Page MenuHomePhabricator
Create Task
Maniphest T134271

Replace ircd-ratbox with something newer/maintained
Closed, DuplicatePublic
Actions

Description

Our IRC server is currently running a custom package of ircd-ratbox. This has several issues:

  • It's old code (possibly ridden with security vulnerabilities)
  • We're not properly maintaining it
  • We're missing some features, e.g. TLS
  • The packages are odd, with e.g. the configuration file being under /usr/etc.

So we should replace it with something newer. From a quick search, Debian seems to have lots of IRCd, with these as prime candidates: ircd-hybrid (from which ratbox was forked from), charybdis ("roots in ircd-ratbox and ircu") and ngircd (a lightweight server written from scratch).

charybdis sounds like the easiest migration path for us — the config file is almost the same, so probably compatible.

While at it, the config file should be split into a public section, checked in to puppet, that simple uses the .include facility to include the private parts (which in turn should be cleaned up, tons of ancient ACLs int there).

Details

ProjectBranchLines +/-Subject
operations/puppetproduction+951 -0new profile/role for IRC server using charybdis (WIP)
operations/puppetproduction+744 -11ircserver: move ircd.conf to public repo
Customize query in gerrit

Related Objects

Event Timeline

faidon created this task.May 3 2016, 3:44 PM
Restricted Application added subscribers: Zppix, Aklapper. · View Herald TranscriptMay 3 2016, 3:44 PM
Dzahn added a comment.May 3 2016, 7:47 PM

12:40 -!- Irssi: Join to #charybdis was synced in 2 secs
..
12:47 < Simon-> it's very similar but not 100% compatible
12:48 < kaniini> there have been divergences in both directions
12:48 < kaniini> but originally, charybdis was a ratbox derivative
..
12:48 < jackal^> mutante, you'll get warnings about gline stuff

Dzahn added a comment.May 3 2016, 7:51 PM

12:53 < kaniini> mutante: i would just use the charybdis config as a basis and include relevant elements from your ratbox config. charybdis has a completely different oper privilege system though, so o:lines will have to be converted.
12:53 < jackal^> i guess one of most confusing things will be privset{}
12:54 < kaniini> jackal^: right, his o:lines wont have privilege unless he configures them ;)

Krenair added a subscriber: Krenair.May 3 2016, 9:15 PM
Dzahn added a subscriber: Muehlenhoff.May 3 2016, 10:13 PM

@faidon T132427 is about @Muehlenhoff building the ratbox package and the thing is that there is this custom patch in it -> https://github.com/wikimedia/operations-debs-ircd-ratbox/blob/master/ircd-ratbox-notalk.patch from Fred Vassard.

That gives us the "only opers can create channels"-feature that we are using.

<Krenair> The specific features we need: only opers can create channels, only opers can send messages

So a replacement ircd would have to provide this feature, and also see above, i went to the Charybdis channel and they say it's better to start from a fresh config.

Krenair added a comment.May 3 2016, 10:13 PM
This comment was removed by Krenair.
MZMcBride added a subscriber: MZMcBride.May 4 2016, 12:26 AM

There was activity at some point to deprecate irc.wikimedia.org altogether. I wonder what happened with that.

Peachey88 added a subscriber: Peachey88.May 4 2016, 12:28 AM
Dzahn added a comment.May 4 2016, 12:29 AM
In T134271#2262258, @MZMcBride wrote:

There was activity at some point to deprecate irc.wikimedia.org altogether. I wonder what happened with that.

see T87780#2031332

MZMcBride added a comment.May 4 2016, 12:29 AM

I'm thinking of T87780#2031332, I guess.

gerritbot added a subscriber: gerritbot.May 4 2016, 12:55 AM

Change 286783 had a related patch set uploaded (by Dzahn):
ircserver: move ircd.conf to public repo

https://gerrit.wikimedia.org/r/286783

gerritbot added a project: Patch-For-Review.May 4 2016, 12:55 AM
Danny_B added a subscriber: Danny_B.May 4 2016, 5:03 AM

ircd-seven may be considered as well as a successor to charybdis which is successor of ratbox...

gerritbot added a comment.May 9 2016, 5:44 PM

Change 286783 merged by Dzahn:
ircserver: move ircd.conf to public repo

https://gerrit.wikimedia.org/r/286783

Dzahn added a comment.May 9 2016, 6:44 PM

also: https://gerrit.wikimedia.org/r/#/c/286785/ merged

as of today we had ~ 96 users left on the old server and 191 users on the new server

after merging the last 2 changes i restarted ircd on the old server and right after we have now 293 users on new server, so confirmed that pretty much all of them reconnected automatically and are now migrated to new server

Dzahn mentioned this in rOPUP55da90a83c05: ircserver: move ircd.conf to public repo.Jun 17 2016, 6:10 PM
Dzahn mentioned this in rOPUPe0986233409a: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUPfad01a7881d7: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP8b0f7141830f: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP28adcdb37ca8: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP62bd18a98355: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUPf2cd3becc7cb: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP03d710353eb4: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP93dd1156eb07: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP5d1f12c1d70a: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP4c9d1c0e09c0: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUPdc34637b6dfe: ircserver: move ircd.conf to public repo.
Dzahn mentioned this in rOPUP54c705d93420: ircserver: move ircd.conf to public repo (WIP).
Dzahn mentioned this in rOPUP6632c0bd89ee: ircserver: move ircd.conf to public repo (WIP).
Dzahn mentioned this in rOPUP3655a7d6533f: ircserver: move ircd.conf to public repo (WIP).
Dzahn mentioned this in rOPUPd7e0163a3689: ircserver: move ircd.conf to public repo.
gerritbot added a comment.Mar 31 2017, 12:56 AM

Change 345791 had a related patch set uploaded (by Dzahn):
[operations/puppet@production] new profile/role for IRC server using charybdis (WIP)

https://gerrit.wikimedia.org/r/345791

Dzahn added a comment.Mar 31 2017, 1:15 AM

So our ratbox has this custom patch to disallow people creating channels unless they are oper. This https://github.com/wikimedia/operations-debs-ircd-ratbox/blob/master/ircd-ratbox-notalk.patch

So the replacement would have to support that _without_ needing another patch hopefully.

To find that out about charybdis i asked in their Freenode support channel a bit and i got this link, there is an extension to do just that. Happy that exists :)

https://github.com/charybdis-ircd/charybdis/blob/release/3.5/extensions/createoperonly.c

Dzahn added a comment.EditedMar 31 2017, 1:22 AM

18:24 < amdj> for what you want, you'll be best served by loading extensions/createoperonly, putting +g in default umodes, and putting +m in default cmodes

18:26 < amdj> there's also a lesser version of createoperonly, called createauthonly, that permits identified users to create channels
18:27 < amdj> so if you restrict the nickserv register command in services this means you don't need to give o:lines out to quite so many things
18:27 < amdj> (if that applies)

18:28 < amdj> the modules, autochanmodes, and default_umodes are in reference.conf.

faidon mentioned this in T185319: IRC RecentChanges feed: code stewardship request.Jan 19 2018, 3:44 PM
Peachey88 added a comment.Jan 23 2018, 8:29 PM

The patches we have for "only ops can create channels" and "only ops can talk" can both be done in core InspIRCd from memory (although it has been a while since i've looked).

Dzahn lowered the priority of this task from Medium to Low.Jun 20 2018, 7:03 AM
Dzahn changed the task status from Open to Stalled.Dec 4 2018, 5:39 PM
Phabricator_maintenance moved this task from Backlog to Acknowledged on the SRE board.Jan 26 2019, 8:39 PM
Dzahn added a comment.Dec 5 2019, 8:25 PM

Following the "cookie licking on Phab" discussion i'm unassigning this from me because i am not going to work on it soon and T185319 says that Analytics took over stewardship for RC feeds.

Dzahn removed Dzahn as the assignee of this task.Dec 5 2019, 8:26 PM
Dzahn added a subscriber: Dzahn.
elukey closed this task as a duplicate of T232483: Port IRCRecentChanges to Kafka.Dec 6 2019, 7:12 AM
gerritbot added a comment.Dec 6 2019, 6:43 PM

Change 345791 abandoned by Dzahn:
new profile/role for IRC server using charybdis (WIP)

Reason:
https://phabricator.wikimedia.org/T232483 | https://gist.github.com/paravoid/3419e0b5ae1f24b6ea21906a142f2f47 is better

https://gerrit.wikimedia.org/r/345791

Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL