]>
Commit | Line | Data |
---|---|---|
1 | /* | |
2 | * ircd-ratbox: A slightly useful ircd. | |
3 | * s_conf.c: Configuration file functions. | |
4 | * | |
5 | * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center | |
6 | * Copyright (C) 1996-2002 Hybrid Development Team | |
7 | * Copyright (C) 2002-2005 ircd-ratbox development team | |
8 | * | |
9 | * This program is free software; you can redistribute it and/or modify | |
10 | * it under the terms of the GNU General Public License as published by | |
11 | * the Free Software Foundation; either version 2 of the License, or | |
12 | * (at your option) any later version. | |
13 | * | |
14 | * This program is distributed in the hope that it will be useful, | |
15 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
16 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
17 | * GNU General Public License for more details. | |
18 | * | |
19 | * You should have received a copy of the GNU General Public License | |
20 | * along with this program; if not, write to the Free Software | |
21 | * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 | |
22 | * USA | |
23 | * | |
24 | * $Id: s_conf.c 3550 2007-08-09 06:47:26Z nenolod $ | |
25 | */ | |
26 | ||
27 | #include "stdinc.h" | |
28 | #include "ircd_defs.h" | |
29 | #include "s_conf.h" | |
30 | #include "s_newconf.h" | |
31 | #include "newconf.h" | |
32 | #include "s_serv.h" | |
33 | #include "s_stats.h" | |
34 | #include "channel.h" | |
35 | #include "class.h" | |
36 | #include "client.h" | |
37 | #include "common.h" | |
38 | #include "hash.h" | |
39 | #include "match.h" | |
40 | #include "ircd.h" | |
41 | #include "listener.h" | |
42 | #include "hostmask.h" | |
43 | #include "modules.h" | |
44 | #include "numeric.h" | |
45 | #include "logger.h" | |
46 | #include "send.h" | |
47 | #include "reject.h" | |
48 | #include "cache.h" | |
49 | #include "blacklist.h" | |
50 | #include "privilege.h" | |
51 | #include "sslproc.h" | |
52 | #include "bandbi.h" | |
53 | #include "operhash.h" | |
54 | #include "chmode.h" | |
55 | ||
56 | struct config_server_hide ConfigServerHide; | |
57 | ||
58 | extern int yyparse(void); /* defined in y.tab.c */ | |
59 | extern char linebuf[]; | |
60 | ||
61 | #ifndef INADDR_NONE | |
62 | #define INADDR_NONE ((unsigned int) 0xffffffff) | |
63 | #endif | |
64 | ||
65 | static rb_bh *confitem_heap = NULL; | |
66 | ||
67 | rb_dlink_list prop_bans; | |
68 | ||
69 | rb_dlink_list temp_klines[LAST_TEMP_TYPE]; | |
70 | rb_dlink_list temp_dlines[LAST_TEMP_TYPE]; | |
71 | rb_dlink_list service_list; | |
72 | ||
73 | /* internally defined functions */ | |
74 | static void set_default_conf(void); | |
75 | static void validate_conf(void); | |
76 | static void read_conf(FILE *); | |
77 | static void clear_out_old_conf(void); | |
78 | ||
79 | static void expire_prop_bans(void *list); | |
80 | static void expire_temp_kd(void *list); | |
81 | static void reorganise_temp_kd(void *list); | |
82 | ||
83 | FILE *conf_fbfile_in; | |
84 | extern char yytext[]; | |
85 | ||
86 | static int verify_access(struct Client *client_p, const char *username); | |
87 | static int attach_iline(struct Client *, struct ConfItem *); | |
88 | ||
89 | void | |
90 | init_s_conf(void) | |
91 | { | |
92 | confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap"); | |
93 | ||
94 | rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60); | |
95 | ||
96 | rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60); | |
97 | rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60); | |
98 | ||
99 | rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd, | |
100 | &temp_klines[TEMP_HOUR], 3600); | |
101 | rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd, | |
102 | &temp_dlines[TEMP_HOUR], 3600); | |
103 | rb_event_addish("expire_temp_klines_day", reorganise_temp_kd, | |
104 | &temp_klines[TEMP_DAY], 86400); | |
105 | rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd, | |
106 | &temp_dlines[TEMP_DAY], 86400); | |
107 | rb_event_addish("expire_temp_klines_week", reorganise_temp_kd, | |
108 | &temp_klines[TEMP_WEEK], 604800); | |
109 | rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd, | |
110 | &temp_dlines[TEMP_WEEK], 604800); | |
111 | } | |
112 | ||
113 | /* | |
114 | * make_conf | |
115 | * | |
116 | * inputs - none | |
117 | * output - pointer to new conf entry | |
118 | * side effects - none | |
119 | */ | |
120 | struct ConfItem * | |
121 | make_conf() | |
122 | { | |
123 | struct ConfItem *aconf; | |
124 | ||
125 | aconf = rb_bh_alloc(confitem_heap); | |
126 | aconf->status = CONF_ILLEGAL; | |
127 | return (aconf); | |
128 | } | |
129 | ||
130 | /* | |
131 | * free_conf | |
132 | * | |
133 | * inputs - pointer to conf to free | |
134 | * output - none | |
135 | * side effects - crucial password fields are zeroed, conf is freed | |
136 | */ | |
137 | void | |
138 | free_conf(struct ConfItem *aconf) | |
139 | { | |
140 | s_assert(aconf != NULL); | |
141 | if(aconf == NULL) | |
142 | return; | |
143 | ||
144 | /* security.. */ | |
145 | if(aconf->passwd) | |
146 | memset(aconf->passwd, 0, strlen(aconf->passwd)); | |
147 | if(aconf->spasswd) | |
148 | memset(aconf->spasswd, 0, strlen(aconf->spasswd)); | |
149 | ||
150 | rb_free(aconf->passwd); | |
151 | rb_free(aconf->spasswd); | |
152 | rb_free(aconf->className); | |
153 | rb_free(aconf->user); | |
154 | rb_free(aconf->host); | |
155 | ||
156 | if(IsConfBan(aconf)) | |
157 | operhash_delete(aconf->info.oper); | |
158 | else | |
159 | rb_free(aconf->info.name); | |
160 | ||
161 | rb_bh_free(confitem_heap, aconf); | |
162 | } | |
163 | ||
164 | /* | |
165 | * check_client | |
166 | * | |
167 | * inputs - pointer to client | |
168 | * output - 0 = Success | |
169 | * NOT_AUTHORISED (-1) = Access denied (no I line match) | |
170 | * SOCKET_ERROR (-2) = Bad socket. | |
171 | * I_LINE_FULL (-3) = I-line is full | |
172 | * TOO_MANY (-4) = Too many connections from hostname | |
173 | * BANNED_CLIENT (-5) = K-lined | |
174 | * side effects - Ordinary client access check. | |
175 | * Look for conf lines which have the same | |
176 | * status as the flags passed. | |
177 | */ | |
178 | int | |
179 | check_client(struct Client *client_p, struct Client *source_p, const char *username) | |
180 | { | |
181 | int i; | |
182 | ||
183 | if((i = verify_access(source_p, username))) | |
184 | { | |
185 | ilog(L_FUSER, "Access denied: %s[%s]", | |
186 | source_p->name, source_p->sockhost); | |
187 | } | |
188 | ||
189 | switch (i) | |
190 | { | |
191 | case SOCKET_ERROR: | |
192 | exit_client(client_p, source_p, &me, "Socket Error"); | |
193 | break; | |
194 | ||
195 | case TOO_MANY_LOCAL: | |
196 | /* Note that these notices are sent to opers on other | |
197 | * servers also, so even if local opers are allowed to | |
198 | * see the IP, we still cannot send it. | |
199 | */ | |
200 | sendto_realops_snomask(SNO_FULL, L_NETWIDE, | |
201 | "Too many local connections for %s!%s%s@%s", | |
202 | source_p->name, IsGotId(source_p) ? "" : "~", | |
203 | source_p->username, | |
204 | show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host); | |
205 | ||
206 | ilog(L_FUSER, "Too many local connections from %s!%s%s@%s", | |
207 | source_p->name, IsGotId(source_p) ? "" : "~", | |
208 | source_p->username, source_p->sockhost); | |
209 | ||
210 | ServerStats.is_ref++; | |
211 | exit_client(client_p, source_p, &me, "Too many host connections (local)"); | |
212 | break; | |
213 | ||
214 | case TOO_MANY_GLOBAL: | |
215 | sendto_realops_snomask(SNO_FULL, L_NETWIDE, | |
216 | "Too many global connections for %s!%s%s@%s", | |
217 | source_p->name, IsGotId(source_p) ? "" : "~", | |
218 | source_p->username, | |
219 | show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host); | |
220 | ilog(L_FUSER, "Too many global connections from %s!%s%s@%s", | |
221 | source_p->name, IsGotId(source_p) ? "" : "~", | |
222 | source_p->username, source_p->sockhost); | |
223 | ||
224 | ServerStats.is_ref++; | |
225 | exit_client(client_p, source_p, &me, "Too many host connections (global)"); | |
226 | break; | |
227 | ||
228 | case TOO_MANY_IDENT: | |
229 | sendto_realops_snomask(SNO_FULL, L_NETWIDE, | |
230 | "Too many user connections for %s!%s%s@%s", | |
231 | source_p->name, IsGotId(source_p) ? "" : "~", | |
232 | source_p->username, | |
233 | show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host); | |
234 | ilog(L_FUSER, "Too many user connections from %s!%s%s@%s", | |
235 | source_p->name, IsGotId(source_p) ? "" : "~", | |
236 | source_p->username, source_p->sockhost); | |
237 | ||
238 | ServerStats.is_ref++; | |
239 | exit_client(client_p, source_p, &me, "Too many user connections (global)"); | |
240 | break; | |
241 | ||
242 | case I_LINE_FULL: | |
243 | sendto_realops_snomask(SNO_FULL, L_NETWIDE, | |
244 | "I-line is full for %s!%s%s@%s (%s).", | |
245 | source_p->name, IsGotId(source_p) ? "" : "~", | |
246 | source_p->username, source_p->host, | |
247 | show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255"); | |
248 | ||
249 | ilog(L_FUSER, "Too many connections from %s!%s%s@%s.", | |
250 | source_p->name, IsGotId(source_p) ? "" : "~", | |
251 | source_p->username, source_p->sockhost); | |
252 | ||
253 | ServerStats.is_ref++; | |
254 | exit_client(client_p, source_p, &me, | |
255 | "No more connections allowed in your connection class"); | |
256 | break; | |
257 | ||
258 | case NOT_AUTHORISED: | |
259 | { | |
260 | int port = -1; | |
261 | #ifdef RB_IPV6 | |
262 | if(source_p->localClient->ip.ss_family == AF_INET6) | |
263 | port = ntohs(((struct sockaddr_in6 *)&source_p->localClient->listener->addr)->sin6_port); | |
264 | else | |
265 | #endif | |
266 | port = ntohs(((struct sockaddr_in *)&source_p->localClient->listener->addr)->sin_port); | |
267 | ||
268 | ServerStats.is_ref++; | |
269 | /* jdc - lists server name & port connections are on */ | |
270 | /* a purely cosmetical change */ | |
271 | /* why ipaddr, and not just source_p->sockhost? --fl */ | |
272 | #if 0 | |
273 | static char ipaddr[HOSTIPLEN]; | |
274 | rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr)); | |
275 | #endif | |
276 | sendto_realops_snomask(SNO_UNAUTH, L_ALL, | |
277 | "Unauthorised client connection from " | |
278 | "%s!%s%s@%s [%s] on [%s/%u].", | |
279 | source_p->name, IsGotId(source_p) ? "" : "~", | |
280 | source_p->username, source_p->host, | |
281 | source_p->sockhost, | |
282 | source_p->localClient->listener->name, port); | |
283 | ||
284 | ilog(L_FUSER, | |
285 | "Unauthorised client connection from %s!%s%s@%s on [%s/%u].", | |
286 | source_p->name, IsGotId(source_p) ? "" : "~", | |
287 | source_p->username, source_p->sockhost, | |
288 | source_p->localClient->listener->name, port); | |
289 | add_reject(client_p, NULL, NULL); | |
290 | exit_client(client_p, source_p, &me, | |
291 | "You are not authorised to use this server"); | |
292 | break; | |
293 | } | |
294 | case BANNED_CLIENT: | |
295 | exit_client(client_p, client_p, &me, "*** Banned "); | |
296 | ServerStats.is_ref++; | |
297 | break; | |
298 | ||
299 | case 0: | |
300 | default: | |
301 | break; | |
302 | } | |
303 | return (i); | |
304 | } | |
305 | ||
306 | /* | |
307 | * verify_access | |
308 | * | |
309 | * inputs - pointer to client to verify | |
310 | * - pointer to proposed username | |
311 | * output - 0 if success -'ve if not | |
312 | * side effect - find the first (best) I line to attach. | |
313 | */ | |
314 | static int | |
315 | verify_access(struct Client *client_p, const char *username) | |
316 | { | |
317 | struct ConfItem *aconf; | |
318 | char non_ident[USERLEN + 1]; | |
319 | ||
320 | if(IsGotId(client_p)) | |
321 | { | |
322 | aconf = find_address_conf(client_p->host, client_p->sockhost, | |
323 | client_p->username, client_p->username, | |
324 | (struct sockaddr *) &client_p->localClient->ip, | |
325 | client_p->localClient->ip.ss_family, | |
326 | client_p->localClient->auth_user); | |
327 | } | |
328 | else | |
329 | { | |
330 | rb_strlcpy(non_ident, "~", sizeof(non_ident)); | |
331 | rb_strlcat(non_ident, username, sizeof(non_ident)); | |
332 | aconf = find_address_conf(client_p->host, client_p->sockhost, | |
333 | non_ident, client_p->username, | |
334 | (struct sockaddr *) &client_p->localClient->ip, | |
335 | client_p->localClient->ip.ss_family, | |
336 | client_p->localClient->auth_user); | |
337 | } | |
338 | ||
339 | if(aconf == NULL) | |
340 | return NOT_AUTHORISED; | |
341 | ||
342 | if(aconf->status & CONF_CLIENT) | |
343 | { | |
344 | if(aconf->flags & CONF_FLAGS_REDIR) | |
345 | { | |
346 | sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR), | |
347 | aconf->info.name ? aconf->info.name : "", aconf->port); | |
348 | return (NOT_AUTHORISED); | |
349 | } | |
350 | ||
351 | /* Thanks for spoof idea amm */ | |
352 | if(IsConfDoSpoofIp(aconf)) | |
353 | { | |
354 | char *p; | |
355 | ||
356 | /* show_ip() depends on this --fl */ | |
357 | SetIPSpoof(client_p); | |
358 | ||
359 | if(IsConfSpoofNotice(aconf)) | |
360 | { | |
361 | sendto_realops_snomask(SNO_GENERAL, L_ALL, | |
362 | "%s spoofing: %s as %s", | |
363 | client_p->name, | |
364 | show_ip(NULL, client_p) ? client_p->host : aconf->info.name, | |
365 | aconf->info.name); | |
366 | } | |
367 | ||
368 | /* user@host spoof */ | |
369 | if((p = strchr(aconf->info.name, '@')) != NULL) | |
370 | { | |
371 | char *host = p+1; | |
372 | *p = '\0'; | |
373 | ||
374 | rb_strlcpy(client_p->username, aconf->info.name, | |
375 | sizeof(client_p->username)); | |
376 | rb_strlcpy(client_p->host, host, | |
377 | sizeof(client_p->host)); | |
378 | *p = '@'; | |
379 | } | |
380 | else | |
381 | rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host)); | |
382 | } | |
383 | return (attach_iline(client_p, aconf)); | |
384 | } | |
385 | else if(aconf->status & CONF_KILL) | |
386 | { | |
387 | if(ConfigFileEntry.kline_with_reason) | |
388 | sendto_one(client_p, | |
389 | form_str(ERR_YOUREBANNEDCREEP), | |
390 | me.name, client_p->name, | |
391 | get_user_ban_reason(aconf)); | |
392 | add_reject(client_p, aconf->user, aconf->host); | |
393 | return (BANNED_CLIENT); | |
394 | } | |
395 | ||
396 | return NOT_AUTHORISED; | |
397 | } | |
398 | ||
399 | ||
400 | /* | |
401 | * add_ip_limit | |
402 | * | |
403 | * Returns 1 if successful 0 if not | |
404 | * | |
405 | * This checks if the user has exceed the limits for their class | |
406 | * unless of course they are exempt.. | |
407 | */ | |
408 | ||
409 | static int | |
410 | add_ip_limit(struct Client *client_p, struct ConfItem *aconf) | |
411 | { | |
412 | rb_patricia_node_t *pnode; | |
413 | int bitlen; | |
414 | ||
415 | /* If the limits are 0 don't do anything.. */ | |
416 | if(ConfCidrAmount(aconf) == 0 | |
417 | || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0)) | |
418 | return -1; | |
419 | ||
420 | pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip); | |
421 | ||
422 | if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET) | |
423 | bitlen = ConfCidrIpv4Bitlen(aconf); | |
424 | else | |
425 | bitlen = ConfCidrIpv6Bitlen(aconf); | |
426 | ||
427 | if(pnode == NULL) | |
428 | pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen); | |
429 | ||
430 | s_assert(pnode != NULL); | |
431 | ||
432 | if(pnode != NULL) | |
433 | { | |
434 | if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf)) | |
435 | { | |
436 | /* This should only happen if the limits are set to 0 */ | |
437 | if((intptr_t)pnode->data == 0) | |
438 | { | |
439 | rb_patricia_remove(ConfIpLimits(aconf), pnode); | |
440 | } | |
441 | return (0); | |
442 | } | |
443 | ||
444 | pnode->data = (void *)(((intptr_t)pnode->data) + 1); | |
445 | } | |
446 | return 1; | |
447 | } | |
448 | ||
449 | static void | |
450 | remove_ip_limit(struct Client *client_p, struct ConfItem *aconf) | |
451 | { | |
452 | rb_patricia_node_t *pnode; | |
453 | ||
454 | /* If the limits are 0 don't do anything.. */ | |
455 | if(ConfCidrAmount(aconf) == 0 | |
456 | || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0)) | |
457 | return; | |
458 | ||
459 | pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip); | |
460 | if(pnode == NULL) | |
461 | return; | |
462 | ||
463 | pnode->data = (void *)(((intptr_t)pnode->data) - 1); | |
464 | if(((intptr_t)pnode->data) == 0) | |
465 | { | |
466 | rb_patricia_remove(ConfIpLimits(aconf), pnode); | |
467 | } | |
468 | ||
469 | } | |
470 | ||
471 | /* | |
472 | * attach_iline | |
473 | * | |
474 | * inputs - client pointer | |
475 | * - conf pointer | |
476 | * output - | |
477 | * side effects - do actual attach | |
478 | */ | |
479 | static int | |
480 | attach_iline(struct Client *client_p, struct ConfItem *aconf) | |
481 | { | |
482 | struct Client *target_p; | |
483 | rb_dlink_node *ptr; | |
484 | int local_count = 0; | |
485 | int global_count = 0; | |
486 | int ident_count = 0; | |
487 | int unidented; | |
488 | ||
489 | if(IsConfExemptLimits(aconf)) | |
490 | return (attach_conf(client_p, aconf)); | |
491 | ||
492 | unidented = !IsGotId(client_p) && !IsNoTilde(aconf) && | |
493 | (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@')); | |
494 | ||
495 | /* find_hostname() returns the head of the list to search */ | |
496 | RB_DLINK_FOREACH(ptr, find_hostname(client_p->host)) | |
497 | { | |
498 | target_p = ptr->data; | |
499 | ||
500 | if(irccmp(client_p->host, target_p->orighost) != 0) | |
501 | continue; | |
502 | ||
503 | if(MyConnect(target_p)) | |
504 | local_count++; | |
505 | ||
506 | global_count++; | |
507 | ||
508 | if(unidented) | |
509 | { | |
510 | if(*target_p->username == '~') | |
511 | ident_count++; | |
512 | } | |
513 | else if(irccmp(target_p->username, client_p->username) == 0) | |
514 | ident_count++; | |
515 | ||
516 | if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf)) | |
517 | return (TOO_MANY_LOCAL); | |
518 | else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf)) | |
519 | return (TOO_MANY_GLOBAL); | |
520 | else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf)) | |
521 | return (TOO_MANY_IDENT); | |
522 | } | |
523 | ||
524 | ||
525 | return (attach_conf(client_p, aconf)); | |
526 | } | |
527 | ||
528 | /* | |
529 | * detach_conf | |
530 | * | |
531 | * inputs - pointer to client to detach | |
532 | * output - 0 for success, -1 for failure | |
533 | * side effects - Disassociate configuration from the client. | |
534 | * Also removes a class from the list if marked for deleting. | |
535 | */ | |
536 | int | |
537 | detach_conf(struct Client *client_p) | |
538 | { | |
539 | struct ConfItem *aconf; | |
540 | ||
541 | aconf = client_p->localClient->att_conf; | |
542 | ||
543 | if(aconf != NULL) | |
544 | { | |
545 | if(ClassPtr(aconf)) | |
546 | { | |
547 | remove_ip_limit(client_p, aconf); | |
548 | ||
549 | if(ConfCurrUsers(aconf) > 0) | |
550 | --ConfCurrUsers(aconf); | |
551 | ||
552 | if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0) | |
553 | { | |
554 | free_class(ClassPtr(aconf)); | |
555 | ClassPtr(aconf) = NULL; | |
556 | } | |
557 | ||
558 | } | |
559 | ||
560 | aconf->clients--; | |
561 | if(!aconf->clients && IsIllegal(aconf)) | |
562 | free_conf(aconf); | |
563 | ||
564 | client_p->localClient->att_conf = NULL; | |
565 | return 0; | |
566 | } | |
567 | ||
568 | return -1; | |
569 | } | |
570 | ||
571 | /* | |
572 | * attach_conf | |
573 | * | |
574 | * inputs - client pointer | |
575 | * - conf pointer | |
576 | * output - | |
577 | * side effects - Associate a specific configuration entry to a *local* | |
578 | * client (this is the one which used in accepting the | |
579 | * connection). Note, that this automatically changes the | |
580 | * attachment if there was an old one... | |
581 | */ | |
582 | int | |
583 | attach_conf(struct Client *client_p, struct ConfItem *aconf) | |
584 | { | |
585 | if(IsIllegal(aconf)) | |
586 | return (NOT_AUTHORISED); | |
587 | ||
588 | if(ClassPtr(aconf)) | |
589 | { | |
590 | if(!add_ip_limit(client_p, aconf)) | |
591 | return (TOO_MANY_LOCAL); | |
592 | } | |
593 | ||
594 | if((aconf->status & CONF_CLIENT) && | |
595 | ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0) | |
596 | { | |
597 | if(!IsConfExemptLimits(aconf)) | |
598 | { | |
599 | return (I_LINE_FULL); | |
600 | } | |
601 | else | |
602 | { | |
603 | sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!"); | |
604 | } | |
605 | ||
606 | } | |
607 | ||
608 | if(client_p->localClient->att_conf != NULL) | |
609 | detach_conf(client_p); | |
610 | ||
611 | client_p->localClient->att_conf = aconf; | |
612 | ||
613 | aconf->clients++; | |
614 | ConfCurrUsers(aconf)++; | |
615 | return (0); | |
616 | } | |
617 | ||
618 | /* | |
619 | * rehash | |
620 | * | |
621 | * Actual REHASH service routine. Called with sig == 0 if it has been called | |
622 | * as a result of an operator issuing this command, else assume it has been | |
623 | * called as a result of the server receiving a HUP signal. | |
624 | */ | |
625 | int | |
626 | rehash(int sig) | |
627 | { | |
628 | if(sig != 0) | |
629 | { | |
630 | sendto_realops_snomask(SNO_GENERAL, L_ALL, | |
631 | "Got signal SIGHUP, reloading ircd conf. file"); | |
632 | } | |
633 | ||
634 | restart_resolver(); | |
635 | /* don't close listeners until we know we can go ahead with the rehash */ | |
636 | read_conf_files(NO); | |
637 | ||
638 | if(ServerInfo.description != NULL) | |
639 | rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info)); | |
640 | else | |
641 | rb_strlcpy(me.info, "unknown", sizeof(me.info)); | |
642 | ||
643 | open_logfiles(); | |
644 | return (0); | |
645 | } | |
646 | ||
647 | void | |
648 | rehash_bans(int sig) | |
649 | { | |
650 | bandb_rehash_bans(); | |
651 | } | |
652 | ||
653 | /* | |
654 | * set_default_conf() | |
655 | * | |
656 | * inputs - NONE | |
657 | * output - NONE | |
658 | * side effects - Set default values here. | |
659 | * This is called **PRIOR** to parsing the | |
660 | * configuration file. If you want to do some validation | |
661 | * of values later, put them in validate_conf(). | |
662 | */ | |
663 | ||
664 | #define YES 1 | |
665 | #define NO 0 | |
666 | #define UNSET -1 | |
667 | ||
668 | static void | |
669 | set_default_conf(void) | |
670 | { | |
671 | /* ServerInfo.name is not rehashable */ | |
672 | /* ServerInfo.name = ServerInfo.name; */ | |
673 | ServerInfo.description = NULL; | |
674 | ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT); | |
675 | ServerInfo.network_desc = rb_strdup(NETWORK_DESC_DEFAULT); | |
676 | ||
677 | memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip)); | |
678 | ServerInfo.specific_ipv4_vhost = 0; | |
679 | #ifdef RB_IPV6 | |
680 | memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6)); | |
681 | ServerInfo.specific_ipv6_vhost = 0; | |
682 | #endif | |
683 | ||
684 | /* Don't reset hub, as that will break lazylinks */ | |
685 | /* ServerInfo.hub = NO; */ | |
686 | AdminInfo.name = NULL; | |
687 | AdminInfo.email = NULL; | |
688 | AdminInfo.description = NULL; | |
689 | ||
690 | ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator"); | |
691 | ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator"); | |
692 | ConfigFileEntry.servicestring = rb_strdup("is a Network Service"); | |
693 | ||
694 | ConfigFileEntry.default_umodes = UMODE_INVISIBLE; | |
695 | ConfigFileEntry.failed_oper_notice = YES; | |
696 | ConfigFileEntry.anti_nick_flood = NO; | |
697 | ConfigFileEntry.disable_fake_channels = NO; | |
698 | ConfigFileEntry.max_nick_time = 20; | |
699 | ConfigFileEntry.max_nick_changes = 5; | |
700 | ConfigFileEntry.max_accept = 20; | |
701 | ConfigFileEntry.max_monitor = 60; | |
702 | ConfigFileEntry.nick_delay = 900; /* 15 minutes */ | |
703 | ConfigFileEntry.target_change = YES; | |
704 | ConfigFileEntry.anti_spam_exit_message_time = 0; | |
705 | ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT; | |
706 | ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT; | |
707 | ConfigFileEntry.client_exit = YES; | |
708 | ConfigFileEntry.dline_with_reason = YES; | |
709 | ConfigFileEntry.kline_with_reason = YES; | |
710 | ConfigFileEntry.kline_delay = 0; | |
711 | ConfigFileEntry.warn_no_nline = YES; | |
712 | ConfigFileEntry.non_redundant_klines = YES; | |
713 | ConfigFileEntry.stats_e_disabled = NO; | |
714 | ConfigFileEntry.stats_o_oper_only = NO; | |
715 | ConfigFileEntry.stats_k_oper_only = 1; /* masked */ | |
716 | ConfigFileEntry.stats_i_oper_only = 1; /* masked */ | |
717 | ConfigFileEntry.stats_P_oper_only = NO; | |
718 | ConfigFileEntry.stats_c_oper_only = NO; | |
719 | ConfigFileEntry.stats_y_oper_only = NO; | |
720 | ConfigFileEntry.stats_h_oper_only = NO; | |
721 | ConfigFileEntry.map_oper_only = YES; | |
722 | ConfigFileEntry.operspy_admin_only = NO; | |
723 | ConfigFileEntry.pace_wait = 10; | |
724 | ConfigFileEntry.caller_id_wait = 60; | |
725 | ConfigFileEntry.pace_wait_simple = 1; | |
726 | ConfigFileEntry.short_motd = NO; | |
727 | ConfigFileEntry.no_oper_flood = NO; | |
728 | ConfigFileEntry.fname_userlog = NULL; | |
729 | ConfigFileEntry.fname_fuserlog = NULL; | |
730 | ConfigFileEntry.fname_operlog = NULL; | |
731 | ConfigFileEntry.fname_foperlog = NULL; | |
732 | ConfigFileEntry.fname_serverlog = NULL; | |
733 | ConfigFileEntry.fname_klinelog = NULL; | |
734 | ConfigFileEntry.fname_operspylog = NULL; | |
735 | ConfigFileEntry.fname_ioerrorlog = NULL; | |
736 | ConfigFileEntry.use_egd = NO; | |
737 | ConfigFileEntry.hide_spoof_ips = YES; | |
738 | ConfigFileEntry.hide_error_messages = 1; | |
739 | ConfigFileEntry.dots_in_ident = 0; | |
740 | ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT; | |
741 | ConfigFileEntry.egdpool_path = NULL; | |
742 | ConfigFileEntry.use_whois_actually = YES; | |
743 | ConfigFileEntry.burst_away = NO; | |
744 | ConfigFileEntry.collision_fnc = YES; | |
745 | ConfigFileEntry.global_snotices = YES; | |
746 | ConfigFileEntry.operspy_dont_care_user_info = NO; | |
747 | ConfigFileEntry.use_propagated_bans = YES; | |
748 | ||
749 | #ifdef HAVE_LIBZ | |
750 | ConfigFileEntry.compression_level = 4; | |
751 | #endif | |
752 | ||
753 | ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE | | |
754 | UMODE_OPERWALL | UMODE_WALLOP; | |
755 | ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE; | |
756 | ConfigFileEntry.oper_snomask = SNO_GENERAL; | |
757 | ||
758 | ConfigChannel.use_except = YES; | |
759 | ConfigChannel.use_invex = YES; | |
760 | ConfigChannel.use_forward = YES; | |
761 | ConfigChannel.use_knock = YES; | |
762 | ConfigChannel.knock_delay = 300; | |
763 | ConfigChannel.knock_delay_channel = 60; | |
764 | ConfigChannel.max_chans_per_user = 15; | |
765 | ConfigChannel.max_bans = 25; | |
766 | ConfigChannel.max_bans_large = 500; | |
767 | ConfigChannel.only_ascii_channels = NO; | |
768 | ConfigChannel.burst_topicwho = NO; | |
769 | ConfigChannel.kick_on_split_riding = NO; | |
770 | ||
771 | ConfigChannel.default_split_user_count = 15000; | |
772 | ConfigChannel.default_split_server_count = 10; | |
773 | ConfigChannel.no_join_on_split = NO; | |
774 | ConfigChannel.no_create_on_split = YES; | |
775 | ConfigChannel.resv_forcepart = YES; | |
776 | ConfigChannel.channel_target_change = YES; | |
777 | ConfigChannel.disable_local_channels = NO; | |
778 | ||
779 | ConfigServerHide.flatten_links = 0; | |
780 | ConfigServerHide.links_delay = 300; | |
781 | ConfigServerHide.hidden = 0; | |
782 | ConfigServerHide.disable_hidden = 0; | |
783 | ||
784 | ConfigFileEntry.min_nonwildcard = 4; | |
785 | ConfigFileEntry.min_nonwildcard_simple = 3; | |
786 | ConfigFileEntry.default_floodcount = 8; | |
787 | ConfigFileEntry.default_ident_timeout = 5; | |
788 | ConfigFileEntry.tkline_expire_notices = 0; | |
789 | ||
790 | ConfigFileEntry.reject_after_count = 5; | |
791 | ConfigFileEntry.reject_ban_time = 300; | |
792 | ConfigFileEntry.reject_duration = 120; | |
793 | ConfigFileEntry.throttle_count = 4; | |
794 | ConfigFileEntry.throttle_duration = 60; | |
795 | ||
796 | ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT; | |
797 | ConfigFileEntry.client_flood_burst_rate = 5; | |
798 | ConfigFileEntry.client_flood_burst_max = 5; | |
799 | ConfigFileEntry.client_flood_message_time = 1; | |
800 | ConfigFileEntry.client_flood_message_num = 2; | |
801 | ||
802 | ServerInfo.default_max_clients = MAXCONNECTIONS; | |
803 | ||
804 | ConfigFileEntry.nicklen = NICKLEN; | |
805 | ||
806 | if (!alias_dict) | |
807 | alias_dict = irc_dictionary_create(strcasecmp); | |
808 | } | |
809 | ||
810 | #undef YES | |
811 | #undef NO | |
812 | ||
813 | /* | |
814 | * read_conf() | |
815 | * | |
816 | * | |
817 | * inputs - file descriptor pointing to config file to use | |
818 | * output - None | |
819 | * side effects - Read configuration file. | |
820 | */ | |
821 | static void | |
822 | read_conf(FILE * file) | |
823 | { | |
824 | lineno = 0; | |
825 | ||
826 | set_default_conf(); /* Set default values prior to conf parsing */ | |
827 | yyparse(); /* Load the values from the conf */ | |
828 | validate_conf(); /* Check to make sure some values are still okay. */ | |
829 | /* Some global values are also loaded here. */ | |
830 | check_class(); /* Make sure classes are valid */ | |
831 | privilegeset_delete_all_illegal(); | |
832 | construct_cflags_strings(); | |
833 | } | |
834 | ||
835 | static void | |
836 | validate_conf(void) | |
837 | { | |
838 | if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN) | |
839 | ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT; | |
840 | ||
841 | if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN) | |
842 | ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT; | |
843 | ||
844 | if(ServerInfo.network_name == NULL) | |
845 | ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT); | |
846 | ||
847 | if(ServerInfo.network_desc == NULL) | |
848 | ServerInfo.network_desc = rb_strdup(NETWORK_DESC_DEFAULT); | |
849 | ||
850 | if(ServerInfo.ssld_count < 1) | |
851 | ServerInfo.ssld_count = 1; | |
852 | ||
853 | if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params)) | |
854 | { | |
855 | ilog(L_MAIN, "WARNING: Unable to setup SSL."); | |
856 | ssl_ok = 0; | |
857 | } else { | |
858 | ssl_ok = 1; | |
859 | send_new_ssl_certs(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params); | |
860 | } | |
861 | ||
862 | if(ServerInfo.ssld_count > get_ssld_count()) | |
863 | { | |
864 | int start = ServerInfo.ssld_count - get_ssld_count(); | |
865 | /* start up additional ssld if needed */ | |
866 | start_ssldaemon(start, ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params); | |
867 | ||
868 | } | |
869 | ||
870 | /* RFC 1459 says 1 message per 2 seconds on average and bursts of | |
871 | * 5 messages are acceptable, so allow at least that. | |
872 | */ | |
873 | if(ConfigFileEntry.client_flood_burst_rate < 5) | |
874 | ConfigFileEntry.client_flood_burst_rate = 5; | |
875 | if(ConfigFileEntry.client_flood_burst_max < 5) | |
876 | ConfigFileEntry.client_flood_burst_max = 5; | |
877 | if(ConfigFileEntry.client_flood_message_time > | |
878 | ConfigFileEntry.client_flood_message_num * 2) | |
879 | ConfigFileEntry.client_flood_message_time = | |
880 | ConfigFileEntry.client_flood_message_num * 2; | |
881 | ||
882 | if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) || | |
883 | (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX)) | |
884 | ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX; | |
885 | ||
886 | if(!split_users || !split_servers || | |
887 | (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split)) | |
888 | { | |
889 | rb_event_delete(check_splitmode_ev); | |
890 | check_splitmode_ev = NULL; | |
891 | splitmode = 0; | |
892 | splitchecking = 0; | |
893 | } | |
894 | } | |
895 | ||
896 | /* add_temp_kline() | |
897 | * | |
898 | * inputs - pointer to struct ConfItem | |
899 | * output - none | |
900 | * Side effects - links in given struct ConfItem into | |
901 | * temporary kline link list | |
902 | */ | |
903 | void | |
904 | add_temp_kline(struct ConfItem *aconf) | |
905 | { | |
906 | if(aconf->hold >= rb_current_time() + (10080 * 60)) | |
907 | { | |
908 | rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]); | |
909 | aconf->port = TEMP_WEEK; | |
910 | } | |
911 | else if(aconf->hold >= rb_current_time() + (1440 * 60)) | |
912 | { | |
913 | rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]); | |
914 | aconf->port = TEMP_DAY; | |
915 | } | |
916 | else if(aconf->hold >= rb_current_time() + (60 * 60)) | |
917 | { | |
918 | rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]); | |
919 | aconf->port = TEMP_HOUR; | |
920 | } | |
921 | else | |
922 | { | |
923 | rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]); | |
924 | aconf->port = TEMP_MIN; | |
925 | } | |
926 | ||
927 | aconf->flags |= CONF_FLAGS_TEMPORARY; | |
928 | add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf); | |
929 | } | |
930 | ||
931 | /* add_temp_dline() | |
932 | * | |
933 | * input - pointer to struct ConfItem | |
934 | * output - none | |
935 | * side effects - added to tdline link list and address hash | |
936 | */ | |
937 | void | |
938 | add_temp_dline(struct ConfItem *aconf) | |
939 | { | |
940 | if(aconf->hold >= rb_current_time() + (10080 * 60)) | |
941 | { | |
942 | rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]); | |
943 | aconf->port = TEMP_WEEK; | |
944 | } | |
945 | else if(aconf->hold >= rb_current_time() + (1440 * 60)) | |
946 | { | |
947 | rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]); | |
948 | aconf->port = TEMP_DAY; | |
949 | } | |
950 | else if(aconf->hold >= rb_current_time() + (60 * 60)) | |
951 | { | |
952 | rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]); | |
953 | aconf->port = TEMP_HOUR; | |
954 | } | |
955 | else | |
956 | { | |
957 | rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]); | |
958 | aconf->port = TEMP_MIN; | |
959 | } | |
960 | ||
961 | aconf->flags |= CONF_FLAGS_TEMPORARY; | |
962 | add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf); | |
963 | } | |
964 | ||
965 | /* valid_wild_card() | |
966 | * | |
967 | * input - user buffer, host buffer | |
968 | * output - 0 if invalid, 1 if valid | |
969 | * side effects - | |
970 | */ | |
971 | int | |
972 | valid_wild_card(const char *luser, const char *lhost) | |
973 | { | |
974 | const char *p; | |
975 | char tmpch; | |
976 | int nonwild = 0; | |
977 | int bitlen; | |
978 | ||
979 | /* user has no wildcards, always accept -- jilles */ | |
980 | if(!strchr(luser, '?') && !strchr(luser, '*')) | |
981 | return 1; | |
982 | ||
983 | /* check there are enough non wildcard chars */ | |
984 | p = luser; | |
985 | while((tmpch = *p++)) | |
986 | { | |
987 | if(!IsKWildChar(tmpch)) | |
988 | { | |
989 | /* found enough chars, return */ | |
990 | if(++nonwild >= ConfigFileEntry.min_nonwildcard) | |
991 | return 1; | |
992 | } | |
993 | } | |
994 | ||
995 | /* try host, as user didnt contain enough */ | |
996 | /* special case for cidr masks -- jilles */ | |
997 | if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1])) | |
998 | { | |
999 | bitlen = atoi(p + 1); | |
1000 | /* much like non-cidr for ipv6, rather arbitrary for ipv4 */ | |
1001 | if(bitlen > 0 | |
1002 | && bitlen >= | |
1003 | (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 - | |
1004 | 2 * nonwild)) | |
1005 | return 1; | |
1006 | } | |
1007 | else | |
1008 | { | |
1009 | p = lhost; | |
1010 | while((tmpch = *p++)) | |
1011 | { | |
1012 | if(!IsKWildChar(tmpch)) | |
1013 | if(++nonwild >= ConfigFileEntry.min_nonwildcard) | |
1014 | return 1; | |
1015 | } | |
1016 | } | |
1017 | ||
1018 | return 0; | |
1019 | } | |
1020 | ||
1021 | rb_dlink_node * | |
1022 | find_prop_ban(unsigned int status, const char *user, const char *host) | |
1023 | { | |
1024 | rb_dlink_node *ptr; | |
1025 | struct ConfItem *aconf; | |
1026 | ||
1027 | RB_DLINK_FOREACH(ptr, prop_bans.head) | |
1028 | { | |
1029 | aconf = ptr->data; | |
1030 | ||
1031 | if((aconf->status & ~CONF_ILLEGAL) == status && | |
1032 | (!user || !aconf->user || | |
1033 | !irccmp(aconf->user, user)) && | |
1034 | !irccmp(aconf->host, host)) | |
1035 | return ptr; | |
1036 | } | |
1037 | return NULL; | |
1038 | } | |
1039 | ||
1040 | void | |
1041 | deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr) | |
1042 | { | |
1043 | int i; | |
1044 | ||
1045 | s_assert(ptr->data == aconf); | |
1046 | ||
1047 | switch (aconf->status) | |
1048 | { | |
1049 | case CONF_KILL: | |
1050 | if (aconf->lifetime == 0 && | |
1051 | aconf->flags & CONF_FLAGS_TEMPORARY) | |
1052 | for (i = 0; i < LAST_TEMP_TYPE; i++) | |
1053 | rb_dlinkFindDestroy(aconf, &temp_klines[i]); | |
1054 | /* Make sure delete_one_address_conf() does not | |
1055 | * free the aconf. | |
1056 | */ | |
1057 | aconf->clients++; | |
1058 | delete_one_address_conf(aconf->host, aconf); | |
1059 | aconf->clients--; | |
1060 | break; | |
1061 | case CONF_DLINE: | |
1062 | if (aconf->lifetime == 0 && | |
1063 | aconf->flags & CONF_FLAGS_TEMPORARY) | |
1064 | for (i = 0; i < LAST_TEMP_TYPE; i++) | |
1065 | rb_dlinkFindDestroy(aconf, &temp_dlines[i]); | |
1066 | aconf->clients++; | |
1067 | delete_one_address_conf(aconf->host, aconf); | |
1068 | aconf->clients--; | |
1069 | break; | |
1070 | case CONF_XLINE: | |
1071 | rb_dlinkFindDestroy(aconf, &xline_conf_list); | |
1072 | break; | |
1073 | case CONF_RESV_NICK: | |
1074 | rb_dlinkFindDestroy(aconf, &resv_conf_list); | |
1075 | break; | |
1076 | case CONF_RESV_CHANNEL: | |
1077 | del_from_resv_hash(aconf->host, aconf); | |
1078 | break; | |
1079 | } | |
1080 | if (aconf->lifetime != 0 && rb_current_time() < aconf->lifetime) | |
1081 | aconf->status |= CONF_ILLEGAL; | |
1082 | else | |
1083 | { | |
1084 | if (aconf->lifetime != 0) | |
1085 | rb_dlinkDestroy(ptr, &prop_bans); | |
1086 | free_conf(aconf); | |
1087 | } | |
1088 | } | |
1089 | ||
1090 | /* Given a new ban ConfItem, look for any matching ban, update the lifetime | |
1091 | * from it and delete it. | |
1092 | */ | |
1093 | void | |
1094 | replace_old_ban(struct ConfItem *aconf) | |
1095 | { | |
1096 | rb_dlink_node *ptr; | |
1097 | struct ConfItem *oldconf; | |
1098 | ||
1099 | ptr = find_prop_ban(aconf->status, aconf->user, aconf->host); | |
1100 | if(ptr != NULL) | |
1101 | { | |
1102 | oldconf = ptr->data; | |
1103 | /* Remember at least as long as the old one. */ | |
1104 | if(oldconf->lifetime > aconf->lifetime) | |
1105 | aconf->lifetime = oldconf->lifetime; | |
1106 | /* Force creation time to increase. */ | |
1107 | if(oldconf->created >= aconf->created) | |
1108 | aconf->created = oldconf->created + 1; | |
1109 | /* Leave at least one second of validity. */ | |
1110 | if(aconf->hold <= aconf->created) | |
1111 | aconf->hold = aconf->created + 1; | |
1112 | if(aconf->lifetime < aconf->hold) | |
1113 | aconf->lifetime = aconf->hold; | |
1114 | /* Tell deactivate_conf() to destroy it. */ | |
1115 | oldconf->lifetime = rb_current_time(); | |
1116 | deactivate_conf(oldconf, ptr); | |
1117 | } | |
1118 | } | |
1119 | ||
1120 | static void | |
1121 | expire_prop_bans(void *list) | |
1122 | { | |
1123 | rb_dlink_node *ptr; | |
1124 | rb_dlink_node *next_ptr; | |
1125 | struct ConfItem *aconf; | |
1126 | ||
1127 | RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head) | |
1128 | { | |
1129 | aconf = ptr->data; | |
1130 | ||
1131 | if(aconf->lifetime <= rb_current_time() || | |
1132 | (aconf->hold <= rb_current_time() && | |
1133 | !(aconf->status & CONF_ILLEGAL))) | |
1134 | { | |
1135 | /* Alert opers that a TKline expired - Hwy */ | |
1136 | /* XXX show what type of ban it is */ | |
1137 | if(ConfigFileEntry.tkline_expire_notices && | |
1138 | !(aconf->status & CONF_ILLEGAL)) | |
1139 | sendto_realops_snomask(SNO_GENERAL, L_ALL, | |
1140 | "Propagated ban for [%s%s%s] expired", | |
1141 | aconf->user ? aconf->user : "", | |
1142 | aconf->user ? "@" : "", | |
1143 | aconf->host ? aconf->host : "*"); | |
1144 | ||
1145 | /* will destroy or mark illegal */ | |
1146 | deactivate_conf(aconf, ptr); | |
1147 | } | |
1148 | } | |
1149 | } | |
1150 | ||
1151 | /* expire_tkline() | |
1152 | * | |
1153 | * inputs - list pointer | |
1154 | * - type | |
1155 | * output - NONE | |
1156 | * side effects - expire tklines and moves them between lists | |
1157 | */ | |
1158 | static void | |
1159 | expire_temp_kd(void *list) | |
1160 | { | |
1161 | rb_dlink_node *ptr; | |
1162 | rb_dlink_node *next_ptr; | |
1163 | struct ConfItem *aconf; | |
1164 | ||
1165 | RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head) | |
1166 | { | |
1167 | aconf = ptr->data; | |
1168 | ||
1169 | if(aconf->hold <= rb_current_time()) | |
1170 | { | |
1171 | /* Alert opers that a TKline expired - Hwy */ | |
1172 | if(ConfigFileEntry.tkline_expire_notices) | |
1173 | sendto_realops_snomask(SNO_GENERAL, L_ALL, | |
1174 | "Temporary K-line for [%s@%s] expired", | |
1175 | (aconf->user) ? aconf-> | |
1176 | user : "*", (aconf->host) ? aconf->host : "*"); | |
1177 | ||
1178 | delete_one_address_conf(aconf->host, aconf); | |
1179 | rb_dlinkDestroy(ptr, list); | |
1180 | } | |
1181 | } | |
1182 | } | |
1183 | ||
1184 | static void | |
1185 | reorganise_temp_kd(void *list) | |
1186 | { | |
1187 | struct ConfItem *aconf; | |
1188 | rb_dlink_node *ptr, *next_ptr; | |
1189 | ||
1190 | RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head) | |
1191 | { | |
1192 | aconf = ptr->data; | |
1193 | ||
1194 | if(aconf->hold < (rb_current_time() + (60 * 60))) | |
1195 | { | |
1196 | rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ? | |
1197 | &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]); | |
1198 | aconf->port = TEMP_MIN; | |
1199 | } | |
1200 | else if(aconf->port > TEMP_HOUR) | |
1201 | { | |
1202 | if(aconf->hold < (rb_current_time() + (1440 * 60))) | |
1203 | { | |
1204 | rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ? | |
1205 | &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]); | |
1206 | aconf->port = TEMP_HOUR; | |
1207 | } | |
1208 | else if(aconf->port > TEMP_DAY && | |
1209 | (aconf->hold < (rb_current_time() + (10080 * 60)))) | |
1210 | { | |
1211 | rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ? | |
1212 | &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]); | |
1213 | aconf->port = TEMP_DAY; | |
1214 | } | |
1215 | } | |
1216 | } | |
1217 | } | |
1218 | ||
1219 | ||
1220 | /* const char* get_oper_name(struct Client *client_p) | |
1221 | * Input: A client to find the active oper{} name for. | |
1222 | * Output: The nick!user@host{oper} of the oper. | |
1223 | * "oper" is server name for remote opers | |
1224 | * Side effects: None. | |
1225 | */ | |
1226 | char * | |
1227 | get_oper_name(struct Client *client_p) | |
1228 | { | |
1229 | /* +5 for !,@,{,} and null */ | |
1230 | static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5]; | |
1231 | ||
1232 | if(MyOper(client_p)) | |
1233 | { | |
1234 | rb_snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", | |
1235 | client_p->name, client_p->username, | |
1236 | client_p->host, client_p->localClient->opername); | |
1237 | return buffer; | |
1238 | } | |
1239 | ||
1240 | rb_snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}", | |
1241 | client_p->name, client_p->username, | |
1242 | client_p->host, client_p->servptr->name); | |
1243 | return buffer; | |
1244 | } | |
1245 | ||
1246 | /* | |
1247 | * get_printable_conf | |
1248 | * | |
1249 | * inputs - struct ConfItem | |
1250 | * | |
1251 | * output - name | |
1252 | * - host | |
1253 | * - pass | |
1254 | * - user | |
1255 | * - port | |
1256 | * | |
1257 | * side effects - | |
1258 | * Examine the struct struct ConfItem, setting the values | |
1259 | * of name, host, pass, user to values either | |
1260 | * in aconf, or "<NULL>" port is set to aconf->port in all cases. | |
1261 | */ | |
1262 | void | |
1263 | get_printable_conf(struct ConfItem *aconf, char **name, char **host, | |
1264 | char **pass, char **user, int *port, char **classname) | |
1265 | { | |
1266 | static char null[] = "<NULL>"; | |
1267 | static char zero[] = "default"; | |
1268 | ||
1269 | *name = EmptyString(aconf->info.name) ? null : aconf->info.name; | |
1270 | *host = EmptyString(aconf->host) ? null : aconf->host; | |
1271 | *pass = EmptyString(aconf->passwd) ? null : aconf->passwd; | |
1272 | *user = EmptyString(aconf->user) ? null : aconf->user; | |
1273 | *classname = EmptyString(aconf->className) ? zero : aconf->className; | |
1274 | *port = (int) aconf->port; | |
1275 | } | |
1276 | ||
1277 | char * | |
1278 | get_user_ban_reason(struct ConfItem *aconf) | |
1279 | { | |
1280 | static char reasonbuf[BUFSIZE]; | |
1281 | ||
1282 | if (aconf->flags & CONF_FLAGS_TEMPORARY && | |
1283 | (aconf->status == CONF_KILL || aconf->status == CONF_DLINE)) | |
1284 | rb_snprintf(reasonbuf, sizeof reasonbuf, | |
1285 | "Temporary %c-line %d min. - ", | |
1286 | aconf->status == CONF_DLINE ? 'D' : 'K', | |
1287 | (int)((aconf->hold - aconf->created) / 60)); | |
1288 | else | |
1289 | reasonbuf[0] = '\0'; | |
1290 | if (aconf->passwd) | |
1291 | rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf); | |
1292 | else | |
1293 | rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf); | |
1294 | if (aconf->created) | |
1295 | { | |
1296 | rb_strlcat(reasonbuf, " (", sizeof reasonbuf); | |
1297 | rb_strlcat(reasonbuf, smalldate(aconf->created), | |
1298 | sizeof reasonbuf); | |
1299 | rb_strlcat(reasonbuf, ")", sizeof reasonbuf); | |
1300 | } | |
1301 | return reasonbuf; | |
1302 | } | |
1303 | ||
1304 | void | |
1305 | get_printable_kline(struct Client *source_p, struct ConfItem *aconf, | |
1306 | char **host, char **reason, | |
1307 | char **user, char **oper_reason) | |
1308 | { | |
1309 | static char null[] = "<NULL>"; | |
1310 | static char operreasonbuf[BUFSIZE]; | |
1311 | ||
1312 | *host = EmptyString(aconf->host) ? null : aconf->host; | |
1313 | *user = EmptyString(aconf->user) ? null : aconf->user; | |
1314 | *reason = get_user_ban_reason(aconf); | |
1315 | ||
1316 | if(!IsOper(source_p)) | |
1317 | *oper_reason = NULL; | |
1318 | else | |
1319 | { | |
1320 | rb_snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)", | |
1321 | EmptyString(aconf->spasswd) ? "" : aconf->spasswd, | |
1322 | EmptyString(aconf->spasswd) ? "" : " ", | |
1323 | aconf->info.oper); | |
1324 | *oper_reason = operreasonbuf; | |
1325 | } | |
1326 | } | |
1327 | ||
1328 | /* | |
1329 | * read_conf_files | |
1330 | * | |
1331 | * inputs - cold start YES or NO | |
1332 | * output - none | |
1333 | * side effects - read all conf files needed, ircd.conf kline.conf etc. | |
1334 | */ | |
1335 | void | |
1336 | read_conf_files(int cold) | |
1337 | { | |
1338 | const char *filename; | |
1339 | ||
1340 | conf_fbfile_in = NULL; | |
1341 | ||
1342 | filename = ConfigFileEntry.configfile; | |
1343 | ||
1344 | /* We need to know the initial filename for the yyerror() to report | |
1345 | FIXME: The full path is in conffilenamebuf first time since we | |
1346 | dont know anything else | |
1347 | ||
1348 | - Gozem 2002-07-21 | |
1349 | */ | |
1350 | rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf)); | |
1351 | ||
1352 | if((conf_fbfile_in = fopen(filename, "r")) == NULL) | |
1353 | { | |
1354 | if(cold) | |
1355 | { | |
1356 | ilog(L_MAIN, "Failed in reading configuration file %s", filename); | |
1357 | exit(-1); | |
1358 | } | |
1359 | else | |
1360 | { | |
1361 | sendto_realops_snomask(SNO_GENERAL, L_ALL, | |
1362 | "Can't open file '%s' - aborting rehash!", filename); | |
1363 | return; | |
1364 | } | |
1365 | } | |
1366 | ||
1367 | if(!cold) | |
1368 | { | |
1369 | clear_out_old_conf(); | |
1370 | } | |
1371 | ||
1372 | read_conf(conf_fbfile_in); | |
1373 | fclose(conf_fbfile_in); | |
1374 | } | |
1375 | ||
1376 | /* | |
1377 | * free an alias{} entry. | |
1378 | */ | |
1379 | static void | |
1380 | free_alias_cb(struct DictionaryElement *ptr, void *unused) | |
1381 | { | |
1382 | struct alias_entry *aptr = ptr->data; | |
1383 | ||
1384 | rb_free(aptr->name); | |
1385 | rb_free(aptr->target); | |
1386 | rb_free(aptr); | |
1387 | } | |
1388 | ||
1389 | /* | |
1390 | * clear_out_old_conf | |
1391 | * | |
1392 | * inputs - none | |
1393 | * output - none | |
1394 | * side effects - Clear out the old configuration | |
1395 | */ | |
1396 | static void | |
1397 | clear_out_old_conf(void) | |
1398 | { | |
1399 | struct Class *cltmp; | |
1400 | rb_dlink_node *ptr; | |
1401 | rb_dlink_node *next_ptr; | |
1402 | ||
1403 | /* | |
1404 | * don't delete the class table, rather mark all entries | |
1405 | * for deletion. The table is cleaned up by check_class. - avalon | |
1406 | */ | |
1407 | RB_DLINK_FOREACH(ptr, class_list.head) | |
1408 | { | |
1409 | cltmp = ptr->data; | |
1410 | MaxUsers(cltmp) = -1; | |
1411 | } | |
1412 | ||
1413 | clear_out_address_conf(); | |
1414 | clear_s_newconf(); | |
1415 | ||
1416 | /* clean out module paths */ | |
1417 | #ifndef STATIC_MODULES | |
1418 | mod_clear_paths(); | |
1419 | mod_add_path(MODULE_DIR); | |
1420 | mod_add_path(MODULE_DIR "/autoload"); | |
1421 | #endif | |
1422 | ||
1423 | /* clean out ServerInfo */ | |
1424 | rb_free(ServerInfo.description); | |
1425 | ServerInfo.description = NULL; | |
1426 | rb_free(ServerInfo.network_name); | |
1427 | ServerInfo.network_name = NULL; | |
1428 | rb_free(ServerInfo.network_desc); | |
1429 | ServerInfo.network_desc = NULL; | |
1430 | ||
1431 | ServerInfo.ssld_count = 1; | |
1432 | ||
1433 | /* clean out AdminInfo */ | |
1434 | rb_free(AdminInfo.name); | |
1435 | AdminInfo.name = NULL; | |
1436 | rb_free(AdminInfo.email); | |
1437 | AdminInfo.email = NULL; | |
1438 | rb_free(AdminInfo.description); | |
1439 | AdminInfo.description = NULL; | |
1440 | ||
1441 | /* operator{} and class{} blocks are freed above */ | |
1442 | /* clean out listeners */ | |
1443 | close_listeners(); | |
1444 | ||
1445 | /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{} | |
1446 | * and gecos{} blocks are freed above too | |
1447 | */ | |
1448 | ||
1449 | /* clean out general */ | |
1450 | rb_free(ConfigFileEntry.kline_reason); | |
1451 | ConfigFileEntry.kline_reason = NULL; | |
1452 | ||
1453 | RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head) | |
1454 | { | |
1455 | rb_free(ptr->data); | |
1456 | rb_dlinkDestroy(ptr, &service_list); | |
1457 | } | |
1458 | ||
1459 | /* remove any aliases... -- nenolod */ | |
1460 | if (alias_dict != NULL) | |
1461 | { | |
1462 | irc_dictionary_destroy(alias_dict, free_alias_cb, NULL); | |
1463 | alias_dict = NULL; | |
1464 | } | |
1465 | ||
1466 | destroy_blacklists(); | |
1467 | ||
1468 | privilegeset_mark_all_illegal(); | |
1469 | ||
1470 | /* OK, that should be everything... */ | |
1471 | } | |
1472 | ||
1473 | ||
1474 | /* | |
1475 | * conf_add_class_to_conf | |
1476 | * inputs - pointer to config item | |
1477 | * output - NONE | |
1478 | * side effects - Add a class pointer to a conf | |
1479 | */ | |
1480 | ||
1481 | void | |
1482 | conf_add_class_to_conf(struct ConfItem *aconf) | |
1483 | { | |
1484 | if(aconf->className == NULL) | |
1485 | { | |
1486 | aconf->className = rb_strdup("default"); | |
1487 | ClassPtr(aconf) = default_class; | |
1488 | return; | |
1489 | } | |
1490 | ||
1491 | ClassPtr(aconf) = find_class(aconf->className); | |
1492 | ||
1493 | if(ClassPtr(aconf) == default_class) | |
1494 | { | |
1495 | if(aconf->status == CONF_CLIENT) | |
1496 | { | |
1497 | conf_report_error( | |
1498 | "Using default class for missing class \"%s\" in auth{} for %s@%s", | |
1499 | aconf->className, aconf->user, aconf->host); | |
1500 | } | |
1501 | ||
1502 | rb_free(aconf->className); | |
1503 | aconf->className = rb_strdup("default"); | |
1504 | return; | |
1505 | } | |
1506 | ||
1507 | if(ConfMaxUsers(aconf) < 0) | |
1508 | { | |
1509 | ClassPtr(aconf) = default_class; | |
1510 | rb_free(aconf->className); | |
1511 | aconf->className = rb_strdup("default"); | |
1512 | return; | |
1513 | } | |
1514 | } | |
1515 | ||
1516 | /* | |
1517 | * conf_add_d_conf | |
1518 | * inputs - pointer to config item | |
1519 | * output - NONE | |
1520 | * side effects - Add a d/D line | |
1521 | */ | |
1522 | void | |
1523 | conf_add_d_conf(struct ConfItem *aconf) | |
1524 | { | |
1525 | if(aconf->host == NULL) | |
1526 | return; | |
1527 | ||
1528 | aconf->user = NULL; | |
1529 | ||
1530 | /* XXX - Should 'd' ever be in the old conf? For new conf we don't | |
1531 | * need this anyway, so I will disable it for now... -A1kmm | |
1532 | */ | |
1533 | ||
1534 | if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST) | |
1535 | { | |
1536 | ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host); | |
1537 | free_conf(aconf); | |
1538 | } | |
1539 | else | |
1540 | { | |
1541 | add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf); | |
1542 | } | |
1543 | } | |
1544 | ||
1545 | static char * | |
1546 | strip_tabs(char *dest, const char *src, size_t len) | |
1547 | { | |
1548 | char *d = dest; | |
1549 | ||
1550 | if(dest == NULL || src == NULL) | |
1551 | return NULL; | |
1552 | ||
1553 | rb_strlcpy(dest, src, len); | |
1554 | ||
1555 | while(*d) | |
1556 | { | |
1557 | if(*d == '\t') | |
1558 | *d = ' '; | |
1559 | d++; | |
1560 | } | |
1561 | return dest; | |
1562 | } | |
1563 | ||
1564 | /* | |
1565 | * yyerror | |
1566 | * | |
1567 | * inputs - message from parser | |
1568 | * output - none | |
1569 | * side effects - message to opers and log file entry is made | |
1570 | */ | |
1571 | void | |
1572 | yyerror(const char *msg) | |
1573 | { | |
1574 | char newlinebuf[BUFSIZE]; | |
1575 | ||
1576 | strip_tabs(newlinebuf, linebuf, strlen(linebuf)); | |
1577 | ||
1578 | ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf); | |
1579 | sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'", | |
1580 | conffilebuf, lineno + 1, msg, newlinebuf); | |
1581 | ||
1582 | } | |
1583 | ||
1584 | int | |
1585 | conf_fgets(char *lbuf, int max_size, FILE * fb) | |
1586 | { | |
1587 | if(fgets(lbuf, max_size, fb) == NULL) | |
1588 | return (0); | |
1589 | ||
1590 | return (strlen(lbuf)); | |
1591 | } | |
1592 | ||
1593 | int | |
1594 | conf_yy_fatal_error(const char *msg) | |
1595 | { | |
1596 | return (0); | |
1597 | } |