mirror
/
oragono
mirror of https://github.com/oragono/oragono
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 67 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2330 Commits
20 Branches
Tree: 4050b6571a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4050b6571a'
${ noResults }
oragono/irc/server.go

server.go 33KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978 
  1. // Copyright (c) 2012-2014 Jeremy Latt

  2. // Copyright (c) 2014-2015 Edmund Huber

  3. // Copyright (c) 2016-2017 Daniel Oaks <daniel@danieloaks.net>

  4. // released under the MIT license

  5. 

  6. package irc

  7. 

  8. import (

  9. 	"bufio"

  10. 	"crypto/tls"

  11. 	"fmt"

  12. 	"net"

  13. 	"net/http"

  14. 	_ "net/http/pprof"

  15. 	"os"

  16. 	"os/signal"

  17. 	"strconv"

  18. 	"strings"

  19. 	"sync"

  20. 	"syscall"

  21. 	"time"

  22. 	"unsafe"

  23. 

  24. 	"github.com/goshuirc/irc-go/ircfmt"

  25. 	"github.com/oragono/oragono/irc/caps"

  26. 	"github.com/oragono/oragono/irc/connection_limits"

  27. 	"github.com/oragono/oragono/irc/logger"

  28. 	"github.com/oragono/oragono/irc/modes"

  29. 	"github.com/oragono/oragono/irc/sno"

  30. 	"github.com/tidwall/buntdb"

  31. )

  32. 

  33. var (

  34. 	// common error line to sub values into

  35. 	errorMsg = "ERROR :%s\r\n"

  36. 

  37. 	// supportedUserModesString acts as a cache for when we introduce users

  38. 	supportedUserModesString = modes.SupportedUserModes.String()

  39. 	// supportedChannelModesString acts as a cache for when we introduce users

  40. 	supportedChannelModesString = modes.SupportedChannelModes.String()

  41. 

  42. 	// whitelist of caps to serve on the STS-only listener. In particular,

  43. 	// never advertise SASL, to discourage people from sending their passwords:

  44. 	stsOnlyCaps = caps.NewSet(caps.STS, caps.MessageTags, caps.ServerTime, caps.LabeledResponse, caps.Nope)

  45. 

  46. 	// we only have standard channels for now. TODO: any updates to this

  47. 	// will also need to be reflected in CasefoldChannel

  48. 	chanTypes = "#"

  49. 

  50. 	throttleMessage = "You have attempted to connect too many times within a short duration. Wait a while, and you will be able to connect."

  51. )

  52. 

  53. // ListenerWrapper wraps a listener so it can be safely reconfigured or stopped

  54. type ListenerWrapper struct {

  55. 	// protects atomic update of config and shouldStop:

  56. 	sync.Mutex // tier 1

  57. 	listener   net.Listener

  58. 	config     listenerConfig

  59. 	shouldStop bool

  60. }

  61. 

  62. // Server is the main Oragono server.

  63. type Server struct {

  64. 	accounts          AccountManager

  65. 	channels          ChannelManager

  66. 	channelRegistry   ChannelRegistry

  67. 	clients           ClientManager

  68. 	config            unsafe.Pointer

  69. 	configFilename    string

  70. 	connectionLimiter connection_limits.Limiter

  71. 	ctime             time.Time

  72. 	dlines            *DLineManager

  73. 	helpIndexManager  HelpIndexManager

  74. 	klines            *KLineManager

  75. 	listeners         map[string]*ListenerWrapper

  76. 	logger            *logger.Manager

  77. 	monitorManager    MonitorManager

  78. 	name              string

  79. 	nameCasefolded    string

  80. 	rehashMutex       sync.Mutex // tier 4

  81. 	rehashSignal      chan os.Signal

  82. 	pprofServer       *http.Server

  83. 	resumeManager     ResumeManager

  84. 	signals           chan os.Signal

  85. 	snomasks          SnoManager

  86. 	store             *buntdb.DB

  87. 	torLimiter        connection_limits.TorLimiter

  88. 	whoWas            WhoWasList

  89. 	stats             Stats

  90. 	semaphores        ServerSemaphores

  91. }

  92. 

  93. var (

  94. 	// ServerExitSignals are the signals the server will exit on.

  95. 	ServerExitSignals = []os.Signal{

  96. 		syscall.SIGINT,

  97. 		syscall.SIGTERM,

  98. 		syscall.SIGQUIT,

  99. 	}

  100. )

  101. 

  102. type clientConn struct {

  103. 	Conn   net.Conn

  104. 	Config listenerConfig

  105. }

  106. 

  107. // NewServer returns a new Oragono server.

  108. func NewServer(config *Config, logger *logger.Manager) (*Server, error) {

  109. 	// initialize data structures

  110. 	server := &Server{

  111. 		ctime:        time.Now().UTC(),

  112. 		listeners:    make(map[string]*ListenerWrapper),

  113. 		logger:       logger,

  114. 		rehashSignal: make(chan os.Signal, 1),

  115. 		signals:      make(chan os.Signal, len(ServerExitSignals)),

  116. 	}

  117. 

  118. 	server.clients.Initialize()

  119. 	server.semaphores.Initialize()

  120. 	server.resumeManager.Initialize(server)

  121. 	server.whoWas.Initialize(config.Limits.WhowasEntries)

  122. 	server.monitorManager.Initialize()

  123. 	server.snomasks.Initialize()

  124. 

  125. 	if err := server.applyConfig(config, true); err != nil {

  126. 		return nil, err

  127. 	}

  128. 

  129. 	// Attempt to clean up when receiving these signals.

  130. 	signal.Notify(server.signals, ServerExitSignals...)

  131. 	signal.Notify(server.rehashSignal, syscall.SIGHUP)

  132. 

  133. 	return server, nil

  134. }

  135. 

  136. // setISupport sets up our RPL_ISUPPORT reply.

  137. func (config *Config) generateISupport() (err error) {

  138. 	maxTargetsString := strconv.Itoa(maxTargets)

  139. 

  140. 	// add RPL_ISUPPORT tokens

  141. 	isupport := &config.Server.isupport

  142. 	isupport.Initialize()

  143. 	isupport.Add("AWAYLEN", strconv.Itoa(config.Limits.AwayLen))

  144. 	isupport.Add("CASEMAPPING", "ascii")

  145. 	isupport.Add("CHANLIMIT", fmt.Sprintf("%s:%d", chanTypes, config.Channels.MaxChannelsPerClient))

  146. 	isupport.Add("CHANMODES", strings.Join([]string{modes.Modes{modes.BanMask, modes.ExceptMask, modes.InviteMask}.String(), "", modes.Modes{modes.UserLimit, modes.Key}.String(), modes.Modes{modes.InviteOnly, modes.Moderated, modes.NoOutside, modes.OpOnlyTopic, modes.ChanRoleplaying, modes.Secret}.String()}, ","))

  147. 	if config.History.Enabled && config.History.ChathistoryMax > 0 {

  148. 		isupport.Add("draft/CHATHISTORY", strconv.Itoa(config.History.ChathistoryMax))

  149. 	}

  150. 	isupport.Add("CHANNELLEN", strconv.Itoa(config.Limits.ChannelLen))

  151. 	isupport.Add("CHANTYPES", chanTypes)

  152. 	isupport.Add("ELIST", "U")

  153. 	isupport.Add("EXCEPTS", "")

  154. 	isupport.Add("INVEX", "")

  155. 	isupport.Add("KICKLEN", strconv.Itoa(config.Limits.KickLen))

  156. 	isupport.Add("MAXLIST", fmt.Sprintf("beI:%s", strconv.Itoa(config.Limits.ChanListModes)))

  157. 	isupport.Add("MAXTARGETS", maxTargetsString)

  158. 	isupport.Add("MODES", "")

  159. 	isupport.Add("MONITOR", strconv.Itoa(config.Limits.MonitorEntries))

  160. 	isupport.Add("NETWORK", config.Network.Name)

  161. 	isupport.Add("NICKLEN", strconv.Itoa(config.Limits.NickLen))

  162. 	isupport.Add("PREFIX", "(qaohv)~&@%+")

  163. 	isupport.Add("RPCHAN", "E")

  164. 	isupport.Add("RPUSER", "E")

  165. 	isupport.Add("STATUSMSG", "~&@%+")

  166. 	isupport.Add("TARGMAX", fmt.Sprintf("NAMES:1,LIST:1,KICK:1,WHOIS:1,USERHOST:10,PRIVMSG:%s,TAGMSG:%s,NOTICE:%s,MONITOR:", maxTargetsString, maxTargetsString, maxTargetsString))

  167. 	isupport.Add("TOPICLEN", strconv.Itoa(config.Limits.TopicLen))

  168. 	isupport.Add("UTF8MAPPING", casemappingName)

  169. 

  170. 	err = isupport.RegenerateCachedReply()

  171. 	return

  172. }

  173. 

  174. // Shutdown shuts down the server.

  175. func (server *Server) Shutdown() {

  176. 	//TODO(dan): Make sure we disallow new nicks

  177. 	for _, client := range server.clients.AllClients() {

  178. 		client.Notice("Server is shutting down")

  179. 	}

  180. 

  181. 	if err := server.store.Close(); err != nil {

  182. 		server.logger.Error("shutdown", fmt.Sprintln("Could not close datastore:", err))

  183. 	}

  184. }

  185. 

  186. // Run starts the server.

  187. func (server *Server) Run() {

  188. 	// defer closing db/store

  189. 	defer server.store.Close()

  190. 

  191. 	for {

  192. 		select {

  193. 		case <-server.signals:

  194. 			server.Shutdown()

  195. 			return

  196. 

  197. 		case <-server.rehashSignal:

  198. 			go func() {

  199. 				server.logger.Info("server", "Rehashing due to SIGHUP")

  200. 				err := server.rehash()

  201. 				if err != nil {

  202. 					server.logger.Error("server", fmt.Sprintln("Failed to rehash:", err.Error()))

  203. 				}

  204. 			}()

  205. 		}

  206. 	}

  207. }

  208. 

  209. func (server *Server) checkBans(ipaddr net.IP) (banned bool, message string) {

  210. 	// check DLINEs

  211. 	isBanned, info := server.dlines.CheckIP(ipaddr)

  212. 	if isBanned {

  213. 		server.logger.Info("localconnect-ip", fmt.Sprintf("Client from %v rejected by d-line", ipaddr))

  214. 		return true, info.BanMessage("You are banned from this server (%s)")

  215. 	}

  216. 

  217. 	// check connection limits

  218. 	err := server.connectionLimiter.AddClient(ipaddr)

  219. 	if err == connection_limits.ErrLimitExceeded {

  220. 		// too many connections from one client, tell the client and close the connection

  221. 		server.logger.Info("localconnect-ip", fmt.Sprintf("Client from %v rejected for connection limit", ipaddr))

  222. 		return true, "Too many clients from your network"

  223. 	} else if err == connection_limits.ErrThrottleExceeded {

  224. 		duration := server.Config().Server.IPLimits.BanDuration

  225. 		if duration == 0 {

  226. 			return false, ""

  227. 		}

  228. 		server.dlines.AddIP(ipaddr, duration, throttleMessage, "Exceeded automated connection throttle", "auto.connection.throttler")

  229. 		// they're DLINE'd for 15 minutes or whatever, so we can reset the connection throttle now,

  230. 		// and once their temporary DLINE is finished they can fill up the throttler again

  231. 		server.connectionLimiter.ResetThrottle(ipaddr)

  232. 

  233. 		// this might not show up properly on some clients, but our objective here is just to close it out before it has a load impact on us

  234. 		server.logger.Info(

  235. 			"localconnect-ip",

  236. 			fmt.Sprintf("Client from %v exceeded connection throttle, d-lining for %v", ipaddr, duration))

  237. 		return true, throttleMessage

  238. 	} else if err != nil {

  239. 		server.logger.Warning("internal", "unexpected ban result", err.Error())

  240. 	}

  241. 

  242. 	return false, ""

  243. }

  244. 

  245. func (server *Server) checkTorLimits() (banned bool, message string) {

  246. 	switch server.torLimiter.AddClient() {

  247. 	case connection_limits.ErrLimitExceeded:

  248. 		return true, "Too many clients from the Tor network"

  249. 	case connection_limits.ErrThrottleExceeded:

  250. 		return true, "Exceeded connection throttle for the Tor network"

  251. 	default:

  252. 		return false, ""

  253. 	}

  254. }

  255. 

  256. //

  257. // IRC protocol listeners

  258. //

  259. 

  260. // createListener starts a given listener.

  261. func (server *Server) createListener(addr string, conf listenerConfig, bindMode os.FileMode) (*ListenerWrapper, error) {

  262. 	// make listener

  263. 	var listener net.Listener

  264. 	var err error

  265. 	addr = strings.TrimPrefix(addr, "unix:")

  266. 	if strings.HasPrefix(addr, "/") {

  267. 		// https://stackoverflow.com/a/34881585

  268. 		os.Remove(addr)

  269. 		listener, err = net.Listen("unix", addr)

  270. 		if err == nil && bindMode != 0 {

  271. 			os.Chmod(addr, bindMode)

  272. 		}

  273. 	} else {

  274. 		listener, err = net.Listen("tcp", addr)

  275. 	}

  276. 	if err != nil {

  277. 		return nil, err

  278. 	}

  279. 

  280. 	// throw our details to the server so we can be modified/killed later

  281. 	wrapper := ListenerWrapper{

  282. 		listener:   listener,

  283. 		config:     conf,

  284. 		shouldStop: false,

  285. 	}

  286. 

  287. 	var shouldStop bool

  288. 

  289. 	// setup accept goroutine

  290. 	go func() {

  291. 		for {

  292. 			conn, err := listener.Accept()

  293. 

  294. 			// synchronously access config data:

  295. 			wrapper.Lock()

  296. 			shouldStop = wrapper.shouldStop

  297. 			conf := wrapper.config

  298. 			wrapper.Unlock()

  299. 

  300. 			if shouldStop {

  301. 				if conn != nil {

  302. 					conn.Close()

  303. 				}

  304. 				listener.Close()

  305. 				return

  306. 			} else if err == nil {

  307. 				if conf.TLSConfig != nil {

  308. 					conn = tls.Server(conn, conf.TLSConfig)

  309. 				}

  310. 				newConn := clientConn{

  311. 					Conn:   conn,

  312. 					Config: conf,

  313. 				}

  314. 				// hand off the connection

  315. 				go server.RunClient(newConn)

  316. 			} else {

  317. 				server.logger.Error("internal", "accept error", addr, err.Error())

  318. 			}

  319. 		}

  320. 	}()

  321. 

  322. 	return &wrapper, nil

  323. }

  324. 

  325. //

  326. // server functionality

  327. //

  328. 

  329. func (server *Server) tryRegister(c *Client, session *Session) (exiting bool) {

  330. 	// if the session just sent us a RESUME line, try to resume

  331. 	if session.resumeDetails != nil {

  332. 		session.tryResume()

  333. 		return // whether we succeeded or failed, either way `c` is not getting registered

  334. 	}

  335. 

  336. 	// try to complete registration normally

  337. 	if c.preregNick == "" || !c.HasUsername() || session.capState == caps.NegotiatingState {

  338. 		return

  339. 	}

  340. 

  341. 	if c.isSTSOnly {

  342. 		server.playRegistrationBurst(session)

  343. 		return true

  344. 	}

  345. 

  346. 	// client MUST send PASS if necessary, or authenticate with SASL if necessary,

  347. 	// before completing the other registration commands

  348. 	authOutcome := c.isAuthorized(server.Config())

  349. 	var quitMessage string

  350. 	switch authOutcome {

  351. 	case authFailPass:

  352. 		quitMessage = c.t("Password incorrect")

  353. 		c.Send(nil, server.name, ERR_PASSWDMISMATCH, "*", quitMessage)

  354. 	case authFailSaslRequired, authFailTorSaslRequired:

  355. 		quitMessage = c.t("You must log in with SASL to join this server")

  356. 		c.Send(nil, c.server.name, "FAIL", "*", "ACCOUNT_REQUIRED", quitMessage)

  357. 	}

  358. 	if authOutcome != authSuccess {

  359. 		c.Quit(quitMessage, nil)

  360. 		return true

  361. 	}

  362. 

  363. 	rb := NewResponseBuffer(session)

  364. 	nickAssigned := performNickChange(server, c, c, session, c.preregNick, rb)

  365. 	rb.Send(true)

  366. 	if !nickAssigned {

  367. 		c.preregNick = ""

  368. 		return

  369. 	}

  370. 

  371. 	// check KLINEs

  372. 	isBanned, info := server.klines.CheckMasks(c.AllNickmasks()...)

  373. 	if isBanned {

  374. 		c.Quit(info.BanMessage(c.t("You are banned from this server (%s)")), nil)

  375. 		return true

  376. 	}

  377. 

  378. 	if session.client != c {

  379. 		// reattached, bail out.

  380. 		// we'll play the reg burst later, on the new goroutine associated with

  381. 		// (thisSession, otherClient). This is to avoid having to transfer state

  382. 		// like nickname, hostname, etc. to show the correct values in the reg burst.

  383. 		return

  384. 	}

  385. 

  386. 	// registration has succeeded:

  387. 	c.SetRegistered()

  388. 

  389. 	// count new user in statistics

  390. 	server.stats.Register()

  391. 	server.monitorManager.AlertAbout(c, true)

  392. 

  393. 	server.playRegistrationBurst(session)

  394. 	return false

  395. }

  396. 

  397. func (server *Server) playRegistrationBurst(session *Session) {

  398. 	c := session.client

  399. 	// continue registration

  400. 	d := c.Details()

  401. 	server.logger.Info("localconnect", fmt.Sprintf("Client connected [%s] [u:%s] [r:%s]", d.nick, d.username, d.realname))

  402. 	server.snomasks.Send(sno.LocalConnects, fmt.Sprintf("Client connected [%s] [u:%s] [h:%s] [ip:%s] [r:%s]", d.nick, d.username, c.RawHostname(), c.IPString(), d.realname))

  403. 

  404. 	// send welcome text

  405. 	//NOTE(dan): we specifically use the NICK here instead of the nickmask

  406. 	// see http://modern.ircdocs.horse/#rplwelcome-001 for details on why we avoid using the nickmask

  407. 	session.Send(nil, server.name, RPL_WELCOME, d.nick, fmt.Sprintf(c.t("Welcome to the Internet Relay Network %s"), d.nick))

  408. 	session.Send(nil, server.name, RPL_YOURHOST, d.nick, fmt.Sprintf(c.t("Your host is %[1]s, running version %[2]s"), server.name, Ver))

  409. 	session.Send(nil, server.name, RPL_CREATED, d.nick, fmt.Sprintf(c.t("This server was created %s"), server.ctime.Format(time.RFC1123)))

  410. 	//TODO(dan): Look at adding last optional [<channel modes with a parameter>] parameter

  411. 	session.Send(nil, server.name, RPL_MYINFO, d.nick, server.name, Ver, supportedUserModesString, supportedChannelModesString)

  412. 

  413. 	if c.isSTSOnly {

  414. 		for _, line := range server.Config().Server.STS.bannerLines {

  415. 			c.Notice(line)

  416. 		}

  417. 		return

  418. 	}

  419. 

  420. 	rb := NewResponseBuffer(session)

  421. 	server.RplISupport(c, rb)

  422. 	server.Lusers(c, rb)

  423. 	server.MOTD(c, rb)

  424. 	rb.Send(true)

  425. 

  426. 	modestring := c.ModeString()

  427. 	if modestring != "+" {

  428. 		session.Send(nil, d.nickMask, RPL_UMODEIS, d.nick, modestring)

  429. 	}

  430. 	if server.logger.IsLoggingRawIO() {

  431. 		session.Send(nil, c.server.name, "NOTICE", d.nick, c.t("This server is in debug mode and is logging all user I/O. If you do not wish for everything you send to be readable by the server owner(s), please disconnect."))

  432. 	}

  433. 

  434. 	// #572: defer nick warnings to the end of the registration burst

  435. 	session.client.nickTimer.Touch(nil)

  436. }

  437. 

  438. // RplISupport outputs our ISUPPORT lines to the client. This is used on connection and in VERSION responses.

  439. func (server *Server) RplISupport(client *Client, rb *ResponseBuffer) {

  440. 	translatedISupport := client.t("are supported by this server")

  441. 	nick := client.Nick()

  442. 	config := server.Config()

  443. 	for _, cachedTokenLine := range config.Server.isupport.CachedReply {

  444. 		length := len(cachedTokenLine) + 2

  445. 		tokenline := make([]string, length)

  446. 		tokenline[0] = nick

  447. 		copy(tokenline[1:], cachedTokenLine)

  448. 		tokenline[length-1] = translatedISupport

  449. 		rb.Add(nil, server.name, RPL_ISUPPORT, tokenline...)

  450. 	}

  451. }

  452. 

  453. func (server *Server) Lusers(client *Client, rb *ResponseBuffer) {

  454. 	nick := client.Nick()

  455. 	stats := server.stats.GetValues()

  456. 

  457. 	rb.Add(nil, server.name, RPL_LUSERCLIENT, nick, fmt.Sprintf(client.t("There are %[1]d users and %[2]d invisible on %[3]d server(s)"), stats.Total-stats.Invisible, stats.Invisible, 1))

  458. 	rb.Add(nil, server.name, RPL_LUSEROP, nick, strconv.Itoa(stats.Operators), client.t("IRC Operators online"))

  459. 	rb.Add(nil, server.name, RPL_LUSERUNKNOWN, nick, strconv.Itoa(stats.Unknown), client.t("unregistered connections"))

  460. 	rb.Add(nil, server.name, RPL_LUSERCHANNELS, nick, strconv.Itoa(server.channels.Len()), client.t("channels formed"))

  461. 	rb.Add(nil, server.name, RPL_LUSERME, nick, fmt.Sprintf(client.t("I have %[1]d clients and %[2]d servers"), stats.Total, 1))

  462. 	total := strconv.Itoa(stats.Total)

  463. 	max := strconv.Itoa(stats.Max)

  464. 	rb.Add(nil, server.name, RPL_LOCALUSERS, nick, total, max, fmt.Sprintf(client.t("Current local users %[1]s, max %[2]s"), total, max))

  465. 	rb.Add(nil, server.name, RPL_GLOBALUSERS, nick, total, max, fmt.Sprintf(client.t("Current global users %[1]s, max %[2]s"), total, max))

  466. }

  467. 

  468. // MOTD serves the Message of the Day.

  469. func (server *Server) MOTD(client *Client, rb *ResponseBuffer) {

  470. 	motdLines := server.Config().Server.motdLines

  471. 

  472. 	if len(motdLines) < 1 {

  473. 		rb.Add(nil, server.name, ERR_NOMOTD, client.nick, client.t("MOTD File is missing"))

  474. 		return

  475. 	}

  476. 

  477. 	rb.Add(nil, server.name, RPL_MOTDSTART, client.nick, fmt.Sprintf(client.t("- %s Message of the day - "), server.name))

  478. 	for _, line := range motdLines {

  479. 		rb.Add(nil, server.name, RPL_MOTD, client.nick, line)

  480. 	}

  481. 	rb.Add(nil, server.name, RPL_ENDOFMOTD, client.nick, client.t("End of MOTD command"))

  482. }

  483. 

  484. // WhoisChannelsNames returns the common channel names between two users.

  485. func (client *Client) WhoisChannelsNames(target *Client, multiPrefix bool) []string {

  486. 	var chstrs []string

  487. 	for _, channel := range target.Channels() {

  488. 		// channel is secret and the target can't see it

  489. 		if !client.HasMode(modes.Operator) {

  490. 			if (target.HasMode(modes.Invisible) || channel.flags.HasMode(modes.Secret)) && !channel.hasClient(client) {

  491. 				continue

  492. 			}

  493. 		}

  494. 		chstrs = append(chstrs, channel.ClientPrefixes(target, multiPrefix)+channel.name)

  495. 	}

  496. 	return chstrs

  497. }

  498. 

  499. func (client *Client) getWhoisOf(target *Client, rb *ResponseBuffer) {

  500. 	cnick := client.Nick()

  501. 	targetInfo := target.Details()

  502. 	rb.Add(nil, client.server.name, RPL_WHOISUSER, cnick, targetInfo.nick, targetInfo.username, targetInfo.hostname, "*", targetInfo.realname)

  503. 	tnick := targetInfo.nick

  504. 

  505. 	whoischannels := client.WhoisChannelsNames(target, rb.session.capabilities.Has(caps.MultiPrefix))

  506. 	if whoischannels != nil {

  507. 		rb.Add(nil, client.server.name, RPL_WHOISCHANNELS, cnick, tnick, strings.Join(whoischannels, " "))

  508. 	}

  509. 	tOper := target.Oper()

  510. 	if tOper != nil {

  511. 		rb.Add(nil, client.server.name, RPL_WHOISOPERATOR, cnick, tnick, tOper.WhoisLine)

  512. 	}

  513. 	if client.HasMode(modes.Operator) || client == target {

  514. 		rb.Add(nil, client.server.name, RPL_WHOISACTUALLY, cnick, tnick, fmt.Sprintf("%s@%s", targetInfo.username, target.RawHostname()), target.IPString(), client.t("Actual user@host, Actual IP"))

  515. 	}

  516. 	if target.HasMode(modes.TLS) {

  517. 		rb.Add(nil, client.server.name, RPL_WHOISSECURE, cnick, tnick, client.t("is using a secure connection"))

  518. 	}

  519. 	if targetInfo.accountName != "*" {

  520. 		rb.Add(nil, client.server.name, RPL_WHOISACCOUNT, cnick, tnick, targetInfo.accountName, client.t("is logged in as"))

  521. 	}

  522. 	if target.HasMode(modes.Bot) {

  523. 		rb.Add(nil, client.server.name, RPL_WHOISBOT, cnick, tnick, ircfmt.Unescape(fmt.Sprintf(client.t("is a $bBot$b on %s"), client.server.Config().Network.Name)))

  524. 	}

  525. 

  526. 	if target.certfp != "" && (client.HasMode(modes.Operator) || client == target) {

  527. 		rb.Add(nil, client.server.name, RPL_WHOISCERTFP, cnick, tnick, fmt.Sprintf(client.t("has client certificate fingerprint %s"), target.certfp))

  528. 	}

  529. 	rb.Add(nil, client.server.name, RPL_WHOISIDLE, cnick, tnick, strconv.FormatUint(target.IdleSeconds(), 10), strconv.FormatInt(target.SignonTime(), 10), client.t("seconds idle, signon time"))

  530. }

  531. 

  532. // rplWhoReply returns the WHO reply between one user and another channel/user.

  533. // <channel> <user> <host> <server> <nick> ( "H" / "G" ) ["*"] [ ( "@" / "+" ) ]

  534. // :<hopcount> <real name>

  535. func (client *Client) rplWhoReply(channel *Channel, target *Client, rb *ResponseBuffer) {

  536. 	channelName := "*"

  537. 	flags := ""

  538. 

  539. 	if target.Away() {

  540. 		flags = "G"

  541. 	} else {

  542. 		flags = "H"

  543. 	}

  544. 	if target.HasMode(modes.Operator) {

  545. 		flags += "*"

  546. 	}

  547. 

  548. 	if channel != nil {

  549. 		// TODO is this right?

  550. 		flags += channel.ClientPrefixes(target, rb.session.capabilities.Has(caps.MultiPrefix))

  551. 		channelName = channel.name

  552. 	}

  553. 	details := target.Details()

  554. 	// hardcode a hopcount of 0 for now

  555. 	rb.Add(nil, client.server.name, RPL_WHOREPLY, client.Nick(), channelName, details.username, details.hostname, client.server.name, details.nick, flags, "0 "+details.realname)

  556. }

  557. 

  558. // rehash reloads the config and applies the changes from the config file.

  559. func (server *Server) rehash() error {

  560. 	server.logger.Debug("server", "Starting rehash")

  561. 

  562. 	// only let one REHASH go on at a time

  563. 	server.rehashMutex.Lock()

  564. 	defer server.rehashMutex.Unlock()

  565. 

  566. 	server.logger.Debug("server", "Got rehash lock")

  567. 

  568. 	config, err := LoadConfig(server.configFilename)

  569. 	if err != nil {

  570. 		return fmt.Errorf("Error loading config file config: %s", err.Error())

  571. 	}

  572. 

  573. 	err = server.applyConfig(config, false)

  574. 	if err != nil {

  575. 		return fmt.Errorf("Error applying config changes: %s", err.Error())

  576. 	}

  577. 

  578. 	return nil

  579. }

  580. 

  581. func (server *Server) applyConfig(config *Config, initial bool) (err error) {

  582. 	if initial {

  583. 		server.configFilename = config.Filename

  584. 		server.name = config.Server.Name

  585. 		server.nameCasefolded = config.Server.nameCasefolded

  586. 	} else {

  587. 		// enforce configs that can't be changed after launch:

  588. 		currentLimits := server.Config().Limits

  589. 		if currentLimits.LineLen.Rest != config.Limits.LineLen.Rest {

  590. 			return fmt.Errorf("Maximum line length (linelen) cannot be changed after launching the server, rehash aborted")

  591. 		} else if server.name != config.Server.Name {

  592. 			return fmt.Errorf("Server name cannot be changed after launching the server, rehash aborted")

  593. 		} else if server.Config().Datastore.Path != config.Datastore.Path {

  594. 			return fmt.Errorf("Datastore path cannot be changed after launching the server, rehash aborted")

  595. 		}

  596. 	}

  597. 

  598. 	// sanity checks complete, start modifying server state

  599. 	server.logger.Info("server", "Using config file", server.configFilename)

  600. 	oldConfig := server.Config()

  601. 

  602. 	// first, reload config sections for functionality implemented in subpackages:

  603. 

  604. 	server.connectionLimiter.ApplyConfig(&config.Server.IPLimits)

  605. 

  606. 	tlConf := &config.Server.TorListeners

  607. 	server.torLimiter.Configure(tlConf.MaxConnections, tlConf.ThrottleDuration, tlConf.MaxConnectionsPerDuration)

  608. 

  609. 	// reload logging config

  610. 	wasLoggingRawIO := !initial && server.logger.IsLoggingRawIO()

  611. 	err = server.logger.ApplyConfig(config.Logging)

  612. 	if err != nil {

  613. 		return err

  614. 	}

  615. 	nowLoggingRawIO := server.logger.IsLoggingRawIO()

  616. 	// notify existing clients if raw i/o logging was enabled by a rehash

  617. 	sendRawOutputNotice := !wasLoggingRawIO && nowLoggingRawIO

  618. 

  619. 	// setup new and removed caps

  620. 	addedCaps := caps.NewSet()

  621. 	removedCaps := caps.NewSet()

  622. 	updatedCaps := caps.NewSet()

  623. 

  624. 	// Translations

  625. 	server.logger.Debug("server", "Regenerating HELP indexes for new languages")

  626. 	server.helpIndexManager.GenerateIndices(config.languageManager)

  627. 

  628. 	if oldConfig != nil && config.Server.capValues[caps.Languages] != oldConfig.Server.capValues[caps.Languages] {

  629. 		updatedCaps.Add(caps.Languages)

  630. 	}

  631. 

  632. 	// SASL

  633. 	authPreviouslyEnabled := oldConfig != nil && oldConfig.Accounts.AuthenticationEnabled

  634. 	if config.Accounts.AuthenticationEnabled && (oldConfig == nil || !authPreviouslyEnabled) {

  635. 		// enabling SASL

  636. 		addedCaps.Add(caps.SASL)

  637. 	} else if !config.Accounts.AuthenticationEnabled && (oldConfig == nil || authPreviouslyEnabled) {

  638. 		// disabling SASL

  639. 		removedCaps.Add(caps.SASL)

  640. 	}

  641. 

  642. 	nickReservationPreviouslyDisabled := oldConfig != nil && !oldConfig.Accounts.NickReservation.Enabled

  643. 	nickReservationNowEnabled := config.Accounts.NickReservation.Enabled

  644. 	if nickReservationPreviouslyDisabled && nickReservationNowEnabled {

  645. 		server.accounts.buildNickToAccountIndex()

  646. 	}

  647. 

  648. 	hsPreviouslyDisabled := oldConfig != nil && !oldConfig.Accounts.VHosts.Enabled

  649. 	hsNowEnabled := config.Accounts.VHosts.Enabled

  650. 	if hsPreviouslyDisabled && hsNowEnabled {

  651. 		server.accounts.initVHostRequestQueue()

  652. 	}

  653. 

  654. 	chanRegPreviouslyDisabled := oldConfig != nil && !oldConfig.Channels.Registration.Enabled

  655. 	chanRegNowEnabled := config.Channels.Registration.Enabled

  656. 	if chanRegPreviouslyDisabled && chanRegNowEnabled {

  657. 		server.channels.loadRegisteredChannels()

  658. 	}

  659. 

  660. 	// STS

  661. 	stsPreviouslyEnabled := oldConfig != nil && oldConfig.Server.STS.Enabled

  662. 	stsValue := config.Server.capValues[caps.STS]

  663. 	stsCurrentCapValue := ""

  664. 	if oldConfig != nil {

  665. 		stsCurrentCapValue = oldConfig.Server.capValues[caps.STS]

  666. 	}

  667. 	server.logger.Debug("server", "STS Vals", stsCurrentCapValue, stsValue, fmt.Sprintf("server[%v] config[%v]", stsPreviouslyEnabled, config.Server.STS.Enabled))

  668. 	if (config.Server.STS.Enabled != stsPreviouslyEnabled) || (stsValue != stsCurrentCapValue) {

  669. 		// XXX: STS is always removed by CAP NEW sts=duration=0, not CAP DEL

  670. 		// so the appropriate notify is always a CAP NEW; put it in addedCaps for any change

  671. 		addedCaps.Add(caps.STS)

  672. 	}

  673. 

  674. 	if oldConfig != nil && config.Accounts.Bouncer.Enabled != oldConfig.Accounts.Bouncer.Enabled {

  675. 		if config.Accounts.Bouncer.Enabled {

  676. 			addedCaps.Add(caps.Bouncer)

  677. 		} else {

  678. 			removedCaps.Add(caps.Bouncer)

  679. 		}

  680. 	}

  681. 

  682. 	// resize history buffers as needed

  683. 	if oldConfig != nil && oldConfig.History != config.History {

  684. 		for _, channel := range server.channels.Channels() {

  685. 			channel.history.Resize(config.History.ChannelLength, config.History.AutoresizeWindow)

  686. 		}

  687. 		for _, client := range server.clients.AllClients() {

  688. 			client.history.Resize(config.History.ClientLength, config.History.AutoresizeWindow)

  689. 		}

  690. 	}

  691. 

  692. 	// activate the new config

  693. 	server.SetConfig(config)

  694. 

  695. 	// burst new and removed caps

  696. 	var capBurstSessions []*Session

  697. 	added := make(map[caps.Version][]string)

  698. 	var removed []string

  699. 

  700. 	// updated caps get DEL'd and then NEW'd

  701. 	// so, we can just add updated ones to both removed and added lists here and they'll be correctly handled

  702. 	server.logger.Debug("server", "Updated Caps", strings.Join(updatedCaps.Strings(caps.Cap301, config.Server.capValues, 0), " "))

  703. 	addedCaps.Union(updatedCaps)

  704. 	removedCaps.Union(updatedCaps)

  705. 

  706. 	if !addedCaps.Empty() || !removedCaps.Empty() {

  707. 		capBurstSessions = server.clients.AllWithCapsNotify()

  708. 

  709. 		added[caps.Cap301] = addedCaps.Strings(caps.Cap301, config.Server.capValues, 0)

  710. 		added[caps.Cap302] = addedCaps.Strings(caps.Cap302, config.Server.capValues, 0)

  711. 		// removed never has values, so we leave it as Cap301

  712. 		removed = removedCaps.Strings(caps.Cap301, config.Server.capValues, 0)

  713. 	}

  714. 

  715. 	for _, sSession := range capBurstSessions {

  716. 		// DEL caps and then send NEW ones so that updated caps get removed/added correctly

  717. 		if !removedCaps.Empty() {

  718. 			for _, capStr := range removed {

  719. 				sSession.Send(nil, server.name, "CAP", sSession.client.Nick(), "DEL", capStr)

  720. 			}

  721. 		}

  722. 		if !addedCaps.Empty() {

  723. 			for _, capStr := range added[sSession.capVersion] {

  724. 				sSession.Send(nil, server.name, "CAP", sSession.client.Nick(), "NEW", capStr)

  725. 			}

  726. 		}

  727. 	}

  728. 

  729. 	server.logger.Info("server", "Using datastore", config.Datastore.Path)

  730. 	if initial {

  731. 		if err := server.loadDatastore(config); err != nil {

  732. 			return err

  733. 		}

  734. 	}

  735. 

  736. 	server.setupPprofListener(config)

  737. 

  738. 	// set RPL_ISUPPORT

  739. 	var newISupportReplies [][]string

  740. 	if oldConfig != nil {

  741. 		newISupportReplies = oldConfig.Server.isupport.GetDifference(&config.Server.isupport)

  742. 	}

  743. 

  744. 	// we are now open for business

  745. 	err = server.setupListeners(config)

  746. 

  747. 	if !initial {

  748. 		// push new info to all of our clients

  749. 		for _, sClient := range server.clients.AllClients() {

  750. 			for _, tokenline := range newISupportReplies {

  751. 				sClient.Send(nil, server.name, RPL_ISUPPORT, append([]string{sClient.nick}, tokenline...)...)

  752. 			}

  753. 

  754. 			if sendRawOutputNotice {

  755. 				sClient.Notice(sClient.t("This server is in debug mode and is logging all user I/O. If you do not wish for everything you send to be readable by the server owner(s), please disconnect."))

  756. 			}

  757. 

  758. 			if !oldConfig.Accounts.NickReservation.Enabled && config.Accounts.NickReservation.Enabled {

  759. 				sClient.nickTimer.Initialize(sClient)

  760. 				sClient.nickTimer.Touch(nil)

  761. 			} else if oldConfig.Accounts.NickReservation.Enabled && !config.Accounts.NickReservation.Enabled {

  762. 				sClient.nickTimer.Stop()

  763. 			}

  764. 		}

  765. 	}

  766. 

  767. 	return err

  768. }

  769. 

  770. func (server *Server) setupPprofListener(config *Config) {

  771. 	pprofListener := ""

  772. 	if config.Debug.PprofListener != nil {

  773. 		pprofListener = *config.Debug.PprofListener

  774. 	}

  775. 	if server.pprofServer != nil {

  776. 		if pprofListener == "" || (pprofListener != server.pprofServer.Addr) {

  777. 			server.logger.Info("server", "Stopping pprof listener", server.pprofServer.Addr)

  778. 			server.pprofServer.Close()

  779. 			server.pprofServer = nil

  780. 		}

  781. 	}

  782. 	if pprofListener != "" && server.pprofServer == nil {

  783. 		ps := http.Server{

  784. 			Addr: pprofListener,

  785. 		}

  786. 		go func() {

  787. 			if err := ps.ListenAndServe(); err != nil {

  788. 				server.logger.Error("server", "pprof listener failed", err.Error())

  789. 			}

  790. 		}()

  791. 		server.pprofServer = &ps

  792. 		server.logger.Info("server", "Started pprof listener", server.pprofServer.Addr)

  793. 	}

  794. }

  795. 

  796. func (config *Config) loadMOTD() (err error) {

  797. 	if config.Server.MOTD != "" {

  798. 		file, err := os.Open(config.Server.MOTD)

  799. 		if err == nil {

  800. 			defer file.Close()

  801. 

  802. 			reader := bufio.NewReader(file)

  803. 			for {

  804. 				line, err := reader.ReadString('\n')

  805. 				if err != nil {

  806. 					break

  807. 				}

  808. 				line = strings.TrimRight(line, "\r\n")

  809. 

  810. 				if config.Server.MOTDFormatting {

  811. 					line = ircfmt.Unescape(line)

  812. 				}

  813. 

  814. 				// "- " is the required prefix for MOTD, we just add it here to make

  815. 				// bursting it out to clients easier

  816. 				line = fmt.Sprintf("- %s", line)

  817. 

  818. 				config.Server.motdLines = append(config.Server.motdLines, line)

  819. 			}

  820. 		}

  821. 	}

  822. 	return

  823. }

  824. 

  825. func (server *Server) loadDatastore(config *Config) error {

  826. 	// open the datastore and load server state for which it (rather than config)

  827. 	// is the source of truth

  828. 

  829. 	_, err := os.Stat(config.Datastore.Path)

  830. 	if os.IsNotExist(err) {

  831. 		server.logger.Warning("server", "database does not exist, creating it", config.Datastore.Path)

  832. 		err = initializeDB(config.Datastore.Path)

  833. 		if err != nil {

  834. 			return err

  835. 		}

  836. 	}

  837. 

  838. 	db, err := OpenDatabase(config)

  839. 	if err == nil {

  840. 		server.store = db

  841. 	} else {

  842. 		return fmt.Errorf("Failed to open datastore: %s", err.Error())

  843. 	}

  844. 

  845. 	// load *lines (from the datastores)

  846. 	server.logger.Debug("server", "Loading D/Klines")

  847. 	server.loadDLines()

  848. 	server.loadKLines()

  849. 

  850. 	server.channelRegistry.Initialize(server)

  851. 	server.channels.Initialize(server)

  852. 	server.accounts.Initialize(server)

  853. 

  854. 	return nil

  855. }

  856. 

  857. func (server *Server) setupListeners(config *Config) (err error) {

  858. 	logListener := func(addr string, config listenerConfig) {

  859. 		server.logger.Info("listeners",

  860. 			fmt.Sprintf("now listening on %s, tls=%t, tor=%t.", addr, (config.TLSConfig != nil), config.IsTor),

  861. 		)

  862. 	}

  863. 

  864. 	// update or destroy all existing listeners

  865. 	for addr := range server.listeners {

  866. 		currentListener := server.listeners[addr]

  867. 		newConfig, stillConfigured := config.Server.trueListeners[addr]

  868. 

  869. 		currentListener.Lock()

  870. 		currentListener.shouldStop = !stillConfigured

  871. 		currentListener.config = newConfig

  872. 		currentListener.Unlock()

  873. 

  874. 		if stillConfigured {

  875. 			logListener(addr, newConfig)

  876. 		} else {

  877. 			// tell the listener it should stop by interrupting its Accept() call:

  878. 			currentListener.listener.Close()

  879. 			delete(server.listeners, addr)

  880. 			server.logger.Info("listeners", fmt.Sprintf("stopped listening on %s.", addr))

  881. 		}

  882. 	}

  883. 

  884. 	publicPlaintextListener := ""

  885. 	// create new listeners that were not previously configured

  886. 	for newAddr, newConfig := range config.Server.trueListeners {

  887. 		if strings.HasPrefix(newAddr, ":") && !newConfig.IsTor && !newConfig.IsSTSOnly && newConfig.TLSConfig == nil {

  888. 			publicPlaintextListener = newAddr

  889. 		}

  890. 		_, exists := server.listeners[newAddr]

  891. 		if !exists {

  892. 			// make new listener

  893. 			listener, listenerErr := server.createListener(newAddr, newConfig, config.Server.UnixBindMode)

  894. 			if listenerErr != nil {

  895. 				server.logger.Error("server", "couldn't listen on", newAddr, listenerErr.Error())

  896. 				err = listenerErr

  897. 				continue

  898. 			}

  899. 			server.listeners[newAddr] = listener

  900. 			logListener(newAddr, newConfig)

  901. 		}

  902. 	}

  903. 

  904. 	if publicPlaintextListener != "" {

  905. 		server.logger.Warning("listeners", fmt.Sprintf("Your server is configured with public plaintext listener %s. Consider disabling it for improved security and privacy.", publicPlaintextListener))

  906. 	}

  907. 

  908. 	return

  909. }

  910. 

  911. // elistMatcher takes and matches ELIST conditions

  912. type elistMatcher struct {

  913. 	MinClientsActive bool

  914. 	MinClients       int

  915. 	MaxClientsActive bool

  916. 	MaxClients       int

  917. }

  918. 

  919. // Matches checks whether the given channel matches our matches.

  920. func (matcher *elistMatcher) Matches(channel *Channel) bool {

  921. 	if matcher.MinClientsActive {

  922. 		if len(channel.Members()) < matcher.MinClients {

  923. 			return false

  924. 		}

  925. 	}

  926. 

  927. 	if matcher.MaxClientsActive {

  928. 		if len(channel.Members()) < len(channel.members) {

  929. 			return false

  930. 		}

  931. 	}

  932. 

  933. 	return true

  934. }

  935. 

  936. // RplList returns the RPL_LIST numeric for the given channel.

  937. func (target *Client) RplList(channel *Channel, rb *ResponseBuffer) {

  938. 	// get the correct number of channel members

  939. 	var memberCount int

  940. 	if target.HasMode(modes.Operator) || channel.hasClient(target) {

  941. 		memberCount = len(channel.Members())

  942. 	} else {

  943. 		for _, member := range channel.Members() {

  944. 			if !member.HasMode(modes.Invisible) {

  945. 				memberCount++

  946. 			}

  947. 		}

  948. 	}

  949. 

  950. 	rb.Add(nil, target.server.name, RPL_LIST, target.nick, channel.name, strconv.Itoa(memberCount), channel.topic)

  951. }

  952. 

  953. var (

  954. 	infoString1 = strings.Split(`      ▄▄▄   ▄▄▄·  ▄▄ •        ▐ ▄

  955. ▪     ▀▄ █·▐█ ▀█ ▐█ ▀ ▪▪     •█▌▐█▪     

  956.  ▄█▀▄ ▐▀▀▄ ▄█▀▀█ ▄█ ▀█▄ ▄█▀▄▪▐█▐▐▌ ▄█▀▄ 

  957. ▐█▌.▐▌▐█•█▌▐█ ▪▐▌▐█▄▪▐█▐█▌ ▐▌██▐█▌▐█▌.▐▌

  958.  ▀█▄▀▪.▀  ▀ ▀  ▀ ·▀▀▀▀  ▀█▄▀ ▀▀ █▪ ▀█▄▀▪

  959. 

  960.          https://oragono.io/

  961.    https://github.com/oragono/oragono

  962.    https://crowdin.com/project/oragono

  963. `, "\n")

  964. 	infoString2 = strings.Split(`    Daniel Oakley,          DanielOaks,    <daniel@danieloaks.net>

  965.     Shivaram Lingamneni,    slingamn,      <slingamn@cs.stanford.edu>

  966. `, "\n")

  967. 	infoString3 = strings.Split(`    3onyc

  968.     Edmund Huber

  969.     Euan Kemp (euank)

  970.     Jeremy Latt

  971.     Martin Lindhe (martinlindhe)

  972.     Roberto Besser (besser)

  973.     Robin Burchell (rburchell)

  974.     Sean Enck (enckse)

  975.     soul9

  976.     Vegax

  977. `, "\n")

  978. )