]> jfr.im git - solanum.git/blame - ircd/s_serv.c
projects / solanum.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
sslproc: simplify ssl open callback
[solanum.git] / ircd / s_serv.c
CommitLineData
212380e3
AC		 1/*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_serv.c: Server related functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
212380e3
AC		 23 */
24
25#include "stdinc.h"
26
27#ifdef HAVE_LIBCRYPTO
28#include <openssl/rsa.h>
29#endif
30
212380e3
AC		 31#include "s_serv.h"
32#include "class.h"
33#include "client.h"
212380e3 34#include "hash.h"
4562c604 35#include "match.h"
212380e3
AC		 36#include "ircd.h"
37#include "ircd_defs.h"
38#include "numeric.h"
39#include "packet.h"
212380e3
AC		 40#include "s_conf.h"
41#include "s_newconf.h"
4016731b 42#include "logger.h"
212380e3
AC		 43#include "s_stats.h"
44#include "s_user.h"
45#include "scache.h"
46#include "send.h"
47#include "client.h"
212380e3
AC		 48#include "channel.h" /* chcap_usage_counts stuff... */
49#include "hook.h"
50#include "msg.h"
54015b5f 51#include "reject.h"
c6d72037 52#include "sslproc.h"
346fba92 53#include "capability.h"
77d3d2db 54#include "s_assert.h"
212380e3 55
212380e3
AC		 56#ifndef INADDR_NONE
57#define INADDR_NONE ((unsigned int) 0xffffffff)
58#endif
59
212380e3
AC		 60int MaxConnectionCount = 1;
61int MaxClientCount = 1;
62int refresh_user_links = 0;
63
64static char buf[BUFSIZE];
65
212380e3
AC		 66/*
67 * list of recognized server capabilities. "TS" is not on the list
68 * because all servers that we talk to already do TS, and the kludged
69 * extra argument to "PASS" takes care of checking that. -orabidoo
70 */
346fba92 71struct CapabilityIndex *serv_capindex = NULL;
486cd344 72struct CapabilityIndex *cli_capindex = NULL;
346fba92
AC		 73
74unsigned int CAP_CAP;
75unsigned int CAP_QS;
76unsigned int CAP_EX;
77unsigned int CAP_CHW;
78unsigned int CAP_IE;
79unsigned int CAP_KLN;
80unsigned int CAP_ZIP;
81unsigned int CAP_KNOCK;
82unsigned int CAP_TB;
83unsigned int CAP_UNKLN;
84unsigned int CAP_CLUSTER;
85unsigned int CAP_ENCAP;
86unsigned int CAP_TS6;
87unsigned int CAP_SERVICE;
88unsigned int CAP_RSFNC;
89unsigned int CAP_SAVE;
90unsigned int CAP_EUID;
91unsigned int CAP_EOPMOD;
92unsigned int CAP_BAN;
93unsigned int CAP_MLOCK;
94
32df5e96 95unsigned int CLICAP_MULTI_PREFIX;
32df5e96
AC		 96unsigned int CLICAP_ACCOUNT_NOTIFY;
97unsigned int CLICAP_EXTENDED_JOIN;
98unsigned int CLICAP_AWAY_NOTIFY;
32df5e96
AC		 99unsigned int CLICAP_USERHOST_IN_NAMES;
100unsigned int CLICAP_CAP_NOTIFY;
101unsigned int CLICAP_CHGHOST;
be2ce24c 102unsigned int CLICAP_ECHO_MESSAGE;
32df5e96 103
346fba92
AC		 104/*
105 * initialize our builtin capability table. --nenolod
106 */
107void
108init_builtin_capabs(void)
109{
885cd603 110 serv_capindex = capability_index_create("server capabilities");
346fba92 111
22cae20f
JT		 112 /* These two are not set via CAPAB/GCAP keywords. */
113 CAP_CAP = capability_put_anonymous(serv_capindex);
114 CAP_TS6 = capability_put_anonymous(serv_capindex);
115
486cd344
AC		 116 CAP_QS = capability_put(serv_capindex, "QS", NULL);
117 CAP_EX = capability_put(serv_capindex, "EX", NULL);
118 CAP_CHW = capability_put(serv_capindex, "CHW", NULL);
119 CAP_IE = capability_put(serv_capindex, "IE", NULL);
120 CAP_KLN = capability_put(serv_capindex, "KLN", NULL);
121 CAP_KNOCK = capability_put(serv_capindex, "KNOCK", NULL);
122 CAP_ZIP = capability_put(serv_capindex, "ZIP", NULL);
123 CAP_TB = capability_put(serv_capindex, "TB", NULL);
124 CAP_UNKLN = capability_put(serv_capindex, "UNKLN", NULL);
125 CAP_CLUSTER = capability_put(serv_capindex, "CLUSTER", NULL);
126 CAP_ENCAP = capability_put(serv_capindex, "ENCAP", NULL);
127 CAP_SERVICE = capability_put(serv_capindex, "SERVICES", NULL);
128 CAP_RSFNC = capability_put(serv_capindex, "RSFNC", NULL);
129 CAP_SAVE = capability_put(serv_capindex, "SAVE", NULL);
130 CAP_EUID = capability_put(serv_capindex, "EUID", NULL);
131 CAP_EOPMOD = capability_put(serv_capindex, "EOPMOD", NULL);
132 CAP_BAN = capability_put(serv_capindex, "BAN", NULL);
133 CAP_MLOCK = capability_put(serv_capindex, "MLOCK", NULL);
58b60c20
JT		 134
135 capability_require(serv_capindex, "QS");
d0c2fc82
JT		 136 capability_require(serv_capindex, "EX");
137 capability_require(serv_capindex, "IE");
58b60c20 138 capability_require(serv_capindex, "ENCAP");
486cd344
AC		 139
140 cli_capindex = capability_index_create("client capabilities");
32df5e96
AC		 141
142 CLICAP_MULTI_PREFIX = capability_put(cli_capindex, "multi-prefix", NULL);
32df5e96
AC		 143 CLICAP_ACCOUNT_NOTIFY = capability_put(cli_capindex, "account-notify", NULL);
144 CLICAP_EXTENDED_JOIN = capability_put(cli_capindex, "extended-join", NULL);
145 CLICAP_AWAY_NOTIFY = capability_put(cli_capindex, "away-notify", NULL);
32df5e96
AC		 146 CLICAP_USERHOST_IN_NAMES = capability_put(cli_capindex, "userhost-in-names", NULL);
147 CLICAP_CAP_NOTIFY = capability_put(cli_capindex, "cap-notify", NULL);
148 CLICAP_CHGHOST = capability_put(cli_capindex, "chghost", NULL);
be2ce24c 149 CLICAP_ECHO_MESSAGE = capability_put(cli_capindex, "echo-message", NULL);
346fba92 150}
212380e3 151
212380e3 152static CNCB serv_connect_callback;
c6d72037 153static CNCB serv_connect_ssl_callback;
53789fdd 154static SSL_OPEN_CB serv_connect_ssl_open_callback;
212380e3
AC		 155
156/*
157 * hunt_server - Do the basic thing in delivering the message (command)
158 * across the relays to the specific server (server) for
159 * actions.
160 *
161 * Note: The command is a format string and *MUST* be
162 * of prefixed style (e.g. ":%s COMMAND %s ...").
163 * Command can have only max 8 parameters.
164 *
165 * server parv[server] is the parameter identifying the
166 * target server.
167 *
168 * *WARNING*
169 * parv[server] is replaced with the pointer to the
170 * real servername from the matched client (I'm lazy
171 * now --msa).
172 *
173 * returns: (see #defines)
174 */
175int
176hunt_server(struct Client *client_p, struct Client *source_p,
177 const char *command, int server, int parc, const char *parv[])
178{
179 struct Client *target_p;
180 int wilds;
330fc5c1 181 rb_dlink_node *ptr;
212380e3
AC		 182 const char *old;
183 char *new;
184
185 /*
186 * Assume it's me, if no server
187 */
188 if(parc <= server || EmptyString(parv[server]) ||
4d7a1ee5 189 match(parv[server], me.name) || (strcmp(parv[server], me.id) == 0))
212380e3 190 return (HUNTED_ISME);
346fba92 191
212380e3
AC		 192 new = LOCAL_COPY(parv[server]);
193
194 /*
195 * These are to pickup matches that would cause the following
196 * message to go in the wrong direction while doing quick fast
197 * non-matching lookups.
198 */
199 if(MyClient(source_p))
200 target_p = find_named_client(new);
201 else
202 target_p = find_client(new);
203
204 if(target_p)
205 if(target_p->from == source_p->from && !MyConnect(target_p))
206 target_p = NULL;
207
212380e3
AC		 208 collapse(new);
209 wilds = (strchr(new, '?') || strchr(new, '*'));
210
211 /*
212 * Again, if there are no wild cards involved in the server
213 * name, use the hash lookup
214 */
cd300c1b 215 if(!target_p && wilds)
212380e3 216 {
2fb07961 217 RB_DLINK_FOREACH(ptr, global_serv_list.head)
212380e3 218 {
cd300c1b 219 if(match(new, ((struct Client *) (ptr->data))->name))
212380e3 220 {
cd300c1b
JT		 221 target_p = ptr->data;
222 break;
212380e3
AC		 223 }
224 }
225 }
226
cd300c1b
JT		 227 if(target_p && !IsRegistered(target_p))
228 target_p = NULL;
229
212380e3
AC		 230 if(target_p)
231 {
212380e3
AC		 232 if(IsMe(target_p) || MyClient(target_p))
233 return HUNTED_ISME;
234
235 old = parv[server];
236 parv[server] = get_id(target_p, target_p);
237
238 sendto_one(target_p, command, get_id(source_p, target_p),
239 parv[1], parv[2], parv[3], parv[4], parv[5], parv[6], parv[7], parv[8]);
240 parv[server] = old;
241 return (HUNTED_PASS);
242 }
243
95d36ef5 244 if(MyClient(source_p) || !IsDigit(parv[server][0]))
212380e3
AC		 245 sendto_one_numeric(source_p, ERR_NOSUCHSERVER,
246 form_str(ERR_NOSUCHSERVER), parv[server]);
247 return (HUNTED_NOSUCH);
248}
249
250/*
251 * try_connections - scan through configuration and try new connections.
252 * Returns the calendar time when the next call to this
253 * function should be made latest. (No harm done if this
254 * is called earlier or later...)
255 */
256void
257try_connections(void *unused)
258{
259 struct Client *client_p;
260 struct server_conf *server_p = NULL;
261 struct server_conf *tmp_p;
262 struct Class *cltmp;
330fc5c1 263 rb_dlink_node *ptr;
07554369 264 bool connecting = false;
212380e3
AC		 265 int confrq = 0;
266 time_t next = 0;
267
5cefa1d6 268 RB_DLINK_FOREACH(ptr, server_conf_list.head)
212380e3
AC		 269 {
270 tmp_p = ptr->data;
271
272 if(ServerConfIllegal(tmp_p) || !ServerConfAutoconn(tmp_p))
273 continue;
274
f4a759c5 275 /* don't allow ssl connections if ssl isn't setup */
bfc44622 276 if(ServerConfSSL(tmp_p) && (!ircd_ssl_ok || !get_ssld_count()))
c6d72037
VY		 277 continue;
278
212380e3
AC		 279 cltmp = tmp_p->class;
280
281 /*
282 * Skip this entry if the use of it is still on hold until
283 * future. Otherwise handle this entry (and set it on hold
284 * until next time). Will reset only hold times, if already
285 * made one successfull connection... [this algorithm is
286 * a bit fuzzy... -- msa >;) ]
287 */
e3354945 288 if(tmp_p->hold > rb_current_time())
212380e3
AC		 289 {
290 if(next > tmp_p->hold || next == 0)
291 next = tmp_p->hold;
292 continue;
293 }
294
295 confrq = get_con_freq(cltmp);
e3354945 296 tmp_p->hold = rb_current_time() + confrq;
212380e3
AC		 297
298 /*
299 * Found a CONNECT config with port specified, scan clients
300 * and see if this server is already connected?
301 */
302 client_p = find_server(NULL, tmp_p->name);
303
304 if(!client_p && (CurrUsers(cltmp) < MaxUsers(cltmp)) && !connecting)
305 {
306 server_p = tmp_p;
307
308 /* We connect only one at time... */
07554369 309 connecting = true;
212380e3
AC		 310 }
311
312 if((next > tmp_p->hold) || (next == 0))
313 next = tmp_p->hold;
314 }
315
316 /* TODO: change this to set active flag to 0 when added to event! --Habeeb */
317 if(GlobalSetOptions.autoconn == 0)
318 return;
319
320 if(!connecting)
321 return;
322
323 /* move this connect entry to end.. */
330fc5c1
AC		 324 rb_dlinkDelete(&server_p->node, &server_conf_list);
325 rb_dlinkAddTail(server_p, &server_p->node, &server_conf_list);
212380e3
AC		 326
327 /*
328 * We used to only print this if serv_connect() actually
b2f0da88 329 * suceeded, but since rb_tcp_connect() can call the callback
212380e3
AC		 330 * immediately if there is an error, we were getting error messages
331 * in the wrong order. SO, we just print out the activated line,
332 * and let serv_connect() / serv_connect_callback() print an
333 * error afterwards if it fails.
334 * -- adrian
335 */
212380e3
AC		 336 sendto_realops_snomask(SNO_GENERAL, L_ALL,
337 "Connection to %s activated",
338 server_p->name);
212380e3
AC		 339
340 serv_connect(server_p, 0);
341}
342
343int
344check_server(const char *name, struct Client *client_p)
345{
346 struct server_conf *server_p = NULL;
347 struct server_conf *tmp_p;
330fc5c1 348 rb_dlink_node *ptr;
212380e3 349 int error = -1;
e69375f3 350 const char *encr;
84e3e445
SA		 351 bool name_matched = false;
352 bool host_matched = false;
353 bool certfp_failed = false;
212380e3
AC		 354
355 s_assert(NULL != client_p);
356 if(client_p == NULL)
357 return error;
358
359 if(!(client_p->localClient->passwd))
360 return -2;
361
362 if(strlen(name) > HOSTLEN)
363 return -4;
364
5cefa1d6 365 RB_DLINK_FOREACH(ptr, server_conf_list.head)
212380e3 366 {
d4214e94
SA		 367 struct rb_sockaddr_storage client_addr;
368
212380e3
AC		 369 tmp_p = ptr->data;
370
371 if(ServerConfIllegal(tmp_p))
372 continue;
373
374 if(!match(tmp_p->name, name))
375 continue;
376
84e3e445 377 name_matched = true;
212380e3 378
d4214e94
SA		 379 if(rb_inet_pton_sock(client_p->sockhost, (struct sockaddr *)&client_addr) <= 0)
380 SET_SS_FAMILY(&client_addr, AF_UNSPEC);
381
382 if((tmp_p->connect_host && match(tmp_p->connect_host, client_p->host))
383 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect4)
384 && comp_with_mask_sock((struct sockaddr *)&client_addr,
385 (struct sockaddr *)&tmp_p->connect4, 32))
386#ifdef RB_IPV6
387 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect6)
388 && comp_with_mask_sock((struct sockaddr *)&client_addr,
389 (struct sockaddr *)&tmp_p->connect6, 128))
390#endif
391 )
212380e3 392 {
84e3e445 393 host_matched = true;
212380e3 394
ff0cc1e6 395 if(tmp_p->passwd)
212380e3 396 {
ff0cc1e6 397 if(ServerConfEncrypted(tmp_p))
212380e3 398 {
e69375f3
JT		 399 encr = rb_crypt(client_p->localClient->passwd,
400 tmp_p->passwd);
401 if(encr != NULL && !strcmp(tmp_p->passwd, encr))
ff0cc1e6
AC		 402 {
403 server_p = tmp_p;
404 break;
405 }
406 else
407 continue;
212380e3 408 }
ff0cc1e6
AC		 409 else if(strcmp(tmp_p->passwd, client_p->localClient->passwd))
410 continue;
212380e3 411 }
ff0cc1e6
AC		 412
413 if(tmp_p->certfp)
212380e3 414 {
84e3e445
SA		 415 if(!client_p->certfp || rb_strcasecmp(tmp_p->certfp, client_p->certfp) != 0) {
416 certfp_failed = true;
ff0cc1e6 417 continue;
84e3e445 418 }
212380e3 419 }
ff0cc1e6
AC		 420
421 server_p = tmp_p;
422 break;
212380e3
AC		 423 }
424 }
425
426 if(server_p == NULL)
84e3e445
SA		 427 {
428 /* return the most specific error */
429 if(certfp_failed)
430 error = -6;
431 else if(host_matched)
432 error = -2;
433 else if(name_matched)
434 error = -3;
435
212380e3 436 return error;
84e3e445 437 }
212380e3 438
f4a759c5
VY		 439 if(ServerConfSSL(server_p) && client_p->localClient->ssl_ctl == NULL)
440 {
441 return -5;
c6d72037
VY		 442 }
443
212380e3
AC		 444 attach_server_conf(client_p, server_p);
445
446 /* clear ZIP/TB if they support but we dont want them */
447#ifdef HAVE_LIBZ
448 if(!ServerConfCompressed(server_p))
449#endif
450 ClearCap(client_p, CAP_ZIP);
451
452 if(!ServerConfTb(server_p))
453 ClearCap(client_p, CAP_TB);
454
455 return 0;
456}
457
458/*
459 * send_capabilities
460 *
461 * inputs - Client pointer to send to
462 * - int flag of capabilities that this server has
463 * output - NONE
464 * side effects - send the CAPAB line to a server -orabidoo
212380e3
AC		 465 */
466void
346fba92 467send_capabilities(struct Client *client_p, unsigned int cap_can_send)
212380e3 468{
346fba92 469 sendto_one(client_p, "CAPAB :%s", capability_index_list(serv_capindex, cap_can_send));
212380e3
AC		 470}
471
431a1a27
JT		 472static void
473burst_ban(struct Client *client_p)
474{
475 rb_dlink_node *ptr;
476 struct ConfItem *aconf;
477 const char *type, *oper;
478 /* +5 for !,@,{,} and null */
479 char operbuf[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
480 char *p;
481 size_t melen;
482
483 melen = strlen(me.name);
484 RB_DLINK_FOREACH(ptr, prop_bans.head)
485 {
486 aconf = ptr->data;
487
488 /* Skip expired stuff. */
489 if(aconf->lifetime < rb_current_time())
490 continue;
491 switch(aconf->status & ~CONF_ILLEGAL)
492 {
493 case CONF_KILL: type = "K"; break;
494 case CONF_DLINE: type = "D"; break;
495 case CONF_XLINE: type = "X"; break;
496 case CONF_RESV_NICK: type = "R"; break;
497 case CONF_RESV_CHANNEL: type = "R"; break;
498 default:
499 continue;
500 }
501 oper = aconf->info.oper;
502 if(aconf->flags & CONF_FLAGS_MYOPER)
503 {
504 /* Our operator{} names may not be meaningful
505 * to other servers, so rewrite to our server
506 * name.
507 */
508 rb_strlcpy(operbuf, aconf->info.oper, sizeof buf);
509 p = strrchr(operbuf, '{');
ee6da53d
JT		 510 if (p != NULL &&
511 operbuf + sizeof operbuf - p > (ptrdiff_t)(melen + 2))
431a1a27
JT		 512 {
513 memcpy(p + 1, me.name, melen);
514 p[melen + 1] = '}';
515 p[melen + 2] = '\0';
516 oper = operbuf;
517 }
518 }
cedb7d05 519 sendto_one(client_p, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
431a1a27 520 me.id,
431a1a27
JT		 521 type,
522 aconf->user ? aconf->user : "*", aconf->host,
523 (unsigned long)aconf->created,
524 (int)(aconf->hold - aconf->created),
525 (int)(aconf->lifetime - aconf->created),
526 oper,
527 aconf->passwd,
528 aconf->spasswd ? "|" : "",
529 aconf->spasswd ? aconf->spasswd : "");
530 }
531}
532
212380e3
AC		 533/* burst_modes_TS6()
534 *
535 * input - client to burst to, channel name, list to burst, mode flag
536 * output -
537 * side effects - client is sent a list of +b, +e, or +I modes
538 */
539static void
55abcbb2 540burst_modes_TS6(struct Client *client_p, struct Channel *chptr,
330fc5c1 541 rb_dlink_list *list, char flag)
212380e3 542{
330fc5c1 543 rb_dlink_node *ptr;
212380e3
AC		 544 struct Ban *banptr;
545 char *t;
546 int tlen;
547 int mlen;
548 int cur_len;
549
5203cba5 550 cur_len = mlen = sprintf(buf, ":%s BMASK %ld %s %c :",
212380e3
AC		 551 me.id, (long) chptr->channelts, chptr->chname, flag);
552 t = buf + mlen;
553
5cefa1d6 554 RB_DLINK_FOREACH(ptr, list->head)
212380e3
AC		 555 {
556 banptr = ptr->data;
557
7f0fc87d 558 tlen = strlen(banptr->banstr) + (banptr->forward ? strlen(banptr->forward) + 1 : 0) + 1;
212380e3
AC		 559
560 /* uh oh */
561 if(cur_len + tlen > BUFSIZE - 3)
562 {
563 /* the one we're trying to send doesnt fit at all! */
564 if(cur_len == mlen)
565 {
566 s_assert(0);
567 continue;
568 }
569
570 /* chop off trailing space and send.. */
571 *(t-1) = '\0';
572 sendto_one(client_p, "%s", buf);
573 cur_len = mlen;
574 t = buf + mlen;
575 }
576
7f0fc87d 577 if (banptr->forward)
5203cba5 578 sprintf(t, "%s$%s ", banptr->banstr, banptr->forward);
7f0fc87d 579 else
5203cba5 580 sprintf(t, "%s ", banptr->banstr);
212380e3
AC		 581 t += tlen;
582 cur_len += tlen;
583 }
584
585 /* cant ever exit the loop above without having modified buf,
586 * chop off trailing space and send.
587 */
588 *(t-1) = '\0';
589 sendto_one(client_p, "%s", buf);
590}
591
212380e3
AC		 592/*
593 * burst_TS6
55abcbb2 594 *
212380e3
AC		 595 * inputs - client (server) to send nick towards
596 * - client to send nick for
597 * output - NONE
598 * side effects - NICK message is sent towards given client_p
599 */
600static void
601burst_TS6(struct Client *client_p)
602{
9744d53e 603 char ubuf[BUFSIZE];
212380e3
AC		 604 struct Client *target_p;
605 struct Channel *chptr;
606 struct membership *msptr;
607 hook_data_client hclientinfo;
608 hook_data_channel hchaninfo;
330fc5c1
AC		 609 rb_dlink_node *ptr;
610 rb_dlink_node *uptr;
212380e3
AC		 611 char *t;
612 int tlen, mlen;
613 int cur_len = 0;
614
615 hclientinfo.client = hchaninfo.client = client_p;
616
5cefa1d6 617 RB_DLINK_FOREACH(ptr, global_client_list.head)
212380e3
AC		 618 {
619 target_p = ptr->data;
620
621 if(!IsPerson(target_p))
622 continue;
623
29c92cf9 624 send_umode(NULL, target_p, 0, ubuf);
212380e3
AC		 625 if(!*ubuf)
626 {
627 ubuf[0] = '+';
628 ubuf[1] = '\0';
629 }
630
bea2295f 631 if(IsCapable(client_p, CAP_EUID))
212380e3
AC		 632 sendto_one(client_p, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
633 target_p->servptr->id, target_p->name,
55abcbb2 634 target_p->hopcount + 1,
212380e3
AC		 635 (long) target_p->tsinfo, ubuf,
636 target_p->username, target_p->host,
637 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
638 target_p->id,
639 IsDynSpoof(target_p) ? target_p->orighost : "*",
640 EmptyString(target_p->user->suser) ? "*" : target_p->user->suser,
641 target_p->info);
bea2295f 642 else
212380e3
AC		 643 sendto_one(client_p, ":%s UID %s %d %ld %s %s %s %s %s :%s",
644 target_p->servptr->id, target_p->name,
55abcbb2 645 target_p->hopcount + 1,
212380e3
AC		 646 (long) target_p->tsinfo, ubuf,
647 target_p->username, target_p->host,
648 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
649 target_p->id, target_p->info);
bea2295f 650
8eda114a
JT		 651 if(!EmptyString(target_p->certfp))
652 sendto_one(client_p, ":%s ENCAP * CERTFP :%s",
653 use_id(target_p), target_p->certfp);
654
bea2295f 655 if(!IsCapable(client_p, CAP_EUID))
212380e3
AC		 656 {
657 if(IsDynSpoof(target_p))
658 sendto_one(client_p, ":%s ENCAP * REALHOST %s",
659 use_id(target_p), target_p->orighost);
660 if(!EmptyString(target_p->user->suser))
661 sendto_one(client_p, ":%s ENCAP * LOGIN %s",
662 use_id(target_p), target_p->user->suser);
663 }
664
c127b45b 665 if(ConfigFileEntry.burst_away && !EmptyString(target_p->user->away))
212380e3
AC		 666 sendto_one(client_p, ":%s AWAY :%s",
667 use_id(target_p),
c127b45b 668 target_p->user->away);
212380e3
AC		 669
670 hclientinfo.target = target_p;
671 call_hook(h_burst_client, &hclientinfo);
672 }
673
5cefa1d6 674 RB_DLINK_FOREACH(ptr, global_channel_list.head)
212380e3
AC		 675 {
676 chptr = ptr->data;
677
678 if(*chptr->chname != '#')
679 continue;
680
5203cba5 681 cur_len = mlen = sprintf(buf, ":%s SJOIN %ld %s %s :", me.id,
212380e3
AC		 682 (long) chptr->channelts, chptr->chname,
683 channel_modes(chptr, client_p));
684
685 t = buf + mlen;
686
5cefa1d6 687 RB_DLINK_FOREACH(uptr, chptr->members.head)
212380e3
AC		 688 {
689 msptr = uptr->data;
690
691 tlen = strlen(use_id(msptr->client_p)) + 1;
692 if(is_chanop(msptr))
693 tlen++;
694 if(is_voiced(msptr))
695 tlen++;
696
697 if(cur_len + tlen >= BUFSIZE - 3)
698 {
699 *(t-1) = '\0';
700 sendto_one(client_p, "%s", buf);
701 cur_len = mlen;
702 t = buf + mlen;
703 }
704
5203cba5 705 sprintf(t, "%s%s ", find_channel_status(msptr, 1),
212380e3
AC		 706 use_id(msptr->client_p));
707
708 cur_len += tlen;
709 t += tlen;
710 }
711
330fc5c1 712 if (rb_dlink_list_length(&chptr->members) > 0)
212380e3
AC		 713 {
714 /* remove trailing space */
715 *(t-1) = '\0';
716 }
717 sendto_one(client_p, "%s", buf);
718
330fc5c1 719 if(rb_dlink_list_length(&chptr->banlist) > 0)
212380e3
AC		 720 burst_modes_TS6(client_p, chptr, &chptr->banlist, 'b');
721
722 if(IsCapable(client_p, CAP_EX) &&
330fc5c1 723 rb_dlink_list_length(&chptr->exceptlist) > 0)
212380e3
AC		 724 burst_modes_TS6(client_p, chptr, &chptr->exceptlist, 'e');
725
726 if(IsCapable(client_p, CAP_IE) &&
330fc5c1 727 rb_dlink_list_length(&chptr->invexlist) > 0)
212380e3
AC		 728 burst_modes_TS6(client_p, chptr, &chptr->invexlist, 'I');
729
330fc5c1 730 if(rb_dlink_list_length(&chptr->quietlist) > 0)
212380e3
AC		 731 burst_modes_TS6(client_p, chptr, &chptr->quietlist, 'q');
732
733 if(IsCapable(client_p, CAP_TB) && chptr->topic != NULL)
734 sendto_one(client_p, ":%s TB %s %ld %s%s:%s",
735 me.id, chptr->chname, (long) chptr->topic_time,
736 ConfigChannel.burst_topicwho ? chptr->topic_info : "",
737 ConfigChannel.burst_topicwho ? " " : "",
738 chptr->topic);
739
084ecbe0 740 if(IsCapable(client_p, CAP_MLOCK))
6b8db2da 741 sendto_one(client_p, ":%s MLOCK %ld %s :%s",
084ecbe0 742 me.id, (long) chptr->channelts, chptr->chname,
6b8db2da 743 EmptyString(chptr->mode_lock) ? "" : chptr->mode_lock);
084ecbe0 744
212380e3
AC		 745 hchaninfo.chptr = chptr;
746 call_hook(h_burst_channel, &hchaninfo);
747 }
748
749 hclientinfo.target = NULL;
750 call_hook(h_burst_finished, &hclientinfo);
751}
752
753/*
754 * show_capabilities - show current server capabilities
755 *
756 * inputs - pointer to an struct Client
757 * output - pointer to static string
758 * side effects - build up string representing capabilities of server listed
759 */
760const char *
761show_capabilities(struct Client *target_p)
762{
763 static char msgbuf[BUFSIZE];
346fba92
AC		 764
765 *msgbuf = '\0';
212380e3 766
f4a759c5
VY		 767 if(has_id(target_p))
768 rb_strlcpy(msgbuf, " TS6", sizeof(msgbuf));
f4a759c5
VY		 769
770 if(IsSSL(target_p))
771 rb_strlcat(msgbuf, " SSL", sizeof(msgbuf));
212380e3
AC		 772
773 if(!IsServer(target_p) || !target_p->serv->caps) /* short circuit if no caps */
f4a759c5 774 return msgbuf + 1;
212380e3 775
89fd463e 776 rb_strlcat(msgbuf, " ", sizeof(msgbuf));
346fba92 777 rb_strlcat(msgbuf, capability_index_list(serv_capindex, target_p->serv->caps), sizeof(msgbuf));
212380e3 778
f4a759c5 779 return msgbuf + 1;
212380e3
AC		 780}
781
782/*
783 * server_estab
784 *
785 * inputs - pointer to a struct Client
786 * output -
787 * side effects -
788 */
789int
790server_estab(struct Client *client_p)
791{
792 struct Client *target_p;
793 struct server_conf *server_p;
794 hook_data_client hdata;
795 char *host;
330fc5c1 796 rb_dlink_node *ptr;
6c528b8e 797 char note[HOSTLEN + 15];
212380e3
AC		 798
799 s_assert(NULL != client_p);
800 if(client_p == NULL)
801 return -1;
212380e3
AC		 802
803 host = client_p->name;
804
805 if((server_p = client_p->localClient->att_sconf) == NULL)
806 {
807 /* This shouldn't happen, better tell the ops... -A1kmm */
808 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
809 "Warning: Lost connect{} block for server %s!", host);
810 return exit_client(client_p, client_p, client_p, "Lost connect{} block!");
811 }
812
813 /* We shouldn't have to check this, it should already done before
814 * server_estab is called. -A1kmm
815 */
816 if(client_p->localClient->passwd)
817 {
818 memset(client_p->localClient->passwd, 0, strlen(client_p->localClient->passwd));
637c4932 819 rb_free(client_p->localClient->passwd);
212380e3
AC		 820 client_p->localClient->passwd = NULL;
821 }
822
823 /* Its got identd , since its a server */
824 SetGotId(client_p);
825
212380e3
AC		 826 if(IsUnknown(client_p))
827 {
ff0cc1e6 828 /* the server may be linking based on certificate fingerprint now. --nenolod */
55abcbb2 829 sendto_one(client_p, "PASS %s TS %d :%s",
ff0cc1e6 830 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
212380e3
AC		 831
832 /* pass info to new server */
833 send_capabilities(client_p, default_server_capabs
834 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
835 | (ServerConfTb(server_p) ? CAP_TB : 0));
836
837 sendto_one(client_p, "SERVER %s 1 :%s%s",
838 me.name,
839 ConfigServerHide.hidden ? "(H) " : "",
840 (me.info[0]) ? (me.info) : "IRCers United");
841 }
842
6c528b8e 843 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
825ddf13 844 ilog_error("rb_set_buffers failed for server");
212380e3 845
c6d72037 846 /* Enable compression now */
f4a759c5
VY		 847 if(IsCapable(client_p, CAP_ZIP))
848 {
849 start_zlib_session(client_p);
850 }
8982edb0 851 sendto_one(client_p, "SVINFO %d %d 0 :%ld", TS_CURRENT, TS_MIN, (long int)rb_current_time());
212380e3
AC		 852
853 client_p->servptr = &me;
854
855 if(IsAnyDead(client_p))
856 return CLIENT_EXITED;
857
858 SetServer(client_p);
859
330fc5c1 860 rb_dlinkAdd(client_p, &client_p->lnode, &me.serv->servers);
330fc5c1
AC		 861 rb_dlinkMoveNode(&client_p->localClient->tnode, &unknown_list, &serv_list);
862 rb_dlinkAddTailAlloc(client_p, &global_serv_list);
212380e3
AC		 863
864 if(has_id(client_p))
865 add_to_id_hash(client_p->id, client_p);
866
867 add_to_client_hash(client_p->name, client_p);
868 /* doesnt duplicate client_p->serv if allocated this struct already */
869 make_server(client_p);
212380e3
AC		 870
871 client_p->serv->caps = client_p->localClient->caps;
872
873 if(client_p->localClient->fullcaps)
874 {
47a03750 875 client_p->serv->fullcaps = rb_strdup(client_p->localClient->fullcaps);
637c4932 876 rb_free(client_p->localClient->fullcaps);
212380e3
AC		 877 client_p->localClient->fullcaps = NULL;
878 }
879
994544c2 880 client_p->serv->nameinfo = scache_connect(client_p->name, client_p->info, IsHidden(client_p));
e3354945 881 client_p->localClient->firsttime = rb_current_time();
212380e3
AC		 882 /* fixing eob timings.. -gnp */
883
330fc5c1 884 if((rb_dlink_list_length(&lclient_list) + rb_dlink_list_length(&serv_list)) >
2f15f871 885 (unsigned long)MaxConnectionCount)
55abcbb2 886 MaxConnectionCount = rb_dlink_list_length(&lclient_list) +
330fc5c1 887 rb_dlink_list_length(&serv_list);
2f15f871 888
212380e3
AC		 889 /* Show the real host/IP to admins */
890 sendto_realops_snomask(SNO_GENERAL, L_ALL,
891 "Link with %s established: (%s) link",
b3ebc7ab 892 client_p->name,
212380e3
AC		 893 show_capabilities(client_p));
894
895 ilog(L_SERVER, "Link with %s established: (%s) link",
896 log_client_name(client_p, SHOW_IP), show_capabilities(client_p));
897
898 hdata.client = &me;
899 hdata.target = client_p;
900 call_hook(h_server_introduced, &hdata);
901
5203cba5 902 snprintf(note, sizeof(note), "Server: %s", client_p->name);
c6d72037 903 rb_note(client_p->localClient->F, note);
212380e3
AC		 904
905 /*
906 ** Old sendto_serv_but_one() call removed because we now
907 ** need to send different names to different servers
908 ** (domain name matching) Send new server to other servers.
909 */
5cefa1d6 910 RB_DLINK_FOREACH(ptr, serv_list.head)
212380e3
AC		 911 {
912 target_p = ptr->data;
913
914 if(target_p == client_p)
915 continue;
916
917 if(has_id(target_p) && has_id(client_p))
918 {
919 sendto_one(target_p, ":%s SID %s 2 %s :%s%s",
920 me.id, client_p->name, client_p->id,
921 IsHidden(client_p) ? "(H) " : "", client_p->info);
922
ce4fa447 923 if(!EmptyString(client_p->serv->fullcaps))
212380e3
AC		 924 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
925 client_p->id, client_p->serv->fullcaps);
926 }
927 else
928 {
929 sendto_one(target_p, ":%s SERVER %s 2 :%s%s",
930 me.name, client_p->name,
931 IsHidden(client_p) ? "(H) " : "", client_p->info);
932
ce4fa447 933 if(!EmptyString(client_p->serv->fullcaps))
212380e3
AC		 934 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
935 client_p->name, client_p->serv->fullcaps);
936 }
937 }
938
939 /*
940 ** Pass on my client information to the new server
941 **
942 ** First, pass only servers (idea is that if the link gets
943 ** cancelled beacause the server was already there,
944 ** there are no NICK's to be cancelled...). Of course,
945 ** if cancellation occurs, all this info is sent anyway,
946 ** and I guess the link dies when a read is attempted...? --msa
55abcbb2 947 **
212380e3
AC		 948 ** Note: Link cancellation to occur at this point means
949 ** that at least two servers from my fragment are building
950 ** up connection this other fragment at the same time, it's
951 ** a race condition, not the normal way of operation...
952 **
953 ** ALSO NOTE: using the get_client_name for server names--
954 ** see previous *WARNING*!!! (Also, original inpath
955 ** is destroyed...)
956 */
5cefa1d6 957 RB_DLINK_FOREACH(ptr, global_serv_list.head)
212380e3
AC		 958 {
959 target_p = ptr->data;
960
961 /* target_p->from == target_p for target_p == client_p */
962 if(IsMe(target_p) || target_p->from == client_p)
963 continue;
964
965 /* presumption, if target has an id, so does its uplink */
966 if(has_id(client_p) && has_id(target_p))
967 sendto_one(client_p, ":%s SID %s %d %s :%s%s",
66c8fdd2 968 target_p->servptr->id, target_p->name,
212380e3
AC		 969 target_p->hopcount + 1, target_p->id,
970 IsHidden(target_p) ? "(H) " : "", target_p->info);
971 else
972 sendto_one(client_p, ":%s SERVER %s %d :%s%s",
66c8fdd2 973 target_p->servptr->name,
212380e3
AC		 974 target_p->name, target_p->hopcount + 1,
975 IsHidden(target_p) ? "(H) " : "", target_p->info);
976
ce4fa447 977 if(!EmptyString(target_p->serv->fullcaps))
212380e3
AC		 978 sendto_one(client_p, ":%s ENCAP * GCAP :%s",
979 get_id(target_p, client_p),
980 target_p->serv->fullcaps);
981 }
982
431a1a27
JT		 983 if(IsCapable(client_p, CAP_BAN))
984 burst_ban(client_p);
985
7bb8c655 986 burst_TS6(client_p);
212380e3
AC		 987
988 /* Always send a PING after connect burst is done */
989 sendto_one(client_p, "PING :%s", get_id(&me, client_p));
990
991 free_pre_client(client_p);
992
0bd120ed 993 send_pop_queue(client_p);
212380e3
AC		 994
995 return 0;
212380e3
AC		 996}
997
998/*
999 * New server connection code
1000 * Based upon the stuff floating about in s_bsd.c
1001 * -- adrian
1002 */
1003
1004/*
1005 * serv_connect() - initiate a server connection
1006 *
5203cba5 1007 * inputs - pointer to conf
212380e3
AC		 1008 * - pointer to client doing the connet
1009 * output -
1010 * side effects -
1011 *
1012 * This code initiates a connection to a server. It first checks to make
1013 * sure the given server exists. If this is the case, it creates a socket,
1014 * creates a client, saves the socket information in the client, and
b2f0da88 1015 * initiates a connection to the server through rb_connect_tcp(). The
212380e3
AC		 1016 * completion of this goes through serv_completed_connection().
1017 *
1018 * We return 1 if the connection is attempted, since we don't know whether
1019 * it suceeded or not, and 0 if it fails in here somewhere.
1020 */
1021int
1022serv_connect(struct server_conf *server_p, struct Client *by)
1023{
1024 struct Client *client_p;
d4214e94
SA		 1025 struct rb_sockaddr_storage sa_connect;
1026 struct rb_sockaddr_storage sa_bind;
6c528b8e 1027 char note[HOSTLEN + 10];
1d02144f 1028 rb_fde_t *F;
212380e3
AC		 1029
1030 s_assert(server_p != NULL);
1031 if(server_p == NULL)
1032 return 0;
1033
d4214e94
SA		 1034#ifdef RB_IPV6
1035 if(server_p->aftype != AF_UNSPEC
1036 && GET_SS_FAMILY(&server_p->connect4) == AF_INET
1037 && GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1038 {
1039 if(rand() % 2 == 0)
1040 {
1041 sa_connect = server_p->connect4;
1042 sa_bind = server_p->bind4;
1043 }
1044 else
1045 {
1046 sa_connect = server_p->connect6;
1047 sa_bind = server_p->bind6;
1048 }
1049 }
1050 else if(server_p->aftype == AF_INET || GET_SS_FAMILY(&server_p->connect4) == AF_INET)
1051#endif
1052 {
1053 sa_connect = server_p->connect4;
1054 sa_bind = server_p->bind4;
1055 }
1056#ifdef RB_IPV6
1057 else if(server_p->aftype == AF_INET6 || GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1058 {
1059 sa_connect = server_p->connect6;
1060 sa_bind = server_p->bind6;
1061 }
1062#endif
1063
1d02144f 1064 /* log */
d4214e94
SA		 1065 buf[0] = 0;
1066 rb_inet_ntop_sock((struct sockaddr *)&sa_connect, buf, sizeof(buf));
1d02144f
AC		 1067 ilog(L_SERVER, "Connect to *[%s] @%s", server_p->name, buf);
1068
212380e3
AC		 1069 /*
1070 * Make sure this server isn't already connected
1071 */
1072 if((client_p = find_server(NULL, server_p->name)))
1073 {
1074 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1075 "Server %s already present from %s",
b3ebc7ab 1076 server_p->name, client_p->name);
212380e3
AC		 1077 if(by && IsPerson(by) && !MyClient(by))
1078 sendto_one_notice(by, ":Server %s already present from %s",
b3ebc7ab 1079 server_p->name, client_p->name);
212380e3
AC		 1080 return 0;
1081 }
1082
1083 /* create a socket for the server connection */
d4214e94
SA		 1084 if(GET_SS_FAMILY(&sa_connect) == AF_UNSPEC)
1085 {
1086 ilog_error("unspecified socket address family");
1087 return 0;
1088 }
1089 else if((F = rb_socket(GET_SS_FAMILY(&sa_connect), SOCK_STREAM, 0, NULL)) == NULL)
212380e3 1090 {
825ddf13 1091 ilog_error("opening a stream socket");
212380e3
AC		 1092 return 0;
1093 }
1094
1d02144f 1095 /* servernames are always guaranteed under HOSTLEN chars */
5203cba5 1096 snprintf(note, sizeof(note), "Server: %s", server_p->name);
6c528b8e 1097 rb_note(F, note);
212380e3
AC		 1098
1099 /* Create a local client */
1100 client_p = make_client(NULL);
1101
1d02144f 1102 /* Copy in the server, hostname, fd */
f427c8b0 1103 rb_strlcpy(client_p->name, server_p->name, sizeof(client_p->name));
d4214e94
SA		 1104 if(server_p->connect_host)
1105 rb_strlcpy(client_p->host, server_p->connect_host, sizeof(client_p->host));
1106 else
1107 rb_strlcpy(client_p->host, buf, sizeof(client_p->host));
1d02144f 1108 rb_strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
6c528b8e 1109 client_p->localClient->F = F;
1d02144f 1110 /* shove the port number into the sockaddr */
d4214e94 1111 SET_SS_PORT(&sa_connect, htons(server_p->port));
212380e3
AC		 1112
1113 /*
1114 * Set up the initial server evilness, ripped straight from
1115 * connect_server(), so don't blame me for it being evil.
1116 * -- adrian
1117 */
1118
6c528b8e 1119 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
212380e3 1120 {
825ddf13 1121 ilog_error("setting the buffer size for a server connection");
212380e3
AC		 1122 }
1123
1124 /*
1125 * Attach config entries to client here rather than in
1126 * serv_connect_callback(). This to avoid null pointer references.
1127 */
1128 attach_server_conf(client_p, server_p);
1129
1130 /*
1131 * at this point we have a connection in progress and C/N lines
1132 * attached to the client, the socket info should be saved in the
1133 * client and it should either be resolved or have a valid address.
1134 *
1135 * The socket has been connected or connect is in progress.
1136 */
1137 make_server(client_p);
1d02144f
AC		 1138 if(by && IsClient(by))
1139 strcpy(client_p->serv->by, by->name);
212380e3 1140 else
1d02144f
AC		 1141 strcpy(client_p->serv->by, "AutoConn.");
1142
212380e3 1143 SetConnecting(client_p);
330fc5c1 1144 rb_dlinkAddTail(client_p, &client_p->node, &global_client_list);
212380e3 1145
d4214e94 1146 if(GET_SS_FAMILY(&sa_bind) == AF_UNSPEC)
212380e3 1147 {
d4214e94
SA		 1148 if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind4))
1149 sa_bind = ServerInfo.bind4;
ccda6e3f 1150#ifdef RB_IPV6
d4214e94
SA		 1151 if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind6))
1152 sa_bind = ServerInfo.bind6;
17648928 1153#endif
abe5dd20 1154 }
1d02144f 1155
d4214e94
SA		 1156 rb_connect_tcp(client_p->localClient->F,
1157 (struct sockaddr *)&sa_connect,
1158 GET_SS_FAMILY(&sa_bind) == AF_UNSPEC ? NULL : (struct sockaddr *)&sa_bind,
d4214e94
SA		 1159 ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
1160 client_p, ConfigFileEntry.connect_timeout);
1d02144f 1161 return 1;
212380e3
AC		 1162}
1163
f4a759c5
VY		 1164static void
1165serv_connect_ssl_callback(rb_fde_t *F, int status, void *data)
1166{
1167 struct Client *client_p = data;
1168 rb_fde_t *xF[2];
9ec51326 1169 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
f4a759c5
VY		 1170 if(status != RB_OK)
1171 {
9ec51326
JT		 1172 /* Print error message, just like non-SSL. */
1173 serv_connect_callback(F, status, data);
f4a759c5
VY		 1174 return;
1175 }
eda22d87
JT		 1176 if(rb_socketpair(AF_UNIX, SOCK_STREAM, 0, &xF[0], &xF[1], "Outgoing ssld connection") == -1)
1177 {
1178 ilog_error("rb_socketpair failed for server");
1179 serv_connect_callback(F, RB_ERROR, data);
1180 return;
55abcbb2 1181
eda22d87 1182 }
f4a759c5 1183 client_p->localClient->F = xF[0];
53789fdd 1184 client_p->localClient->ssl_callback = serv_connect_ssl_open_callback;
f4a759c5 1185
de7cf7e0 1186 client_p->localClient->ssl_ctl = start_ssld_connect(F, xF[1], connid_get(client_p));
5e270e7d
SA		 1187 if(!client_p->localClient->ssl_ctl)
1188 {
1189 serv_connect_callback(client_p->localClient->F, RB_ERROR, data);
1190 return;
1191 }
f4a759c5 1192 SetSSL(client_p);
c6d72037
VY		 1193}
1194
53789fdd
SA		 1195static int
1196serv_connect_ssl_open_callback(struct Client *client_p, int status)
1197{
1198 serv_connect_callback(client_p->localClient->F, status, client_p);
1199 return 1; /* suppress default exit_client handler for status != RB_OK */
1200}
1201
212380e3
AC		 1202/*
1203 * serv_connect_callback() - complete a server connection.
55abcbb2 1204 *
212380e3
AC		 1205 * This routine is called after the server connection attempt has
1206 * completed. If unsucessful, an error is sent to ops and the client
1207 * is closed. If sucessful, it goes through the initialisation/check
1208 * procedures, the capabilities are sent, and the socket is then
1209 * marked for reading.
1210 */
1211static void
6c528b8e 1212serv_connect_callback(rb_fde_t *F, int status, void *data)
212380e3
AC		 1213{
1214 struct Client *client_p = data;
1215 struct server_conf *server_p;
1216 char *errstr;
1217
1218 /* First, make sure its a real client! */
1219 s_assert(client_p != NULL);
6c528b8e 1220 s_assert(client_p->localClient->F == F);
212380e3
AC		 1221
1222 if(client_p == NULL)
1223 return;
1224
1225 /* while we were waiting for the callback, its possible this already
1226 * linked in.. --fl
1227 */
1228 if(find_server(NULL, client_p->name) != NULL)
1229 {
1230 exit_client(client_p, client_p, &me, "Server Exists");
1231 return;
1232 }
1233
f4a759c5 1234 if(client_p->localClient->ssl_ctl == NULL)
c6d72037
VY		 1235 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1236
212380e3 1237 /* Check the status */
6c528b8e 1238 if(status != RB_OK)
212380e3
AC		 1239 {
1240 /* COMM_ERR_TIMEOUT wont have an errno associated with it,
1241 * the others will.. --fl
1242 */
4fbb7362 1243 if(status == RB_ERR_TIMEOUT || status == RB_ERROR_SSL)
212380e3
AC		 1244 {
1245 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1246 "Error connecting to %s[%s]: %s",
55abcbb2 1247 client_p->name,
212380e3 1248 "255.255.255.255",
b2f0da88 1249 rb_errstr(status));
212380e3
AC		 1250 ilog(L_SERVER, "Error connecting to %s[%s]: %s",
1251 client_p->name, client_p->sockhost,
b2f0da88 1252 rb_errstr(status));
212380e3
AC		 1253 }
1254 else
1255 {
6c528b8e 1256 errstr = strerror(rb_get_sockerr(F));
212380e3
AC		 1257 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1258 "Error connecting to %s[%s]: %s (%s)",
1259 client_p->name,
212380e3 1260 "255.255.255.255",
b2f0da88 1261 rb_errstr(status), errstr);
212380e3
AC		 1262 ilog(L_SERVER, "Error connecting to %s[%s]: %s (%s)",
1263 client_p->name, client_p->sockhost,
b2f0da88 1264 rb_errstr(status), errstr);
212380e3
AC		 1265 }
1266
b2f0da88 1267 exit_client(client_p, client_p, &me, rb_errstr(status));
212380e3
AC		 1268 return;
1269 }
1270
1271 /* COMM_OK, so continue the connection procedure */
1272 /* Get the C/N lines */
1273 if((server_p = client_p->localClient->att_sconf) == NULL)
1274 {
1275 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL, "Lost connect{} block for %s",
b3ebc7ab 1276 client_p->name);
212380e3
AC		 1277 exit_client(client_p, client_p, &me, "Lost connect{} block");
1278 return;
1279 }
1280
65f43a4f
SA		 1281 if(server_p->certfp && (!client_p->certfp || rb_strcasecmp(server_p->certfp, client_p->certfp) != 0))
1282 {
1283 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1284 "Connection to %s has invalid certificate fingerprint %s",
1285 client_p->name, client_p->certfp);
1286 ilog(L_SERVER, "Access denied, invalid certificate fingerprint %s from %s",
1287 client_p->certfp, log_client_name(client_p, SHOW_IP));
1288
1289 exit_client(client_p, client_p, &me, "Invalid fingerprint.");
1290 return;
1291 }
1292
212380e3
AC		 1293 /* Next, send the initial handshake */
1294 SetHandshake(client_p);
1295
ff0cc1e6 1296 /* the server may be linking based on certificate fingerprint now. --nenolod */
55abcbb2 1297 sendto_one(client_p, "PASS %s TS %d :%s",
ff0cc1e6 1298 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
212380e3
AC		 1299
1300 /* pass my info to the new server */
1301 send_capabilities(client_p, default_server_capabs
1302 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
1303 | (ServerConfTb(server_p) ? CAP_TB : 0));
1304
1305 sendto_one(client_p, "SERVER %s 1 :%s%s",
1306 me.name,
1307 ConfigServerHide.hidden ? "(H) " : "", me.info);
1308
55abcbb2 1309 /*
212380e3
AC		 1310 * If we've been marked dead because a send failed, just exit
1311 * here now and save everyone the trouble of us ever existing.
1312 */
1313 if(IsAnyDead(client_p))
1314 {
1315 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1316 "%s went dead during handshake", client_p->name);
1317 exit_client(client_p, client_p, &me, "Went dead during handshake");
1318 return;
1319 }
1320
1321 /* don't move to serv_list yet -- we haven't sent a burst! */
1322
1323 /* If we get here, we're ok, so lets start reading some data */
6c528b8e 1324 read_packet(F, client_p);
212380e3 1325}
Fork of solanum ircd, history is rebased regularly