2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
24 * $Id: s_conf.c 3550 2007-08-09 06:47:26Z nenolod $
28 #include "ircd_defs.h"
30 #include "s_newconf.h"
49 #include "blacklist.h"
50 #include "privilege.h"
55 struct config_server_hide ConfigServerHide
;
57 extern int yyparse(void); /* defined in y.tab.c */
58 extern char linebuf
[];
61 #define INADDR_NONE ((unsigned int) 0xffffffff)
64 static rb_bh
*confitem_heap
= NULL
;
66 rb_dlink_list prop_bans
;
68 rb_dlink_list temp_klines
[LAST_TEMP_TYPE
];
69 rb_dlink_list temp_dlines
[LAST_TEMP_TYPE
];
70 rb_dlink_list service_list
;
72 /* internally defined functions */
73 static void set_default_conf(void);
74 static void validate_conf(void);
75 static void read_conf(FILE *);
76 static void clear_out_old_conf(void);
78 static void expire_prop_bans(void *list
);
79 static void expire_temp_kd(void *list
);
80 static void reorganise_temp_kd(void *list
);
85 static int verify_access(struct Client
*client_p
, const char *username
);
86 static int attach_iline(struct Client
*, struct ConfItem
*);
91 confitem_heap
= rb_bh_create(sizeof(struct ConfItem
), CONFITEM_HEAP_SIZE
, "confitem_heap");
93 rb_event_addish("expire_prop_bans", expire_prop_bans
, &prop_bans
, 60);
95 rb_event_addish("expire_temp_klines", expire_temp_kd
, &temp_klines
[TEMP_MIN
], 60);
96 rb_event_addish("expire_temp_dlines", expire_temp_kd
, &temp_dlines
[TEMP_MIN
], 60);
98 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd
,
99 &temp_klines
[TEMP_HOUR
], 3600);
100 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd
,
101 &temp_dlines
[TEMP_HOUR
], 3600);
102 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd
,
103 &temp_klines
[TEMP_DAY
], 86400);
104 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd
,
105 &temp_dlines
[TEMP_DAY
], 86400);
106 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd
,
107 &temp_klines
[TEMP_WEEK
], 604800);
108 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd
,
109 &temp_dlines
[TEMP_WEEK
], 604800);
116 * output - pointer to new conf entry
117 * side effects - none
122 struct ConfItem
*aconf
;
124 aconf
= rb_bh_alloc(confitem_heap
);
125 aconf
->status
= CONF_ILLEGAL
;
132 * inputs - pointer to conf to free
134 * side effects - crucial password fields are zeroed, conf is freed
137 free_conf(struct ConfItem
*aconf
)
139 s_assert(aconf
!= NULL
);
145 memset(aconf
->passwd
, 0, strlen(aconf
->passwd
));
147 memset(aconf
->spasswd
, 0, strlen(aconf
->spasswd
));
149 rb_free(aconf
->passwd
);
150 rb_free(aconf
->spasswd
);
151 rb_free(aconf
->className
);
152 rb_free(aconf
->user
);
153 rb_free(aconf
->host
);
156 operhash_delete(aconf
->info
.oper
);
158 rb_free(aconf
->info
.name
);
160 rb_bh_free(confitem_heap
, aconf
);
166 * inputs - pointer to client
167 * output - 0 = Success
168 * NOT_AUTHORISED (-1) = Access denied (no I line match)
169 * SOCKET_ERROR (-2) = Bad socket.
170 * I_LINE_FULL (-3) = I-line is full
171 * TOO_MANY (-4) = Too many connections from hostname
172 * BANNED_CLIENT (-5) = K-lined
173 * side effects - Ordinary client access check.
174 * Look for conf lines which have the same
175 * status as the flags passed.
178 check_client(struct Client
*client_p
, struct Client
*source_p
, const char *username
)
182 if((i
= verify_access(source_p
, username
)))
184 ilog(L_FUSER
, "Access denied: %s[%s]",
185 source_p
->name
, source_p
->sockhost
);
191 exit_client(client_p
, source_p
, &me
, "Socket Error");
195 /* Note that these notices are sent to opers on other
196 * servers also, so even if local opers are allowed to
197 * see the IP, we still cannot send it.
199 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
200 "Too many local connections for %s!%s%s@%s",
201 source_p
->name
, IsGotId(source_p
) ? "" : "~",
203 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: source_p
->host
);
205 ilog(L_FUSER
, "Too many local connections from %s!%s%s@%s",
206 source_p
->name
, IsGotId(source_p
) ? "" : "~",
207 source_p
->username
, source_p
->sockhost
);
209 ServerStats
.is_ref
++;
210 exit_client(client_p
, source_p
, &me
, "Too many host connections (local)");
213 case TOO_MANY_GLOBAL
:
214 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
215 "Too many global connections for %s!%s%s@%s",
216 source_p
->name
, IsGotId(source_p
) ? "" : "~",
218 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: source_p
->host
);
219 ilog(L_FUSER
, "Too many global connections from %s!%s%s@%s",
220 source_p
->name
, IsGotId(source_p
) ? "" : "~",
221 source_p
->username
, source_p
->sockhost
);
223 ServerStats
.is_ref
++;
224 exit_client(client_p
, source_p
, &me
, "Too many host connections (global)");
228 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
229 "Too many user connections for %s!%s%s@%s",
230 source_p
->name
, IsGotId(source_p
) ? "" : "~",
232 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: source_p
->host
);
233 ilog(L_FUSER
, "Too many user connections from %s!%s%s@%s",
234 source_p
->name
, IsGotId(source_p
) ? "" : "~",
235 source_p
->username
, source_p
->sockhost
);
237 ServerStats
.is_ref
++;
238 exit_client(client_p
, source_p
, &me
, "Too many user connections (global)");
242 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
243 "I-line is full for %s!%s%s@%s (%s).",
244 source_p
->name
, IsGotId(source_p
) ? "" : "~",
245 source_p
->username
, source_p
->host
,
246 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: "255.255.255.255");
248 ilog(L_FUSER
, "Too many connections from %s!%s%s@%s.",
249 source_p
->name
, IsGotId(source_p
) ? "" : "~",
250 source_p
->username
, source_p
->sockhost
);
252 ServerStats
.is_ref
++;
253 exit_client(client_p
, source_p
, &me
,
254 "No more connections allowed in your connection class");
261 if(source_p
->localClient
->ip
.ss_family
== AF_INET6
)
262 port
= ntohs(((struct sockaddr_in6
*)&source_p
->localClient
->listener
->addr
)->sin6_port
);
265 port
= ntohs(((struct sockaddr_in
*)&source_p
->localClient
->listener
->addr
)->sin_port
);
267 ServerStats
.is_ref
++;
268 /* jdc - lists server name & port connections are on */
269 /* a purely cosmetical change */
270 /* why ipaddr, and not just source_p->sockhost? --fl */
272 static char ipaddr
[HOSTIPLEN
];
273 rb_inet_ntop_sock(&source_p
->localClient
->ip
, ipaddr
, sizeof(ipaddr
));
275 sendto_realops_snomask(SNO_UNAUTH
, L_ALL
,
276 "Unauthorised client connection from "
277 "%s!%s%s@%s [%s] on [%s/%u].",
278 source_p
->name
, IsGotId(source_p
) ? "" : "~",
279 source_p
->username
, source_p
->host
,
281 source_p
->localClient
->listener
->name
, port
);
284 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
285 source_p
->name
, IsGotId(source_p
) ? "" : "~",
286 source_p
->username
, source_p
->sockhost
,
287 source_p
->localClient
->listener
->name
, port
);
288 add_reject(client_p
, NULL
, NULL
);
289 exit_client(client_p
, source_p
, &me
,
290 "You are not authorised to use this server");
294 exit_client(client_p
, client_p
, &me
, "*** Banned ");
295 ServerStats
.is_ref
++;
308 * inputs - pointer to client to verify
309 * - pointer to proposed username
310 * output - 0 if success -'ve if not
311 * side effect - find the first (best) I line to attach.
314 verify_access(struct Client
*client_p
, const char *username
)
316 struct ConfItem
*aconf
;
317 char non_ident
[USERLEN
+ 1];
319 if(IsGotId(client_p
))
321 aconf
= find_address_conf(client_p
->host
, client_p
->sockhost
,
322 client_p
->username
, client_p
->username
,
323 (struct sockaddr
*) &client_p
->localClient
->ip
,
324 client_p
->localClient
->ip
.ss_family
,
325 client_p
->localClient
->auth_user
);
329 rb_strlcpy(non_ident
, "~", sizeof(non_ident
));
330 rb_strlcat(non_ident
, username
, sizeof(non_ident
));
331 aconf
= find_address_conf(client_p
->host
, client_p
->sockhost
,
332 non_ident
, client_p
->username
,
333 (struct sockaddr
*) &client_p
->localClient
->ip
,
334 client_p
->localClient
->ip
.ss_family
,
335 client_p
->localClient
->auth_user
);
339 return NOT_AUTHORISED
;
341 if(aconf
->status
& CONF_CLIENT
)
343 if(aconf
->flags
& CONF_FLAGS_REDIR
)
345 sendto_one_numeric(client_p
, RPL_REDIR
, form_str(RPL_REDIR
),
346 aconf
->info
.name
? aconf
->info
.name
: "", aconf
->port
);
347 return (NOT_AUTHORISED
);
350 /* Thanks for spoof idea amm */
351 if(IsConfDoSpoofIp(aconf
))
355 /* show_ip() depends on this --fl */
356 SetIPSpoof(client_p
);
358 if(IsConfSpoofNotice(aconf
))
360 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
361 "%s spoofing: %s as %s",
363 show_ip(NULL
, client_p
) ? client_p
->host
: aconf
->info
.name
,
367 /* user@host spoof */
368 if((p
= strchr(aconf
->info
.name
, '@')) != NULL
)
373 rb_strlcpy(client_p
->username
, aconf
->info
.name
,
374 sizeof(client_p
->username
));
375 rb_strlcpy(client_p
->host
, host
,
376 sizeof(client_p
->host
));
380 rb_strlcpy(client_p
->host
, aconf
->info
.name
, sizeof(client_p
->host
));
382 return (attach_iline(client_p
, aconf
));
384 else if(aconf
->status
& CONF_KILL
)
386 if(ConfigFileEntry
.kline_with_reason
)
388 form_str(ERR_YOUREBANNEDCREEP
),
389 me
.name
, client_p
->name
,
390 get_user_ban_reason(aconf
));
391 add_reject(client_p
, aconf
->user
, aconf
->host
);
392 return (BANNED_CLIENT
);
395 return NOT_AUTHORISED
;
402 * Returns 1 if successful 0 if not
404 * This checks if the user has exceed the limits for their class
405 * unless of course they are exempt..
409 add_ip_limit(struct Client
*client_p
, struct ConfItem
*aconf
)
411 rb_patricia_node_t
*pnode
;
414 /* If the limits are 0 don't do anything.. */
415 if(ConfCidrAmount(aconf
) == 0
416 || (ConfCidrIpv4Bitlen(aconf
) == 0 && ConfCidrIpv6Bitlen(aconf
) == 0))
419 pnode
= rb_match_ip(ConfIpLimits(aconf
), (struct sockaddr
*)&client_p
->localClient
->ip
);
421 if(GET_SS_FAMILY(&client_p
->localClient
->ip
) == AF_INET
)
422 bitlen
= ConfCidrIpv4Bitlen(aconf
);
424 bitlen
= ConfCidrIpv6Bitlen(aconf
);
427 pnode
= make_and_lookup_ip(ConfIpLimits(aconf
), (struct sockaddr
*)&client_p
->localClient
->ip
, bitlen
);
429 s_assert(pnode
!= NULL
);
433 if(((intptr_t)pnode
->data
) >= ConfCidrAmount(aconf
) && !IsConfExemptLimits(aconf
))
435 /* This should only happen if the limits are set to 0 */
436 if((intptr_t)pnode
->data
== 0)
438 rb_patricia_remove(ConfIpLimits(aconf
), pnode
);
443 pnode
->data
= (void *)(((intptr_t)pnode
->data
) + 1);
449 remove_ip_limit(struct Client
*client_p
, struct ConfItem
*aconf
)
451 rb_patricia_node_t
*pnode
;
453 /* If the limits are 0 don't do anything.. */
454 if(ConfCidrAmount(aconf
) == 0
455 || (ConfCidrIpv4Bitlen(aconf
) == 0 && ConfCidrIpv6Bitlen(aconf
) == 0))
458 pnode
= rb_match_ip(ConfIpLimits(aconf
), (struct sockaddr
*)&client_p
->localClient
->ip
);
462 pnode
->data
= (void *)(((intptr_t)pnode
->data
) - 1);
463 if(((intptr_t)pnode
->data
) == 0)
465 rb_patricia_remove(ConfIpLimits(aconf
), pnode
);
473 * inputs - client pointer
476 * side effects - do actual attach
479 attach_iline(struct Client
*client_p
, struct ConfItem
*aconf
)
481 struct Client
*target_p
;
484 int global_count
= 0;
488 if(IsConfExemptLimits(aconf
))
489 return (attach_conf(client_p
, aconf
));
491 if(*client_p
->username
== '~')
495 /* find_hostname() returns the head of the list to search */
496 RB_DLINK_FOREACH(ptr
, find_hostname(client_p
->host
))
498 target_p
= ptr
->data
;
500 if(irccmp(client_p
->host
, target_p
->orighost
) != 0)
503 if(MyConnect(target_p
))
510 if(*target_p
->username
== '~')
513 else if(irccmp(target_p
->username
, client_p
->username
) == 0)
516 if(ConfMaxLocal(aconf
) && local_count
>= ConfMaxLocal(aconf
))
517 return (TOO_MANY_LOCAL
);
518 else if(ConfMaxGlobal(aconf
) && global_count
>= ConfMaxGlobal(aconf
))
519 return (TOO_MANY_GLOBAL
);
520 else if(ConfMaxIdent(aconf
) && ident_count
>= ConfMaxIdent(aconf
))
521 return (TOO_MANY_IDENT
);
525 return (attach_conf(client_p
, aconf
));
531 * inputs - pointer to client to detach
532 * output - 0 for success, -1 for failure
533 * side effects - Disassociate configuration from the client.
534 * Also removes a class from the list if marked for deleting.
537 detach_conf(struct Client
*client_p
)
539 struct ConfItem
*aconf
;
541 aconf
= client_p
->localClient
->att_conf
;
547 remove_ip_limit(client_p
, aconf
);
549 if(ConfCurrUsers(aconf
) > 0)
550 --ConfCurrUsers(aconf
);
552 if(ConfMaxUsers(aconf
) == -1 && ConfCurrUsers(aconf
) == 0)
554 free_class(ClassPtr(aconf
));
555 ClassPtr(aconf
) = NULL
;
561 if(!aconf
->clients
&& IsIllegal(aconf
))
564 client_p
->localClient
->att_conf
= NULL
;
574 * inputs - client pointer
577 * side effects - Associate a specific configuration entry to a *local*
578 * client (this is the one which used in accepting the
579 * connection). Note, that this automatically changes the
580 * attachment if there was an old one...
583 attach_conf(struct Client
*client_p
, struct ConfItem
*aconf
)
586 return (NOT_AUTHORISED
);
590 if(!add_ip_limit(client_p
, aconf
))
591 return (TOO_MANY_LOCAL
);
594 if((aconf
->status
& CONF_CLIENT
) &&
595 ConfCurrUsers(aconf
) >= ConfMaxUsers(aconf
) && ConfMaxUsers(aconf
) > 0)
597 if(!IsConfExemptLimits(aconf
))
599 return (I_LINE_FULL
);
603 sendto_one_notice(client_p
, ":*** I: line is full, but you have an >I: line!");
608 if(client_p
->localClient
->att_conf
!= NULL
)
609 detach_conf(client_p
);
611 client_p
->localClient
->att_conf
= aconf
;
614 ConfCurrUsers(aconf
)++;
621 * Actual REHASH service routine. Called with sig == 0 if it has been called
622 * as a result of an operator issuing this command, else assume it has been
623 * called as a result of the server receiving a HUP signal.
630 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
631 "Got signal SIGHUP, reloading ircd conf. file");
635 /* don't close listeners until we know we can go ahead with the rehash */
638 if(ServerInfo
.description
!= NULL
)
639 rb_strlcpy(me
.info
, ServerInfo
.description
, sizeof(me
.info
));
641 rb_strlcpy(me
.info
, "unknown", sizeof(me
.info
));
658 * side effects - Set default values here.
659 * This is called **PRIOR** to parsing the
660 * configuration file. If you want to do some validation
661 * of values later, put them in validate_conf().
669 set_default_conf(void)
671 /* ServerInfo.name is not rehashable */
672 /* ServerInfo.name = ServerInfo.name; */
673 ServerInfo
.description
= NULL
;
674 ServerInfo
.network_name
= rb_strdup(NETWORK_NAME_DEFAULT
);
675 ServerInfo
.network_desc
= rb_strdup(NETWORK_DESC_DEFAULT
);
677 memset(&ServerInfo
.ip
, 0, sizeof(ServerInfo
.ip
));
678 ServerInfo
.specific_ipv4_vhost
= 0;
680 memset(&ServerInfo
.ip6
, 0, sizeof(ServerInfo
.ip6
));
681 ServerInfo
.specific_ipv6_vhost
= 0;
684 /* Don't reset hub, as that will break lazylinks */
685 /* ServerInfo.hub = NO; */
686 AdminInfo
.name
= NULL
;
687 AdminInfo
.email
= NULL
;
688 AdminInfo
.description
= NULL
;
690 ConfigFileEntry
.default_operstring
= rb_strdup("is an IRC operator");
691 ConfigFileEntry
.default_adminstring
= rb_strdup("is a Server Administrator");
692 ConfigFileEntry
.servicestring
= rb_strdup("is a Network Service");
694 ConfigFileEntry
.default_umodes
= UMODE_INVISIBLE
;
695 ConfigFileEntry
.failed_oper_notice
= YES
;
696 ConfigFileEntry
.anti_nick_flood
= NO
;
697 ConfigFileEntry
.disable_fake_channels
= NO
;
698 ConfigFileEntry
.max_nick_time
= 20;
699 ConfigFileEntry
.max_nick_changes
= 5;
700 ConfigFileEntry
.max_accept
= 20;
701 ConfigFileEntry
.max_monitor
= 60;
702 ConfigFileEntry
.nick_delay
= 900; /* 15 minutes */
703 ConfigFileEntry
.target_change
= YES
;
704 ConfigFileEntry
.anti_spam_exit_message_time
= 0;
705 ConfigFileEntry
.ts_warn_delta
= TS_WARN_DELTA_DEFAULT
;
706 ConfigFileEntry
.ts_max_delta
= TS_MAX_DELTA_DEFAULT
;
707 ConfigFileEntry
.client_exit
= YES
;
708 ConfigFileEntry
.dline_with_reason
= YES
;
709 ConfigFileEntry
.kline_with_reason
= YES
;
710 ConfigFileEntry
.kline_delay
= 0;
711 ConfigFileEntry
.warn_no_nline
= YES
;
712 ConfigFileEntry
.non_redundant_klines
= YES
;
713 ConfigFileEntry
.stats_e_disabled
= NO
;
714 ConfigFileEntry
.stats_o_oper_only
= NO
;
715 ConfigFileEntry
.stats_k_oper_only
= 1; /* masked */
716 ConfigFileEntry
.stats_i_oper_only
= 1; /* masked */
717 ConfigFileEntry
.stats_P_oper_only
= NO
;
718 ConfigFileEntry
.stats_c_oper_only
= NO
;
719 ConfigFileEntry
.stats_y_oper_only
= NO
;
720 ConfigFileEntry
.stats_h_oper_only
= NO
;
721 ConfigFileEntry
.map_oper_only
= YES
;
722 ConfigFileEntry
.operspy_admin_only
= NO
;
723 ConfigFileEntry
.pace_wait
= 10;
724 ConfigFileEntry
.caller_id_wait
= 60;
725 ConfigFileEntry
.pace_wait_simple
= 1;
726 ConfigFileEntry
.short_motd
= NO
;
727 ConfigFileEntry
.no_oper_flood
= NO
;
728 ConfigFileEntry
.fname_userlog
= NULL
;
729 ConfigFileEntry
.fname_fuserlog
= NULL
;
730 ConfigFileEntry
.fname_operlog
= NULL
;
731 ConfigFileEntry
.fname_foperlog
= NULL
;
732 ConfigFileEntry
.fname_serverlog
= NULL
;
733 ConfigFileEntry
.fname_klinelog
= NULL
;
734 ConfigFileEntry
.fname_operspylog
= NULL
;
735 ConfigFileEntry
.fname_ioerrorlog
= NULL
;
736 ConfigFileEntry
.use_egd
= NO
;
737 ConfigFileEntry
.hide_spoof_ips
= YES
;
738 ConfigFileEntry
.hide_error_messages
= 1;
739 ConfigFileEntry
.dots_in_ident
= 0;
740 ConfigFileEntry
.max_targets
= MAX_TARGETS_DEFAULT
;
741 ConfigFileEntry
.egdpool_path
= NULL
;
742 ConfigFileEntry
.use_whois_actually
= YES
;
743 ConfigFileEntry
.burst_away
= NO
;
744 ConfigFileEntry
.collision_fnc
= YES
;
745 ConfigFileEntry
.global_snotices
= YES
;
746 ConfigFileEntry
.operspy_dont_care_user_info
= NO
;
747 ConfigFileEntry
.use_propagated_bans
= YES
;
750 ConfigFileEntry
.compression_level
= 4;
753 ConfigFileEntry
.oper_umodes
= UMODE_LOCOPS
| UMODE_SERVNOTICE
|
754 UMODE_OPERWALL
| UMODE_WALLOP
;
755 ConfigFileEntry
.oper_only_umodes
= UMODE_SERVNOTICE
;
756 ConfigFileEntry
.oper_snomask
= SNO_GENERAL
;
758 ConfigChannel
.use_except
= YES
;
759 ConfigChannel
.use_invex
= YES
;
760 ConfigChannel
.use_knock
= YES
;
761 ConfigChannel
.use_forward
= YES
;
762 ConfigChannel
.knock_delay
= 300;
763 ConfigChannel
.knock_delay_channel
= 60;
764 ConfigChannel
.max_chans_per_user
= 15;
765 ConfigChannel
.max_bans
= 25;
766 ConfigChannel
.max_bans_large
= 500;
767 ConfigChannel
.only_ascii_channels
= NO
;
768 ConfigChannel
.burst_topicwho
= NO
;
769 ConfigChannel
.kick_on_split_riding
= NO
;
771 ConfigChannel
.default_split_user_count
= 15000;
772 ConfigChannel
.default_split_server_count
= 10;
773 ConfigChannel
.no_join_on_split
= NO
;
774 ConfigChannel
.no_create_on_split
= YES
;
775 ConfigChannel
.resv_forcepart
= YES
;
777 ConfigServerHide
.flatten_links
= 0;
778 ConfigServerHide
.links_delay
= 300;
779 ConfigServerHide
.hidden
= 0;
780 ConfigServerHide
.disable_hidden
= 0;
782 ConfigFileEntry
.min_nonwildcard
= 4;
783 ConfigFileEntry
.min_nonwildcard_simple
= 3;
784 ConfigFileEntry
.default_floodcount
= 8;
785 ConfigFileEntry
.ident_timeout
= 5;
786 ConfigFileEntry
.client_flood
= CLIENT_FLOOD_DEFAULT
;
787 ConfigFileEntry
.tkline_expire_notices
= 0;
789 ConfigFileEntry
.reject_after_count
= 5;
790 ConfigFileEntry
.reject_ban_time
= 300;
791 ConfigFileEntry
.reject_duration
= 120;
792 ConfigFileEntry
.throttle_count
= 4;
793 ConfigFileEntry
.throttle_duration
= 60;
795 ServerInfo
.default_max_clients
= MAXCONNECTIONS
;
798 alias_dict
= irc_dictionary_create(strcasecmp
);
808 * inputs - file descriptor pointing to config file to use
810 * side effects - Read configuration file.
813 read_conf(FILE * file
)
817 set_default_conf(); /* Set default values prior to conf parsing */
818 yyparse(); /* Load the values from the conf */
819 validate_conf(); /* Check to make sure some values are still okay. */
820 /* Some global values are also loaded here. */
821 check_class(); /* Make sure classes are valid */
822 privilegeset_delete_all_illegal();
828 if(ConfigFileEntry
.ts_warn_delta
< TS_WARN_DELTA_MIN
)
829 ConfigFileEntry
.ts_warn_delta
= TS_WARN_DELTA_DEFAULT
;
831 if(ConfigFileEntry
.ts_max_delta
< TS_MAX_DELTA_MIN
)
832 ConfigFileEntry
.ts_max_delta
= TS_MAX_DELTA_DEFAULT
;
834 if(ServerInfo
.network_name
== NULL
)
835 ServerInfo
.network_name
= rb_strdup(NETWORK_NAME_DEFAULT
);
837 if(ServerInfo
.network_desc
== NULL
)
838 ServerInfo
.network_desc
= rb_strdup(NETWORK_DESC_DEFAULT
);
840 if(ServerInfo
.ssld_count
< 1)
841 ServerInfo
.ssld_count
= 1;
843 if(!rb_setup_ssl_server(ServerInfo
.ssl_cert
, ServerInfo
.ssl_private_key
, ServerInfo
.ssl_dh_params
))
845 ilog(L_MAIN
, "WARNING: Unable to setup SSL.");
849 send_new_ssl_certs(ServerInfo
.ssl_cert
, ServerInfo
.ssl_private_key
, ServerInfo
.ssl_dh_params
);
852 if(ServerInfo
.ssld_count
> get_ssld_count())
854 int start
= ServerInfo
.ssld_count
- get_ssld_count();
855 /* start up additional ssld if needed */
856 start_ssldaemon(start
, ServerInfo
.ssl_cert
, ServerInfo
.ssl_private_key
, ServerInfo
.ssl_dh_params
);
860 if((ConfigFileEntry
.client_flood
< CLIENT_FLOOD_MIN
) ||
861 (ConfigFileEntry
.client_flood
> CLIENT_FLOOD_MAX
))
862 ConfigFileEntry
.client_flood
= CLIENT_FLOOD_MAX
;
864 if(!split_users
|| !split_servers
||
865 (!ConfigChannel
.no_create_on_split
&& !ConfigChannel
.no_join_on_split
))
867 rb_event_delete(check_splitmode_ev
);
868 check_splitmode_ev
= NULL
;
876 * inputs - pointer to struct ConfItem
878 * Side effects - links in given struct ConfItem into
879 * temporary kline link list
882 add_temp_kline(struct ConfItem
*aconf
)
884 if(aconf
->hold
>= rb_current_time() + (10080 * 60))
886 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_WEEK
]);
887 aconf
->port
= TEMP_WEEK
;
889 else if(aconf
->hold
>= rb_current_time() + (1440 * 60))
891 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_DAY
]);
892 aconf
->port
= TEMP_DAY
;
894 else if(aconf
->hold
>= rb_current_time() + (60 * 60))
896 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_HOUR
]);
897 aconf
->port
= TEMP_HOUR
;
901 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_MIN
]);
902 aconf
->port
= TEMP_MIN
;
905 aconf
->flags
|= CONF_FLAGS_TEMPORARY
;
906 add_conf_by_address(aconf
->host
, CONF_KILL
, aconf
->user
, NULL
, aconf
);
911 * input - pointer to struct ConfItem
913 * side effects - added to tdline link list and address hash
916 add_temp_dline(struct ConfItem
*aconf
)
918 if(aconf
->hold
>= rb_current_time() + (10080 * 60))
920 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_WEEK
]);
921 aconf
->port
= TEMP_WEEK
;
923 else if(aconf
->hold
>= rb_current_time() + (1440 * 60))
925 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_DAY
]);
926 aconf
->port
= TEMP_DAY
;
928 else if(aconf
->hold
>= rb_current_time() + (60 * 60))
930 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_HOUR
]);
931 aconf
->port
= TEMP_HOUR
;
935 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_MIN
]);
936 aconf
->port
= TEMP_MIN
;
939 aconf
->flags
|= CONF_FLAGS_TEMPORARY
;
940 add_conf_by_address(aconf
->host
, CONF_DLINE
, aconf
->user
, NULL
, aconf
);
945 * input - user buffer, host buffer
946 * output - 0 if invalid, 1 if valid
950 valid_wild_card(const char *luser
, const char *lhost
)
957 /* user has no wildcards, always accept -- jilles */
958 if(!strchr(luser
, '?') && !strchr(luser
, '*'))
961 /* check there are enough non wildcard chars */
963 while((tmpch
= *p
++))
965 if(!IsKWildChar(tmpch
))
967 /* found enough chars, return */
968 if(++nonwild
>= ConfigFileEntry
.min_nonwildcard
)
973 /* try host, as user didnt contain enough */
974 /* special case for cidr masks -- jilles */
975 if((p
= strrchr(lhost
, '/')) != NULL
&& IsDigit(p
[1]))
977 bitlen
= atoi(p
+ 1);
978 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
981 (strchr(lhost
, ':') ? 4 * (ConfigFileEntry
.min_nonwildcard
- nonwild
) : 6 -
988 while((tmpch
= *p
++))
990 if(!IsKWildChar(tmpch
))
991 if(++nonwild
>= ConfigFileEntry
.min_nonwildcard
)
1000 find_prop_ban(unsigned int status
, const char *user
, const char *host
)
1003 struct ConfItem
*aconf
;
1005 RB_DLINK_FOREACH(ptr
, prop_bans
.head
)
1009 if((aconf
->status
& ~CONF_ILLEGAL
) == status
&&
1010 (!user
|| !aconf
->user
||
1011 !irccmp(aconf
->user
, user
)) &&
1012 !irccmp(aconf
->host
, host
))
1019 deactivate_conf(struct ConfItem
*aconf
, rb_dlink_node
*ptr
)
1023 s_assert(ptr
->data
== aconf
);
1025 switch (aconf
->status
)
1028 if (aconf
->lifetime
== 0 &&
1029 aconf
->flags
& CONF_FLAGS_TEMPORARY
)
1030 for (i
= 0; i
< LAST_TEMP_TYPE
; i
++)
1031 rb_dlinkFindDestroy(aconf
, &temp_klines
[i
]);
1032 /* Make sure delete_one_address_conf() does not
1036 delete_one_address_conf(aconf
->host
, aconf
);
1040 if (aconf
->lifetime
== 0 &&
1041 aconf
->flags
& CONF_FLAGS_TEMPORARY
)
1042 for (i
= 0; i
< LAST_TEMP_TYPE
; i
++)
1043 rb_dlinkFindDestroy(aconf
, &temp_dlines
[i
]);
1045 delete_one_address_conf(aconf
->host
, aconf
);
1049 rb_dlinkFindDestroy(aconf
, &xline_conf_list
);
1051 case CONF_RESV_NICK
:
1052 rb_dlinkFindDestroy(aconf
, &resv_conf_list
);
1054 case CONF_RESV_CHANNEL
:
1055 del_from_resv_hash(aconf
->host
, aconf
);
1058 if (aconf
->lifetime
!= 0 && rb_current_time() < aconf
->lifetime
)
1059 aconf
->status
|= CONF_ILLEGAL
;
1062 if (aconf
->lifetime
!= 0)
1063 rb_dlinkDestroy(ptr
, &prop_bans
);
1068 /* Given a new ban ConfItem, look for any matching ban, update the lifetime
1069 * from it and delete it.
1072 replace_old_ban(struct ConfItem
*aconf
)
1075 struct ConfItem
*oldconf
;
1077 ptr
= find_prop_ban(aconf
->status
, aconf
->user
, aconf
->host
);
1080 oldconf
= ptr
->data
;
1081 /* Remember at least as long as the old one. */
1082 if(oldconf
->lifetime
> aconf
->lifetime
)
1083 aconf
->lifetime
= oldconf
->lifetime
;
1084 /* Force creation time to increase. */
1085 if(oldconf
->created
>= aconf
->created
)
1086 aconf
->created
= oldconf
->created
+ 1;
1087 /* Leave at least one second of validity. */
1088 if(aconf
->hold
<= aconf
->created
)
1089 aconf
->hold
= aconf
->created
+ 1;
1090 if(aconf
->lifetime
< aconf
->hold
)
1091 aconf
->lifetime
= aconf
->hold
;
1092 /* Tell deactivate_conf() to destroy it. */
1093 oldconf
->lifetime
= rb_current_time();
1094 deactivate_conf(oldconf
, ptr
);
1099 expire_prop_bans(void *list
)
1102 rb_dlink_node
*next_ptr
;
1103 struct ConfItem
*aconf
;
1105 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, ((rb_dlink_list
*) list
)->head
)
1109 if(aconf
->lifetime
<= rb_current_time() ||
1110 (aconf
->hold
<= rb_current_time() &&
1111 !(aconf
->status
& CONF_ILLEGAL
)))
1113 /* Alert opers that a TKline expired - Hwy */
1114 /* XXX show what type of ban it is */
1115 if(ConfigFileEntry
.tkline_expire_notices
&&
1116 !(aconf
->status
& CONF_ILLEGAL
))
1117 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1118 "Propagated ban for [%s%s%s] expired",
1119 aconf
->user
? aconf
->user
: "",
1120 aconf
->user
? "@" : "",
1121 aconf
->host
? aconf
->host
: "*");
1123 /* will destroy or mark illegal */
1124 deactivate_conf(aconf
, ptr
);
1131 * inputs - list pointer
1134 * side effects - expire tklines and moves them between lists
1137 expire_temp_kd(void *list
)
1140 rb_dlink_node
*next_ptr
;
1141 struct ConfItem
*aconf
;
1143 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, ((rb_dlink_list
*) list
)->head
)
1147 if(aconf
->hold
<= rb_current_time())
1149 /* Alert opers that a TKline expired - Hwy */
1150 if(ConfigFileEntry
.tkline_expire_notices
)
1151 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1152 "Temporary K-line for [%s@%s] expired",
1153 (aconf
->user
) ? aconf
->
1154 user
: "*", (aconf
->host
) ? aconf
->host
: "*");
1156 delete_one_address_conf(aconf
->host
, aconf
);
1157 rb_dlinkDestroy(ptr
, list
);
1163 reorganise_temp_kd(void *list
)
1165 struct ConfItem
*aconf
;
1166 rb_dlink_node
*ptr
, *next_ptr
;
1168 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, ((rb_dlink_list
*) list
)->head
)
1172 if(aconf
->hold
< (rb_current_time() + (60 * 60)))
1174 rb_dlinkMoveNode(ptr
, list
, (aconf
->status
== CONF_KILL
) ?
1175 &temp_klines
[TEMP_MIN
] : &temp_dlines
[TEMP_MIN
]);
1176 aconf
->port
= TEMP_MIN
;
1178 else if(aconf
->port
> TEMP_HOUR
)
1180 if(aconf
->hold
< (rb_current_time() + (1440 * 60)))
1182 rb_dlinkMoveNode(ptr
, list
, (aconf
->status
== CONF_KILL
) ?
1183 &temp_klines
[TEMP_HOUR
] : &temp_dlines
[TEMP_HOUR
]);
1184 aconf
->port
= TEMP_HOUR
;
1186 else if(aconf
->port
> TEMP_DAY
&&
1187 (aconf
->hold
< (rb_current_time() + (10080 * 60))))
1189 rb_dlinkMoveNode(ptr
, list
, (aconf
->status
== CONF_KILL
) ?
1190 &temp_klines
[TEMP_DAY
] : &temp_dlines
[TEMP_DAY
]);
1191 aconf
->port
= TEMP_DAY
;
1198 /* const char* get_oper_name(struct Client *client_p)
1199 * Input: A client to find the active oper{} name for.
1200 * Output: The nick!user@host{oper} of the oper.
1201 * "oper" is server name for remote opers
1202 * Side effects: None.
1205 get_oper_name(struct Client
*client_p
)
1207 /* +5 for !,@,{,} and null */
1208 static char buffer
[NICKLEN
+ USERLEN
+ HOSTLEN
+ HOSTLEN
+ 5];
1210 if(MyOper(client_p
))
1212 rb_snprintf(buffer
, sizeof(buffer
), "%s!%s@%s{%s}",
1213 client_p
->name
, client_p
->username
,
1214 client_p
->host
, client_p
->localClient
->opername
);
1218 rb_snprintf(buffer
, sizeof(buffer
), "%s!%s@%s{%s}",
1219 client_p
->name
, client_p
->username
,
1220 client_p
->host
, client_p
->servptr
->name
);
1225 * get_printable_conf
1227 * inputs - struct ConfItem
1236 * Examine the struct struct ConfItem, setting the values
1237 * of name, host, pass, user to values either
1238 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1241 get_printable_conf(struct ConfItem
*aconf
, char **name
, char **host
,
1242 char **pass
, char **user
, int *port
, char **classname
)
1244 static char null
[] = "<NULL>";
1245 static char zero
[] = "default";
1247 *name
= EmptyString(aconf
->info
.name
) ? null
: aconf
->info
.name
;
1248 *host
= EmptyString(aconf
->host
) ? null
: aconf
->host
;
1249 *pass
= EmptyString(aconf
->passwd
) ? null
: aconf
->passwd
;
1250 *user
= EmptyString(aconf
->user
) ? null
: aconf
->user
;
1251 *classname
= EmptyString(aconf
->className
) ? zero
: aconf
->className
;
1252 *port
= (int) aconf
->port
;
1256 get_user_ban_reason(struct ConfItem
*aconf
)
1258 static char reasonbuf
[BUFSIZE
];
1260 if (aconf
->flags
& CONF_FLAGS_TEMPORARY
&&
1261 (aconf
->status
== CONF_KILL
|| aconf
->status
== CONF_DLINE
))
1262 rb_snprintf(reasonbuf
, sizeof reasonbuf
,
1263 "Temporary %c-line %d min. - ",
1264 aconf
->status
== CONF_DLINE
? 'D' : 'K',
1265 (int)((aconf
->hold
- aconf
->created
) / 60));
1267 reasonbuf
[0] = '\0';
1269 rb_strlcat(reasonbuf
, aconf
->passwd
, sizeof reasonbuf
);
1271 rb_strlcat(reasonbuf
, "No Reason", sizeof reasonbuf
);
1274 rb_strlcat(reasonbuf
, " (", sizeof reasonbuf
);
1275 rb_strlcat(reasonbuf
, smalldate(aconf
->created
),
1277 rb_strlcat(reasonbuf
, ")", sizeof reasonbuf
);
1283 get_printable_kline(struct Client
*source_p
, struct ConfItem
*aconf
,
1284 char **host
, char **reason
,
1285 char **user
, char **oper_reason
)
1287 static char null
[] = "<NULL>";
1288 static char operreasonbuf
[BUFSIZE
];
1290 *host
= EmptyString(aconf
->host
) ? null
: aconf
->host
;
1291 *user
= EmptyString(aconf
->user
) ? null
: aconf
->user
;
1292 *reason
= get_user_ban_reason(aconf
);
1294 if(!IsOper(source_p
))
1295 *oper_reason
= NULL
;
1298 rb_snprintf(operreasonbuf
, sizeof operreasonbuf
, "%s%s(%s)",
1299 EmptyString(aconf
->spasswd
) ? "" : aconf
->spasswd
,
1300 EmptyString(aconf
->spasswd
) ? "" : " ",
1302 *oper_reason
= operreasonbuf
;
1309 * inputs - cold start YES or NO
1311 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1314 read_conf_files(int cold
)
1316 const char *filename
;
1318 conf_fbfile_in
= NULL
;
1320 filename
= ConfigFileEntry
.configfile
;
1322 /* We need to know the initial filename for the yyerror() to report
1323 FIXME: The full path is in conffilenamebuf first time since we
1324 dont know anything else
1328 rb_strlcpy(conffilebuf
, filename
, sizeof(conffilebuf
));
1330 if((conf_fbfile_in
= fopen(filename
, "r")) == NULL
)
1334 ilog(L_MAIN
, "Failed in reading configuration file %s", filename
);
1339 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1340 "Can't open file '%s' - aborting rehash!", filename
);
1347 clear_out_old_conf();
1350 read_conf(conf_fbfile_in
);
1351 fclose(conf_fbfile_in
);
1355 * free an alias{} entry.
1358 free_alias_cb(struct DictionaryElement
*ptr
, void *unused
)
1360 struct alias_entry
*aptr
= ptr
->data
;
1362 rb_free(aptr
->name
);
1363 rb_free(aptr
->target
);
1368 * clear_out_old_conf
1372 * side effects - Clear out the old configuration
1375 clear_out_old_conf(void)
1377 struct Class
*cltmp
;
1379 rb_dlink_node
*next_ptr
;
1382 * don't delete the class table, rather mark all entries
1383 * for deletion. The table is cleaned up by check_class. - avalon
1385 RB_DLINK_FOREACH(ptr
, class_list
.head
)
1388 MaxUsers(cltmp
) = -1;
1391 clear_out_address_conf();
1394 /* clean out module paths */
1395 #ifndef STATIC_MODULES
1397 mod_add_path(MODULE_DIR
);
1398 mod_add_path(MODULE_DIR
"/autoload");
1401 /* clean out ServerInfo */
1402 rb_free(ServerInfo
.description
);
1403 ServerInfo
.description
= NULL
;
1404 rb_free(ServerInfo
.network_name
);
1405 ServerInfo
.network_name
= NULL
;
1406 rb_free(ServerInfo
.network_desc
);
1407 ServerInfo
.network_desc
= NULL
;
1409 ServerInfo
.ssld_count
= 1;
1411 /* clean out AdminInfo */
1412 rb_free(AdminInfo
.name
);
1413 AdminInfo
.name
= NULL
;
1414 rb_free(AdminInfo
.email
);
1415 AdminInfo
.email
= NULL
;
1416 rb_free(AdminInfo
.description
);
1417 AdminInfo
.description
= NULL
;
1419 /* operator{} and class{} blocks are freed above */
1420 /* clean out listeners */
1423 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1424 * and gecos{} blocks are freed above too
1427 /* clean out general */
1428 rb_free(ConfigFileEntry
.kline_reason
);
1429 ConfigFileEntry
.kline_reason
= NULL
;
1431 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, service_list
.head
)
1434 rb_dlinkDestroy(ptr
, &service_list
);
1437 /* remove any aliases... -- nenolod */
1438 if (alias_dict
!= NULL
)
1440 irc_dictionary_destroy(alias_dict
, free_alias_cb
, NULL
);
1444 destroy_blacklists();
1446 privilegeset_mark_all_illegal();
1448 /* OK, that should be everything... */
1453 * conf_add_class_to_conf
1454 * inputs - pointer to config item
1456 * side effects - Add a class pointer to a conf
1460 conf_add_class_to_conf(struct ConfItem
*aconf
)
1462 if(aconf
->className
== NULL
)
1464 aconf
->className
= rb_strdup("default");
1465 ClassPtr(aconf
) = default_class
;
1469 ClassPtr(aconf
) = find_class(aconf
->className
);
1471 if(ClassPtr(aconf
) == default_class
)
1473 if(aconf
->status
== CONF_CLIENT
)
1476 "Using default class for missing class \"%s\" in auth{} for %s@%s",
1477 aconf
->className
, aconf
->user
, aconf
->host
);
1480 rb_free(aconf
->className
);
1481 aconf
->className
= rb_strdup("default");
1485 if(ConfMaxUsers(aconf
) < 0)
1487 ClassPtr(aconf
) = default_class
;
1488 rb_free(aconf
->className
);
1489 aconf
->className
= rb_strdup("default");
1496 * inputs - pointer to config item
1498 * side effects - Add a d/D line
1501 conf_add_d_conf(struct ConfItem
*aconf
)
1503 if(aconf
->host
== NULL
)
1508 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1509 * need this anyway, so I will disable it for now... -A1kmm
1512 if(parse_netmask(aconf
->host
, NULL
, NULL
) == HM_HOST
)
1514 ilog(L_MAIN
, "Invalid Dline %s ignored", aconf
->host
);
1519 add_conf_by_address(aconf
->host
, CONF_DLINE
, NULL
, NULL
, aconf
);
1524 strip_tabs(char *dest
, const char *src
, size_t len
)
1528 if(dest
== NULL
|| src
== NULL
)
1531 rb_strlcpy(dest
, src
, len
);
1545 * inputs - message from parser
1547 * side effects - message to opers and log file entry is made
1550 yyerror(const char *msg
)
1552 char newlinebuf
[BUFSIZE
];
1554 strip_tabs(newlinebuf
, linebuf
, strlen(linebuf
));
1556 ierror("\"%s\", line %d: %s at '%s'", conffilebuf
, lineno
+ 1, msg
, newlinebuf
);
1557 sendto_realops_snomask(SNO_GENERAL
, L_ALL
, "\"%s\", line %d: %s at '%s'",
1558 conffilebuf
, lineno
+ 1, msg
, newlinebuf
);
1563 conf_fgets(char *lbuf
, int max_size
, FILE * fb
)
1567 if((buff
= fgets(lbuf
, max_size
, fb
)) == NULL
)
1570 return (strlen(lbuf
));
1574 conf_yy_fatal_error(const char *msg
)