pissnet/pissircd
1
0
Fork 0
mirror of https://github.com/pissnet/pissircd.git synced 2024-06-05 07:48:44 +01:00
Code Issues Projects Releases Wiki Activity

Commit graph

  • 4c8fe6e8d9
         Add CAP echo-message. Bram Matthys 2019-08-13 18:36:25 +0200
  • 912eea52d7
         More NULs are always a good thing. [skip ci] Bram Matthys 2019-08-13 18:13:01 +0200
  • 5279212b30
         More SSL to TLS changes Bram Matthys 2019-08-13 13:09:49 +0200
  • 39bb0299f1
         /REHASH -ssl -> /REHASH -tls Bram Matthys 2019-08-13 12:59:56 +0200
  • 135b4808d0
         Update example configs to use tls instead of ssl Bram Matthys 2019-08-13 12:58:10 +0200
  • c4b276d2d8
         Windows: another conf\ssl to conf\tls instance (in the installer) [skip ci] Bram Matthys 2019-08-12 14:54:50 +0200
  • 7fa2b8be05
         More ssl -> tls moves. Also recommend to use 'certfp' rather than the longer 'sslcertfp' or 'tlscertfp', we already support this since 4.0 so... updated the documentation as well. Bram Matthys 2019-08-12 14:53:29 +0200
  • 8ff6ad17ee
         Part 4 of ssl/tls rename (not important) [skip ci] Bram Matthys 2019-08-12 14:44:14 +0200
  • b6c786d2c0
         gplplusssl.rtf should mention LibreSSL, not OpenSSL. [skip ci] Bram Matthys 2019-08-12 14:42:49 +0200
  • ef739331b0
         Rename ssl_antidos to tls_antidos. Bram Matthys 2019-08-12 14:40:11 +0200
  • 2b0afacdf0
         Rename of "ssl" to "tls" part 2 Bram Matthys 2019-08-12 14:35:32 +0200
  • 09cf485d6c
         Mass rename of "ssl" to "tls" everywhere. Including conf/ssl to conf/tls. If you are upgrading then conf/ssl will be renamed to conf/tls and a symlink will be added (so certbot etc won't fail). This is part 1... Bram Matthys 2019-08-12 14:26:31 +0200
  • 86844c3c2b
         Replace UnrealIRCd 4 -> UnrealIRCd 5 Bram Matthys 2019-08-12 13:49:21 +0200
  • 684baf9e59
         Add a note to ./autogen.sh that this is only for devs, not end-users. [skip ci] Bram Matthys 2019-08-12 13:44:45 +0200
  • 2976c488b0
         Delete appveyor.yml, as we are now using buildbot. [skip ci] Bram Matthys 2019-08-12 13:42:58 +0200
  • e44f572725
         Rename makefile.windows -> Makefile.windows, consistent with Makefile.in [skip ci] Bram Matthys 2019-08-12 13:41:55 +0200
  • 7f903b422c
         Strip m_ prefix in modules (part II). Bump reported module version of each module to 5.0 (or the ones that previously were 4.2, anyway). Bram Matthys 2019-08-12 13:36:03 +0200
  • fc5569408d
         Drop the m_ prefix from modules. So rename src/modules/m_*.c to src/modules/*.c and update makefiles and modules.default.conf. Also remove m_ at various places in the source files, but not the CMD_FUNC(), just the module name. Bram Matthys 2019-08-12 13:27:45 +0200
  • 5701fbed20
         Update installer script to reflect new windows paths [skip ci] Bram Matthys 2019-08-11 18:16:16 +0200
  • 4488819e69
         Oops... [skip ci] Bram Matthys 2019-08-11 18:08:56 +0200
  • 61cf5f16d3
         Ok.. I get it. [skip ci] Bram Matthys 2019-08-11 18:02:13 +0200
  • 63cfdb4b68
         src/windows/win.h -> include/windows/win.h and update the include name @skipci Bram Matthys 2019-08-11 17:58:53 +0200
  • 3d7117ea77
         Whatever this is, I'm not leaving it alone :D @skipci Bram Matthys 2019-08-11 17:56:25 +0200
  • c68b0e9ab4
         Rename windows.{c,h} -> win.{c,h} to avoid confusion Bram Matthys 2019-08-11 17:51:48 +0200
  • 645989e602
         Rename makefile.win32 to makefile.windows, among several other changes. (Would surprise me if this compiles without failure, tho) @skipci Bram Matthys 2019-08-11 17:46:12 +0200
  • 1498f1e716
         Rename directories from 'win32' to 'windows' Bram Matthys 2019-08-11 17:40:08 +0200
  • 3a29677c79
         Windows build fix, just rename the damn file. Bram Matthys 2019-08-11 17:35:44 +0200
  • 6c398c58fc
         Windows makefile: you are weird. Bram Matthys 2019-08-11 17:21:17 +0200
  • a53316d256
         Rename src/s_svs.c to src/aliases.c, since that is what it contains. Bram Matthys 2019-08-11 17:19:42 +0200
  • 03e095cd92
         Rename src/s_*.c files: drop the useless s_ prefix. Bram Matthys 2019-08-11 17:15:14 +0200
  • 0cd6b9bea1
         Integrate s_auth.c into s_bsd.c (only 200 lines and the place fits well) Bram Matthys 2019-08-11 17:09:22 +0200
  • 25687c2bed
         New efuncs: tkl_ip_hash() and tkl_ip_hash_type(), for the rmtkl module. Bram Matthys 2019-08-11 14:48:07 +0200
  • ae8c0af51c Ported rmtkl (remove TKLs in bulk) while waiting for Syzop to implement some changes (compiles with a warning at the moment) GottemHams 2019-08-10 21:55:34 +0200
  • f6df735291 floodprot: Floodtype 'r' for handling per-user repeated PRIVMSGs (CTCP/notice/ACTION/regular message) + action 'd' for dropping stuff for floodtypes 't' (per-user text) and 'r' GottemHams 2019-08-10 19:25:51 +0200
  • 3c47e22b75
         These TODO/FIXME's can be removed (well, except 1) @skipci Bram Matthys 2019-08-10 14:14:40 +0200
  • 5af31c4a30
         These FIXME's can be removed. @skipci Bram Matthys 2019-08-10 14:12:29 +0200
  • c50f65c5bf
         Update two small FIXME's (nothing worth mentioning) Bram Matthys 2019-08-10 14:09:00 +0200
  • 1cbfc85352
         This FIXME was resolved AFAICT. In message-tags.c we do: if (m->clicap_handler && (acptr->local->caps & m->clicap_handler->cap)) return 1; ... so if messagetaghandler->clicap_handler is NULL then this won't be 1. Bram Matthys 2019-08-10 13:34:01 +0200
  • 4d105afcf2
         Update comments (duplicate words, blah) @skipci Bram Matthys 2019-08-10 13:29:14 +0200
  • a185e341e6
         Update client_accepts_tag() to use the mtags API rather than hardcoded if() statements. Bram Matthys 2019-08-10 13:21:04 +0200
  • bcf21c9d7e
         Add fix for "bug" caught by fuzzer (incorrect @time in S2S traffic). Bram Matthys 2019-08-07 17:32:44 +0200
  • 2c8f909759 Ported a major chunk of m_forward's functionality to chanmodes/link, with a bunch of improvements =] GottemHams 2019-07-27 21:10:13 +0200
  • af2ef7d186 Updated cmdrestrict example configuration to reflect recent changes GottemHams 2019-07-27 14:02:15 +0200
  • 3a1ae06345 cmdrestrict should be able to override any command, also couple of minor improvements GottemHams 2019-07-27 13:56:30 +0200
  • 8c11ebd0e7 Make allow {} block always continue when there were no password or wrong password was specified. i 2019-07-18 18:47:05 +0300
  • c9908a55c9 Added HOOKTYPE_CONFIGPOSTTEST for webredir module, to check if there is no set::webredir. i 2019-07-16 01:18:41 +0300
  • e30de7b7a6 Removed default url for webredir module and refuse to load without url. i 2019-07-15 21:59:41 +0300
  • 1079cded02 Nested comment blocks don't work anymore :D GottemHams 2019-07-15 18:36:15 +0200
  • 19aad17d4e cfgstruct is not necessary for cmdrestrict :D GottemHams 2019-07-14 23:08:42 +0200
  • 655027f5db Merge branch 'unreal50' of github.com:syzop/unrealircd-next into unreal50 GottemHams 2019-07-14 23:05:08 +0200
  • e5cfc5d798 cmdrestrict v1.0: Restrict specific commands until certain conditions have been met =] GottemHams 2019-07-14 23:04:15 +0200
  • 53146f252c New module webredir (do 301 redirect for HEAD/GET/POST/PUT commands to the specified URL). i 2019-07-14 22:37:55 +0300
  • 2894c16638
         Lower set::ident::read-timeout to 7 seconds, which should be plenty on the Internet of today. Bram Matthys 2019-07-14 19:22:36 +0200
  • 1c5c501dc1
         Remove m_nopost module as it is no longer useful. UnrealIRCd already protects (for maaaany years) with ping cookies against this attack. Making the m_nopost redundant. Also, another module may be more useful (more on this soon...). Bram Matthys 2019-07-14 19:07:32 +0200
  • d22a2a20f0 Make usermode +T block channel CTCP's as well. i 2019-07-14 19:01:31 +0300
  • d9bd18c483
         Remove TODO comment, now that it has been done [skip ci] Bram Matthys 2019-07-13 16:00:49 +0200
  • c2445fa9c6
         Add history_backend_null, which can be useful on servers where you explicitly do not want to remember any channel history, such as on a hub server to save memory. Also, on Windows, ensure to compile all history_backend_*.c Bram Matthys 2019-07-13 15:53:23 +0200
  • 3b67e83275
         Add some FIXME's to labeled-response. Not going to work on that right now, since there is more important things to do... [skip ci] Bram Matthys 2019-07-13 15:40:58 +0200
  • 806256e9c2
         Move generate_batch_id() to core. Use chathistory BATCH type, if supported. Bram Matthys 2019-07-13 15:25:56 +0200
  • ccfeac6eae
         Don't re-order mtags on history playback Strictly, this is not a problem, but.. for our test framework it is better and it looks cleaner too. Bram Matthys 2019-07-13 08:20:12 +0200
  • 65b5e21464
         Fix double 'time' mtag on history playback Bram Matthys 2019-07-13 08:18:53 +0200
  • 0cda60301d
         Add set::broadcast-channel-messages [auto|always|never]: This determines when UnrealIRCd will use broadcast instead of multicast for delivering channel messages to servers. The default is 'auto' which uses multicast but switches to broadcast when channel mode +H is set. This is what people should normally use. If you set it to 'never' then +H will not work properly if there are servers with 0 users on them. Bram Matthys 2019-07-13 07:59:12 +0200
  • 006b7e5a7c Hide serveropts from normal users. i 2019-07-12 01:09:33 +0300
  • ca094f0a75 New set::ping-warning option (how fast the server should reply to PING before sending a warning to opers). i 2019-07-11 16:47:02 +0300
  • 876758b73e Fix Custom OpenSSL binary path was ignored. i 2019-07-11 14:20:01 +0300
  • a601f565e1 Do not override all libs. i 2019-07-11 03:06:28 +0300
  • 57f6718086 Update configure script for previous commit. i 2019-07-11 02:36:51 +0300
  • 4feba3edd5 Check whether linking with OpenSSL functions requires -ldl or -lpthread or both i 2019-07-11 02:33:11 +0300
  • dbbcc6918a Fix Custom OpenSSL library path was ignored i 2019-07-11 00:53:41 +0300
  • 60ebc1375e Support channel status prefixes for SAJOIN. i 2019-07-10 17:42:46 +0300
  • 769955eab5
         Require at least one SSL/TLS port to be open. In other words, change https://www.unrealircd.org/docs/FAQ#Your_server_is_not_listening_on_any_SSL_ports from a warning to an error. Bram Matthys 2019-07-10 06:53:01 +0200
  • 3cff80ad8d
         Use SSL_CTX_set_min_proto_version() in a more inteligent way. It shouldn't matter now, but if OpenSSL some day deprecates the old way then at least it won't have silent disastrous effects. Bram Matthys 2019-07-09 20:24:00 +0200
  • dc2c2c3f89
         Re-indent ssl.c Bram Matthys 2019-07-09 20:13:02 +0200
  • d09b9d53a4
         Make SSL/TLS mandatory for UnrealIRCd to run. Previously you could get around this by simply having no certs etc. I doubt anyone used it and that was not a recommended configuration. (More to come) Bram Matthys 2019-07-09 20:06:11 +0200
  • 657985bf53
         Make Debian 10 compile with -Werror. Add -Wno-cast-function-type Bram Matthys 2019-07-07 18:17:32 +0200
  • efe73de70d
         -Wno-unused-but-set-parameter [skip ci] Bram Matthys 2019-07-07 18:11:54 +0200
  • 79bd78c0f3
         Make it so UnrealIRCd has full control over the SSL/TLS versions in use and not just the operating system. This makes us use SSL_CTX_set_min_proto_version(), which unfortunately is a less fine-grained control for disabling specific SSL/TLS versions. However, after that we use SSL_CTX_set_options with SSL_OP_NO_xxx. The latter is deprecated though. Will revisit this change before U5 release.. Bram Matthys 2019-07-07 10:22:29 +0200
  • 73bbf10170
         Build tests: --enable-werror Bram Matthys 2019-07-07 09:54:40 +0200
  • fa39bafe99
         tls-tests: Check not only against baseline but against all [skip ci] Bram Matthys 2019-07-07 09:34:30 +0200
  • 6a44b002da
         Add cipherscan profile for openssl 1.0.1, as used by Debian 8 (jessie). Main difference is that the curve used for ECDHE is fixed at prime256v1 rather than a list of multiple choices (this due to an openssl 1.0.1 limitation). [skip ci] Bram Matthys 2019-07-07 09:26:30 +0200
  • 0235c6f233
         Remove 2 cipherscan profiles (only to reintroduce them later) [skip ci] Bram Matthys 2019-07-07 09:24:33 +0200
  • 3b3f63b990
         Add HAVE_EXPLICIT_BZERO. Fix compile problems on Debian and other older systems without explicit_bzero. Current usage is only in the PRNG which is not very important anyway. We can re-visit later by attempting to provide a fallback portable version, but from what I've seen this is pretty ugly. Bram Matthys 2019-07-07 09:18:34 +0200
  • 7ac11973d0
         Fix crash in TOPIC with certain remote server traffic. And make sure we don't change topic text if it comes from a remote link. Bram Matthys 2019-07-06 17:48:20 +0200
  • 74325280dd
         Due to new defaults, the baseline for the SSL/TLS changed as well. Bram Matthys 2019-07-01 07:45:48 +0200
  • 74cf811759
         Failed to initialize a variable in changes last week. Not caught by tests due to lack of -O2, we should add a buildbot for that.. Bram Matthys 2019-07-01 07:40:49 +0200
  • fea09b6659
         Switch from RSA 4096 to ECC secp384r1 Bram Matthys 2019-06-30 10:53:58 +0200
  • d3d9b499a7
         Move src/ssl.cnf -> extras/ssl.cnf [skip ci] Bram Matthys 2019-06-30 10:25:19 +0200
  • e90f6e0446
         Remove 'make encpem'. Nobody uses this as it would mean you always need to enter the private key password when UnrealIRCd is (re)started. Similarly, remove all references to it on Windows as well, where people thought clicking "Encrypt private key" was a good idea. Can't blame them, it sounds good on first sight :D [skip ci] Bram Matthys 2019-06-30 10:18:16 +0200
  • 696c06b6a6
         Load authprompt module by default. Bram Matthys 2019-06-29 19:17:52 +0200
  • f0f69bfe48
         Change set::ident::read-timeout from 30 to 15 seconds since otherwise it exceeds set::handshake-timeout which would be very unfortunate for those (few) poor users that are affected by this. Bram Matthys 2019-06-29 18:51:02 +0200
  • 60a89b8c3f
         Change set::outdated-tls-policy::server and ::oper to deny. Both servers and IRCOps must not use outdated SSL/TLS protocols or ciphers. Bram Matthys 2019-06-29 18:34:27 +0200
  • 94faf02c70
         Change set::plaintext-policy::oper to deny. IRCOps really must use SSL/TLS. Bram Matthys 2019-06-29 18:31:37 +0200
  • 375b03c132
         Fix (just created) bug in extcmode unloading (with param). Update slot/param mapping. Now unloading should work well... otherwise it crashed after destroying the channel. Bram Matthys 2019-06-29 09:51:23 +0200
  • bbbdba1083
         Make chanmodes/link module un-PERM. Thanks due to previous change. Bram Matthys 2019-06-29 09:11:20 +0200
  • b605b7fd86
         Use delayed module unloading not only for modules with moddata but also for modules which have extended channelmodes with parameters, since they have the same problem. Bram Matthys 2019-06-29 09:10:18 +0200
  • 96ad3e8f71
         Nothing special. Add a comment to blacklist module, in case someone things it would be wise to make it unPERM ;) [skip ci] Bram Matthys 2019-06-29 08:55:36 +0200
  • 5d6f0a79ad
         Make jumpserver module non-PERM, thanks to LoadPersistentPointer etc. Bram Matthys 2019-06-29 08:52:52 +0200
  • fbf4946777
         Update tkldb to use new LoadPersistentInt/SavePersistentInt functions. And before that, I fixed these functions so they actually work :D Bram Matthys 2019-06-29 08:44:12 +0200
  • e03fa760ef update makefile.win32 for extbans/partmsg i 2019-06-29 00:53:41 +0300
  • 780d9e95a2 extbans/partmsg: remove unused leftovers i 2019-06-29 00:41:23 +0300