net.c 50 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885
  1. /*
  2. * net.c -- handles:
  3. * all raw network i/o
  4. *
  5. */
  6. #include <fcntl.h>
  7. #include "common.h"
  8. #include "net.h"
  9. #include "misc.h"
  10. #include "main.h"
  11. #include "debug.h"
  12. #include "dccutil.h"
  13. #include "crypt.h"
  14. #include "egg_timer.h"
  15. #include "traffic.h"
  16. #include <limits.h>
  17. #include <string.h>
  18. #include <netdb.h>
  19. #include <signal.h>
  20. #include <sys/types.h>
  21. #include <sys/socket.h>
  22. #include <setjmp.h>
  23. #if HAVE_SYS_SELECT_H
  24. # include <sys/select.h>
  25. #endif /* HAVE_SYS_SELECT_H */
  26. #include <netinet/in.h>
  27. #include <arpa/inet.h>
  28. #include <errno.h>
  29. #include <sys/stat.h>
  30. #if HAVE_UNISTD_H
  31. # include <unistd.h>
  32. #endif /* HAVE_UNITSTD_H */
  33. extern egg_traffic_t traffic;
  34. #ifdef HAVE_SSL
  35. SSL_CTX *ssl_c_ctx = NULL, *ssl_s_ctx = NULL;
  36. char *tls_rand_file = NULL;
  37. #endif /* HAVE_SSL */
  38. union sockaddr_union cached_myip4_so;
  39. #ifdef USE_IPV6
  40. union sockaddr_union cached_myip6_so;
  41. #endif /* USE_IPV6 */
  42. char firewall[121] = ""; /* Socks server for firewall */
  43. int firewallport = 1080; /* Default port of Sock4/5 firewalls */
  44. char botuser[21] = ""; /* Username of the user running the bot */
  45. int resolve_timeout = 10; /* hostname/address lookup timeout */
  46. sock_list *socklist = NULL; /* Enough to be safe */
  47. int MAXSOCKS = 0;
  48. jmp_buf alarmret; /* Env buffer for alarm() returns */
  49. static int dcc_sanitycheck = 0; /* We should do some sanity checking on dcc connections. */
  50. /* Types of proxy */
  51. #define PROXY_SOCKS 1
  52. #define PROXY_SUN 2
  53. /* I need an UNSIGNED long for dcc type stuff
  54. */
  55. IP my_atoul(char *s)
  56. {
  57. IP ret = 0;
  58. while ((*s >= '0') && (*s <= '9')) {
  59. ret *= 10;
  60. ret += ((*s) - '0');
  61. s++;
  62. }
  63. return ret;
  64. }
  65. int hostprotocol(char *host)
  66. {
  67. #ifdef USE_IPV6
  68. struct hostent *he = NULL;
  69. # ifndef HAVE_GETHOSTBYNAME2
  70. int error_num;
  71. # endif /* !HAVE_GETHOSTBYNAME2 */
  72. if (!host || (host && !host[0]))
  73. return 0;
  74. if (!setjmp(alarmret)) {
  75. alarm(resolve_timeout);
  76. # ifdef HAVE_GETHOSTBYNAME2
  77. he = gethostbyname2(host, AF_INET6);
  78. # else
  79. he = getipnodebyname(host, AF_INET6, AI_DEFAULT, &error_num);
  80. # endif /* HAVE_GETHOSTBYNAME2 */
  81. alarm(0);
  82. } else
  83. he = NULL;
  84. if (!he)
  85. return AF_INET;
  86. return AF_INET6;
  87. #else
  88. return 0;
  89. #endif /* USE_IPV6 */
  90. }
  91. /* get the protocol used on a socket */
  92. int sockprotocol(int socket)
  93. {
  94. struct sockaddr sa;
  95. int i = sizeof(sa);
  96. if (getsockname(socket, &sa, &i))
  97. return -1;
  98. else
  99. return sa.sa_family;
  100. }
  101. /* AF_INET-independent resolving routine */
  102. int get_ip(char *hostname, union sockaddr_union *so)
  103. {
  104. #ifdef USE_IPV6
  105. struct addrinfo hints, *ai = NULL, *res = NULL;
  106. int error = 0;
  107. #else
  108. struct hostent *hp = NULL;
  109. #endif /* USE_IPV6 */
  110. egg_memset(so, 0, sizeof(union sockaddr_union));
  111. debug1("get_ip(%s)", hostname);
  112. if (!hostname || (hostname && !hostname[0]))
  113. return 1;
  114. #ifdef USE_IPV6
  115. egg_memset(&hints, 0, sizeof(struct addrinfo));
  116. hints.ai_socktype = SOCK_STREAM;
  117. if ((error = getaddrinfo(hostname, NULL, &hints, &res)))
  118. return error;
  119. error = 1;
  120. for (ai = res; ai != NULL; ai = ai->ai_next) {
  121. if ((ai->ai_family == AF_INET6) || (ai->ai_family == AF_INET)) {
  122. memcpy(so, ai->ai_addr, ai->ai_addrlen);
  123. error = 0;
  124. break;
  125. }
  126. }
  127. freeaddrinfo(res);
  128. return error;
  129. #else
  130. if (!(hp = gethostbyname(hostname)))
  131. return -1;
  132. memcpy(&so->sin.sin_addr, hp->h_addr, 4);
  133. so->sin.sin_family = AF_INET;
  134. return 0;
  135. #endif /* USE_IPV6 */
  136. }
  137. #ifdef HAVE_SSL
  138. int seed_PRNG(void)
  139. {
  140. char stackdata[1024] = "";
  141. static char rand_file[300] = "";
  142. FILE *fh = NULL;
  143. #if OPENSSL_VERSION_NUMBER >= 0x00905100
  144. if (RAND_status()) return 0;
  145. #endif /* OPENSSL_VERSION_NUMBER */
  146. if ((fh = fopen("/dev/urandom", "r"))) {
  147. fclose(fh);
  148. return 0;
  149. }
  150. if (RAND_file_name(rand_file, sizeof(rand_file)))
  151. tls_rand_file = rand_file;
  152. else
  153. return 1;
  154. if (!RAND_load_file(rand_file, 1024)) {
  155. unsigned int c;
  156. c = now;
  157. RAND_seed(&c, sizeof(c));
  158. c = getpid();
  159. RAND_seed(&c, sizeof(c));
  160. RAND_seed(stackdata, sizeof(stackdata));
  161. }
  162. #if OPENSSL_VERSION_NUMBER >= 0x00905100
  163. if (!RAND_status()) return 2;
  164. #endif /* OPENSSL_VERSION_NUMBER >= 0x00905100 */
  165. return 0;
  166. }
  167. #endif /* HAVE_SSL */
  168. /* Initialize the socklist
  169. */
  170. void init_net()
  171. {
  172. int i;
  173. for (i = 0; i < MAXSOCKS; i++) {
  174. egg_bzero(&socklist[i], sizeof(socklist[i]));
  175. #ifdef HAVE_SSL
  176. socklist[i].ssl=NULL;
  177. #endif /* HAVE_SSL */
  178. socklist[i].flags = SOCK_UNUSED;
  179. }
  180. #ifdef HAVE_SSL
  181. SSL_load_error_strings();
  182. OpenSSL_add_ssl_algorithms();
  183. ssl_c_ctx = SSL_CTX_new(SSLv23_client_method());
  184. ssl_s_ctx = SSL_CTX_new(SSLv23_server_method());
  185. if (!ssl_c_ctx || !ssl_s_ctx)
  186. fatal("SSL Inititlization failed", 0);
  187. if (seed_PRNG())
  188. fatal("SSL PRNG seeding failed!", 0);
  189. #endif /* HAVE_SSL */
  190. }
  191. #ifdef HAVE_SSL
  192. int ssl_cleanup() {
  193. if (ssl_c_ctx) {
  194. SSL_CTX_free(ssl_c_ctx);
  195. ssl_c_ctx = NULL;
  196. }
  197. if (ssl_s_ctx) {
  198. SSL_CTX_free(ssl_s_ctx);
  199. ssl_s_ctx = NULL;
  200. }
  201. if (tls_rand_file) RAND_write_file(tls_rand_file);
  202. return 0;
  203. }
  204. #endif /* HAVE_SSL */
  205. /* Get my ipv? ip
  206. */
  207. char *myipstr(int af_type)
  208. {
  209. #ifdef USE_IPV6
  210. if (af_type == 6) {
  211. static char s[UHOSTLEN + 1] = "";
  212. egg_inet_ntop(AF_INET6, &cached_myip6_so.sin6.sin6_addr, s, 119);
  213. s[120] = 0;
  214. return s;
  215. } else
  216. #endif /* USE_IPV6 */
  217. if (af_type == 4) {
  218. static char s[UHOSTLEN + 1] = "";
  219. egg_inet_ntop(AF_INET, &cached_myip4_so.sin.sin_addr, s, 119);
  220. s[120] = 0;
  221. return s;
  222. }
  223. return "";
  224. }
  225. /* Get my ip number
  226. */
  227. IP getmyip() {
  228. return (IP) cached_myip4_so.sin.sin_addr.s_addr;
  229. }
  230. /* see if it's necessary to set inaddr_any... because if we can't resolve, we die anyway */
  231. void cache_my_ip()
  232. {
  233. char s[121] = "";
  234. int error;
  235. #ifdef USE_IPV6
  236. int any = 0;
  237. #endif /* USE_IPV6 */
  238. debug0("cache_my_ip()");
  239. egg_memset(&cached_myip4_so, 0, sizeof(union sockaddr_union));
  240. #ifdef USE_IPV6
  241. egg_memset(&cached_myip6_so, 0, sizeof(union sockaddr_union));
  242. if (conf.bot->ip6) {
  243. sdprintf("ip6: %s", conf.bot->ip6);
  244. if (get_ip(conf.bot->ip6, &cached_myip6_so))
  245. any = 1;
  246. } else if (conf.bot->host6) {
  247. sdprintf("host6: %s", conf.bot->host6);
  248. if (get_ip(conf.bot->host6, &cached_myip6_so))
  249. any = 1;
  250. } else
  251. any = 1;
  252. if (any) {
  253. sdprintf("IPV6 addr_any is set.");
  254. cached_myip6_so.sin6.sin6_family = AF_INET6;
  255. cached_myip6_so.sin6.sin6_addr = in6addr_any;
  256. }
  257. #endif /* USE_IPV6 */
  258. error = 0;
  259. if (conf.bot->ip) {
  260. if (get_ip(conf.bot->ip, &cached_myip4_so))
  261. error = 1;
  262. } else if (conf.bot->host) {
  263. if (get_ip(conf.bot->host, &cached_myip4_so))
  264. error = 2;
  265. } else {
  266. gethostname(s, sizeof(s));
  267. if (get_ip(s, &cached_myip4_so)) {
  268. /* error = 3; */
  269. sdprintf("IPV4 addr_any is set.");
  270. cached_myip4_so.sin.sin_family = AF_INET;
  271. cached_myip4_so.sin.sin_addr.s_addr = INADDR_ANY;
  272. }
  273. }
  274. if (error) {
  275. putlog(LOG_DEBUG, "*", "Hostname self-lookup error: %d", error);
  276. fatal("Hostname self-lookup failed.", 0);
  277. }
  278. }
  279. void neterror(char *s)
  280. {
  281. switch (errno) {
  282. case EADDRINUSE:
  283. strcpy(s, "Address already in use");
  284. break;
  285. case EADDRNOTAVAIL:
  286. strcpy(s, "Address invalid on remote machine");
  287. break;
  288. case EAFNOSUPPORT:
  289. strcpy(s, "Address family not supported");
  290. break;
  291. case EALREADY:
  292. strcpy(s, "Socket already in use");
  293. break;
  294. case EBADF:
  295. strcpy(s, "Socket descriptor is bad");
  296. break;
  297. case ECONNREFUSED:
  298. strcpy(s, "Connection refused");
  299. break;
  300. case EFAULT:
  301. strcpy(s, "Namespace segment violation");
  302. break;
  303. case EINPROGRESS:
  304. strcpy(s, "Operation in progress");
  305. break;
  306. case EINTR:
  307. strcpy(s, "Timeout");
  308. break;
  309. case EINVAL:
  310. strcpy(s, "Invalid namespace");
  311. break;
  312. case EISCONN:
  313. strcpy(s, "Socket already connected");
  314. break;
  315. case ENETUNREACH:
  316. strcpy(s, "Network unreachable");
  317. break;
  318. case ENOTSOCK:
  319. strcpy(s, "File descriptor, not a socket");
  320. break;
  321. case ETIMEDOUT:
  322. strcpy(s, "Connection timed out");
  323. break;
  324. case ENOTCONN:
  325. strcpy(s, "Socket is not connected");
  326. break;
  327. case EHOSTUNREACH:
  328. strcpy(s, "Host is unreachable");
  329. break;
  330. case EPIPE:
  331. strcpy(s, "Broken pipe");
  332. break;
  333. #ifdef ECONNRESET
  334. case ECONNRESET:
  335. strcpy(s, "Connection reset by peer");
  336. break;
  337. #endif /* ECONNRESET */
  338. #ifdef EACCES
  339. case EACCES:
  340. strcpy(s, "Permission denied");
  341. break;
  342. #endif /* EACCESS */
  343. #ifdef EMFILE
  344. case EMFILE:
  345. strcpy(s, "Too many open files");
  346. break;
  347. #endif /* EMFILE */
  348. case 0:
  349. strcpy(s, "Error 0");
  350. break;
  351. default:
  352. sprintf(s, "Unforseen error %d", errno);
  353. break;
  354. }
  355. }
  356. /* Sets/Unsets options for a specific socket.
  357. *
  358. * Returns: 0 - on success
  359. * -1 - socket not found
  360. * -2 - illegal operation
  361. */
  362. int sockoptions(int sock, int operation, int sock_options)
  363. {
  364. int i;
  365. for (i = 0; i < MAXSOCKS; i++)
  366. if ((socklist[i].sock == sock) && !(socklist[i].flags & SOCK_UNUSED)) {
  367. if (operation == EGG_OPTION_SET)
  368. socklist[i].flags |= sock_options;
  369. else if (operation == EGG_OPTION_UNSET)
  370. socklist[i].flags &= ~sock_options;
  371. else
  372. return -2;
  373. return 0;
  374. }
  375. return -1;
  376. }
  377. /* Return a free entry in the socket entry
  378. */
  379. int allocsock(int sock, int options)
  380. {
  381. int i;
  382. for (i = 0; i < MAXSOCKS; i++) {
  383. if (socklist[i].flags & SOCK_UNUSED) {
  384. /* yay! there is table space */
  385. socklist[i].inbuf = socklist[i].outbuf = NULL;
  386. socklist[i].inbuflen = socklist[i].outbuflen = 0;
  387. #ifdef HAVE_SSL
  388. socklist[i].ssl = NULL;
  389. #endif /* HAVE_SSL */
  390. socklist[i].flags = options;
  391. socklist[i].sock = sock;
  392. socklist[i].encstatus = 0;
  393. socklist[i].gz = 0;
  394. egg_bzero(&socklist[i].okey, sizeof(socklist[i].okey));
  395. egg_bzero(&socklist[i].ikey, sizeof(socklist[i].ikey));
  396. socklist[i].okey[0] = 0;
  397. socklist[i].ikey[0] = 0;
  398. return i;
  399. }
  400. }
  401. fatal("Socket table is full!", 0);
  402. return -1; /* Never reached */
  403. }
  404. /* Request a normal socket for i/o
  405. */
  406. void setsock(int sock, int options)
  407. {
  408. int i = allocsock(sock, options), parm;
  409. if (((sock != STDOUT) || backgrd) && !(socklist[i].flags & SOCK_NONSOCK)) {
  410. parm = 1;
  411. setsockopt(sock, SOL_SOCKET, SO_KEEPALIVE, (void *) &parm, sizeof(int));
  412. parm = 0;
  413. setsockopt(sock, SOL_SOCKET, SO_LINGER, (void *) &parm, sizeof(int));
  414. }
  415. if (options & SOCK_LISTEN) {
  416. /* Tris says this lets us grab the same port again next time */
  417. parm = 1;
  418. setsockopt(sock, SOL_SOCKET, SO_REUSEADDR, (void *) &parm, sizeof(int));
  419. }
  420. /* Yay async i/o ! */
  421. fcntl(sock, F_SETFL, O_NONBLOCK);
  422. }
  423. #ifdef USE_IPV6
  424. int real_getsock(int options, int af_def, char *fname, int line)
  425. {
  426. #else
  427. int real_getsock(int options, char *fname, int line)
  428. {
  429. int af_def = AF_INET;
  430. #endif /* USE_IPV6 */
  431. int sock;
  432. sock = socket(af_def, SOCK_STREAM, 0);
  433. if (sock >= 0)
  434. setsock(sock, options);
  435. else
  436. putlog(LOG_WARNING, "*", "Warning: Can't create new socket! (%s:%d)", fname, line);
  437. return sock;
  438. }
  439. void dropssl(register int sock)
  440. {
  441. #ifdef HAVE_SSL
  442. int i;
  443. if (sock < 0)
  444. return;
  445. for (i = 0; (i < MAXSOCKS); i++)
  446. if (socklist[i].sock == sock) break;
  447. if (socklist[i].ssl) {
  448. SSL_set_quiet_shutdown(socklist[i].ssl, 1);
  449. SSL_shutdown(socklist[i].ssl);
  450. usleep(1000 * 500);
  451. SSL_free(socklist[i].ssl);
  452. usleep(1000 * 500);
  453. socklist[i].ssl = NULL;
  454. }
  455. #endif /* HAVE_SSL */
  456. }
  457. /* Done with a socket
  458. */
  459. void real_killsock(register int sock, const char *file, int line)
  460. {
  461. register int i;
  462. /* Ignore invalid sockets. */
  463. if (sock < 0)
  464. return;
  465. for (i = 0; i < MAXSOCKS; i++) {
  466. if ((socklist[i].sock == sock) && !(socklist[i].flags & SOCK_UNUSED)) {
  467. dropssl(sock);
  468. close(socklist[i].sock);
  469. if (socklist[i].inbuf != NULL) {
  470. free(socklist[i].inbuf);
  471. socklist[i].inbuf = NULL;
  472. }
  473. if (socklist[i].outbuf != NULL) {
  474. free(socklist[i].outbuf);
  475. socklist[i].outbuf = NULL;
  476. socklist[i].outbuflen = 0;
  477. }
  478. egg_bzero(&socklist[i], sizeof(socklist[i]));
  479. socklist[i].flags = SOCK_UNUSED;
  480. return;
  481. }
  482. }
  483. putlog(LOG_MISC, "*", "Attempt to kill un-allocated socket %d %s:%d !!", sock, file, line);
  484. }
  485. /* Send connection request to proxy
  486. */
  487. static int proxy_connect(int sock, char *host, int port, int proxy)
  488. {
  489. #ifdef USE_IPV6
  490. unsigned char x[32] = "";
  491. int af_ty;
  492. #else
  493. unsigned char x[10] = "";
  494. #endif /* USE_IPV6 */
  495. struct hostent *hp = NULL;
  496. char s[256] = "";
  497. int i;
  498. #ifdef USE_IPV6
  499. af_ty = sockprotocol(sock);
  500. #endif /* USE_IPV6 */
  501. /* socks proxy */
  502. if (proxy == PROXY_SOCKS) {
  503. /* numeric IP? */
  504. #ifdef USE_IPV6
  505. if ((host[strlen(host) - 1] >= '0' && host[strlen(host) - 1] <= '9') && af_ty != AF_INET6) {
  506. #else
  507. if (host[strlen(host) - 1] >= '0' && host[strlen(host) - 1] <= '9') {
  508. #endif /* USE_IPV6 */
  509. IP ip = ((IP) inet_addr(host));
  510. egg_memcpy(x, &ip, 4);
  511. } else {
  512. /* no, must be host.domain */
  513. if (!setjmp(alarmret)) {
  514. #ifdef USE_IPV6
  515. alarm(resolve_timeout);
  516. if (af_ty == AF_INET6)
  517. hp = gethostbyname(host);
  518. else
  519. #endif /* USE_IPV6 */
  520. hp = gethostbyname(host);
  521. #ifdef USE_IPV6
  522. alarm(0);
  523. #endif /* USE_IPV6 */
  524. } else
  525. hp = NULL;
  526. if (hp == NULL) {
  527. killsock(sock);
  528. return -2;
  529. }
  530. egg_memcpy(x, hp->h_addr, hp->h_length);
  531. }
  532. for (i = 0; i < MAXSOCKS; i++)
  533. if (!(socklist[i].flags & SOCK_UNUSED) && socklist[i].sock == sock)
  534. socklist[i].flags |= SOCK_PROXYWAIT; /* drummer */
  535. #ifdef USE_IPV6
  536. if (af_ty == AF_INET6)
  537. egg_snprintf(s, sizeof s,
  538. "\004\001%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%s",
  539. (port >> 8) % 256, (port % 256), x[0], x[1], x[2], x[3],
  540. x[4], x[5], x[6], x[7], x[9], x[9], x[10], x[11], x[12],
  541. x[13], x[14], x[15], botuser);
  542. else
  543. #endif /* USE_IPV6 */
  544. egg_snprintf(s, sizeof s, "\004\001%c%c%c%c%c%c%s", (port >> 8) % 256,
  545. (port % 256), x[0], x[1], x[2], x[3], botuser);
  546. tputs(sock, s, strlen(botuser) + 9); /* drummer */
  547. } else if (proxy == PROXY_SUN) {
  548. egg_snprintf(s, sizeof s, "%s %d\n", host, port);
  549. tputs(sock, s, strlen(s)); /* drummer */
  550. }
  551. return sock;
  552. }
  553. /* Starts a connection attempt to a socket
  554. *
  555. * If given a normal hostname, this will be resolved to the corresponding
  556. * IP address first. PLEASE try to use the non-blocking dns functions
  557. * instead and then call this function with the IP address to avoid blocking.
  558. *
  559. * returns <0 if connection refused:
  560. * -1 neterror() type error
  561. * -2 can't resolve hostname
  562. */
  563. int open_telnet_raw(int sock, char *server, int sport)
  564. {
  565. union sockaddr_union so;
  566. char host[121] = "";
  567. int i, error = 0, port, rc;
  568. volatile int proxy;
  569. /* firewall? use socks */
  570. if (firewall[0]) {
  571. if (firewall[0] == '!') {
  572. proxy = PROXY_SUN;
  573. strcpy(host, &firewall[1]);
  574. } else {
  575. proxy = PROXY_SOCKS;
  576. strcpy(host, firewall);
  577. }
  578. port = firewallport;
  579. } else {
  580. proxy = 0;
  581. strncpyz(host, server, sizeof host);
  582. port = sport;
  583. }
  584. error = 0;
  585. if (!setjmp(alarmret)) {
  586. alarm(resolve_timeout);
  587. if (!get_ip(host, &so)) {
  588. alarm(0);
  589. /* ok, we resolved it, bind an appropriate ip */
  590. #ifdef USE_IPV6
  591. if (so.sa.sa_family == AF_INET6) {
  592. if (bind(sock, &cached_myip6_so.sa, SIZEOF_SOCKADDR(cached_myip6_so)) < 0) {
  593. killsock(sock);
  594. return -1;
  595. }
  596. } else {
  597. #endif /* USE_IPV6 */
  598. if (bind(sock, &cached_myip4_so.sa, SIZEOF_SOCKADDR(cached_myip4_so)) < 0) {
  599. killsock(sock);
  600. return -3;
  601. }
  602. #ifdef USE_IPV6
  603. }
  604. if (so.sa.sa_family == AF_INET6)
  605. so.sin6.sin6_port = htons(port);
  606. else
  607. #endif /* USE_IPV6 */
  608. so.sin.sin_port = htons(port);
  609. } else {
  610. alarm(0);
  611. error = 1;
  612. }
  613. }
  614. /* I guess we broke something */
  615. if (error) {
  616. killsock(sock);
  617. return -2;
  618. }
  619. for (i = 0; i < MAXSOCKS; i++) {
  620. if (!(socklist[i].flags & SOCK_UNUSED) && (socklist[i].sock == sock))
  621. socklist[i].flags = (socklist[i].flags & ~SOCK_VIRTUAL) | SOCK_CONNECT;
  622. }
  623. rc = connect(sock, &so.sa, SIZEOF_SOCKADDR(so));
  624. if (rc < 0) { if (errno == EINPROGRESS) {
  625. /* Firewall? announce connect attempt to proxy */
  626. if (firewall[0])
  627. return proxy_connect(sock, server, sport, proxy);
  628. return sock; /* async success! */
  629. } else
  630. return -1;
  631. }
  632. /* Synchronous? :/ */
  633. if (firewall[0])
  634. return proxy_connect(sock, server, sport, proxy);
  635. return sock;
  636. }
  637. /* Ordinary non-binary connection attempt */
  638. int open_telnet(char *server, int port)
  639. {
  640. #ifdef USE_IPV6
  641. int sock = getsock(0, hostprotocol(server)) , ret = open_telnet_raw(sock, server, port);
  642. #else
  643. int sock = getsock(0) , ret = open_telnet_raw(sock, server, port);
  644. #endif /* USE_IPV6 */
  645. return ret;
  646. }
  647. /* Returns a socket number for a listening socket that will accept any
  648. * connection on a certain address -- port # is returned in port
  649. *
  650. * 'addr' is ignored if af_def is AF_INET6 -poptix (02/03/03)
  651. */
  652. #ifdef USE_IPV6
  653. int open_address_listen(IP addr, int af_def, int *port)
  654. #else
  655. int open_address_listen(IP addr, int *port)
  656. #endif /* USE_IPV6 */
  657. {
  658. int sock = 0;
  659. unsigned int addrlen;
  660. struct sockaddr_in name;
  661. if (firewall[0]) {
  662. /* FIXME: can't do listen port thru firewall yet */
  663. putlog(LOG_MISC, "*", "!! Cant open a listen port (you are using a "
  664. "firewall)");
  665. return -1;
  666. }
  667. #ifdef USE_IPV6
  668. if (af_def == AF_INET6) {
  669. struct sockaddr_in6 name6;
  670. sock = getsock(SOCK_LISTEN, af_def);
  671. if (sock < 1)
  672. return -1;
  673. debug2("Opening listen socket on port %d with AF_INET6, sock: %d", *port, sock);
  674. egg_bzero((char *) &name6, sizeof(name6));
  675. name6.sin6_family = af_def;
  676. name6.sin6_port = htons(*port); /* 0 = just assign us a port */
  677. /* memcpy(&name6.sin6_addr, &in6addr_any, 16); */ /* this is the only way to get ipv6+ipv4 in 1 socket */
  678. memcpy(&name6.sin6_addr, &cached_myip6_so.sin6.sin6_addr, 16);
  679. if (bind(sock, (struct sockaddr *) &name6, sizeof(name6)) < 0) {
  680. killsock(sock);
  681. return -1;
  682. }
  683. addrlen = sizeof(name6);
  684. if (getsockname(sock, (struct sockaddr *) &name6, &addrlen) < 0) {
  685. killsock(sock);
  686. return -1;
  687. }
  688. *port = ntohs(name6.sin6_port);
  689. if (listen(sock, 1) < 0) {
  690. killsock(sock);
  691. return -1;
  692. }
  693. } else {
  694. sock = getsock(SOCK_LISTEN, AF_INET);
  695. #else
  696. sock = getsock(SOCK_LISTEN);
  697. #endif /* USE_IPV6 */
  698. if (sock < 1)
  699. return -1;
  700. debug2("Opening listen socket on port %d with AF_INET, sock: %d", *port, sock);
  701. egg_bzero((char *) &name, sizeof(struct sockaddr_in));
  702. name.sin_family = AF_INET;
  703. name.sin_port = htons(*port); /* 0 = just assign us a port */
  704. name.sin_addr.s_addr = addr;
  705. if (bind(sock, (struct sockaddr *) &name, sizeof(name)) < 0) {
  706. killsock(sock);
  707. return -1;
  708. }
  709. /* what port are we on? */
  710. addrlen = sizeof(name);
  711. if (getsockname(sock, (struct sockaddr *) &name, &addrlen) < 0) {
  712. killsock(sock);
  713. return -1;
  714. }
  715. *port = ntohs(name.sin_port);
  716. if (listen(sock, 1) < 0) {
  717. killsock(sock);
  718. return -1;
  719. }
  720. #ifdef USE_IPV6
  721. }
  722. #endif /* USE_IPV6 */
  723. return sock;
  724. }
  725. /* Returns a socket number for a listening socket that will accept any
  726. * connection -- port # is returned in port
  727. */
  728. inline int open_listen(int *port)
  729. {
  730. #ifdef USE_IPV6
  731. return open_address_listen(conf.bot->ip ? getmyip() : INADDR_ANY, AF_INET, port);
  732. #else
  733. return open_address_listen(conf.bot->ip ? getmyip() : INADDR_ANY, port);
  734. #endif /* USE_IPV6 */
  735. }
  736. /* Same as above, except this one can be called with an AF_ type
  737. * the above is being left in for compatibility, and should NOT LONGER BE USED IN THE CORE CODE.
  738. */
  739. inline int open_listen_by_af(int *port, int af_def)
  740. {
  741. #ifdef USE_IPV6
  742. return open_address_listen(conf.bot->ip ? getmyip() : INADDR_ANY, af_def, port);
  743. #else
  744. return 0;
  745. #endif /* USE_IPV6 */
  746. }
  747. int ssl_link(register int sock, int state)
  748. {
  749. #ifdef HAVE_SSL
  750. int err = 0, i = 0, errs = 0;
  751. debug2("ssl_link(%d, %d)", sock, state);
  752. for (i = 0; (i < MAXSOCKS); i++) {
  753. if (socklist[i].sock == sock) break;
  754. }
  755. if (socklist[i].ssl) {
  756. putlog(LOG_ERROR, "*", "Switching to SSL (%d,%d) - already active", state, sock);
  757. return 0;
  758. }
  759. if (state == CONNECT_SSL) {
  760. socklist[i].ssl = SSL_new(ssl_c_ctx);
  761. } else if (state == ACCEPT_SSL) {
  762. socklist[i].ssl = SSL_new(ssl_s_ctx);
  763. }
  764. if (!socklist[i].ssl) {
  765. putlog(LOG_ERROR, "*", "Switching to SSL (%d) - SSL_new(%d) failed", sock, state);
  766. return 0;
  767. }
  768. if (!SSL_set_fd(socklist[i].ssl, socklist[i].sock)) {
  769. putlog(LOG_ERROR, "*", "SSL_set_fd(%d) (%d) failed", state, socklist[i].sock);
  770. return 0;
  771. }
  772. if (state == CONNECT_SSL) {
  773. SSL_set_connect_state(socklist[i].ssl);
  774. } else if (state == ACCEPT_SSL) {
  775. SSL_set_accept_state(socklist[i].ssl);
  776. } else {
  777. putlog(LOG_DEBUG, "*", "ssl_link(%d, 0?) NO STATE?", sock);
  778. return 0;
  779. }
  780. if (state == CONNECT_SSL) {
  781. err = SSL_connect(socklist[i].ssl);
  782. } else if (state == ACCEPT_SSL) {
  783. err = SSL_accept(socklist[i].ssl);
  784. }
  785. if (!setjmp(alarmret)) {
  786. alarm(5); /* this is plenty of time */
  787. while ((err < 1) && (errno == EAGAIN)) {
  788. if (state == CONNECT_SSL) {
  789. err = SSL_connect(socklist[i].ssl);
  790. } else if (state == ACCEPT_SSL) {
  791. err = SSL_accept(socklist[i].ssl);
  792. }
  793. /* if ((errs!=SSL_ERROR_WANT_READ)&&(errs!=SSL_ERROR_WANT_WRITE)&& (errs!=SSL_ERROR_WANT_X509_LOOKUP)) */
  794. /* break; anything not one of these is a sufficient condition to break out... */
  795. }
  796. alarm(0);
  797. }
  798. errs = SSL_get_error(socklist[i].ssl, err);
  799. putlog(LOG_DEBUG, "*", "SSL_link(%d, %d) = %d, errs: %d (%d), %s", sock, state, err, errs, errno, (char *)ERR_error_string(ERR_get_error(), NULL));
  800. if (errno) putlog(LOG_DEBUG, "*", "errno %d: %s", errno, strerror(errno));
  801. if (err == 1) {
  802. putlog(LOG_ERROR, "*", "SSL_link(%d, %d) was successfull", sock, state);
  803. return 1;
  804. } else {
  805. putlog(LOG_ERROR, "*", "SSL_link(%d, %d) failed", sock, state);
  806. dropssl(socklist[i].sock);
  807. }
  808. #endif /* HAVE_SSL */
  809. return 0;
  810. }
  811. /* Given a network-style IP address, returns the hostname. The hostname
  812. * will be in the "##.##.##.##" format if there was an error.
  813. *
  814. * NOTE: This function is depreciated. Try using the async dns approach
  815. * instead.
  816. */
  817. char *hostnamefromip(unsigned long ip)
  818. {
  819. struct hostent *hp = NULL;
  820. unsigned long addr = ip;
  821. unsigned char *p = NULL;
  822. static char s[UHOSTLEN] = "";
  823. if (!setjmp(alarmret)) {
  824. alarm(resolve_timeout);
  825. hp = gethostbyaddr((char *) &addr, sizeof(addr), AF_INET);
  826. alarm(0);
  827. } else {
  828. hp = NULL;
  829. }
  830. if (hp == NULL) {
  831. p = (unsigned char *) &addr;
  832. sprintf(s, "%u.%u.%u.%u", p[0], p[1], p[2], p[3]);
  833. return s;
  834. }
  835. strncpyz(s, hp->h_name, sizeof s);
  836. return s;
  837. }
  838. /* Returns the given network byte order IP address in the
  839. * dotted format - "##.##.##.##"
  840. */
  841. char *iptostr(IP ip)
  842. {
  843. static char ipbuf[32];
  844. struct in_addr a;
  845. a.s_addr = ip;
  846. return (char *) egg_inet_ntop(AF_INET, &a, ipbuf, sizeof(ipbuf));
  847. }
  848. /* Short routine to answer a connect received on a socket made previously
  849. * by open_listen ... returns hostname of the caller & the new socket
  850. * does NOT dispose of old "public" socket!
  851. */
  852. int answer(int sock, char *caller, unsigned long *ip, unsigned short *port,
  853. int binary)
  854. {
  855. int new_sock;
  856. unsigned int addrlen;
  857. struct sockaddr_in from;
  858. #ifdef USE_IPV6
  859. int af_ty = sockprotocol(sock);
  860. struct sockaddr_in6 from6;
  861. egg_bzero(&from6, sizeof(struct sockaddr_in6));
  862. if (af_ty == AF_INET6) {
  863. addrlen = sizeof(from6);
  864. new_sock = accept(sock, (struct sockaddr *) &from6, &addrlen);
  865. } else {
  866. #endif /* USE_IPV6 */
  867. addrlen = sizeof(struct sockaddr);
  868. new_sock = accept(sock, (struct sockaddr *) &from, &addrlen);
  869. #ifdef USE_IPV6
  870. }
  871. #endif /* USE_IPV6 */
  872. if (new_sock < 0)
  873. return -1;
  874. if (ip != NULL) {
  875. #ifdef USE_IPV6
  876. /* Detect IPv4 in IPv6 mapped address .... */
  877. if (af_ty == AF_INET6 && (!IN6_IS_ADDR_V4MAPPED(&from6.sin6_addr))) {
  878. egg_inet_ntop(AF_INET6, &from6.sin6_addr, caller, 119);
  879. caller[120] = 0;
  880. *ip = 0L;
  881. } else if (IN6_IS_ADDR_V4MAPPED(&from6.sin6_addr)) { /* ...and convert it to plain (AF_INET) IPv4 address (openssh) */
  882. struct sockaddr_in *from4 = (struct sockaddr_in *)&from6;
  883. struct in_addr addr;
  884. memcpy(&addr, ((char *)&from6.sin6_addr) + 12, sizeof(addr));
  885. egg_memset(&from, 0, sizeof(from));
  886. from4->sin_family = AF_INET;
  887. addrlen = sizeof(*from4);
  888. memcpy(&from4->sin_addr, &addr, sizeof(addr));
  889. *ip = from4->sin_addr.s_addr;
  890. strncpyz(caller, iptostr(*ip), 121);
  891. *ip = ntohl(*ip);
  892. } else {
  893. #endif /* USE_IPV6 */
  894. *ip = from.sin_addr.s_addr;
  895. /* This is now done asynchronously. We now only provide the IP address.
  896. *
  897. * strncpy(caller, hostnamefromip(*ip), 120);
  898. */
  899. strncpyz(caller, iptostr(*ip), 121);
  900. *ip = ntohl(*ip);
  901. #ifdef USE_IPV6
  902. }
  903. #endif /* USE_IPV6 */
  904. }
  905. if (port != NULL) {
  906. #ifdef USE_IPV6
  907. if (af_ty == AF_INET6)
  908. *port = ntohs(from6.sin6_port);
  909. else
  910. #endif /* USE_IPV6 */
  911. *port = ntohs(from.sin_port);
  912. }
  913. /* Set up all the normal socket crap */
  914. setsock(new_sock, (binary ? SOCK_BINARY : 0));
  915. return new_sock;
  916. }
  917. /* Like open_telnet, but uses server & port specifications of dcc
  918. */
  919. int open_telnet_dcc(int sock, char *server, char *port)
  920. {
  921. int p;
  922. unsigned long addr;
  923. char sv[500] = "";
  924. unsigned char c[4] = "";
  925. #ifdef DEBUG_IPV6
  926. debug1("open_telnet_dcc %s", server);
  927. #endif /* DEBUG_IPV6 */
  928. if (port != NULL)
  929. p = atoi(port);
  930. else
  931. p = 2000;
  932. #ifdef USE_IPV6
  933. if (sockprotocol(sock) == AF_INET6) {
  934. # ifdef DEBUG_IPV6
  935. debug0("open_telnet_dcc, af_inet6!");
  936. # endif /* DEBUG_IPV6 */
  937. strncpyz(sv, server, sizeof sv);
  938. debug2("%s should be %s",sv,server);
  939. } else {
  940. #endif /* USE_IPV6 */
  941. if (server != NULL)
  942. addr = my_atoul(server);
  943. else
  944. addr = 0L;
  945. if (addr < (1 << 24))
  946. return -3; /* fake address */
  947. c[0] = (addr >> 24) & 0xff;
  948. c[1] = (addr >> 16) & 0xff;
  949. c[2] = (addr >> 8) & 0xff;
  950. c[3] = addr & 0xff;
  951. sprintf(sv, "%u.%u.%u.%u", c[0], c[1], c[2], c[3]);
  952. #ifdef USE_IPV6
  953. }
  954. /* strcpy(sv,hostnamefromip(addr)); */
  955. # ifdef DEBUG_IPV6
  956. debug3("open_telnet_raw %s %d %d", sv, sock,p);
  957. # endif /* DEBUG_IPV6 */
  958. #endif /* USE_IPV6 */
  959. p = open_telnet_raw(sock, sv, p);
  960. return p;
  961. }
  962. /* Attempts to read from all the sockets in socklist
  963. * fills s with up to 511 bytes if available, and returns the array index
  964. *
  965. * on EOF: returns -1, with socket in len
  966. * on socket error: returns -2
  967. * if nothing is ready: returns -3
  968. */
  969. static int sockread(char *s, int *len)
  970. {
  971. fd_set fd;
  972. int fds = 0, i, x, fdtmp;
  973. struct timeval t;
  974. int grab = SGRAB + 1;
  975. egg_timeval_t howlong;
  976. if (timer_get_shortest(&howlong)) {
  977. /* No timer, default to 1 second. */
  978. t.tv_sec = 1;
  979. t.tv_usec = 0;
  980. }
  981. else {
  982. t.tv_sec = howlong.sec;
  983. t.tv_usec = howlong.usec;
  984. }
  985. FD_ZERO(&fd);
  986. for (i = 0; i < MAXSOCKS; i++) {
  987. if (!(socklist[i].flags & (SOCK_UNUSED | SOCK_VIRTUAL))) {
  988. if ((socklist[i].sock == STDOUT) && !backgrd)
  989. fdtmp = STDIN;
  990. else
  991. fdtmp = socklist[i].sock;
  992. if (fdtmp > fds)
  993. fds = fdtmp;
  994. FD_SET(fdtmp, &fd);
  995. }
  996. }
  997. fds++;
  998. x = select(fds, &fd, NULL, NULL, &t);
  999. if (x > 0) {
  1000. /* Something happened */
  1001. for (i = 0; i < MAXSOCKS; i++) {
  1002. if ((!(socklist[i].flags & SOCK_UNUSED)) && ((FD_ISSET(socklist[i].sock, &fd)) ||
  1003. #ifdef HAVE_SSL
  1004. ((socklist[i].ssl) && (SSL_pending(socklist[i].ssl))) ||
  1005. #endif /* HAVE_SSL */
  1006. ((socklist[i].sock == STDOUT) && (!backgrd) && (FD_ISSET(STDIN, &fd))))) {
  1007. if (socklist[i].flags & (SOCK_LISTEN | SOCK_CONNECT)) {
  1008. /* Listening socket -- don't read, just return activity */
  1009. /* Same for connection attempt */
  1010. /* (for strong connections, require a read to succeed first) */
  1011. if (socklist[i].flags & SOCK_PROXYWAIT) { /* drummer */
  1012. /* Hang around to get the return code from proxy */
  1013. grab = 10;
  1014. } else if (!(socklist[i].flags & SOCK_STRONGCONN)) {
  1015. debug1("net: connect! sock %d", socklist[i].sock);
  1016. s[0] = 0;
  1017. *len = 0;
  1018. #ifdef HAVE_SSL
  1019. /* debug0("CALLING SSL_LINK() FROM SOCKREAD");
  1020. if (!ssl_link(socklist[i].sock))
  1021. debug0("SSL_LINK FAILED");
  1022. debug0("BACK FROM SSL_LINK()"); */
  1023. #endif /* HAVE_SSL */
  1024. return i;
  1025. }
  1026. } else if (socklist[i].flags & SOCK_PASS) {
  1027. s[0] = 0;
  1028. *len = 0;
  1029. return i;
  1030. }
  1031. errno = 0;
  1032. if ((socklist[i].sock == STDOUT) && !backgrd)
  1033. x = read(STDIN, s, grab);
  1034. else {
  1035. #ifdef HAVE_SSL
  1036. if (socklist[i].ssl) {
  1037. x = SSL_read(socklist[i].ssl, s, grab);
  1038. if (x < 0) {
  1039. int err = SSL_get_error(socklist[i].ssl, x);
  1040. x = -1;
  1041. switch (err) {
  1042. case SSL_ERROR_WANT_READ:
  1043. errno = EAGAIN;
  1044. break;
  1045. case SSL_ERROR_WANT_WRITE:
  1046. errno = EAGAIN;
  1047. break;
  1048. case SSL_ERROR_WANT_X509_LOOKUP:
  1049. errno = EAGAIN;
  1050. break;
  1051. }
  1052. }
  1053. } else
  1054. #endif /* HAVE_SSL */
  1055. x = read(socklist[i].sock, s, grab);
  1056. }
  1057. if (x <= 0) { /* eof */
  1058. if (errno != EAGAIN) { /* EAGAIN happens when the operation would block
  1059. on a non-blocking socket, if the socket is going
  1060. to die, it will die later, otherwise it will connect */
  1061. *len = socklist[i].sock;
  1062. socklist[i].flags &= ~SOCK_CONNECT;
  1063. debug1("net: eof!(read) socket %d", socklist[i].sock);
  1064. return -1;
  1065. } else {
  1066. debug3("sockread EAGAIN: %d %d (%s)", socklist[i].sock, errno, strerror(errno));
  1067. continue; /* EAGAIN */
  1068. }
  1069. }
  1070. s[x] = 0;
  1071. *len = x;
  1072. if (socklist[i].flags & SOCK_PROXYWAIT) {
  1073. debug2("net: socket: %d proxy errno: %d", socklist[i].sock, s[1]);
  1074. socklist[i].flags &= ~(SOCK_CONNECT | SOCK_PROXYWAIT);
  1075. switch (s[1]) {
  1076. case 90: /* Success */
  1077. s[0] = 0;
  1078. *len = 0;
  1079. return i;
  1080. case 91: /* Failed */
  1081. errno = ECONNREFUSED;
  1082. break;
  1083. case 92: /* No identd */
  1084. case 93: /* Identd said wrong username */
  1085. /* A better error message would be "socks misconfigured"
  1086. * or "identd not working" but this is simplest.
  1087. */
  1088. errno = ENETUNREACH;
  1089. break;
  1090. }
  1091. *len = socklist[i].sock;
  1092. return -1;
  1093. }
  1094. return i;
  1095. }
  1096. }
  1097. } else if (x == -1)
  1098. return -2; /* socket error */
  1099. else {
  1100. s[0] = 0;
  1101. *len = 0;
  1102. }
  1103. return -3;
  1104. }
  1105. int prand(int *seed, int range)
  1106. {
  1107. long long i1;
  1108. i1 = *seed;
  1109. i1 = (i1 * 0x08088405 + 1) & 0xFFFFFFFF;
  1110. *seed = i1;
  1111. i1 = (i1 * range) >> 32;
  1112. return i1;
  1113. }
  1114. char *botlink_decrypt(int snum, char *src)
  1115. {
  1116. char *line = NULL;
  1117. int i;
  1118. line = decrypt_string(socklist[snum].ikey, src);
  1119. strcpy(src, line);
  1120. free(line);
  1121. if (socklist[snum].iseed) {
  1122. for (i = 0; i <= 3; i++)
  1123. *(dword *) & socklist[snum].ikey[i * 4] = prand(&socklist[snum].iseed, 0xFFFFFFFF);
  1124. if (!socklist[snum].iseed)
  1125. socklist[snum].iseed++;
  1126. }
  1127. return src;
  1128. }
  1129. char *botlink_encrypt(int snum, char *src)
  1130. {
  1131. char *srcbuf = NULL, *buf = NULL, *line = NULL, *eol = NULL, *eline = NULL;
  1132. int bufpos = 0, i = 0;
  1133. srcbuf = calloc(1, strlen(src) + 9 + 1);
  1134. strcpy(srcbuf, src);
  1135. line = srcbuf;
  1136. if (!line) {
  1137. free(srcbuf);
  1138. return NULL;
  1139. }
  1140. eol = strchr(line, '\n');
  1141. while (eol) {
  1142. *eol++ = 0;
  1143. eline = encrypt_string(socklist[snum].okey, line);
  1144. if (socklist[snum].oseed) {
  1145. for (i = 0; i <= 3; i++)
  1146. *(dword *) & socklist[snum].okey[i * 4] = prand(&socklist[snum].oseed, 0xFFFFFFFF);
  1147. if (!socklist[snum].oseed)
  1148. socklist[snum].oseed++;
  1149. }
  1150. buf = realloc(buf, bufpos + strlen(eline) + 1 + 9);
  1151. strcpy((char *) &buf[bufpos], eline);
  1152. free(eline);
  1153. strcat(buf, "\n");
  1154. bufpos = strlen(buf);
  1155. line = eol;
  1156. eol = strchr(line, '\n');
  1157. }
  1158. if (line[0]) {
  1159. eline = encrypt_string(socklist[snum].okey, line);
  1160. if (socklist[snum].oseed) {
  1161. for (i = 0; i <= 3; i++)
  1162. *(dword *) & socklist[snum].okey[i * 4] = prand(&socklist[snum].oseed, 0xFFFFFFFF);
  1163. if (!socklist[snum].oseed)
  1164. socklist[snum].oseed++;
  1165. }
  1166. buf = realloc(buf, bufpos + strlen(eline) + 1 + 9);
  1167. strcpy((char *) &buf[bufpos], eline);
  1168. free(eline);
  1169. strcat(buf, "\n");
  1170. }
  1171. free(srcbuf);
  1172. return buf;
  1173. }
  1174. /* sockgets: buffer and read from sockets
  1175. *
  1176. * Attempts to read from all registered sockets for up to one second. if
  1177. * after one second, no complete data has been received from any of the
  1178. * sockets, 's' will be empty, 'len' will be 0, and sockgets will return -3.
  1179. * if there is returnable data received from a socket, the data will be
  1180. * in 's' (null-terminated if non-binary), the length will be returned
  1181. * in len, and the socket number will be returned.
  1182. * normal sockets have their input buffered, and each call to sockgets
  1183. * will return one line terminated with a '\n'. binary sockets are not
  1184. * buffered and return whatever coems in as soon as it arrives.
  1185. * listening sockets will return an empty string when a connection comes in.
  1186. * connecting sockets will return an empty string on a successful connect,
  1187. * or EOF on a failed connect.
  1188. * if an EOF is detected from any of the sockets, that socket number will be
  1189. * put in len, and -1 will be returned.
  1190. * the maximum length of the string returned is 512 (including null)
  1191. *
  1192. * Returns -4 if we handled something that shouldn't be handled by the
  1193. * dcc functions. Simply ignore it.
  1194. */
  1195. int sockgets(char *s, int *len)
  1196. {
  1197. char xx[SGRAB + 4] = "", *p = NULL, *px = NULL;
  1198. int ret, i, data = 0;
  1199. for (i = 0; i < MAXSOCKS; i++) {
  1200. /* Check for stored-up data waiting to be processed */
  1201. if (!(socklist[i].flags & SOCK_UNUSED) && !(socklist[i].flags & SOCK_BUFFER) && (socklist[i].inbuf != NULL)) {
  1202. if (!(socklist[i].flags & SOCK_BINARY)) {
  1203. /* look for \r too cos windows can't follow RFCs */
  1204. p = strchr(socklist[i].inbuf, '\n');
  1205. if (p == NULL)
  1206. p = strchr(socklist[i].inbuf, '\r');
  1207. if (p != NULL) {
  1208. *p = 0;
  1209. if (strlen(socklist[i].inbuf) > SGRAB)
  1210. socklist[i].inbuf[SGRAB] = 0;
  1211. strcpy(s, socklist[i].inbuf);
  1212. px = calloc(1, strlen(p + 1) + 1);
  1213. strcpy(px, p + 1);
  1214. free(socklist[i].inbuf);
  1215. if (px[0])
  1216. socklist[i].inbuf = px;
  1217. else {
  1218. free(px);
  1219. socklist[i].inbuf = NULL;
  1220. }
  1221. /* Strip CR if this was CR/LF combo */
  1222. if (s[strlen(s) - 1] == '\r')
  1223. s[strlen(s) - 1] = 0;
  1224. if (socklist[i].encstatus && (strlen(s) > 0))
  1225. botlink_decrypt(i, s);
  1226. *len = strlen(s);
  1227. return socklist[i].sock;
  1228. }
  1229. } else {
  1230. /* i dont think any of this is *ever* called */
  1231. /* Handling buffered binary data (must have been SOCK_BUFFER before). */
  1232. if (socklist[i].inbuflen <= SGRAB) {
  1233. *len = socklist[i].inbuflen;
  1234. egg_memcpy(s, socklist[i].inbuf, socklist[i].inbuflen);
  1235. free(socklist[i].inbuf);
  1236. socklist[i].inbuf = NULL;
  1237. socklist[i].inbuflen = 0;
  1238. } else {
  1239. /* Split up into chunks of SGRAB bytes. */
  1240. *len = SGRAB;
  1241. egg_memcpy(s, socklist[i].inbuf, *len);
  1242. egg_memcpy(socklist[i].inbuf, socklist[i].inbuf + *len, *len);
  1243. socklist[i].inbuflen -= *len;
  1244. socklist[i].inbuf = realloc(socklist[i].inbuf, socklist[i].inbuflen);
  1245. }
  1246. return socklist[i].sock;
  1247. }
  1248. }
  1249. /* Also check any sockets that might have EOF'd during write */
  1250. if (!(socklist[i].flags & SOCK_UNUSED)
  1251. && (socklist[i].flags & SOCK_EOFD)) {
  1252. s[0] = 0;
  1253. *len = socklist[i].sock;
  1254. return -1;
  1255. }
  1256. }
  1257. /* No pent-up data of any worth -- down to business */
  1258. *len = 0;
  1259. ret = sockread(xx, len);
  1260. if (ret < 0) {
  1261. s[0] = 0;
  1262. return ret;
  1263. }
  1264. /* Binary, listening and passed on sockets don't get buffered. */
  1265. if (socklist[ret].flags & SOCK_CONNECT) {
  1266. if (socklist[ret].flags & SOCK_STRONGCONN) {
  1267. socklist[ret].flags &= ~SOCK_STRONGCONN;
  1268. /* Buffer any data that came in, for future read. */
  1269. socklist[ret].inbuflen = *len;
  1270. socklist[ret].inbuf = calloc(1, *len + 1);
  1271. /* It might be binary data. You never know. */
  1272. egg_memcpy(socklist[ret].inbuf, xx, *len);
  1273. socklist[ret].inbuf[*len] = 0;
  1274. }
  1275. socklist[ret].flags &= ~SOCK_CONNECT;
  1276. s[0] = 0;
  1277. return socklist[ret].sock;
  1278. }
  1279. if (socklist[ret].flags & SOCK_BINARY) {
  1280. egg_memcpy(s, xx, *len);
  1281. return socklist[ret].sock;
  1282. }
  1283. if ((socklist[ret].flags & SOCK_LISTEN) || (socklist[ret].flags & SOCK_PASS))
  1284. return socklist[ret].sock;
  1285. if (socklist[ret].flags & SOCK_BUFFER) {
  1286. socklist[ret].inbuf = (char *) realloc(socklist[ret].inbuf,
  1287. socklist[ret].inbuflen + *len + 1);
  1288. egg_memcpy(socklist[ret].inbuf + socklist[ret].inbuflen, xx, *len);
  1289. socklist[ret].inbuflen += *len;
  1290. /* We don't know whether it's binary data. Make sure normal strings
  1291. will be handled properly later on too. */
  1292. socklist[ret].inbuf[socklist[ret].inbuflen] = 0;
  1293. return -4; /* Ignore this one. */
  1294. }
  1295. /* Might be necessary to prepend stored-up data! */
  1296. if (socklist[ret].inbuf != NULL) {
  1297. p = socklist[ret].inbuf;
  1298. socklist[ret].inbuf = calloc(1, strlen(p) + strlen(xx) + 1);
  1299. strcpy(socklist[ret].inbuf, p);
  1300. strcat(socklist[ret].inbuf, xx);
  1301. free(p);
  1302. if (strlen(socklist[ret].inbuf) < (SGRAB + 2)) {
  1303. strcpy(xx, socklist[ret].inbuf);
  1304. free(socklist[ret].inbuf);
  1305. socklist[ret].inbuf = NULL;
  1306. socklist[ret].inbuflen = 0;
  1307. } else {
  1308. p = socklist[ret].inbuf;
  1309. socklist[ret].inbuflen = strlen(p) - SGRAB;
  1310. socklist[ret].inbuf = (char *) calloc(1, socklist[ret].inbuflen + 1);
  1311. strcpy(socklist[ret].inbuf, p + SGRAB);
  1312. *(p + SGRAB) = 0;
  1313. strcpy(xx, p);
  1314. free(p);
  1315. /* (leave the rest to be post-pended later) */
  1316. }
  1317. }
  1318. /* Look for EOL marker; if it's there, i have something to show */
  1319. p = strchr(xx, '\n');
  1320. if (p == NULL)
  1321. p = strchr(xx, '\r');
  1322. if (p != NULL) {
  1323. *p = 0;
  1324. strcpy(s, xx);
  1325. /* strcpy(xx, p + 1); */
  1326. sprintf(xx, "%s", p + 1);
  1327. // if (s[0] && strlen(s) && (s[strlen(s) - 1] == '\r'))
  1328. if (s[strlen(s) - 1] == '\r')
  1329. s[strlen(s) - 1] = 0;
  1330. data = 1; /* DCC_CHAT may now need to process a blank line */
  1331. /* NO! */
  1332. /* if (!s[0]) strcpy(s," "); */
  1333. } else {
  1334. s[0] = 0;
  1335. if (strlen(xx) >= SGRAB) {
  1336. /* String is too long, so just insert fake \n */
  1337. strcpy(s, xx);
  1338. xx[0] = 0;
  1339. data = 1;
  1340. }
  1341. }
  1342. if (socklist[ret].encstatus && (strlen(s) > 0))
  1343. botlink_decrypt(ret, s);
  1344. *len = strlen(s);
  1345. /* Anything left that needs to be saved? */
  1346. if (!xx[0]) {
  1347. if (data)
  1348. return socklist[ret].sock;
  1349. else
  1350. return -3;
  1351. }
  1352. /* Prepend old data back */
  1353. if (socklist[ret].inbuf != NULL) {
  1354. p = socklist[ret].inbuf;
  1355. socklist[ret].inbuflen = strlen(p) + strlen(xx);
  1356. socklist[ret].inbuf = calloc(1, socklist[ret].inbuflen + 1);
  1357. strcpy(socklist[ret].inbuf, xx);
  1358. strcat(socklist[ret].inbuf, p);
  1359. free(p);
  1360. } else {
  1361. socklist[ret].inbuflen = strlen(xx);
  1362. socklist[ret].inbuf = calloc(1, socklist[ret].inbuflen + 1);
  1363. strcpy(socklist[ret].inbuf, xx);
  1364. }
  1365. if (data) {
  1366. return socklist[ret].sock;
  1367. } else {
  1368. return -3;
  1369. }
  1370. }
  1371. /* Dump something to a socket
  1372. *
  1373. * NOTE: Do NOT put Contexts in here if you want DEBUG to be meaningful!!
  1374. */
  1375. void tputs(register int z, char *s, unsigned int len)
  1376. {
  1377. register int i, x, idx;
  1378. char *p = NULL;
  1379. static int inhere = 0;
  1380. if (z < 0) /* um... HELLO?! sanity check please! */
  1381. return;
  1382. if (((z == STDOUT) || (z == STDERR)) && (!backgrd || use_stderr)) {
  1383. write(z, s, len);
  1384. return;
  1385. }
  1386. for (i = 0; i < MAXSOCKS; i++) {
  1387. if (!(socklist[i].flags & SOCK_UNUSED) && (socklist[i].sock == z)) {
  1388. for (idx = 0; idx < dcc_total; idx++) {
  1389. if ((dcc[idx].sock == z) && dcc[idx].type && dcc[idx].type->name) {
  1390. if (!strncmp(dcc[idx].type->name, "BOT", 3))
  1391. traffic.out_today.bn += len;
  1392. else if (!strcmp(dcc[idx].type->name, "SERVER"))
  1393. traffic.out_today.irc += len;
  1394. else if (!strncmp(dcc[idx].type->name, "CHAT", 4))
  1395. traffic.out_today.dcc += len;
  1396. else if (!strncmp(dcc[idx].type->name, "FILES", 5))
  1397. traffic.out_today.filesys += len;
  1398. else if (!strcmp(dcc[idx].type->name, "SEND"))
  1399. traffic.out_today.trans += len;
  1400. else if (!strncmp(dcc[idx].type->name, "GET", 3))
  1401. traffic.out_today.trans += len;
  1402. else
  1403. traffic.out_today.unknown += len;
  1404. break;
  1405. }
  1406. }
  1407. if (socklist[i].encstatus && (strlen(s) > 0)) {
  1408. s = botlink_encrypt(i, s);
  1409. len = strlen(s);
  1410. }
  1411. if (socklist[i].outbuf != NULL) {
  1412. /* Already queueing: just add it */
  1413. p = (char *) realloc(socklist[i].outbuf, socklist[i].outbuflen + len);
  1414. egg_memcpy(p + socklist[i].outbuflen, s, len);
  1415. socklist[i].outbuf = p;
  1416. socklist[i].outbuflen += len;
  1417. if (socklist[i].encstatus && s)
  1418. free(s);
  1419. return;
  1420. }
  1421. /* Try. */
  1422. #ifdef HAVE_SSL
  1423. if (socklist[i].ssl) {
  1424. x = SSL_write(socklist[i].ssl, s, len);
  1425. if (x < 0) {
  1426. int err = SSL_get_error(socklist[i].ssl, x);
  1427. x = -1;
  1428. switch (err) {
  1429. case SSL_ERROR_WANT_READ:
  1430. errno = EAGAIN;
  1431. break;
  1432. case SSL_ERROR_WANT_WRITE:
  1433. errno = EAGAIN;
  1434. break;
  1435. case SSL_ERROR_WANT_X509_LOOKUP:
  1436. errno = EAGAIN;
  1437. break;
  1438. }
  1439. }
  1440. } else
  1441. #endif /* HAVE_SSL */
  1442. #ifdef HAVE_ZLIB_H
  1443. /*
  1444. if (socklist[i].gz) {
  1445. FILE *fp;
  1446. fp = gzdopen(z, "wb0");
  1447. x = gzwrite(fp, s, len);
  1448. } else
  1449. */
  1450. #endif /* HAVE_ZLIB_H */
  1451. x = write(z, s, len);
  1452. if (x == -1)
  1453. x = 0;
  1454. if (x < len) {
  1455. /* Socket is full, queue it */
  1456. socklist[i].outbuf = calloc(1, len - x);
  1457. egg_memcpy(socklist[i].outbuf, &s[x], len - x);
  1458. socklist[i].outbuflen = len - x;
  1459. }
  1460. if (socklist[i].encstatus && s)
  1461. free(s);
  1462. return;
  1463. }
  1464. }
  1465. /* Make sure we don't cause a crash by looping here */
  1466. if (!inhere) {
  1467. inhere = 1;
  1468. putlog(LOG_MISC, "*", "!!! writing to nonexistent socket: %d", z);
  1469. s[strlen(s) - 1] = 0;
  1470. putlog(LOG_MISC, "*", "!-> '%s'", s);
  1471. inhere = 0;
  1472. }
  1473. /* if (socklist[i].encstatus > 0)
  1474. free(s);
  1475. */
  1476. }
  1477. int findanyidx(register int z)
  1478. {
  1479. register int j;
  1480. if (z != -1)
  1481. for (j = 0; j < dcc_total; j++)
  1482. if (dcc[j].sock == z)
  1483. return j;
  1484. return -1;
  1485. }
  1486. /* tputs might queue data for sockets, let's dump as much of it as
  1487. * possible.
  1488. */
  1489. void dequeue_sockets()
  1490. {
  1491. int i, x;
  1492. int z = 0, fds = 0;
  1493. fd_set wfds;
  1494. struct timeval tv;
  1495. /* ^-- start poptix test code, this should avoid writes to sockets not ready to be written to. */
  1496. FD_ZERO(&wfds);
  1497. tv.tv_sec = 0;
  1498. tv.tv_usec = 0; /* we only want to see if it's ready for writing, no need to actually wait.. */
  1499. for (i = 0; i < MAXSOCKS; i++) {
  1500. if (!(socklist[i].flags & SOCK_UNUSED) && socklist[i].outbuf != NULL) {
  1501. FD_SET(socklist[i].sock, &wfds);
  1502. if (socklist[i].sock > fds)
  1503. fds = socklist[i].sock;
  1504. z = 1;
  1505. }
  1506. }
  1507. if (!z)
  1508. return; /* nothing to write */
  1509. fds++;
  1510. select(fds, NULL, &wfds, NULL, &tv);
  1511. /* end poptix */
  1512. for (i = 0; i < MAXSOCKS; i++) {
  1513. if (!(socklist[i].flags & SOCK_UNUSED) &&
  1514. (socklist[i].outbuf != NULL) && (FD_ISSET(socklist[i].sock, &wfds))) {
  1515. /* Trick tputs into doing the work */
  1516. errno = 0;
  1517. #ifdef HAVE_SSL
  1518. if (socklist[i].ssl) {
  1519. x = write(socklist[i].sock, socklist[i].outbuf, socklist[i].outbuflen);
  1520. if (x < 0) {
  1521. int err = SSL_get_error(socklist[i].ssl, x);
  1522. x = -1;
  1523. switch (err) {
  1524. case SSL_ERROR_WANT_READ:
  1525. errno = EAGAIN;
  1526. break;
  1527. case SSL_ERROR_WANT_WRITE:
  1528. errno = EAGAIN;
  1529. break;
  1530. case SSL_ERROR_WANT_X509_LOOKUP:
  1531. errno = EAGAIN;
  1532. break;
  1533. }
  1534. }
  1535. } else
  1536. #endif /* HAVE_SSL */
  1537. x = write(socklist[i].sock, socklist[i].outbuf, socklist[i].outbuflen);
  1538. if ((x < 0) && (errno != EAGAIN)
  1539. #ifdef EBADSLT
  1540. && (errno != EBADSLT)
  1541. #endif /* EBADSLT */
  1542. #ifdef ENOTCONN
  1543. && (errno != ENOTCONN)
  1544. #endif /* EBADSLT */
  1545. ) {
  1546. /* This detects an EOF during writing */
  1547. debug3("net: eof!(write) socket %d (%s,%d)", socklist[i].sock,
  1548. strerror(errno), errno);
  1549. socklist[i].flags |= SOCK_EOFD;
  1550. } else if (x == socklist[i].outbuflen) {
  1551. /* If the whole buffer was sent, nuke it */
  1552. free(socklist[i].outbuf);
  1553. socklist[i].outbuf = NULL;
  1554. socklist[i].outbuflen = 0;
  1555. } else if (x > 0) {
  1556. char *p = socklist[i].outbuf;
  1557. /* This removes any sent bytes from the beginning of the buffer */
  1558. socklist[i].outbuf = (char *) calloc(1, socklist[i].outbuflen - x);
  1559. egg_memcpy(socklist[i].outbuf, p + x, socklist[i].outbuflen - x);
  1560. socklist[i].outbuflen -= x;
  1561. free(p);
  1562. } else {
  1563. debug3("dequeue_sockets(): errno = %d (%s) on %d", errno,
  1564. strerror(errno), socklist[i].sock);
  1565. }
  1566. /* All queued data was sent. Call handler if one exists and the
  1567. * dcc entry wants it.
  1568. */
  1569. if (!socklist[i].outbuf) {
  1570. int idx = findanyidx(socklist[i].sock);
  1571. if (idx > 0 && dcc[idx].type && dcc[idx].type->outdone)
  1572. dcc[idx].type->outdone(idx);
  1573. }
  1574. }
  1575. }
  1576. }
  1577. /*
  1578. * Debugging stuff
  1579. */
  1580. void tell_netdebug(int idx)
  1581. {
  1582. int i;
  1583. char s[80] = "";
  1584. dprintf(idx, "Open sockets:");
  1585. for (i = 0; i < MAXSOCKS; i++) {
  1586. if (!(socklist[i].flags & SOCK_UNUSED)) {
  1587. sprintf(s, " %d", socklist[i].sock);
  1588. if (socklist[i].flags & SOCK_BINARY)
  1589. strcat(s, " (binary)");
  1590. if (socklist[i].flags & SOCK_LISTEN)
  1591. strcat(s, " (listen)");
  1592. if (socklist[i].flags & SOCK_PASS)
  1593. strcat(s, " (passed on)");
  1594. if (socklist[i].flags & SOCK_CONNECT)
  1595. strcat(s, " (connecting)");
  1596. if (socklist[i].flags & SOCK_STRONGCONN)
  1597. strcat(s, " (strong)");
  1598. if (socklist[i].flags & SOCK_NONSOCK)
  1599. strcat(s, " (file)");
  1600. if (socklist[i].inbuf != NULL)
  1601. sprintf(&s[strlen(s)], " (inbuf: %04X)", strlen(socklist[i].inbuf));
  1602. if (socklist[i].outbuf != NULL)
  1603. sprintf(&s[strlen(s)], " (outbuf: %06lX)", socklist[i].outbuflen);
  1604. strcat(s, ",");
  1605. dprintf(idx, "%s", s);
  1606. }
  1607. }
  1608. dprintf(idx, " done.\n");
  1609. }
  1610. /* Security-flavoured sanity checking on DCC connections of all sorts can be
  1611. * done with this routine. Feed it the proper information from your DCC
  1612. * before you attempt the connection, and this will make an attempt at
  1613. * figuring out if the connection is really that person, or someone screwing
  1614. * around. It's not foolproof, but anything that fails this check probably
  1615. * isn't going to work anyway due to masquerading firewalls, NAT routers,
  1616. * or bugs in mIRC.
  1617. */
  1618. int sanitycheck_dcc(char *nick, char *from, char *ipaddy, char *port)
  1619. {
  1620. /* According to the latest RFC, the clients SHOULD be able to handle
  1621. * DNS names that are up to 255 characters long. This is not broken.
  1622. */
  1623. /* This function needs to be updated for IPv6 IP's, although it doesn't
  1624. * currently harm them (afaik)
  1625. */
  1626. char badaddress[16] = "";
  1627. IP ip = my_atoul(ipaddy);
  1628. int prt = atoi(port);
  1629. /* It is disabled HERE so we only have to check in *one* spot! */
  1630. if (!dcc_sanitycheck)
  1631. return 1;
  1632. if (prt < 1) {
  1633. putlog(LOG_MISC, "*", "ALERT: (%s!%s) specified an impossible port of %u!",
  1634. nick, from, prt);
  1635. return 0;
  1636. }
  1637. sprintf(badaddress, "%u.%u.%u.%u", (ip >> 24) & 0xff, (ip >> 16) & 0xff,
  1638. (ip >> 8) & 0xff, ip & 0xff);
  1639. if (ip < (1 << 24)) {
  1640. putlog(LOG_MISC, "*", "ALERT: (%s!%s) specified an impossible IP of %s!",
  1641. nick, from, badaddress);
  1642. return 0;
  1643. }
  1644. return 1;
  1645. }
  1646. int hostsanitycheck_dcc(char *nick, char *from, IP ip, char *dnsname,
  1647. char *prt)
  1648. {
  1649. /* According to the latest RFC, the clients SHOULD be able to handle
  1650. * DNS names that are up to 255 characters long. This is not broken.
  1651. */
  1652. char hostn[256] = "", badaddress[16] = "";
  1653. /* It is disabled HERE so we only have to check in *one* spot! */
  1654. if (!dcc_sanitycheck)
  1655. return 1;
  1656. sprintf(badaddress, "%u.%u.%u.%u", (ip >> 24) & 0xff, (ip >> 16) & 0xff,
  1657. (ip >> 8) & 0xff, ip & 0xff);
  1658. /* These should pad like crazy with zeros, since 120 bytes or so is
  1659. * where the routines providing our data currently lose interest. I'm
  1660. * using the n-variant in case someone changes that...
  1661. */
  1662. strncpyz(hostn, extracthostname(from), sizeof hostn);
  1663. if (!egg_strcasecmp(hostn, dnsname)) {
  1664. putlog(LOG_DEBUG, "*", "DNS information for submitted IP checks out.");
  1665. return 1;
  1666. }
  1667. if (!strcmp(badaddress, dnsname))
  1668. putlog(LOG_MISC, "*", "ALERT: (%s!%s) sent a DCC request with bogus IP "
  1669. "information of %s port %s. %s does not resolve to %s!", nick, from,
  1670. badaddress, prt, from, badaddress);
  1671. else
  1672. return 1; /* <- usually happens when we have
  1673. a user with an unresolved hostmask! */
  1674. return 0;
  1675. }
  1676. /* Checks wether the referenced socket has data queued.
  1677. *
  1678. * Returns true if the incoming/outgoing (depending on 'type') queues
  1679. * contain data, otherwise false.
  1680. */
  1681. int sock_has_data(int type, int sock)
  1682. {
  1683. int ret = 0, i;
  1684. for (i = 0; i < MAXSOCKS; i++)
  1685. if (!(socklist[i].flags & SOCK_UNUSED) && socklist[i].sock == sock)
  1686. break;
  1687. if (i < MAXSOCKS) {
  1688. switch (type) {
  1689. case SOCK_DATA_OUTGOING:
  1690. ret = (socklist[i].outbuf != NULL);
  1691. break;
  1692. case SOCK_DATA_INCOMING:
  1693. ret = (socklist[i].inbuf != NULL);
  1694. break;
  1695. }
  1696. } else
  1697. debug1("sock_has_data: could not find socket #%d, returning false.", sock);
  1698. return ret;
  1699. }
  1700. /* flush_inbuf():
  1701. * checks if there's data in the incoming buffer of an connection
  1702. * and flushs the buffer if possible
  1703. *
  1704. * returns: -1 if the dcc entry wasn't found
  1705. * -2 if dcc[idx].type->activity doesn't exist and the data couldn't
  1706. * be handled
  1707. * 0 if buffer was empty
  1708. * otherwise length of flushed buffer
  1709. */
  1710. int flush_inbuf(int idx)
  1711. {
  1712. int i, len;
  1713. char *inbuf = NULL;
  1714. Assert((idx >= 0) && (idx < dcc_total));
  1715. for (i = 0; i < MAXSOCKS; i++) {
  1716. if ((dcc[idx].sock == socklist[i].sock)
  1717. && !(socklist[i].flags & SOCK_UNUSED)) {
  1718. len = socklist[i].inbuflen;
  1719. if ((len > 0) && socklist[i].inbuf) {
  1720. if (dcc[idx].type && dcc[idx].type->activity) {
  1721. inbuf = socklist[i].inbuf;
  1722. socklist[i].inbuf = NULL;
  1723. dcc[idx].type->activity(idx, inbuf, len);
  1724. free(inbuf);
  1725. return len;
  1726. } else
  1727. return -2;
  1728. } else
  1729. return 0;
  1730. }
  1731. }
  1732. return -1;
  1733. }