1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
|
/* +------------------------------------+
* | Inspire Internet Relay Chat Daemon |
* +------------------------------------+
*
* Inspire is copyright (C) 2002-2005 ChatSpike-Dev.
* E-mail:
* <brain@chatspike.net>
* <Craig@chatspike.net>
*
* Written by Craig Edwards, Craig McLure, and others.
* This program is free but copyrighted software; see
* the file COPYING for details.
*
* ---------------------------------------------------
*/
/* Now with added unF! ;) */
using namespace std;
#include "inspircd_config.h"
#include "inspircd.h"
#include "inspircd_io.h"
#include "inspircd_util.h"
#include <unistd.h>
#include <fcntl.h>
#include <sys/errno.h>
#include <sys/ioctl.h>
#include <sys/utsname.h>
#include <time.h>
#include <string>
#ifdef GCC3
#include <ext/hash_map>
#else
#include <hash_map>
#endif
#include <map>
#include <sstream>
#include <vector>
#include <deque>
#include <sched.h>
#ifdef THREADED_DNS
#include <pthread.h>
#endif
#include "users.h"
#include "ctables.h"
#include "globals.h"
#include "modules.h"
#include "dynamic.h"
#include "wildcard.h"
#include "message.h"
#include "mode.h"
#include "commands.h"
#include "xline.h"
#include "inspstring.h"
#include "dnsqueue.h"
#include "helperfuncs.h"
#include "hashcomp.h"
#include "socketengine.h"
extern int MODCOUNT;
extern int openSockfd[MAXSOCKS];
extern bool nofork;
extern bool unlimitcore;
extern struct sockaddr_in client,server;
extern char addrs[MAXBUF][255];
extern socklen_t length;
extern char configToken[MAXBUF], Addr[MAXBUF], Type[MAXBUF];
extern char DisabledCommands[MAXBUF];
extern bool AllowHalfop;
extern bool AllowProtect;
extern bool AllowFounder;
extern std::vector<Module*> modules;
extern std::vector<std::string> module_names;
extern std::vector<ircd_module*> factory;
extern std::vector<InspSocket*> module_sockets;
extern SocketEngine* SE;
extern time_t TIME;
extern time_t OLDTIME;
extern int DieDelay;
extern time_t startup_time;
extern int NetBufferSize;
extern int MaxConn;
extern unsigned int SoftLimit;
extern int MaxWhoResults;
extern time_t nb_start;
extern int dns_timeout;
extern int statsAccept, statsRefused, statsUnknown, statsCollisions, statsDns, statsDnsGood, statsDnsBad, statsConnects, statsSent, statsRecv;
extern userrec* fd_ref_table[65536];
extern int LogLevel;
extern char ServerName[MAXBUF];
extern char Network[MAXBUF];
extern char ServerDesc[MAXBUF];
extern char AdminName[MAXBUF];
extern char AdminEmail[MAXBUF];
extern char AdminNick[MAXBUF];
extern char diepass[MAXBUF];
extern char restartpass[MAXBUF];
extern char motd[MAXBUF];
extern char rules[MAXBUF];
extern char list[MAXBUF];
extern char PrefixQuit[MAXBUF];
extern char DieValue[MAXBUF];
extern char DNSServer[MAXBUF];
extern char data[65536];
typedef nspace::hash_map<std::string, userrec*, nspace::hash<string>, irc::StrHashComp> user_hash;
typedef nspace::hash_map<std::string, chanrec*, nspace::hash<string>, irc::StrHashComp> chan_hash;
typedef nspace::hash_map<in_addr,string*, nspace::hash<in_addr>, irc::InAddr_HashComp> address_cache;
typedef nspace::hash_map<std::string, WhoWasUser*, nspace::hash<string>, irc::StrHashComp> whowas_hash;
extern user_hash clientlist;
extern chan_hash chanlist;
extern whowas_hash whowas;
extern FILE *log_file;
extern std::stringstream config_f;
void ProcessUser(userrec* cu)
{
int result = EAGAIN;
log(DEBUG,"Processing user with fd %d",cu->fd);
int MOD_RESULT = 0;
int result2 = 0;
FOREACH_RESULT(OnRawSocketRead(cu->fd,data,65535,result2));
if (!MOD_RESULT)
{
result = cu->ReadData(data, 65535);
}
else
{
log(DEBUG,"Data result returned by module: %d",MOD_RESULT);
result = result2;
}
log(DEBUG,"Read result: %d",result);
if (result)
{
statsRecv += result;
// perform a check on the raw buffer as an array (not a string!) to remove
// characters 0 and 7 which are illegal in the RFC - replace them with spaces.
// hopefully this should stop even more people whining about "Unknown command: *"
for (int checker = 0; checker < result; checker++)
{
if ((data[checker] == 0) || (data[checker] == 7))
data[checker] = ' ';
}
if (result > 0)
data[result] = '\0';
userrec* current = cu;
int currfd = current->fd;
int floodlines = 0;
// add the data to the users buffer
if (result > 0)
{
if (!current->AddBuffer(data))
{
// AddBuffer returned false, theres too much data in the user's buffer and theyre up to no good.
if (current->registered == 7)
{
kill_link(current,"RecvQ exceeded");
}
else
{
WriteOpers("*** Excess flood from %s",current->ip);
log(DEFAULT,"Excess flood from: %s",current->ip);
add_zline(120,ServerName,"Flood from unregistered connection",current->ip);
apply_lines(APPLY_ZLINES);
}
return;
}
if (current->recvq.length() > (unsigned)NetBufferSize)
{
if (current->registered == 7)
{
kill_link(current,"RecvQ exceeded");
}
else
{
WriteOpers("*** Excess flood from %s",current->ip);
log(DEFAULT,"Excess flood from: %s",current->ip);
add_zline(120,ServerName,"Flood from unregistered connection",current->ip);
apply_lines(APPLY_ZLINES);
}
return;
}
// while there are complete lines to process...
while (current->BufferIsReady())
{
floodlines++;
if (TIME > current->reset_due)
{
current->reset_due = TIME + current->threshold;
current->lines_in = 0;
}
current->lines_in++;
if (current->lines_in > current->flood)
{
log(DEFAULT,"Excess flood from: %s!%s@%s",current->nick,current->ident,current->host);
WriteOpers("*** Excess flood from: %s!%s@%s",current->nick,current->ident,current->host);
kill_link(current,"Excess flood");
return;
}
if ((floodlines > current->flood) && (current->flood != 0))
{
if (current->registered == 7)
{
log(DEFAULT,"Excess flood from: %s!%s@%s",current->nick,current->ident,current->host);
WriteOpers("*** Excess flood from: %s!%s@%s",current->nick,current->ident,current->host);
kill_link(current,"Excess flood");
}
else
{
add_zline(120,ServerName,"Flood from unregistered connection",current->ip);
apply_lines(APPLY_ZLINES);
}
return;
}
char sanitized[MAXBUF];
// use GetBuffer to copy single lines into the sanitized string
std::string single_line = current->GetBuffer();
current->bytes_in += single_line.length();
current->cmds_in++;
if (single_line.length()>512)
{
log(DEFAULT,"Excess flood from: %s!%s@%s",current->nick,current->ident,current->host);
WriteOpers("*** Excess flood from: %s!%s@%s",current->nick,current->ident,current->host);
kill_link(current,"Excess flood");
return;
}
strlcpy(sanitized,single_line.c_str(),MAXBUF);
if (*sanitized)
{
userrec* old_comp = fd_ref_table[currfd];
// we're gonna re-scan to check if the nick is gone, after every
// command - if it has, we're gonna bail
process_buffer(sanitized,current);
// look for the user's record in case it's changed... if theyve quit,
// we cant do anything more with their buffer, so bail.
// there used to be an ugly, slow loop here. Now we have a reference
// table, life is much easier (and FASTER)
userrec* new_comp = fd_ref_table[currfd];
if ((currfd < 0) || (!fd_ref_table[currfd]) || (old_comp != new_comp))
{
return;
}
else
{
/* The user is still here, flush their buffer */
current->FlushWriteBuf();
}
}
}
return;
}
if ((result == -1) && (errno != EAGAIN) && (errno != EINTR))
{
log(DEBUG,"killing: %s",cu->nick);
kill_link(cu,strerror(errno));
return;
}
}
// result EAGAIN means nothing read
else if (result == EAGAIN)
{
}
else if (result == 0)
{
log(DEBUG,"InspIRCd: Exited: %s",cu->nick);
kill_link(cu,"Client exited");
log(DEBUG,"Bailing from client exit");
return;
}
}
/**
* This function is called once a second from the mainloop.
* It is intended to do background checking on all the user structs, e.g.
* stuff like ping checks, registration timeouts, etc.
* The function returns false when it is finished, and true if
* it needs to be run again (e.g. it has processed one of a batch of
* QUIT messages, but couldnt continue iterating because the iterator
* became invalid). This function is also responsible for checking
* if InspSocket derived classes are timed out.
*/
bool DoBackgroundUserStuff(time_t TIME)
{
unsigned int numsockets = module_sockets.size();
for (std::vector<InspSocket*>::iterator a = module_sockets.begin(); a < module_sockets.end(); a++)
{
InspSocket* s = (InspSocket*)*a;
if (s->Timeout(TIME))
{
log(DEBUG,"Socket poll returned false, close and bail");
SE->DelFd(s->GetFd());
s->Close();
module_sockets.erase(a);
delete s;
break;
}
if (module_sockets.size() != numsockets) break;
}
/* TODO: We need a seperate hash containing only local users for this
*/
for (user_hash::iterator count2 = clientlist.begin(); count2 != clientlist.end(); count2++)
{
/* Sanity checks for corrupted iterators (yes, really) */
userrec* curr = NULL;
if (count2->second)
curr = count2->second;
if ((long)curr == -1)
return false;
if ((curr) && (curr->fd != 0)) /* XXX - why are we checking fd != 0? --w00t */
{
int currfd = curr->fd;
// we don't check the state of remote users.
if (IS_LOCAL(curr))
{
curr->FlushWriteBuf();
if (curr->GetWriteError() != "")
{
log(DEBUG,"InspIRCd: write error: %s",curr->GetWriteError().c_str());
kill_link(curr,curr->GetWriteError().c_str());
return true;
}
// registration timeout -- didnt send USER/NICK/HOST in the time specified in
// their connection class.
if (((unsigned)TIME > (unsigned)curr->timeout) && (curr->registered != 7))
{
log(DEBUG,"InspIRCd: registration timeout: %s",curr->nick);
kill_link(curr,"Registration timeout");
return true;
}
if ((TIME > curr->signon) && (curr->registered == 3) && (AllModulesReportReady(curr)))
{
log(DEBUG,"signon exceed, registered=3, and modules ready, OK: %d %d",TIME,curr->signon);
curr->dns_done = true;
statsDnsBad++;
FullConnectUser(curr);
if (fd_ref_table[currfd] != curr) // something changed, bail pronto
return true;
}
if ((curr->dns_done) && (curr->registered == 3) && (AllModulesReportReady(curr)))
{
log(DEBUG,"dns done, registered=3, and modules ready, OK");
FullConnectUser(curr);
if (fd_ref_table[currfd] != curr) // something changed, bail pronto
return true;
}
if ((TIME > curr->nping) && (isnick(curr->nick)) && (curr->registered == 7))
{
if ((!curr->lastping) && (curr->registered == 7))
{
log(DEBUG,"InspIRCd: ping timeout: %s",curr->nick);
kill_link(curr,"Ping timeout");
return true;
}
Write(curr->fd,"PING :%s",ServerName);
log(DEBUG,"InspIRCd: pinging: %s",curr->nick);
curr->lastping = 0;
curr->nping = TIME+curr->pingmax; // was hard coded to 120
}
}
}
}
return false;
}
void OpenLog(char** argv, int argc)
{
std::string logpath = GetFullProgDir(argv,argc) + "/ircd.log";
log_file = fopen(logpath.c_str(),"a+");
if (!log_file)
{
printf("ERROR: Could not write to logfile %s, bailing!\n\n",logpath.c_str());
Exit(ERROR);
}
#ifdef IS_CYGWIN
printf("Logging to ircd.log...\n");
#else
printf("Logging to %s...\n",logpath.c_str());
#endif
}
void CheckRoot()
{
if (geteuid() == 0)
{
printf("WARNING!!! You are running an irc server as ROOT!!! DO NOT DO THIS!!!\n\n");
log(DEFAULT,"InspIRCd: startup: not starting with UID 0!");
Exit(ERROR);
}
}
void CheckDie()
{
if (DieValue[0])
{
printf("WARNING: %s\n\n",DieValue);
log(DEFAULT,"Ut-Oh, somebody didn't read their config file: '%s'",DieValue);
exit(0);
}
}
void LoadAllModules()
{
/* We must load the modules AFTER initializing the socket engine, now */
MODCOUNT = -1;
for (int count = 0; count < ConfValueEnum("module",&config_f); count++)
{
ConfValue("module","name",count,configToken,&config_f);
printf("Loading module... \033[1;32m%s\033[0m\n",configToken);
if (!LoadModule(configToken))
{
log(DEFAULT,"Exiting due to a module loader error.");
printf("\nThere was an error loading a module: %s\n\nYou might want to do './inspircd start' instead of 'bin/inspircd'\n\n",ModuleError());
Exit(0);
}
}
log(DEFAULT,"Total loaded modules: %lu",(unsigned long)MODCOUNT+1);
}
|