]> jfr.im git - solanum.git/blame - ircd/s_conf.c
projects / solanum.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
authd/providers/ident: add configuration interface
[solanum.git] / ircd / s_conf.c
CommitLineData
212380e3
AC		 1/*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
212380e3
AC		 23 */
24
25#include "stdinc.h"
26#include "ircd_defs.h"
212380e3
AC		 27#include "s_conf.h"
28#include "s_newconf.h"
8b801ad1 29#include "newconf.h"
212380e3
AC		 30#include "s_serv.h"
31#include "s_stats.h"
32#include "channel.h"
33#include "class.h"
34#include "client.h"
212380e3 35#include "hash.h"
4562c604 36#include "match.h"
212380e3
AC		 37#include "ircd.h"
38#include "listener.h"
39#include "hostmask.h"
40#include "modules.h"
41#include "numeric.h"
4016731b 42#include "logger.h"
212380e3 43#include "send.h"
212380e3
AC		 44#include "reject.h"
45#include "cache.h"
46#include "blacklist.h"
422bb0b5 47#include "privilege.h"
c6d72037 48#include "sslproc.h"
80c9ac51 49#include "bandbi.h"
27f616dd 50#include "operhash.h"
c55b2782 51#include "chmode.h"
7d603754 52#include "hook.h"
77d3d2db 53#include "s_assert.h"
1eeb0469 54#include "authd.h"
212380e3
AC		 55
56struct config_server_hide ConfigServerHide;
57
6ab8c0d3 58extern int yyparse(void); /* defined in y.tab.c */
212380e3
AC		 59extern char linebuf[];
60
61#ifndef INADDR_NONE
62#define INADDR_NONE ((unsigned int) 0xffffffff)
63#endif
64
398b6a73 65static rb_bh *confitem_heap = NULL;
212380e3 66
9197bc35
JT		 67rb_dlink_list prop_bans;
68
330fc5c1
AC		 69rb_dlink_list temp_klines[LAST_TEMP_TYPE];
70rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
71rb_dlink_list service_list;
212380e3
AC		 72
73/* internally defined functions */
74static void set_default_conf(void);
75static void validate_conf(void);
29c92cf9 76static void read_conf(void);
212380e3
AC		 77static void clear_out_old_conf(void);
78
9197bc35 79static void expire_prop_bans(void *list);
212380e3
AC		 80static void expire_temp_kd(void *list);
81static void reorganise_temp_kd(void *list);
82
83FILE *conf_fbfile_in;
84extern char yytext[];
85
86static int verify_access(struct Client *client_p, const char *username);
b4a7304c 87static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
212380e3
AC		 88static int attach_iline(struct Client *, struct ConfItem *);
89
90void
91init_s_conf(void)
92{
b2c190a6 93 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
212380e3 94
9197bc35
JT		 95 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
96
12aea5fe
VY		 97 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
98 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
212380e3 99
12aea5fe 100 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
212380e3 101 &temp_klines[TEMP_HOUR], 3600);
12aea5fe 102 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
212380e3 103 &temp_dlines[TEMP_HOUR], 3600);
12aea5fe 104 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
212380e3 105 &temp_klines[TEMP_DAY], 86400);
12aea5fe 106 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
212380e3 107 &temp_dlines[TEMP_DAY], 86400);
12aea5fe 108 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
212380e3 109 &temp_klines[TEMP_WEEK], 604800);
12aea5fe 110 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
212380e3
AC		 111 &temp_dlines[TEMP_WEEK], 604800);
112}
113
114/*
115 * make_conf
116 *
117 * inputs - none
118 * output - pointer to new conf entry
119 * side effects - none
120 */
121struct ConfItem *
122make_conf()
123{
124 struct ConfItem *aconf;
125
398b6a73 126 aconf = rb_bh_alloc(confitem_heap);
212380e3
AC		 127 aconf->status = CONF_ILLEGAL;
128 return (aconf);
129}
130
131/*
132 * free_conf
133 *
134 * inputs - pointer to conf to free
135 * output - none
136 * side effects - crucial password fields are zeroed, conf is freed
137 */
138void
139free_conf(struct ConfItem *aconf)
140{
141 s_assert(aconf != NULL);
142 if(aconf == NULL)
143 return;
144
145 /* security.. */
146 if(aconf->passwd)
147 memset(aconf->passwd, 0, strlen(aconf->passwd));
148 if(aconf->spasswd)
149 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
150
637c4932
VY		 151 rb_free(aconf->passwd);
152 rb_free(aconf->spasswd);
637c4932
VY		 153 rb_free(aconf->className);
154 rb_free(aconf->user);
155 rb_free(aconf->host);
212380e3 156
27f616dd
JT		 157 if(IsConfBan(aconf))
158 operhash_delete(aconf->info.oper);
159 else
160 rb_free(aconf->info.name);
161
398b6a73 162 rb_bh_free(confitem_heap, aconf);
212380e3
AC		 163}
164
165/*
166 * check_client
167 *
168 * inputs - pointer to client
169 * output - 0 = Success
170 * NOT_AUTHORISED (-1) = Access denied (no I line match)
85368a13 171 * I_SOCKET_ERROR (-2) = Bad socket.
212380e3
AC		 172 * I_LINE_FULL (-3) = I-line is full
173 * TOO_MANY (-4) = Too many connections from hostname
174 * BANNED_CLIENT (-5) = K-lined
175 * side effects - Ordinary client access check.
176 * Look for conf lines which have the same
177 * status as the flags passed.
178 */
179int
180check_client(struct Client *client_p, struct Client *source_p, const char *username)
181{
182 int i;
183
212380e3
AC		 184 if((i = verify_access(source_p, username)))
185 {
55abcbb2 186 ilog(L_FUSER, "Access denied: %s[%s]",
212380e3
AC		 187 source_p->name, source_p->sockhost);
188 }
55abcbb2 189
212380e3
AC		 190 switch (i)
191 {
85368a13 192 case I_SOCKET_ERROR:
212380e3
AC		 193 exit_client(client_p, source_p, &me, "Socket Error");
194 break;
195
196 case TOO_MANY_LOCAL:
606384ae
JT		 197 /* Note that these notices are sent to opers on other
198 * servers also, so even if local opers are allowed to
199 * see the IP, we still cannot send it.
200 */
212380e3
AC		 201 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
202 "Too many local connections for %s!%s%s@%s",
203 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 204 source_p->username,
205 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 206
207 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
208 source_p->name, IsGotId(source_p) ? "" : "~",
55abcbb2 209 source_p->username, source_p->sockhost);
212380e3 210
47adde3d 211 ServerStats.is_ref++;
212380e3
AC		 212 exit_client(client_p, source_p, &me, "Too many host connections (local)");
213 break;
214
215 case TOO_MANY_GLOBAL:
216 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
217 "Too many global connections for %s!%s%s@%s",
218 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 219 source_p->username,
220 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 221 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
222 source_p->name, IsGotId(source_p) ? "" : "~",
223 source_p->username, source_p->sockhost);
224
47adde3d 225 ServerStats.is_ref++;
212380e3
AC		 226 exit_client(client_p, source_p, &me, "Too many host connections (global)");
227 break;
228
229 case TOO_MANY_IDENT:
230 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
231 "Too many user connections for %s!%s%s@%s",
232 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 233 source_p->username,
234 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 235 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
236 source_p->name, IsGotId(source_p) ? "" : "~",
237 source_p->username, source_p->sockhost);
238
47adde3d 239 ServerStats.is_ref++;
212380e3
AC		 240 exit_client(client_p, source_p, &me, "Too many user connections (global)");
241 break;
242
243 case I_LINE_FULL:
244 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
245 "I-line is full for %s!%s%s@%s (%s).",
246 source_p->name, IsGotId(source_p) ? "" : "~",
247 source_p->username, source_p->host,
4b7e6904 248 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
212380e3 249
55abcbb2 250 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
212380e3
AC		 251 source_p->name, IsGotId(source_p) ? "" : "~",
252 source_p->username, source_p->sockhost);
253
47adde3d 254 ServerStats.is_ref++;
212380e3
AC		 255 exit_client(client_p, source_p, &me,
256 "No more connections allowed in your connection class");
257 break;
258
259 case NOT_AUTHORISED:
260 {
261 int port = -1;
ccda6e3f 262#ifdef RB_IPV6
e867208d 263 if(GET_SS_FAMILY(&source_p->localClient->ip) == AF_INET6)
212380e3
AC		 264 port = ntohs(((struct sockaddr_in6 *)&source_p->localClient->listener->addr)->sin6_port);
265 else
266#endif
267 port = ntohs(((struct sockaddr_in *)&source_p->localClient->listener->addr)->sin_port);
55abcbb2 268
47adde3d 269 ServerStats.is_ref++;
212380e3
AC		 270 /* jdc - lists server name & port connections are on */
271 /* a purely cosmetical change */
272 /* why ipaddr, and not just source_p->sockhost? --fl */
273#if 0
274 static char ipaddr[HOSTIPLEN];
caa4d9d2 275 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
212380e3
AC		 276#endif
277 sendto_realops_snomask(SNO_UNAUTH, L_ALL,
278 "Unauthorised client connection from "
279 "%s!%s%s@%s [%s] on [%s/%u].",
280 source_p->name, IsGotId(source_p) ? "" : "~",
281 source_p->username, source_p->host,
282 source_p->sockhost,
283 source_p->localClient->listener->name, port);
284
285 ilog(L_FUSER,
286 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
287 source_p->name, IsGotId(source_p) ? "" : "~",
288 source_p->username, source_p->sockhost,
289 source_p->localClient->listener->name, port);
35f6f850 290 add_reject(client_p, NULL, NULL);
212380e3
AC		 291 exit_client(client_p, source_p, &me,
292 "You are not authorised to use this server");
293 break;
294 }
295 case BANNED_CLIENT:
212380e3 296 exit_client(client_p, client_p, &me, "*** Banned ");
47adde3d 297 ServerStats.is_ref++;
212380e3
AC		 298 break;
299
300 case 0:
301 default:
302 break;
303 }
304 return (i);
305}
306
307/*
308 * verify_access
309 *
310 * inputs - pointer to client to verify
311 * - pointer to proposed username
312 * output - 0 if success -'ve if not
313 * side effect - find the first (best) I line to attach.
314 */
315static int
316verify_access(struct Client *client_p, const char *username)
317{
318 struct ConfItem *aconf;
212380e3 319
b4a7304c 320 aconf = find_address_conf_by_client(client_p, username);
212380e3
AC		 321 if(aconf == NULL)
322 return NOT_AUTHORISED;
323
324 if(aconf->status & CONF_CLIENT)
325 {
326 if(aconf->flags & CONF_FLAGS_REDIR)
327 {
88520303 328 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
27f616dd 329 aconf->info.name ? aconf->info.name : "", aconf->port);
212380e3
AC		 330 return (NOT_AUTHORISED);
331 }
332
212380e3
AC		 333 /* Thanks for spoof idea amm */
334 if(IsConfDoSpoofIp(aconf))
335 {
336 char *p;
337
338 /* show_ip() depends on this --fl */
339 SetIPSpoof(client_p);
340
341 if(IsConfSpoofNotice(aconf))
342 {
343 sendto_realops_snomask(SNO_GENERAL, L_ALL,
344 "%s spoofing: %s as %s",
345 client_p->name,
27f616dd
JT		 346 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
347 aconf->info.name);
212380e3
AC		 348 }
349
350 /* user@host spoof */
27f616dd 351 if((p = strchr(aconf->info.name, '@')) != NULL)
212380e3
AC		 352 {
353 char *host = p+1;
354 *p = '\0';
355
27f616dd 356 rb_strlcpy(client_p->username, aconf->info.name,
212380e3 357 sizeof(client_p->username));
f427c8b0 358 rb_strlcpy(client_p->host, host,
212380e3
AC		 359 sizeof(client_p->host));
360 *p = '@';
361 }
362 else
27f616dd 363 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
212380e3
AC		 364 }
365 return (attach_iline(client_p, aconf));
366 }
367 else if(aconf->status & CONF_KILL)
368 {
369 if(ConfigFileEntry.kline_with_reason)
212380e3 370 sendto_one(client_p,
92fb5c31 371 form_str(ERR_YOUREBANNEDCREEP),
a12ad044
JT		 372 me.name, client_p->name,
373 get_user_ban_reason(aconf));
35f6f850 374 add_reject(client_p, aconf->user, aconf->host);
212380e3
AC		 375 return (BANNED_CLIENT);
376 }
212380e3
AC		 377
378 return NOT_AUTHORISED;
379}
380
381
b4a7304c
JT		 382/*
383 * find_address_conf_by_client
384 */
385static struct ConfItem *
386find_address_conf_by_client(struct Client *client_p, const char *username)
387{
388 struct ConfItem *aconf;
389 char non_ident[USERLEN + 1];
390
391 if(IsGotId(client_p))
392 {
393 aconf = find_address_conf(client_p->host, client_p->sockhost,
394 client_p->username, client_p->username,
395 (struct sockaddr *) &client_p->localClient->ip,
e867208d 396 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 397 client_p->localClient->auth_user);
398 }
399 else
400 {
401 rb_strlcpy(non_ident, "~", sizeof(non_ident));
402 rb_strlcat(non_ident, username, sizeof(non_ident));
403 aconf = find_address_conf(client_p->host, client_p->sockhost,
404 non_ident, client_p->username,
405 (struct sockaddr *) &client_p->localClient->ip,
e867208d 406 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 407 client_p->localClient->auth_user);
408 }
409 return aconf;
410}
411
412
212380e3
AC		 413/*
414 * add_ip_limit
55abcbb2 415 *
212380e3
AC		 416 * Returns 1 if successful 0 if not
417 *
418 * This checks if the user has exceed the limits for their class
419 * unless of course they are exempt..
420 */
421
422static int
423add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
424{
b2c190a6 425 rb_patricia_node_t *pnode;
e33e589c 426 int bitlen;
212380e3
AC		 427
428 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 429 if(ConfCidrAmount(aconf) == 0
430 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 431 return -1;
432
b2c190a6 433 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3 434
e33e589c
JT		 435 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
436 bitlen = ConfCidrIpv4Bitlen(aconf);
437 else
438 bitlen = ConfCidrIpv6Bitlen(aconf);
439
212380e3 440 if(pnode == NULL)
e33e589c 441 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
212380e3
AC		 442
443 s_assert(pnode != NULL);
444
445 if(pnode != NULL)
446 {
e33e589c 447 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
212380e3
AC		 448 {
449 /* This should only happen if the limits are set to 0 */
e33e589c 450 if((intptr_t)pnode->data == 0)
212380e3 451 {
b2c190a6 452 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 453 }
454 return (0);
455 }
456
e33e589c 457 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
212380e3
AC		 458 }
459 return 1;
460}
461
462static void
463remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
464{
b2c190a6 465 rb_patricia_node_t *pnode;
212380e3
AC		 466
467 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 468 if(ConfCidrAmount(aconf) == 0
469 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 470 return;
471
b2c190a6 472 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3
AC		 473 if(pnode == NULL)
474 return;
475
e33e589c
JT		 476 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
477 if(((intptr_t)pnode->data) == 0)
212380e3 478 {
b2c190a6 479 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 480 }
481
482}
483
484/*
485 * attach_iline
486 *
487 * inputs - client pointer
488 * - conf pointer
489 * output -
490 * side effects - do actual attach
491 */
492static int
493attach_iline(struct Client *client_p, struct ConfItem *aconf)
494{
495 struct Client *target_p;
330fc5c1 496 rb_dlink_node *ptr;
212380e3
AC		 497 int local_count = 0;
498 int global_count = 0;
499 int ident_count = 0;
15f92147 500 int unidented;
212380e3
AC		 501
502 if(IsConfExemptLimits(aconf))
503 return (attach_conf(client_p, aconf));
504
15f92147
JT		 505 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
506 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
212380e3
AC		 507
508 /* find_hostname() returns the head of the list to search */
5cefa1d6 509 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
212380e3
AC		 510 {
511 target_p = ptr->data;
512
513 if(irccmp(client_p->host, target_p->orighost) != 0)
514 continue;
515
516 if(MyConnect(target_p))
517 local_count++;
518
519 global_count++;
520
521 if(unidented)
522 {
523 if(*target_p->username == '~')
524 ident_count++;
525 }
526 else if(irccmp(target_p->username, client_p->username) == 0)
527 ident_count++;
528
529 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
530 return (TOO_MANY_LOCAL);
531 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
532 return (TOO_MANY_GLOBAL);
533 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
534 return (TOO_MANY_IDENT);
535 }
536
537
538 return (attach_conf(client_p, aconf));
539}
540
541/*
542 * detach_conf
543 *
544 * inputs - pointer to client to detach
545 * output - 0 for success, -1 for failure
546 * side effects - Disassociate configuration from the client.
547 * Also removes a class from the list if marked for deleting.
548 */
549int
550detach_conf(struct Client *client_p)
551{
552 struct ConfItem *aconf;
553
554 aconf = client_p->localClient->att_conf;
555
556 if(aconf != NULL)
557 {
558 if(ClassPtr(aconf))
559 {
560 remove_ip_limit(client_p, aconf);
561
562 if(ConfCurrUsers(aconf) > 0)
563 --ConfCurrUsers(aconf);
564
565 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
566 {
567 free_class(ClassPtr(aconf));
568 ClassPtr(aconf) = NULL;
569 }
570
571 }
572
573 aconf->clients--;
574 if(!aconf->clients && IsIllegal(aconf))
575 free_conf(aconf);
576
577 client_p->localClient->att_conf = NULL;
578 return 0;
579 }
580
581 return -1;
582}
583
584/*
585 * attach_conf
55abcbb2 586 *
212380e3
AC		 587 * inputs - client pointer
588 * - conf pointer
589 * output -
590 * side effects - Associate a specific configuration entry to a *local*
591 * client (this is the one which used in accepting the
592 * connection). Note, that this automatically changes the
593 * attachment if there was an old one...
594 */
595int
596attach_conf(struct Client *client_p, struct ConfItem *aconf)
597{
598 if(IsIllegal(aconf))
599 return (NOT_AUTHORISED);
600
601 if(ClassPtr(aconf))
602 {
603 if(!add_ip_limit(client_p, aconf))
604 return (TOO_MANY_LOCAL);
605 }
606
607 if((aconf->status & CONF_CLIENT) &&
608 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
609 {
610 if(!IsConfExemptLimits(aconf))
611 {
612 return (I_LINE_FULL);
613 }
614 else
615 {
5366977b 616 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
212380e3
AC		 617 }
618
619 }
620
621 if(client_p->localClient->att_conf != NULL)
622 detach_conf(client_p);
623
624 client_p->localClient->att_conf = aconf;
625
626 aconf->clients++;
627 ConfCurrUsers(aconf)++;
628 return (0);
629}
630
631/*
632 * rehash
633 *
634 * Actual REHASH service routine. Called with sig == 0 if it has been called
635 * as a result of an operator issuing this command, else assume it has been
636 * called as a result of the server receiving a HUP signal.
637 */
ab31d2b0
EM		 638bool
639rehash(bool sig)
212380e3 640{
ab31d2b0 641 if(sig)
212380e3
AC		 642 {
643 sendto_realops_snomask(SNO_GENERAL, L_ALL,
644 "Got signal SIGHUP, reloading ircd conf. file");
645 }
646
f60055d3 647 rehash_authd();
212380e3 648 /* don't close listeners until we know we can go ahead with the rehash */
ab31d2b0 649 read_conf_files(false);
212380e3
AC		 650
651 if(ServerInfo.description != NULL)
f427c8b0 652 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
212380e3 653 else
f427c8b0 654 rb_strlcpy(me.info, "unknown", sizeof(me.info));
212380e3
AC		 655
656 open_logfiles();
ab31d2b0 657 return false;
212380e3
AC		 658}
659
212380e3 660void
ab31d2b0 661rehash_bans(void)
212380e3 662{
80c9ac51 663 bandb_rehash_bans();
212380e3
AC		 664}
665
666/*
667 * set_default_conf()
668 *
669 * inputs - NONE
670 * output - NONE
671 * side effects - Set default values here.
672 * This is called **PRIOR** to parsing the
673 * configuration file. If you want to do some validation
674 * of values later, put them in validate_conf().
675 */
676
212380e3
AC		 677static void
678set_default_conf(void)
679{
680 /* ServerInfo.name is not rehashable */
681 /* ServerInfo.name = ServerInfo.name; */
682 ServerInfo.description = NULL;
010c4fbd 683 ServerInfo.network_name = NULL;
212380e3
AC		 684
685 memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip));
686 ServerInfo.specific_ipv4_vhost = 0;
ccda6e3f 687#ifdef RB_IPV6
212380e3
AC		 688 memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6));
689 ServerInfo.specific_ipv6_vhost = 0;
690#endif
212380e3 691
212380e3
AC		 692 AdminInfo.name = NULL;
693 AdminInfo.email = NULL;
694 AdminInfo.description = NULL;
695
010c4fbd
KB		 696 ConfigFileEntry.default_operstring = NULL;
697 ConfigFileEntry.default_adminstring = NULL;
698 ConfigFileEntry.servicestring = NULL;
7d33cce8 699 ConfigFileEntry.sasl_service = NULL;
212380e3 700
55abcbb2 701 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
d2e0b78f
AC		 702 ConfigFileEntry.failed_oper_notice = true;
703 ConfigFileEntry.anti_nick_flood = false;
704 ConfigFileEntry.disable_fake_channels = false;
212380e3
AC		 705 ConfigFileEntry.max_nick_time = 20;
706 ConfigFileEntry.max_nick_changes = 5;
707 ConfigFileEntry.max_accept = 20;
708 ConfigFileEntry.max_monitor = 60;
709 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
d2e0b78f 710 ConfigFileEntry.target_change = true;
212380e3
AC		 711 ConfigFileEntry.anti_spam_exit_message_time = 0;
712 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
713 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
d2e0b78f
AC		 714 ConfigFileEntry.client_exit = true;
715 ConfigFileEntry.dline_with_reason = true;
716 ConfigFileEntry.kline_with_reason = true;
212380e3 717 ConfigFileEntry.kline_delay = 0;
d2e0b78f
AC		 718 ConfigFileEntry.warn_no_nline = true;
719 ConfigFileEntry.non_redundant_klines = true;
720 ConfigFileEntry.stats_e_disabled = false;
721 ConfigFileEntry.stats_o_oper_only = false;
212380e3
AC		 722 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
723 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
d2e0b78f
AC		 724 ConfigFileEntry.stats_P_oper_only = false;
725 ConfigFileEntry.stats_c_oper_only = false;
726 ConfigFileEntry.stats_y_oper_only = false;
727 ConfigFileEntry.stats_h_oper_only = false;
728 ConfigFileEntry.map_oper_only = true;
729 ConfigFileEntry.operspy_admin_only = false;
212380e3
AC		 730 ConfigFileEntry.pace_wait = 10;
731 ConfigFileEntry.caller_id_wait = 60;
732 ConfigFileEntry.pace_wait_simple = 1;
d2e0b78f
AC		 733 ConfigFileEntry.short_motd = false;
734 ConfigFileEntry.no_oper_flood = false;
212380e3
AC		 735 ConfigFileEntry.fname_userlog = NULL;
736 ConfigFileEntry.fname_fuserlog = NULL;
737 ConfigFileEntry.fname_operlog = NULL;
738 ConfigFileEntry.fname_foperlog = NULL;
739 ConfigFileEntry.fname_serverlog = NULL;
00533129 740 ConfigFileEntry.fname_killlog = NULL;
212380e3
AC		 741 ConfigFileEntry.fname_klinelog = NULL;
742 ConfigFileEntry.fname_operspylog = NULL;
743 ConfigFileEntry.fname_ioerrorlog = NULL;
d2e0b78f 744 ConfigFileEntry.hide_spoof_ips = true;
212380e3 745 ConfigFileEntry.hide_error_messages = 1;
212380e3
AC		 746 ConfigFileEntry.dots_in_ident = 0;
747 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
d2e0b78f
AC		 748 ConfigFileEntry.use_whois_actually = true;
749 ConfigFileEntry.burst_away = false;
750 ConfigFileEntry.collision_fnc = true;
751 ConfigFileEntry.resv_fnc = true;
752 ConfigFileEntry.global_snotices = true;
753 ConfigFileEntry.operspy_dont_care_user_info = false;
754 ConfigFileEntry.use_propagated_bans = true;
e88a1f1b 755 ConfigFileEntry.max_ratelimit_tokens = 30;
d42e6915 756 ConfigFileEntry.away_interval = 30;
212380e3
AC		 757
758#ifdef HAVE_LIBZ
759 ConfigFileEntry.compression_level = 4;
760#endif
761
762 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
763 UMODE_OPERWALL | UMODE_WALLOP;
764 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
765 ConfigFileEntry.oper_snomask = SNO_GENERAL;
766
d2e0b78f
AC		 767 ConfigChannel.use_except = true;
768 ConfigChannel.use_invex = true;
769 ConfigChannel.use_forward = true;
770 ConfigChannel.use_knock = true;
212380e3
AC		 771 ConfigChannel.knock_delay = 300;
772 ConfigChannel.knock_delay_channel = 60;
773 ConfigChannel.max_chans_per_user = 15;
a4721f5e 774 ConfigChannel.max_chans_per_user_large = 60;
212380e3
AC		 775 ConfigChannel.max_bans = 25;
776 ConfigChannel.max_bans_large = 500;
d2e0b78f
AC		 777 ConfigChannel.only_ascii_channels = false;
778 ConfigChannel.burst_topicwho = false;
779 ConfigChannel.kick_on_split_riding = false;
212380e3
AC		 780
781 ConfigChannel.default_split_user_count = 15000;
782 ConfigChannel.default_split_server_count = 10;
d2e0b78f
AC		 783 ConfigChannel.no_join_on_split = false;
784 ConfigChannel.no_create_on_split = true;
785 ConfigChannel.resv_forcepart = true;
786 ConfigChannel.channel_target_change = true;
787 ConfigChannel.disable_local_channels = false;
d513218a 788 ConfigChannel.displayed_usercount = 3;
212380e3 789
63eb8567
AC		 790 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
791
212380e3
AC		 792 ConfigServerHide.flatten_links = 0;
793 ConfigServerHide.links_delay = 300;
794 ConfigServerHide.hidden = 0;
795 ConfigServerHide.disable_hidden = 0;
796
797 ConfigFileEntry.min_nonwildcard = 4;
798 ConfigFileEntry.min_nonwildcard_simple = 3;
799 ConfigFileEntry.default_floodcount = 8;
7f3382fe 800 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
212380e3
AC		 801 ConfigFileEntry.tkline_expire_notices = 0;
802
803 ConfigFileEntry.reject_after_count = 5;
55abcbb2 804 ConfigFileEntry.reject_ban_time = 300;
212380e3 805 ConfigFileEntry.reject_duration = 120;
43946961
JT		 806 ConfigFileEntry.throttle_count = 4;
807 ConfigFileEntry.throttle_duration = 60;
c2d96fcb 808
e6e54763
SB		 809 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
810 ConfigFileEntry.client_flood_burst_rate = 5;
811 ConfigFileEntry.client_flood_burst_max = 5;
812 ConfigFileEntry.client_flood_message_time = 1;
813 ConfigFileEntry.client_flood_message_num = 2;
814
101db4c4 815 ServerInfo.default_max_clients = MAXCONNECTIONS;
456e5b3d 816
b583faf9 817 ConfigFileEntry.nicklen = NICKLEN;
13d8f0ed 818 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_SHA1;
71c95533 819 ConfigFileEntry.hide_opers_in_whois = 0;
b583faf9 820
456e5b3d 821 if (!alias_dict)
a4bf26dd 822 alias_dict = rb_dictionary_create("alias", strcasecmp);
212380e3
AC		 823}
824
212380e3 825/*
55abcbb2 826 * read_conf()
212380e3
AC		 827 *
828 *
29c92cf9 829 * inputs - None
212380e3
AC		 830 * output - None
831 * side effects - Read configuration file.
832 */
833static void
29c92cf9 834read_conf(void)
212380e3
AC		 835{
836 lineno = 0;
837
838 set_default_conf(); /* Set default values prior to conf parsing */
839 yyparse(); /* Load the values from the conf */
840 validate_conf(); /* Check to make sure some values are still okay. */
841 /* Some global values are also loaded here. */
842 check_class(); /* Make sure classes are valid */
422bb0b5 843 privilegeset_delete_all_illegal();
c55b2782 844 construct_cflags_strings();
212380e3
AC		 845}
846
847static void
848validate_conf(void)
849{
7f3382fe
KB		 850 if(ConfigFileEntry.default_ident_timeout < 1)
851 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
852
212380e3
AC		 853 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
854 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
855
856 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
857 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
858
212380e3 859 if(ServerInfo.network_name == NULL)
47a03750 860 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
212380e3 861
8bd5767b 862 if(ServerInfo.ssld_count < 1)
c6d72037
VY		 863 ServerInfo.ssld_count = 1;
864
c1725bda 865 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
8bd5767b
JT		 866 {
867 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
bfc44622 868 ircd_ssl_ok = false;
8bd5767b 869 } else {
bfc44622 870 ircd_ssl_ok = true;
c1725bda 871 send_new_ssl_certs(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
8bd5767b
JT		 872 }
873
874 if(ServerInfo.ssld_count > get_ssld_count())
875 {
876 int start = ServerInfo.ssld_count - get_ssld_count();
877 /* start up additional ssld if needed */
c1725bda 878 start_ssldaemon(start, ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
c6d72037
VY		 879 }
880
010c4fbd
KB		 881 /* General conf */
882 if (ConfigFileEntry.default_operstring == NULL)
883 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
884
885 if (ConfigFileEntry.default_adminstring == NULL)
886 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
887
888 if (ConfigFileEntry.servicestring == NULL)
889 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
890
7d33cce8
MT		 891 if (ConfigFileEntry.sasl_service == NULL)
892 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
893
894325fe
JT		 894 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
895 * 5 messages are acceptable, so allow at least that.
41ca4cac 896 */
894325fe
JT		 897 if(ConfigFileEntry.client_flood_burst_rate < 5)
898 ConfigFileEntry.client_flood_burst_rate = 5;
899 if(ConfigFileEntry.client_flood_burst_max < 5)
900 ConfigFileEntry.client_flood_burst_max = 5;
41ca4cac
JT		 901 if(ConfigFileEntry.client_flood_message_time >
902 ConfigFileEntry.client_flood_message_num * 2)
903 ConfigFileEntry.client_flood_message_time =
904 ConfigFileEntry.client_flood_message_num * 2;
905
e6e54763
SB		 906 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
907 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
908 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
212380e3 909
212380e3
AC		 910 if(!split_users || !split_servers ||
911 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
912 {
b2c190a6
JT		 913 rb_event_delete(check_splitmode_ev);
914 check_splitmode_ev = NULL;
212380e3
AC		 915 splitmode = 0;
916 splitchecking = 0;
917 }
918}
919
212380e3
AC		 920/* add_temp_kline()
921 *
922 * inputs - pointer to struct ConfItem
923 * output - none
55abcbb2 924 * Side effects - links in given struct ConfItem into
212380e3
AC		 925 * temporary kline link list
926 */
927void
928add_temp_kline(struct ConfItem *aconf)
929{
e3354945 930 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 931 {
330fc5c1 932 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
212380e3
AC		 933 aconf->port = TEMP_WEEK;
934 }
e3354945 935 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 936 {
330fc5c1 937 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
212380e3
AC		 938 aconf->port = TEMP_DAY;
939 }
e3354945 940 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 941 {
330fc5c1 942 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
212380e3
AC		 943 aconf->port = TEMP_HOUR;
944 }
945 else
946 {
330fc5c1 947 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
212380e3
AC		 948 aconf->port = TEMP_MIN;
949 }
950
951 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 952 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
212380e3
AC		 953}
954
955/* add_temp_dline()
956 *
957 * input - pointer to struct ConfItem
958 * output - none
959 * side effects - added to tdline link list and address hash
960 */
961void
962add_temp_dline(struct ConfItem *aconf)
963{
e3354945 964 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 965 {
330fc5c1 966 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
212380e3
AC		 967 aconf->port = TEMP_WEEK;
968 }
e3354945 969 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 970 {
330fc5c1 971 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
212380e3
AC		 972 aconf->port = TEMP_DAY;
973 }
e3354945 974 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 975 {
330fc5c1 976 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
212380e3
AC		 977 aconf->port = TEMP_HOUR;
978 }
979 else
980 {
330fc5c1 981 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
212380e3
AC		 982 aconf->port = TEMP_MIN;
983 }
984
985 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 986 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
212380e3
AC		 987}
988
5c2b9eaf 989/* valid_wild_card()
55abcbb2 990 *
5c2b9eaf
JT		 991 * input - user buffer, host buffer
992 * output - 0 if invalid, 1 if valid
993 * side effects -
994 */
995int
996valid_wild_card(const char *luser, const char *lhost)
997{
998 const char *p;
999 char tmpch;
1000 int nonwild = 0;
1001 int bitlen;
1002
1003 /* user has no wildcards, always accept -- jilles */
1004 if(!strchr(luser, '?') && !strchr(luser, '*'))
1005 return 1;
1006
1007 /* check there are enough non wildcard chars */
1008 p = luser;
1009 while((tmpch = *p++))
1010 {
1011 if(!IsKWildChar(tmpch))
1012 {
1013 /* found enough chars, return */
1014 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1015 return 1;
1016 }
1017 }
1018
1019 /* try host, as user didnt contain enough */
1020 /* special case for cidr masks -- jilles */
1021 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1022 {
1023 bitlen = atoi(p + 1);
1024 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1025 if(bitlen > 0
1026 && bitlen >=
1027 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1028 2 * nonwild))
1029 return 1;
1030 }
1031 else
1032 {
1033 p = lhost;
1034 while((tmpch = *p++))
1035 {
1036 if(!IsKWildChar(tmpch))
1037 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1038 return 1;
1039 }
1040 }
1041
1042 return 0;
1043}
1044
431a1a27
JT		 1045rb_dlink_node *
1046find_prop_ban(unsigned int status, const char *user, const char *host)
1047{
1048 rb_dlink_node *ptr;
1049 struct ConfItem *aconf;
1050
1051 RB_DLINK_FOREACH(ptr, prop_bans.head)
1052 {
1053 aconf = ptr->data;
1054
1055 if((aconf->status & ~CONF_ILLEGAL) == status &&
1056 (!user || !aconf->user ||
1057 !irccmp(aconf->user, user)) &&
1058 !irccmp(aconf->host, host))
1059 return ptr;
1060 }
1061 return NULL;
1062}
1063
9197bc35 1064void
483987a4 1065deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
9197bc35
JT		 1066{
1067 int i;
1068
1069 s_assert(ptr->data == aconf);
1070
1071 switch (aconf->status)
1072 {
1073 case CONF_KILL:
1074 if (aconf->lifetime == 0 &&
1075 aconf->flags & CONF_FLAGS_TEMPORARY)
1076 for (i = 0; i < LAST_TEMP_TYPE; i++)
1077 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1078 /* Make sure delete_one_address_conf() does not
1079 * free the aconf.
1080 */
1081 aconf->clients++;
1082 delete_one_address_conf(aconf->host, aconf);
1083 aconf->clients--;
1084 break;
1085 case CONF_DLINE:
1086 if (aconf->lifetime == 0 &&
1087 aconf->flags & CONF_FLAGS_TEMPORARY)
1088 for (i = 0; i < LAST_TEMP_TYPE; i++)
1089 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1090 aconf->clients++;
1091 delete_one_address_conf(aconf->host, aconf);
1092 aconf->clients--;
1093 break;
1094 case CONF_XLINE:
1095 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1096 break;
1097 case CONF_RESV_NICK:
1098 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1099 break;
1100 case CONF_RESV_CHANNEL:
1101 del_from_resv_hash(aconf->host, aconf);
1102 break;
1103 }
483987a4 1104 if (aconf->lifetime != 0 && now < aconf->lifetime)
9197bc35
JT		 1105 aconf->status |= CONF_ILLEGAL;
1106 else
1107 {
1108 if (aconf->lifetime != 0)
1109 rb_dlinkDestroy(ptr, &prop_bans);
1110 free_conf(aconf);
1111 }
1112}
1113
3cbbfb25
JT		 1114/* Given a new ban ConfItem, look for any matching ban, update the lifetime
1115 * from it and delete it.
1116 */
1117void
1118replace_old_ban(struct ConfItem *aconf)
1119{
1120 rb_dlink_node *ptr;
1121 struct ConfItem *oldconf;
1122
1123 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1124 if(ptr != NULL)
1125 {
1126 oldconf = ptr->data;
1127 /* Remember at least as long as the old one. */
1128 if(oldconf->lifetime > aconf->lifetime)
1129 aconf->lifetime = oldconf->lifetime;
1130 /* Force creation time to increase. */
1131 if(oldconf->created >= aconf->created)
1132 aconf->created = oldconf->created + 1;
1133 /* Leave at least one second of validity. */
1134 if(aconf->hold <= aconf->created)
1135 aconf->hold = aconf->created + 1;
1136 if(aconf->lifetime < aconf->hold)
1137 aconf->lifetime = aconf->hold;
1138 /* Tell deactivate_conf() to destroy it. */
1139 oldconf->lifetime = rb_current_time();
483987a4 1140 deactivate_conf(oldconf, ptr, oldconf->lifetime);
3cbbfb25
JT		 1141 }
1142}
1143
9197bc35
JT		 1144static void
1145expire_prop_bans(void *list)
1146{
1147 rb_dlink_node *ptr;
1148 rb_dlink_node *next_ptr;
1149 struct ConfItem *aconf;
483987a4 1150 time_t now;
9197bc35 1151
483987a4 1152 now = rb_current_time();
9197bc35
JT		 1153 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1154 {
1155 aconf = ptr->data;
1156
483987a4
JT		 1157 if(aconf->lifetime <= now ||
1158 (aconf->hold <= now &&
9197bc35
JT		 1159 !(aconf->status & CONF_ILLEGAL)))
1160 {
1161 /* Alert opers that a TKline expired - Hwy */
1162 /* XXX show what type of ban it is */
1163 if(ConfigFileEntry.tkline_expire_notices &&
1164 !(aconf->status & CONF_ILLEGAL))
1165 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1166 "Propagated ban for [%s%s%s] expired",
1167 aconf->user ? aconf->user : "",
1168 aconf->user ? "@" : "",
1169 aconf->host ? aconf->host : "*");
1170
1171 /* will destroy or mark illegal */
483987a4 1172 deactivate_conf(aconf, ptr, now);
9197bc35
JT		 1173 }
1174 }
1175}
1176
212380e3
AC		 1177/* expire_tkline()
1178 *
1179 * inputs - list pointer
1180 * - type
1181 * output - NONE
1182 * side effects - expire tklines and moves them between lists
1183 */
1184static void
1185expire_temp_kd(void *list)
1186{
330fc5c1 1187 rb_dlink_node *ptr;
637c4932 1188 rb_dlink_node *next_ptr;
212380e3
AC		 1189 struct ConfItem *aconf;
1190
637c4932 1191 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1192 {
1193 aconf = ptr->data;
1194
e3354945 1195 if(aconf->hold <= rb_current_time())
212380e3
AC		 1196 {
1197 /* Alert opers that a TKline expired - Hwy */
1198 if(ConfigFileEntry.tkline_expire_notices)
1199 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1200 "Temporary K-line for [%s@%s] expired",
1201 (aconf->user) ? aconf->
1202 user : "*", (aconf->host) ? aconf->host : "*");
1203
1204 delete_one_address_conf(aconf->host, aconf);
330fc5c1 1205 rb_dlinkDestroy(ptr, list);
212380e3
AC		 1206 }
1207 }
1208}
1209
1210static void
1211reorganise_temp_kd(void *list)
1212{
1213 struct ConfItem *aconf;
637c4932 1214 rb_dlink_node *ptr, *next_ptr;
212380e3 1215
637c4932 1216 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1217 {
1218 aconf = ptr->data;
1219
e3354945 1220 if(aconf->hold < (rb_current_time() + (60 * 60)))
212380e3 1221 {
55abcbb2 1222 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1223 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1224 aconf->port = TEMP_MIN;
1225 }
1226 else if(aconf->port > TEMP_HOUR)
1227 {
e3354945 1228 if(aconf->hold < (rb_current_time() + (1440 * 60)))
212380e3 1229 {
55abcbb2 1230 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1231 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1232 aconf->port = TEMP_HOUR;
1233 }
55abcbb2 1234 else if(aconf->port > TEMP_DAY &&
e3354945 1235 (aconf->hold < (rb_current_time() + (10080 * 60))))
212380e3 1236 {
55abcbb2 1237 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1238 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1239 aconf->port = TEMP_DAY;
1240 }
1241 }
1242 }
1243}
1244
1245
1246/* const char* get_oper_name(struct Client *client_p)
1247 * Input: A client to find the active oper{} name for.
1248 * Output: The nick!user@host{oper} of the oper.
1249 * "oper" is server name for remote opers
1250 * Side effects: None.
1251 */
1252char *
1253get_oper_name(struct Client *client_p)
1254{
1255 /* +5 for !,@,{,} and null */
1256 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1257
1258 if(MyOper(client_p))
1259 {
5203cba5 1260 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
212380e3
AC		 1261 client_p->name, client_p->username,
1262 client_p->host, client_p->localClient->opername);
1263 return buffer;
1264 }
1265
5203cba5 1266 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
55abcbb2 1267 client_p->name, client_p->username,
212380e3
AC		 1268 client_p->host, client_p->servptr->name);
1269 return buffer;
1270}
1271
1272/*
1273 * get_printable_conf
1274 *
1275 * inputs - struct ConfItem
1276 *
55abcbb2 1277 * output - name
212380e3
AC		 1278 * - host
1279 * - pass
1280 * - user
1281 * - port
1282 *
1283 * side effects -
1284 * Examine the struct struct ConfItem, setting the values
1285 * of name, host, pass, user to values either
1286 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1287 */
1288void
1289get_printable_conf(struct ConfItem *aconf, char **name, char **host,
29c92cf9 1290 const char **pass, char **user, int *port, char **classname)
212380e3
AC		 1291{
1292 static char null[] = "<NULL>";
1293 static char zero[] = "default";
1294
27f616dd 1295 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
212380e3
AC		 1296 *host = EmptyString(aconf->host) ? null : aconf->host;
1297 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1298 *user = EmptyString(aconf->user) ? null : aconf->user;
1299 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1300 *port = (int) aconf->port;
1301}
1302
a12ad044
JT		 1303char *
1304get_user_ban_reason(struct ConfItem *aconf)
1305{
1306 static char reasonbuf[BUFSIZE];
1307
1308 if (aconf->flags & CONF_FLAGS_TEMPORARY &&
1309 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
5203cba5 1310 snprintf(reasonbuf, sizeof reasonbuf,
a12ad044
JT		 1311 "Temporary %c-line %d min. - ",
1312 aconf->status == CONF_DLINE ? 'D' : 'K',
803ce385 1313 (int)((aconf->hold - aconf->created) / 60));
a12ad044
JT		 1314 else
1315 reasonbuf[0] = '\0';
1316 if (aconf->passwd)
1317 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1318 else
1319 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1320 if (aconf->created)
1321 {
1322 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1323 rb_strlcat(reasonbuf, smalldate(aconf->created),
1324 sizeof reasonbuf);
1325 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1326 }
1327 return reasonbuf;
1328}
1329
54ac8b60 1330void
55abcbb2 1331get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
54ac8b60
VY		 1332 char **host, char **reason,
1333 char **user, char **oper_reason)
1334{
1335 static char null[] = "<NULL>";
778dd56b 1336 static char operreasonbuf[BUFSIZE];
54ac8b60
VY		 1337
1338 *host = EmptyString(aconf->host) ? null : aconf->host;
54ac8b60 1339 *user = EmptyString(aconf->user) ? null : aconf->user;
a12ad044 1340 *reason = get_user_ban_reason(aconf);
b52c2949 1341
778dd56b 1342 if(!IsOper(source_p))
54ac8b60
VY		 1343 *oper_reason = NULL;
1344 else
778dd56b 1345 {
5203cba5 1346 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
778dd56b
JT		 1347 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1348 EmptyString(aconf->spasswd) ? "" : " ",
1349 aconf->info.oper);
1350 *oper_reason = operreasonbuf;
1351 }
212380e3
AC		 1352}
1353
1354/*
1355 * read_conf_files
1356 *
ea111ea5 1357 * inputs - cold start
212380e3
AC		 1358 * output - none
1359 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1360 */
1361void
ea111ea5 1362read_conf_files(bool cold)
212380e3
AC		 1363{
1364 const char *filename;
1365
1366 conf_fbfile_in = NULL;
1367
22342cd1 1368 filename = ConfigFileEntry.configfile;
212380e3
AC		 1369
1370 /* We need to know the initial filename for the yyerror() to report
1371 FIXME: The full path is in conffilenamebuf first time since we
1372 dont know anything else
1373
55abcbb2 1374 - Gozem 2002-07-21
a576a0fe
CD		 1375
1376
212380e3 1377 */
f427c8b0 1378 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
212380e3
AC		 1379
1380 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1381 {
1382 if(cold)
1383 {
f951460a 1384 inotice("Failed in reading configuration file %s, aborting", filename);
a576a0fe
CD		 1385 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1386
1387 int e;
1388 e = errno;
1389
2c0450fb
CD		 1390 inotice("FATAL: %s %s", strerror(e), filename);
1391 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
a576a0fe 1392
212380e3
AC		 1393 exit(-1);
1394 }
1395 else
1396 {
1397 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1398 "Can't open file '%s' - aborting rehash!", filename);
1399 return;
1400 }
1401 }
1402
1403 if(!cold)
1404 {
1405 clear_out_old_conf();
1406 }
1407
7d603754 1408 call_hook(h_conf_read_start, NULL);
29c92cf9 1409 read_conf();
7d603754
KB		 1410 call_hook(h_conf_read_end, NULL);
1411
212380e3
AC		 1412 fclose(conf_fbfile_in);
1413}
1414
8ac75529
AC		 1415/*
1416 * free an alias{} entry.
1417 */
1418static void
4177311e 1419free_alias_cb(rb_dictionary_element *ptr, void *unused)
8ac75529
AC		 1420{
1421 struct alias_entry *aptr = ptr->data;
1422
637c4932
VY		 1423 rb_free(aptr->name);
1424 rb_free(aptr->target);
1425 rb_free(aptr);
8ac75529
AC		 1426}
1427
212380e3
AC		 1428/*
1429 * clear_out_old_conf
1430 *
1431 * inputs - none
1432 * output - none
1433 * side effects - Clear out the old configuration
1434 */
1435static void
1436clear_out_old_conf(void)
1437{
1438 struct Class *cltmp;
330fc5c1 1439 rb_dlink_node *ptr;
637c4932 1440 rb_dlink_node *next_ptr;
212380e3
AC		 1441
1442 /*
1443 * don't delete the class table, rather mark all entries
1444 * for deletion. The table is cleaned up by check_class. - avalon
1445 */
5cefa1d6 1446 RB_DLINK_FOREACH(ptr, class_list.head)
212380e3
AC		 1447 {
1448 cltmp = ptr->data;
1449 MaxUsers(cltmp) = -1;
1450 }
1451
1452 clear_out_address_conf();
1453 clear_s_newconf();
1454
1455 /* clean out module paths */
212380e3
AC		 1456 mod_clear_paths();
1457 mod_add_path(MODULE_DIR);
1458 mod_add_path(MODULE_DIR "/autoload");
212380e3
AC		 1459
1460 /* clean out ServerInfo */
637c4932 1461 rb_free(ServerInfo.description);
212380e3 1462 ServerInfo.description = NULL;
637c4932 1463 rb_free(ServerInfo.network_name);
212380e3 1464 ServerInfo.network_name = NULL;
212380e3 1465
c6d72037
VY		 1466 ServerInfo.ssld_count = 1;
1467
212380e3 1468 /* clean out AdminInfo */
637c4932 1469 rb_free(AdminInfo.name);
212380e3 1470 AdminInfo.name = NULL;
637c4932 1471 rb_free(AdminInfo.email);
212380e3 1472 AdminInfo.email = NULL;
637c4932 1473 rb_free(AdminInfo.description);
212380e3
AC		 1474 AdminInfo.description = NULL;
1475
1476 /* operator{} and class{} blocks are freed above */
1477 /* clean out listeners */
1478 close_listeners();
1479
1480 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1481 * and gecos{} blocks are freed above too
1482 */
1483
1484 /* clean out general */
010c4fbd
KB		 1485 rb_free(ConfigFileEntry.default_operstring);
1486 ConfigFileEntry.default_operstring = NULL;
1487 rb_free(ConfigFileEntry.default_adminstring);
1488 ConfigFileEntry.default_adminstring = NULL;
1489 rb_free(ConfigFileEntry.servicestring);
1490 ConfigFileEntry.servicestring = NULL;
d61a1c7e
JT		 1491 rb_free(ConfigFileEntry.kline_reason);
1492 ConfigFileEntry.kline_reason = NULL;
7d33cce8
MT		 1493 rb_free(ConfigFileEntry.sasl_service);
1494 ConfigFileEntry.sasl_service = NULL;
d61a1c7e 1495
00533129
KB		 1496 /* clean out log */
1497 rb_free(ConfigFileEntry.fname_userlog);
1498 ConfigFileEntry.fname_userlog = NULL;
1499 rb_free(ConfigFileEntry.fname_fuserlog);
1500 ConfigFileEntry.fname_fuserlog = NULL;
1501 rb_free(ConfigFileEntry.fname_operlog);
1502 ConfigFileEntry.fname_operlog = NULL;
1503 rb_free(ConfigFileEntry.fname_foperlog);
1504 ConfigFileEntry.fname_foperlog = NULL;
1505 rb_free(ConfigFileEntry.fname_serverlog);
1506 ConfigFileEntry.fname_serverlog = NULL;
1507 rb_free(ConfigFileEntry.fname_killlog);
1508 ConfigFileEntry.fname_killlog = NULL;
1509 rb_free(ConfigFileEntry.fname_klinelog);
1510 ConfigFileEntry.fname_klinelog = NULL;
1511 rb_free(ConfigFileEntry.fname_operspylog);
1512 ConfigFileEntry.fname_operspylog = NULL;
1513 rb_free(ConfigFileEntry.fname_ioerrorlog);
1514 ConfigFileEntry.fname_ioerrorlog = NULL;
1515
637c4932 1516 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
212380e3 1517 {
637c4932 1518 rb_free(ptr->data);
330fc5c1 1519 rb_dlinkDestroy(ptr, &service_list);
212380e3
AC		 1520 }
1521
1522 /* remove any aliases... -- nenolod */
dbcd150b
AC		 1523 if (alias_dict != NULL)
1524 {
a4bf26dd 1525 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
dbcd150b
AC		 1526 alias_dict = NULL;
1527 }
212380e3
AC		 1528
1529 destroy_blacklists();
1530
422bb0b5
JT		 1531 privilegeset_mark_all_illegal();
1532
212380e3
AC		 1533 /* OK, that should be everything... */
1534}
1535
1536
212380e3
AC		 1537/*
1538 * conf_add_class_to_conf
1539 * inputs - pointer to config item
1540 * output - NONE
55abcbb2 1541 * side effects - Add a class pointer to a conf
212380e3
AC		 1542 */
1543
1544void
1545conf_add_class_to_conf(struct ConfItem *aconf)
1546{
1547 if(aconf->className == NULL)
1548 {
47a03750 1549 aconf->className = rb_strdup("default");
212380e3
AC		 1550 ClassPtr(aconf) = default_class;
1551 return;
1552 }
1553
1554 ClassPtr(aconf) = find_class(aconf->className);
1555
1556 if(ClassPtr(aconf) == default_class)
1557 {
1558 if(aconf->status == CONF_CLIENT)
1559 {
8b801ad1
JT		 1560 conf_report_error(
1561 "Using default class for missing class \"%s\" in auth{} for %s@%s",
212380e3
AC		 1562 aconf->className, aconf->user, aconf->host);
1563 }
1564
637c4932 1565 rb_free(aconf->className);
47a03750 1566 aconf->className = rb_strdup("default");
212380e3
AC		 1567 return;
1568 }
1569
1570 if(ConfMaxUsers(aconf) < 0)
1571 {
1572 ClassPtr(aconf) = default_class;
637c4932 1573 rb_free(aconf->className);
47a03750 1574 aconf->className = rb_strdup("default");
212380e3
AC		 1575 return;
1576 }
1577}
1578
1579/*
1580 * conf_add_d_conf
1581 * inputs - pointer to config item
1582 * output - NONE
1583 * side effects - Add a d/D line
1584 */
1585void
1586conf_add_d_conf(struct ConfItem *aconf)
1587{
1588 if(aconf->host == NULL)
1589 return;
1590
1591 aconf->user = NULL;
1592
1593 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1594 * need this anyway, so I will disable it for now... -A1kmm
1595 */
1596
1597 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1598 {
1599 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1600 free_conf(aconf);
1601 }
1602 else
1603 {
40c1fd47 1604 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
212380e3
AC		 1605 }
1606}
1607
decf0486
VY		 1608static char *
1609strip_tabs(char *dest, const char *src, size_t len)
1610{
1611 char *d = dest;
1612
1613 if(dest == NULL || src == NULL)
1614 return NULL;
1615
1616 rb_strlcpy(dest, src, len);
1617
1618 while(*d)
1619 {
1620 if(*d == '\t')
1621 *d = ' ';
1622 d++;
1623 }
1624 return dest;
1625}
212380e3
AC		 1626
1627/*
1628 * yyerror
1629 *
1630 * inputs - message from parser
1631 * output - none
1632 * side effects - message to opers and log file entry is made
1633 */
1634void
1635yyerror(const char *msg)
1636{
1637 char newlinebuf[BUFSIZE];
1638
9eea5de1 1639 strip_tabs(newlinebuf, linebuf, strlen(linebuf));
212380e3 1640
beccbe31 1641 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
212380e3
AC		 1642 sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'",
1643 conffilebuf, lineno + 1, msg, newlinebuf);
1644
212380e3
AC		 1645}
1646
1647int
1648conf_fgets(char *lbuf, int max_size, FILE * fb)
1649{
eac04554 1650 if(fgets(lbuf, max_size, fb) == NULL)
212380e3
AC		 1651 return (0);
1652
1653 return (strlen(lbuf));
1654}
1655
1656int
1657conf_yy_fatal_error(const char *msg)
1658{
1659 return (0);
1660}
Fork of solanum ircd, history is rebased regularly