]> jfr.im git - solanum.git/blame - ircd/s_conf.c
projects / solanum.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
free server_p->certfp, allocated in newconf.c
[solanum.git] / ircd / s_conf.c
CommitLineData
212380e3
AC		 1/*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
212380e3
AC		 23 */
24
25#include "stdinc.h"
26#include "ircd_defs.h"
212380e3
AC		 27#include "s_conf.h"
28#include "s_newconf.h"
8b801ad1 29#include "newconf.h"
212380e3
AC		 30#include "s_serv.h"
31#include "s_stats.h"
32#include "channel.h"
33#include "class.h"
34#include "client.h"
212380e3 35#include "hash.h"
4562c604 36#include "match.h"
212380e3
AC		 37#include "ircd.h"
38#include "listener.h"
39#include "hostmask.h"
40#include "modules.h"
41#include "numeric.h"
4016731b 42#include "logger.h"
212380e3 43#include "send.h"
212380e3
AC		 44#include "reject.h"
45#include "cache.h"
422bb0b5 46#include "privilege.h"
c6d72037 47#include "sslproc.h"
c53ca1e0 48#include "wsproc.h"
80c9ac51 49#include "bandbi.h"
27f616dd 50#include "operhash.h"
c55b2782 51#include "chmode.h"
7d603754 52#include "hook.h"
77d3d2db 53#include "s_assert.h"
64fae260 54#include "authproc.h"
01978a2c 55#include "supported.h"
212380e3
AC		 56
57struct config_server_hide ConfigServerHide;
58
6ab8c0d3 59extern int yyparse(void); /* defined in y.tab.c */
401cb2bb 60extern char yy_linebuf[16384]; /* defined in ircd_lexer.l */
212380e3 61
398b6a73 62static rb_bh *confitem_heap = NULL;
212380e3 63
9197bc35
JT		 64rb_dlink_list prop_bans;
65
330fc5c1
AC		 66rb_dlink_list temp_klines[LAST_TEMP_TYPE];
67rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
68rb_dlink_list service_list;
212380e3
AC		 69
70/* internally defined functions */
71static void set_default_conf(void);
72static void validate_conf(void);
29c92cf9 73static void read_conf(void);
212380e3
AC		 74static void clear_out_old_conf(void);
75
9197bc35 76static void expire_prop_bans(void *list);
212380e3
AC		 77static void expire_temp_kd(void *list);
78static void reorganise_temp_kd(void *list);
79
80FILE *conf_fbfile_in;
81extern char yytext[];
82
83static int verify_access(struct Client *client_p, const char *username);
b4a7304c 84static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
212380e3
AC		 85static int attach_iline(struct Client *, struct ConfItem *);
86
87void
88init_s_conf(void)
89{
b2c190a6 90 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
212380e3 91
9197bc35
JT		 92 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
93
12aea5fe
VY		 94 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
95 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
212380e3 96
12aea5fe 97 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
212380e3 98 &temp_klines[TEMP_HOUR], 3600);
12aea5fe 99 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
212380e3 100 &temp_dlines[TEMP_HOUR], 3600);
12aea5fe 101 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
212380e3 102 &temp_klines[TEMP_DAY], 86400);
12aea5fe 103 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
212380e3 104 &temp_dlines[TEMP_DAY], 86400);
12aea5fe 105 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
212380e3 106 &temp_klines[TEMP_WEEK], 604800);
12aea5fe 107 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
212380e3
AC		 108 &temp_dlines[TEMP_WEEK], 604800);
109}
110
111/*
112 * make_conf
113 *
114 * inputs - none
115 * output - pointer to new conf entry
116 * side effects - none
117 */
118struct ConfItem *
119make_conf()
120{
121 struct ConfItem *aconf;
122
398b6a73 123 aconf = rb_bh_alloc(confitem_heap);
212380e3
AC		 124 aconf->status = CONF_ILLEGAL;
125 return (aconf);
126}
127
128/*
129 * free_conf
130 *
131 * inputs - pointer to conf to free
132 * output - none
133 * side effects - crucial password fields are zeroed, conf is freed
134 */
135void
136free_conf(struct ConfItem *aconf)
137{
138 s_assert(aconf != NULL);
139 if(aconf == NULL)
140 return;
141
142 /* security.. */
143 if(aconf->passwd)
144 memset(aconf->passwd, 0, strlen(aconf->passwd));
145 if(aconf->spasswd)
146 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
147
637c4932
VY		 148 rb_free(aconf->passwd);
149 rb_free(aconf->spasswd);
637c4932
VY		 150 rb_free(aconf->className);
151 rb_free(aconf->user);
152 rb_free(aconf->host);
212380e3 153
27f616dd
JT		 154 if(IsConfBan(aconf))
155 operhash_delete(aconf->info.oper);
156 else
157 rb_free(aconf->info.name);
158
398b6a73 159 rb_bh_free(confitem_heap, aconf);
212380e3
AC		 160}
161
162/*
163 * check_client
164 *
165 * inputs - pointer to client
166 * output - 0 = Success
167 * NOT_AUTHORISED (-1) = Access denied (no I line match)
85368a13 168 * I_SOCKET_ERROR (-2) = Bad socket.
212380e3
AC		 169 * I_LINE_FULL (-3) = I-line is full
170 * TOO_MANY (-4) = Too many connections from hostname
171 * BANNED_CLIENT (-5) = K-lined
172 * side effects - Ordinary client access check.
173 * Look for conf lines which have the same
174 * status as the flags passed.
175 */
176int
177check_client(struct Client *client_p, struct Client *source_p, const char *username)
178{
179 int i;
180
212380e3
AC		 181 if((i = verify_access(source_p, username)))
182 {
55abcbb2 183 ilog(L_FUSER, "Access denied: %s[%s]",
212380e3
AC		 184 source_p->name, source_p->sockhost);
185 }
55abcbb2 186
212380e3
AC		 187 switch (i)
188 {
85368a13 189 case I_SOCKET_ERROR:
212380e3
AC		 190 exit_client(client_p, source_p, &me, "Socket Error");
191 break;
192
193 case TOO_MANY_LOCAL:
606384ae
JT		 194 /* Note that these notices are sent to opers on other
195 * servers also, so even if local opers are allowed to
196 * see the IP, we still cannot send it.
197 */
212380e3
AC		 198 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
199 "Too many local connections for %s!%s%s@%s",
200 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 201 source_p->username,
202 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 203
204 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
205 source_p->name, IsGotId(source_p) ? "" : "~",
55abcbb2 206 source_p->username, source_p->sockhost);
212380e3 207
47adde3d 208 ServerStats.is_ref++;
212380e3
AC		 209 exit_client(client_p, source_p, &me, "Too many host connections (local)");
210 break;
211
212 case TOO_MANY_GLOBAL:
213 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
214 "Too many global connections for %s!%s%s@%s",
215 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 216 source_p->username,
217 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 218 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
219 source_p->name, IsGotId(source_p) ? "" : "~",
220 source_p->username, source_p->sockhost);
221
47adde3d 222 ServerStats.is_ref++;
212380e3
AC		 223 exit_client(client_p, source_p, &me, "Too many host connections (global)");
224 break;
225
226 case TOO_MANY_IDENT:
227 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
228 "Too many user connections for %s!%s%s@%s",
229 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 230 source_p->username,
231 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 232 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
233 source_p->name, IsGotId(source_p) ? "" : "~",
234 source_p->username, source_p->sockhost);
235
47adde3d 236 ServerStats.is_ref++;
212380e3
AC		 237 exit_client(client_p, source_p, &me, "Too many user connections (global)");
238 break;
239
240 case I_LINE_FULL:
241 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
242 "I-line is full for %s!%s%s@%s (%s).",
243 source_p->name, IsGotId(source_p) ? "" : "~",
244 source_p->username, source_p->host,
4b7e6904 245 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
212380e3 246
55abcbb2 247 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
212380e3
AC		 248 source_p->name, IsGotId(source_p) ? "" : "~",
249 source_p->username, source_p->sockhost);
250
47adde3d 251 ServerStats.is_ref++;
212380e3
AC		 252 exit_client(client_p, source_p, &me,
253 "No more connections allowed in your connection class");
254 break;
255
256 case NOT_AUTHORISED:
257 {
258 int port = -1;
d86692fa 259 port = ntohs(GET_SS_PORT(&source_p->localClient->listener->addr));
55abcbb2 260
47adde3d 261 ServerStats.is_ref++;
212380e3
AC		 262 /* jdc - lists server name & port connections are on */
263 /* a purely cosmetical change */
264 /* why ipaddr, and not just source_p->sockhost? --fl */
265#if 0
266 static char ipaddr[HOSTIPLEN];
caa4d9d2 267 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
212380e3
AC		 268#endif
269 sendto_realops_snomask(SNO_UNAUTH, L_ALL,
270 "Unauthorised client connection from "
271 "%s!%s%s@%s [%s] on [%s/%u].",
272 source_p->name, IsGotId(source_p) ? "" : "~",
273 source_p->username, source_p->host,
274 source_p->sockhost,
275 source_p->localClient->listener->name, port);
276
277 ilog(L_FUSER,
278 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
279 source_p->name, IsGotId(source_p) ? "" : "~",
280 source_p->username, source_p->sockhost,
281 source_p->localClient->listener->name, port);
35f6f850 282 add_reject(client_p, NULL, NULL);
212380e3
AC		 283 exit_client(client_p, source_p, &me,
284 "You are not authorised to use this server");
285 break;
286 }
287 case BANNED_CLIENT:
212380e3 288 exit_client(client_p, client_p, &me, "*** Banned ");
47adde3d 289 ServerStats.is_ref++;
212380e3
AC		 290 break;
291
292 case 0:
293 default:
294 break;
295 }
296 return (i);
297}
298
299/*
300 * verify_access
301 *
302 * inputs - pointer to client to verify
303 * - pointer to proposed username
304 * output - 0 if success -'ve if not
305 * side effect - find the first (best) I line to attach.
306 */
307static int
308verify_access(struct Client *client_p, const char *username)
309{
310 struct ConfItem *aconf;
212380e3 311
b4a7304c 312 aconf = find_address_conf_by_client(client_p, username);
212380e3
AC		 313 if(aconf == NULL)
314 return NOT_AUTHORISED;
315
316 if(aconf->status & CONF_CLIENT)
317 {
318 if(aconf->flags & CONF_FLAGS_REDIR)
319 {
88520303 320 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
27f616dd 321 aconf->info.name ? aconf->info.name : "", aconf->port);
212380e3
AC		 322 return (NOT_AUTHORISED);
323 }
324
212380e3
AC		 325 /* Thanks for spoof idea amm */
326 if(IsConfDoSpoofIp(aconf))
327 {
328 char *p;
329
330 /* show_ip() depends on this --fl */
331 SetIPSpoof(client_p);
332
333 if(IsConfSpoofNotice(aconf))
334 {
335 sendto_realops_snomask(SNO_GENERAL, L_ALL,
336 "%s spoofing: %s as %s",
337 client_p->name,
27f616dd
JT		 338 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
339 aconf->info.name);
212380e3
AC		 340 }
341
342 /* user@host spoof */
27f616dd 343 if((p = strchr(aconf->info.name, '@')) != NULL)
212380e3
AC		 344 {
345 char *host = p+1;
346 *p = '\0';
347
27f616dd 348 rb_strlcpy(client_p->username, aconf->info.name,
212380e3 349 sizeof(client_p->username));
f427c8b0 350 rb_strlcpy(client_p->host, host,
212380e3
AC		 351 sizeof(client_p->host));
352 *p = '@';
353 }
354 else
27f616dd 355 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
212380e3
AC		 356 }
357 return (attach_iline(client_p, aconf));
358 }
359 else if(aconf->status & CONF_KILL)
360 {
361 if(ConfigFileEntry.kline_with_reason)
212380e3 362 sendto_one(client_p,
92fb5c31 363 form_str(ERR_YOUREBANNEDCREEP),
a12ad044
JT		 364 me.name, client_p->name,
365 get_user_ban_reason(aconf));
35f6f850 366 add_reject(client_p, aconf->user, aconf->host);
212380e3
AC		 367 return (BANNED_CLIENT);
368 }
212380e3
AC		 369
370 return NOT_AUTHORISED;
371}
372
373
b4a7304c
JT		 374/*
375 * find_address_conf_by_client
376 */
377static struct ConfItem *
378find_address_conf_by_client(struct Client *client_p, const char *username)
379{
380 struct ConfItem *aconf;
381 char non_ident[USERLEN + 1];
382
383 if(IsGotId(client_p))
384 {
385 aconf = find_address_conf(client_p->host, client_p->sockhost,
386 client_p->username, client_p->username,
387 (struct sockaddr *) &client_p->localClient->ip,
e867208d 388 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 389 client_p->localClient->auth_user);
390 }
391 else
392 {
393 rb_strlcpy(non_ident, "~", sizeof(non_ident));
394 rb_strlcat(non_ident, username, sizeof(non_ident));
395 aconf = find_address_conf(client_p->host, client_p->sockhost,
396 non_ident, client_p->username,
397 (struct sockaddr *) &client_p->localClient->ip,
e867208d 398 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 399 client_p->localClient->auth_user);
400 }
401 return aconf;
402}
403
404
212380e3
AC		 405/*
406 * add_ip_limit
55abcbb2 407 *
212380e3
AC		 408 * Returns 1 if successful 0 if not
409 *
410 * This checks if the user has exceed the limits for their class
411 * unless of course they are exempt..
412 */
413
414static int
415add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
416{
b2c190a6 417 rb_patricia_node_t *pnode;
e33e589c 418 int bitlen;
212380e3
AC		 419
420 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 421 if(ConfCidrAmount(aconf) == 0
422 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 423 return -1;
424
b2c190a6 425 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3 426
e33e589c
JT		 427 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
428 bitlen = ConfCidrIpv4Bitlen(aconf);
429 else
430 bitlen = ConfCidrIpv6Bitlen(aconf);
431
212380e3 432 if(pnode == NULL)
e33e589c 433 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
212380e3
AC		 434
435 s_assert(pnode != NULL);
436
437 if(pnode != NULL)
438 {
e33e589c 439 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
212380e3
AC		 440 {
441 /* This should only happen if the limits are set to 0 */
e33e589c 442 if((intptr_t)pnode->data == 0)
212380e3 443 {
b2c190a6 444 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 445 }
446 return (0);
447 }
448
e33e589c 449 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
212380e3
AC		 450 }
451 return 1;
452}
453
454static void
455remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
456{
b2c190a6 457 rb_patricia_node_t *pnode;
212380e3
AC		 458
459 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 460 if(ConfCidrAmount(aconf) == 0
461 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 462 return;
463
b2c190a6 464 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3
AC		 465 if(pnode == NULL)
466 return;
467
e33e589c
JT		 468 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
469 if(((intptr_t)pnode->data) == 0)
212380e3 470 {
b2c190a6 471 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 472 }
473
474}
475
476/*
477 * attach_iline
478 *
479 * inputs - client pointer
480 * - conf pointer
481 * output -
482 * side effects - do actual attach
483 */
484static int
485attach_iline(struct Client *client_p, struct ConfItem *aconf)
486{
487 struct Client *target_p;
330fc5c1 488 rb_dlink_node *ptr;
212380e3
AC		 489 int local_count = 0;
490 int global_count = 0;
491 int ident_count = 0;
15f92147 492 int unidented;
212380e3
AC		 493
494 if(IsConfExemptLimits(aconf))
495 return (attach_conf(client_p, aconf));
496
15f92147
JT		 497 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
498 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
212380e3
AC		 499
500 /* find_hostname() returns the head of the list to search */
5cefa1d6 501 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
212380e3
AC		 502 {
503 target_p = ptr->data;
504
505 if(irccmp(client_p->host, target_p->orighost) != 0)
506 continue;
507
508 if(MyConnect(target_p))
509 local_count++;
510
511 global_count++;
512
513 if(unidented)
514 {
515 if(*target_p->username == '~')
516 ident_count++;
517 }
518 else if(irccmp(target_p->username, client_p->username) == 0)
519 ident_count++;
520
521 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
522 return (TOO_MANY_LOCAL);
523 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
524 return (TOO_MANY_GLOBAL);
525 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
526 return (TOO_MANY_IDENT);
527 }
528
529
530 return (attach_conf(client_p, aconf));
531}
532
533/*
534 * detach_conf
535 *
536 * inputs - pointer to client to detach
537 * output - 0 for success, -1 for failure
538 * side effects - Disassociate configuration from the client.
539 * Also removes a class from the list if marked for deleting.
540 */
541int
542detach_conf(struct Client *client_p)
543{
544 struct ConfItem *aconf;
545
546 aconf = client_p->localClient->att_conf;
547
548 if(aconf != NULL)
549 {
550 if(ClassPtr(aconf))
551 {
552 remove_ip_limit(client_p, aconf);
553
554 if(ConfCurrUsers(aconf) > 0)
555 --ConfCurrUsers(aconf);
556
557 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
558 {
559 free_class(ClassPtr(aconf));
560 ClassPtr(aconf) = NULL;
561 }
562
563 }
564
565 aconf->clients--;
566 if(!aconf->clients && IsIllegal(aconf))
567 free_conf(aconf);
568
569 client_p->localClient->att_conf = NULL;
570 return 0;
571 }
572
573 return -1;
574}
575
576/*
577 * attach_conf
55abcbb2 578 *
212380e3
AC		 579 * inputs - client pointer
580 * - conf pointer
581 * output -
582 * side effects - Associate a specific configuration entry to a *local*
583 * client (this is the one which used in accepting the
584 * connection). Note, that this automatically changes the
585 * attachment if there was an old one...
586 */
587int
588attach_conf(struct Client *client_p, struct ConfItem *aconf)
589{
590 if(IsIllegal(aconf))
591 return (NOT_AUTHORISED);
592
593 if(ClassPtr(aconf))
594 {
595 if(!add_ip_limit(client_p, aconf))
596 return (TOO_MANY_LOCAL);
597 }
598
599 if((aconf->status & CONF_CLIENT) &&
600 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
601 {
602 if(!IsConfExemptLimits(aconf))
603 {
604 return (I_LINE_FULL);
605 }
606 else
607 {
5366977b 608 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
212380e3
AC		 609 }
610
611 }
612
613 if(client_p->localClient->att_conf != NULL)
614 detach_conf(client_p);
615
616 client_p->localClient->att_conf = aconf;
617
618 aconf->clients++;
619 ConfCurrUsers(aconf)++;
620 return (0);
621}
622
623/*
624 * rehash
625 *
626 * Actual REHASH service routine. Called with sig == 0 if it has been called
627 * as a result of an operator issuing this command, else assume it has been
628 * called as a result of the server receiving a HUP signal.
629 */
ab31d2b0
EM		 630bool
631rehash(bool sig)
212380e3 632{
2575a78b
EM		 633 hook_data_rehash hdata = { sig };
634
ab31d2b0 635 if(sig)
212380e3
AC		 636 sendto_realops_snomask(SNO_GENERAL, L_ALL,
637 "Got signal SIGHUP, reloading ircd conf. file");
212380e3 638
f60055d3 639 rehash_authd();
2575a78b 640
212380e3 641 /* don't close listeners until we know we can go ahead with the rehash */
ab31d2b0 642 read_conf_files(false);
212380e3
AC		 643
644 if(ServerInfo.description != NULL)
f427c8b0 645 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
212380e3 646 else
f427c8b0 647 rb_strlcpy(me.info, "unknown", sizeof(me.info));
212380e3
AC		 648
649 open_logfiles();
2575a78b
EM		 650
651 call_hook(h_rehash, &hdata);
ab31d2b0 652 return false;
212380e3
AC		 653}
654
212380e3 655void
ab31d2b0 656rehash_bans(void)
212380e3 657{
80c9ac51 658 bandb_rehash_bans();
212380e3
AC		 659}
660
661/*
662 * set_default_conf()
663 *
664 * inputs - NONE
665 * output - NONE
666 * side effects - Set default values here.
667 * This is called **PRIOR** to parsing the
668 * configuration file. If you want to do some validation
669 * of values later, put them in validate_conf().
670 */
671
212380e3
AC		 672static void
673set_default_conf(void)
674{
675 /* ServerInfo.name is not rehashable */
676 /* ServerInfo.name = ServerInfo.name; */
677 ServerInfo.description = NULL;
010c4fbd 678 ServerInfo.network_name = NULL;
212380e3 679
d4214e94
SA		 680 memset(&ServerInfo.bind4, 0, sizeof(ServerInfo.bind4));
681 SET_SS_FAMILY(&ServerInfo.bind4, AF_UNSPEC);
ccda6e3f 682#ifdef RB_IPV6
d4214e94
SA		 683 memset(&ServerInfo.bind6, 0, sizeof(ServerInfo.bind6));
684 SET_SS_FAMILY(&ServerInfo.bind6, AF_UNSPEC);
212380e3 685#endif
212380e3 686
212380e3
AC		 687 AdminInfo.name = NULL;
688 AdminInfo.email = NULL;
689 AdminInfo.description = NULL;
690
010c4fbd
KB		 691 ConfigFileEntry.default_operstring = NULL;
692 ConfigFileEntry.default_adminstring = NULL;
693 ConfigFileEntry.servicestring = NULL;
7d33cce8 694 ConfigFileEntry.sasl_service = NULL;
212380e3 695
55abcbb2 696 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
d2e0b78f
AC		 697 ConfigFileEntry.failed_oper_notice = true;
698 ConfigFileEntry.anti_nick_flood = false;
699 ConfigFileEntry.disable_fake_channels = false;
212380e3
AC		 700 ConfigFileEntry.max_nick_time = 20;
701 ConfigFileEntry.max_nick_changes = 5;
702 ConfigFileEntry.max_accept = 20;
703 ConfigFileEntry.max_monitor = 60;
704 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
d2e0b78f 705 ConfigFileEntry.target_change = true;
212380e3
AC		 706 ConfigFileEntry.anti_spam_exit_message_time = 0;
707 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
708 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
d2e0b78f
AC		 709 ConfigFileEntry.client_exit = true;
710 ConfigFileEntry.dline_with_reason = true;
711 ConfigFileEntry.kline_with_reason = true;
212380e3 712 ConfigFileEntry.kline_delay = 0;
d2e0b78f
AC		 713 ConfigFileEntry.warn_no_nline = true;
714 ConfigFileEntry.non_redundant_klines = true;
715 ConfigFileEntry.stats_e_disabled = false;
716 ConfigFileEntry.stats_o_oper_only = false;
212380e3
AC		 717 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
718 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
d2e0b78f
AC		 719 ConfigFileEntry.stats_P_oper_only = false;
720 ConfigFileEntry.stats_c_oper_only = false;
721 ConfigFileEntry.stats_y_oper_only = false;
722 ConfigFileEntry.stats_h_oper_only = false;
723 ConfigFileEntry.map_oper_only = true;
724 ConfigFileEntry.operspy_admin_only = false;
212380e3
AC		 725 ConfigFileEntry.pace_wait = 10;
726 ConfigFileEntry.caller_id_wait = 60;
727 ConfigFileEntry.pace_wait_simple = 1;
d2e0b78f
AC		 728 ConfigFileEntry.short_motd = false;
729 ConfigFileEntry.no_oper_flood = false;
212380e3
AC		 730 ConfigFileEntry.fname_userlog = NULL;
731 ConfigFileEntry.fname_fuserlog = NULL;
732 ConfigFileEntry.fname_operlog = NULL;
733 ConfigFileEntry.fname_foperlog = NULL;
734 ConfigFileEntry.fname_serverlog = NULL;
00533129 735 ConfigFileEntry.fname_killlog = NULL;
212380e3
AC		 736 ConfigFileEntry.fname_klinelog = NULL;
737 ConfigFileEntry.fname_operspylog = NULL;
738 ConfigFileEntry.fname_ioerrorlog = NULL;
d2e0b78f 739 ConfigFileEntry.hide_spoof_ips = true;
212380e3 740 ConfigFileEntry.hide_error_messages = 1;
212380e3
AC		 741 ConfigFileEntry.dots_in_ident = 0;
742 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
d2e0b78f
AC		 743 ConfigFileEntry.use_whois_actually = true;
744 ConfigFileEntry.burst_away = false;
745 ConfigFileEntry.collision_fnc = true;
746 ConfigFileEntry.resv_fnc = true;
747 ConfigFileEntry.global_snotices = true;
748 ConfigFileEntry.operspy_dont_care_user_info = false;
749 ConfigFileEntry.use_propagated_bans = true;
e88a1f1b 750 ConfigFileEntry.max_ratelimit_tokens = 30;
d42e6915 751 ConfigFileEntry.away_interval = 30;
212380e3
AC		 752
753#ifdef HAVE_LIBZ
754 ConfigFileEntry.compression_level = 4;
755#endif
756
757 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
758 UMODE_OPERWALL | UMODE_WALLOP;
759 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
760 ConfigFileEntry.oper_snomask = SNO_GENERAL;
761
d2e0b78f
AC		 762 ConfigChannel.use_except = true;
763 ConfigChannel.use_invex = true;
764 ConfigChannel.use_forward = true;
765 ConfigChannel.use_knock = true;
212380e3
AC		 766 ConfigChannel.knock_delay = 300;
767 ConfigChannel.knock_delay_channel = 60;
768 ConfigChannel.max_chans_per_user = 15;
a4721f5e 769 ConfigChannel.max_chans_per_user_large = 60;
212380e3
AC		 770 ConfigChannel.max_bans = 25;
771 ConfigChannel.max_bans_large = 500;
d2e0b78f
AC		 772 ConfigChannel.only_ascii_channels = false;
773 ConfigChannel.burst_topicwho = false;
774 ConfigChannel.kick_on_split_riding = false;
212380e3
AC		 775
776 ConfigChannel.default_split_user_count = 15000;
777 ConfigChannel.default_split_server_count = 10;
d2e0b78f
AC		 778 ConfigChannel.no_join_on_split = false;
779 ConfigChannel.no_create_on_split = true;
780 ConfigChannel.resv_forcepart = true;
781 ConfigChannel.channel_target_change = true;
782 ConfigChannel.disable_local_channels = false;
d513218a 783 ConfigChannel.displayed_usercount = 3;
212380e3 784
63eb8567
AC		 785 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
786
212380e3
AC		 787 ConfigServerHide.flatten_links = 0;
788 ConfigServerHide.links_delay = 300;
789 ConfigServerHide.hidden = 0;
790 ConfigServerHide.disable_hidden = 0;
791
792 ConfigFileEntry.min_nonwildcard = 4;
793 ConfigFileEntry.min_nonwildcard_simple = 3;
794 ConfigFileEntry.default_floodcount = 8;
7f3382fe 795 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
212380e3
AC		 796 ConfigFileEntry.tkline_expire_notices = 0;
797
798 ConfigFileEntry.reject_after_count = 5;
55abcbb2 799 ConfigFileEntry.reject_ban_time = 300;
212380e3 800 ConfigFileEntry.reject_duration = 120;
43946961
JT		 801 ConfigFileEntry.throttle_count = 4;
802 ConfigFileEntry.throttle_duration = 60;
c2d96fcb 803
e6e54763
SB		 804 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
805 ConfigFileEntry.client_flood_burst_rate = 5;
806 ConfigFileEntry.client_flood_burst_max = 5;
807 ConfigFileEntry.client_flood_message_time = 1;
808 ConfigFileEntry.client_flood_message_num = 2;
809
101db4c4 810 ServerInfo.default_max_clients = MAXCONNECTIONS;
456e5b3d 811
b583faf9 812 ConfigFileEntry.nicklen = NICKLEN;
cf430c1a 813 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_CERT_SHA1;
71c95533 814 ConfigFileEntry.hide_opers_in_whois = 0;
b583faf9 815
456e5b3d 816 if (!alias_dict)
f956cb0f 817 alias_dict = rb_dictionary_create("alias", rb_strcasecmp);
212380e3
AC		 818}
819
212380e3 820/*
55abcbb2 821 * read_conf()
212380e3
AC		 822 *
823 *
29c92cf9 824 * inputs - None
212380e3
AC		 825 * output - None
826 * side effects - Read configuration file.
827 */
828static void
29c92cf9 829read_conf(void)
212380e3
AC		 830{
831 lineno = 0;
832
833 set_default_conf(); /* Set default values prior to conf parsing */
834 yyparse(); /* Load the values from the conf */
835 validate_conf(); /* Check to make sure some values are still okay. */
836 /* Some global values are also loaded here. */
837 check_class(); /* Make sure classes are valid */
422bb0b5 838 privilegeset_delete_all_illegal();
c55b2782 839 construct_cflags_strings();
212380e3
AC		 840}
841
842static void
843validate_conf(void)
844{
7f3382fe
KB		 845 if(ConfigFileEntry.default_ident_timeout < 1)
846 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
847
212380e3
AC		 848 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
849 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
850
851 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
852 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
853
212380e3 854 if(ServerInfo.network_name == NULL)
47a03750 855 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
212380e3 856
8bd5767b 857 if(ServerInfo.ssld_count < 1)
c6d72037
VY		 858 ServerInfo.ssld_count = 1;
859
c53ca1e0
AC		 860 /* XXX: configurable? */
861 ServerInfo.wsockd_count = 1;
862
c1725bda 863 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
8bd5767b
JT		 864 {
865 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
bfc44622 866 ircd_ssl_ok = false;
8bd5767b 867 } else {
bfc44622 868 ircd_ssl_ok = true;
f7b0c4b3 869 ssld_update_config();
8bd5767b
JT		 870 }
871
872 if(ServerInfo.ssld_count > get_ssld_count())
873 {
874 int start = ServerInfo.ssld_count - get_ssld_count();
875 /* start up additional ssld if needed */
f7b0c4b3 876 start_ssldaemon(start);
c6d72037
VY		 877 }
878
c53ca1e0
AC		 879 if(ServerInfo.wsockd_count > get_wsockd_count())
880 {
34b88b65 881 int start = ServerInfo.wsockd_count - get_wsockd_count();
c53ca1e0
AC		 882 start_wsockd(start);
883 }
884
010c4fbd
KB		 885 /* General conf */
886 if (ConfigFileEntry.default_operstring == NULL)
887 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
888
889 if (ConfigFileEntry.default_adminstring == NULL)
890 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
891
892 if (ConfigFileEntry.servicestring == NULL)
893 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
894
7d33cce8
MT		 895 if (ConfigFileEntry.sasl_service == NULL)
896 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
897
894325fe
JT		 898 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
899 * 5 messages are acceptable, so allow at least that.
41ca4cac 900 */
894325fe
JT		 901 if(ConfigFileEntry.client_flood_burst_rate < 5)
902 ConfigFileEntry.client_flood_burst_rate = 5;
903 if(ConfigFileEntry.client_flood_burst_max < 5)
904 ConfigFileEntry.client_flood_burst_max = 5;
41ca4cac
JT		 905 if(ConfigFileEntry.client_flood_message_time >
906 ConfigFileEntry.client_flood_message_num * 2)
907 ConfigFileEntry.client_flood_message_time =
908 ConfigFileEntry.client_flood_message_num * 2;
909
e6e54763
SB		 910 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
911 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
912 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
212380e3 913
212380e3
AC		 914 if(!split_users || !split_servers ||
915 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
916 {
b2c190a6
JT		 917 rb_event_delete(check_splitmode_ev);
918 check_splitmode_ev = NULL;
212380e3
AC		 919 splitmode = 0;
920 splitchecking = 0;
921 }
01978a2c
AC		 922
923 CharAttrs['&'] |= CHANPFX_C;
924 if (ConfigChannel.disable_local_channels)
925 CharAttrs['&'] &= ~CHANPFX_C;
926
927 chantypes_update();
212380e3
AC		 928}
929
212380e3
AC		 930/* add_temp_kline()
931 *
932 * inputs - pointer to struct ConfItem
933 * output - none
55abcbb2 934 * Side effects - links in given struct ConfItem into
212380e3
AC		 935 * temporary kline link list
936 */
937void
938add_temp_kline(struct ConfItem *aconf)
939{
e3354945 940 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 941 {
330fc5c1 942 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
212380e3
AC		 943 aconf->port = TEMP_WEEK;
944 }
e3354945 945 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 946 {
330fc5c1 947 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
212380e3
AC		 948 aconf->port = TEMP_DAY;
949 }
e3354945 950 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 951 {
330fc5c1 952 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
212380e3
AC		 953 aconf->port = TEMP_HOUR;
954 }
955 else
956 {
330fc5c1 957 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
212380e3
AC		 958 aconf->port = TEMP_MIN;
959 }
960
961 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 962 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
212380e3
AC		 963}
964
965/* add_temp_dline()
966 *
967 * input - pointer to struct ConfItem
968 * output - none
969 * side effects - added to tdline link list and address hash
970 */
971void
972add_temp_dline(struct ConfItem *aconf)
973{
e3354945 974 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 975 {
330fc5c1 976 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
212380e3
AC		 977 aconf->port = TEMP_WEEK;
978 }
e3354945 979 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 980 {
330fc5c1 981 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
212380e3
AC		 982 aconf->port = TEMP_DAY;
983 }
e3354945 984 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 985 {
330fc5c1 986 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
212380e3
AC		 987 aconf->port = TEMP_HOUR;
988 }
989 else
990 {
330fc5c1 991 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
212380e3
AC		 992 aconf->port = TEMP_MIN;
993 }
994
995 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 996 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
212380e3
AC		 997}
998
5c2b9eaf 999/* valid_wild_card()
55abcbb2 1000 *
5c2b9eaf
JT		 1001 * input - user buffer, host buffer
1002 * output - 0 if invalid, 1 if valid
1003 * side effects -
1004 */
1005int
1006valid_wild_card(const char *luser, const char *lhost)
1007{
1008 const char *p;
1009 char tmpch;
1010 int nonwild = 0;
1011 int bitlen;
1012
1013 /* user has no wildcards, always accept -- jilles */
1014 if(!strchr(luser, '?') && !strchr(luser, '*'))
1015 return 1;
1016
1017 /* check there are enough non wildcard chars */
1018 p = luser;
1019 while((tmpch = *p++))
1020 {
1021 if(!IsKWildChar(tmpch))
1022 {
1023 /* found enough chars, return */
1024 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1025 return 1;
1026 }
1027 }
1028
1029 /* try host, as user didnt contain enough */
1030 /* special case for cidr masks -- jilles */
1031 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1032 {
1033 bitlen = atoi(p + 1);
1034 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1035 if(bitlen > 0
1036 && bitlen >=
1037 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1038 2 * nonwild))
1039 return 1;
1040 }
1041 else
1042 {
1043 p = lhost;
1044 while((tmpch = *p++))
1045 {
1046 if(!IsKWildChar(tmpch))
1047 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1048 return 1;
1049 }
1050 }
1051
1052 return 0;
1053}
1054
431a1a27
JT		 1055rb_dlink_node *
1056find_prop_ban(unsigned int status, const char *user, const char *host)
1057{
1058 rb_dlink_node *ptr;
1059 struct ConfItem *aconf;
1060
1061 RB_DLINK_FOREACH(ptr, prop_bans.head)
1062 {
1063 aconf = ptr->data;
1064
1065 if((aconf->status & ~CONF_ILLEGAL) == status &&
1066 (!user || !aconf->user ||
1067 !irccmp(aconf->user, user)) &&
1068 !irccmp(aconf->host, host))
1069 return ptr;
1070 }
1071 return NULL;
1072}
1073
9197bc35 1074void
483987a4 1075deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
9197bc35
JT		 1076{
1077 int i;
1078
1079 s_assert(ptr->data == aconf);
1080
1081 switch (aconf->status)
1082 {
1083 case CONF_KILL:
1084 if (aconf->lifetime == 0 &&
1085 aconf->flags & CONF_FLAGS_TEMPORARY)
1086 for (i = 0; i < LAST_TEMP_TYPE; i++)
1087 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1088 /* Make sure delete_one_address_conf() does not
1089 * free the aconf.
1090 */
1091 aconf->clients++;
1092 delete_one_address_conf(aconf->host, aconf);
1093 aconf->clients--;
1094 break;
1095 case CONF_DLINE:
1096 if (aconf->lifetime == 0 &&
1097 aconf->flags & CONF_FLAGS_TEMPORARY)
1098 for (i = 0; i < LAST_TEMP_TYPE; i++)
1099 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1100 aconf->clients++;
1101 delete_one_address_conf(aconf->host, aconf);
1102 aconf->clients--;
1103 break;
1104 case CONF_XLINE:
1105 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1106 break;
1107 case CONF_RESV_NICK:
1108 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1109 break;
1110 case CONF_RESV_CHANNEL:
1111 del_from_resv_hash(aconf->host, aconf);
1112 break;
1113 }
483987a4 1114 if (aconf->lifetime != 0 && now < aconf->lifetime)
9197bc35
JT		 1115 aconf->status |= CONF_ILLEGAL;
1116 else
1117 {
1118 if (aconf->lifetime != 0)
1119 rb_dlinkDestroy(ptr, &prop_bans);
1120 free_conf(aconf);
1121 }
1122}
1123
3cbbfb25
JT		 1124/* Given a new ban ConfItem, look for any matching ban, update the lifetime
1125 * from it and delete it.
1126 */
1127void
1128replace_old_ban(struct ConfItem *aconf)
1129{
1130 rb_dlink_node *ptr;
1131 struct ConfItem *oldconf;
1132
1133 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1134 if(ptr != NULL)
1135 {
1136 oldconf = ptr->data;
1137 /* Remember at least as long as the old one. */
1138 if(oldconf->lifetime > aconf->lifetime)
1139 aconf->lifetime = oldconf->lifetime;
1140 /* Force creation time to increase. */
1141 if(oldconf->created >= aconf->created)
1142 aconf->created = oldconf->created + 1;
1143 /* Leave at least one second of validity. */
1144 if(aconf->hold <= aconf->created)
1145 aconf->hold = aconf->created + 1;
1146 if(aconf->lifetime < aconf->hold)
1147 aconf->lifetime = aconf->hold;
1148 /* Tell deactivate_conf() to destroy it. */
1149 oldconf->lifetime = rb_current_time();
483987a4 1150 deactivate_conf(oldconf, ptr, oldconf->lifetime);
3cbbfb25
JT		 1151 }
1152}
1153
9197bc35
JT		 1154static void
1155expire_prop_bans(void *list)
1156{
1157 rb_dlink_node *ptr;
1158 rb_dlink_node *next_ptr;
1159 struct ConfItem *aconf;
483987a4 1160 time_t now;
9197bc35 1161
483987a4 1162 now = rb_current_time();
9197bc35
JT		 1163 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1164 {
1165 aconf = ptr->data;
1166
483987a4
JT		 1167 if(aconf->lifetime <= now ||
1168 (aconf->hold <= now &&
9197bc35
JT		 1169 !(aconf->status & CONF_ILLEGAL)))
1170 {
1171 /* Alert opers that a TKline expired - Hwy */
1172 /* XXX show what type of ban it is */
1173 if(ConfigFileEntry.tkline_expire_notices &&
1174 !(aconf->status & CONF_ILLEGAL))
1175 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1176 "Propagated ban for [%s%s%s] expired",
1177 aconf->user ? aconf->user : "",
1178 aconf->user ? "@" : "",
1179 aconf->host ? aconf->host : "*");
1180
1181 /* will destroy or mark illegal */
483987a4 1182 deactivate_conf(aconf, ptr, now);
9197bc35
JT		 1183 }
1184 }
1185}
1186
212380e3
AC		 1187/* expire_tkline()
1188 *
1189 * inputs - list pointer
1190 * - type
1191 * output - NONE
1192 * side effects - expire tklines and moves them between lists
1193 */
1194static void
1195expire_temp_kd(void *list)
1196{
330fc5c1 1197 rb_dlink_node *ptr;
637c4932 1198 rb_dlink_node *next_ptr;
212380e3
AC		 1199 struct ConfItem *aconf;
1200
637c4932 1201 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1202 {
1203 aconf = ptr->data;
1204
e3354945 1205 if(aconf->hold <= rb_current_time())
212380e3
AC		 1206 {
1207 /* Alert opers that a TKline expired - Hwy */
1208 if(ConfigFileEntry.tkline_expire_notices)
1209 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1210 "Temporary K-line for [%s@%s] expired",
1211 (aconf->user) ? aconf->
1212 user : "*", (aconf->host) ? aconf->host : "*");
1213
1214 delete_one_address_conf(aconf->host, aconf);
330fc5c1 1215 rb_dlinkDestroy(ptr, list);
212380e3
AC		 1216 }
1217 }
1218}
1219
1220static void
1221reorganise_temp_kd(void *list)
1222{
1223 struct ConfItem *aconf;
637c4932 1224 rb_dlink_node *ptr, *next_ptr;
212380e3 1225
637c4932 1226 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1227 {
1228 aconf = ptr->data;
1229
e3354945 1230 if(aconf->hold < (rb_current_time() + (60 * 60)))
212380e3 1231 {
55abcbb2 1232 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1233 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1234 aconf->port = TEMP_MIN;
1235 }
1236 else if(aconf->port > TEMP_HOUR)
1237 {
e3354945 1238 if(aconf->hold < (rb_current_time() + (1440 * 60)))
212380e3 1239 {
55abcbb2 1240 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1241 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1242 aconf->port = TEMP_HOUR;
1243 }
55abcbb2 1244 else if(aconf->port > TEMP_DAY &&
e3354945 1245 (aconf->hold < (rb_current_time() + (10080 * 60))))
212380e3 1246 {
55abcbb2 1247 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1248 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1249 aconf->port = TEMP_DAY;
1250 }
1251 }
1252 }
1253}
1254
1255
1256/* const char* get_oper_name(struct Client *client_p)
1257 * Input: A client to find the active oper{} name for.
1258 * Output: The nick!user@host{oper} of the oper.
1259 * "oper" is server name for remote opers
1260 * Side effects: None.
1261 */
1262char *
1263get_oper_name(struct Client *client_p)
1264{
1265 /* +5 for !,@,{,} and null */
1266 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1267
1268 if(MyOper(client_p))
1269 {
5203cba5 1270 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
212380e3
AC		 1271 client_p->name, client_p->username,
1272 client_p->host, client_p->localClient->opername);
1273 return buffer;
1274 }
1275
5203cba5 1276 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
55abcbb2 1277 client_p->name, client_p->username,
212380e3
AC		 1278 client_p->host, client_p->servptr->name);
1279 return buffer;
1280}
1281
1282/*
1283 * get_printable_conf
1284 *
1285 * inputs - struct ConfItem
1286 *
55abcbb2 1287 * output - name
212380e3
AC		 1288 * - host
1289 * - pass
1290 * - user
1291 * - port
1292 *
1293 * side effects -
1294 * Examine the struct struct ConfItem, setting the values
1295 * of name, host, pass, user to values either
1296 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1297 */
1298void
1299get_printable_conf(struct ConfItem *aconf, char **name, char **host,
29c92cf9 1300 const char **pass, char **user, int *port, char **classname)
212380e3
AC		 1301{
1302 static char null[] = "<NULL>";
1303 static char zero[] = "default";
1304
27f616dd 1305 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
212380e3
AC		 1306 *host = EmptyString(aconf->host) ? null : aconf->host;
1307 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1308 *user = EmptyString(aconf->user) ? null : aconf->user;
1309 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1310 *port = (int) aconf->port;
1311}
1312
a12ad044
JT		 1313char *
1314get_user_ban_reason(struct ConfItem *aconf)
1315{
1316 static char reasonbuf[BUFSIZE];
1317
1318 if (aconf->flags & CONF_FLAGS_TEMPORARY &&
1319 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
5203cba5 1320 snprintf(reasonbuf, sizeof reasonbuf,
a12ad044
JT		 1321 "Temporary %c-line %d min. - ",
1322 aconf->status == CONF_DLINE ? 'D' : 'K',
803ce385 1323 (int)((aconf->hold - aconf->created) / 60));
a12ad044
JT		 1324 else
1325 reasonbuf[0] = '\0';
1326 if (aconf->passwd)
1327 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1328 else
1329 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1330 if (aconf->created)
1331 {
1332 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1333 rb_strlcat(reasonbuf, smalldate(aconf->created),
1334 sizeof reasonbuf);
1335 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1336 }
1337 return reasonbuf;
1338}
1339
54ac8b60 1340void
55abcbb2 1341get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
54ac8b60
VY		 1342 char **host, char **reason,
1343 char **user, char **oper_reason)
1344{
1345 static char null[] = "<NULL>";
778dd56b 1346 static char operreasonbuf[BUFSIZE];
54ac8b60
VY		 1347
1348 *host = EmptyString(aconf->host) ? null : aconf->host;
54ac8b60 1349 *user = EmptyString(aconf->user) ? null : aconf->user;
a12ad044 1350 *reason = get_user_ban_reason(aconf);
b52c2949 1351
778dd56b 1352 if(!IsOper(source_p))
54ac8b60
VY		 1353 *oper_reason = NULL;
1354 else
778dd56b 1355 {
5203cba5 1356 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
778dd56b
JT		 1357 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1358 EmptyString(aconf->spasswd) ? "" : " ",
1359 aconf->info.oper);
1360 *oper_reason = operreasonbuf;
1361 }
212380e3
AC		 1362}
1363
1364/*
1365 * read_conf_files
1366 *
ea111ea5 1367 * inputs - cold start
212380e3
AC		 1368 * output - none
1369 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1370 */
1371void
ea111ea5 1372read_conf_files(bool cold)
212380e3
AC		 1373{
1374 const char *filename;
1375
1376 conf_fbfile_in = NULL;
1377
22342cd1 1378 filename = ConfigFileEntry.configfile;
212380e3
AC		 1379
1380 /* We need to know the initial filename for the yyerror() to report
1381 FIXME: The full path is in conffilenamebuf first time since we
1382 dont know anything else
1383
55abcbb2 1384 - Gozem 2002-07-21
a576a0fe
CD		 1385
1386
212380e3 1387 */
f427c8b0 1388 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
212380e3
AC		 1389
1390 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1391 {
1392 if(cold)
1393 {
f951460a 1394 inotice("Failed in reading configuration file %s, aborting", filename);
a576a0fe
CD		 1395 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1396
1397 int e;
1398 e = errno;
1399
2c0450fb
CD		 1400 inotice("FATAL: %s %s", strerror(e), filename);
1401 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
a576a0fe 1402
212380e3
AC		 1403 exit(-1);
1404 }
1405 else
1406 {
1407 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1408 "Can't open file '%s' - aborting rehash!", filename);
1409 return;
1410 }
1411 }
1412
1413 if(!cold)
1414 {
1415 clear_out_old_conf();
1416 }
1417
7d603754 1418 call_hook(h_conf_read_start, NULL);
29c92cf9 1419 read_conf();
7d603754
KB		 1420 call_hook(h_conf_read_end, NULL);
1421
212380e3
AC		 1422 fclose(conf_fbfile_in);
1423}
1424
8ac75529
AC		 1425/*
1426 * free an alias{} entry.
1427 */
1428static void
4177311e 1429free_alias_cb(rb_dictionary_element *ptr, void *unused)
8ac75529
AC		 1430{
1431 struct alias_entry *aptr = ptr->data;
1432
637c4932
VY		 1433 rb_free(aptr->name);
1434 rb_free(aptr->target);
1435 rb_free(aptr);
8ac75529
AC		 1436}
1437
212380e3
AC		 1438/*
1439 * clear_out_old_conf
1440 *
1441 * inputs - none
1442 * output - none
1443 * side effects - Clear out the old configuration
1444 */
1445static void
1446clear_out_old_conf(void)
1447{
1448 struct Class *cltmp;
330fc5c1 1449 rb_dlink_node *ptr;
637c4932 1450 rb_dlink_node *next_ptr;
212380e3
AC		 1451
1452 /*
1453 * don't delete the class table, rather mark all entries
1454 * for deletion. The table is cleaned up by check_class. - avalon
1455 */
5cefa1d6 1456 RB_DLINK_FOREACH(ptr, class_list.head)
212380e3
AC		 1457 {
1458 cltmp = ptr->data;
1459 MaxUsers(cltmp) = -1;
1460 }
1461
1462 clear_out_address_conf();
1463 clear_s_newconf();
1464
1465 /* clean out module paths */
212380e3
AC		 1466 mod_clear_paths();
1467 mod_add_path(MODULE_DIR);
1468 mod_add_path(MODULE_DIR "/autoload");
212380e3
AC		 1469
1470 /* clean out ServerInfo */
637c4932 1471 rb_free(ServerInfo.description);
212380e3 1472 ServerInfo.description = NULL;
637c4932 1473 rb_free(ServerInfo.network_name);
212380e3 1474 ServerInfo.network_name = NULL;
212380e3 1475
c6d72037
VY		 1476 ServerInfo.ssld_count = 1;
1477
212380e3 1478 /* clean out AdminInfo */
637c4932 1479 rb_free(AdminInfo.name);
212380e3 1480 AdminInfo.name = NULL;
637c4932 1481 rb_free(AdminInfo.email);
212380e3 1482 AdminInfo.email = NULL;
637c4932 1483 rb_free(AdminInfo.description);
212380e3
AC		 1484 AdminInfo.description = NULL;
1485
1486 /* operator{} and class{} blocks are freed above */
1487 /* clean out listeners */
1488 close_listeners();
1489
1490 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1491 * and gecos{} blocks are freed above too
1492 */
1493
1494 /* clean out general */
010c4fbd
KB		 1495 rb_free(ConfigFileEntry.default_operstring);
1496 ConfigFileEntry.default_operstring = NULL;
1497 rb_free(ConfigFileEntry.default_adminstring);
1498 ConfigFileEntry.default_adminstring = NULL;
1499 rb_free(ConfigFileEntry.servicestring);
1500 ConfigFileEntry.servicestring = NULL;
d61a1c7e
JT		 1501 rb_free(ConfigFileEntry.kline_reason);
1502 ConfigFileEntry.kline_reason = NULL;
7d33cce8
MT		 1503 rb_free(ConfigFileEntry.sasl_service);
1504 ConfigFileEntry.sasl_service = NULL;
d61a1c7e 1505
00533129
KB		 1506 /* clean out log */
1507 rb_free(ConfigFileEntry.fname_userlog);
1508 ConfigFileEntry.fname_userlog = NULL;
1509 rb_free(ConfigFileEntry.fname_fuserlog);
1510 ConfigFileEntry.fname_fuserlog = NULL;
1511 rb_free(ConfigFileEntry.fname_operlog);
1512 ConfigFileEntry.fname_operlog = NULL;
1513 rb_free(ConfigFileEntry.fname_foperlog);
1514 ConfigFileEntry.fname_foperlog = NULL;
1515 rb_free(ConfigFileEntry.fname_serverlog);
1516 ConfigFileEntry.fname_serverlog = NULL;
1517 rb_free(ConfigFileEntry.fname_killlog);
1518 ConfigFileEntry.fname_killlog = NULL;
1519 rb_free(ConfigFileEntry.fname_klinelog);
1520 ConfigFileEntry.fname_klinelog = NULL;
1521 rb_free(ConfigFileEntry.fname_operspylog);
1522 ConfigFileEntry.fname_operspylog = NULL;
1523 rb_free(ConfigFileEntry.fname_ioerrorlog);
1524 ConfigFileEntry.fname_ioerrorlog = NULL;
1525
637c4932 1526 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
212380e3 1527 {
637c4932 1528 rb_free(ptr->data);
330fc5c1 1529 rb_dlinkDestroy(ptr, &service_list);
212380e3
AC		 1530 }
1531
1532 /* remove any aliases... -- nenolod */
dbcd150b
AC		 1533 if (alias_dict != NULL)
1534 {
a4bf26dd 1535 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
dbcd150b
AC		 1536 alias_dict = NULL;
1537 }
212380e3 1538
d3f6b808 1539 del_blacklist_all();
212380e3 1540
422bb0b5
JT		 1541 privilegeset_mark_all_illegal();
1542
212380e3
AC		 1543 /* OK, that should be everything... */
1544}
1545
1546
212380e3
AC		 1547/*
1548 * conf_add_class_to_conf
1549 * inputs - pointer to config item
1550 * output - NONE
55abcbb2 1551 * side effects - Add a class pointer to a conf
212380e3
AC		 1552 */
1553
1554void
1555conf_add_class_to_conf(struct ConfItem *aconf)
1556{
1557 if(aconf->className == NULL)
1558 {
47a03750 1559 aconf->className = rb_strdup("default");
212380e3
AC		 1560 ClassPtr(aconf) = default_class;
1561 return;
1562 }
1563
1564 ClassPtr(aconf) = find_class(aconf->className);
1565
1566 if(ClassPtr(aconf) == default_class)
1567 {
1568 if(aconf->status == CONF_CLIENT)
1569 {
8b801ad1
JT		 1570 conf_report_error(
1571 "Using default class for missing class \"%s\" in auth{} for %s@%s",
212380e3
AC		 1572 aconf->className, aconf->user, aconf->host);
1573 }
1574
637c4932 1575 rb_free(aconf->className);
47a03750 1576 aconf->className = rb_strdup("default");
212380e3
AC		 1577 return;
1578 }
1579
1580 if(ConfMaxUsers(aconf) < 0)
1581 {
1582 ClassPtr(aconf) = default_class;
637c4932 1583 rb_free(aconf->className);
47a03750 1584 aconf->className = rb_strdup("default");
212380e3
AC		 1585 return;
1586 }
1587}
1588
1589/*
1590 * conf_add_d_conf
1591 * inputs - pointer to config item
1592 * output - NONE
1593 * side effects - Add a d/D line
1594 */
1595void
1596conf_add_d_conf(struct ConfItem *aconf)
1597{
1598 if(aconf->host == NULL)
1599 return;
1600
1601 aconf->user = NULL;
1602
1603 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1604 * need this anyway, so I will disable it for now... -A1kmm
1605 */
1606
1607 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1608 {
1609 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1610 free_conf(aconf);
1611 }
1612 else
1613 {
40c1fd47 1614 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
212380e3
AC		 1615 }
1616}
1617
decf0486
VY		 1618static char *
1619strip_tabs(char *dest, const char *src, size_t len)
1620{
1621 char *d = dest;
1622
1623 if(dest == NULL || src == NULL)
1624 return NULL;
1625
1626 rb_strlcpy(dest, src, len);
1627
1628 while(*d)
1629 {
1630 if(*d == '\t')
1631 *d = ' ';
1632 d++;
1633 }
1634 return dest;
1635}
212380e3
AC		 1636
1637/*
1638 * yyerror
1639 *
1640 * inputs - message from parser
1641 * output - none
1642 * side effects - message to opers and log file entry is made
1643 */
1644void
1645yyerror(const char *msg)
1646{
1647 char newlinebuf[BUFSIZE];
1648
401cb2bb 1649 strip_tabs(newlinebuf, yy_linebuf, strlen(yy_linebuf));
212380e3 1650
beccbe31 1651 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
212380e3
AC		 1652 sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'",
1653 conffilebuf, lineno + 1, msg, newlinebuf);
1654
212380e3
AC		 1655}
1656
1657int
1658conf_fgets(char *lbuf, int max_size, FILE * fb)
1659{
eac04554 1660 if(fgets(lbuf, max_size, fb) == NULL)
212380e3
AC		 1661 return (0);
1662
1663 return (strlen(lbuf));
1664}
1665
1666int
1667conf_yy_fatal_error(const char *msg)
1668{
1669 return (0);
1670}
Fork of solanum ircd, history is rebased regularly