0
0
Fork 0
mirror of https://github.com/matrix-construct/construct synced 2024-12-11 08:02:59 +01:00
construct/ircd/s_serv.cc

1290 lines
36 KiB
C++
Raw Normal View History

/*
* ircd-ratbox: A slightly useful ircd.
* s_serv.c: Server related functions.
*
* Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
* Copyright (C) 1996-2002 Hybrid Development Team
* Copyright (C) 2002-2005 ircd-ratbox development team
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
* USA
*/
#ifdef HAVE_LIBCRYPTO
#include <openssl/rsa.h>
#endif
2016-08-13 05:05:54 +02:00
namespace ircd {
int MaxConnectionCount = 1;
int MaxClientCount = 1;
int refresh_user_links = 0;
static char buf[BUFSIZE];
/*
* list of recognized server capabilities. "TS" is not on the list
* because all servers that we talk to already do TS, and the kludged
* extra argument to "PASS" takes care of checking that. -orabidoo
*/
capability::index serv_capindex {"server capabilities"};
capability::index cli_capindex {"client capabilities"};
unsigned int CAP_CAP;
unsigned int CAP_QS;
unsigned int CAP_EX;
unsigned int CAP_CHW;
unsigned int CAP_IE;
unsigned int CAP_KLN;
unsigned int CAP_ZIP;
unsigned int CAP_KNOCK;
unsigned int CAP_TB;
unsigned int CAP_UNKLN;
unsigned int CAP_CLUSTER;
unsigned int CAP_ENCAP;
unsigned int CAP_TS6;
unsigned int CAP_SERVICE;
unsigned int CAP_RSFNC;
unsigned int CAP_SAVE;
unsigned int CAP_EUID;
unsigned int CAP_EOPMOD;
unsigned int CAP_BAN;
unsigned int CAP_MLOCK;
unsigned int CLICAP_MULTI_PREFIX;
unsigned int CLICAP_ACCOUNT_NOTIFY;
unsigned int CLICAP_EXTENDED_JOIN;
unsigned int CLICAP_AWAY_NOTIFY;
unsigned int CLICAP_USERHOST_IN_NAMES;
unsigned int CLICAP_CAP_NOTIFY;
unsigned int CLICAP_CHGHOST;
2016-02-27 09:48:37 +01:00
unsigned int CLICAP_ECHO_MESSAGE;
/*
* initialize our builtin capability table. --nenolod
*/
void
init_builtin_capabs(void)
{
/* These two are not set via CAPAB/GCAP keywords. */
CAP_CAP = serv_capindex.put_anonymous();
CAP_TS6 = serv_capindex.put_anonymous();
CAP_QS = serv_capindex.put("QS", NULL);
CAP_EX = serv_capindex.put("EX", NULL);
CAP_CHW = serv_capindex.put("CHW", NULL);
CAP_IE = serv_capindex.put("IE", NULL);
CAP_KLN = serv_capindex.put("KLN", NULL);
CAP_KNOCK = serv_capindex.put("KNOCK", NULL);
CAP_ZIP = serv_capindex.put("ZIP", NULL);
CAP_TB = serv_capindex.put("TB", NULL);
CAP_UNKLN = serv_capindex.put("UNKLN", NULL);
CAP_CLUSTER = serv_capindex.put("CLUSTER", NULL);
CAP_ENCAP = serv_capindex.put("ENCAP", NULL);
CAP_SERVICE = serv_capindex.put("SERVICES", NULL);
CAP_RSFNC = serv_capindex.put("RSFNC", NULL);
CAP_SAVE = serv_capindex.put("SAVE", NULL);
CAP_EUID = serv_capindex.put("EUID", NULL);
CAP_EOPMOD = serv_capindex.put("EOPMOD", NULL);
CAP_BAN = serv_capindex.put("BAN", NULL);
CAP_MLOCK = serv_capindex.put("MLOCK", NULL);
serv_capindex.require("QS");
serv_capindex.require("EX");
serv_capindex.require("IE");
serv_capindex.require("ENCAP");
CLICAP_MULTI_PREFIX = cli_capindex.put("multi-prefix", NULL);
CLICAP_ACCOUNT_NOTIFY = cli_capindex.put("account-notify", NULL);
CLICAP_EXTENDED_JOIN = cli_capindex.put("extended-join", NULL);
CLICAP_AWAY_NOTIFY = cli_capindex.put("away-notify", NULL);
CLICAP_USERHOST_IN_NAMES = cli_capindex.put("userhost-in-names", NULL);
CLICAP_CAP_NOTIFY = cli_capindex.put("cap-notify", NULL);
CLICAP_CHGHOST = cli_capindex.put("chghost", NULL);
CLICAP_ECHO_MESSAGE = cli_capindex.put("echo-message", NULL);
}
static CNCB serv_connect_callback;
static CNCB serv_connect_ssl_callback;
static client::SSL_OPEN_CB serv_connect_ssl_open_callback;
/*
* hunt_server - Do the basic thing in delivering the message (command)
* across the relays to the specific server (server) for
* actions.
*
* Note: The command is a format string and *MUST* be
* of prefixed style (e.g. ":%s COMMAND %s ...").
* Command can have only max 8 parameters.
*
* server parv[server] is the parameter identifying the
* target server.
*
* *WARNING*
* parv[server] is replaced with the pointer to the
* real servername from the matched client (I'm lazy
* now --msa).
*
* returns: (see #defines)
*/
int
hunt_server(client::client *client_p, client::client *source_p,
const char *command, int server, int parc, const char *parv[])
{
client::client *target_p;
int wilds;
2008-04-01 22:41:52 +02:00
rb_dlink_node *ptr;
const char *old;
char *new_;
/*
* Assume it's me, if no server
*/
if(parc <= server || EmptyString(parv[server]) ||
match(parv[server], me.name) || (strcmp(parv[server], me.id) == 0))
return (HUNTED_ISME);
new_ = LOCAL_COPY(parv[server]);
/*
* These are to pickup matches that would cause the following
* message to go in the wrong direction while doing quick fast
* non-matching lookups.
*/
2016-08-23 04:33:36 +02:00
if(my(*source_p))
target_p = find_named_client(new_);
else
target_p = find_client(new_);
if(target_p)
2016-08-23 04:33:36 +02:00
if(target_p->from == source_p->from && !my_connect(*target_p))
target_p = NULL;
collapse(new_);
wilds = (strchr(new_, '?') || strchr(new_, '*'));
/*
* Again, if there are no wild cards involved in the server
* name, use the hash lookup
*/
if(!target_p && wilds)
{
RB_DLINK_FOREACH(ptr, global_serv_list.head)
{
if(match(new_, ((client::client *) (ptr->data))->name))
{
target_p = (client::client *)ptr->data;
break;
}
}
}
2016-08-23 04:33:36 +02:00
if(target_p && !is_registered(*target_p))
target_p = NULL;
if(target_p)
{
2016-08-23 04:33:36 +02:00
if(is_me(*target_p) || my(*target_p))
return HUNTED_ISME;
old = parv[server];
parv[server] = get_id(target_p, target_p);
sendto_one(target_p, command, get_id(source_p, target_p),
parv[1], parv[2], parv[3], parv[4], parv[5], parv[6], parv[7], parv[8]);
parv[server] = old;
return (HUNTED_PASS);
}
2016-08-23 04:33:36 +02:00
if(my(*source_p) || !rfc1459::is_digit(parv[server][0]))
sendto_one_numeric(source_p, ERR_NOSUCHSERVER,
form_str(ERR_NOSUCHSERVER), parv[server]);
return (HUNTED_NOSUCH);
}
/*
* try_connections - scan through configuration and try new connections.
* Returns the calendar time when the next call to this
* function should be made latest. (No harm done if this
* is called earlier or later...)
*/
void
try_connections(void *unused)
{
client::client *client_p;
struct server_conf *server_p = NULL;
struct server_conf *tmp_p;
struct Class *cltmp;
2008-04-01 22:41:52 +02:00
rb_dlink_node *ptr;
bool connecting = false;
int confrq = 0;
time_t next = 0;
2008-04-01 22:43:10 +02:00
RB_DLINK_FOREACH(ptr, server_conf_list.head)
{
tmp_p = (server_conf *)ptr->data;
if(ServerConfIllegal(tmp_p) || !ServerConfAutoconn(tmp_p))
continue;
/* don't allow ssl connections if ssl isn't setup */
if(ServerConfSSL(tmp_p) && (!ircd_ssl_ok || !get_ssld_count()))
continue;
cltmp = tmp_p->_class;
/*
* Skip this entry if the use of it is still on hold until
* future. Otherwise handle this entry (and set it on hold
* until next time). Will reset only hold times, if already
* made one successfull connection... [this algorithm is
* a bit fuzzy... -- msa >;) ]
*/
2008-04-02 01:53:20 +02:00
if(tmp_p->hold > rb_current_time())
{
if(next > tmp_p->hold || next == 0)
next = tmp_p->hold;
continue;
}
confrq = get_con_freq(cltmp);
2008-04-02 01:53:20 +02:00
tmp_p->hold = rb_current_time() + confrq;
/*
* Found a CONNECT config with port specified, scan clients
* and see if this server is already connected?
*/
client_p = find_server(NULL, tmp_p->name);
if(!client_p && (CurrUsers(cltmp) < MaxUsers(cltmp)) && !connecting)
{
server_p = tmp_p;
/* We connect only one at time... */
connecting = true;
}
if((next > tmp_p->hold) || (next == 0))
next = tmp_p->hold;
}
/* TODO: change this to set active flag to 0 when added to event! --Habeeb */
if(GlobalSetOptions.autoconn == 0)
return;
if(!connecting)
return;
/* move this connect entry to end.. */
2008-04-01 22:41:52 +02:00
rb_dlinkDelete(&server_p->node, &server_conf_list);
rb_dlinkAddTail(server_p, &server_p->node, &server_conf_list);
/*
* We used to only print this if serv_connect() actually
2008-04-01 22:38:40 +02:00
* suceeded, but since rb_tcp_connect() can call the callback
* immediately if there is an error, we were getting error messages
* in the wrong order. SO, we just print out the activated line,
* and let serv_connect() / serv_connect_callback() print an
* error afterwards if it fails.
* -- adrian
*/
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, L_ALL,
"Connection to %s activated",
server_p->name);
serv_connect(server_p, 0);
}
int
check_server(const char *name, client::client *client_p)
{
struct server_conf *server_p = NULL;
struct server_conf *tmp_p;
2008-04-01 22:41:52 +02:00
rb_dlink_node *ptr;
int error = -1;
2013-02-02 00:54:32 +01:00
const char *encr;
bool name_matched = false;
bool host_matched = false;
bool certfp_failed = false;
s_assert(NULL != client_p);
if(client_p == NULL)
return error;
if(!(client_p->localClient->passwd))
return -2;
if(strlen(name) > HOSTLEN)
return -4;
2008-04-01 22:43:10 +02:00
RB_DLINK_FOREACH(ptr, server_conf_list.head)
{
struct rb_sockaddr_storage client_addr;
tmp_p = (server_conf *)ptr->data;
if(ServerConfIllegal(tmp_p))
continue;
if(!match(tmp_p->name, name))
continue;
name_matched = true;
if(rb_inet_pton_sock(client_p->sockhost, (struct sockaddr *)&client_addr) <= 0)
SET_SS_FAMILY(&client_addr, AF_UNSPEC);
if((tmp_p->connect_host && match(tmp_p->connect_host, client_p->host))
|| (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect4)
&& comp_with_mask_sock((struct sockaddr *)&client_addr,
(struct sockaddr *)&tmp_p->connect4, 32))
#ifdef RB_IPV6
|| (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect6)
&& comp_with_mask_sock((struct sockaddr *)&client_addr,
(struct sockaddr *)&tmp_p->connect6, 128))
#endif
)
{
host_matched = true;
if(tmp_p->passwd)
{
if(ServerConfEncrypted(tmp_p))
{
2013-02-02 00:54:32 +01:00
encr = rb_crypt(client_p->localClient->passwd,
tmp_p->passwd);
if(encr != NULL && !strcmp(tmp_p->passwd, encr))
{
server_p = tmp_p;
break;
}
else
continue;
}
else if(strcmp(tmp_p->passwd, client_p->localClient->passwd))
continue;
}
if(tmp_p->certfp)
{
if(!client_p->certfp || rb_strcasecmp(tmp_p->certfp, client_p->certfp) != 0) {
certfp_failed = true;
continue;
}
}
server_p = tmp_p;
break;
}
}
if(server_p == NULL)
{
/* return the most specific error */
if(certfp_failed)
error = -6;
else if(host_matched)
error = -2;
else if(name_matched)
error = -3;
return error;
}
if(ServerConfSSL(server_p) && client_p->localClient->ssl_ctl == NULL)
{
return -5;
}
attach_server_conf(client_p, server_p);
/* clear ZIP/TB if they support but we dont want them */
#ifdef HAVE_LIBZ
if(!ServerConfCompressed(server_p))
#endif
ClearCap(client_p, CAP_ZIP);
if(!ServerConfTb(server_p))
ClearCap(client_p, CAP_TB);
return 0;
}
/*
* send_capabilities
*
* inputs - Client pointer to send to
* - int flag of capabilities that this server has
* output - NONE
* side effects - send the CAPAB line to a server -orabidoo
*/
void
send_capabilities(client::client *client_p, unsigned int cap_can_send)
{
sendto_one(client_p, "CAPAB :%s", serv_capindex.list(cap_can_send).c_str());
}
static void
burst_ban(client::client *client_p)
{
rb_dlink_node *ptr;
struct ConfItem *aconf;
const char *type, *oper;
/* +5 for !,@,{,} and null */
char operbuf[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
char *p;
size_t melen;
melen = strlen(me.name);
RB_DLINK_FOREACH(ptr, prop_bans.head)
{
aconf = (ConfItem *)ptr->data;
/* Skip expired stuff. */
if(aconf->lifetime < rb_current_time())
continue;
switch(aconf->status & ~CONF_ILLEGAL)
{
case CONF_KILL: type = "K"; break;
case CONF_DLINE: type = "D"; break;
case CONF_XLINE: type = "X"; break;
case CONF_RESV_NICK: type = "R"; break;
case CONF_RESV_CHANNEL: type = "R"; break;
default:
continue;
}
oper = aconf->info.oper;
if(aconf->flags & CONF_FLAGS_MYOPER)
{
/* Our operator{} names may not be meaningful
* to other servers, so rewrite to our server
* name.
*/
rb_strlcpy(operbuf, aconf->info.oper, sizeof buf);
p = strrchr(operbuf, '{');
if (p != NULL &&
operbuf + sizeof operbuf - p > (ptrdiff_t)(melen + 2))
{
memcpy(p + 1, me.name, melen);
p[melen + 1] = '}';
p[melen + 2] = '\0';
oper = operbuf;
}
}
sendto_one(client_p, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
me.id,
type,
aconf->user ? aconf->user : "*", aconf->host,
(unsigned long)aconf->created,
(int)(aconf->hold - aconf->created),
(int)(aconf->lifetime - aconf->created),
oper,
aconf->passwd,
aconf->spasswd ? "|" : "",
aconf->spasswd ? aconf->spasswd : "");
}
}
/* burst_modes_TS6()
*
* input - client to burst to, channel name, list to burst, mode flag
* output -
* side effects - client is sent a list of +b, +e, or +I modes
*/
static void
burst_modes_TS6(client::client &client,
2016-08-19 07:58:17 +02:00
chan::chan &chan,
chan::list &list,
const char &flag)
{
2016-08-19 07:58:17 +02:00
auto mlen(sprintf(buf, ":%s BMASK %ld %s %c :", me.id, long(chan.channelts), chan.name.c_str(), flag));
auto cur_len(mlen);
auto t(buf + mlen);
for (const auto &ban : list)
{
2016-08-19 07:58:17 +02:00
const auto &mask(ban.banstr);
const auto &forward(ban.forward);
const auto tlen(mask.size() + 1 + (forward.empty()? 0 : forward.size() + 1));
2016-08-19 07:58:17 +02:00
// uh oh
if (cur_len + tlen > BUFSIZE - 3)
{
2016-08-19 07:58:17 +02:00
// the one we're trying to send doesnt fit at all!
if(cur_len == mlen)
{
s_assert(0);
continue;
}
/* chop off trailing space and send.. */
*(t-1) = '\0';
2016-08-19 07:58:17 +02:00
sendto_one(&client, "%s", buf);
cur_len = mlen;
t = buf + mlen;
}
2016-08-19 07:58:17 +02:00
if (forward.size())
sprintf(t, "%s$%s ", mask.c_str(), forward.c_str());
else
2016-08-19 07:58:17 +02:00
sprintf(t, "%s ", mask.c_str());
t += tlen;
cur_len += tlen;
}
/* cant ever exit the loop above without having modified buf,
* chop off trailing space and send.
*/
*(t-1) = '\0';
2016-08-19 07:58:17 +02:00
sendto_one(&client, "%s", buf);
}
/*
* burst_TS6
*
* inputs - client (server) to send nick towards
* - client to send nick for
* output - NONE
* side effects - NICK message is sent towards given client_p
*/
static void
burst_TS6(client::client *client_p)
{
client::client *target_p;
chan::chan *chptr;
chan::membership *msptr;
hook_data_client hclientinfo;
hook_data_channel hchaninfo;
2008-04-01 22:41:52 +02:00
rb_dlink_node *ptr;
rb_dlink_node *uptr;
char *t;
int tlen, mlen;
int cur_len = 0;
hclientinfo.client = hchaninfo.client = client_p;
2008-04-01 22:43:10 +02:00
RB_DLINK_FOREACH(ptr, global_client_list.head)
{
char ubuf[BUFSIZE];
target_p = (client::client *)ptr->data;
2016-08-23 04:33:36 +02:00
if(!is_person(*target_p))
continue;
delta(umode::table, 0, target_p->mode, ubuf);
2009-01-16 23:11:11 +01:00
if(IsCapable(client_p, CAP_EUID))
sendto_one(client_p, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
target_p->servptr->id, target_p->name,
target_p->hopcount + 1,
(long) target_p->tsinfo, ubuf,
target_p->username, target_p->host,
2016-08-23 04:33:36 +02:00
is_ip_spoof(*target_p) ? "0" : target_p->sockhost,
target_p->id,
2016-08-23 04:33:36 +02:00
is_dyn_spoof(*target_p) ? target_p->orighost : "*",
suser(user(*target_p)).empty() ? "*" : suser(user(*target_p)).c_str(),
target_p->info);
2009-01-16 23:11:11 +01:00
else
sendto_one(client_p, ":%s UID %s %d %ld %s %s %s %s %s :%s",
target_p->servptr->id, target_p->name,
target_p->hopcount + 1,
(long) target_p->tsinfo, ubuf,
target_p->username, target_p->host,
2016-08-23 04:33:36 +02:00
is_ip_spoof(*target_p) ? "0" : target_p->sockhost,
target_p->id, target_p->info);
2009-01-16 23:11:11 +01:00
if(!EmptyString(target_p->certfp))
sendto_one(client_p, ":%s ENCAP * CERTFP :%s",
use_id(target_p), target_p->certfp);
2009-01-16 23:11:11 +01:00
if(!IsCapable(client_p, CAP_EUID))
{
2016-08-23 04:33:36 +02:00
if(is_dyn_spoof(*target_p))
sendto_one(client_p, ":%s ENCAP * REALHOST %s",
use_id(target_p), target_p->orighost);
2016-08-21 02:51:50 +02:00
if (!suser(user(*target_p)).empty())
sendto_one(client_p, ":%s ENCAP * LOGIN %s",
2016-08-21 02:51:50 +02:00
use_id(target_p),
suser(user(*target_p)).c_str());
}
if(ConfigFileEntry.burst_away && !away(user(*target_p)).empty())
sendto_one(client_p, ":%s AWAY :%s",
use_id(target_p),
away(user(*target_p)).c_str());
hclientinfo.target = target_p;
call_hook(h_burst_client, &hclientinfo);
}
2016-08-20 04:51:37 +02:00
for(const auto &pit : chan::chans)
{
2016-08-20 04:51:37 +02:00
const auto &chptr(pit.second.get());
if(chptr->name[0] != '#')
continue;
cur_len = mlen = sprintf(buf, ":%s SJOIN %ld %s %s :", me.id,
(long) chptr->channelts, chptr->name.c_str(),
channel_modes(chptr, client_p));
t = buf + mlen;
2016-08-20 02:32:26 +02:00
for (auto &pair : chptr->members.global)
{
2016-08-20 02:32:26 +02:00
msptr = &pair.second;
auto *const client(pair.first);
2016-08-20 02:32:26 +02:00
tlen = strlen(use_id(client)) + 1;
if(is_chanop(msptr))
tlen++;
if(is_voiced(msptr))
tlen++;
if(cur_len + tlen >= BUFSIZE - 3)
{
*(t-1) = '\0';
sendto_one(client_p, "%s", buf);
cur_len = mlen;
t = buf + mlen;
}
2016-08-20 02:32:26 +02:00
sprintf(t, "%s%s ", chan::find_status(msptr, 1), use_id(client));
cur_len += tlen;
t += tlen;
}
2016-08-20 02:32:26 +02:00
if (!empty(chptr->members))
{
/* remove trailing space */
*(t-1) = '\0';
}
sendto_one(client_p, "%s", buf);
2016-08-19 07:58:17 +02:00
namespace mode = chan::mode;
if (!empty(*chptr, mode::BAN))
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::BAN), 'b');
2016-08-19 07:58:17 +02:00
if (IsCapable(client_p, CAP_EX) && !empty(*chptr, mode::EXCEPTION))
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::EXCEPTION), 'e');
2016-08-19 07:58:17 +02:00
if (IsCapable(client_p, CAP_IE) && !empty(*chptr, mode::INVEX))
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::INVEX), 'I');
2016-08-19 07:58:17 +02:00
if (!empty(*chptr, mode::QUIET))
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::QUIET), 'q');
2016-08-19 07:58:17 +02:00
if (IsCapable(client_p, CAP_TB) && chptr->topic)
sendto_one(client_p, ":%s TB %s %ld %s%s:%s",
me.id,
chptr->name.c_str(),
long(chptr->topic.time),
ConfigChannel.burst_topicwho? chptr->topic.info.c_str() : "",
ConfigChannel.burst_topicwho? " " : "",
chptr->topic.text.c_str());
2016-08-19 07:58:17 +02:00
if (IsCapable(client_p, CAP_MLOCK))
sendto_one(client_p, ":%s MLOCK %ld %s :%s",
me.id, (long) chptr->channelts, chptr->name.c_str(),
chptr->mode_lock.c_str());
2010-03-08 05:29:34 +01:00
hchaninfo.chptr = chptr;
call_hook(h_burst_channel, &hchaninfo);
}
hclientinfo.target = NULL;
call_hook(h_burst_finished, &hclientinfo);
}
/*
* show_capabilities - show current server capabilities
*
* inputs - pointer to an client::client
* output - pointer to static string
* side effects - build up string representing capabilities of server listed
*/
const char *
show_capabilities(client::client *target_p)
{
static char msgbuf[BUFSIZE];
*msgbuf = '\0';
if(has_id(target_p))
rb_strlcpy(msgbuf, " TS6", sizeof(msgbuf));
if(IsSSL(target_p))
rb_strlcat(msgbuf, " SSL", sizeof(msgbuf));
2016-08-23 04:33:36 +02:00
if(!is_server(*target_p) || !caps(serv(*target_p))) // short circuit if no caps
return msgbuf + 1;
rb_strlcat(msgbuf, " ", sizeof(msgbuf));
rb_strlcat(msgbuf, serv_capindex.list(caps(serv(*target_p))).c_str(), sizeof(msgbuf));
return msgbuf + 1;
}
/*
* server_estab
*
* inputs - pointer to a client::client
* output -
* side effects -
*/
int
server_estab(client::client *client_p)
{
client::client *target_p;
struct server_conf *server_p;
hook_data_client hdata;
char *host;
2008-04-01 22:41:52 +02:00
rb_dlink_node *ptr;
2008-04-03 01:10:04 +02:00
char note[HOSTLEN + 15];
s_assert(NULL != client_p);
if(client_p == NULL)
return -1;
host = client_p->name;
if((server_p = client_p->localClient->att_sconf) == NULL)
{
/* This shouldn't happen, better tell the ops... -A1kmm */
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
"Warning: Lost connect{} block for server %s!", host);
return exit_client(client_p, client_p, client_p, "Lost connect{} block!");
}
/* We shouldn't have to check this, it should already done before
* server_estab is called. -A1kmm
*/
if(client_p->localClient->passwd)
{
memset(client_p->localClient->passwd, 0, strlen(client_p->localClient->passwd));
rb_free(client_p->localClient->passwd);
client_p->localClient->passwd = NULL;
}
/* Its got identd , since its a server */
2016-08-23 04:33:36 +02:00
set_got_id(*client_p);
2016-08-23 04:33:36 +02:00
if(is_unknown(*client_p))
{
/* the server may be linking based on certificate fingerprint now. --nenolod */
sendto_one(client_p, "PASS %s TS %d :%s",
EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
/* pass info to new server */
send_capabilities(client_p, default_server_capabs | CAP_MASK
| (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
| (ServerConfTb(server_p) ? CAP_TB : 0));
sendto_one(client_p, "SERVER %s 1 :%s%s",
me.name,
ConfigServerHide.hidden ? "(H) " : "",
(me.info[0]) ? (me.info) : "IRCers United");
}
2008-04-03 01:10:04 +02:00
if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
2008-04-03 04:47:03 +02:00
ilog_error("rb_set_buffers failed for server");
/* Enable compression now */
if(IsCapable(client_p, CAP_ZIP))
{
start_zlib_session(client_p);
}
2008-04-09 21:34:34 +02:00
sendto_one(client_p, "SVINFO %d %d 0 :%ld", TS_CURRENT, TS_MIN, (long int)rb_current_time());
client_p->servptr = &me;
2016-08-23 04:33:36 +02:00
if(is_any_dead(*client_p))
return CLIENT_EXITED;
2016-08-23 04:33:36 +02:00
set_server(*client_p);
client_p->lnode = servers(serv(me)).emplace(end(servers(serv(me))), client_p);
2008-04-01 22:41:52 +02:00
rb_dlinkMoveNode(&client_p->localClient->tnode, &unknown_list, &serv_list);
rb_dlinkAddTailAlloc(client_p, &global_serv_list);
if(has_id(client_p))
add_to_id_hash(client_p->id, client_p);
add_to_client_hash(client_p->name, client_p);
/* doesnt duplicate client_p->serv if allocated this struct already */
make_serv(*client_p);
caps(serv(*client_p)) = client_p->localClient->caps;
if(client_p->localClient->fullcaps)
{
fullcaps(serv(*client_p)) = client_p->localClient->fullcaps;
rb_free(client_p->localClient->fullcaps);
client_p->localClient->fullcaps = NULL;
}
2016-08-24 12:11:01 +02:00
nameinfo(serv(*client_p)) = cache::serv::connect(client_p->name, client_p->info, is_hidden(*client_p));
2008-04-02 01:53:20 +02:00
client_p->localClient->firsttime = rb_current_time();
/* fixing eob timings.. -gnp */
2008-04-01 22:41:52 +02:00
if((rb_dlink_list_length(&lclient_list) + rb_dlink_list_length(&serv_list)) >
(unsigned long)MaxConnectionCount)
MaxConnectionCount = rb_dlink_list_length(&lclient_list) +
2008-04-01 22:41:52 +02:00
rb_dlink_list_length(&serv_list);
/* Show the real host/IP to admins */
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, L_ALL,
"Link with %s established: (%s) link",
client_p->name,
show_capabilities(client_p));
ilog(L_SERVER, "Link with %s established: (%s) link",
log_client_name(client_p, SHOW_IP), show_capabilities(client_p));
hdata.client = &me;
hdata.target = client_p;
call_hook(h_server_introduced, &hdata);
snprintf(note, sizeof(note), "Server: %s", client_p->name);
rb_note(client_p->localClient->F, note);
/*
** Old sendto_serv_but_one() call removed because we now
** need to send different names to different servers
** (domain name matching) Send new server to other servers.
*/
2008-04-01 22:43:10 +02:00
RB_DLINK_FOREACH(ptr, serv_list.head)
{
target_p = (client::client *)ptr->data;
if(target_p == client_p)
continue;
if(has_id(target_p) && has_id(client_p))
{
sendto_one(target_p, ":%s SID %s 2 %s :%s%s",
me.id, client_p->name, client_p->id,
2016-08-23 04:33:36 +02:00
is_hidden(*client_p) ? "(H) " : "", client_p->info);
if(fullcaps(serv(*client_p)).size())
sendto_one(target_p, ":%s ENCAP * GCAP :%s",
client_p->id, fullcaps(serv(*client_p)).c_str());
}
else
{
sendto_one(target_p, ":%s SERVER %s 2 :%s%s",
me.name, client_p->name,
2016-08-23 04:33:36 +02:00
is_hidden(*client_p) ? "(H) " : "", client_p->info);
if(fullcaps(serv(*client_p)).size())
sendto_one(target_p, ":%s ENCAP * GCAP :%s",
client_p->name, fullcaps(serv(*client_p)).c_str());
}
}
/*
** Pass on my client information to the new server
**
** First, pass only servers (idea is that if the link gets
** cancelled beacause the server was already there,
** there are no NICK's to be cancelled...). Of course,
** if cancellation occurs, all this info is sent anyway,
** and I guess the link dies when a read is attempted...? --msa
**
** Note: Link cancellation to occur at this point means
** that at least two servers from my fragment are building
** up connection this other fragment at the same time, it's
** a race condition, not the normal way of operation...
**
** ALSO NOTE: using the get_client_name for server names--
** see previous *WARNING*!!! (Also, original inpath
** is destroyed...)
*/
2008-04-01 22:43:10 +02:00
RB_DLINK_FOREACH(ptr, global_serv_list.head)
{
target_p = (client::client *)ptr->data;
/* target_p->from == target_p for target_p == client_p */
2016-08-23 04:33:36 +02:00
if(is_me(*target_p) || target_p->from == client_p)
continue;
/* presumption, if target has an id, so does its uplink */
if(has_id(client_p) && has_id(target_p))
sendto_one(client_p, ":%s SID %s %d %s :%s%s",
target_p->servptr->id, target_p->name,
target_p->hopcount + 1, target_p->id,
2016-08-23 04:33:36 +02:00
is_hidden(*target_p) ? "(H) " : "", target_p->info);
else
sendto_one(client_p, ":%s SERVER %s %d :%s%s",
target_p->servptr->name,
target_p->name, target_p->hopcount + 1,
2016-08-23 04:33:36 +02:00
is_hidden(*target_p) ? "(H) " : "", target_p->info);
if(fullcaps(serv(*target_p)).size())
sendto_one(client_p, ":%s ENCAP * GCAP :%s",
get_id(target_p, client_p),
fullcaps(serv(*target_p)).c_str());
}
if(IsCapable(client_p, CAP_BAN))
burst_ban(client_p);
burst_TS6(client_p);
/* Always send a PING after connect burst is done */
sendto_one(client_p, "PING :%s", get_id(&me, client_p));
free_pre_client(client_p);
send_pop_queue(client_p);
return 0;
}
/*
* New server connection code
* Based upon the stuff floating about in s_bsd.c
* -- adrian
*/
/*
* serv_connect() - initiate a server connection
*
* inputs - pointer to conf
* - pointer to client doing the connet
* output -
* side effects -
*
* This code initiates a connection to a server. It first checks to make
* sure the given server exists. If this is the case, it creates a socket,
* creates a client, saves the socket information in the client, and
2008-04-01 22:38:40 +02:00
* initiates a connection to the server through rb_connect_tcp(). The
* completion of this goes through serv_completed_connection().
*
* We return 1 if the connection is attempted, since we don't know whether
* it suceeded or not, and 0 if it fails in here somewhere.
*/
int
serv_connect(struct server_conf *server_p, client::client *by)
{
client::client *client_p;
struct rb_sockaddr_storage sa_connect;
struct rb_sockaddr_storage sa_bind;
2008-04-03 01:10:04 +02:00
char note[HOSTLEN + 10];
rb_fde_t *F;
s_assert(server_p != NULL);
if(server_p == NULL)
return 0;
#ifdef RB_IPV6
if(server_p->aftype != AF_UNSPEC
&& GET_SS_FAMILY(&server_p->connect4) == AF_INET
&& GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
{
if(rand() % 2 == 0)
{
sa_connect = server_p->connect4;
sa_bind = server_p->bind4;
}
else
{
sa_connect = server_p->connect6;
sa_bind = server_p->bind6;
}
}
else if(server_p->aftype == AF_INET || GET_SS_FAMILY(&server_p->connect4) == AF_INET)
#endif
{
sa_connect = server_p->connect4;
sa_bind = server_p->bind4;
}
#ifdef RB_IPV6
else if(server_p->aftype == AF_INET6 || GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
{
sa_connect = server_p->connect6;
sa_bind = server_p->bind6;
}
#endif
/* log */
buf[0] = 0;
rb_inet_ntop_sock((struct sockaddr *)&sa_connect, buf, sizeof(buf));
ilog(L_SERVER, "Connect to *[%s] @%s", server_p->name, buf);
/*
* Make sure this server isn't already connected
*/
if((client_p = find_server(NULL, server_p->name)))
{
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, L_ALL,
"Server %s already present from %s",
server_p->name, client_p->name);
2016-08-23 04:33:36 +02:00
if(by && is_person(*by) && !my(*by))
sendto_one_notice(by, ":Server %s already present from %s",
server_p->name, client_p->name);
return 0;
}
/* create a socket for the server connection */
if(GET_SS_FAMILY(&sa_connect) == AF_UNSPEC)
{
ilog_error("unspecified socket address family");
return 0;
}
else if((F = rb_socket(GET_SS_FAMILY(&sa_connect), SOCK_STREAM, 0, NULL)) == NULL)
{
2008-04-03 04:47:03 +02:00
ilog_error("opening a stream socket");
return 0;
}
/* servernames are always guaranteed under HOSTLEN chars */
snprintf(note, sizeof(note), "Server: %s", server_p->name);
2008-04-03 01:10:04 +02:00
rb_note(F, note);
/* Create a local client */
client_p = client::make_client(NULL);
/* Copy in the server, hostname, fd */
2008-04-20 06:40:40 +02:00
rb_strlcpy(client_p->name, server_p->name, sizeof(client_p->name));
if(server_p->connect_host)
rb_strlcpy(client_p->host, server_p->connect_host, sizeof(client_p->host));
else
rb_strlcpy(client_p->host, buf, sizeof(client_p->host));
rb_strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
2008-04-03 01:10:04 +02:00
client_p->localClient->F = F;
/* shove the port number into the sockaddr */
SET_SS_PORT(&sa_connect, htons(server_p->port));
/*
* Set up the initial server evilness, ripped straight from
* connect_server(), so don't blame me for it being evil.
* -- adrian
*/
2008-04-03 01:10:04 +02:00
if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
{
2008-04-03 04:47:03 +02:00
ilog_error("setting the buffer size for a server connection");
}
/*
* Attach config entries to client here rather than in
* serv_connect_callback(). This to avoid null pointer references.
*/
attach_server_conf(client_p, server_p);
/*
* at this point we have a connection in progress and C/N lines
* attached to the client, the socket info should be saved in the
* client and it should either be resolved or have a valid address.
*
* The socket has been connected or connect is in progress.
*/
make_serv(*client_p);
2016-08-23 04:33:36 +02:00
if(by && is_client(*by))
client::serv::by(serv(*client_p)) = by->name;
else
client::serv::by(serv(*client_p)) = "AutoConn.";
2016-08-23 04:33:36 +02:00
set_connecting(*client_p);
2008-04-01 22:41:52 +02:00
rb_dlinkAddTail(client_p, &client_p->node, &global_client_list);
if(GET_SS_FAMILY(&sa_bind) == AF_UNSPEC)
{
if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind4))
sa_bind = ServerInfo.bind4;
#ifdef RB_IPV6
if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind6))
sa_bind = ServerInfo.bind6;
#endif
}
rb_connect_tcp(client_p->localClient->F,
(struct sockaddr *)&sa_connect,
GET_SS_FAMILY(&sa_bind) == AF_UNSPEC ? NULL : (struct sockaddr *)&sa_bind,
ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
client_p, ConfigFileEntry.connect_timeout);
return 1;
}
static void
serv_connect_ssl_callback(rb_fde_t *F, int status, void *data)
{
client::client *client_p = (client::client *)data;
rb_fde_t *xF[2];
rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
if(status != RB_OK)
{
/* Print error message, just like non-SSL. */
serv_connect_callback(F, status, data);
return;
}
if(rb_socketpair(AF_UNIX, SOCK_STREAM, 0, &xF[0], &xF[1], "Outgoing ssld connection") == -1)
{
ilog_error("rb_socketpair failed for server");
serv_connect_callback(F, RB_ERROR, data);
return;
}
client_p->localClient->F = xF[0];
client_p->localClient->ssl_callback = serv_connect_ssl_open_callback;
client_p->localClient->ssl_ctl = start_ssld_connect(F, xF[1], connid_get(client_p));
if(!client_p->localClient->ssl_ctl)
{
serv_connect_callback(client_p->localClient->F, RB_ERROR, data);
return;
}
SetSSL(client_p);
}
static int
serv_connect_ssl_open_callback(client::client *client_p, int status)
{
serv_connect_callback(client_p->localClient->F, status, client_p);
return 1; /* suppress default exit_client handler for status != RB_OK */
}
/*
* serv_connect_callback() - complete a server connection.
*
* This routine is called after the server connection attempt has
* completed. If unsucessful, an error is sent to ops and the client
* is closed. If sucessful, it goes through the initialisation/check
* procedures, the capabilities are sent, and the socket is then
* marked for reading.
*/
static void
2008-04-03 01:10:04 +02:00
serv_connect_callback(rb_fde_t *F, int status, void *data)
{
client::client *client_p = (client::client *)data;
struct server_conf *server_p;
char *errstr;
/* First, make sure its a real client! */
s_assert(client_p != NULL);
2008-04-03 01:10:04 +02:00
s_assert(client_p->localClient->F == F);
if(client_p == NULL)
return;
/* while we were waiting for the callback, its possible this already
* linked in.. --fl
*/
if(find_server(NULL, client_p->name) != NULL)
{
exit_client(client_p, client_p, &me, "Server Exists");
return;
}
if(client_p->localClient->ssl_ctl == NULL)
rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
/* Check the status */
2008-04-03 01:10:04 +02:00
if(status != RB_OK)
{
/* COMM_ERR_TIMEOUT wont have an errno associated with it,
* the others will.. --fl
*/
if(status == RB_ERR_TIMEOUT || status == RB_ERROR_SSL)
{
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
"Error connecting to %s[%s]: %s",
client_p->name,
"255.255.255.255",
2008-04-01 22:38:40 +02:00
rb_errstr(status));
ilog(L_SERVER, "Error connecting to %s[%s]: %s",
client_p->name, client_p->sockhost,
2008-04-01 22:38:40 +02:00
rb_errstr(status));
}
else
{
2008-04-03 01:10:04 +02:00
errstr = strerror(rb_get_sockerr(F));
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
"Error connecting to %s[%s]: %s (%s)",
client_p->name,
"255.255.255.255",
2008-04-01 22:38:40 +02:00
rb_errstr(status), errstr);
ilog(L_SERVER, "Error connecting to %s[%s]: %s (%s)",
client_p->name, client_p->sockhost,
2008-04-01 22:38:40 +02:00
rb_errstr(status), errstr);
}
2008-04-01 22:38:40 +02:00
exit_client(client_p, client_p, &me, rb_errstr(status));
return;
}
/* COMM_OK, so continue the connection procedure */
/* Get the C/N lines */
if((server_p = client_p->localClient->att_sconf) == NULL)
{
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL, "Lost connect{} block for %s",
client_p->name);
exit_client(client_p, client_p, &me, "Lost connect{} block");
return;
}
if(server_p->certfp && (!client_p->certfp || rb_strcasecmp(server_p->certfp, client_p->certfp) != 0))
{
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
"Connection to %s has invalid certificate fingerprint %s",
client_p->name, client_p->certfp);
ilog(L_SERVER, "Access denied, invalid certificate fingerprint %s from %s",
client_p->certfp, log_client_name(client_p, SHOW_IP));
exit_client(client_p, client_p, &me, "Invalid fingerprint.");
return;
}
/* Next, send the initial handshake */
2016-08-23 04:33:36 +02:00
set_handshake(*client_p);
/* the server may be linking based on certificate fingerprint now. --nenolod */
sendto_one(client_p, "PASS %s TS %d :%s",
EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
/* pass my info to the new server */
send_capabilities(client_p, default_server_capabs | CAP_MASK
| (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
| (ServerConfTb(server_p) ? CAP_TB : 0));
sendto_one(client_p, "SERVER %s 1 :%s%s",
me.name,
ConfigServerHide.hidden ? "(H) " : "", me.info);
/*
* If we've been marked dead because a send failed, just exit
* here now and save everyone the trouble of us ever existing.
*/
2016-08-23 04:33:36 +02:00
if(is_any_dead(*client_p))
{
2016-08-26 13:50:12 +02:00
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
"%s went dead during handshake", client_p->name);
exit_client(client_p, client_p, &me, "Went dead during handshake");
return;
}
/* don't move to serv_list yet -- we haven't sent a burst! */
/* If we get here, we're ok, so lets start reading some data */
2008-04-03 01:10:04 +02:00
read_packet(F, client_p);
}
2016-08-13 05:05:54 +02:00
}