]> jfr.im git - solanum.git/blob - src/s_conf.c
projects / solanum.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
ssl: allow cipher list to be overridden (closes #67)
[solanum.git] / src / s_conf.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 *
24 * $Id: s_conf.c 3550 2007-08-09 06:47:26Z nenolod $
25 */
26
27 #include "stdinc.h"
28 #include "ircd_defs.h"
29 #include "s_conf.h"
30 #include "s_newconf.h"
31 #include "newconf.h"
32 #include "s_serv.h"
33 #include "s_stats.h"
34 #include "channel.h"
35 #include "class.h"
36 #include "client.h"
37 #include "common.h"
38 #include "hash.h"
39 #include "match.h"
40 #include "ircd.h"
41 #include "listener.h"
42 #include "hostmask.h"
43 #include "modules.h"
44 #include "numeric.h"
45 #include "logger.h"
46 #include "send.h"
47 #include "reject.h"
48 #include "cache.h"
49 #include "blacklist.h"
50 #include "privilege.h"
51 #include "sslproc.h"
52 #include "bandbi.h"
53 #include "operhash.h"
54 #include "chmode.h"
55 #include "hook.h"
56 #include "s_assert.h"
57
58 struct config_server_hide ConfigServerHide;
59
60 extern int yyparse(void); /* defined in y.tab.c */
61 extern char linebuf[];
62
63 #ifndef INADDR_NONE
64 #define INADDR_NONE ((unsigned int) 0xffffffff)
65 #endif
66
67 static rb_bh *confitem_heap = NULL;
68
69 rb_dlink_list prop_bans;
70
71 rb_dlink_list temp_klines[LAST_TEMP_TYPE];
72 rb_dlink_list temp_dlines[LAST_TEMP_TYPE];
73 rb_dlink_list service_list;
74
75 /* internally defined functions */
76 static void set_default_conf(void);
77 static void validate_conf(void);
78 static void read_conf(void);
79 static void clear_out_old_conf(void);
80
81 static void expire_prop_bans(void *list);
82 static void expire_temp_kd(void *list);
83 static void reorganise_temp_kd(void *list);
84
85 FILE *conf_fbfile_in;
86 extern char yytext[];
87
88 static int verify_access(struct Client *client_p, const char *username);
89 static struct ConfItem *find_address_conf_by_client(struct Client *client_p, const char *username);
90 static int attach_iline(struct Client *, struct ConfItem *);
91
92 void
93 init_s_conf(void)
94 {
95 confitem_heap = rb_bh_create(sizeof(struct ConfItem), CONFITEM_HEAP_SIZE, "confitem_heap");
96
97 rb_event_addish("expire_prop_bans", expire_prop_bans, &prop_bans, 60);
98
99 rb_event_addish("expire_temp_klines", expire_temp_kd, &temp_klines[TEMP_MIN], 60);
100 rb_event_addish("expire_temp_dlines", expire_temp_kd, &temp_dlines[TEMP_MIN], 60);
101
102 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd,
103 &temp_klines[TEMP_HOUR], 3600);
104 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd,
105 &temp_dlines[TEMP_HOUR], 3600);
106 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd,
107 &temp_klines[TEMP_DAY], 86400);
108 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd,
109 &temp_dlines[TEMP_DAY], 86400);
110 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd,
111 &temp_klines[TEMP_WEEK], 604800);
112 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd,
113 &temp_dlines[TEMP_WEEK], 604800);
114 }
115
116 /*
117 * make_conf
118 *
119 * inputs - none
120 * output - pointer to new conf entry
121 * side effects - none
122 */
123 struct ConfItem *
124 make_conf()
125 {
126 struct ConfItem *aconf;
127
128 aconf = rb_bh_alloc(confitem_heap);
129 aconf->status = CONF_ILLEGAL;
130 return (aconf);
131 }
132
133 /*
134 * free_conf
135 *
136 * inputs - pointer to conf to free
137 * output - none
138 * side effects - crucial password fields are zeroed, conf is freed
139 */
140 void
141 free_conf(struct ConfItem *aconf)
142 {
143 s_assert(aconf != NULL);
144 if(aconf == NULL)
145 return;
146
147 /* security.. */
148 if(aconf->passwd)
149 memset(aconf->passwd, 0, strlen(aconf->passwd));
150 if(aconf->spasswd)
151 memset(aconf->spasswd, 0, strlen(aconf->spasswd));
152
153 rb_free(aconf->passwd);
154 rb_free(aconf->spasswd);
155 rb_free(aconf->className);
156 rb_free(aconf->user);
157 rb_free(aconf->host);
158
159 if(IsConfBan(aconf))
160 operhash_delete(aconf->info.oper);
161 else
162 rb_free(aconf->info.name);
163
164 rb_bh_free(confitem_heap, aconf);
165 }
166
167 /*
168 * check_client
169 *
170 * inputs - pointer to client
171 * output - 0 = Success
172 * NOT_AUTHORISED (-1) = Access denied (no I line match)
173 * SOCKET_ERROR (-2) = Bad socket.
174 * I_LINE_FULL (-3) = I-line is full
175 * TOO_MANY (-4) = Too many connections from hostname
176 * BANNED_CLIENT (-5) = K-lined
177 * side effects - Ordinary client access check.
178 * Look for conf lines which have the same
179 * status as the flags passed.
180 */
181 int
182 check_client(struct Client *client_p, struct Client *source_p, const char *username)
183 {
184 int i;
185
186 if((i = verify_access(source_p, username)))
187 {
188 ilog(L_FUSER, "Access denied: %s[%s]",
189 source_p->name, source_p->sockhost);
190 }
191
192 switch (i)
193 {
194 case SOCKET_ERROR:
195 exit_client(client_p, source_p, &me, "Socket Error");
196 break;
197
198 case TOO_MANY_LOCAL:
199 /* Note that these notices are sent to opers on other
200 * servers also, so even if local opers are allowed to
201 * see the IP, we still cannot send it.
202 */
203 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
204 "Too many local connections for %s!%s%s@%s",
205 source_p->name, IsGotId(source_p) ? "" : "~",
206 source_p->username,
207 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
208
209 ilog(L_FUSER, "Too many local connections from %s!%s%s@%s",
210 source_p->name, IsGotId(source_p) ? "" : "~",
211 source_p->username, source_p->sockhost);
212
213 ServerStats.is_ref++;
214 exit_client(client_p, source_p, &me, "Too many host connections (local)");
215 break;
216
217 case TOO_MANY_GLOBAL:
218 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
219 "Too many global connections for %s!%s%s@%s",
220 source_p->name, IsGotId(source_p) ? "" : "~",
221 source_p->username,
222 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
223 ilog(L_FUSER, "Too many global connections from %s!%s%s@%s",
224 source_p->name, IsGotId(source_p) ? "" : "~",
225 source_p->username, source_p->sockhost);
226
227 ServerStats.is_ref++;
228 exit_client(client_p, source_p, &me, "Too many host connections (global)");
229 break;
230
231 case TOO_MANY_IDENT:
232 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
233 "Too many user connections for %s!%s%s@%s",
234 source_p->name, IsGotId(source_p) ? "" : "~",
235 source_p->username,
236 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : source_p->host);
237 ilog(L_FUSER, "Too many user connections from %s!%s%s@%s",
238 source_p->name, IsGotId(source_p) ? "" : "~",
239 source_p->username, source_p->sockhost);
240
241 ServerStats.is_ref++;
242 exit_client(client_p, source_p, &me, "Too many user connections (global)");
243 break;
244
245 case I_LINE_FULL:
246 sendto_realops_snomask(SNO_FULL, L_NETWIDE,
247 "I-line is full for %s!%s%s@%s (%s).",
248 source_p->name, IsGotId(source_p) ? "" : "~",
249 source_p->username, source_p->host,
250 show_ip(NULL, source_p) && !IsIPSpoof(source_p) ? source_p->sockhost : "255.255.255.255");
251
252 ilog(L_FUSER, "Too many connections from %s!%s%s@%s.",
253 source_p->name, IsGotId(source_p) ? "" : "~",
254 source_p->username, source_p->sockhost);
255
256 ServerStats.is_ref++;
257 exit_client(client_p, source_p, &me,
258 "No more connections allowed in your connection class");
259 break;
260
261 case NOT_AUTHORISED:
262 {
263 int port = -1;
264 #ifdef RB_IPV6
265 if(source_p->localClient->ip.ss_family == AF_INET6)
266 port = ntohs(((struct sockaddr_in6 *)&source_p->localClient->listener->addr)->sin6_port);
267 else
268 #endif
269 port = ntohs(((struct sockaddr_in *)&source_p->localClient->listener->addr)->sin_port);
270
271 ServerStats.is_ref++;
272 /* jdc - lists server name & port connections are on */
273 /* a purely cosmetical change */
274 /* why ipaddr, and not just source_p->sockhost? --fl */
275 #if 0
276 static char ipaddr[HOSTIPLEN];
277 rb_inet_ntop_sock(&source_p->localClient->ip, ipaddr, sizeof(ipaddr));
278 #endif
279 sendto_realops_snomask(SNO_UNAUTH, L_ALL,
280 "Unauthorised client connection from "
281 "%s!%s%s@%s [%s] on [%s/%u].",
282 source_p->name, IsGotId(source_p) ? "" : "~",
283 source_p->username, source_p->host,
284 source_p->sockhost,
285 source_p->localClient->listener->name, port);
286
287 ilog(L_FUSER,
288 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
289 source_p->name, IsGotId(source_p) ? "" : "~",
290 source_p->username, source_p->sockhost,
291 source_p->localClient->listener->name, port);
292 add_reject(client_p, NULL, NULL);
293 exit_client(client_p, source_p, &me,
294 "You are not authorised to use this server");
295 break;
296 }
297 case BANNED_CLIENT:
298 exit_client(client_p, client_p, &me, "*** Banned ");
299 ServerStats.is_ref++;
300 break;
301
302 case 0:
303 default:
304 break;
305 }
306 return (i);
307 }
308
309 /*
310 * verify_access
311 *
312 * inputs - pointer to client to verify
313 * - pointer to proposed username
314 * output - 0 if success -'ve if not
315 * side effect - find the first (best) I line to attach.
316 */
317 static int
318 verify_access(struct Client *client_p, const char *username)
319 {
320 struct ConfItem *aconf;
321
322 aconf = find_address_conf_by_client(client_p, username);
323 if(aconf == NULL)
324 return NOT_AUTHORISED;
325
326 if(aconf->status & CONF_CLIENT)
327 {
328 if(aconf->flags & CONF_FLAGS_REDIR)
329 {
330 sendto_one_numeric(client_p, RPL_REDIR, form_str(RPL_REDIR),
331 aconf->info.name ? aconf->info.name : "", aconf->port);
332 return (NOT_AUTHORISED);
333 }
334
335 /* Thanks for spoof idea amm */
336 if(IsConfDoSpoofIp(aconf))
337 {
338 char *p;
339
340 /* show_ip() depends on this --fl */
341 SetIPSpoof(client_p);
342
343 if(IsConfSpoofNotice(aconf))
344 {
345 sendto_realops_snomask(SNO_GENERAL, L_ALL,
346 "%s spoofing: %s as %s",
347 client_p->name,
348 show_ip(NULL, client_p) ? client_p->host : aconf->info.name,
349 aconf->info.name);
350 }
351
352 /* user@host spoof */
353 if((p = strchr(aconf->info.name, '@')) != NULL)
354 {
355 char *host = p+1;
356 *p = '\0';
357
358 rb_strlcpy(client_p->username, aconf->info.name,
359 sizeof(client_p->username));
360 rb_strlcpy(client_p->host, host,
361 sizeof(client_p->host));
362 *p = '@';
363 }
364 else
365 rb_strlcpy(client_p->host, aconf->info.name, sizeof(client_p->host));
366 }
367 return (attach_iline(client_p, aconf));
368 }
369 else if(aconf->status & CONF_KILL)
370 {
371 if(ConfigFileEntry.kline_with_reason)
372 sendto_one(client_p,
373 form_str(ERR_YOUREBANNEDCREEP),
374 me.name, client_p->name,
375 get_user_ban_reason(aconf));
376 add_reject(client_p, aconf->user, aconf->host);
377 return (BANNED_CLIENT);
378 }
379
380 return NOT_AUTHORISED;
381 }
382
383
384 /*
385 * find_address_conf_by_client
386 */
387 static struct ConfItem *
388 find_address_conf_by_client(struct Client *client_p, const char *username)
389 {
390 struct ConfItem *aconf;
391 char non_ident[USERLEN + 1];
392
393 if(IsGotId(client_p))
394 {
395 aconf = find_address_conf(client_p->host, client_p->sockhost,
396 client_p->username, client_p->username,
397 (struct sockaddr *) &client_p->localClient->ip,
398 client_p->localClient->ip.ss_family,
399 client_p->localClient->auth_user);
400 }
401 else
402 {
403 rb_strlcpy(non_ident, "~", sizeof(non_ident));
404 rb_strlcat(non_ident, username, sizeof(non_ident));
405 aconf = find_address_conf(client_p->host, client_p->sockhost,
406 non_ident, client_p->username,
407 (struct sockaddr *) &client_p->localClient->ip,
408 client_p->localClient->ip.ss_family,
409 client_p->localClient->auth_user);
410 }
411 return aconf;
412 }
413
414
415 /*
416 * add_ip_limit
417 *
418 * Returns 1 if successful 0 if not
419 *
420 * This checks if the user has exceed the limits for their class
421 * unless of course they are exempt..
422 */
423
424 static int
425 add_ip_limit(struct Client *client_p, struct ConfItem *aconf)
426 {
427 rb_patricia_node_t *pnode;
428 int bitlen;
429
430 /* If the limits are 0 don't do anything.. */
431 if(ConfCidrAmount(aconf) == 0
432 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
433 return -1;
434
435 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
436
437 if(GET_SS_FAMILY(&client_p->localClient->ip) == AF_INET)
438 bitlen = ConfCidrIpv4Bitlen(aconf);
439 else
440 bitlen = ConfCidrIpv6Bitlen(aconf);
441
442 if(pnode == NULL)
443 pnode = make_and_lookup_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip, bitlen);
444
445 s_assert(pnode != NULL);
446
447 if(pnode != NULL)
448 {
449 if(((intptr_t)pnode->data) >= ConfCidrAmount(aconf) && !IsConfExemptLimits(aconf))
450 {
451 /* This should only happen if the limits are set to 0 */
452 if((intptr_t)pnode->data == 0)
453 {
454 rb_patricia_remove(ConfIpLimits(aconf), pnode);
455 }
456 return (0);
457 }
458
459 pnode->data = (void *)(((intptr_t)pnode->data) + 1);
460 }
461 return 1;
462 }
463
464 static void
465 remove_ip_limit(struct Client *client_p, struct ConfItem *aconf)
466 {
467 rb_patricia_node_t *pnode;
468
469 /* If the limits are 0 don't do anything.. */
470 if(ConfCidrAmount(aconf) == 0
471 || (ConfCidrIpv4Bitlen(aconf) == 0 && ConfCidrIpv6Bitlen(aconf) == 0))
472 return;
473
474 pnode = rb_match_ip(ConfIpLimits(aconf), (struct sockaddr *)&client_p->localClient->ip);
475 if(pnode == NULL)
476 return;
477
478 pnode->data = (void *)(((intptr_t)pnode->data) - 1);
479 if(((intptr_t)pnode->data) == 0)
480 {
481 rb_patricia_remove(ConfIpLimits(aconf), pnode);
482 }
483
484 }
485
486 /*
487 * attach_iline
488 *
489 * inputs - client pointer
490 * - conf pointer
491 * output -
492 * side effects - do actual attach
493 */
494 static int
495 attach_iline(struct Client *client_p, struct ConfItem *aconf)
496 {
497 struct Client *target_p;
498 rb_dlink_node *ptr;
499 int local_count = 0;
500 int global_count = 0;
501 int ident_count = 0;
502 int unidented;
503
504 if(IsConfExemptLimits(aconf))
505 return (attach_conf(client_p, aconf));
506
507 unidented = !IsGotId(client_p) && !IsNoTilde(aconf) &&
508 (!IsConfDoSpoofIp(aconf) || !strchr(aconf->info.name, '@'));
509
510 /* find_hostname() returns the head of the list to search */
511 RB_DLINK_FOREACH(ptr, find_hostname(client_p->host))
512 {
513 target_p = ptr->data;
514
515 if(irccmp(client_p->host, target_p->orighost) != 0)
516 continue;
517
518 if(MyConnect(target_p))
519 local_count++;
520
521 global_count++;
522
523 if(unidented)
524 {
525 if(*target_p->username == '~')
526 ident_count++;
527 }
528 else if(irccmp(target_p->username, client_p->username) == 0)
529 ident_count++;
530
531 if(ConfMaxLocal(aconf) && local_count >= ConfMaxLocal(aconf))
532 return (TOO_MANY_LOCAL);
533 else if(ConfMaxGlobal(aconf) && global_count >= ConfMaxGlobal(aconf))
534 return (TOO_MANY_GLOBAL);
535 else if(ConfMaxIdent(aconf) && ident_count >= ConfMaxIdent(aconf))
536 return (TOO_MANY_IDENT);
537 }
538
539
540 return (attach_conf(client_p, aconf));
541 }
542
543 /*
544 * detach_conf
545 *
546 * inputs - pointer to client to detach
547 * output - 0 for success, -1 for failure
548 * side effects - Disassociate configuration from the client.
549 * Also removes a class from the list if marked for deleting.
550 */
551 int
552 detach_conf(struct Client *client_p)
553 {
554 struct ConfItem *aconf;
555
556 aconf = client_p->localClient->att_conf;
557
558 if(aconf != NULL)
559 {
560 if(ClassPtr(aconf))
561 {
562 remove_ip_limit(client_p, aconf);
563
564 if(ConfCurrUsers(aconf) > 0)
565 --ConfCurrUsers(aconf);
566
567 if(ConfMaxUsers(aconf) == -1 && ConfCurrUsers(aconf) == 0)
568 {
569 free_class(ClassPtr(aconf));
570 ClassPtr(aconf) = NULL;
571 }
572
573 }
574
575 aconf->clients--;
576 if(!aconf->clients && IsIllegal(aconf))
577 free_conf(aconf);
578
579 client_p->localClient->att_conf = NULL;
580 return 0;
581 }
582
583 return -1;
584 }
585
586 /*
587 * attach_conf
588 *
589 * inputs - client pointer
590 * - conf pointer
591 * output -
592 * side effects - Associate a specific configuration entry to a *local*
593 * client (this is the one which used in accepting the
594 * connection). Note, that this automatically changes the
595 * attachment if there was an old one...
596 */
597 int
598 attach_conf(struct Client *client_p, struct ConfItem *aconf)
599 {
600 if(IsIllegal(aconf))
601 return (NOT_AUTHORISED);
602
603 if(ClassPtr(aconf))
604 {
605 if(!add_ip_limit(client_p, aconf))
606 return (TOO_MANY_LOCAL);
607 }
608
609 if((aconf->status & CONF_CLIENT) &&
610 ConfCurrUsers(aconf) >= ConfMaxUsers(aconf) && ConfMaxUsers(aconf) > 0)
611 {
612 if(!IsConfExemptLimits(aconf))
613 {
614 return (I_LINE_FULL);
615 }
616 else
617 {
618 sendto_one_notice(client_p, ":*** I: line is full, but you have an >I: line!");
619 }
620
621 }
622
623 if(client_p->localClient->att_conf != NULL)
624 detach_conf(client_p);
625
626 client_p->localClient->att_conf = aconf;
627
628 aconf->clients++;
629 ConfCurrUsers(aconf)++;
630 return (0);
631 }
632
633 /*
634 * rehash
635 *
636 * Actual REHASH service routine. Called with sig == 0 if it has been called
637 * as a result of an operator issuing this command, else assume it has been
638 * called as a result of the server receiving a HUP signal.
639 */
640 int
641 rehash(int sig)
642 {
643 if(sig != 0)
644 {
645 sendto_realops_snomask(SNO_GENERAL, L_ALL,
646 "Got signal SIGHUP, reloading ircd conf. file");
647 }
648
649 restart_resolver();
650 /* don't close listeners until we know we can go ahead with the rehash */
651 read_conf_files(NO);
652
653 if(ServerInfo.description != NULL)
654 rb_strlcpy(me.info, ServerInfo.description, sizeof(me.info));
655 else
656 rb_strlcpy(me.info, "unknown", sizeof(me.info));
657
658 open_logfiles();
659 return (0);
660 }
661
662 void
663 rehash_bans(int sig)
664 {
665 bandb_rehash_bans();
666 }
667
668 /*
669 * set_default_conf()
670 *
671 * inputs - NONE
672 * output - NONE
673 * side effects - Set default values here.
674 * This is called **PRIOR** to parsing the
675 * configuration file. If you want to do some validation
676 * of values later, put them in validate_conf().
677 */
678
679 #define YES 1
680 #define NO 0
681 #define UNSET -1
682
683 static void
684 set_default_conf(void)
685 {
686 /* ServerInfo.name is not rehashable */
687 /* ServerInfo.name = ServerInfo.name; */
688 ServerInfo.description = NULL;
689 ServerInfo.network_name = NULL;
690
691 memset(&ServerInfo.ip, 0, sizeof(ServerInfo.ip));
692 ServerInfo.specific_ipv4_vhost = 0;
693 #ifdef RB_IPV6
694 memset(&ServerInfo.ip6, 0, sizeof(ServerInfo.ip6));
695 ServerInfo.specific_ipv6_vhost = 0;
696 #endif
697
698 /* Don't reset hub, as that will break lazylinks */
699 /* ServerInfo.hub = NO; */
700 AdminInfo.name = NULL;
701 AdminInfo.email = NULL;
702 AdminInfo.description = NULL;
703
704 ConfigFileEntry.default_operstring = NULL;
705 ConfigFileEntry.default_adminstring = NULL;
706 ConfigFileEntry.servicestring = NULL;
707 ConfigFileEntry.sasl_service = NULL;
708
709 ConfigFileEntry.default_umodes = UMODE_INVISIBLE;
710 ConfigFileEntry.failed_oper_notice = YES;
711 ConfigFileEntry.anti_nick_flood = NO;
712 ConfigFileEntry.disable_fake_channels = NO;
713 ConfigFileEntry.max_nick_time = 20;
714 ConfigFileEntry.max_nick_changes = 5;
715 ConfigFileEntry.max_accept = 20;
716 ConfigFileEntry.max_monitor = 60;
717 ConfigFileEntry.nick_delay = 900; /* 15 minutes */
718 ConfigFileEntry.target_change = YES;
719 ConfigFileEntry.anti_spam_exit_message_time = 0;
720 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
721 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
722 ConfigFileEntry.client_exit = YES;
723 ConfigFileEntry.dline_with_reason = YES;
724 ConfigFileEntry.kline_with_reason = YES;
725 ConfigFileEntry.kline_delay = 0;
726 ConfigFileEntry.warn_no_nline = YES;
727 ConfigFileEntry.non_redundant_klines = YES;
728 ConfigFileEntry.stats_e_disabled = NO;
729 ConfigFileEntry.stats_o_oper_only = NO;
730 ConfigFileEntry.stats_k_oper_only = 1; /* masked */
731 ConfigFileEntry.stats_i_oper_only = 1; /* masked */
732 ConfigFileEntry.stats_P_oper_only = NO;
733 ConfigFileEntry.stats_c_oper_only = NO;
734 ConfigFileEntry.stats_y_oper_only = NO;
735 ConfigFileEntry.stats_h_oper_only = NO;
736 ConfigFileEntry.map_oper_only = YES;
737 ConfigFileEntry.operspy_admin_only = NO;
738 ConfigFileEntry.pace_wait = 10;
739 ConfigFileEntry.caller_id_wait = 60;
740 ConfigFileEntry.pace_wait_simple = 1;
741 ConfigFileEntry.short_motd = NO;
742 ConfigFileEntry.no_oper_flood = NO;
743 ConfigFileEntry.fname_userlog = NULL;
744 ConfigFileEntry.fname_fuserlog = NULL;
745 ConfigFileEntry.fname_operlog = NULL;
746 ConfigFileEntry.fname_foperlog = NULL;
747 ConfigFileEntry.fname_serverlog = NULL;
748 ConfigFileEntry.fname_killlog = NULL;
749 ConfigFileEntry.fname_klinelog = NULL;
750 ConfigFileEntry.fname_operspylog = NULL;
751 ConfigFileEntry.fname_ioerrorlog = NULL;
752 ConfigFileEntry.hide_spoof_ips = YES;
753 ConfigFileEntry.hide_error_messages = 1;
754 ConfigFileEntry.dots_in_ident = 0;
755 ConfigFileEntry.max_targets = MAX_TARGETS_DEFAULT;
756 ConfigFileEntry.use_whois_actually = YES;
757 ConfigFileEntry.burst_away = NO;
758 ConfigFileEntry.collision_fnc = YES;
759 ConfigFileEntry.resv_fnc = YES;
760 ConfigFileEntry.global_snotices = YES;
761 ConfigFileEntry.operspy_dont_care_user_info = NO;
762 ConfigFileEntry.use_propagated_bans = YES;
763 ConfigFileEntry.max_ratelimit_tokens = 30;
764 ConfigFileEntry.away_interval = 30;
765
766 #ifdef HAVE_LIBZ
767 ConfigFileEntry.compression_level = 4;
768 #endif
769
770 ConfigFileEntry.oper_umodes = UMODE_LOCOPS | UMODE_SERVNOTICE |
771 UMODE_OPERWALL | UMODE_WALLOP;
772 ConfigFileEntry.oper_only_umodes = UMODE_SERVNOTICE;
773 ConfigFileEntry.oper_snomask = SNO_GENERAL;
774
775 ConfigChannel.use_except = YES;
776 ConfigChannel.use_invex = YES;
777 ConfigChannel.use_forward = YES;
778 ConfigChannel.use_knock = YES;
779 ConfigChannel.knock_delay = 300;
780 ConfigChannel.knock_delay_channel = 60;
781 ConfigChannel.max_chans_per_user = 15;
782 ConfigChannel.max_bans = 25;
783 ConfigChannel.max_bans_large = 500;
784 ConfigChannel.only_ascii_channels = NO;
785 ConfigChannel.burst_topicwho = NO;
786 ConfigChannel.kick_on_split_riding = NO;
787
788 ConfigChannel.default_split_user_count = 15000;
789 ConfigChannel.default_split_server_count = 10;
790 ConfigChannel.no_join_on_split = NO;
791 ConfigChannel.no_create_on_split = YES;
792 ConfigChannel.resv_forcepart = YES;
793 ConfigChannel.channel_target_change = YES;
794 ConfigChannel.disable_local_channels = NO;
795
796 ConfigChannel.autochanmodes = MODE_TOPICLIMIT | MODE_NOPRIVMSGS;
797
798 ConfigServerHide.flatten_links = 0;
799 ConfigServerHide.links_delay = 300;
800 ConfigServerHide.hidden = 0;
801 ConfigServerHide.disable_hidden = 0;
802
803 ConfigFileEntry.min_nonwildcard = 4;
804 ConfigFileEntry.min_nonwildcard_simple = 3;
805 ConfigFileEntry.default_floodcount = 8;
806 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
807 ConfigFileEntry.tkline_expire_notices = 0;
808
809 ConfigFileEntry.reject_after_count = 5;
810 ConfigFileEntry.reject_ban_time = 300;
811 ConfigFileEntry.reject_duration = 120;
812 ConfigFileEntry.throttle_count = 4;
813 ConfigFileEntry.throttle_duration = 60;
814
815 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_DEFAULT;
816 ConfigFileEntry.client_flood_burst_rate = 5;
817 ConfigFileEntry.client_flood_burst_max = 5;
818 ConfigFileEntry.client_flood_message_time = 1;
819 ConfigFileEntry.client_flood_message_num = 2;
820
821 ServerInfo.default_max_clients = MAXCONNECTIONS;
822
823 ConfigFileEntry.nicklen = NICKLEN;
824 ConfigFileEntry.certfp_method = RB_SSL_CERTFP_METH_SHA1;
825
826 if (!alias_dict)
827 alias_dict = irc_dictionary_create(strcasecmp);
828 }
829
830 #undef YES
831 #undef NO
832
833 /*
834 * read_conf()
835 *
836 *
837 * inputs - None
838 * output - None
839 * side effects - Read configuration file.
840 */
841 static void
842 read_conf(void)
843 {
844 lineno = 0;
845
846 set_default_conf(); /* Set default values prior to conf parsing */
847 yyparse(); /* Load the values from the conf */
848 validate_conf(); /* Check to make sure some values are still okay. */
849 /* Some global values are also loaded here. */
850 check_class(); /* Make sure classes are valid */
851 privilegeset_delete_all_illegal();
852 construct_cflags_strings();
853 }
854
855 static void
856 validate_conf(void)
857 {
858 if(ConfigFileEntry.default_ident_timeout < 1)
859 ConfigFileEntry.default_ident_timeout = IDENT_TIMEOUT_DEFAULT;
860
861 if(ConfigFileEntry.ts_warn_delta < TS_WARN_DELTA_MIN)
862 ConfigFileEntry.ts_warn_delta = TS_WARN_DELTA_DEFAULT;
863
864 if(ConfigFileEntry.ts_max_delta < TS_MAX_DELTA_MIN)
865 ConfigFileEntry.ts_max_delta = TS_MAX_DELTA_DEFAULT;
866
867 if(ServerInfo.network_name == NULL)
868 ServerInfo.network_name = rb_strdup(NETWORK_NAME_DEFAULT);
869
870 if(ServerInfo.ssld_count < 1)
871 ServerInfo.ssld_count = 1;
872
873 if(!rb_setup_ssl_server(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list))
874 {
875 ilog(L_MAIN, "WARNING: Unable to setup SSL.");
876 ssl_ok = 0;
877 } else {
878 ssl_ok = 1;
879 send_new_ssl_certs(ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
880 }
881
882 if(ServerInfo.ssld_count > get_ssld_count())
883 {
884 int start = ServerInfo.ssld_count - get_ssld_count();
885 /* start up additional ssld if needed */
886 start_ssldaemon(start, ServerInfo.ssl_cert, ServerInfo.ssl_private_key, ServerInfo.ssl_dh_params, ServerInfo.ssl_cipher_list);
887 }
888
889 /* General conf */
890 if (ConfigFileEntry.default_operstring == NULL)
891 ConfigFileEntry.default_operstring = rb_strdup("is an IRC operator");
892
893 if (ConfigFileEntry.default_adminstring == NULL)
894 ConfigFileEntry.default_adminstring = rb_strdup("is a Server Administrator");
895
896 if (ConfigFileEntry.servicestring == NULL)
897 ConfigFileEntry.servicestring = rb_strdup("is a Network Service");
898
899 if (ConfigFileEntry.sasl_service == NULL)
900 ConfigFileEntry.sasl_service = rb_strdup("SaslServ");
901
902 /* RFC 1459 says 1 message per 2 seconds on average and bursts of
903 * 5 messages are acceptable, so allow at least that.
904 */
905 if(ConfigFileEntry.client_flood_burst_rate < 5)
906 ConfigFileEntry.client_flood_burst_rate = 5;
907 if(ConfigFileEntry.client_flood_burst_max < 5)
908 ConfigFileEntry.client_flood_burst_max = 5;
909 if(ConfigFileEntry.client_flood_message_time >
910 ConfigFileEntry.client_flood_message_num * 2)
911 ConfigFileEntry.client_flood_message_time =
912 ConfigFileEntry.client_flood_message_num * 2;
913
914 if((ConfigFileEntry.client_flood_max_lines < CLIENT_FLOOD_MIN) ||
915 (ConfigFileEntry.client_flood_max_lines > CLIENT_FLOOD_MAX))
916 ConfigFileEntry.client_flood_max_lines = CLIENT_FLOOD_MAX;
917
918 if(!split_users || !split_servers ||
919 (!ConfigChannel.no_create_on_split && !ConfigChannel.no_join_on_split))
920 {
921 rb_event_delete(check_splitmode_ev);
922 check_splitmode_ev = NULL;
923 splitmode = 0;
924 splitchecking = 0;
925 }
926 }
927
928 /* add_temp_kline()
929 *
930 * inputs - pointer to struct ConfItem
931 * output - none
932 * Side effects - links in given struct ConfItem into
933 * temporary kline link list
934 */
935 void
936 add_temp_kline(struct ConfItem *aconf)
937 {
938 if(aconf->hold >= rb_current_time() + (10080 * 60))
939 {
940 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_WEEK]);
941 aconf->port = TEMP_WEEK;
942 }
943 else if(aconf->hold >= rb_current_time() + (1440 * 60))
944 {
945 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_DAY]);
946 aconf->port = TEMP_DAY;
947 }
948 else if(aconf->hold >= rb_current_time() + (60 * 60))
949 {
950 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_HOUR]);
951 aconf->port = TEMP_HOUR;
952 }
953 else
954 {
955 rb_dlinkAddAlloc(aconf, &temp_klines[TEMP_MIN]);
956 aconf->port = TEMP_MIN;
957 }
958
959 aconf->flags |= CONF_FLAGS_TEMPORARY;
960 add_conf_by_address(aconf->host, CONF_KILL, aconf->user, NULL, aconf);
961 }
962
963 /* add_temp_dline()
964 *
965 * input - pointer to struct ConfItem
966 * output - none
967 * side effects - added to tdline link list and address hash
968 */
969 void
970 add_temp_dline(struct ConfItem *aconf)
971 {
972 if(aconf->hold >= rb_current_time() + (10080 * 60))
973 {
974 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_WEEK]);
975 aconf->port = TEMP_WEEK;
976 }
977 else if(aconf->hold >= rb_current_time() + (1440 * 60))
978 {
979 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_DAY]);
980 aconf->port = TEMP_DAY;
981 }
982 else if(aconf->hold >= rb_current_time() + (60 * 60))
983 {
984 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_HOUR]);
985 aconf->port = TEMP_HOUR;
986 }
987 else
988 {
989 rb_dlinkAddAlloc(aconf, &temp_dlines[TEMP_MIN]);
990 aconf->port = TEMP_MIN;
991 }
992
993 aconf->flags |= CONF_FLAGS_TEMPORARY;
994 add_conf_by_address(aconf->host, CONF_DLINE, aconf->user, NULL, aconf);
995 }
996
997 /* valid_wild_card()
998 *
999 * input - user buffer, host buffer
1000 * output - 0 if invalid, 1 if valid
1001 * side effects -
1002 */
1003 int
1004 valid_wild_card(const char *luser, const char *lhost)
1005 {
1006 const char *p;
1007 char tmpch;
1008 int nonwild = 0;
1009 int bitlen;
1010
1011 /* user has no wildcards, always accept -- jilles */
1012 if(!strchr(luser, '?') && !strchr(luser, '*'))
1013 return 1;
1014
1015 /* check there are enough non wildcard chars */
1016 p = luser;
1017 while((tmpch = *p++))
1018 {
1019 if(!IsKWildChar(tmpch))
1020 {
1021 /* found enough chars, return */
1022 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1023 return 1;
1024 }
1025 }
1026
1027 /* try host, as user didnt contain enough */
1028 /* special case for cidr masks -- jilles */
1029 if((p = strrchr(lhost, '/')) != NULL && IsDigit(p[1]))
1030 {
1031 bitlen = atoi(p + 1);
1032 /* much like non-cidr for ipv6, rather arbitrary for ipv4 */
1033 if(bitlen > 0
1034 && bitlen >=
1035 (strchr(lhost, ':') ? 4 * (ConfigFileEntry.min_nonwildcard - nonwild) : 6 -
1036 2 * nonwild))
1037 return 1;
1038 }
1039 else
1040 {
1041 p = lhost;
1042 while((tmpch = *p++))
1043 {
1044 if(!IsKWildChar(tmpch))
1045 if(++nonwild >= ConfigFileEntry.min_nonwildcard)
1046 return 1;
1047 }
1048 }
1049
1050 return 0;
1051 }
1052
1053 rb_dlink_node *
1054 find_prop_ban(unsigned int status, const char *user, const char *host)
1055 {
1056 rb_dlink_node *ptr;
1057 struct ConfItem *aconf;
1058
1059 RB_DLINK_FOREACH(ptr, prop_bans.head)
1060 {
1061 aconf = ptr->data;
1062
1063 if((aconf->status & ~CONF_ILLEGAL) == status &&
1064 (!user || !aconf->user ||
1065 !irccmp(aconf->user, user)) &&
1066 !irccmp(aconf->host, host))
1067 return ptr;
1068 }
1069 return NULL;
1070 }
1071
1072 void
1073 deactivate_conf(struct ConfItem *aconf, rb_dlink_node *ptr, time_t now)
1074 {
1075 int i;
1076
1077 s_assert(ptr->data == aconf);
1078
1079 switch (aconf->status)
1080 {
1081 case CONF_KILL:
1082 if (aconf->lifetime == 0 &&
1083 aconf->flags & CONF_FLAGS_TEMPORARY)
1084 for (i = 0; i < LAST_TEMP_TYPE; i++)
1085 rb_dlinkFindDestroy(aconf, &temp_klines[i]);
1086 /* Make sure delete_one_address_conf() does not
1087 * free the aconf.
1088 */
1089 aconf->clients++;
1090 delete_one_address_conf(aconf->host, aconf);
1091 aconf->clients--;
1092 break;
1093 case CONF_DLINE:
1094 if (aconf->lifetime == 0 &&
1095 aconf->flags & CONF_FLAGS_TEMPORARY)
1096 for (i = 0; i < LAST_TEMP_TYPE; i++)
1097 rb_dlinkFindDestroy(aconf, &temp_dlines[i]);
1098 aconf->clients++;
1099 delete_one_address_conf(aconf->host, aconf);
1100 aconf->clients--;
1101 break;
1102 case CONF_XLINE:
1103 rb_dlinkFindDestroy(aconf, &xline_conf_list);
1104 break;
1105 case CONF_RESV_NICK:
1106 rb_dlinkFindDestroy(aconf, &resv_conf_list);
1107 break;
1108 case CONF_RESV_CHANNEL:
1109 del_from_resv_hash(aconf->host, aconf);
1110 break;
1111 }
1112 if (aconf->lifetime != 0 && now < aconf->lifetime)
1113 aconf->status |= CONF_ILLEGAL;
1114 else
1115 {
1116 if (aconf->lifetime != 0)
1117 rb_dlinkDestroy(ptr, &prop_bans);
1118 free_conf(aconf);
1119 }
1120 }
1121
1122 /* Given a new ban ConfItem, look for any matching ban, update the lifetime
1123 * from it and delete it.
1124 */
1125 void
1126 replace_old_ban(struct ConfItem *aconf)
1127 {
1128 rb_dlink_node *ptr;
1129 struct ConfItem *oldconf;
1130
1131 ptr = find_prop_ban(aconf->status, aconf->user, aconf->host);
1132 if(ptr != NULL)
1133 {
1134 oldconf = ptr->data;
1135 /* Remember at least as long as the old one. */
1136 if(oldconf->lifetime > aconf->lifetime)
1137 aconf->lifetime = oldconf->lifetime;
1138 /* Force creation time to increase. */
1139 if(oldconf->created >= aconf->created)
1140 aconf->created = oldconf->created + 1;
1141 /* Leave at least one second of validity. */
1142 if(aconf->hold <= aconf->created)
1143 aconf->hold = aconf->created + 1;
1144 if(aconf->lifetime < aconf->hold)
1145 aconf->lifetime = aconf->hold;
1146 /* Tell deactivate_conf() to destroy it. */
1147 oldconf->lifetime = rb_current_time();
1148 deactivate_conf(oldconf, ptr, oldconf->lifetime);
1149 }
1150 }
1151
1152 static void
1153 expire_prop_bans(void *list)
1154 {
1155 rb_dlink_node *ptr;
1156 rb_dlink_node *next_ptr;
1157 struct ConfItem *aconf;
1158 time_t now;
1159
1160 now = rb_current_time();
1161 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1162 {
1163 aconf = ptr->data;
1164
1165 if(aconf->lifetime <= now ||
1166 (aconf->hold <= now &&
1167 !(aconf->status & CONF_ILLEGAL)))
1168 {
1169 /* Alert opers that a TKline expired - Hwy */
1170 /* XXX show what type of ban it is */
1171 if(ConfigFileEntry.tkline_expire_notices &&
1172 !(aconf->status & CONF_ILLEGAL))
1173 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1174 "Propagated ban for [%s%s%s] expired",
1175 aconf->user ? aconf->user : "",
1176 aconf->user ? "@" : "",
1177 aconf->host ? aconf->host : "*");
1178
1179 /* will destroy or mark illegal */
1180 deactivate_conf(aconf, ptr, now);
1181 }
1182 }
1183 }
1184
1185 /* expire_tkline()
1186 *
1187 * inputs - list pointer
1188 * - type
1189 * output - NONE
1190 * side effects - expire tklines and moves them between lists
1191 */
1192 static void
1193 expire_temp_kd(void *list)
1194 {
1195 rb_dlink_node *ptr;
1196 rb_dlink_node *next_ptr;
1197 struct ConfItem *aconf;
1198
1199 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1200 {
1201 aconf = ptr->data;
1202
1203 if(aconf->hold <= rb_current_time())
1204 {
1205 /* Alert opers that a TKline expired - Hwy */
1206 if(ConfigFileEntry.tkline_expire_notices)
1207 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1208 "Temporary K-line for [%s@%s] expired",
1209 (aconf->user) ? aconf->
1210 user : "*", (aconf->host) ? aconf->host : "*");
1211
1212 delete_one_address_conf(aconf->host, aconf);
1213 rb_dlinkDestroy(ptr, list);
1214 }
1215 }
1216 }
1217
1218 static void
1219 reorganise_temp_kd(void *list)
1220 {
1221 struct ConfItem *aconf;
1222 rb_dlink_node *ptr, *next_ptr;
1223
1224 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, ((rb_dlink_list *) list)->head)
1225 {
1226 aconf = ptr->data;
1227
1228 if(aconf->hold < (rb_current_time() + (60 * 60)))
1229 {
1230 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1231 &temp_klines[TEMP_MIN] : &temp_dlines[TEMP_MIN]);
1232 aconf->port = TEMP_MIN;
1233 }
1234 else if(aconf->port > TEMP_HOUR)
1235 {
1236 if(aconf->hold < (rb_current_time() + (1440 * 60)))
1237 {
1238 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1239 &temp_klines[TEMP_HOUR] : &temp_dlines[TEMP_HOUR]);
1240 aconf->port = TEMP_HOUR;
1241 }
1242 else if(aconf->port > TEMP_DAY &&
1243 (aconf->hold < (rb_current_time() + (10080 * 60))))
1244 {
1245 rb_dlinkMoveNode(ptr, list, (aconf->status == CONF_KILL) ?
1246 &temp_klines[TEMP_DAY] : &temp_dlines[TEMP_DAY]);
1247 aconf->port = TEMP_DAY;
1248 }
1249 }
1250 }
1251 }
1252
1253
1254 /* const char* get_oper_name(struct Client *client_p)
1255 * Input: A client to find the active oper{} name for.
1256 * Output: The nick!user@host{oper} of the oper.
1257 * "oper" is server name for remote opers
1258 * Side effects: None.
1259 */
1260 char *
1261 get_oper_name(struct Client *client_p)
1262 {
1263 /* +5 for !,@,{,} and null */
1264 static char buffer[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
1265
1266 if(MyOper(client_p))
1267 {
1268 rb_snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
1269 client_p->name, client_p->username,
1270 client_p->host, client_p->localClient->opername);
1271 return buffer;
1272 }
1273
1274 rb_snprintf(buffer, sizeof(buffer), "%s!%s@%s{%s}",
1275 client_p->name, client_p->username,
1276 client_p->host, client_p->servptr->name);
1277 return buffer;
1278 }
1279
1280 /*
1281 * get_printable_conf
1282 *
1283 * inputs - struct ConfItem
1284 *
1285 * output - name
1286 * - host
1287 * - pass
1288 * - user
1289 * - port
1290 *
1291 * side effects -
1292 * Examine the struct struct ConfItem, setting the values
1293 * of name, host, pass, user to values either
1294 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1295 */
1296 void
1297 get_printable_conf(struct ConfItem *aconf, char **name, char **host,
1298 const char **pass, char **user, int *port, char **classname)
1299 {
1300 static char null[] = "<NULL>";
1301 static char zero[] = "default";
1302
1303 *name = EmptyString(aconf->info.name) ? null : aconf->info.name;
1304 *host = EmptyString(aconf->host) ? null : aconf->host;
1305 *pass = EmptyString(aconf->passwd) ? null : aconf->passwd;
1306 *user = EmptyString(aconf->user) ? null : aconf->user;
1307 *classname = EmptyString(aconf->className) ? zero : aconf->className;
1308 *port = (int) aconf->port;
1309 }
1310
1311 char *
1312 get_user_ban_reason(struct ConfItem *aconf)
1313 {
1314 static char reasonbuf[BUFSIZE];
1315
1316 if (aconf->flags & CONF_FLAGS_TEMPORARY &&
1317 (aconf->status == CONF_KILL || aconf->status == CONF_DLINE))
1318 rb_snprintf(reasonbuf, sizeof reasonbuf,
1319 "Temporary %c-line %d min. - ",
1320 aconf->status == CONF_DLINE ? 'D' : 'K',
1321 (int)((aconf->hold - aconf->created) / 60));
1322 else
1323 reasonbuf[0] = '\0';
1324 if (aconf->passwd)
1325 rb_strlcat(reasonbuf, aconf->passwd, sizeof reasonbuf);
1326 else
1327 rb_strlcat(reasonbuf, "No Reason", sizeof reasonbuf);
1328 if (aconf->created)
1329 {
1330 rb_strlcat(reasonbuf, " (", sizeof reasonbuf);
1331 rb_strlcat(reasonbuf, smalldate(aconf->created),
1332 sizeof reasonbuf);
1333 rb_strlcat(reasonbuf, ")", sizeof reasonbuf);
1334 }
1335 return reasonbuf;
1336 }
1337
1338 void
1339 get_printable_kline(struct Client *source_p, struct ConfItem *aconf,
1340 char **host, char **reason,
1341 char **user, char **oper_reason)
1342 {
1343 static char null[] = "<NULL>";
1344 static char operreasonbuf[BUFSIZE];
1345
1346 *host = EmptyString(aconf->host) ? null : aconf->host;
1347 *user = EmptyString(aconf->user) ? null : aconf->user;
1348 *reason = get_user_ban_reason(aconf);
1349
1350 if(!IsOper(source_p))
1351 *oper_reason = NULL;
1352 else
1353 {
1354 rb_snprintf(operreasonbuf, sizeof operreasonbuf, "%s%s(%s)",
1355 EmptyString(aconf->spasswd) ? "" : aconf->spasswd,
1356 EmptyString(aconf->spasswd) ? "" : " ",
1357 aconf->info.oper);
1358 *oper_reason = operreasonbuf;
1359 }
1360 }
1361
1362 /*
1363 * read_conf_files
1364 *
1365 * inputs - cold start YES or NO
1366 * output - none
1367 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1368 */
1369 void
1370 read_conf_files(int cold)
1371 {
1372 const char *filename;
1373
1374 conf_fbfile_in = NULL;
1375
1376 filename = ConfigFileEntry.configfile;
1377
1378 /* We need to know the initial filename for the yyerror() to report
1379 FIXME: The full path is in conffilenamebuf first time since we
1380 dont know anything else
1381
1382 - Gozem 2002-07-21
1383
1384
1385 */
1386 rb_strlcpy(conffilebuf, filename, sizeof(conffilebuf));
1387
1388 if((conf_fbfile_in = fopen(filename, "r")) == NULL)
1389 {
1390 if(cold)
1391 {
1392 inotice("Failed in reading configuration file %s, aborting", filename);
1393 ilog(L_MAIN, "Failed in reading configuration file %s", filename);
1394
1395 int e;
1396 e = errno;
1397
1398 inotice("FATAL: %s %s", strerror(e), filename);
1399 ilog(L_MAIN, "FATAL: %s %s", strerror(e), filename);
1400
1401 exit(-1);
1402 }
1403 else
1404 {
1405 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1406 "Can't open file '%s' - aborting rehash!", filename);
1407 return;
1408 }
1409 }
1410
1411 if(!cold)
1412 {
1413 clear_out_old_conf();
1414 }
1415
1416 call_hook(h_conf_read_start, NULL);
1417 read_conf();
1418 call_hook(h_conf_read_end, NULL);
1419
1420 fclose(conf_fbfile_in);
1421 }
1422
1423 /*
1424 * free an alias{} entry.
1425 */
1426 static void
1427 free_alias_cb(struct DictionaryElement *ptr, void *unused)
1428 {
1429 struct alias_entry *aptr = ptr->data;
1430
1431 rb_free(aptr->name);
1432 rb_free(aptr->target);
1433 rb_free(aptr);
1434 }
1435
1436 /*
1437 * clear_out_old_conf
1438 *
1439 * inputs - none
1440 * output - none
1441 * side effects - Clear out the old configuration
1442 */
1443 static void
1444 clear_out_old_conf(void)
1445 {
1446 struct Class *cltmp;
1447 rb_dlink_node *ptr;
1448 rb_dlink_node *next_ptr;
1449
1450 /*
1451 * don't delete the class table, rather mark all entries
1452 * for deletion. The table is cleaned up by check_class. - avalon
1453 */
1454 RB_DLINK_FOREACH(ptr, class_list.head)
1455 {
1456 cltmp = ptr->data;
1457 MaxUsers(cltmp) = -1;
1458 }
1459
1460 clear_out_address_conf();
1461 clear_s_newconf();
1462
1463 /* clean out module paths */
1464 #ifndef STATIC_MODULES
1465 mod_clear_paths();
1466 mod_add_path(MODULE_DIR);
1467 mod_add_path(MODULE_DIR "/autoload");
1468 #endif
1469
1470 /* clean out ServerInfo */
1471 rb_free(ServerInfo.description);
1472 ServerInfo.description = NULL;
1473 rb_free(ServerInfo.network_name);
1474 ServerInfo.network_name = NULL;
1475
1476 ServerInfo.ssld_count = 1;
1477
1478 /* clean out AdminInfo */
1479 rb_free(AdminInfo.name);
1480 AdminInfo.name = NULL;
1481 rb_free(AdminInfo.email);
1482 AdminInfo.email = NULL;
1483 rb_free(AdminInfo.description);
1484 AdminInfo.description = NULL;
1485
1486 /* operator{} and class{} blocks are freed above */
1487 /* clean out listeners */
1488 close_listeners();
1489
1490 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1491 * and gecos{} blocks are freed above too
1492 */
1493
1494 /* clean out general */
1495 rb_free(ConfigFileEntry.default_operstring);
1496 ConfigFileEntry.default_operstring = NULL;
1497 rb_free(ConfigFileEntry.default_adminstring);
1498 ConfigFileEntry.default_adminstring = NULL;
1499 rb_free(ConfigFileEntry.servicestring);
1500 ConfigFileEntry.servicestring = NULL;
1501 rb_free(ConfigFileEntry.kline_reason);
1502 ConfigFileEntry.kline_reason = NULL;
1503 rb_free(ConfigFileEntry.sasl_service);
1504 ConfigFileEntry.sasl_service = NULL;
1505
1506 /* clean out log */
1507 rb_free(ConfigFileEntry.fname_userlog);
1508 ConfigFileEntry.fname_userlog = NULL;
1509 rb_free(ConfigFileEntry.fname_fuserlog);
1510 ConfigFileEntry.fname_fuserlog = NULL;
1511 rb_free(ConfigFileEntry.fname_operlog);
1512 ConfigFileEntry.fname_operlog = NULL;
1513 rb_free(ConfigFileEntry.fname_foperlog);
1514 ConfigFileEntry.fname_foperlog = NULL;
1515 rb_free(ConfigFileEntry.fname_serverlog);
1516 ConfigFileEntry.fname_serverlog = NULL;
1517 rb_free(ConfigFileEntry.fname_killlog);
1518 ConfigFileEntry.fname_killlog = NULL;
1519 rb_free(ConfigFileEntry.fname_klinelog);
1520 ConfigFileEntry.fname_klinelog = NULL;
1521 rb_free(ConfigFileEntry.fname_operspylog);
1522 ConfigFileEntry.fname_operspylog = NULL;
1523 rb_free(ConfigFileEntry.fname_ioerrorlog);
1524 ConfigFileEntry.fname_ioerrorlog = NULL;
1525
1526 RB_DLINK_FOREACH_SAFE(ptr, next_ptr, service_list.head)
1527 {
1528 rb_free(ptr->data);
1529 rb_dlinkDestroy(ptr, &service_list);
1530 }
1531
1532 /* remove any aliases... -- nenolod */
1533 if (alias_dict != NULL)
1534 {
1535 irc_dictionary_destroy(alias_dict, free_alias_cb, NULL);
1536 alias_dict = NULL;
1537 }
1538
1539 destroy_blacklists();
1540
1541 privilegeset_mark_all_illegal();
1542
1543 /* OK, that should be everything... */
1544 }
1545
1546
1547 /*
1548 * conf_add_class_to_conf
1549 * inputs - pointer to config item
1550 * output - NONE
1551 * side effects - Add a class pointer to a conf
1552 */
1553
1554 void
1555 conf_add_class_to_conf(struct ConfItem *aconf)
1556 {
1557 if(aconf->className == NULL)
1558 {
1559 aconf->className = rb_strdup("default");
1560 ClassPtr(aconf) = default_class;
1561 return;
1562 }
1563
1564 ClassPtr(aconf) = find_class(aconf->className);
1565
1566 if(ClassPtr(aconf) == default_class)
1567 {
1568 if(aconf->status == CONF_CLIENT)
1569 {
1570 conf_report_error(
1571 "Using default class for missing class \"%s\" in auth{} for %s@%s",
1572 aconf->className, aconf->user, aconf->host);
1573 }
1574
1575 rb_free(aconf->className);
1576 aconf->className = rb_strdup("default");
1577 return;
1578 }
1579
1580 if(ConfMaxUsers(aconf) < 0)
1581 {
1582 ClassPtr(aconf) = default_class;
1583 rb_free(aconf->className);
1584 aconf->className = rb_strdup("default");
1585 return;
1586 }
1587 }
1588
1589 /*
1590 * conf_add_d_conf
1591 * inputs - pointer to config item
1592 * output - NONE
1593 * side effects - Add a d/D line
1594 */
1595 void
1596 conf_add_d_conf(struct ConfItem *aconf)
1597 {
1598 if(aconf->host == NULL)
1599 return;
1600
1601 aconf->user = NULL;
1602
1603 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1604 * need this anyway, so I will disable it for now... -A1kmm
1605 */
1606
1607 if(parse_netmask(aconf->host, NULL, NULL) == HM_HOST)
1608 {
1609 ilog(L_MAIN, "Invalid Dline %s ignored", aconf->host);
1610 free_conf(aconf);
1611 }
1612 else
1613 {
1614 add_conf_by_address(aconf->host, CONF_DLINE, NULL, NULL, aconf);
1615 }
1616 }
1617
1618 static char *
1619 strip_tabs(char *dest, const char *src, size_t len)
1620 {
1621 char *d = dest;
1622
1623 if(dest == NULL || src == NULL)
1624 return NULL;
1625
1626 rb_strlcpy(dest, src, len);
1627
1628 while(*d)
1629 {
1630 if(*d == '\t')
1631 *d = ' ';
1632 d++;
1633 }
1634 return dest;
1635 }
1636
1637 /*
1638 * yyerror
1639 *
1640 * inputs - message from parser
1641 * output - none
1642 * side effects - message to opers and log file entry is made
1643 */
1644 void
1645 yyerror(const char *msg)
1646 {
1647 char newlinebuf[BUFSIZE];
1648
1649 strip_tabs(newlinebuf, linebuf, strlen(linebuf));
1650
1651 ierror("\"%s\", line %d: %s at '%s'", conffilebuf, lineno + 1, msg, newlinebuf);
1652 sendto_realops_snomask(SNO_GENERAL, L_ALL, "\"%s\", line %d: %s at '%s'",
1653 conffilebuf, lineno + 1, msg, newlinebuf);
1654
1655 }
1656
1657 int
1658 conf_fgets(char *lbuf, int max_size, FILE * fb)
1659 {
1660 if(fgets(lbuf, max_size, fb) == NULL)
1661 return (0);
1662
1663 return (strlen(lbuf));
1664 }
1665
1666 int
1667 conf_yy_fatal_error(const char *msg)
1668 {
1669 return (0);
1670 }
Fork of solanum ircd, history is rebased regularly