#include <assert.h>
#include "../lib/irc_string.h"
#include "../lib/version.h"
+#include "../core/schedule.h"
#include "../irc/irc.h"
#include "../trusts/trusts.h"
#include "../control/control.h"
void _init() {
/* If we're connected to IRC, force a disconnect. */
if (connected) {
- irc_send("%s SQ %s 0 :Resync [adding gline support]",mynumeric->content,myserver->content); irc_disconnected();
+ irc_send("%s SQ %s 0 :Resync [adding gline support]", mynumeric->content, myserver->content);
+ irc_disconnected(0);
}
registerserverhandler("GL", handleglinemsg, 6);
registerhook(HOOK_CORE_STATSREQUEST, handleglinestats);
-
}
void _fini() {
deregisterhook(HOOK_CORE_STATSREQUEST, handleglinestats);
}
-static int countmatchingusers(const char *identmask, struct irc_in_addr *ip, unsigned char bits) {
- nick *np;
- int i;
- int count = 0;
-
- for(i=0;i<NICKHASHSIZE;i++)
- for (np=nicktable[i];np;np=np->next)
- if (ipmask_check(&np->p_nodeaddr, ip, bits) && match2strings(identmask, np->ident))
- count++;
-
- return count;
-}
-
-void glinesetmask(const char *mask, int duration, const char *reason, const char *creator) {
- gline *gl;
- time_t now = getnettime();
-
- if(strcmp(creator, "trusts_policy")==0) {
- controlwall(NO_OPER, NL_GLINES, "(NOT) Setting gline on '%s' lasting %s with reason '%s', created by: %s", mask, longtoduration(duration, 0), reason, creator);
- return;
- }
-
- if (!(gl = gline_find(mask))) {
- /* new gline */
- gl = gline_add(creator, mask, reason, now + duration, now, now + duration);
- gline_propagate(gl);
- } else {
- /* existing gline
- * in 1.4, can update expire, reason etc
- * in 1.3 can only activate an existing inactive gline */
- if(!(gl->flags & GLINE_ACTIVE))
- gline_activate(gl,0,1);
- }
-}
-
-void glineunsetmask(const char *mask) {
- gline *gl = gline_find(mask);
-
- if (gl && (gl->flags & GLINE_ACTIVE)) {
- controlwall(NO_OPER, NL_GLINES, "Deactivating gline on '%s'.", mask);
- gline_deactivate(gl, 0, 1);
- }
-}
-
-static void glinesetmask_cb(const char *mask, int hits, void *arg) {
- gline_params *gp = arg;
- glinesetmask(mask, gp->duration, gp->reason, gp->creator);
-}
-
-int glinesuggestbyip(const char *user, struct irc_in_addr *ip, unsigned char bits, int flags, gline_callback callback, void *uarg) {
- trusthost *th, *oth;
- int count;
- unsigned char nodebits;
-
- nodebits = getnodebits(ip);
-
- if (!(flags & GLINE_IGNORE_TRUST)) {
- th = th_getbyhost(ip);
-
- if(th && (th->group->flags & TRUST_RELIABLE_USERNAME)) { /* Trust with reliable usernames */
- count = 0;
-
- for(oth=th->group->hosts;oth;oth=oth->next)
- count += glinesuggestbyip(user, &oth->ip, oth->bits, flags | GLINE_ALWAYS_USER | GLINE_IGNORE_TRUST, callback, uarg);
-
- return count;
- }
- }
-
- if (!(flags & GLINE_ALWAYS_USER))
- user = "*";
-
- /* Widen gline to match the node mask. */
- if(nodebits<bits)
- bits = nodebits;
+int gline_match_nick(gline *gl, nick *np) {
+ if (gl->flags & GLINE_BADCHAN)
+ return 0;
- count = countmatchingusers(user, ip, bits);
+ if (gl->flags & GLINE_REALNAME) {
+ if (gl->user && match(gl->user->content, np->realname->name->content) != 0)
+ return 0;
- if (!(flags & GLINE_SIMULATE)) {
- char mask[512];
- snprintf(mask, sizeof(mask), "%s@%s", user, trusts_cidr2str(ip, bits));
- callback(mask, count, uarg);
+ return 1;
}
- return count;
-}
+ if (gl->nick && match(gl->nick->content, np->nick) != 0)
+ return 0;
-int glinebyip(const char *user, struct irc_in_addr *ip, unsigned char bits, int duration, const char *reason, int flags, const char *creator) {
- gline_params gp;
+ if (gl->user && match(gl->user->content, np->ident) != 0)
+ return 0;
- if(!(flags & GLINE_SIMULATE)) {
- int hits = glinesuggestbyip(user, ip, bits, flags | GLINE_SIMULATE, NULL, NULL);
- if(hits>MAXGLINEUSERS) {
- controlwall(NO_OPER, NL_GLINES, "Suggested gline(s) for '%s@%s' lasting %s with reason '%s' would hit %d users (limit: %d) - NOT SET.",
- user, trusts_cidr2str(ip, bits), longtoduration(duration, 0), reason, hits, MAXGLINEUSERS);
+ if (gl->flags & GLINE_IPMASK) {
+ if (!ipmask_check(&gl->ip, &np->ipaddress, gl->bits))
return 0;
- }
- }
-
- gp.duration = duration;
- gp.reason = reason;
- gp.creator = creator;
- return glinesuggestbyip(user, ip, bits, flags, glinesetmask_cb, &gp);
-}
-
-int glinesuggestbynick(nick *np, int flags, void (*callback)(const char *, int, void *), void *uarg) {
- if (flags & GLINE_ALWAYS_NICK) {
- if(!(flags & GLINE_SIMULATE)) {
- char mask[512];
- snprintf(mask, sizeof(mask), "%s!*@*", np->nick);
- callback(mask, 1, uarg);
- }
-
- return 1;
} else {
- return glinesuggestbyip(np->ident, &np->p_ipaddr, 128, flags, callback, uarg);
- }
-}
-
-int glinebynick(nick *np, int duration, const char *reason, int flags, const char *creator) {
- gline_params gp;
-
- if(!(flags & GLINE_SIMULATE)) {
- int hits = glinesuggestbyip(np->ident, &np->p_ipaddr, 128, flags | GLINE_SIMULATE, NULL, NULL);
- if(hits>MAXGLINEUSERS) {
- controlwall(NO_OPER, NL_GLINES, "Suggested gline(s) for nick '%s!%s@%s' lasting %s with reason '%s' would hit %d users (limit: %d) - NOT SET.",
- np->nick, np->ident, IPtostr(np->p_ipaddr), longtoduration(duration, 0), reason, hits, MAXGLINEUSERS);
+ if (gl->host && match(gl->host->content, np->host->name->content) != 0)
return 0;
- }
}
- gp.duration = duration;
- gp.reason = reason;
- gp.creator = creator;
- return glinesuggestbynick(np, flags, glinesetmask_cb, &gp);
+ return 1;
}
-gline *gline_add(const char *creator, const char *mask, const char *reason, time_t expire, time_t lastmod, time_t lifetime) {
- gline *gl;
-
- if (!(gl=makegline(mask))) { /* sets up nick,user,host,node and flags */
- /* couldn't process gline mask */
- Error("gline", ERR_WARNING, "Tried to add malformed G-Line %s!", mask);
+int gline_match_channel(gline *gl, channel *cp) {
+ if (!(gl->flags & GLINE_BADCHAN))
return 0;
- }
-
- gl->creator = getsstring(creator, 255);
- /* it's not unreasonable to assume gline is active, if we're adding a deactivated gline, we can remove this later */
- gl->flags |= GLINE_ACTIVE;
-
- gl->reason = getsstring(reason, 255);
- gl->expire = expire;
- gl->lastmod = lastmod;
- gl->lifetime = lifetime;
-
- gl->next = glinelist;
- glinelist = gl;
-
- return gl;
-}
-
-gline *makegline(const char *mask) {
- /* populate gl-> user,host,node,nick and set appropriate flags */
- int len;
- int foundat=-1,foundbang=-1;
- int foundwild=0;
- int i;
- struct irc_in_addr sin;
- unsigned char bits;
- gline *gl;
-
- Error("gline", ERR_FATAL,"processing: %s", mask);
- if (!(gl = newgline())) {
- Error("gline", ERR_ERROR, "Failed to allocate new gline");
- return NULL;
- }
-
- len=strlen(mask);
-
- switch (*mask ) {
- case '#':
- case '&':
- gl->flags |= GLINE_BADCHAN;
- gl->user = getsstring(mask, CHANNELLEN);
- return gl;
- case '$':
- switch (mask[1]) {
- case 'R':
- gl->flags |= GLINE_REALNAME;
- break;
- default:
- return 0;
- }
- gl->user = getsstring(mask,REALLEN);
- return gl;
- default:
- /* Default case of some host/ip/cidr mask */
- for (i=(len-1);i>=0;i--) {
- if (mask[i]=='@') {
- /* host */
- if ((len-i)-1 > HOSTLEN) {
- /* host too long */
- gl->flags |= GLINE_BADMASK;
- } else if (i==(len-1)) {
- /* no host supplied aka gline ends @ */
- gl->flags |= GLINE_BADMASK;
- } else if (i==(len-2) && mask[i+1]=='*') {
- /* Special case: "@*" */
- gl->flags |= GLINE_HOSTANY;
- } else {
- if (ipmask_parse(&mask[i+1], &sin, &bits) == 0) {
- /* we have some host string */
- gl->host=getsstring(&mask[i+1],HOSTLEN);
- if (foundwild) {
- gl->flags |= GLINE_HOSTMASK;
- } else {
- gl->flags |= GLINE_HOSTEXACT;
- }
- } else {
- /* we have a / so cidr gline */
- gl->ip = sin;
- gl->bits = bits;
- gl->host=getsstring(&mask[i+1],HOSTLEN);
- if (!is_normalized_ipmask(&sin, bits)) {
- gl->flags |= GLINE_BADMASK;
- }
- gl->flags |= GLINE_IPMASK;
- }
- }
- foundat=i;
- break;
- } else if (mask[i]=='?' || mask[i]=='*') {
- if (!foundwild) /* Mark last wildcard in string */
- foundwild=i;
- }
- }
- }
-
- if (foundat<0) {
- /* If there wasn't an @, this ban matches any host */
- gl->host=NULL;
- gl->flags |= GLINE_HOSTANY;
- }
-
- foundwild=0;
-
- for (i=0;i<foundat;i++) {
- if (mask[i]=='!') {
- if (i==0) {
- /* Invalid mask: nick is empty */
- gl->flags |= GLINE_NICKNULL;
- gl->nick=NULL;
- } else if (i==1 && mask[0]=='*') {
- /* matches any nick */
- gl->flags |= GLINE_NICKANY;
- gl->nick=NULL;
- } else {
- if (i>NICKLEN) {
- /* too long */
- gl->flags |= GLINE_BADMASK;
- }
- gl->nick=getsstring(mask,i);
- if (foundwild)
- gl->flags |= GLINE_NICKMASK;
- else
- gl->flags |= GLINE_NICKEXACT;
- }
- foundbang=i;
- break;
- } else if (mask[i]=='?' || mask[i]=='*') {
- if (i<NICKLEN) {
- foundwild=1;
- }
- }
- }
-
- if (foundbang<0) {
- /* We didn't find a !, what we do now depends on what happened
- * with the @ */
- if (foundat<0) {
- /* A gline with no ! or @ is treated as a host gline only */
- /* Note that we've special-cased "*" at the top, so we can only
- * hit the MASK or EXACT case here. */
- gl->host=getsstring(mask,len);
-
- if (foundwild)
- gl->flags |= GLINE_HOSTMASK;
- else
- gl->flags |= GLINE_HOSTEXACT;
-
- gl->flags |= (GLINE_USERANY | GLINE_NICKANY);
- gl->nick=NULL;
- gl->user=NULL;
- } else {
- /* A gline with @ only is treated as user@host */
- gl->nick=NULL;
- gl->flags |= GLINE_NICKANY;
- }
- }
-
- if (foundat>=0) {
- /* We found an @, so everything between foundbang+1 and foundat-1 is supposed to be ident */
- /* This is true even if there was no !.. */
- if (foundat==(foundbang+1)) {
- /* empty ident matches nothing */ /*@@@TODO: * for glines? */
- gl->flags |= (GLINE_BADMASK | GLINE_USERNULL);
- } else if (foundat - foundbang - 1 > USERLEN) {
- /* It's too long.. */
- gl->flags |= GLINE_BADMASK;
- } else if ((foundat - foundbang - 1 == 1) && mask[foundbang+1]=='*') {
- gl->flags |= GLINE_USERANY;
- } else {
- gl->user=getsstring(&mask[foundbang+1],(foundat-foundbang-1));
- if (strchr(gl->user->content,'*') || strchr(gl->user->content,'?'))
- gl->flags |= GLINE_USERMASK;
- else
- gl->flags |= GLINE_USEREXACT;
- }
- /* Username part can't contain an @ */
- if (gl->user && strchr(gl->user->content,'@')) {
- gl->flags |= GLINE_BADMASK;
- }
- }
-
- assert(gl->flags & (GLINE_USEREXACT | GLINE_USERMASK | GLINE_USERANY | GLINE_USERNULL));
- assert(gl->flags & (GLINE_NICKEXACT | GLINE_NICKMASK | GLINE_NICKANY | GLINE_NICKNULL));
- assert(gl->flags & (GLINE_HOSTEXACT | GLINE_HOSTMASK | GLINE_HOSTANY | GLINE_HOSTNULL | GLINE_IPMASK));
-
- if (gl->flags & GLINE_BADMASK) {
- Error("gline", ERR_WARNING, "BADMASK: %s", mask);
- return 0;
- }
-
- /* Start: Safety Check for now... */
- if ( strcmp( glinetostring(gl), mask ) ) {
- /* oper can specify * to glist, ircd by default converts * to *!*@* */
- if ( ((gl->flags & ( GLINE_USERANY | GLINE_NICKANY | GLINE_HOSTANY )) == ( GLINE_USERANY | GLINE_NICKANY | GLINE_HOSTANY )) && !strcmp("*",mask)){
- return gl;
- }
- /* oper can specifiy *@host, ircd by default converst *@host to *!*@host */
- if ( ((gl->flags & ( GLINE_NICKANY )) == ( GLINE_NICKANY )) && (mask[1]!='!') ) {
- Error("gline", ERR_WARNING, "different: %s %s", glinetostring(gl), mask);
- return gl;
- }
-
- Error("gline", ERR_WARNING, "DIFFERENT: %s %s", glinetostring(gl), mask);
- }
- /* End: Safety Check for now... */
+ if (match(gl->user->content, cp->index->name->content) != 0)
+ return 0;
- return gl;
+ return 1;
}
-gline *gline_find(const char *mask) {
- gline *gl, *sgl;
+gline *findgline(const char *mask) {
+ gline *gl, *next;
gline *globalgline;
time_t curtime = time(0);
- if(!(globalgline=makegline(mask))) {
- /* gline mask couldn't be processed */
- return 0;
- }
+ globalgline = makegline(mask);
+
+ if (!globalgline)
+ return NULL; /* gline mask couldn't be processed */
- for (gl = glinelist; gl; gl = sgl) {
- sgl = gl->next;
+ for (gl = glinelist; gl; gl = next) {
+ next = gl->next;
if (gl->lifetime <= curtime) {
removegline(gl);
return 0;
}
-char *glinetostring(gline *g) {
- static char outstring[NICKLEN+USERLEN+HOSTLEN+5]; /* check */
- int strpos=0;
-
- if (g->flags & GLINE_REALNAME) {
- if (g->user)
- strpos += sprintf(outstring+strpos, "%s", g->user->content);
- /* @@ todo $R*
- * add $R (not check badchans need same?) */
- return outstring;
- }
-
- if (g->flags & GLINE_BADCHAN) {
- if (g->user)
- strpos += sprintf(outstring+strpos, "%s", g->user->content);
- return outstring;
- }
+void gline_activate(gline *agline, time_t lastmod, int propagate) {
+ time_t now = getnettime();
- if (g->flags & GLINE_NICKANY) {
- strpos += sprintf(outstring+strpos,"*");
- } else if (g->nick) {
- strpos += sprintf(outstring+strpos,"%s", g->nick->content);
- }
+ agline->flags |= GLINE_ACTIVE;
- strpos += sprintf(outstring+strpos, "!");
+ if (lastmod)
+ agline->lastmod = lastmod;
+ else if (now <= agline->lastmod)
+ agline->lastmod++;
+ else
+ agline->lastmod = now;
- if (g->flags & GLINE_USERANY) {
- strpos += sprintf(outstring+strpos, "*");
- } else if (g->user) {
- strpos += sprintf(outstring+strpos, "%s", g->user->content);
- }
+ if (propagate)
+ gline_propagate(agline);
+}
- strpos += sprintf(outstring+strpos, "@");
+void gline_deactivate(gline *agline, time_t lastmod, int propagate) {
+ time_t now = getnettime();
- if (g->flags & GLINE_HOSTANY) {
- strpos += sprintf(outstring+strpos, "*");
- } else if (g->host) {
- strpos += sprintf(outstring+strpos, "%s", g->host->content);
- } else if (g->flags & GLINE_IPMASK) {
- strpos += sprintf(outstring+strpos, "%s", g->host->content);
+ if (agline->lastmod == 0) {
+ Error("gline", ERR_WARNING, "Tried to deactivate gline with lastmod == 0: %s", glinetostring(agline));
+ return;
}
- return outstring;
-}
-gline *gline_activate(gline *agline, time_t lastmod, int propagate) {
- time_t now = getnettime();
- agline->flags |= GLINE_ACTIVE;
+ agline->flags &= ~GLINE_ACTIVE;
- if (lastmod) {
+ if (lastmod)
agline->lastmod = lastmod;
- } else {
- if(now<=agline->lastmod)
- agline->lastmod++;
- else
- agline->lastmod=now;
- }
+ else if (now <= agline->lastmod)
+ agline->lastmod++;
+ else
+ agline->lastmod = now;
if (propagate)
gline_propagate(agline);
-
- return agline;
}
-gline *gline_deactivate(gline *agline, time_t lastmod, int propagate) {
+void gline_destroy(gline *agline, time_t lastmod, int propagate) {
time_t now = getnettime();
+
agline->flags &= ~GLINE_ACTIVE;
+ agline->flags |= GLINE_DESTROYED;
- if (lastmod) {
- agline->lastmod = lastmod;
- } else {
- if(now<=agline->lastmod)
- agline->lastmod++;
- else
- agline->lastmod=now;
+ if (agline->lastmod == 0) {
+ Error("gline", ERR_WARNING, "Tried to destroy gline with lastmod == 0: %s", glinetostring(agline));
+ return;
}
+ if (lastmod)
+ agline->lastmod = lastmod;
+ else if (now <= agline->lastmod)
+ agline->lastmod++;
+ else
+ agline->lastmod = now;
+
if (propagate)
gline_propagate(agline);
- return agline;
+ removegline(agline);
}
void gline_propagate(gline *agline) {
- if (agline->flags & GLINE_ACTIVE) {
- controlwall(NO_OPER, NL_GLINES, "Setting gline on '%s' lasting %s with reason '%s', created by: %s", glinetostring(agline), longtoduration(agline->expire-getnettime(),0), agline->reason->content, agline->creator->content);
- irc_send("%s GL * +%s %lu %lu :%s\r\n", mynumeric->content, glinetostring(agline), agline->expire - getnettime(), agline->lastmod, agline->reason->content);
+ /* Don't propagate Ulined glines. */
+ if (agline->lastmod == 0) {
+ Error("gline", ERR_WARNING, "Tried to propagate gline with lastmod == 0: %s", glinetostring(agline));
+ return;
+ }
+
+#if SNIRCD_VERSION >= 140
+#error TODO: implement 6 parameter glines for snircd >=1.4.0
+#endif /* SNIRCD_VERSION */
+
+ if (agline->flags & GLINE_DESTROYED) {
+#if SNIRCD_VERSION < 135
+ controlwall(NO_OPER, NL_GLINES_AUTO, "Tried to destroy G-Line on '%s' however SNIRCD_VERSION is too old.", glinetostring(agline));
+#else
+ controlwall(NO_OPER, NL_GLINES_AUTO, "Destroying G-Line on '%s' lasting %s with reason '%s', created by: %s",
+ glinetostring(agline), longtoduration(agline->expire-getnettime(), 0),
+ agline->reason ? agline->reason->content : "", agline->creator->content);
+
+ irc_send("%s GL * %%-%s %lu %lu :%s\r\n", mynumeric->content,
+ glinetostring(agline), agline->expire - getnettime(),
+ agline->lastmod, agline->reason ? agline->reason->content : "");
+#endif /* SNIRCD_VERSION */
+ } else if (agline->flags & GLINE_ACTIVE) {
+ controlwall(NO_OPER, NL_GLINES_AUTO, "Activating G-Line on '%s' lasting %s created by %s with reason '%s'",
+ glinetostring(agline), longtoduration(agline->expire-getnettime(), 0),
+ agline->creator->content, agline->reason ? agline->reason->content : "");
+
+ irc_send("%s GL * +%s %lu %lu :%s\r\n", mynumeric->content,
+ glinetostring(agline), agline->expire - getnettime(),
+ agline->lastmod, agline->reason ? agline->reason->content : "");
} else {
- irc_send("%s GL * -%s %lu %lu :%s\r\n", mynumeric->content, glinetostring(agline), agline->expire - getnettime(), agline->lastmod, agline->reason->content);
+ controlwall(NO_OPER, NL_GLINES_AUTO, "Deactivating G-Line on '%s' lasting %s created by %s with reason '%s'",
+ glinetostring(agline), longtoduration(agline->expire-getnettime(), 0),
+ agline->creator->content, agline->reason ? agline->reason->content : "");
+
+ irc_send("%s GL * -%s %lu %lu :%s\r\n", mynumeric->content,
+ glinetostring(agline), agline->expire - getnettime(),
+ agline->lastmod, agline->reason ? agline->reason->content : "");
}
}
/* returns non-zero if the glines are exactly the same */
int glineequal(gline *gla, gline *glb) {
- if ((!gla->nick && glb->nick) || (gla->nick && !glb->nick))
+ if ((gla->flags & GLINE_BADCHAN) != (glb->flags & GLINE_BADCHAN))
return 0;
- if (gla->nick && ircd_strcmp(gla->nick->content,glb->nick->content))
+ if ((gla->flags & GLINE_REALNAME) != (glb->flags & GLINE_REALNAME))
return 0;
- if ((!gla->user && glb->user) || (gla->user && !glb->user))
+ if ((gla->flags & GLINE_IPMASK) != (glb->flags & GLINE_IPMASK))
+ return 0;
+
+ if ((!gla->nick && glb->nick) || (gla->nick && !glb->nick))
return 0;
- if (gla->user && ircd_strcmp(gla->user->content,glb->user->content))
+ if (gla->nick && ircd_strcmp(gla->nick->content, glb->nick->content) != 0)
return 0;
- if ((!gla->host && glb->host) || (gla->host && !glb->host))
+ if ((!gla->user && glb->user) || (gla->user && !glb->user))
return 0;
- if (gla->host && ircd_strcmp(gla->host->content,glb->host->content))
+ if (gla->user && ircd_strcmp(gla->user->content, glb->user->content) != 0)
return 0;
- /* TODO @@@ match bits flags */
+ if (gla->flags & GLINE_IPMASK) {
+ if (gla->bits != glb->bits)
+ return 0;
+
+ if (!ipmask_check(&gla->ip, &glb->ip, gla->bits))
+ return 0;
+ } else {
+ if ((!gla->host && glb->host) || (gla->host && !glb->host))
+ return 0;
+
+ if (gla->host && ircd_strcmp(gla->host->content, glb->host->content) != 0)
+ return 0;
+ }
+
return 1;
}
/* returns non-zero on match */
-int gline_match_mask( gline *gla, gline *glb) {
- if ((!gla->nick && glb->nick) || (gla->nick && !glb->nick))
+int gline_match_mask(gline *gla, gline *glb) {
+ if ((gla->flags & GLINE_BADCHAN) != (glb->flags & GLINE_BADCHAN))
return 0;
- if (gla->nick && match(gla->nick->content,glb->nick->content))
+ if ((gla->flags & GLINE_REALNAME) != (glb->flags & GLINE_REALNAME))
return 0;
- // TODO should check for ANY etc
- if ((!gla->user && glb->user) || (gla->user && !glb->user))
+ if (gla->nick && !glb->nick)
return 0;
- if (gla->user && match(gla->user->content,glb->user->content))
+ if (gla->nick && glb->nick && match(gla->nick->content, glb->nick->content) != 0)
return 0;
- if ((!gla->host && glb->host) || (gla->host && !glb->host))
+ if (gla->user && !glb->user)
return 0;
- if (gla->host && match(gla->host->content,glb->host->content))
+ if (gla->user && glb->user && match(gla->user->content, glb->user->content) != 0)
return 0;
- /* TODO @@@ match bits flags */
+ if (gla->flags & GLINE_IPMASK && glb->flags & GLINE_IPMASK) {
+ if (gla->bits > glb->bits)
+ return 0;
+
+ if (!ipmask_check(&gla->ip, &glb->ip, gla->bits))
+ return 0;
+ } else {
+ if (gla->host && !glb->host)
+ return 0;
+
+ if (gla->host && glb->host && match(gla->host->content, glb->host->content) != 0)
+ return 0;
+ }
+
return 1;
}
-int gline_match_nick(gline *gl, nick *np) {
- return 0;
-}
+int isglinesane(gline *gl, const char **hint) {
+ int wildcard, nowildcardcount;
+ char *pos;
+ trusthost *th;
-int gline_match_channel(gline *gl, channel *cp) {
- return 0;
+ /* Reason is too short */
+ if (!gl->reason || strlen(gl->reason->content) < MINGLINEREASONLEN) {
+ *hint = "G-Line reason is too short.";
+ return 0;
+ }
+
+ /* Duration is too long */
+ if (gl->expire - getnettime() > MAXGLINEDURATION) {
+ *hint = "G-Line duration is too long.";
+ return 0;
+ }
+
+ /* Hits all realnames. */
+ if ((gl->flags & GLINE_REALNAME) && !gl->user) {
+ *hint = "Matches all realnames.";
+ return 0;
+ }
+
+ /* Hits all local/non-local channels. */
+ if ((gl->flags & GLINE_BADCHAN) && (strcmp(gl->user->content, "&*") == 0 || strcmp(gl->user->content, "#*") == 0)) {
+ *hint = "Matches all local/non-local channels.";
+ return 0;
+ }
+
+ /* Hostmask is too long. */
+ if (!(gl->flags & (GLINE_BADCHAN | GLINE_REALNAME)) &&
+ ((gl->nick && strlen(gl->nick->content) > NICKLEN) ||
+ (gl->user && strlen(gl->user->content) > USERLEN) ||
+ (gl->host && strlen(gl->host->content) > HOSTLEN))) {
+ *hint = "Hostmask components are too long.";
+ return 0;
+ }
+
+ /* Skip the other checks for nickname glines. */
+ if (gl->nick)
+ return 1;
+
+ /* Mask wider than /16 for IPv4 or /32 for IPv6. */
+ if ((gl->flags & GLINE_IPMASK) && gl->bits < (irc_in_addr_is_ipv4(&gl->ip) ? (96 + 16) : 32)) {
+ *hint = "CIDR mask too wide.";
+ return 0;
+ }
+
+ /* Doesn't have at least two non-wildcarded host components. */
+ if (gl->flags & GLINE_HOSTMASK) {
+ nowildcardcount = 0;
+
+ wildcard = 0;
+ pos = gl->host->content;
+
+ for (;;) {
+ switch (*pos) {
+ case '*':
+ /* fall through */
+ case '?':
+ wildcard = 1;
+ break;
+
+ case '.':
+ case '\0':
+ if (!wildcard)
+ nowildcardcount++;
+ else
+ wildcard = 0;
+
+ if (*pos == '\0')
+ pos = NULL; /* Leave the loop. */
+
+ break;
+ }
+
+ if (pos)
+ pos++;
+ else
+ break;
+ }
+
+ if (nowildcardcount < 2) {
+ *hint = "Needs at least 2 non-wildcarded host components.";
+ return 0;
+ }
+ }
+
+ /* Wildcard username match for trusted host with reliable usernames. */
+ if ((gl->flags & GLINE_IPMASK) && (!gl->user || strchr(gl->user->content, '*') || strchr(gl->user->content, '?'))) {
+ th = th_getbyhost(&gl->ip);
+
+ if (th && (th->group->flags & TRUST_RELIABLE_USERNAME)) {
+ *hint = "Wildcard username match for a trusted host that has reliable usernames.";
+ return 0;
+ }
+ }
+
+ return 1;
}
+gline *glinedup(gline *gl) {
+ gline *sgl;
+
+ sgl = newgline();
+
+ if (!sgl)
+ return NULL;
+
+ if (gl->nick)
+ sgl->nick = getsstring(gl->nick->content, 512);
+
+ if (gl->user)
+ sgl->user = getsstring(gl->user->content, 512);
+
+ if (gl->host)
+ sgl->host = getsstring(gl->host->content, 512);
+
+ sgl->reason = gl->reason ? getsstring(gl->reason->content, 512) : NULL;
+ sgl->creator = getsstring(gl->creator->content, 512);
+
+ memcpy(&sgl->ip, &gl->ip, sizeof(gl->ip));
+ sgl->bits = gl->bits;
+
+ sgl->expire = gl->expire;
+ sgl->lastmod = gl->lastmod;
+ sgl->lifetime = gl->lifetime;
+
+ sgl->flags = gl->flags;
+
+ return sgl;
+}
projects / irc / quakenet / newserv.git / blobdiff