]> jfr.im git - solanum.git/blame - ircd/s_conf.c
projects / solanum.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
providers/opm: use a name that makes more sense for this variable
[solanum.git] / ircd / s_conf.c
CommitLineData
212380e3
AC		 1/*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
212380e3
AC		 23 */
24
25#include "stdinc.h"
26#include "ircd_defs.h"
212380e3
AC		 27#include "s_conf.h"
28#include "s_newconf.h"
8b801ad1 29#include "newconf.h"
212380e3
AC		 30#include "s_serv.h"
31#include "s_stats.h"
32#include "channel.h"
33#include "class.h"
34#include "client.h"
212380e3 35#include "hash.h"
4562c604 36#include "match.h"
212380e3
AC		 37#include "ircd.h"
38#include "listener.h"
39#include "hostmask.h"
40#include "modules.h"
41#include "numeric.h"
4016731b 42#include "logger.h"
212380e3 43#include "send.h"
212380e3
AC		 44#include "reject.h"
45#include "cache.h"
422bb0b5 46#include "privilege.h"
c6d72037 47#include "sslproc.h"
80c9ac51 48#include "bandbi.h"
27f616dd 49#include "operhash.h"
c55b2782 50#include "chmode.h"
7d603754 51#include "hook.h"
77d3d2db 52#include "s_assert.h"
1eeb0469 53#include "authd.h"
212380e3
AC		 54
55struct config_server_hide ConfigServerHide;
56
6ab8c0d3 57extern int yyparse(void); /* defined in y.tab.c */
212380e3
AC		 58extern char linebuf[];
59
60#ifndef INADDR_NONE
61#define INADDR_NONE ((unsigned int) 0xffffffff)
62#endif
63
398b6a73 64static rb_bh *confitem_heap = NULL;
212380e3 65
9197bc35
JT		 66rb_dlink_list prop_bans;
67
330fc5c1
AC		 68rb_dlink_list temp_klines[LAST_TEMP_TYPE];
69rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
70rb_dlink_list service_list;
212380e3
AC		 71
72/* internally defined functions */
73static void set_default_conf(void);
74static void validate_conf(void);
29c92cf9 75static void read_conf(void);
212380e3
AC		 76static void clear_out_old_conf(void);
77
9197bc35 78static void expire_prop_bans(void *list);
212380e3
AC		 79static void expire_temp_kd(void *list);
80static void reorganise_temp_kd(void *list);
81
82FILE *conf_fbfile_in;
83extern char yytext[];
84
85static int verify_access(struct Client *client_p, const char *username);
b4a7304c 86static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
212380e3
AC		 87static int attach_iline(struct Client *, struct ConfItem *);
88
89void
90init_s_conf(void)
91{
b2c190a6 92 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
212380e3 93
9197bc35
JT		 94 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
95
12aea5fe
VY		 96 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
97 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
212380e3 98
12aea5fe 99 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
212380e3 100 &temp_klines[TEMP_HOUR], 3600);
12aea5fe 101 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
212380e3 102 &temp_dlines[TEMP_HOUR], 3600);
12aea5fe 103 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
212380e3 104 &temp_klines[TEMP_DAY], 86400);
12aea5fe 105 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
212380e3 106 &temp_dlines[TEMP_DAY], 86400);
12aea5fe 107 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
212380e3 108 &temp_klines[TEMP_WEEK], 604800);
12aea5fe 109 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
212380e3
AC		 110 &temp_dlines[TEMP_WEEK], 604800);
111}
112
113/*
114 * make_conf
115 *
116 * inputs - none
117 * output - pointer to new conf entry
118 * side effects - none
119 */
120struct ConfItem *
121make_conf()
122{
123 struct ConfItem *aconf;
124
398b6a73 125 aconf = rb_bh_alloc(confitem_heap);
212380e3
AC		 126 aconf->status = CONF_ILLEGAL;
127 return (aconf);
128}
129
130/*
131 * free_conf
132 *
133 * inputs - pointer to conf to free
134 * output - none
135 * side effects - crucial password fields are zeroed, conf is freed
136 */
137void
138free_conf(struct ConfItem *aconf)
139{
140 s_assert(aconf != NULL);
141 if(aconf == NULL)
142 return;
143
144 /* security.. */
145 if(aconf->passwd)
146 memset(aconf->passwd, 0, strlen(aconf->passwd));
147 if(aconf->spasswd)
148 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
149
637c4932
VY		 150 rb_free(aconf->passwd);
151 rb_free(aconf->spasswd);
637c4932
VY		 152 rb_free(aconf->className);
153 rb_free(aconf->user);
154 rb_free(aconf->host);
212380e3 155
27f616dd
JT		 156 if(IsConfBan(aconf))
157 operhash_delete(aconf->info.oper);
158 else
159 rb_free(aconf->info.name);
160
398b6a73 161 rb_bh_free(confitem_heap, aconf);
212380e3
AC		 162}
163
164/*
165 * check_client
166 *
167 * inputs - pointer to client
168 * output - 0 = Success
169 * NOT_AUTHORISED (-1) = Access denied (no I line match)
85368a13 170 * I_SOCKET_ERROR (-2) = Bad socket.
212380e3
AC		 171 * I_LINE_FULL (-3) = I-line is full
172 * TOO_MANY (-4) = Too many connections from hostname
173 * BANNED_CLIENT (-5) = K-lined
174 * side effects - Ordinary client access check.
175 * Look for conf lines which have the same
176 * status as the flags passed.
177 */
178int
179check_client(struct Client *client_p, struct Client *source_p, const char *username)
180{
181 int i;
182
212380e3
AC		 183 if((i = verify_access(source_p, username)))
184 {
55abcbb2 185 ilog(L_FUSER, "Access denied: %s[%s]",
212380e3
AC		 186 source_p->name, source_p->sockhost);
187 }
55abcbb2 188
212380e3
AC		 189 switch (i)
190 {
85368a13 191 case I_SOCKET_ERROR:
212380e3
AC		 192 exit_client(client_p, source_p, &me, "Socket Error");
193 break;
194
195 case TOO_MANY_LOCAL:
606384ae
JT		 196 /* Note that these notices are sent to opers on other
197 * servers also, so even if local opers are allowed to
198 * see the IP, we still cannot send it.
199 */
212380e3
AC		 200 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
201 "Too many local connections for %s!%s%s@%s",
202 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 203 source_p->username,
204 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 205
206 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
207 source_p->name, IsGotId(source_p) ? "" : "~",
55abcbb2 208 source_p->username, source_p->sockhost);
212380e3 209
47adde3d 210 ServerStats.is_ref++;
212380e3
AC		 211 exit_client(client_p, source_p, &me, "Too many host connections (local)");
212 break;
213
214 case TOO_MANY_GLOBAL:
215 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
216 "Too many global connections for %s!%s%s@%s",
217 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 218 source_p->username,
219 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 220 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
221 source_p->name, IsGotId(source_p) ? "" : "~",
222 source_p->username, source_p->sockhost);
223
47adde3d 224 ServerStats.is_ref++;
212380e3
AC		 225 exit_client(client_p, source_p, &me, "Too many host connections (global)");
226 break;
227
228 case TOO_MANY_IDENT:
229 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
230 "Too many user connections for %s!%s%s@%s",
231 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 232 source_p->username,
233 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 234 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
235 source_p->name, IsGotId(source_p) ? "" : "~",
236 source_p->username, source_p->sockhost);
237
47adde3d 238 ServerStats.is_ref++;
212380e3
AC		 239 exit_client(client_p, source_p, &me, "Too many user connections (global)");
240 break;
241
242 case I_LINE_FULL:
243 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
244 "I-line is full for %s!%s%s@%s (%s).",
245 source_p->name, IsGotId(source_p) ? "" : "~",
246 source_p->username, source_p->host,
4b7e6904 247 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
212380e3 248
55abcbb2 249 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
212380e3
AC		 250 source_p->name, IsGotId(source_p) ? "" : "~",
251 source_p->username, source_p->sockhost);
252
47adde3d 253 ServerStats.is_ref++;
212380e3
AC		 254 exit_client(client_p, source_p, &me,
255 "No more connections allowed in your connection class");
256 break;
257
258 case NOT_AUTHORISED:
259 {
260 int port = -1;
ccda6e3f 261#ifdef RB_IPV6
e867208d 262 if(GET_SS_FAMILY(&source_p->localClient->ip) == AF_INET6)
212380e3
AC		 263 port = ntohs(((struct sockaddr_in6 *)&source_p->localClient->listener->addr)->sin6_port);
264 else
265#endif
266 port = ntohs(((struct sockaddr_in *)&source_p->localClient->listener->addr)->sin_port);
55abcbb2 267
47adde3d 268 ServerStats.is_ref++;
212380e3
AC		 269 /* jdc - lists server name & port connections are on */
270 /* a purely cosmetical change */
271 /* why ipaddr, and not just source_p->sockhost? --fl */
272#if 0
273 static char ipaddr[HOSTIPLEN];
caa4d9d2 274 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
212380e3
AC		 275#endif
276 sendto_realops_snomask(SNO_UNAUTH, L_ALL,
277 "Unauthorised client connection from "
278 "%s!%s%s@%s [%s] on [%s/%u].",
279 source_p->name, IsGotId(source_p) ? "" : "~",
280 source_p->username, source_p->host,
281 source_p->sockhost,
282 source_p->localClient->listener->name, port);
283
284 ilog(L_FUSER,
285 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
286 source_p->name, IsGotId(source_p) ? "" : "~",
287 source_p->username, source_p->sockhost,
288 source_p->localClient->listener->name, port);
35f6f850 289 add_reject(client_p, NULL, NULL);
212380e3
AC		 290 exit_client(client_p, source_p, &me,
291 "You are not authorised to use this server");
292 break;
293 }
294 case BANNED_CLIENT:
212380e3 295 exit_client(client_p, client_p, &me, "*** Banned ");
47adde3d 296 ServerStats.is_ref++;
212380e3
AC		 297 break;
298
299 case 0:
300 default:
301 break;
302 }
303 return (i);
304}
305
306/*
307 * verify_access
308 *
309 * inputs - pointer to client to verify
310 * - pointer to proposed username
311 * output - 0 if success -'ve if not
312 * side effect - find the first (best) I line to attach.
313 */
314static int
315verify_access(struct Client *client_p, const char *username)
316{
317 struct ConfItem *aconf;
212380e3 318
b4a7304c 319 aconf = find_address_conf_by_client(client_p, username);
212380e3
AC		 320 if(aconf == NULL)
321 return NOT_AUTHORISED;
322
323 if(aconf->status & CONF_CLIENT)
324 {
325 if(aconf->flags & CONF_FLAGS_REDIR)
326 {
88520303 327 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
27f616dd 328 aconf->info.name ? aconf->info.name : "", aconf->port);
212380e3
AC		 329 return (NOT_AUTHORISED);
330 }
331
212380e3
AC		 332 /* Thanks for spoof idea amm */
333 if(IsConfDoSpoofIp(aconf))
334 {
335 char *p;
336
337 /* show_ip() depends on this --fl */
338 SetIPSpoof(client_p);
339
340 if(IsConfSpoofNotice(aconf))
341 {
342 sendto_realops_snomask(SNO_GENERAL, L_ALL,
343 "%s spoofing: %s as %s",
344 client_p->name,
27f616dd
JT		 345 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
346 aconf->info.name);
212380e3
AC		 347 }
348
349 /* user@host spoof */
27f616dd 350 if((p = strchr(aconf->info.name, '@')) != NULL)
212380e3
AC		 351 {
352 char *host = p+1;
353 *p = '\0';
354
27f616dd 355 rb_strlcpy(client_p->username, aconf->info.name,
212380e3 356 sizeof(client_p->username));
f427c8b0 357 rb_strlcpy(client_p->host, host,
212380e3
AC		 358 sizeof(client_p->host));
359 *p = '@';
360 }
361 else
27f616dd 362 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
212380e3
AC		 363 }
364 return (attach_iline(client_p, aconf));
365 }
366 else if(aconf->status & CONF_KILL)
367 {
368 if(ConfigFileEntry.kline_with_reason)
212380e3 369 sendto_one(client_p,
92fb5c31 370 form_str(ERR_YOUREBANNEDCREEP),
a12ad044
JT		 371 me.name, client_p->name,
372 get_user_ban_reason(aconf));
35f6f850 373 add_reject(client_p, aconf->user, aconf->host);
212380e3
AC		 374 return (BANNED_CLIENT);
375 }
212380e3
AC		 376
377 return NOT_AUTHORISED;
378}
379
380
b4a7304c
JT		 381/*
382 * find_address_conf_by_client
383 */
384static struct ConfItem *
385find_address_conf_by_client(struct Client *client_p, const char *username)
386{
387 struct ConfItem *aconf;
388 char non_ident[USERLEN + 1];
389
390 if(IsGotId(client_p))
391 {
392 aconf = find_address_conf(client_p->host, client_p->sockhost,
393 client_p->username, client_p->username,
394 (struct sockaddr *) &client_p->localClient->ip,
e867208d 395 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 396 client_p->localClient->auth_user);
397 }
398 else
399 {
400 rb_strlcpy(non_ident, "~", sizeof(non_ident));
401 rb_strlcat(non_ident, username, sizeof(non_ident));
402 aconf = find_address_conf(client_p->host, client_p->sockhost,
403 non_ident, client_p->username,
404 (struct sockaddr *) &client_p->localClient->ip,
e867208d 405 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 406 client_p->localClient->auth_user);
407 }
408 return aconf;
409}
410
411
212380e3
AC		 412/*
413 * add_ip_limit
55abcbb2 414 *
212380e3
AC		 415 * Returns 1 if successful 0 if not
416 *
417 * This checks if the user has exceed the limits for their class
418 * unless of course they are exempt..
419 */
420
421static int
422add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
423{
b2c190a6 424 rb_patricia_node_t *pnode;
e33e589c 425 int bitlen;
212380e3
AC		 426
427 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 428 if(ConfCidrAmount(aconf) == 0
429 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 430 return -1;
431
b2c190a6 432 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3 433
e33e589c
JT		 434 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
435 bitlen = ConfCidrIpv4Bitlen(aconf);
436 else
437 bitlen = ConfCidrIpv6Bitlen(aconf);
438
212380e3 439 if(pnode == NULL)
e33e589c 440 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
212380e3
AC		 441
442 s_assert(pnode != NULL);
443
444 if(pnode != NULL)
445 {
e33e589c 446 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
212380e3
AC		 447 {
448 /* This should only happen if the limits are set to 0 */
e33e589c 449 if((intptr_t)pnode->data == 0)
212380e3 450 {
b2c190a6 451 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 452 }
453 return (0);
454 }
455
e33e589c 456 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
212380e3
AC		 457 }
458 return 1;
459}
460
461static void
462remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
463{
b2c190a6 464 rb_patricia_node_t *pnode;
212380e3
AC		 465
466 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 467 if(ConfCidrAmount(aconf) == 0
468 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 469 return;
470
b2c190a6 471 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3
AC		 472 if(pnode == NULL)
473 return;
474
e33e589c
JT		 475 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
476 if(((intptr_t)pnode->data) == 0)
212380e3 477 {
b2c190a6 478 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 479 }
480
481}
482
483/*
484 * attach_iline
485 *
486 * inputs - client pointer
487 * - conf pointer
488 * output -
489 * side effects - do actual attach
490 */
491static int
492attach_iline(struct Client *client_p, struct ConfItem *aconf)
493{
494 struct Client *target_p;
330fc5c1 495 rb_dlink_node *ptr;
212380e3
AC		 496 int local_count = 0;
497 int global_count = 0;
498 int ident_count = 0;
15f92147 499 int unidented;
212380e3
AC		 500
501 if(IsConfExemptLimits(aconf))
502 return (attach_conf(client_p, aconf));
503
15f92147
JT		 504 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
505 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
212380e3
AC		 506
507 /* find_hostname() returns the head of the list to search */
5cefa1d6 508 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
212380e3
AC		 509 {
510 target_p = ptr->data;
511
512 if(irccmp(client_p->host, target_p->orighost) != 0)
513 continue;
514
515 if(MyConnect(target_p))
516 local_count++;
517
518 global_count++;
519
520 if(unidented)
521 {
522 if(*target_p->username == '~')
523 ident_count++;
524 }
525 else if(irccmp(target_p->username, client_p->username) == 0)
526 ident_count++;
527
528 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
529 return (TOO_MANY_LOCAL);
530 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
531 return (TOO_MANY_GLOBAL);
532 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
533 return (TOO_MANY_IDENT);
534 }
535
536
537 return (attach_conf(client_p, aconf));
538}
539
540/*
541 * detach_conf
542 *
543 * inputs - pointer to client to detach
544 * output - 0 for success, -1 for failure
545 * side effects - Disassociate configuration from the client.
546 * Also removes a class from the list if marked for deleting.
547 */
548int
549detach_conf(struct Client *client_p)
550{
551 struct ConfItem *aconf;
552
553 aconf = client_p->localClient->att_conf;
554
555 if(aconf != NULL)
556 {
557 if(ClassPtr(aconf))
558 {
559 remove_ip_limit(client_p, aconf);
560
561 if(ConfCurrUsers(aconf) > 0)
562 --ConfCurrUsers(aconf);
563
564 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
565 {
566 free_class(ClassPtr(aconf));
567 ClassPtr(aconf) = NULL;
568 }
569
570 }
571
572 aconf->clients--;
573 if(!aconf->clients && IsIllegal(aconf))
574 free_conf(aconf);
575
576 client_p->localClient->att_conf = NULL;
577 return 0;
578 }
579
580 return -1;
581}
582
583/*
584 * attach_conf
55abcbb2 585 *
212380e3
AC		 586 * inputs - client pointer
587 * - conf pointer
588 * output -
589 * side effects - Associate a specific configuration entry to a *local*
590 * client (this is the one which used in accepting the
591 * connection). Note, that this automatically changes the
592 * attachment if there was an old one...
593 */
594int
595attach_conf(struct Client *client_p, struct ConfItem *aconf)
596{
597 if(IsIllegal(aconf))
598 return (NOT_AUTHORISED);
599
600 if(ClassPtr(aconf))
601 {
602 if(!add_ip_limit(client_p, aconf))
603 return (TOO_MANY_LOCAL);
604 }
605
606 if((aconf->status & CONF_CLIENT) &&
607 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
608 {
609 if(!IsConfExemptLimits(aconf))
610 {
611 return (I_LINE_FULL);
612 }
613 else
614 {
5366977b 615 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
212380e3
AC		 616 }
617
618 }
619
620 if(client_p->localClient->att_conf != NULL)
621 detach_conf(client_p);
622
623 client_p->localClient->att_conf = aconf;
624
625 aconf->clients++;
626 ConfCurrUsers(aconf)++;
627 return (0);
628}
629
630/*
631 * rehash
632 *
633 * Actual REHASH service routine. Called with sig == 0 if it has been called
634 * as a result of an operator issuing this command, else assume it has been
635 * called as a result of the server receiving a HUP signal.
636 */
ab31d2b0
EM		 637bool
638rehash(bool sig)
212380e3 639{
ab31d2b0 640 if(sig)
212380e3
AC		 641 {
642 sendto_realops_snomask(SNO_GENERAL, L_ALL,
643 "Got signal SIGHUP, reloading ircd conf. file");
644 }
645
f60055d3 646 rehash_authd();
212380e3 647 /* don't close listeners until we know we can go ahead with the rehash */
ab31d2b0 648 read_conf_files(false);
212380e3
AC		 649
650 if(ServerInfo.description != NULL)
f427c8b0 651 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
212380e3 652 else
f427c8b0 653 rb_strlcpy(me.info, "unknown", sizeof(me.info));
212380e3
AC		 654
655 open_logfiles();
ab31d2b0 656 return false;
212380e3
AC		 657}
658
212380e3 659void
ab31d2b0 660rehash_bans(void)
212380e3 661{
80c9ac51 662 bandb_rehash_bans();
212380e3
AC		 663}
664
665/*
666 * set_default_conf()
667 *
668 * inputs - NONE
669 * output - NONE
670 * side effects - Set default values here.
671 * This is called **PRIOR** to parsing the
672 * configuration file. If you want to do some validation
673 * of values later, put them in validate_conf().
674 */
675
212380e3
AC		 676static void
677set_default_conf(void)
678{
679 /* ServerInfo.name is not rehashable */
680 /* ServerInfo.name = ServerInfo.name; */
681 ServerInfo.description = NULL;
010c4fbd 682 ServerInfo.network_name = NULL;
212380e3
AC		 683
684 memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip));
685 ServerInfo.specific_ipv4_vhost = 0;
ccda6e3f 686#ifdef RB_IPV6
212380e3
AC		 687 memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6));
688 ServerInfo.specific_ipv6_vhost = 0;
689#endif
212380e3 690
212380e3
AC		 691 AdminInfo.name = NULL;
692 AdminInfo.email = NULL;
693 AdminInfo.description = NULL;
694
010c4fbd
KB		 695 ConfigFileEntry.default_operstring = NULL;
696 ConfigFileEntry.default_adminstring = NULL;
697 ConfigFileEntry.servicestring = NULL;
7d33cce8 698 ConfigFileEntry.sasl_service = NULL;
212380e3 699
55abcbb2 700 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
d2e0b78f
AC		 701 ConfigFileEntry.failed_oper_notice = true;
702 ConfigFileEntry.anti_nick_flood = false;
703 ConfigFileEntry.disable_fake_channels = false;
212380e3
AC		 704 ConfigFileEntry.max_nick_time = 20;
705 ConfigFileEntry.max_nick_changes = 5;
706 ConfigFileEntry.max_accept = 20;
707 ConfigFileEntry.max_monitor = 60;
708 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
d2e0b78f 709 ConfigFileEntry.target_change = true;
212380e3
AC		 710 ConfigFileEntry.anti_spam_exit_message_time = 0;
711 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
712 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
d2e0b78f
AC		 713 ConfigFileEntry.client_exit = true;
714 ConfigFileEntry.dline_with_reason = true;
715 ConfigFileEntry.kline_with_reason = true;
212380e3 716 ConfigFileEntry.kline_delay = 0;
d2e0b78f
AC		 717 ConfigFileEntry.warn_no_nline = true;
718 ConfigFileEntry.non_redundant_klines = true;
719 ConfigFileEntry.stats_e_disabled = false;
720 ConfigFileEntry.stats_o_oper_only = false;
212380e3
AC		 721 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
722 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
d2e0b78f
AC		 723 ConfigFileEntry.stats_P_oper_only = false;
724 ConfigFileEntry.stats_c_oper_only = false;
725 ConfigFileEntry.stats_y_oper_only = false;
726 ConfigFileEntry.stats_h_oper_only = false;
727 ConfigFileEntry.map_oper_only = true;
728 ConfigFileEntry.operspy_admin_only = false;
212380e3
AC		 729 ConfigFileEntry.pace_wait = 10;
730 ConfigFileEntry.caller_id_wait = 60;
731 ConfigFileEntry.pace_wait_simple = 1;
d2e0b78f
AC		 732 ConfigFileEntry.short_motd = false;
733 ConfigFileEntry.no_oper_flood = false;
212380e3
AC		 734 ConfigFileEntry.fname_userlog = NULL;
735 ConfigFileEntry.fname_fuserlog = NULL;
736 ConfigFileEntry.fname_operlog = NULL;
737 ConfigFileEntry.fname_foperlog = NULL;
738 ConfigFileEntry.fname_serverlog = NULL;
00533129 739 ConfigFileEntry.fname_killlog = NULL;
212380e3
AC		 740 ConfigFileEntry.fname_klinelog = NULL;
741 ConfigFileEntry.fname_operspylog = NULL;
742 ConfigFileEntry.fname_ioerrorlog = NULL;
d2e0b78f 743 ConfigFileEntry.hide_spoof_ips = true;
212380e3 744 ConfigFileEntry.hide_error_messages = 1;
212380e3
AC		 745 ConfigFileEntry.dots_in_ident = 0;
746 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
d2e0b78f
AC		 747 ConfigFileEntry.use_whois_actually = true;
748 ConfigFileEntry.burst_away = false;
749 ConfigFileEntry.collision_fnc = true;
750 ConfigFileEntry.resv_fnc = true;
751 ConfigFileEntry.global_snotices = true;
752 ConfigFileEntry.operspy_dont_care_user_info = false;
753 ConfigFileEntry.use_propagated_bans = true;
e88a1f1b 754 ConfigFileEntry.max_ratelimit_tokens = 30;
d42e6915 755 ConfigFileEntry.away_interval = 30;
212380e3
AC		 756
757#ifdef HAVE_LIBZ
758 ConfigFileEntry.compression_level = 4;
759#endif
760
761 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
762 UMODE_OPERWALL | UMODE_WALLOP;
763 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
764 ConfigFileEntry.oper_snomask = SNO_GENERAL;
765
d2e0b78f
AC		 766 ConfigChannel.use_except = true;
767 ConfigChannel.use_invex = true;
768 ConfigChannel.use_forward = true;
769 ConfigChannel.use_knock = true;
212380e3
AC		 770 ConfigChannel.knock_delay = 300;
771 ConfigChannel.knock_delay_channel = 60;
772 ConfigChannel.max_chans_per_user = 15;
a4721f5e 773 ConfigChannel.max_chans_per_user_large = 60;
212380e3
AC		 774 ConfigChannel.max_bans = 25;
775 ConfigChannel.max_bans_large = 500;
d2e0b78f
AC		 776 ConfigChannel.only_ascii_channels = false;
777 ConfigChannel.burst_topicwho = false;
778 ConfigChannel.kick_on_split_riding = false;
212380e3
AC		 779
780 ConfigChannel.default_split_user_count = 15000;
781 ConfigChannel.default_split_server_count = 10;
d2e0b78f
AC		 782 ConfigChannel.no_join_on_split = false;
783 ConfigChannel.no_create_on_split = true;
784 ConfigChannel.resv_forcepart = true;
785 ConfigChannel.channel_target_change = true;
786 ConfigChannel.disable_local_channels = false;
d513218a 787 ConfigChannel.displayed_usercount = 3;
212380e3 788
63eb8567
AC		 789 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
790
212380e3
AC		 791 ConfigServerHide.flatten_links = 0;
792 ConfigServerHide.links_delay = 300;
793 ConfigServerHide.hidden = 0;
794 ConfigServerHide.disable_hidden = 0;
795
796 ConfigFileEntry.min_nonwildcard = 4;
797 ConfigFileEntry.min_nonwildcard_simple = 3;
798 ConfigFileEntry.default_floodcount = 8;
7f3382fe 799 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
212380e3
AC		 800 ConfigFileEntry.tkline_expire_notices = 0;
801
802 ConfigFileEntry.reject_after_count = 5;
55abcbb2 803 ConfigFileEntry.reject_ban_time = 300;
212380e3 804 ConfigFileEntry.reject_duration = 120;
43946961
JT		 805 ConfigFileEntry.throttle_count = 4;
806 ConfigFileEntry.throttle_duration = 60;
c2d96fcb 807
e6e54763
SB		 808 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
809 ConfigFileEntry.client_flood_burst_rate = 5;
810 ConfigFileEntry.client_flood_burst_max = 5;
811 ConfigFileEntry.client_flood_message_time = 1;
812 ConfigFileEntry.client_flood_message_num = 2;
813
101db4c4 814 ServerInfo.default_max_clients = MAXCONNECTIONS;
456e5b3d 815
b583faf9 816 ConfigFileEntry.nicklen = NICKLEN;
13d8f0ed 817 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_SHA1;
71c95533 818 ConfigFileEntry.hide_opers_in_whois = 0;
b583faf9 819
456e5b3d 820 if (!alias_dict)
a4bf26dd 821 alias_dict = rb_dictionary_create("alias", strcasecmp);
212380e3
AC		 822}
823
212380e3 824/*
55abcbb2 825 * read_conf()
212380e3
AC		 826 *
827 *
29c92cf9 828 * inputs - None
212380e3
AC		 829 * output - None
830 * side effects - Read configuration file.
831 */
832static void
29c92cf9 833read_conf(void)
212380e3
AC		 834{
835 lineno = 0;
836
837 set_default_conf(); /* Set default values prior to conf parsing */
838 yyparse(); /* Load the values from the conf */
839 validate_conf(); /* Check to make sure some values are still okay. */
840 /* Some global values are also loaded here. */
841 check_class(); /* Make sure classes are valid */
422bb0b5 842 privilegeset_delete_all_illegal();
c55b2782 843 construct_cflags_strings();
212380e3
AC		 844}
845
846static void
847validate_conf(void)
848{
7f3382fe
KB		 849 if(ConfigFileEntry.default_ident_timeout < 1)
850 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
851
212380e3
AC		 852 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
853 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
854
855 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
856 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
857
212380e3 858 if(ServerInfo.network_name == NULL)
47a03750 859 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
212380e3 860
8bd5767b 861 if(ServerInfo.ssld_count < 1)
c6d72037
VY		 862 ServerInfo.ssld_count = 1;
863
c1725bda 864 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
8bd5767b
JT		 865 {
866 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
bfc44622 867 ircd_ssl_ok = false;
8bd5767b 868 } else {
bfc44622 869 ircd_ssl_ok = true;
c1725bda 870 send_new_ssl_certs(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
8bd5767b
JT		 871 }
872
873 if(ServerInfo.ssld_count > get_ssld_count())
874 {
875 int start = ServerInfo.ssld_count - get_ssld_count();
876 /* start up additional ssld if needed */
c1725bda 877 start_ssldaemon(start, ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
c6d72037
VY		 878 }
879
010c4fbd
KB		 880 /* General conf */
881 if (ConfigFileEntry.default_operstring == NULL)
882 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
883
884 if (ConfigFileEntry.default_adminstring == NULL)
885 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
886
887 if (ConfigFileEntry.servicestring == NULL)
888 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
889
7d33cce8
MT		 890 if (ConfigFileEntry.sasl_service == NULL)
891 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
892
894325fe
JT		 893 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
894 * 5 messages are acceptable, so allow at least that.
41ca4cac 895 */
894325fe
JT		 896 if(ConfigFileEntry.client_flood_burst_rate < 5)
897 ConfigFileEntry.client_flood_burst_rate = 5;
898 if(ConfigFileEntry.client_flood_burst_max < 5)
899 ConfigFileEntry.client_flood_burst_max = 5;
41ca4cac
JT		 900 if(ConfigFileEntry.client_flood_message_time >
901 ConfigFileEntry.client_flood_message_num * 2)
902 ConfigFileEntry.client_flood_message_time =
903 ConfigFileEntry.client_flood_message_num * 2;
904
e6e54763
SB		 905 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
906 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
907 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
212380e3 908
212380e3
AC		 909 if(!split_users || !split_servers ||
910 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
911 {
b2c190a6
JT		 912 rb_event_delete(check_splitmode_ev);
913 check_splitmode_ev = NULL;
212380e3
AC		 914 splitmode = 0;
915 splitchecking = 0;
916 }
917}
918
212380e3
AC		 919/* add_temp_kline()
920 *
921 * inputs - pointer to struct ConfItem
922 * output - none
55abcbb2 923 * Side effects - links in given struct ConfItem into
212380e3
AC		 924 * temporary kline link list
925 */
926void
927add_temp_kline(struct ConfItem *aconf)
928{
e3354945 929 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 930 {
330fc5c1 931 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
212380e3
AC		 932 aconf->port = TEMP_WEEK;
933 }
e3354945 934 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 935 {
330fc5c1 936 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
212380e3
AC		 937 aconf->port = TEMP_DAY;
938 }
e3354945 939 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 940 {
330fc5c1 941 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
212380e3
AC		 942 aconf->port = TEMP_HOUR;
943 }
944 else
945 {
330fc5c1 946 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
212380e3
AC		 947 aconf->port = TEMP_MIN;
948 }
949
950 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 951 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
212380e3
AC		 952}
953
954/* add_temp_dline()
955 *
956 * input - pointer to struct ConfItem
957 * output - none
958 * side effects - added to tdline link list and address hash
959 */
960void
961add_temp_dline(struct ConfItem *aconf)
962{
e3354945 963 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 964 {
330fc5c1 965 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
212380e3
AC		 966 aconf->port = TEMP_WEEK;
967 }
e3354945 968 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 969 {
330fc5c1 970 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
212380e3
AC		 971 aconf->port = TEMP_DAY;
972 }
e3354945 973 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 974 {
330fc5c1 975 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
212380e3
AC		 976 aconf->port = TEMP_HOUR;
977 }
978 else
979 {
330fc5c1 980 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
212380e3
AC		 981 aconf->port = TEMP_MIN;
982 }
983
984 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 985 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
212380e3
AC		 986}
987
5c2b9eaf 988/* valid_wild_card()
55abcbb2 989 *
5c2b9eaf
JT		 990 * input - user buffer, host buffer
991 * output - 0 if invalid, 1 if valid
992 * side effects -
993 */
994int
995valid_wild_card(const char *luser, const char *lhost)
996{
997 const char *p;
998 char tmpch;
999 int nonwild = 0;
1000 int bitlen;
1001
1002 /* user has no wildcards, always accept -- jilles */
1003 if(!strchr(luser, '?') && !strchr(luser, '*'))
1004 return 1;
1005
1006 /* check there are enough non wildcard chars */
1007 p = luser;
1008 while((tmpch = *p++))
1009 {
1010 if(!IsKWildChar(tmpch))
1011 {
1012 /* found enough chars, return */
1013 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1014 return 1;
1015 }
1016 }
1017
1018 /* try host, as user didnt contain enough */
1019 /* special case for cidr masks -- jilles */
1020 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1021 {
1022 bitlen = atoi(p + 1);
1023 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1024 if(bitlen > 0
1025 && bitlen >=
1026 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1027 2 * nonwild))
1028 return 1;
1029 }
1030 else
1031 {
1032 p = lhost;
1033 while((tmpch = *p++))
1034 {
1035 if(!IsKWildChar(tmpch))
1036 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1037 return 1;
1038 }
1039 }
1040
1041 return 0;
1042}
1043
431a1a27
JT		 1044rb_dlink_node *
1045find_prop_ban(unsigned int status, const char *user, const char *host)
1046{
1047 rb_dlink_node *ptr;
1048 struct ConfItem *aconf;
1049
1050 RB_DLINK_FOREACH(ptr, prop_bans.head)
1051 {
1052 aconf = ptr->data;
1053
1054 if((aconf->status & ~CONF_ILLEGAL) == status &&
1055 (!user || !aconf->user ||
1056 !irccmp(aconf->user, user)) &&
1057 !irccmp(aconf->host, host))
1058 return ptr;
1059 }
1060 return NULL;
1061}
1062
9197bc35 1063void
483987a4 1064deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
9197bc35
JT		 1065{
1066 int i;
1067
1068 s_assert(ptr->data == aconf);
1069
1070 switch (aconf->status)
1071 {
1072 case CONF_KILL:
1073 if (aconf->lifetime == 0 &&
1074 aconf->flags & CONF_FLAGS_TEMPORARY)
1075 for (i = 0; i < LAST_TEMP_TYPE; i++)
1076 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1077 /* Make sure delete_one_address_conf() does not
1078 * free the aconf.
1079 */
1080 aconf->clients++;
1081 delete_one_address_conf(aconf->host, aconf);
1082 aconf->clients--;
1083 break;
1084 case CONF_DLINE:
1085 if (aconf->lifetime == 0 &&
1086 aconf->flags & CONF_FLAGS_TEMPORARY)
1087 for (i = 0; i < LAST_TEMP_TYPE; i++)
1088 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1089 aconf->clients++;
1090 delete_one_address_conf(aconf->host, aconf);
1091 aconf->clients--;
1092 break;
1093 case CONF_XLINE:
1094 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1095 break;
1096 case CONF_RESV_NICK:
1097 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1098 break;
1099 case CONF_RESV_CHANNEL:
1100 del_from_resv_hash(aconf->host, aconf);
1101 break;
1102 }
483987a4 1103 if (aconf->lifetime != 0 && now < aconf->lifetime)
9197bc35
JT		 1104 aconf->status |= CONF_ILLEGAL;
1105 else
1106 {
1107 if (aconf->lifetime != 0)
1108 rb_dlinkDestroy(ptr, &prop_bans);
1109 free_conf(aconf);
1110 }
1111}
1112
3cbbfb25
JT		 1113/* Given a new ban ConfItem, look for any matching ban, update the lifetime
1114 * from it and delete it.
1115 */
1116void
1117replace_old_ban(struct ConfItem *aconf)
1118{
1119 rb_dlink_node *ptr;
1120 struct ConfItem *oldconf;
1121
1122 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1123 if(ptr != NULL)
1124 {
1125 oldconf = ptr->data;
1126 /* Remember at least as long as the old one. */
1127 if(oldconf->lifetime > aconf->lifetime)
1128 aconf->lifetime = oldconf->lifetime;
1129 /* Force creation time to increase. */
1130 if(oldconf->created >= aconf->created)
1131 aconf->created = oldconf->created + 1;
1132 /* Leave at least one second of validity. */
1133 if(aconf->hold <= aconf->created)
1134 aconf->hold = aconf->created + 1;
1135 if(aconf->lifetime < aconf->hold)
1136 aconf->lifetime = aconf->hold;
1137 /* Tell deactivate_conf() to destroy it. */
1138 oldconf->lifetime = rb_current_time();
483987a4 1139 deactivate_conf(oldconf, ptr, oldconf->lifetime);
3cbbfb25
JT		 1140 }
1141}
1142
9197bc35
JT		 1143static void
1144expire_prop_bans(void *list)
1145{
1146 rb_dlink_node *ptr;
1147 rb_dlink_node *next_ptr;
1148 struct ConfItem *aconf;
483987a4 1149 time_t now;
9197bc35 1150
483987a4 1151 now = rb_current_time();
9197bc35
JT		 1152 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1153 {
1154 aconf = ptr->data;
1155
483987a4
JT		 1156 if(aconf->lifetime <= now ||
1157 (aconf->hold <= now &&
9197bc35
JT		 1158 !(aconf->status & CONF_ILLEGAL)))
1159 {
1160 /* Alert opers that a TKline expired - Hwy */
1161 /* XXX show what type of ban it is */
1162 if(ConfigFileEntry.tkline_expire_notices &&
1163 !(aconf->status & CONF_ILLEGAL))
1164 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1165 "Propagated ban for [%s%s%s] expired",
1166 aconf->user ? aconf->user : "",
1167 aconf->user ? "@" : "",
1168 aconf->host ? aconf->host : "*");
1169
1170 /* will destroy or mark illegal */
483987a4 1171 deactivate_conf(aconf, ptr, now);
9197bc35
JT		 1172 }
1173 }
1174}
1175
212380e3
AC		 1176/* expire_tkline()
1177 *
1178 * inputs - list pointer
1179 * - type
1180 * output - NONE
1181 * side effects - expire tklines and moves them between lists
1182 */
1183static void
1184expire_temp_kd(void *list)
1185{
330fc5c1 1186 rb_dlink_node *ptr;
637c4932 1187 rb_dlink_node *next_ptr;
212380e3
AC		 1188 struct ConfItem *aconf;
1189
637c4932 1190 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1191 {
1192 aconf = ptr->data;
1193
e3354945 1194 if(aconf->hold <= rb_current_time())
212380e3
AC		 1195 {
1196 /* Alert opers that a TKline expired - Hwy */
1197 if(ConfigFileEntry.tkline_expire_notices)
1198 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1199 "Temporary K-line for [%s@%s] expired",
1200 (aconf->user) ? aconf->
1201 user : "*", (aconf->host) ? aconf->host : "*");
1202
1203 delete_one_address_conf(aconf->host, aconf);
330fc5c1 1204 rb_dlinkDestroy(ptr, list);
212380e3
AC		 1205 }
1206 }
1207}
1208
1209static void
1210reorganise_temp_kd(void *list)
1211{
1212 struct ConfItem *aconf;
637c4932 1213 rb_dlink_node *ptr, *next_ptr;
212380e3 1214
637c4932 1215 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1216 {
1217 aconf = ptr->data;
1218
e3354945 1219 if(aconf->hold < (rb_current_time() + (60 * 60)))
212380e3 1220 {
55abcbb2 1221 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1222 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1223 aconf->port = TEMP_MIN;
1224 }
1225 else if(aconf->port > TEMP_HOUR)
1226 {
e3354945 1227 if(aconf->hold < (rb_current_time() + (1440 * 60)))
212380e3 1228 {
55abcbb2 1229 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1230 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1231 aconf->port = TEMP_HOUR;
1232 }
55abcbb2 1233 else if(aconf->port > TEMP_DAY &&
e3354945 1234 (aconf->hold < (rb_current_time() + (10080 * 60))))
212380e3 1235 {
55abcbb2 1236 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1237 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1238 aconf->port = TEMP_DAY;
1239 }
1240 }
1241 }
1242}
1243
1244
1245/* const char* get_oper_name(struct Client *client_p)
1246 * Input: A client to find the active oper{} name for.
1247 * Output: The nick!user@host{oper} of the oper.
1248 * "oper" is server name for remote opers
1249 * Side effects: None.
1250 */
1251char *
1252get_oper_name(struct Client *client_p)
1253{
1254 /* +5 for !,@,{,} and null */
1255 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1256
1257 if(MyOper(client_p))
1258 {
5203cba5 1259 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
212380e3
AC		 1260 client_p->name, client_p->username,
1261 client_p->host, client_p->localClient->opername);
1262 return buffer;
1263 }
1264
5203cba5 1265 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
55abcbb2 1266 client_p->name, client_p->username,
212380e3
AC		 1267 client_p->host, client_p->servptr->name);
1268 return buffer;
1269}
1270
1271/*
1272 * get_printable_conf
1273 *
1274 * inputs - struct ConfItem
1275 *
55abcbb2 1276 * output - name
212380e3
AC		 1277 * - host
1278 * - pass
1279 * - user
1280 * - port
1281 *
1282 * side effects -
1283 * Examine the struct struct ConfItem, setting the values
1284 * of name, host, pass, user to values either
1285 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1286 */
1287void
1288get_printable_conf(struct ConfItem *aconf, char **name, char **host,
29c92cf9 1289 const char **pass, char **user, int *port, char **classname)
212380e3
AC		 1290{
1291 static char null[] = "<NULL>";
1292 static char zero[] = "default";
1293
27f616dd 1294 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
212380e3
AC		 1295 *host = EmptyString(aconf->host) ? null : aconf->host;
1296 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1297 *user = EmptyString(aconf->user) ? null : aconf->user;
1298 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1299 *port = (int) aconf->port;
1300}
1301
a12ad044
JT		 1302char *
1303get_user_ban_reason(struct ConfItem *aconf)
1304{
1305 static char reasonbuf[BUFSIZE];
1306
1307 if (aconf->flags & CONF_FLAGS_TEMPORARY &&
1308 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
5203cba5 1309 snprintf(reasonbuf, sizeof reasonbuf,
a12ad044
JT		 1310 "Temporary %c-line %d min. - ",
1311 aconf->status == CONF_DLINE ? 'D' : 'K',
803ce385 1312 (int)((aconf->hold - aconf->created) / 60));
a12ad044
JT		 1313 else
1314 reasonbuf[0] = '\0';
1315 if (aconf->passwd)
1316 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1317 else
1318 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1319 if (aconf->created)
1320 {
1321 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1322 rb_strlcat(reasonbuf, smalldate(aconf->created),
1323 sizeof reasonbuf);
1324 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1325 }
1326 return reasonbuf;
1327}
1328
54ac8b60 1329void
55abcbb2 1330get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
54ac8b60
VY		 1331 char **host, char **reason,
1332 char **user, char **oper_reason)
1333{
1334 static char null[] = "<NULL>";
778dd56b 1335 static char operreasonbuf[BUFSIZE];
54ac8b60
VY		 1336
1337 *host = EmptyString(aconf->host) ? null : aconf->host;
54ac8b60 1338 *user = EmptyString(aconf->user) ? null : aconf->user;
a12ad044 1339 *reason = get_user_ban_reason(aconf);
b52c2949 1340
778dd56b 1341 if(!IsOper(source_p))
54ac8b60
VY		 1342 *oper_reason = NULL;
1343 else
778dd56b 1344 {
5203cba5 1345 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
778dd56b
JT		 1346 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1347 EmptyString(aconf->spasswd) ? "" : " ",
1348 aconf->info.oper);
1349 *oper_reason = operreasonbuf;
1350 }
212380e3
AC		 1351}
1352
1353/*
1354 * read_conf_files
1355 *
ea111ea5 1356 * inputs - cold start
212380e3
AC		 1357 * output - none
1358 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1359 */
1360void
ea111ea5 1361read_conf_files(bool cold)
212380e3
AC		 1362{
1363 const char *filename;
1364
1365 conf_fbfile_in = NULL;
1366
22342cd1 1367 filename = ConfigFileEntry.configfile;
212380e3
AC		 1368
1369 /* We need to know the initial filename for the yyerror() to report
1370 FIXME: The full path is in conffilenamebuf first time since we
1371 dont know anything else
1372
55abcbb2 1373 - Gozem 2002-07-21
a576a0fe
CD		 1374
1375
212380e3 1376 */
f427c8b0 1377 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
212380e3
AC		 1378
1379 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1380 {
1381 if(cold)
1382 {
f951460a 1383 inotice("Failed in reading configuration file %s, aborting", filename);
a576a0fe
CD		 1384 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1385
1386 int e;
1387 e = errno;
1388
2c0450fb
CD		 1389 inotice("FATAL: %s %s", strerror(e), filename);
1390 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
a576a0fe 1391
212380e3
AC		 1392 exit(-1);
1393 }
1394 else
1395 {
1396 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1397 "Can't open file '%s' - aborting rehash!", filename);
1398 return;
1399 }
1400 }
1401
1402 if(!cold)
1403 {
1404 clear_out_old_conf();
1405 }
1406
7d603754 1407 call_hook(h_conf_read_start, NULL);
29c92cf9 1408 read_conf();
7d603754
KB		 1409 call_hook(h_conf_read_end, NULL);
1410
212380e3
AC		 1411 fclose(conf_fbfile_in);
1412}
1413
8ac75529
AC		 1414/*
1415 * free an alias{} entry.
1416 */
1417static void
4177311e 1418free_alias_cb(rb_dictionary_element *ptr, void *unused)
8ac75529
AC		 1419{
1420 struct alias_entry *aptr = ptr->data;
1421
637c4932
VY		 1422 rb_free(aptr->name);
1423 rb_free(aptr->target);
1424 rb_free(aptr);
8ac75529
AC		 1425}
1426
212380e3
AC		 1427/*
1428 * clear_out_old_conf
1429 *
1430 * inputs - none
1431 * output - none
1432 * side effects - Clear out the old configuration
1433 */
1434static void
1435clear_out_old_conf(void)
1436{
1437 struct Class *cltmp;
330fc5c1 1438 rb_dlink_node *ptr;
637c4932 1439 rb_dlink_node *next_ptr;
212380e3
AC		 1440
1441 /*
1442 * don't delete the class table, rather mark all entries
1443 * for deletion. The table is cleaned up by check_class. - avalon
1444 */
5cefa1d6 1445 RB_DLINK_FOREACH(ptr, class_list.head)
212380e3
AC		 1446 {
1447 cltmp = ptr->data;
1448 MaxUsers(cltmp) = -1;
1449 }
1450
1451 clear_out_address_conf();
1452 clear_s_newconf();
1453
1454 /* clean out module paths */
212380e3
AC		 1455 mod_clear_paths();
1456 mod_add_path(MODULE_DIR);
1457 mod_add_path(MODULE_DIR "/autoload");
212380e3
AC		 1458
1459 /* clean out ServerInfo */
637c4932 1460 rb_free(ServerInfo.description);
212380e3 1461 ServerInfo.description = NULL;
637c4932 1462 rb_free(ServerInfo.network_name);
212380e3 1463 ServerInfo.network_name = NULL;
212380e3 1464
c6d72037
VY		 1465 ServerInfo.ssld_count = 1;
1466
212380e3 1467 /* clean out AdminInfo */
637c4932 1468 rb_free(AdminInfo.name);
212380e3 1469 AdminInfo.name = NULL;
637c4932 1470 rb_free(AdminInfo.email);
212380e3 1471 AdminInfo.email = NULL;
637c4932 1472 rb_free(AdminInfo.description);
212380e3
AC		 1473 AdminInfo.description = NULL;
1474
1475 /* operator{} and class{} blocks are freed above */
1476 /* clean out listeners */
1477 close_listeners();
1478
1479 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1480 * and gecos{} blocks are freed above too
1481 */
1482
1483 /* clean out general */
010c4fbd
KB		 1484 rb_free(ConfigFileEntry.default_operstring);
1485 ConfigFileEntry.default_operstring = NULL;
1486 rb_free(ConfigFileEntry.default_adminstring);
1487 ConfigFileEntry.default_adminstring = NULL;
1488 rb_free(ConfigFileEntry.servicestring);
1489 ConfigFileEntry.servicestring = NULL;
d61a1c7e
JT		 1490 rb_free(ConfigFileEntry.kline_reason);
1491 ConfigFileEntry.kline_reason = NULL;
7d33cce8
MT		 1492 rb_free(ConfigFileEntry.sasl_service);
1493 ConfigFileEntry.sasl_service = NULL;
d61a1c7e 1494
00533129
KB		 1495 /* clean out log */
1496 rb_free(ConfigFileEntry.fname_userlog);
1497 ConfigFileEntry.fname_userlog = NULL;
1498 rb_free(ConfigFileEntry.fname_fuserlog);
1499 ConfigFileEntry.fname_fuserlog = NULL;
1500 rb_free(ConfigFileEntry.fname_operlog);
1501 ConfigFileEntry.fname_operlog = NULL;
1502 rb_free(ConfigFileEntry.fname_foperlog);
1503 ConfigFileEntry.fname_foperlog = NULL;
1504 rb_free(ConfigFileEntry.fname_serverlog);
1505 ConfigFileEntry.fname_serverlog = NULL;
1506 rb_free(ConfigFileEntry.fname_killlog);
1507 ConfigFileEntry.fname_killlog = NULL;
1508 rb_free(ConfigFileEntry.fname_klinelog);
1509 ConfigFileEntry.fname_klinelog = NULL;
1510 rb_free(ConfigFileEntry.fname_operspylog);
1511 ConfigFileEntry.fname_operspylog = NULL;
1512 rb_free(ConfigFileEntry.fname_ioerrorlog);
1513 ConfigFileEntry.fname_ioerrorlog = NULL;
1514
637c4932 1515 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
212380e3 1516 {
637c4932 1517 rb_free(ptr->data);
330fc5c1 1518 rb_dlinkDestroy(ptr, &service_list);
212380e3
AC		 1519 }
1520
1521 /* remove any aliases... -- nenolod */
dbcd150b
AC		 1522 if (alias_dict != NULL)
1523 {
a4bf26dd 1524 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
dbcd150b
AC		 1525 alias_dict = NULL;
1526 }
212380e3 1527
d3f6b808 1528 del_blacklist_all();
212380e3 1529
422bb0b5
JT		 1530 privilegeset_mark_all_illegal();
1531
212380e3
AC		 1532 /* OK, that should be everything... */
1533}
1534
1535
212380e3
AC		 1536/*
1537 * conf_add_class_to_conf
1538 * inputs - pointer to config item
1539 * output - NONE
55abcbb2 1540 * side effects - Add a class pointer to a conf
212380e3
AC		 1541 */
1542
1543void
1544conf_add_class_to_conf(struct ConfItem *aconf)
1545{
1546 if(aconf->className == NULL)
1547 {
47a03750 1548 aconf->className = rb_strdup("default");
212380e3
AC		 1549 ClassPtr(aconf) = default_class;
1550 return;
1551 }
1552
1553 ClassPtr(aconf) = find_class(aconf->className);
1554
1555 if(ClassPtr(aconf) == default_class)
1556 {
1557 if(aconf->status == CONF_CLIENT)
1558 {
8b801ad1
JT		 1559 conf_report_error(
1560 "Using default class for missing class \"%s\" in auth{} for %s@%s",
212380e3
AC		 1561 aconf->className, aconf->user, aconf->host);
1562 }
1563
637c4932 1564 rb_free(aconf->className);
47a03750 1565 aconf->className = rb_strdup("default");
212380e3
AC		 1566 return;
1567 }
1568
1569 if(ConfMaxUsers(aconf) < 0)
1570 {
1571 ClassPtr(aconf) = default_class;
637c4932 1572 rb_free(aconf->className);
47a03750 1573 aconf->className = rb_strdup("default");
212380e3
AC		 1574 return;
1575 }
1576}
1577
1578/*
1579 * conf_add_d_conf
1580 * inputs - pointer to config item
1581 * output - NONE
1582 * side effects - Add a d/D line
1583 */
1584void
1585conf_add_d_conf(struct ConfItem *aconf)
1586{
1587 if(aconf->host == NULL)
1588 return;
1589
1590 aconf->user = NULL;
1591
1592 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1593 * need this anyway, so I will disable it for now... -A1kmm
1594 */
1595
1596 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1597 {
1598 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1599 free_conf(aconf);
1600 }
1601 else
1602 {
40c1fd47 1603 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
212380e3
AC		 1604 }
1605}
1606
decf0486
VY		 1607static char *
1608strip_tabs(char *dest, const char *src, size_t len)
1609{
1610 char *d = dest;
1611
1612 if(dest == NULL || src == NULL)
1613 return NULL;
1614
1615 rb_strlcpy(dest, src, len);
1616
1617 while(*d)
1618 {
1619 if(*d == '\t')
1620 *d = ' ';
1621 d++;
1622 }
1623 return dest;
1624}
212380e3
AC		 1625
1626/*
1627 * yyerror
1628 *
1629 * inputs - message from parser
1630 * output - none
1631 * side effects - message to opers and log file entry is made
1632 */
1633void
1634yyerror(const char *msg)
1635{
1636 char newlinebuf[BUFSIZE];
1637
9eea5de1 1638 strip_tabs(newlinebuf, linebuf, strlen(linebuf));
212380e3 1639
beccbe31 1640 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
212380e3
AC		 1641 sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'",
1642 conffilebuf, lineno + 1, msg, newlinebuf);
1643
212380e3
AC		 1644}
1645
1646int
1647conf_fgets(char *lbuf, int max_size, FILE * fb)
1648{
eac04554 1649 if(fgets(lbuf, max_size, fb) == NULL)
212380e3
AC		 1650 return (0);
1651
1652 return (strlen(lbuf));
1653}
1654
1655int
1656conf_yy_fatal_error(const char *msg)
1657{
1658 return (0);
1659}
Fork of solanum ircd, history is rebased regularly