2 * IRC - Internet Relay Chat, ircd/s_conf.c
3 * Copyright (C) 1990 Jarkko Oikarinen and
4 * University of Oulu, Computing Center
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 1, or (at your option)
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
16 * You should have received a copy of the GNU General Public License
17 * along with this program; if not, write to the Free Software
18 * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
28 #include "ircd_features.h"
33 #include "ircd_alloc.h"
34 #include "ircd_chattr.h"
36 #include "ircd_reply.h"
37 #include "ircd_snprintf.h"
38 #include "ircd_string.h"
52 #include "sprintf_irc.h"
58 #include <arpa/inet.h>
69 #define INADDR_NONE 0xffffffff
72 struct ConfItem* GlobalConfList = 0;
73 int GlobalConfCount = 0;
75 static struct LocalConf localConf;
76 static struct CRuleConf* cruleConfList;
77 static struct ServerConf* serverConfList;
78 static struct DenyConf* denyConfList;
81 * output the reason for being k lined from a file - Mmmm
82 * sptr is client being dumped
83 * filename is the file that is to be output to the K lined client
85 static void killcomment(struct Client* sptr, const char* filename)
92 if (NULL == (file = fbopen(filename, "r"))) {
93 send_reply(sptr, ERR_NOMOTD);
94 send_reply(sptr, SND_EXPLICIT | ERR_YOUREBANNEDCREEP,
95 ":Connection from your host is refused on this server.");
99 tm = localtime((time_t*) &sb.st_mtime); /* NetBSD needs cast */
100 while (fbgets(line, sizeof(line) - 1, file)) {
101 char* end = line + strlen(line);
104 if ('\n' == *end || '\r' == *end)
109 send_reply(sptr, RPL_MOTD, line);
111 send_reply(sptr, SND_EXPLICIT | ERR_YOUREBANNEDCREEP,
112 ":Connection from your host is refused on this server.");
116 struct ConfItem* make_conf(void)
118 struct ConfItem* aconf;
120 aconf = (struct ConfItem*) MyMalloc(sizeof(struct ConfItem));
125 memset(aconf, 0, sizeof(struct ConfItem));
126 aconf->status = CONF_ILLEGAL;
127 aconf->ipnum.s_addr = INADDR_NONE;
131 void delist_conf(struct ConfItem *aconf)
133 if (aconf == GlobalConfList)
134 GlobalConfList = GlobalConfList->next;
136 struct ConfItem *bconf;
138 for (bconf = GlobalConfList; aconf != bconf->next; bconf = bconf->next)
140 bconf->next = aconf->next;
145 void free_conf(struct ConfItem *aconf)
147 Debug((DEBUG_DEBUG, "free_conf: %s %s %d",
148 aconf->host ? aconf->host : "*",
149 aconf->name ? aconf->name : "*",
151 if (aconf->dns_pending)
152 delete_resolver_queries(aconf);
155 memset(aconf->passwd, 0, strlen(aconf->passwd));
156 MyFree(aconf->passwd);
165 * detach_conf - Disassociate configuration from the client.
167 static void detach_conf(struct Client* cptr, struct ConfItem* aconf)
174 assert(0 < aconf->clients);
176 lp = &(cli_confs(cptr));
179 if ((*lp)->value.aconf == aconf) {
180 if (aconf->conn_class && (aconf->status & CONF_CLIENT_MASK) && ConfLinks(aconf) > 0)
183 assert(0 < aconf->clients);
184 if (0 == --aconf->clients && IsIllegal(aconf))
196 * conf_dns_callback - called when resolver query finishes
197 * if the query resulted in a successful search, hp will contain
198 * a non-null pointer, otherwise hp will be null.
199 * if successful save hp in the conf item it was called with
201 static void conf_dns_callback(void* vptr, struct DNSReply* reply)
203 struct ConfItem* aconf = (struct ConfItem*) vptr;
204 aconf->dns_pending = 0;
206 memcpy(&aconf->ipnum, reply->hp->h_addr, sizeof(struct in_addr));
210 * conf_dns_lookup - do a nameserver lookup of the conf host
211 * if the conf entry is currently doing a ns lookup do nothing, otherwise
212 * if the lookup returns a null pointer, set the conf dns_pending flag
214 static struct DNSReply* conf_dns_lookup(struct ConfItem* aconf)
216 struct DNSReply* dns_reply = 0;
217 if (!aconf->dns_pending) {
218 char buf[HOSTLEN + 1];
219 struct DNSQuery query;
221 query.callback = conf_dns_callback;
222 host_from_uh(buf, aconf->host, HOSTLEN);
225 if (0 == (dns_reply = gethost_byname(buf, &query)))
226 aconf->dns_pending = 1;
235 * Do (start) DNS lookups of all hostnames in the conf line and convert
236 * an IP addresses in a.b.c.d number for to IP#s.
238 static void lookup_confhost(struct ConfItem *aconf)
240 struct DNSReply* reply;
242 if (EmptyString(aconf->host) || EmptyString(aconf->name)) {
243 Debug((DEBUG_ERROR, "Host/server name error: (%s) (%s)",
244 aconf->host, aconf->name));
248 * Do name lookup now on hostnames given and store the
249 * ip numbers in conf structure.
251 if (IsDigit(*aconf->host)) {
253 * rfc 1035 sez host names may not start with a digit
254 * XXX - this has changed code needs to be updated
256 aconf->ipnum.s_addr = inet_addr(aconf->host);
257 if (INADDR_NONE == aconf->ipnum.s_addr) {
258 Debug((DEBUG_ERROR, "Host/server name error: (%s) (%s)",
259 aconf->host, aconf->name));
262 else if ((reply = conf_dns_lookup(aconf)))
263 memcpy(&aconf->ipnum, reply->hp->h_addr, sizeof(struct in_addr));
267 * conf_find_server - find a server by name or hostname
268 * returns a server conf item pointer if found, 0 otherwise
270 * NOTE: at some point when we don't have to scan the entire
271 * list it may be cheaper to look for server names and host
272 * names in separate loops (original code did it that way)
274 struct ConfItem* conf_find_server(const char* name)
276 struct ConfItem* conf;
279 for (conf = GlobalConfList; conf; conf = conf->next) {
280 if (CONF_SERVER == conf->status) {
282 * Check first servernames, then try hostnames.
283 * XXX - match returns 0 if there _is_ a match... guess they
284 * haven't decided what true is yet
286 if (0 == match(name, conf->name))
294 * conf_eval_crule - evaluate connection rules
295 * returns the name of the rule triggered if found, 0 otherwise
297 * Evaluate connection rules... If no rules found, allow the
298 * connect. Otherwise stop with the first true rule (ie: rules
299 * are ored together. Oper connects are effected only by D
300 * lines (CRULE_ALL) not d lines (CRULE_AUTO).
302 const char* conf_eval_crule(const char* name, int mask)
304 struct CRuleConf* p = cruleConfList;
307 for ( ; p; p = p->next) {
308 if (0 != (p->type & mask) && 0 == match(p->hostmask, name)) {
309 if (crule_eval(p->node))
317 * Remove all conf entries from the client except those which match
318 * the status field mask.
320 void det_confs_butmask(struct Client* cptr, int mask)
326 for (link = cli_confs(cptr); link; link = next) {
328 if ((link->value.aconf->status & mask) == 0)
329 detach_conf(cptr, link->value.aconf);
334 * check_limit_and_attach - check client limits and attach I:line
336 * Made it accept 1 charactor, and 2 charactor limits (0->99 now),
337 * and dislallow more than 255 people here as well as in ipcheck.
338 * removed the old "ONE" scheme too.
339 * -- Isomer 2000-06-22
341 static enum AuthorizationCheckResult
342 check_limit_and_attach(struct Client* cptr, struct ConfItem* aconf)
347 if (IsDigit(*aconf->passwd) && !aconf->passwd[1])
348 number = *aconf->passwd-'0';
349 else if (IsDigit(*aconf->passwd) && IsDigit(aconf->passwd[1]) &&
351 number = (*aconf->passwd-'0')*10+(aconf->passwd[1]-'0');
353 if (IPcheck_nr(cptr) > number)
354 return ACR_TOO_MANY_FROM_IP;
355 return attach_conf(cptr, aconf);
359 * Find the first (best) I line to attach.
361 enum AuthorizationCheckResult attach_iline(struct Client* cptr)
363 struct ConfItem* aconf;
366 static char uhost[HOSTLEN + USERLEN + 3];
367 static char fullname[HOSTLEN + 1];
368 struct hostent* hp = 0;
372 if (cli_dns_reply(cptr))
373 hp = cli_dns_reply(cptr)->hp;
375 for (aconf = GlobalConfList; aconf; aconf = aconf->next) {
376 if (aconf->status != CONF_CLIENT)
378 if (aconf->port && aconf->port != cli_listener(cptr)->port)
380 if (!aconf->host || !aconf->name)
383 for (i = 0, hname = hp->h_name; hname; hname = hp->h_aliases[i++]) {
384 ircd_strncpy(fullname, hname, HOSTLEN);
385 fullname[HOSTLEN] = '\0';
387 Debug((DEBUG_DNS, "a_il: %s->%s", cli_sockhost(cptr), fullname));
389 if (strchr(aconf->name, '@')) {
390 strcpy(uhost, cli_username(cptr));
395 strncat(uhost, fullname, sizeof(uhost) - 1 - strlen(uhost));
396 uhost[sizeof(uhost) - 1] = 0;
397 if (0 == match(aconf->name, uhost)) {
398 if (strchr(uhost, '@'))
399 cli_flags(cptr) |= FLAGS_DOID;
400 return check_limit_and_attach(cptr, aconf);
404 if (strchr(aconf->host, '@')) {
405 ircd_strncpy(uhost, cli_username(cptr), sizeof(uhost) - 2);
406 uhost[sizeof(uhost) - 2] = 0;
411 strncat(uhost, cli_sock_ip(cptr), sizeof(uhost) - 1 - strlen(uhost));
412 uhost[sizeof(uhost) - 1] = 0;
413 if (match(aconf->host, uhost))
415 if (strchr(uhost, '@'))
416 cli_flags(cptr) |= FLAGS_DOID;
418 return check_limit_and_attach(cptr, aconf);
420 return ACR_NO_AUTHORIZATION;
423 static int is_attached(struct ConfItem *aconf, struct Client *cptr)
427 for (lp = cli_confs(cptr); lp; lp = lp->next) {
428 if (lp->value.aconf == aconf)
437 * Associate a specific configuration entry to a *local*
438 * client (this is the one which used in accepting the
439 * connection). Note, that this automaticly changes the
440 * attachment if there was an old one...
442 enum AuthorizationCheckResult attach_conf(struct Client *cptr, struct ConfItem *aconf)
446 if (is_attached(aconf, cptr))
447 return ACR_ALREADY_AUTHORIZED;
448 if (IsIllegal(aconf))
449 return ACR_NO_AUTHORIZATION;
450 if ((aconf->status & (CONF_LOCOP | CONF_OPERATOR | CONF_CLIENT)) &&
451 ConfLinks(aconf) >= ConfMaxLinks(aconf) && ConfMaxLinks(aconf) > 0)
452 return ACR_TOO_MANY_IN_CLASS; /* Use this for printing error message */
454 lp->next = cli_confs(cptr);
455 lp->value.aconf = aconf;
456 cli_confs(cptr) = lp;
458 if (aconf->status & CONF_CLIENT_MASK)
463 const struct LocalConf* conf_get_local(void)
469 * attach_confs_byname
471 * Attach a CONF line to a client if the name passed matches that for
472 * the conf file (for non-C/N lines) or is an exact match (C/N lines
473 * only). The difference in behaviour is to stop C:*::* and N:*::*.
475 struct ConfItem* attach_confs_byname(struct Client* cptr, const char* name,
478 struct ConfItem* tmp;
479 struct ConfItem* first = NULL;
483 if (HOSTLEN < strlen(name))
486 for (tmp = GlobalConfList; tmp; tmp = tmp->next) {
487 if (0 != (tmp->status & statmask) && !IsIllegal(tmp)) {
488 assert(0 != tmp->name);
489 if (0 == match(tmp->name, name) || 0 == ircd_strcmp(tmp->name, name)) {
490 if (ACR_OK == attach_conf(cptr, tmp) && !first)
499 * Added for new access check meLazy
501 struct ConfItem* attach_confs_byhost(struct Client* cptr, const char* host,
504 struct ConfItem* tmp;
505 struct ConfItem* first = 0;
508 if (HOSTLEN < strlen(host))
511 for (tmp = GlobalConfList; tmp; tmp = tmp->next) {
512 if (0 != (tmp->status & statmask) && !IsIllegal(tmp)) {
513 assert(0 != tmp->host);
514 if (0 == match(tmp->host, host) || 0 == ircd_strcmp(tmp->host, host)) {
515 if (ACR_OK == attach_conf(cptr, tmp) && !first)
524 * find a conf entry which matches the hostname and has the same name.
526 struct ConfItem* find_conf_exact(const char* name, const char* user,
527 const char* host, int statmask)
529 struct ConfItem *tmp;
530 char userhost[USERLEN + HOSTLEN + 3];
533 ircd_snprintf(0, userhost, sizeof(userhost), "%s@%s", user, host);
535 ircd_strncpy(userhost, host, sizeof(userhost) - 1);
537 for (tmp = GlobalConfList; tmp; tmp = tmp->next) {
538 if (!(tmp->status & statmask) || !tmp->name || !tmp->host ||
539 0 != ircd_strcmp(tmp->name, name))
542 * Accept if the *real* hostname (usually sockecthost)
543 * socket host) matches *either* host or name field
544 * of the configuration.
546 if (match(tmp->host, userhost))
548 if (tmp->status & (CONF_OPERATOR | CONF_LOCOP)) {
549 if (tmp->clients < MaxLinks(tmp->conn_class))
560 struct ConfItem* find_conf_byname(struct SLink* lp, const char* name,
563 struct ConfItem* tmp;
566 if (HOSTLEN < strlen(name))
569 for (; lp; lp = lp->next) {
570 tmp = lp->value.aconf;
571 if (0 != (tmp->status & statmask)) {
572 assert(0 != tmp->name);
573 if (0 == ircd_strcmp(tmp->name, name) || 0 == match(tmp->name, name))
581 * Added for new access check meLazy
583 struct ConfItem* find_conf_byhost(struct SLink* lp, const char* host,
586 struct ConfItem* tmp = NULL;
589 if (HOSTLEN < strlen(host))
592 for (; lp; lp = lp->next) {
593 tmp = lp->value.aconf;
594 if (0 != (tmp->status & statmask)) {
595 assert(0 != tmp->host);
596 if (0 == match(tmp->host, host))
606 * Find a conf line using the IP# stored in it to search upon.
607 * Added 1/8/92 by Avalon.
609 struct ConfItem* find_conf_byip(struct SLink* lp, const char* ip,
612 struct ConfItem* tmp;
614 for (; lp; lp = lp->next) {
615 tmp = lp->value.aconf;
616 if (0 != (tmp->status & statmask)) {
617 if (0 == memcmp(&tmp->ipnum, ip, sizeof(struct in_addr)))
627 * - looks for a match on all given fields.
629 static struct ConfItem *find_conf_entry(struct ConfItem *aconf,
632 struct ConfItem *bconf;
635 mask &= ~CONF_ILLEGAL;
637 for (bconf = GlobalConfList; bconf; bconf = bconf->next) {
638 if (!(bconf->status & mask) || (bconf->port != aconf->port))
641 if ((EmptyString(bconf->host) && !EmptyString(aconf->host)) ||
642 (EmptyString(aconf->host) && !EmptyString(bconf->host)))
644 if (!EmptyString(bconf->host) && 0 != ircd_strcmp(bconf->host, aconf->host))
647 if ((EmptyString(bconf->passwd) && !EmptyString(aconf->passwd)) ||
648 (EmptyString(aconf->passwd) && !EmptyString(bconf->passwd)))
650 if (!EmptyString(bconf->passwd) && (!IsDigit(*bconf->passwd) || bconf->passwd[1])
651 && 0 != ircd_strcmp(bconf->passwd, aconf->passwd))
654 if ((EmptyString(bconf->name) && !EmptyString(aconf->name)) ||
655 (EmptyString(aconf->name) && !EmptyString(bconf->name)))
657 if (!EmptyString(bconf->name) && 0 != ircd_strcmp(bconf->name, aconf->name))
666 * If conf line is a class definition, create a class entry
667 * for it and make the conf_line illegal and delete it.
669 void conf_add_class(const char* const* fields, int count)
673 add_class(atoi(fields[1]), atoi(fields[2]), atoi(fields[3]),
674 atoi(fields[4]), atoi(fields[5]));
677 void conf_add_listener(const char* const* fields, int count)
685 if (count < 5 || EmptyString(fields[4]))
688 if (!EmptyString(fields[3])) {
689 const char* x = fields[3];
690 if ('S' == ToUpper(*x))
693 if ('H' == ToUpper(*x))
696 /* port vhost mask */
697 add_listener(atoi(fields[4]), fields[2], fields[1], is_server, is_hidden);
700 void conf_add_local(const char* const* fields, int count)
702 if (count < 6 || EmptyString(fields[1]) || EmptyString(fields[5])) {
703 log_write(LS_CONFIG, L_CRIT, 0, "Your M: line must have 6 fields!");
707 * these two can only be set the first time
709 if (0 == localConf.name) {
710 if (string_is_hostname(fields[1]))
711 DupString(localConf.name, fields[1]);
713 if (0 == localConf.numeric) {
714 localConf.numeric = atoi(fields[5]);
715 if (0 == localConf.numeric)
716 log_write(LS_CONFIG, L_WARNING, 0,
717 "Your M: line must have a Numeric value greater than 0");
720 * these two can be changed while the server is running
722 if (string_is_address(fields[2])) {
723 if (INADDR_NONE == (localConf.vhost_address.s_addr = inet_addr(fields[2])))
724 localConf.vhost_address.s_addr = INADDR_ANY;
726 MyFree(localConf.description);
727 DupString(localConf.description, fields[3]);
729 * XXX - shouldn't be setting these directly here
731 ircd_strncpy(cli_info(&me), fields[3], REALLEN);
732 set_virtual_host(localConf.vhost_address);
735 void conf_add_admin(const char* const* fields, int count)
738 * if you have one, it MUST have 3 lines
741 log_write(LS_CONFIG, L_CRIT, 0, "Your A: line must have 4 fields!");
744 MyFree(localConf.location1);
745 DupString(localConf.location1, fields[1]);
747 MyFree(localConf.location2);
748 DupString(localConf.location2, fields[2]);
750 MyFree(localConf.contact);
751 DupString(localConf.contact, fields[3]);
755 * conf_add_crule - Create expression tree from connect rule and add it
758 void conf_add_crule(const char* const* fields, int count, int type)
760 struct CRuleNode* node;
763 if (count < 4 || EmptyString(fields[1]) || EmptyString(fields[3]))
766 if ((node = crule_parse(fields[3]))) {
767 struct CRuleConf* p = (struct CRuleConf*) MyMalloc(sizeof(struct CRuleConf));
770 DupString(p->hostmask, fields[1]);
771 collapse(p->hostmask);
773 DupString(p->rule, fields[3]);
777 p->next = cruleConfList;
782 void conf_erase_crule_list(void)
784 struct CRuleConf* next;
785 struct CRuleConf* p = cruleConfList;
787 for ( ; p; p = next) {
789 crule_free(&p->node);
797 const struct CRuleConf* conf_get_crule_list(void)
799 return cruleConfList;
802 void conf_add_server(const char* const* fields, int count)
804 struct ServerConf* server;
808 * missing host, password, or alias?
810 if (count < 6 || EmptyString(fields[1]) || EmptyString(fields[2]) || EmptyString(fields[3]))
815 if (string_is_hostname(fields[1]))
816 addr.s_addr = INADDR_NONE;
817 else if (INADDR_NONE == (addr.s_addr = inet_addr(fields[1])))
820 server = (struct ServerConf*) MyMalloc(sizeof(struct ServerConf));
822 DupString(server->hostname, fields[1]);
823 DupString(server->passwd, fields[2]);
824 DupString(server->alias, fields[3]);
825 server->address.s_addr = addr.s_addr;
826 server->port = atoi(fields[4]);
827 server->dns_pending = 0;
828 server->connected = 0;
830 server->conn_class = find_class(atoi(fields[5]));
832 server->next = serverConfList;
833 serverConfList = server;
835 // if (INADDR_NONE == server->address.s_addr)
836 // lookup_confhost(server);
839 void conf_add_deny(const char* const* fields, int count, int ip_kill)
841 struct DenyConf* conf;
843 if (count < 4 || EmptyString(fields[1]) || EmptyString(fields[3]))
846 conf = (struct DenyConf*) MyMalloc(sizeof(struct DenyConf));
848 memset(conf, 0, sizeof(struct DenyConf));
850 if (fields[1][0] == '$' && fields[1][1] == 'R') {
851 DupString(conf->hostmask, fields[1] + 2);
852 conf->flags |= DENY_FLAGS_REALNAME;
854 DupString(conf->hostmask, fields[1]);
856 collapse(conf->hostmask);
858 if (!EmptyString(fields[2])) {
859 const char* p = fields[2];
861 conf->flags |= DENY_FLAGS_FILE;
864 DupString(conf->message, p);
866 DupString(conf->usermask, fields[3]);
867 collapse(conf->usermask);
871 * Here we use the same kludge as in listener.c to parse
872 * a.b.c.d, or a.b.c.*, or a.b.c.d/e.
878 c_class = sscanf(conf->hostmask, "%d.%d.%d.%d/%d",
879 &ad[0], &ad[1], &ad[2], &ad[3], &bits2);
881 conf->bits = c_class * 8;
886 sprintf_irc(ipname, "%d.%d.%d.%d", ad[0], ad[1], ad[2], ad[3]);
889 * This ensures endian correctness
891 conf->s_addr = inet_addr(ipname);
892 Debug((DEBUG_DEBUG, "IPkill: %s = %08x/%i (%08x)", ipname,
893 conf->s_addr, conf->bits, NETMASK(conf->bits)));
894 conf->flags |= DENY_FLAGS_IP;
896 conf->next = denyConfList;
900 void conf_erase_deny_list(void)
902 struct DenyConf* next;
903 struct DenyConf* p = denyConfList;
904 for ( ; p; p = next) {
914 const struct DenyConf* conf_get_deny_list(void)
920 * read_configuration_file
922 * Read configuration file.
924 * returns 0, if file cannot be opened
928 #define MAXCONFLINKS 150
930 int read_configuration_file(void)
932 enum { MAX_FIELDS = 15 };
940 struct ConfItem *aconf = 0;
943 const char* field_vector[MAX_FIELDS + 1];
945 Debug((DEBUG_DEBUG, "read_configuration_file: ircd.conf = %s", configfile));
946 if (0 == (file = fbopen(configfile, "r"))) {
950 feature_unmark(); /* unmark all features for resetting later */
952 while (fbgets(line, sizeof(line) - 1, file)) {
953 if ('#' == *line || IsSpace(*line))
956 if ((src = strchr(line, '\n')))
959 if (':' != line[1]) {
960 Debug((DEBUG_ERROR, "Bad config line: %s", line));
961 sendto_opmask_butone(0, SNO_OLDSNO,"Bad Config line");
966 * do escapes, quoting, comments, and field breakup in place
967 * in one pass with a poor mans state machine
969 field_vector[0] = line;
973 for (src = line, dest = line; *src; ) {
1028 field_vector[field_count++] = dest;
1029 if (field_count > MAX_FIELDS)
1045 if (field_count < 2 || EmptyString(field_vector[0]))
1051 aconf = make_conf();
1053 switch (*field_vector[0]) {
1054 case 'A': /* Name, e-mail address of administrator */
1055 case 'a': /* of this server. CONF_ADMIN */
1056 conf_add_admin(field_vector, field_count);
1057 aconf->status = CONF_ILLEGAL;
1059 case 'C': /* Server where I should try to connect */
1060 case 'c': /* in case of lp failures */
1062 aconf->status = CONF_SERVER;
1065 case 'D': /* CONF_CRULEALL */
1066 conf_add_crule(field_vector, field_count, CRULE_ALL);
1067 aconf->status = CONF_ILLEGAL;
1069 /* Connect rule - autos only */
1070 case 'd': /* CONF_CRULEAUTO */
1071 conf_add_crule(field_vector, field_count, CRULE_AUTO);
1072 aconf->status = CONF_ILLEGAL;
1074 case 'F': /* Feature line */
1076 feature_set(0, &field_vector[1], field_count - 1);
1077 aconf->status = CONF_ILLEGAL;
1079 case 'H': /* Hub server line */
1081 aconf->status = CONF_HUB;
1083 case 'I': /* Just plain normal irc client trying */
1084 case 'i': /* to connect me */
1085 aconf->status = CONF_CLIENT;
1087 case 'K': /* Kill user line on irc.conf */
1088 conf_add_deny(field_vector, field_count, 0);
1089 aconf->status = CONF_ILLEGAL;
1091 case 'k': /* Kill user line based on IP in ircd.conf */
1092 conf_add_deny(field_vector, field_count, 1);
1093 aconf->status = CONF_ILLEGAL;
1095 /* Operator. Line should contain at least */
1096 /* password and host where connection is */
1097 case 'L': /* guaranteed leaf server */
1099 aconf->status = CONF_LEAF;
1101 /* Me. Host field is name used for this host */
1102 /* and port number is the number of the port */
1104 case 'm': /* CONF_ME */
1105 conf_add_local(field_vector, field_count);
1106 aconf->status = CONF_ILLEGAL;
1109 aconf->status = CONF_OPERATOR;
1111 /* Local Operator, (limited privs --SRB) */
1113 aconf->status = CONF_LOCOP;
1115 case 'P': /* listen port line */
1116 case 'p': /* CONF_LISTEN_PORT */
1117 conf_add_listener(field_vector, field_count);
1118 aconf->status = CONF_ILLEGAL;
1120 case 'T': /* print out different motd's */
1121 case 't': /* based on hostmask - CONF_TLINES */
1122 motd_add(field_vector[1], field_vector[2]);
1123 aconf->status = CONF_ILLEGAL;
1125 case 'U': /* Underworld server, allowed to hack modes */
1126 case 'u': /* *Every* server on the net must define the same !!! */
1127 aconf->status = CONF_UWORLD;
1130 case 'y': /* CONF_CLASS */
1131 conf_add_class(field_vector, field_count);
1132 aconf->status = CONF_ILLEGAL;
1135 Debug((DEBUG_ERROR, "Error in config file: %s", line));
1136 sendto_opmask_butone(0, SNO_OLDSNO, "Unknown prefix in config file: %c",
1138 aconf->status = CONF_ILLEGAL;
1141 if (IsIllegal(aconf))
1144 if (!EmptyString(field_vector[1]))
1145 DupString(aconf->host, field_vector[1]);
1147 if (!EmptyString(field_vector[2]))
1148 DupString(aconf->passwd, field_vector[2]);
1150 if (field_count > 3 && !EmptyString(field_vector[3]))
1151 DupString(aconf->name, field_vector[3]);
1153 if (field_count > 4 && !EmptyString(field_vector[4]))
1154 aconf->port = atoi(field_vector[4]);
1156 if (field_count > 5 && !EmptyString(field_vector[5]))
1157 aconf->conn_class = find_class(atoi(field_vector[5]));
1160 * Associate each conf line with a class by using a pointer
1161 * to the correct class record. -avalon
1163 if (aconf->status & CONF_CLIENT_MASK) {
1164 if (aconf->conn_class == 0)
1165 aconf->conn_class = find_class(0);
1167 if (aconf->status & CONF_CLIENT) {
1168 struct ConfItem *bconf;
1170 if ((bconf = find_conf_entry(aconf, aconf->status))) {
1172 bconf->status &= ~CONF_ILLEGAL;
1173 if (aconf->status == CONF_CLIENT) {
1175 * copy the password field in case it changed
1177 MyFree(bconf->passwd);
1178 bconf->passwd = aconf->passwd;
1181 ConfLinks(bconf) -= bconf->clients;
1182 bconf->conn_class = aconf->conn_class;
1183 if (bconf->conn_class)
1184 ConfLinks(bconf) += bconf->clients;
1190 if (aconf->status & CONF_SERVER) {
1191 if (ccount > MAXCONFLINKS || !aconf->host || strchr(aconf->host, '*') ||
1192 strchr(aconf->host, '?') || !aconf->name)
1195 if (aconf->status & (CONF_LOCOP | CONF_OPERATOR)) {
1196 if (!strchr(aconf->host, '@')) {
1198 int len = 3; /* *@\0 = 3 */
1200 len += strlen(aconf->host);
1201 newhost = (char*) MyMalloc(len);
1202 assert(0 != newhost);
1203 ircd_snprintf(0, newhost, len, "*@%s", aconf->host);
1204 MyFree(aconf->host);
1205 aconf->host = newhost;
1208 if (aconf->status & CONF_SERVER) {
1209 if (EmptyString(aconf->passwd))
1211 lookup_confhost(aconf);
1214 * Juped nicks are listed in the 'password' field of U:lines,
1215 * the list is comma separated and might be empty and/or contain
1216 * empty elements... the only limit is that it MUST be shorter
1217 * than 512 chars, or they will be cutted out :)
1219 if ((aconf->status == CONF_UWORLD) && (aconf->passwd) && (*aconf->passwd))
1220 addNickJupes(aconf->passwd);
1222 collapse(aconf->host);
1223 collapse(aconf->name);
1224 Debug((DEBUG_NOTICE,
1225 "Read Init: (%d) (%s) (%s) (%s) (%u) (%p)",
1226 aconf->status, aconf->host, aconf->passwd,
1227 aconf->name, aconf->port, aconf->conn_class));
1228 aconf->next = GlobalConfList;
1229 GlobalConfList = aconf;
1235 nextping = nextconnect = CurrentTime;
1236 feature_mark(); /* reset unmarked features */
1243 * Actual REHASH service routine. Called with sig == 0 if it has been called
1244 * as a result of an operator issuing this command, else assume it has been
1245 * called as a result of the server receiving a HUP signal.
1247 int rehash(struct Client *cptr, int sig)
1249 struct ConfItem** tmp = &GlobalConfList;
1250 struct ConfItem* tmp2;
1251 struct Client* acptr;
1257 sendto_opmask_butone(0, SNO_OLDSNO,
1258 "Got signal SIGHUP, reloading ircd conf. file");
1260 while ((tmp2 = *tmp)) {
1261 if (tmp2->clients) {
1263 * Configuration entry is still in use by some
1264 * local clients, cannot delete it--mark it so
1265 * that it will be deleted when the last client
1268 if (CONF_CLIENT == (tmp2->status & CONF_CLIENT))
1274 tmp2->status |= CONF_ILLEGAL;
1281 conf_erase_crule_list();
1282 conf_erase_deny_list();
1286 * delete the juped nicks list
1291 flush_resolver_cache();
1293 class_mark_delete();
1294 mark_listeners_closing();
1296 read_configuration_file();
1298 log_reopen(); /* reopen log files */
1301 class_delete_marked(); /* unless it fails */
1304 * Flush out deleted I and P lines although still in use.
1306 for (tmp = &GlobalConfList; (tmp2 = *tmp);) {
1307 if (CONF_ILLEGAL == (tmp2->status & CONF_ILLEGAL)) {
1316 for (i = 0; i <= HighestFd; i++) {
1317 if ((acptr = LocalClientArray[i])) {
1318 assert(!IsMe(acptr));
1319 if (IsServer(acptr)) {
1320 det_confs_butmask(acptr,
1321 ~(CONF_HUB | CONF_LEAF | CONF_UWORLD | CONF_ILLEGAL));
1322 attach_confs_byname(acptr, cli_name(acptr),
1323 CONF_HUB | CONF_LEAF | CONF_UWORLD);
1325 /* Because admin's are getting so uppity about people managing to
1326 * get past K/G's etc, we'll "fix" the bug by actually explaining
1329 if ((found_g = find_kill(acptr))) {
1330 sendto_opmask_butone(0, found_g == -2 ? SNO_GLINE : SNO_OPERKILL,
1331 found_g == -2 ? "G-line active for %s%s" :
1332 "K-line active for %s%s",
1333 IsUnknown(acptr) ? "Unregistered Client ":"",
1334 get_client_name(acptr, HIDE_IP));
1335 if (exit_client(cptr, acptr, &me, found_g == -2 ? "G-lined" :
1336 "K-lined") == CPTR_KILLED)
1347 * Read configuration file.
1349 * returns 0, if file cannot be opened
1355 if (read_configuration_file()) {
1357 * make sure we're sane to start if the config
1358 * file read didn't get everything we need.
1359 * XXX - should any of these abort the server?
1360 * TODO: add warning messages
1362 if (0 == localConf.name || 0 == localConf.numeric)
1365 if (0 == localConf.location1)
1366 DupString(localConf.location1, "");
1367 if (0 == localConf.location2)
1368 DupString(localConf.location2, "");
1369 if (0 == localConf.contact)
1370 DupString(localConf.contact, "");
1382 * 0: Client may continue to try and connect
1383 * -1: Client was K/k:'d - sideeffect: reason was sent.
1384 * -2: Client was G/g:'d - sideeffect: reason was sent.
1386 * Client may have been sent a reason why they are denied, as above.
1388 int find_kill(struct Client *cptr)
1392 const char* realname;
1393 struct DenyConf* deny;
1394 struct Gline* agline = NULL;
1398 if (!cli_user(cptr))
1401 host = cli_sockhost(cptr);
1402 name = cli_user(cptr)->username;
1403 realname = cli_info(cptr);
1405 assert(strlen(host) <= HOSTLEN);
1406 assert((name ? strlen(name) : 0) <= HOSTLEN);
1407 assert((realname ? strlen(realname) : 0) <= REALLEN);
1409 /* 2000-07-14: Rewrote this loop for massive speed increases.
1412 for (deny = denyConfList; deny; deny = deny->next) {
1413 if (0 != match(deny->usermask, name))
1416 if (EmptyString(deny->hostmask))
1419 if (deny->flags & DENY_FLAGS_REALNAME) { /* K: by real name */
1420 if (0 == match(deny->hostmask, realname))
1422 } else if (deny->flags & DENY_FLAGS_IP) { /* k: by IP */
1423 Debug((DEBUG_DEBUG, "ip: %08x network: %08x/%i mask: %08x",
1424 cli_ip(cptr).s_addr, deny->s_addr, deny->bits, NETMASK(deny->bits)));
1425 if ((cli_ip(cptr).s_addr & NETMASK(deny->bits)) == deny->s_addr)
1428 else if (0 == match(deny->hostmask, host))
1432 if (EmptyString(deny->message))
1433 send_reply(cptr, SND_EXPLICIT | ERR_YOUREBANNEDCREEP,
1434 ":Connection from your host is refused on this server.");
1436 if (deny->flags & DENY_FLAGS_FILE)
1437 killcomment(cptr, deny->message);
1439 send_reply(cptr, SND_EXPLICIT | ERR_YOUREBANNEDCREEP, ":%s.", deny->message);
1442 else if ((agline = gline_lookup(cptr, 0)) && GlineIsActive(agline)) {
1444 * find active glines
1445 * added a check against the user's IP address to find_gline() -Kev
1447 send_reply(cptr, SND_EXPLICIT | ERR_YOUREBANNEDCREEP, ":%s.", GlineReason(agline));
1450 agline = 0; /* if a gline was found, it was inactive */
1461 * Ordinary client access check. Look for conf lines which have the same
1462 * status as the flags passed.
1464 enum AuthorizationCheckResult conf_check_client(struct Client *cptr)
1466 enum AuthorizationCheckResult acr = ACR_OK;
1470 if ((acr = attach_iline(cptr))) {
1471 Debug((DEBUG_DNS, "ch_cl: access denied: %s[%s]",
1472 cli_name(cptr), cli_sockhost(cptr)));
1481 * Check access for a server given its name (passed in cptr struct).
1482 * Must check for all C/N lines which have a name which matches the
1483 * name given and a host which matches. A host alias which is the
1484 * same as the server name is also acceptable in the host field of a
1489 * -1 = Access denied
1492 int conf_check_server(struct Client *cptr)
1494 struct ConfItem* c_conf = NULL;
1497 Debug((DEBUG_DNS, "sv_cl: check access for %s[%s]",
1498 cli_name(cptr), cli_sockhost(cptr)));
1500 if (IsUnknown(cptr) && !attach_confs_byname(cptr, cli_name(cptr), CONF_SERVER)) {
1501 Debug((DEBUG_DNS, "No C/N lines for %s", cli_sockhost(cptr)));
1504 lp = cli_confs(cptr);
1506 * We initiated this connection so the client should have a C and N
1507 * line already attached after passing through the connect_server()
1510 if (IsConnecting(cptr) || IsHandshake(cptr)) {
1511 c_conf = find_conf_byname(lp, cli_name(cptr), CONF_SERVER);
1513 sendto_opmask_butone(0, SNO_OLDSNO, "Connect Error: lost C:line for %s",
1515 det_confs_butmask(cptr, 0);
1523 if (cli_dns_reply(cptr)) {
1525 struct hostent* hp = cli_dns_reply(cptr)->hp;
1526 const char* name = hp->h_name;
1528 * If we are missing a C or N line from above, search for
1529 * it under all known hostnames we have for this ip#.
1531 for (i = 0; name; name = hp->h_aliases[i++]) {
1532 if ((c_conf = find_conf_byhost(lp, name, CONF_SERVER))) {
1533 ircd_strncpy(cli_sockhost(cptr), name, HOSTLEN);
1538 for (i = 0; hp->h_addr_list[i]; i++) {
1539 if ((c_conf = find_conf_byip(lp, hp->h_addr_list[i], CONF_SERVER)))
1546 * Check for C lines with the hostname portion the ip number
1547 * of the host the server runs on. This also checks the case where
1548 * there is a server connecting from 'localhost'.
1550 c_conf = find_conf_byhost(lp, cli_sockhost(cptr), CONF_SERVER);
1554 * Attach by IP# only if all other checks have failed.
1555 * It is quite possible to get here with the strange things that can
1556 * happen when using DNS in the way the irc server does. -avalon
1559 c_conf = find_conf_byip(lp, (const char*) &(cli_ip(cptr)), CONF_SERVER);
1561 * detach all conf lines that got attached by attach_confs()
1563 det_confs_butmask(cptr, 0);
1565 * if no C or no N lines, then deny access
1568 Debug((DEBUG_DNS, "sv_cl: access denied: %s[%s@%s]",
1569 cli_name(cptr), cli_username(cptr), cli_sockhost(cptr)));
1572 ircd_strncpy(cli_name(cptr), c_conf->name, HOSTLEN);
1574 * attach the C and N lines to the client structure for later use.
1576 attach_conf(cptr, c_conf);
1577 attach_confs_byname(cptr, cli_name(cptr), CONF_HUB | CONF_LEAF | CONF_UWORLD);
1579 if (INADDR_NONE == c_conf->ipnum.s_addr)
1580 c_conf->ipnum.s_addr = cli_ip(cptr).s_addr;
1582 Debug((DEBUG_DNS, "sv_cl: access ok: %s[%s]", cli_name(cptr), cli_sockhost(cptr)));
projects / ircu2.10.12-pk.git / blob