Mercurial > dovecot > core-2.2

annotate src/director/login-connection.c @ 18503:333533e2d231

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
director: Log error if auth sends invalid lip/lport/port parameter. This also fixes compiler warnings.
author Timo Sirainen <tss@iki.fi>
date Wed, 29 Apr 2015 17:45:30 +0200
parents c5cdf42e398a
children e178413a905d
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
18137
3009a1a6f6d5 global: freshen copyright
Phil Carmody <phil@dovecot.fi>
parents: 18067
diff changeset
1 /* Copyright (c) 2010-2015 Dovecot authors, see the included COPYING file */
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
2
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
3 #include "lib.h"
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
4 #include "ioloop.h"
15187
02451e967a06 Renamed network.[ch] to net.[ch].
Timo Sirainen <tss@iki.fi>
parents: 14681
diff changeset
5 #include "net.h"
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
6 #include "ostream.h"
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
7 #include "llist.h"
11430
c82a7922fca9 director: Update connection counts also on login connection deinit.
Timo Sirainen <tss@iki.fi>
parents: 11326
diff changeset
8 #include "master-service.h"
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
9 #include "director.h"
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
10 #include "director-request.h"
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
11 #include "auth-connection.h"
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
12 #include "login-connection.h"
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
13
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
14 #include <unistd.h>
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
15
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
16 struct login_connection {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
17 struct login_connection *prev, *next;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
18
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
19 int refcount;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
20
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
21 int fd;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
22 struct io *io;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
23 struct ostream *output;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
24 struct auth_connection *auth;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
25 struct director *dir;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
26
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
27 unsigned int destroyed:1;
11714
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
28 unsigned int userdb:1;
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
29 };
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
30
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
31 struct login_host_request {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
32 struct login_connection *conn;
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
33 char *line, *username;
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
34
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
35 struct ip_addr local_ip;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
36 unsigned int local_port;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
37 unsigned int dest_port;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
38 bool director_proxy_maybe;
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
39 };
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
40
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
41 static struct login_connection *login_connections;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
42
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
43 static void login_connection_unref(struct login_connection **_conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
44
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
45 static void login_connection_input(struct login_connection *conn)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
46 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
47 unsigned char buf[4096];
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
48 ssize_t ret;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
49
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
50 ret = read(conn->fd, buf, sizeof(buf));
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
51 if (ret <= 0) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
52 if (ret < 0) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
53 if (errno == EAGAIN)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
54 return;
16614
ebbe00999da8 director: Don't log an error if login connection gets closed with ECONNRESET.
Timo Sirainen <tss@iki.fi>
parents: 15715
diff changeset
55 if (errno != ECONNRESET)
ebbe00999da8 director: Don't log an error if login connection gets closed with ECONNRESET.
Timo Sirainen <tss@iki.fi>
parents: 15715
diff changeset
56 i_error("read(login connection) failed: %m");
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
57 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
58 login_connection_deinit(&conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
59 return;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
60 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
61 auth_connection_send(conn->auth, buf, ret);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
62 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
63
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
64 static void
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
65 login_connection_send_line(struct login_connection *conn, const char *line)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
66 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
67 struct const_iovec iov[2];
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
68
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
69 if (conn->destroyed)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
70 return;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
71
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
72 iov[0].iov_base = line;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
73 iov[0].iov_len = strlen(line);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
74 iov[1].iov_base = "\n";
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
75 iov[1].iov_len = 1;
14681
ca37d1577291 Added o_stream_nsend*() and related functions to make delayed error handling safer.
Timo Sirainen <tss@iki.fi>
parents: 14471
diff changeset
76 o_stream_nsendv(conn->output, iov, N_ELEMENTS(iov));
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
77 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
78
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
79 static bool login_host_request_is_self(struct login_host_request *request,
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
80 const struct ip_addr *dest_ip)
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
81 {
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
82 if (!net_ip_compare(dest_ip, &request->local_ip))
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
83 return FALSE;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
84 if (request->dest_port != 0 && request->local_port != 0 &&
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
85 request->dest_port != request->local_port)
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
86 return FALSE;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
87 return TRUE;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
88 }
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
89
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
90 static void
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
91 login_host_callback(const struct ip_addr *ip, const char *errormsg,
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
92 void *context)
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
93 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
94 struct login_host_request *request = context;
11325
2a5336ad86cd director: Tell login proxy to notify director of open connections every director_user_expire/2 secs.
Timo Sirainen <tss@iki.fi>
parents: 11321
diff changeset
95 struct director *dir = request->conn->dir;
16785
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
96 const char *line, *line_params;
11325
2a5336ad86cd director: Tell login proxy to notify director of open connections every director_user_expire/2 secs.
Timo Sirainen <tss@iki.fi>
parents: 11321
diff changeset
97 unsigned int secs;
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
98
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
99 if (ip == NULL) {
16785
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
100 if (strncmp(request->line, "OK\t", 3) == 0)
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
101 line_params = request->line + 3;
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
102 else if (strncmp(request->line, "PASS\t", 5) == 0)
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
103 line_params = request->line + 5;
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
104 else
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
105 i_panic("BUG: Unexpected line: %s", request->line);
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
106
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
107 i_error("director: User %s host lookup failed: %s",
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
108 request->username, errormsg);
16785
b135d723acf3 director: Don't assert-crash if PASS lookup fails.
Timo Sirainen <tss@iki.fi>
parents: 16614
diff changeset
109 line = t_strconcat("FAIL\t", t_strcut(line_params, '\t'),
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
110 "\ttemp", NULL);
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
111 } else if (request->director_proxy_maybe &&
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
112 login_host_request_is_self(request, ip)) {
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
113 line = request->line;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
114 } else {
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
115 secs = dir->set->director_user_expire / 2;
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
116 line = t_strdup_printf("%s\thost=%s\tproxy_refresh=%u",
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
117 request->line, net_ip2addr(ip), secs);
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
118 }
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
119 login_connection_send_line(request->conn, line);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
120
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
121 login_connection_unref(&request->conn);
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
122 i_free(request->username);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
123 i_free(request->line);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
124 i_free(request);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
125 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
126
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
127 static void auth_input_line(const char *line, void *context)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
128 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
129 struct login_connection *conn = context;
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
130 struct login_host_request *request, temp_request;
18067
a7e830b9b967 director: Added support for backend cluster "tags".
Timo Sirainen <tss@iki.fi>
parents: 17467
diff changeset
131 const char *const *args, *line_params, *username = NULL, *tag = "";
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
132 bool proxy = FALSE, host = FALSE;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
133
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
134 if (line == NULL) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
135 /* auth connection died -> kill also this login connection */
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
136 login_connection_deinit(&conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
137 return;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
138 }
11714
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
139 if (!conn->userdb && strncmp(line, "OK\t", 3) == 0)
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
140 line_params = line + 3;
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
141 else if (conn->userdb && strncmp(line, "PASS\t", 5) == 0)
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
142 line_params = line + 5;
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
143 else {
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
144 login_connection_send_line(conn, line);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
145 return;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
146 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
147
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
148 /* OK <id> [<parameters>] */
14471
fc8031c5e691 Use t_strsplit_tab() wherever possible
Timo Sirainen <tss@iki.fi>
parents: 14133
diff changeset
149 args = t_strsplit_tab(line_params);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
150 if (*args != NULL) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
151 /* we should always get here, but in case we don't just
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
152 forward as-is and let login process handle the error. */
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
153 args++;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
154 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
155
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
156 memset(&temp_request, 0, sizeof(temp_request));
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
157 for (; *args != NULL; args++) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
158 if (strncmp(*args, "proxy", 5) == 0 &&
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
159 ((*args)[5] == '=' || (*args)[5] == '\0'))
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
160 proxy = TRUE;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
161 else if (strncmp(*args, "host=", 5) == 0)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
162 host = TRUE;
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
163 else if (strncmp(*args, "lip=", 4) == 0) {
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
164 if (net_addr2ip((*args) + 4, &temp_request.local_ip) < 0)
18503
333533e2d231 director: Log error if auth sends invalid lip/lport/port parameter.
Timo Sirainen <tss@iki.fi>
parents: 18498
diff changeset
165 i_error("auth sent invalid lip field: %s", (*args) + 6);
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
166 } else if (strncmp(*args, "lport=", 6) == 0) {
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
167 if (str_to_uint((*args) + 6, &temp_request.local_port) < 0)
18503
333533e2d231 director: Log error if auth sends invalid lip/lport/port parameter.
Timo Sirainen <tss@iki.fi>
parents: 18498
diff changeset
168 i_error("auth sent invalid lport field: %s", (*args) + 6);
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
169 } else if (strncmp(*args, "port=", 5) == 0) {
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
170 if (str_to_uint((*args) + 5, &temp_request.dest_port) < 0)
18503
333533e2d231 director: Log error if auth sends invalid lip/lport/port parameter.
Timo Sirainen <tss@iki.fi>
parents: 18498
diff changeset
171 i_error("auth sent invalid port field: %s", (*args) + 6);
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
172 } else if (strncmp(*args, "destuser=", 9) == 0)
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
173 username = *args + 9;
18067
a7e830b9b967 director: Added support for backend cluster "tags".
Timo Sirainen <tss@iki.fi>
parents: 17467
diff changeset
174 else if (strncmp(*args, "director_tag=", 13) == 0)
a7e830b9b967 director: Added support for backend cluster "tags".
Timo Sirainen <tss@iki.fi>
parents: 17467
diff changeset
175 tag = *args + 13;
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
176 else if (strncmp(*args, "director_proxy_maybe", 20) == 0 &&
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
177 ((*args)[20] == '=' || (*args)[20] == '\0'))
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
178 temp_request.director_proxy_maybe = TRUE;
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
179 else if (strncmp(*args, "user=", 5) == 0) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
180 if (username == NULL)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
181 username = *args + 5;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
182 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
183 }
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
184 if ((!proxy && !temp_request.director_proxy_maybe) ||
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
185 host || username == NULL) {
17467
899cf87a687c director: Fixed crash if master_user_separator is set, but we didn't do a proxy lookup.
Timo Sirainen <tss@iki.fi>
parents: 17130
diff changeset
186 login_connection_send_line(conn, line);
899cf87a687c director: Fixed crash if master_user_separator is set, but we didn't do a proxy lookup.
Timo Sirainen <tss@iki.fi>
parents: 17130
diff changeset
187 return;
899cf87a687c director: Fixed crash if master_user_separator is set, but we didn't do a proxy lookup.
Timo Sirainen <tss@iki.fi>
parents: 17130
diff changeset
188 }
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
189 if (*conn->dir->set->master_user_separator != '\0') {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
190 /* with master user logins we still want to use only the
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
191 login username */
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
192 username = t_strcut(username,
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
193 *conn->dir->set->master_user_separator);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
194 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
195
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
196 /* we need to add the host. the lookup might be asynchronous */
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
197 request = i_new(struct login_host_request, 1);
18498
c5cdf42e398a director: Implemented director_proxy_maybe passdb extra field.
Timo Sirainen <tss@iki.fi>
parents: 18137
diff changeset
198 *request = temp_request;
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
199 request->conn = conn;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
200 request->line = i_strdup(line);
13921
c70965e8b27d director: If request is timed out, log an error.
Timo Sirainen <tss@iki.fi>
parents: 12782
diff changeset
201 request->username = i_strdup(username);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
202
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
203 conn->refcount++;
18067
a7e830b9b967 director: Added support for backend cluster "tags".
Timo Sirainen <tss@iki.fi>
parents: 17467
diff changeset
204 director_request(conn->dir, username, tag, login_host_callback, request);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
205 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
206
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
207 struct login_connection *
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
208 login_connection_init(struct director *dir, int fd,
11714
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
209 struct auth_connection *auth, bool userdb)
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
210 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
211 struct login_connection *conn;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
212
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
213 conn = i_new(struct login_connection, 1);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
214 conn->refcount = 1;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
215 conn->fd = fd;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
216 conn->auth = auth;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
217 conn->dir = dir;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
218 conn->output = o_stream_create_fd(conn->fd, (size_t)-1, FALSE);
14681
ca37d1577291 Added o_stream_nsend*() and related functions to make delayed error handling safer.
Timo Sirainen <tss@iki.fi>
parents: 14471
diff changeset
219 o_stream_set_no_error_handling(conn->output, TRUE);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
220 conn->io = io_add(conn->fd, IO_READ, login_connection_input, conn);
11714
1683324ac632 director: Added support for LMTP proxying.
Timo Sirainen <tss@iki.fi>
parents: 11430
diff changeset
221 conn->userdb = userdb;
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
222
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
223 auth_connection_set_callback(conn->auth, auth_input_line, conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
224 DLLIST_PREPEND(&login_connections, conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
225 return conn;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
226 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
227
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
228 void login_connection_deinit(struct login_connection **_conn)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
229 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
230 struct login_connection *conn = *_conn;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
231
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
232 *_conn = NULL;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
233
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
234 if (conn->destroyed)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
235 return;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
236 conn->destroyed = TRUE;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
237
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
238 DLLIST_REMOVE(&login_connections, conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
239 io_remove(&conn->io);
14681
ca37d1577291 Added o_stream_nsend*() and related functions to make delayed error handling safer.
Timo Sirainen <tss@iki.fi>
parents: 14471
diff changeset
240 o_stream_destroy(&conn->output);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
241 if (close(conn->fd) < 0)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
242 i_error("close(login connection) failed: %m");
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
243 conn->fd = -1;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
244
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
245 auth_connection_deinit(&conn->auth);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
246 login_connection_unref(&conn);
11430
c82a7922fca9 director: Update connection counts also on login connection deinit.
Timo Sirainen <tss@iki.fi>
parents: 11326
diff changeset
247
c82a7922fca9 director: Update connection counts also on login connection deinit.
Timo Sirainen <tss@iki.fi>
parents: 11326
diff changeset
248 master_service_client_connection_destroyed(master_service);
11321
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
249 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
250
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
251 static void login_connection_unref(struct login_connection **_conn)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
252 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
253 struct login_connection *conn = *_conn;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
254
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
255 *_conn = NULL;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
256
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
257 i_assert(conn->refcount > 0);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
258 if (--conn->refcount == 0)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
259 i_free(conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
260 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
261
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
262 void login_connections_deinit(void)
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
263 {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
264 while (login_connections != NULL) {
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
265 struct login_connection *conn = login_connections;
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
266
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
267 login_connection_deinit(&conn);
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
268 }
5f350b5ff6d9 Added initial implementation of a director process (for NFS users).
Timo Sirainen <tss@iki.fi>
parents:
diff changeset
269 }