Mercurial > dovecot > core-2.2
view src/login-common/login-proxy.h @ 22715:20415dd0b85a
dsync: Add per-mailbox sync lock that is always used.
Both importing and exporting gets the lock before they even sync the
mailbox. The lock is kept until the import/export finishes. This guarantees
that no matter how dsync is run, two dsyncs can't be working on the same
mailbox at the same time.
This lock is in addition to the optional per-user lock enabled by the -l
parameter. If the -l parameter is used, the same lock timeout is used for
the per-mailbox lock. Otherwise 30s timeout is used.
This should help to avoid email duplication when replication is enabled for
public namespaces, and maybe in some other rare situations as well.
| author | Timo Sirainen <timo.sirainen@dovecot.fi> |
|---|---|
| date | Thu, 28 Dec 2017 14:10:23 +0200 |
| parents | aabfe48db1cf |
| children |
line wrap: on
line source
#ifndef LOGIN_PROXY_H #define LOGIN_PROXY_H #include "net.h" /* Max. number of embedded proxying connections until proxying fails. This is intended to avoid an accidental configuration where two proxies keep connecting to each others, both thinking the other one is supposed to handle the user. This only works if both proxies support the Dovecot TTL extension feature. */ #define LOGIN_PROXY_TTL 5 struct client; struct login_proxy; enum login_proxy_ssl_flags { /* Use SSL/TLS enabled */ PROXY_SSL_FLAG_YES = 0x01, /* Don't do SSL handshake immediately after connected */ PROXY_SSL_FLAG_STARTTLS = 0x02, /* Don't require that the received certificate is valid */ PROXY_SSL_FLAG_ANY_CERT = 0x04 }; struct login_proxy_settings { const char *host; struct ip_addr ip, source_ip; in_port_t port; unsigned int connect_timeout_msecs; /* send a notification about proxy connection to proxy-notify pipe every n seconds */ unsigned int notify_refresh_secs; enum login_proxy_ssl_flags ssl_flags; }; /* Called when new input comes from proxy. */ typedef void proxy_callback_t(struct client *client); /* Create a proxy to given host. Returns NULL if failed. Given callback is called when new input is available from proxy. */ int login_proxy_new(struct client *client, const struct login_proxy_settings *set, proxy_callback_t *callback); /* Free the proxy. This should be called if authentication fails. */ void login_proxy_free(struct login_proxy **proxy); /* Return TRUE if host/port/destuser combination points to same as current connection. */ bool login_proxy_is_ourself(const struct client *client, const char *host, in_port_t port, const char *destuser); /* Detach proxy from client. This is done after the authentication is successful and all that is left is the dummy proxying. */ void login_proxy_detach(struct login_proxy *proxy); /* STARTTLS command was issued. */ int login_proxy_starttls(struct login_proxy *proxy); struct istream *login_proxy_get_istream(struct login_proxy *proxy); struct ostream *login_proxy_get_ostream(struct login_proxy *proxy); const char *login_proxy_get_host(const struct login_proxy *proxy) ATTR_PURE; in_port_t login_proxy_get_port(const struct login_proxy *proxy) ATTR_PURE; enum login_proxy_ssl_flags login_proxy_get_ssl_flags(const struct login_proxy *proxy) ATTR_PURE; void login_proxy_kill_idle(void); void login_proxy_init(const char *proxy_notify_pipe_path); void login_proxy_deinit(void); #endif