Jilles Tjoelker
2cb7175cfa
gnutls: I guess a gnutls_x509_crt_deinit() is needed to avoid memory leak.
2010-02-22 19:16:37 +01:00
Jilles Tjoelker
22342cd11f
Remove code to write bans to csv files.
2010-02-22 19:09:46 +01:00
William Pitcock
3fe59c99c7
gnutls: Add support for certfp gathering.
2010-02-22 11:13:59 -06:00
Jilles Tjoelker
087a839962
Add spambot check changes to NEWS.
2010-02-21 23:15:07 +01:00
Jilles Tjoelker
ff91faaf76
Do not penalize for spambot checks if creating a new channel.
2010-02-21 01:45:51 +01:00
Jilles Tjoelker
981586df2b
spambot checks: Fix excessive expiry in some cases.
2010-02-21 01:29:41 +01:00
Jilles Tjoelker
4eb9a3ca0b
JOIN 0: Make spambot check equivalent to PART's.
2010-02-21 01:12:04 +01:00
Jilles Tjoelker
9148f6aa7c
Remove dead code: last_join_time is already updated by check_spambot_warning().
2010-02-21 01:10:04 +01:00
Jilles Tjoelker
cf3564d61f
Do not check for spambot if the user is not allowed to join the channel.
2010-02-21 01:07:32 +01:00
Jilles Tjoelker
b2d64e51f0
Fix a memory leak with client certificates.
2010-02-19 16:55:15 +01:00
William Pitcock
dbcd150bce
Do not try to free the alias dict if it does not exist.
2010-02-18 18:38:26 -06:00
William Pitcock
7ef7663502
Automated merge with ssh://hg.atheme.org//hg/charybdis
2010-02-18 18:11:32 -06:00
William Pitcock
7472e54da1
Fix libtool build issue.
2010-02-18 18:11:23 -06:00
Jilles Tjoelker
fad065bb95
challenge: Fix build.
2010-02-18 23:42:07 +01:00
William Pitcock
bb86b59086
Added tag proposed-charybdis-3.2.0 for changeset 7450d2086b3a
2010-02-18 07:35:05 -06:00
William Pitcock
bf8483b1d3
Removed tag proposed-charybdis-3.2.0
2010-02-18 07:35:01 -06:00
William Pitcock
a8560affce
Documentation updates for the ip_cloaking_4.0 transition.
2010-02-18 07:34:40 -06:00
William Pitcock
4cbfc368b4
Add ip_cloaking_4.0 module, which is the same cloaking as 3.2, but moves the usermode from +h to +x,
...
which allows us to start transitioning this usermode change.
2010-02-18 07:30:26 -06:00
William Pitcock
e4f0725666
Added tag proposed-charybdis-3.2.0 for changeset 99d6cacd4454
2010-02-17 23:13:42 -06:00
William Pitcock
96f4052b50
Run autoreconf.
2010-02-17 23:12:45 -06:00
William Pitcock
8fde8d897e
Set autoconf version to 3.2.0.
2010-02-17 23:12:17 -06:00
William Pitcock
67821070f1
BUGS is no longer relevant, as the build system installs files in a way where this is no longer a problem.
2010-02-17 23:11:33 -06:00
William Pitcock
cb7f3af4d3
Change license version in version.c.SH (GPLv1 -> GPLv2) so that it agrees with the other documentation.
2010-02-17 23:05:47 -06:00
William Pitcock
9600850e8f
s/o:lines/operator blocks/
2010-02-17 23:01:58 -06:00
William Pitcock
ed8b3d69ac
Add certfp check to challenge too.
2010-02-17 23:01:25 -06:00
William Pitcock
76169ea734
Clarify ERR_NOOPERHOST and convert it to use sendto_one_numeric().
2010-02-17 06:51:41 -06:00
William Pitcock
3ad21d7513
hurt: unbreak compile
2010-02-17 06:44:42 -06:00
William Pitcock
ff31db8473
Add support for client certificate fingerprints in o:lines.
2010-02-17 06:41:41 -06:00
Jilles Tjoelker
5155c03c96
Update target change documentation.
2010-02-17 00:38:08 +01:00
Jilles Tjoelker
1c5683dede
Update NEWS.
2010-02-17 00:24:12 +01:00
Jilles Tjoelker
0cce7774d5
Subject /invite to umodes +g and +R.
...
The behaviour is the same as /msg except that where
/msg would send RPL_UMODEGMSG to the user, the /invite
is instead let through. This counts as a notification
for caller_id_wait like RPL_UMODEGMSG.
Checks are on the target user's server, which means an
error message will appear after RPL_INVITING.
This must be because the accept list is not globally
known.
2010-02-15 23:07:14 +01:00
Jilles Tjoelker
40b79a3908
Add missing return value.
2010-02-15 22:18:00 +01:00
Jilles Tjoelker
890af0e7c5
Subject /invite to target change.
...
Similar to /msg, inviting a user that is not in a channel
you have op or voice in requires a free target; opers always
have a free target.
Being invited adds the source as a reply target.
2010-02-15 22:08:55 +01:00
Jilles Tjoelker
4f2685f3e1
Move target change code to src/tgchange.c,
...
so we can use it for /invite as well.
2010-02-15 21:58:34 +01:00
Jilles Tjoelker
c9f01c4f2f
target change: Allow free replies.
...
When a user receives a private message, notice or RPL_UMODEGMSG,
add the source to a special set of 5 target slots.
These slots are checked in the normal way when sending messages,
allowing a reply without using up a free target.
This feature will not be very useful if a user is being messaged
by many different users; to help this, messages blocked entirely
by +g or +R do not affect the targets. CTCP replies also remain
free in terms of targets.
2010-02-15 01:07:07 +01:00
Jilles Tjoelker
179becdf5f
target change: Overwrite the least recently used target with a new one.
2010-02-15 00:31:17 +01:00
Jilles Tjoelker
ad1d39a76f
Make the number of targets tracked for target change a #define.
2010-02-13 15:18:17 +01:00
JD Horelick
97deedc42f
English fix to fix the fix i made about 80 minutes ago.
...
I suck at a/an cometimes. Also, fix.
2010-02-08 18:04:54 -05:00
JD Horelick
bc4fccbc44
One or 2 English language cleanups. Less than I thought there were.
2010-02-08 16:28:08 -05:00
Jilles Tjoelker
033d16bd2d
Add new function rb_get_ssl_certfp() to export-syms.txt.
2010-02-07 20:38:37 +01:00
Jilles Tjoelker
96bfafc1f8
testline/testgecos: Send "not an oper" message if appropriate.
2010-02-07 17:57:36 +01:00
Jilles Tjoelker
8eda114a78
Pass certfp to other servers and show it in whois. Do not show it on connect.
...
The server protocol for this is
:<uid> ENCAP * CERTFP :<40 hex chars>
both in new user introductions and in burst.
As in oftc-hybrid, only the user themselves and opers can see the certfp.
Displaying the certfp on connect seems unnecessary to me,
the user can whois themselves if needed.
2010-02-06 00:18:27 +01:00
Jilles Tjoelker
62a360ea22
Fix serno.h for compiles from Mercurial.
2010-02-03 00:46:14 +01:00
Jilles Tjoelker
17e4b48b55
Apply ratbox3 workaround for too permissive inet_pton6():
...
Any kline (or various other things) containing * or ? is
a mask kline and not an IP kline. Ideally, rb_inet_pton_sock()
would return failure for those, but in practice this is not
always the case for IPv6.
Such a kline that is erroneously treated as an IP line
likely matches way fewer IPs than expected.
2010-02-03 00:44:51 +01:00
William Pitcock
11dff8a423
Clarify CertFP message.
2010-01-31 17:35:15 -06:00
Jilles Tjoelker
7247337afa
Add certfp support to libratbox and ssld.
...
This lets a user connect with a client certificate, and
passes the certificate's fingerprint to ircd, which
currently just notices it to the user.
A new ssld->ircd message 'F' is used to pass on the
fingerprint.
This is only for OpenSSL for now, not GNUTLS.
2010-01-31 19:04:20 +01:00
William Pitcock
47f9d6002a
Automated merge with ssh://hg.atheme.org//hg/charybdis
2010-01-30 19:21:28 -06:00
William Pitcock
7d778d510a
modreload: Causing an entire 50,000 user network to crash due to user-error is a bad idea, don't let it happen again by not allowing paths in /modreload.
2010-01-30 19:21:17 -06:00
Jilles Tjoelker
5f2df25109
Slightly tighten auth{} duplicate check:
...
If the existing auth{} block has no auth_user, it will
trump any auth{} block for the same u@h.
2010-01-31 01:40:43 +01:00
Jilles Tjoelker
3d1f32c07a
Take auth_user into account when detecting redundant/duplicate auth{}.
...
from ircd-seven (spb)
2010-01-31 01:36:37 +01:00