]> jfr.im git - solanum.git/blame - ircd/s_conf.c
projects / solanum.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
ssld: cipher commands don't have any fds
[solanum.git] / ircd / s_conf.c
CommitLineData
212380e3
AC		 1/*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
212380e3
AC		 23 */
24
25#include "stdinc.h"
26#include "ircd_defs.h"
212380e3
AC		 27#include "s_conf.h"
28#include "s_newconf.h"
8b801ad1 29#include "newconf.h"
212380e3
AC		 30#include "s_serv.h"
31#include "s_stats.h"
32#include "channel.h"
33#include "class.h"
34#include "client.h"
212380e3 35#include "hash.h"
4562c604 36#include "match.h"
212380e3
AC		 37#include "ircd.h"
38#include "listener.h"
39#include "hostmask.h"
40#include "modules.h"
41#include "numeric.h"
4016731b 42#include "logger.h"
212380e3 43#include "send.h"
212380e3
AC		 44#include "reject.h"
45#include "cache.h"
422bb0b5 46#include "privilege.h"
c6d72037 47#include "sslproc.h"
c53ca1e0 48#include "wsproc.h"
80c9ac51 49#include "bandbi.h"
27f616dd 50#include "operhash.h"
c55b2782 51#include "chmode.h"
7d603754 52#include "hook.h"
77d3d2db 53#include "s_assert.h"
64fae260 54#include "authproc.h"
212380e3
AC		 55
56struct config_server_hide ConfigServerHide;
57
6ab8c0d3 58extern int yyparse(void); /* defined in y.tab.c */
212380e3
AC		 59extern char linebuf[];
60
61#ifndef INADDR_NONE
62#define INADDR_NONE ((unsigned int) 0xffffffff)
63#endif
64
398b6a73 65static rb_bh *confitem_heap = NULL;
212380e3 66
9197bc35
JT		 67rb_dlink_list prop_bans;
68
330fc5c1
AC		 69rb_dlink_list temp_klines[LAST_TEMP_TYPE];
70rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
71rb_dlink_list service_list;
212380e3
AC		 72
73/* internally defined functions */
74static void set_default_conf(void);
75static void validate_conf(void);
29c92cf9 76static void read_conf(void);
212380e3
AC		 77static void clear_out_old_conf(void);
78
9197bc35 79static void expire_prop_bans(void *list);
212380e3
AC		 80static void expire_temp_kd(void *list);
81static void reorganise_temp_kd(void *list);
82
83FILE *conf_fbfile_in;
84extern char yytext[];
85
86static int verify_access(struct Client *client_p, const char *username);
b4a7304c 87static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
212380e3
AC		 88static int attach_iline(struct Client *, struct ConfItem *);
89
90void
91init_s_conf(void)
92{
b2c190a6 93 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
212380e3 94
9197bc35
JT		 95 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
96
12aea5fe
VY		 97 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
98 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
212380e3 99
12aea5fe 100 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
212380e3 101 &temp_klines[TEMP_HOUR], 3600);
12aea5fe 102 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
212380e3 103 &temp_dlines[TEMP_HOUR], 3600);
12aea5fe 104 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
212380e3 105 &temp_klines[TEMP_DAY], 86400);
12aea5fe 106 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
212380e3 107 &temp_dlines[TEMP_DAY], 86400);
12aea5fe 108 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
212380e3 109 &temp_klines[TEMP_WEEK], 604800);
12aea5fe 110 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
212380e3
AC		 111 &temp_dlines[TEMP_WEEK], 604800);
112}
113
114/*
115 * make_conf
116 *
117 * inputs - none
118 * output - pointer to new conf entry
119 * side effects - none
120 */
121struct ConfItem *
122make_conf()
123{
124 struct ConfItem *aconf;
125
398b6a73 126 aconf = rb_bh_alloc(confitem_heap);
212380e3
AC		 127 aconf->status = CONF_ILLEGAL;
128 return (aconf);
129}
130
131/*
132 * free_conf
133 *
134 * inputs - pointer to conf to free
135 * output - none
136 * side effects - crucial password fields are zeroed, conf is freed
137 */
138void
139free_conf(struct ConfItem *aconf)
140{
141 s_assert(aconf != NULL);
142 if(aconf == NULL)
143 return;
144
145 /* security.. */
146 if(aconf->passwd)
147 memset(aconf->passwd, 0, strlen(aconf->passwd));
148 if(aconf->spasswd)
149 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
150
637c4932
VY		 151 rb_free(aconf->passwd);
152 rb_free(aconf->spasswd);
637c4932
VY		 153 rb_free(aconf->className);
154 rb_free(aconf->user);
155 rb_free(aconf->host);
212380e3 156
27f616dd
JT		 157 if(IsConfBan(aconf))
158 operhash_delete(aconf->info.oper);
159 else
160 rb_free(aconf->info.name);
161
398b6a73 162 rb_bh_free(confitem_heap, aconf);
212380e3
AC		 163}
164
165/*
166 * check_client
167 *
168 * inputs - pointer to client
169 * output - 0 = Success
170 * NOT_AUTHORISED (-1) = Access denied (no I line match)
85368a13 171 * I_SOCKET_ERROR (-2) = Bad socket.
212380e3
AC		 172 * I_LINE_FULL (-3) = I-line is full
173 * TOO_MANY (-4) = Too many connections from hostname
174 * BANNED_CLIENT (-5) = K-lined
175 * side effects - Ordinary client access check.
176 * Look for conf lines which have the same
177 * status as the flags passed.
178 */
179int
180check_client(struct Client *client_p, struct Client *source_p, const char *username)
181{
182 int i;
183
212380e3
AC		 184 if((i = verify_access(source_p, username)))
185 {
55abcbb2 186 ilog(L_FUSER, "Access denied: %s[%s]",
212380e3
AC		 187 source_p->name, source_p->sockhost);
188 }
55abcbb2 189
212380e3
AC		 190 switch (i)
191 {
85368a13 192 case I_SOCKET_ERROR:
212380e3
AC		 193 exit_client(client_p, source_p, &me, "Socket Error");
194 break;
195
196 case TOO_MANY_LOCAL:
606384ae
JT		 197 /* Note that these notices are sent to opers on other
198 * servers also, so even if local opers are allowed to
199 * see the IP, we still cannot send it.
200 */
212380e3
AC		 201 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
202 "Too many local connections for %s!%s%s@%s",
203 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 204 source_p->username,
205 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 206
207 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
208 source_p->name, IsGotId(source_p) ? "" : "~",
55abcbb2 209 source_p->username, source_p->sockhost);
212380e3 210
47adde3d 211 ServerStats.is_ref++;
212380e3
AC		 212 exit_client(client_p, source_p, &me, "Too many host connections (local)");
213 break;
214
215 case TOO_MANY_GLOBAL:
216 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
217 "Too many global connections for %s!%s%s@%s",
218 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 219 source_p->username,
220 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 221 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
222 source_p->name, IsGotId(source_p) ? "" : "~",
223 source_p->username, source_p->sockhost);
224
47adde3d 225 ServerStats.is_ref++;
212380e3
AC		 226 exit_client(client_p, source_p, &me, "Too many host connections (global)");
227 break;
228
229 case TOO_MANY_IDENT:
230 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
231 "Too many user connections for %s!%s%s@%s",
232 source_p->name, IsGotId(source_p) ? "" : "~",
606384ae
JT		 233 source_p->username,
234 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
212380e3
AC		 235 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
236 source_p->name, IsGotId(source_p) ? "" : "~",
237 source_p->username, source_p->sockhost);
238
47adde3d 239 ServerStats.is_ref++;
212380e3
AC		 240 exit_client(client_p, source_p, &me, "Too many user connections (global)");
241 break;
242
243 case I_LINE_FULL:
244 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
245 "I-line is full for %s!%s%s@%s (%s).",
246 source_p->name, IsGotId(source_p) ? "" : "~",
247 source_p->username, source_p->host,
4b7e6904 248 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
212380e3 249
55abcbb2 250 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
212380e3
AC		 251 source_p->name, IsGotId(source_p) ? "" : "~",
252 source_p->username, source_p->sockhost);
253
47adde3d 254 ServerStats.is_ref++;
212380e3
AC		 255 exit_client(client_p, source_p, &me,
256 "No more connections allowed in your connection class");
257 break;
258
259 case NOT_AUTHORISED:
260 {
261 int port = -1;
d86692fa 262 port = ntohs(GET_SS_PORT(&source_p->localClient->listener->addr));
55abcbb2 263
47adde3d 264 ServerStats.is_ref++;
212380e3
AC		 265 /* jdc - lists server name & port connections are on */
266 /* a purely cosmetical change */
267 /* why ipaddr, and not just source_p->sockhost? --fl */
268#if 0
269 static char ipaddr[HOSTIPLEN];
caa4d9d2 270 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
212380e3
AC		 271#endif
272 sendto_realops_snomask(SNO_UNAUTH, L_ALL,
273 "Unauthorised client connection from "
274 "%s!%s%s@%s [%s] on [%s/%u].",
275 source_p->name, IsGotId(source_p) ? "" : "~",
276 source_p->username, source_p->host,
277 source_p->sockhost,
278 source_p->localClient->listener->name, port);
279
280 ilog(L_FUSER,
281 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
282 source_p->name, IsGotId(source_p) ? "" : "~",
283 source_p->username, source_p->sockhost,
284 source_p->localClient->listener->name, port);
35f6f850 285 add_reject(client_p, NULL, NULL);
212380e3
AC		 286 exit_client(client_p, source_p, &me,
287 "You are not authorised to use this server");
288 break;
289 }
290 case BANNED_CLIENT:
212380e3 291 exit_client(client_p, client_p, &me, "*** Banned ");
47adde3d 292 ServerStats.is_ref++;
212380e3
AC		 293 break;
294
295 case 0:
296 default:
297 break;
298 }
299 return (i);
300}
301
302/*
303 * verify_access
304 *
305 * inputs - pointer to client to verify
306 * - pointer to proposed username
307 * output - 0 if success -'ve if not
308 * side effect - find the first (best) I line to attach.
309 */
310static int
311verify_access(struct Client *client_p, const char *username)
312{
313 struct ConfItem *aconf;
212380e3 314
b4a7304c 315 aconf = find_address_conf_by_client(client_p, username);
212380e3
AC		 316 if(aconf == NULL)
317 return NOT_AUTHORISED;
318
319 if(aconf->status & CONF_CLIENT)
320 {
321 if(aconf->flags & CONF_FLAGS_REDIR)
322 {
88520303 323 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
27f616dd 324 aconf->info.name ? aconf->info.name : "", aconf->port);
212380e3
AC		 325 return (NOT_AUTHORISED);
326 }
327
212380e3
AC		 328 /* Thanks for spoof idea amm */
329 if(IsConfDoSpoofIp(aconf))
330 {
331 char *p;
332
333 /* show_ip() depends on this --fl */
334 SetIPSpoof(client_p);
335
336 if(IsConfSpoofNotice(aconf))
337 {
338 sendto_realops_snomask(SNO_GENERAL, L_ALL,
339 "%s spoofing: %s as %s",
340 client_p->name,
27f616dd
JT		 341 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
342 aconf->info.name);
212380e3
AC		 343 }
344
345 /* user@host spoof */
27f616dd 346 if((p = strchr(aconf->info.name, '@')) != NULL)
212380e3
AC		 347 {
348 char *host = p+1;
349 *p = '\0';
350
27f616dd 351 rb_strlcpy(client_p->username, aconf->info.name,
212380e3 352 sizeof(client_p->username));
f427c8b0 353 rb_strlcpy(client_p->host, host,
212380e3
AC		 354 sizeof(client_p->host));
355 *p = '@';
356 }
357 else
27f616dd 358 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
212380e3
AC		 359 }
360 return (attach_iline(client_p, aconf));
361 }
362 else if(aconf->status & CONF_KILL)
363 {
364 if(ConfigFileEntry.kline_with_reason)
212380e3 365 sendto_one(client_p,
92fb5c31 366 form_str(ERR_YOUREBANNEDCREEP),
a12ad044
JT		 367 me.name, client_p->name,
368 get_user_ban_reason(aconf));
35f6f850 369 add_reject(client_p, aconf->user, aconf->host);
212380e3
AC		 370 return (BANNED_CLIENT);
371 }
212380e3
AC		 372
373 return NOT_AUTHORISED;
374}
375
376
b4a7304c
JT		 377/*
378 * find_address_conf_by_client
379 */
380static struct ConfItem *
381find_address_conf_by_client(struct Client *client_p, const char *username)
382{
383 struct ConfItem *aconf;
384 char non_ident[USERLEN + 1];
385
386 if(IsGotId(client_p))
387 {
388 aconf = find_address_conf(client_p->host, client_p->sockhost,
389 client_p->username, client_p->username,
390 (struct sockaddr *) &client_p->localClient->ip,
e867208d 391 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 392 client_p->localClient->auth_user);
393 }
394 else
395 {
396 rb_strlcpy(non_ident, "~", sizeof(non_ident));
397 rb_strlcat(non_ident, username, sizeof(non_ident));
398 aconf = find_address_conf(client_p->host, client_p->sockhost,
399 non_ident, client_p->username,
400 (struct sockaddr *) &client_p->localClient->ip,
e867208d 401 GET_SS_FAMILY(&client_p->localClient->ip),
b4a7304c
JT		 402 client_p->localClient->auth_user);
403 }
404 return aconf;
405}
406
407
212380e3
AC		 408/*
409 * add_ip_limit
55abcbb2 410 *
212380e3
AC		 411 * Returns 1 if successful 0 if not
412 *
413 * This checks if the user has exceed the limits for their class
414 * unless of course they are exempt..
415 */
416
417static int
418add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
419{
b2c190a6 420 rb_patricia_node_t *pnode;
e33e589c 421 int bitlen;
212380e3
AC		 422
423 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 424 if(ConfCidrAmount(aconf) == 0
425 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 426 return -1;
427
b2c190a6 428 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3 429
e33e589c
JT		 430 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
431 bitlen = ConfCidrIpv4Bitlen(aconf);
432 else
433 bitlen = ConfCidrIpv6Bitlen(aconf);
434
212380e3 435 if(pnode == NULL)
e33e589c 436 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
212380e3
AC		 437
438 s_assert(pnode != NULL);
439
440 if(pnode != NULL)
441 {
e33e589c 442 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
212380e3
AC		 443 {
444 /* This should only happen if the limits are set to 0 */
e33e589c 445 if((intptr_t)pnode->data == 0)
212380e3 446 {
b2c190a6 447 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 448 }
449 return (0);
450 }
451
e33e589c 452 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
212380e3
AC		 453 }
454 return 1;
455}
456
457static void
458remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
459{
b2c190a6 460 rb_patricia_node_t *pnode;
212380e3
AC		 461
462 /* If the limits are 0 don't do anything.. */
e33e589c
JT		 463 if(ConfCidrAmount(aconf) == 0
464 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
212380e3
AC		 465 return;
466
b2c190a6 467 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
212380e3
AC		 468 if(pnode == NULL)
469 return;
470
e33e589c
JT		 471 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
472 if(((intptr_t)pnode->data) == 0)
212380e3 473 {
b2c190a6 474 rb_patricia_remove(ConfIpLimits(aconf), pnode);
212380e3
AC		 475 }
476
477}
478
479/*
480 * attach_iline
481 *
482 * inputs - client pointer
483 * - conf pointer
484 * output -
485 * side effects - do actual attach
486 */
487static int
488attach_iline(struct Client *client_p, struct ConfItem *aconf)
489{
490 struct Client *target_p;
330fc5c1 491 rb_dlink_node *ptr;
212380e3
AC		 492 int local_count = 0;
493 int global_count = 0;
494 int ident_count = 0;
15f92147 495 int unidented;
212380e3
AC		 496
497 if(IsConfExemptLimits(aconf))
498 return (attach_conf(client_p, aconf));
499
15f92147
JT		 500 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
501 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
212380e3
AC		 502
503 /* find_hostname() returns the head of the list to search */
5cefa1d6 504 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
212380e3
AC		 505 {
506 target_p = ptr->data;
507
508 if(irccmp(client_p->host, target_p->orighost) != 0)
509 continue;
510
511 if(MyConnect(target_p))
512 local_count++;
513
514 global_count++;
515
516 if(unidented)
517 {
518 if(*target_p->username == '~')
519 ident_count++;
520 }
521 else if(irccmp(target_p->username, client_p->username) == 0)
522 ident_count++;
523
524 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
525 return (TOO_MANY_LOCAL);
526 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
527 return (TOO_MANY_GLOBAL);
528 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
529 return (TOO_MANY_IDENT);
530 }
531
532
533 return (attach_conf(client_p, aconf));
534}
535
536/*
537 * detach_conf
538 *
539 * inputs - pointer to client to detach
540 * output - 0 for success, -1 for failure
541 * side effects - Disassociate configuration from the client.
542 * Also removes a class from the list if marked for deleting.
543 */
544int
545detach_conf(struct Client *client_p)
546{
547 struct ConfItem *aconf;
548
549 aconf = client_p->localClient->att_conf;
550
551 if(aconf != NULL)
552 {
553 if(ClassPtr(aconf))
554 {
555 remove_ip_limit(client_p, aconf);
556
557 if(ConfCurrUsers(aconf) > 0)
558 --ConfCurrUsers(aconf);
559
560 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
561 {
562 free_class(ClassPtr(aconf));
563 ClassPtr(aconf) = NULL;
564 }
565
566 }
567
568 aconf->clients--;
569 if(!aconf->clients && IsIllegal(aconf))
570 free_conf(aconf);
571
572 client_p->localClient->att_conf = NULL;
573 return 0;
574 }
575
576 return -1;
577}
578
579/*
580 * attach_conf
55abcbb2 581 *
212380e3
AC		 582 * inputs - client pointer
583 * - conf pointer
584 * output -
585 * side effects - Associate a specific configuration entry to a *local*
586 * client (this is the one which used in accepting the
587 * connection). Note, that this automatically changes the
588 * attachment if there was an old one...
589 */
590int
591attach_conf(struct Client *client_p, struct ConfItem *aconf)
592{
593 if(IsIllegal(aconf))
594 return (NOT_AUTHORISED);
595
596 if(ClassPtr(aconf))
597 {
598 if(!add_ip_limit(client_p, aconf))
599 return (TOO_MANY_LOCAL);
600 }
601
602 if((aconf->status & CONF_CLIENT) &&
603 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
604 {
605 if(!IsConfExemptLimits(aconf))
606 {
607 return (I_LINE_FULL);
608 }
609 else
610 {
5366977b 611 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
212380e3
AC		 612 }
613
614 }
615
616 if(client_p->localClient->att_conf != NULL)
617 detach_conf(client_p);
618
619 client_p->localClient->att_conf = aconf;
620
621 aconf->clients++;
622 ConfCurrUsers(aconf)++;
623 return (0);
624}
625
626/*
627 * rehash
628 *
629 * Actual REHASH service routine. Called with sig == 0 if it has been called
630 * as a result of an operator issuing this command, else assume it has been
631 * called as a result of the server receiving a HUP signal.
632 */
ab31d2b0
EM		 633bool
634rehash(bool sig)
212380e3 635{
2575a78b
EM		 636 hook_data_rehash hdata = { sig };
637
ab31d2b0 638 if(sig)
212380e3
AC		 639 sendto_realops_snomask(SNO_GENERAL, L_ALL,
640 "Got signal SIGHUP, reloading ircd conf. file");
212380e3 641
f60055d3 642 rehash_authd();
2575a78b 643
212380e3 644 /* don't close listeners until we know we can go ahead with the rehash */
ab31d2b0 645 read_conf_files(false);
212380e3
AC		 646
647 if(ServerInfo.description != NULL)
f427c8b0 648 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
212380e3 649 else
f427c8b0 650 rb_strlcpy(me.info, "unknown", sizeof(me.info));
212380e3
AC		 651
652 open_logfiles();
2575a78b
EM		 653
654 call_hook(h_rehash, &hdata);
ab31d2b0 655 return false;
212380e3
AC		 656}
657
212380e3 658void
ab31d2b0 659rehash_bans(void)
212380e3 660{
80c9ac51 661 bandb_rehash_bans();
212380e3
AC		 662}
663
664/*
665 * set_default_conf()
666 *
667 * inputs - NONE
668 * output - NONE
669 * side effects - Set default values here.
670 * This is called **PRIOR** to parsing the
671 * configuration file. If you want to do some validation
672 * of values later, put them in validate_conf().
673 */
674
212380e3
AC		 675static void
676set_default_conf(void)
677{
678 /* ServerInfo.name is not rehashable */
679 /* ServerInfo.name = ServerInfo.name; */
680 ServerInfo.description = NULL;
010c4fbd 681 ServerInfo.network_name = NULL;
212380e3
AC		 682
683 memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip));
684 ServerInfo.specific_ipv4_vhost = 0;
ccda6e3f 685#ifdef RB_IPV6
212380e3
AC		 686 memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6));
687 ServerInfo.specific_ipv6_vhost = 0;
688#endif
212380e3 689
212380e3
AC		 690 AdminInfo.name = NULL;
691 AdminInfo.email = NULL;
692 AdminInfo.description = NULL;
693
010c4fbd
KB		 694 ConfigFileEntry.default_operstring = NULL;
695 ConfigFileEntry.default_adminstring = NULL;
696 ConfigFileEntry.servicestring = NULL;
7d33cce8 697 ConfigFileEntry.sasl_service = NULL;
212380e3 698
55abcbb2 699 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
d2e0b78f
AC		 700 ConfigFileEntry.failed_oper_notice = true;
701 ConfigFileEntry.anti_nick_flood = false;
702 ConfigFileEntry.disable_fake_channels = false;
212380e3
AC		 703 ConfigFileEntry.max_nick_time = 20;
704 ConfigFileEntry.max_nick_changes = 5;
705 ConfigFileEntry.max_accept = 20;
706 ConfigFileEntry.max_monitor = 60;
707 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
d2e0b78f 708 ConfigFileEntry.target_change = true;
212380e3
AC		 709 ConfigFileEntry.anti_spam_exit_message_time = 0;
710 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
711 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
d2e0b78f
AC		 712 ConfigFileEntry.client_exit = true;
713 ConfigFileEntry.dline_with_reason = true;
714 ConfigFileEntry.kline_with_reason = true;
212380e3 715 ConfigFileEntry.kline_delay = 0;
d2e0b78f
AC		 716 ConfigFileEntry.warn_no_nline = true;
717 ConfigFileEntry.non_redundant_klines = true;
718 ConfigFileEntry.stats_e_disabled = false;
719 ConfigFileEntry.stats_o_oper_only = false;
212380e3
AC		 720 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
721 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
d2e0b78f
AC		 722 ConfigFileEntry.stats_P_oper_only = false;
723 ConfigFileEntry.stats_c_oper_only = false;
724 ConfigFileEntry.stats_y_oper_only = false;
725 ConfigFileEntry.stats_h_oper_only = false;
726 ConfigFileEntry.map_oper_only = true;
727 ConfigFileEntry.operspy_admin_only = false;
212380e3
AC		 728 ConfigFileEntry.pace_wait = 10;
729 ConfigFileEntry.caller_id_wait = 60;
730 ConfigFileEntry.pace_wait_simple = 1;
d2e0b78f
AC		 731 ConfigFileEntry.short_motd = false;
732 ConfigFileEntry.no_oper_flood = false;
212380e3
AC		 733 ConfigFileEntry.fname_userlog = NULL;
734 ConfigFileEntry.fname_fuserlog = NULL;
735 ConfigFileEntry.fname_operlog = NULL;
736 ConfigFileEntry.fname_foperlog = NULL;
737 ConfigFileEntry.fname_serverlog = NULL;
00533129 738 ConfigFileEntry.fname_killlog = NULL;
212380e3
AC		 739 ConfigFileEntry.fname_klinelog = NULL;
740 ConfigFileEntry.fname_operspylog = NULL;
741 ConfigFileEntry.fname_ioerrorlog = NULL;
d2e0b78f 742 ConfigFileEntry.hide_spoof_ips = true;
212380e3 743 ConfigFileEntry.hide_error_messages = 1;
212380e3
AC		 744 ConfigFileEntry.dots_in_ident = 0;
745 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
d2e0b78f
AC		 746 ConfigFileEntry.use_whois_actually = true;
747 ConfigFileEntry.burst_away = false;
748 ConfigFileEntry.collision_fnc = true;
749 ConfigFileEntry.resv_fnc = true;
750 ConfigFileEntry.global_snotices = true;
751 ConfigFileEntry.operspy_dont_care_user_info = false;
752 ConfigFileEntry.use_propagated_bans = true;
e88a1f1b 753 ConfigFileEntry.max_ratelimit_tokens = 30;
d42e6915 754 ConfigFileEntry.away_interval = 30;
212380e3
AC		 755
756#ifdef HAVE_LIBZ
757 ConfigFileEntry.compression_level = 4;
758#endif
759
760 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
761 UMODE_OPERWALL | UMODE_WALLOP;
762 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
763 ConfigFileEntry.oper_snomask = SNO_GENERAL;
764
d2e0b78f
AC		 765 ConfigChannel.use_except = true;
766 ConfigChannel.use_invex = true;
767 ConfigChannel.use_forward = true;
768 ConfigChannel.use_knock = true;
212380e3
AC		 769 ConfigChannel.knock_delay = 300;
770 ConfigChannel.knock_delay_channel = 60;
771 ConfigChannel.max_chans_per_user = 15;
a4721f5e 772 ConfigChannel.max_chans_per_user_large = 60;
212380e3
AC		 773 ConfigChannel.max_bans = 25;
774 ConfigChannel.max_bans_large = 500;
d2e0b78f
AC		 775 ConfigChannel.only_ascii_channels = false;
776 ConfigChannel.burst_topicwho = false;
777 ConfigChannel.kick_on_split_riding = false;
212380e3
AC		 778
779 ConfigChannel.default_split_user_count = 15000;
780 ConfigChannel.default_split_server_count = 10;
d2e0b78f
AC		 781 ConfigChannel.no_join_on_split = false;
782 ConfigChannel.no_create_on_split = true;
783 ConfigChannel.resv_forcepart = true;
784 ConfigChannel.channel_target_change = true;
785 ConfigChannel.disable_local_channels = false;
d513218a 786 ConfigChannel.displayed_usercount = 3;
212380e3 787
63eb8567
AC		 788 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
789
212380e3
AC		 790 ConfigServerHide.flatten_links = 0;
791 ConfigServerHide.links_delay = 300;
792 ConfigServerHide.hidden = 0;
793 ConfigServerHide.disable_hidden = 0;
794
795 ConfigFileEntry.min_nonwildcard = 4;
796 ConfigFileEntry.min_nonwildcard_simple = 3;
797 ConfigFileEntry.default_floodcount = 8;
7f3382fe 798 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
212380e3
AC		 799 ConfigFileEntry.tkline_expire_notices = 0;
800
801 ConfigFileEntry.reject_after_count = 5;
55abcbb2 802 ConfigFileEntry.reject_ban_time = 300;
212380e3 803 ConfigFileEntry.reject_duration = 120;
43946961
JT		 804 ConfigFileEntry.throttle_count = 4;
805 ConfigFileEntry.throttle_duration = 60;
c2d96fcb 806
e6e54763
SB		 807 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
808 ConfigFileEntry.client_flood_burst_rate = 5;
809 ConfigFileEntry.client_flood_burst_max = 5;
810 ConfigFileEntry.client_flood_message_time = 1;
811 ConfigFileEntry.client_flood_message_num = 2;
812
101db4c4 813 ServerInfo.default_max_clients = MAXCONNECTIONS;
456e5b3d 814
b583faf9 815 ConfigFileEntry.nicklen = NICKLEN;
13d8f0ed 816 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_SHA1;
71c95533 817 ConfigFileEntry.hide_opers_in_whois = 0;
b583faf9 818
456e5b3d 819 if (!alias_dict)
f956cb0f 820 alias_dict = rb_dictionary_create("alias", rb_strcasecmp);
212380e3
AC		 821}
822
212380e3 823/*
55abcbb2 824 * read_conf()
212380e3
AC		 825 *
826 *
29c92cf9 827 * inputs - None
212380e3
AC		 828 * output - None
829 * side effects - Read configuration file.
830 */
831static void
29c92cf9 832read_conf(void)
212380e3
AC		 833{
834 lineno = 0;
835
836 set_default_conf(); /* Set default values prior to conf parsing */
837 yyparse(); /* Load the values from the conf */
838 validate_conf(); /* Check to make sure some values are still okay. */
839 /* Some global values are also loaded here. */
840 check_class(); /* Make sure classes are valid */
422bb0b5 841 privilegeset_delete_all_illegal();
c55b2782 842 construct_cflags_strings();
212380e3
AC		 843}
844
845static void
846validate_conf(void)
847{
7f3382fe
KB		 848 if(ConfigFileEntry.default_ident_timeout < 1)
849 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
850
212380e3
AC		 851 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
852 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
853
854 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
855 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
856
212380e3 857 if(ServerInfo.network_name == NULL)
47a03750 858 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
212380e3 859
8bd5767b 860 if(ServerInfo.ssld_count < 1)
c6d72037
VY		 861 ServerInfo.ssld_count = 1;
862
c53ca1e0
AC		 863 /* XXX: configurable? */
864 ServerInfo.wsockd_count = 1;
865
c1725bda 866 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
8bd5767b
JT		 867 {
868 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
bfc44622 869 ircd_ssl_ok = false;
8bd5767b 870 } else {
bfc44622 871 ircd_ssl_ok = true;
c1725bda 872 send_new_ssl_certs(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
8bd5767b
JT		 873 }
874
875 if(ServerInfo.ssld_count > get_ssld_count())
876 {
877 int start = ServerInfo.ssld_count - get_ssld_count();
878 /* start up additional ssld if needed */
c1725bda 879 start_ssldaemon(start, ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
c6d72037
VY		 880 }
881
c53ca1e0
AC		 882 if(ServerInfo.wsockd_count > get_wsockd_count())
883 {
34b88b65 884 int start = ServerInfo.wsockd_count - get_wsockd_count();
c53ca1e0
AC		 885 start_wsockd(start);
886 }
887
010c4fbd
KB		 888 /* General conf */
889 if (ConfigFileEntry.default_operstring == NULL)
890 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
891
892 if (ConfigFileEntry.default_adminstring == NULL)
893 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
894
895 if (ConfigFileEntry.servicestring == NULL)
896 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
897
7d33cce8
MT		 898 if (ConfigFileEntry.sasl_service == NULL)
899 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
900
894325fe
JT		 901 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
902 * 5 messages are acceptable, so allow at least that.
41ca4cac 903 */
894325fe
JT		 904 if(ConfigFileEntry.client_flood_burst_rate < 5)
905 ConfigFileEntry.client_flood_burst_rate = 5;
906 if(ConfigFileEntry.client_flood_burst_max < 5)
907 ConfigFileEntry.client_flood_burst_max = 5;
41ca4cac
JT		 908 if(ConfigFileEntry.client_flood_message_time >
909 ConfigFileEntry.client_flood_message_num * 2)
910 ConfigFileEntry.client_flood_message_time =
911 ConfigFileEntry.client_flood_message_num * 2;
912
e6e54763
SB		 913 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
914 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
915 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
212380e3 916
212380e3
AC		 917 if(!split_users || !split_servers ||
918 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
919 {
b2c190a6
JT		 920 rb_event_delete(check_splitmode_ev);
921 check_splitmode_ev = NULL;
212380e3
AC		 922 splitmode = 0;
923 splitchecking = 0;
924 }
925}
926
212380e3
AC		 927/* add_temp_kline()
928 *
929 * inputs - pointer to struct ConfItem
930 * output - none
55abcbb2 931 * Side effects - links in given struct ConfItem into
212380e3
AC		 932 * temporary kline link list
933 */
934void
935add_temp_kline(struct ConfItem *aconf)
936{
e3354945 937 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 938 {
330fc5c1 939 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
212380e3
AC		 940 aconf->port = TEMP_WEEK;
941 }
e3354945 942 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 943 {
330fc5c1 944 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
212380e3
AC		 945 aconf->port = TEMP_DAY;
946 }
e3354945 947 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 948 {
330fc5c1 949 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
212380e3
AC		 950 aconf->port = TEMP_HOUR;
951 }
952 else
953 {
330fc5c1 954 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
212380e3
AC		 955 aconf->port = TEMP_MIN;
956 }
957
958 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 959 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
212380e3
AC		 960}
961
962/* add_temp_dline()
963 *
964 * input - pointer to struct ConfItem
965 * output - none
966 * side effects - added to tdline link list and address hash
967 */
968void
969add_temp_dline(struct ConfItem *aconf)
970{
e3354945 971 if(aconf->hold >= rb_current_time() + (10080 * 60))
212380e3 972 {
330fc5c1 973 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
212380e3
AC		 974 aconf->port = TEMP_WEEK;
975 }
e3354945 976 else if(aconf->hold >= rb_current_time() + (1440 * 60))
212380e3 977 {
330fc5c1 978 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
212380e3
AC		 979 aconf->port = TEMP_DAY;
980 }
e3354945 981 else if(aconf->hold >= rb_current_time() + (60 * 60))
212380e3 982 {
330fc5c1 983 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
212380e3
AC		 984 aconf->port = TEMP_HOUR;
985 }
986 else
987 {
330fc5c1 988 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
212380e3
AC		 989 aconf->port = TEMP_MIN;
990 }
991
992 aconf->flags |= CONF_FLAGS_TEMPORARY;
40c1fd47 993 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
212380e3
AC		 994}
995
5c2b9eaf 996/* valid_wild_card()
55abcbb2 997 *
5c2b9eaf
JT		 998 * input - user buffer, host buffer
999 * output - 0 if invalid, 1 if valid
1000 * side effects -
1001 */
1002int
1003valid_wild_card(const char *luser, const char *lhost)
1004{
1005 const char *p;
1006 char tmpch;
1007 int nonwild = 0;
1008 int bitlen;
1009
1010 /* user has no wildcards, always accept -- jilles */
1011 if(!strchr(luser, '?') && !strchr(luser, '*'))
1012 return 1;
1013
1014 /* check there are enough non wildcard chars */
1015 p = luser;
1016 while((tmpch = *p++))
1017 {
1018 if(!IsKWildChar(tmpch))
1019 {
1020 /* found enough chars, return */
1021 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1022 return 1;
1023 }
1024 }
1025
1026 /* try host, as user didnt contain enough */
1027 /* special case for cidr masks -- jilles */
1028 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1029 {
1030 bitlen = atoi(p + 1);
1031 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1032 if(bitlen > 0
1033 && bitlen >=
1034 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1035 2 * nonwild))
1036 return 1;
1037 }
1038 else
1039 {
1040 p = lhost;
1041 while((tmpch = *p++))
1042 {
1043 if(!IsKWildChar(tmpch))
1044 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1045 return 1;
1046 }
1047 }
1048
1049 return 0;
1050}
1051
431a1a27
JT		 1052rb_dlink_node *
1053find_prop_ban(unsigned int status, const char *user, const char *host)
1054{
1055 rb_dlink_node *ptr;
1056 struct ConfItem *aconf;
1057
1058 RB_DLINK_FOREACH(ptr, prop_bans.head)
1059 {
1060 aconf = ptr->data;
1061
1062 if((aconf->status & ~CONF_ILLEGAL) == status &&
1063 (!user || !aconf->user ||
1064 !irccmp(aconf->user, user)) &&
1065 !irccmp(aconf->host, host))
1066 return ptr;
1067 }
1068 return NULL;
1069}
1070
9197bc35 1071void
483987a4 1072deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
9197bc35
JT		 1073{
1074 int i;
1075
1076 s_assert(ptr->data == aconf);
1077
1078 switch (aconf->status)
1079 {
1080 case CONF_KILL:
1081 if (aconf->lifetime == 0 &&
1082 aconf->flags & CONF_FLAGS_TEMPORARY)
1083 for (i = 0; i < LAST_TEMP_TYPE; i++)
1084 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1085 /* Make sure delete_one_address_conf() does not
1086 * free the aconf.
1087 */
1088 aconf->clients++;
1089 delete_one_address_conf(aconf->host, aconf);
1090 aconf->clients--;
1091 break;
1092 case CONF_DLINE:
1093 if (aconf->lifetime == 0 &&
1094 aconf->flags & CONF_FLAGS_TEMPORARY)
1095 for (i = 0; i < LAST_TEMP_TYPE; i++)
1096 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1097 aconf->clients++;
1098 delete_one_address_conf(aconf->host, aconf);
1099 aconf->clients--;
1100 break;
1101 case CONF_XLINE:
1102 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1103 break;
1104 case CONF_RESV_NICK:
1105 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1106 break;
1107 case CONF_RESV_CHANNEL:
1108 del_from_resv_hash(aconf->host, aconf);
1109 break;
1110 }
483987a4 1111 if (aconf->lifetime != 0 && now < aconf->lifetime)
9197bc35
JT		 1112 aconf->status |= CONF_ILLEGAL;
1113 else
1114 {
1115 if (aconf->lifetime != 0)
1116 rb_dlinkDestroy(ptr, &prop_bans);
1117 free_conf(aconf);
1118 }
1119}
1120
3cbbfb25
JT		 1121/* Given a new ban ConfItem, look for any matching ban, update the lifetime
1122 * from it and delete it.
1123 */
1124void
1125replace_old_ban(struct ConfItem *aconf)
1126{
1127 rb_dlink_node *ptr;
1128 struct ConfItem *oldconf;
1129
1130 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1131 if(ptr != NULL)
1132 {
1133 oldconf = ptr->data;
1134 /* Remember at least as long as the old one. */
1135 if(oldconf->lifetime > aconf->lifetime)
1136 aconf->lifetime = oldconf->lifetime;
1137 /* Force creation time to increase. */
1138 if(oldconf->created >= aconf->created)
1139 aconf->created = oldconf->created + 1;
1140 /* Leave at least one second of validity. */
1141 if(aconf->hold <= aconf->created)
1142 aconf->hold = aconf->created + 1;
1143 if(aconf->lifetime < aconf->hold)
1144 aconf->lifetime = aconf->hold;
1145 /* Tell deactivate_conf() to destroy it. */
1146 oldconf->lifetime = rb_current_time();
483987a4 1147 deactivate_conf(oldconf, ptr, oldconf->lifetime);
3cbbfb25
JT		 1148 }
1149}
1150
9197bc35
JT		 1151static void
1152expire_prop_bans(void *list)
1153{
1154 rb_dlink_node *ptr;
1155 rb_dlink_node *next_ptr;
1156 struct ConfItem *aconf;
483987a4 1157 time_t now;
9197bc35 1158
483987a4 1159 now = rb_current_time();
9197bc35
JT		 1160 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1161 {
1162 aconf = ptr->data;
1163
483987a4
JT		 1164 if(aconf->lifetime <= now ||
1165 (aconf->hold <= now &&
9197bc35
JT		 1166 !(aconf->status & CONF_ILLEGAL)))
1167 {
1168 /* Alert opers that a TKline expired - Hwy */
1169 /* XXX show what type of ban it is */
1170 if(ConfigFileEntry.tkline_expire_notices &&
1171 !(aconf->status & CONF_ILLEGAL))
1172 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1173 "Propagated ban for [%s%s%s] expired",
1174 aconf->user ? aconf->user : "",
1175 aconf->user ? "@" : "",
1176 aconf->host ? aconf->host : "*");
1177
1178 /* will destroy or mark illegal */
483987a4 1179 deactivate_conf(aconf, ptr, now);
9197bc35
JT		 1180 }
1181 }
1182}
1183
212380e3
AC		 1184/* expire_tkline()
1185 *
1186 * inputs - list pointer
1187 * - type
1188 * output - NONE
1189 * side effects - expire tklines and moves them between lists
1190 */
1191static void
1192expire_temp_kd(void *list)
1193{
330fc5c1 1194 rb_dlink_node *ptr;
637c4932 1195 rb_dlink_node *next_ptr;
212380e3
AC		 1196 struct ConfItem *aconf;
1197
637c4932 1198 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1199 {
1200 aconf = ptr->data;
1201
e3354945 1202 if(aconf->hold <= rb_current_time())
212380e3
AC		 1203 {
1204 /* Alert opers that a TKline expired - Hwy */
1205 if(ConfigFileEntry.tkline_expire_notices)
1206 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1207 "Temporary K-line for [%s@%s] expired",
1208 (aconf->user) ? aconf->
1209 user : "*", (aconf->host) ? aconf->host : "*");
1210
1211 delete_one_address_conf(aconf->host, aconf);
330fc5c1 1212 rb_dlinkDestroy(ptr, list);
212380e3
AC		 1213 }
1214 }
1215}
1216
1217static void
1218reorganise_temp_kd(void *list)
1219{
1220 struct ConfItem *aconf;
637c4932 1221 rb_dlink_node *ptr, *next_ptr;
212380e3 1222
637c4932 1223 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
212380e3
AC		 1224 {
1225 aconf = ptr->data;
1226
e3354945 1227 if(aconf->hold < (rb_current_time() + (60 * 60)))
212380e3 1228 {
55abcbb2 1229 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1230 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1231 aconf->port = TEMP_MIN;
1232 }
1233 else if(aconf->port > TEMP_HOUR)
1234 {
e3354945 1235 if(aconf->hold < (rb_current_time() + (1440 * 60)))
212380e3 1236 {
55abcbb2 1237 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1238 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1239 aconf->port = TEMP_HOUR;
1240 }
55abcbb2 1241 else if(aconf->port > TEMP_DAY &&
e3354945 1242 (aconf->hold < (rb_current_time() + (10080 * 60))))
212380e3 1243 {
55abcbb2 1244 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
212380e3
AC		 1245 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1246 aconf->port = TEMP_DAY;
1247 }
1248 }
1249 }
1250}
1251
1252
1253/* const char* get_oper_name(struct Client *client_p)
1254 * Input: A client to find the active oper{} name for.
1255 * Output: The nick!user@host{oper} of the oper.
1256 * "oper" is server name for remote opers
1257 * Side effects: None.
1258 */
1259char *
1260get_oper_name(struct Client *client_p)
1261{
1262 /* +5 for !,@,{,} and null */
1263 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1264
1265 if(MyOper(client_p))
1266 {
5203cba5 1267 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
212380e3
AC		 1268 client_p->name, client_p->username,
1269 client_p->host, client_p->localClient->opername);
1270 return buffer;
1271 }
1272
5203cba5 1273 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
55abcbb2 1274 client_p->name, client_p->username,
212380e3
AC		 1275 client_p->host, client_p->servptr->name);
1276 return buffer;
1277}
1278
1279/*
1280 * get_printable_conf
1281 *
1282 * inputs - struct ConfItem
1283 *
55abcbb2 1284 * output - name
212380e3
AC		 1285 * - host
1286 * - pass
1287 * - user
1288 * - port
1289 *
1290 * side effects -
1291 * Examine the struct struct ConfItem, setting the values
1292 * of name, host, pass, user to values either
1293 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1294 */
1295void
1296get_printable_conf(struct ConfItem *aconf, char **name, char **host,
29c92cf9 1297 const char **pass, char **user, int *port, char **classname)
212380e3
AC		 1298{
1299 static char null[] = "<NULL>";
1300 static char zero[] = "default";
1301
27f616dd 1302 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
212380e3
AC		 1303 *host = EmptyString(aconf->host) ? null : aconf->host;
1304 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1305 *user = EmptyString(aconf->user) ? null : aconf->user;
1306 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1307 *port = (int) aconf->port;
1308}
1309
a12ad044
JT		 1310char *
1311get_user_ban_reason(struct ConfItem *aconf)
1312{
1313 static char reasonbuf[BUFSIZE];
1314
1315 if (aconf->flags & CONF_FLAGS_TEMPORARY &&
1316 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
5203cba5 1317 snprintf(reasonbuf, sizeof reasonbuf,
a12ad044
JT		 1318 "Temporary %c-line %d min. - ",
1319 aconf->status == CONF_DLINE ? 'D' : 'K',
803ce385 1320 (int)((aconf->hold - aconf->created) / 60));
a12ad044
JT		 1321 else
1322 reasonbuf[0] = '\0';
1323 if (aconf->passwd)
1324 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1325 else
1326 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1327 if (aconf->created)
1328 {
1329 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1330 rb_strlcat(reasonbuf, smalldate(aconf->created),
1331 sizeof reasonbuf);
1332 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1333 }
1334 return reasonbuf;
1335}
1336
54ac8b60 1337void
55abcbb2 1338get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
54ac8b60
VY		 1339 char **host, char **reason,
1340 char **user, char **oper_reason)
1341{
1342 static char null[] = "<NULL>";
778dd56b 1343 static char operreasonbuf[BUFSIZE];
54ac8b60
VY		 1344
1345 *host = EmptyString(aconf->host) ? null : aconf->host;
54ac8b60 1346 *user = EmptyString(aconf->user) ? null : aconf->user;
a12ad044 1347 *reason = get_user_ban_reason(aconf);
b52c2949 1348
778dd56b 1349 if(!IsOper(source_p))
54ac8b60
VY		 1350 *oper_reason = NULL;
1351 else
778dd56b 1352 {
5203cba5 1353 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
778dd56b
JT		 1354 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1355 EmptyString(aconf->spasswd) ? "" : " ",
1356 aconf->info.oper);
1357 *oper_reason = operreasonbuf;
1358 }
212380e3
AC		 1359}
1360
1361/*
1362 * read_conf_files
1363 *
ea111ea5 1364 * inputs - cold start
212380e3
AC		 1365 * output - none
1366 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1367 */
1368void
ea111ea5 1369read_conf_files(bool cold)
212380e3
AC		 1370{
1371 const char *filename;
1372
1373 conf_fbfile_in = NULL;
1374
22342cd1 1375 filename = ConfigFileEntry.configfile;
212380e3
AC		 1376
1377 /* We need to know the initial filename for the yyerror() to report
1378 FIXME: The full path is in conffilenamebuf first time since we
1379 dont know anything else
1380
55abcbb2 1381 - Gozem 2002-07-21
a576a0fe
CD		 1382
1383
212380e3 1384 */
f427c8b0 1385 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
212380e3
AC		 1386
1387 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1388 {
1389 if(cold)
1390 {
f951460a 1391 inotice("Failed in reading configuration file %s, aborting", filename);
a576a0fe
CD		 1392 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1393
1394 int e;
1395 e = errno;
1396
2c0450fb
CD		 1397 inotice("FATAL: %s %s", strerror(e), filename);
1398 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
a576a0fe 1399
212380e3
AC		 1400 exit(-1);
1401 }
1402 else
1403 {
1404 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1405 "Can't open file '%s' - aborting rehash!", filename);
1406 return;
1407 }
1408 }
1409
1410 if(!cold)
1411 {
1412 clear_out_old_conf();
1413 }
1414
7d603754 1415 call_hook(h_conf_read_start, NULL);
29c92cf9 1416 read_conf();
7d603754
KB		 1417 call_hook(h_conf_read_end, NULL);
1418
212380e3
AC		 1419 fclose(conf_fbfile_in);
1420}
1421
8ac75529
AC		 1422/*
1423 * free an alias{} entry.
1424 */
1425static void
4177311e 1426free_alias_cb(rb_dictionary_element *ptr, void *unused)
8ac75529
AC		 1427{
1428 struct alias_entry *aptr = ptr->data;
1429
637c4932
VY		 1430 rb_free(aptr->name);
1431 rb_free(aptr->target);
1432 rb_free(aptr);
8ac75529
AC		 1433}
1434
212380e3
AC		 1435/*
1436 * clear_out_old_conf
1437 *
1438 * inputs - none
1439 * output - none
1440 * side effects - Clear out the old configuration
1441 */
1442static void
1443clear_out_old_conf(void)
1444{
1445 struct Class *cltmp;
330fc5c1 1446 rb_dlink_node *ptr;
637c4932 1447 rb_dlink_node *next_ptr;
212380e3
AC		 1448
1449 /*
1450 * don't delete the class table, rather mark all entries
1451 * for deletion. The table is cleaned up by check_class. - avalon
1452 */
5cefa1d6 1453 RB_DLINK_FOREACH(ptr, class_list.head)
212380e3
AC		 1454 {
1455 cltmp = ptr->data;
1456 MaxUsers(cltmp) = -1;
1457 }
1458
1459 clear_out_address_conf();
1460 clear_s_newconf();
1461
1462 /* clean out module paths */
212380e3
AC		 1463 mod_clear_paths();
1464 mod_add_path(MODULE_DIR);
1465 mod_add_path(MODULE_DIR "/autoload");
212380e3
AC		 1466
1467 /* clean out ServerInfo */
637c4932 1468 rb_free(ServerInfo.description);
212380e3 1469 ServerInfo.description = NULL;
637c4932 1470 rb_free(ServerInfo.network_name);
212380e3 1471 ServerInfo.network_name = NULL;
212380e3 1472
c6d72037
VY		 1473 ServerInfo.ssld_count = 1;
1474
212380e3 1475 /* clean out AdminInfo */
637c4932 1476 rb_free(AdminInfo.name);
212380e3 1477 AdminInfo.name = NULL;
637c4932 1478 rb_free(AdminInfo.email);
212380e3 1479 AdminInfo.email = NULL;
637c4932 1480 rb_free(AdminInfo.description);
212380e3
AC		 1481 AdminInfo.description = NULL;
1482
1483 /* operator{} and class{} blocks are freed above */
1484 /* clean out listeners */
1485 close_listeners();
1486
1487 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1488 * and gecos{} blocks are freed above too
1489 */
1490
1491 /* clean out general */
010c4fbd
KB		 1492 rb_free(ConfigFileEntry.default_operstring);
1493 ConfigFileEntry.default_operstring = NULL;
1494 rb_free(ConfigFileEntry.default_adminstring);
1495 ConfigFileEntry.default_adminstring = NULL;
1496 rb_free(ConfigFileEntry.servicestring);
1497 ConfigFileEntry.servicestring = NULL;
d61a1c7e
JT		 1498 rb_free(ConfigFileEntry.kline_reason);
1499 ConfigFileEntry.kline_reason = NULL;
7d33cce8
MT		 1500 rb_free(ConfigFileEntry.sasl_service);
1501 ConfigFileEntry.sasl_service = NULL;
d61a1c7e 1502
00533129
KB		 1503 /* clean out log */
1504 rb_free(ConfigFileEntry.fname_userlog);
1505 ConfigFileEntry.fname_userlog = NULL;
1506 rb_free(ConfigFileEntry.fname_fuserlog);
1507 ConfigFileEntry.fname_fuserlog = NULL;
1508 rb_free(ConfigFileEntry.fname_operlog);
1509 ConfigFileEntry.fname_operlog = NULL;
1510 rb_free(ConfigFileEntry.fname_foperlog);
1511 ConfigFileEntry.fname_foperlog = NULL;
1512 rb_free(ConfigFileEntry.fname_serverlog);
1513 ConfigFileEntry.fname_serverlog = NULL;
1514 rb_free(ConfigFileEntry.fname_killlog);
1515 ConfigFileEntry.fname_killlog = NULL;
1516 rb_free(ConfigFileEntry.fname_klinelog);
1517 ConfigFileEntry.fname_klinelog = NULL;
1518 rb_free(ConfigFileEntry.fname_operspylog);
1519 ConfigFileEntry.fname_operspylog = NULL;
1520 rb_free(ConfigFileEntry.fname_ioerrorlog);
1521 ConfigFileEntry.fname_ioerrorlog = NULL;
1522
637c4932 1523 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
212380e3 1524 {
637c4932 1525 rb_free(ptr->data);
330fc5c1 1526 rb_dlinkDestroy(ptr, &service_list);
212380e3
AC		 1527 }
1528
1529 /* remove any aliases... -- nenolod */
dbcd150b
AC		 1530 if (alias_dict != NULL)
1531 {
a4bf26dd 1532 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
dbcd150b
AC		 1533 alias_dict = NULL;
1534 }
212380e3 1535
d3f6b808 1536 del_blacklist_all();
212380e3 1537
422bb0b5
JT		 1538 privilegeset_mark_all_illegal();
1539
212380e3
AC		 1540 /* OK, that should be everything... */
1541}
1542
1543
212380e3
AC		 1544/*
1545 * conf_add_class_to_conf
1546 * inputs - pointer to config item
1547 * output - NONE
55abcbb2 1548 * side effects - Add a class pointer to a conf
212380e3
AC		 1549 */
1550
1551void
1552conf_add_class_to_conf(struct ConfItem *aconf)
1553{
1554 if(aconf->className == NULL)
1555 {
47a03750 1556 aconf->className = rb_strdup("default");
212380e3
AC		 1557 ClassPtr(aconf) = default_class;
1558 return;
1559 }
1560
1561 ClassPtr(aconf) = find_class(aconf->className);
1562
1563 if(ClassPtr(aconf) == default_class)
1564 {
1565 if(aconf->status == CONF_CLIENT)
1566 {
8b801ad1
JT		 1567 conf_report_error(
1568 "Using default class for missing class \"%s\" in auth{} for %s@%s",
212380e3
AC		 1569 aconf->className, aconf->user, aconf->host);
1570 }
1571
637c4932 1572 rb_free(aconf->className);
47a03750 1573 aconf->className = rb_strdup("default");
212380e3
AC		 1574 return;
1575 }
1576
1577 if(ConfMaxUsers(aconf) < 0)
1578 {
1579 ClassPtr(aconf) = default_class;
637c4932 1580 rb_free(aconf->className);
47a03750 1581 aconf->className = rb_strdup("default");
212380e3
AC		 1582 return;
1583 }
1584}
1585
1586/*
1587 * conf_add_d_conf
1588 * inputs - pointer to config item
1589 * output - NONE
1590 * side effects - Add a d/D line
1591 */
1592void
1593conf_add_d_conf(struct ConfItem *aconf)
1594{
1595 if(aconf->host == NULL)
1596 return;
1597
1598 aconf->user = NULL;
1599
1600 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1601 * need this anyway, so I will disable it for now... -A1kmm
1602 */
1603
1604 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1605 {
1606 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1607 free_conf(aconf);
1608 }
1609 else
1610 {
40c1fd47 1611 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
212380e3
AC		 1612 }
1613}
1614
decf0486
VY		 1615static char *
1616strip_tabs(char *dest, const char *src, size_t len)
1617{
1618 char *d = dest;
1619
1620 if(dest == NULL || src == NULL)
1621 return NULL;
1622
1623 rb_strlcpy(dest, src, len);
1624
1625 while(*d)
1626 {
1627 if(*d == '\t')
1628 *d = ' ';
1629 d++;
1630 }
1631 return dest;
1632}
212380e3
AC		 1633
1634/*
1635 * yyerror
1636 *
1637 * inputs - message from parser
1638 * output - none
1639 * side effects - message to opers and log file entry is made
1640 */
1641void
1642yyerror(const char *msg)
1643{
1644 char newlinebuf[BUFSIZE];
1645
9eea5de1 1646 strip_tabs(newlinebuf, linebuf, strlen(linebuf));
212380e3 1647
beccbe31 1648 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
212380e3
AC		 1649 sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'",
1650 conffilebuf, lineno + 1, msg, newlinebuf);
1651
212380e3
AC		 1652}
1653
1654int
1655conf_fgets(char *lbuf, int max_size, FILE * fb)
1656{
eac04554 1657 if(fgets(lbuf, max_size, fb) == NULL)
212380e3
AC		 1658 return (0);
1659
1660 return (strlen(lbuf));
1661}
1662
1663int
1664conf_yy_fatal_error(const char *msg)
1665{
1666 return (0);
1667}
Fork of solanum ircd, history is rebased regularly