flexible.