]> jfr.im git - solanum.git/blob - ircd/s_serv.c
projects / solanum.git / blob
? search:


6f43537fc1a5c38c0f12bc798a07880802558506
[solanum.git] / ircd / s_serv.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_serv.c: Server related functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 */
24
25 #include "stdinc.h"
26
27 #ifdef HAVE_LIBCRYPTO
28 #include <openssl/rsa.h>
29 #endif
30
31 #include "s_serv.h"
32 #include "class.h"
33 #include "client.h"
34 #include "hash.h"
35 #include "match.h"
36 #include "ircd.h"
37 #include "ircd_defs.h"
38 #include "numeric.h"
39 #include "packet.h"
40 #include "s_conf.h"
41 #include "s_newconf.h"
42 #include "logger.h"
43 #include "s_stats.h"
44 #include "s_user.h"
45 #include "scache.h"
46 #include "send.h"
47 #include "client.h"
48 #include "channel.h" /* chcap_usage_counts stuff... */
49 #include "hook.h"
50 #include "msg.h"
51 #include "reject.h"
52 #include "sslproc.h"
53 #include "capability.h"
54 #include "s_assert.h"
55
56 #ifndef INADDR_NONE
57 #define INADDR_NONE ((unsigned int) 0xffffffff)
58 #endif
59
60 int MaxConnectionCount = 1;
61 int MaxClientCount = 1;
62 int refresh_user_links = 0;
63
64 static char buf[BUFSIZE];
65
66 /*
67 * list of recognized server capabilities. "TS" is not on the list
68 * because all servers that we talk to already do TS, and the kludged
69 * extra argument to "PASS" takes care of checking that. -orabidoo
70 */
71 struct CapabilityIndex *serv_capindex = NULL;
72 struct CapabilityIndex *cli_capindex = NULL;
73
74 unsigned int CAP_CAP;
75 unsigned int CAP_QS;
76 unsigned int CAP_EX;
77 unsigned int CAP_CHW;
78 unsigned int CAP_IE;
79 unsigned int CAP_KLN;
80 unsigned int CAP_ZIP;
81 unsigned int CAP_KNOCK;
82 unsigned int CAP_TB;
83 unsigned int CAP_UNKLN;
84 unsigned int CAP_CLUSTER;
85 unsigned int CAP_ENCAP;
86 unsigned int CAP_TS6;
87 unsigned int CAP_SERVICE;
88 unsigned int CAP_RSFNC;
89 unsigned int CAP_SAVE;
90 unsigned int CAP_EUID;
91 unsigned int CAP_EOPMOD;
92 unsigned int CAP_BAN;
93 unsigned int CAP_MLOCK;
94
95 unsigned int CLICAP_MULTI_PREFIX;
96 unsigned int CLICAP_ACCOUNT_NOTIFY;
97 unsigned int CLICAP_EXTENDED_JOIN;
98 unsigned int CLICAP_AWAY_NOTIFY;
99 unsigned int CLICAP_USERHOST_IN_NAMES;
100 unsigned int CLICAP_CAP_NOTIFY;
101 unsigned int CLICAP_CHGHOST;
102 unsigned int CLICAP_ECHO_MESSAGE;
103
104 /*
105 * initialize our builtin capability table. --nenolod
106 */
107 void
108 init_builtin_capabs(void)
109 {
110 serv_capindex = capability_index_create("server capabilities");
111
112 /* These two are not set via CAPAB/GCAP keywords. */
113 CAP_CAP = capability_put_anonymous(serv_capindex);
114 CAP_TS6 = capability_put_anonymous(serv_capindex);
115
116 CAP_QS = capability_put(serv_capindex, "QS", NULL);
117 CAP_EX = capability_put(serv_capindex, "EX", NULL);
118 CAP_CHW = capability_put(serv_capindex, "CHW", NULL);
119 CAP_IE = capability_put(serv_capindex, "IE", NULL);
120 CAP_KLN = capability_put(serv_capindex, "KLN", NULL);
121 CAP_KNOCK = capability_put(serv_capindex, "KNOCK", NULL);
122 CAP_ZIP = capability_put(serv_capindex, "ZIP", NULL);
123 CAP_TB = capability_put(serv_capindex, "TB", NULL);
124 CAP_UNKLN = capability_put(serv_capindex, "UNKLN", NULL);
125 CAP_CLUSTER = capability_put(serv_capindex, "CLUSTER", NULL);
126 CAP_ENCAP = capability_put(serv_capindex, "ENCAP", NULL);
127 CAP_SERVICE = capability_put(serv_capindex, "SERVICES", NULL);
128 CAP_RSFNC = capability_put(serv_capindex, "RSFNC", NULL);
129 CAP_SAVE = capability_put(serv_capindex, "SAVE", NULL);
130 CAP_EUID = capability_put(serv_capindex, "EUID", NULL);
131 CAP_EOPMOD = capability_put(serv_capindex, "EOPMOD", NULL);
132 CAP_BAN = capability_put(serv_capindex, "BAN", NULL);
133 CAP_MLOCK = capability_put(serv_capindex, "MLOCK", NULL);
134
135 capability_require(serv_capindex, "QS");
136 capability_require(serv_capindex, "EX");
137 capability_require(serv_capindex, "IE");
138 capability_require(serv_capindex, "ENCAP");
139
140 cli_capindex = capability_index_create("client capabilities");
141
142 CLICAP_MULTI_PREFIX = capability_put(cli_capindex, "multi-prefix", NULL);
143 CLICAP_ACCOUNT_NOTIFY = capability_put(cli_capindex, "account-notify", NULL);
144 CLICAP_EXTENDED_JOIN = capability_put(cli_capindex, "extended-join", NULL);
145 CLICAP_AWAY_NOTIFY = capability_put(cli_capindex, "away-notify", NULL);
146 CLICAP_USERHOST_IN_NAMES = capability_put(cli_capindex, "userhost-in-names", NULL);
147 CLICAP_CAP_NOTIFY = capability_put(cli_capindex, "cap-notify", NULL);
148 CLICAP_CHGHOST = capability_put(cli_capindex, "chghost", NULL);
149 CLICAP_ECHO_MESSAGE = capability_put(cli_capindex, "echo-message", NULL);
150 }
151
152 static CNCB serv_connect_callback;
153 static CNCB serv_connect_ssl_callback;
154 static SSL_OPEN_CB serv_connect_ssl_open_callback;
155
156 /*
157 * hunt_server - Do the basic thing in delivering the message (command)
158 * across the relays to the specific server (server) for
159 * actions.
160 *
161 * Note: The command is a format string and *MUST* be
162 * of prefixed style (e.g. ":%s COMMAND %s ...").
163 * Command can have only max 8 parameters.
164 *
165 * server parv[server] is the parameter identifying the
166 * target server.
167 *
168 * *WARNING*
169 * parv[server] is replaced with the pointer to the
170 * real servername from the matched client (I'm lazy
171 * now --msa).
172 *
173 * returns: (see #defines)
174 */
175 int
176 hunt_server(struct Client *client_p, struct Client *source_p,
177 const char *command, int server, int parc, const char *parv[])
178 {
179 struct Client *target_p;
180 int wilds;
181 rb_dlink_node *ptr;
182 const char *old;
183 char *new;
184
185 /*
186 * Assume it's me, if no server
187 */
188 if(parc <= server || EmptyString(parv[server]) ||
189 match(parv[server], me.name) || (strcmp(parv[server], me.id) == 0))
190 return (HUNTED_ISME);
191
192 new = LOCAL_COPY(parv[server]);
193
194 /*
195 * These are to pickup matches that would cause the following
196 * message to go in the wrong direction while doing quick fast
197 * non-matching lookups.
198 */
199 if(MyClient(source_p))
200 target_p = find_named_client(new);
201 else
202 target_p = find_client(new);
203
204 if(target_p)
205 if(target_p->from == source_p->from && !MyConnect(target_p))
206 target_p = NULL;
207
208 collapse(new);
209 wilds = (strchr(new, '?') || strchr(new, '*'));
210
211 /*
212 * Again, if there are no wild cards involved in the server
213 * name, use the hash lookup
214 */
215 if(!target_p && wilds)
216 {
217 RB_DLINK_FOREACH(ptr, global_serv_list.head)
218 {
219 if(match(new, ((struct Client *) (ptr->data))->name))
220 {
221 target_p = ptr->data;
222 break;
223 }
224 }
225 }
226
227 if(target_p && !IsRegistered(target_p))
228 target_p = NULL;
229
230 if(target_p)
231 {
232 if(IsMe(target_p) || MyClient(target_p))
233 return HUNTED_ISME;
234
235 old = parv[server];
236 parv[server] = get_id(target_p, target_p);
237
238 sendto_one(target_p, command, get_id(source_p, target_p),
239 parv[1], parv[2], parv[3], parv[4], parv[5], parv[6], parv[7], parv[8]);
240 parv[server] = old;
241 return (HUNTED_PASS);
242 }
243
244 if(MyClient(source_p) || !IsDigit(parv[server][0]))
245 sendto_one_numeric(source_p, ERR_NOSUCHSERVER,
246 form_str(ERR_NOSUCHSERVER), parv[server]);
247 return (HUNTED_NOSUCH);
248 }
249
250 /*
251 * try_connections - scan through configuration and try new connections.
252 * Returns the calendar time when the next call to this
253 * function should be made latest. (No harm done if this
254 * is called earlier or later...)
255 */
256 void
257 try_connections(void *unused)
258 {
259 struct Client *client_p;
260 struct server_conf *server_p = NULL;
261 struct server_conf *tmp_p;
262 struct Class *cltmp;
263 rb_dlink_node *ptr;
264 bool connecting = false;
265 int confrq = 0;
266 time_t next = 0;
267
268 RB_DLINK_FOREACH(ptr, server_conf_list.head)
269 {
270 tmp_p = ptr->data;
271
272 if(ServerConfIllegal(tmp_p) || !ServerConfAutoconn(tmp_p))
273 continue;
274
275 /* don't allow ssl connections if ssl isn't setup */
276 if(ServerConfSSL(tmp_p) && (!ircd_ssl_ok || !get_ssld_count()))
277 continue;
278
279 cltmp = tmp_p->class;
280
281 /*
282 * Skip this entry if the use of it is still on hold until
283 * future. Otherwise handle this entry (and set it on hold
284 * until next time). Will reset only hold times, if already
285 * made one successfull connection... [this algorithm is
286 * a bit fuzzy... -- msa >;) ]
287 */
288 if(tmp_p->hold > rb_current_time())
289 {
290 if(next > tmp_p->hold || next == 0)
291 next = tmp_p->hold;
292 continue;
293 }
294
295 confrq = get_con_freq(cltmp);
296 tmp_p->hold = rb_current_time() + confrq;
297
298 /*
299 * Found a CONNECT config with port specified, scan clients
300 * and see if this server is already connected?
301 */
302 client_p = find_server(NULL, tmp_p->name);
303
304 if(!client_p && (CurrUsers(cltmp) < MaxUsers(cltmp)) && !connecting)
305 {
306 server_p = tmp_p;
307
308 /* We connect only one at time... */
309 connecting = true;
310 }
311
312 if((next > tmp_p->hold) || (next == 0))
313 next = tmp_p->hold;
314 }
315
316 /* TODO: change this to set active flag to 0 when added to event! --Habeeb */
317 if(GlobalSetOptions.autoconn == 0)
318 return;
319
320 if(!connecting)
321 return;
322
323 /* move this connect entry to end.. */
324 rb_dlinkDelete(&server_p->node, &server_conf_list);
325 rb_dlinkAddTail(server_p, &server_p->node, &server_conf_list);
326
327 /*
328 * We used to only print this if serv_connect() actually
329 * suceeded, but since rb_tcp_connect() can call the callback
330 * immediately if there is an error, we were getting error messages
331 * in the wrong order. SO, we just print out the activated line,
332 * and let serv_connect() / serv_connect_callback() print an
333 * error afterwards if it fails.
334 * -- adrian
335 */
336 sendto_realops_snomask(SNO_GENERAL, L_ALL,
337 "Connection to %s activated",
338 server_p->name);
339
340 serv_connect(server_p, 0);
341 }
342
343 int
344 check_server(const char *name, struct Client *client_p)
345 {
346 struct server_conf *server_p = NULL;
347 struct server_conf *tmp_p;
348 rb_dlink_node *ptr;
349 int error = -1;
350 const char *encr;
351 bool name_matched = false;
352 bool host_matched = false;
353 bool certfp_failed = false;
354
355 s_assert(NULL != client_p);
356 if(client_p == NULL)
357 return error;
358
359 if(!(client_p->localClient->passwd))
360 return -2;
361
362 if(strlen(name) > HOSTLEN)
363 return -4;
364
365 RB_DLINK_FOREACH(ptr, server_conf_list.head)
366 {
367 struct rb_sockaddr_storage client_addr;
368
369 tmp_p = ptr->data;
370
371 if(ServerConfIllegal(tmp_p))
372 continue;
373
374 if(!match(tmp_p->name, name))
375 continue;
376
377 name_matched = true;
378
379 if(rb_inet_pton_sock(client_p->sockhost, (struct sockaddr *)&client_addr) <= 0)
380 SET_SS_FAMILY(&client_addr, AF_UNSPEC);
381
382 if((tmp_p->connect_host && match(tmp_p->connect_host, client_p->host))
383 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect4)
384 && comp_with_mask_sock((struct sockaddr *)&client_addr,
385 (struct sockaddr *)&tmp_p->connect4, 32))
386 #ifdef RB_IPV6
387 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect6)
388 && comp_with_mask_sock((struct sockaddr *)&client_addr,
389 (struct sockaddr *)&tmp_p->connect6, 128))
390 #endif
391 )
392 {
393 host_matched = true;
394
395 if(tmp_p->passwd)
396 {
397 if(ServerConfEncrypted(tmp_p))
398 {
399 encr = rb_crypt(client_p->localClient->passwd,
400 tmp_p->passwd);
401 if(encr != NULL && !strcmp(tmp_p->passwd, encr))
402 {
403 server_p = tmp_p;
404 break;
405 }
406 else
407 continue;
408 }
409 else if(strcmp(tmp_p->passwd, client_p->localClient->passwd))
410 continue;
411 }
412
413 if(tmp_p->certfp)
414 {
415 if(!client_p->certfp || rb_strcasecmp(tmp_p->certfp, client_p->certfp) != 0) {
416 certfp_failed = true;
417 continue;
418 }
419 }
420
421 server_p = tmp_p;
422 break;
423 }
424 }
425
426 if(server_p == NULL)
427 {
428 /* return the most specific error */
429 if(certfp_failed)
430 error = -6;
431 else if(host_matched)
432 error = -2;
433 else if(name_matched)
434 error = -3;
435
436 return error;
437 }
438
439 if(ServerConfSSL(server_p) && client_p->localClient->ssl_ctl == NULL)
440 {
441 return -5;
442 }
443
444 attach_server_conf(client_p, server_p);
445
446 /* clear ZIP/TB if they support but we dont want them */
447 #ifdef HAVE_LIBZ
448 if(!ServerConfCompressed(server_p))
449 #endif
450 ClearCap(client_p, CAP_ZIP);
451
452 if(!ServerConfTb(server_p))
453 ClearCap(client_p, CAP_TB);
454
455 return 0;
456 }
457
458 /*
459 * send_capabilities
460 *
461 * inputs - Client pointer to send to
462 * - int flag of capabilities that this server has
463 * output - NONE
464 * side effects - send the CAPAB line to a server -orabidoo
465 */
466 void
467 send_capabilities(struct Client *client_p, unsigned int cap_can_send)
468 {
469 sendto_one(client_p, "CAPAB :%s", capability_index_list(serv_capindex, cap_can_send));
470 }
471
472 static void
473 burst_ban(struct Client *client_p)
474 {
475 rb_dlink_node *ptr;
476 struct ConfItem *aconf;
477 const char *type, *oper;
478 /* +5 for !,@,{,} and null */
479 char operbuf[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
480 char *p;
481 size_t melen;
482
483 melen = strlen(me.name);
484 RB_DLINK_FOREACH(ptr, prop_bans.head)
485 {
486 aconf = ptr->data;
487
488 /* Skip expired stuff. */
489 if(aconf->lifetime < rb_current_time())
490 continue;
491 switch(aconf->status & ~CONF_ILLEGAL)
492 {
493 case CONF_KILL: type = "K"; break;
494 case CONF_DLINE: type = "D"; break;
495 case CONF_XLINE: type = "X"; break;
496 case CONF_RESV_NICK: type = "R"; break;
497 case CONF_RESV_CHANNEL: type = "R"; break;
498 default:
499 continue;
500 }
501 oper = aconf->info.oper;
502 if(aconf->flags & CONF_FLAGS_MYOPER)
503 {
504 /* Our operator{} names may not be meaningful
505 * to other servers, so rewrite to our server
506 * name.
507 */
508 rb_strlcpy(operbuf, aconf->info.oper, sizeof buf);
509 p = strrchr(operbuf, '{');
510 if (p != NULL &&
511 operbuf + sizeof operbuf - p > (ptrdiff_t)(melen + 2))
512 {
513 memcpy(p + 1, me.name, melen);
514 p[melen + 1] = '}';
515 p[melen + 2] = '\0';
516 oper = operbuf;
517 }
518 }
519 sendto_one(client_p, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
520 me.id,
521 type,
522 aconf->user ? aconf->user : "*", aconf->host,
523 (unsigned long)aconf->created,
524 (int)(aconf->hold - aconf->created),
525 (int)(aconf->lifetime - aconf->created),
526 oper,
527 aconf->passwd,
528 aconf->spasswd ? "|" : "",
529 aconf->spasswd ? aconf->spasswd : "");
530 }
531 }
532
533 /* burst_modes_TS6()
534 *
535 * input - client to burst to, channel name, list to burst, mode flag
536 * output -
537 * side effects - client is sent a list of +b, +e, or +I modes
538 */
539 static void
540 burst_modes_TS6(struct Client *client_p, struct Channel *chptr,
541 rb_dlink_list *list, char flag)
542 {
543 rb_dlink_node *ptr;
544 struct Ban *banptr;
545 char *t;
546 int tlen;
547 int mlen;
548 int cur_len;
549
550 cur_len = mlen = sprintf(buf, ":%s BMASK %ld %s %c :",
551 me.id, (long) chptr->channelts, chptr->chname, flag);
552 t = buf + mlen;
553
554 RB_DLINK_FOREACH(ptr, list->head)
555 {
556 banptr = ptr->data;
557
558 tlen = strlen(banptr->banstr) + (banptr->forward ? strlen(banptr->forward) + 1 : 0) + 1;
559
560 /* uh oh */
561 if(cur_len + tlen > BUFSIZE - 3)
562 {
563 /* the one we're trying to send doesnt fit at all! */
564 if(cur_len == mlen)
565 {
566 s_assert(0);
567 continue;
568 }
569
570 /* chop off trailing space and send.. */
571 *(t-1) = '\0';
572 sendto_one(client_p, "%s", buf);
573 cur_len = mlen;
574 t = buf + mlen;
575 }
576
577 if (banptr->forward)
578 sprintf(t, "%s$%s ", banptr->banstr, banptr->forward);
579 else
580 sprintf(t, "%s ", banptr->banstr);
581 t += tlen;
582 cur_len += tlen;
583 }
584
585 /* cant ever exit the loop above without having modified buf,
586 * chop off trailing space and send.
587 */
588 *(t-1) = '\0';
589 sendto_one(client_p, "%s", buf);
590 }
591
592 /*
593 * burst_TS6
594 *
595 * inputs - client (server) to send nick towards
596 * - client to send nick for
597 * output - NONE
598 * side effects - NICK message is sent towards given client_p
599 */
600 static void
601 burst_TS6(struct Client *client_p)
602 {
603 char ubuf[BUFSIZE];
604 struct Client *target_p;
605 struct Channel *chptr;
606 struct membership *msptr;
607 hook_data_client hclientinfo;
608 hook_data_channel hchaninfo;
609 rb_dlink_node *ptr;
610 rb_dlink_node *uptr;
611 char *t;
612 int tlen, mlen;
613 int cur_len = 0;
614
615 hclientinfo.client = hchaninfo.client = client_p;
616
617 RB_DLINK_FOREACH(ptr, global_client_list.head)
618 {
619 target_p = ptr->data;
620
621 if(!IsPerson(target_p))
622 continue;
623
624 send_umode(NULL, target_p, 0, ubuf);
625 if(!*ubuf)
626 {
627 ubuf[0] = '+';
628 ubuf[1] = '\0';
629 }
630
631 if(IsCapable(client_p, CAP_EUID))
632 sendto_one(client_p, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
633 target_p->servptr->id, target_p->name,
634 target_p->hopcount + 1,
635 (long) target_p->tsinfo, ubuf,
636 target_p->username, target_p->host,
637 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
638 target_p->id,
639 IsDynSpoof(target_p) ? target_p->orighost : "*",
640 EmptyString(target_p->user->suser) ? "*" : target_p->user->suser,
641 target_p->info);
642 else
643 sendto_one(client_p, ":%s UID %s %d %ld %s %s %s %s %s :%s",
644 target_p->servptr->id, target_p->name,
645 target_p->hopcount + 1,
646 (long) target_p->tsinfo, ubuf,
647 target_p->username, target_p->host,
648 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
649 target_p->id, target_p->info);
650
651 if(!EmptyString(target_p->certfp))
652 sendto_one(client_p, ":%s ENCAP * CERTFP :%s",
653 use_id(target_p), target_p->certfp);
654
655 if(!IsCapable(client_p, CAP_EUID))
656 {
657 if(IsDynSpoof(target_p))
658 sendto_one(client_p, ":%s ENCAP * REALHOST %s",
659 use_id(target_p), target_p->orighost);
660 if(!EmptyString(target_p->user->suser))
661 sendto_one(client_p, ":%s ENCAP * LOGIN %s",
662 use_id(target_p), target_p->user->suser);
663 }
664
665 if(ConfigFileEntry.burst_away && !EmptyString(target_p->user->away))
666 sendto_one(client_p, ":%s AWAY :%s",
667 use_id(target_p),
668 target_p->user->away);
669
670 hclientinfo.target = target_p;
671 call_hook(h_burst_client, &hclientinfo);
672 }
673
674 RB_DLINK_FOREACH(ptr, global_channel_list.head)
675 {
676 chptr = ptr->data;
677
678 if(*chptr->chname != '#')
679 continue;
680
681 cur_len = mlen = sprintf(buf, ":%s SJOIN %ld %s %s :", me.id,
682 (long) chptr->channelts, chptr->chname,
683 channel_modes(chptr, client_p));
684
685 t = buf + mlen;
686
687 RB_DLINK_FOREACH(uptr, chptr->members.head)
688 {
689 msptr = uptr->data;
690
691 tlen = strlen(use_id(msptr->client_p)) + 1;
692 if(is_chanop(msptr))
693 tlen++;
694 if(is_voiced(msptr))
695 tlen++;
696
697 if(cur_len + tlen >= BUFSIZE - 3)
698 {
699 *(t-1) = '\0';
700 sendto_one(client_p, "%s", buf);
701 cur_len = mlen;
702 t = buf + mlen;
703 }
704
705 sprintf(t, "%s%s ", find_channel_status(msptr, 1),
706 use_id(msptr->client_p));
707
708 cur_len += tlen;
709 t += tlen;
710 }
711
712 if (rb_dlink_list_length(&chptr->members) > 0)
713 {
714 /* remove trailing space */
715 *(t-1) = '\0';
716 }
717 sendto_one(client_p, "%s", buf);
718
719 if(rb_dlink_list_length(&chptr->banlist) > 0)
720 burst_modes_TS6(client_p, chptr, &chptr->banlist, 'b');
721
722 if(IsCapable(client_p, CAP_EX) &&
723 rb_dlink_list_length(&chptr->exceptlist) > 0)
724 burst_modes_TS6(client_p, chptr, &chptr->exceptlist, 'e');
725
726 if(IsCapable(client_p, CAP_IE) &&
727 rb_dlink_list_length(&chptr->invexlist) > 0)
728 burst_modes_TS6(client_p, chptr, &chptr->invexlist, 'I');
729
730 if(rb_dlink_list_length(&chptr->quietlist) > 0)
731 burst_modes_TS6(client_p, chptr, &chptr->quietlist, 'q');
732
733 if(IsCapable(client_p, CAP_TB) && chptr->topic != NULL)
734 sendto_one(client_p, ":%s TB %s %ld %s%s:%s",
735 me.id, chptr->chname, (long) chptr->topic_time,
736 ConfigChannel.burst_topicwho ? chptr->topic_info : "",
737 ConfigChannel.burst_topicwho ? " " : "",
738 chptr->topic);
739
740 if(IsCapable(client_p, CAP_MLOCK))
741 sendto_one(client_p, ":%s MLOCK %ld %s :%s",
742 me.id, (long) chptr->channelts, chptr->chname,
743 EmptyString(chptr->mode_lock) ? "" : chptr->mode_lock);
744
745 hchaninfo.chptr = chptr;
746 call_hook(h_burst_channel, &hchaninfo);
747 }
748
749 hclientinfo.target = NULL;
750 call_hook(h_burst_finished, &hclientinfo);
751 }
752
753 /*
754 * show_capabilities - show current server capabilities
755 *
756 * inputs - pointer to an struct Client
757 * output - pointer to static string
758 * side effects - build up string representing capabilities of server listed
759 */
760 const char *
761 show_capabilities(struct Client *target_p)
762 {
763 static char msgbuf[BUFSIZE];
764
765 *msgbuf = '\0';
766
767 if(has_id(target_p))
768 rb_strlcpy(msgbuf, " TS6", sizeof(msgbuf));
769
770 if(IsSSL(target_p))
771 rb_strlcat(msgbuf, " SSL", sizeof(msgbuf));
772
773 if(!IsServer(target_p) || !target_p->serv->caps) /* short circuit if no caps */
774 return msgbuf + 1;
775
776 rb_strlcat(msgbuf, " ", sizeof(msgbuf));
777 rb_strlcat(msgbuf, capability_index_list(serv_capindex, target_p->serv->caps), sizeof(msgbuf));
778
779 return msgbuf + 1;
780 }
781
782 /*
783 * server_estab
784 *
785 * inputs - pointer to a struct Client
786 * output -
787 * side effects -
788 */
789 int
790 server_estab(struct Client *client_p)
791 {
792 struct Client *target_p;
793 struct server_conf *server_p;
794 hook_data_client hdata;
795 char *host;
796 rb_dlink_node *ptr;
797 char note[HOSTLEN + 15];
798
799 s_assert(NULL != client_p);
800 if(client_p == NULL)
801 return -1;
802
803 host = client_p->name;
804
805 if((server_p = client_p->localClient->att_sconf) == NULL)
806 {
807 /* This shouldn't happen, better tell the ops... -A1kmm */
808 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
809 "Warning: Lost connect{} block for server %s!", host);
810 return exit_client(client_p, client_p, client_p, "Lost connect{} block!");
811 }
812
813 /* We shouldn't have to check this, it should already done before
814 * server_estab is called. -A1kmm
815 */
816 if(client_p->localClient->passwd)
817 {
818 memset(client_p->localClient->passwd, 0, strlen(client_p->localClient->passwd));
819 rb_free(client_p->localClient->passwd);
820 client_p->localClient->passwd = NULL;
821 }
822
823 /* Its got identd , since its a server */
824 SetGotId(client_p);
825
826 if(IsUnknown(client_p))
827 {
828 /* the server may be linking based on certificate fingerprint now. --nenolod */
829 sendto_one(client_p, "PASS %s TS %d :%s",
830 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
831
832 /* pass info to new server */
833 send_capabilities(client_p, default_server_capabs
834 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
835 | (ServerConfTb(server_p) ? CAP_TB : 0));
836
837 sendto_one(client_p, "SERVER %s 1 :%s%s",
838 me.name,
839 ConfigServerHide.hidden ? "(H) " : "",
840 (me.info[0]) ? (me.info) : "IRCers United");
841 }
842
843 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
844 ilog_error("rb_set_buffers failed for server");
845
846 /* Enable compression now */
847 if(IsCapable(client_p, CAP_ZIP))
848 {
849 start_zlib_session(client_p);
850 }
851 sendto_one(client_p, "SVINFO %d %d 0 :%ld", TS_CURRENT, TS_MIN, (long int)rb_current_time());
852
853 client_p->servptr = &me;
854
855 if(IsAnyDead(client_p))
856 return CLIENT_EXITED;
857
858 SetServer(client_p);
859
860 rb_dlinkAdd(client_p, &client_p->lnode, &me.serv->servers);
861 rb_dlinkMoveNode(&client_p->localClient->tnode, &unknown_list, &serv_list);
862 rb_dlinkAddTailAlloc(client_p, &global_serv_list);
863
864 if(has_id(client_p))
865 add_to_id_hash(client_p->id, client_p);
866
867 add_to_client_hash(client_p->name, client_p);
868 /* doesnt duplicate client_p->serv if allocated this struct already */
869 make_server(client_p);
870
871 client_p->serv->caps = client_p->localClient->caps;
872
873 if(client_p->localClient->fullcaps)
874 {
875 client_p->serv->fullcaps = rb_strdup(client_p->localClient->fullcaps);
876 rb_free(client_p->localClient->fullcaps);
877 client_p->localClient->fullcaps = NULL;
878 }
879
880 client_p->serv->nameinfo = scache_connect(client_p->name, client_p->info, IsHidden(client_p));
881 client_p->localClient->firsttime = rb_current_time();
882 /* fixing eob timings.. -gnp */
883
884 if((rb_dlink_list_length(&lclient_list) + rb_dlink_list_length(&serv_list)) >
885 (unsigned long)MaxConnectionCount)
886 MaxConnectionCount = rb_dlink_list_length(&lclient_list) +
887 rb_dlink_list_length(&serv_list);
888
889 /* Show the real host/IP to admins */
890 sendto_realops_snomask(SNO_GENERAL, L_ALL,
891 "Link with %s established: (%s) link",
892 client_p->name,
893 show_capabilities(client_p));
894
895 ilog(L_SERVER, "Link with %s established: (%s) link",
896 log_client_name(client_p, SHOW_IP), show_capabilities(client_p));
897
898 hdata.client = &me;
899 hdata.target = client_p;
900 call_hook(h_server_introduced, &hdata);
901
902 snprintf(note, sizeof(note), "Server: %s", client_p->name);
903 rb_note(client_p->localClient->F, note);
904
905 /*
906 ** Old sendto_serv_but_one() call removed because we now
907 ** need to send different names to different servers
908 ** (domain name matching) Send new server to other servers.
909 */
910 RB_DLINK_FOREACH(ptr, serv_list.head)
911 {
912 target_p = ptr->data;
913
914 if(target_p == client_p)
915 continue;
916
917 if(has_id(target_p) && has_id(client_p))
918 {
919 sendto_one(target_p, ":%s SID %s 2 %s :%s%s",
920 me.id, client_p->name, client_p->id,
921 IsHidden(client_p) ? "(H) " : "", client_p->info);
922
923 if(!EmptyString(client_p->serv->fullcaps))
924 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
925 client_p->id, client_p->serv->fullcaps);
926 }
927 else
928 {
929 sendto_one(target_p, ":%s SERVER %s 2 :%s%s",
930 me.name, client_p->name,
931 IsHidden(client_p) ? "(H) " : "", client_p->info);
932
933 if(!EmptyString(client_p->serv->fullcaps))
934 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
935 client_p->name, client_p->serv->fullcaps);
936 }
937 }
938
939 /*
940 ** Pass on my client information to the new server
941 **
942 ** First, pass only servers (idea is that if the link gets
943 ** cancelled beacause the server was already there,
944 ** there are no NICK's to be cancelled...). Of course,
945 ** if cancellation occurs, all this info is sent anyway,
946 ** and I guess the link dies when a read is attempted...? --msa
947 **
948 ** Note: Link cancellation to occur at this point means
949 ** that at least two servers from my fragment are building
950 ** up connection this other fragment at the same time, it's
951 ** a race condition, not the normal way of operation...
952 **
953 ** ALSO NOTE: using the get_client_name for server names--
954 ** see previous *WARNING*!!! (Also, original inpath
955 ** is destroyed...)
956 */
957 RB_DLINK_FOREACH(ptr, global_serv_list.head)
958 {
959 target_p = ptr->data;
960
961 /* target_p->from == target_p for target_p == client_p */
962 if(IsMe(target_p) || target_p->from == client_p)
963 continue;
964
965 /* presumption, if target has an id, so does its uplink */
966 if(has_id(client_p) && has_id(target_p))
967 sendto_one(client_p, ":%s SID %s %d %s :%s%s",
968 target_p->servptr->id, target_p->name,
969 target_p->hopcount + 1, target_p->id,
970 IsHidden(target_p) ? "(H) " : "", target_p->info);
971 else
972 sendto_one(client_p, ":%s SERVER %s %d :%s%s",
973 target_p->servptr->name,
974 target_p->name, target_p->hopcount + 1,
975 IsHidden(target_p) ? "(H) " : "", target_p->info);
976
977 if(!EmptyString(target_p->serv->fullcaps))
978 sendto_one(client_p, ":%s ENCAP * GCAP :%s",
979 get_id(target_p, client_p),
980 target_p->serv->fullcaps);
981 }
982
983 if(IsCapable(client_p, CAP_BAN))
984 burst_ban(client_p);
985
986 burst_TS6(client_p);
987
988 /* Always send a PING after connect burst is done */
989 sendto_one(client_p, "PING :%s", get_id(&me, client_p));
990
991 free_pre_client(client_p);
992
993 send_pop_queue(client_p);
994
995 return 0;
996 }
997
998 /*
999 * New server connection code
1000 * Based upon the stuff floating about in s_bsd.c
1001 * -- adrian
1002 */
1003
1004 /*
1005 * serv_connect() - initiate a server connection
1006 *
1007 * inputs - pointer to conf
1008 * - pointer to client doing the connet
1009 * output -
1010 * side effects -
1011 *
1012 * This code initiates a connection to a server. It first checks to make
1013 * sure the given server exists. If this is the case, it creates a socket,
1014 * creates a client, saves the socket information in the client, and
1015 * initiates a connection to the server through rb_connect_tcp(). The
1016 * completion of this goes through serv_completed_connection().
1017 *
1018 * We return 1 if the connection is attempted, since we don't know whether
1019 * it suceeded or not, and 0 if it fails in here somewhere.
1020 */
1021 int
1022 serv_connect(struct server_conf *server_p, struct Client *by)
1023 {
1024 struct Client *client_p;
1025 struct rb_sockaddr_storage sa_connect;
1026 struct rb_sockaddr_storage sa_bind;
1027 char note[HOSTLEN + 10];
1028 rb_fde_t *F;
1029
1030 s_assert(server_p != NULL);
1031 if(server_p == NULL)
1032 return 0;
1033
1034 #ifdef RB_IPV6
1035 if(server_p->aftype != AF_UNSPEC
1036 && GET_SS_FAMILY(&server_p->connect4) == AF_INET
1037 && GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1038 {
1039 if(rand() % 2 == 0)
1040 {
1041 sa_connect = server_p->connect4;
1042 sa_bind = server_p->bind4;
1043 }
1044 else
1045 {
1046 sa_connect = server_p->connect6;
1047 sa_bind = server_p->bind6;
1048 }
1049 }
1050 else if(server_p->aftype == AF_INET || GET_SS_FAMILY(&server_p->connect4) == AF_INET)
1051 #endif
1052 {
1053 sa_connect = server_p->connect4;
1054 sa_bind = server_p->bind4;
1055 }
1056 #ifdef RB_IPV6
1057 else if(server_p->aftype == AF_INET6 || GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1058 {
1059 sa_connect = server_p->connect6;
1060 sa_bind = server_p->bind6;
1061 }
1062 #endif
1063
1064 /* log */
1065 buf[0] = 0;
1066 rb_inet_ntop_sock((struct sockaddr *)&sa_connect, buf, sizeof(buf));
1067 ilog(L_SERVER, "Connect to *[%s] @%s", server_p->name, buf);
1068
1069 /*
1070 * Make sure this server isn't already connected
1071 */
1072 if((client_p = find_server(NULL, server_p->name)))
1073 {
1074 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1075 "Server %s already present from %s",
1076 server_p->name, client_p->name);
1077 if(by && IsPerson(by) && !MyClient(by))
1078 sendto_one_notice(by, ":Server %s already present from %s",
1079 server_p->name, client_p->name);
1080 return 0;
1081 }
1082
1083 /* create a socket for the server connection */
1084 if(GET_SS_FAMILY(&sa_connect) == AF_UNSPEC)
1085 {
1086 ilog_error("unspecified socket address family");
1087 return 0;
1088 }
1089 else if((F = rb_socket(GET_SS_FAMILY(&sa_connect), SOCK_STREAM, 0, NULL)) == NULL)
1090 {
1091 ilog_error("opening a stream socket");
1092 return 0;
1093 }
1094
1095 /* servernames are always guaranteed under HOSTLEN chars */
1096 snprintf(note, sizeof(note), "Server: %s", server_p->name);
1097 rb_note(F, note);
1098
1099 /* Create a local client */
1100 client_p = make_client(NULL);
1101
1102 /* Copy in the server, hostname, fd */
1103 rb_strlcpy(client_p->name, server_p->name, sizeof(client_p->name));
1104 if(server_p->connect_host)
1105 rb_strlcpy(client_p->host, server_p->connect_host, sizeof(client_p->host));
1106 else
1107 rb_strlcpy(client_p->host, buf, sizeof(client_p->host));
1108 rb_strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
1109 client_p->localClient->F = F;
1110 /* shove the port number into the sockaddr */
1111 SET_SS_PORT(&sa_connect, htons(server_p->port));
1112
1113 /*
1114 * Set up the initial server evilness, ripped straight from
1115 * connect_server(), so don't blame me for it being evil.
1116 * -- adrian
1117 */
1118
1119 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
1120 {
1121 ilog_error("setting the buffer size for a server connection");
1122 }
1123
1124 /*
1125 * Attach config entries to client here rather than in
1126 * serv_connect_callback(). This to avoid null pointer references.
1127 */
1128 attach_server_conf(client_p, server_p);
1129
1130 /*
1131 * at this point we have a connection in progress and C/N lines
1132 * attached to the client, the socket info should be saved in the
1133 * client and it should either be resolved or have a valid address.
1134 *
1135 * The socket has been connected or connect is in progress.
1136 */
1137 make_server(client_p);
1138 if(by && IsClient(by))
1139 strcpy(client_p->serv->by, by->name);
1140 else
1141 strcpy(client_p->serv->by, "AutoConn.");
1142
1143 SetConnecting(client_p);
1144 rb_dlinkAddTail(client_p, &client_p->node, &global_client_list);
1145
1146 if(GET_SS_FAMILY(&sa_bind) == AF_UNSPEC)
1147 {
1148 if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind4))
1149 sa_bind = ServerInfo.bind4;
1150 #ifdef RB_IPV6
1151 if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind6))
1152 sa_bind = ServerInfo.bind6;
1153 #endif
1154 }
1155
1156 rb_connect_tcp(client_p->localClient->F,
1157 (struct sockaddr *)&sa_connect,
1158 GET_SS_FAMILY(&sa_bind) == AF_UNSPEC ? NULL : (struct sockaddr *)&sa_bind,
1159 ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
1160 client_p, ConfigFileEntry.connect_timeout);
1161 return 1;
1162 }
1163
1164 static void
1165 serv_connect_ssl_callback(rb_fde_t *F, int status, void *data)
1166 {
1167 struct Client *client_p = data;
1168 rb_fde_t *xF[2];
1169 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1170 if(status != RB_OK)
1171 {
1172 /* Print error message, just like non-SSL. */
1173 serv_connect_callback(F, status, data);
1174 return;
1175 }
1176 if(rb_socketpair(AF_UNIX, SOCK_STREAM, 0, &xF[0], &xF[1], "Outgoing ssld connection") == -1)
1177 {
1178 ilog_error("rb_socketpair failed for server");
1179 serv_connect_callback(F, RB_ERROR, data);
1180 return;
1181
1182 }
1183 client_p->localClient->F = xF[0];
1184 client_p->localClient->ssl_callback = serv_connect_ssl_open_callback;
1185
1186 client_p->localClient->ssl_ctl = start_ssld_connect(F, xF[1], connid_get(client_p));
1187 if(!client_p->localClient->ssl_ctl)
1188 {
1189 serv_connect_callback(client_p->localClient->F, RB_ERROR, data);
1190 return;
1191 }
1192 SetSSL(client_p);
1193 }
1194
1195 static int
1196 serv_connect_ssl_open_callback(struct Client *client_p, int status)
1197 {
1198 serv_connect_callback(client_p->localClient->F, status, client_p);
1199 return 1; /* suppress default exit_client handler for status != RB_OK */
1200 }
1201
1202 /*
1203 * serv_connect_callback() - complete a server connection.
1204 *
1205 * This routine is called after the server connection attempt has
1206 * completed. If unsucessful, an error is sent to ops and the client
1207 * is closed. If sucessful, it goes through the initialisation/check
1208 * procedures, the capabilities are sent, and the socket is then
1209 * marked for reading.
1210 */
1211 static void
1212 serv_connect_callback(rb_fde_t *F, int status, void *data)
1213 {
1214 struct Client *client_p = data;
1215 struct server_conf *server_p;
1216 char *errstr;
1217
1218 /* First, make sure its a real client! */
1219 s_assert(client_p != NULL);
1220 s_assert(client_p->localClient->F == F);
1221
1222 if(client_p == NULL)
1223 return;
1224
1225 /* while we were waiting for the callback, its possible this already
1226 * linked in.. --fl
1227 */
1228 if(find_server(NULL, client_p->name) != NULL)
1229 {
1230 exit_client(client_p, client_p, &me, "Server Exists");
1231 return;
1232 }
1233
1234 if(client_p->localClient->ssl_ctl == NULL)
1235 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1236
1237 /* Check the status */
1238 if(status != RB_OK)
1239 {
1240 /* COMM_ERR_TIMEOUT wont have an errno associated with it,
1241 * the others will.. --fl
1242 */
1243 if(status == RB_ERR_TIMEOUT || status == RB_ERROR_SSL)
1244 {
1245 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1246 "Error connecting to %s[%s]: %s",
1247 client_p->name,
1248 "255.255.255.255",
1249 rb_errstr(status));
1250 ilog(L_SERVER, "Error connecting to %s[%s]: %s",
1251 client_p->name, client_p->sockhost,
1252 rb_errstr(status));
1253 }
1254 else
1255 {
1256 errstr = strerror(rb_get_sockerr(F));
1257 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1258 "Error connecting to %s[%s]: %s (%s)",
1259 client_p->name,
1260 "255.255.255.255",
1261 rb_errstr(status), errstr);
1262 ilog(L_SERVER, "Error connecting to %s[%s]: %s (%s)",
1263 client_p->name, client_p->sockhost,
1264 rb_errstr(status), errstr);
1265 }
1266
1267 exit_client(client_p, client_p, &me, rb_errstr(status));
1268 return;
1269 }
1270
1271 /* COMM_OK, so continue the connection procedure */
1272 /* Get the C/N lines */
1273 if((server_p = client_p->localClient->att_sconf) == NULL)
1274 {
1275 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL, "Lost connect{} block for %s",
1276 client_p->name);
1277 exit_client(client_p, client_p, &me, "Lost connect{} block");
1278 return;
1279 }
1280
1281 if(server_p->certfp && (!client_p->certfp || rb_strcasecmp(server_p->certfp, client_p->certfp) != 0))
1282 {
1283 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1284 "Connection to %s has invalid certificate fingerprint %s",
1285 client_p->name, client_p->certfp);
1286 ilog(L_SERVER, "Access denied, invalid certificate fingerprint %s from %s",
1287 client_p->certfp, log_client_name(client_p, SHOW_IP));
1288
1289 exit_client(client_p, client_p, &me, "Invalid fingerprint.");
1290 return;
1291 }
1292
1293 /* Next, send the initial handshake */
1294 SetHandshake(client_p);
1295
1296 /* the server may be linking based on certificate fingerprint now. --nenolod */
1297 sendto_one(client_p, "PASS %s TS %d :%s",
1298 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
1299
1300 /* pass my info to the new server */
1301 send_capabilities(client_p, default_server_capabs
1302 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
1303 | (ServerConfTb(server_p) ? CAP_TB : 0));
1304
1305 sendto_one(client_p, "SERVER %s 1 :%s%s",
1306 me.name,
1307 ConfigServerHide.hidden ? "(H) " : "", me.info);
1308
1309 /*
1310 * If we've been marked dead because a send failed, just exit
1311 * here now and save everyone the trouble of us ever existing.
1312 */
1313 if(IsAnyDead(client_p))
1314 {
1315 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1316 "%s went dead during handshake", client_p->name);
1317 exit_client(client_p, client_p, &me, "Went dead during handshake");
1318 return;
1319 }
1320
1321 /* don't move to serv_list yet -- we haven't sent a burst! */
1322
1323 /* If we get here, we're ok, so lets start reading some data */
1324 read_packet(F, client_p);
1325 }
Fork of solanum ircd, history is rebased regularly