summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2014-10-16Initialize all fields of issl_session on module load in SSL modulesAttila Molnar
2014-10-16Add interface to SSL modules that allows other modules to obtain the raw SSL ↵Attila Molnar
session of a socket
2014-10-16m_ssl_gnutls Refcount GnuTLS objects, free them when they are no longer in ↵Attila Molnar
use instead of at /rehash ssl time
2014-10-15m_ssl_openssl Fix debug messageAttila Molnar
2014-10-15m_ssl_openssl Reset data_to_write for new sessionsAttila Molnar
2014-10-15m_ssl_openssl Free the ssl_cert object as soon as the session is closed ↵Attila Molnar
instead of waiting for the next VerifyCertificate() or new connection
2014-10-15m_ssl_openssl Remove bogus errno assignment from CloseSession()Attila Molnar
2014-10-14m_ssl_openssl Return an error from the IOHook read and write functions if ↵Attila Molnar
the handshake returns 0 The meaning of a 0 return value quoted from the manual: The TLS/SSL handshake was not successful but was shut down controlled and by the specifications of the TLS/SSL protocol.
2014-10-14m_ssl_openssl Add user-friendly config options for setting a few OpenSSL ↵Attila Molnar
context options
2014-10-13m_nationalchars Ask m_spanningtree to rebuild its hashmaps when the ↵Attila Molnar
national_case_insensitive_map changes Issue #923
2014-10-13m_spanningtree Rebuild serverlist and sidlist when receiving a specific RequestAttila Molnar
Issue #923
2014-10-13m_nationalchars Rebuild the hash map in m_watch when the ↵Attila Molnar
national_case_insensitive_map changes Issue #923
2014-10-13m_nationalchars Rebuild core hashmaps when the national_case_insensitive_map ↵Attila Molnar
changes Issue #923
2014-10-13Merge pull request #934 from SaberUK/insp20+fix-various-issuesAttila Molnar
Fix various issues detected by Coverity.
2014-10-13Kill some logically dead code detected by Coverity.Peter Powell
- m_watch: wl has already been confirmed to not be NULL on L161.
2014-10-13Replace dodgy use of const char* and memcpy with std::string.Peter Powell
This was backported from commit e01df63 in master.
2014-10-13Merge pull request #933 from SaberUK/insp20+fix-llvm34Attila Molnar
Fix various warnings when building with LLVM 3.5.
2014-10-13Avoid calling methods on NULL pointers wherever possible.Peter Powell
The trick we use to allow this is undefined behaviour and is not liked by LLVM. We should stop using it but it has the potential to break to many things for a minor release.
2014-10-13Fix various warnings when building with LLVM 3.5.Peter Powell
- warning: absolute value function 'abs' given an argument of type 'long' but has parameter of type 'int' which may cause truncation of value [-Wabsolute-value] - warning: 'this' pointer cannot be null in well-defined C++ code; pointer may be assumed to always convert to true [-Wundefined-bool-conversion]
2014-10-10m_ssl_openssl Allow configuring raw OpenSSL context optionsAttila Molnar
2014-10-10m_ssl_openssl Disable session caching and session ticketsAttila Molnar
2014-10-10m_ssl_openssl Enable single (EC)DH use and disable SSL v2Attila Molnar
Options enabled: - SSL_OP_NO_SSLv2 - SSL_OP_SINGLE_DH_USE - SSL_OP_SINGLE_ECDH_USE (if it exists) Partial backport of #856 by @jvehent
2014-10-08m_ssl_openssl Clear the error queue before every SSL_* callAttila Molnar
2014-10-05Revert "Fix an off-by-one on registration timeout handling."Robin Burchell
This seemingly breaks (occasionally timing users out a second early), possibly due to rounding issues on time (User::age and Time() both return int, but a whole second is comprised of many ms). The root cause needs investigation, but we cannot leave a potentially breaking bug in the tree. This reverts commit 4414d644a163f3906f90b35186e07ce0383161f4.
2014-10-04Fix an off-by-one on registration timeout handling.Robin Burchell
The use of > instead of >= here added a second onto the configured timeout. We won't be breaking any existing configuration, because users.h explicitly increases the limit if it's 0.
2014-10-03m_ssl_gnutls Re-set DH params when the gnutls_certificate_credentials_t ↵Attila Molnar
struct is reallocated
2014-09-26Reject parameters that begin with a colon in Channel::SetDefaultModes()Attila Molnar
2014-09-26Don't try to set a mode in Channel::SetDefaultModes() if it needs a ↵Attila Molnar
parameter but does not have one Thanks to @docwhat for helping to track this down, fixes issue #924
2014-09-08Remove IPv6 address compaction.Adam
This code is incorrect and can produce addresses with multiple double colons. No other IRCds do this and most systems today will give us the compact version anyway. Issue #914
2014-09-08Do not use the result of the dns cache when the query type of the result is ↵Adam
different from the type of the query. #66
2014-09-02m_sqlite3 Fix cleanup of unsuccessful database connectionsAttila Molnar
2014-08-03Fix listmodes when the config does not specify a wildcard size entry.Peter Powell
2014-07-24Release v2.0.17Attila Molnar
2014-07-24Update example configuration files, fix typos and caseAttila Molnar
Mention m_regex_stdlib in the list of regex providers after m_filter
2014-07-24m_spanningtree Always treat the remote client as the winner on nick ↵Attila Molnar
collision if the nick is used by a (local) client that isn't fully registered
2014-07-24Make sure the DN strings obtained from the SSL mods are always validAttila Molnar
2014-07-19m_hideoper: Hide hidden opers from /stats P. #874Adam
2014-06-26Merge pull request #879 from SaberUK/insp20+fix-denychansAttila Molnar
Fix copy/paste error in m_denychans.
2014-06-24Fix copy/paste error in m_denychans.Peter Powell
2014-06-18m_chghost Allow ulined servers to change the host of unregistered users (for ↵Attila Molnar
SASL)
2014-06-07Fix harmless loop off-by-ones found by Moonlightningsatmd
2014-06-06m_spanningtree Forward NICK messages when they cause a collision with the ↵Attila Molnar
new nick param rewritten to the uuid Suppressing these messages meant that we relied on an appropriate NICK to come from the direction the SAVE was sent to; this left all servers behind us uninformed until the target server of the SAVE reacted with a nick change to uuid. This was problematic because someone can legitimately change nick to the past nick of the SAVEd user on a server that already has the SAVEd user with the uuid nick and that nick change message can reach servers that haven't yet seen the nick change to uuid of the SAVEd user.
2014-06-06m_spanningtree Fix cleanup of connections when unloading a module that ↵Attila Molnar
provides an IOHook
2014-05-21Update server.cppDan Parsons
Rewrote "invalid credentials" error message to remove confusion regarding "server snomask", which some users interpreted as "I must make sure the snomask on each server is identical" (which makes no sense), when really the intention is basically "look at the logs on the other server".
2014-05-08Fix m_permchannels and m_xline_db on WindowsAdam
The call to remove() can fail if the database doesn't already exist. Just ignore the error, which effectively makes the rename() call below work as it does on nix
2014-05-01m_cgiirc Call User::InvalidateCache() after changing host and dhost in ↵Attila Molnar
OnCheckReady()
2014-04-29m_spanningtree Advertise the availability of m_globops in CAPAB CAPABILITIESAttila Molnar
2014-04-26m_spanningtree Set the bursting flag in the FJOIN handler based on whether ↵Attila Molnar
the source of the FJOIN is bursting or not Previously the flag was true if our route to the source was bursting, which resulted in m_joinflood incorrectly registering netjoins when a remote server was bursting Fixes issue #839 reported by @joshtek0
2014-04-13Change Windows libraries to be dynamically linkedAdam
2014-04-13m_ssl_openssl Avoid Applink on Windows by calling PEM_read_bio_DHparams() ↵Attila Molnar
instead of PEM_read_DHparams()