summaryrefslogtreecommitdiff
path: root/src/modules/extra
AgeCommit message (Collapse)Author
2019-03-14Update most URLs to use HTTPS and fix some dead links.Robby
2019-02-16Remove obsolete ifdef in m_ssl_gnutls.Peter Powell
GNUTLS_DIG_SHA256 was added in version 1.7.4 and we require 2.0.0+
2018-10-26Fix a bunch of harmless compiler warnings on recent GCC releases.Peter Powell
2018-10-13Implement support for IPv6 GeoIP lookups.Peter Powell
2018-09-27Fix SQL modules using "provider" in <database> instead of "module".Peter Powell
This fixes a regression introduced in 97a1d642.
2018-08-21Fix warnings about using std::auto_ptr on C++11 or newer.Peter Powell
2018-08-21Fix a few things that should be marked as override but aren't.Peter Powell
2018-07-24Make more config stuff case insensitive.Peter Powell
2018-07-15Use mysql_real_escape_string instead of mysql_escape string.Peter Powell
This is not exploitable as far as I know but it is probably best that we use the newer function just in case. Closes #649 (although the attack mentioned in that issue was not feasible).
2018-04-22Merge tag 'v2.0.26' into master.Peter Powell
2018-04-16Add ConfigTag::getUInt for reading unsigned config values.Peter Powell
2018-04-16Remove the default value in ConfigTag::get{Duration,Float,Int}.Peter Powell
2018-04-08Include modules/whois.h directly from files that use it.Peter Powell
2018-04-08Move OnStats from the core to a cross-module event.Peter Powell
Some core code still exists in the XLine system but this will be replaced when the XLine system is replaced later.
2018-04-07Fix some more oversights in m_geoip.Peter Powell
- Add the G: extban to the EXTBAN 005 token. - Use CXX11_OVERRIDE with ReadConfig and OnCheckBan. Thanks to @genius3000 for pointing these out.
2018-04-07Fix disabling the GeoIP extban in m_geoip.Peter Powell
2018-04-07SQL: Add HasColumn() to check if a result contains a named column.Daniel Vassdal
2018-04-06Implement support for banning users from channels by country code.Peter Powell
2018-03-30Update the GeoIP ExtItem when CGI:IRC sets the real IP (#1471)genius3000
Since CGI:IRC calls it's 'ChangeIP()' either from 'OnCheckReady()' or 'OnUserRegister()', both of which are called after the user has sent NICK/USER, we can safely skip re-setting the ExtItem prior to this point. This skips the first 'OnSetUserIP()' from 'User::AddUser()' as the 'OnSetConnectClass()' catch handles the initial setting.
2018-03-02m_ssl_openssl: Remove deprecated API members.Wade Cline
Backported from 2afc1af4639ae2bbef397f4f6acc834950017d91.
2018-02-17Move m_sslrehashsignal to the extra directory.Peter Powell
This module uses platform-specific behaviour that does not work on Windows.
2018-02-17Fix building on Windows (mostly).Peter Powell
2017-12-22Improve and modernize the SQL system API.Peter Powell
- Move everything into the SQL namespace and drop the SQL prefix. - Move SQLProvider::PopulateUserInfo to SQL::PopulateUserInfo. - Rename SQLEntry to SQL::Field and clean up. - Rename SQLEntries to SQL::Row. - Rename SQLerror to SQL::Error and clean up. - Rename SQLerrorNum to SQL::ErrorCode and drop the SQL_ prefix. - Rename ParamL to SQL::ParamList. - Rename ParamM to SQL::ParamMap; - Make implementing SQLQuery::OnError mandatory. - Redo most of the documentation in the sql header.
2017-12-21Merge pull request #1370 from clinew/insp30+openssl-crlPeter Powell
Add OpenSSL CRLs.
2017-12-16Remove usage of deprecated API members in m_ssl_openssl.Peter Powell
Closes #1440.
2017-12-14Add OpenSSL CRLs.Wade Cline
The 'crlfile' argument can point to a file that contains valid CRLs. The 'crlpath' argument can point to a directory which contains CRLs, albeit in OpenSSL's special hashed/symlink format. The 'crlmode' option 'chain' checks all certificates in the chain while the option 'leaf' checks only the leaf certificate in a chain.
2017-11-30Bump the minimum versions of GnuTLS to 2.0.0 and OpenSSL to 1.0.0.Peter Powell
Old TLS libraries should not be used anymore due to security risks.
2017-11-30Improve TLS security configuration in m_ssl_openssl.Peter Powell
- Always disable SSLv3. Unreal has already done this so clients will have to upgrade anyway. - Disable TLSv1.0 by default. Various security standards (e.g. PCI DSS) are already planning on sunsetting this so we should too.
2017-11-25Convert GenRandom to std::function.Peter Powell
2017-11-21Add the override keyword in places that it is missing.Peter Powell
GCCs warnings for this are much better than Clangs.
2017-11-13Unite SSL service providers and SSL profile classesAttila Molnar
2017-11-12Merge tag 'v2.0.25' into master.Peter Powell
2017-11-01Fix some SSL module issues.Peter Powell
- Use the same dhparams name in m_ssl_openssl as in other modules. - Fix building m_ssl_mbedtls.
2017-10-29Add support to IOHook for retrieving the hostname sent via SNI.Peter Powell
2017-10-21Add PackageInfo directives for Debian.Peter Powell
2017-10-18Clean up OnCleanup.Peter Powell
- Switch to using ExtensionItem::ExtensibleType for the type instead of TargetTypeFlags. - Pass the extensible to OnCleanup as an Extensible pointer instead of a void pointer. - Call OnCleanup for memberships as well as channels and users. - Rewrite event documentation to remove outdated references.
2017-10-15Update wiki links to use HTTPS and point to the correct pages.Peter Powell
When we release 3.0 these links will break as they will point to the pages for 3.0 rather than 2.0.
2017-10-12Fix a broken distro constraint in the m_ssl_gnutls PackageInfo.Peter Powell
2017-09-03Convert a bunch of time-related config options to getDuration.Peter Powell
2017-08-11Fix a broken distro constraint in the m_ssl_openssl PackageInfo.Peter Powell
2017-07-12Add CXX11_OVERRIDE to overridden members that lack it.Peter Powell
This fixes a ton of warnings when building on compilers that default to C++11 or newer.
2017-03-20m_ldapauth: fix providing username in PASSAdam
This has never worked because it never prepended attribute= to the search string. It also would prefer matching nick/ident over the user string provided which is inconsistent, since your ability to authenticate using PASS would depend on a ldap entry not existing with your current nick/ident. Instead, use username provided in PASS and then fallback to nick/ident.
2016-11-23Fix LibreSSL not having a shim for the OpenSSL 1.1 BIO API.Peter Powell
2016-10-25Fix OpenSSL build errors caused by BIO/BIO_METHOD now being opaque.Peter Powell
2016-09-16Add CentOS PackageInfoAdam
2016-09-16Merge pull request #1222 from SaberUK/master+warningsAttila Molnar
Fix various compiler warnings
2016-09-16Rewrite the build system directive parser.Peter Powell
2016-09-15Fix m_ldap warning about OpenLDAP being deprecated on OS X.Peter Powell
2016-09-15Fix m_geoip warning about the use of C++11 features.Peter Powell
2016-09-02Merge insp20Attila Molnar