]> jfr.im git - solanum.git/blob - ircd/s_serv.c
projects / solanum.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
ircd: server connection configuration
[solanum.git] / ircd / s_serv.c
1 /*
2 * ircd-ratbox: A slightly useful ircd.
3 * s_serv.c: Server related functions.
4 *
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
8 *
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
22 * USA
23 */
24
25 #include "stdinc.h"
26
27 #ifdef HAVE_LIBCRYPTO
28 #include <openssl/rsa.h>
29 #endif
30
31 #include "s_serv.h"
32 #include "class.h"
33 #include "client.h"
34 #include "hash.h"
35 #include "match.h"
36 #include "ircd.h"
37 #include "ircd_defs.h"
38 #include "numeric.h"
39 #include "packet.h"
40 #include "s_conf.h"
41 #include "s_newconf.h"
42 #include "logger.h"
43 #include "s_stats.h"
44 #include "s_user.h"
45 #include "scache.h"
46 #include "send.h"
47 #include "client.h"
48 #include "channel.h" /* chcap_usage_counts stuff... */
49 #include "hook.h"
50 #include "msg.h"
51 #include "reject.h"
52 #include "sslproc.h"
53 #include "capability.h"
54 #include "s_assert.h"
55
56 #ifndef INADDR_NONE
57 #define INADDR_NONE ((unsigned int) 0xffffffff)
58 #endif
59
60 int MaxConnectionCount = 1;
61 int MaxClientCount = 1;
62 int refresh_user_links = 0;
63
64 static char buf[BUFSIZE];
65
66 /*
67 * list of recognized server capabilities. "TS" is not on the list
68 * because all servers that we talk to already do TS, and the kludged
69 * extra argument to "PASS" takes care of checking that. -orabidoo
70 */
71 struct CapabilityIndex *serv_capindex = NULL;
72 struct CapabilityIndex *cli_capindex = NULL;
73
74 unsigned int CAP_CAP;
75 unsigned int CAP_QS;
76 unsigned int CAP_EX;
77 unsigned int CAP_CHW;
78 unsigned int CAP_IE;
79 unsigned int CAP_KLN;
80 unsigned int CAP_ZIP;
81 unsigned int CAP_KNOCK;
82 unsigned int CAP_TB;
83 unsigned int CAP_UNKLN;
84 unsigned int CAP_CLUSTER;
85 unsigned int CAP_ENCAP;
86 unsigned int CAP_TS6;
87 unsigned int CAP_SERVICE;
88 unsigned int CAP_RSFNC;
89 unsigned int CAP_SAVE;
90 unsigned int CAP_EUID;
91 unsigned int CAP_EOPMOD;
92 unsigned int CAP_BAN;
93 unsigned int CAP_MLOCK;
94
95 unsigned int CLICAP_MULTI_PREFIX;
96 unsigned int CLICAP_ACCOUNT_NOTIFY;
97 unsigned int CLICAP_EXTENDED_JOIN;
98 unsigned int CLICAP_AWAY_NOTIFY;
99 unsigned int CLICAP_USERHOST_IN_NAMES;
100 unsigned int CLICAP_CAP_NOTIFY;
101 unsigned int CLICAP_CHGHOST;
102 unsigned int CLICAP_ECHO_MESSAGE;
103
104 /*
105 * initialize our builtin capability table. --nenolod
106 */
107 void
108 init_builtin_capabs(void)
109 {
110 serv_capindex = capability_index_create("server capabilities");
111
112 /* These two are not set via CAPAB/GCAP keywords. */
113 CAP_CAP = capability_put_anonymous(serv_capindex);
114 CAP_TS6 = capability_put_anonymous(serv_capindex);
115
116 CAP_QS = capability_put(serv_capindex, "QS", NULL);
117 CAP_EX = capability_put(serv_capindex, "EX", NULL);
118 CAP_CHW = capability_put(serv_capindex, "CHW", NULL);
119 CAP_IE = capability_put(serv_capindex, "IE", NULL);
120 CAP_KLN = capability_put(serv_capindex, "KLN", NULL);
121 CAP_KNOCK = capability_put(serv_capindex, "KNOCK", NULL);
122 CAP_ZIP = capability_put(serv_capindex, "ZIP", NULL);
123 CAP_TB = capability_put(serv_capindex, "TB", NULL);
124 CAP_UNKLN = capability_put(serv_capindex, "UNKLN", NULL);
125 CAP_CLUSTER = capability_put(serv_capindex, "CLUSTER", NULL);
126 CAP_ENCAP = capability_put(serv_capindex, "ENCAP", NULL);
127 CAP_SERVICE = capability_put(serv_capindex, "SERVICES", NULL);
128 CAP_RSFNC = capability_put(serv_capindex, "RSFNC", NULL);
129 CAP_SAVE = capability_put(serv_capindex, "SAVE", NULL);
130 CAP_EUID = capability_put(serv_capindex, "EUID", NULL);
131 CAP_EOPMOD = capability_put(serv_capindex, "EOPMOD", NULL);
132 CAP_BAN = capability_put(serv_capindex, "BAN", NULL);
133 CAP_MLOCK = capability_put(serv_capindex, "MLOCK", NULL);
134
135 capability_require(serv_capindex, "QS");
136 capability_require(serv_capindex, "EX");
137 capability_require(serv_capindex, "IE");
138 capability_require(serv_capindex, "ENCAP");
139
140 cli_capindex = capability_index_create("client capabilities");
141
142 CLICAP_MULTI_PREFIX = capability_put(cli_capindex, "multi-prefix", NULL);
143 CLICAP_ACCOUNT_NOTIFY = capability_put(cli_capindex, "account-notify", NULL);
144 CLICAP_EXTENDED_JOIN = capability_put(cli_capindex, "extended-join", NULL);
145 CLICAP_AWAY_NOTIFY = capability_put(cli_capindex, "away-notify", NULL);
146 CLICAP_USERHOST_IN_NAMES = capability_put(cli_capindex, "userhost-in-names", NULL);
147 CLICAP_CAP_NOTIFY = capability_put(cli_capindex, "cap-notify", NULL);
148 CLICAP_CHGHOST = capability_put(cli_capindex, "chghost", NULL);
149 CLICAP_ECHO_MESSAGE = capability_put(cli_capindex, "echo-message", NULL);
150 }
151
152 static CNCB serv_connect_callback;
153 static CNCB serv_connect_ssl_callback;
154
155 /*
156 * hunt_server - Do the basic thing in delivering the message (command)
157 * across the relays to the specific server (server) for
158 * actions.
159 *
160 * Note: The command is a format string and *MUST* be
161 * of prefixed style (e.g. ":%s COMMAND %s ...").
162 * Command can have only max 8 parameters.
163 *
164 * server parv[server] is the parameter identifying the
165 * target server.
166 *
167 * *WARNING*
168 * parv[server] is replaced with the pointer to the
169 * real servername from the matched client (I'm lazy
170 * now --msa).
171 *
172 * returns: (see #defines)
173 */
174 int
175 hunt_server(struct Client *client_p, struct Client *source_p,
176 const char *command, int server, int parc, const char *parv[])
177 {
178 struct Client *target_p;
179 int wilds;
180 rb_dlink_node *ptr;
181 const char *old;
182 char *new;
183
184 /*
185 * Assume it's me, if no server
186 */
187 if(parc <= server || EmptyString(parv[server]) ||
188 match(parv[server], me.name) || (strcmp(parv[server], me.id) == 0))
189 return (HUNTED_ISME);
190
191 new = LOCAL_COPY(parv[server]);
192
193 /*
194 * These are to pickup matches that would cause the following
195 * message to go in the wrong direction while doing quick fast
196 * non-matching lookups.
197 */
198 if(MyClient(source_p))
199 target_p = find_named_client(new);
200 else
201 target_p = find_client(new);
202
203 if(target_p)
204 if(target_p->from == source_p->from && !MyConnect(target_p))
205 target_p = NULL;
206
207 collapse(new);
208 wilds = (strchr(new, '?') || strchr(new, '*'));
209
210 /*
211 * Again, if there are no wild cards involved in the server
212 * name, use the hash lookup
213 */
214 if(!target_p && wilds)
215 {
216 RB_DLINK_FOREACH(ptr, global_serv_list.head)
217 {
218 if(match(new, ((struct Client *) (ptr->data))->name))
219 {
220 target_p = ptr->data;
221 break;
222 }
223 }
224 }
225
226 if(target_p && !IsRegistered(target_p))
227 target_p = NULL;
228
229 if(target_p)
230 {
231 if(IsMe(target_p) || MyClient(target_p))
232 return HUNTED_ISME;
233
234 old = parv[server];
235 parv[server] = get_id(target_p, target_p);
236
237 sendto_one(target_p, command, get_id(source_p, target_p),
238 parv[1], parv[2], parv[3], parv[4], parv[5], parv[6], parv[7], parv[8]);
239 parv[server] = old;
240 return (HUNTED_PASS);
241 }
242
243 if(MyClient(source_p) || !IsDigit(parv[server][0]))
244 sendto_one_numeric(source_p, ERR_NOSUCHSERVER,
245 form_str(ERR_NOSUCHSERVER), parv[server]);
246 return (HUNTED_NOSUCH);
247 }
248
249 /*
250 * try_connections - scan through configuration and try new connections.
251 * Returns the calendar time when the next call to this
252 * function should be made latest. (No harm done if this
253 * is called earlier or later...)
254 */
255 void
256 try_connections(void *unused)
257 {
258 struct Client *client_p;
259 struct server_conf *server_p = NULL;
260 struct server_conf *tmp_p;
261 struct Class *cltmp;
262 rb_dlink_node *ptr;
263 bool connecting = false;
264 int confrq = 0;
265 time_t next = 0;
266
267 RB_DLINK_FOREACH(ptr, server_conf_list.head)
268 {
269 tmp_p = ptr->data;
270
271 if(ServerConfIllegal(tmp_p) || !ServerConfAutoconn(tmp_p))
272 continue;
273
274 /* don't allow ssl connections if ssl isn't setup */
275 if(ServerConfSSL(tmp_p) && (!ircd_ssl_ok || !get_ssld_count()))
276 continue;
277
278 cltmp = tmp_p->class;
279
280 /*
281 * Skip this entry if the use of it is still on hold until
282 * future. Otherwise handle this entry (and set it on hold
283 * until next time). Will reset only hold times, if already
284 * made one successfull connection... [this algorithm is
285 * a bit fuzzy... -- msa >;) ]
286 */
287 if(tmp_p->hold > rb_current_time())
288 {
289 if(next > tmp_p->hold || next == 0)
290 next = tmp_p->hold;
291 continue;
292 }
293
294 confrq = get_con_freq(cltmp);
295 tmp_p->hold = rb_current_time() + confrq;
296
297 /*
298 * Found a CONNECT config with port specified, scan clients
299 * and see if this server is already connected?
300 */
301 client_p = find_server(NULL, tmp_p->name);
302
303 if(!client_p && (CurrUsers(cltmp) < MaxUsers(cltmp)) && !connecting)
304 {
305 server_p = tmp_p;
306
307 /* We connect only one at time... */
308 connecting = true;
309 }
310
311 if((next > tmp_p->hold) || (next == 0))
312 next = tmp_p->hold;
313 }
314
315 /* TODO: change this to set active flag to 0 when added to event! --Habeeb */
316 if(GlobalSetOptions.autoconn == 0)
317 return;
318
319 if(!connecting)
320 return;
321
322 /* move this connect entry to end.. */
323 rb_dlinkDelete(&server_p->node, &server_conf_list);
324 rb_dlinkAddTail(server_p, &server_p->node, &server_conf_list);
325
326 /*
327 * We used to only print this if serv_connect() actually
328 * suceeded, but since rb_tcp_connect() can call the callback
329 * immediately if there is an error, we were getting error messages
330 * in the wrong order. SO, we just print out the activated line,
331 * and let serv_connect() / serv_connect_callback() print an
332 * error afterwards if it fails.
333 * -- adrian
334 */
335 sendto_realops_snomask(SNO_GENERAL, L_ALL,
336 "Connection to %s activated",
337 server_p->name);
338
339 serv_connect(server_p, 0);
340 }
341
342 int
343 check_server(const char *name, struct Client *client_p)
344 {
345 struct server_conf *server_p = NULL;
346 struct server_conf *tmp_p;
347 rb_dlink_node *ptr;
348 int error = -1;
349 const char *encr;
350 bool name_matched = false;
351 bool host_matched = false;
352 bool certfp_failed = false;
353
354 s_assert(NULL != client_p);
355 if(client_p == NULL)
356 return error;
357
358 if(!(client_p->localClient->passwd))
359 return -2;
360
361 if(strlen(name) > HOSTLEN)
362 return -4;
363
364 RB_DLINK_FOREACH(ptr, server_conf_list.head)
365 {
366 struct rb_sockaddr_storage client_addr;
367
368 tmp_p = ptr->data;
369
370 if(ServerConfIllegal(tmp_p))
371 continue;
372
373 if(!match(tmp_p->name, name))
374 continue;
375
376 name_matched = true;
377
378 if(rb_inet_pton_sock(client_p->sockhost, (struct sockaddr *)&client_addr) <= 0)
379 SET_SS_FAMILY(&client_addr, AF_UNSPEC);
380
381 if((tmp_p->connect_host && match(tmp_p->connect_host, client_p->host))
382 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect4)
383 && comp_with_mask_sock((struct sockaddr *)&client_addr,
384 (struct sockaddr *)&tmp_p->connect4, 32))
385 #ifdef RB_IPV6
386 || (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect6)
387 && comp_with_mask_sock((struct sockaddr *)&client_addr,
388 (struct sockaddr *)&tmp_p->connect6, 128))
389 #endif
390 )
391 {
392 host_matched = true;
393
394 if(tmp_p->passwd)
395 {
396 if(ServerConfEncrypted(tmp_p))
397 {
398 encr = rb_crypt(client_p->localClient->passwd,
399 tmp_p->passwd);
400 if(encr != NULL && !strcmp(tmp_p->passwd, encr))
401 {
402 server_p = tmp_p;
403 break;
404 }
405 else
406 continue;
407 }
408 else if(strcmp(tmp_p->passwd, client_p->localClient->passwd))
409 continue;
410 }
411
412 if(tmp_p->certfp)
413 {
414 if(!client_p->certfp || rb_strcasecmp(tmp_p->certfp, client_p->certfp) != 0) {
415 certfp_failed = true;
416 continue;
417 }
418 }
419
420 server_p = tmp_p;
421 break;
422 }
423 }
424
425 if(server_p == NULL)
426 {
427 /* return the most specific error */
428 if(certfp_failed)
429 error = -6;
430 else if(host_matched)
431 error = -2;
432 else if(name_matched)
433 error = -3;
434
435 return error;
436 }
437
438 if(ServerConfSSL(server_p) && client_p->localClient->ssl_ctl == NULL)
439 {
440 return -5;
441 }
442
443 attach_server_conf(client_p, server_p);
444
445 /* clear ZIP/TB if they support but we dont want them */
446 #ifdef HAVE_LIBZ
447 if(!ServerConfCompressed(server_p))
448 #endif
449 ClearCap(client_p, CAP_ZIP);
450
451 if(!ServerConfTb(server_p))
452 ClearCap(client_p, CAP_TB);
453
454 return 0;
455 }
456
457 /*
458 * send_capabilities
459 *
460 * inputs - Client pointer to send to
461 * - int flag of capabilities that this server has
462 * output - NONE
463 * side effects - send the CAPAB line to a server -orabidoo
464 */
465 void
466 send_capabilities(struct Client *client_p, unsigned int cap_can_send)
467 {
468 sendto_one(client_p, "CAPAB :%s", capability_index_list(serv_capindex, cap_can_send));
469 }
470
471 static void
472 burst_ban(struct Client *client_p)
473 {
474 rb_dlink_node *ptr;
475 struct ConfItem *aconf;
476 const char *type, *oper;
477 /* +5 for !,@,{,} and null */
478 char operbuf[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
479 char *p;
480 size_t melen;
481
482 melen = strlen(me.name);
483 RB_DLINK_FOREACH(ptr, prop_bans.head)
484 {
485 aconf = ptr->data;
486
487 /* Skip expired stuff. */
488 if(aconf->lifetime < rb_current_time())
489 continue;
490 switch(aconf->status & ~CONF_ILLEGAL)
491 {
492 case CONF_KILL: type = "K"; break;
493 case CONF_DLINE: type = "D"; break;
494 case CONF_XLINE: type = "X"; break;
495 case CONF_RESV_NICK: type = "R"; break;
496 case CONF_RESV_CHANNEL: type = "R"; break;
497 default:
498 continue;
499 }
500 oper = aconf->info.oper;
501 if(aconf->flags & CONF_FLAGS_MYOPER)
502 {
503 /* Our operator{} names may not be meaningful
504 * to other servers, so rewrite to our server
505 * name.
506 */
507 rb_strlcpy(operbuf, aconf->info.oper, sizeof buf);
508 p = strrchr(operbuf, '{');
509 if (p != NULL &&
510 operbuf + sizeof operbuf - p > (ptrdiff_t)(melen + 2))
511 {
512 memcpy(p + 1, me.name, melen);
513 p[melen + 1] = '}';
514 p[melen + 2] = '\0';
515 oper = operbuf;
516 }
517 }
518 sendto_one(client_p, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
519 me.id,
520 type,
521 aconf->user ? aconf->user : "*", aconf->host,
522 (unsigned long)aconf->created,
523 (int)(aconf->hold - aconf->created),
524 (int)(aconf->lifetime - aconf->created),
525 oper,
526 aconf->passwd,
527 aconf->spasswd ? "|" : "",
528 aconf->spasswd ? aconf->spasswd : "");
529 }
530 }
531
532 /* burst_modes_TS6()
533 *
534 * input - client to burst to, channel name, list to burst, mode flag
535 * output -
536 * side effects - client is sent a list of +b, +e, or +I modes
537 */
538 static void
539 burst_modes_TS6(struct Client *client_p, struct Channel *chptr,
540 rb_dlink_list *list, char flag)
541 {
542 rb_dlink_node *ptr;
543 struct Ban *banptr;
544 char *t;
545 int tlen;
546 int mlen;
547 int cur_len;
548
549 cur_len = mlen = sprintf(buf, ":%s BMASK %ld %s %c :",
550 me.id, (long) chptr->channelts, chptr->chname, flag);
551 t = buf + mlen;
552
553 RB_DLINK_FOREACH(ptr, list->head)
554 {
555 banptr = ptr->data;
556
557 tlen = strlen(banptr->banstr) + (banptr->forward ? strlen(banptr->forward) + 1 : 0) + 1;
558
559 /* uh oh */
560 if(cur_len + tlen > BUFSIZE - 3)
561 {
562 /* the one we're trying to send doesnt fit at all! */
563 if(cur_len == mlen)
564 {
565 s_assert(0);
566 continue;
567 }
568
569 /* chop off trailing space and send.. */
570 *(t-1) = '\0';
571 sendto_one(client_p, "%s", buf);
572 cur_len = mlen;
573 t = buf + mlen;
574 }
575
576 if (banptr->forward)
577 sprintf(t, "%s$%s ", banptr->banstr, banptr->forward);
578 else
579 sprintf(t, "%s ", banptr->banstr);
580 t += tlen;
581 cur_len += tlen;
582 }
583
584 /* cant ever exit the loop above without having modified buf,
585 * chop off trailing space and send.
586 */
587 *(t-1) = '\0';
588 sendto_one(client_p, "%s", buf);
589 }
590
591 /*
592 * burst_TS6
593 *
594 * inputs - client (server) to send nick towards
595 * - client to send nick for
596 * output - NONE
597 * side effects - NICK message is sent towards given client_p
598 */
599 static void
600 burst_TS6(struct Client *client_p)
601 {
602 char ubuf[BUFSIZE];
603 struct Client *target_p;
604 struct Channel *chptr;
605 struct membership *msptr;
606 hook_data_client hclientinfo;
607 hook_data_channel hchaninfo;
608 rb_dlink_node *ptr;
609 rb_dlink_node *uptr;
610 char *t;
611 int tlen, mlen;
612 int cur_len = 0;
613
614 hclientinfo.client = hchaninfo.client = client_p;
615
616 RB_DLINK_FOREACH(ptr, global_client_list.head)
617 {
618 target_p = ptr->data;
619
620 if(!IsPerson(target_p))
621 continue;
622
623 send_umode(NULL, target_p, 0, ubuf);
624 if(!*ubuf)
625 {
626 ubuf[0] = '+';
627 ubuf[1] = '\0';
628 }
629
630 if(IsCapable(client_p, CAP_EUID))
631 sendto_one(client_p, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
632 target_p->servptr->id, target_p->name,
633 target_p->hopcount + 1,
634 (long) target_p->tsinfo, ubuf,
635 target_p->username, target_p->host,
636 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
637 target_p->id,
638 IsDynSpoof(target_p) ? target_p->orighost : "*",
639 EmptyString(target_p->user->suser) ? "*" : target_p->user->suser,
640 target_p->info);
641 else
642 sendto_one(client_p, ":%s UID %s %d %ld %s %s %s %s %s :%s",
643 target_p->servptr->id, target_p->name,
644 target_p->hopcount + 1,
645 (long) target_p->tsinfo, ubuf,
646 target_p->username, target_p->host,
647 IsIPSpoof(target_p) ? "0" : target_p->sockhost,
648 target_p->id, target_p->info);
649
650 if(!EmptyString(target_p->certfp))
651 sendto_one(client_p, ":%s ENCAP * CERTFP :%s",
652 use_id(target_p), target_p->certfp);
653
654 if(!IsCapable(client_p, CAP_EUID))
655 {
656 if(IsDynSpoof(target_p))
657 sendto_one(client_p, ":%s ENCAP * REALHOST %s",
658 use_id(target_p), target_p->orighost);
659 if(!EmptyString(target_p->user->suser))
660 sendto_one(client_p, ":%s ENCAP * LOGIN %s",
661 use_id(target_p), target_p->user->suser);
662 }
663
664 if(ConfigFileEntry.burst_away && !EmptyString(target_p->user->away))
665 sendto_one(client_p, ":%s AWAY :%s",
666 use_id(target_p),
667 target_p->user->away);
668
669 hclientinfo.target = target_p;
670 call_hook(h_burst_client, &hclientinfo);
671 }
672
673 RB_DLINK_FOREACH(ptr, global_channel_list.head)
674 {
675 chptr = ptr->data;
676
677 if(*chptr->chname != '#')
678 continue;
679
680 cur_len = mlen = sprintf(buf, ":%s SJOIN %ld %s %s :", me.id,
681 (long) chptr->channelts, chptr->chname,
682 channel_modes(chptr, client_p));
683
684 t = buf + mlen;
685
686 RB_DLINK_FOREACH(uptr, chptr->members.head)
687 {
688 msptr = uptr->data;
689
690 tlen = strlen(use_id(msptr->client_p)) + 1;
691 if(is_chanop(msptr))
692 tlen++;
693 if(is_voiced(msptr))
694 tlen++;
695
696 if(cur_len + tlen >= BUFSIZE - 3)
697 {
698 *(t-1) = '\0';
699 sendto_one(client_p, "%s", buf);
700 cur_len = mlen;
701 t = buf + mlen;
702 }
703
704 sprintf(t, "%s%s ", find_channel_status(msptr, 1),
705 use_id(msptr->client_p));
706
707 cur_len += tlen;
708 t += tlen;
709 }
710
711 if (rb_dlink_list_length(&chptr->members) > 0)
712 {
713 /* remove trailing space */
714 *(t-1) = '\0';
715 }
716 sendto_one(client_p, "%s", buf);
717
718 if(rb_dlink_list_length(&chptr->banlist) > 0)
719 burst_modes_TS6(client_p, chptr, &chptr->banlist, 'b');
720
721 if(IsCapable(client_p, CAP_EX) &&
722 rb_dlink_list_length(&chptr->exceptlist) > 0)
723 burst_modes_TS6(client_p, chptr, &chptr->exceptlist, 'e');
724
725 if(IsCapable(client_p, CAP_IE) &&
726 rb_dlink_list_length(&chptr->invexlist) > 0)
727 burst_modes_TS6(client_p, chptr, &chptr->invexlist, 'I');
728
729 if(rb_dlink_list_length(&chptr->quietlist) > 0)
730 burst_modes_TS6(client_p, chptr, &chptr->quietlist, 'q');
731
732 if(IsCapable(client_p, CAP_TB) && chptr->topic != NULL)
733 sendto_one(client_p, ":%s TB %s %ld %s%s:%s",
734 me.id, chptr->chname, (long) chptr->topic_time,
735 ConfigChannel.burst_topicwho ? chptr->topic_info : "",
736 ConfigChannel.burst_topicwho ? " " : "",
737 chptr->topic);
738
739 if(IsCapable(client_p, CAP_MLOCK))
740 sendto_one(client_p, ":%s MLOCK %ld %s :%s",
741 me.id, (long) chptr->channelts, chptr->chname,
742 EmptyString(chptr->mode_lock) ? "" : chptr->mode_lock);
743
744 hchaninfo.chptr = chptr;
745 call_hook(h_burst_channel, &hchaninfo);
746 }
747
748 hclientinfo.target = NULL;
749 call_hook(h_burst_finished, &hclientinfo);
750 }
751
752 /*
753 * show_capabilities - show current server capabilities
754 *
755 * inputs - pointer to an struct Client
756 * output - pointer to static string
757 * side effects - build up string representing capabilities of server listed
758 */
759 const char *
760 show_capabilities(struct Client *target_p)
761 {
762 static char msgbuf[BUFSIZE];
763
764 *msgbuf = '\0';
765
766 if(has_id(target_p))
767 rb_strlcpy(msgbuf, " TS6", sizeof(msgbuf));
768
769 if(IsSSL(target_p))
770 rb_strlcat(msgbuf, " SSL", sizeof(msgbuf));
771
772 if(!IsServer(target_p) || !target_p->serv->caps) /* short circuit if no caps */
773 return msgbuf + 1;
774
775 rb_strlcat(msgbuf, " ", sizeof(msgbuf));
776 rb_strlcat(msgbuf, capability_index_list(serv_capindex, target_p->serv->caps), sizeof(msgbuf));
777
778 return msgbuf + 1;
779 }
780
781 /*
782 * server_estab
783 *
784 * inputs - pointer to a struct Client
785 * output -
786 * side effects -
787 */
788 int
789 server_estab(struct Client *client_p)
790 {
791 struct Client *target_p;
792 struct server_conf *server_p;
793 hook_data_client hdata;
794 char *host;
795 rb_dlink_node *ptr;
796 char note[HOSTLEN + 15];
797
798 s_assert(NULL != client_p);
799 if(client_p == NULL)
800 return -1;
801
802 host = client_p->name;
803
804 if((server_p = client_p->localClient->att_sconf) == NULL)
805 {
806 /* This shouldn't happen, better tell the ops... -A1kmm */
807 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
808 "Warning: Lost connect{} block for server %s!", host);
809 return exit_client(client_p, client_p, client_p, "Lost connect{} block!");
810 }
811
812 /* We shouldn't have to check this, it should already done before
813 * server_estab is called. -A1kmm
814 */
815 if(client_p->localClient->passwd)
816 {
817 memset(client_p->localClient->passwd, 0, strlen(client_p->localClient->passwd));
818 rb_free(client_p->localClient->passwd);
819 client_p->localClient->passwd = NULL;
820 }
821
822 /* Its got identd , since its a server */
823 SetGotId(client_p);
824
825 if(IsUnknown(client_p))
826 {
827 /* the server may be linking based on certificate fingerprint now. --nenolod */
828 sendto_one(client_p, "PASS %s TS %d :%s",
829 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
830
831 /* pass info to new server */
832 send_capabilities(client_p, default_server_capabs
833 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
834 | (ServerConfTb(server_p) ? CAP_TB : 0));
835
836 sendto_one(client_p, "SERVER %s 1 :%s%s",
837 me.name,
838 ConfigServerHide.hidden ? "(H) " : "",
839 (me.info[0]) ? (me.info) : "IRCers United");
840 }
841
842 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
843 ilog_error("rb_set_buffers failed for server");
844
845 /* Enable compression now */
846 if(IsCapable(client_p, CAP_ZIP))
847 {
848 start_zlib_session(client_p);
849 }
850 sendto_one(client_p, "SVINFO %d %d 0 :%ld", TS_CURRENT, TS_MIN, (long int)rb_current_time());
851
852 client_p->servptr = &me;
853
854 if(IsAnyDead(client_p))
855 return CLIENT_EXITED;
856
857 SetServer(client_p);
858
859 rb_dlinkAdd(client_p, &client_p->lnode, &me.serv->servers);
860 rb_dlinkMoveNode(&client_p->localClient->tnode, &unknown_list, &serv_list);
861 rb_dlinkAddTailAlloc(client_p, &global_serv_list);
862
863 if(has_id(client_p))
864 add_to_id_hash(client_p->id, client_p);
865
866 add_to_client_hash(client_p->name, client_p);
867 /* doesnt duplicate client_p->serv if allocated this struct already */
868 make_server(client_p);
869
870 client_p->serv->caps = client_p->localClient->caps;
871
872 if(client_p->localClient->fullcaps)
873 {
874 client_p->serv->fullcaps = rb_strdup(client_p->localClient->fullcaps);
875 rb_free(client_p->localClient->fullcaps);
876 client_p->localClient->fullcaps = NULL;
877 }
878
879 client_p->serv->nameinfo = scache_connect(client_p->name, client_p->info, IsHidden(client_p));
880 client_p->localClient->firsttime = rb_current_time();
881 /* fixing eob timings.. -gnp */
882
883 if((rb_dlink_list_length(&lclient_list) + rb_dlink_list_length(&serv_list)) >
884 (unsigned long)MaxConnectionCount)
885 MaxConnectionCount = rb_dlink_list_length(&lclient_list) +
886 rb_dlink_list_length(&serv_list);
887
888 /* Show the real host/IP to admins */
889 sendto_realops_snomask(SNO_GENERAL, L_ALL,
890 "Link with %s established: (%s) link",
891 client_p->name,
892 show_capabilities(client_p));
893
894 ilog(L_SERVER, "Link with %s established: (%s) link",
895 log_client_name(client_p, SHOW_IP), show_capabilities(client_p));
896
897 hdata.client = &me;
898 hdata.target = client_p;
899 call_hook(h_server_introduced, &hdata);
900
901 snprintf(note, sizeof(note), "Server: %s", client_p->name);
902 rb_note(client_p->localClient->F, note);
903
904 /*
905 ** Old sendto_serv_but_one() call removed because we now
906 ** need to send different names to different servers
907 ** (domain name matching) Send new server to other servers.
908 */
909 RB_DLINK_FOREACH(ptr, serv_list.head)
910 {
911 target_p = ptr->data;
912
913 if(target_p == client_p)
914 continue;
915
916 if(has_id(target_p) && has_id(client_p))
917 {
918 sendto_one(target_p, ":%s SID %s 2 %s :%s%s",
919 me.id, client_p->name, client_p->id,
920 IsHidden(client_p) ? "(H) " : "", client_p->info);
921
922 if(!EmptyString(client_p->serv->fullcaps))
923 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
924 client_p->id, client_p->serv->fullcaps);
925 }
926 else
927 {
928 sendto_one(target_p, ":%s SERVER %s 2 :%s%s",
929 me.name, client_p->name,
930 IsHidden(client_p) ? "(H) " : "", client_p->info);
931
932 if(!EmptyString(client_p->serv->fullcaps))
933 sendto_one(target_p, ":%s ENCAP * GCAP :%s",
934 client_p->name, client_p->serv->fullcaps);
935 }
936 }
937
938 /*
939 ** Pass on my client information to the new server
940 **
941 ** First, pass only servers (idea is that if the link gets
942 ** cancelled beacause the server was already there,
943 ** there are no NICK's to be cancelled...). Of course,
944 ** if cancellation occurs, all this info is sent anyway,
945 ** and I guess the link dies when a read is attempted...? --msa
946 **
947 ** Note: Link cancellation to occur at this point means
948 ** that at least two servers from my fragment are building
949 ** up connection this other fragment at the same time, it's
950 ** a race condition, not the normal way of operation...
951 **
952 ** ALSO NOTE: using the get_client_name for server names--
953 ** see previous *WARNING*!!! (Also, original inpath
954 ** is destroyed...)
955 */
956 RB_DLINK_FOREACH(ptr, global_serv_list.head)
957 {
958 target_p = ptr->data;
959
960 /* target_p->from == target_p for target_p == client_p */
961 if(IsMe(target_p) || target_p->from == client_p)
962 continue;
963
964 /* presumption, if target has an id, so does its uplink */
965 if(has_id(client_p) && has_id(target_p))
966 sendto_one(client_p, ":%s SID %s %d %s :%s%s",
967 target_p->servptr->id, target_p->name,
968 target_p->hopcount + 1, target_p->id,
969 IsHidden(target_p) ? "(H) " : "", target_p->info);
970 else
971 sendto_one(client_p, ":%s SERVER %s %d :%s%s",
972 target_p->servptr->name,
973 target_p->name, target_p->hopcount + 1,
974 IsHidden(target_p) ? "(H) " : "", target_p->info);
975
976 if(!EmptyString(target_p->serv->fullcaps))
977 sendto_one(client_p, ":%s ENCAP * GCAP :%s",
978 get_id(target_p, client_p),
979 target_p->serv->fullcaps);
980 }
981
982 if(IsCapable(client_p, CAP_BAN))
983 burst_ban(client_p);
984
985 burst_TS6(client_p);
986
987 /* Always send a PING after connect burst is done */
988 sendto_one(client_p, "PING :%s", get_id(&me, client_p));
989
990 free_pre_client(client_p);
991
992 send_pop_queue(client_p);
993
994 return 0;
995 }
996
997 /*
998 * New server connection code
999 * Based upon the stuff floating about in s_bsd.c
1000 * -- adrian
1001 */
1002
1003 /*
1004 * serv_connect() - initiate a server connection
1005 *
1006 * inputs - pointer to conf
1007 * - pointer to client doing the connet
1008 * output -
1009 * side effects -
1010 *
1011 * This code initiates a connection to a server. It first checks to make
1012 * sure the given server exists. If this is the case, it creates a socket,
1013 * creates a client, saves the socket information in the client, and
1014 * initiates a connection to the server through rb_connect_tcp(). The
1015 * completion of this goes through serv_completed_connection().
1016 *
1017 * We return 1 if the connection is attempted, since we don't know whether
1018 * it suceeded or not, and 0 if it fails in here somewhere.
1019 */
1020 int
1021 serv_connect(struct server_conf *server_p, struct Client *by)
1022 {
1023 struct Client *client_p;
1024 struct rb_sockaddr_storage sa_connect;
1025 struct rb_sockaddr_storage sa_bind;
1026 char note[HOSTLEN + 10];
1027 rb_fde_t *F;
1028
1029 s_assert(server_p != NULL);
1030 if(server_p == NULL)
1031 return 0;
1032
1033 #ifdef RB_IPV6
1034 if(server_p->aftype != AF_UNSPEC
1035 && GET_SS_FAMILY(&server_p->connect4) == AF_INET
1036 && GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1037 {
1038 if(rand() % 2 == 0)
1039 {
1040 sa_connect = server_p->connect4;
1041 sa_bind = server_p->bind4;
1042 }
1043 else
1044 {
1045 sa_connect = server_p->connect6;
1046 sa_bind = server_p->bind6;
1047 }
1048 }
1049 else if(server_p->aftype == AF_INET || GET_SS_FAMILY(&server_p->connect4) == AF_INET)
1050 #endif
1051 {
1052 sa_connect = server_p->connect4;
1053 sa_bind = server_p->bind4;
1054 }
1055 #ifdef RB_IPV6
1056 else if(server_p->aftype == AF_INET6 || GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
1057 {
1058 sa_connect = server_p->connect6;
1059 sa_bind = server_p->bind6;
1060 }
1061 #endif
1062
1063 /* log */
1064 buf[0] = 0;
1065 rb_inet_ntop_sock((struct sockaddr *)&sa_connect, buf, sizeof(buf));
1066 ilog(L_SERVER, "Connect to *[%s] @%s", server_p->name, buf);
1067
1068 /*
1069 * Make sure this server isn't already connected
1070 */
1071 if((client_p = find_server(NULL, server_p->name)))
1072 {
1073 sendto_realops_snomask(SNO_GENERAL, L_ALL,
1074 "Server %s already present from %s",
1075 server_p->name, client_p->name);
1076 if(by && IsPerson(by) && !MyClient(by))
1077 sendto_one_notice(by, ":Server %s already present from %s",
1078 server_p->name, client_p->name);
1079 return 0;
1080 }
1081
1082 /* create a socket for the server connection */
1083 if(GET_SS_FAMILY(&sa_connect) == AF_UNSPEC)
1084 {
1085 ilog_error("unspecified socket address family");
1086 return 0;
1087 }
1088 else if((F = rb_socket(GET_SS_FAMILY(&sa_connect), SOCK_STREAM, 0, NULL)) == NULL)
1089 {
1090 ilog_error("opening a stream socket");
1091 return 0;
1092 }
1093
1094 /* servernames are always guaranteed under HOSTLEN chars */
1095 snprintf(note, sizeof(note), "Server: %s", server_p->name);
1096 rb_note(F, note);
1097
1098 /* Create a local client */
1099 client_p = make_client(NULL);
1100
1101 /* Copy in the server, hostname, fd */
1102 rb_strlcpy(client_p->name, server_p->name, sizeof(client_p->name));
1103 if(server_p->connect_host)
1104 rb_strlcpy(client_p->host, server_p->connect_host, sizeof(client_p->host));
1105 else
1106 rb_strlcpy(client_p->host, buf, sizeof(client_p->host));
1107 rb_strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
1108 client_p->localClient->F = F;
1109 /* shove the port number into the sockaddr */
1110 SET_SS_PORT(&sa_connect, htons(server_p->port));
1111
1112 /*
1113 * Set up the initial server evilness, ripped straight from
1114 * connect_server(), so don't blame me for it being evil.
1115 * -- adrian
1116 */
1117
1118 if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
1119 {
1120 ilog_error("setting the buffer size for a server connection");
1121 }
1122
1123 /*
1124 * Attach config entries to client here rather than in
1125 * serv_connect_callback(). This to avoid null pointer references.
1126 */
1127 attach_server_conf(client_p, server_p);
1128
1129 /*
1130 * at this point we have a connection in progress and C/N lines
1131 * attached to the client, the socket info should be saved in the
1132 * client and it should either be resolved or have a valid address.
1133 *
1134 * The socket has been connected or connect is in progress.
1135 */
1136 make_server(client_p);
1137 if(by && IsClient(by))
1138 strcpy(client_p->serv->by, by->name);
1139 else
1140 strcpy(client_p->serv->by, "AutoConn.");
1141
1142 SetConnecting(client_p);
1143 rb_dlinkAddTail(client_p, &client_p->node, &global_client_list);
1144
1145 if(GET_SS_FAMILY(&sa_bind) == AF_UNSPEC)
1146 {
1147 if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind4))
1148 sa_bind = ServerInfo.bind4;
1149 #ifdef RB_IPV6
1150 if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind6))
1151 sa_bind = ServerInfo.bind6;
1152 #endif
1153 }
1154
1155 rb_connect_tcp(client_p->localClient->F,
1156 (struct sockaddr *)&sa_connect,
1157 GET_SS_FAMILY(&sa_bind) == AF_UNSPEC ? NULL : (struct sockaddr *)&sa_bind,
1158 GET_SS_LEN(&sa_bind),
1159 ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
1160 client_p, ConfigFileEntry.connect_timeout);
1161 return 1;
1162 }
1163
1164 static void
1165 serv_connect_ssl_callback(rb_fde_t *F, int status, void *data)
1166 {
1167 struct Client *client_p = data;
1168 rb_fde_t *xF[2];
1169 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1170 if(status != RB_OK)
1171 {
1172 /* Print error message, just like non-SSL. */
1173 serv_connect_callback(F, status, data);
1174 return;
1175 }
1176 if(rb_socketpair(AF_UNIX, SOCK_STREAM, 0, &xF[0], &xF[1], "Outgoing ssld connection") == -1)
1177 {
1178 ilog_error("rb_socketpair failed for server");
1179 serv_connect_callback(F, RB_ERROR, data);
1180 return;
1181
1182 }
1183 client_p->localClient->F = xF[0];
1184 client_p->localClient->ssl_callback = serv_connect_callback;
1185 client_p->localClient->ssl_data = data;
1186
1187 client_p->localClient->ssl_ctl = start_ssld_connect(F, xF[1], connid_get(client_p));
1188 if(!client_p->localClient->ssl_ctl)
1189 {
1190 serv_connect_callback(client_p->localClient->F, RB_ERROR, data);
1191 return;
1192 }
1193 SetSSL(client_p);
1194 }
1195
1196 /*
1197 * serv_connect_callback() - complete a server connection.
1198 *
1199 * This routine is called after the server connection attempt has
1200 * completed. If unsucessful, an error is sent to ops and the client
1201 * is closed. If sucessful, it goes through the initialisation/check
1202 * procedures, the capabilities are sent, and the socket is then
1203 * marked for reading.
1204 */
1205 static void
1206 serv_connect_callback(rb_fde_t *F, int status, void *data)
1207 {
1208 struct Client *client_p = data;
1209 struct server_conf *server_p;
1210 char *errstr;
1211
1212 /* First, make sure its a real client! */
1213 s_assert(client_p != NULL);
1214 s_assert(client_p->localClient->F == F);
1215
1216 if(client_p == NULL)
1217 return;
1218
1219 /* while we were waiting for the callback, its possible this already
1220 * linked in.. --fl
1221 */
1222 if(find_server(NULL, client_p->name) != NULL)
1223 {
1224 exit_client(client_p, client_p, &me, "Server Exists");
1225 return;
1226 }
1227
1228 if(client_p->localClient->ssl_ctl == NULL)
1229 rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
1230
1231 /* Check the status */
1232 if(status != RB_OK)
1233 {
1234 /* COMM_ERR_TIMEOUT wont have an errno associated with it,
1235 * the others will.. --fl
1236 */
1237 if(status == RB_ERR_TIMEOUT || status == RB_ERROR_SSL)
1238 {
1239 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1240 "Error connecting to %s[%s]: %s",
1241 client_p->name,
1242 "255.255.255.255",
1243 rb_errstr(status));
1244 ilog(L_SERVER, "Error connecting to %s[%s]: %s",
1245 client_p->name, client_p->sockhost,
1246 rb_errstr(status));
1247 }
1248 else
1249 {
1250 errstr = strerror(rb_get_sockerr(F));
1251 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1252 "Error connecting to %s[%s]: %s (%s)",
1253 client_p->name,
1254 "255.255.255.255",
1255 rb_errstr(status), errstr);
1256 ilog(L_SERVER, "Error connecting to %s[%s]: %s (%s)",
1257 client_p->name, client_p->sockhost,
1258 rb_errstr(status), errstr);
1259 }
1260
1261 exit_client(client_p, client_p, &me, rb_errstr(status));
1262 return;
1263 }
1264
1265 /* COMM_OK, so continue the connection procedure */
1266 /* Get the C/N lines */
1267 if((server_p = client_p->localClient->att_sconf) == NULL)
1268 {
1269 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL, "Lost connect{} block for %s",
1270 client_p->name);
1271 exit_client(client_p, client_p, &me, "Lost connect{} block");
1272 return;
1273 }
1274
1275 if(server_p->certfp && (!client_p->certfp || rb_strcasecmp(server_p->certfp, client_p->certfp) != 0))
1276 {
1277 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1278 "Connection to %s has invalid certificate fingerprint %s",
1279 client_p->name, client_p->certfp);
1280 ilog(L_SERVER, "Access denied, invalid certificate fingerprint %s from %s",
1281 client_p->certfp, log_client_name(client_p, SHOW_IP));
1282
1283 exit_client(client_p, client_p, &me, "Invalid fingerprint.");
1284 return;
1285 }
1286
1287 /* Next, send the initial handshake */
1288 SetHandshake(client_p);
1289
1290 /* the server may be linking based on certificate fingerprint now. --nenolod */
1291 sendto_one(client_p, "PASS %s TS %d :%s",
1292 EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
1293
1294 /* pass my info to the new server */
1295 send_capabilities(client_p, default_server_capabs
1296 | (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
1297 | (ServerConfTb(server_p) ? CAP_TB : 0));
1298
1299 sendto_one(client_p, "SERVER %s 1 :%s%s",
1300 me.name,
1301 ConfigServerHide.hidden ? "(H) " : "", me.info);
1302
1303 /*
1304 * If we've been marked dead because a send failed, just exit
1305 * here now and save everyone the trouble of us ever existing.
1306 */
1307 if(IsAnyDead(client_p))
1308 {
1309 sendto_realops_snomask(SNO_GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
1310 "%s went dead during handshake", client_p->name);
1311 exit_client(client_p, client_p, &me, "Went dead during handshake");
1312 return;
1313 }
1314
1315 /* don't move to serv_list yet -- we haven't sent a burst! */
1316
1317 /* If we get here, we're ok, so lets start reading some data */
1318 read_packet(F, client_p);
1319 }
Fork of solanum ircd, history is rebased regularly