]> jfr.im git - irc/freenode/solanum.git/blob - ircd/s_serv.c
projects / irc / freenode / solanum.git / blob
? search:


0ab96ec7e88af175cc0fa42164cc6e0ec0ccabb7
[irc/freenode/solanum.git] / ircd / s_serv.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_serv.c: Server related functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 */
24
25 #include "stdinc.h"
26
27 #ifdef HAVE_LIBCRYPTO
28 #include <openssl/rsa.h>
29 #endif
30
31 #include "s_serv.h"
32 #include "class.h"
33 #include "client.h"
34 #include "hash.h"
35 #include "match.h"
36 #include "ircd.h"
37 #include "ircd_defs.h"
38 #include "numeric.h"
39 #include "packet.h"
40 #include "s_conf.h"
41 #include "s_newconf.h"
42 #include "logger.h"
43 #include "s_stats.h"
44 #include "s_user.h"
45 #include "scache.h"
46 #include "send.h"
47 #include "client.h"
48 #include "channel.h" /* chcap_usage_counts stuff... */
49 #include "hook.h"
50 #include "msg.h"
51 #include "reject.h"
52 #include "sslproc.h"
53 #include "capability.h"
54 #include "s_assert.h"
55
56 int MaxConnectionCount = 1;
57 int MaxClientCount = 1;
58 int refresh_user_links = 0;
59
60 static char buf[BUFSIZE];
61
62 /*
63 * list of recognized server capabilities. "TS" is not on the list
64 * because all servers that we talk to already do TS, and the kludged
65 * extra argument to "PASS" takes care of checking that. -orabidoo
66 */
67 struct CapabilityIndex *serv_capindex = NULL;
68 struct CapabilityIndex *cli_capindex = NULL;
69
70 unsigned int CAP_CAP;
71 unsigned int CAP_QS;
72 unsigned int CAP_EX;
73 unsigned int CAP_CHW;
74 unsigned int CAP_IE;
75 unsigned int CAP_KLN;
76 unsigned int CAP_ZIP;
77 unsigned int CAP_KNOCK;
78 unsigned int CAP_TB;
79 unsigned int CAP_UNKLN;
80 unsigned int CAP_CLUSTER;
81 unsigned int CAP_ENCAP;
82 unsigned int CAP_TS6;
83 unsigned int CAP_SERVICE;
84 unsigned int CAP_RSFNC;
85 unsigned int CAP_SAVE;
86 unsigned int CAP_EUID;
87 unsigned int CAP_EOPMOD;
88 unsigned int CAP_BAN;
89 unsigned int CAP_MLOCK;
90
91 unsigned int CLICAP_MULTI_PREFIX;
92 unsigned int CLICAP_ACCOUNT_NOTIFY;
93 unsigned int CLICAP_EXTENDED_JOIN;
94 unsigned int CLICAP_AWAY_NOTIFY;
95 unsigned int CLICAP_USERHOST_IN_NAMES;
96 unsigned int CLICAP_CAP_NOTIFY;
97 unsigned int CLICAP_CHGHOST;
98 unsigned int CLICAP_ECHO_MESSAGE;
99
100 /*
101 * initialize our builtin capability table. --nenolod
102 */
103 void
104 init_builtin_capabs(void)
105 {
106 static struct ClientCapability high_priority = {.flags = CLICAP_FLAGS_PRIORITY};
107 serv_capindex = capability_index_create("server capabilities");
108
109 /* These two are not set via CAPAB/GCAP keywords. */
110 CAP_CAP = capability_put_anonymous(serv_capindex);
111 CAP_TS6 = capability_put_anonymous(serv_capindex);
112
113 CAP_QS = capability_put(serv_capindex, "QS", NULL);
114 CAP_EX = capability_put(serv_capindex, "EX", NULL);
115 CAP_CHW = capability_put(serv_capindex, "CHW", NULL);
116 CAP_IE = capability_put(serv_capindex, "IE", NULL);
117 CAP_KLN = capability_put(serv_capindex, "KLN", NULL);
118 CAP_KNOCK = capability_put(serv_capindex, "KNOCK", NULL);
119 CAP_ZIP = capability_put(serv_capindex, "ZIP", NULL);
120 CAP_TB = capability_put(serv_capindex, "TB", NULL);
121 CAP_UNKLN = capability_put(serv_capindex, "UNKLN", NULL);
122 CAP_CLUSTER = capability_put(serv_capindex, "CLUSTER", NULL);
123 CAP_ENCAP = capability_put(serv_capindex, "ENCAP", NULL);
124 CAP_SERVICE = capability_put(serv_capindex, "SERVICES", NULL);
125 CAP_RSFNC = capability_put(serv_capindex, "RSFNC", NULL);
126 CAP_SAVE = capability_put(serv_capindex, "SAVE", NULL);
127 CAP_EUID = capability_put(serv_capindex, "EUID", NULL);
128 CAP_EOPMOD = capability_put(serv_capindex, "EOPMOD", NULL);
129 CAP_BAN = capability_put(serv_capindex, "BAN", NULL);
130 CAP_MLOCK = capability_put(serv_capindex, "MLOCK", NULL);
131
132 capability_require(serv_capindex, "QS");
133 capability_require(serv_capindex, "EX");
134 capability_require(serv_capindex, "IE");
135 capability_require(serv_capindex, "ENCAP");
136
137 cli_capindex = capability_index_create("client capabilities");
138
139 CLICAP_MULTI_PREFIX = capability_put(cli_capindex, "multi-prefix", &high_priority);
140 CLICAP_ACCOUNT_NOTIFY = capability_put(cli_capindex, "account-notify", &high_priority);
141 CLICAP_EXTENDED_JOIN = capability_put(cli_capindex, "extended-join", &high_priority);
142 CLICAP_AWAY_NOTIFY = capability_put(cli_capindex, "away-notify", &high_priority);
143 CLICAP_USERHOST_IN_NAMES = capability_put(cli_capindex, "userhost-in-names", &high_priority);
144 CLICAP_CAP_NOTIFY = capability_put(cli_capindex, "cap-notify", NULL);
145 CLICAP_CHGHOST = capability_put(cli_capindex, "chghost", &high_priority);
146 CLICAP_ECHO_MESSAGE = capability_put(cli_capindex, "echo-message", NULL);
147 }
148
149 static CNCB serv_connect_callback;
150 static CNCB serv_connect_ssl_callback;
151 static SSL_OPEN_CB serv_connect_ssl_open_callback;
152
153 /*
154 * hunt_server - Do the basic thing in delivering the message (command)
155 * across the relays to the specific server (server) for
156 * actions.
157 *
158 * Note: The command is a format string and *MUST* be
159 * of prefixed style (e.g. ":%s COMMAND %s ...").
160 * Command can have only max 8 parameters.
161 *
162 * server parv[server] is the parameter identifying the
163 * target server.
164 *
165 * *WARNING*
166 * parv[server] is replaced with the pointer to the
167 * real servername from the matched client (I'm lazy
168 * now --msa).
169 *
170 * returns: (see #defines)
171 */
172 int
173 hunt_server(struct Client *client_p, struct Client *source_p,
174 const char *command, int server, int parc, const char *parv[])
175 {
176 struct Client *target_p;
177 int wilds;
178 rb_dlink_node *ptr;
179 const char *old;
180 char *new;
181
182 /*
183 * Assume it's me, if no server
184 */
185 if(parc <= server || EmptyString(parv[server]) ||
186 match(parv[server], me.name) || (strcmp(parv[server], me.id) == 0))
187 return (HUNTED_ISME);
188
189 new = LOCAL_COPY(parv[server]);
190
191 /*
192 * These are to pickup matches that would cause the following
193 * message to go in the wrong direction while doing quick fast
194 * non-matching lookups.
195 */
196 if(MyClient(source_p))
197 target_p = find_named_client(new);
198 else
199 target_p = find_client(new);
200
201 if(target_p)
202 if(target_p->from == source_p->from && !MyConnect(target_p))
203 target_p = NULL;
204
205 collapse(new);
206 wilds = (strchr(new, '?') || strchr(new, '*'));
207
208 /*
209 * Again, if there are no wild cards involved in the server
210 * name, use the hash lookup
211 */
212 if(!target_p && wilds)
213 {
214 RB_DLINK_FOREACH(ptr, global_serv_list.head)
215 {
216 if(match(new, ((struct Client *) (ptr->data))->name))
217 {
218 target_p = ptr->data;
219 break;
220 }
221 }
222 }
223
224 if(target_p && !IsRegistered(target_p))
225 target_p = NULL;
226
227 if(target_p)
228 {
229 if(IsMe(target_p) || MyClient(target_p))
230 return HUNTED_ISME;
231
232 old = parv[server];
233 parv[server] = get_id(target_p, target_p);
234
235 sendto_one(target_p, command, get_id(source_p, target_p),
236 parv[1], parv[2], parv[3], parv[4], parv[5], parv[6], parv[7], parv[8]);
237 parv[server] = old;
238 return (HUNTED_PASS);
239 }
240
241 if(MyClient(source_p) || !IsDigit(parv[server][0]))
242 sendto_one_numeric(source_p, ERR_NOSUCHSERVER,
243 form_str(ERR_NOSUCHSERVER), parv[server]);
244 return (HUNTED_NOSUCH);
245 }
246
247 /*
248 * try_connections - scan through configuration and try new connections.
249 * Returns the calendar time when the next call to this
250 * function should be made latest. (No harm done if this
251 * is called earlier or later...)
252 */
253 void
254 try_connections(void *unused)
255 {
256 struct Client *client_p;
257 struct server_conf *server_p = NULL;
258 struct server_conf *tmp_p;
259 struct Class *cltmp;
260 rb_dlink_node *ptr;
261 bool connecting = false;
262 int confrq = 0;
263 time_t next = 0;
264
265 RB_DLINK_FOREACH(ptr, server_conf_list.head)
266 {
267 tmp_p = ptr->data;
268
269 if(ServerConfIllegal(tmp_p) || !ServerConfAutoconn(tmp_p))
270 continue;
271
272 /* don't allow ssl connections if ssl isn't setup */
273 if(ServerConfSSL(tmp_p) && (!ircd_ssl_ok || !get_ssld_count()))
274 continue;
275
276 cltmp = tmp_p->class;
277
278 /*
279 * Skip this entry if the use of it is still on hold until
280 * future. Otherwise handle this entry (and set it on hold
281 * until next time). Will reset only hold times, if already
282 * made one successfull connection... [this algorithm is
283 * a bit fuzzy... -- msa >;) ]
284 */
285 if(tmp_p->hold > rb_current_time())
286 {
287 if(next > tmp_p->hold || next == 0)
288 next = tmp_p->hold;
289 continue;
290 }
291
292 confrq = get_con_freq(cltmp);
293 tmp_p->hold = rb_current_time() + confrq;
294
295 /*
296 * Found a CONNECT config with port specified, scan clients
297 * and see if this server is already connected?
298 */
299 client_p = find_server(NULL, tmp_p->name);
300
301 if(!client_p && (CurrUsers(cltmp) < MaxAutoconn(cltmp)) && !connecting)
302 {
303 server_p = tmp_p;
304
305 /* We connect only one at time... */
306 connecting = true;
307 }
308
309 if((next > tmp_p->hold) || (next == 0))
310 next = tmp_p->hold;
311 }
312
313 /* TODO: change this to set active flag to 0 when added to event! --Habeeb */
314 if(GlobalSetOptions.autoconn == 0)
315 return;
316
317 if(!connecting)
318 return;
319
320 /* move this connect entry to end.. */
321 rb_dlinkDelete(&server_p->node, &server_conf_list);
322 rb_dlinkAddTail(server_p, &server_p->node, &server_conf_list);
323
324 /*
325 * We used to only print this if serv_connect() actually
326 * suceeded, but since rb_tcp_connect() can call the callback
327 * immediately if there is an error, we were getting error messages
328 * in the wrong order. SO, we just print out the activated line,
329 * and let serv_connect() / serv_connect_callback() print an
330 * error afterwards if it fails.
331 * -- adrian
332 */
333 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
334 "Connection to %s activated",
335 server_p->name);
336
337 serv_connect(server_p, 0);
338 }
339
340 int
341 check_server(const char *name, struct Client *client_p)
342 {
343 struct server_conf *server_p = NULL;
344 struct server_conf *tmp_p;
345 rb_dlink_node *ptr;
346 int error = -1;
347 const char *encr;
348 bool name_matched = false;
349 bool host_matched = false;
350 bool certfp_failed = false;
351
352 s_assert(NULL != client_p);
353 if(client_p == NULL)
354 return error;
355
356 if(!(client_p->localClient->passwd))
357 return -2;
358
359 if(strlen(name) > HOSTLEN)
360 return -4;
361
362 RB_DLINK_FOREACH(ptr, server_conf_list.head)
363 {
364 struct rb_sockaddr_storage client_addr;
365
366 tmp_p = ptr->data;
367
368 if(ServerConfIllegal(tmp_p))
369 continue;
370
371 if(!match(tmp_p->name, name))
372 continue;
373
374 name_matched = true;
375
376 if(rb_inet_pton_sock(client_p->sockhost, &client_addr) <= 0)
377 SET_SS_FAMILY(&client_addr, AF_UNSPEC);
378
379 if((tmp_p->connect_host && match(tmp_p->connect_host, client_p->host))
380 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect4)
381 && comp_with_mask_sock((struct sockaddr *)&client_addr,
382 (struct sockaddr *)&tmp_p->connect4, 32))
383 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect6)
384 && comp_with_mask_sock((struct sockaddr *)&client_addr,
385 (struct sockaddr *)&tmp_p->connect6, 128))
386 )
387 {
388 host_matched = true;
389
390 if(tmp_p->passwd)
391 {
392 if(ServerConfEncrypted(tmp_p))
393 {
394 encr = rb_crypt(client_p->localClient->passwd,
395 tmp_p->passwd);
396 if(encr != NULL && !strcmp(tmp_p->passwd, encr))
397 {
398 server_p = tmp_p;
399 break;
400 }
401 else
402 continue;
403 }
404 else if(strcmp(tmp_p->passwd, client_p->localClient->passwd))
405 continue;
406 }
407
408 if(tmp_p->certfp)
409 {
410 if(!client_p->certfp || rb_strcasecmp(tmp_p->certfp, client_p->certfp) != 0) {
411 certfp_failed = true;
412 continue;
413 }
414 }
415
416 server_p = tmp_p;
417 break;
418 }
419 }
420
421 if(server_p == NULL)
422 {
423 /* return the most specific error */
424 if(certfp_failed)
425 error = -6;
426 else if(host_matched)
427 error = -2;
428 else if(name_matched)
429 error = -3;
430
431 return error;
432 }
433
434 if(ServerConfSSL(server_p) && client_p->localClient->ssl_ctl == NULL)
435 {
436 return -5;
437 }
438
439 if (client_p->localClient->att_sconf && client_p->localClient->att_sconf->class == server_p->class) {
440 /* this is an outgoing connection that is already attached to the correct class */
441 } else if (CurrUsers(server_p->class) >= MaxUsers(server_p->class)) {
442 return -7;
443 }
444 attach_server_conf(client_p, server_p);
445
446 /* clear ZIP/TB if they support but we dont want them */
447 #ifdef HAVE_LIBZ
448 if(!ServerConfCompressed(server_p))
449 #endif
450 ClearCap(client_p, CAP_ZIP);
451
452 if(!ServerConfTb(server_p))
453 ClearCap(client_p, CAP_TB);
454
455 return 0;
456 }
457
458 /*
459 * send_capabilities
460 *
461 * inputs - Client pointer to send to
462 * - int flag of capabilities that this server has
463 * output - NONE
464 * side effects - send the CAPAB line to a server -orabidoo
465 */
466 void
467 send_capabilities(struct Client *client_p, unsigned int cap_can_send)
468 {
469 sendto_one(client_p, "CAPAB :%s", capability_index_list(serv_capindex, cap_can_send));
470 }
471
472 static void
473 burst_ban(struct Client *client_p)
474 {
475 rb_dlink_node *ptr;
476 struct ConfItem *aconf;
477 const char *type, *oper;
478 /* +5 for !,@,{,} and null */
479 char operbuf[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
480 char *p;
481 size_t melen;
482
483 melen = strlen(me.name);
484 RB_DLINK_FOREACH(ptr, prop_bans.head)
485 {
486 aconf = ptr->data;
487
488 /* Skip expired stuff. */
489 if(aconf->lifetime < rb_current_time())
490 continue;
491 switch(aconf->status & ~CONF_ILLEGAL)
492 {
493 case CONF_KILL: type = "K"; break;
494 case CONF_DLINE: type = "D"; break;
495 case CONF_XLINE: type = "X"; break;
496 case CONF_RESV_NICK: type = "R"; break;
497 case CONF_RESV_CHANNEL: type = "R"; break;
498 default:
499 continue;
500 }
501 oper = aconf->info.oper;
502 if(aconf->flags & CONF_FLAGS_MYOPER)
503 {
504 /* Our operator{} names may not be meaningful
505 * to other servers, so rewrite to our server
506 * name.
507 */
508 rb_strlcpy(operbuf, aconf->info.oper, sizeof operbuf);
509 p = strrchr(operbuf, '{');
510 if (p != NULL &&
511 operbuf + sizeof operbuf - p > (ptrdiff_t)(melen + 2))
512 {
513 memcpy(p + 1, me.name, melen);
514 p[melen + 1] = '}';
515 p[melen + 2] = '\0';
516 oper = operbuf;
517 }
518 }
519 sendto_one(client_p, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
520 me.id,
521 type,
522 aconf->user ? aconf->user : "*", aconf->host,
523 (unsigned long)aconf->created,
524 (int)(aconf->hold - aconf->created),
525 (int)(aconf->lifetime - aconf->created),
526 oper,
527 aconf->passwd,
528 aconf->spasswd ? "|" : "",
529 aconf->spasswd ? aconf->spasswd : "");
530 }
531 }
532
533 /* burst_modes_TS6()
534 *
535 * input - client to burst to, channel name, list to burst, mode flag
536 * output -
537 * side effects - client is sent a list of +b, +e, or +I modes
538 */
539 static void
540 burst_modes_TS6(struct Client *client_p, struct Channel *chptr,
541 rb_dlink_list *list, char flag)
542 {
543 rb_dlink_node *ptr;
544 struct Ban *banptr;
545
546 send_multiline_init(client_p, " ", ":%s BMASK %ld %s %c :",
547 me.id,
548 (long)chptr->channelts,
549 chptr->chname,
550 flag);
551
552 RB_DLINK_FOREACH_PREV(ptr, list->tail)
553 {
554 banptr = ptr->data;
555
556 if (banptr->forward)
557 send_multiline_item(client_p, "%s$%s",
558 banptr->banstr,
559 banptr->forward);
560 else
561 send_multiline_item(client_p, "%s", banptr->banstr);
562 }
563
564 send_multiline_fini(client_p, NULL);
565 }
566
567 /*
568 * burst_TS6
569 *
570 * inputs - client (server) to send nick towards
571 * - client to send nick for
572 * output - NONE
573 * side effects - NICK message is sent towards given client_p
574 */
575 static void
576 burst_TS6(struct Client *client_p)
577 {
578 char ubuf[BUFSIZE];
579 struct Client *target_p;
580 struct Channel *chptr;
581 struct membership *msptr;
582 hook_data_client hclientinfo;
583 hook_data_channel hchaninfo;
584 rb_dlink_node *ptr;
585 rb_dlink_node *uptr;
586 char *t;
587 int tlen, mlen;
588 int cur_len = 0;
589
590 hclientinfo.client = hchaninfo.client = client_p;
591
592 RB_DLINK_FOREACH(ptr, global_client_list.head)
593 {
594 target_p = ptr->data;
595
596 if(!IsPerson(target_p))
597 continue;
598
599 if(MyClient(target_p->from) && target_p->localClient->att_sconf != NULL && ServerConfNoExport(target_p->localClient->att_sconf))
600 continue;
601
602 send_umode(NULL, target_p, 0, ubuf);
603 if(!*ubuf)
604 {
605 ubuf[0] = '+';
606 ubuf[1] = '\0';
607 }
608
609 if(IsCapable(client_p, CAP_EUID))
610 sendto_one(client_p, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
611 target_p->servptr->id, target_p->name,
612 target_p->hopcount + 1,
613 (long) target_p->tsinfo, ubuf,
614 target_p->username, target_p->host,
615 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
616 target_p->id,
617 IsDynSpoof(target_p) ? target_p->orighost : "*",
618 EmptyString(target_p->user->suser) ? "*" : target_p->user->suser,
619 target_p->info);
620 else
621 sendto_one(client_p, ":%s UID %s %d %ld %s %s %s %s %s :%s",
622 target_p->servptr->id, target_p->name,
623 target_p->hopcount + 1,
624 (long) target_p->tsinfo, ubuf,
625 target_p->username, target_p->host,
626 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
627 target_p->id, target_p->info);
628
629 if(!EmptyString(target_p->certfp))
630 sendto_one(client_p, ":%s ENCAP * CERTFP :%s",
631 use_id(target_p), target_p->certfp);
632
633 if(!IsCapable(client_p, CAP_EUID))
634 {
635 if(IsDynSpoof(target_p))
636 sendto_one(client_p, ":%s ENCAP * REALHOST %s",
637 use_id(target_p), target_p->orighost);
638 if(!EmptyString(target_p->user->suser))
639 sendto_one(client_p, ":%s ENCAP * LOGIN %s",
640 use_id(target_p), target_p->user->suser);
641 }
642
643 if(ConfigFileEntry.burst_away && !EmptyString(target_p->user->away))
644 sendto_one(client_p, ":%s AWAY :%s",
645 use_id(target_p),
646 target_p->user->away);
647
648 if(IsOper(target_p) && target_p->user && target_p->user->opername && target_p->user->privset)
649 sendto_one(client_p, ":%s OPER %s %s",
650 use_id(target_p),
651 target_p->user->opername,
652 target_p->user->privset->name);
653
654 hclientinfo.target = target_p;
655 call_hook(h_burst_client, &hclientinfo);
656 }
657
658 RB_DLINK_FOREACH(ptr, global_channel_list.head)
659 {
660 chptr = ptr->data;
661
662 if(*chptr->chname != '#')
663 continue;
664
665 cur_len = mlen = sprintf(buf, ":%s SJOIN %ld %s %s :", me.id,
666 (long) chptr->channelts, chptr->chname,
667 channel_modes(chptr, client_p));
668
669 t = buf + mlen;
670
671 RB_DLINK_FOREACH(uptr, chptr->members.head)
672 {
673 msptr = uptr->data;
674
675 tlen = strlen(use_id(msptr->client_p)) + 1;
676 if(is_chanop(msptr))
677 tlen++;
678 if(is_voiced(msptr))
679 tlen++;
680
681 if(cur_len + tlen >= BUFSIZE - 3)
682 {
683 *(t-1) = '\0';
684 sendto_one(client_p, "%s", buf);
685 cur_len = mlen;
686 t = buf + mlen;
687 }
688
689 sprintf(t, "%s%s ", find_channel_status(msptr, 1),
690 use_id(msptr->client_p));
691
692 cur_len += tlen;
693 t += tlen;
694 }
695
696 if (rb_dlink_list_length(&chptr->members) > 0)
697 {
698 /* remove trailing space */
699 *(t-1) = '\0';
700 }
701 sendto_one(client_p, "%s", buf);
702
703 if(rb_dlink_list_length(&chptr->banlist) > 0)
704 burst_modes_TS6(client_p, chptr, &chptr->banlist, 'b');
705
706 if(IsCapable(client_p, CAP_EX) &&
707 rb_dlink_list_length(&chptr->exceptlist) > 0)
708 burst_modes_TS6(client_p, chptr, &chptr->exceptlist, 'e');
709
710 if(IsCapable(client_p, CAP_IE) &&
711 rb_dlink_list_length(&chptr->invexlist) > 0)
712 burst_modes_TS6(client_p, chptr, &chptr->invexlist, 'I');
713
714 if(rb_dlink_list_length(&chptr->quietlist) > 0)
715 burst_modes_TS6(client_p, chptr, &chptr->quietlist, 'q');
716
717 if(IsCapable(client_p, CAP_TB) && chptr->topic != NULL)
718 sendto_one(client_p, ":%s TB %s %ld %s%s:%s",
719 me.id, chptr->chname, (long) chptr->topic_time,
720 ConfigChannel.burst_topicwho ? chptr->topic_info : "",
721 ConfigChannel.burst_topicwho ? " " : "",
722 chptr->topic);
723
724 if(IsCapable(client_p, CAP_MLOCK))
725 sendto_one(client_p, ":%s MLOCK %ld %s :%s",
726 me.id, (long) chptr->channelts, chptr->chname,
727 EmptyString(chptr->mode_lock) ? "" : chptr->mode_lock);
728
729 hchaninfo.chptr = chptr;
730 call_hook(h_burst_channel, &hchaninfo);
731 }
732
733 hclientinfo.target = NULL;
734 call_hook(h_burst_finished, &hclientinfo);
735 }
736
737 /*
738 * show_capabilities - show current server capabilities
739 *
740 * inputs - pointer to an struct Client
741 * output - pointer to static string
742 * side effects - build up string representing capabilities of server listed
743 */
744 const char *
745 show_capabilities(struct Client *target_p)
746 {
747 static char msgbuf[BUFSIZE];
748
749 *msgbuf = '\0';
750
751 if(has_id(target_p))
752 rb_strlcpy(msgbuf, " TS6", sizeof(msgbuf));
753
754 if(IsSSL(target_p))
755 rb_strlcat(msgbuf, " SSL", sizeof(msgbuf));
756
757 if(!IsServer(target_p) || !target_p->serv->caps) /* short circuit if no caps */
758 return msgbuf + 1;
759
760 rb_strlcat(msgbuf, " ", sizeof(msgbuf));
761 rb_strlcat(msgbuf, capability_index_list(serv_capindex, target_p->serv->caps), sizeof(msgbuf));
762
763 return msgbuf + 1;
764 }
765
766 /*
767 * server_estab
768 *
769 * inputs - pointer to a struct Client
770 * output -
771 * side effects -
772 */
773 int
774 server_estab(struct Client *client_p)
775 {
776 struct Client *target_p;
777 struct server_conf *server_p;
778 hook_data_client hdata;
779 char *host;
780 rb_dlink_node *ptr;
781 char note[HOSTLEN + 15];
782
783 s_assert(NULL != client_p);
784 if(client_p == NULL)
785 return -1;
786
787 host = client_p->name;
788
789 if((server_p = client_p->localClient->att_sconf) == NULL)
790 {
791 /* This shouldn't happen, better tell the ops... -A1kmm */
792 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
793 "Warning: Lost connect{} block for server %s!", host);
794 return exit_client(client_p, client_p, client_p, "Lost connect{} block!");
795 }
796
797 /* We shouldn't have to check this, it should already done before
798 * server_estab is called. -A1kmm
799 */
800 if(client_p->localClient->passwd)
801 {
802 memset(client_p->localClient->passwd, 0, strlen(client_p->localClient->passwd));
803 rb_free(client_p->localClient->passwd);
804 client_p->localClient->passwd = NULL;
805 }
806
807 /* Its got identd , since its a server */
808 SetGotId(client_p);
809
810 if(IsUnknown(client_p))
811 {
812 /* the server may be linking based on certificate fingerprint now. --nenolod */
813 sendto_one(client_p, "PASS %s TS %d :%s",
814 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
815
816 /* pass info to new server */
817 send_capabilities(client_p, default_server_capabs | CAP_MASK
818 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
819 | (ServerConfTb(server_p) ? CAP_TB : 0));
820
821 sendto_one(client_p, "SERVER %s 1 :%s%s",
822 me.name,
823 ConfigServerHide.hidden ? "(H) " : "",
824 (me.info[0]) ? (me.info) : "IRCers United");
825 }
826
827 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
828 ilog_error("rb_set_buffers failed for server");
829
830 /* Enable compression now */
831 if(IsCapable(client_p, CAP_ZIP))
832 {
833 start_zlib_session(client_p);
834 }
835
836 client_p->servptr = &me;
837
838 if(IsAnyDead(client_p))
839 return CLIENT_EXITED;
840
841 sendto_one(client_p, "SVINFO %d %d 0 :%ld", TS_CURRENT, TS_MIN, (long int)rb_current_time());
842
843 rb_dlinkAdd(client_p, &client_p->lnode, &me.serv->servers);
844 rb_dlinkMoveNode(&client_p->localClient->tnode, &unknown_list, &serv_list);
845 rb_dlinkAddTailAlloc(client_p, &global_serv_list);
846
847 if(has_id(client_p))
848 add_to_id_hash(client_p->id, client_p);
849
850 add_to_client_hash(client_p->name, client_p);
851 /* doesnt duplicate client_p->serv if allocated this struct already */
852 make_server(client_p);
853 SetServer(client_p);
854
855 client_p->serv->caps = client_p->localClient->caps;
856
857 if(client_p->localClient->fullcaps)
858 {
859 client_p->serv->fullcaps = rb_strdup(client_p->localClient->fullcaps);
860 rb_free(client_p->localClient->fullcaps);
861 client_p->localClient->fullcaps = NULL;
862 }
863
864 client_p->serv->nameinfo = scache_connect(client_p->name, client_p->info, IsHidden(client_p));
865 client_p->localClient->firsttime = rb_current_time();
866 /* fixing eob timings.. -gnp */
867
868 if((rb_dlink_list_length(&lclient_list) + rb_dlink_list_length(&serv_list)) >
869 (unsigned long)MaxConnectionCount)
870 MaxConnectionCount = rb_dlink_list_length(&lclient_list) +
871 rb_dlink_list_length(&serv_list);
872
873 /* Show the real host/IP to admins */
874 sendto_realops_snomask(SNO_GENERAL, L_ALL,
875 "Link with %s established: (%s) link",
876 client_p->name,
877 show_capabilities(client_p));
878
879 ilog(L_SERVER, "Link with %s established: (%s) link",
880 log_client_name(client_p, SHOW_IP), show_capabilities(client_p));
881
882 hdata.client = &me;
883 hdata.target = client_p;
884 call_hook(h_server_introduced, &hdata);
885
886 snprintf(note, sizeof(note), "Server: %s", client_p->name);
887 rb_note(client_p->localClient->F, note);
888
889 /*
890 ** Old sendto_serv_but_one() call removed because we now
891 ** need to send different names to different servers
892 ** (domain name matching) Send new server to other servers.
893 */
894 RB_DLINK_FOREACH(ptr, serv_list.head)
895 {
896 target_p = ptr->data;
897
898 if(target_p == client_p)
899 continue;
900
901 if(target_p->localClient->att_sconf != NULL && ServerConfNoExport(target_p->localClient->att_sconf))
902 continue;
903
904 if(has_id(target_p) && has_id(client_p))
905 {
906 sendto_one(target_p, ":%s SID %s 2 %s :%s%s",
907 me.id, client_p->name, client_p->id,
908 IsHidden(client_p) ? "(H) " : "", client_p->info);
909
910 if(!EmptyString(client_p->serv->fullcaps))
911 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
912 client_p->id, client_p->serv->fullcaps);
913 }
914 else
915 {
916 sendto_one(target_p, ":%s SERVER %s 2 :%s%s",
917 me.name, client_p->name,
918 IsHidden(client_p) ? "(H) " : "", client_p->info);
919
920 if(!EmptyString(client_p->serv->fullcaps))
921 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
922 client_p->name, client_p->serv->fullcaps);
923 }
924 }
925
926 /*
927 ** Pass on my client information to the new server
928 **
929 ** First, pass only servers (idea is that if the link gets
930 ** cancelled beacause the server was already there,
931 ** there are no NICK's to be cancelled...). Of course,
932 ** if cancellation occurs, all this info is sent anyway,
933 ** and I guess the link dies when a read is attempted...? --msa
934 **
935 ** Note: Link cancellation to occur at this point means
936 ** that at least two servers from my fragment are building
937 ** up connection this other fragment at the same time, it's
938 ** a race condition, not the normal way of operation...
939 **
940 ** ALSO NOTE: using the get_client_name for server names--
941 ** see previous *WARNING*!!! (Also, original inpath
942 ** is destroyed...)
943 */
944 RB_DLINK_FOREACH(ptr, global_serv_list.head)
945 {
946 target_p = ptr->data;
947
948 /* target_p->from == target_p for target_p == client_p */
949 if(IsMe(target_p) || target_p->from == client_p)
950 continue;
951
952 /* don't distribute downstream leaves of servers that are no-export */
953 if(MyClient(target_p->from) && target_p->from->localClient->att_sconf != NULL && ServerConfNoExport(target_p->from->localClient->att_sconf))
954 continue;
955
956 /* presumption, if target has an id, so does its uplink */
957 if(has_id(client_p) && has_id(target_p))
958 sendto_one(client_p, ":%s SID %s %d %s :%s%s",
959 target_p->servptr->id, target_p->name,
960 target_p->hopcount + 1, target_p->id,
961 IsHidden(target_p) ? "(H) " : "", target_p->info);
962 else
963 sendto_one(client_p, ":%s SERVER %s %d :%s%s",
964 target_p->servptr->name,
965 target_p->name, target_p->hopcount + 1,
966 IsHidden(target_p) ? "(H) " : "", target_p->info);
967
968 if(!EmptyString(target_p->serv->fullcaps))
969 sendto_one(client_p, ":%s ENCAP * GCAP :%s",
970 get_id(target_p, client_p),
971 target_p->serv->fullcaps);
972 }
973
974 if(IsCapable(client_p, CAP_BAN))
975 burst_ban(client_p);
976
977 burst_TS6(client_p);
978
979 /* Always send a PING after connect burst is done */
980 sendto_one(client_p, "PING :%s", get_id(&me, client_p));
981
982 free_pre_client(client_p);
983
984 send_pop_queue(client_p);
985
986 return 0;
987 }
988
989 /*
990 * New server connection code
991 * Based upon the stuff floating about in s_bsd.c
992 * -- adrian
993 */
994
995 /*
996 * serv_connect() - initiate a server connection
997 *
998 * inputs - pointer to conf
999 * - pointer to client doing the connet
1000 * output -
1001 * side effects -
1002 *
1003 * This code initiates a connection to a server. It first checks to make
1004 * sure the given server exists. If this is the case, it creates a socket,
1005 * creates a client, saves the socket information in the client, and
1006 * initiates a connection to the server through rb_connect_tcp(). The
1007 * completion of this goes through serv_completed_connection().
1008 *
1009 * We return 1 if the connection is attempted, since we don't know whether
1010 * it suceeded or not, and 0 if it fails in here somewhere.
1011 */
1012 int
1013 serv_connect(struct server_conf *server_p, struct Client *by)
1014 {
1015 struct Client *client_p;
1016 struct sockaddr_storage sa_connect[2];
1017 struct sockaddr_storage sa_bind[ARRAY_SIZE(sa_connect)];
1018 char note[HOSTLEN + 10];
1019 rb_fde_t *F;
1020
1021 s_assert(server_p != NULL);
1022 if(server_p == NULL)
1023 return 0;
1024
1025 for (int i = 0; i < ARRAY_SIZE(sa_connect); i++) {
1026 SET_SS_FAMILY(&sa_connect[i], AF_UNSPEC);
1027 SET_SS_FAMILY(&sa_bind[i], AF_UNSPEC);
1028 }
1029
1030 if(server_p->aftype == AF_UNSPEC
1031 && GET_SS_FAMILY(&server_p->connect4) == AF_INET
1032 && GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1033 {
1034 if(rand() % 2 == 0)
1035 {
1036 sa_connect[0] = server_p->connect4;
1037 sa_connect[1] = server_p->connect6;
1038 sa_bind[0] = server_p->bind4;
1039 sa_bind[1] = server_p->bind6;
1040 }
1041 else
1042 {
1043 sa_connect[0] = server_p->connect6;
1044 sa_connect[1] = server_p->connect4;
1045 sa_bind[0] = server_p->bind6;
1046 sa_bind[1] = server_p->bind4;
1047 }
1048 }
1049 else if(server_p->aftype == AF_INET || GET_SS_FAMILY(&server_p->connect4) == AF_INET)
1050 {
1051 sa_connect[0] = server_p->connect4;
1052 sa_bind[0] = server_p->bind4;
1053 }
1054 else if(server_p->aftype == AF_INET6 || GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1055 {
1056 sa_connect[0] = server_p->connect6;
1057 sa_bind[0] = server_p->bind6;
1058 }
1059
1060 /* log */
1061 #ifdef HAVE_LIBSCTP
1062 if (ServerConfSCTP(server_p) && GET_SS_FAMILY(&sa_connect[1]) != AF_UNSPEC) {
1063 char buf2[HOSTLEN + 1];
1064
1065 buf[0] = 0;
1066 buf2[0] = 0;
1067 rb_inet_ntop_sock((struct sockaddr *)&sa_connect[0], buf, sizeof(buf));
1068 rb_inet_ntop_sock((struct sockaddr *)&sa_connect[1], buf2, sizeof(buf2));
1069 ilog(L_SERVER, "Connect to *[%s] @%s&%s", server_p->name, buf, buf2);
1070 } else {
1071 #else
1072 {
1073 #endif
1074 buf[0] = 0;
1075 rb_inet_ntop_sock((struct sockaddr *)&sa_connect[0], buf, sizeof(buf));
1076 ilog(L_SERVER, "Connect to *[%s] @%s", server_p->name, buf);
1077 }
1078
1079 /*
1080 * Make sure this server isn't already connected
1081 */
1082 if((client_p = find_server(NULL, server_p->name)))
1083 {
1084 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1085 "Server %s already present from %s",
1086 server_p->name, client_p->name);
1087 if(by && IsPerson(by) && !MyClient(by))
1088 sendto_one_notice(by, ":Server %s already present from %s",
1089 server_p->name, client_p->name);
1090 return 0;
1091 }
1092
1093 if (CurrUsers(server_p->class) >= MaxUsers(server_p->class)) {
1094 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1095 "No more connections allowed in class \"%s\" for server %s",
1096 server_p->class->class_name, server_p->name);
1097 if(by && IsPerson(by) && !MyClient(by))
1098 sendto_one_notice(by, ":No more connections allowed in class \"%s\" for server %s",
1099 server_p->class->class_name, server_p->name);
1100 return 0;
1101 }
1102
1103 /* create a socket for the server connection */
1104 if(GET_SS_FAMILY(&sa_connect[0]) == AF_UNSPEC) {
1105 ilog_error("unspecified socket address family");
1106 return 0;
1107 #ifdef HAVE_LIBSCTP
1108 } else if (ServerConfSCTP(server_p)) {
1109 if ((F = rb_socket(AF_INET6, SOCK_STREAM, IPPROTO_SCTP, NULL)) == NULL) {
1110 ilog_error("opening a stream socket");
1111 return 0;
1112 }
1113 #endif
1114 } else if ((F = rb_socket(GET_SS_FAMILY(&sa_connect[0]), SOCK_STREAM, IPPROTO_TCP, NULL)) == NULL) {
1115 ilog_error("opening a stream socket");
1116 return 0;
1117 }
1118
1119 /* servernames are always guaranteed under HOSTLEN chars */
1120 snprintf(note, sizeof(note), "Server: %s", server_p->name);
1121 rb_note(F, note);
1122
1123 /* Create a local client */
1124 client_p = make_client(NULL);
1125
1126 /* Copy in the server, hostname, fd */
1127 rb_strlcpy(client_p->name, server_p->name, sizeof(client_p->name));
1128 if(server_p->connect_host)
1129 rb_strlcpy(client_p->host, server_p->connect_host, sizeof(client_p->host));
1130 else
1131 rb_strlcpy(client_p->host, buf, sizeof(client_p->host));
1132 rb_strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
1133 client_p->localClient->F = F;
1134 /* shove the port number into the sockaddr */
1135 SET_SS_PORT(&sa_connect[0], htons(server_p->port));
1136 SET_SS_PORT(&sa_connect[1], htons(server_p->port));
1137
1138 /*
1139 * Set up the initial server evilness, ripped straight from
1140 * connect_server(), so don't blame me for it being evil.
1141 * -- adrian
1142 */
1143
1144 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
1145 {
1146 ilog_error("setting the buffer size for a server connection");
1147 }
1148
1149 /*
1150 * Attach config entries to client here rather than in
1151 * serv_connect_callback(). This to avoid null pointer references.
1152 */
1153 attach_server_conf(client_p, server_p);
1154
1155 /*
1156 * at this point we have a connection in progress and C/N lines
1157 * attached to the client, the socket info should be saved in the
1158 * client and it should either be resolved or have a valid address.
1159 *
1160 * The socket has been connected or connect is in progress.
1161 */
1162 make_server(client_p);
1163 if(by && IsClient(by))
1164 rb_strlcpy(client_p->serv->by, by->name, sizeof(client_p->serv->by));
1165 else
1166 strcpy(client_p->serv->by, "AutoConn.");
1167
1168 SetConnecting(client_p);
1169 rb_dlinkAddTail(client_p, &client_p->node, &global_client_list);
1170
1171 for (int i = 0; i < ARRAY_SIZE(sa_connect); i++) {
1172 if (GET_SS_FAMILY(&sa_bind[i]) == AF_UNSPEC) {
1173 if (GET_SS_FAMILY(&sa_connect[i]) == GET_SS_FAMILY(&ServerInfo.bind4))
1174 sa_bind[i] = ServerInfo.bind4;
1175 if (GET_SS_FAMILY(&sa_connect[i]) == GET_SS_FAMILY(&ServerInfo.bind6))
1176 sa_bind[i] = ServerInfo.bind6;
1177 }
1178 }
1179
1180 #ifdef HAVE_LIBSCTP
1181 if (ServerConfSCTP(server_p)) {
1182 rb_connect_sctp(client_p->localClient->F,
1183 sa_connect, ARRAY_SIZE(sa_connect), sa_bind, ARRAY_SIZE(sa_bind),
1184 ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
1185 client_p, ConfigFileEntry.connect_timeout);
1186 } else {
1187 #else
1188 {
1189 #endif
1190 rb_connect_tcp(client_p->localClient->F,
1191 (struct sockaddr *)&sa_connect[0],
1192 GET_SS_FAMILY(&sa_bind[0]) == AF_UNSPEC ? NULL : (struct sockaddr *)&sa_bind[0],
1193 ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
1194 client_p, ConfigFileEntry.connect_timeout);
1195 }
1196 return 1;
1197 }
1198
1199 static void
1200 serv_connect_ssl_callback(rb_fde_t *F, int status, void *data)
1201 {
1202 struct Client *client_p = data;
1203 rb_fde_t *xF[2];
1204 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1205 if(status != RB_OK)
1206 {
1207 /* Print error message, just like non-SSL. */
1208 serv_connect_callback(F, status, data);
1209 return;
1210 }
1211 if(rb_socketpair(AF_UNIX, SOCK_STREAM, 0, &xF[0], &xF[1], "Outgoing ssld connection") == -1)
1212 {
1213 ilog_error("rb_socketpair failed for server");
1214 serv_connect_callback(F, RB_ERROR, data);
1215 return;
1216
1217 }
1218 client_p->localClient->F = xF[0];
1219 client_p->localClient->ssl_callback = serv_connect_ssl_open_callback;
1220
1221 client_p->localClient->ssl_ctl = start_ssld_connect(F, xF[1], connid_get(client_p));
1222 if(!client_p->localClient->ssl_ctl)
1223 {
1224 serv_connect_callback(client_p->localClient->F, RB_ERROR, data);
1225 return;
1226 }
1227 SetSSL(client_p);
1228 }
1229
1230 static int
1231 serv_connect_ssl_open_callback(struct Client *client_p, int status)
1232 {
1233 serv_connect_callback(client_p->localClient->F, status, client_p);
1234 return 1; /* suppress default exit_client handler for status != RB_OK */
1235 }
1236
1237 /*
1238 * serv_connect_callback() - complete a server connection.
1239 *
1240 * This routine is called after the server connection attempt has
1241 * completed. If unsucessful, an error is sent to ops and the client
1242 * is closed. If sucessful, it goes through the initialisation/check
1243 * procedures, the capabilities are sent, and the socket is then
1244 * marked for reading.
1245 */
1246 static void
1247 serv_connect_callback(rb_fde_t *F, int status, void *data)
1248 {
1249 struct Client *client_p = data;
1250 struct server_conf *server_p;
1251 char *errstr;
1252
1253 /* First, make sure its a real client! */
1254 s_assert(client_p != NULL);
1255 s_assert(client_p->localClient->F == F);
1256
1257 if(client_p == NULL)
1258 return;
1259
1260 /* while we were waiting for the callback, its possible this already
1261 * linked in.. --fl
1262 */
1263 if(find_server(NULL, client_p->name) != NULL)
1264 {
1265 exit_client(client_p, client_p, &me, "Server Exists");
1266 return;
1267 }
1268
1269 if(client_p->localClient->ssl_ctl == NULL)
1270 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1271
1272 /* Check the status */
1273 if(status != RB_OK)
1274 {
1275 /* COMM_ERR_TIMEOUT wont have an errno associated with it,
1276 * the others will.. --fl
1277 */
1278 if(status == RB_ERR_TIMEOUT || status == RB_ERROR_SSL)
1279 {
1280 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1281 "Error connecting to %s[%s]: %s",
1282 client_p->name,
1283 "255.255.255.255",
1284 rb_errstr(status));
1285 ilog(L_SERVER, "Error connecting to %s[%s]: %s",
1286 client_p->name, client_p->sockhost,
1287 rb_errstr(status));
1288 }
1289 else
1290 {
1291 errstr = strerror(rb_get_sockerr(F));
1292 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1293 "Error connecting to %s[%s]: %s (%s)",
1294 client_p->name,
1295 "255.255.255.255",
1296 rb_errstr(status), errstr);
1297 ilog(L_SERVER, "Error connecting to %s[%s]: %s (%s)",
1298 client_p->name, client_p->sockhost,
1299 rb_errstr(status), errstr);
1300 }
1301
1302 exit_client(client_p, client_p, &me, rb_errstr(status));
1303 return;
1304 }
1305
1306 /* COMM_OK, so continue the connection procedure */
1307 /* Get the C/N lines */
1308 if((server_p = client_p->localClient->att_sconf) == NULL)
1309 {
1310 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "Lost connect{} block for %s",
1311 client_p->name);
1312 exit_client(client_p, client_p, &me, "Lost connect{} block");
1313 return;
1314 }
1315
1316 if(server_p->certfp && (!client_p->certfp || rb_strcasecmp(server_p->certfp, client_p->certfp) != 0))
1317 {
1318 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1319 "Connection to %s has invalid certificate fingerprint %s",
1320 client_p->name, client_p->certfp);
1321 ilog(L_SERVER, "Access denied, invalid certificate fingerprint %s from %s",
1322 client_p->certfp, log_client_name(client_p, SHOW_IP));
1323
1324 exit_client(client_p, client_p, &me, "Invalid fingerprint.");
1325 return;
1326 }
1327
1328 /* Next, send the initial handshake */
1329 SetHandshake(client_p);
1330
1331 /* the server may be linking based on certificate fingerprint now. --nenolod */
1332 sendto_one(client_p, "PASS %s TS %d :%s",
1333 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
1334
1335 /* pass my info to the new server */
1336 send_capabilities(client_p, default_server_capabs | CAP_MASK
1337 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
1338 | (ServerConfTb(server_p) ? CAP_TB : 0));
1339
1340 sendto_one(client_p, "SERVER %s 1 :%s%s",
1341 me.name,
1342 ConfigServerHide.hidden ? "(H) " : "", me.info);
1343
1344 /*
1345 * If we've been marked dead because a send failed, just exit
1346 * here now and save everyone the trouble of us ever existing.
1347 */
1348 if(IsAnyDead(client_p))
1349 {
1350 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1351 "%s went dead during handshake", client_p->name);
1352 exit_client(client_p, client_p, &me, "Went dead during handshake");
1353 return;
1354 }
1355
1356 /* don't move to serv_list yet -- we haven't sent a burst! */
1357
1358 /* If we get here, we're ok, so lets start reading some data */
1359 read_packet(F, client_p);
1360 }
Unnamed repository; edit this file 'description' to name the repository.