]> jfr.im git - solanum.git/blob - ircd/s_conf.c
projects / solanum.git / blob
? search:


572804d312068c4274d79d534bc24ed66c1b977d
[solanum.git] / ircd / s_conf.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 */
24
25 #include "stdinc.h"
26 #include "ircd_defs.h"
27 #include "s_conf.h"
28 #include "s_user.h"
29 #include "s_newconf.h"
30 #include "newconf.h"
31 #include "s_serv.h"
32 #include "s_stats.h"
33 #include "channel.h"
34 #include "class.h"
35 #include "client.h"
36 #include "hash.h"
37 #include "match.h"
38 #include "ircd.h"
39 #include "listener.h"
40 #include "hostmask.h"
41 #include "modules.h"
42 #include "numeric.h"
43 #include "logger.h"
44 #include "send.h"
45 #include "reject.h"
46 #include "cache.h"
47 #include "privilege.h"
48 #include "sslproc.h"
49 #include "wsproc.h"
50 #include "bandbi.h"
51 #include "operhash.h"
52 #include "chmode.h"
53 #include "hook.h"
54 #include "s_assert.h"
55 #include "authproc.h"
56 #include "supported.h"
57
58 struct config_server_hide ConfigServerHide;
59
60 extern int yyparse(void); /* defined in y.tab.c */
61 extern char yy_linebuf[16384]; /* defined in ircd_lexer.l */
62
63 static rb_bh *confitem_heap = NULL;
64
65 rb_dlink_list temp_klines[LAST_TEMP_TYPE];
66 rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
67 rb_dlink_list service_list;
68
69 rb_dictionary *prop_bans_dict;
70
71 /* internally defined functions */
72 static void set_default_conf(void);
73 static void validate_conf(void);
74 static void read_conf(void);
75 static void clear_out_old_conf(void);
76
77 static void expire_prop_bans(void *);
78 static void expire_temp_kd(void *list);
79 static void reorganise_temp_kd(void *list);
80
81 static int cmp_prop_ban(const void *, const void *);
82
83 FILE *conf_fbfile_in;
84 extern char yytext[];
85
86 static int verify_access(struct Client *client_p, const char *username);
87 static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
88 static int attach_iline(struct Client *, struct ConfItem *);
89
90 void
91 init_s_conf(void)
92 {
93 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
94 prop_bans_dict = rb_dictionary_create("prop_bans", cmp_prop_ban);
95
96 rb_event_addish("expire_prop_bans", expire_prop_bans, NULL, 60);
97
98 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
99 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
100
101 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
102 &temp_klines[TEMP_HOUR], 3600);
103 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
104 &temp_dlines[TEMP_HOUR], 3600);
105 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
106 &temp_klines[TEMP_DAY], 86400);
107 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
108 &temp_dlines[TEMP_DAY], 86400);
109 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
110 &temp_klines[TEMP_WEEK], 604800);
111 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
112 &temp_dlines[TEMP_WEEK], 604800);
113 }
114
115 /*
116 * make_conf
117 *
118 * inputs - none
119 * output - pointer to new conf entry
120 * side effects - none
121 */
122 struct ConfItem *
123 make_conf()
124 {
125 struct ConfItem *aconf;
126
127 aconf = rb_bh_alloc(confitem_heap);
128 aconf->status = CONF_ILLEGAL;
129 return (aconf);
130 }
131
132 /*
133 * free_conf
134 *
135 * inputs - pointer to conf to free
136 * output - none
137 * side effects - crucial password fields are zeroed, conf is freed
138 */
139 void
140 free_conf(struct ConfItem *aconf)
141 {
142 s_assert(aconf != NULL);
143 if(aconf == NULL)
144 return;
145
146 /* security.. */
147 if(aconf->passwd)
148 memset(aconf->passwd, 0, strlen(aconf->passwd));
149 if(aconf->spasswd)
150 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
151
152 rb_free(aconf->passwd);
153 rb_free(aconf->spasswd);
154 rb_free(aconf->className);
155 rb_free(aconf->user);
156 rb_free(aconf->host);
157
158 if(IsConfBan(aconf))
159 operhash_delete(aconf->info.oper);
160 else
161 rb_free(aconf->info.name);
162
163 rb_bh_free(confitem_heap, aconf);
164 }
165
166 /*
167 * check_client
168 *
169 * inputs - pointer to client
170 * output - 0 = Success
171 * NOT_AUTHORISED (-1) = Access denied (no I line match)
172 * I_SOCKET_ERROR (-2) = Bad socket.
173 * I_LINE_FULL (-3) = I-line is full
174 * TOO_MANY (-4) = Too many connections from hostname
175 * BANNED_CLIENT (-5) = K-lined
176 * side effects - Ordinary client access check.
177 * Look for conf lines which have the same
178 * status as the flags passed.
179 */
180 int
181 check_client(struct Client *client_p, struct Client *source_p, const char *username)
182 {
183 int i;
184
185 if((i = verify_access(source_p, username)))
186 {
187 ilog(L_FUSER, "Access denied: %s[%s]",
188 source_p->name, source_p->sockhost);
189 }
190
191 switch (i)
192 {
193 case I_SOCKET_ERROR:
194 exit_client(client_p, source_p, &me, "Socket Error");
195 break;
196
197 case TOO_MANY_LOCAL:
198 /* Note that these notices are sent to opers on other
199 * servers also, so even if local opers are allowed to
200 * see the IP, we still cannot send it.
201 */
202 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
203 "Too many local connections for %s!%s%s@%s",
204 source_p->name, IsGotId(source_p) ? "" : "~",
205 source_p->username,
206 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
207
208 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
209 source_p->name, IsGotId(source_p) ? "" : "~",
210 source_p->username, source_p->sockhost);
211
212 ServerStats.is_ref++;
213 exit_client(client_p, source_p, &me, "Too many host connections (local)");
214 break;
215
216 case TOO_MANY_GLOBAL:
217 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
218 "Too many global connections for %s!%s%s@%s",
219 source_p->name, IsGotId(source_p) ? "" : "~",
220 source_p->username,
221 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
222 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
223 source_p->name, IsGotId(source_p) ? "" : "~",
224 source_p->username, source_p->sockhost);
225
226 ServerStats.is_ref++;
227 exit_client(client_p, source_p, &me, "Too many host connections (global)");
228 break;
229
230 case TOO_MANY_IDENT:
231 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
232 "Too many user connections for %s!%s%s@%s",
233 source_p->name, IsGotId(source_p) ? "" : "~",
234 source_p->username,
235 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
236 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
237 source_p->name, IsGotId(source_p) ? "" : "~",
238 source_p->username, source_p->sockhost);
239
240 ServerStats.is_ref++;
241 exit_client(client_p, source_p, &me, "Too many user connections (global)");
242 break;
243
244 case I_LINE_FULL:
245 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
246 "I-line is full for %s!%s%s@%s (%s).",
247 source_p->name, IsGotId(source_p) ? "" : "~",
248 source_p->username, source_p->host,
249 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
250
251 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
252 source_p->name, IsGotId(source_p) ? "" : "~",
253 source_p->username, source_p->sockhost);
254
255 ServerStats.is_ref++;
256 exit_client(client_p, source_p, &me,
257 "No more connections allowed in your connection class");
258 break;
259
260 case NOT_AUTHORISED:
261 {
262 int port = -1;
263 port = ntohs(GET_SS_PORT(&source_p->localClient->listener->addr[0]));
264
265 ServerStats.is_ref++;
266 /* jdc - lists server name & port connections are on */
267 /* a purely cosmetical change */
268 /* why ipaddr, and not just source_p->sockhost? --fl */
269 #if 0
270 static char ipaddr[HOSTIPLEN];
271 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
272 #endif
273 sendto_realops_snomask(SNO_UNAUTH, L_NETWIDE,
274 "Unauthorised client connection from "
275 "%s!%s%s@%s [%s] on [%s/%u].",
276 source_p->name, IsGotId(source_p) ? "" : "~",
277 source_p->username, source_p->host,
278 source_p->sockhost,
279 source_p->localClient->listener->name, port);
280
281 ilog(L_FUSER,
282 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
283 source_p->name, IsGotId(source_p) ? "" : "~",
284 source_p->username, source_p->sockhost,
285 source_p->localClient->listener->name, port);
286 add_reject(client_p, NULL, NULL, NULL, "You are not authorised to use this server.");
287 exit_client(client_p, source_p, &me, "You are not authorised to use this server.");
288 break;
289 }
290 case BANNED_CLIENT:
291 exit_client(client_p, client_p, &me, "*** Banned ");
292 ServerStats.is_ref++;
293 break;
294
295 case 0:
296 default:
297 break;
298 }
299 return (i);
300 }
301
302 /*
303 * verify_access
304 *
305 * inputs - pointer to client to verify
306 * - pointer to proposed username
307 * output - 0 if success -'ve if not
308 * side effect - find the first (best) I line to attach.
309 */
310 static int
311 verify_access(struct Client *client_p, const char *username)
312 {
313 struct ConfItem *aconf;
314
315 aconf = find_address_conf_by_client(client_p, username);
316 if(aconf == NULL)
317 return NOT_AUTHORISED;
318
319 if(aconf->status & CONF_CLIENT)
320 {
321 if(aconf->flags & CONF_FLAGS_REDIR)
322 {
323 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
324 aconf->info.name ? aconf->info.name : "", aconf->port);
325 return (NOT_AUTHORISED);
326 }
327
328 /* Thanks for spoof idea amm */
329 if(IsConfDoSpoofIp(aconf))
330 {
331 char *p;
332
333 /* show_ip() depends on this --fl */
334 SetIPSpoof(client_p);
335
336 if(IsConfSpoofNotice(aconf))
337 {
338 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
339 "%s spoofing: %s as %s",
340 client_p->name,
341 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
342 aconf->info.name);
343 }
344
345 /* user@host spoof */
346 if((p = strchr(aconf->info.name, '@')) != NULL)
347 {
348 char *host = p+1;
349 *p = '\0';
350
351 rb_strlcpy(client_p->username, aconf->info.name,
352 sizeof(client_p->username));
353 rb_strlcpy(client_p->host, host,
354 sizeof(client_p->host));
355 *p = '@';
356 }
357 else
358 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
359 }
360 return (attach_iline(client_p, aconf));
361 }
362 else if(aconf->status & CONF_KILL)
363 {
364 if(ConfigFileEntry.kline_with_reason)
365 sendto_one(client_p,
366 form_str(ERR_YOUREBANNEDCREEP),
367 me.name, client_p->name,
368 get_user_ban_reason(aconf));
369
370 sendto_realops_snomask(SNO_BANNED, L_NETWIDE,
371 "Rejecting K-Lined user %s [%s@%s]",
372 get_client_name(client_p, HIDE_IP), aconf->user, aconf->host);
373 add_reject(client_p, aconf->user, aconf->host, aconf, NULL);
374 return (BANNED_CLIENT);
375 }
376
377 return NOT_AUTHORISED;
378 }
379
380
381 /*
382 * find_address_conf_by_client
383 */
384 static struct ConfItem *
385 find_address_conf_by_client(struct Client *client_p, const char *username)
386 {
387 struct ConfItem *aconf;
388 char non_ident[USERLEN + 1];
389
390 if(IsGotId(client_p))
391 {
392 aconf = find_address_conf(client_p->host, client_p->sockhost,
393 client_p->username, client_p->username,
394 (struct sockaddr *) &client_p->localClient->ip,
395 GET_SS_FAMILY(&client_p->localClient->ip),
396 client_p->localClient->auth_user);
397 }
398 else
399 {
400 rb_strlcpy(non_ident, "~", sizeof(non_ident));
401 rb_strlcat(non_ident, username, sizeof(non_ident));
402 aconf = find_address_conf(client_p->host, client_p->sockhost,
403 non_ident, client_p->username,
404 (struct sockaddr *) &client_p->localClient->ip,
405 GET_SS_FAMILY(&client_p->localClient->ip),
406 client_p->localClient->auth_user);
407 }
408 return aconf;
409 }
410
411
412 /*
413 * add_ip_limit
414 *
415 * Returns 1 if successful 0 if not
416 *
417 * This checks if the user has exceed the limits for their class
418 * unless of course they are exempt..
419 */
420
421 static int
422 add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
423 {
424 rb_patricia_node_t *pnode;
425 int bitlen;
426
427 /* If the limits are 0 don't do anything.. */
428 if(ConfCidrAmount(aconf) == 0
429 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
430 return -1;
431
432 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
433
434 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
435 bitlen = ConfCidrIpv4Bitlen(aconf);
436 else
437 bitlen = ConfCidrIpv6Bitlen(aconf);
438
439 if(pnode == NULL)
440 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
441
442 s_assert(pnode != NULL);
443
444 if(pnode != NULL)
445 {
446 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
447 {
448 /* This should only happen if the limits are set to 0 */
449 if((intptr_t)pnode->data == 0)
450 {
451 rb_patricia_remove(ConfIpLimits(aconf), pnode);
452 }
453 return (0);
454 }
455
456 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
457 }
458 return 1;
459 }
460
461 static void
462 remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
463 {
464 rb_patricia_node_t *pnode;
465
466 /* If the limits are 0 don't do anything.. */
467 if(ConfCidrAmount(aconf) == 0
468 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
469 return;
470
471 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
472 if(pnode == NULL)
473 return;
474
475 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
476 if(((intptr_t)pnode->data) == 0)
477 {
478 rb_patricia_remove(ConfIpLimits(aconf), pnode);
479 }
480
481 }
482
483 /*
484 * attach_iline
485 *
486 * inputs - client pointer
487 * - conf pointer
488 * output -
489 * side effects - do actual attach
490 */
491 static int
492 attach_iline(struct Client *client_p, struct ConfItem *aconf)
493 {
494 struct Client *target_p;
495 rb_dlink_node *ptr;
496 int local_count = 0;
497 int global_count = 0;
498 int ident_count = 0;
499 int unidented;
500
501 if(IsConfExemptLimits(aconf))
502 return (attach_conf(client_p, aconf));
503
504 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
505 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
506
507 /* find_hostname() returns the head of the list to search */
508 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
509 {
510 target_p = ptr->data;
511
512 if(irccmp(client_p->host, target_p->orighost) != 0)
513 continue;
514
515 if(MyConnect(target_p))
516 local_count++;
517
518 global_count++;
519
520 if(unidented)
521 {
522 if(*target_p->username == '~')
523 ident_count++;
524 }
525 else if(irccmp(target_p->username, client_p->username) == 0)
526 ident_count++;
527
528 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
529 return (TOO_MANY_LOCAL);
530 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
531 return (TOO_MANY_GLOBAL);
532 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
533 return (TOO_MANY_IDENT);
534 }
535
536
537 return (attach_conf(client_p, aconf));
538 }
539
540 /*
541 * deref_conf
542 *
543 * inputs - ConfItem that is referenced by something other than a client
544 * side effects - Decrement and free ConfItem if appropriate
545 */
546 void
547 deref_conf(struct ConfItem *aconf)
548 {
549 aconf->clients--;
550 if(!aconf->clients && IsIllegal(aconf) && !lookup_prop_ban(aconf))
551 free_conf(aconf);
552 }
553
554 /*
555 * detach_conf
556 *
557 * inputs - pointer to client to detach
558 * output - 0 for success, -1 for failure
559 * side effects - Disassociate configuration from the client.
560 * Also removes a class from the list if marked for deleting.
561 */
562 int
563 detach_conf(struct Client *client_p)
564 {
565 struct ConfItem *aconf;
566
567 aconf = client_p->localClient->att_conf;
568
569 if(aconf != NULL)
570 {
571 if(ClassPtr(aconf))
572 {
573 remove_ip_limit(client_p, aconf);
574
575 if(ConfCurrUsers(aconf) > 0)
576 --ConfCurrUsers(aconf);
577
578 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
579 {
580 free_class(ClassPtr(aconf));
581 ClassPtr(aconf) = NULL;
582 }
583
584 }
585
586 aconf->clients--;
587 if(!aconf->clients && IsIllegal(aconf))
588 free_conf(aconf);
589
590 client_p->localClient->att_conf = NULL;
591 return 0;
592 }
593
594 return -1;
595 }
596
597 /*
598 * attach_conf
599 *
600 * inputs - client pointer
601 * - conf pointer
602 * output -
603 * side effects - Associate a specific configuration entry to a *local*
604 * client (this is the one which used in accepting the
605 * connection). Note, that this automatically changes the
606 * attachment if there was an old one...
607 */
608 int
609 attach_conf(struct Client *client_p, struct ConfItem *aconf)
610 {
611 if(IsIllegal(aconf))
612 return (NOT_AUTHORISED);
613
614 if(s_assert(ClassPtr(aconf)))
615 return (NOT_AUTHORISED);
616
617 if(!add_ip_limit(client_p, aconf))
618 return (TOO_MANY_LOCAL);
619
620 if((aconf->status & CONF_CLIENT) &&
621 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
622 {
623 if(!IsConfExemptLimits(aconf))
624 {
625 return (I_LINE_FULL);
626 }
627 else
628 {
629 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
630 }
631
632 }
633
634 if(client_p->localClient->att_conf != NULL)
635 detach_conf(client_p);
636
637 client_p->localClient->att_conf = aconf;
638
639 aconf->clients++;
640 ConfCurrUsers(aconf)++;
641 return (0);
642 }
643
644 /*
645 * rehash
646 *
647 * Actual REHASH service routine. Called with sig == 0 if it has been called
648 * as a result of an operator issuing this command, else assume it has been
649 * called as a result of the server receiving a HUP signal.
650 */
651 bool
652 rehash(bool sig)
653 {
654 rb_dlink_node *n;
655
656 hook_data_rehash hdata = { sig };
657
658 if(sig)
659 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
660 "Got signal SIGHUP, reloading ircd conf. file");
661
662 rehash_authd();
663
664 privilegeset_prepare_rehash();
665
666 /* don't close listeners until we know we can go ahead with the rehash */
667 read_conf_files(false);
668
669 if(ServerInfo.description != NULL)
670 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
671 else
672 rb_strlcpy(me.info, "unknown", sizeof(me.info));
673
674 open_logfiles();
675
676 RB_DLINK_FOREACH(n, local_oper_list.head)
677 {
678 struct Client *oper = n->data;
679 struct PrivilegeSet *privset = oper->user->privset;
680 report_priv_change(oper, privset ? privset->shadow : NULL, privset);
681 }
682
683 privilegeset_cleanup_rehash();
684
685 call_hook(h_rehash, &hdata);
686 return false;
687 }
688
689 void
690 rehash_bans(void)
691 {
692 bandb_rehash_bans();
693 }
694
695 /*
696 * set_default_conf()
697 *
698 * inputs - NONE
699 * output - NONE
700 * side effects - Set default values here.
701 * This is called **PRIOR** to parsing the
702 * configuration file. If you want to do some validation
703 * of values later, put them in validate_conf().
704 */
705
706 static void
707 set_default_conf(void)
708 {
709 /* ServerInfo.name is not rehashable */
710 /* ServerInfo.name = ServerInfo.name; */
711 ServerInfo.description = NULL;
712 ServerInfo.network_name = NULL;
713
714 memset(&ServerInfo.bind4, 0, sizeof(ServerInfo.bind4));
715 SET_SS_FAMILY(&ServerInfo.bind4, AF_UNSPEC);
716 memset(&ServerInfo.bind6, 0, sizeof(ServerInfo.bind6));
717 SET_SS_FAMILY(&ServerInfo.bind6, AF_UNSPEC);
718
719 AdminInfo.name = NULL;
720 AdminInfo.email = NULL;
721 AdminInfo.description = NULL;
722
723 ConfigFileEntry.default_operstring = NULL;
724 ConfigFileEntry.default_adminstring = NULL;
725 ConfigFileEntry.servicestring = NULL;
726 ConfigFileEntry.sasl_service = NULL;
727
728 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
729 ConfigFileEntry.failed_oper_notice = true;
730 ConfigFileEntry.anti_nick_flood = false;
731 ConfigFileEntry.disable_fake_channels = false;
732 ConfigFileEntry.max_nick_time = 20;
733 ConfigFileEntry.max_nick_changes = 5;
734 ConfigFileEntry.max_accept = 20;
735 ConfigFileEntry.max_monitor = 60;
736 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
737 ConfigFileEntry.target_change = true;
738 ConfigFileEntry.anti_spam_exit_message_time = 0;
739 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
740 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
741 ConfigFileEntry.client_exit = true;
742 ConfigFileEntry.dline_with_reason = true;
743 ConfigFileEntry.kline_with_reason = true;
744 ConfigFileEntry.warn_no_nline = true;
745 ConfigFileEntry.non_redundant_klines = true;
746 ConfigFileEntry.stats_e_disabled = false;
747 ConfigFileEntry.stats_o_oper_only = false;
748 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
749 ConfigFileEntry.stats_l_oper_only = 1; /* self */
750 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
751 ConfigFileEntry.stats_P_oper_only = false;
752 ConfigFileEntry.stats_c_oper_only = false;
753 ConfigFileEntry.stats_y_oper_only = false;
754 ConfigFileEntry.map_oper_only = true;
755 ConfigFileEntry.operspy_admin_only = false;
756 ConfigFileEntry.pace_wait = 10;
757 ConfigFileEntry.caller_id_wait = 60;
758 ConfigFileEntry.pace_wait_simple = 1;
759 ConfigFileEntry.short_motd = false;
760 ConfigFileEntry.no_oper_flood = false;
761 ConfigFileEntry.fname_userlog = NULL;
762 ConfigFileEntry.fname_fuserlog = NULL;
763 ConfigFileEntry.fname_operlog = NULL;
764 ConfigFileEntry.fname_foperlog = NULL;
765 ConfigFileEntry.fname_serverlog = NULL;
766 ConfigFileEntry.fname_killlog = NULL;
767 ConfigFileEntry.fname_klinelog = NULL;
768 ConfigFileEntry.fname_operspylog = NULL;
769 ConfigFileEntry.fname_ioerrorlog = NULL;
770 ConfigFileEntry.hide_spoof_ips = true;
771 ConfigFileEntry.hide_error_messages = 1;
772 ConfigFileEntry.dots_in_ident = 0;
773 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
774 ConfigFileEntry.use_whois_actually = true;
775 ConfigFileEntry.burst_away = false;
776 ConfigFileEntry.collision_fnc = true;
777 ConfigFileEntry.resv_fnc = true;
778 ConfigFileEntry.global_snotices = true;
779 ConfigFileEntry.operspy_dont_care_user_info = false;
780 ConfigFileEntry.use_propagated_bans = true;
781 ConfigFileEntry.max_ratelimit_tokens = 30;
782 ConfigFileEntry.away_interval = 30;
783 ConfigFileEntry.tls_ciphers_oper_only = false;
784 ConfigFileEntry.oper_secure_only = false;
785
786 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
787 UMODE_OPERWALL | UMODE_WALLOP;
788 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
789 ConfigFileEntry.oper_snomask = SNO_GENERAL;
790
791 ConfigChannel.use_except = true;
792 ConfigChannel.use_invex = true;
793 ConfigChannel.use_forward = true;
794 ConfigChannel.use_knock = true;
795 ConfigChannel.knock_delay = 300;
796 ConfigChannel.knock_delay_channel = 60;
797 ConfigChannel.max_chans_per_user = 15;
798 ConfigChannel.max_chans_per_user_large = 60;
799 ConfigChannel.max_bans = 25;
800 ConfigChannel.max_bans_large = 500;
801 ConfigChannel.only_ascii_channels = false;
802 ConfigChannel.burst_topicwho = false;
803 ConfigChannel.kick_on_split_riding = false;
804
805 ConfigChannel.default_split_user_count = 15000;
806 ConfigChannel.default_split_server_count = 10;
807 ConfigChannel.no_join_on_split = false;
808 ConfigChannel.no_create_on_split = true;
809 ConfigChannel.resv_forcepart = true;
810 ConfigChannel.channel_target_change = true;
811 ConfigChannel.disable_local_channels = false;
812 ConfigChannel.displayed_usercount = 3;
813 ConfigChannel.opmod_send_statusmsg = false;
814 ConfigChannel.ip_bans_through_vhost= true;
815
816 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
817
818 ConfigServerHide.flatten_links = 0;
819 ConfigServerHide.links_delay = 300;
820 ConfigServerHide.hidden = 0;
821 ConfigServerHide.disable_hidden = 0;
822
823 ConfigFileEntry.min_nonwildcard = 4;
824 ConfigFileEntry.min_nonwildcard_simple = 3;
825 ConfigFileEntry.default_floodcount = 8;
826 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
827 ConfigFileEntry.tkline_expire_notices = 0;
828
829 ConfigFileEntry.reject_after_count = 5;
830 ConfigFileEntry.reject_ban_time = 300;
831 ConfigFileEntry.reject_duration = 120;
832 ConfigFileEntry.throttle_count = 4;
833 ConfigFileEntry.throttle_duration = 60;
834
835 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
836 ConfigFileEntry.client_flood_burst_rate = 5;
837 ConfigFileEntry.client_flood_burst_max = 5;
838 ConfigFileEntry.client_flood_message_time = 1;
839 ConfigFileEntry.client_flood_message_num = 2;
840
841 ServerInfo.default_max_clients = MAXCONNECTIONS;
842
843 ConfigFileEntry.nicklen = NICKLEN;
844 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_CERT_SHA1;
845 ConfigFileEntry.hide_opers_in_whois = 0;
846 ConfigFileEntry.hide_opers = 0;
847
848 if (!alias_dict)
849 alias_dict = rb_dictionary_create("alias", rb_strcasecmp);
850 }
851
852 /*
853 * read_conf()
854 *
855 *
856 * inputs - None
857 * output - None
858 * side effects - Read configuration file.
859 */
860 static void
861 read_conf(void)
862 {
863 lineno = 0;
864
865 set_default_conf(); /* Set default values prior to conf parsing */
866 yyparse(); /* Load the values from the conf */
867 validate_conf(); /* Check to make sure some values are still okay. */
868 /* Some global values are also loaded here. */
869 check_class(); /* Make sure classes are valid */
870 construct_cflags_strings();
871 }
872
873 static void
874 validate_conf(void)
875 {
876 if(ConfigFileEntry.default_ident_timeout < 1)
877 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
878
879 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
880 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
881
882 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
883 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
884
885 if(ServerInfo.network_name == NULL)
886 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
887
888 if(ServerInfo.ssld_count < 1)
889 ServerInfo.ssld_count = 1;
890
891 /* XXX: configurable? */
892 ServerInfo.wsockd_count = 1;
893
894 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
895 {
896 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
897 ircd_ssl_ok = false;
898 } else {
899 ircd_ssl_ok = true;
900 ssld_update_config();
901 }
902
903 if(ServerInfo.ssld_count > get_ssld_count())
904 {
905 int start = ServerInfo.ssld_count - get_ssld_count();
906 /* start up additional ssld if needed */
907 start_ssldaemon(start);
908 }
909
910 if(ServerInfo.wsockd_count > get_wsockd_count())
911 {
912 int start = ServerInfo.wsockd_count - get_wsockd_count();
913 start_wsockd(start);
914 }
915
916 /* General conf */
917 if (ConfigFileEntry.default_operstring == NULL)
918 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
919
920 if (ConfigFileEntry.default_adminstring == NULL)
921 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
922
923 if (ConfigFileEntry.servicestring == NULL)
924 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
925
926 if (ConfigFileEntry.sasl_service == NULL)
927 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
928
929 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
930 * 5 messages are acceptable, so allow at least that.
931 */
932 if(ConfigFileEntry.client_flood_burst_rate < 5)
933 ConfigFileEntry.client_flood_burst_rate = 5;
934 if(ConfigFileEntry.client_flood_burst_max < 5)
935 ConfigFileEntry.client_flood_burst_max = 5;
936 if(ConfigFileEntry.client_flood_message_time >
937 ConfigFileEntry.client_flood_message_num * 2)
938 ConfigFileEntry.client_flood_message_time =
939 ConfigFileEntry.client_flood_message_num * 2;
940
941 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
942 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
943 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
944
945 if(!split_users || !split_servers ||
946 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
947 {
948 rb_event_delete(check_splitmode_ev);
949 check_splitmode_ev = NULL;
950 splitmode = 0;
951 splitchecking = 0;
952 }
953
954 CharAttrs['&'] |= CHANPFX_C;
955 if (ConfigChannel.disable_local_channels)
956 CharAttrs['&'] &= ~CHANPFX_C;
957
958 chantypes_update();
959 }
960
961 /* add_temp_kline()
962 *
963 * inputs - pointer to struct ConfItem
964 * output - none
965 * Side effects - links in given struct ConfItem into
966 * temporary kline link list
967 */
968 void
969 add_temp_kline(struct ConfItem *aconf)
970 {
971 if(aconf->hold >= rb_current_time() + (10080 * 60))
972 {
973 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
974 aconf->port = TEMP_WEEK;
975 }
976 else if(aconf->hold >= rb_current_time() + (1440 * 60))
977 {
978 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
979 aconf->port = TEMP_DAY;
980 }
981 else if(aconf->hold >= rb_current_time() + (60 * 60))
982 {
983 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
984 aconf->port = TEMP_HOUR;
985 }
986 else
987 {
988 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
989 aconf->port = TEMP_MIN;
990 }
991
992 aconf->flags |= CONF_FLAGS_TEMPORARY;
993 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
994 }
995
996 /* add_temp_dline()
997 *
998 * input - pointer to struct ConfItem
999 * output - none
1000 * side effects - added to tdline link list and address hash
1001 */
1002 void
1003 add_temp_dline(struct ConfItem *aconf)
1004 {
1005 if(aconf->hold >= rb_current_time() + (10080 * 60))
1006 {
1007 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
1008 aconf->port = TEMP_WEEK;
1009 }
1010 else if(aconf->hold >= rb_current_time() + (1440 * 60))
1011 {
1012 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
1013 aconf->port = TEMP_DAY;
1014 }
1015 else if(aconf->hold >= rb_current_time() + (60 * 60))
1016 {
1017 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
1018 aconf->port = TEMP_HOUR;
1019 }
1020 else
1021 {
1022 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
1023 aconf->port = TEMP_MIN;
1024 }
1025
1026 aconf->flags |= CONF_FLAGS_TEMPORARY;
1027 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
1028 }
1029
1030 /* valid_wild_card()
1031 *
1032 * input - user buffer, host buffer
1033 * output - 0 if invalid, 1 if valid
1034 * side effects -
1035 */
1036 int
1037 valid_wild_card(const char *luser, const char *lhost)
1038 {
1039 const char *p;
1040 char tmpch;
1041 int nonwild = 0;
1042 int bitlen;
1043
1044 /* user has no wildcards, always accept -- jilles */
1045 if(!strchr(luser, '?') && !strchr(luser, '*'))
1046 return 1;
1047
1048 /* check there are enough non wildcard chars */
1049 p = luser;
1050 while((tmpch = *p++))
1051 {
1052 if(!IsKWildChar(tmpch))
1053 {
1054 /* found enough chars, return */
1055 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1056 return 1;
1057 }
1058 }
1059
1060 /* try host, as user didnt contain enough */
1061 /* special case for cidr masks -- jilles */
1062 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1063 {
1064 bitlen = atoi(p + 1);
1065 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1066 if(bitlen > 0
1067 && bitlen >=
1068 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1069 2 * nonwild))
1070 return 1;
1071 }
1072 else
1073 {
1074 p = lhost;
1075 while((tmpch = *p++))
1076 {
1077 if(!IsKWildChar(tmpch))
1078 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1079 return 1;
1080 }
1081 }
1082
1083 return 0;
1084 }
1085
1086
1087 int cmp_prop_ban(const void *a_, const void *b_)
1088 {
1089 const struct ConfItem *a = a_, *b = b_;
1090 int r;
1091
1092 if ((a->status & ~CONF_ILLEGAL) > (int)(b->status & ~CONF_ILLEGAL)) return 1;
1093 if ((a->status & ~CONF_ILLEGAL) < (int)(b->status & ~CONF_ILLEGAL)) return -1;
1094
1095 r = irccmp(a->host, b->host);
1096 if (r) return r;
1097
1098 if (a->user && b->user)
1099 return irccmp(a->user, b->user);
1100
1101 return 0;
1102 }
1103
1104 void
1105 add_prop_ban(struct ConfItem *aconf)
1106 {
1107 rb_dictionary_add(prop_bans_dict, aconf, aconf);
1108 }
1109
1110 struct ConfItem *
1111 find_prop_ban(unsigned status, const char *user, const char *host)
1112 {
1113 struct ConfItem key = {.status = status, .user = (char *)user, .host = (char *)host};
1114 return rb_dictionary_retrieve(prop_bans_dict, &key);
1115 }
1116
1117 void
1118 remove_prop_ban(struct ConfItem *aconf)
1119 {
1120 rb_dictionary_delete(prop_bans_dict, aconf);
1121 }
1122
1123 bool lookup_prop_ban(struct ConfItem *aconf)
1124 {
1125 return rb_dictionary_retrieve(prop_bans_dict, aconf) == aconf;
1126 }
1127
1128 void
1129 deactivate_conf(struct ConfItem *aconf, time_t now)
1130 {
1131 int i;
1132
1133 switch (aconf->status)
1134 {
1135 case CONF_KILL:
1136 if (aconf->lifetime == 0 &&
1137 aconf->flags & CONF_FLAGS_TEMPORARY)
1138 for (i = 0; i < LAST_TEMP_TYPE; i++)
1139 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1140 /* Make sure delete_one_address_conf() does not
1141 * free the aconf.
1142 */
1143 aconf->clients++;
1144 delete_one_address_conf(aconf->host, aconf);
1145 aconf->clients--;
1146 break;
1147 case CONF_DLINE:
1148 if (aconf->lifetime == 0 &&
1149 aconf->flags & CONF_FLAGS_TEMPORARY)
1150 for (i = 0; i < LAST_TEMP_TYPE; i++)
1151 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1152 aconf->clients++;
1153 delete_one_address_conf(aconf->host, aconf);
1154 aconf->clients--;
1155 break;
1156 case CONF_XLINE:
1157 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1158 break;
1159 case CONF_RESV_NICK:
1160 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1161 break;
1162 case CONF_RESV_CHANNEL:
1163 del_from_resv_hash(aconf->host, aconf);
1164 break;
1165 }
1166 if (aconf->lifetime != 0 && now < aconf->lifetime)
1167 {
1168 aconf->status |= CONF_ILLEGAL;
1169 }
1170 else
1171 {
1172 if (aconf->lifetime != 0)
1173 remove_prop_ban(aconf);
1174 if (aconf->clients == 0)
1175 free_conf(aconf);
1176 else
1177 aconf->status |= CONF_ILLEGAL;
1178 }
1179 }
1180
1181 /* Given a new ban ConfItem, look for any matching ban, update the lifetime
1182 * from it and delete it.
1183 */
1184 void
1185 replace_old_ban(struct ConfItem *aconf)
1186 {
1187 struct ConfItem *oldconf;
1188
1189 oldconf = find_prop_ban(aconf->status, aconf->user, aconf->host);
1190 if (oldconf != NULL)
1191 {
1192 /* Remember at least as long as the old one. */
1193 if(oldconf->lifetime > aconf->lifetime)
1194 aconf->lifetime = oldconf->lifetime;
1195 /* Force creation time to increase. */
1196 if(oldconf->created >= aconf->created)
1197 aconf->created = oldconf->created + 1;
1198 /* Leave at least one second of validity. */
1199 if(aconf->hold <= aconf->created)
1200 aconf->hold = aconf->created + 1;
1201 if(aconf->lifetime < aconf->hold)
1202 aconf->lifetime = aconf->hold;
1203 /* Tell deactivate_conf() to destroy it. */
1204 oldconf->lifetime = rb_current_time();
1205 deactivate_conf(oldconf, oldconf->lifetime);
1206 }
1207 }
1208
1209 static void
1210 expire_prop_bans(void *unused)
1211 {
1212 struct ConfItem *aconf;
1213 time_t now;
1214 rb_dictionary_iter state;
1215
1216 now = rb_current_time();
1217
1218 RB_DICTIONARY_FOREACH(aconf, &state, prop_bans_dict)
1219 {
1220 if(aconf->lifetime <= now ||
1221 (aconf->hold <= now &&
1222 !(aconf->status & CONF_ILLEGAL)))
1223 {
1224 /* Alert opers that a TKline expired - Hwy */
1225 /* XXX show what type of ban it is */
1226 if(ConfigFileEntry.tkline_expire_notices &&
1227 !(aconf->status & CONF_ILLEGAL))
1228 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1229 "Propagated ban for [%s%s%s] expired",
1230 aconf->user ? aconf->user : "",
1231 aconf->user ? "@" : "",
1232 aconf->host ? aconf->host : "*");
1233
1234 /* will destroy or mark illegal */
1235 deactivate_conf(aconf, now);
1236 }
1237 }
1238 }
1239
1240 /* expire_tkline()
1241 *
1242 * inputs - list pointer
1243 * - type
1244 * output - NONE
1245 * side effects - expire tklines and moves them between lists
1246 */
1247 static void
1248 expire_temp_kd(void *list)
1249 {
1250 rb_dlink_node *ptr;
1251 rb_dlink_node *next_ptr;
1252 struct ConfItem *aconf;
1253
1254 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1255 {
1256 aconf = ptr->data;
1257
1258 if(aconf->hold <= rb_current_time())
1259 {
1260 /* Alert opers that a TKline expired - Hwy */
1261 if(ConfigFileEntry.tkline_expire_notices)
1262 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1263 "Temporary K-line for [%s@%s] expired",
1264 (aconf->user) ? aconf->
1265 user : "*", (aconf->host) ? aconf->host : "*");
1266
1267 delete_one_address_conf(aconf->host, aconf);
1268 rb_dlinkDestroy(ptr, list);
1269 }
1270 }
1271 }
1272
1273 static void
1274 reorganise_temp_kd(void *list)
1275 {
1276 struct ConfItem *aconf;
1277 rb_dlink_node *ptr, *next_ptr;
1278
1279 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1280 {
1281 aconf = ptr->data;
1282
1283 if(aconf->hold < (rb_current_time() + (60 * 60)))
1284 {
1285 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1286 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1287 aconf->port = TEMP_MIN;
1288 }
1289 else if(aconf->port > TEMP_HOUR)
1290 {
1291 if(aconf->hold < (rb_current_time() + (1440 * 60)))
1292 {
1293 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1294 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1295 aconf->port = TEMP_HOUR;
1296 }
1297 else if(aconf->port > TEMP_DAY &&
1298 (aconf->hold < (rb_current_time() + (10080 * 60))))
1299 {
1300 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1301 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1302 aconf->port = TEMP_DAY;
1303 }
1304 }
1305 }
1306 }
1307
1308
1309 /* const char* get_oper_name(struct Client *client_p)
1310 * Input: A client to find the active oper{} name for.
1311 * Output: The nick!user@host{oper} of the oper.
1312 * "oper" is server name for unknown opers
1313 * Side effects: None.
1314 */
1315 const char *
1316 get_oper_name(struct Client *client_p)
1317 {
1318 /* +5 for !,@,{,} and null */
1319 static char buffer[NAMELEN + USERLEN + HOSTLEN + MAX(HOSTLEN, OPERNICKLEN) + 5];
1320
1321 const char *opername = EmptyString(client_p->user->opername)
1322 ? client_p->servptr->name
1323 : client_p->user->opername;
1324
1325 snprintf(buffer, sizeof buffer, "%s!%s@%s{%s}",
1326 client_p->name, client_p->username,
1327 client_p->host, opername);
1328 return buffer;
1329 }
1330
1331 /*
1332 * get_printable_conf
1333 *
1334 * inputs - struct ConfItem
1335 *
1336 * output - name
1337 * - host
1338 * - pass
1339 * - user
1340 * - port
1341 *
1342 * side effects -
1343 * Examine the struct struct ConfItem, setting the values
1344 * of name, host, pass, user to values either
1345 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1346 */
1347 void
1348 get_printable_conf(struct ConfItem *aconf, char **name, char **host,
1349 const char **pass, char **user, int *port, char **classname)
1350 {
1351 static char null[] = "<NULL>";
1352 static char zero[] = "default";
1353
1354 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
1355 *host = EmptyString(aconf->host) ? null : aconf->host;
1356 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1357 *user = EmptyString(aconf->user) ? null : aconf->user;
1358 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1359 *port = (int) aconf->port;
1360 }
1361
1362 char *
1363 get_user_ban_reason(struct ConfItem *aconf)
1364 {
1365 static char reasonbuf[BUFSIZE];
1366
1367 if (!ConfigFileEntry.hide_tkdline_duration &&
1368 aconf->flags & CONF_FLAGS_TEMPORARY &&
1369 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
1370 snprintf(reasonbuf, sizeof reasonbuf,
1371 "Temporary %c-line %d min. - ",
1372 aconf->status == CONF_DLINE ? 'D' : 'K',
1373 (int)((aconf->hold - aconf->created) / 60));
1374 else
1375 reasonbuf[0] = '\0';
1376 if (aconf->passwd)
1377 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1378 else
1379 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1380 if (aconf->created)
1381 {
1382 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1383 rb_strlcat(reasonbuf, smalldate(aconf->created),
1384 sizeof reasonbuf);
1385 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1386 }
1387 return reasonbuf;
1388 }
1389
1390 void
1391 get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
1392 char **host, char **reason,
1393 char **user, char **oper_reason)
1394 {
1395 static char null[] = "<NULL>";
1396 static char operreasonbuf[BUFSIZE];
1397
1398 *host = EmptyString(aconf->host) ? null : aconf->host;
1399 *user = EmptyString(aconf->user) ? null : aconf->user;
1400 *reason = get_user_ban_reason(aconf);
1401
1402 if(!IsOperGeneral(source_p))
1403 *oper_reason = NULL;
1404 else
1405 {
1406 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
1407 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1408 EmptyString(aconf->spasswd) ? "" : " ",
1409 aconf->info.oper);
1410 *oper_reason = operreasonbuf;
1411 }
1412 }
1413
1414 /*
1415 * read_conf_files
1416 *
1417 * inputs - cold start
1418 * output - none
1419 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1420 */
1421 void
1422 read_conf_files(bool cold)
1423 {
1424 const char *filename;
1425
1426 conf_fbfile_in = NULL;
1427
1428 filename = ConfigFileEntry.configfile;
1429
1430 /* We need to know the initial filename for the yyerror() to report
1431 FIXME: The full path is in conffilenamebuf first time since we
1432 dont know anything else
1433
1434 - Gozem 2002-07-21
1435
1436
1437 */
1438 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
1439
1440 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1441 {
1442 if(cold)
1443 {
1444 inotice("Failed in reading configuration file %s, aborting", filename);
1445 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1446
1447 int e;
1448 e = errno;
1449
1450 inotice("FATAL: %s %s", strerror(e), filename);
1451 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
1452
1453 exit(-1);
1454 }
1455 else
1456 {
1457 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1458 "Can't open file '%s' - aborting rehash!", filename);
1459 return;
1460 }
1461 }
1462
1463 if(!cold)
1464 {
1465 clear_out_old_conf();
1466 }
1467
1468 call_hook(h_conf_read_start, NULL);
1469 read_conf();
1470 call_hook(h_conf_read_end, NULL);
1471
1472 fclose(conf_fbfile_in);
1473 }
1474
1475 /*
1476 * free an alias{} entry.
1477 */
1478 static void
1479 free_alias_cb(rb_dictionary_element *ptr, void *unused)
1480 {
1481 struct alias_entry *aptr = ptr->data;
1482
1483 rb_free(aptr->name);
1484 rb_free(aptr->target);
1485 rb_free(aptr);
1486 }
1487
1488 /*
1489 * clear_out_old_conf
1490 *
1491 * inputs - none
1492 * output - none
1493 * side effects - Clear out the old configuration
1494 */
1495 static void
1496 clear_out_old_conf(void)
1497 {
1498 struct Class *cltmp;
1499 rb_dlink_node *ptr;
1500 rb_dlink_node *next_ptr;
1501
1502 /*
1503 * don't delete the class table, rather mark all entries
1504 * for deletion. The table is cleaned up by check_class. - avalon
1505 */
1506 RB_DLINK_FOREACH(ptr, class_list.head)
1507 {
1508 cltmp = ptr->data;
1509 MaxUsers(cltmp) = -1;
1510 }
1511
1512 clear_out_address_conf(AC_CONFIG);
1513 clear_s_newconf();
1514
1515 /* clean out module paths */
1516 mod_clear_paths();
1517 mod_add_path(MODULE_DIR);
1518 mod_add_path(MODULE_DIR "/autoload");
1519
1520 /* clean out ServerInfo */
1521 rb_free(ServerInfo.description);
1522 ServerInfo.description = NULL;
1523 rb_free(ServerInfo.network_name);
1524 ServerInfo.network_name = NULL;
1525
1526 ServerInfo.ssld_count = 1;
1527
1528 /* clean out AdminInfo */
1529 rb_free(AdminInfo.name);
1530 AdminInfo.name = NULL;
1531 rb_free(AdminInfo.email);
1532 AdminInfo.email = NULL;
1533 rb_free(AdminInfo.description);
1534 AdminInfo.description = NULL;
1535
1536 /* operator{} and class{} blocks are freed above */
1537 /* clean out listeners */
1538 close_listeners();
1539
1540 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1541 * and gecos{} blocks are freed above too
1542 */
1543
1544 /* clean out general */
1545 rb_free(ConfigFileEntry.default_operstring);
1546 ConfigFileEntry.default_operstring = NULL;
1547 rb_free(ConfigFileEntry.default_adminstring);
1548 ConfigFileEntry.default_adminstring = NULL;
1549 rb_free(ConfigFileEntry.servicestring);
1550 ConfigFileEntry.servicestring = NULL;
1551 rb_free(ConfigFileEntry.kline_reason);
1552 ConfigFileEntry.kline_reason = NULL;
1553 rb_free(ConfigFileEntry.sasl_service);
1554 ConfigFileEntry.sasl_service = NULL;
1555 rb_free(ConfigFileEntry.drain_reason);
1556 ConfigFileEntry.drain_reason = NULL;
1557 rb_free(ConfigFileEntry.sasl_only_client_message);
1558 ConfigFileEntry.sasl_only_client_message = NULL;
1559 rb_free(ConfigFileEntry.identd_only_client_message);
1560 ConfigFileEntry.identd_only_client_message = NULL;
1561 rb_free(ConfigFileEntry.sctp_forbidden_client_message);
1562 ConfigFileEntry.sctp_forbidden_client_message = NULL;
1563 rb_free(ConfigFileEntry.ssltls_only_client_message);
1564 ConfigFileEntry.ssltls_only_client_message = NULL;
1565 rb_free(ConfigFileEntry.not_authorised_client_message);
1566 ConfigFileEntry.not_authorised_client_message = NULL;
1567 rb_free(ConfigFileEntry.illegal_hostname_client_message);
1568 ConfigFileEntry.illegal_hostname_client_message = NULL;
1569 rb_free(ConfigFileEntry.server_full_client_message);
1570 ConfigFileEntry.server_full_client_message = NULL;
1571 rb_free(ConfigFileEntry.illegal_name_long_client_message);
1572 ConfigFileEntry.illegal_name_long_client_message = NULL;
1573 rb_free(ConfigFileEntry.illegal_name_short_client_message);
1574 ConfigFileEntry.illegal_name_short_client_message = NULL;
1575
1576 if (ConfigFileEntry.hidden_caps != NULL)
1577 {
1578 for (size_t i = 0; ConfigFileEntry.hidden_caps[i] != NULL; i++)
1579 rb_free(ConfigFileEntry.hidden_caps[i]);
1580 rb_free(ConfigFileEntry.hidden_caps);
1581 }
1582 ConfigFileEntry.hidden_caps = NULL;
1583
1584 /* clean out log */
1585 rb_free(ConfigFileEntry.fname_userlog);
1586 ConfigFileEntry.fname_userlog = NULL;
1587 rb_free(ConfigFileEntry.fname_fuserlog);
1588 ConfigFileEntry.fname_fuserlog = NULL;
1589 rb_free(ConfigFileEntry.fname_operlog);
1590 ConfigFileEntry.fname_operlog = NULL;
1591 rb_free(ConfigFileEntry.fname_foperlog);
1592 ConfigFileEntry.fname_foperlog = NULL;
1593 rb_free(ConfigFileEntry.fname_serverlog);
1594 ConfigFileEntry.fname_serverlog = NULL;
1595 rb_free(ConfigFileEntry.fname_killlog);
1596 ConfigFileEntry.fname_killlog = NULL;
1597 rb_free(ConfigFileEntry.fname_klinelog);
1598 ConfigFileEntry.fname_klinelog = NULL;
1599 rb_free(ConfigFileEntry.fname_operspylog);
1600 ConfigFileEntry.fname_operspylog = NULL;
1601 rb_free(ConfigFileEntry.fname_ioerrorlog);
1602 ConfigFileEntry.fname_ioerrorlog = NULL;
1603
1604 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
1605 {
1606 rb_free(ptr->data);
1607 rb_dlinkDestroy(ptr, &service_list);
1608 }
1609
1610 /* remove any aliases... -- nenolod */
1611 if (alias_dict != NULL)
1612 {
1613 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
1614 alias_dict = NULL;
1615 }
1616
1617 del_dnsbl_entry_all();
1618
1619 /* OK, that should be everything... */
1620 }
1621
1622
1623 /*
1624 * conf_add_class_to_conf
1625 * inputs - pointer to config item
1626 * output - NONE
1627 * side effects - Add a class pointer to a conf
1628 */
1629
1630 void
1631 conf_add_class_to_conf(struct ConfItem *aconf)
1632 {
1633 if(aconf->className == NULL)
1634 {
1635 aconf->className = rb_strdup("default");
1636 ClassPtr(aconf) = default_class;
1637 return;
1638 }
1639
1640 ClassPtr(aconf) = find_class(aconf->className);
1641
1642 if(ClassPtr(aconf) == default_class)
1643 {
1644 if(aconf->status == CONF_CLIENT)
1645 {
1646 conf_report_error(
1647 "Using default class for missing class \"%s\" in auth{} for %s@%s",
1648 aconf->className, aconf->user, aconf->host);
1649 }
1650
1651 rb_free(aconf->className);
1652 aconf->className = rb_strdup("default");
1653 return;
1654 }
1655
1656 if(ConfMaxUsers(aconf) < 0)
1657 {
1658 ClassPtr(aconf) = default_class;
1659 rb_free(aconf->className);
1660 aconf->className = rb_strdup("default");
1661 return;
1662 }
1663 }
1664
1665 /*
1666 * conf_add_d_conf
1667 * inputs - pointer to config item
1668 * output - NONE
1669 * side effects - Add a d/D line
1670 */
1671 void
1672 conf_add_d_conf(struct ConfItem *aconf)
1673 {
1674 if(aconf->host == NULL)
1675 return;
1676
1677 aconf->user = NULL;
1678
1679 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1680 * need this anyway, so I will disable it for now... -A1kmm
1681 */
1682
1683 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1684 {
1685 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1686 free_conf(aconf);
1687 }
1688 else
1689 {
1690 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
1691 }
1692 }
1693
1694 static void
1695 strip_tabs(char *dest, const char *src, size_t size)
1696 {
1697 char *d = dest;
1698
1699 if(dest == NULL || src == NULL)
1700 return;
1701
1702 rb_strlcpy(dest, src, size);
1703
1704 while(*d)
1705 {
1706 if(*d == '\t')
1707 *d = ' ';
1708 d++;
1709 }
1710 }
1711
1712 /*
1713 * yyerror
1714 *
1715 * inputs - message from parser
1716 * output - none
1717 * side effects - message to opers and log file entry is made
1718 */
1719 void
1720 yyerror(const char *msg)
1721 {
1722 char newlinebuf[BUFSIZE];
1723
1724 strip_tabs(newlinebuf, yy_linebuf, sizeof(newlinebuf));
1725
1726 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
1727 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "\"%s\", line %d: %s at '%s'",
1728 conffilebuf, lineno + 1, msg, newlinebuf);
1729
1730 }
1731
1732 int
1733 conf_fgets(char *lbuf, int max_size, FILE * fb)
1734 {
1735 if(fgets(lbuf, max_size, fb) == NULL)
1736 return (0);
1737
1738 return (strlen(lbuf));
1739 }
1740
1741 int
1742 conf_yy_fatal_error(const char *msg)
1743 {
1744 return (0);
1745 }
Fork of solanum ircd, history is rebased regularly