]> jfr.im git - solanum.git/blob - ircd/s_conf.c
projects / solanum.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Send YES/NO to Davy Jones's Locker.
[solanum.git] / ircd / s_conf.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 */
24
25 #include "stdinc.h"
26 #include "ircd_defs.h"
27 #include "s_conf.h"
28 #include "s_newconf.h"
29 #include "newconf.h"
30 #include "s_serv.h"
31 #include "s_stats.h"
32 #include "channel.h"
33 #include "class.h"
34 #include "client.h"
35 #include "common.h"
36 #include "hash.h"
37 #include "match.h"
38 #include "ircd.h"
39 #include "listener.h"
40 #include "hostmask.h"
41 #include "modules.h"
42 #include "numeric.h"
43 #include "logger.h"
44 #include "send.h"
45 #include "reject.h"
46 #include "cache.h"
47 #include "blacklist.h"
48 #include "privilege.h"
49 #include "sslproc.h"
50 #include "bandbi.h"
51 #include "operhash.h"
52 #include "chmode.h"
53 #include "hook.h"
54 #include "s_assert.h"
55 #include "authd.h"
56
57 struct config_server_hide ConfigServerHide;
58
59 extern int yyparse(void); /* defined in y.tab.c */
60 extern char linebuf[];
61
62 #ifndef INADDR_NONE
63 #define INADDR_NONE ((unsigned int) 0xffffffff)
64 #endif
65
66 static rb_bh *confitem_heap = NULL;
67
68 rb_dlink_list prop_bans;
69
70 rb_dlink_list temp_klines[LAST_TEMP_TYPE];
71 rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
72 rb_dlink_list service_list;
73
74 /* internally defined functions */
75 static void set_default_conf(void);
76 static void validate_conf(void);
77 static void read_conf(void);
78 static void clear_out_old_conf(void);
79
80 static void expire_prop_bans(void *list);
81 static void expire_temp_kd(void *list);
82 static void reorganise_temp_kd(void *list);
83
84 FILE *conf_fbfile_in;
85 extern char yytext[];
86
87 static int verify_access(struct Client *client_p, const char *username);
88 static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
89 static int attach_iline(struct Client *, struct ConfItem *);
90
91 void
92 init_s_conf(void)
93 {
94 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
95
96 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
97
98 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
99 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
100
101 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
102 &temp_klines[TEMP_HOUR], 3600);
103 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
104 &temp_dlines[TEMP_HOUR], 3600);
105 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
106 &temp_klines[TEMP_DAY], 86400);
107 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
108 &temp_dlines[TEMP_DAY], 86400);
109 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
110 &temp_klines[TEMP_WEEK], 604800);
111 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
112 &temp_dlines[TEMP_WEEK], 604800);
113 }
114
115 /*
116 * make_conf
117 *
118 * inputs - none
119 * output - pointer to new conf entry
120 * side effects - none
121 */
122 struct ConfItem *
123 make_conf()
124 {
125 struct ConfItem *aconf;
126
127 aconf = rb_bh_alloc(confitem_heap);
128 aconf->status = CONF_ILLEGAL;
129 return (aconf);
130 }
131
132 /*
133 * free_conf
134 *
135 * inputs - pointer to conf to free
136 * output - none
137 * side effects - crucial password fields are zeroed, conf is freed
138 */
139 void
140 free_conf(struct ConfItem *aconf)
141 {
142 s_assert(aconf != NULL);
143 if(aconf == NULL)
144 return;
145
146 /* security.. */
147 if(aconf->passwd)
148 memset(aconf->passwd, 0, strlen(aconf->passwd));
149 if(aconf->spasswd)
150 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
151
152 rb_free(aconf->passwd);
153 rb_free(aconf->spasswd);
154 rb_free(aconf->className);
155 rb_free(aconf->user);
156 rb_free(aconf->host);
157
158 if(IsConfBan(aconf))
159 operhash_delete(aconf->info.oper);
160 else
161 rb_free(aconf->info.name);
162
163 rb_bh_free(confitem_heap, aconf);
164 }
165
166 /*
167 * check_client
168 *
169 * inputs - pointer to client
170 * output - 0 = Success
171 * NOT_AUTHORISED (-1) = Access denied (no I line match)
172 * I_SOCKET_ERROR (-2) = Bad socket.
173 * I_LINE_FULL (-3) = I-line is full
174 * TOO_MANY (-4) = Too many connections from hostname
175 * BANNED_CLIENT (-5) = K-lined
176 * side effects - Ordinary client access check.
177 * Look for conf lines which have the same
178 * status as the flags passed.
179 */
180 int
181 check_client(struct Client *client_p, struct Client *source_p, const char *username)
182 {
183 int i;
184
185 if((i = verify_access(source_p, username)))
186 {
187 ilog(L_FUSER, "Access denied: %s[%s]",
188 source_p->name, source_p->sockhost);
189 }
190
191 switch (i)
192 {
193 case I_SOCKET_ERROR:
194 exit_client(client_p, source_p, &me, "Socket Error");
195 break;
196
197 case TOO_MANY_LOCAL:
198 /* Note that these notices are sent to opers on other
199 * servers also, so even if local opers are allowed to
200 * see the IP, we still cannot send it.
201 */
202 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
203 "Too many local connections for %s!%s%s@%s",
204 source_p->name, IsGotId(source_p) ? "" : "~",
205 source_p->username,
206 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
207
208 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
209 source_p->name, IsGotId(source_p) ? "" : "~",
210 source_p->username, source_p->sockhost);
211
212 ServerStats.is_ref++;
213 exit_client(client_p, source_p, &me, "Too many host connections (local)");
214 break;
215
216 case TOO_MANY_GLOBAL:
217 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
218 "Too many global connections for %s!%s%s@%s",
219 source_p->name, IsGotId(source_p) ? "" : "~",
220 source_p->username,
221 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
222 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
223 source_p->name, IsGotId(source_p) ? "" : "~",
224 source_p->username, source_p->sockhost);
225
226 ServerStats.is_ref++;
227 exit_client(client_p, source_p, &me, "Too many host connections (global)");
228 break;
229
230 case TOO_MANY_IDENT:
231 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
232 "Too many user connections for %s!%s%s@%s",
233 source_p->name, IsGotId(source_p) ? "" : "~",
234 source_p->username,
235 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
236 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
237 source_p->name, IsGotId(source_p) ? "" : "~",
238 source_p->username, source_p->sockhost);
239
240 ServerStats.is_ref++;
241 exit_client(client_p, source_p, &me, "Too many user connections (global)");
242 break;
243
244 case I_LINE_FULL:
245 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
246 "I-line is full for %s!%s%s@%s (%s).",
247 source_p->name, IsGotId(source_p) ? "" : "~",
248 source_p->username, source_p->host,
249 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
250
251 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
252 source_p->name, IsGotId(source_p) ? "" : "~",
253 source_p->username, source_p->sockhost);
254
255 ServerStats.is_ref++;
256 exit_client(client_p, source_p, &me,
257 "No more connections allowed in your connection class");
258 break;
259
260 case NOT_AUTHORISED:
261 {
262 int port = -1;
263 #ifdef RB_IPV6
264 if(GET_SS_FAMILY(&source_p->localClient->ip) == AF_INET6)
265 port = ntohs(((struct sockaddr_in6 *)&source_p->localClient->listener->addr)->sin6_port);
266 else
267 #endif
268 port = ntohs(((struct sockaddr_in *)&source_p->localClient->listener->addr)->sin_port);
269
270 ServerStats.is_ref++;
271 /* jdc - lists server name & port connections are on */
272 /* a purely cosmetical change */
273 /* why ipaddr, and not just source_p->sockhost? --fl */
274 #if 0
275 static char ipaddr[HOSTIPLEN];
276 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
277 #endif
278 sendto_realops_snomask(SNO_UNAUTH, L_ALL,
279 "Unauthorised client connection from "
280 "%s!%s%s@%s [%s] on [%s/%u].",
281 source_p->name, IsGotId(source_p) ? "" : "~",
282 source_p->username, source_p->host,
283 source_p->sockhost,
284 source_p->localClient->listener->name, port);
285
286 ilog(L_FUSER,
287 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
288 source_p->name, IsGotId(source_p) ? "" : "~",
289 source_p->username, source_p->sockhost,
290 source_p->localClient->listener->name, port);
291 add_reject(client_p, NULL, NULL);
292 exit_client(client_p, source_p, &me,
293 "You are not authorised to use this server");
294 break;
295 }
296 case BANNED_CLIENT:
297 exit_client(client_p, client_p, &me, "*** Banned ");
298 ServerStats.is_ref++;
299 break;
300
301 case 0:
302 default:
303 break;
304 }
305 return (i);
306 }
307
308 /*
309 * verify_access
310 *
311 * inputs - pointer to client to verify
312 * - pointer to proposed username
313 * output - 0 if success -'ve if not
314 * side effect - find the first (best) I line to attach.
315 */
316 static int
317 verify_access(struct Client *client_p, const char *username)
318 {
319 struct ConfItem *aconf;
320
321 aconf = find_address_conf_by_client(client_p, username);
322 if(aconf == NULL)
323 return NOT_AUTHORISED;
324
325 if(aconf->status & CONF_CLIENT)
326 {
327 if(aconf->flags & CONF_FLAGS_REDIR)
328 {
329 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
330 aconf->info.name ? aconf->info.name : "", aconf->port);
331 return (NOT_AUTHORISED);
332 }
333
334 /* Thanks for spoof idea amm */
335 if(IsConfDoSpoofIp(aconf))
336 {
337 char *p;
338
339 /* show_ip() depends on this --fl */
340 SetIPSpoof(client_p);
341
342 if(IsConfSpoofNotice(aconf))
343 {
344 sendto_realops_snomask(SNO_GENERAL, L_ALL,
345 "%s spoofing: %s as %s",
346 client_p->name,
347 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
348 aconf->info.name);
349 }
350
351 /* user@host spoof */
352 if((p = strchr(aconf->info.name, '@')) != NULL)
353 {
354 char *host = p+1;
355 *p = '\0';
356
357 rb_strlcpy(client_p->username, aconf->info.name,
358 sizeof(client_p->username));
359 rb_strlcpy(client_p->host, host,
360 sizeof(client_p->host));
361 *p = '@';
362 }
363 else
364 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
365 }
366 return (attach_iline(client_p, aconf));
367 }
368 else if(aconf->status & CONF_KILL)
369 {
370 if(ConfigFileEntry.kline_with_reason)
371 sendto_one(client_p,
372 form_str(ERR_YOUREBANNEDCREEP),
373 me.name, client_p->name,
374 get_user_ban_reason(aconf));
375 add_reject(client_p, aconf->user, aconf->host);
376 return (BANNED_CLIENT);
377 }
378
379 return NOT_AUTHORISED;
380 }
381
382
383 /*
384 * find_address_conf_by_client
385 */
386 static struct ConfItem *
387 find_address_conf_by_client(struct Client *client_p, const char *username)
388 {
389 struct ConfItem *aconf;
390 char non_ident[USERLEN + 1];
391
392 if(IsGotId(client_p))
393 {
394 aconf = find_address_conf(client_p->host, client_p->sockhost,
395 client_p->username, client_p->username,
396 (struct sockaddr *) &client_p->localClient->ip,
397 GET_SS_FAMILY(&client_p->localClient->ip),
398 client_p->localClient->auth_user);
399 }
400 else
401 {
402 rb_strlcpy(non_ident, "~", sizeof(non_ident));
403 rb_strlcat(non_ident, username, sizeof(non_ident));
404 aconf = find_address_conf(client_p->host, client_p->sockhost,
405 non_ident, client_p->username,
406 (struct sockaddr *) &client_p->localClient->ip,
407 GET_SS_FAMILY(&client_p->localClient->ip),
408 client_p->localClient->auth_user);
409 }
410 return aconf;
411 }
412
413
414 /*
415 * add_ip_limit
416 *
417 * Returns 1 if successful 0 if not
418 *
419 * This checks if the user has exceed the limits for their class
420 * unless of course they are exempt..
421 */
422
423 static int
424 add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
425 {
426 rb_patricia_node_t *pnode;
427 int bitlen;
428
429 /* If the limits are 0 don't do anything.. */
430 if(ConfCidrAmount(aconf) == 0
431 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
432 return -1;
433
434 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
435
436 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
437 bitlen = ConfCidrIpv4Bitlen(aconf);
438 else
439 bitlen = ConfCidrIpv6Bitlen(aconf);
440
441 if(pnode == NULL)
442 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
443
444 s_assert(pnode != NULL);
445
446 if(pnode != NULL)
447 {
448 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
449 {
450 /* This should only happen if the limits are set to 0 */
451 if((intptr_t)pnode->data == 0)
452 {
453 rb_patricia_remove(ConfIpLimits(aconf), pnode);
454 }
455 return (0);
456 }
457
458 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
459 }
460 return 1;
461 }
462
463 static void
464 remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
465 {
466 rb_patricia_node_t *pnode;
467
468 /* If the limits are 0 don't do anything.. */
469 if(ConfCidrAmount(aconf) == 0
470 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
471 return;
472
473 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
474 if(pnode == NULL)
475 return;
476
477 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
478 if(((intptr_t)pnode->data) == 0)
479 {
480 rb_patricia_remove(ConfIpLimits(aconf), pnode);
481 }
482
483 }
484
485 /*
486 * attach_iline
487 *
488 * inputs - client pointer
489 * - conf pointer
490 * output -
491 * side effects - do actual attach
492 */
493 static int
494 attach_iline(struct Client *client_p, struct ConfItem *aconf)
495 {
496 struct Client *target_p;
497 rb_dlink_node *ptr;
498 int local_count = 0;
499 int global_count = 0;
500 int ident_count = 0;
501 int unidented;
502
503 if(IsConfExemptLimits(aconf))
504 return (attach_conf(client_p, aconf));
505
506 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
507 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
508
509 /* find_hostname() returns the head of the list to search */
510 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
511 {
512 target_p = ptr->data;
513
514 if(irccmp(client_p->host, target_p->orighost) != 0)
515 continue;
516
517 if(MyConnect(target_p))
518 local_count++;
519
520 global_count++;
521
522 if(unidented)
523 {
524 if(*target_p->username == '~')
525 ident_count++;
526 }
527 else if(irccmp(target_p->username, client_p->username) == 0)
528 ident_count++;
529
530 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
531 return (TOO_MANY_LOCAL);
532 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
533 return (TOO_MANY_GLOBAL);
534 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
535 return (TOO_MANY_IDENT);
536 }
537
538
539 return (attach_conf(client_p, aconf));
540 }
541
542 /*
543 * detach_conf
544 *
545 * inputs - pointer to client to detach
546 * output - 0 for success, -1 for failure
547 * side effects - Disassociate configuration from the client.
548 * Also removes a class from the list if marked for deleting.
549 */
550 int
551 detach_conf(struct Client *client_p)
552 {
553 struct ConfItem *aconf;
554
555 aconf = client_p->localClient->att_conf;
556
557 if(aconf != NULL)
558 {
559 if(ClassPtr(aconf))
560 {
561 remove_ip_limit(client_p, aconf);
562
563 if(ConfCurrUsers(aconf) > 0)
564 --ConfCurrUsers(aconf);
565
566 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
567 {
568 free_class(ClassPtr(aconf));
569 ClassPtr(aconf) = NULL;
570 }
571
572 }
573
574 aconf->clients--;
575 if(!aconf->clients && IsIllegal(aconf))
576 free_conf(aconf);
577
578 client_p->localClient->att_conf = NULL;
579 return 0;
580 }
581
582 return -1;
583 }
584
585 /*
586 * attach_conf
587 *
588 * inputs - client pointer
589 * - conf pointer
590 * output -
591 * side effects - Associate a specific configuration entry to a *local*
592 * client (this is the one which used in accepting the
593 * connection). Note, that this automatically changes the
594 * attachment if there was an old one...
595 */
596 int
597 attach_conf(struct Client *client_p, struct ConfItem *aconf)
598 {
599 if(IsIllegal(aconf))
600 return (NOT_AUTHORISED);
601
602 if(ClassPtr(aconf))
603 {
604 if(!add_ip_limit(client_p, aconf))
605 return (TOO_MANY_LOCAL);
606 }
607
608 if((aconf->status & CONF_CLIENT) &&
609 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
610 {
611 if(!IsConfExemptLimits(aconf))
612 {
613 return (I_LINE_FULL);
614 }
615 else
616 {
617 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
618 }
619
620 }
621
622 if(client_p->localClient->att_conf != NULL)
623 detach_conf(client_p);
624
625 client_p->localClient->att_conf = aconf;
626
627 aconf->clients++;
628 ConfCurrUsers(aconf)++;
629 return (0);
630 }
631
632 /*
633 * rehash
634 *
635 * Actual REHASH service routine. Called with sig == 0 if it has been called
636 * as a result of an operator issuing this command, else assume it has been
637 * called as a result of the server receiving a HUP signal.
638 */
639 bool
640 rehash(bool sig)
641 {
642 if(sig)
643 {
644 sendto_realops_snomask(SNO_GENERAL, L_ALL,
645 "Got signal SIGHUP, reloading ircd conf. file");
646 }
647
648 rehash_authd();
649 /* don't close listeners until we know we can go ahead with the rehash */
650 read_conf_files(false);
651
652 if(ServerInfo.description != NULL)
653 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
654 else
655 rb_strlcpy(me.info, "unknown", sizeof(me.info));
656
657 open_logfiles();
658 return false;
659 }
660
661 void
662 rehash_bans(void)
663 {
664 bandb_rehash_bans();
665 }
666
667 /*
668 * set_default_conf()
669 *
670 * inputs - NONE
671 * output - NONE
672 * side effects - Set default values here.
673 * This is called **PRIOR** to parsing the
674 * configuration file. If you want to do some validation
675 * of values later, put them in validate_conf().
676 */
677
678 static void
679 set_default_conf(void)
680 {
681 /* ServerInfo.name is not rehashable */
682 /* ServerInfo.name = ServerInfo.name; */
683 ServerInfo.description = NULL;
684 ServerInfo.network_name = NULL;
685
686 memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip));
687 ServerInfo.specific_ipv4_vhost = 0;
688 #ifdef RB_IPV6
689 memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6));
690 ServerInfo.specific_ipv6_vhost = 0;
691 #endif
692
693 AdminInfo.name = NULL;
694 AdminInfo.email = NULL;
695 AdminInfo.description = NULL;
696
697 ConfigFileEntry.default_operstring = NULL;
698 ConfigFileEntry.default_adminstring = NULL;
699 ConfigFileEntry.servicestring = NULL;
700 ConfigFileEntry.sasl_service = NULL;
701
702 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
703 ConfigFileEntry.failed_oper_notice = true;
704 ConfigFileEntry.anti_nick_flood = false;
705 ConfigFileEntry.disable_fake_channels = false;
706 ConfigFileEntry.max_nick_time = 20;
707 ConfigFileEntry.max_nick_changes = 5;
708 ConfigFileEntry.max_accept = 20;
709 ConfigFileEntry.max_monitor = 60;
710 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
711 ConfigFileEntry.target_change = true;
712 ConfigFileEntry.anti_spam_exit_message_time = 0;
713 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
714 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
715 ConfigFileEntry.client_exit = true;
716 ConfigFileEntry.dline_with_reason = true;
717 ConfigFileEntry.kline_with_reason = true;
718 ConfigFileEntry.kline_delay = 0;
719 ConfigFileEntry.warn_no_nline = true;
720 ConfigFileEntry.non_redundant_klines = true;
721 ConfigFileEntry.stats_e_disabled = false;
722 ConfigFileEntry.stats_o_oper_only = false;
723 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
724 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
725 ConfigFileEntry.stats_P_oper_only = false;
726 ConfigFileEntry.stats_c_oper_only = false;
727 ConfigFileEntry.stats_y_oper_only = false;
728 ConfigFileEntry.stats_h_oper_only = false;
729 ConfigFileEntry.map_oper_only = true;
730 ConfigFileEntry.operspy_admin_only = false;
731 ConfigFileEntry.pace_wait = 10;
732 ConfigFileEntry.caller_id_wait = 60;
733 ConfigFileEntry.pace_wait_simple = 1;
734 ConfigFileEntry.short_motd = false;
735 ConfigFileEntry.no_oper_flood = false;
736 ConfigFileEntry.fname_userlog = NULL;
737 ConfigFileEntry.fname_fuserlog = NULL;
738 ConfigFileEntry.fname_operlog = NULL;
739 ConfigFileEntry.fname_foperlog = NULL;
740 ConfigFileEntry.fname_serverlog = NULL;
741 ConfigFileEntry.fname_killlog = NULL;
742 ConfigFileEntry.fname_klinelog = NULL;
743 ConfigFileEntry.fname_operspylog = NULL;
744 ConfigFileEntry.fname_ioerrorlog = NULL;
745 ConfigFileEntry.hide_spoof_ips = true;
746 ConfigFileEntry.hide_error_messages = 1;
747 ConfigFileEntry.dots_in_ident = 0;
748 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
749 ConfigFileEntry.use_whois_actually = true;
750 ConfigFileEntry.burst_away = false;
751 ConfigFileEntry.collision_fnc = true;
752 ConfigFileEntry.resv_fnc = true;
753 ConfigFileEntry.global_snotices = true;
754 ConfigFileEntry.operspy_dont_care_user_info = false;
755 ConfigFileEntry.use_propagated_bans = true;
756 ConfigFileEntry.max_ratelimit_tokens = 30;
757 ConfigFileEntry.away_interval = 30;
758
759 #ifdef HAVE_LIBZ
760 ConfigFileEntry.compression_level = 4;
761 #endif
762
763 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
764 UMODE_OPERWALL | UMODE_WALLOP;
765 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
766 ConfigFileEntry.oper_snomask = SNO_GENERAL;
767
768 ConfigChannel.use_except = true;
769 ConfigChannel.use_invex = true;
770 ConfigChannel.use_forward = true;
771 ConfigChannel.use_knock = true;
772 ConfigChannel.knock_delay = 300;
773 ConfigChannel.knock_delay_channel = 60;
774 ConfigChannel.max_chans_per_user = 15;
775 ConfigChannel.max_chans_per_user_large = 60;
776 ConfigChannel.max_bans = 25;
777 ConfigChannel.max_bans_large = 500;
778 ConfigChannel.only_ascii_channels = false;
779 ConfigChannel.burst_topicwho = false;
780 ConfigChannel.kick_on_split_riding = false;
781
782 ConfigChannel.default_split_user_count = 15000;
783 ConfigChannel.default_split_server_count = 10;
784 ConfigChannel.no_join_on_split = false;
785 ConfigChannel.no_create_on_split = true;
786 ConfigChannel.resv_forcepart = true;
787 ConfigChannel.channel_target_change = true;
788 ConfigChannel.disable_local_channels = false;
789 ConfigChannel.displayed_usercount = 3;
790
791 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
792
793 ConfigServerHide.flatten_links = 0;
794 ConfigServerHide.links_delay = 300;
795 ConfigServerHide.hidden = 0;
796 ConfigServerHide.disable_hidden = 0;
797
798 ConfigFileEntry.min_nonwildcard = 4;
799 ConfigFileEntry.min_nonwildcard_simple = 3;
800 ConfigFileEntry.default_floodcount = 8;
801 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
802 ConfigFileEntry.tkline_expire_notices = 0;
803
804 ConfigFileEntry.reject_after_count = 5;
805 ConfigFileEntry.reject_ban_time = 300;
806 ConfigFileEntry.reject_duration = 120;
807 ConfigFileEntry.throttle_count = 4;
808 ConfigFileEntry.throttle_duration = 60;
809
810 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
811 ConfigFileEntry.client_flood_burst_rate = 5;
812 ConfigFileEntry.client_flood_burst_max = 5;
813 ConfigFileEntry.client_flood_message_time = 1;
814 ConfigFileEntry.client_flood_message_num = 2;
815
816 ServerInfo.default_max_clients = MAXCONNECTIONS;
817
818 ConfigFileEntry.nicklen = NICKLEN;
819 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_SHA1;
820 ConfigFileEntry.hide_opers_in_whois = 0;
821
822 if (!alias_dict)
823 alias_dict = rb_dictionary_create("alias", strcasecmp);
824 }
825
826 /*
827 * read_conf()
828 *
829 *
830 * inputs - None
831 * output - None
832 * side effects - Read configuration file.
833 */
834 static void
835 read_conf(void)
836 {
837 lineno = 0;
838
839 set_default_conf(); /* Set default values prior to conf parsing */
840 yyparse(); /* Load the values from the conf */
841 validate_conf(); /* Check to make sure some values are still okay. */
842 /* Some global values are also loaded here. */
843 check_class(); /* Make sure classes are valid */
844 privilegeset_delete_all_illegal();
845 construct_cflags_strings();
846 }
847
848 static void
849 validate_conf(void)
850 {
851 if(ConfigFileEntry.default_ident_timeout < 1)
852 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
853
854 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
855 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
856
857 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
858 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
859
860 if(ServerInfo.network_name == NULL)
861 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
862
863 if(ServerInfo.ssld_count < 1)
864 ServerInfo.ssld_count = 1;
865
866 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
867 {
868 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
869 ircd_ssl_ok = false;
870 } else {
871 ircd_ssl_ok = true;
872 send_new_ssl_certs(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
873 }
874
875 if(ServerInfo.ssld_count > get_ssld_count())
876 {
877 int start = ServerInfo.ssld_count - get_ssld_count();
878 /* start up additional ssld if needed */
879 start_ssldaemon(start, ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
880 }
881
882 /* General conf */
883 if (ConfigFileEntry.default_operstring == NULL)
884 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
885
886 if (ConfigFileEntry.default_adminstring == NULL)
887 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
888
889 if (ConfigFileEntry.servicestring == NULL)
890 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
891
892 if (ConfigFileEntry.sasl_service == NULL)
893 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
894
895 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
896 * 5 messages are acceptable, so allow at least that.
897 */
898 if(ConfigFileEntry.client_flood_burst_rate < 5)
899 ConfigFileEntry.client_flood_burst_rate = 5;
900 if(ConfigFileEntry.client_flood_burst_max < 5)
901 ConfigFileEntry.client_flood_burst_max = 5;
902 if(ConfigFileEntry.client_flood_message_time >
903 ConfigFileEntry.client_flood_message_num * 2)
904 ConfigFileEntry.client_flood_message_time =
905 ConfigFileEntry.client_flood_message_num * 2;
906
907 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
908 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
909 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
910
911 if(!split_users || !split_servers ||
912 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
913 {
914 rb_event_delete(check_splitmode_ev);
915 check_splitmode_ev = NULL;
916 splitmode = 0;
917 splitchecking = 0;
918 }
919 }
920
921 /* add_temp_kline()
922 *
923 * inputs - pointer to struct ConfItem
924 * output - none
925 * Side effects - links in given struct ConfItem into
926 * temporary kline link list
927 */
928 void
929 add_temp_kline(struct ConfItem *aconf)
930 {
931 if(aconf->hold >= rb_current_time() + (10080 * 60))
932 {
933 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
934 aconf->port = TEMP_WEEK;
935 }
936 else if(aconf->hold >= rb_current_time() + (1440 * 60))
937 {
938 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
939 aconf->port = TEMP_DAY;
940 }
941 else if(aconf->hold >= rb_current_time() + (60 * 60))
942 {
943 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
944 aconf->port = TEMP_HOUR;
945 }
946 else
947 {
948 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
949 aconf->port = TEMP_MIN;
950 }
951
952 aconf->flags |= CONF_FLAGS_TEMPORARY;
953 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
954 }
955
956 /* add_temp_dline()
957 *
958 * input - pointer to struct ConfItem
959 * output - none
960 * side effects - added to tdline link list and address hash
961 */
962 void
963 add_temp_dline(struct ConfItem *aconf)
964 {
965 if(aconf->hold >= rb_current_time() + (10080 * 60))
966 {
967 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
968 aconf->port = TEMP_WEEK;
969 }
970 else if(aconf->hold >= rb_current_time() + (1440 * 60))
971 {
972 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
973 aconf->port = TEMP_DAY;
974 }
975 else if(aconf->hold >= rb_current_time() + (60 * 60))
976 {
977 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
978 aconf->port = TEMP_HOUR;
979 }
980 else
981 {
982 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
983 aconf->port = TEMP_MIN;
984 }
985
986 aconf->flags |= CONF_FLAGS_TEMPORARY;
987 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
988 }
989
990 /* valid_wild_card()
991 *
992 * input - user buffer, host buffer
993 * output - 0 if invalid, 1 if valid
994 * side effects -
995 */
996 int
997 valid_wild_card(const char *luser, const char *lhost)
998 {
999 const char *p;
1000 char tmpch;
1001 int nonwild = 0;
1002 int bitlen;
1003
1004 /* user has no wildcards, always accept -- jilles */
1005 if(!strchr(luser, '?') && !strchr(luser, '*'))
1006 return 1;
1007
1008 /* check there are enough non wildcard chars */
1009 p = luser;
1010 while((tmpch = *p++))
1011 {
1012 if(!IsKWildChar(tmpch))
1013 {
1014 /* found enough chars, return */
1015 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1016 return 1;
1017 }
1018 }
1019
1020 /* try host, as user didnt contain enough */
1021 /* special case for cidr masks -- jilles */
1022 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1023 {
1024 bitlen = atoi(p + 1);
1025 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1026 if(bitlen > 0
1027 && bitlen >=
1028 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1029 2 * nonwild))
1030 return 1;
1031 }
1032 else
1033 {
1034 p = lhost;
1035 while((tmpch = *p++))
1036 {
1037 if(!IsKWildChar(tmpch))
1038 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1039 return 1;
1040 }
1041 }
1042
1043 return 0;
1044 }
1045
1046 rb_dlink_node *
1047 find_prop_ban(unsigned int status, const char *user, const char *host)
1048 {
1049 rb_dlink_node *ptr;
1050 struct ConfItem *aconf;
1051
1052 RB_DLINK_FOREACH(ptr, prop_bans.head)
1053 {
1054 aconf = ptr->data;
1055
1056 if((aconf->status & ~CONF_ILLEGAL) == status &&
1057 (!user || !aconf->user ||
1058 !irccmp(aconf->user, user)) &&
1059 !irccmp(aconf->host, host))
1060 return ptr;
1061 }
1062 return NULL;
1063 }
1064
1065 void
1066 deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
1067 {
1068 int i;
1069
1070 s_assert(ptr->data == aconf);
1071
1072 switch (aconf->status)
1073 {
1074 case CONF_KILL:
1075 if (aconf->lifetime == 0 &&
1076 aconf->flags & CONF_FLAGS_TEMPORARY)
1077 for (i = 0; i < LAST_TEMP_TYPE; i++)
1078 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1079 /* Make sure delete_one_address_conf() does not
1080 * free the aconf.
1081 */
1082 aconf->clients++;
1083 delete_one_address_conf(aconf->host, aconf);
1084 aconf->clients--;
1085 break;
1086 case CONF_DLINE:
1087 if (aconf->lifetime == 0 &&
1088 aconf->flags & CONF_FLAGS_TEMPORARY)
1089 for (i = 0; i < LAST_TEMP_TYPE; i++)
1090 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1091 aconf->clients++;
1092 delete_one_address_conf(aconf->host, aconf);
1093 aconf->clients--;
1094 break;
1095 case CONF_XLINE:
1096 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1097 break;
1098 case CONF_RESV_NICK:
1099 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1100 break;
1101 case CONF_RESV_CHANNEL:
1102 del_from_resv_hash(aconf->host, aconf);
1103 break;
1104 }
1105 if (aconf->lifetime != 0 && now < aconf->lifetime)
1106 aconf->status |= CONF_ILLEGAL;
1107 else
1108 {
1109 if (aconf->lifetime != 0)
1110 rb_dlinkDestroy(ptr, &prop_bans);
1111 free_conf(aconf);
1112 }
1113 }
1114
1115 /* Given a new ban ConfItem, look for any matching ban, update the lifetime
1116 * from it and delete it.
1117 */
1118 void
1119 replace_old_ban(struct ConfItem *aconf)
1120 {
1121 rb_dlink_node *ptr;
1122 struct ConfItem *oldconf;
1123
1124 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1125 if(ptr != NULL)
1126 {
1127 oldconf = ptr->data;
1128 /* Remember at least as long as the old one. */
1129 if(oldconf->lifetime > aconf->lifetime)
1130 aconf->lifetime = oldconf->lifetime;
1131 /* Force creation time to increase. */
1132 if(oldconf->created >= aconf->created)
1133 aconf->created = oldconf->created + 1;
1134 /* Leave at least one second of validity. */
1135 if(aconf->hold <= aconf->created)
1136 aconf->hold = aconf->created + 1;
1137 if(aconf->lifetime < aconf->hold)
1138 aconf->lifetime = aconf->hold;
1139 /* Tell deactivate_conf() to destroy it. */
1140 oldconf->lifetime = rb_current_time();
1141 deactivate_conf(oldconf, ptr, oldconf->lifetime);
1142 }
1143 }
1144
1145 static void
1146 expire_prop_bans(void *list)
1147 {
1148 rb_dlink_node *ptr;
1149 rb_dlink_node *next_ptr;
1150 struct ConfItem *aconf;
1151 time_t now;
1152
1153 now = rb_current_time();
1154 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1155 {
1156 aconf = ptr->data;
1157
1158 if(aconf->lifetime <= now ||
1159 (aconf->hold <= now &&
1160 !(aconf->status & CONF_ILLEGAL)))
1161 {
1162 /* Alert opers that a TKline expired - Hwy */
1163 /* XXX show what type of ban it is */
1164 if(ConfigFileEntry.tkline_expire_notices &&
1165 !(aconf->status & CONF_ILLEGAL))
1166 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1167 "Propagated ban for [%s%s%s] expired",
1168 aconf->user ? aconf->user : "",
1169 aconf->user ? "@" : "",
1170 aconf->host ? aconf->host : "*");
1171
1172 /* will destroy or mark illegal */
1173 deactivate_conf(aconf, ptr, now);
1174 }
1175 }
1176 }
1177
1178 /* expire_tkline()
1179 *
1180 * inputs - list pointer
1181 * - type
1182 * output - NONE
1183 * side effects - expire tklines and moves them between lists
1184 */
1185 static void
1186 expire_temp_kd(void *list)
1187 {
1188 rb_dlink_node *ptr;
1189 rb_dlink_node *next_ptr;
1190 struct ConfItem *aconf;
1191
1192 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1193 {
1194 aconf = ptr->data;
1195
1196 if(aconf->hold <= rb_current_time())
1197 {
1198 /* Alert opers that a TKline expired - Hwy */
1199 if(ConfigFileEntry.tkline_expire_notices)
1200 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1201 "Temporary K-line for [%s@%s] expired",
1202 (aconf->user) ? aconf->
1203 user : "*", (aconf->host) ? aconf->host : "*");
1204
1205 delete_one_address_conf(aconf->host, aconf);
1206 rb_dlinkDestroy(ptr, list);
1207 }
1208 }
1209 }
1210
1211 static void
1212 reorganise_temp_kd(void *list)
1213 {
1214 struct ConfItem *aconf;
1215 rb_dlink_node *ptr, *next_ptr;
1216
1217 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1218 {
1219 aconf = ptr->data;
1220
1221 if(aconf->hold < (rb_current_time() + (60 * 60)))
1222 {
1223 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1224 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1225 aconf->port = TEMP_MIN;
1226 }
1227 else if(aconf->port > TEMP_HOUR)
1228 {
1229 if(aconf->hold < (rb_current_time() + (1440 * 60)))
1230 {
1231 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1232 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1233 aconf->port = TEMP_HOUR;
1234 }
1235 else if(aconf->port > TEMP_DAY &&
1236 (aconf->hold < (rb_current_time() + (10080 * 60))))
1237 {
1238 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1239 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1240 aconf->port = TEMP_DAY;
1241 }
1242 }
1243 }
1244 }
1245
1246
1247 /* const char* get_oper_name(struct Client *client_p)
1248 * Input: A client to find the active oper{} name for.
1249 * Output: The nick!user@host{oper} of the oper.
1250 * "oper" is server name for remote opers
1251 * Side effects: None.
1252 */
1253 char *
1254 get_oper_name(struct Client *client_p)
1255 {
1256 /* +5 for !,@,{,} and null */
1257 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1258
1259 if(MyOper(client_p))
1260 {
1261 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
1262 client_p->name, client_p->username,
1263 client_p->host, client_p->localClient->opername);
1264 return buffer;
1265 }
1266
1267 snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
1268 client_p->name, client_p->username,
1269 client_p->host, client_p->servptr->name);
1270 return buffer;
1271 }
1272
1273 /*
1274 * get_printable_conf
1275 *
1276 * inputs - struct ConfItem
1277 *
1278 * output - name
1279 * - host
1280 * - pass
1281 * - user
1282 * - port
1283 *
1284 * side effects -
1285 * Examine the struct struct ConfItem, setting the values
1286 * of name, host, pass, user to values either
1287 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1288 */
1289 void
1290 get_printable_conf(struct ConfItem *aconf, char **name, char **host,
1291 const char **pass, char **user, int *port, char **classname)
1292 {
1293 static char null[] = "<NULL>";
1294 static char zero[] = "default";
1295
1296 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
1297 *host = EmptyString(aconf->host) ? null : aconf->host;
1298 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1299 *user = EmptyString(aconf->user) ? null : aconf->user;
1300 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1301 *port = (int) aconf->port;
1302 }
1303
1304 char *
1305 get_user_ban_reason(struct ConfItem *aconf)
1306 {
1307 static char reasonbuf[BUFSIZE];
1308
1309 if (aconf->flags & CONF_FLAGS_TEMPORARY &&
1310 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
1311 snprintf(reasonbuf, sizeof reasonbuf,
1312 "Temporary %c-line %d min. - ",
1313 aconf->status == CONF_DLINE ? 'D' : 'K',
1314 (int)((aconf->hold - aconf->created) / 60));
1315 else
1316 reasonbuf[0] = '\0';
1317 if (aconf->passwd)
1318 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1319 else
1320 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1321 if (aconf->created)
1322 {
1323 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1324 rb_strlcat(reasonbuf, smalldate(aconf->created),
1325 sizeof reasonbuf);
1326 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1327 }
1328 return reasonbuf;
1329 }
1330
1331 void
1332 get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
1333 char **host, char **reason,
1334 char **user, char **oper_reason)
1335 {
1336 static char null[] = "<NULL>";
1337 static char operreasonbuf[BUFSIZE];
1338
1339 *host = EmptyString(aconf->host) ? null : aconf->host;
1340 *user = EmptyString(aconf->user) ? null : aconf->user;
1341 *reason = get_user_ban_reason(aconf);
1342
1343 if(!IsOper(source_p))
1344 *oper_reason = NULL;
1345 else
1346 {
1347 snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
1348 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1349 EmptyString(aconf->spasswd) ? "" : " ",
1350 aconf->info.oper);
1351 *oper_reason = operreasonbuf;
1352 }
1353 }
1354
1355 /*
1356 * read_conf_files
1357 *
1358 * inputs - cold start
1359 * output - none
1360 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1361 */
1362 void
1363 read_conf_files(bool cold)
1364 {
1365 const char *filename;
1366
1367 conf_fbfile_in = NULL;
1368
1369 filename = ConfigFileEntry.configfile;
1370
1371 /* We need to know the initial filename for the yyerror() to report
1372 FIXME: The full path is in conffilenamebuf first time since we
1373 dont know anything else
1374
1375 - Gozem 2002-07-21
1376
1377
1378 */
1379 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
1380
1381 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1382 {
1383 if(cold)
1384 {
1385 inotice("Failed in reading configuration file %s, aborting", filename);
1386 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1387
1388 int e;
1389 e = errno;
1390
1391 inotice("FATAL: %s %s", strerror(e), filename);
1392 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
1393
1394 exit(-1);
1395 }
1396 else
1397 {
1398 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1399 "Can't open file '%s' - aborting rehash!", filename);
1400 return;
1401 }
1402 }
1403
1404 if(!cold)
1405 {
1406 clear_out_old_conf();
1407 }
1408
1409 call_hook(h_conf_read_start, NULL);
1410 read_conf();
1411 call_hook(h_conf_read_end, NULL);
1412
1413 fclose(conf_fbfile_in);
1414 }
1415
1416 /*
1417 * free an alias{} entry.
1418 */
1419 static void
1420 free_alias_cb(rb_dictionary_element *ptr, void *unused)
1421 {
1422 struct alias_entry *aptr = ptr->data;
1423
1424 rb_free(aptr->name);
1425 rb_free(aptr->target);
1426 rb_free(aptr);
1427 }
1428
1429 /*
1430 * clear_out_old_conf
1431 *
1432 * inputs - none
1433 * output - none
1434 * side effects - Clear out the old configuration
1435 */
1436 static void
1437 clear_out_old_conf(void)
1438 {
1439 struct Class *cltmp;
1440 rb_dlink_node *ptr;
1441 rb_dlink_node *next_ptr;
1442
1443 /*
1444 * don't delete the class table, rather mark all entries
1445 * for deletion. The table is cleaned up by check_class. - avalon
1446 */
1447 RB_DLINK_FOREACH(ptr, class_list.head)
1448 {
1449 cltmp = ptr->data;
1450 MaxUsers(cltmp) = -1;
1451 }
1452
1453 clear_out_address_conf();
1454 clear_s_newconf();
1455
1456 /* clean out module paths */
1457 mod_clear_paths();
1458 mod_add_path(MODULE_DIR);
1459 mod_add_path(MODULE_DIR "/autoload");
1460
1461 /* clean out ServerInfo */
1462 rb_free(ServerInfo.description);
1463 ServerInfo.description = NULL;
1464 rb_free(ServerInfo.network_name);
1465 ServerInfo.network_name = NULL;
1466
1467 ServerInfo.ssld_count = 1;
1468
1469 /* clean out AdminInfo */
1470 rb_free(AdminInfo.name);
1471 AdminInfo.name = NULL;
1472 rb_free(AdminInfo.email);
1473 AdminInfo.email = NULL;
1474 rb_free(AdminInfo.description);
1475 AdminInfo.description = NULL;
1476
1477 /* operator{} and class{} blocks are freed above */
1478 /* clean out listeners */
1479 close_listeners();
1480
1481 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1482 * and gecos{} blocks are freed above too
1483 */
1484
1485 /* clean out general */
1486 rb_free(ConfigFileEntry.default_operstring);
1487 ConfigFileEntry.default_operstring = NULL;
1488 rb_free(ConfigFileEntry.default_adminstring);
1489 ConfigFileEntry.default_adminstring = NULL;
1490 rb_free(ConfigFileEntry.servicestring);
1491 ConfigFileEntry.servicestring = NULL;
1492 rb_free(ConfigFileEntry.kline_reason);
1493 ConfigFileEntry.kline_reason = NULL;
1494 rb_free(ConfigFileEntry.sasl_service);
1495 ConfigFileEntry.sasl_service = NULL;
1496
1497 /* clean out log */
1498 rb_free(ConfigFileEntry.fname_userlog);
1499 ConfigFileEntry.fname_userlog = NULL;
1500 rb_free(ConfigFileEntry.fname_fuserlog);
1501 ConfigFileEntry.fname_fuserlog = NULL;
1502 rb_free(ConfigFileEntry.fname_operlog);
1503 ConfigFileEntry.fname_operlog = NULL;
1504 rb_free(ConfigFileEntry.fname_foperlog);
1505 ConfigFileEntry.fname_foperlog = NULL;
1506 rb_free(ConfigFileEntry.fname_serverlog);
1507 ConfigFileEntry.fname_serverlog = NULL;
1508 rb_free(ConfigFileEntry.fname_killlog);
1509 ConfigFileEntry.fname_killlog = NULL;
1510 rb_free(ConfigFileEntry.fname_klinelog);
1511 ConfigFileEntry.fname_klinelog = NULL;
1512 rb_free(ConfigFileEntry.fname_operspylog);
1513 ConfigFileEntry.fname_operspylog = NULL;
1514 rb_free(ConfigFileEntry.fname_ioerrorlog);
1515 ConfigFileEntry.fname_ioerrorlog = NULL;
1516
1517 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
1518 {
1519 rb_free(ptr->data);
1520 rb_dlinkDestroy(ptr, &service_list);
1521 }
1522
1523 /* remove any aliases... -- nenolod */
1524 if (alias_dict != NULL)
1525 {
1526 rb_dictionary_destroy(alias_dict, free_alias_cb, NULL);
1527 alias_dict = NULL;
1528 }
1529
1530 destroy_blacklists();
1531
1532 privilegeset_mark_all_illegal();
1533
1534 /* OK, that should be everything... */
1535 }
1536
1537
1538 /*
1539 * conf_add_class_to_conf
1540 * inputs - pointer to config item
1541 * output - NONE
1542 * side effects - Add a class pointer to a conf
1543 */
1544
1545 void
1546 conf_add_class_to_conf(struct ConfItem *aconf)
1547 {
1548 if(aconf->className == NULL)
1549 {
1550 aconf->className = rb_strdup("default");
1551 ClassPtr(aconf) = default_class;
1552 return;
1553 }
1554
1555 ClassPtr(aconf) = find_class(aconf->className);
1556
1557 if(ClassPtr(aconf) == default_class)
1558 {
1559 if(aconf->status == CONF_CLIENT)
1560 {
1561 conf_report_error(
1562 "Using default class for missing class \"%s\" in auth{} for %s@%s",
1563 aconf->className, aconf->user, aconf->host);
1564 }
1565
1566 rb_free(aconf->className);
1567 aconf->className = rb_strdup("default");
1568 return;
1569 }
1570
1571 if(ConfMaxUsers(aconf) < 0)
1572 {
1573 ClassPtr(aconf) = default_class;
1574 rb_free(aconf->className);
1575 aconf->className = rb_strdup("default");
1576 return;
1577 }
1578 }
1579
1580 /*
1581 * conf_add_d_conf
1582 * inputs - pointer to config item
1583 * output - NONE
1584 * side effects - Add a d/D line
1585 */
1586 void
1587 conf_add_d_conf(struct ConfItem *aconf)
1588 {
1589 if(aconf->host == NULL)
1590 return;
1591
1592 aconf->user = NULL;
1593
1594 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1595 * need this anyway, so I will disable it for now... -A1kmm
1596 */
1597
1598 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1599 {
1600 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1601 free_conf(aconf);
1602 }
1603 else
1604 {
1605 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
1606 }
1607 }
1608
1609 static char *
1610 strip_tabs(char *dest, const char *src, size_t len)
1611 {
1612 char *d = dest;
1613
1614 if(dest == NULL || src == NULL)
1615 return NULL;
1616
1617 rb_strlcpy(dest, src, len);
1618
1619 while(*d)
1620 {
1621 if(*d == '\t')
1622 *d = ' ';
1623 d++;
1624 }
1625 return dest;
1626 }
1627
1628 /*
1629 * yyerror
1630 *
1631 * inputs - message from parser
1632 * output - none
1633 * side effects - message to opers and log file entry is made
1634 */
1635 void
1636 yyerror(const char *msg)
1637 {
1638 char newlinebuf[BUFSIZE];
1639
1640 strip_tabs(newlinebuf, linebuf, strlen(linebuf));
1641
1642 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
1643 sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'",
1644 conffilebuf, lineno + 1, msg, newlinebuf);
1645
1646 }
1647
1648 int
1649 conf_fgets(char *lbuf, int max_size, FILE * fb)
1650 {
1651 if(fgets(lbuf, max_size, fb) == NULL)
1652 return (0);
1653
1654 return (strlen(lbuf));
1655 }
1656
1657 int
1658 conf_yy_fatal_error(const char *msg)
1659 {
1660 return (0);
1661 }
Fork of solanum ircd, history is rebased regularly