2 * ircd-ratbox: A slightly useful ircd.
3 * s_serv.c: Server related functions.
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
28 #include <openssl/rsa.h>
37 #include "ircd_defs.h"
41 #include "s_newconf.h"
48 #include "channel.h" /* chcap_usage_counts stuff... */
53 #include "capability.h"
56 int MaxConnectionCount
= 1;
57 int MaxClientCount
= 1;
58 int refresh_user_links
= 0;
60 static char buf
[BUFSIZE
];
63 * list of recognized server capabilities. "TS" is not on the list
64 * because all servers that we talk to already do TS, and the kludged
65 * extra argument to "PASS" takes care of checking that. -orabidoo
67 struct CapabilityIndex
*serv_capindex
= NULL
;
68 struct CapabilityIndex
*cli_capindex
= NULL
;
76 unsigned int CAP_KNOCK
;
78 unsigned int CAP_UNKLN
;
79 unsigned int CAP_CLUSTER
;
80 unsigned int CAP_ENCAP
;
82 unsigned int CAP_SERVICE
;
83 unsigned int CAP_RSFNC
;
84 unsigned int CAP_SAVE
;
85 unsigned int CAP_EUID
;
86 unsigned int CAP_EOPMOD
;
88 unsigned int CAP_MLOCK
;
90 unsigned int CLICAP_MULTI_PREFIX
;
91 unsigned int CLICAP_ACCOUNT_NOTIFY
;
92 unsigned int CLICAP_EXTENDED_JOIN
;
93 unsigned int CLICAP_AWAY_NOTIFY
;
94 unsigned int CLICAP_USERHOST_IN_NAMES
;
95 unsigned int CLICAP_CAP_NOTIFY
;
96 unsigned int CLICAP_CHGHOST
;
97 unsigned int CLICAP_ECHO_MESSAGE
;
100 * initialize our builtin capability table. --nenolod
103 init_builtin_capabs(void)
105 static struct ClientCapability high_priority
= {.flags
= CLICAP_FLAGS_PRIORITY
};
106 serv_capindex
= capability_index_create("server capabilities");
108 /* These two are not set via CAPAB/GCAP keywords. */
109 CAP_CAP
= capability_put_anonymous(serv_capindex
);
110 CAP_TS6
= capability_put_anonymous(serv_capindex
);
112 CAP_QS
= capability_put(serv_capindex
, "QS", NULL
);
113 CAP_EX
= capability_put(serv_capindex
, "EX", NULL
);
114 CAP_CHW
= capability_put(serv_capindex
, "CHW", NULL
);
115 CAP_IE
= capability_put(serv_capindex
, "IE", NULL
);
116 CAP_KLN
= capability_put(serv_capindex
, "KLN", NULL
);
117 CAP_KNOCK
= capability_put(serv_capindex
, "KNOCK", NULL
);
118 CAP_TB
= capability_put(serv_capindex
, "TB", NULL
);
119 CAP_UNKLN
= capability_put(serv_capindex
, "UNKLN", NULL
);
120 CAP_CLUSTER
= capability_put(serv_capindex
, "CLUSTER", NULL
);
121 CAP_ENCAP
= capability_put(serv_capindex
, "ENCAP", NULL
);
122 CAP_SERVICE
= capability_put(serv_capindex
, "SERVICES", NULL
);
123 CAP_RSFNC
= capability_put(serv_capindex
, "RSFNC", NULL
);
124 CAP_SAVE
= capability_put(serv_capindex
, "SAVE", NULL
);
125 CAP_EUID
= capability_put(serv_capindex
, "EUID", NULL
);
126 CAP_EOPMOD
= capability_put(serv_capindex
, "EOPMOD", NULL
);
127 CAP_BAN
= capability_put(serv_capindex
, "BAN", NULL
);
128 CAP_MLOCK
= capability_put(serv_capindex
, "MLOCK", NULL
);
130 capability_require(serv_capindex
, "QS");
131 capability_require(serv_capindex
, "EX");
132 capability_require(serv_capindex
, "IE");
133 capability_require(serv_capindex
, "ENCAP");
135 cli_capindex
= capability_index_create("client capabilities");
137 CLICAP_MULTI_PREFIX
= capability_put(cli_capindex
, "multi-prefix", &high_priority
);
138 CLICAP_ACCOUNT_NOTIFY
= capability_put(cli_capindex
, "account-notify", &high_priority
);
139 CLICAP_EXTENDED_JOIN
= capability_put(cli_capindex
, "extended-join", &high_priority
);
140 CLICAP_AWAY_NOTIFY
= capability_put(cli_capindex
, "away-notify", &high_priority
);
141 CLICAP_USERHOST_IN_NAMES
= capability_put(cli_capindex
, "userhost-in-names", &high_priority
);
142 CLICAP_CAP_NOTIFY
= capability_put(cli_capindex
, "cap-notify", NULL
);
143 CLICAP_CHGHOST
= capability_put(cli_capindex
, "chghost", &high_priority
);
144 CLICAP_ECHO_MESSAGE
= capability_put(cli_capindex
, "echo-message", NULL
);
147 static CNCB serv_connect_callback
;
148 static CNCB serv_connect_ssl_callback
;
149 static SSL_OPEN_CB serv_connect_ssl_open_callback
;
152 * hunt_server - Do the basic thing in delivering the message (command)
153 * across the relays to the specific server (server) for
156 * Note: The command is a format string and *MUST* be
157 * of prefixed style (e.g. ":%s COMMAND %s ...").
158 * Command can have only max 8 parameters.
160 * server parv[server] is the parameter identifying the
164 * parv[server] is replaced with the pointer to the
165 * real servername from the matched client (I'm lazy
168 * returns: (see #defines)
171 hunt_server(struct Client
*client_p
, struct Client
*source_p
,
172 const char *command
, int server
, int parc
, const char *parv
[])
174 struct Client
*target_p
;
181 * Assume it's me, if no server
183 if(parc
<= server
|| EmptyString(parv
[server
]) ||
184 match(parv
[server
], me
.name
) || (strcmp(parv
[server
], me
.id
) == 0))
185 return (HUNTED_ISME
);
187 new = LOCAL_COPY(parv
[server
]);
190 * These are to pickup matches that would cause the following
191 * message to go in the wrong direction while doing quick fast
192 * non-matching lookups.
194 if(MyClient(source_p
))
195 target_p
= find_named_client(new);
197 target_p
= find_client(new);
200 if(target_p
->from
== source_p
->from
&& !MyConnect(target_p
))
204 wilds
= (strchr(new, '?') || strchr(new, '*'));
207 * Again, if there are no wild cards involved in the server
208 * name, use the hash lookup
210 if(!target_p
&& wilds
)
212 RB_DLINK_FOREACH(ptr
, global_serv_list
.head
)
214 if(match(new, ((struct Client
*) (ptr
->data
))->name
))
216 target_p
= ptr
->data
;
222 if(target_p
&& !IsRegistered(target_p
))
227 if(IsMe(target_p
) || MyClient(target_p
))
231 parv
[server
] = get_id(target_p
, target_p
);
233 sendto_one(target_p
, command
, get_id(source_p
, target_p
),
234 parv
[1], parv
[2], parv
[3], parv
[4], parv
[5], parv
[6], parv
[7], parv
[8]);
236 return (HUNTED_PASS
);
239 if(MyClient(source_p
) || !IsDigit(parv
[server
][0]))
240 sendto_one_numeric(source_p
, ERR_NOSUCHSERVER
,
241 form_str(ERR_NOSUCHSERVER
), parv
[server
]);
242 return (HUNTED_NOSUCH
);
246 * try_connections - scan through configuration and try new connections.
247 * Returns the calendar time when the next call to this
248 * function should be made latest. (No harm done if this
249 * is called earlier or later...)
252 try_connections(void *unused
)
254 struct Client
*client_p
;
255 struct server_conf
*server_p
= NULL
;
256 struct server_conf
*tmp_p
;
259 bool connecting
= false;
263 RB_DLINK_FOREACH(ptr
, server_conf_list
.head
)
267 if(ServerConfIllegal(tmp_p
) || !ServerConfAutoconn(tmp_p
))
270 /* don't allow ssl connections if ssl isn't setup */
271 if(ServerConfSSL(tmp_p
) && (!ircd_ssl_ok
|| !get_ssld_count()))
274 cltmp
= tmp_p
->class;
277 * Skip this entry if the use of it is still on hold until
278 * future. Otherwise handle this entry (and set it on hold
279 * until next time). Will reset only hold times, if already
280 * made one successfull connection... [this algorithm is
281 * a bit fuzzy... -- msa >;) ]
283 if(tmp_p
->hold
> rb_current_time())
285 if(next
> tmp_p
->hold
|| next
== 0)
290 confrq
= get_con_freq(cltmp
);
291 tmp_p
->hold
= rb_current_time() + confrq
;
294 * Found a CONNECT config with port specified, scan clients
295 * and see if this server is already connected?
297 client_p
= find_server(NULL
, tmp_p
->name
);
299 if(!client_p
&& (CurrUsers(cltmp
) < MaxAutoconn(cltmp
)) && !connecting
)
303 /* We connect only one at time... */
307 if((next
> tmp_p
->hold
) || (next
== 0))
311 /* TODO: change this to set active flag to 0 when added to event! --Habeeb */
312 if(GlobalSetOptions
.autoconn
== 0)
318 /* move this connect entry to end.. */
319 rb_dlinkDelete(&server_p
->node
, &server_conf_list
);
320 rb_dlinkAddTail(server_p
, &server_p
->node
, &server_conf_list
);
323 * We used to only print this if serv_connect() actually
324 * suceeded, but since rb_tcp_connect() can call the callback
325 * immediately if there is an error, we were getting error messages
326 * in the wrong order. SO, we just print out the activated line,
327 * and let serv_connect() / serv_connect_callback() print an
328 * error afterwards if it fails.
331 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
332 "Connection to %s activated",
335 serv_connect(server_p
, 0);
339 check_server(const char *name
, struct Client
*client_p
)
341 struct server_conf
*server_p
= NULL
;
342 struct server_conf
*tmp_p
;
346 bool name_matched
= false;
347 bool host_matched
= false;
348 bool certfp_failed
= false;
350 s_assert(NULL
!= client_p
);
354 if(!(client_p
->localClient
->passwd
))
357 if(strlen(name
) > HOSTLEN
)
360 RB_DLINK_FOREACH(ptr
, server_conf_list
.head
)
362 struct rb_sockaddr_storage client_addr
;
366 if(ServerConfIllegal(tmp_p
))
369 if(!match(tmp_p
->name
, name
))
374 if(rb_inet_pton_sock(client_p
->sockhost
, &client_addr
) <= 0)
375 SET_SS_FAMILY(&client_addr
, AF_UNSPEC
);
377 if((tmp_p
->connect_host
&& match(tmp_p
->connect_host
, client_p
->host
))
378 || (GET_SS_FAMILY(&client_addr
) == GET_SS_FAMILY(&tmp_p
->connect4
)
379 && comp_with_mask_sock((struct sockaddr
*)&client_addr
,
380 (struct sockaddr
*)&tmp_p
->connect4
, 32))
381 || (GET_SS_FAMILY(&client_addr
) == GET_SS_FAMILY(&tmp_p
->connect6
)
382 && comp_with_mask_sock((struct sockaddr
*)&client_addr
,
383 (struct sockaddr
*)&tmp_p
->connect6
, 128))
390 if(ServerConfEncrypted(tmp_p
))
392 encr
= rb_crypt(client_p
->localClient
->passwd
,
394 if(encr
!= NULL
&& !strcmp(tmp_p
->passwd
, encr
))
402 else if(strcmp(tmp_p
->passwd
, client_p
->localClient
->passwd
))
408 if(!client_p
->certfp
|| rb_strcasecmp(tmp_p
->certfp
, client_p
->certfp
) != 0) {
409 certfp_failed
= true;
421 /* return the most specific error */
424 else if(host_matched
)
426 else if(name_matched
)
432 if(ServerConfSSL(server_p
) && client_p
->localClient
->ssl_ctl
== NULL
)
437 if (client_p
->localClient
->att_sconf
&& client_p
->localClient
->att_sconf
->class == server_p
->class) {
438 /* this is an outgoing connection that is already attached to the correct class */
439 } else if (CurrUsers(server_p
->class) >= MaxUsers(server_p
->class)) {
442 attach_server_conf(client_p
, server_p
);
444 /* clear TB if they support but we dont want it */
445 if(!ServerConfTb(server_p
))
446 ClearCap(client_p
, CAP_TB
);
454 * inputs - Client pointer to send to
455 * - int flag of capabilities that this server has
457 * side effects - send the CAPAB line to a server -orabidoo
460 send_capabilities(struct Client
*client_p
, unsigned int cap_can_send
)
462 sendto_one(client_p
, "CAPAB :%s", capability_index_list(serv_capindex
, cap_can_send
));
466 burst_ban(struct Client
*client_p
)
468 struct ConfItem
*aconf
;
470 rb_dictionary_iter state
;
472 RB_DICTIONARY_FOREACH(aconf
, &state
, prop_bans_dict
)
474 /* Skip expired stuff. */
475 if(aconf
->lifetime
< rb_current_time())
477 switch(aconf
->status
& ~CONF_ILLEGAL
)
479 case CONF_KILL
: type
= "K"; break;
480 case CONF_DLINE
: type
= "D"; break;
481 case CONF_XLINE
: type
= "X"; break;
482 case CONF_RESV_NICK
: type
= "R"; break;
483 case CONF_RESV_CHANNEL
: type
= "R"; break;
487 sendto_one(client_p
, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
490 aconf
->user
? aconf
->user
: "*", aconf
->host
,
491 (unsigned long)aconf
->created
,
492 (int)(aconf
->hold
- aconf
->created
),
493 (int)(aconf
->lifetime
- aconf
->created
),
496 aconf
->spasswd
? "|" : "",
497 aconf
->spasswd
? aconf
->spasswd
: "");
503 * input - client to burst to, channel name, list to burst, mode flag
505 * side effects - client is sent a list of +b, +e, or +I modes
508 burst_modes_TS6(struct Client
*client_p
, struct Channel
*chptr
,
509 rb_dlink_list
*list
, char flag
)
514 send_multiline_init(client_p
, " ", ":%s BMASK %ld %s %c :",
516 (long)chptr
->channelts
,
520 RB_DLINK_FOREACH_PREV(ptr
, list
->tail
)
525 send_multiline_item(client_p
, "%s$%s",
529 send_multiline_item(client_p
, "%s", banptr
->banstr
);
532 send_multiline_fini(client_p
, NULL
);
538 * inputs - client (server) to send nick towards
539 * - client to send nick for
541 * side effects - NICK message is sent towards given client_p
544 burst_TS6(struct Client
*client_p
)
547 struct Client
*target_p
;
548 struct Channel
*chptr
;
549 struct membership
*msptr
;
550 hook_data_client hclientinfo
;
551 hook_data_channel hchaninfo
;
558 hclientinfo
.client
= hchaninfo
.client
= client_p
;
560 RB_DLINK_FOREACH(ptr
, global_client_list
.head
)
562 target_p
= ptr
->data
;
564 if(!IsPerson(target_p
))
567 if(MyClient(target_p
->from
) && target_p
->localClient
->att_sconf
!= NULL
&& ServerConfNoExport(target_p
->localClient
->att_sconf
))
570 send_umode(NULL
, target_p
, 0, ubuf
);
577 if(IsCapable(client_p
, CAP_EUID
))
578 sendto_one(client_p
, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
579 target_p
->servptr
->id
, target_p
->name
,
580 target_p
->hopcount
+ 1,
581 (long) target_p
->tsinfo
, ubuf
,
582 target_p
->username
, target_p
->host
,
583 IsIPSpoof(target_p
) ? "0" : target_p
->sockhost
,
585 IsDynSpoof(target_p
) ? target_p
->orighost
: "*",
586 EmptyString(target_p
->user
->suser
) ? "*" : target_p
->user
->suser
,
589 sendto_one(client_p
, ":%s UID %s %d %ld %s %s %s %s %s :%s",
590 target_p
->servptr
->id
, target_p
->name
,
591 target_p
->hopcount
+ 1,
592 (long) target_p
->tsinfo
, ubuf
,
593 target_p
->username
, target_p
->host
,
594 IsIPSpoof(target_p
) ? "0" : target_p
->sockhost
,
595 target_p
->id
, target_p
->info
);
597 if(!EmptyString(target_p
->certfp
))
598 sendto_one(client_p
, ":%s ENCAP * CERTFP :%s",
599 use_id(target_p
), target_p
->certfp
);
601 if(!IsCapable(client_p
, CAP_EUID
))
603 if(IsDynSpoof(target_p
))
604 sendto_one(client_p
, ":%s ENCAP * REALHOST %s",
605 use_id(target_p
), target_p
->orighost
);
606 if(!EmptyString(target_p
->user
->suser
))
607 sendto_one(client_p
, ":%s ENCAP * LOGIN %s",
608 use_id(target_p
), target_p
->user
->suser
);
611 if(ConfigFileEntry
.burst_away
&& !EmptyString(target_p
->user
->away
))
612 sendto_one(client_p
, ":%s AWAY :%s",
614 target_p
->user
->away
);
616 if (IsOper(target_p
) && target_p
->user
&& target_p
->user
->opername
)
618 if (target_p
->user
->privset
)
619 sendto_one(client_p
, ":%s OPER %s %s",
621 target_p
->user
->opername
,
622 target_p
->user
->privset
->name
);
624 sendto_one(client_p
, ":%s OPER %s",
626 target_p
->user
->opername
);
629 hclientinfo
.target
= target_p
;
630 call_hook(h_burst_client
, &hclientinfo
);
633 RB_DLINK_FOREACH(ptr
, global_channel_list
.head
)
637 if(*chptr
->chname
!= '#')
640 cur_len
= mlen
= sprintf(buf
, ":%s SJOIN %ld %s %s :", me
.id
,
641 (long) chptr
->channelts
, chptr
->chname
,
642 channel_modes(chptr
, client_p
));
646 RB_DLINK_FOREACH(uptr
, chptr
->members
.head
)
650 tlen
= strlen(use_id(msptr
->client_p
)) + 1;
656 if(cur_len
+ tlen
>= BUFSIZE
- 3)
659 sendto_one(client_p
, "%s", buf
);
664 sprintf(t
, "%s%s ", find_channel_status(msptr
, 1),
665 use_id(msptr
->client_p
));
671 if (rb_dlink_list_length(&chptr
->members
) > 0)
673 /* remove trailing space */
676 sendto_one(client_p
, "%s", buf
);
678 if(rb_dlink_list_length(&chptr
->banlist
) > 0)
679 burst_modes_TS6(client_p
, chptr
, &chptr
->banlist
, 'b');
681 if(IsCapable(client_p
, CAP_EX
) &&
682 rb_dlink_list_length(&chptr
->exceptlist
) > 0)
683 burst_modes_TS6(client_p
, chptr
, &chptr
->exceptlist
, 'e');
685 if(IsCapable(client_p
, CAP_IE
) &&
686 rb_dlink_list_length(&chptr
->invexlist
) > 0)
687 burst_modes_TS6(client_p
, chptr
, &chptr
->invexlist
, 'I');
689 if(rb_dlink_list_length(&chptr
->quietlist
) > 0)
690 burst_modes_TS6(client_p
, chptr
, &chptr
->quietlist
, 'q');
692 if(IsCapable(client_p
, CAP_TB
) && chptr
->topic
!= NULL
)
693 sendto_one(client_p
, ":%s TB %s %ld %s%s:%s",
694 me
.id
, chptr
->chname
, (long) chptr
->topic_time
,
695 ConfigChannel
.burst_topicwho
? chptr
->topic_info
: "",
696 ConfigChannel
.burst_topicwho
? " " : "",
699 if(IsCapable(client_p
, CAP_MLOCK
))
700 sendto_one(client_p
, ":%s MLOCK %ld %s :%s",
701 me
.id
, (long) chptr
->channelts
, chptr
->chname
,
702 EmptyString(chptr
->mode_lock
) ? "" : chptr
->mode_lock
);
704 hchaninfo
.chptr
= chptr
;
705 call_hook(h_burst_channel
, &hchaninfo
);
708 hclientinfo
.target
= NULL
;
709 call_hook(h_burst_finished
, &hclientinfo
);
713 * show_capabilities - show current server capabilities
715 * inputs - pointer to an struct Client
716 * output - pointer to static string
717 * side effects - build up string representing capabilities of server listed
720 show_capabilities(struct Client
*target_p
)
722 static char msgbuf
[BUFSIZE
];
727 rb_strlcpy(msgbuf
, " TS6", sizeof(msgbuf
));
730 rb_strlcat(msgbuf
, " SSL", sizeof(msgbuf
));
732 if(!IsServer(target_p
) || !target_p
->serv
->caps
) /* short circuit if no caps */
735 rb_strlcat(msgbuf
, " ", sizeof(msgbuf
));
736 rb_strlcat(msgbuf
, capability_index_list(serv_capindex
, target_p
->serv
->caps
), sizeof(msgbuf
));
744 * inputs - pointer to a struct Client
749 server_estab(struct Client
*client_p
)
751 struct Client
*target_p
;
752 struct server_conf
*server_p
;
753 hook_data_client hdata
;
756 char note
[HOSTLEN
+ 15];
758 s_assert(NULL
!= client_p
);
762 host
= client_p
->name
;
764 if((server_p
= client_p
->localClient
->att_sconf
) == NULL
)
766 /* This shouldn't happen, better tell the ops... -A1kmm */
767 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
768 "Warning: Lost connect{} block for server %s!", host
);
769 return exit_client(client_p
, client_p
, client_p
, "Lost connect{} block!");
772 /* We shouldn't have to check this, it should already done before
773 * server_estab is called. -A1kmm
775 if(client_p
->localClient
->passwd
)
777 memset(client_p
->localClient
->passwd
, 0, strlen(client_p
->localClient
->passwd
));
778 rb_free(client_p
->localClient
->passwd
);
779 client_p
->localClient
->passwd
= NULL
;
782 /* Its got identd , since its a server */
785 if(IsUnknown(client_p
))
787 /* the server may be linking based on certificate fingerprint now. --nenolod */
788 sendto_one(client_p
, "PASS %s TS %d :%s",
789 EmptyString(server_p
->spasswd
) ? "*" : server_p
->spasswd
, TS_CURRENT
, me
.id
);
791 /* pass info to new server */
792 send_capabilities(client_p
, default_server_capabs
| CAP_MASK
793 | (ServerConfTb(server_p
) ? CAP_TB
: 0));
795 sendto_one(client_p
, "SERVER %s 1 :%s%s",
797 ConfigServerHide
.hidden
? "(H) " : "",
798 (me
.info
[0]) ? (me
.info
) : "IRCers United");
801 if(!rb_set_buffers(client_p
->localClient
->F
, READBUF_SIZE
))
802 ilog_error("rb_set_buffers failed for server");
804 client_p
->servptr
= &me
;
806 if(IsAnyDead(client_p
))
807 return CLIENT_EXITED
;
809 sendto_one(client_p
, "SVINFO %d %d 0 :%ld", TS_CURRENT
, TS_MIN
, (long int)rb_current_time());
811 rb_dlinkAdd(client_p
, &client_p
->lnode
, &me
.serv
->servers
);
812 rb_dlinkMoveNode(&client_p
->localClient
->tnode
, &unknown_list
, &serv_list
);
813 rb_dlinkAddTailAlloc(client_p
, &global_serv_list
);
816 add_to_id_hash(client_p
->id
, client_p
);
818 add_to_client_hash(client_p
->name
, client_p
);
819 /* doesnt duplicate client_p->serv if allocated this struct already */
820 make_server(client_p
);
823 client_p
->serv
->caps
= client_p
->localClient
->caps
;
825 if(client_p
->localClient
->fullcaps
)
827 client_p
->serv
->fullcaps
= rb_strdup(client_p
->localClient
->fullcaps
);
828 rb_free(client_p
->localClient
->fullcaps
);
829 client_p
->localClient
->fullcaps
= NULL
;
832 client_p
->serv
->nameinfo
= scache_connect(client_p
->name
, client_p
->info
, IsHidden(client_p
));
833 client_p
->localClient
->firsttime
= rb_current_time();
834 /* fixing eob timings.. -gnp */
836 if((rb_dlink_list_length(&lclient_list
) + rb_dlink_list_length(&serv_list
)) >
837 (unsigned long)MaxConnectionCount
)
838 MaxConnectionCount
= rb_dlink_list_length(&lclient_list
) +
839 rb_dlink_list_length(&serv_list
);
841 /* Show the real host/IP to admins */
842 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
843 "Link with %s established: (%s) link",
845 show_capabilities(client_p
));
847 ilog(L_SERVER
, "Link with %s established: (%s) link",
848 log_client_name(client_p
, SHOW_IP
), show_capabilities(client_p
));
851 hdata
.target
= client_p
;
852 call_hook(h_server_introduced
, &hdata
);
854 snprintf(note
, sizeof(note
), "Server: %s", client_p
->name
);
855 rb_note(client_p
->localClient
->F
, note
);
858 ** Old sendto_serv_but_one() call removed because we now
859 ** need to send different names to different servers
860 ** (domain name matching) Send new server to other servers.
862 RB_DLINK_FOREACH(ptr
, serv_list
.head
)
864 target_p
= ptr
->data
;
866 if(target_p
== client_p
)
869 if(target_p
->localClient
->att_sconf
!= NULL
&& ServerConfNoExport(target_p
->localClient
->att_sconf
))
872 if(has_id(target_p
) && has_id(client_p
))
874 sendto_one(target_p
, ":%s SID %s 2 %s :%s%s",
875 me
.id
, client_p
->name
, client_p
->id
,
876 IsHidden(client_p
) ? "(H) " : "", client_p
->info
);
878 if(!EmptyString(client_p
->serv
->fullcaps
))
879 sendto_one(target_p
, ":%s ENCAP * GCAP :%s",
880 client_p
->id
, client_p
->serv
->fullcaps
);
884 sendto_one(target_p
, ":%s SERVER %s 2 :%s%s",
885 me
.name
, client_p
->name
,
886 IsHidden(client_p
) ? "(H) " : "", client_p
->info
);
888 if(!EmptyString(client_p
->serv
->fullcaps
))
889 sendto_one(target_p
, ":%s ENCAP * GCAP :%s",
890 client_p
->name
, client_p
->serv
->fullcaps
);
895 ** Pass on my client information to the new server
897 ** First, pass only servers (idea is that if the link gets
898 ** cancelled beacause the server was already there,
899 ** there are no NICK's to be cancelled...). Of course,
900 ** if cancellation occurs, all this info is sent anyway,
901 ** and I guess the link dies when a read is attempted...? --msa
903 ** Note: Link cancellation to occur at this point means
904 ** that at least two servers from my fragment are building
905 ** up connection this other fragment at the same time, it's
906 ** a race condition, not the normal way of operation...
908 ** ALSO NOTE: using the get_client_name for server names--
909 ** see previous *WARNING*!!! (Also, original inpath
912 RB_DLINK_FOREACH(ptr
, global_serv_list
.head
)
914 target_p
= ptr
->data
;
916 /* target_p->from == target_p for target_p == client_p */
917 if(IsMe(target_p
) || target_p
->from
== client_p
)
920 /* don't distribute downstream leaves of servers that are no-export */
921 if(MyClient(target_p
->from
) && target_p
->from
->localClient
->att_sconf
!= NULL
&& ServerConfNoExport(target_p
->from
->localClient
->att_sconf
))
924 /* presumption, if target has an id, so does its uplink */
925 if(has_id(client_p
) && has_id(target_p
))
926 sendto_one(client_p
, ":%s SID %s %d %s :%s%s",
927 target_p
->servptr
->id
, target_p
->name
,
928 target_p
->hopcount
+ 1, target_p
->id
,
929 IsHidden(target_p
) ? "(H) " : "", target_p
->info
);
931 sendto_one(client_p
, ":%s SERVER %s %d :%s%s",
932 target_p
->servptr
->name
,
933 target_p
->name
, target_p
->hopcount
+ 1,
934 IsHidden(target_p
) ? "(H) " : "", target_p
->info
);
936 if(!EmptyString(target_p
->serv
->fullcaps
))
937 sendto_one(client_p
, ":%s ENCAP * GCAP :%s",
938 get_id(target_p
, client_p
),
939 target_p
->serv
->fullcaps
);
942 if(IsCapable(client_p
, CAP_BAN
))
947 /* Always send a PING after connect burst is done */
948 sendto_one(client_p
, "PING :%s", get_id(&me
, client_p
));
950 free_pre_client(client_p
);
952 send_pop_queue(client_p
);
958 * New server connection code
959 * Based upon the stuff floating about in s_bsd.c
964 * serv_connect() - initiate a server connection
966 * inputs - pointer to conf
967 * - pointer to client doing the connet
971 * This code initiates a connection to a server. It first checks to make
972 * sure the given server exists. If this is the case, it creates a socket,
973 * creates a client, saves the socket information in the client, and
974 * initiates a connection to the server through rb_connect_tcp(). The
975 * completion of this goes through serv_completed_connection().
977 * We return 1 if the connection is attempted, since we don't know whether
978 * it suceeded or not, and 0 if it fails in here somewhere.
981 serv_connect(struct server_conf
*server_p
, struct Client
*by
)
983 struct Client
*client_p
;
984 struct sockaddr_storage sa_connect
[2];
985 struct sockaddr_storage sa_bind
[ARRAY_SIZE(sa_connect
)];
986 char note
[HOSTLEN
+ 10];
989 s_assert(server_p
!= NULL
);
993 for (int i
= 0; i
< ARRAY_SIZE(sa_connect
); i
++) {
994 SET_SS_FAMILY(&sa_connect
[i
], AF_UNSPEC
);
995 SET_SS_FAMILY(&sa_bind
[i
], AF_UNSPEC
);
998 if(server_p
->aftype
== AF_UNSPEC
999 && GET_SS_FAMILY(&server_p
->connect4
) == AF_INET
1000 && GET_SS_FAMILY(&server_p
->connect6
) == AF_INET6
)
1004 sa_connect
[0] = server_p
->connect4
;
1005 sa_connect
[1] = server_p
->connect6
;
1006 sa_bind
[0] = server_p
->bind4
;
1007 sa_bind
[1] = server_p
->bind6
;
1011 sa_connect
[0] = server_p
->connect6
;
1012 sa_connect
[1] = server_p
->connect4
;
1013 sa_bind
[0] = server_p
->bind6
;
1014 sa_bind
[1] = server_p
->bind4
;
1017 else if(server_p
->aftype
== AF_INET
|| GET_SS_FAMILY(&server_p
->connect4
) == AF_INET
)
1019 sa_connect
[0] = server_p
->connect4
;
1020 sa_bind
[0] = server_p
->bind4
;
1022 else if(server_p
->aftype
== AF_INET6
|| GET_SS_FAMILY(&server_p
->connect6
) == AF_INET6
)
1024 sa_connect
[0] = server_p
->connect6
;
1025 sa_bind
[0] = server_p
->bind6
;
1030 if (ServerConfSCTP(server_p
) && GET_SS_FAMILY(&sa_connect
[1]) != AF_UNSPEC
) {
1031 char buf2
[HOSTLEN
+ 1];
1035 rb_inet_ntop_sock((struct sockaddr
*)&sa_connect
[0], buf
, sizeof(buf
));
1036 rb_inet_ntop_sock((struct sockaddr
*)&sa_connect
[1], buf2
, sizeof(buf2
));
1037 ilog(L_SERVER
, "Connect to *[%s] @%s&%s", server_p
->name
, buf
, buf2
);
1043 rb_inet_ntop_sock((struct sockaddr
*)&sa_connect
[0], buf
, sizeof(buf
));
1044 ilog(L_SERVER
, "Connect to *[%s] @%s", server_p
->name
, buf
);
1048 * Make sure this server isn't already connected
1050 if((client_p
= find_server(NULL
, server_p
->name
)))
1052 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
1053 "Server %s already present from %s",
1054 server_p
->name
, client_p
->name
);
1055 if(by
&& IsPerson(by
) && !MyClient(by
))
1056 sendto_one_notice(by
, ":Server %s already present from %s",
1057 server_p
->name
, client_p
->name
);
1061 if (CurrUsers(server_p
->class) >= MaxUsers(server_p
->class)) {
1062 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
1063 "No more connections allowed in class \"%s\" for server %s",
1064 server_p
->class->class_name
, server_p
->name
);
1065 if(by
&& IsPerson(by
) && !MyClient(by
))
1066 sendto_one_notice(by
, ":No more connections allowed in class \"%s\" for server %s",
1067 server_p
->class->class_name
, server_p
->name
);
1071 /* create a socket for the server connection */
1072 if(GET_SS_FAMILY(&sa_connect
[0]) == AF_UNSPEC
) {
1073 ilog_error("unspecified socket address family");
1076 } else if (ServerConfSCTP(server_p
)) {
1077 if ((F
= rb_socket(AF_INET6
, SOCK_STREAM
, IPPROTO_SCTP
, NULL
)) == NULL
) {
1078 ilog_error("opening a stream socket");
1082 } else if ((F
= rb_socket(GET_SS_FAMILY(&sa_connect
[0]), SOCK_STREAM
, IPPROTO_TCP
, NULL
)) == NULL
) {
1083 ilog_error("opening a stream socket");
1087 /* servernames are always guaranteed under HOSTLEN chars */
1088 snprintf(note
, sizeof(note
), "Server: %s", server_p
->name
);
1091 /* Create a local client */
1092 client_p
= make_client(NULL
);
1094 /* Copy in the server, hostname, fd */
1095 rb_strlcpy(client_p
->name
, server_p
->name
, sizeof(client_p
->name
));
1096 if(server_p
->connect_host
)
1097 rb_strlcpy(client_p
->host
, server_p
->connect_host
, sizeof(client_p
->host
));
1099 rb_strlcpy(client_p
->host
, buf
, sizeof(client_p
->host
));
1100 rb_strlcpy(client_p
->sockhost
, buf
, sizeof(client_p
->sockhost
));
1101 client_p
->localClient
->F
= F
;
1102 /* shove the port number into the sockaddr */
1103 SET_SS_PORT(&sa_connect
[0], htons(server_p
->port
));
1104 SET_SS_PORT(&sa_connect
[1], htons(server_p
->port
));
1107 * Set up the initial server evilness, ripped straight from
1108 * connect_server(), so don't blame me for it being evil.
1112 if(!rb_set_buffers(client_p
->localClient
->F
, READBUF_SIZE
))
1114 ilog_error("setting the buffer size for a server connection");
1118 * Attach config entries to client here rather than in
1119 * serv_connect_callback(). This to avoid null pointer references.
1121 attach_server_conf(client_p
, server_p
);
1124 * at this point we have a connection in progress and C/N lines
1125 * attached to the client, the socket info should be saved in the
1126 * client and it should either be resolved or have a valid address.
1128 * The socket has been connected or connect is in progress.
1130 make_server(client_p
);
1131 if(by
&& IsClient(by
))
1132 rb_strlcpy(client_p
->serv
->by
, by
->name
, sizeof(client_p
->serv
->by
));
1134 strcpy(client_p
->serv
->by
, "AutoConn.");
1136 SetConnecting(client_p
);
1137 rb_dlinkAddTail(client_p
, &client_p
->node
, &global_client_list
);
1139 for (int i
= 0; i
< ARRAY_SIZE(sa_connect
); i
++) {
1140 if (GET_SS_FAMILY(&sa_bind
[i
]) == AF_UNSPEC
) {
1141 if (GET_SS_FAMILY(&sa_connect
[i
]) == GET_SS_FAMILY(&ServerInfo
.bind4
))
1142 sa_bind
[i
] = ServerInfo
.bind4
;
1143 if (GET_SS_FAMILY(&sa_connect
[i
]) == GET_SS_FAMILY(&ServerInfo
.bind6
))
1144 sa_bind
[i
] = ServerInfo
.bind6
;
1149 if (ServerConfSCTP(server_p
)) {
1150 rb_connect_sctp(client_p
->localClient
->F
,
1151 sa_connect
, ARRAY_SIZE(sa_connect
), sa_bind
, ARRAY_SIZE(sa_bind
),
1152 ServerConfSSL(server_p
) ? serv_connect_ssl_callback
: serv_connect_callback
,
1153 client_p
, ConfigFileEntry
.connect_timeout
);
1158 rb_connect_tcp(client_p
->localClient
->F
,
1159 (struct sockaddr
*)&sa_connect
[0],
1160 GET_SS_FAMILY(&sa_bind
[0]) == AF_UNSPEC
? NULL
: (struct sockaddr
*)&sa_bind
[0],
1161 ServerConfSSL(server_p
) ? serv_connect_ssl_callback
: serv_connect_callback
,
1162 client_p
, ConfigFileEntry
.connect_timeout
);
1168 serv_connect_ssl_callback(rb_fde_t
*F
, int status
, void *data
)
1170 struct Client
*client_p
= data
;
1172 rb_connect_sockaddr(F
, (struct sockaddr
*)&client_p
->localClient
->ip
, sizeof(client_p
->localClient
->ip
));
1175 /* Print error message, just like non-SSL. */
1176 serv_connect_callback(F
, status
, data
);
1179 if(rb_socketpair(AF_UNIX
, SOCK_STREAM
, 0, &xF
[0], &xF
[1], "Outgoing ssld connection") == -1)
1181 ilog_error("rb_socketpair failed for server");
1182 serv_connect_callback(F
, RB_ERROR
, data
);
1186 client_p
->localClient
->F
= xF
[0];
1187 client_p
->localClient
->ssl_callback
= serv_connect_ssl_open_callback
;
1189 client_p
->localClient
->ssl_ctl
= start_ssld_connect(F
, xF
[1], connid_get(client_p
));
1190 if(!client_p
->localClient
->ssl_ctl
)
1192 serv_connect_callback(client_p
->localClient
->F
, RB_ERROR
, data
);
1199 serv_connect_ssl_open_callback(struct Client
*client_p
, int status
)
1201 serv_connect_callback(client_p
->localClient
->F
, status
, client_p
);
1202 return 1; /* suppress default exit_client handler for status != RB_OK */
1206 * serv_connect_callback() - complete a server connection.
1208 * This routine is called after the server connection attempt has
1209 * completed. If unsucessful, an error is sent to ops and the client
1210 * is closed. If sucessful, it goes through the initialisation/check
1211 * procedures, the capabilities are sent, and the socket is then
1212 * marked for reading.
1215 serv_connect_callback(rb_fde_t
*F
, int status
, void *data
)
1217 struct Client
*client_p
= data
;
1218 struct server_conf
*server_p
;
1221 /* First, make sure its a real client! */
1222 s_assert(client_p
!= NULL
);
1223 s_assert(client_p
->localClient
->F
== F
);
1225 if(client_p
== NULL
)
1228 /* while we were waiting for the callback, its possible this already
1231 if(find_server(NULL
, client_p
->name
) != NULL
)
1233 exit_client(client_p
, client_p
, &me
, "Server Exists");
1237 if(client_p
->localClient
->ssl_ctl
== NULL
)
1238 rb_connect_sockaddr(F
, (struct sockaddr
*)&client_p
->localClient
->ip
, sizeof(client_p
->localClient
->ip
));
1240 /* Check the status */
1243 /* COMM_ERR_TIMEOUT wont have an errno associated with it,
1244 * the others will.. --fl
1246 if(status
== RB_ERR_TIMEOUT
|| status
== RB_ERROR_SSL
)
1248 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
1249 "Error connecting to %s[%s]: %s",
1253 ilog(L_SERVER
, "Error connecting to %s[%s]: %s",
1254 client_p
->name
, client_p
->sockhost
,
1259 errstr
= strerror(rb_get_sockerr(F
));
1260 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
1261 "Error connecting to %s[%s]: %s (%s)",
1264 rb_errstr(status
), errstr
);
1265 ilog(L_SERVER
, "Error connecting to %s[%s]: %s (%s)",
1266 client_p
->name
, client_p
->sockhost
,
1267 rb_errstr(status
), errstr
);
1270 exit_client(client_p
, client_p
, &me
, rb_errstr(status
));
1274 /* COMM_OK, so continue the connection procedure */
1275 /* Get the C/N lines */
1276 if((server_p
= client_p
->localClient
->att_sconf
) == NULL
)
1278 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
, "Lost connect{} block for %s",
1280 exit_client(client_p
, client_p
, &me
, "Lost connect{} block");
1284 if(server_p
->certfp
&& (!client_p
->certfp
|| rb_strcasecmp(server_p
->certfp
, client_p
->certfp
) != 0))
1286 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
1287 "Connection to %s has invalid certificate fingerprint %s",
1288 client_p
->name
, client_p
->certfp
);
1289 ilog(L_SERVER
, "Access denied, invalid certificate fingerprint %s from %s",
1290 client_p
->certfp
, log_client_name(client_p
, SHOW_IP
));
1292 exit_client(client_p
, client_p
, &me
, "Invalid fingerprint.");
1296 /* Next, send the initial handshake */
1297 SetHandshake(client_p
);
1299 /* the server may be linking based on certificate fingerprint now. --nenolod */
1300 sendto_one(client_p
, "PASS %s TS %d :%s",
1301 EmptyString(server_p
->spasswd
) ? "*" : server_p
->spasswd
, TS_CURRENT
, me
.id
);
1303 /* pass my info to the new server */
1304 send_capabilities(client_p
, default_server_capabs
| CAP_MASK
1305 | (ServerConfTb(server_p
) ? CAP_TB
: 0));
1307 sendto_one(client_p
, "SERVER %s 1 :%s%s",
1309 ConfigServerHide
.hidden
? "(H) " : "", me
.info
);
1312 * If we've been marked dead because a send failed, just exit
1313 * here now and save everyone the trouble of us ever existing.
1315 if(IsAnyDead(client_p
))
1317 sendto_realops_snomask(SNO_GENERAL
, L_NETWIDE
,
1318 "%s went dead during handshake", client_p
->name
);
1319 exit_client(client_p
, client_p
, &me
, "Went dead during handshake");
1323 /* don't move to serv_list yet -- we haven't sent a burst! */
1325 /* If we get here, we're ok, so lets start reading some data */
1326 read_packet(F
, client_p
);