2 * ircd-ratbox: A slightly useful ircd.
3 * s_conf.c: Configuration file functions.
5 * Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
6 * Copyright (C) 1996-2002 Hybrid Development Team
7 * Copyright (C) 2002-2005 ircd-ratbox development team
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License
20 * along with this program; if not, write to the Free Software
21 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
24 * $Id: s_conf.c 3550 2007-08-09 06:47:26Z nenolod $
28 #include "ircd_defs.h"
30 #include "s_newconf.h"
49 #include "blacklist.h"
50 #include "privilege.h"
53 struct config_server_hide ConfigServerHide
;
55 extern int yyparse(void); /* defined in y.tab.c */
56 extern char linebuf
[];
59 #define INADDR_NONE ((unsigned int) 0xffffffff)
62 static rb_bh
*confitem_heap
= NULL
;
64 rb_dlink_list temp_klines
[LAST_TEMP_TYPE
];
65 rb_dlink_list temp_dlines
[LAST_TEMP_TYPE
];
66 rb_dlink_list service_list
;
68 /* internally defined functions */
69 static void set_default_conf(void);
70 static void validate_conf(void);
71 static void read_conf(FILE *);
72 static void clear_out_old_conf(void);
74 static void expire_temp_kd(void *list
);
75 static void reorganise_temp_kd(void *list
);
80 static int verify_access(struct Client
*client_p
, const char *username
);
81 static int attach_iline(struct Client
*, struct ConfItem
*);
86 confitem_heap
= rb_bh_create(sizeof(struct ConfItem
), CONFITEM_HEAP_SIZE
, "confitem_heap");
88 rb_event_addish("expire_temp_klines", expire_temp_kd
, &temp_klines
[TEMP_MIN
], 60);
89 rb_event_addish("expire_temp_dlines", expire_temp_kd
, &temp_dlines
[TEMP_MIN
], 60);
91 rb_event_addish("expire_temp_klines_hour", reorganise_temp_kd
,
92 &temp_klines
[TEMP_HOUR
], 3600);
93 rb_event_addish("expire_temp_dlines_hour", reorganise_temp_kd
,
94 &temp_dlines
[TEMP_HOUR
], 3600);
95 rb_event_addish("expire_temp_klines_day", reorganise_temp_kd
,
96 &temp_klines
[TEMP_DAY
], 86400);
97 rb_event_addish("expire_temp_dlines_day", reorganise_temp_kd
,
98 &temp_dlines
[TEMP_DAY
], 86400);
99 rb_event_addish("expire_temp_klines_week", reorganise_temp_kd
,
100 &temp_klines
[TEMP_WEEK
], 604800);
101 rb_event_addish("expire_temp_dlines_week", reorganise_temp_kd
,
102 &temp_dlines
[TEMP_WEEK
], 604800);
109 * output - pointer to new conf entry
110 * side effects - none
115 struct ConfItem
*aconf
;
117 aconf
= rb_bh_alloc(confitem_heap
);
118 aconf
->status
= CONF_ILLEGAL
;
125 * inputs - pointer to conf to free
127 * side effects - crucial password fields are zeroed, conf is freed
130 free_conf(struct ConfItem
*aconf
)
132 s_assert(aconf
!= NULL
);
138 memset(aconf
->passwd
, 0, strlen(aconf
->passwd
));
140 memset(aconf
->spasswd
, 0, strlen(aconf
->spasswd
));
142 rb_free(aconf
->passwd
);
143 rb_free(aconf
->spasswd
);
144 rb_free(aconf
->name
);
145 rb_free(aconf
->className
);
146 rb_free(aconf
->user
);
147 rb_free(aconf
->host
);
149 rb_bh_free(confitem_heap
, aconf
);
155 * inputs - pointer to client
156 * output - 0 = Success
157 * NOT_AUTHORISED (-1) = Access denied (no I line match)
158 * SOCKET_ERROR (-2) = Bad socket.
159 * I_LINE_FULL (-3) = I-line is full
160 * TOO_MANY (-4) = Too many connections from hostname
161 * BANNED_CLIENT (-5) = K-lined
162 * side effects - Ordinary client access check.
163 * Look for conf lines which have the same
164 * status as the flags passed.
167 check_client(struct Client
*client_p
, struct Client
*source_p
, const char *username
)
171 if((i
= verify_access(source_p
, username
)))
173 ilog(L_FUSER
, "Access denied: %s[%s]",
174 source_p
->name
, source_p
->sockhost
);
180 exit_client(client_p
, source_p
, &me
, "Socket Error");
184 /* Note that these notices are sent to opers on other
185 * servers also, so even if local opers are allowed to
186 * see the IP, we still cannot send it.
188 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
189 "Too many local connections for %s!%s%s@%s",
190 source_p
->name
, IsGotId(source_p
) ? "" : "~",
192 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: source_p
->host
);
194 ilog(L_FUSER
, "Too many local connections from %s!%s%s@%s",
195 source_p
->name
, IsGotId(source_p
) ? "" : "~",
196 source_p
->username
, source_p
->sockhost
);
198 ServerStats
.is_ref
++;
199 exit_client(client_p
, source_p
, &me
, "Too many host connections (local)");
202 case TOO_MANY_GLOBAL
:
203 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
204 "Too many global connections for %s!%s%s@%s",
205 source_p
->name
, IsGotId(source_p
) ? "" : "~",
207 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: source_p
->host
);
208 ilog(L_FUSER
, "Too many global connections from %s!%s%s@%s",
209 source_p
->name
, IsGotId(source_p
) ? "" : "~",
210 source_p
->username
, source_p
->sockhost
);
212 ServerStats
.is_ref
++;
213 exit_client(client_p
, source_p
, &me
, "Too many host connections (global)");
217 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
218 "Too many user connections for %s!%s%s@%s",
219 source_p
->name
, IsGotId(source_p
) ? "" : "~",
221 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: source_p
->host
);
222 ilog(L_FUSER
, "Too many user connections from %s!%s%s@%s",
223 source_p
->name
, IsGotId(source_p
) ? "" : "~",
224 source_p
->username
, source_p
->sockhost
);
226 ServerStats
.is_ref
++;
227 exit_client(client_p
, source_p
, &me
, "Too many user connections (global)");
231 sendto_realops_snomask(SNO_FULL
, L_NETWIDE
,
232 "I-line is full for %s!%s%s@%s (%s).",
233 source_p
->name
, IsGotId(source_p
) ? "" : "~",
234 source_p
->username
, source_p
->host
,
235 show_ip(NULL
, source_p
) && !IsIPSpoof(source_p
) ? source_p
->sockhost
: "255.255.255.255");
237 ilog(L_FUSER
, "Too many connections from %s!%s%s@%s.",
238 source_p
->name
, IsGotId(source_p
) ? "" : "~",
239 source_p
->username
, source_p
->sockhost
);
241 ServerStats
.is_ref
++;
242 exit_client(client_p
, source_p
, &me
,
243 "No more connections allowed in your connection class");
250 if(source_p
->localClient
->ip
.ss_family
== AF_INET6
)
251 port
= ntohs(((struct sockaddr_in6
*)&source_p
->localClient
->listener
->addr
)->sin6_port
);
254 port
= ntohs(((struct sockaddr_in
*)&source_p
->localClient
->listener
->addr
)->sin_port
);
256 ServerStats
.is_ref
++;
257 /* jdc - lists server name & port connections are on */
258 /* a purely cosmetical change */
259 /* why ipaddr, and not just source_p->sockhost? --fl */
261 static char ipaddr
[HOSTIPLEN
];
262 rb_inet_ntop_sock(&source_p
->localClient
->ip
, ipaddr
, sizeof(ipaddr
));
264 sendto_realops_snomask(SNO_UNAUTH
, L_ALL
,
265 "Unauthorised client connection from "
266 "%s!%s%s@%s [%s] on [%s/%u].",
267 source_p
->name
, IsGotId(source_p
) ? "" : "~",
268 source_p
->username
, source_p
->host
,
270 source_p
->localClient
->listener
->name
, port
);
273 "Unauthorised client connection from %s!%s%s@%s on [%s/%u].",
274 source_p
->name
, IsGotId(source_p
) ? "" : "~",
275 source_p
->username
, source_p
->sockhost
,
276 source_p
->localClient
->listener
->name
, port
);
277 add_reject(client_p
, NULL
, NULL
);
278 exit_client(client_p
, source_p
, &me
,
279 "You are not authorised to use this server");
283 exit_client(client_p
, client_p
, &me
, "*** Banned ");
284 ServerStats
.is_ref
++;
297 * inputs - pointer to client to verify
298 * - pointer to proposed username
299 * output - 0 if success -'ve if not
300 * side effect - find the first (best) I line to attach.
303 verify_access(struct Client
*client_p
, const char *username
)
305 struct ConfItem
*aconf
;
306 char non_ident
[USERLEN
+ 1];
308 if(IsGotId(client_p
))
310 aconf
= find_address_conf(client_p
->host
, client_p
->sockhost
,
311 client_p
->username
, client_p
->username
,
312 (struct sockaddr
*) &client_p
->localClient
->ip
,
313 client_p
->localClient
->ip
.ss_family
,
314 client_p
->localClient
->auth_user
);
318 rb_strlcpy(non_ident
, "~", sizeof(non_ident
));
319 rb_strlcat(non_ident
, username
, sizeof(non_ident
));
320 aconf
= find_address_conf(client_p
->host
, client_p
->sockhost
,
321 non_ident
, client_p
->username
,
322 (struct sockaddr
*) &client_p
->localClient
->ip
,
323 client_p
->localClient
->ip
.ss_family
,
324 client_p
->localClient
->auth_user
);
328 return NOT_AUTHORISED
;
330 if(aconf
->status
& CONF_CLIENT
)
332 if(aconf
->flags
& CONF_FLAGS_REDIR
)
334 sendto_one_numeric(client_p
, RPL_REDIR
, form_str(RPL_REDIR
),
335 aconf
->name
? aconf
->name
: "", aconf
->port
);
336 return (NOT_AUTHORISED
);
339 /* Thanks for spoof idea amm */
340 if(IsConfDoSpoofIp(aconf
))
344 /* show_ip() depends on this --fl */
345 SetIPSpoof(client_p
);
347 if(IsConfSpoofNotice(aconf
))
349 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
350 "%s spoofing: %s as %s",
352 show_ip(NULL
, client_p
) ? client_p
->host
: aconf
->name
,
356 /* user@host spoof */
357 if((p
= strchr(aconf
->name
, '@')) != NULL
)
362 rb_strlcpy(client_p
->username
, aconf
->name
,
363 sizeof(client_p
->username
));
364 rb_strlcpy(client_p
->host
, host
,
365 sizeof(client_p
->host
));
369 rb_strlcpy(client_p
->host
, aconf
->name
, sizeof(client_p
->host
));
371 return (attach_iline(client_p
, aconf
));
373 else if(aconf
->status
& CONF_KILL
)
375 if(ConfigFileEntry
.kline_with_reason
)
378 form_str(ERR_YOUREBANNEDCREEP
),
379 me
.name
, client_p
->name
, aconf
->passwd
);
381 add_reject(client_p
, aconf
->user
, aconf
->host
);
382 return (BANNED_CLIENT
);
385 return NOT_AUTHORISED
;
392 * Returns 1 if successful 0 if not
394 * This checks if the user has exceed the limits for their class
395 * unless of course they are exempt..
399 add_ip_limit(struct Client
*client_p
, struct ConfItem
*aconf
)
401 rb_patricia_node_t
*pnode
;
404 /* If the limits are 0 don't do anything.. */
405 if(ConfCidrAmount(aconf
) == 0
406 || (ConfCidrIpv4Bitlen(aconf
) == 0 && ConfCidrIpv6Bitlen(aconf
) == 0))
409 pnode
= rb_match_ip(ConfIpLimits(aconf
), (struct sockaddr
*)&client_p
->localClient
->ip
);
411 if(GET_SS_FAMILY(&client_p
->localClient
->ip
) == AF_INET
)
412 bitlen
= ConfCidrIpv4Bitlen(aconf
);
414 bitlen
= ConfCidrIpv6Bitlen(aconf
);
417 pnode
= make_and_lookup_ip(ConfIpLimits(aconf
), (struct sockaddr
*)&client_p
->localClient
->ip
, bitlen
);
419 s_assert(pnode
!= NULL
);
423 if(((intptr_t)pnode
->data
) >= ConfCidrAmount(aconf
) && !IsConfExemptLimits(aconf
))
425 /* This should only happen if the limits are set to 0 */
426 if((intptr_t)pnode
->data
== 0)
428 rb_patricia_remove(ConfIpLimits(aconf
), pnode
);
433 pnode
->data
= (void *)(((intptr_t)pnode
->data
) + 1);
439 remove_ip_limit(struct Client
*client_p
, struct ConfItem
*aconf
)
441 rb_patricia_node_t
*pnode
;
443 /* If the limits are 0 don't do anything.. */
444 if(ConfCidrAmount(aconf
) == 0
445 || (ConfCidrIpv4Bitlen(aconf
) == 0 && ConfCidrIpv6Bitlen(aconf
) == 0))
448 pnode
= rb_match_ip(ConfIpLimits(aconf
), (struct sockaddr
*)&client_p
->localClient
->ip
);
452 pnode
->data
= (void *)(((intptr_t)pnode
->data
) - 1);
453 if(((intptr_t)pnode
->data
) == 0)
455 rb_patricia_remove(ConfIpLimits(aconf
), pnode
);
463 * inputs - client pointer
466 * side effects - do actual attach
469 attach_iline(struct Client
*client_p
, struct ConfItem
*aconf
)
471 struct Client
*target_p
;
474 int global_count
= 0;
478 if(IsConfExemptLimits(aconf
))
479 return (attach_conf(client_p
, aconf
));
481 if(*client_p
->username
== '~')
485 /* find_hostname() returns the head of the list to search */
486 RB_DLINK_FOREACH(ptr
, find_hostname(client_p
->host
))
488 target_p
= ptr
->data
;
490 if(irccmp(client_p
->host
, target_p
->orighost
) != 0)
493 if(MyConnect(target_p
))
500 if(*target_p
->username
== '~')
503 else if(irccmp(target_p
->username
, client_p
->username
) == 0)
506 if(ConfMaxLocal(aconf
) && local_count
>= ConfMaxLocal(aconf
))
507 return (TOO_MANY_LOCAL
);
508 else if(ConfMaxGlobal(aconf
) && global_count
>= ConfMaxGlobal(aconf
))
509 return (TOO_MANY_GLOBAL
);
510 else if(ConfMaxIdent(aconf
) && ident_count
>= ConfMaxIdent(aconf
))
511 return (TOO_MANY_IDENT
);
515 return (attach_conf(client_p
, aconf
));
521 * inputs - pointer to client to detach
522 * output - 0 for success, -1 for failure
523 * side effects - Disassociate configuration from the client.
524 * Also removes a class from the list if marked for deleting.
527 detach_conf(struct Client
*client_p
)
529 struct ConfItem
*aconf
;
531 aconf
= client_p
->localClient
->att_conf
;
537 remove_ip_limit(client_p
, aconf
);
539 if(ConfCurrUsers(aconf
) > 0)
540 --ConfCurrUsers(aconf
);
542 if(ConfMaxUsers(aconf
) == -1 && ConfCurrUsers(aconf
) == 0)
544 free_class(ClassPtr(aconf
));
545 ClassPtr(aconf
) = NULL
;
551 if(!aconf
->clients
&& IsIllegal(aconf
))
554 client_p
->localClient
->att_conf
= NULL
;
564 * inputs - client pointer
567 * side effects - Associate a specific configuration entry to a *local*
568 * client (this is the one which used in accepting the
569 * connection). Note, that this automatically changes the
570 * attachment if there was an old one...
573 attach_conf(struct Client
*client_p
, struct ConfItem
*aconf
)
576 return (NOT_AUTHORISED
);
580 if(!add_ip_limit(client_p
, aconf
))
581 return (TOO_MANY_LOCAL
);
584 if((aconf
->status
& CONF_CLIENT
) &&
585 ConfCurrUsers(aconf
) >= ConfMaxUsers(aconf
) && ConfMaxUsers(aconf
) > 0)
587 if(!IsConfExemptLimits(aconf
))
589 return (I_LINE_FULL
);
593 sendto_one_notice(client_p
, ":*** I: line is full, but you have an >I: line!");
598 if(client_p
->localClient
->att_conf
!= NULL
)
599 detach_conf(client_p
);
601 client_p
->localClient
->att_conf
= aconf
;
604 ConfCurrUsers(aconf
)++;
611 * Actual REHASH service routine. Called with sig == 0 if it has been called
612 * as a result of an operator issuing this command, else assume it has been
613 * called as a result of the server receiving a HUP signal.
620 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
621 "Got signal SIGHUP, reloading ircd conf. file");
625 /* don't close listeners until we know we can go ahead with the rehash */
628 if(ServerInfo
.description
!= NULL
)
629 rb_strlcpy(me
.info
, ServerInfo
.description
, sizeof(me
.info
));
631 rb_strlcpy(me
.info
, "unknown", sizeof(me
.info
));
637 static struct banconf_entry
639 const char **filename
;
640 void (*func
) (FILE *);
643 { &ConfigFileEntry
.klinefile
, parse_k_file
, 0 },
644 { &ConfigFileEntry
.klinefile
, parse_k_file
, 1 },
645 { &ConfigFileEntry
.dlinefile
, parse_d_file
, 0 },
646 { &ConfigFileEntry
.dlinefile
, parse_d_file
, 1 },
647 { &ConfigFileEntry
.xlinefile
, parse_x_file
, 0 },
648 { &ConfigFileEntry
.xlinefile
, parse_x_file
, 1 },
649 { &ConfigFileEntry
.resvfile
, parse_resv_file
,0 },
650 { &ConfigFileEntry
.resvfile
, parse_resv_file
,1 },
658 char buf
[MAXPATHLEN
];
662 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
663 "Got signal SIGUSR2, reloading ban confs");
665 clear_out_address_conf_bans();
666 clear_s_newconf_bans();
668 for(i
= 0; banconfs
[i
].filename
; i
++)
671 snprintf(buf
, sizeof(buf
), "%s.perm", *banconfs
[i
].filename
);
673 snprintf(buf
, sizeof(buf
), "%s", *banconfs
[i
].filename
);
675 if((file
= fopen(buf
, "r")) == NULL
)
680 ilog(L_MAIN
, "Failed reading ban file %s",
681 *banconfs
[i
].filename
);
682 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
683 "Can't open %s file bans could be missing!",
684 *banconfs
[i
].filename
);
688 (banconfs
[i
].func
)(file
);
693 check_banned_lines();
701 * side effects - Set default values here.
702 * This is called **PRIOR** to parsing the
703 * configuration file. If you want to do some validation
704 * of values later, put them in validate_conf().
712 set_default_conf(void)
714 /* ServerInfo.name is not rehashable */
715 /* ServerInfo.name = ServerInfo.name; */
716 ServerInfo
.description
= NULL
;
717 ServerInfo
.network_name
= rb_strdup(NETWORK_NAME_DEFAULT
);
718 ServerInfo
.network_desc
= rb_strdup(NETWORK_DESC_DEFAULT
);
720 memset(&ServerInfo
.ip
, 0, sizeof(ServerInfo
.ip
));
721 ServerInfo
.specific_ipv4_vhost
= 0;
723 memset(&ServerInfo
.ip6
, 0, sizeof(ServerInfo
.ip6
));
724 ServerInfo
.specific_ipv6_vhost
= 0;
727 /* Don't reset hub, as that will break lazylinks */
728 /* ServerInfo.hub = NO; */
729 AdminInfo
.name
= NULL
;
730 AdminInfo
.email
= NULL
;
731 AdminInfo
.description
= NULL
;
733 ConfigFileEntry
.default_operstring
= rb_strdup("is an IRC operator");
734 ConfigFileEntry
.default_adminstring
= rb_strdup("is a Server Administrator");
735 ConfigFileEntry
.servicestring
= rb_strdup("is a Network Service");
737 ConfigFileEntry
.default_umodes
= UMODE_INVISIBLE
;
738 ConfigFileEntry
.failed_oper_notice
= YES
;
739 ConfigFileEntry
.anti_nick_flood
= NO
;
740 ConfigFileEntry
.disable_fake_channels
= NO
;
741 ConfigFileEntry
.max_nick_time
= 20;
742 ConfigFileEntry
.max_nick_changes
= 5;
743 ConfigFileEntry
.max_accept
= 20;
744 ConfigFileEntry
.max_monitor
= 60;
745 ConfigFileEntry
.nick_delay
= 900; /* 15 minutes */
746 ConfigFileEntry
.target_change
= YES
;
747 ConfigFileEntry
.anti_spam_exit_message_time
= 0;
748 ConfigFileEntry
.ts_warn_delta
= TS_WARN_DELTA_DEFAULT
;
749 ConfigFileEntry
.ts_max_delta
= TS_MAX_DELTA_DEFAULT
;
750 ConfigFileEntry
.client_exit
= YES
;
751 ConfigFileEntry
.dline_with_reason
= YES
;
752 ConfigFileEntry
.kline_with_reason
= YES
;
753 ConfigFileEntry
.kline_delay
= 0;
754 ConfigFileEntry
.warn_no_nline
= YES
;
755 ConfigFileEntry
.non_redundant_klines
= YES
;
756 ConfigFileEntry
.stats_e_disabled
= NO
;
757 ConfigFileEntry
.stats_o_oper_only
= NO
;
758 ConfigFileEntry
.stats_k_oper_only
= 1; /* masked */
759 ConfigFileEntry
.stats_i_oper_only
= 1; /* masked */
760 ConfigFileEntry
.stats_P_oper_only
= NO
;
761 ConfigFileEntry
.stats_c_oper_only
= NO
;
762 ConfigFileEntry
.stats_y_oper_only
= NO
;
763 ConfigFileEntry
.stats_h_oper_only
= NO
;
764 ConfigFileEntry
.map_oper_only
= YES
;
765 ConfigFileEntry
.operspy_admin_only
= NO
;
766 ConfigFileEntry
.pace_wait
= 10;
767 ConfigFileEntry
.caller_id_wait
= 60;
768 ConfigFileEntry
.pace_wait_simple
= 1;
769 ConfigFileEntry
.short_motd
= NO
;
770 ConfigFileEntry
.no_oper_flood
= NO
;
771 ConfigFileEntry
.fname_userlog
= NULL
;
772 ConfigFileEntry
.fname_fuserlog
= NULL
;
773 ConfigFileEntry
.fname_operlog
= NULL
;
774 ConfigFileEntry
.fname_foperlog
= NULL
;
775 ConfigFileEntry
.fname_serverlog
= NULL
;
776 ConfigFileEntry
.fname_klinelog
= NULL
;
777 ConfigFileEntry
.fname_operspylog
= NULL
;
778 ConfigFileEntry
.fname_ioerrorlog
= NULL
;
779 ConfigFileEntry
.use_egd
= NO
;
780 ConfigFileEntry
.hide_spoof_ips
= YES
;
781 ConfigFileEntry
.hide_error_messages
= 1;
782 ConfigFileEntry
.dots_in_ident
= 0;
783 ConfigFileEntry
.max_targets
= MAX_TARGETS_DEFAULT
;
784 ConfigFileEntry
.egdpool_path
= NULL
;
785 ConfigFileEntry
.use_whois_actually
= YES
;
786 ConfigFileEntry
.burst_away
= NO
;
787 ConfigFileEntry
.collision_fnc
= YES
;
788 ConfigFileEntry
.global_snotices
= YES
;
789 ConfigFileEntry
.operspy_dont_care_user_info
= NO
;
792 ConfigFileEntry
.compression_level
= 4;
795 ConfigFileEntry
.oper_umodes
= UMODE_LOCOPS
| UMODE_SERVNOTICE
|
796 UMODE_OPERWALL
| UMODE_WALLOP
;
797 ConfigFileEntry
.oper_only_umodes
= UMODE_SERVNOTICE
;
798 ConfigFileEntry
.oper_snomask
= SNO_GENERAL
;
800 ConfigChannel
.use_except
= YES
;
801 ConfigChannel
.use_invex
= YES
;
802 ConfigChannel
.use_knock
= YES
;
803 ConfigChannel
.use_forward
= YES
;
804 ConfigChannel
.knock_delay
= 300;
805 ConfigChannel
.knock_delay_channel
= 60;
806 ConfigChannel
.max_chans_per_user
= 15;
807 ConfigChannel
.max_bans
= 25;
808 ConfigChannel
.max_bans_large
= 500;
809 ConfigChannel
.only_ascii_channels
= NO
;
810 ConfigChannel
.burst_topicwho
= NO
;
811 ConfigChannel
.kick_on_split_riding
= NO
;
813 ConfigChannel
.default_split_user_count
= 15000;
814 ConfigChannel
.default_split_server_count
= 10;
815 ConfigChannel
.no_join_on_split
= NO
;
816 ConfigChannel
.no_create_on_split
= YES
;
818 ConfigServerHide
.flatten_links
= 0;
819 ConfigServerHide
.links_delay
= 300;
820 ConfigServerHide
.hidden
= 0;
821 ConfigServerHide
.disable_hidden
= 0;
823 ConfigFileEntry
.min_nonwildcard
= 4;
824 ConfigFileEntry
.min_nonwildcard_simple
= 3;
825 ConfigFileEntry
.default_floodcount
= 8;
826 ConfigFileEntry
.client_flood
= CLIENT_FLOOD_DEFAULT
;
827 ConfigFileEntry
.tkline_expire_notices
= 0;
829 ConfigFileEntry
.reject_after_count
= 5;
830 ConfigFileEntry
.reject_ban_time
= 300;
831 ConfigFileEntry
.reject_duration
= 120;
832 ConfigFileEntry
.throttle_count
= 4;
833 ConfigFileEntry
.throttle_duration
= 60;
835 ServerInfo
.default_max_clients
= MAXCONNECTIONS
;
845 * inputs - file descriptor pointing to config file to use
847 * side effects - Read configuration file.
850 read_conf(FILE * file
)
854 set_default_conf(); /* Set default values prior to conf parsing */
855 yyparse(); /* Load the values from the conf */
856 validate_conf(); /* Check to make sure some values are still okay. */
857 /* Some global values are also loaded here. */
858 check_class(); /* Make sure classes are valid */
859 privilegeset_delete_all_illegal();
865 if(ConfigFileEntry
.ts_warn_delta
< TS_WARN_DELTA_MIN
)
866 ConfigFileEntry
.ts_warn_delta
= TS_WARN_DELTA_DEFAULT
;
868 if(ConfigFileEntry
.ts_max_delta
< TS_MAX_DELTA_MIN
)
869 ConfigFileEntry
.ts_max_delta
= TS_MAX_DELTA_DEFAULT
;
871 if(ServerInfo
.network_name
== NULL
)
872 ServerInfo
.network_name
= rb_strdup(NETWORK_NAME_DEFAULT
);
874 if(ServerInfo
.network_desc
== NULL
)
875 ServerInfo
.network_desc
= rb_strdup(NETWORK_DESC_DEFAULT
);
877 if(ServerInfo
.ssld_count
< 1)
878 ServerInfo
.ssld_count
= 1;
880 if(!rb_setup_ssl_server(ServerInfo
.ssl_cert
, ServerInfo
.ssl_private_key
, ServerInfo
.ssl_dh_params
))
882 ilog(L_MAIN
, "WARNING: Unable to setup SSL.");
886 send_new_ssl_certs(ServerInfo
.ssl_cert
, ServerInfo
.ssl_private_key
, ServerInfo
.ssl_dh_params
);
889 if(ServerInfo
.ssld_count
> get_ssld_count())
891 int start
= ServerInfo
.ssld_count
- get_ssld_count();
892 /* start up additional ssld if needed */
893 start_ssldaemon(start
, ServerInfo
.ssl_cert
, ServerInfo
.ssl_private_key
, ServerInfo
.ssl_dh_params
);
897 if((ConfigFileEntry
.client_flood
< CLIENT_FLOOD_MIN
) ||
898 (ConfigFileEntry
.client_flood
> CLIENT_FLOOD_MAX
))
899 ConfigFileEntry
.client_flood
= CLIENT_FLOOD_MAX
;
901 if(!split_users
|| !split_servers
||
902 (!ConfigChannel
.no_create_on_split
&& !ConfigChannel
.no_join_on_split
))
904 rb_event_delete(check_splitmode_ev
);
905 check_splitmode_ev
= NULL
;
913 * inputs - pointer to struct ConfItem
915 * Side effects - links in given struct ConfItem into
916 * temporary kline link list
919 add_temp_kline(struct ConfItem
*aconf
)
921 if(aconf
->hold
>= rb_current_time() + (10080 * 60))
923 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_WEEK
]);
924 aconf
->port
= TEMP_WEEK
;
926 else if(aconf
->hold
>= rb_current_time() + (1440 * 60))
928 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_DAY
]);
929 aconf
->port
= TEMP_DAY
;
931 else if(aconf
->hold
>= rb_current_time() + (60 * 60))
933 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_HOUR
]);
934 aconf
->port
= TEMP_HOUR
;
938 rb_dlinkAddAlloc(aconf
, &temp_klines
[TEMP_MIN
]);
939 aconf
->port
= TEMP_MIN
;
942 aconf
->flags
|= CONF_FLAGS_TEMPORARY
;
943 add_conf_by_address(aconf
->host
, CONF_KILL
, aconf
->user
, NULL
, aconf
);
948 * input - pointer to struct ConfItem
950 * side effects - added to tdline link list and address hash
953 add_temp_dline(struct ConfItem
*aconf
)
955 if(aconf
->hold
>= rb_current_time() + (10080 * 60))
957 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_WEEK
]);
958 aconf
->port
= TEMP_WEEK
;
960 else if(aconf
->hold
>= rb_current_time() + (1440 * 60))
962 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_DAY
]);
963 aconf
->port
= TEMP_DAY
;
965 else if(aconf
->hold
>= rb_current_time() + (60 * 60))
967 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_HOUR
]);
968 aconf
->port
= TEMP_HOUR
;
972 rb_dlinkAddAlloc(aconf
, &temp_dlines
[TEMP_MIN
]);
973 aconf
->port
= TEMP_MIN
;
976 aconf
->flags
|= CONF_FLAGS_TEMPORARY
;
977 add_conf_by_address(aconf
->host
, CONF_DLINE
, aconf
->user
, NULL
, aconf
);
982 * inputs - list pointer
985 * side effects - expire tklines and moves them between lists
988 expire_temp_kd(void *list
)
991 rb_dlink_node
*next_ptr
;
992 struct ConfItem
*aconf
;
994 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, ((rb_dlink_list
*) list
)->head
)
998 if(aconf
->hold
<= rb_current_time())
1000 /* Alert opers that a TKline expired - Hwy */
1001 if(ConfigFileEntry
.tkline_expire_notices
)
1002 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1003 "Temporary K-line for [%s@%s] expired",
1004 (aconf
->user
) ? aconf
->
1005 user
: "*", (aconf
->host
) ? aconf
->host
: "*");
1007 delete_one_address_conf(aconf
->host
, aconf
);
1008 rb_dlinkDestroy(ptr
, list
);
1014 reorganise_temp_kd(void *list
)
1016 struct ConfItem
*aconf
;
1017 rb_dlink_node
*ptr
, *next_ptr
;
1019 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, ((rb_dlink_list
*) list
)->head
)
1023 if(aconf
->hold
< (rb_current_time() + (60 * 60)))
1025 rb_dlinkMoveNode(ptr
, list
, (aconf
->status
== CONF_KILL
) ?
1026 &temp_klines
[TEMP_MIN
] : &temp_dlines
[TEMP_MIN
]);
1027 aconf
->port
= TEMP_MIN
;
1029 else if(aconf
->port
> TEMP_HOUR
)
1031 if(aconf
->hold
< (rb_current_time() + (1440 * 60)))
1033 rb_dlinkMoveNode(ptr
, list
, (aconf
->status
== CONF_KILL
) ?
1034 &temp_klines
[TEMP_HOUR
] : &temp_dlines
[TEMP_HOUR
]);
1035 aconf
->port
= TEMP_HOUR
;
1037 else if(aconf
->port
> TEMP_DAY
&&
1038 (aconf
->hold
< (rb_current_time() + (10080 * 60))))
1040 rb_dlinkMoveNode(ptr
, list
, (aconf
->status
== CONF_KILL
) ?
1041 &temp_klines
[TEMP_DAY
] : &temp_dlines
[TEMP_DAY
]);
1042 aconf
->port
= TEMP_DAY
;
1049 /* const char* get_oper_name(struct Client *client_p)
1050 * Input: A client to find the active oper{} name for.
1051 * Output: The nick!user@host{oper} of the oper.
1052 * "oper" is server name for remote opers
1053 * Side effects: None.
1056 get_oper_name(struct Client
*client_p
)
1058 /* +5 for !,@,{,} and null */
1059 static char buffer
[NICKLEN
+ USERLEN
+ HOSTLEN
+ HOSTLEN
+ 5];
1061 if(MyOper(client_p
))
1063 rb_snprintf(buffer
, sizeof(buffer
), "%s!%s@%s{%s}",
1064 client_p
->name
, client_p
->username
,
1065 client_p
->host
, client_p
->localClient
->opername
);
1069 rb_snprintf(buffer
, sizeof(buffer
), "%s!%s@%s{%s}",
1070 client_p
->name
, client_p
->username
,
1071 client_p
->host
, client_p
->servptr
->name
);
1076 * get_printable_conf
1078 * inputs - struct ConfItem
1087 * Examine the struct struct ConfItem, setting the values
1088 * of name, host, pass, user to values either
1089 * in aconf, or "<NULL>" port is set to aconf->port in all cases.
1092 get_printable_conf(struct ConfItem
*aconf
, char **name
, char **host
,
1093 char **pass
, char **user
, int *port
, char **classname
)
1095 static char null
[] = "<NULL>";
1096 static char zero
[] = "default";
1098 *name
= EmptyString(aconf
->name
) ? null
: aconf
->name
;
1099 *host
= EmptyString(aconf
->host
) ? null
: aconf
->host
;
1100 *pass
= EmptyString(aconf
->passwd
) ? null
: aconf
->passwd
;
1101 *user
= EmptyString(aconf
->user
) ? null
: aconf
->user
;
1102 *classname
= EmptyString(aconf
->className
) ? zero
: aconf
->className
;
1103 *port
= (int) aconf
->port
;
1107 get_printable_kline(struct Client
*source_p
, struct ConfItem
*aconf
,
1108 char **host
, char **reason
,
1109 char **user
, char **oper_reason
)
1111 static char null
[] = "<NULL>";
1113 *host
= EmptyString(aconf
->host
) ? null
: aconf
->host
;
1114 *reason
= EmptyString(aconf
->passwd
) ? null
: aconf
->passwd
;
1115 *user
= EmptyString(aconf
->user
) ? null
: aconf
->user
;
1117 if(EmptyString(aconf
->spasswd
) || !IsOper(source_p
))
1118 *oper_reason
= NULL
;
1120 *oper_reason
= aconf
->spasswd
;
1126 * inputs - cold start YES or NO
1128 * side effects - read all conf files needed, ircd.conf kline.conf etc.
1131 read_conf_files(int cold
)
1133 const char *filename
;
1135 conf_fbfile_in
= NULL
;
1137 filename
= get_conf_name(CONF_TYPE
);
1139 /* We need to know the initial filename for the yyerror() to report
1140 FIXME: The full path is in conffilenamebuf first time since we
1141 dont know anything else
1145 rb_strlcpy(conffilebuf
, filename
, sizeof(conffilebuf
));
1147 if((conf_fbfile_in
= fopen(filename
, "r")) == NULL
)
1151 ilog(L_MAIN
, "Failed in reading configuration file %s", filename
);
1156 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1157 "Can't open file '%s' - aborting rehash!", filename
);
1164 clear_out_old_conf();
1167 read_conf(conf_fbfile_in
);
1168 fclose(conf_fbfile_in
);
1172 * free an alias{} entry.
1175 free_alias_cb(struct DictionaryElement
*ptr
, void *unused
)
1177 struct alias_entry
*aptr
= ptr
->data
;
1179 rb_free(aptr
->name
);
1180 rb_free(aptr
->target
);
1185 * clear_out_old_conf
1189 * side effects - Clear out the old configuration
1192 clear_out_old_conf(void)
1194 struct Class
*cltmp
;
1196 rb_dlink_node
*next_ptr
;
1199 * don't delete the class table, rather mark all entries
1200 * for deletion. The table is cleaned up by check_class. - avalon
1202 RB_DLINK_FOREACH(ptr
, class_list
.head
)
1205 MaxUsers(cltmp
) = -1;
1208 clear_out_address_conf();
1211 /* clean out module paths */
1212 #ifndef STATIC_MODULES
1214 mod_add_path(MODULE_DIR
);
1215 mod_add_path(MODULE_DIR
"/autoload");
1218 /* clean out ServerInfo */
1219 rb_free(ServerInfo
.description
);
1220 ServerInfo
.description
= NULL
;
1221 rb_free(ServerInfo
.network_name
);
1222 ServerInfo
.network_name
= NULL
;
1223 rb_free(ServerInfo
.network_desc
);
1224 ServerInfo
.network_desc
= NULL
;
1226 ServerInfo
.ssld_count
= 1;
1228 /* clean out AdminInfo */
1229 rb_free(AdminInfo
.name
);
1230 AdminInfo
.name
= NULL
;
1231 rb_free(AdminInfo
.email
);
1232 AdminInfo
.email
= NULL
;
1233 rb_free(AdminInfo
.description
);
1234 AdminInfo
.description
= NULL
;
1236 /* operator{} and class{} blocks are freed above */
1237 /* clean out listeners */
1240 /* auth{}, quarantine{}, shared{}, connect{}, kill{}, deny{}, exempt{}
1241 * and gecos{} blocks are freed above too
1244 /* clean out general */
1245 rb_free(ConfigFileEntry
.kline_reason
);
1246 ConfigFileEntry
.kline_reason
= NULL
;
1248 RB_DLINK_FOREACH_SAFE(ptr
, next_ptr
, service_list
.head
)
1251 rb_dlinkDestroy(ptr
, &service_list
);
1254 /* remove any aliases... -- nenolod */
1255 irc_dictionary_destroy(alias_dict
, free_alias_cb
, NULL
);
1258 destroy_blacklists();
1260 privilegeset_mark_all_illegal();
1262 /* OK, that should be everything... */
1268 * inputs - kline, dline or resv type flag
1269 * - client pointer to report to
1270 * - user name of target
1271 * - host name of target
1272 * - reason for target
1276 * side effects - This function takes care of finding the right conf
1277 * file and adding the line to it, as well as notifying
1278 * opers and the user.
1281 write_confitem(KlineType type
, struct Client
*source_p
, char *user
,
1282 char *host
, const char *reason
, const char *oper_reason
,
1283 const char *current_date
, int xtype
)
1287 const char *filename
; /* filename to use for kline */
1289 filename
= get_conf_name(type
);
1291 if(type
== KLINE_TYPE
)
1293 if(EmptyString(oper_reason
))
1295 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1296 "%s added K-Line for [%s@%s] [%s]",
1297 get_oper_name(source_p
), user
,
1299 ilog(L_KLINE
, "K %s 0 %s %s %s",
1300 get_oper_name(source_p
), user
, host
, reason
);
1304 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1305 "%s added K-Line for [%s@%s] [%s|%s]",
1306 get_oper_name(source_p
), user
,
1307 host
, reason
, oper_reason
);
1308 ilog(L_KLINE
, "K %s 0 %s %s %s|%s",
1309 get_oper_name(source_p
), user
, host
,
1310 reason
, oper_reason
);
1313 sendto_one_notice(source_p
, ":Added K-Line [%s@%s]",
1316 else if(type
== DLINE_TYPE
)
1318 if(EmptyString(oper_reason
))
1320 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1321 "%s added D-Line for [%s] [%s]",
1322 get_oper_name(source_p
), host
, reason
);
1323 ilog(L_KLINE
, "D %s 0 %s %s",
1324 get_oper_name(source_p
), host
, reason
);
1328 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1329 "%s added D-Line for [%s] [%s|%s]",
1330 get_oper_name(source_p
), host
,
1331 reason
, oper_reason
);
1332 ilog(L_KLINE
, "D %s 0 %s %s|%s",
1333 get_oper_name(source_p
), host
,
1334 reason
, oper_reason
);
1337 sendto_one_notice(source_p
, ":Added D-Line [%s] to %s", host
, filename
);
1340 else if(type
== RESV_TYPE
)
1342 sendto_realops_snomask(SNO_GENERAL
, L_ALL
,
1343 "%s added RESV for [%s] [%s]",
1344 get_oper_name(source_p
), host
, reason
);
1345 ilog(L_KLINE
, "R %s 0 %s %s",
1346 get_oper_name(source_p
), host
, reason
);
1348 sendto_one_notice(source_p
, ":Added RESV for [%s] [%s]",
1352 if((out
= fopen(filename
, "a")) == NULL
)
1354 sendto_realops_snomask(SNO_GENERAL
, L_ALL
, "*** Problem opening %s ", filename
);
1355 sendto_one_notice(source_p
, ":*** Problem opening file, added temporarily only");
1359 if(oper_reason
== NULL
)
1362 if(type
== KLINE_TYPE
)
1364 rb_snprintf(buffer
, sizeof(buffer
),
1365 "\"%s\",\"%s\",\"%s\",\"%s\",\"%s\",\"%s\",%ld\n",
1366 user
, host
, reason
, oper_reason
, current_date
,
1367 get_oper_name(source_p
), (long int)rb_current_time());
1369 else if(type
== DLINE_TYPE
)
1371 rb_snprintf(buffer
, sizeof(buffer
),
1372 "\"%s\",\"%s\",\"%s\",\"%s\",\"%s\",%ld\n", host
,
1373 reason
, oper_reason
, current_date
, get_oper_name(source_p
), (long int)rb_current_time());
1375 else if(type
== RESV_TYPE
)
1377 rb_snprintf(buffer
, sizeof(buffer
), "\"%s\",\"%s\",\"%s\",%ld\n",
1378 host
, reason
, get_oper_name(source_p
), (long int)rb_current_time());
1381 if(fputs(buffer
, out
) == -1)
1383 sendto_realops_snomask(SNO_GENERAL
, L_ALL
, "*** Problem writing to %s", filename
);
1384 sendto_one_notice(source_p
, ":*** Problem writing to file, added temporarily only");
1391 sendto_realops_snomask(SNO_GENERAL
, L_ALL
, "*** Problem writing to %s", filename
);
1392 sendto_one_notice(source_p
, ":*** Problem writing to file, added temporarily only");
1399 * inputs - type of conf file to return name of file for
1400 * output - pointer to filename for type of conf
1401 * side effects - none
1404 get_conf_name(KlineType type
)
1406 if(type
== CONF_TYPE
)
1408 return (ConfigFileEntry
.configfile
);
1410 else if(type
== DLINE_TYPE
)
1412 return (ConfigFileEntry
.dlinefile
);
1414 else if(type
== RESV_TYPE
)
1416 return (ConfigFileEntry
.resvfile
);
1419 return ConfigFileEntry
.klinefile
;
1423 * conf_add_class_to_conf
1424 * inputs - pointer to config item
1426 * side effects - Add a class pointer to a conf
1430 conf_add_class_to_conf(struct ConfItem
*aconf
)
1432 if(aconf
->className
== NULL
)
1434 aconf
->className
= rb_strdup("default");
1435 ClassPtr(aconf
) = default_class
;
1439 ClassPtr(aconf
) = find_class(aconf
->className
);
1441 if(ClassPtr(aconf
) == default_class
)
1443 if(aconf
->status
== CONF_CLIENT
)
1446 "Using default class for missing class \"%s\" in auth{} for %s@%s",
1447 aconf
->className
, aconf
->user
, aconf
->host
);
1450 rb_free(aconf
->className
);
1451 aconf
->className
= rb_strdup("default");
1455 if(ConfMaxUsers(aconf
) < 0)
1457 ClassPtr(aconf
) = default_class
;
1458 rb_free(aconf
->className
);
1459 aconf
->className
= rb_strdup("default");
1466 * inputs - pointer to config item
1468 * side effects - Add a d/D line
1471 conf_add_d_conf(struct ConfItem
*aconf
)
1473 if(aconf
->host
== NULL
)
1478 /* XXX - Should 'd' ever be in the old conf? For new conf we don't
1479 * need this anyway, so I will disable it for now... -A1kmm
1482 if(parse_netmask(aconf
->host
, NULL
, NULL
) == HM_HOST
)
1484 ilog(L_MAIN
, "Invalid Dline %s ignored", aconf
->host
);
1489 add_conf_by_address(aconf
->host
, CONF_DLINE
, NULL
, NULL
, aconf
);
1494 strip_tabs(char *dest
, const char *src
, size_t len
)
1498 if(dest
== NULL
|| src
== NULL
)
1501 rb_strlcpy(dest
, src
, len
);
1515 * inputs - message from parser
1517 * side effects - message to opers and log file entry is made
1520 yyerror(const char *msg
)
1522 char newlinebuf
[BUFSIZE
];
1524 strip_tabs(newlinebuf
, linebuf
, strlen(linebuf
));
1526 sendto_realops_snomask(SNO_GENERAL
, L_ALL
, "\"%s\", line %d: %s at '%s'",
1527 conffilebuf
, lineno
+ 1, msg
, newlinebuf
);
1529 ilog(L_MAIN
, "\"%s\", line %d: %s at '%s'", conffilebuf
, lineno
+ 1, msg
, newlinebuf
);
1533 conf_fgets(char *lbuf
, int max_size
, FILE * fb
)
1537 if((buff
= fgets(lbuf
, max_size
, fb
)) == NULL
)
1540 return (strlen(lbuf
));
1544 conf_yy_fatal_error(const char *msg
)