]> jfr.im git - solanum.git/blob - ircd/s_conf.c
projects / solanum.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
modules/m_sasl.c: use IsSecure() instead of IsSSL()
[solanum.git] / ircd / s_conf.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 */
24
25 #include "stdinc.h"
26 #include "ircd_defs.h"
27 #include "s_conf.h"
28 #include "s_user.h"
29 #include "s_newconf.h"
30 #include "newconf.h"
31 #include "s_serv.h"
32 #include "s_stats.h"
33 #include "channel.h"
34 #include "class.h"
35 #include "client.h"
36 #include "hash.h"
37 #include "match.h"
38 #include "ircd.h"
39 #include "listener.h"
40 #include "hostmask.h"
41 #include "modules.h"
42 #include "numeric.h"
43 #include "logger.h"
44 #include "send.h"
45 #include "reject.h"
46 #include "cache.h"
47 #include "privilege.h"
48 #include "sslproc.h"
49 #include "wsproc.h"
50 #include "bandbi.h"
51 #include "operhash.h"
52 #include "chmode.h"
53 #include "hook.h"
54 #include "s_assert.h"
55 #include "authproc.h"
56 #include "supported.h"
57
58 struct config_server_hide ConfigServerHide;
59
60 extern int yyparse(void); /* defined in y.tab.c */
61 extern char yy_linebuf[16384]; /* defined in ircd_lexer.l */
62
63 static rb_bh *confitem_heap = NULL;
64
65 rb_dlink_list prop_bans;
66
67 rb_dlink_list temp_klines[LAST_TEMP_TYPE];
68 rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
69 rb_dlink_list service_list;
70
71 /* internally defined functions */
72 static void set_default_conf(void);
73 static void validate_conf(void);
74 static void read_conf(void);
75 static void clear_out_old_conf(void);
76
77 static void expire_prop_bans(void *list);
78 static void expire_temp_kd(void *list);
79 static void reorganise_temp_kd(void *list);
80
81 FILE *conf_fbfile_in;
82 extern char yytext[];
83
84 static int verify_access(struct Client *client_p, const char *username);
85 static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
86 static int attach_iline(struct Client *, struct ConfItem *);
87
88 void
89 init_s_conf(void)
90 {
91 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
92
93 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
94
95 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
96 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
97
98 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
99 &temp_klines[TEMP_HOUR], 3600);
100 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
101 &temp_dlines[TEMP_HOUR], 3600);
102 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
103 &temp_klines[TEMP_DAY], 86400);
104 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
105 &temp_dlines[TEMP_DAY], 86400);
106 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
107 &temp_klines[TEMP_WEEK], 604800);
108 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
109 &temp_dlines[TEMP_WEEK], 604800);
110 }
111
112 /*
113 * make_conf
114 *
115 * inputs - none
116 * output - pointer to new conf entry
117 * side effects - none
118 */
119 struct ConfItem *
120 make_conf()
121 {
122 struct ConfItem *aconf;
123
124 aconf = rb_bh_alloc(confitem_heap);
125 aconf->status = CONF_ILLEGAL;
126 return (aconf);
127 }
128
129 /*
130 * free_conf
131 *
132 * inputs - pointer to conf to free
133 * output - none
134 * side effects - crucial password fields are zeroed, conf is freed
135 */
136 void
137 free_conf(struct ConfItem *aconf)
138 {
139 s_assert(aconf != NULL);
140 if(aconf == NULL)
141 return;
142
143 /* security.. */
144 if(aconf->passwd)
145 memset(aconf->passwd, 0, strlen(aconf->passwd));
146 if(aconf->spasswd)
147 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
148
149 rb_free(aconf->passwd);
150 rb_free(aconf->spasswd);
151 rb_free(aconf->className);
152 rb_free(aconf->user);
153 rb_free(aconf->host);
154
155 if(IsConfBan(aconf))
156 operhash_delete(aconf->info.oper);
157 else
158 rb_free(aconf->info.name);
159
160 rb_bh_free(confitem_heap, aconf);
161 }
162
163 /*
164 * check_client
165 *
166 * inputs - pointer to client
167 * output - 0 = Success
168 * NOT_AUTHORISED (-1) = Access denied (no I line match)
169 * I_SOCKET_ERROR (-2) = Bad socket.
170 * I_LINE_FULL (-3) = I-line is full
171 * TOO_MANY (-4) = Too many connections from hostname
172 * BANNED_CLIENT (-5) = K-lined
173 * side effects - Ordinary client access check.
174 * Look for conf lines which have the same
175 * status as the flags passed.
176 */
177 int
178 check_client(struct Client *client_p, struct Client *source_p, const char *username)
179 {
180 int i;
181
182 if((i = verify_access(source_p, username)))
183 {
184 ilog(L_FUSER, "Access denied: %s[%s]",
185 source_p->name, source_p->sockhost);
186 }
187
188 switch (i)
189 {
190 case I_SOCKET_ERROR:
191 exit_client(client_p, source_p, &me, "Socket Error");
192 break;
193
194 case TOO_MANY_LOCAL:
195 /* Note that these notices are sent to opers on other
196 * servers also, so even if local opers are allowed to
197 * see the IP, we still cannot send it.
198 */
199 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
200 "Too many local connections for %s!%s%s@%s",
201 source_p->name, IsGotId(source_p) ? "" : "~",
202 source_p->username,
203 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
204
205 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
206 source_p->name, IsGotId(source_p) ? "" : "~",
207 source_p->username, source_p->sockhost);
208
209 ServerStats.is_ref++;
210 exit_client(client_p, source_p, &me, "Too many host connections (local)");
211 break;
212
213 case TOO_MANY_GLOBAL:
214 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
215 "Too many global connections for %s!%s%s@%s",
216 source_p->name, IsGotId(source_p) ? "" : "~",
217 source_p->username,
218 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
219 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
220 source_p->name, IsGotId(source_p) ? "" : "~",
221 source_p->username, source_p->sockhost);
222
223 ServerStats.is_ref++;
224 exit_client(client_p, source_p, &me, "Too many host connections (global)");
225 break;
226
227 case TOO_MANY_IDENT:
228 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
229 "Too many user connections for %s!%s%s@%s",
230 source_p->name, IsGotId(source_p) ? "" : "~",
231 source_p->username,
232 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
233 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
234 source_p->name, IsGotId(source_p) ? "" : "~",
235 source_p->username, source_p->sockhost);
236
237 ServerStats.is_ref++;
238 exit_client(client_p, source_p, &me, "Too many user connections (global)");
239 break;
240
241 case I_LINE_FULL:
242 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
243 "I-line is full for %s!%s%s@%s (%s).",
244 source_p->name, IsGotId(source_p) ? "" : "~",
245 source_p->username, source_p->host,
246 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
247
248 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
249 source_p->name, IsGotId(source_p) ? "" : "~",
250 source_p->username, source_p->sockhost);
251
252 ServerStats.is_ref++;
253 exit_client(client_p, source_p, &me,
254 "No more connections allowed in your connection class");
255 break;
256
257 case NOT_AUTHORISED:
258 {
259 int port = -1;
260 port = ntohs(GET_SS_PORT(&source_p->localClient->listener->addr[0]));
261
262 ServerStats.is_ref++;
263 /* jdc - lists server name & port connections are on */
264 /* a purely cosmetical change */
265 /* why ipaddr, and not just source_p->sockhost? --fl */
266 #if 0
267 static char ipaddr[HOSTIPLEN];
268 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
269 #endif
270 sendto_realops_snomask(SNO_UNAUTH, L_NETWIDE,
271 "Unauthorised client connection from "
272 "%s!%s%s@%s [%s] on [%s/%u].",
273 source_p->name, IsGotId(source_p) ? "" : "~",
274 source_p->username, source_p->host,
275 source_p->sockhost,
276 source_p->localClient->listener->name, port);
277
278 ilog(L_FUSER,
279 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
280 source_p->name, IsGotId(source_p) ? "" : "~",
281 source_p->username, source_p->sockhost,
282 source_p->localClient->listener->name, port);
283 add_reject(client_p, NULL, NULL, NULL, "You are not authorised to use this server.");
284 exit_client(client_p, source_p, &me, "You are not authorised to use this server.");
285 break;
286 }
287 case BANNED_CLIENT:
288 exit_client(client_p, client_p, &me, "*** Banned ");
289 ServerStats.is_ref++;
290 break;
291
292 case 0:
293 default:
294 break;
295 }
296 return (i);
297 }
298
299 /*
300 * verify_access
301 *
302 * inputs - pointer to client to verify
303 * - pointer to proposed username
304 * output - 0 if success -'ve if not
305 * side effect - find the first (best) I line to attach.
306 */
307 static int
308 verify_access(struct Client *client_p, const char *username)
309 {
310 struct ConfItem *aconf;
311
312 aconf = find_address_conf_by_client(client_p, username);
313 if(aconf == NULL)
314 return NOT_AUTHORISED;
315
316 if(aconf->status & CONF_CLIENT)
317 {
318 if(aconf->flags & CONF_FLAGS_REDIR)
319 {
320 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
321 aconf->info.name ? aconf->info.name : "", aconf->port);
322 return (NOT_AUTHORISED);
323 }
324
325 /* Thanks for spoof idea amm */
326 if(IsConfDoSpoofIp(aconf))
327 {
328 char *p;
329
330 /* show_ip() depends on this --fl */
331 SetIPSpoof(client_p);
332
333 if(IsConfSpoofNotice(aconf))
334 {
335 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
336 "%s spoofing: %s as %s",
337 client_p->name,
338 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
339 aconf->info.name);
340 }
341
342 /* user@host spoof */
343 if((p = strchr(aconf->info.name, '@')) != NULL)
344 {
345 char *host = p+1;
346 *p = '\0';
347
348 rb_strlcpy(client_p->username, aconf->info.name,
349 sizeof(client_p->username));
350 rb_strlcpy(client_p->host, host,
351 sizeof(client_p->host));
352 *p = '@';
353 }
354 else
355 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
356 }
357 return (attach_iline(client_p, aconf));
358 }
359 else if(aconf->status & CONF_KILL)
360 {
361 if(ConfigFileEntry.kline_with_reason)
362 sendto_one(client_p,
363 form_str(ERR_YOUREBANNEDCREEP),
364 me.name, client_p->name,
365 get_user_ban_reason(aconf));
366 add_reject(client_p, aconf->user, aconf->host, aconf, NULL);
367 return (BANNED_CLIENT);
368 }
369
370 return NOT_AUTHORISED;
371 }
372
373
374 /*
375 * find_address_conf_by_client
376 */
377 static struct ConfItem *
378 find_address_conf_by_client(struct Client *client_p, const char *username)
379 {
380 struct ConfItem *aconf;
381 char non_ident[USERLEN + 1];
382
383 if(IsGotId(client_p))
384 {
385 aconf = find_address_conf(client_p->host, client_p->sockhost,
386 client_p->username, client_p->username,
387 (struct sockaddr *) &client_p->localClient->ip,
388 GET_SS_FAMILY(&client_p->localClient->ip),
389 client_p->localClient->auth_user);
390 }
391 else
392 {
393 rb_strlcpy(non_ident, "~", sizeof(non_ident));
394 rb_strlcat(non_ident, username, sizeof(non_ident));
395 aconf = find_address_conf(client_p->host, client_p->sockhost,
396 non_ident, client_p->username,
397 (struct sockaddr *) &client_p->localClient->ip,
398 GET_SS_FAMILY(&client_p->localClient->ip),
399 client_p->localClient->auth_user);
400 }
401 return aconf;
402 }
403
404
405 /*
406 * add_ip_limit
407 *
408 * Returns 1 if successful 0 if not
409 *
410 * This checks if the user has exceed the limits for their class
411 * unless of course they are exempt..
412 */
413
414 static int
415 add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
416 {
417 rb_patricia_node_t *pnode;
418 int bitlen;
419
420 /* If the limits are 0 don't do anything.. */
421 if(ConfCidrAmount(aconf) == 0
422 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
423 return -1;
424
425 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
426
427 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
428 bitlen = ConfCidrIpv4Bitlen(aconf);
429 else
430 bitlen = ConfCidrIpv6Bitlen(aconf);
431
432 if(pnode == NULL)
433 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
434
435 s_assert(pnode != NULL);
436
437 if(pnode != NULL)
438 {
439 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
440 {
441 /* This should only happen if the limits are set to 0 */
442 if((intptr_t)pnode->data == 0)
443 {
444 rb_patricia_remove(ConfIpLimits(aconf), pnode);
445 }
446 return (0);
447 }
448
449 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
450 }
451 return 1;
452 }
453
454 static void
455 remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
456 {
457 rb_patricia_node_t *pnode;
458
459 /* If the limits are 0 don't do anything.. */
460 if(ConfCidrAmount(aconf) == 0
461 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
462 return;
463
464 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
465 if(pnode == NULL)
466 return;
467
468 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
469 if(((intptr_t)pnode->data) == 0)
470 {
471 rb_patricia_remove(ConfIpLimits(aconf), pnode);
472 }
473
474 }
475
476 /*
477 * attach_iline
478 *
479 * inputs - client pointer
480 * - conf pointer
481 * output -
482 * side effects - do actual attach
483 */
484 static int
485 attach_iline(struct Client *client_p, struct ConfItem *aconf)
486 {
487 struct Client *target_p;
488 rb_dlink_node *ptr;
489 int local_count = 0;
490 int global_count = 0;
491 int ident_count = 0;
492 int unidented;
493
494 if(IsConfExemptLimits(aconf))
495 return (attach_conf(client_p, aconf));
496
497 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
498 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
499
500 /* find_hostname() returns the head of the list to search */
501 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
502 {
503 target_p = ptr->data;
504
505 if(irccmp(client_p->host, target_p->orighost) != 0)
506 continue;
507
508 if(MyConnect(target_p))
509 local_count++;
510
511 global_count++;
512
513 if(unidented)
514 {
515 if(*target_p->username == '~')
516 ident_count++;
517 }
518 else if(irccmp(target_p->username, client_p->username) == 0)
519 ident_count++;
520
521 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
522 return (TOO_MANY_LOCAL);
523 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
524 return (TOO_MANY_GLOBAL);
525 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
526 return (TOO_MANY_IDENT);
527 }
528
529
530 return (attach_conf(client_p, aconf));
531 }
532
533 /*
534 * deref_conf
535 *
536 * inputs - ConfItem that is referenced by something other than a client
537 * side effects - Decrement and free ConfItem if appropriate
538 */
539 void
540 deref_conf(struct ConfItem *aconf)
541 {
542 aconf->clients--;
543 if(!aconf->clients && IsIllegal(aconf))
544 free_conf(aconf);
545 }
546
547 /*
548 * detach_conf
549 *
550 * inputs - pointer to client to detach
551 * output - 0 for success, -1 for failure
552 * side effects - Disassociate configuration from the client.
553 * Also removes a class from the list if marked for deleting.
554 */
555 int
556 detach_conf(struct Client *client_p)
557 {
558 struct ConfItem *aconf;
559
560 aconf = client_p->localClient->att_conf;
561
562 if(aconf != NULL)
563 {
564 if(ClassPtr(aconf))
565 {
566 remove_ip_limit(client_p, aconf);
567
568 if(ConfCurrUsers(aconf) > 0)
569 --ConfCurrUsers(aconf);
570
571 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
572 {
573 free_class(ClassPtr(aconf));
574 ClassPtr(aconf) = NULL;
575 }
576
577 }
578
579 aconf->clients--;
580 if(!aconf->clients && IsIllegal(aconf))
581 free_conf(aconf);
582
583 client_p->localClient->att_conf = NULL;
584 return 0;
585 }
586
587 return -1;
588 }
589
590 /*
591 * attach_conf
592 *
593 * inputs - client pointer
594 * - conf pointer
595 * output -
596 * side effects - Associate a specific configuration entry to a *local*
597 * client (this is the one which used in accepting the
598 * connection). Note, that this automatically changes the
599 * attachment if there was an old one...
600 */
601 int
602 attach_conf(struct Client *client_p, struct ConfItem *aconf)
603 {
604 if(IsIllegal(aconf))
605 return (NOT_AUTHORISED);
606
607 if(s_assert(ClassPtr(aconf)))
608 return (NOT_AUTHORISED);
609
610 if(!add_ip_limit(client_p, aconf))
611 return (TOO_MANY_LOCAL);
612
613 if((aconf->status & CONF_CLIENT) &&
614 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
615 {
616 if(!IsConfExemptLimits(aconf))
617 {
618 return (I_LINE_FULL);
619 }
620 else
621 {
622 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
623 }
624
625 }
626
627 if(client_p->localClient->att_conf != NULL)
628 detach_conf(client_p);
629
630 client_p->localClient->att_conf = aconf;
631
632 aconf->clients++;
633 ConfCurrUsers(aconf)++;
634 return (0);
635 }
636
637 /*
638 * rehash
639 *
640 * Actual REHASH service routine. Called with sig == 0 if it has been called
641 * as a result of an operator issuing this command, else assume it has been
642 * called as a result of the server receiving a HUP signal.
643 */
644 bool
645 rehash(bool sig)
646 {
647 rb_dlink_node *n;
648
649 hook_data_rehash hdata = { sig };
650
651 if(sig)
652 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
653 "Got signal SIGHUP, reloading ircd conf. file");
654
655 rehash_authd();
656
657 privilegeset_prepare_rehash();
658
659 /* don't close listeners until we know we can go ahead with the rehash */
660 read_conf_files(false);
661
662 if(ServerInfo.description != NULL)
663 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
664 else
665 rb_strlcpy(me.info, "unknown", sizeof(me.info));
666
667 open_logfiles();
668
669 RB_DLINK_FOREACH(n, local_oper_list.head)
670 {
671 struct Client *oper = n->data;
672 struct PrivilegeSet *privset = oper->user->privset;
673 report_priv_change(oper, privset ? privset->shadow : NULL, privset);
674 }
675
676 privilegeset_cleanup_rehash();
677
678 call_hook(h_rehash, &hdata);
679 return false;
680 }
681
682 void
683 rehash_bans(void)
684 {
685 bandb_rehash_bans();
686 }
687
688 /*
689 * set_default_conf()
690 *
691 * inputs - NONE
692 * output - NONE
693 * side effects - Set default values here.
694 * This is called **PRIOR** to parsing the
695 * configuration file. If you want to do some validation
696 * of values later, put them in validate_conf().
697 */
698
699 static void
700 set_default_conf(void)
701 {
702 /* ServerInfo.name is not rehashable */
703 /* ServerInfo.name = ServerInfo.name; */
704 ServerInfo.description = NULL;
705 ServerInfo.network_name = NULL;
706
707 memset(&ServerInfo.bind4, 0, sizeof(ServerInfo.bind4));
708 SET_SS_FAMILY(&ServerInfo.bind4, AF_UNSPEC);
709 memset(&ServerInfo.bind6, 0, sizeof(ServerInfo.bind6));
710 SET_SS_FAMILY(&ServerInfo.bind6, AF_UNSPEC);
711
712 AdminInfo.name = NULL;
713 AdminInfo.email = NULL;
714 AdminInfo.description = NULL;
715
716 ConfigFileEntry.default_operstring = NULL;
717 ConfigFileEntry.default_adminstring = NULL;
718 ConfigFileEntry.servicestring = NULL;
719 ConfigFileEntry.sasl_service = NULL;
720
721 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
722 ConfigFileEntry.failed_oper_notice = true;
723 ConfigFileEntry.anti_nick_flood = false;
724 ConfigFileEntry.disable_fake_channels = false;
725 ConfigFileEntry.max_nick_time = 20;
726 ConfigFileEntry.max_nick_changes = 5;
727 ConfigFileEntry.max_accept = 20;
728 ConfigFileEntry.max_monitor = 60;
729 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
730 ConfigFileEntry.target_change = true;
731 ConfigFileEntry.anti_spam_exit_message_time = 0;
732 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
733 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
734 ConfigFileEntry.client_exit = true;
735 ConfigFileEntry.dline_with_reason = true;
736 ConfigFileEntry.kline_with_reason = true;
737 ConfigFileEntry.warn_no_nline = true;
738 ConfigFileEntry.non_redundant_klines = true;
739 ConfigFileEntry.stats_e_disabled = false;
740 ConfigFileEntry.stats_o_oper_only = false;
741 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
742 ConfigFileEntry.stats_l_oper_only = 1; /* self */
743 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
744 ConfigFileEntry.stats_P_oper_only = false;
745 ConfigFileEntry.stats_c_oper_only = false;
746 ConfigFileEntry.stats_y_oper_only = false;
747 ConfigFileEntry.map_oper_only = true;
748 ConfigFileEntry.operspy_admin_only = false;
749 ConfigFileEntry.pace_wait = 10;
750 ConfigFileEntry.caller_id_wait = 60;
751 ConfigFileEntry.pace_wait_simple = 1;
752 ConfigFileEntry.short_motd = false;
753 ConfigFileEntry.no_oper_flood = false;
754 ConfigFileEntry.fname_userlog = NULL;
755 ConfigFileEntry.fname_fuserlog = NULL;
756 ConfigFileEntry.fname_operlog = NULL;
757 ConfigFileEntry.fname_foperlog = NULL;
758 ConfigFileEntry.fname_serverlog = NULL;
759 ConfigFileEntry.fname_killlog = NULL;
760 ConfigFileEntry.fname_klinelog = NULL;
761 ConfigFileEntry.fname_operspylog = NULL;
762 ConfigFileEntry.fname_ioerrorlog = NULL;
763 ConfigFileEntry.hide_spoof_ips = true;
764 ConfigFileEntry.hide_error_messages = 1;
765 ConfigFileEntry.dots_in_ident = 0;
766 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
767 ConfigFileEntry.use_whois_actually = true;
768 ConfigFileEntry.burst_away = false;
769 ConfigFileEntry.collision_fnc = true;
770 ConfigFileEntry.resv_fnc = true;
771 ConfigFileEntry.global_snotices = true;
772 ConfigFileEntry.operspy_dont_care_user_info = false;
773 ConfigFileEntry.use_propagated_bans = true;
774 ConfigFileEntry.max_ratelimit_tokens = 30;
775 ConfigFileEntry.away_interval = 30;
776 ConfigFileEntry.tls_ciphers_oper_only = false;
777 ConfigFileEntry.oper_secure_only = false;
778
779 #ifdef HAVE_LIBZ
780 ConfigFileEntry.compression_level = 4;
781 #endif
782
783 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
784 UMODE_OPERWALL | UMODE_WALLOP;
785 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
786 ConfigFileEntry.oper_snomask = SNO_GENERAL;
787
788 ConfigChannel.use_except = true;
789 ConfigChannel.use_invex = true;
790 ConfigChannel.use_forward = true;
791 ConfigChannel.use_knock = true;
792 ConfigChannel.knock_delay = 300;
793 ConfigChannel.knock_delay_channel = 60;
794 ConfigChannel.max_chans_per_user = 15;
795 ConfigChannel.max_chans_per_user_large = 60;
796 ConfigChannel.max_bans = 25;
797 ConfigChannel.max_bans_large = 500;
798 ConfigChannel.only_ascii_channels = false;
799 ConfigChannel.burst_topicwho = false;
800 ConfigChannel.kick_on_split_riding = false;
801
802 ConfigChannel.default_split_user_count = 15000;
803 ConfigChannel.default_split_server_count = 10;
804 ConfigChannel.no_join_on_split = false;
805 ConfigChannel.no_create_on_split = true;
806 ConfigChannel.resv_forcepart = true;
807 ConfigChannel.channel_target_change = true;
808 ConfigChannel.disable_local_channels = false;
809 ConfigChannel.displayed_usercount = 3;
810 ConfigChannel.opmod_send_statusmsg = false;
811 ConfigChannel.ip_bans_through_vhost= true;
812
813 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
814
815 ConfigServerHide.flatten_links = 0;
816 ConfigServerHide.links_delay = 300;
817 ConfigServerHide.hidden = 0;
818 ConfigServerHide.disable_hidden = 0;
819
820 ConfigFileEntry.min_nonwildcard = 4;
821 ConfigFileEntry.min_nonwildcard_simple = 3;
822 ConfigFileEntry.default_floodcount = 8;
823 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
824 ConfigFileEntry.tkline_expire_notices = 0;
825
826 ConfigFileEntry.reject_after_count = 5;
827 ConfigFileEntry.reject_ban_time = 300;
828 ConfigFileEntry.reject_duration = 120;
829 ConfigFileEntry.throttle_count = 4;
830 ConfigFileEntry.throttle_duration = 60;
831
832 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
833 ConfigFileEntry.client_flood_burst_rate = 5;
834 ConfigFileEntry.client_flood_burst_max = 5;
835 ConfigFileEntry.client_flood_message_time = 1;
836 ConfigFileEntry.client_flood_message_num = 2;
837
838 ServerInfo.default_max_clients = MAXCONNECTIONS;
839
840 ConfigFileEntry.nicklen = NICKLEN;
841 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_CERT_SHA1;
842 ConfigFileEntry.hide_opers_in_whois = 0;
843 ConfigFileEntry.hide_opers = 0;
844
845 if (!alias_dict)
846 alias_dict = rb_dictionary_create("alias", rb_strcasecmp);
847 }
848
849 /*
850 * read_conf()
851 *
852 *
853 * inputs - None
854 * output - None
855 * side effects - Read configuration file.
856 */
857 static void
858 read_conf(void)
859 {
860 lineno = 0;
861
862 set_default_conf(); /* Set default values prior to conf parsing */
863 yyparse(); /* Load the values from the conf */
864 validate_conf(); /* Check to make sure some values are still okay. */
865 /* Some global values are also loaded here. */
866 check_class(); /* Make sure classes are valid */
867 construct_cflags_strings();
868 }
869
870 static void
871 validate_conf(void)
872 {
873 if(ConfigFileEntry.default_ident_timeout < 1)
874 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
875
876 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
877 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
878
879 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
880 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
881
882 if(ServerInfo.network_name == NULL)
883 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
884
885 if(ServerInfo.ssld_count < 1)
886 ServerInfo.ssld_count = 1;
887
888 /* XXX: configurable? */
889 ServerInfo.wsockd_count = 1;
890
891 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
892 {
893 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
894 ircd_ssl_ok = false;
895 } else {
896 ircd_ssl_ok = true;
897 ssld_update_config();
898 }
899
900 if(ServerInfo.ssld_count > get_ssld_count())
901 {
902 int start = ServerInfo.ssld_count - get_ssld_count();
903 /* start up additional ssld if needed */
904 start_ssldaemon(start);
905 }
906
907 if(ServerInfo.wsockd_count > get_wsockd_count())
908 {
909 int start = ServerInfo.wsockd_count - get_wsockd_count();
910 start_wsockd(start);
911 }
912
913 /* General conf */
914 if (ConfigFileEntry.default_operstring == NULL)
915 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
916
917 if (ConfigFileEntry.default_adminstring == NULL)
918 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
919
920 if (ConfigFileEntry.servicestring == NULL)
921 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
922
923 if (ConfigFileEntry.sasl_service == NULL)
924 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
925
926 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
927 * 5 messages are acceptable, so allow at least that.
928 */
929 if(ConfigFileEntry.client_flood_burst_rate < 5)
930 ConfigFileEntry.client_flood_burst_rate = 5;
931 if(ConfigFileEntry.client_flood_burst_max < 5)
932 ConfigFileEntry.client_flood_burst_max = 5;
933 if(ConfigFileEntry.client_flood_message_time >
934 ConfigFileEntry.client_flood_message_num * 2)
935 ConfigFileEntry.client_flood_message_time =
936 ConfigFileEntry.client_flood_message_num * 2;
937
938 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
939 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
940 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
941
942 if(!split_users || !split_servers ||
943 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
944 {
945 rb_event_delete(check_splitmode_ev);
946 check_splitmode_ev = NULL;
947 splitmode = 0;
948 splitchecking = 0;
949 }
950
951 CharAttrs['&'] |= CHANPFX_C;
952 if (ConfigChannel.disable_local_channels)
953 CharAttrs['&'] &= ~CHANPFX_C;
954
955 chantypes_update();
956 }
957
958 /* add_temp_kline()
959 *
960 * inputs - pointer to struct ConfItem
961 * output - none
962 * Side effects - links in given struct ConfItem into
963 * temporary kline link list
964 */
965 void
966 add_temp_kline(struct ConfItem *aconf)
967 {
968 if(aconf->hold >= rb_current_time() + (10080 * 60))
969 {
970 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
971 aconf->port = TEMP_WEEK;
972 }
973 else if(aconf->hold >= rb_current_time() + (1440 * 60))
974 {
975 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
976 aconf->port = TEMP_DAY;
977 }
978 else if(aconf->hold >= rb_current_time() + (60 * 60))
979 {
980 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
981 aconf->port = TEMP_HOUR;
982 }
983 else
984 {
985 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
986 aconf->port = TEMP_MIN;
987 }
988
989 aconf->flags |= CONF_FLAGS_TEMPORARY;
990 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
991 }
992
993 /* add_temp_dline()
994 *
995 * input - pointer to struct ConfItem
996 * output - none
997 * side effects - added to tdline link list and address hash
998 */
999 void
1000 add_temp_dline(struct ConfItem *aconf)
1001 {
1002 if(aconf->hold >= rb_current_time() + (10080 * 60))
1003 {
1004 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
1005 aconf->port = TEMP_WEEK;
1006 }
1007 else if(aconf->hold >= rb_current_time() + (1440 * 60))
1008 {
1009 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
1010 aconf->port = TEMP_DAY;
1011 }
1012 else if(aconf->hold >= rb_current_time() + (60 * 60))
1013 {
1014 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
1015 aconf->port = TEMP_HOUR;
1016 }
1017 else
1018 {
1019 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
1020 aconf->port = TEMP_MIN;
1021 }
1022
1023 aconf->flags |= CONF_FLAGS_TEMPORARY;
1024 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
1025 }
1026
1027 /* valid_wild_card()
1028 *
1029 * input - user buffer, host buffer
1030 * output - 0 if invalid, 1 if valid
1031 * side effects -
1032 */
1033 int
1034 valid_wild_card(const char *luser, const char *lhost)
1035 {
1036 const char *p;
1037 char tmpch;
1038 int nonwild = 0;
1039 int bitlen;
1040
1041 /* user has no wildcards, always accept -- jilles */
1042 if(!strchr(luser, '?') && !strchr(luser, '*'))
1043 return 1;
1044
1045 /* check there are enough non wildcard chars */
1046 p = luser;
1047 while((tmpch = *p++))
1048 {
1049 if(!IsKWildChar(tmpch))
1050 {
1051 /* found enough chars, return */
1052 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1053 return 1;
1054 }
1055 }
1056
1057 /* try host, as user didnt contain enough */
1058 /* special case for cidr masks -- jilles */
1059 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1060 {
1061 bitlen = atoi(p + 1);
1062 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1063 if(bitlen > 0
1064 && bitlen >=
1065 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1066 2 * nonwild))
1067 return 1;
1068 }
1069 else
1070 {
1071 p = lhost;
1072 while((tmpch = *p++))
1073 {
1074 if(!IsKWildChar(tmpch))
1075 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1076 return 1;
1077 }
1078 }
1079
1080 return 0;
1081 }
1082
1083 rb_dlink_node *
1084 find_prop_ban(unsigned int status, const char *user, const char *host)
1085 {
1086 rb_dlink_node *ptr;
1087 struct ConfItem *aconf;
1088
1089 RB_DLINK_FOREACH(ptr, prop_bans.head)
1090 {
1091 aconf = ptr->data;
1092
1093 if((aconf->status & ~CONF_ILLEGAL) == status &&
1094 (!user || !aconf->user ||
1095 !irccmp(aconf->user, user)) &&
1096 !irccmp(aconf->host, host))
1097 return ptr;
1098 }
1099 return NULL;
1100 }
1101
1102 void
1103 deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
1104 {
1105 int i;
1106
1107 s_assert(ptr->data == aconf);
1108
1109 switch (aconf->status)
1110 {
1111 case CONF_KILL:
1112 if (aconf->lifetime == 0 &&
1113 aconf->flags & CONF_FLAGS_TEMPORARY)
1114 for (i = 0; i < LAST_TEMP_TYPE; i++)
1115 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1116 /* Make sure delete_one_address_conf() does not
1117 * free the aconf.
1118 */
1119 aconf->clients++;
1120 delete_one_address_conf(aconf->host, aconf);
1121 aconf->clients--;
1122 break;
1123 case CONF_DLINE:
1124 if (aconf->lifetime == 0 &&
1125 aconf->flags & CONF_FLAGS_TEMPORARY)
1126 for (i = 0; i < LAST_TEMP_TYPE; i++)
1127 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1128 aconf->clients++;
1129 delete_one_address_conf(aconf->host, aconf);
1130 aconf->clients--;
1131 break;
1132 case CONF_XLINE:
1133 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1134 break;
1135 case CONF_RESV_NICK:
1136 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1137 break;
1138 case CONF_RESV_CHANNEL:
1139 del_from_resv_hash(aconf->host, aconf);
1140 break;
1141 }
1142 if (aconf->lifetime != 0 && now < aconf->lifetime)
1143 {
1144 aconf->status |= CONF_ILLEGAL;
1145 }
1146 else
1147 {
1148 if (aconf->lifetime != 0)
1149 rb_dlinkDestroy(ptr, &prop_bans);
1150 if (aconf->clients == 0)
1151 free_conf(aconf);
1152 else
1153 aconf->status |= CONF_ILLEGAL;
1154 }
1155 }
1156
1157 /* Given a new ban ConfItem, look for any matching ban, update the lifetime
1158 * from it and delete it.
1159 */
1160 void
1161 replace_old_ban(struct ConfItem *aconf)
1162 {
1163 rb_dlink_node *ptr;
1164 struct ConfItem *oldconf;
1165
1166 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1167 if(ptr != NULL)
1168 {
1169 oldconf = ptr->data;
1170 /* Remember at least as long as the old one. */
1171 if(oldconf->lifetime > aconf->lifetime)
1172 aconf->lifetime = oldconf->lifetime;
1173 /* Force creation time to increase. */
1174 if(oldconf->created >= aconf->created)
1175 aconf->created = oldconf->created + 1;
1176 /* Leave at least one second of validity. */
1177 if(aconf->hold <= aconf->created)
1178 aconf->hold = aconf->created + 1;
1179 if(aconf->lifetime < aconf->hold)
1180 aconf->lifetime = aconf->hold;
1181 /* Tell deactivate_conf() to destroy it. */
1182 oldconf->lifetime = rb_current_time();
1183 deactivate_conf(oldconf, ptr, oldconf->lifetime);
1184 }
1185 }
1186
1187 static void
1188 expire_prop_bans(void *list)
1189 {
1190 rb_dlink_node *ptr;
1191 rb_dlink_node *next_ptr;
1192 struct ConfItem *aconf;
1193 time_t now;
1194
1195 now = rb_current_time();
1196 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1197 {
1198 aconf = ptr->data;
1199
1200 if(aconf->lifetime <= now ||
1201 (aconf->hold <= now &&
1202 !(aconf->status & CONF_ILLEGAL)))
1203 {
1204 /* Alert opers that a TKline expired - Hwy */
1205 /* XXX show what type of ban it is */
1206 if(ConfigFileEntry.tkline_expire_notices &&
1207 !(aconf->status & CONF_ILLEGAL))
1208 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1209 "Propagated ban for [%s%s%s] expired",
1210 aconf->user ? aconf->user : "",
1211 aconf->user ? "@" : "",
1212 aconf->host ? aconf->host : "*");
1213
1214 /* will destroy or mark illegal */
1215 deactivate_conf(aconf, ptr, now);
1216 }
1217 }
1218 }
1219
1220 /* expire_tkline()
1221 *
1222 * inputs - list pointer
1223 * - type
1224 * output - NONE
1225 * side effects - expire tklines and moves them between lists
1226 */
1227 static void
1228 expire_temp_kd(void *list)
1229 {
1230 rb_dlink_node *ptr;
1231 rb_dlink_node *next_ptr;
1232 struct ConfItem *aconf;
1233
1234 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1235 {
1236 aconf = ptr->data;
1237
1238 if(aconf->hold <= rb_current_time())
1239 {
1240 /* Alert opers that a TKline expired - Hwy */
1241 if(ConfigFileEntry.tkline_expire_notices)
1242 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1243 "Temporary K-line for [%s@%s] expired",
1244 (aconf->user) ? aconf->
1245 user : "*", (aconf->host) ? aconf->host : "*");
1246
1247 delete_one_address_conf(aconf->host, aconf);
1248 rb_dlinkDestroy(ptr, list);
1249 }
1250 }
1251 }
1252
1253 static void
1254 reorganise_temp_kd(void *list)
1255 {
1256 struct ConfItem *aconf;
1257 rb_dlink_node *ptr, *next_ptr;
1258
1259 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1260 {
1261 aconf = ptr->data;
1262
1263 if(aconf->hold < (rb_current_time() + (60 * 60)))
1264 {
1265 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1266 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1267 aconf->port = TEMP_MIN;
1268 }
1269 else if(aconf->port > TEMP_HOUR)
1270 {
1271 if(aconf->hold < (rb_current_time() + (1440 * 60)))
1272 {
1273 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1274 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1275 aconf->port = TEMP_HOUR;
1276 }
1277 else if(aconf->port > TEMP_DAY &&
1278 (aconf->hold < (rb_current_time() + (10080 * 60))))
1279 {
1280 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1281 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1282 aconf->port = TEMP_DAY;
1283 }
1284 }
1285 }
1286 }
1287
1288
1289 /* const char* get_oper_name(struct Client *client_p)
1290 * Input: A client to find the active oper{} name for.
1291 * Output: The nick!user@host{oper} of the oper.
1292 * "oper" is server name for unknown opers
1293 * Side effects: None.
1294 */
1295 const char *
1296 get_oper_name(struct Client *client_p)
1297 {
1298 /* +5 for !,@,{,} and null */
1299 static char buffer[NAMELEN + USERLEN + HOSTLEN + MAX(HOSTLEN, OPERNICKLEN) + 5];
1300
1301 const char *opername = EmptyString(client_p->user->opername)
1302 ? client_p->servptr->name
1303 : client_p->user->opername;
1304
1305 snprintf(buffer, sizeof buffer, "%s!%s@%s{%s}",
1306 client_p->name, client_p->username,
1307 client_p->host, opername);
1308 return buffer;
1309 }
1310
1311 /*
1312 * get_printable_conf
1313 *
1314 * inputs - struct ConfItem
1315 *
1316 * output - name
1317 * - host
1318 * - pass
1319 * - user
1320 * - port
1321 *
1322 * side effects -
1323 * Examine the struct struct ConfItem, setting the values
1324 * of name, host, pass, user to values either
1325 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1326 */
1327 void
1328 get_printable_conf(struct ConfItem *aconf, char **name, char **host,
1329 const char **pass, char **user, int *port, char **classname)
1330 {
1331 static char null[] = "<NULL>";
1332 static char zero[] = "default";
1333
1334 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
1335 *host = EmptyString(aconf->host) ? null : aconf->host;
1336 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1337 *user = EmptyString(aconf->user) ? null : aconf->user;
1338 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1339 *port = (int) aconf->port;
1340 }
1341
1342 char *
1343 get_user_ban_reason(struct ConfItem *aconf)
1344 {
1345 static char reasonbuf[BUFSIZE];
1346
1347 if (!ConfigFileEntry.hide_tkdline_duration &&
1348 aconf->flags & CONF_FLAGS_TEMPORARY &&
1349 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
1350 snprintf(reasonbuf, sizeof reasonbuf,
1351 "Temporary %c-line %d min. - ",
1352 aconf->status == CONF_DLINE ? 'D' : 'K',
1353 (int)((aconf->hold - aconf->created) / 60));
1354 else
1355 reasonbuf[0] = '\0';
1356 if (aconf->passwd)
1357 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1358 else
1359 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1360 if (aconf->created)
1361 {
1362 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1363 rb_strlcat(reasonbuf, smalldate(aconf->created),
1364 sizeof reasonbuf);
1365 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1366 }
1367 return reasonbuf;
1368 }
1369
1370 void
1371 get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
1372 char **host, char **reason,
1373 char **user, char **oper_reason)
1374 {
1375 static char null[] = "<NULL>";
1376 static char operreasonbuf[BUFSIZE];
1377
1378 *host = EmptyString(aconf->host) ? null : aconf->host;
1379 *user = EmptyString(aconf->user) ? null : aconf->user;
1380 *reason = get_user_ban_reason(aconf);
1381
1382 if(!IsOperGeneral(source_p))
1383 *oper_reason = NULL;
1384 else
1385 {
1386 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
1387 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1388 EmptyString(aconf->spasswd) ? "" : " ",
1389 aconf->info.oper);
1390 *oper_reason = operreasonbuf;
1391 }
1392 }
1393
1394 /*
1395 * read_conf_files
1396 *
1397 * inputs - cold start
1398 * output - none
1399 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1400 */
1401 void
1402 read_conf_files(bool cold)
1403 {
1404 const char *filename;
1405
1406 conf_fbfile_in = NULL;
1407
1408 filename = ConfigFileEntry.configfile;
1409
1410 /* We need to know the initial filename for the yyerror() to report
1411 FIXME: The full path is in conffilenamebuf first time since we
1412 dont know anything else
1413
1414 - Gozem 2002-07-21
1415
1416
1417 */
1418 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
1419
1420 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1421 {
1422 if(cold)
1423 {
1424 inotice("Failed in reading configuration file %s, aborting", filename);
1425 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1426
1427 int e;
1428 e = errno;
1429
1430 inotice("FATAL: %s %s", strerror(e), filename);
1431 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
1432
1433 exit(-1);
1434 }
1435 else
1436 {
1437 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE,
1438 "Can't open file '%s' - aborting rehash!", filename);
1439 return;
1440 }
1441 }
1442
1443 if(!cold)
1444 {
1445 clear_out_old_conf();
1446 }
1447
1448 call_hook(h_conf_read_start, NULL);
1449 read_conf();
1450 call_hook(h_conf_read_end, NULL);
1451
1452 fclose(conf_fbfile_in);
1453 }
1454
1455 /*
1456 * free an alias{} entry.
1457 */
1458 static void
1459 free_alias_cb(rb_dictionary_element *ptr, void *unused)
1460 {
1461 struct alias_entry *aptr = ptr->data;
1462
1463 rb_free(aptr->name);
1464 rb_free(aptr->target);
1465 rb_free(aptr);
1466 }
1467
1468 /*
1469 * clear_out_old_conf
1470 *
1471 * inputs - none
1472 * output - none
1473 * side effects - Clear out the old configuration
1474 */
1475 static void
1476 clear_out_old_conf(void)
1477 {
1478 struct Class *cltmp;
1479 rb_dlink_node *ptr;
1480 rb_dlink_node *next_ptr;
1481
1482 /*
1483 * don't delete the class table, rather mark all entries
1484 * for deletion. The table is cleaned up by check_class. - avalon
1485 */
1486 RB_DLINK_FOREACH(ptr, class_list.head)
1487 {
1488 cltmp = ptr->data;
1489 MaxUsers(cltmp) = -1;
1490 }
1491
1492 clear_out_address_conf(AC_CONFIG);
1493 clear_s_newconf();
1494
1495 /* clean out module paths */
1496 mod_clear_paths();
1497 mod_add_path(MODULE_DIR);
1498 mod_add_path(MODULE_DIR "/autoload");
1499
1500 /* clean out ServerInfo */
1501 rb_free(ServerInfo.description);
1502 ServerInfo.description = NULL;
1503 rb_free(ServerInfo.network_name);
1504 ServerInfo.network_name = NULL;
1505
1506 ServerInfo.ssld_count = 1;
1507
1508 /* clean out AdminInfo */
1509 rb_free(AdminInfo.name);
1510 AdminInfo.name = NULL;
1511 rb_free(AdminInfo.email);
1512 AdminInfo.email = NULL;
1513 rb_free(AdminInfo.description);
1514 AdminInfo.description = NULL;
1515
1516 /* operator{} and class{} blocks are freed above */
1517 /* clean out listeners */
1518 close_listeners();
1519
1520 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1521 * and gecos{} blocks are freed above too
1522 */
1523
1524 /* clean out general */
1525 rb_free(ConfigFileEntry.default_operstring);
1526 ConfigFileEntry.default_operstring = NULL;
1527 rb_free(ConfigFileEntry.default_adminstring);
1528 ConfigFileEntry.default_adminstring = NULL;
1529 rb_free(ConfigFileEntry.servicestring);
1530 ConfigFileEntry.servicestring = NULL;
1531 rb_free(ConfigFileEntry.kline_reason);
1532 ConfigFileEntry.kline_reason = NULL;
1533 rb_free(ConfigFileEntry.sasl_service);
1534 ConfigFileEntry.sasl_service = NULL;
1535 rb_free(ConfigFileEntry.drain_reason);
1536 ConfigFileEntry.drain_reason = NULL;
1537
1538 if (ConfigFileEntry.hidden_caps != NULL)
1539 {
1540 for (size_t i = 0; ConfigFileEntry.hidden_caps[i] != NULL; i++)
1541 rb_free(ConfigFileEntry.hidden_caps[i]);
1542 rb_free(ConfigFileEntry.hidden_caps);
1543 }
1544 ConfigFileEntry.hidden_caps = NULL;
1545
1546 /* clean out log */
1547 rb_free(ConfigFileEntry.fname_userlog);
1548 ConfigFileEntry.fname_userlog = NULL;
1549 rb_free(ConfigFileEntry.fname_fuserlog);
1550 ConfigFileEntry.fname_fuserlog = NULL;
1551 rb_free(ConfigFileEntry.fname_operlog);
1552 ConfigFileEntry.fname_operlog = NULL;
1553 rb_free(ConfigFileEntry.fname_foperlog);
1554 ConfigFileEntry.fname_foperlog = NULL;
1555 rb_free(ConfigFileEntry.fname_serverlog);
1556 ConfigFileEntry.fname_serverlog = NULL;
1557 rb_free(ConfigFileEntry.fname_killlog);
1558 ConfigFileEntry.fname_killlog = NULL;
1559 rb_free(ConfigFileEntry.fname_klinelog);
1560 ConfigFileEntry.fname_klinelog = NULL;
1561 rb_free(ConfigFileEntry.fname_operspylog);
1562 ConfigFileEntry.fname_operspylog = NULL;
1563 rb_free(ConfigFileEntry.fname_ioerrorlog);
1564 ConfigFileEntry.fname_ioerrorlog = NULL;
1565
1566 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
1567 {
1568 rb_free(ptr->data);
1569 rb_dlinkDestroy(ptr, &service_list);
1570 }
1571
1572 /* remove any aliases... -- nenolod */
1573 if (alias_dict != NULL)
1574 {
1575 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
1576 alias_dict = NULL;
1577 }
1578
1579 del_dnsbl_entry_all();
1580
1581 /* OK, that should be everything... */
1582 }
1583
1584
1585 /*
1586 * conf_add_class_to_conf
1587 * inputs - pointer to config item
1588 * output - NONE
1589 * side effects - Add a class pointer to a conf
1590 */
1591
1592 void
1593 conf_add_class_to_conf(struct ConfItem *aconf)
1594 {
1595 if(aconf->className == NULL)
1596 {
1597 aconf->className = rb_strdup("default");
1598 ClassPtr(aconf) = default_class;
1599 return;
1600 }
1601
1602 ClassPtr(aconf) = find_class(aconf->className);
1603
1604 if(ClassPtr(aconf) == default_class)
1605 {
1606 if(aconf->status == CONF_CLIENT)
1607 {
1608 conf_report_error(
1609 "Using default class for missing class \"%s\" in auth{} for %s@%s",
1610 aconf->className, aconf->user, aconf->host);
1611 }
1612
1613 rb_free(aconf->className);
1614 aconf->className = rb_strdup("default");
1615 return;
1616 }
1617
1618 if(ConfMaxUsers(aconf) < 0)
1619 {
1620 ClassPtr(aconf) = default_class;
1621 rb_free(aconf->className);
1622 aconf->className = rb_strdup("default");
1623 return;
1624 }
1625 }
1626
1627 /*
1628 * conf_add_d_conf
1629 * inputs - pointer to config item
1630 * output - NONE
1631 * side effects - Add a d/D line
1632 */
1633 void
1634 conf_add_d_conf(struct ConfItem *aconf)
1635 {
1636 if(aconf->host == NULL)
1637 return;
1638
1639 aconf->user = NULL;
1640
1641 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1642 * need this anyway, so I will disable it for now... -A1kmm
1643 */
1644
1645 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1646 {
1647 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1648 free_conf(aconf);
1649 }
1650 else
1651 {
1652 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
1653 }
1654 }
1655
1656 static void
1657 strip_tabs(char *dest, const char *src, size_t size)
1658 {
1659 char *d = dest;
1660
1661 if(dest == NULL || src == NULL)
1662 return;
1663
1664 rb_strlcpy(dest, src, size);
1665
1666 while(*d)
1667 {
1668 if(*d == '\t')
1669 *d = ' ';
1670 d++;
1671 }
1672 }
1673
1674 /*
1675 * yyerror
1676 *
1677 * inputs - message from parser
1678 * output - none
1679 * side effects - message to opers and log file entry is made
1680 */
1681 void
1682 yyerror(const char *msg)
1683 {
1684 char newlinebuf[BUFSIZE];
1685
1686 strip_tabs(newlinebuf, yy_linebuf, sizeof(newlinebuf));
1687
1688 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
1689 sendto_realops_snomask(SNO_GENERAL, L_NETWIDE, "\"%s\", line %d: %s at '%s'",
1690 conffilebuf, lineno + 1, msg, newlinebuf);
1691
1692 }
1693
1694 int
1695 conf_fgets(char *lbuf, int max_size, FILE * fb)
1696 {
1697 if(fgets(lbuf, max_size, fb) == NULL)
1698 return (0);
1699
1700 return (strlen(lbuf));
1701 }
1702
1703 int
1704 conf_yy_fatal_error(const char *msg)
1705 {
1706 return (0);
1707 }
Fork of solanum ircd, history is rebased regularly