mirror
/
oragono
mirror of https://github.com/oragono/oragono
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 69 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2263 Commits
21 Branches
Tree: f6eb8fa5a1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f6eb8fa5a1'
${ noResults }
oragono/irc/server.go

server.go 33KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983 
  1. // Copyright (c) 2012-2014 Jeremy Latt

  2. // Copyright (c) 2014-2015 Edmund Huber

  3. // Copyright (c) 2016-2017 Daniel Oaks <daniel@danieloaks.net>

  4. // released under the MIT license

  5. 

  6. package irc

  7. 

  8. import (

  9. 	"bufio"

  10. 	"crypto/tls"

  11. 	"fmt"

  12. 	"net"

  13. 	"net/http"

  14. 	_ "net/http/pprof"

  15. 	"os"

  16. 	"os/signal"

  17. 	"strconv"

  18. 	"strings"

  19. 	"sync"

  20. 	"syscall"

  21. 	"time"

  22. 	"unsafe"

  23. 

  24. 	"github.com/goshuirc/irc-go/ircfmt"

  25. 	"github.com/oragono/oragono/irc/caps"

  26. 	"github.com/oragono/oragono/irc/connection_limits"

  27. 	"github.com/oragono/oragono/irc/logger"

  28. 	"github.com/oragono/oragono/irc/modes"

  29. 	"github.com/oragono/oragono/irc/sno"

  30. 	"github.com/tidwall/buntdb"

  31. )

  32. 

  33. var (

  34. 	// common error line to sub values into

  35. 	errorMsg = "ERROR :%s\r\n"

  36. 

  37. 	// supportedUserModesString acts as a cache for when we introduce users

  38. 	supportedUserModesString = modes.SupportedUserModes.String()

  39. 	// supportedChannelModesString acts as a cache for when we introduce users

  40. 	supportedChannelModesString = modes.SupportedChannelModes.String()

  41. 

  42. 	// whitelist of caps to serve on the STS-only listener. In particular,

  43. 	// never advertise SASL, to discourage people from sending their passwords:

  44. 	stsOnlyCaps = caps.NewSet(caps.STS, caps.MessageTags, caps.ServerTime, caps.LabeledResponse, caps.Nope)

  45. )

  46. 

  47. // ListenerWrapper wraps a listener so it can be safely reconfigured or stopped

  48. type ListenerWrapper struct {

  49. 	// protects atomic update of config and shouldStop:

  50. 	sync.Mutex // tier 1

  51. 	listener   net.Listener

  52. 	config     listenerConfig

  53. 	shouldStop bool

  54. }

  55. 

  56. // Server is the main Oragono server.

  57. type Server struct {

  58. 	accounts            AccountManager

  59. 	channels            ChannelManager

  60. 	channelRegistry     ChannelRegistry

  61. 	clients             ClientManager

  62. 	config              unsafe.Pointer

  63. 	configFilename      string

  64. 	connectionLimiter   connection_limits.Limiter

  65. 	connectionThrottler connection_limits.Throttler

  66. 	ctime               time.Time

  67. 	dlines              *DLineManager

  68. 	helpIndexManager    HelpIndexManager

  69. 	klines              *KLineManager

  70. 	listeners           map[string]*ListenerWrapper

  71. 	logger              *logger.Manager

  72. 	monitorManager      MonitorManager

  73. 	name                string

  74. 	nameCasefolded      string

  75. 	rehashMutex         sync.Mutex // tier 4

  76. 	rehashSignal        chan os.Signal

  77. 	pprofServer         *http.Server

  78. 	resumeManager       ResumeManager

  79. 	signals             chan os.Signal

  80. 	snomasks            SnoManager

  81. 	store               *buntdb.DB

  82. 	torLimiter          connection_limits.TorLimiter

  83. 	whoWas              WhoWasList

  84. 	stats               Stats

  85. 	semaphores          ServerSemaphores

  86. }

  87. 

  88. var (

  89. 	// ServerExitSignals are the signals the server will exit on.

  90. 	ServerExitSignals = []os.Signal{

  91. 		syscall.SIGINT,

  92. 		syscall.SIGTERM,

  93. 		syscall.SIGQUIT,

  94. 	}

  95. )

  96. 

  97. type clientConn struct {

  98. 	Conn   net.Conn

  99. 	Config listenerConfig

  100. }

  101. 

  102. // NewServer returns a new Oragono server.

  103. func NewServer(config *Config, logger *logger.Manager) (*Server, error) {

  104. 	// initialize data structures

  105. 	server := &Server{

  106. 		ctime:        time.Now().UTC(),

  107. 		listeners:    make(map[string]*ListenerWrapper),

  108. 		logger:       logger,

  109. 		rehashSignal: make(chan os.Signal, 1),

  110. 		signals:      make(chan os.Signal, len(ServerExitSignals)),

  111. 	}

  112. 

  113. 	server.clients.Initialize()

  114. 	server.semaphores.Initialize()

  115. 	server.resumeManager.Initialize(server)

  116. 	server.whoWas.Initialize(config.Limits.WhowasEntries)

  117. 	server.monitorManager.Initialize()

  118. 	server.snomasks.Initialize()

  119. 

  120. 	if err := server.applyConfig(config, true); err != nil {

  121. 		return nil, err

  122. 	}

  123. 

  124. 	// Attempt to clean up when receiving these signals.

  125. 	signal.Notify(server.signals, ServerExitSignals...)

  126. 	signal.Notify(server.rehashSignal, syscall.SIGHUP)

  127. 

  128. 	return server, nil

  129. }

  130. 

  131. // setISupport sets up our RPL_ISUPPORT reply.

  132. func (config *Config) generateISupport() (err error) {

  133. 	maxTargetsString := strconv.Itoa(maxTargets)

  134. 

  135. 	// add RPL_ISUPPORT tokens

  136. 	isupport := &config.Server.isupport

  137. 	isupport.Initialize()

  138. 	isupport.Add("AWAYLEN", strconv.Itoa(config.Limits.AwayLen))

  139. 	isupport.Add("CASEMAPPING", "ascii")

  140. 	isupport.Add("CHANMODES", strings.Join([]string{modes.Modes{modes.BanMask, modes.ExceptMask, modes.InviteMask}.String(), "", modes.Modes{modes.UserLimit, modes.Key}.String(), modes.Modes{modes.InviteOnly, modes.Moderated, modes.NoOutside, modes.OpOnlyTopic, modes.ChanRoleplaying, modes.Secret}.String()}, ","))

  141. 	if config.History.Enabled && config.History.ChathistoryMax > 0 {

  142. 		isupport.Add("draft/CHATHISTORY", strconv.Itoa(config.History.ChathistoryMax))

  143. 	}

  144. 	isupport.Add("CHANNELLEN", strconv.Itoa(config.Limits.ChannelLen))

  145. 	isupport.Add("CHANTYPES", "#")

  146. 	isupport.Add("ELIST", "U")

  147. 	isupport.Add("EXCEPTS", "")

  148. 	isupport.Add("INVEX", "")

  149. 	isupport.Add("KICKLEN", strconv.Itoa(config.Limits.KickLen))

  150. 	isupport.Add("MAXLIST", fmt.Sprintf("beI:%s", strconv.Itoa(config.Limits.ChanListModes)))

  151. 	isupport.Add("MAXTARGETS", maxTargetsString)

  152. 	isupport.Add("MODES", "")

  153. 	isupport.Add("MONITOR", strconv.Itoa(config.Limits.MonitorEntries))

  154. 	isupport.Add("NETWORK", config.Network.Name)

  155. 	isupport.Add("NICKLEN", strconv.Itoa(config.Limits.NickLen))

  156. 	isupport.Add("PREFIX", "(qaohv)~&@%+")

  157. 	isupport.Add("RPCHAN", "E")

  158. 	isupport.Add("RPUSER", "E")

  159. 	isupport.Add("STATUSMSG", "~&@%+")

  160. 	isupport.Add("TARGMAX", fmt.Sprintf("NAMES:1,LIST:1,KICK:1,WHOIS:1,USERHOST:10,PRIVMSG:%s,TAGMSG:%s,NOTICE:%s,MONITOR:", maxTargetsString, maxTargetsString, maxTargetsString))

  161. 	isupport.Add("TOPICLEN", strconv.Itoa(config.Limits.TopicLen))

  162. 	isupport.Add("UTF8MAPPING", casemappingName)

  163. 

  164. 	err = isupport.RegenerateCachedReply()

  165. 	return

  166. }

  167. 

  168. // Shutdown shuts down the server.

  169. func (server *Server) Shutdown() {

  170. 	//TODO(dan): Make sure we disallow new nicks

  171. 	for _, client := range server.clients.AllClients() {

  172. 		client.Notice("Server is shutting down")

  173. 	}

  174. 

  175. 	if err := server.store.Close(); err != nil {

  176. 		server.logger.Error("shutdown", fmt.Sprintln("Could not close datastore:", err))

  177. 	}

  178. }

  179. 

  180. // Run starts the server.

  181. func (server *Server) Run() {

  182. 	// defer closing db/store

  183. 	defer server.store.Close()

  184. 

  185. 	for {

  186. 		select {

  187. 		case <-server.signals:

  188. 			server.Shutdown()

  189. 			return

  190. 

  191. 		case <-server.rehashSignal:

  192. 			go func() {

  193. 				server.logger.Info("server", "Rehashing due to SIGHUP")

  194. 				err := server.rehash()

  195. 				if err != nil {

  196. 					server.logger.Error("server", fmt.Sprintln("Failed to rehash:", err.Error()))

  197. 				}

  198. 			}()

  199. 		}

  200. 	}

  201. }

  202. 

  203. func (server *Server) checkBans(ipaddr net.IP) (banned bool, message string) {

  204. 	// check DLINEs

  205. 	isBanned, info := server.dlines.CheckIP(ipaddr)

  206. 	if isBanned {

  207. 		server.logger.Info("localconnect-ip", fmt.Sprintf("Client from %v rejected by d-line", ipaddr))

  208. 		return true, info.BanMessage("You are banned from this server (%s)")

  209. 	}

  210. 

  211. 	// check connection limits

  212. 	err := server.connectionLimiter.AddClient(ipaddr, false)

  213. 	if err != nil {

  214. 		// too many connections from one client, tell the client and close the connection

  215. 		server.logger.Info("localconnect-ip", fmt.Sprintf("Client from %v rejected for connection limit", ipaddr))

  216. 		return true, "Too many clients from your network"

  217. 	}

  218. 

  219. 	// check connection throttle

  220. 	err = server.connectionThrottler.AddClient(ipaddr)

  221. 	if err != nil {

  222. 		// too many connections too quickly from client, tell them and close the connection

  223. 		duration := server.connectionThrottler.BanDuration()

  224. 		if duration == 0 {

  225. 			return false, ""

  226. 		}

  227. 		server.dlines.AddIP(ipaddr, duration, server.connectionThrottler.BanMessage(), "Exceeded automated connection throttle", "auto.connection.throttler")

  228. 

  229. 		// they're DLINE'd for 15 minutes or whatever, so we can reset the connection throttle now,

  230. 		// and once their temporary DLINE is finished they can fill up the throttler again

  231. 		server.connectionThrottler.ResetFor(ipaddr)

  232. 

  233. 		// this might not show up properly on some clients, but our objective here is just to close it out before it has a load impact on us

  234. 		server.logger.Info(

  235. 			"localconnect-ip",

  236. 			fmt.Sprintf("Client from %v exceeded connection throttle, d-lining for %v", ipaddr, duration))

  237. 		return true, server.connectionThrottler.BanMessage()

  238. 	}

  239. 

  240. 	return false, ""

  241. }

  242. 

  243. func (server *Server) checkTorLimits() (banned bool, message string) {

  244. 	switch server.torLimiter.AddClient() {

  245. 	case connection_limits.ErrLimitExceeded:

  246. 		return true, "Too many clients from the Tor network"

  247. 	case connection_limits.ErrThrottleExceeded:

  248. 		return true, "Exceeded connection throttle for the Tor network"

  249. 	default:

  250. 		return false, ""

  251. 	}

  252. }

  253. 

  254. //

  255. // IRC protocol listeners

  256. //

  257. 

  258. // createListener starts a given listener.

  259. func (server *Server) createListener(addr string, conf listenerConfig, bindMode os.FileMode) (*ListenerWrapper, error) {

  260. 	// make listener

  261. 	var listener net.Listener

  262. 	var err error

  263. 	addr = strings.TrimPrefix(addr, "unix:")

  264. 	if strings.HasPrefix(addr, "/") {

  265. 		// https://stackoverflow.com/a/34881585

  266. 		os.Remove(addr)

  267. 		listener, err = net.Listen("unix", addr)

  268. 		if err == nil && bindMode != 0 {

  269. 			os.Chmod(addr, bindMode)

  270. 		}

  271. 	} else {

  272. 		listener, err = net.Listen("tcp", addr)

  273. 	}

  274. 	if err != nil {

  275. 		return nil, err

  276. 	}

  277. 

  278. 	// throw our details to the server so we can be modified/killed later

  279. 	wrapper := ListenerWrapper{

  280. 		listener:   listener,

  281. 		config:     conf,

  282. 		shouldStop: false,

  283. 	}

  284. 

  285. 	var shouldStop bool

  286. 

  287. 	// setup accept goroutine

  288. 	go func() {

  289. 		for {

  290. 			conn, err := listener.Accept()

  291. 

  292. 			// synchronously access config data:

  293. 			wrapper.Lock()

  294. 			shouldStop = wrapper.shouldStop

  295. 			conf := wrapper.config

  296. 			wrapper.Unlock()

  297. 

  298. 			if shouldStop {

  299. 				if conn != nil {

  300. 					conn.Close()

  301. 				}

  302. 				listener.Close()

  303. 				return

  304. 			} else if err == nil {

  305. 				if conf.TLSConfig != nil {

  306. 					conn = tls.Server(conn, conf.TLSConfig)

  307. 				}

  308. 				newConn := clientConn{

  309. 					Conn:   conn,

  310. 					Config: conf,

  311. 				}

  312. 				// hand off the connection

  313. 				go server.RunClient(newConn)

  314. 			} else {

  315. 				server.logger.Error("internal", "accept error", addr, err.Error())

  316. 			}

  317. 		}

  318. 	}()

  319. 

  320. 	return &wrapper, nil

  321. }

  322. 

  323. //

  324. // server functionality

  325. //

  326. 

  327. func (server *Server) tryRegister(c *Client, session *Session) (exiting bool) {

  328. 	// if the session just sent us a RESUME line, try to resume

  329. 	if session.resumeDetails != nil {

  330. 		session.tryResume()

  331. 		return // whether we succeeded or failed, either way `c` is not getting registered

  332. 	}

  333. 

  334. 	// try to complete registration normally

  335. 	if c.preregNick == "" || !c.HasUsername() || session.capState == caps.NegotiatingState {

  336. 		return

  337. 	}

  338. 

  339. 	if c.isSTSOnly {

  340. 		server.playRegistrationBurst(session)

  341. 		return true

  342. 	}

  343. 

  344. 	// client MUST send PASS if necessary, or authenticate with SASL if necessary,

  345. 	// before completing the other registration commands

  346. 	authOutcome := c.isAuthorized(server.Config())

  347. 	var quitMessage string

  348. 	switch authOutcome {

  349. 	case authFailPass:

  350. 		quitMessage = c.t("Password incorrect")

  351. 		c.Send(nil, server.name, ERR_PASSWDMISMATCH, "*", quitMessage)

  352. 	case authFailSaslRequired, authFailTorSaslRequired:

  353. 		quitMessage = c.t("You must log in with SASL to join this server")

  354. 		c.Send(nil, c.server.name, "FAIL", "*", "ACCOUNT_REQUIRED", quitMessage)

  355. 	}

  356. 	if authOutcome != authSuccess {

  357. 		c.Quit(quitMessage, nil)

  358. 		return true

  359. 	}

  360. 

  361. 	rb := NewResponseBuffer(session)

  362. 	nickAssigned := performNickChange(server, c, c, session, c.preregNick, rb)

  363. 	rb.Send(true)

  364. 	if !nickAssigned {

  365. 		c.preregNick = ""

  366. 		return

  367. 	}

  368. 

  369. 	// check KLINEs

  370. 	isBanned, info := server.klines.CheckMasks(c.AllNickmasks()...)

  371. 	if isBanned {

  372. 		c.Quit(info.BanMessage(c.t("You are banned from this server (%s)")), nil)

  373. 		return true

  374. 	}

  375. 

  376. 	if session.client != c {

  377. 		// reattached, bail out.

  378. 		// we'll play the reg burst later, on the new goroutine associated with

  379. 		// (thisSession, otherClient). This is to avoid having to transfer state

  380. 		// like nickname, hostname, etc. to show the correct values in the reg burst.

  381. 		return

  382. 	}

  383. 

  384. 	// registration has succeeded:

  385. 	c.SetRegistered()

  386. 

  387. 	// count new user in statistics

  388. 	server.stats.Register()

  389. 	server.monitorManager.AlertAbout(c, true)

  390. 

  391. 	server.playRegistrationBurst(session)

  392. 	return false

  393. }

  394. 

  395. func (server *Server) playRegistrationBurst(session *Session) {

  396. 	c := session.client

  397. 	// continue registration

  398. 	d := c.Details()

  399. 	server.logger.Info("localconnect", fmt.Sprintf("Client connected [%s] [u:%s] [r:%s]", d.nick, d.username, d.realname))

  400. 	server.snomasks.Send(sno.LocalConnects, fmt.Sprintf("Client connected [%s] [u:%s] [h:%s] [ip:%s] [r:%s]", d.nick, d.username, c.RawHostname(), c.IPString(), d.realname))

  401. 

  402. 	// send welcome text

  403. 	//NOTE(dan): we specifically use the NICK here instead of the nickmask

  404. 	// see http://modern.ircdocs.horse/#rplwelcome-001 for details on why we avoid using the nickmask

  405. 	session.Send(nil, server.name, RPL_WELCOME, d.nick, fmt.Sprintf(c.t("Welcome to the Internet Relay Network %s"), d.nick))

  406. 	session.Send(nil, server.name, RPL_YOURHOST, d.nick, fmt.Sprintf(c.t("Your host is %[1]s, running version %[2]s"), server.name, Ver))

  407. 	session.Send(nil, server.name, RPL_CREATED, d.nick, fmt.Sprintf(c.t("This server was created %s"), server.ctime.Format(time.RFC1123)))

  408. 	//TODO(dan): Look at adding last optional [<channel modes with a parameter>] parameter

  409. 	session.Send(nil, server.name, RPL_MYINFO, d.nick, server.name, Ver, supportedUserModesString, supportedChannelModesString)

  410. 

  411. 	if c.isSTSOnly {

  412. 		for _, line := range server.Config().Server.STS.bannerLines {

  413. 			c.Notice(line)

  414. 		}

  415. 		return

  416. 	}

  417. 

  418. 	rb := NewResponseBuffer(session)

  419. 	server.RplISupport(c, rb)

  420. 	server.Lusers(c, rb)

  421. 	server.MOTD(c, rb)

  422. 	rb.Send(true)

  423. 

  424. 	modestring := c.ModeString()

  425. 	if modestring != "+" {

  426. 		session.Send(nil, d.nickMask, RPL_UMODEIS, d.nick, modestring)

  427. 	}

  428. 	if server.logger.IsLoggingRawIO() {

  429. 		session.Send(nil, c.server.name, "NOTICE", d.nick, c.t("This server is in debug mode and is logging all user I/O. If you do not wish for everything you send to be readable by the server owner(s), please disconnect."))

  430. 	}

  431. 

  432. 	// #572: defer nick warnings to the end of the registration burst

  433. 	session.client.nickTimer.Touch(nil)

  434. }

  435. 

  436. // RplISupport outputs our ISUPPORT lines to the client. This is used on connection and in VERSION responses.

  437. func (server *Server) RplISupport(client *Client, rb *ResponseBuffer) {

  438. 	translatedISupport := client.t("are supported by this server")

  439. 	nick := client.Nick()

  440. 	config := server.Config()

  441. 	for _, cachedTokenLine := range config.Server.isupport.CachedReply {

  442. 		length := len(cachedTokenLine) + 2

  443. 		tokenline := make([]string, length)

  444. 		tokenline[0] = nick

  445. 		copy(tokenline[1:], cachedTokenLine)

  446. 		tokenline[length-1] = translatedISupport

  447. 		rb.Add(nil, server.name, RPL_ISUPPORT, tokenline...)

  448. 	}

  449. }

  450. 

  451. func (server *Server) Lusers(client *Client, rb *ResponseBuffer) {

  452. 	nick := client.Nick()

  453. 	stats := server.stats.GetValues()

  454. 

  455. 	rb.Add(nil, server.name, RPL_LUSERCLIENT, nick, fmt.Sprintf(client.t("There are %[1]d users and %[2]d invisible on %[3]d server(s)"), stats.Total-stats.Invisible, stats.Invisible, 1))

  456. 	rb.Add(nil, server.name, RPL_LUSEROP, nick, strconv.Itoa(stats.Operators), client.t("IRC Operators online"))

  457. 	rb.Add(nil, server.name, RPL_LUSERUNKNOWN, nick, strconv.Itoa(stats.Unknown), client.t("unregistered connections"))

  458. 	rb.Add(nil, server.name, RPL_LUSERCHANNELS, nick, strconv.Itoa(server.channels.Len()), client.t("channels formed"))

  459. 	rb.Add(nil, server.name, RPL_LUSERME, nick, fmt.Sprintf(client.t("I have %[1]d clients and %[2]d servers"), stats.Total, 1))

  460. 	total := strconv.Itoa(stats.Total)

  461. 	max := strconv.Itoa(stats.Max)

  462. 	rb.Add(nil, server.name, RPL_LOCALUSERS, nick, total, max, fmt.Sprintf(client.t("Current local users %[1]s, max %[2]s"), total, max))

  463. 	rb.Add(nil, server.name, RPL_GLOBALUSERS, nick, total, max, fmt.Sprintf(client.t("Current global users %[1]s, max %[2]s"), total, max))

  464. }

  465. 

  466. // MOTD serves the Message of the Day.

  467. func (server *Server) MOTD(client *Client, rb *ResponseBuffer) {

  468. 	motdLines := server.Config().Server.motdLines

  469. 

  470. 	if len(motdLines) < 1 {

  471. 		rb.Add(nil, server.name, ERR_NOMOTD, client.nick, client.t("MOTD File is missing"))

  472. 		return

  473. 	}

  474. 

  475. 	rb.Add(nil, server.name, RPL_MOTDSTART, client.nick, fmt.Sprintf(client.t("- %s Message of the day - "), server.name))

  476. 	for _, line := range motdLines {

  477. 		rb.Add(nil, server.name, RPL_MOTD, client.nick, line)

  478. 	}

  479. 	rb.Add(nil, server.name, RPL_ENDOFMOTD, client.nick, client.t("End of MOTD command"))

  480. }

  481. 

  482. // WhoisChannelsNames returns the common channel names between two users.

  483. func (client *Client) WhoisChannelsNames(target *Client, multiPrefix bool) []string {

  484. 	var chstrs []string

  485. 	for _, channel := range target.Channels() {

  486. 		// channel is secret and the target can't see it

  487. 		if !client.HasMode(modes.Operator) {

  488. 			if (target.HasMode(modes.Invisible) || channel.flags.HasMode(modes.Secret)) && !channel.hasClient(client) {

  489. 				continue

  490. 			}

  491. 		}

  492. 		chstrs = append(chstrs, channel.ClientPrefixes(target, multiPrefix)+channel.name)

  493. 	}

  494. 	return chstrs

  495. }

  496. 

  497. func (client *Client) getWhoisOf(target *Client, rb *ResponseBuffer) {

  498. 	cnick := client.Nick()

  499. 	targetInfo := target.Details()

  500. 	rb.Add(nil, client.server.name, RPL_WHOISUSER, cnick, targetInfo.nick, targetInfo.username, targetInfo.hostname, "*", targetInfo.realname)

  501. 	tnick := targetInfo.nick

  502. 

  503. 	whoischannels := client.WhoisChannelsNames(target, rb.session.capabilities.Has(caps.MultiPrefix))

  504. 	if whoischannels != nil {

  505. 		rb.Add(nil, client.server.name, RPL_WHOISCHANNELS, cnick, tnick, strings.Join(whoischannels, " "))

  506. 	}

  507. 	tOper := target.Oper()

  508. 	if tOper != nil {

  509. 		rb.Add(nil, client.server.name, RPL_WHOISOPERATOR, cnick, tnick, tOper.WhoisLine)

  510. 	}

  511. 	if client.HasMode(modes.Operator) || client == target {

  512. 		rb.Add(nil, client.server.name, RPL_WHOISACTUALLY, cnick, tnick, fmt.Sprintf("%s@%s", targetInfo.username, target.RawHostname()), target.IPString(), client.t("Actual user@host, Actual IP"))

  513. 	}

  514. 	if target.HasMode(modes.TLS) {

  515. 		rb.Add(nil, client.server.name, RPL_WHOISSECURE, cnick, tnick, client.t("is using a secure connection"))

  516. 	}

  517. 	if targetInfo.accountName != "*" {

  518. 		rb.Add(nil, client.server.name, RPL_WHOISACCOUNT, cnick, tnick, targetInfo.accountName, client.t("is logged in as"))

  519. 	}

  520. 	if target.HasMode(modes.Bot) {

  521. 		rb.Add(nil, client.server.name, RPL_WHOISBOT, cnick, tnick, ircfmt.Unescape(fmt.Sprintf(client.t("is a $bBot$b on %s"), client.server.Config().Network.Name)))

  522. 	}

  523. 

  524. 	if target.certfp != "" && (client.HasMode(modes.Operator) || client == target) {

  525. 		rb.Add(nil, client.server.name, RPL_WHOISCERTFP, cnick, tnick, fmt.Sprintf(client.t("has client certificate fingerprint %s"), target.certfp))

  526. 	}

  527. 	rb.Add(nil, client.server.name, RPL_WHOISIDLE, cnick, tnick, strconv.FormatUint(target.IdleSeconds(), 10), strconv.FormatInt(target.SignonTime(), 10), client.t("seconds idle, signon time"))

  528. }

  529. 

  530. // rplWhoReply returns the WHO reply between one user and another channel/user.

  531. // <channel> <user> <host> <server> <nick> ( "H" / "G" ) ["*"] [ ( "@" / "+" ) ]

  532. // :<hopcount> <real name>

  533. func (client *Client) rplWhoReply(channel *Channel, target *Client, rb *ResponseBuffer) {

  534. 	channelName := "*"

  535. 	flags := ""

  536. 

  537. 	if target.Away() {

  538. 		flags = "G"

  539. 	} else {

  540. 		flags = "H"

  541. 	}

  542. 	if target.HasMode(modes.Operator) {

  543. 		flags += "*"

  544. 	}

  545. 

  546. 	if channel != nil {

  547. 		// TODO is this right?

  548. 		flags += channel.ClientPrefixes(target, rb.session.capabilities.Has(caps.MultiPrefix))

  549. 		channelName = channel.name

  550. 	}

  551. 	details := target.Details()

  552. 	// hardcode a hopcount of 0 for now

  553. 	rb.Add(nil, client.server.name, RPL_WHOREPLY, client.Nick(), channelName, details.username, details.hostname, client.server.name, details.nick, flags, "0 "+details.realname)

  554. }

  555. 

  556. // rehash reloads the config and applies the changes from the config file.

  557. func (server *Server) rehash() error {

  558. 	server.logger.Debug("server", "Starting rehash")

  559. 

  560. 	// only let one REHASH go on at a time

  561. 	server.rehashMutex.Lock()

  562. 	defer server.rehashMutex.Unlock()

  563. 

  564. 	server.logger.Debug("server", "Got rehash lock")

  565. 

  566. 	config, err := LoadConfig(server.configFilename)

  567. 	if err != nil {

  568. 		return fmt.Errorf("Error loading config file config: %s", err.Error())

  569. 	}

  570. 

  571. 	err = server.applyConfig(config, false)

  572. 	if err != nil {

  573. 		return fmt.Errorf("Error applying config changes: %s", err.Error())

  574. 	}

  575. 

  576. 	return nil

  577. }

  578. 

  579. func (server *Server) applyConfig(config *Config, initial bool) (err error) {

  580. 	if initial {

  581. 		server.configFilename = config.Filename

  582. 		server.name = config.Server.Name

  583. 		server.nameCasefolded = config.Server.nameCasefolded

  584. 	} else {

  585. 		// enforce configs that can't be changed after launch:

  586. 		currentLimits := server.Config().Limits

  587. 		if currentLimits.LineLen.Rest != config.Limits.LineLen.Rest {

  588. 			return fmt.Errorf("Maximum line length (linelen) cannot be changed after launching the server, rehash aborted")

  589. 		} else if server.name != config.Server.Name {

  590. 			return fmt.Errorf("Server name cannot be changed after launching the server, rehash aborted")

  591. 		} else if server.Config().Datastore.Path != config.Datastore.Path {

  592. 			return fmt.Errorf("Datastore path cannot be changed after launching the server, rehash aborted")

  593. 		}

  594. 	}

  595. 

  596. 	// sanity checks complete, start modifying server state

  597. 	server.logger.Info("server", "Using config file", server.configFilename)

  598. 	oldConfig := server.Config()

  599. 

  600. 	// first, reload config sections for functionality implemented in subpackages:

  601. 

  602. 	err = server.connectionLimiter.ApplyConfig(config.Server.ConnectionLimiter)

  603. 	if err != nil {

  604. 		return err

  605. 	}

  606. 

  607. 	err = server.connectionThrottler.ApplyConfig(config.Server.ConnectionThrottler)

  608. 	if err != nil {

  609. 		return err

  610. 	}

  611. 

  612. 	tlConf := &config.Server.TorListeners

  613. 	server.torLimiter.Configure(tlConf.MaxConnections, tlConf.ThrottleDuration, tlConf.MaxConnectionsPerDuration)

  614. 

  615. 	// reload logging config

  616. 	wasLoggingRawIO := !initial && server.logger.IsLoggingRawIO()

  617. 	err = server.logger.ApplyConfig(config.Logging)

  618. 	if err != nil {

  619. 		return err

  620. 	}

  621. 	nowLoggingRawIO := server.logger.IsLoggingRawIO()

  622. 	// notify existing clients if raw i/o logging was enabled by a rehash

  623. 	sendRawOutputNotice := !wasLoggingRawIO && nowLoggingRawIO

  624. 

  625. 	// setup new and removed caps

  626. 	addedCaps := caps.NewSet()

  627. 	removedCaps := caps.NewSet()

  628. 	updatedCaps := caps.NewSet()

  629. 

  630. 	// Translations

  631. 	server.logger.Debug("server", "Regenerating HELP indexes for new languages")

  632. 	server.helpIndexManager.GenerateIndices(config.languageManager)

  633. 

  634. 	if oldConfig != nil && config.Server.capValues[caps.Languages] != oldConfig.Server.capValues[caps.Languages] {

  635. 		updatedCaps.Add(caps.Languages)

  636. 	}

  637. 

  638. 	// SASL

  639. 	authPreviouslyEnabled := oldConfig != nil && oldConfig.Accounts.AuthenticationEnabled

  640. 	if config.Accounts.AuthenticationEnabled && (oldConfig == nil || !authPreviouslyEnabled) {

  641. 		// enabling SASL

  642. 		addedCaps.Add(caps.SASL)

  643. 	} else if !config.Accounts.AuthenticationEnabled && (oldConfig == nil || authPreviouslyEnabled) {

  644. 		// disabling SASL

  645. 		removedCaps.Add(caps.SASL)

  646. 	}

  647. 

  648. 	nickReservationPreviouslyDisabled := oldConfig != nil && !oldConfig.Accounts.NickReservation.Enabled

  649. 	nickReservationNowEnabled := config.Accounts.NickReservation.Enabled

  650. 	if nickReservationPreviouslyDisabled && nickReservationNowEnabled {

  651. 		server.accounts.buildNickToAccountIndex()

  652. 	}

  653. 

  654. 	hsPreviouslyDisabled := oldConfig != nil && !oldConfig.Accounts.VHosts.Enabled

  655. 	hsNowEnabled := config.Accounts.VHosts.Enabled

  656. 	if hsPreviouslyDisabled && hsNowEnabled {

  657. 		server.accounts.initVHostRequestQueue()

  658. 	}

  659. 

  660. 	chanRegPreviouslyDisabled := oldConfig != nil && !oldConfig.Channels.Registration.Enabled

  661. 	chanRegNowEnabled := config.Channels.Registration.Enabled

  662. 	if chanRegPreviouslyDisabled && chanRegNowEnabled {

  663. 		server.channels.loadRegisteredChannels()

  664. 	}

  665. 

  666. 	// STS

  667. 	stsPreviouslyEnabled := oldConfig != nil && oldConfig.Server.STS.Enabled

  668. 	stsValue := config.Server.capValues[caps.STS]

  669. 	stsCurrentCapValue := ""

  670. 	if oldConfig != nil {

  671. 		stsCurrentCapValue = oldConfig.Server.capValues[caps.STS]

  672. 	}

  673. 	server.logger.Debug("server", "STS Vals", stsCurrentCapValue, stsValue, fmt.Sprintf("server[%v] config[%v]", stsPreviouslyEnabled, config.Server.STS.Enabled))

  674. 	if (config.Server.STS.Enabled != stsPreviouslyEnabled) || (stsValue != stsCurrentCapValue) {

  675. 		// XXX: STS is always removed by CAP NEW sts=duration=0, not CAP DEL

  676. 		addedCaps.Add(caps.STS)

  677. 	}

  678. 

  679. 	if oldConfig != nil && config.Accounts.Bouncer.Enabled != oldConfig.Accounts.Bouncer.Enabled {

  680. 		if config.Accounts.Bouncer.Enabled {

  681. 			addedCaps.Add(caps.Bouncer)

  682. 		} else {

  683. 			removedCaps.Add(caps.Bouncer)

  684. 		}

  685. 	}

  686. 

  687. 	// resize history buffers as needed

  688. 	if oldConfig != nil && oldConfig.History != config.History {

  689. 		for _, channel := range server.channels.Channels() {

  690. 			channel.history.Resize(config.History.ChannelLength, config.History.AutoresizeWindow)

  691. 		}

  692. 		for _, client := range server.clients.AllClients() {

  693. 			client.history.Resize(config.History.ClientLength, config.History.AutoresizeWindow)

  694. 		}

  695. 	}

  696. 

  697. 	// activate the new config

  698. 	server.SetConfig(config)

  699. 

  700. 	// burst new and removed caps

  701. 	var capBurstSessions []*Session

  702. 	added := make(map[caps.Version][]string)

  703. 	var removed []string

  704. 

  705. 	// updated caps get DEL'd and then NEW'd

  706. 	// so, we can just add updated ones to both removed and added lists here and they'll be correctly handled

  707. 	server.logger.Debug("server", "Updated Caps", strings.Join(updatedCaps.String(caps.Cap301, config.Server.capValues), " "))

  708. 	addedCaps.Union(updatedCaps)

  709. 	removedCaps.Union(updatedCaps)

  710. 

  711. 	if !addedCaps.Empty() || !removedCaps.Empty() {

  712. 		capBurstSessions = server.clients.AllWithCapsNotify()

  713. 

  714. 		added[caps.Cap301] = addedCaps.String(caps.Cap301, config.Server.capValues)

  715. 		added[caps.Cap302] = addedCaps.String(caps.Cap302, config.Server.capValues)

  716. 		// removed never has values, so we leave it as Cap301

  717. 		removed = removedCaps.String(caps.Cap301, config.Server.capValues)

  718. 	}

  719. 

  720. 	for _, sSession := range capBurstSessions {

  721. 		// DEL caps and then send NEW ones so that updated caps get removed/added correctly

  722. 		if !removedCaps.Empty() {

  723. 			for _, capStr := range removed {

  724. 				sSession.Send(nil, server.name, "CAP", sSession.client.Nick(), "DEL", capStr)

  725. 			}

  726. 		}

  727. 		if !addedCaps.Empty() {

  728. 			for _, capStr := range added[sSession.capVersion] {

  729. 				sSession.Send(nil, server.name, "CAP", sSession.client.Nick(), "NEW", capStr)

  730. 			}

  731. 		}

  732. 	}

  733. 

  734. 	server.logger.Info("server", "Using datastore", config.Datastore.Path)

  735. 	if initial {

  736. 		if err := server.loadDatastore(config); err != nil {

  737. 			return err

  738. 		}

  739. 	}

  740. 

  741. 	server.setupPprofListener(config)

  742. 

  743. 	// set RPL_ISUPPORT

  744. 	var newISupportReplies [][]string

  745. 	if oldConfig != nil {

  746. 		newISupportReplies = oldConfig.Server.isupport.GetDifference(&config.Server.isupport)

  747. 	}

  748. 

  749. 	// we are now open for business

  750. 	err = server.setupListeners(config)

  751. 

  752. 	if !initial {

  753. 		// push new info to all of our clients

  754. 		for _, sClient := range server.clients.AllClients() {

  755. 			for _, tokenline := range newISupportReplies {

  756. 				sClient.Send(nil, server.name, RPL_ISUPPORT, append([]string{sClient.nick}, tokenline...)...)

  757. 			}

  758. 

  759. 			if sendRawOutputNotice {

  760. 				sClient.Notice(sClient.t("This server is in debug mode and is logging all user I/O. If you do not wish for everything you send to be readable by the server owner(s), please disconnect."))

  761. 			}

  762. 

  763. 			if !oldConfig.Accounts.NickReservation.Enabled && config.Accounts.NickReservation.Enabled {

  764. 				sClient.nickTimer.Initialize(sClient)

  765. 				sClient.nickTimer.Touch(nil)

  766. 			} else if oldConfig.Accounts.NickReservation.Enabled && !config.Accounts.NickReservation.Enabled {

  767. 				sClient.nickTimer.Stop()

  768. 			}

  769. 		}

  770. 	}

  771. 

  772. 	return err

  773. }

  774. 

  775. func (server *Server) setupPprofListener(config *Config) {

  776. 	pprofListener := ""

  777. 	if config.Debug.PprofListener != nil {

  778. 		pprofListener = *config.Debug.PprofListener

  779. 	}

  780. 	if server.pprofServer != nil {

  781. 		if pprofListener == "" || (pprofListener != server.pprofServer.Addr) {

  782. 			server.logger.Info("server", "Stopping pprof listener", server.pprofServer.Addr)

  783. 			server.pprofServer.Close()

  784. 			server.pprofServer = nil

  785. 		}

  786. 	}

  787. 	if pprofListener != "" && server.pprofServer == nil {

  788. 		ps := http.Server{

  789. 			Addr: pprofListener,

  790. 		}

  791. 		go func() {

  792. 			if err := ps.ListenAndServe(); err != nil {

  793. 				server.logger.Error("server", "pprof listener failed", err.Error())

  794. 			}

  795. 		}()

  796. 		server.pprofServer = &ps

  797. 		server.logger.Info("server", "Started pprof listener", server.pprofServer.Addr)

  798. 	}

  799. }

  800. 

  801. func (config *Config) loadMOTD() (err error) {

  802. 	if config.Server.MOTD != "" {

  803. 		file, err := os.Open(config.Server.MOTD)

  804. 		if err == nil {

  805. 			defer file.Close()

  806. 

  807. 			reader := bufio.NewReader(file)

  808. 			for {

  809. 				line, err := reader.ReadString('\n')

  810. 				if err != nil {

  811. 					break

  812. 				}

  813. 				line = strings.TrimRight(line, "\r\n")

  814. 

  815. 				if config.Server.MOTDFormatting {

  816. 					line = ircfmt.Unescape(line)

  817. 				}

  818. 

  819. 				// "- " is the required prefix for MOTD, we just add it here to make

  820. 				// bursting it out to clients easier

  821. 				line = fmt.Sprintf("- %s", line)

  822. 

  823. 				config.Server.motdLines = append(config.Server.motdLines, line)

  824. 			}

  825. 		}

  826. 	}

  827. 	return

  828. }

  829. 

  830. func (server *Server) loadDatastore(config *Config) error {

  831. 	// open the datastore and load server state for which it (rather than config)

  832. 	// is the source of truth

  833. 

  834. 	_, err := os.Stat(config.Datastore.Path)

  835. 	if os.IsNotExist(err) {

  836. 		server.logger.Warning("server", "database does not exist, creating it", config.Datastore.Path)

  837. 		err = initializeDB(config.Datastore.Path)

  838. 		if err != nil {

  839. 			return err

  840. 		}

  841. 	}

  842. 

  843. 	db, err := OpenDatabase(config)

  844. 	if err == nil {

  845. 		server.store = db

  846. 	} else {

  847. 		return fmt.Errorf("Failed to open datastore: %s", err.Error())

  848. 	}

  849. 

  850. 	// load *lines (from the datastores)

  851. 	server.logger.Debug("server", "Loading D/Klines")

  852. 	server.loadDLines()

  853. 	server.loadKLines()

  854. 

  855. 	server.channelRegistry.Initialize(server)

  856. 	server.channels.Initialize(server)

  857. 	server.accounts.Initialize(server)

  858. 

  859. 	return nil

  860. }

  861. 

  862. func (server *Server) setupListeners(config *Config) (err error) {

  863. 	logListener := func(addr string, config listenerConfig) {

  864. 		server.logger.Info("listeners",

  865. 			fmt.Sprintf("now listening on %s, tls=%t, tor=%t.", addr, (config.TLSConfig != nil), config.IsTor),

  866. 		)

  867. 	}

  868. 

  869. 	// update or destroy all existing listeners

  870. 	for addr := range server.listeners {

  871. 		currentListener := server.listeners[addr]

  872. 		newConfig, stillConfigured := config.Server.trueListeners[addr]

  873. 

  874. 		currentListener.Lock()

  875. 		currentListener.shouldStop = !stillConfigured

  876. 		currentListener.config = newConfig

  877. 		currentListener.Unlock()

  878. 

  879. 		if stillConfigured {

  880. 			logListener(addr, newConfig)

  881. 		} else {

  882. 			// tell the listener it should stop by interrupting its Accept() call:

  883. 			currentListener.listener.Close()

  884. 			delete(server.listeners, addr)

  885. 			server.logger.Info("listeners", fmt.Sprintf("stopped listening on %s.", addr))

  886. 		}

  887. 	}

  888. 

  889. 	publicPlaintextListener := ""

  890. 	// create new listeners that were not previously configured

  891. 	for newAddr, newConfig := range config.Server.trueListeners {

  892. 		if strings.HasPrefix(newAddr, ":") && !newConfig.IsTor && !newConfig.IsSTSOnly && newConfig.TLSConfig == nil {

  893. 			publicPlaintextListener = newAddr

  894. 		}

  895. 		_, exists := server.listeners[newAddr]

  896. 		if !exists {

  897. 			// make new listener

  898. 			listener, listenerErr := server.createListener(newAddr, newConfig, config.Server.UnixBindMode)

  899. 			if listenerErr != nil {

  900. 				server.logger.Error("server", "couldn't listen on", newAddr, listenerErr.Error())

  901. 				err = listenerErr

  902. 				continue

  903. 			}

  904. 			server.listeners[newAddr] = listener

  905. 			logListener(newAddr, newConfig)

  906. 		}

  907. 	}

  908. 

  909. 	if publicPlaintextListener != "" {

  910. 		server.logger.Warning("listeners", fmt.Sprintf("Your server is configured with public plaintext listener %s. Consider disabling it for improved security and privacy.", publicPlaintextListener))

  911. 	}

  912. 

  913. 	return

  914. }

  915. 

  916. // elistMatcher takes and matches ELIST conditions

  917. type elistMatcher struct {

  918. 	MinClientsActive bool

  919. 	MinClients       int

  920. 	MaxClientsActive bool

  921. 	MaxClients       int

  922. }

  923. 

  924. // Matches checks whether the given channel matches our matches.

  925. func (matcher *elistMatcher) Matches(channel *Channel) bool {

  926. 	if matcher.MinClientsActive {

  927. 		if len(channel.Members()) < matcher.MinClients {

  928. 			return false

  929. 		}

  930. 	}

  931. 

  932. 	if matcher.MaxClientsActive {

  933. 		if len(channel.Members()) < len(channel.members) {

  934. 			return false

  935. 		}

  936. 	}

  937. 

  938. 	return true

  939. }

  940. 

  941. // RplList returns the RPL_LIST numeric for the given channel.

  942. func (target *Client) RplList(channel *Channel, rb *ResponseBuffer) {

  943. 	// get the correct number of channel members

  944. 	var memberCount int

  945. 	if target.HasMode(modes.Operator) || channel.hasClient(target) {

  946. 		memberCount = len(channel.Members())

  947. 	} else {

  948. 		for _, member := range channel.Members() {

  949. 			if !member.HasMode(modes.Invisible) {

  950. 				memberCount++

  951. 			}

  952. 		}

  953. 	}

  954. 

  955. 	rb.Add(nil, target.server.name, RPL_LIST, target.nick, channel.name, strconv.Itoa(memberCount), channel.topic)

  956. }

  957. 

  958. var (

  959. 	infoString1 = strings.Split(`      ▄▄▄   ▄▄▄·  ▄▄ •        ▐ ▄

  960. ▪     ▀▄ █·▐█ ▀█ ▐█ ▀ ▪▪     •█▌▐█▪     

  961.  ▄█▀▄ ▐▀▀▄ ▄█▀▀█ ▄█ ▀█▄ ▄█▀▄▪▐█▐▐▌ ▄█▀▄ 

  962. ▐█▌.▐▌▐█•█▌▐█ ▪▐▌▐█▄▪▐█▐█▌ ▐▌██▐█▌▐█▌.▐▌

  963.  ▀█▄▀▪.▀  ▀ ▀  ▀ ·▀▀▀▀  ▀█▄▀ ▀▀ █▪ ▀█▄▀▪

  964. 

  965.          https://oragono.io/

  966.    https://github.com/oragono/oragono

  967.    https://crowdin.com/project/oragono

  968. `, "\n")

  969. 	infoString2 = strings.Split(`    Daniel Oakley,          DanielOaks,    <daniel@danieloaks.net>

  970.     Shivaram Lingamneni,    slingamn,      <slingamn@cs.stanford.edu>

  971. `, "\n")

  972. 	infoString3 = strings.Split(`    3onyc

  973.     Edmund Huber

  974.     Euan Kemp (euank)

  975.     Jeremy Latt

  976.     Martin Lindhe (martinlindhe)

  977.     Roberto Besser (besser)

  978.     Robin Burchell (rburchell)

  979.     Sean Enck (enckse)

  980.     soul9

  981.     Vegax

  982. `, "\n")

  983. )