path: root/src/login/login.cpp

#include <arpa/inet.h>
#include <sys/types.h>
#include <sys/wait.h>

#include <netdb.h>
#include <unistd.h>

#include <cstdlib>
#include <cstring>
#include <ctime>

#include <algorithm>
#include <array>
#include <fstream>
#include <set>
#include <type_traits>

#include "../strings/mstring.hpp"
#include "../strings/fstring.hpp"
#include "../strings/zstring.hpp"
#include "../strings/xstring.hpp"
#include "../strings/vstring.hpp"

#include "../common/core.hpp"
#include "../common/cxxstdio.hpp"
#include "../common/db.hpp"
#include "../common/extract.hpp"
#include "../common/human_time_diff.hpp"
#include "../common/io.hpp"
#include "../common/lock.hpp"
#include "../common/md5calc.hpp"
#include "../common/mmo.hpp"
#include "../common/random.hpp"
#include "../common/socket.hpp"
#include "../common/timer.hpp"
#include "../common/version.hpp"
#include "../common/utils.hpp"

#include "../poison.hpp"

constexpr int MAX_SERVERS = 30;

#define LOGIN_CONF_NAME "conf/login_athena.conf"
#define LAN_CONF_NAME "conf/lan_support.conf"

constexpr int START_ACCOUNT_NUM = 2000000;
constexpr int END_ACCOUNT_NUM = 100000000;

struct mmo_account
{
    AccountName userid;
    AccountPass passwd;
    int passwdenc;

    long account_id;
    long login_id1;
    long login_id2;
    long char_id;
    timestamp_milliseconds_buffer lastlogin;
    SEX sex;
};

struct mmo_char_server
{
    ServerName name;
    IP4Address ip;
    uint16_t port;
    uint16_t users;
};

static
int account_id_count = START_ACCOUNT_NUM;
static
int server_num;
static
int new_account = 0;
static
int login_port = 6900;
static
IP4Address lan_char_ip;
static
IP4Mask lan_subnet;
static
FString update_host;
static
ServerName main_server;

static
FString account_filename = "save/account.txt";
static
FString gm_account_filename = "conf/GM_account.txt";
static
FString login_log_filename = "log/login.log";
static
FString login_log_unknown_packets_filename = "log/login_unknown_packets.log";
static
int save_unknown_packets = 0;
static
tick_t creation_time_GM_account_file;
static
std::chrono::seconds gm_account_filename_check_timer = std::chrono::seconds(15);

static
int display_parse_login = 0;   // 0: no, 1: yes
static
int display_parse_admin = 0;   // 0: no, 1: yes
static
int display_parse_fromchar = 0;    // 0: no, 1: yes (without packet 0x2714), 2: all packets

static
struct mmo_char_server server[MAX_SERVERS];
static
int server_fd[MAX_SERVERS];
static
int server_freezeflag[MAX_SERVERS];    // Char-server anti-freeze system. Counter. 5 ok, 4...0 freezed
static
int anti_freeze_enable = 0;
static
std::chrono::seconds anti_freeze_interval = std::chrono::seconds(15);

static
int login_fd;

enum class ACO
{
    DENY_ALLOW,
    ALLOW_DENY,
    MUTUAL_FAILURE,
};

static
ACO access_order = ACO::DENY_ALLOW;
static
std::vector<IP4Mask>
access_allow, access_deny, access_ladmin;

static
int min_level_to_connect = 0;  // minimum level of player/GM (0: player, 1-99: gm) to connect on the server
static
int add_to_unlimited_account = 0;  // Give possibility or not to adjust (ladmin command: timeadd) the time of an unlimited account.
static
int start_limited_time = -1;   // Starting additional sec from now for the limited time at creation of accounts (-1: unlimited time, 0 or more: additional sec from now)
static
int check_ip_flag = 1;         // It's to check IP of a player between login-server and char-server (part of anti-hacking system)

#pragma GCC diagnostic push
#pragma GCC diagnostic ignored "-Wmissing-noreturn"
void SessionDeleter::operator()(SessionData *)
{
    assert(false && "login server does not have sessions anymore");
}
#pragma GCC diagnostic pop

constexpr int AUTH_FIFO_SIZE = 256;
struct
{
    int account_id, login_id1, login_id2;
    IP4Address ip;
    SEX sex;
    int delflag;
} auth_fifo[AUTH_FIFO_SIZE];
static
int auth_fifo_pos = 0;

struct AuthData
{
    int account_id;
    SEX sex;
    AccountName userid;
    AccountCrypt pass;
    timestamp_milliseconds_buffer lastlogin;
    int logincount;
    int state;                 // packet 0x006a value + 1 (0: compte OK)
    AccountEmail email;             // e-mail (by default: a@a.com)
    timestamp_seconds_buffer error_message;     // Message of error code #6 = Your are Prohibited to log in until %s (packet 0x006a)
    TimeT ban_until_time;      // # of seconds 1/1/1970 (timestamp): ban time limit of the account (0 = no ban)
    TimeT connect_until_time;  // # of seconds 1/1/1970 (timestamp): Validity limit of the account (0 = unlimited)
    IP4Address last_ip;           // save of last IP of connection
    VString<254> memo;             // a memo field
    int account_reg2_num;
    struct global_reg account_reg2[ACCOUNT_REG2_NUM];
};
static
std::vector<AuthData> auth_data;

static
int admin_state = 0;
static
AccountPass admin_pass;
static
FString gm_pass;
static
int level_new_gm = 60;

static
Map<int, GM_Account> gm_account_db;

static
pid_t pid = 0; // For forked DB writes


namespace e
{
enum class VERSION_2 : uint8_t
{
    /// client supports updatehost
    UPDATEHOST = 0x01,
    /// send servers in forward order
    SERVERORDER = 0x02,
};
ENUM_BITWISE_OPERATORS(VERSION_2)
}
using e::VERSION_2;

//------------------------------
// Writing function of logs file
//------------------------------
#define LOGIN_LOG(fmt, ...) \
    login_log(STRPRINTF(fmt, ## __VA_ARGS__))
static
void login_log(XString line)
{
    FILE *logfp = fopen(login_log_filename.c_str(), "a");
    if (!logfp)
        return;
    log_with_timestamp(logfp, line);
    fclose(logfp);
}

//----------------------------------------------------------------------
// Determine if an account (id) is a GM account
// and returns its level (or 0 if it isn't a GM account or if not found)
//----------------------------------------------------------------------
static
uint8_t isGM(int account_id)
{
    GM_Account *p = gm_account_db.search(account_id);
    if (p == NULL)
        return 0;
    return p->level;
}

//-------------------------------------------------------
// Reading function of GM accounts file (and their level)
//-------------------------------------------------------
static
int read_gm_account(void)
{
    char line[512];
    FILE *fp;
    int c = 0;
    int GM_level;

    gm_account_db.clear();

    creation_time_GM_account_file = file_modified(gm_account_filename);

    if ((fp = fopen(gm_account_filename.c_str(), "r")) == NULL)
    {
        PRINTF("read_gm_account: GM accounts file [%s] not found.\n",
                gm_account_filename);
        PRINTF("                 Actually, there is no GM accounts on the server.\n");
        LOGIN_LOG("read_gm_account: GM accounts file [%s] not found.\n",
                   gm_account_filename);
        LOGIN_LOG("                 Actually, there is no GM accounts on the server.\n");
        return 1;
    }
    // limited to 4000, because we send information to char-servers (more than 4000 GM accounts???)
    // int (id) + int (level) = 8 bytes * 4000 = 32k (limit of packets in windows)
    while (fgets(line, sizeof(line) - 1, fp) && c < 4000)
    {
        if ((line[0] == '/' && line[1] == '/') || line[0] == '\0' || line[0] == '\n')
            continue;
        GM_Account p {};
        if (sscanf(line, "%d %hhu", &p.account_id, &p.level) != 2
            && sscanf(line, "%d: %hhu", &p.account_id, &p.level) != 2)
            PRINTF("read_gm_account: file [%s], invalid 'id_acount level' format.\n",
                 gm_account_filename);
        else if (p.level <= 0)
            PRINTF("read_gm_account: file [%s] %dth account (invalid level [0 or negative]: %d).\n",
                 gm_account_filename, c + 1, p.level);
        else
        {
            if (p.level > 99)
            {
                PRINTF("read_gm_account: file [%s] %dth account (invalid level, but corrected: %d->99).\n",
                     gm_account_filename, c + 1, p.level);
                p.level = 99;
            }
            if ((GM_level = isGM(p.account_id)) > 0)
            {                   // if it's not a new account
                if (GM_level == p.level)
                    PRINTF("read_gm_account: GM account %d defined twice (same level: %d).\n",
                         p.account_id, p.level);
                else
                    PRINTF("read_gm_account: GM account %d defined twice (levels: %d and %d).\n",
                         p.account_id, GM_level, p.level);
            }
            if (GM_level != p.level)
            {                   // if new account or new level
                gm_account_db.insert(p.account_id, p);
                //PRINTF("GM account:%d, level: %d->%d\n", p.account_id, GM_level, p.level);
                if (GM_level == 0)
                {               // if new account
                    c++;
                    if (c >= 4000)
                    {
                        PRINTF("***WARNING: 4000 GM accounts found. Next GM accounts are not readed.\n");
                        LOGIN_LOG("***WARNING: 4000 GM accounts found. Next GM accounts are not readed.\n");
                    }
                }
            }
        }
    }
    fclose(fp);

    PRINTF("read_gm_account: file '%s' readed (%d GM accounts found).\n",
            gm_account_filename, c);
    LOGIN_LOG("read_gm_account: file '%s' readed (%d GM accounts found).\n",
               gm_account_filename, c);

    return 0;
}

//---------------------
// Access control by IP
//---------------------
static
bool check_ip(IP4Address ip)
{
    enum class ACF
    {
        DEF,
        ALLOW,
        DENY
    };
    ACF flag = ACF::DEF;

    if (access_allow.empty() && access_deny.empty())
        return 1;
    // When there is no restriction, all IP are authorised.

    if (std::find_if(access_allow.begin(), access_allow.end(),
                [&ip](IP4Mask m)
                {
                    return m.covers(ip);
                }) != access_allow.end())
    {
        {
            flag = ACF::ALLOW;
            if (access_order == ACO::ALLOW_DENY)
                // With 'allow, deny' (deny if not allow), allow has priority
                return 1;
        }
    }

    if (std::find_if(access_deny.begin(), access_deny.end(),
                [&ip](IP4Mask m)
                {
                    return m.covers(ip);
                }) != access_deny.end())
    {
        {
            flag = ACF::DENY;
            return 0;
            // At this point, if it's 'deny', we refuse connection.
        }
    }

    return flag == ACF::ALLOW || access_order == ACO::DENY_ALLOW;
    // With 'mutual-failture', only 'allow' and non 'deny' IP are authorised.
    //   A non 'allow' (even non 'deny') IP is not authorised. It's like: if allowed and not denied, it's authorised.
    //   So, it's disapproval if you have no description at the time of 'mutual-failture'.
    // With 'deny,allow' (allow if not deny), because here it's not deny, we authorise.
}

//--------------------------------
// Access control by IP for ladmin
//--------------------------------
static
bool check_ladminip(IP4Address ip)
{
    if (access_ladmin.empty())
        // When there is no restriction, all IP are authorised.
        return true;

    return std::find_if(access_ladmin.begin(), access_ladmin.end(),
            [&ip](IP4Mask m)
            {
                return m.covers(ip);
            }) != access_ladmin.end();
}

//-----------------------------------------------
// Search an account id
//   (return account pointer or nullptr (if not found))
//-----------------------------------------------
static
AuthData *search_account(AccountName account_name)
{
    for (AuthData& ad : auth_data)
    {
        {
            if (ad.userid == account_name)
                return &ad;
        }
    }

    return nullptr;
}

//--------------------------------------------------------
// Create a string to save the account in the account file
//--------------------------------------------------------
static
FString mmo_auth_tostr(const AuthData *p)
{
    MString str;
    str += STRPRINTF(
            "%d\t"
            "%s\t"
            "%s\t"
            "%s\t"
            "%c\t"
            "%d\t"
            "%d\t"
            "%s\t"
            "%s\t"
            "%lld\t"
            "%s\t"
            "%s\t"
            "%lld\t",
            p->account_id,
            p->userid,
            p->pass,
            p->lastlogin,
            sex_to_char(p->sex),
            p->logincount,
            p->state,
            p->email,
            p->error_message,
            p->connect_until_time,
            p->last_ip,
            p->memo,
            p->ban_until_time);

    for (int i = 0; i < p->account_reg2_num; i++)
        if (p->account_reg2[i].str)
            str += STRPRINTF("%s,%d ",
                    p->account_reg2[i].str, p->account_reg2[i].value);

    return FString(str);
}

static
bool extract(XString line, AuthData *ad)
{
    std::vector<struct global_reg> vars;
    VString<1> sex;
    VString<15> ip;
    if (!extract(line,
                record<'\t'>(
                    &ad->account_id,
                    &ad->userid,
                    &ad->pass,
                    &ad->lastlogin,
                    &sex,
                    &ad->logincount,
                    &ad->state,
                    &ad->email,
                    &ad->error_message,
                    &ad->connect_until_time,
                    &ip,
                    &ad->memo,
                    &ad->ban_until_time,
                    vrec<' '>(&vars))))
        return false;
    ad->last_ip = IP4Address();
    if (ip != "-" && !extract(ip, &ad->last_ip))
        return false;
    if (ad->account_id > END_ACCOUNT_NUM)
        return false;
    // TODO replace *every* lookup with a map lookup
    static std::set<int> seen_ids;
    static std::set<AccountName> seen_names;
    // we don't have to worry about deleted characters,
    // this is only called during startup
    auto _seen_id = seen_ids.insert(ad->account_id);
    if (!_seen_id.second)
        return false;
    auto _seen_name = seen_names.insert(ad->userid);
    if (!_seen_name.second)
    {
        seen_ids.erase(_seen_id.first);
        return false;
    }
    // If a password is not encrypted, we encrypt it now.
    // A password beginning with ! and - in the memo field is our magic
    if (!ad->pass.startswith('!') && ad->memo.startswith('-'))
    {
        XString pass = ad->pass;
        AccountPass plain = stringish<AccountPass>(pass);
        ad->pass = MD5_saltcrypt(plain, make_salt());
        ad->memo = '!';
    }

    if (sex.size() != 1)
        return false;
    ad->sex  = sex_from_char(sex.front());
    if (ad->sex == SEX::ERROR)
        return false;

    if (!e_mail_check(ad->email))
        ad->email = DEFAULT_EMAIL;

    if (!ad->error_message || ad->state != 7)
        // 7, because state is packet 0x006a value + 1
        ad->error_message = stringish<timestamp_seconds_buffer>("-");

    if (vars.size() > ACCOUNT_REG2_NUM)
        return false;
    std::copy(vars.begin(), vars.end(), ad->account_reg2);
    ad->account_reg2_num = vars.size();

    return true;
}

//---------------------------------
// Reading of the accounts database
//---------------------------------
static
int mmo_auth_init(void)
{
    int GM_count = 0;
    int server_count = 0;

    std::ifstream in(account_filename.c_str());
    if (!in.is_open())
    {
        // no account file -> no account -> no login, including char-server (ERROR)
        PRINTF("\033[1;31mmmo_auth_init: Accounts file [%s] not found.\033[0m\n",
             account_filename);
        return 0;
    }

    FString line;
    while (io::getline(in, line))
    {
        if (line.startswith("//"))
            continue;
        if (std::find_if(line.begin(), line.end(),
                    [](unsigned char c) { return c < ' ' && c != '\t'; }
                    ) != line.end())
            continue;

        AuthData ad {};
        if (!extract(line, &ad))
        {
            int i = 0;
            if (SSCANF(line, "%d\t%%newid%%\n%n", &ad.account_id, &i) == 1
                    && i > 0 && ad.account_id > account_id_count)
                account_id_count = ad.account_id;
            else
                LOGIN_LOG("Account skipped\n%s", line);
            continue;
        }

        auth_data.push_back(ad);

        if (isGM(ad.account_id) > 0)
            GM_count++;
        if (ad.sex == SEX::SERVER)
            server_count++;

        if (ad.account_id >= account_id_count)
            account_id_count = ad.account_id + 1;
    }

    FString str = STRPRINTF("%s has %zu accounts (%d GMs, %d servers)\n",
            account_filename, auth_data.size(), GM_count, server_count);
    PRINTF("%s: %s\n", __PRETTY_FUNCTION__, str);
    LOGIN_LOG("%s\n", line);

    return 0;
}

//------------------------------------------
// Writing of the accounts database file
//------------------------------------------
static
void mmo_auth_sync(void)
{
    FILE *fp;
    int lock;

    // Data save
    fp = lock_fopen(account_filename, &lock);
    if (fp == NULL)
        return;
    FPRINTF(fp,
             "// Accounts file: here are saved all information about the accounts.\n");
    FPRINTF(fp,
             "// Structure: ID, account name, password, last login time, sex, # of logins, state, email, error message for state 7, validity time, last (accepted) login ip, memo field, ban timestamp, repeated(register text, register value)\n");
    FPRINTF(fp, "// Some explanations:\n");
    FPRINTF(fp,
             "//   account name    : between 4 to 23 char for a normal account (standard client can't send less than 4 char).\n");
    FPRINTF(fp, "//   account password: between 4 to 23 char\n");
    FPRINTF(fp,
             "//   sex             : M or F for normal accounts, S for server accounts\n");
    FPRINTF(fp,
             "//   state           : 0: account is ok, 1 to 256: error code of packet 0x006a + 1\n");
    FPRINTF(fp,
             "//   email           : between 3 to 39 char (a@a.com is like no email)\n");
    FPRINTF(fp,
             "//   error message   : text for the state 7: 'Your are Prohibited to login until <text>'. Max 19 char\n");
    FPRINTF(fp,
             "//   valitidy time   : 0: unlimited account, <other value>: date calculated by addition of 1/1/1970 + value (number of seconds since the 1/1/1970)\n");
    FPRINTF(fp, "//   memo field      : max 254 char\n");
    FPRINTF(fp,
             "//   ban time        : 0: no ban, <other value>: banned until the date: date calculated by addition of 1/1/1970 + value (number of seconds since the 1/1/1970)\n");
    for (const AuthData& ad : auth_data)
    {
        if (ad.account_id < 0)
            continue;

        FString line = mmo_auth_tostr(&ad);
        FPRINTF(fp, "%s\n", line);
    }
    FPRINTF(fp, "%d\t%%newid%%\n", account_id_count);

    lock_fclose(fp, account_filename, &lock);

    return;
}

// We want to sync the DB to disk as little as possible as it's fairly
// resource intensive. therefore most player-triggerable events that
// update the account DB will not immideately trigger a save. Instead
// we save periodicly on a timer.
//-----------------------------------------------------
static
void check_auth_sync(TimerData *, tick_t)
{
    if (pid != 0)
    {
        int status;
        pid_t temp = waitpid(pid, &status, WNOHANG);

        // Need to check status too?
        if (temp == 0)
        {
            return;
        }
    }

    // This can take a lot of time. Fork a child to handle the work and return at once
    // If we're unable to fork just continue running the function normally
    if ((pid = fork()) > 0)
        return;

    mmo_auth_sync();

    // If we're a child we should suicide now.
    if (pid == 0)
        _exit(0);

    return;
}

//--------------------------------------------------------------------
// Packet send to all char-servers, except one (wos: without our self)
//--------------------------------------------------------------------
static
void charif_sendallwos(int sfd, const uint8_t *buf, size_t len)
{
    for (int i = 0; i < MAX_SERVERS; i++)
    {
        int fd = server_fd[i];
        if (fd >= 0 && fd != sfd)
        {
            WFIFO_BUF_CLONE(fd, buf, len);
            WFIFOSET(fd, len);
        }
    }
}

//-----------------------------------------------------
// Send GM accounts to all char-server
//-----------------------------------------------------
static
void send_GM_accounts(void)
{
    uint8_t buf[32000];
    int len;

    len = 4;
    WBUFW(buf, 0) = 0x2732;
    for (const AuthData& ad : auth_data)
        // send only existing accounts. We can not create a GM account when server is online.
        if (uint8_t GM_value = isGM(ad.account_id))
        {
            WBUFL(buf, len) = ad.account_id;
            WBUFB(buf, len + 4) = GM_value;
            len += 5;
        }
    WBUFW(buf, 2) = len;
    charif_sendallwos(-1, buf, len);
}

//-----------------------------------------------------
// Check if GM file account have been changed
//-----------------------------------------------------
static
void check_GM_file(TimerData *, tick_t)
{
    // if we would not check
    if (gm_account_filename_check_timer == interval_t::zero())
        return;

    // get last modify time/date
    tick_t new_time = file_modified(gm_account_filename);

    if (new_time != creation_time_GM_account_file)
    {
        read_gm_account();
        send_GM_accounts();
    }
}

//-------------------------------------
// Account creation (with e-mail check)
//-------------------------------------
static
int mmo_auth_new(struct mmo_account *account, SEX sex, AccountEmail email)
{
    while (isGM(account_id_count) > 0)
        account_id_count++;

    struct AuthData ad {};
    ad.account_id = account_id_count++;

    ad.userid = account->userid;
    ad.pass = MD5_saltcrypt(account->passwd, make_salt());
    ad.lastlogin = stringish<timestamp_milliseconds_buffer>("-");
    ad.sex = sex;
    ad.logincount = 0;
    ad.state = 0;

    if (!e_mail_check(email))
        ad.email = DEFAULT_EMAIL;
    else
        ad.email = email;

    ad.error_message = stringish<timestamp_seconds_buffer>("-");
    ad.ban_until_time = TimeT();

    if (start_limited_time < 0)
        ad.connect_until_time = TimeT(); // unlimited
    else
    {
        // limited time
        TimeT timestamp = static_cast<time_t>(TimeT::now()) + start_limited_time;
        // there used to be a silly overflow check here, but it wasn't
        // correct, and we don't support time-limited accounts.
        ad.connect_until_time = timestamp;
    }

    ad.last_ip = IP4Address();
    ad.memo = "!";
    ad.account_reg2_num = 0;
    auth_data.push_back(ad);

    return ad.account_id;
}

//---------------------------------------
// Check/authentification of a connection
//---------------------------------------
static
int mmo_auth(struct mmo_account *account, int fd)
{
    char new_account_sex = '\0';

    IP4Address ip = session[fd]->client_ip;

    // Account creation with _M/_F
    if (account->passwdenc == 0
        && (account->userid.endswith("_F") || account->userid.endswith("_M"))
        && new_account == 1 && account_id_count <= END_ACCOUNT_NUM
        && (account->userid.size() - 2) >= 4 && account->passwd.size() >= 4)
    {
        new_account_sex = account->userid.back();
        account->userid = stringish<AccountName>(account->userid.xrslice_h(2));
    }

    // Strict account search
    AuthData *ad = search_account(account->userid);

    if (ad)
    {
        int encpasswdok = 0;
        if (new_account_sex)
        {
            LOGIN_LOG("Attempt of creation of an already existant account (account: %s_%c, ip: %s)\n",
                 account->userid, new_account_sex, ip);
            return 9;           // 9 = Account already exists
        }
        if ((!pass_ok(account->passwd, ad->pass)) && !encpasswdok)
        {
            if (account->passwdenc == 0)
                LOGIN_LOG("Invalid password (account: %s, ip: %s)\n",
                     account->userid, ip);

            return 1;           // 1 = Incorrect Password
        }

        if (ad->state)
        {
            LOGIN_LOG("Connection refused (account: %s, state: %d, ip: %s)\n",
                 account->userid, ad->state,
                 ip);
            switch (ad->state)
            {                   // packet 0x006a value + 1
                case 1:        // 0 = Unregistered ID
                case 2:        // 1 = Incorrect Password
                case 3:        // 2 = This ID is expired
                case 4:        // 3 = Rejected from Server
                case 5:        // 4 = You have been blocked by the GM Team
                case 6:        // 5 = Your Game's EXE file is not the latest version
                case 7:        // 6 = Your are Prohibited to log in until %s
                case 8:        // 7 = Server is jammed due to over populated
                case 9:        // 8 = No MSG (actually, all states after 9 except 99 are No MSG, use only this)
                case 100:      // 99 = This ID has been totally erased
                    return ad->state - 1;
                default:
                    return 99;  // 99 = ID has been totally erased
            }
        }

        if (ad->ban_until_time)
        {
            // if account is banned
            timestamp_seconds_buffer tmpstr;
            stamp_time(tmpstr, &ad->ban_until_time);
            if (ad->ban_until_time > TimeT::now())
            {
                // always banned
                LOGIN_LOG("Connection refused (account: %s, banned until %s, ip: %s)\n",
                     account->userid, tmpstr, ip);
                return 6;       // 6 = Your are Prohibited to log in until %s
            }
            else
            {
                // ban is finished
                LOGIN_LOG("End of ban (account: %s, previously banned until %s -> not more banned, ip: %s)\n",
                     account->userid, tmpstr, ip);
                ad->ban_until_time = TimeT(); // reset the ban time
            }
        }

        if (ad->connect_until_time
            && ad->connect_until_time < TimeT::now())
        {
            LOGIN_LOG("Connection refused (account: %s, expired ID, ip: %s)\n",
                 account->userid, ip);
            return 2;           // 2 = This ID is expired
        }

        LOGIN_LOG("Authentification accepted (account: %s (id: %d), ip: %s)\n",
                   account->userid, ad->account_id, ip);
    }
    else
    {
        if (new_account_sex == '\0')
        {
            LOGIN_LOG("Unknown account (account: %s, ip: %s)\n",
                 account->userid, ip);
            return 0;           // 0 = Unregistered ID
        }
        else
        {
            int new_id = mmo_auth_new(account, sex_from_char(new_account_sex), DEFAULT_EMAIL);
            LOGIN_LOG("Account creation and authentification accepted (account %s (id: %d), sex: %c, connection with _F/_M, ip: %s)\n",
                 account->userid, new_id,
                 new_account_sex, ip);
            ad = &auth_data.back();
        }
    }

    timestamp_milliseconds_buffer tmpstr;
    stamp_time(tmpstr);

    account->account_id = ad->account_id;
    account->login_id1 = random_::generate();
    account->login_id2 = random_::generate();
    account->lastlogin = ad->lastlogin;
    ad->lastlogin = tmpstr;
    account->sex = ad->sex;
    ad->last_ip = ip;
    ad->logincount++;

    return -1;                  // account OK
}

//-------------------------------
// Char-server anti-freeze system
//-------------------------------
static
void char_anti_freeze_system(TimerData *, tick_t)
{
    int i;

    //PRINTF("Entering in char_anti_freeze_system function to check freeze of servers.\n");
    for (i = 0; i < MAX_SERVERS; i++)
    {
        if (server_fd[i] >= 0)
        {                       // if char-server is online
            //PRINTF("char_anti_freeze_system: server #%d '%s', flag: %d.\n", i, server[i].name, server_freezeflag[i]);
            if (server_freezeflag[i]-- < 1)
            {                   // Char-server anti-freeze system. Counter. 5 ok, 4...0 freezed
                PRINTF("Char-server anti-freeze system: char-server #%d '%s' is freezed -> disconnection.\n",
                     i, server[i].name);
                LOGIN_LOG("Char-server anti-freeze system: char-server #%d '%s' is freezed -> disconnection.\n",
                     i, server[i].name);
                session[server_fd[i]]->eof = 1;
            }
        }
    }
}

//--------------------------------
// Packet parsing for char-servers
//--------------------------------
static
void parse_fromchar(int fd)
{
    IP4Address ip = session[fd]->client_ip;

    int id;
    for (id = 0; id < MAX_SERVERS; id++)
        if (server_fd[id] == fd)
            break;
    if (id == MAX_SERVERS || session[fd]->eof)
    {
        if (id < MAX_SERVERS)
        {
            PRINTF("Char-server '%s' has disconnected.\n", server[id].name);
            LOGIN_LOG("Char-server '%s' has disconnected (ip: %s).\n",
                       server[id].name, ip);
            server_fd[id] = -1;
            server[id] = mmo_char_server{};
        }
        delete_session(fd);
        return;
    }

    while (RFIFOREST(fd) >= 2)
    {
        if (display_parse_fromchar == 2 || (display_parse_fromchar == 1 && RFIFOW(fd, 0) != 0x2714))   // 0x2714 is done very often (number of players)
            PRINTF("parse_fromchar: connection #%d, packet: 0x%x (with being read: %zu bytes).\n",
                 fd, RFIFOW(fd, 0), RFIFOREST(fd));

        switch (RFIFOW(fd, 0))
        {
                // request from map-server via char-server to reload GM accounts (by Yor).
            case 0x2709:
                LOGIN_LOG("Char-server '%s': Request to re-load GM configuration file (ip: %s).\n",
                     server[id].name, ip);
                read_gm_account();
                // send GM accounts to all char-servers
                send_GM_accounts();
                RFIFOSKIP(fd, 2);
                break;

            case 0x2712:       // request from char-server to authentify an account
                if (RFIFOREST(fd) < 19)
                    return;
                {
                    int acc = RFIFOL(fd, 2);
                    int i;
                    for (i = 0; i < AUTH_FIFO_SIZE; i++)
                    {
                        if (auth_fifo[i].account_id == acc &&
                            auth_fifo[i].login_id1 == RFIFOL(fd, 6) &&
                            auth_fifo[i].login_id2 == RFIFOL(fd, 10) &&    // relate to the versions higher than 18
                            auth_fifo[i].sex == static_cast<SEX>(RFIFOB(fd, 14)) &&
                            (!check_ip_flag
                             || auth_fifo[i].ip == RFIFOIP(fd, 15))
                            && !auth_fifo[i].delflag)
                        {
                            int p;
                            auth_fifo[i].delflag = 1;
                            LOGIN_LOG("Char-server '%s': authentification of the account %d accepted (ip: %s).\n",
                                 server[id].name, acc, ip);
                            for (const AuthData& ad : auth_data)
                            {
                                if (ad.account_id == acc)
                                {
                                    WFIFOW(fd, 0) = 0x2729;    // Sending of the account_reg2
                                    WFIFOL(fd, 4) = acc;
                                    int j;
                                    for (p = 8, j = 0;
                                         j < ad.account_reg2_num;
                                         p += 36, j++)
                                    {
                                        WFIFO_STRING(fd, p, ad.account_reg2[j].str, 32);
                                        WFIFOL(fd, p + 32) = ad.account_reg2[j].value;
                                    }
                                    WFIFOW(fd, 2) = p;
                                    WFIFOSET(fd, p);
//                          PRINTF("parse_fromchar: Sending of account_reg2: login->char (auth fifo)\n");
                                    WFIFOW(fd, 0) = 0x2713;
                                    WFIFOL(fd, 2) = acc;
                                    WFIFOB(fd, 6) = 0;
                                    WFIFO_STRING(fd, 7, ad.email, 40);
                                    WFIFOL(fd, 47) = static_cast<time_t>(ad.connect_until_time);
                                    WFIFOSET(fd, 51);
                                    break;
                                }
                            }
                            break;
                        }
                    }
                    // authentification not found
                    if (i == AUTH_FIFO_SIZE)
                    {
                        LOGIN_LOG("Char-server '%s': authentification of the account %d REFUSED (ip: %s).\n",
                             server[id].name, acc, ip);
                        WFIFOW(fd, 0) = 0x2713;
                        WFIFOL(fd, 2) = acc;
                        WFIFOB(fd, 6) = 1;
                        // It is unnecessary to send email
                        // It is unnecessary to send validity date of the account
                        WFIFOSET(fd, 51);
                    }
                }
                RFIFOSKIP(fd, 19);
                break;

            case 0x2714:
                if (RFIFOREST(fd) < 6)
                    return;
                //PRINTF("parse_fromchar: Receiving of the users number of the server '%s': %d\n", server[id].name, RFIFOL(fd,2));
                server[id].users = RFIFOL(fd, 2);
                if (anti_freeze_enable)
                    server_freezeflag[id] = 5;  // Char anti-freeze system. Counter. 5 ok, 4...0 freezed
                RFIFOSKIP(fd, 6);
                break;

                // we receive a e-mail creation of an account with a default e-mail (no answer)
            case 0x2715:
                if (RFIFOREST(fd) < 46)
                    return;
            {
                int acc = RFIFOL(fd, 2);
                AccountEmail email = stringish<AccountEmail>(RFIFO_STRING<40>(fd, 6));
                if (!e_mail_check(email))
                    LOGIN_LOG("Char-server '%s': Attempt to create an e-mail on an account with a default e-mail REFUSED - e-mail is invalid (account: %d, ip: %s)\n",
                         server[id].name, acc, ip);
                else
                {
                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc
                            && (ad.email == DEFAULT_EMAIL || !ad.email))
                        {
                            ad.email = email;
                            LOGIN_LOG("Char-server '%s': Create an e-mail on an account with a default e-mail (account: %d, new e-mail: %s, ip: %s).\n",
                                 server[id].name, acc, email, ip);
                            goto x2715_out;
                        }
                    }
                    LOGIN_LOG("Char-server '%s': Attempt to create an e-mail on an account with a default e-mail REFUSED - account doesn't exist or e-mail of account isn't default e-mail (account: %d, ip: %s).\n",
                            server[id].name, acc, ip);
                }
            x2715_out:
                RFIFOSKIP(fd, 46);
                break;

                // We receive an e-mail/limited time request, because a player comes back from a map-server to the char-server
            }
            case 0x2716:
                if (RFIFOREST(fd) < 6)
                    return;
            {
                int account_id = RFIFOL(fd, 2);
                //PRINTF("parse_fromchar: E-mail/limited time request from '%s' server (concerned account: %d)\n", server[id].name, RFIFOL(fd,2));
                for (const AuthData& ad : auth_data)
                {
                    if (ad.account_id == account_id)
                    {
                        LOGIN_LOG("Char-server '%s': e-mail of the account %d found (ip: %s).\n",
                                server[id].name, account_id, ip);
                        WFIFOW(fd, 0) = 0x2717;
                        WFIFOL(fd, 2) = account_id;
                        WFIFO_STRING(fd, 6, ad.email, 40);
                        WFIFOL(fd, 46) = static_cast<time_t>(ad.connect_until_time);
                        WFIFOSET(fd, 50);
                        goto x2716_end;
                    }
                }
                LOGIN_LOG("Char-server '%s': e-mail of the account %d NOT found (ip: %s).\n",
                        server[id].name, account_id, ip);
            }
            x2716_end:
                RFIFOSKIP(fd, 6);
                break;

            case 0x2720:       // To become GM request
                if (RFIFOREST(fd) < 4 || RFIFOREST(fd) < RFIFOW(fd, 2))
                    return;
                {
                    int acc;
                    unsigned char buf[10];
                    FILE *fp;
                    acc = RFIFOL(fd, 4);
                    //PRINTF("parse_fromchar: Request to become a GM acount from %d account.\n", acc);
                    WBUFW(buf, 0) = 0x2721;
                    WBUFL(buf, 2) = acc;
                    WBUFL(buf, 6) = 0;
                    size_t len = RFIFOW(fd, 2) - 8;
                    FString pass = RFIFO_STRING(fd, 8, len);

                    if (pass == gm_pass)
                    {
                        // only non-GM can become GM
                        if (isGM(acc) == 0)
                        {
                            // if we autorise creation
                            if (level_new_gm > 0)
                            {
                                // if we can open the file to add the new GM
                                if ((fp = fopen(gm_account_filename.c_str(), "a")) != NULL)
                                {
                                    timestamp_seconds_buffer tmpstr;
                                    stamp_time(tmpstr);
                                    FPRINTF(fp,
                                             "\n// %s: @GM command on account %d\n%d %d\n",
                                             tmpstr,
                                             acc, acc, level_new_gm);
                                    fclose(fp);
                                    WBUFL(buf, 6) = level_new_gm;
                                    read_gm_account();
                                    send_GM_accounts();
                                    PRINTF("GM Change of the account %d: level 0 -> %d.\n",
                                         acc, level_new_gm);
                                    LOGIN_LOG("Char-server '%s': GM Change of the account %d: level 0 -> %d (ip: %s).\n",
                                         server[id].name, acc,
                                         level_new_gm, ip);
                                }
                                else
                                {
                                    PRINTF("Error of GM change (suggested account: %d, correct password, unable to add a GM account in GM accounts file)\n",
                                         acc);
                                    LOGIN_LOG("Char-server '%s': Error of GM change (suggested account: %d, correct password, unable to add a GM account in GM accounts file, ip: %s).\n",
                                         server[id].name, acc, ip);
                                }
                            }
                            else
                            {
                                PRINTF("Error of GM change (suggested account: %d, correct password, but GM creation is disable (level_new_gm = 0))\n",
                                     acc);
                                LOGIN_LOG("Char-server '%s': Error of GM change (suggested account: %d, correct password, but GM creation is disable (level_new_gm = 0), ip: %s).\n",
                                     server[id].name, acc, ip);
                            }
                        }
                        else
                        {
                            PRINTF("Error of GM change (suggested account: %d (already GM), correct password).\n",
                                 acc);
                            LOGIN_LOG("Char-server '%s': Error of GM change (suggested account: %d (already GM), correct password, ip: %s).\n",
                                 server[id].name, acc, ip);
                        }
                    }
                    else
                    {
                        PRINTF("Error of GM change (suggested account: %d, invalid password).\n",
                             acc);
                        LOGIN_LOG("Char-server '%s': Error of GM change (suggested account: %d, invalid password, ip: %s).\n",
                             server[id].name, acc, ip);
                    }
                    charif_sendallwos(-1, buf, 10);
                }
                RFIFOSKIP(fd, RFIFOW(fd, 2));
                return;

                // Map server send information to change an email of an account via char-server
            case 0x2722:       // 0x2722 <account_id>.L <actual_e-mail>.40B <new_e-mail>.40B
                if (RFIFOREST(fd) < 86)
                    return;
                {
                    int acc = RFIFOL(fd, 2);
                    AccountEmail actual_email = stringish<AccountEmail>(RFIFO_STRING<40>(fd, 6).to_print());
                    AccountEmail new_email = stringish<AccountEmail>(RFIFO_STRING<40>(fd, 46));
                    if (!e_mail_check(actual_email))
                        LOGIN_LOG("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command), but actual email is invalid (account: %d, ip: %s)\n",
                             server[id].name, acc, ip);
                    else if (!e_mail_check(new_email))
                        LOGIN_LOG("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command) with a invalid new e-mail (account: %d, ip: %s)\n",
                             server[id].name, acc, ip);
                    else if (new_email == DEFAULT_EMAIL)
                        LOGIN_LOG("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command) with a default e-mail (account: %d, ip: %s)\n",
                             server[id].name, acc, ip);
                    else
                    {
                        for (AuthData& ad : auth_data)
                        {
                            if (ad.account_id == acc)
                            {
                                if (ad.email == actual_email)
                                {
                                    ad.email = new_email;
                                    LOGIN_LOG("Char-server '%s': Modify an e-mail on an account (@email GM command) (account: %d (%s), new e-mail: %s, ip: %s).\n",
                                         server[id].name, acc,
                                         ad.userid, new_email, ip);
                                }
                                else
                                    LOGIN_LOG("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command), but actual e-mail is incorrect (account: %d (%s), actual e-mail: %s, proposed e-mail: %s, ip: %s).\n",
                                         server[id].name, acc,
                                         ad.userid,
                                         ad.email, actual_email, ip);
                                goto x2722_out;
                            }
                        }
                        LOGIN_LOG("Char-server '%s': Attempt to modify an e-mail on an account (@email GM command), but account doesn't exist (account: %d, ip: %s).\n",
                                server[id].name, acc, ip);
                    }
                }
            x2722_out:
                RFIFOSKIP(fd, 86);
                break;

                // Receiving of map-server via char-server a status change resquest (by Yor)
            case 0x2724:
                if (RFIFOREST(fd) < 10)
                    return;
                {
                    int acc, statut;
                    acc = RFIFOL(fd, 2);
                    statut = RFIFOL(fd, 6);
                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc)
                        {
                            if (ad.state != statut)
                            {
                                LOGIN_LOG("Char-server '%s': Status change (account: %d, new status %d, ip: %s).\n",
                                     server[id].name, acc, statut,
                                     ip);
                                if (statut != 0)
                                {
                                    unsigned char buf[16];
                                    WBUFW(buf, 0) = 0x2731;
                                    WBUFL(buf, 2) = acc;
                                    WBUFB(buf, 6) = 0; // 0: change of statut, 1: ban
                                    WBUFL(buf, 7) = statut;    // status or final date of a banishment
                                    charif_sendallwos(-1, buf, 11);
                                    for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                        if (auth_fifo[j].account_id == acc)
                                            auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                                }
                                ad.state = statut;
                            }
                            else
                                LOGIN_LOG("Char-server '%s':  Error of Status change - actual status is already the good status (account: %d, status %d, ip: %s).\n",
                                     server[id].name, acc, statut,
                                     ip);
                            goto x2724_out;
                        }
                    }
                    LOGIN_LOG("Char-server '%s': Error of Status change (account: %d not found, suggested status %d, ip: %s).\n",
                            server[id].name, acc, statut, ip);
                x2724_out:
                    RFIFOSKIP(fd, 10);
                }
                return;

            case 0x2725:       // Receiving of map-server via char-server a ban resquest (by Yor)
                if (RFIFOREST(fd) < 18)
                    return;
                {
                    int acc;
                    acc = RFIFOL(fd, 2);
                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc)
                        {
                            TimeT now = TimeT::now();
                            TimeT timestamp;
                            if (!ad.ban_until_time
                                || ad.ban_until_time < now)
                                timestamp = now;
                            else
                                timestamp = ad.ban_until_time;
                            struct tm tmtime = timestamp;
                            HumanTimeDiff ban_diff;
                            RFIFO_STRUCT(fd, 6, ban_diff);
                            tmtime.tm_year += ban_diff.year;
                            tmtime.tm_mon += ban_diff.month;
                            tmtime.tm_mday += ban_diff.day;
                            tmtime.tm_hour += ban_diff.hour;
                            tmtime.tm_min += ban_diff.minute;
                            tmtime.tm_sec += ban_diff.second;
                            timestamp = tmtime;
                            if (timestamp.okay())
                            {
                                if (timestamp <= now)
                                    timestamp = TimeT();
                                if (ad.ban_until_time != timestamp)
                                {
                                    if (timestamp)
                                    {
                                        unsigned char buf[16];
                                        timestamp_seconds_buffer tmpstr;
                                        if (timestamp)
                                            stamp_time(tmpstr, &timestamp);
                                        LOGIN_LOG("Char-server '%s': Ban request (account: %d, new final date of banishment: %lld (%s), ip: %s).\n",
                                                server[id].name, acc,
                                                timestamp,
                                                tmpstr,
                                                ip);
                                        WBUFW(buf, 0) = 0x2731;
                                        WBUFL(buf, 2) = ad.account_id;
                                        WBUFB(buf, 6) = 1; // 0: change of statut, 1: ban
                                        WBUFL(buf, 7) = static_cast<time_t>(timestamp); // status or final date of a banishment
                                        charif_sendallwos(-1, buf, 11);
                                        for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                            if (auth_fifo[j].account_id ==
                                                acc)
                                                auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                                    }
                                    else
                                    {
                                        LOGIN_LOG("Char-server '%s': Error of ban request (account: %d, new date unbans the account, ip: %s).\n",
                                             server[id].name, acc,
                                             ip);
                                    }
                                    ad.ban_until_time = timestamp;
                                }
                                else
                                {
                                    LOGIN_LOG("Char-server '%s': Error of ban request (account: %d, no change for ban date, ip: %s).\n",
                                         server[id].name, acc, ip);
                                }
                            }
                            else
                            {
                                LOGIN_LOG("Char-server '%s': Error of ban request (account: %d, invalid date, ip: %s).\n",
                                     server[id].name, acc, ip);
                            }
                            goto x2725_out;
                        }
                    }
                    LOGIN_LOG("Char-server '%s': Error of ban request (account: %d not found, ip: %s).\n",
                            server[id].name, acc, ip);
                x2725_out:
                    RFIFOSKIP(fd, 18);
                }
                return;

            case 0x2727:       // Change of sex (sex is reversed)
                if (RFIFOREST(fd) < 6)
                    return;
                {
                    int acc;
                    acc = RFIFOL(fd, 2);
                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc)
                        {
                            if (ad.sex == SEX::SERVER)
                                LOGIN_LOG("Char-server '%s': Error of sex change - Server account (suggested account: %d, actual sex %d (Server), ip: %s).\n",
                                     server[id].name, acc,
                                     ad.sex, ip);
                            else
                            {
                                unsigned char buf[16];
                                SEX sex;
                                if (ad.sex == SEX::FEMALE)
                                    sex = SEX::MALE;
                                else
                                    sex = SEX::FEMALE;
                                LOGIN_LOG("Char-server '%s': Sex change (account: %d, new sex %c, ip: %s).\n",
                                     server[id].name, acc,
                                     sex_to_char(sex),
                                     ip);
                                for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                    if (auth_fifo[j].account_id == acc)
                                        auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                                ad.sex = sex;
                                WBUFW(buf, 0) = 0x2723;
                                WBUFL(buf, 2) = acc;
                                WBUFB(buf, 6) = static_cast<uint8_t>(sex);
                                charif_sendallwos(-1, buf, 7);
                            }
                            goto x2727_out;
                        }
                    }
                    LOGIN_LOG("Char-server '%s': Error of sex change (account: %d not found, sex would be reversed, ip: %s).\n",
                            server[id].name, acc, ip);
                x2727_out:
                    RFIFOSKIP(fd, 6);
                }
                return;

            case 0x2728:       // We receive account_reg2 from a char-server, and we send them to other char-servers.
                if (RFIFOREST(fd) < 4 || RFIFOREST(fd) < RFIFOW(fd, 2))
                    return;
                {
                    int acc, p;
                    acc = RFIFOL(fd, 4);
                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc)
                        {
                            LOGIN_LOG("Char-server '%s': receiving (from the char-server) of account_reg2 (account: %d, ip: %s).\n",
                                 server[id].name, acc, ip);
                            size_t len = RFIFOW(fd, 2);
                            int j;
                            for (p = 8, j = 0;
                                 p < len && j < ACCOUNT_REG2_NUM;
                                 p += 36, j++)
                            {
                                ad.account_reg2[j].str = stringish<VarName>(RFIFO_STRING<32>(fd, p).to_print());
                                ad.account_reg2[j].value = RFIFOL(fd, p + 32);
                            }
                            ad.account_reg2_num = j;
                            // Sending information towards the other char-servers.
                            uint8_t buf[len];
                            RFIFO_BUF_CLONE(fd, buf, len);
                            WBUFW(buf, 0) = 0x2729;
                            charif_sendallwos(fd, buf, WBUFW(buf, 2));
//                      PRINTF("parse_fromchar: receiving (from the char-server) of account_reg2 (account id: %d).\n", acc);
                            goto x2728_out;
                        }
                    }
                    LOGIN_LOG("Char-server '%s': receiving (from the char-server) of account_reg2 (account: %d not found, ip: %s).\n",
                            server[id].name, acc, ip);
                }
            x2728_out:
                RFIFOSKIP(fd, RFIFOW(fd, 2));
                break;

            case 0x272a:       // Receiving of map-server via char-server a unban resquest (by Yor)
                if (RFIFOREST(fd) < 6)
                    return;
                {
                    int acc = RFIFOL(fd, 2);
                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc)
                        {
                            if (ad.ban_until_time)
                            {
                                ad.ban_until_time = TimeT();
                                LOGIN_LOG("Char-server '%s': UnBan request (account: %d, ip: %s).\n",
                                     server[id].name, acc, ip);
                            }
                            else
                            {
                                LOGIN_LOG("Char-server '%s': Error of UnBan request (account: %d, no change for unban date, ip: %s).\n",
                                     server[id].name, acc, ip);
                            }
                            goto x272a_out;
                        }
                    }
                    LOGIN_LOG("Char-server '%s': Error of UnBan request (account: %d not found, ip: %s).\n",
                            server[id].name, acc, ip);
                x272a_out:
                    RFIFOSKIP(fd, 6);
                }
                return;

                // request from char-server to change account password
            case 0x2740:       // 0x2740 <account_id>.L <actual_password>.24B <new_password>.24B
                if (RFIFOREST(fd) < 54)
                    return;
                {
                    int acc = RFIFOL(fd, 2);
                    AccountPass actual_pass = stringish<AccountPass>(RFIFO_STRING<24>(fd, 6).to_print());
                    AccountPass new_pass = stringish<AccountPass>(RFIFO_STRING<24>(fd, 30).to_print());

                    int status = 0;

                    for (AuthData& ad : auth_data)
                    {
                        if (ad.account_id == acc)
                        {
                            if (pass_ok(actual_pass, ad.pass))
                            {
                                if (new_pass.size() < 4)
                                    status = 3;
                                else
                                {
                                    status = 1;
                                    ad.pass = MD5_saltcrypt(new_pass, make_salt());
                                    LOGIN_LOG("Char-server '%s': Change pass success (account: %d (%s), ip: %s.\n",
                                         server[id].name, acc,
                                         ad.userid, ip);
                                }
                            }
                            else
                            {
                                status = 2;
                                LOGIN_LOG("Char-server '%s': Attempt to modify a pass failed, wrong password. (account: %d (%s), ip: %s).\n",
                                     server[id].name, acc,
                                     ad.userid, ip);
                            }
                            goto x2740_out;
                        }
                    }
                x2740_out:
                    WFIFOW(fd, 0) = 0x2741;
                    WFIFOL(fd, 2) = acc;
                    WFIFOB(fd, 6) = status;    // 0: acc not found, 1: success, 2: password mismatch, 3: pass too short
                    WFIFOSET(fd, 7);
                }

                RFIFOSKIP(fd, 54);
                break;

            default:
            {
                FILE *logfp = fopen(login_log_unknown_packets_filename.c_str(), "a");
                if (logfp)
                {
                    timestamp_milliseconds_buffer timestr;
                    stamp_time(timestr);
                    FPRINTF(logfp,
                             "%s: receiving of an unknown packet -> disconnection\n",
                             timestr);
                    FPRINTF(logfp,
                             "parse_fromchar: connection #%d (ip: %s), packet: 0x%x (with being read: %zu).\n",
                             fd, ip, RFIFOW(fd, 0), RFIFOREST(fd));
                    FPRINTF(logfp, "Detail (in hex):\n");
                    FPRINTF(logfp,
                             "---- 00-01-02-03-04-05-06-07  08-09-0A-0B-0C-0D-0E-0F\n");
                    char tmpstr[16 + 1] {};
                    int i;
                    for (i = 0; i < RFIFOREST(fd); i++)
                    {
                        if ((i & 15) == 0)
                            FPRINTF(logfp, "%04X ", i);
                        FPRINTF(logfp, "%02x ", RFIFOB(fd, i));
                        if (RFIFOB(fd, i) > 0x1f)
                            tmpstr[i % 16] = RFIFOB(fd, i);
                        else
                            tmpstr[i % 16] = '.';
                        if ((i - 7) % 16 == 0)  // -8 + 1
                            FPRINTF(logfp, " ");
                        else if ((i + 1) % 16 == 0)
                        {
                            FPRINTF(logfp, " %s\n", tmpstr);
                            std::fill(tmpstr + 0, tmpstr + 17, '\0');
                        }
                    }
                    if (i % 16 != 0)
                    {
                        for (int j = i; j % 16 != 0; j++)
                        {
                            FPRINTF(logfp, "   ");
                            if ((j - 7) % 16 == 0)  // -8 + 1
                                FPRINTF(logfp, " ");
                        }
                        FPRINTF(logfp, " %s\n", tmpstr);
                    }
                    FPRINTF(logfp, "\n");
                    fclose(logfp);
                }
            }
                PRINTF("parse_fromchar: Unknown packet 0x%x (from a char-server)! -> disconnection.\n",
                     RFIFOW(fd, 0));
                session[fd]->eof = 1;
                PRINTF("Char-server has been disconnected (unknown packet).\n");
                return;
        }
    }
    return;
}

//---------------------------------------
// Packet parsing for administation login
//---------------------------------------
static
void parse_admin(int fd)
{
    IP4Address ip = session[fd]->client_ip;

    if (session[fd]->eof)
    {
        delete_session(fd);
        PRINTF("Remote administration has disconnected (session #%d).\n",
                fd);
        return;
    }

    while (RFIFOREST(fd) >= 2)
    {
        if (display_parse_admin == 1)
            PRINTF("parse_admin: connection #%d, packet: 0x%x (with being read: %zu).\n",
                 fd, RFIFOW(fd, 0), RFIFOREST(fd));

        switch (RFIFOW(fd, 0))
        {
            case 0x7530:       // Request of the server version
                LOGIN_LOG("'ladmin': Sending of the server version (ip: %s)\n",
                           ip);
                WFIFOW(fd, 0) = 0x7531;
                WFIFO_STRUCT(fd, 2, CURRENT_LOGIN_SERVER_VERSION);
                WFIFOSET(fd, 10);
                RFIFOSKIP(fd, 2);
                break;

            case 0x7532:       // Request of end of connection
                LOGIN_LOG("'ladmin': End of connection (ip: %s)\n",
                           ip);
                RFIFOSKIP(fd, 2);
                session[fd]->eof = 1;
                break;

            case 0x7920:       // Request of an accounts list
                if (RFIFOREST(fd) < 10)
                    return;
                {
                    int st, ed, len;
                    st = RFIFOL(fd, 2);
                    ed = RFIFOL(fd, 6);
                    RFIFOSKIP(fd, 10);
                    WFIFOW(fd, 0) = 0x7921;
                    if (st < 0)
                        st = 0;
                    if (ed > END_ACCOUNT_NUM || ed < st || ed <= 0)
                        ed = END_ACCOUNT_NUM;
                    LOGIN_LOG("'ladmin': Sending an accounts list (ask: from %d to %d, ip: %s)\n",
                         st, ed, ip);
                    // Sending accounts information
                    len = 4;
                    for (const AuthData& ad : auth_data)
                    {
                        if (len >= 30000)
                            break;
                        int account_id = ad.account_id;
                        if (account_id >= st && account_id <= ed)
                        {
                            WFIFOL(fd, len) = account_id;
                            WFIFOB(fd, len + 4) = isGM(account_id);
                            WFIFO_STRING(fd, len + 5, ad.userid, 24);
                            WFIFOB(fd, len + 29) = static_cast<uint8_t>(ad.sex);
                            WFIFOL(fd, len + 30) = ad.logincount;
                            if (ad.state == 0 && ad.ban_until_time)  // if no state and banished
                                WFIFOL(fd, len + 34) = 7;  // 6 = Your are Prohibited to log in until %s
                            else
                                WFIFOL(fd, len + 34) = ad.state;
                            len += 38;
                        }
                    }
                    WFIFOW(fd, 2) = len;
                    WFIFOSET(fd, len);
                }
                break;

            case 0x7924:
            {                   // [Fate] Itemfrob package: change item IDs
                if (RFIFOREST(fd) < 10)
                    return;
                uint8_t buf[10];
                RFIFO_BUF_CLONE(fd, buf, 10);
                // forward package to char servers
                charif_sendallwos(-1, buf, 10);
                RFIFOSKIP(fd, 10);
                WFIFOW(fd, 0) = 0x7925;
                WFIFOSET(fd, 2);
                break;
            }

            case 0x7930:       // Request for an account creation
                if (RFIFOREST(fd) < 91)
                    return;
                {
                    struct mmo_account ma;
                    ma.userid = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    ma.passwd = stringish<AccountPass>(RFIFO_STRING<24>(fd, 26).to_print());
                    ma.lastlogin = stringish<timestamp_milliseconds_buffer>("-");
                    ma.sex = sex_from_char(RFIFOB(fd, 50));
                    WFIFOW(fd, 0) = 0x7931;
                    WFIFOL(fd, 2) = -1;
                    WFIFO_STRING(fd, 6, ma.userid, 24);
                    if (ma.userid.size() < 4 || ma.passwd.size() < 4)
                    {
                        LOGIN_LOG("'ladmin': Attempt to create an invalid account (account or pass is too short, ip: %s)\n",
                             ip);
                    }
                    else if (ma.sex != SEX::FEMALE && ma.sex != SEX::MALE)
                    {
                        LOGIN_LOG("'ladmin': Attempt to create an invalid account (account: %s, invalid sex, ip: %s)\n",
                             ma.userid, ip);
                    }
                    else if (account_id_count > END_ACCOUNT_NUM)
                    {
                        LOGIN_LOG("'ladmin': Attempt to create an account, but there is no more available id number (account: %s, sex: %c, ip: %s)\n",
                             ma.userid, ma.sex, ip);
                    }
                    else
                    {
                        for (const AuthData& ad : auth_data)
                        {
                            if (ad.userid == ma.userid)
                            {
                                LOGIN_LOG("'ladmin': Attempt to create an already existing account (account: %s ip: %s)\n",
                                     ad.userid, ip);
                                goto x7930_out;
                            }
                        }
                        {
                            AccountEmail email = stringish<AccountEmail>(RFIFO_STRING<40>(fd, 51));
                            int new_id = mmo_auth_new(&ma, ma.sex, email);
                            LOGIN_LOG("'ladmin': Account creation (account: %s (id: %d), sex: %c, email: %s, ip: %s)\n",
                                 ma.userid, new_id,
                                 ma.sex, auth_data.back().email, ip);
                            WFIFOL(fd, 2) = new_id;
                        }
                    }
                x7930_out:
                    WFIFOSET(fd, 30);
                    RFIFOSKIP(fd, 91);
                }
                break;

            case 0x7932:       // Request for an account deletion
                if (RFIFOREST(fd) < 26)
                    return;
            {
                WFIFOW(fd, 0) = 0x7933;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                AuthData *ad = search_account(account_name);
                if (ad)
                {
                    // Char-server is notified of deletion (for characters deletion).
                    uint8_t buf[6];
                    WBUFW(buf, 0) = 0x2730;
                    WBUFL(buf, 2) = ad->account_id;
                    charif_sendallwos(-1, buf, 6);
                    // send answer
                    WFIFO_STRING(fd, 6, ad->userid, 24);
                    WFIFOL(fd, 2) = ad->account_id;
                    // save deleted account in log file
                    LOGIN_LOG("'ladmin': Account deletion (account: %s, id: %d, ip: %s) - saved in next line:\n",
                         ad->userid, ad->account_id,
                         ip);
                    {
                        FString buf2 = mmo_auth_tostr(ad);
                        LOGIN_LOG("%s\n", buf2);
                    }
                    // delete account
                    ad->userid = AccountName();
                    ad->account_id = -1;
                }
                else
                {
                    WFIFO_STRING(fd, 6, account_name, 24);
                    LOGIN_LOG("'ladmin': Attempt to delete an unknown account (account: %s, ip: %s)\n",
                         account_name, ip);
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 26);
                break;

            case 0x7934:       // Request to change a password
                if (RFIFOREST(fd) < 50)
                    return;
            {
                WFIFOW(fd, 0) = 0x7935;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                AuthData *ad = search_account(account_name);
                if (ad)
                {
                    WFIFO_STRING(fd, 6, ad->userid, 24);
                    AccountPass plain = stringish<AccountPass>(RFIFO_STRING<24>(fd, 26));
                    ad->pass = MD5_saltcrypt(plain, make_salt());
                    WFIFOL(fd, 2) = ad->account_id;
                    LOGIN_LOG("'ladmin': Modification of a password (account: %s, new password: %s, ip: %s)\n",
                         ad->userid, ad->pass, ip);
                }
                else
                {
                    WFIFO_STRING(fd, 6, account_name, 24);
                    LOGIN_LOG("'ladmin': Attempt to modify the password of an unknown account (account: %s, ip: %s)\n",
                         account_name, ip);
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 50);
                break;

            case 0x7936:       // Request to modify a state
                if (RFIFOREST(fd) < 50)
                    return;
                {
                    WFIFOW(fd, 0) = 0x7937;
                    WFIFOL(fd, 2) = -1;
                    AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    int statut = RFIFOL(fd, 26);
                    timestamp_seconds_buffer error_message = stringish<timestamp_seconds_buffer>(RFIFO_STRING<20>(fd, 30).to_print());
                    if (statut != 7 || !error_message)
                    {
                        // 7: // 6 = Your are Prohibited to log in until %s
                        error_message = stringish<timestamp_seconds_buffer>("-");
                    }
                    AuthData *ad = search_account(account_name);
                    if (ad)
                    {
                        WFIFO_STRING(fd, 6, ad->userid, 24);
                        WFIFOL(fd, 2) = ad->account_id;
                        if (ad->state == statut
                            && ad->error_message == error_message)
                            LOGIN_LOG("'ladmin': Modification of a state, but the state of the account is already the good state (account: %s, received state: %d, ip: %s)\n",
                                 account_name, statut, ip);
                        else
                        {
                            if (statut == 7)
                                LOGIN_LOG("'ladmin': Modification of a state (account: %s, new state: %d - prohibited to login until '%s', ip: %s)\n",
                                     ad->userid, statut,
                                     error_message, ip);
                            else
                                LOGIN_LOG("'ladmin': Modification of a state (account: %s, new state: %d, ip: %s)\n",
                                     ad->userid, statut, ip);
                            if (ad->state == 0)
                            {
                                unsigned char buf[16];
                                WBUFW(buf, 0) = 0x2731;
                                WBUFL(buf, 2) = ad->account_id;
                                WBUFB(buf, 6) = 0; // 0: change of statut, 1: ban
                                WBUFL(buf, 7) = statut;    // status or final date of a banishment
                                charif_sendallwos(-1, buf, 11);
                                for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                    if (auth_fifo[j].account_id ==
                                        ad->account_id)
                                        auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                            }
                            ad->state = statut;
                            ad->error_message = error_message;
                        }
                    }
                    else
                    {
                        WFIFO_STRING(fd, 6, account_name, 24);
                        LOGIN_LOG("'ladmin': Attempt to modify the state of an unknown account (account: %s, received state: %d, ip: %s)\n",
                             account_name, statut, ip);
                    }
                    WFIFOL(fd, 30) = statut;
                }
                WFIFOSET(fd, 34);
                RFIFOSKIP(fd, 50);
                break;

            case 0x7938:       // Request for servers list and # of online players
                LOGIN_LOG("'ladmin': Sending of servers list (ip: %s)\n", ip);
                server_num = 0;
                for (int i = 0; i < MAX_SERVERS; i++)
                {
                    if (server_fd[i] >= 0)
                    {
                        WFIFOIP(fd, 4 + server_num * 32) = server[i].ip;
                        WFIFOW(fd, 4 + server_num * 32 + 4) = server[i].port;
                        WFIFO_STRING(fd, 4 + server_num * 32 + 6, server[i].name, 20);
                        WFIFOW(fd, 4 + server_num * 32 + 26) = server[i].users;
                        WFIFOW(fd, 4 + server_num * 32 + 28) = 0; //maintenance;
                        WFIFOW(fd, 4 + server_num * 32 + 30) = 0; //is_new;
                        server_num++;
                    }
                }
                WFIFOW(fd, 0) = 0x7939;
                WFIFOW(fd, 2) = 4 + 32 * server_num;
                WFIFOSET(fd, 4 + 32 * server_num);
                RFIFOSKIP(fd, 2);
                break;

            case 0x793a:       // Request to password check
                if (RFIFOREST(fd) < 50)
                    return;
            {
                WFIFOW(fd, 0) = 0x793b;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                const AuthData *ad = search_account(account_name);
                if (ad)
                {
                    WFIFO_STRING(fd, 6, ad->userid, 24);
                    AccountPass pass = stringish<AccountPass>(RFIFO_STRING<24>(fd, 26));
                    if (pass_ok(pass, ad->pass))
                    {
                        WFIFOL(fd, 2) = ad->account_id;
                        LOGIN_LOG("'ladmin': Check of password OK (account: %s, password: %s, ip: %s)\n",
                             ad->userid, ad->pass,
                             ip);
                    }
                    else
                    {
                        LOGIN_LOG("'ladmin': Failure of password check (account: %s, proposed pass: %s, ip: %s)\n",
                             ad->userid, pass.to_print(), ip);
                    }
                }
                else
                {
                    WFIFO_STRING(fd, 6, account_name, 24);
                    LOGIN_LOG("'ladmin': Attempt to check the password of an unknown account (account: %s, ip: %s)\n",
                         account_name, ip);
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 50);
                break;

            case 0x793c:       // Request to modify sex
                if (RFIFOREST(fd) < 27)
                    return;
            {
                WFIFOW(fd, 0) = 0x793d;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                WFIFO_STRING(fd, 6, account_name, 24);
                {
                    SEX sex = sex_from_char(RFIFOB(fd, 26));
                    if (sex != SEX::FEMALE && sex != SEX::MALE)
                    {
                        LOGIN_LOG("'ladmin': Attempt to give an invalid sex (account: %s, received sex: %c, ip: %s)\n",
                                account_name, sex_to_char(sex), ip);
                    }
                    else
                    {
                        AuthData *ad = search_account(account_name);
                        if (ad)
                        {
                            WFIFO_STRING(fd, 6, ad->userid, 24);
                            if (ad->sex != sex)
                            {
                                unsigned char buf[16];
                                WFIFOL(fd, 2) = ad->account_id;
                                for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                    if (auth_fifo[j].account_id ==
                                        ad->account_id)
                                        auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                                ad->sex = sex;
                                LOGIN_LOG("'ladmin': Modification of a sex (account: %s, new sex: %c, ip: %s)\n",
                                     ad->userid, sex_to_char(sex), ip);
                                // send to all char-server the change
                                WBUFW(buf, 0) = 0x2723;
                                WBUFL(buf, 2) = ad->account_id;
                                WBUFB(buf, 6) = static_cast<uint8_t>(ad->sex);
                                charif_sendallwos(-1, buf, 7);
                            }
                            else
                            {
                                LOGIN_LOG("'ladmin': Modification of a sex, but the sex is already the good sex (account: %s, sex: %c, ip: %s)\n",
                                     ad->userid, sex_to_char(sex), ip);
                            }
                        }
                        else
                        {
                            LOGIN_LOG("'ladmin': Attempt to modify the sex of an unknown account (account: %s, received sex: %c, ip: %s)\n",
                                 account_name, sex_to_char(sex), ip);
                        }
                    }
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 27);
                break;

            case 0x793e:       // Request to modify GM level
                if (RFIFOREST(fd) < 27)
                    return;
            {
                WFIFOW(fd, 0) = 0x793f;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                WFIFO_STRING(fd, 6, account_name, 24);
                {
                    char new_gm_level;
                    new_gm_level = RFIFOB(fd, 26);
                    if (new_gm_level < 0 || new_gm_level > 99)
                    {
                        LOGIN_LOG("'ladmin': Attempt to give an invalid GM level (account: %s, received GM level: %d, ip: %s)\n",
                             account_name, new_gm_level, ip);
                    }
                    else
                    {
                        const AuthData *ad = search_account(account_name);
                        if (ad)
                        {
                            int acc = ad->account_id;
                            WFIFO_STRING(fd, 6, ad->userid, 24);
                            if (isGM(acc) != new_gm_level)
                            {
                                // modification of the file
                                FILE *fp, *fp2;
                                int lock;
                                char line[512];
                                int GM_account, GM_level;
                                int modify_flag;
                                if ((fp2 = lock_fopen(gm_account_filename, &lock)) != NULL)
                                {
                                    if ((fp = fopen(gm_account_filename.c_str(), "r")) != NULL)
                                    {
                                        timestamp_seconds_buffer tmpstr;
                                        stamp_time(tmpstr);
                                        modify_flag = 0;
                                        // read/write GM file
                                        while (fgets(line, sizeof(line) - 1, fp))
                                        {
                                            while (line[0] != '\0'
                                                   && line[strlen(line) - 1] == '\n')
                                                line[strlen(line) - 1] = '\0';
                                            if ((line[0] == '/'
                                                 && line[1] == '/')
                                                || line[0] == '\0')
                                                FPRINTF(fp2, "%s\n",
                                                         line);
                                            else
                                            {
                                                if (sscanf(line, "%d %d",
                                                     &GM_account,
                                                     &GM_level) != 2
                                                    && sscanf(line, "%d: %d",
                                                               &GM_account,
                                                               &GM_level) !=
                                                    2)
                                                    FPRINTF(fp2,
                                                             "%s\n",
                                                             line);
                                                else if (GM_account != acc)
                                                    FPRINTF(fp2,
                                                             "%s\n",
                                                             line);
                                                else if (new_gm_level < 1)
                                                {
                                                    FPRINTF(fp2,
                                                             "// %s: 'ladmin' GM level removed on account %d '%s' (previous level: %d)\n//%d %d\n",
                                                             tmpstr,
                                                             acc,
                                                             ad->userid,
                                                             GM_level, acc,
                                                             new_gm_level);
                                                    modify_flag = 1;
                                                }
                                                else
                                                {
                                                    FPRINTF(fp2,
                                                             "// %s: 'ladmin' GM level on account %d '%s' (previous level: %d)\n%d %d\n",
                                                             tmpstr,
                                                             acc,
                                                             ad->userid,
                                                             GM_level, acc,
                                                             new_gm_level);
                                                    modify_flag = 1;
                                                }
                                            }
                                        }
                                        if (modify_flag == 0)
                                            FPRINTF(fp2,
                                                     "// %s: 'ladmin' GM level on account %d '%s' (previous level: 0)\n%d %d\n",
                                                     tmpstr, acc,
                                                     ad->userid, acc,
                                                     new_gm_level);
                                        fclose(fp);
                                    }
                                    else
                                    {
                                        LOGIN_LOG("'ladmin': Attempt to modify of a GM level - impossible to read GM accounts file (account: %s (%d), received GM level: %d, ip: %s)\n",
                                             ad->userid, acc,
                                             new_gm_level, ip);
                                    }
                                    lock_fclose(fp2, gm_account_filename, &lock);
                                    WFIFOL(fd, 2) = acc;
                                    LOGIN_LOG("'ladmin': Modification of a GM level (account: %s (%d), new GM level: %d, ip: %s)\n",
                                         ad->userid, acc,
                                         new_gm_level, ip);
                                    // read and send new GM informations
                                    read_gm_account();
                                    send_GM_accounts();
                                }
                                else
                                {
                                    LOGIN_LOG("'ladmin': Attempt to modify of a GM level - impossible to write GM accounts file (account: %s (%d), received GM level: %d, ip: %s)\n",
                                         ad->userid, acc,
                                         new_gm_level, ip);
                                }
                            }
                            else
                            {
                                LOGIN_LOG("'ladmin': Attempt to modify of a GM level, but the GM level is already the good GM level (account: %s (%d), GM level: %d, ip: %s)\n",
                                     ad->userid, acc,
                                     new_gm_level, ip);
                            }
                        }
                        else
                        {
                            LOGIN_LOG("'ladmin': Attempt to modify the GM level of an unknown account (account: %s, received GM level: %d, ip: %s)\n",
                                 account_name, new_gm_level,
                                 ip);
                        }
                    }
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 27);
                break;

            case 0x7940:       // Request to modify e-mail
                if (RFIFOREST(fd) < 66)
                    return;
            {
                WFIFOW(fd, 0) = 0x7941;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                WFIFO_STRING(fd, 6, account_name, 24);
                {
                    AccountEmail email = stringish<AccountEmail>(RFIFO_STRING<40>(fd, 26));
                    if (!e_mail_check(email))
                    {
                        LOGIN_LOG("'ladmin': Attempt to give an invalid e-mail (account: %s, ip: %s)\n",
                             account_name, ip);
                    }
                    else
                    {
                        AuthData *ad = search_account(account_name);
                        if (ad)
                        {
                            WFIFO_STRING(fd, 6, ad->userid, 24);
                            ad->email = email;
                            WFIFOL(fd, 2) = ad->account_id;
                            LOGIN_LOG("'ladmin': Modification of an email (account: %s, new e-mail: %s, ip: %s)\n",
                                 ad->userid, email, ip);
                        }
                        else
                        {
                            LOGIN_LOG("'ladmin': Attempt to modify the e-mail of an unknown account (account: %s, received e-mail: %s, ip: %s)\n",
                                 account_name, email, ip);
                        }
                    }
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 66);
                break;

            case 0x7942:       // Request to modify memo field
                if (RFIFOREST(fd) < 28
                    || RFIFOREST(fd) < (28 + RFIFOW(fd, 26)))
                    return;
            {
                WFIFOW(fd, 0) = 0x7943;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                AuthData *ad = search_account(account_name);
                if (ad)
                {
                    WFIFO_STRING(fd, 6, ad->userid, 24);
                    ad->memo = "";
                    if (RFIFOW(fd, 26) == 0)
                    {
                        ad->memo = "!";
                    }
                    else
                    {
                        size_t len = RFIFOW(fd, 26);
                        // may truncate
                        ad->memo = RFIFO_STRING(fd, 28, len);
                    }
                    ad->memo = ad->memo.to_print();
                    WFIFOL(fd, 2) = ad->account_id;
                    LOGIN_LOG("'ladmin': Modification of a memo field (account: %s, new memo: %s, ip: %s)\n",
                         ad->userid, ad->memo, ip);
                }
                else
                {
                    WFIFO_STRING(fd, 6, account_name, 24);
                    LOGIN_LOG("'ladmin': Attempt to modify the memo field of an unknown account (account: %s, ip: %s)\n",
                         account_name, ip);
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 28 + RFIFOW(fd, 26));
                break;

            case 0x7944:       // Request to found an account id
                if (RFIFOREST(fd) < 26)
                    return;
            {
                WFIFOW(fd, 0) = 0x7945;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                const AuthData *ad = search_account(account_name);
                if (ad)
                {
                    WFIFO_STRING(fd, 6, ad->userid, 24);
                    WFIFOL(fd, 2) = ad->account_id;
                    LOGIN_LOG("'ladmin': Request (by the name) of an account id (account: %s, id: %d, ip: %s)\n",
                            ad->userid, ad->account_id,
                            ip);
                }
                else
                {
                    WFIFO_STRING(fd, 6, account_name, 24);
                    LOGIN_LOG("'ladmin': ID request (by the name) of an unknown account (account: %s, ip: %s)\n",
                            account_name, ip);
                }
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 26);
                break;

            case 0x7946:       // Request to found an account name
                if (RFIFOREST(fd) < 6)
                    return;
            {
                int account_id = RFIFOL(fd, 2);
                WFIFOW(fd, 0) = 0x7947;
                WFIFOL(fd, 2) = account_id;
                WFIFO_ZERO(fd, 6, 24);
                for (const AuthData& ad : auth_data)
                {
                    if (ad.account_id == account_id)
                    {
                        WFIFO_STRING(fd, 6, ad.userid, 24);
                        LOGIN_LOG("'ladmin': Request (by id) of an account name (account: %s, id: %d, ip: %s)\n",
                                ad.userid, account_id, ip);
                        goto x7946_out;
                    }
                }
                LOGIN_LOG("'ladmin': Name request (by id) of an unknown account (id: %d, ip: %s)\n",
                        account_id, ip);
                WFIFO_STRING(fd, 6, "", 24);
            x7946_out:
                WFIFOSET(fd, 30);
            }
                RFIFOSKIP(fd, 6);
                break;

            case 0x7948:       // Request to change the validity limit (timestamp) (absolute value)
                if (RFIFOREST(fd) < 30)
                    return;
                {
                    WFIFOW(fd, 0) = 0x7949;
                    WFIFOL(fd, 2) = -1;
                    AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    TimeT timestamp = static_cast<time_t>(RFIFOL(fd, 26));
                    timestamp_seconds_buffer tmpstr = stringish<timestamp_seconds_buffer>("unlimited");
                    if (timestamp)
                        stamp_time(tmpstr, &timestamp);
                    AuthData *ad = search_account(account_name);
                    if (ad)
                    {
                        WFIFO_STRING(fd, 6, ad->userid, 24);
                        LOGIN_LOG("'ladmin': Change of a validity limit (account: %s, new validity: %lld (%s), ip: %s)\n",
                                ad->userid,
                                timestamp,
                                tmpstr,
                                ip);
                        ad->connect_until_time = timestamp;
                        WFIFOL(fd, 2) = ad->account_id;
                    }
                    else
                    {
                        WFIFO_STRING(fd, 6, account_name, 24);
                        LOGIN_LOG("'ladmin': Attempt to change the validity limit of an unknown account (account: %s, received validity: %lld (%s), ip: %s)\n",
                                account_name,
                                timestamp,
                                tmpstr,
                                ip);
                    }
                    WFIFOL(fd, 30) = static_cast<time_t>(timestamp);
                }
                WFIFOSET(fd, 34);
                RFIFOSKIP(fd, 30);
                break;

            case 0x794a:       // Request to change the final date of a banishment (timestamp) (absolute value)
                if (RFIFOREST(fd) < 30)
                    return;
                {
                    WFIFOW(fd, 0) = 0x794b;
                    WFIFOL(fd, 2) = -1;
                    AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    TimeT timestamp = static_cast<time_t>(RFIFOL(fd, 26));
                    if (timestamp <= TimeT::now())
                        timestamp = TimeT();
                    timestamp_seconds_buffer tmpstr = stringish<timestamp_seconds_buffer>("no banishment");
                    if (timestamp)
                        stamp_time(tmpstr, &timestamp);
                    AuthData *ad = search_account(account_name);
                    if (ad)
                    {
                        WFIFO_STRING(fd, 6, ad->userid, 24);
                        WFIFOL(fd, 2) = ad->account_id;
                        LOGIN_LOG("'ladmin': Change of the final date of a banishment (account: %s, new final date of banishment: %lld (%s), ip: %s)\n",
                                ad->userid, timestamp,
                                tmpstr,
                                ip);
                        if (ad->ban_until_time != timestamp)
                        {
                            if (timestamp)
                            {
                                unsigned char buf[16];
                                WBUFW(buf, 0) = 0x2731;
                                WBUFL(buf, 2) = ad->account_id;
                                WBUFB(buf, 6) = 1; // 0: change of statut, 1: ban
                                WBUFL(buf, 7) = static_cast<time_t>(timestamp); // status or final date of a banishment
                                charif_sendallwos(-1, buf, 11);
                                for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                    if (auth_fifo[j].account_id ==
                                        ad->account_id)
                                        auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                            }
                            ad->ban_until_time = timestamp;
                        }
                    }
                    else
                    {
                        WFIFO_STRING(fd, 6, account_name, 24);
                        LOGIN_LOG("'ladmin': Attempt to change the final date of a banishment of an unknown account (account: %s, received final date of banishment: %lld (%s), ip: %s)\n",
                                account_name, timestamp,
                                tmpstr,
                                ip);
                    }
                    WFIFOL(fd, 30) = static_cast<time_t>(timestamp);
                }
                WFIFOSET(fd, 34);
                RFIFOSKIP(fd, 30);
                break;

            case 0x794c:       // Request to change the final date of a banishment (timestamp) (relative change)
                if (RFIFOREST(fd) < 38)
                    return;
                {
                    WFIFOW(fd, 0) = 0x794d;
                    WFIFOL(fd, 2) = -1;
                    AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    AuthData *ad = search_account(account_name);
                    if (ad)
                    {
                        WFIFOL(fd, 2) = ad->account_id;
                        WFIFO_STRING(fd, 6, ad->userid, 24);
                        TimeT timestamp;
                        TimeT now = TimeT::now();
                        if (!ad->ban_until_time
                            || ad->ban_until_time < now)
                            timestamp = now;
                        else
                            timestamp = ad->ban_until_time;
                        struct tm tmtime = timestamp;
                        HumanTimeDiff ban_diff;
                        RFIFO_STRUCT(fd, 26, ban_diff);
                        tmtime.tm_year += ban_diff.year;
                        tmtime.tm_mon += ban_diff.month;
                        tmtime.tm_mday += ban_diff.day;
                        tmtime.tm_hour += ban_diff.hour;
                        tmtime.tm_min += ban_diff.minute;
                        tmtime.tm_sec += ban_diff.second;
                        timestamp = tmtime;
                        if (timestamp.okay())
                        {
                            if (timestamp <= now)
                                timestamp = TimeT();
                            timestamp_seconds_buffer tmpstr = stringish<timestamp_seconds_buffer>("no banishment");
                            if (timestamp)
                                stamp_time(tmpstr, &timestamp);
                            LOGIN_LOG("'ladmin': Adjustment of a final date of a banishment (account: %s, (%+d y %+d m %+d d %+d h %+d mn %+d s) -> new validity: %lld (%s), ip: %s)\n",
                                    ad->userid,
                                    ban_diff.year, ban_diff.month,
                                    ban_diff.day, ban_diff.hour,
                                    ban_diff.minute, ban_diff.second,
                                    timestamp,
                                    tmpstr,
                                    ip);
                            if (ad->ban_until_time != timestamp)
                            {
                                if (timestamp)
                                {
                                    unsigned char buf[16];
                                    WBUFW(buf, 0) = 0x2731;
                                    WBUFL(buf, 2) = ad->account_id;
                                    WBUFB(buf, 6) = 1; // 0: change of statut, 1: ban
                                    WBUFL(buf, 7) = static_cast<time_t>(timestamp); // status or final date of a banishment
                                    charif_sendallwos(-1, buf, 11);
                                    for (int j = 0; j < AUTH_FIFO_SIZE; j++)
                                        if (auth_fifo[j].account_id ==
                                            ad->account_id)
                                            auth_fifo[j].login_id1++;   // to avoid reconnection error when come back from map-server (char-server will ask again the authentification)
                                }
                                ad->ban_until_time = timestamp;
                            }
                        }
                        else
                        {
                            timestamp_seconds_buffer tmpstr = stringish<timestamp_seconds_buffer>("no banishment");
                            if (ad->ban_until_time)
                                stamp_time(tmpstr, &ad->ban_until_time);
                            LOGIN_LOG("'ladmin': Impossible to adjust the final date of a banishment (account: %s, %lld (%s) + (%+d y %+d m %+d d %+d h %+d mn %+d s) -> ???, ip: %s)\n",
                                    ad->userid,
                                    ad->ban_until_time,
                                    tmpstr,
                                    ban_diff.year, ban_diff.month,
                                    ban_diff.day, ban_diff.hour,
                                    ban_diff.minute, ban_diff.second,
                                    ip);
                        }
                        WFIFOL(fd, 30) = static_cast<time_t>(ad->ban_until_time);
                    }
                    else
                    {
                        WFIFO_STRING(fd, 6, account_name, 24);
                        LOGIN_LOG("'ladmin': Attempt to adjust the final date of a banishment of an unknown account (account: %s, ip: %s)\n",
                                account_name, ip);
                        WFIFOL(fd, 30) = 0;
                    }
                }
                WFIFOSET(fd, 34);
                RFIFOSKIP(fd, 38);
                break;

            case 0x794e:       // Request to send a broadcast message
                if (RFIFOREST(fd) < 8
                    || RFIFOREST(fd) < (8 + RFIFOL(fd, 4)))
                    return;
                WFIFOW(fd, 0) = 0x794f;
                WFIFOW(fd, 2) = -1;
                if (RFIFOL(fd, 4) < 1)
                {
                    LOGIN_LOG("'ladmin': Receiving a message for broadcast, but message is void (ip: %s)\n",
                         ip);
                }
                else
                {
                    // at least 1 char-server
                    for (int i = 0; i < MAX_SERVERS; i++)
                        if (server_fd[i] >= 0)
                            goto x794e_have_server;
                    LOGIN_LOG("'ladmin': Receiving a message for broadcast, but no char-server is online (ip: %s)\n",
                            ip);
                    goto x794e_have_no_server;
                    {
                    x794e_have_server:
                        // overwrite the -1
                        WFIFOW(fd, 2) = 0;

                        size_t len = RFIFOL(fd, 4);
                        FString message = RFIFO_STRING(fd, 8, len).to_print();
                        LOGIN_LOG("'ladmin': Receiving a message for broadcast (message: %s, ip: %s)\n",
                                message, ip);
                        // send same message to all char-servers (no answer)
                        uint8_t buf[len + 8];
                        RFIFO_BUF_CLONE(fd, buf, 8 + len);
                        WBUFW(buf, 0) = 0x2726;
                        charif_sendallwos(-1, buf, 8 + len);
                    }
                }
            x794e_have_no_server:
                WFIFOSET(fd, 4);
                RFIFOSKIP(fd, 8 + RFIFOL(fd, 4));
                break;

            case 0x7950:       // Request to change the validity limite (timestamp) (relative change)
                if (RFIFOREST(fd) < 38)
                    return;
                {
                    WFIFOW(fd, 0) = 0x7951;
                    WFIFOL(fd, 2) = -1;
                    AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    AuthData *ad = search_account(account_name);
                    if (ad)
                    {
                        WFIFOL(fd, 2) = ad->account_id;
                        WFIFO_STRING(fd, 6, ad->userid, 24);
                        if (add_to_unlimited_account == 0 && !ad->connect_until_time)
                        {
                            LOGIN_LOG("'ladmin': Attempt to adjust the validity limit of an unlimited account (account: %s, ip: %s)\n",
                                 ad->userid, ip);
                            WFIFOL(fd, 30) = 0;
                        }
                        else
                        {
                            TimeT now = TimeT::now();
                            TimeT timestamp = ad->connect_until_time;
                            if (!timestamp || timestamp < now)
                                timestamp = now;
                            struct tm tmtime = timestamp;
                            HumanTimeDiff v_diff;
                            RFIFO_STRUCT(fd, 26, v_diff);
                            tmtime.tm_year += v_diff.year;
                            tmtime.tm_mon += v_diff.month;
                            tmtime.tm_mday += v_diff.day;
                            tmtime.tm_hour += v_diff.hour;
                            tmtime.tm_min += v_diff.minute;
                            tmtime.tm_sec += v_diff.second;
                            timestamp = tmtime;
                            if (timestamp.okay())
                            {
                                timestamp_seconds_buffer tmpstr = stringish<timestamp_seconds_buffer>("unlimited");
                                timestamp_seconds_buffer tmpstr2 = stringish<timestamp_seconds_buffer>("unlimited");
                                if (ad->connect_until_time)
                                    stamp_time(tmpstr, &ad->connect_until_time);
                                if (timestamp)
                                    stamp_time(tmpstr2, &timestamp);
                                LOGIN_LOG("'ladmin': Adjustment of a validity limit (account: %s, %lld (%s) + (%+d y %+d m %+d d %+d h %+d mn %+d s) -> new validity: %lld (%s), ip: %s)\n",
                                        ad->userid,
                                        ad->connect_until_time,
                                        tmpstr,
                                        v_diff.year,
                                        v_diff.month,
                                        v_diff.day,
                                        v_diff.hour,
                                        v_diff.minute,
                                        v_diff.second,
                                        timestamp,
                                        tmpstr2,
                                        ip);
                                ad->connect_until_time = timestamp;
                                WFIFOL(fd, 30) = static_cast<time_t>(timestamp);
                            }
                            else
                            {
                                timestamp_seconds_buffer tmpstr = stringish<timestamp_seconds_buffer>("unlimited");
                                if (ad->connect_until_time)
                                    stamp_time(tmpstr, &ad->connect_until_time);
                                LOGIN_LOG("'ladmin': Impossible to adjust a validity limit (account: %s, %lld (%s) + (%+d y %+d m %+d d %+d h %+d mn %+d s) -> ???, ip: %s)\n",
                                        ad->userid,
                                        ad->connect_until_time,
                                        tmpstr,
                                        v_diff.year,
                                        v_diff.month,
                                        v_diff.day,
                                        v_diff.hour,
                                        v_diff.minute,
                                        v_diff.second,
                                        ip);
                                WFIFOL(fd, 30) = 0;
                            }
                        }
                    }
                    else
                    {
                        WFIFO_STRING(fd, 6, account_name, 24);
                        LOGIN_LOG("'ladmin': Attempt to adjust the validity limit of an unknown account (account: %s, ip: %s)\n",
                             account_name, ip);
                        WFIFOL(fd, 30) = 0;
                    }
                }
                WFIFOSET(fd, 34);
                RFIFOSKIP(fd, 38);
                break;

            case 0x7952:       // Request about informations of an account (by account name)
                if (RFIFOREST(fd) < 26)
                    return;
            {
                WFIFOW(fd, 0) = 0x7953;
                WFIFOL(fd, 2) = -1;
                AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                const AuthData *ad = search_account(account_name);
                if (ad)
                {
                    WFIFOL(fd, 2) = ad->account_id;
                    WFIFOB(fd, 6) = isGM(ad->account_id);
                    WFIFO_STRING(fd, 7, ad->userid, 24);
                    WFIFOB(fd, 31) = static_cast<uint8_t>(ad->sex);
                    WFIFOL(fd, 32) = ad->logincount;
                    WFIFOL(fd, 36) = ad->state;
                    WFIFO_STRING(fd, 40, ad->error_message, 20);
                    WFIFO_STRING(fd, 60, ad->lastlogin, 24);
                    WFIFO_STRING(fd, 84, convert_for_printf(ad->last_ip), 16);
                    WFIFO_STRING(fd, 100, ad->email, 40);
                    WFIFOL(fd, 140) = static_cast<time_t>(ad->connect_until_time);
                    WFIFOL(fd, 144) = static_cast<time_t>(ad->ban_until_time);
                    size_t len = ad->memo.size() + 1;
                    WFIFOW(fd, 148) = len;
                    WFIFO_STRING(fd, 150, ad->memo, len);
                    LOGIN_LOG("'ladmin': Sending information of an account (request by the name; account: %s, id: %d, ip: %s)\n",
                         ad->userid, ad->account_id,
                         ip);
                    WFIFOSET(fd, 150 + len);
                }
                else
                {
                    WFIFO_STRING(fd, 7, account_name, 24);
                    WFIFOW(fd, 148) = 0;
                    LOGIN_LOG("'ladmin': Attempt to obtain information (by the name) of an unknown account (account: %s, ip: %s)\n",
                         account_name, ip);
                    WFIFOSET(fd, 150);
                }
            }
                RFIFOSKIP(fd, 26);
                break;

            case 0x7954:       // Request about information of an account (by account id)
                if (RFIFOREST(fd) < 6)
                    return;
            {
                int account_id = RFIFOL(fd, 2);
                WFIFOW(fd, 0) = 0x7953;
                WFIFOL(fd, 2) = account_id;
                WFIFO_ZERO(fd, 7, 24);
                for (const AuthData& ad : auth_data)
                {
                    if (ad.account_id == account_id)
                    {
                        LOGIN_LOG("'ladmin': Sending information of an account (request by the id; account: %s, id: %d, ip: %s)\n",
                             ad.userid, RFIFOL(fd, 2), ip);
                        WFIFOB(fd, 6) = isGM(ad.account_id);
                        WFIFO_STRING(fd, 7, ad.userid, 24);
                        WFIFOB(fd, 31) = static_cast<uint8_t>(ad.sex);
                        WFIFOL(fd, 32) = ad.logincount;
                        WFIFOL(fd, 36) = ad.state;
                        WFIFO_STRING(fd, 40, ad.error_message, 20);
                        WFIFO_STRING(fd, 60, ad.lastlogin, 24);
                        WFIFO_STRING(fd, 84, convert_for_printf(ad.last_ip), 16);
                        WFIFO_STRING(fd, 100, ad.email, 40);
                        WFIFOL(fd, 140) = static_cast<time_t>(ad.connect_until_time);
                        WFIFOL(fd, 144) = static_cast<time_t>(ad.ban_until_time);
                        size_t len = ad.memo.size() + 1;
                        WFIFOW(fd, 148) = len;
                        WFIFO_STRING(fd, 150, ad.memo, len);
                        WFIFOSET(fd, 150 + len);
                        goto x7954_out;
                    }
                }
                {
                    LOGIN_LOG("'ladmin': Attempt to obtain information (by the id) of an unknown account (id: %d, ip: %s)\n",
                         RFIFOL(fd, 2), ip);
                    WFIFO_STRING(fd, 7, "", 24);
                    WFIFOW(fd, 148) = 0;
                    WFIFOSET(fd, 150);
                }
            }
            x7954_out:
                RFIFOSKIP(fd, 6);
                break;

            case 0x7955:       // Request to reload GM file (no answer)
                LOGIN_LOG("'ladmin': Request to re-load GM configuration file (ip: %s).\n",
                     ip);
                read_gm_account();
                // send GM accounts to all char-servers
                send_GM_accounts();
                RFIFOSKIP(fd, 2);
                break;

            default:
            {
                FILE *logfp = fopen(login_log_unknown_packets_filename.c_str(), "a");
                if (logfp)
                {
                    timestamp_milliseconds_buffer timestr;
                    stamp_time(timestr);
                    FPRINTF(logfp,
                             "%s: receiving of an unknown packet -> disconnection\n",
                             timestr);
                    FPRINTF(logfp,
                             "parse_admin: connection #%d (ip: %s), packet: 0x%x (with being read: %zu).\n",
                             fd, ip, RFIFOW(fd, 0), RFIFOREST(fd));
                    FPRINTF(logfp, "Detail (in hex):\n");
                    FPRINTF(logfp,
                             "---- 00-01-02-03-04-05-06-07  08-09-0A-0B-0C-0D-0E-0F\n");
                    char tmpstr[16 + 1] {};
                    int i;
                    for (i = 0; i < RFIFOREST(fd); i++)
                    {
                        if ((i & 15) == 0)
                            FPRINTF(logfp, "%04X ", i);
                        FPRINTF(logfp, "%02x ", RFIFOB (fd, i));
                        if (RFIFOB(fd, i) > 0x1f)
                            tmpstr[i % 16] = RFIFOB(fd, i);
                        else
                            tmpstr[i % 16] = '.';
                        if ((i - 7) % 16 == 0)  // -8 + 1
                            FPRINTF(logfp, " ");
                        else if ((i + 1) % 16 == 0)
                        {
                            FPRINTF(logfp, " %s\n", tmpstr);
                            std::fill(tmpstr + 0, tmpstr + 17, '\0');
                        }
                    }
                    if (i % 16 != 0)
                    {
                        for (int j = i; j % 16 != 0; j++)
                        {
                            FPRINTF(logfp, "   ");
                            if ((j - 7) % 16 == 0)  // -8 + 1
                                FPRINTF(logfp, " ");
                        }
                        FPRINTF(logfp, " %s\n", tmpstr);
                    }
                    FPRINTF(logfp, "\n");
                    fclose(logfp);
                }
            }
                LOGIN_LOG("'ladmin': End of connection, unknown packet (ip: %s)\n",
                     ip);
                session[fd]->eof = 1;
                PRINTF("Remote administration has been disconnected (unknown packet).\n");
                return;
        }
        //WFIFOW(fd,0) = 0x791f;
        //WFIFOSET(fd,2);
    }
    return;
}

//--------------------------------------------
// Test to know if an IP come from LAN or WAN.
//--------------------------------------------
static
bool lan_ip_check(IP4Address p)
{
    bool lancheck = lan_subnet.covers(p);

    PRINTF("LAN test (result): %s source\033[0m.\n",
            (lancheck) ? "\033[1;36mLAN" : "\033[1;32mWAN");
    return lancheck;
}

//----------------------------------------------------------------------------------------
// Default packet parsing (normal players or administation/char-server connexion requests)
//----------------------------------------------------------------------------------------
static
void parse_login(int fd)
{
    struct mmo_account account;
    int result, j;

    IP4Address ip = session[fd]->client_ip;

    if (session[fd]->eof)
    {
        delete_session(fd);
        return;
    }

    while (RFIFOREST(fd) >= 2)
    {
        if (display_parse_login == 1)
        {
            if (RFIFOW(fd, 0) == 0x64 || RFIFOW(fd, 0) == 0x01dd)
            {
                if (RFIFOREST(fd) >= ((RFIFOW(fd, 0) == 0x64) ? 55 : 47))
                {
                    AccountName account_name = stringish<AccountName>(RFIFO_STRING<24>(fd, 6));
                    PRINTF("parse_login: connection #%d, packet: 0x%x (with being read: %zu), account: %s.\n",
                         fd, RFIFOW(fd, 0), RFIFOREST(fd),
                         account_name);
                }
            }
            else if (RFIFOW(fd, 0) == 0x2710)
            {
                if (RFIFOREST(fd) >= 86)
                {
                    ServerName server_name = stringish<ServerName>(RFIFO_STRING<20>(fd, 60));
                    PRINTF("parse_login: connection #%d, packet: 0x%x (with being read: %zu), server: %s.\n",
                         fd, RFIFOW(fd, 0), RFIFOREST(fd),
                         server_name);
                }
            }
            else
                PRINTF("parse_login: connection #%d, packet: 0x%x (with being read: %zu).\n",
                     fd, RFIFOW(fd, 0), RFIFOREST(fd));
        }

        switch (RFIFOW(fd, 0))
        {
            case 0x200:        // New alive packet: structure: 0x200 <account.userid>.24B. used to verify if client is always alive.
                if (RFIFOREST(fd) < 26)
                    return;
                RFIFOSKIP(fd, 26);
                break;

            case 0x204:        // New alive packet: structure: 0x204 <encrypted.account.userid>.16B. (new ragexe from 22 june 2004)
                if (RFIFOREST(fd) < 18)
                    return;
                RFIFOSKIP(fd, 18);
                break;

            case 0x64:         // Ask connection of a client
                if (RFIFOREST(fd) < 55)
                    return;

                account.userid = stringish<AccountName>(RFIFO_STRING<24>(fd, 6).to_print());
                account.passwd = stringish<AccountPass>(RFIFO_STRING<24>(fd, 30).to_print());
                account.passwdenc = 0;

                LOGIN_LOG("Request for connection (non encryption mode) of %s (ip: %s).\n",
                    account.userid, ip);

                if (!check_ip(ip))
                {
                    LOGIN_LOG("Connection refused: IP isn't authorised (deny/allow, ip: %s).\n",
                         ip);
                    WFIFOW(fd, 0) = 0x6a;
                    WFIFOB(fd, 2) = 0x03;
                    WFIFO_ZERO(fd, 3, 20);
                    WFIFOSET(fd, 23);
                    RFIFOSKIP(fd, 55);
                    break;
                }

                result = mmo_auth(&account, fd);
                if (result == -1)
                {
                    VERSION_2 version_2 = static_cast<VERSION_2>(RFIFOB(fd, 54));
                    if (!bool(version_2 & VERSION_2::UPDATEHOST)
                        || !bool(version_2 & VERSION_2::SERVERORDER))
                        result = 5; // client too old
                }
                if (result == -1)
                {
                    int gm_level = isGM(account.account_id);
                    if (min_level_to_connect > gm_level)
                    {
                        LOGIN_LOG("Connection refused: the minimum GM level for connection is %d (account: %s, GM level: %d, ip: %s).\n",
                             min_level_to_connect, account.userid,
                             gm_level, ip);
                        WFIFOW(fd, 0) = 0x81;
                        WFIFOB(fd, 2) = 1; // 01 = Server closed
                        WFIFOSET(fd, 3);
                    }
                    else
                    {
                        // int version_2 = RFIFOB(fd, 54);   // version 2

                        if (gm_level)
                            PRINTF("Connection of the GM (level:%d) account '%s' accepted.\n",
                                 gm_level, account.userid);
                        else
                            PRINTF("Connection of the account '%s' accepted.\n",
                                 account.userid);

                        /*
                         * Add a 0x0063 packet, which contains the name of the update host.  The packet will only
                         * be sent if login_athena.conf contains a non-null entry for "update_host:"
                         *
                         * Because older clients cannot handle the 0x63 packet, we check the "version 2" value
                         * from the incoming 0x64 packet (the byte at offset 54).  If bit 0 of this is set,
                         * then the client can safely accept the 0x63 packet.  The "version 2" value is not
                         * otherwise used by eAthena.
                         *
                         * All supported clients now send both, so the check is removed.
                         */
                        // if (version_2 & VERSION_2_UPDATEHOST)
                        {
                            if (update_host)
                            {
                                size_t host_len = update_host.size() + 1;
                                WFIFOW(fd, 0) = 0x63;
                                WFIFOW(fd, 2) = 4 + host_len;
                                WFIFO_STRING(fd, 4, update_host, host_len);
                                WFIFOSET(fd, 4 + host_len);
                            }
                        }

                        // Load list of char servers into outbound packet
                        server_num = 0;
                        // if (version_2 & VERSION_2_SERVERORDER)
                        for (int i = 0; i < MAX_SERVERS; i++)
                        {
                            if (server_fd[i] >= 0)
                            {
                                if (lan_ip_check(ip))
                                    WFIFOIP(fd, 47 + server_num * 32) = lan_char_ip;
                                else
                                    WFIFOIP(fd, 47 + server_num * 32) = server[i].ip;
                                WFIFOW(fd, 47 + server_num * 32 + 4) = server[i].port;
                                WFIFO_STRING(fd, 47 + server_num * 32 + 6, server[i].name, 20);
                                WFIFOW(fd, 47 + server_num * 32 + 26) = server[i].users;
                                WFIFOW(fd, 47 + server_num * 32 + 28) = 0; //maintenance;
                                WFIFOW(fd, 47 + server_num * 32 + 30) = 0; //is_new;
                                server_num++;
                            }
                        }
                        // if at least 1 char-server
                        if (server_num > 0)
                        {
                            WFIFOW(fd, 0) = 0x69;
                            WFIFOW(fd, 2) = 47 + 32 * server_num;
                            WFIFOL(fd, 4) = account.login_id1;
                            WFIFOL(fd, 8) = account.account_id;
                            WFIFOL(fd, 12) = account.login_id2;
                            WFIFOL(fd, 16) = 0;    // in old version, that was for ip (not more used)
                            WFIFO_STRING(fd, 20, account.lastlogin, 24);    // in old version, that was for name (not more used)
                            WFIFOB(fd, 46) = static_cast<uint8_t>(account.sex);
                            WFIFOSET(fd, 47 + 32 * server_num);
                            if (auth_fifo_pos >= AUTH_FIFO_SIZE)
                                auth_fifo_pos = 0;
                            auth_fifo[auth_fifo_pos].account_id =
                                account.account_id;
                            auth_fifo[auth_fifo_pos].login_id1 =
                                account.login_id1;
                            auth_fifo[auth_fifo_pos].login_id2 =
                                account.login_id2;
                            auth_fifo[auth_fifo_pos].sex = account.sex;
                            auth_fifo[auth_fifo_pos].delflag = 0;
                            auth_fifo[auth_fifo_pos].ip =
                                session[fd]->client_ip;
                            auth_fifo_pos++;
                            // if no char-server, don't send void list of servers, just disconnect the player with proper message
                        }
                        else
                        {
                            LOGIN_LOG("Connection refused: there is no char-server online (account: %s, ip: %s).\n",
                                 account.userid, ip);
                            WFIFOW(fd, 0) = 0x81;
                            WFIFOB(fd, 2) = 1; // 01 = Server closed
                            WFIFOSET(fd, 3);
                        }
                    }
                }
                else
                {
                    WFIFO_ZERO(fd, 0, 23);
                    WFIFOW(fd, 0) = 0x6a;
                    WFIFOB(fd, 2) = result;
                    if (result == 6)
                    {
                        // 6 = Your are Prohibited to log in until %s
                        const AuthData *ad = search_account(account.userid);
                        if (ad)
                        {
                            if (ad->ban_until_time)
                            {
                                // if account is banned, we send ban timestamp
                                timestamp_seconds_buffer tmpstr;
                                stamp_time(tmpstr, &ad->ban_until_time);
                                WFIFO_STRING(fd, 3, tmpstr, 20);
                            }
                            else
                            {   // we send error message
                                WFIFO_STRING(fd, 3, ad->error_message, 20);
                            }
                        }
                    }
                    WFIFOSET(fd, 23);
                }
                RFIFOSKIP(fd, (RFIFOW(fd, 0) == 0x64) ? 55 : 47);
                break;

            case 0x2710:       // Connection request of a char-server
                if (RFIFOREST(fd) < 86)
                    return;
                {
                    int len;
                    account.userid = stringish<AccountName>(RFIFO_STRING<24>(fd, 2).to_print());
                    account.passwd = stringish<AccountPass>(RFIFO_STRING<24>(fd, 26).to_print());
                    account.passwdenc = 0;
                    ServerName server_name = stringish<ServerName>(RFIFO_STRING<20>(fd, 60).to_print());
                    LOGIN_LOG("Connection request of the char-server '%s' @ %s:%d (ip: %s)\n",
                            server_name, RFIFOIP(fd, 54), RFIFOW(fd, 58), ip);
                    result = mmo_auth(&account, fd);

                    if (result == -1 && account.sex == SEX::SERVER)
                    {
                        // If this is the main server, and we don't already have a main server
                        if (server_fd[0] <= 0
                            && server_name == main_server)
                        {
                            account.account_id = 0;
                        }
                        else
                        {
                            int i;
                            for (i = 1; i < MAX_SERVERS; i++)
                            {
                                if (server_fd[i] <= 0)
                                {
                                    account.account_id = i;
                                    break;
                                }
                            }
                        }
                    }

                    if (result == -1 && account.sex == SEX::SERVER
                        && account.account_id < MAX_SERVERS
                        && server_fd[account.account_id] == -1)
                    {
                        LOGIN_LOG("Connection of the char-server '%s' accepted (account: %s, pass: %s, ip: %s)\n",
                             server_name, account.userid,
                             account.passwd, ip);
                        PRINTF("Connection of the char-server '%s' accepted.\n",
                             server_name);
                        server[account.account_id] = mmo_char_server{};
                        server[account.account_id].ip = RFIFOIP(fd, 54);
                        server[account.account_id].port = RFIFOW(fd, 58);
                        server[account.account_id].name = server_name;
                        server[account.account_id].users = 0;
                        //maintenance = RFIFOW(fd, 82);
                        //is_new = RFIFOW(fd, 84);
                        server_fd[account.account_id] = fd;
                        if (anti_freeze_enable)
                            server_freezeflag[account.account_id] = 5;  // Char-server anti-freeze system. Counter. 5 ok, 4...0 freezed
                        WFIFOW(fd, 0) = 0x2711;
                        WFIFOB(fd, 2) = 0;
                        WFIFOSET(fd, 3);
                        session[fd]->func_parse = parse_fromchar;
                        realloc_fifo(fd, FIFOSIZE_SERVERLINK, FIFOSIZE_SERVERLINK);
                        // send GM account to char-server
                        len = 4;
                        WFIFOW(fd, 0) = 0x2732;
                        for (const AuthData& ad : auth_data)
                            // send only existing accounts. We can not create a GM account when server is online.
                            if (uint8_t GM_value = isGM(ad.account_id))
                            {
                                WFIFOL(fd, len) = ad.account_id;
                                WFIFOB(fd, len + 4) = GM_value;
                                len += 5;
                            }
                        WFIFOW(fd, 2) = len;
                        WFIFOSET(fd, len);
                    }
                    else
                    {
                        LOGIN_LOG("Connexion of the char-server '%s' REFUSED (account: %s, pass: %s, ip: %s)\n",
                             server_name, account.userid,
                             account.passwd, ip);
                        WFIFOW(fd, 0) = 0x2711;
                        WFIFOB(fd, 2) = 3;
                        WFIFOSET(fd, 3);
                    }
                }
                RFIFOSKIP(fd, 86);
                return;

            case 0x7530:       // Request of the server version
                LOGIN_LOG("Sending of the server version (ip: %s)\n",
                           ip);
                WFIFOW(fd, 0) = 0x7531;
            {
                Version version = CURRENT_LOGIN_SERVER_VERSION;
                version.flags = new_account ? 1 : 0;
                WFIFO_STRUCT(fd, 2, version);
                WFIFOSET(fd, 10);
            }
                RFIFOSKIP(fd, 2);
                break;

            case 0x7532:       // Request to end connection
                LOGIN_LOG("End of connection (ip: %s)\n", ip);
                session[fd]->eof = 1;
                return;

            case 0x7918:       // Request for administation login
                if (RFIFOREST(fd) < 4
                    || RFIFOREST(fd) < ((RFIFOW(fd, 2) == 0) ? 28 : 20))
                    return;
                WFIFOW(fd, 0) = 0x7919;
                WFIFOB(fd, 2) = 1;
                if (!check_ladminip(session[fd]->client_ip))
                {
                    LOGIN_LOG("'ladmin'-login: Connection in administration mode refused: IP isn't authorised (ladmin_allow, ip: %s).\n",
                         ip);
                }
                else
                {
                    if (RFIFOW(fd, 2) == 0)
                    {
                        // non encrypted password
                        AccountPass password = stringish<AccountPass>(RFIFO_STRING<24>(fd, 4).to_print());
                        // If remote administration is enabled and password sent by client matches password read from login server configuration file
                        if ((admin_state == 1)
                            && (password == admin_pass))
                        {
                            LOGIN_LOG("'ladmin'-login: Connection in administration mode accepted (non encrypted password: %s, ip: %s)\n",
                                 password, ip);
                            PRINTF("Connection of a remote administration accepted (non encrypted password).\n");
                            WFIFOB(fd, 2) = 0;
                            session[fd]->func_parse = parse_admin;
                        }
                        else if (admin_state != 1)
                            LOGIN_LOG("'ladmin'-login: Connection in administration mode REFUSED - remote administration is disabled (non encrypted password: %s, ip: %s)\n",
                                 password, ip);
                        else
                            LOGIN_LOG("'ladmin'-login: Connection in administration mode REFUSED - invalid password (non encrypted password: %s, ip: %s)\n",
                                 password, ip);
                    }
                    else
                    {
                        // encrypted password
                        {
                            LOGIN_LOG("'ladmin'-login: Connection in administration mode REFUSED - encrypted login is disabled (ip: %s)\n",
                                     ip);
                        }
                    }
                }
                WFIFOSET(fd, 3);
                RFIFOSKIP(fd, (RFIFOW(fd, 2) == 0) ? 28 : 20);
                break;

            default:
                if (save_unknown_packets)
                {
                    FILE *logfp = fopen(login_log_unknown_packets_filename.c_str(), "a");
                    if (logfp)
                    {
                        timestamp_milliseconds_buffer timestr;
                        stamp_time(timestr);
                        FPRINTF(logfp,
                                 "%s: receiving of an unknown packet -> disconnection\n",
                                 timestr);
                        FPRINTF(logfp,
                                 "parse_login: connection #%d (ip: %s), packet: 0x%x (with being read: %zu).\n",
                                 fd, ip, RFIFOW(fd, 0),
                                 RFIFOREST(fd));
                        FPRINTF(logfp, "Detail (in hex):\n");
                        FPRINTF(logfp,
                                 "---- 00-01-02-03-04-05-06-07  08-09-0A-0B-0C-0D-0E-0F\n");

                        char tmpstr[16 + 1] {};

                        int i;
                        for (i = 0; i < RFIFOREST(fd); i++)
                        {
                            if ((i & 15) == 0)
                                FPRINTF(logfp, "%04X ", i);
                            FPRINTF(logfp, "%02x ", RFIFOB(fd, i));
                            if (RFIFOB(fd, i) > 0x1f)
                                tmpstr[i % 16] = RFIFOB(fd, i);
                            else
                                tmpstr[i % 16] = '.';
                            if ((i - 7) % 16 == 0)  // -8 + 1
                                FPRINTF(logfp, " ");
                            else if ((i + 1) % 16 == 0)
                            {
                                FPRINTF(logfp, " %s\n", tmpstr);
                                std::fill(tmpstr + 0, tmpstr + 17, '\0');
                            }
                        }
                        if (i % 16 != 0)
                        {
                            for (j = i; j % 16 != 0; j++)
                            {
                                FPRINTF(logfp, "   ");
                                if ((j - 7) % 16 == 0)  // -8 + 1
                                    FPRINTF(logfp, " ");
                            }
                            FPRINTF(logfp, " %s\n", tmpstr);
                        }
                        FPRINTF(logfp, "\n");
                        fclose(logfp);
                    }
                }
                LOGIN_LOG("End of connection, unknown packet (ip: %s)\n", ip);
                session[fd]->eof = 1;
                return;
        }
    }
    return;
}

//----------------------------------
// Reading Lan Support configuration
//----------------------------------
static
int login_lan_config_read(ZString lancfgName)
{
    struct hostent *h = NULL;

    // set default configuration
    lan_char_ip = IP4_LOCALHOST;
    lan_subnet = IP4Mask(IP4_LOCALHOST, IP4_BROADCAST);

    std::ifstream in(lancfgName.c_str());

    if (!in.is_open())
    {
        PRINTF("***WARNING: LAN Support configuration file is not found: %s\n",
             lancfgName);
        return 1;
    }

    PRINTF("---Start reading Lan Support configuration file\n");

    FString line;
    while (io::getline(in, line))
    {
        XString w1;
        ZString w2;
        if (!split_key_value(line, &w1, &w2))
            continue;

        if (w1 == "lan_char_ip")
        {
            // Read Char-Server Lan IP Address
            h = gethostbyname(w2.c_str());
            if (h != NULL)
            {
                lan_char_ip = IP4Address({
                        static_cast<uint8_t>(h->h_addr[0]),
                        static_cast<uint8_t>(h->h_addr[1]),
                        static_cast<uint8_t>(h->h_addr[2]),
                        static_cast<uint8_t>(h->h_addr[3]),
                });
            }
            else
            {
                PRINTF("Bad IP value: %s\n", line);
                abort();
            }
            PRINTF("LAN IP of char-server: %s.\n", lan_char_ip);
        }
        else if (w1 == "subnet" /*backward compatibility*/
                || w1 == "lan_subnet")
        {
            if (!extract(w2, &lan_subnet))
            {
                PRINTF("Bad IP mask: %s\n", line);
                abort();
            }
            PRINTF("Sub-network of the char-server: %s.\n",
                    lan_subnet);
        }
        else
        {
            FString w1z = w1;
            PRINTF("WARNING: unknown lan-config key: %s\n", w1z);
        }
    }

    // log the LAN configuration
    LOGIN_LOG("The LAN configuration of the server is set:\n");
    LOGIN_LOG("- with LAN IP of char-server: %s.\n", lan_char_ip);
    LOGIN_LOG("- with the sub-network of the char-server: %s.\n",
            lan_subnet);

    // sub-network check of the char-server
    {
        PRINTF("LAN test of LAN IP of the char-server: ");
        if (!lan_ip_check(lan_char_ip))
        {
            PRINTF("\033[1;31m***ERROR: LAN IP of the char-server doesn't belong to the specified Sub-network\033[0m\n");
            LOGIN_LOG("***ERROR: LAN IP of the char-server doesn't belong to the specified Sub-network.\n");
        }
    }

    PRINTF("---End reading of Lan Support configuration file\n");

    return 0;
}

//-----------------------------------
// Reading general configuration file
//-----------------------------------
static
int login_config_read(ZString cfgName)
{
    std::ifstream in(cfgName.c_str());
    if (!in.is_open())
    {
        PRINTF("Configuration file (%s) not found.\n", cfgName);
        return 1;
    }

    PRINTF("---Start reading of Login Server configuration file (%s)\n",
            cfgName);
    FString line;
    while (io::getline(in, line))
    {
        XString w1;
        ZString w2;
        if (!split_key_value(line, &w1, &w2))
            continue;

        if (w1 == "admin_state")
        {
            admin_state = config_switch(w2);
        }
        else if (w1 == "admin_pass")
        {
            admin_pass = stringish<AccountPass>(w2);
        }
        else if (w1 == "ladminallowip")
        {
            if (w2 == "clear")
            {
                access_ladmin.clear();
            }
            else
            {
                // a.b.c.d/0.0.0.0 (canonically, 0.0.0.0/0) covers all
                if (w2 == "all")
                {
                    // reset all previous values
                    access_ladmin.clear();
                    // set to all
                    access_ladmin.push_back(IP4Mask());
                }
                else if (w2
                        && !(access_ladmin.size() == 1
                            && access_ladmin.front().mask() == IP4Address()))
                {
                    // don't add IP if already 'all'
                    IP4Mask n;
                    if (!extract(w2, &n))
                    {
                        PRINTF("Bad IP mask: %s\n", line);
                        abort();
                    }
                    access_ladmin.push_back(n);
                }
            }
        }
        else if (w1 == "gm_pass")
        {
            gm_pass = w2;
        }
        else if (w1 == "level_new_gm")
        {
            level_new_gm = atoi(w2.c_str());
        }
        else if (w1 == "new_account")
        {
            new_account = config_switch(w2);
        }
        else if (w1 == "login_port")
        {
            login_port = atoi(w2.c_str());
        }
        else if (w1 == "account_filename")
        {
            account_filename = w2;
        }
        else if (w1 == "gm_account_filename")
        {
            gm_account_filename = w2;
        }
        else if (w1 == "gm_account_filename_check_timer")
        {
            gm_account_filename_check_timer = std::chrono::seconds(atoi(w2.c_str()));
        }
        else if (w1 == "login_log_filename")
        {
            login_log_filename = w2;
        }
        else if (w1 == "login_log_unknown_packets_filename")
        {
            login_log_unknown_packets_filename = w2;
        }
        else if (w1 == "save_unknown_packets")
        {
            save_unknown_packets = config_switch(w2);
        }
        else if (w1 == "display_parse_login")
        {
            display_parse_login = config_switch(w2);   // 0: no, 1: yes
        }
        else if (w1 == "display_parse_admin")
        {
            display_parse_admin = config_switch(w2);   // 0: no, 1: yes
        }
        else if (w1 == "display_parse_fromchar")
        {
            display_parse_fromchar = config_switch(w2);    // 0: no, 1: yes (without packet 0x2714), 2: all packets
        }
        else if (w1 == "min_level_to_connect")
        {
            min_level_to_connect = atoi(w2.c_str());
        }
        else if (w1 == "add_to_unlimited_account")
        {
            add_to_unlimited_account = config_switch(w2);
        }
        else if (w1 == "start_limited_time")
        {
            start_limited_time = atoi(w2.c_str());
        }
        else if (w1 == "check_ip_flag")
        {
            check_ip_flag = config_switch(w2);
        }
        else if (w1 == "order")
        {
            if (w2 == "deny,allow" || w2 == "deny, allow")
                access_order = ACO::DENY_ALLOW;
            else if (w2 == "allow,deny" || w2 == "allow, deny")
                access_order = ACO::ALLOW_DENY;
            else if (w2 == "mutual-failture" || w2 == "mutual-failure")
                access_order = ACO::MUTUAL_FAILURE;
            else
                PRINTF("Bad order: %s\n", w2);
        }
        else if (w1 == "allow")
        {
            if (w2 == "clear")
            {
                access_allow.clear();
            }
            else
            {
                if (w2 == "all")
                {
                    // reset all previous values
                    access_allow.clear();
                    // set to all
                    access_allow.push_back(IP4Mask());
                }
                else if (w2
                        && !(access_allow.size() == 1
                            && access_allow.front().mask() == IP4Address()))
                {
                    // don't add IP if already 'all'
                    IP4Mask n;
                    if (!extract(w2, &n))
                    {
                        PRINTF("Bad IP mask: %s\n", line);
                        abort();
                    }
                    access_allow.push_back(n);
                }
            }
        }
        else if (w1 == "deny")
        {
            if (w2 == "clear")
            {
                access_deny.clear();
            }
            else
            {
                if (w2 == "all")
                {
                    // reset all previous values
                    access_deny.clear();
                    // set to all
                    access_deny.push_back(IP4Mask());
                }
                else if (w2
                        && !(access_deny.size() == 1
                            && access_deny.front().mask() == IP4Address()))
                {
                    // don't add IP if already 'all'
                    IP4Mask n;
                    if (!extract(w2, &n))
                    {
                        PRINTF("Bad IP mask: %s\n", line);
                        abort();
                    }
                    access_deny.push_back(n);
                }
            }
        }
        else if (w1 == "anti_freeze_enable")
        {
            anti_freeze_enable = config_switch(w2);
        }
        else if (w1 == "anti_freeze_interval")
        {
            anti_freeze_interval = std::max(
                    std::chrono::seconds(atoi(w2.c_str())),
                    std::chrono::seconds(5));
        }
        else if (w1 == "import")
        {
            login_config_read(w2);
        }
        else if (w1 == "update_host")
        {
            update_host = w2;
        }
        else if (w1 == "main_server")
        {
            main_server = stringish<ServerName>(w2);
        }
        else
        {
            FString w1z = w1;
            PRINTF("WARNING: unknown login config key: %s\n", w1z);
        }
    }

    PRINTF("---End reading of Login Server configuration file.\n");

    return 0;
}

//-------------------------------------
// Displaying of configuration warnings
//-------------------------------------
static
void display_conf_warnings(void)
{
    if (admin_state != 0 && admin_state != 1)
    {
        PRINTF("***WARNING: Invalid value for admin_state parameter -> set to 0 (no remote admin).\n");
        admin_state = 0;
    }

    if (admin_state == 1)
    {
        if (!admin_pass)
        {
            PRINTF("***WARNING: Administrator password is void (admin_pass).\n");
        }
        else if (admin_pass == stringish<AccountPass>("admin"))
        {
            PRINTF("***WARNING: You are using the default administrator password (admin_pass).\n");
            PRINTF("            We highly recommend that you change it.\n");
        }
    }

    if (!gm_pass)
    {
        PRINTF("***WARNING: 'To GM become' password is void (gm_pass).\n");
        PRINTF("            We highly recommend that you set one password.\n");
    }
    else if (gm_pass == "gm")
    {
        PRINTF("***WARNING: You are using the default GM password (gm_pass).\n");
        PRINTF("            We highly recommend that you change it.\n");
    }

    if (level_new_gm < 0 || level_new_gm > 99)
    {
        PRINTF("***WARNING: Invalid value for level_new_gm parameter -> set to 60 (default).\n");
        level_new_gm = 60;
    }

    if (new_account != 0 && new_account != 1)
    {
        PRINTF("***WARNING: Invalid value for new_account parameter -> set to 0 (no new account).\n");
        new_account = 0;
    }

    if (login_port < 1024 || login_port > 65535)
    {
        PRINTF("***WARNING: Invalid value for login_port parameter -> set to 6900 (default).\n");
        login_port = 6900;
    }

    if (gm_account_filename_check_timer.count() < 0)
    {
        PRINTF("***WARNING: Invalid value for gm_account_filename_check_timer parameter.\n");
        PRINTF("            -> set to 15 sec (default).\n");
        gm_account_filename_check_timer = std::chrono::seconds(15);
    }
    else if (gm_account_filename_check_timer == std::chrono::seconds(1))
    {
        PRINTF("***WARNING: Invalid value for gm_account_filename_check_timer parameter.\n");
        PRINTF("            -> set to 2 sec (minimum value).\n");
        gm_account_filename_check_timer = std::chrono::seconds(2);
    }

    if (save_unknown_packets != 0 && save_unknown_packets != 1)
    {
        PRINTF("WARNING: Invalid value for save_unknown_packets parameter -> set to 0-no save.\n");
        save_unknown_packets = 0;
    }

    if (display_parse_login != 0 && display_parse_login != 1)
    {                           // 0: no, 1: yes
        PRINTF("***WARNING: Invalid value for display_parse_login parameter\n");
        PRINTF("            -> set to 0 (no display).\n");
        display_parse_login = 0;
    }

    if (display_parse_admin != 0 && display_parse_admin != 1)
    {                           // 0: no, 1: yes
        PRINTF("***WARNING: Invalid value for display_parse_admin parameter\n");
        PRINTF("            -> set to 0 (no display).\n");
        display_parse_admin = 0;
    }

    if (display_parse_fromchar < 0 || display_parse_fromchar > 2)
    {                           // 0: no, 1: yes (without packet 0x2714), 2: all packets
        PRINTF("***WARNING: Invalid value for display_parse_fromchar parameter\n");
        PRINTF("            -> set to 0 (no display).\n");
        display_parse_fromchar = 0;
    }

    if (min_level_to_connect < 0)
    {                           // 0: all players, 1-99 at least gm level x
        PRINTF("***WARNING: Invalid value for min_level_to_connect (%d) parameter\n",
             min_level_to_connect);
        PRINTF("            -> set to 0 (any player).\n");
        min_level_to_connect = 0;
    }
    else if (min_level_to_connect > 99)
    {                           // 0: all players, 1-99 at least gm level x
        PRINTF("***WARNING: Invalid value for min_level_to_connect (%d) parameter\n",
             min_level_to_connect);
        PRINTF("            -> set to 99 (only GM level 99).\n");
        min_level_to_connect = 99;
    }

    if (add_to_unlimited_account != 0 && add_to_unlimited_account != 1)
    {                           // 0: no, 1: yes
        PRINTF("***WARNING: Invalid value for add_to_unlimited_account parameter\n");
        PRINTF("            -> set to 0 (impossible to add a time to an unlimited account).\n");
        add_to_unlimited_account = 0;
    }

    if (start_limited_time < -1)
    {                           // -1: create unlimited account, 0 or more: additionnal sec from now to create limited time
        PRINTF("***WARNING: Invalid value for start_limited_time parameter\n");
        PRINTF("            -> set to -1 (new accounts are created with unlimited time).\n");
        start_limited_time = -1;
    }

    if (check_ip_flag != 0 && check_ip_flag != 1)
    {                           // 0: no, 1: yes
        PRINTF("***WARNING: Invalid value for check_ip_flag parameter\n");
        PRINTF("            -> set to 1 (check players ip between login-server & char-server).\n");
        check_ip_flag = 1;
    }

    if (access_order == ACO::DENY_ALLOW)
    {
        if (access_deny.size() == 1 && access_deny.front().mask() == IP4Address())
        {
            PRINTF("***WARNING: The IP security order is 'deny,allow' (allow if not deny).\n");
            PRINTF("            And you refuse ALL IP.\n");
        }
    }
    else if (access_order == ACO::ALLOW_DENY)
    {
        if (access_allow.empty())
        {
            PRINTF("***WARNING: The IP security order is 'allow,deny' (deny if not allow).\n");
            PRINTF("            But, NO IP IS AUTHORISED!\n");
        }
    }
    else
    {
        // ACO::MUTUAL_FAILURE
        if (access_allow.empty())
        {
            PRINTF("***WARNING: The IP security order is 'mutual-failture'\n");
            PRINTF("            (allow if in the allow list and not in the deny list).\n");
            PRINTF("            But, NO IP IS AUTHORISED!\n");
        }
        else if (access_deny.size() == 1 && access_deny.front().mask() == IP4Address())
        {
            PRINTF("***WARNING: The IP security order is mutual-failture\n");
            PRINTF("            (allow if in the allow list and not in the deny list).\n");
            PRINTF("            But, you refuse ALL IP!\n");
        }
    }
}

//-------------------------------
// Save configuration in log file
//-------------------------------
static
void save_config_in_log(void)
{
    // a newline in the log...
    LOGIN_LOG("");
    LOGIN_LOG("The login-server starting...\n");

    // save configuration in log file
    LOGIN_LOG("The configuration of the server is set:\n");

    if (admin_state != 1)
        LOGIN_LOG("- with no remote administration.\n");
    else if (!admin_pass)
        LOGIN_LOG("- with a remote administration with a VOID password.\n");
    else if (admin_pass == stringish<AccountPass>("admin"))
        LOGIN_LOG("- with a remote administration with the DEFAULT password.\n");
    else
        LOGIN_LOG("- with a remote administration with the password of %zu character(s).\n",
                admin_pass.size());
    if (access_ladmin.empty()
        || (access_ladmin.size() == 1 && access_ladmin.front().mask() == IP4Address()))
    {
        LOGIN_LOG("- to accept any IP for remote administration\n");
    }
    else
    {
        LOGIN_LOG("- to accept following IP for remote administration:\n");
        for (const IP4Mask& ae : access_ladmin)
            LOGIN_LOG("  %s\n", ae);
    }

    if (!gm_pass)
        LOGIN_LOG("- with a VOID 'To GM become' password (gm_pass).\n");
    else if (gm_pass == "gm")
        LOGIN_LOG("- with the DEFAULT 'To GM become' password (gm_pass).\n");
    else
        LOGIN_LOG("- with a 'To GM become' password (gm_pass) of %zu character(s).\n",
                gm_pass.size());
    if (level_new_gm == 0)
        LOGIN_LOG("- to refuse any creation of GM with @gm.\n");
    else
        LOGIN_LOG("- to create GM with level '%d' when @gm is used.\n",
                   level_new_gm);

    if (new_account == 1)
        LOGIN_LOG("- to ALLOW new users (with _F/_M).\n");
    else
        LOGIN_LOG("- to NOT ALLOW new users (with _F/_M).\n");
    LOGIN_LOG("- with port: %d.\n", login_port);
    LOGIN_LOG("- with the accounts file name: '%s'.\n",
               account_filename);
    LOGIN_LOG("- with the GM accounts file name: '%s'.\n",
               gm_account_filename);
    if (gm_account_filename_check_timer == interval_t::zero())
        LOGIN_LOG("- to NOT check GM accounts file modifications.\n");
    else
        LOGIN_LOG("- to check GM accounts file modifications every %lld seconds.\n",
             maybe_cast<long long>(gm_account_filename_check_timer.count()));

    // not necessary to log the 'login_log_filename', we are inside :)

    LOGIN_LOG("- with the unknown packets file name: '%s'.\n",
               login_log_unknown_packets_filename);
    if (save_unknown_packets)
        LOGIN_LOG("- to SAVE all unkown packets.\n");
    else
        LOGIN_LOG("- to SAVE only unkown packets sending by a char-server or a remote administration.\n");
    if (display_parse_login)
        LOGIN_LOG("- to display normal parse packets on console.\n");
    else
        LOGIN_LOG("- to NOT display normal parse packets on console.\n");
    if (display_parse_admin)
        LOGIN_LOG("- to display administration parse packets on console.\n");
    else
        LOGIN_LOG("- to NOT display administration parse packets on console.\n");
    if (display_parse_fromchar)
        LOGIN_LOG("- to display char-server parse packets on console.\n");
    else
        LOGIN_LOG("- to NOT display char-server parse packets on console.\n");

    if (min_level_to_connect == 0)  // 0: all players, 1-99 at least gm level x
        LOGIN_LOG("- with no minimum level for connection.\n");
    else if (min_level_to_connect == 99)
        LOGIN_LOG("- to accept only GM with level 99.\n");
    else
        LOGIN_LOG("- to accept only GM with level %d or more.\n",
                   min_level_to_connect);

    if (add_to_unlimited_account)
        LOGIN_LOG("- to authorize adjustment (with timeadd ladmin) on an unlimited account.\n");
    else
        LOGIN_LOG("- to refuse adjustment (with timeadd ladmin) on an unlimited account. You must use timeset (ladmin command) before.\n");

    if (start_limited_time < 0)
        LOGIN_LOG("- to create new accounts with an unlimited time.\n");
    else if (start_limited_time == 0)
        LOGIN_LOG("- to create new accounts with a limited time: time of creation.\n");
    else
        LOGIN_LOG("- to create new accounts with a limited time: time of creation + %d second(s).\n",
             start_limited_time);

    if (check_ip_flag)
        LOGIN_LOG("- with control of players IP between login-server and char-server.\n");
    else
        LOGIN_LOG("- to not check players IP between login-server and char-server.\n");

    if (access_order == ACO::DENY_ALLOW)
    {
        if (access_deny.empty())
        {
            LOGIN_LOG("- with the IP security order: 'deny,allow' (allow if not deny). You refuse no IP.\n");
        }
        else if (access_deny.size() == 1 && access_deny.front().mask() == IP4Address())
        {
            LOGIN_LOG("- with the IP security order: 'deny,allow' (allow if not deny). You refuse ALL IP.\n");
        }
        else
        {
            LOGIN_LOG("- with the IP security order: 'deny,allow' (allow if not deny). Refused IP are:\n");
            for (IP4Mask ae : access_deny)
                LOGIN_LOG("  %s\n", ae);
        }
    }
    else if (access_order == ACO::ALLOW_DENY)
    {
        if (access_allow.empty())
        {
            LOGIN_LOG("- with the IP security order: 'allow,deny' (deny if not allow). But, NO IP IS AUTHORISED!\n");
        }
        else if (access_allow.size() == 1 && access_allow.front().mask() == IP4Address())
        {
            LOGIN_LOG("- with the IP security order: 'allow,deny' (deny if not allow). You authorise ALL IP.\n");
        }
        else
        {
            LOGIN_LOG("- with the IP security order: 'allow,deny' (deny if not allow). Authorised IP are:\n");
            for (IP4Mask ae : access_allow)
                LOGIN_LOG("  %s\n", ae);
        }
    }
    else
    {                           // ACO_MUTUAL_FAILTURE
        LOGIN_LOG("- with the IP security order: 'mutual-failture' (allow if in the allow list and not in the deny list).\n");
        if (access_allow.empty())
        {
            LOGIN_LOG("  But, NO IP IS AUTHORISED!\n");
        }
        else if (access_deny.size() == 1 && access_deny.front().mask() == IP4Address())
        {
            LOGIN_LOG("  But, you refuse ALL IP!\n");
        }
        else
        {
            if (access_allow.size() == 1 && access_allow.front().mask() == IP4Address())
            {
                LOGIN_LOG("  You authorise ALL IP.\n");
            }
            else
            {
                LOGIN_LOG("  Authorised IP are:\n");
                for (IP4Mask ae : access_allow)
                    LOGIN_LOG("    %s\n", ae);
            }
            LOGIN_LOG("  Refused IP are:\n");
            for (IP4Mask ae : access_deny)
                LOGIN_LOG("    %s\n", ae);
        }
    }
}

//--------------------------------------
// Function called at exit of the server
//--------------------------------------
void term_func(void)
{
    int i, fd;

    mmo_auth_sync();

    auth_data.clear();
    gm_account_db.clear();
    for (i = 0; i < MAX_SERVERS; i++)
    {
        if ((fd = server_fd[i]) >= 0)
            delete_session(fd);
    }
    delete_session(login_fd);

    LOGIN_LOG("----End of login-server (normal end with closing of all files).\n");
}

//------------------------------
// Main function of login-server
//------------------------------
int do_init(int argc, ZString *argv)
{
    // read login-server configuration
    if (argc > 1)
        login_config_read(argv[1]);
    else
        login_config_read(LOGIN_CONF_NAME);
    display_conf_warnings();   // not in login_config_read, because we can use 'import' option, and display same message twice or more
    save_config_in_log();      // not before, because log file name can be changed
    if (argc > 2)
        login_lan_config_read(argv[2]);
    else
        login_lan_config_read(LAN_CONF_NAME);

    for (int i = 0; i < AUTH_FIFO_SIZE; i++)
        auth_fifo[i].delflag = 1;
    for (int i = 0; i < MAX_SERVERS; i++)
        server_fd[i] = -1;

    read_gm_account();
    mmo_auth_init();
//     set_termfunc (mmo_auth_sync);
    set_defaultparse(parse_login);
    login_fd = make_listen_port(login_port);


    Timer(gettick() + std::chrono::minutes(5),
            check_auth_sync,
            std::chrono::minutes(5)
    ).detach();

    if (anti_freeze_enable > 0)
    {
        Timer(gettick() + std::chrono::seconds(1),
                char_anti_freeze_system,
                anti_freeze_interval
        ).detach();
    }

    // add timer to check GM accounts file modification
    std::chrono::seconds j = gm_account_filename_check_timer;
    if (j == interval_t::zero())
        j = std::chrono::minutes(1);
    Timer(gettick() + j,
            check_GM_file,
            j).detach();

    LOGIN_LOG("The login-server is ready (Server is listening on the port %d).\n",
         login_port);

    PRINTF("The login-server is \033[1;32mready\033[0m (Server is listening on the port %d).\n\n",
         login_port);

    return 0;
}