mirror of
https://github.com/matrix-construct/construct
synced 2024-11-16 15:00:51 +01:00
1289 lines
36 KiB
C++
1289 lines
36 KiB
C++
/*
|
|
* ircd-ratbox: A slightly useful ircd.
|
|
* s_serv.c: Server related functions.
|
|
*
|
|
* Copyright (C) 1990 Jarkko Oikarinen and University of Oulu, Co Center
|
|
* Copyright (C) 1996-2002 Hybrid Development Team
|
|
* Copyright (C) 2002-2005 ircd-ratbox development team
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
|
|
* USA
|
|
*/
|
|
|
|
#ifdef HAVE_LIBCRYPTO
|
|
#include <openssl/rsa.h>
|
|
#endif
|
|
|
|
namespace ircd {
|
|
|
|
int MaxConnectionCount = 1;
|
|
int MaxClientCount = 1;
|
|
int refresh_user_links = 0;
|
|
|
|
static char buf[BUFSIZE];
|
|
|
|
/*
|
|
* list of recognized server capabilities. "TS" is not on the list
|
|
* because all servers that we talk to already do TS, and the kludged
|
|
* extra argument to "PASS" takes care of checking that. -orabidoo
|
|
*/
|
|
capability::index serv_capindex {"server capabilities"};
|
|
capability::index cli_capindex {"client capabilities"};
|
|
|
|
unsigned int CAP_CAP;
|
|
unsigned int CAP_QS;
|
|
unsigned int CAP_EX;
|
|
unsigned int CAP_CHW;
|
|
unsigned int CAP_IE;
|
|
unsigned int CAP_KLN;
|
|
unsigned int CAP_ZIP;
|
|
unsigned int CAP_KNOCK;
|
|
unsigned int CAP_TB;
|
|
unsigned int CAP_UNKLN;
|
|
unsigned int CAP_CLUSTER;
|
|
unsigned int CAP_ENCAP;
|
|
unsigned int CAP_TS6;
|
|
unsigned int CAP_SERVICE;
|
|
unsigned int CAP_RSFNC;
|
|
unsigned int CAP_SAVE;
|
|
unsigned int CAP_EUID;
|
|
unsigned int CAP_EOPMOD;
|
|
unsigned int CAP_BAN;
|
|
unsigned int CAP_MLOCK;
|
|
|
|
unsigned int CLICAP_MULTI_PREFIX;
|
|
unsigned int CLICAP_ACCOUNT_NOTIFY;
|
|
unsigned int CLICAP_EXTENDED_JOIN;
|
|
unsigned int CLICAP_AWAY_NOTIFY;
|
|
unsigned int CLICAP_USERHOST_IN_NAMES;
|
|
unsigned int CLICAP_CAP_NOTIFY;
|
|
unsigned int CLICAP_CHGHOST;
|
|
unsigned int CLICAP_ECHO_MESSAGE;
|
|
|
|
/*
|
|
* initialize our builtin capability table. --nenolod
|
|
*/
|
|
void
|
|
init_builtin_capabs(void)
|
|
{
|
|
/* These two are not set via CAPAB/GCAP keywords. */
|
|
CAP_CAP = serv_capindex.put_anonymous();
|
|
CAP_TS6 = serv_capindex.put_anonymous();
|
|
|
|
CAP_QS = serv_capindex.put("QS", NULL);
|
|
CAP_EX = serv_capindex.put("EX", NULL);
|
|
CAP_CHW = serv_capindex.put("CHW", NULL);
|
|
CAP_IE = serv_capindex.put("IE", NULL);
|
|
CAP_KLN = serv_capindex.put("KLN", NULL);
|
|
CAP_KNOCK = serv_capindex.put("KNOCK", NULL);
|
|
CAP_ZIP = serv_capindex.put("ZIP", NULL);
|
|
CAP_TB = serv_capindex.put("TB", NULL);
|
|
CAP_UNKLN = serv_capindex.put("UNKLN", NULL);
|
|
CAP_CLUSTER = serv_capindex.put("CLUSTER", NULL);
|
|
CAP_ENCAP = serv_capindex.put("ENCAP", NULL);
|
|
CAP_SERVICE = serv_capindex.put("SERVICES", NULL);
|
|
CAP_RSFNC = serv_capindex.put("RSFNC", NULL);
|
|
CAP_SAVE = serv_capindex.put("SAVE", NULL);
|
|
CAP_EUID = serv_capindex.put("EUID", NULL);
|
|
CAP_EOPMOD = serv_capindex.put("EOPMOD", NULL);
|
|
CAP_BAN = serv_capindex.put("BAN", NULL);
|
|
CAP_MLOCK = serv_capindex.put("MLOCK", NULL);
|
|
|
|
serv_capindex.require("QS");
|
|
serv_capindex.require("EX");
|
|
serv_capindex.require("IE");
|
|
serv_capindex.require("ENCAP");
|
|
|
|
CLICAP_MULTI_PREFIX = cli_capindex.put("multi-prefix", NULL);
|
|
CLICAP_ACCOUNT_NOTIFY = cli_capindex.put("account-notify", NULL);
|
|
CLICAP_EXTENDED_JOIN = cli_capindex.put("extended-join", NULL);
|
|
CLICAP_AWAY_NOTIFY = cli_capindex.put("away-notify", NULL);
|
|
CLICAP_USERHOST_IN_NAMES = cli_capindex.put("userhost-in-names", NULL);
|
|
CLICAP_CAP_NOTIFY = cli_capindex.put("cap-notify", NULL);
|
|
CLICAP_CHGHOST = cli_capindex.put("chghost", NULL);
|
|
CLICAP_ECHO_MESSAGE = cli_capindex.put("echo-message", NULL);
|
|
}
|
|
|
|
static CNCB serv_connect_callback;
|
|
static CNCB serv_connect_ssl_callback;
|
|
static client::SSL_OPEN_CB serv_connect_ssl_open_callback;
|
|
|
|
/*
|
|
* hunt_server - Do the basic thing in delivering the message (command)
|
|
* across the relays to the specific server (server) for
|
|
* actions.
|
|
*
|
|
* Note: The command is a format string and *MUST* be
|
|
* of prefixed style (e.g. ":%s COMMAND %s ...").
|
|
* Command can have only max 8 parameters.
|
|
*
|
|
* server parv[server] is the parameter identifying the
|
|
* target server.
|
|
*
|
|
* *WARNING*
|
|
* parv[server] is replaced with the pointer to the
|
|
* real servername from the matched client (I'm lazy
|
|
* now --msa).
|
|
*
|
|
* returns: (see #defines)
|
|
*/
|
|
int
|
|
hunt_server(client::client *client_p, client::client *source_p,
|
|
const char *command, int server, int parc, const char *parv[])
|
|
{
|
|
client::client *target_p;
|
|
int wilds;
|
|
rb_dlink_node *ptr;
|
|
const char *old;
|
|
char *new_;
|
|
|
|
/*
|
|
* Assume it's me, if no server
|
|
*/
|
|
if(parc <= server || EmptyString(parv[server]) ||
|
|
match(parv[server], me.name) || (strcmp(parv[server], me.id) == 0))
|
|
return (HUNTED_ISME);
|
|
|
|
new_ = LOCAL_COPY(parv[server]);
|
|
|
|
/*
|
|
* These are to pickup matches that would cause the following
|
|
* message to go in the wrong direction while doing quick fast
|
|
* non-matching lookups.
|
|
*/
|
|
if(my(*source_p))
|
|
target_p = find_named_client(new_);
|
|
else
|
|
target_p = find_client(new_);
|
|
|
|
if(target_p)
|
|
if(target_p->from == source_p->from && !my_connect(*target_p))
|
|
target_p = NULL;
|
|
|
|
collapse(new_);
|
|
wilds = (strchr(new_, '?') || strchr(new_, '*'));
|
|
|
|
/*
|
|
* Again, if there are no wild cards involved in the server
|
|
* name, use the hash lookup
|
|
*/
|
|
if(!target_p && wilds)
|
|
{
|
|
RB_DLINK_FOREACH(ptr, global_serv_list.head)
|
|
{
|
|
if(match(new_, ((client::client *) (ptr->data))->name))
|
|
{
|
|
target_p = (client::client *)ptr->data;
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
if(target_p && !is_registered(*target_p))
|
|
target_p = NULL;
|
|
|
|
if(target_p)
|
|
{
|
|
if(is_me(*target_p) || my(*target_p))
|
|
return HUNTED_ISME;
|
|
|
|
old = parv[server];
|
|
parv[server] = get_id(target_p, target_p);
|
|
|
|
sendto_one(target_p, command, get_id(source_p, target_p),
|
|
parv[1], parv[2], parv[3], parv[4], parv[5], parv[6], parv[7], parv[8]);
|
|
parv[server] = old;
|
|
return (HUNTED_PASS);
|
|
}
|
|
|
|
if(my(*source_p) || !rfc1459::is_digit(parv[server][0]))
|
|
sendto_one_numeric(source_p, ERR_NOSUCHSERVER,
|
|
form_str(ERR_NOSUCHSERVER), parv[server]);
|
|
return (HUNTED_NOSUCH);
|
|
}
|
|
|
|
/*
|
|
* try_connections - scan through configuration and try new connections.
|
|
* Returns the calendar time when the next call to this
|
|
* function should be made latest. (No harm done if this
|
|
* is called earlier or later...)
|
|
*/
|
|
void
|
|
try_connections(void *unused)
|
|
{
|
|
client::client *client_p;
|
|
struct server_conf *server_p = NULL;
|
|
struct server_conf *tmp_p;
|
|
struct Class *cltmp;
|
|
rb_dlink_node *ptr;
|
|
bool connecting = false;
|
|
int confrq = 0;
|
|
time_t next = 0;
|
|
|
|
RB_DLINK_FOREACH(ptr, server_conf_list.head)
|
|
{
|
|
tmp_p = (server_conf *)ptr->data;
|
|
|
|
if(ServerConfIllegal(tmp_p) || !ServerConfAutoconn(tmp_p))
|
|
continue;
|
|
|
|
/* don't allow ssl connections if ssl isn't setup */
|
|
if(ServerConfSSL(tmp_p) && (!ircd_ssl_ok || !get_ssld_count()))
|
|
continue;
|
|
|
|
cltmp = tmp_p->_class;
|
|
|
|
/*
|
|
* Skip this entry if the use of it is still on hold until
|
|
* future. Otherwise handle this entry (and set it on hold
|
|
* until next time). Will reset only hold times, if already
|
|
* made one successfull connection... [this algorithm is
|
|
* a bit fuzzy... -- msa >;) ]
|
|
*/
|
|
if(tmp_p->hold > rb_current_time())
|
|
{
|
|
if(next > tmp_p->hold || next == 0)
|
|
next = tmp_p->hold;
|
|
continue;
|
|
}
|
|
|
|
confrq = get_con_freq(cltmp);
|
|
tmp_p->hold = rb_current_time() + confrq;
|
|
|
|
/*
|
|
* Found a CONNECT config with port specified, scan clients
|
|
* and see if this server is already connected?
|
|
*/
|
|
client_p = find_server(NULL, tmp_p->name);
|
|
|
|
if(!client_p && (CurrUsers(cltmp) < MaxUsers(cltmp)) && !connecting)
|
|
{
|
|
server_p = tmp_p;
|
|
|
|
/* We connect only one at time... */
|
|
connecting = true;
|
|
}
|
|
|
|
if((next > tmp_p->hold) || (next == 0))
|
|
next = tmp_p->hold;
|
|
}
|
|
|
|
/* TODO: change this to set active flag to 0 when added to event! --Habeeb */
|
|
if(GlobalSetOptions.autoconn == 0)
|
|
return;
|
|
|
|
if(!connecting)
|
|
return;
|
|
|
|
/* move this connect entry to end.. */
|
|
rb_dlinkDelete(&server_p->node, &server_conf_list);
|
|
rb_dlinkAddTail(server_p, &server_p->node, &server_conf_list);
|
|
|
|
/*
|
|
* We used to only print this if serv_connect() actually
|
|
* suceeded, but since rb_tcp_connect() can call the callback
|
|
* immediately if there is an error, we were getting error messages
|
|
* in the wrong order. SO, we just print out the activated line,
|
|
* and let serv_connect() / serv_connect_callback() print an
|
|
* error afterwards if it fails.
|
|
* -- adrian
|
|
*/
|
|
sendto_realops_snomask(sno::GENERAL, L_ALL,
|
|
"Connection to %s activated",
|
|
server_p->name);
|
|
|
|
serv_connect(server_p, 0);
|
|
}
|
|
|
|
int
|
|
check_server(const char *name, client::client *client_p)
|
|
{
|
|
struct server_conf *server_p = NULL;
|
|
struct server_conf *tmp_p;
|
|
rb_dlink_node *ptr;
|
|
int error = -1;
|
|
const char *encr;
|
|
bool name_matched = false;
|
|
bool host_matched = false;
|
|
bool certfp_failed = false;
|
|
|
|
s_assert(NULL != client_p);
|
|
if(client_p == NULL)
|
|
return error;
|
|
|
|
if(!(client_p->localClient->passwd))
|
|
return -2;
|
|
|
|
if(strlen(name) > HOSTLEN)
|
|
return -4;
|
|
|
|
RB_DLINK_FOREACH(ptr, server_conf_list.head)
|
|
{
|
|
struct rb_sockaddr_storage client_addr;
|
|
|
|
tmp_p = (server_conf *)ptr->data;
|
|
|
|
if(ServerConfIllegal(tmp_p))
|
|
continue;
|
|
|
|
if(!match(tmp_p->name, name))
|
|
continue;
|
|
|
|
name_matched = true;
|
|
|
|
if(rb_inet_pton_sock(client_p->sockhost, (struct sockaddr *)&client_addr) <= 0)
|
|
SET_SS_FAMILY(&client_addr, AF_UNSPEC);
|
|
|
|
if((tmp_p->connect_host && match(tmp_p->connect_host, client_p->host))
|
|
|| (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect4)
|
|
&& comp_with_mask_sock((struct sockaddr *)&client_addr,
|
|
(struct sockaddr *)&tmp_p->connect4, 32))
|
|
#ifdef RB_IPV6
|
|
|| (GET_SS_FAMILY(&client_addr) == GET_SS_FAMILY(&tmp_p->connect6)
|
|
&& comp_with_mask_sock((struct sockaddr *)&client_addr,
|
|
(struct sockaddr *)&tmp_p->connect6, 128))
|
|
#endif
|
|
)
|
|
{
|
|
host_matched = true;
|
|
|
|
if(tmp_p->passwd)
|
|
{
|
|
if(ServerConfEncrypted(tmp_p))
|
|
{
|
|
encr = rb_crypt(client_p->localClient->passwd,
|
|
tmp_p->passwd);
|
|
if(encr != NULL && !strcmp(tmp_p->passwd, encr))
|
|
{
|
|
server_p = tmp_p;
|
|
break;
|
|
}
|
|
else
|
|
continue;
|
|
}
|
|
else if(strcmp(tmp_p->passwd, client_p->localClient->passwd))
|
|
continue;
|
|
}
|
|
|
|
if(tmp_p->certfp)
|
|
{
|
|
if(!client_p->certfp || rb_strcasecmp(tmp_p->certfp, client_p->certfp) != 0) {
|
|
certfp_failed = true;
|
|
continue;
|
|
}
|
|
}
|
|
|
|
server_p = tmp_p;
|
|
break;
|
|
}
|
|
}
|
|
|
|
if(server_p == NULL)
|
|
{
|
|
/* return the most specific error */
|
|
if(certfp_failed)
|
|
error = -6;
|
|
else if(host_matched)
|
|
error = -2;
|
|
else if(name_matched)
|
|
error = -3;
|
|
|
|
return error;
|
|
}
|
|
|
|
if(ServerConfSSL(server_p) && client_p->localClient->ssl_ctl == NULL)
|
|
{
|
|
return -5;
|
|
}
|
|
|
|
attach_server_conf(client_p, server_p);
|
|
|
|
/* clear ZIP/TB if they support but we dont want them */
|
|
#ifdef HAVE_LIBZ
|
|
if(!ServerConfCompressed(server_p))
|
|
#endif
|
|
ClearCap(client_p, CAP_ZIP);
|
|
|
|
if(!ServerConfTb(server_p))
|
|
ClearCap(client_p, CAP_TB);
|
|
|
|
return 0;
|
|
}
|
|
|
|
/*
|
|
* send_capabilities
|
|
*
|
|
* inputs - Client pointer to send to
|
|
* - int flag of capabilities that this server has
|
|
* output - NONE
|
|
* side effects - send the CAPAB line to a server -orabidoo
|
|
*/
|
|
void
|
|
send_capabilities(client::client *client_p, unsigned int cap_can_send)
|
|
{
|
|
sendto_one(client_p, "CAPAB :%s", serv_capindex.list(cap_can_send).c_str());
|
|
}
|
|
|
|
static void
|
|
burst_ban(client::client *client_p)
|
|
{
|
|
rb_dlink_node *ptr;
|
|
struct ConfItem *aconf;
|
|
const char *type, *oper;
|
|
/* +5 for !,@,{,} and null */
|
|
char operbuf[NICKLEN + USERLEN + HOSTLEN + HOSTLEN + 5];
|
|
char *p;
|
|
size_t melen;
|
|
|
|
melen = strlen(me.name);
|
|
RB_DLINK_FOREACH(ptr, prop_bans.head)
|
|
{
|
|
aconf = (ConfItem *)ptr->data;
|
|
|
|
/* Skip expired stuff. */
|
|
if(aconf->lifetime < rb_current_time())
|
|
continue;
|
|
switch(aconf->status & ~CONF_ILLEGAL)
|
|
{
|
|
case CONF_KILL: type = "K"; break;
|
|
case CONF_DLINE: type = "D"; break;
|
|
case CONF_XLINE: type = "X"; break;
|
|
case CONF_RESV_NICK: type = "R"; break;
|
|
case CONF_RESV_CHANNEL: type = "R"; break;
|
|
default:
|
|
continue;
|
|
}
|
|
oper = aconf->info.oper;
|
|
if(aconf->flags & CONF_FLAGS_MYOPER)
|
|
{
|
|
/* Our operator{} names may not be meaningful
|
|
* to other servers, so rewrite to our server
|
|
* name.
|
|
*/
|
|
rb_strlcpy(operbuf, aconf->info.oper, sizeof buf);
|
|
p = strrchr(operbuf, '{');
|
|
if (p != NULL &&
|
|
operbuf + sizeof operbuf - p > (ptrdiff_t)(melen + 2))
|
|
{
|
|
memcpy(p + 1, me.name, melen);
|
|
p[melen + 1] = '}';
|
|
p[melen + 2] = '\0';
|
|
oper = operbuf;
|
|
}
|
|
}
|
|
sendto_one(client_p, ":%s BAN %s %s %s %lu %d %d %s :%s%s%s",
|
|
me.id,
|
|
type,
|
|
aconf->user ? aconf->user : "*", aconf->host,
|
|
(unsigned long)aconf->created,
|
|
(int)(aconf->hold - aconf->created),
|
|
(int)(aconf->lifetime - aconf->created),
|
|
oper,
|
|
aconf->passwd,
|
|
aconf->spasswd ? "|" : "",
|
|
aconf->spasswd ? aconf->spasswd : "");
|
|
}
|
|
}
|
|
|
|
/* burst_modes_TS6()
|
|
*
|
|
* input - client to burst to, channel name, list to burst, mode flag
|
|
* output -
|
|
* side effects - client is sent a list of +b, +e, or +I modes
|
|
*/
|
|
static void
|
|
burst_modes_TS6(client::client &client,
|
|
chan::chan &chan,
|
|
chan::list &list,
|
|
const char &flag)
|
|
{
|
|
auto mlen(sprintf(buf, ":%s BMASK %ld %s %c :", me.id, long(chan.channelts), chan.name.c_str(), flag));
|
|
auto cur_len(mlen);
|
|
auto t(buf + mlen);
|
|
for (const auto &ban : list)
|
|
{
|
|
const auto &mask(ban.banstr);
|
|
const auto &forward(ban.forward);
|
|
const auto tlen(mask.size() + 1 + (forward.empty()? 0 : forward.size() + 1));
|
|
|
|
// uh oh
|
|
if (cur_len + tlen > BUFSIZE - 3)
|
|
{
|
|
// the one we're trying to send doesnt fit at all!
|
|
if(cur_len == mlen)
|
|
{
|
|
s_assert(0);
|
|
continue;
|
|
}
|
|
|
|
/* chop off trailing space and send.. */
|
|
*(t-1) = '\0';
|
|
sendto_one(&client, "%s", buf);
|
|
cur_len = mlen;
|
|
t = buf + mlen;
|
|
}
|
|
|
|
if (forward.size())
|
|
sprintf(t, "%s$%s ", mask.c_str(), forward.c_str());
|
|
else
|
|
sprintf(t, "%s ", mask.c_str());
|
|
|
|
t += tlen;
|
|
cur_len += tlen;
|
|
}
|
|
|
|
/* cant ever exit the loop above without having modified buf,
|
|
* chop off trailing space and send.
|
|
*/
|
|
*(t-1) = '\0';
|
|
sendto_one(&client, "%s", buf);
|
|
}
|
|
|
|
/*
|
|
* burst_TS6
|
|
*
|
|
* inputs - client (server) to send nick towards
|
|
* - client to send nick for
|
|
* output - NONE
|
|
* side effects - NICK message is sent towards given client_p
|
|
*/
|
|
static void
|
|
burst_TS6(client::client *client_p)
|
|
{
|
|
client::client *target_p;
|
|
chan::chan *chptr;
|
|
chan::membership *msptr;
|
|
hook_data_client hclientinfo;
|
|
hook_data_channel hchaninfo;
|
|
rb_dlink_node *ptr;
|
|
rb_dlink_node *uptr;
|
|
char *t;
|
|
int tlen, mlen;
|
|
int cur_len = 0;
|
|
|
|
hclientinfo.client = hchaninfo.client = client_p;
|
|
|
|
RB_DLINK_FOREACH(ptr, global_client_list.head)
|
|
{
|
|
char ubuf[BUFSIZE];
|
|
target_p = (client::client *)ptr->data;
|
|
|
|
if(!is_person(*target_p))
|
|
continue;
|
|
|
|
delta(umode::table, 0, target_p->mode, ubuf);
|
|
|
|
if(IsCapable(client_p, CAP_EUID))
|
|
sendto_one(client_p, ":%s EUID %s %d %ld %s %s %s %s %s %s %s :%s",
|
|
target_p->servptr->id, target_p->name,
|
|
target_p->hopcount + 1,
|
|
(long) target_p->tsinfo, ubuf,
|
|
target_p->username, target_p->host,
|
|
is_ip_spoof(*target_p) ? "0" : target_p->sockhost,
|
|
target_p->id,
|
|
is_dyn_spoof(*target_p) ? target_p->orighost : "*",
|
|
suser(user(*target_p)).empty() ? "*" : suser(user(*target_p)).c_str(),
|
|
target_p->info);
|
|
else
|
|
sendto_one(client_p, ":%s UID %s %d %ld %s %s %s %s %s :%s",
|
|
target_p->servptr->id, target_p->name,
|
|
target_p->hopcount + 1,
|
|
(long) target_p->tsinfo, ubuf,
|
|
target_p->username, target_p->host,
|
|
is_ip_spoof(*target_p) ? "0" : target_p->sockhost,
|
|
target_p->id, target_p->info);
|
|
|
|
if(!EmptyString(target_p->certfp))
|
|
sendto_one(client_p, ":%s ENCAP * CERTFP :%s",
|
|
use_id(target_p), target_p->certfp);
|
|
|
|
if(!IsCapable(client_p, CAP_EUID))
|
|
{
|
|
if(is_dyn_spoof(*target_p))
|
|
sendto_one(client_p, ":%s ENCAP * REALHOST %s",
|
|
use_id(target_p), target_p->orighost);
|
|
|
|
if (!suser(user(*target_p)).empty())
|
|
sendto_one(client_p, ":%s ENCAP * LOGIN %s",
|
|
use_id(target_p),
|
|
suser(user(*target_p)).c_str());
|
|
}
|
|
|
|
if(ConfigFileEntry.burst_away && !away(user(*target_p)).empty())
|
|
sendto_one(client_p, ":%s AWAY :%s",
|
|
use_id(target_p),
|
|
away(user(*target_p)).c_str());
|
|
|
|
hclientinfo.target = target_p;
|
|
call_hook(h_burst_client, &hclientinfo);
|
|
}
|
|
|
|
|
|
for(const auto &pit : chan::chans)
|
|
{
|
|
const auto &chptr(pit.second.get());
|
|
|
|
if(chptr->name[0] != '#')
|
|
continue;
|
|
|
|
cur_len = mlen = sprintf(buf, ":%s SJOIN %ld %s %s :", me.id,
|
|
(long) chptr->channelts, chptr->name.c_str(),
|
|
channel_modes(chptr, client_p));
|
|
|
|
t = buf + mlen;
|
|
|
|
for (auto &pair : chptr->members.global)
|
|
{
|
|
msptr = &pair.second;
|
|
auto *const client(pair.first);
|
|
|
|
tlen = strlen(use_id(client)) + 1;
|
|
if(is_chanop(msptr))
|
|
tlen++;
|
|
if(is_voiced(msptr))
|
|
tlen++;
|
|
|
|
if(cur_len + tlen >= BUFSIZE - 3)
|
|
{
|
|
*(t-1) = '\0';
|
|
sendto_one(client_p, "%s", buf);
|
|
cur_len = mlen;
|
|
t = buf + mlen;
|
|
}
|
|
|
|
sprintf(t, "%s%s ", chan::find_status(msptr, 1), use_id(client));
|
|
|
|
cur_len += tlen;
|
|
t += tlen;
|
|
}
|
|
|
|
if (!empty(chptr->members))
|
|
{
|
|
/* remove trailing space */
|
|
*(t-1) = '\0';
|
|
}
|
|
sendto_one(client_p, "%s", buf);
|
|
|
|
namespace mode = chan::mode;
|
|
|
|
if (!empty(*chptr, mode::BAN))
|
|
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::BAN), 'b');
|
|
|
|
if (IsCapable(client_p, CAP_EX) && !empty(*chptr, mode::EXCEPTION))
|
|
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::EXCEPTION), 'e');
|
|
|
|
if (IsCapable(client_p, CAP_IE) && !empty(*chptr, mode::INVEX))
|
|
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::INVEX), 'I');
|
|
|
|
if (!empty(*chptr, mode::QUIET))
|
|
burst_modes_TS6(*client_p, *chptr, get(*chptr, mode::QUIET), 'q');
|
|
|
|
if (IsCapable(client_p, CAP_TB) && chptr->topic)
|
|
sendto_one(client_p, ":%s TB %s %ld %s%s:%s",
|
|
me.id,
|
|
chptr->name.c_str(),
|
|
long(chptr->topic.time),
|
|
ConfigChannel.burst_topicwho? chptr->topic.info.c_str() : "",
|
|
ConfigChannel.burst_topicwho? " " : "",
|
|
chptr->topic.text.c_str());
|
|
|
|
if (IsCapable(client_p, CAP_MLOCK))
|
|
sendto_one(client_p, ":%s MLOCK %ld %s :%s",
|
|
me.id, (long) chptr->channelts, chptr->name.c_str(),
|
|
chptr->mode_lock.c_str());
|
|
|
|
hchaninfo.chptr = chptr;
|
|
call_hook(h_burst_channel, &hchaninfo);
|
|
}
|
|
|
|
hclientinfo.target = NULL;
|
|
call_hook(h_burst_finished, &hclientinfo);
|
|
}
|
|
|
|
/*
|
|
* show_capabilities - show current server capabilities
|
|
*
|
|
* inputs - pointer to an client::client
|
|
* output - pointer to static string
|
|
* side effects - build up string representing capabilities of server listed
|
|
*/
|
|
const char *
|
|
show_capabilities(client::client *target_p)
|
|
{
|
|
static char msgbuf[BUFSIZE];
|
|
|
|
*msgbuf = '\0';
|
|
|
|
if(has_id(target_p))
|
|
rb_strlcpy(msgbuf, " TS6", sizeof(msgbuf));
|
|
|
|
if(IsSSL(target_p))
|
|
rb_strlcat(msgbuf, " SSL", sizeof(msgbuf));
|
|
|
|
if(!is_server(*target_p) || !caps(serv(*target_p))) // short circuit if no caps
|
|
return msgbuf + 1;
|
|
|
|
rb_strlcat(msgbuf, " ", sizeof(msgbuf));
|
|
rb_strlcat(msgbuf, serv_capindex.list(caps(serv(*target_p))).c_str(), sizeof(msgbuf));
|
|
|
|
return msgbuf + 1;
|
|
}
|
|
|
|
/*
|
|
* server_estab
|
|
*
|
|
* inputs - pointer to a client::client
|
|
* output -
|
|
* side effects -
|
|
*/
|
|
int
|
|
server_estab(client::client *client_p)
|
|
{
|
|
client::client *target_p;
|
|
struct server_conf *server_p;
|
|
hook_data_client hdata;
|
|
char *host;
|
|
rb_dlink_node *ptr;
|
|
char note[HOSTLEN + 15];
|
|
|
|
s_assert(NULL != client_p);
|
|
if(client_p == NULL)
|
|
return -1;
|
|
|
|
host = client_p->name;
|
|
|
|
if((server_p = client_p->localClient->att_sconf) == NULL)
|
|
{
|
|
/* This shouldn't happen, better tell the ops... -A1kmm */
|
|
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
|
|
"Warning: Lost connect{} block for server %s!", host);
|
|
return exit_client(client_p, client_p, client_p, "Lost connect{} block!");
|
|
}
|
|
|
|
/* We shouldn't have to check this, it should already done before
|
|
* server_estab is called. -A1kmm
|
|
*/
|
|
if(client_p->localClient->passwd)
|
|
{
|
|
memset(client_p->localClient->passwd, 0, strlen(client_p->localClient->passwd));
|
|
rb_free(client_p->localClient->passwd);
|
|
client_p->localClient->passwd = NULL;
|
|
}
|
|
|
|
/* Its got identd , since its a server */
|
|
set_got_id(*client_p);
|
|
|
|
if(is_unknown(*client_p))
|
|
{
|
|
/* the server may be linking based on certificate fingerprint now. --nenolod */
|
|
sendto_one(client_p, "PASS %s TS %d :%s",
|
|
EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
|
|
|
|
/* pass info to new server */
|
|
send_capabilities(client_p, default_server_capabs | CAP_MASK
|
|
| (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
|
|
| (ServerConfTb(server_p) ? CAP_TB : 0));
|
|
|
|
sendto_one(client_p, "SERVER %s 1 :%s%s",
|
|
me.name,
|
|
ConfigServerHide.hidden ? "(H) " : "",
|
|
(me.info[0]) ? (me.info) : "IRCers United");
|
|
}
|
|
|
|
if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
|
|
ilog_error("rb_set_buffers failed for server");
|
|
|
|
/* Enable compression now */
|
|
if(IsCapable(client_p, CAP_ZIP))
|
|
{
|
|
start_zlib_session(client_p);
|
|
}
|
|
sendto_one(client_p, "SVINFO %d %d 0 :%ld", TS_CURRENT, TS_MIN, (long int)rb_current_time());
|
|
|
|
client_p->servptr = &me;
|
|
|
|
if(is_any_dead(*client_p))
|
|
return CLIENT_EXITED;
|
|
|
|
set_server(*client_p);
|
|
|
|
client_p->lnode = servers(serv(me)).emplace(end(servers(serv(me))), client_p);
|
|
rb_dlinkMoveNode(&client_p->localClient->tnode, &unknown_list, &serv_list);
|
|
rb_dlinkAddTailAlloc(client_p, &global_serv_list);
|
|
|
|
if(has_id(client_p))
|
|
add_to_id_hash(client_p->id, client_p);
|
|
|
|
add_to_client_hash(client_p->name, client_p);
|
|
/* doesnt duplicate client_p->serv if allocated this struct already */
|
|
make_serv(*client_p);
|
|
|
|
caps(serv(*client_p)) = client_p->localClient->caps;
|
|
|
|
if(client_p->localClient->fullcaps)
|
|
{
|
|
fullcaps(serv(*client_p)) = client_p->localClient->fullcaps;
|
|
rb_free(client_p->localClient->fullcaps);
|
|
client_p->localClient->fullcaps = NULL;
|
|
}
|
|
|
|
nameinfo(serv(*client_p)) = cache::serv::connect(client_p->name, client_p->info, is_hidden(*client_p));
|
|
client_p->localClient->firsttime = rb_current_time();
|
|
/* fixing eob timings.. -gnp */
|
|
|
|
if((rb_dlink_list_length(&lclient_list) + rb_dlink_list_length(&serv_list)) >
|
|
(unsigned long)MaxConnectionCount)
|
|
MaxConnectionCount = rb_dlink_list_length(&lclient_list) +
|
|
rb_dlink_list_length(&serv_list);
|
|
|
|
/* Show the real host/IP to admins */
|
|
sendto_realops_snomask(sno::GENERAL, L_ALL,
|
|
"Link with %s established: (%s) link",
|
|
client_p->name,
|
|
show_capabilities(client_p));
|
|
|
|
ilog(L_SERVER, "Link with %s established: (%s) link",
|
|
log_client_name(client_p, SHOW_IP), show_capabilities(client_p));
|
|
|
|
hdata.client = &me;
|
|
hdata.target = client_p;
|
|
call_hook(h_server_introduced, &hdata);
|
|
|
|
snprintf(note, sizeof(note), "Server: %s", client_p->name);
|
|
rb_note(client_p->localClient->F, note);
|
|
|
|
/*
|
|
** Old sendto_serv_but_one() call removed because we now
|
|
** need to send different names to different servers
|
|
** (domain name matching) Send new server to other servers.
|
|
*/
|
|
RB_DLINK_FOREACH(ptr, serv_list.head)
|
|
{
|
|
target_p = (client::client *)ptr->data;
|
|
|
|
if(target_p == client_p)
|
|
continue;
|
|
|
|
if(has_id(target_p) && has_id(client_p))
|
|
{
|
|
sendto_one(target_p, ":%s SID %s 2 %s :%s%s",
|
|
me.id, client_p->name, client_p->id,
|
|
is_hidden(*client_p) ? "(H) " : "", client_p->info);
|
|
|
|
if(fullcaps(serv(*client_p)).size())
|
|
sendto_one(target_p, ":%s ENCAP * GCAP :%s",
|
|
client_p->id, fullcaps(serv(*client_p)).c_str());
|
|
}
|
|
else
|
|
{
|
|
sendto_one(target_p, ":%s SERVER %s 2 :%s%s",
|
|
me.name, client_p->name,
|
|
is_hidden(*client_p) ? "(H) " : "", client_p->info);
|
|
|
|
if(fullcaps(serv(*client_p)).size())
|
|
sendto_one(target_p, ":%s ENCAP * GCAP :%s",
|
|
client_p->name, fullcaps(serv(*client_p)).c_str());
|
|
}
|
|
}
|
|
|
|
/*
|
|
** Pass on my client information to the new server
|
|
**
|
|
** First, pass only servers (idea is that if the link gets
|
|
** cancelled beacause the server was already there,
|
|
** there are no NICK's to be cancelled...). Of course,
|
|
** if cancellation occurs, all this info is sent anyway,
|
|
** and I guess the link dies when a read is attempted...? --msa
|
|
**
|
|
** Note: Link cancellation to occur at this point means
|
|
** that at least two servers from my fragment are building
|
|
** up connection this other fragment at the same time, it's
|
|
** a race condition, not the normal way of operation...
|
|
**
|
|
** ALSO NOTE: using the get_client_name for server names--
|
|
** see previous *WARNING*!!! (Also, original inpath
|
|
** is destroyed...)
|
|
*/
|
|
RB_DLINK_FOREACH(ptr, global_serv_list.head)
|
|
{
|
|
target_p = (client::client *)ptr->data;
|
|
|
|
/* target_p->from == target_p for target_p == client_p */
|
|
if(is_me(*target_p) || target_p->from == client_p)
|
|
continue;
|
|
|
|
/* presumption, if target has an id, so does its uplink */
|
|
if(has_id(client_p) && has_id(target_p))
|
|
sendto_one(client_p, ":%s SID %s %d %s :%s%s",
|
|
target_p->servptr->id, target_p->name,
|
|
target_p->hopcount + 1, target_p->id,
|
|
is_hidden(*target_p) ? "(H) " : "", target_p->info);
|
|
else
|
|
sendto_one(client_p, ":%s SERVER %s %d :%s%s",
|
|
target_p->servptr->name,
|
|
target_p->name, target_p->hopcount + 1,
|
|
is_hidden(*target_p) ? "(H) " : "", target_p->info);
|
|
|
|
if(fullcaps(serv(*target_p)).size())
|
|
sendto_one(client_p, ":%s ENCAP * GCAP :%s",
|
|
get_id(target_p, client_p),
|
|
fullcaps(serv(*target_p)).c_str());
|
|
}
|
|
|
|
if(IsCapable(client_p, CAP_BAN))
|
|
burst_ban(client_p);
|
|
|
|
burst_TS6(client_p);
|
|
|
|
/* Always send a PING after connect burst is done */
|
|
sendto_one(client_p, "PING :%s", get_id(&me, client_p));
|
|
|
|
free_pre_client(client_p);
|
|
|
|
send_pop_queue(client_p);
|
|
|
|
return 0;
|
|
}
|
|
|
|
/*
|
|
* New server connection code
|
|
* Based upon the stuff floating about in s_bsd.c
|
|
* -- adrian
|
|
*/
|
|
|
|
/*
|
|
* serv_connect() - initiate a server connection
|
|
*
|
|
* inputs - pointer to conf
|
|
* - pointer to client doing the connet
|
|
* output -
|
|
* side effects -
|
|
*
|
|
* This code initiates a connection to a server. It first checks to make
|
|
* sure the given server exists. If this is the case, it creates a socket,
|
|
* creates a client, saves the socket information in the client, and
|
|
* initiates a connection to the server through rb_connect_tcp(). The
|
|
* completion of this goes through serv_completed_connection().
|
|
*
|
|
* We return 1 if the connection is attempted, since we don't know whether
|
|
* it suceeded or not, and 0 if it fails in here somewhere.
|
|
*/
|
|
int
|
|
serv_connect(struct server_conf *server_p, client::client *by)
|
|
{
|
|
client::client *client_p;
|
|
struct rb_sockaddr_storage sa_connect;
|
|
struct rb_sockaddr_storage sa_bind;
|
|
char note[HOSTLEN + 10];
|
|
rb_fde_t *F;
|
|
|
|
s_assert(server_p != NULL);
|
|
if(server_p == NULL)
|
|
return 0;
|
|
|
|
#ifdef RB_IPV6
|
|
if(server_p->aftype != AF_UNSPEC
|
|
&& GET_SS_FAMILY(&server_p->connect4) == AF_INET
|
|
&& GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
|
|
{
|
|
if(rand() % 2 == 0)
|
|
{
|
|
sa_connect = server_p->connect4;
|
|
sa_bind = server_p->bind4;
|
|
}
|
|
else
|
|
{
|
|
sa_connect = server_p->connect6;
|
|
sa_bind = server_p->bind6;
|
|
}
|
|
}
|
|
else if(server_p->aftype == AF_INET || GET_SS_FAMILY(&server_p->connect4) == AF_INET)
|
|
#endif
|
|
{
|
|
sa_connect = server_p->connect4;
|
|
sa_bind = server_p->bind4;
|
|
}
|
|
#ifdef RB_IPV6
|
|
else if(server_p->aftype == AF_INET6 || GET_SS_FAMILY(&server_p->connect6) == AF_INET6)
|
|
{
|
|
sa_connect = server_p->connect6;
|
|
sa_bind = server_p->bind6;
|
|
}
|
|
#endif
|
|
|
|
/* log */
|
|
buf[0] = 0;
|
|
rb_inet_ntop_sock((struct sockaddr *)&sa_connect, buf, sizeof(buf));
|
|
ilog(L_SERVER, "Connect to *[%s] @%s", server_p->name, buf);
|
|
|
|
/*
|
|
* Make sure this server isn't already connected
|
|
*/
|
|
if((client_p = find_server(NULL, server_p->name)))
|
|
{
|
|
sendto_realops_snomask(sno::GENERAL, L_ALL,
|
|
"Server %s already present from %s",
|
|
server_p->name, client_p->name);
|
|
if(by && is_person(*by) && !my(*by))
|
|
sendto_one_notice(by, ":Server %s already present from %s",
|
|
server_p->name, client_p->name);
|
|
return 0;
|
|
}
|
|
|
|
/* create a socket for the server connection */
|
|
if(GET_SS_FAMILY(&sa_connect) == AF_UNSPEC)
|
|
{
|
|
ilog_error("unspecified socket address family");
|
|
return 0;
|
|
}
|
|
else if((F = rb_socket(GET_SS_FAMILY(&sa_connect), SOCK_STREAM, 0, NULL)) == NULL)
|
|
{
|
|
ilog_error("opening a stream socket");
|
|
return 0;
|
|
}
|
|
|
|
/* servernames are always guaranteed under HOSTLEN chars */
|
|
snprintf(note, sizeof(note), "Server: %s", server_p->name);
|
|
rb_note(F, note);
|
|
|
|
/* Create a local client */
|
|
client_p = client::make_client(NULL);
|
|
|
|
/* Copy in the server, hostname, fd */
|
|
rb_strlcpy(client_p->name, server_p->name, sizeof(client_p->name));
|
|
if(server_p->connect_host)
|
|
rb_strlcpy(client_p->host, server_p->connect_host, sizeof(client_p->host));
|
|
else
|
|
rb_strlcpy(client_p->host, buf, sizeof(client_p->host));
|
|
rb_strlcpy(client_p->sockhost, buf, sizeof(client_p->sockhost));
|
|
client_p->localClient->F = F;
|
|
/* shove the port number into the sockaddr */
|
|
SET_SS_PORT(&sa_connect, htons(server_p->port));
|
|
|
|
/*
|
|
* Set up the initial server evilness, ripped straight from
|
|
* connect_server(), so don't blame me for it being evil.
|
|
* -- adrian
|
|
*/
|
|
|
|
if(!rb_set_buffers(client_p->localClient->F, READBUF_SIZE))
|
|
{
|
|
ilog_error("setting the buffer size for a server connection");
|
|
}
|
|
|
|
/*
|
|
* Attach config entries to client here rather than in
|
|
* serv_connect_callback(). This to avoid null pointer references.
|
|
*/
|
|
attach_server_conf(client_p, server_p);
|
|
|
|
/*
|
|
* at this point we have a connection in progress and C/N lines
|
|
* attached to the client, the socket info should be saved in the
|
|
* client and it should either be resolved or have a valid address.
|
|
*
|
|
* The socket has been connected or connect is in progress.
|
|
*/
|
|
make_serv(*client_p);
|
|
if(by && is_client(*by))
|
|
client::serv::by(serv(*client_p)) = by->name;
|
|
else
|
|
client::serv::by(serv(*client_p)) = "AutoConn.";
|
|
|
|
set_connecting(*client_p);
|
|
rb_dlinkAddTail(client_p, &client_p->node, &global_client_list);
|
|
|
|
if(GET_SS_FAMILY(&sa_bind) == AF_UNSPEC)
|
|
{
|
|
if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind4))
|
|
sa_bind = ServerInfo.bind4;
|
|
#ifdef RB_IPV6
|
|
if(GET_SS_FAMILY(&sa_connect) == GET_SS_FAMILY(&ServerInfo.bind6))
|
|
sa_bind = ServerInfo.bind6;
|
|
#endif
|
|
}
|
|
|
|
rb_connect_tcp(client_p->localClient->F,
|
|
(struct sockaddr *)&sa_connect,
|
|
GET_SS_FAMILY(&sa_bind) == AF_UNSPEC ? NULL : (struct sockaddr *)&sa_bind,
|
|
ServerConfSSL(server_p) ? serv_connect_ssl_callback : serv_connect_callback,
|
|
client_p, ConfigFileEntry.connect_timeout);
|
|
return 1;
|
|
}
|
|
|
|
static void
|
|
serv_connect_ssl_callback(rb_fde_t *F, int status, void *data)
|
|
{
|
|
client::client *client_p = (client::client *)data;
|
|
rb_fde_t *xF[2];
|
|
rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
|
|
if(status != RB_OK)
|
|
{
|
|
/* Print error message, just like non-SSL. */
|
|
serv_connect_callback(F, status, data);
|
|
return;
|
|
}
|
|
if(rb_socketpair(AF_UNIX, SOCK_STREAM, 0, &xF[0], &xF[1], "Outgoing ssld connection") == -1)
|
|
{
|
|
ilog_error("rb_socketpair failed for server");
|
|
serv_connect_callback(F, RB_ERROR, data);
|
|
return;
|
|
|
|
}
|
|
client_p->localClient->F = xF[0];
|
|
client_p->localClient->ssl_callback = serv_connect_ssl_open_callback;
|
|
|
|
client_p->localClient->ssl_ctl = start_ssld_connect(F, xF[1], connid_get(client_p));
|
|
if(!client_p->localClient->ssl_ctl)
|
|
{
|
|
serv_connect_callback(client_p->localClient->F, RB_ERROR, data);
|
|
return;
|
|
}
|
|
SetSSL(client_p);
|
|
}
|
|
|
|
static int
|
|
serv_connect_ssl_open_callback(client::client *client_p, int status)
|
|
{
|
|
serv_connect_callback(client_p->localClient->F, status, client_p);
|
|
return 1; /* suppress default exit_client handler for status != RB_OK */
|
|
}
|
|
|
|
/*
|
|
* serv_connect_callback() - complete a server connection.
|
|
*
|
|
* This routine is called after the server connection attempt has
|
|
* completed. If unsucessful, an error is sent to ops and the client
|
|
* is closed. If sucessful, it goes through the initialisation/check
|
|
* procedures, the capabilities are sent, and the socket is then
|
|
* marked for reading.
|
|
*/
|
|
static void
|
|
serv_connect_callback(rb_fde_t *F, int status, void *data)
|
|
{
|
|
client::client *client_p = (client::client *)data;
|
|
struct server_conf *server_p;
|
|
char *errstr;
|
|
|
|
/* First, make sure its a real client! */
|
|
s_assert(client_p != NULL);
|
|
s_assert(client_p->localClient->F == F);
|
|
|
|
if(client_p == NULL)
|
|
return;
|
|
|
|
/* while we were waiting for the callback, its possible this already
|
|
* linked in.. --fl
|
|
*/
|
|
if(find_server(NULL, client_p->name) != NULL)
|
|
{
|
|
exit_client(client_p, client_p, &me, "Server Exists");
|
|
return;
|
|
}
|
|
|
|
if(client_p->localClient->ssl_ctl == NULL)
|
|
rb_connect_sockaddr(F, (struct sockaddr *)&client_p->localClient->ip, sizeof(client_p->localClient->ip));
|
|
|
|
/* Check the status */
|
|
if(status != RB_OK)
|
|
{
|
|
/* COMM_ERR_TIMEOUT wont have an errno associated with it,
|
|
* the others will.. --fl
|
|
*/
|
|
if(status == RB_ERR_TIMEOUT || status == RB_ERROR_SSL)
|
|
{
|
|
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
|
|
"Error connecting to %s[%s]: %s",
|
|
client_p->name,
|
|
"255.255.255.255",
|
|
rb_errstr(status));
|
|
ilog(L_SERVER, "Error connecting to %s[%s]: %s",
|
|
client_p->name, client_p->sockhost,
|
|
rb_errstr(status));
|
|
}
|
|
else
|
|
{
|
|
errstr = strerror(rb_get_sockerr(F));
|
|
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
|
|
"Error connecting to %s[%s]: %s (%s)",
|
|
client_p->name,
|
|
"255.255.255.255",
|
|
rb_errstr(status), errstr);
|
|
ilog(L_SERVER, "Error connecting to %s[%s]: %s (%s)",
|
|
client_p->name, client_p->sockhost,
|
|
rb_errstr(status), errstr);
|
|
}
|
|
|
|
exit_client(client_p, client_p, &me, rb_errstr(status));
|
|
return;
|
|
}
|
|
|
|
/* COMM_OK, so continue the connection procedure */
|
|
/* Get the C/N lines */
|
|
if((server_p = client_p->localClient->att_sconf) == NULL)
|
|
{
|
|
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL, "Lost connect{} block for %s",
|
|
client_p->name);
|
|
exit_client(client_p, client_p, &me, "Lost connect{} block");
|
|
return;
|
|
}
|
|
|
|
if(server_p->certfp && (!client_p->certfp || rb_strcasecmp(server_p->certfp, client_p->certfp) != 0))
|
|
{
|
|
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
|
|
"Connection to %s has invalid certificate fingerprint %s",
|
|
client_p->name, client_p->certfp);
|
|
ilog(L_SERVER, "Access denied, invalid certificate fingerprint %s from %s",
|
|
client_p->certfp, log_client_name(client_p, SHOW_IP));
|
|
|
|
exit_client(client_p, client_p, &me, "Invalid fingerprint.");
|
|
return;
|
|
}
|
|
|
|
/* Next, send the initial handshake */
|
|
set_handshake(*client_p);
|
|
|
|
/* the server may be linking based on certificate fingerprint now. --nenolod */
|
|
sendto_one(client_p, "PASS %s TS %d :%s",
|
|
EmptyString(server_p->spasswd) ? "*" : server_p->spasswd, TS_CURRENT, me.id);
|
|
|
|
/* pass my info to the new server */
|
|
send_capabilities(client_p, default_server_capabs | CAP_MASK
|
|
| (ServerConfCompressed(server_p) ? CAP_ZIP_SUPPORTED : 0)
|
|
| (ServerConfTb(server_p) ? CAP_TB : 0));
|
|
|
|
sendto_one(client_p, "SERVER %s 1 :%s%s",
|
|
me.name,
|
|
ConfigServerHide.hidden ? "(H) " : "", me.info);
|
|
|
|
/*
|
|
* If we've been marked dead because a send failed, just exit
|
|
* here now and save everyone the trouble of us ever existing.
|
|
*/
|
|
if(is_any_dead(*client_p))
|
|
{
|
|
sendto_realops_snomask(sno::GENERAL, is_remote_connect(client_p) ? L_NETWIDE : L_ALL,
|
|
"%s went dead during handshake", client_p->name);
|
|
exit_client(client_p, client_p, &me, "Went dead during handshake");
|
|
return;
|
|
}
|
|
|
|
/* don't move to serv_list yet -- we haven't sent a burst! */
|
|
|
|
/* If we get here, we're ok, so lets start reading some data */
|
|
read_packet(F, client_p);
|
|
}
|
|
|
|
}
|