dovecot/original-hg/dovecot-1.2: src/master/login-process.c annotate

annotate src/master/login-process.c @ 1506:e7c627bacaaf HEAD

Allow first_valid_gid to be 0. Drop any supplementary groups not in valid gid range.

author	Timo Sirainen <tss@iki.fi>
date	Mon, 26 May 2003 18:26:29 +0300
parents	e850252cdc7e
children	6850142c4e25

rev	line source
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	1 /* Copyright (C) 2002 Timo Sirainen */
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	2
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	3 #include "common.h"
532 3b53dd1280c6 I/O buffers now use real blocking instead of setting up a sub-ioloop to Timo Sirainen <tss@iki.fi> parents: 410 diff changeset	4 #include "ioloop.h"
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	5 #include "network.h"
764 f57c52738f90 Renamed IBuffer and OBuffer to IStream and OStream which describes their Timo Sirainen <tss@iki.fi> parents: 747 diff changeset	6 #include "ostream.h"
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	7 #include "fdpass.h"
727 8dd8ebe6bcac We use close-on-exec flag now to make sure that master process closes the Timo Sirainen <tss@iki.fi> parents: 722 diff changeset	8 #include "fd-close-on-exec.h"
697 7814b29d0862 Created env_put() and env_clean() for a bit easier handling of environment Timo Sirainen <tss@iki.fi> parents: 666 diff changeset	9 #include "env-util.h"
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	10 #include "restrict-access.h"
722 0438621d25ff Added virtual memory size limits to processes. Default values are pretty Timo Sirainen <tss@iki.fi> parents: 699 diff changeset	11 #include "restrict-process-size.h"
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	12 #include "login-process.h"
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	13 #include "auth-process.h"
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	14 #include "mail-process.h"
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	15 #include "master-login-interface.h"
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	16
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	17 #include <unistd.h>
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	18 #include <syslog.h>
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	19
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	20 struct login_group {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	21 struct login_group *next;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	22
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	23 struct login_settings *set;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	24
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	25 unsigned int processes;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	26 unsigned int listening_processes;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	27 unsigned int wanted_processes_count;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	28
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	29 struct login_process *oldest_nonlisten_process;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	30 struct login_process *newest_nonlisten_process;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	31
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	32 const char *executable;
1465 03dd87873a81 Added support for dynamically loadable imap/pop3 modules. Timo Sirainen <tss@iki.fi> parents: 1441 diff changeset	33 const char *module_dir;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	34 unsigned int process_size;
1358 70b60399c7d3 Separate PROCESS_TYPE_MAIL into IMAP and POP3. Timo Sirainen <tss@iki.fi> parents: 1338 diff changeset	35 int process_type;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	36 int listen_fd, ssl_listen_fd;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	37 };
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	38
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	39 struct login_process {
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	40 struct login_group *group;
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	41 struct login_process prev_nonlisten, next_nonlisten;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	42 int refcount;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	43
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	44 pid_t pid;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	45 int fd;
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	46 struct io *io;
fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	47 struct ostream *output;
925 2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	48 unsigned int initialized:1;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	49 unsigned int listening:1;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	50 unsigned int destroyed:1;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	51 };
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	52
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	53 struct login_auth_request {
fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	54 struct login_process *process;
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	55 unsigned int tag;
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	56
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	57 unsigned int login_tag;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	58 int fd;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	59
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	60 struct ip_addr ip;
fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	61 };
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	62
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	63 static unsigned int auth_id_counter, login_pid_counter;
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	64 static struct timeout *to;
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	65 static struct io *io_listen;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	66
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	67 static struct hash_table *processes;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	68 static struct login_group *login_groups;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	69
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	70 static void login_process_destroy(struct login_process *p);
fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	71 static void login_process_unref(struct login_process *p);
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	72 static int login_process_init_group(struct login_process *p);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	73
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	74 static void login_group_create(struct login_settings *login_set)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	75 {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	76 struct login_group *group;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	77
1119 5c9c681f13ff Don't start those login processes that aren't enabled in protocols setting. Timo Sirainen <tss@iki.fi> parents: 1065 diff changeset	78 if (strstr(set->protocols, login_set->name) == NULL) {
5c9c681f13ff Don't start those login processes that aren't enabled in protocols setting. Timo Sirainen <tss@iki.fi> parents: 1065 diff changeset	79 /* not enabled */
5c9c681f13ff Don't start those login processes that aren't enabled in protocols setting. Timo Sirainen <tss@iki.fi> parents: 1065 diff changeset	80 return;
5c9c681f13ff Don't start those login processes that aren't enabled in protocols setting. Timo Sirainen <tss@iki.fi> parents: 1065 diff changeset	81 }
5c9c681f13ff Don't start those login processes that aren't enabled in protocols setting. Timo Sirainen <tss@iki.fi> parents: 1065 diff changeset	82
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	83 group = i_new(struct login_group, 1);
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	84 group->set = login_set;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	85
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	86 if (strcmp(login_set->name, "imap") == 0) {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	87 group->executable = set->imap_executable;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	88 group->process_size = set->imap_process_size;
1358 70b60399c7d3 Separate PROCESS_TYPE_MAIL into IMAP and POP3. Timo Sirainen <tss@iki.fi> parents: 1338 diff changeset	89 group->process_type = PROCESS_TYPE_IMAP;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	90 group->listen_fd = &mail_fd[FD_IMAP];
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	91 group->ssl_listen_fd = &mail_fd[FD_IMAPS];
1468 8b7f631a83c3 fix Timo Sirainen <tss@iki.fi> parents: 1465 diff changeset	92 group->module_dir = !set->imap_use_modules ? NULL :
1465 03dd87873a81 Added support for dynamically loadable imap/pop3 modules. Timo Sirainen <tss@iki.fi> parents: 1441 diff changeset	93 set->imap_modules;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	94 } else if (strcmp(login_set->name, "pop3") == 0) {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	95 group->executable = set->pop3_executable;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	96 group->process_size = set->pop3_process_size;
1358 70b60399c7d3 Separate PROCESS_TYPE_MAIL into IMAP and POP3. Timo Sirainen <tss@iki.fi> parents: 1338 diff changeset	97 group->process_type = PROCESS_TYPE_POP3;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	98 group->listen_fd = &mail_fd[FD_POP3];
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	99 group->ssl_listen_fd = &mail_fd[FD_POP3S];
1468 8b7f631a83c3 fix Timo Sirainen <tss@iki.fi> parents: 1465 diff changeset	100 group->module_dir = !set->pop3_use_modules ? NULL :
1465 03dd87873a81 Added support for dynamically loadable imap/pop3 modules. Timo Sirainen <tss@iki.fi> parents: 1441 diff changeset	101 set->pop3_modules;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	102 } else
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	103 i_panic("Unknown login group name '%s'", login_set->name);
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	104
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	105 group->next = login_groups;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	106 login_groups = group;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	107 }
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	108
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	109 static void login_group_destroy(struct login_group *group)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	110 {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	111 i_free(group);
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	112 }
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	113
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	114 void auth_master_callback(struct auth_master_reply *reply,
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	115 const unsigned char data, void context)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	116 {
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	117 struct login_auth_request *request = context;
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	118 struct master_login_reply master_reply;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	119
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	120 if (reply == NULL \|\| !reply->success)
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	121 master_reply.success = FALSE;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	122 else {
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	123 struct login_group *group = request->process->group;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	124
1039 793f05a7e50e signed/unsigned/const pointer fixes Timo Sirainen <tss@iki.fi> parents: 1036 diff changeset	125 master_reply.success =
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	126 create_mail_process(request->fd, &request->ip,
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	127 group->executable,
1465 03dd87873a81 Added support for dynamically loadable imap/pop3 modules. Timo Sirainen <tss@iki.fi> parents: 1441 diff changeset	128 group->module_dir,
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	129 group->process_size,
1465 03dd87873a81 Added support for dynamically loadable imap/pop3 modules. Timo Sirainen <tss@iki.fi> parents: 1441 diff changeset	130 group->process_type,
03dd87873a81 Added support for dynamically loadable imap/pop3 modules. Timo Sirainen <tss@iki.fi> parents: 1441 diff changeset	131 reply, (const char *) data);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	132 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	133
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	134 /* reply to login */
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	135 master_reply.tag = request->login_tag;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	136
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	137 if (o_stream_send(request->process->output, &master_reply,
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	138 sizeof(master_reply)) < 0)
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	139 login_process_destroy(request->process);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	140
805 5ac361acb316 Marked all non-trivial buffer modifications with @UNSAFE tag. Several Timo Sirainen <tss@iki.fi> parents: 801 diff changeset	141 if (close(request->fd) < 0)
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	142 i_error("close(mail client) failed: %m");
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	143 login_process_unref(request->process);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	144 i_free(request);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	145 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	146
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	147 static void login_process_mark_nonlistening(struct login_process *p)
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	148 {
e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	149 if (!p->listening) {
e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	150 i_error("login: received another \"not listening\" "
1338 04ed7a2536cc Tru64 fixes. More comments. Timo Sirainen <tss@iki.fi> parents: 1275 diff changeset	151 "notification (if you can't login at all, "
04ed7a2536cc Tru64 fixes. More comments. Timo Sirainen <tss@iki.fi> parents: 1275 diff changeset	152 "see src/lib/fdpass.c)");
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	153 return;
e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	154 }
e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	155
e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	156 p->listening = FALSE;
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	157
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	158 if (p->group != NULL) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	159 p->group->listening_processes--;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	160 p->prev_nonlisten = p->group->newest_nonlisten_process;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	161
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	162 if (p->group->newest_nonlisten_process != NULL)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	163 p->group->newest_nonlisten_process->next_nonlisten = p;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	164 p->group->newest_nonlisten_process = p;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	165
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	166 if (p->group->oldest_nonlisten_process == NULL)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	167 p->group->oldest_nonlisten_process = p;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	168 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	169 }
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	170
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	171 static struct login_group login_group_process_find(const char name)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	172 {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	173 struct login_group *group;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	174 struct login_settings *login;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	175
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	176 if (login_groups == NULL) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	177 for (login = set->logins; login != NULL; login = login->next)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	178 login_group_create(login);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	179 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	180
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	181 for (group = login_groups; group != NULL; group = group->next) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	182 if (strcmp(group->set->name, name) == 0)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	183 return group;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	184 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	185
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	186 return NULL;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	187 }
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	188
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	189 static int login_process_read_group(struct login_process *p)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	190 {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	191 struct login_group *group;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	192 const char *name;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	193 char buf[256];
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	194 unsigned int len;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	195 ssize_t ret;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	196
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	197 /* read length */
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	198 ret = read(p->fd, buf, 1);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	199 if (ret != 1)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	200 len = 0;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	201 else {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	202 len = buf[0];
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	203 if (len >= sizeof(buf)) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	204 i_error("login: Process name length too large");
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	205 return FALSE;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	206 }
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	207
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	208 ret = read(p->fd, buf, len);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	209 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	210
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	211 if (ret < 0)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	212 i_error("login: read() failed: %m");
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	213 else if (len == 0 \|\| (size_t)ret != len)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	214 i_error("login: Process name wasn't sent");
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	215 else {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	216 name = t_strndup(buf, len);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	217 group = login_group_process_find(name);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	218 if (group == NULL) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	219 i_error("login: Unknown process group '%s'", name);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	220 return FALSE;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	221 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	222
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	223 p->group = group;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	224 return login_process_init_group(p);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	225 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	226 return FALSE;
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	227 }
e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	228
1036 f782b3319553 Removed useless parameters from io_callback_t and timeout_callback_t. Timo Sirainen <tss@iki.fi> parents: 1035 diff changeset	229 static void login_process_input(void *context)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	230 {
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	231 struct login_process *p = context;
fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	232 struct auth_process *auth_process;
fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	233 struct login_auth_request *authreq;
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	234 struct master_login_request req;
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	235 int client_fd;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	236 ssize_t ret;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	237
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	238 if (p->group == NULL) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	239 /* we want to read the group */
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	240 if (!login_process_read_group(p))
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	241 login_process_destroy(p);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	242 return;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	243 }
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	244
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	245 ret = fd_read(p->fd, &req, sizeof(req), &client_fd);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	246 if (ret != sizeof(req)) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	247 if (ret == 0) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	248 /* disconnected, ie. the login process died */
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	249 } else if (ret > 0) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	250 /* req wasn't fully read */
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	251 i_error("login: fd_read() couldn't read all req");
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	252 } else {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	253 i_error("login: fd_read() failed: %m");
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	254 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	255
929 a763b3826762 Don't leak fds in case of errors. Timo Sirainen <tss@iki.fi> parents: 925 diff changeset	256 if (client_fd != -1) {
a763b3826762 Don't leak fds in case of errors. Timo Sirainen <tss@iki.fi> parents: 925 diff changeset	257 if (close(client_fd) < 0)
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	258 i_error("close(mail client) failed: %m");
929 a763b3826762 Don't leak fds in case of errors. Timo Sirainen <tss@iki.fi> parents: 925 diff changeset	259 }
a763b3826762 Don't leak fds in case of errors. Timo Sirainen <tss@iki.fi> parents: 925 diff changeset	260
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	261 login_process_destroy(p);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	262 return;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	263 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	264
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	265 if (client_fd == -1) {
925 2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	266 /* just a notification that the login process */
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	267 if (!p->initialized) {
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	268 /* initialization notify */
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	269 p->initialized = TRUE;;
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	270 } else {
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	271 /* not listening for new connections anymore */
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	272 login_process_mark_nonlistening(p);
2e649dec0f09 Auth and login processes send an "we're ok" reply at the end of Timo Sirainen <tss@iki.fi> parents: 903 diff changeset	273 }
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	274 return;
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	275 }
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	276
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	277 fd_close_on_exec(client_fd, TRUE);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	278
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	279 /* ask the cookie from the auth process */
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	280 authreq = i_new(struct login_auth_request, 1);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	281 p->refcount++;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	282 authreq->process = p;
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	283 authreq->tag = ++auth_id_counter;
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	284 authreq->login_tag = req.tag;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	285 authreq->fd = client_fd;
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	286 authreq->ip = req.ip;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	287
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	288 auth_process = auth_process_find(req.auth_pid);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	289 if (auth_process == NULL) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	290 i_error("login: Authentication process %u doesn't exist",
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	291 req.auth_pid);
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	292 auth_master_callback(NULL, NULL, authreq);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	293 } else {
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	294 auth_process_request(auth_process, p->pid,
fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	295 req.auth_id, authreq);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	296 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	297 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	298
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	299 static struct login_process *
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	300 login_process_new(struct login_group *group, pid_t pid, int fd)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	301 {
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	302 struct login_process *p;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	303
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	304 i_assert(pid != 0);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	305
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	306 p = i_new(struct login_process, 1);
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	307 p->group = group;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	308 p->refcount = 1;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	309 p->pid = pid;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	310 p->fd = fd;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	311 p->listening = TRUE;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	312 p->io = io_add(fd, IO_READ, login_process_input, p);
764 f57c52738f90 Renamed IBuffer and OBuffer to IStream and OStream which describes their Timo Sirainen <tss@iki.fi> parents: 747 diff changeset	313 p->output = o_stream_create_file(fd, default_pool,
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	314 sizeof(struct master_login_reply)*10,
1499 e850252cdc7e Removed I/O priorities. They were pretty much useless and were just getting Timo Sirainen <tss@iki.fi> parents: 1468 diff changeset	315 FALSE);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	316
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	317 PID_ADD_PROCESS_TYPE(pid, PROCESS_TYPE_LOGIN);
195 db6e288be0e9 Replaced INT_TO_POINTER and POINTER_TO_INT macros with POINTER_CAST and Timo Sirainen <tss@iki.fi> parents: 10 diff changeset	318 hash_insert(processes, POINTER_CAST(pid), p);
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	319
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	320 if (p->group != NULL) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	321 p->group->processes++;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	322 p->group->listening_processes++;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	323 }
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	324 return p;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	325 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	326
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	327 static void login_process_remove_from_lists(struct login_process *p)
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	328 {
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	329 if (p->group == NULL)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	330 return;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	331
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	332 if (p == p->group->oldest_nonlisten_process)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	333 p->group->oldest_nonlisten_process = p->next_nonlisten;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	334 else
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	335 p->prev_nonlisten->next_nonlisten = p->next_nonlisten;
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	336
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	337 if (p == p->group->newest_nonlisten_process)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	338 p->group->newest_nonlisten_process = p->prev_nonlisten;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	339 else
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	340 p->next_nonlisten->prev_nonlisten = p->prev_nonlisten;
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	341
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	342 p->next_nonlisten = p->prev_nonlisten = NULL;
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	343 }
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	344
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	345 static void login_process_destroy(struct login_process *p)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	346 {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	347 if (p->destroyed)
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	348 return;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	349 p->destroyed = TRUE;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	350
1035 fe49ece0f3ea We have now separate "userdb" and "passdb". They aren't tied to each others Timo Sirainen <tss@iki.fi> parents: 1000 diff changeset	351 if (!p->initialized && io_loop_is_running(ioloop)) {
1000 0fbafade2d85 If auth/login process died unexpectedly, the exit status or killing signal Timo Sirainen <tss@iki.fi> parents: 945 diff changeset	352 i_error("Login process died too early - shutting down");
0fbafade2d85 If auth/login process died unexpectedly, the exit status or killing signal Timo Sirainen <tss@iki.fi> parents: 945 diff changeset	353 io_loop_stop(ioloop);
0fbafade2d85 If auth/login process died unexpectedly, the exit status or killing signal Timo Sirainen <tss@iki.fi> parents: 945 diff changeset	354 }
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	355
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	356 if (p->listening && p->group != NULL)
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	357 p->group->listening_processes--;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	358
764 f57c52738f90 Renamed IBuffer and OBuffer to IStream and OStream which describes their Timo Sirainen <tss@iki.fi> parents: 747 diff changeset	359 o_stream_close(p->output);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	360 io_remove(p->io);
805 5ac361acb316 Marked all non-trivial buffer modifications with @UNSAFE tag. Several Timo Sirainen <tss@iki.fi> parents: 801 diff changeset	361 if (close(p->fd) < 0)
5ac361acb316 Marked all non-trivial buffer modifications with @UNSAFE tag. Several Timo Sirainen <tss@iki.fi> parents: 801 diff changeset	362 i_error("close(login) failed: %m");
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	363
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	364 if (!p->listening)
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	365 login_process_remove_from_lists(p);
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	366
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	367 if (p->group != NULL)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	368 p->group->processes--;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	369
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	370 if (p->pid != 0)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	371 hash_remove(processes, POINTER_CAST(p->pid));
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	372
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	373 login_process_unref(p);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	374 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	375
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	376 static void login_process_unref(struct login_process *p)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	377 {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	378 if (--p->refcount > 0)
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	379 return;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	380
764 f57c52738f90 Renamed IBuffer and OBuffer to IStream and OStream which describes their Timo Sirainen <tss@iki.fi> parents: 747 diff changeset	381 o_stream_unref(p->output);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	382 i_free(p);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	383 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	384
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	385 static void login_process_init_env(struct login_group *group, pid_t pid)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	386 {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	387 child_process_init_env();
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	388
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	389 /* setup access environment - needs to be done after
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	390 clean_child_process() since it clears environment */
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	391 restrict_access_set_env(group->set->user,
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	392 group->set->uid, set->login_gid,
1506 e7c627bacaaf Allow first_valid_gid to be 0. Drop any supplementary groups not in valid Timo Sirainen <tss@iki.fi> parents: 1499 diff changeset	393 set->login_chroot ? set->login_dir : NULL,
e7c627bacaaf Allow first_valid_gid to be 0. Drop any supplementary groups not in valid Timo Sirainen <tss@iki.fi> parents: 1499 diff changeset	394 0, 0);
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	395
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	396 env_put("DOVECOT_MASTER=1");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	397
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	398 if (!set->ssl_disable) {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	399 env_put(t_strconcat("SSL_CERT_FILE=",
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	400 set->ssl_cert_file, NULL));
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	401 env_put(t_strconcat("SSL_KEY_FILE=", set->ssl_key_file, NULL));
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	402 env_put(t_strconcat("SSL_PARAM_FILE=",
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	403 set->ssl_parameters_file, NULL));
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	404 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	405
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	406 if (set->disable_plaintext_auth)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	407 env_put("DISABLE_PLAINTEXT_AUTH=1");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	408 if (set->verbose_proctitle)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	409 env_put("VERBOSE_PROCTITLE=1");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	410 if (set->verbose_ssl)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	411 env_put("VERBOSE_SSL=1");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	412
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	413 if (group->set->process_per_connection) {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	414 env_put("PROCESS_PER_CONNECTION=1");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	415 env_put("MAX_LOGGING_USERS=1");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	416 } else {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	417 env_put(t_strdup_printf("MAX_LOGGING_USERS=%u",
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	418 group->set->max_logging_users));
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	419 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	420
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	421 env_put(t_strdup_printf("PROCESS_UID=%s", dec2str(pid)));
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	422 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	423
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	424 static pid_t create_login_process(struct login_group *group)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	425 {
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	426 static const char *argv[] = { NULL, NULL };
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	427 pid_t pid;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	428 int fd[2];
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	429
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	430 if (group->set->process_per_connection &&
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	431 group->processes - group->listening_processes >=
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	432 group->set->max_logging_users) {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	433 if (group->oldest_nonlisten_process != NULL)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	434 login_process_destroy(group->oldest_nonlisten_process);
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	435 }
1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	436
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	437 if (group->set->uid == 0)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	438 i_fatal("Login process must not run as root");
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	439
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	440 /* create communication to process with a socket pair */
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	441 if (socketpair(AF_UNIX, SOCK_STREAM, 0, fd) == -1) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	442 i_error("socketpair() failed: %m");
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	443 return -1;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	444 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	445
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	446 pid = fork();
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	447 if (pid < 0) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	448 (void)close(fd[0]);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	449 (void)close(fd[1]);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	450 i_error("fork() failed: %m");
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	451 return -1;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	452 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	453
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	454 if (pid != 0) {
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	455 /* master */
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	456 net_set_nonblock(fd[0], TRUE);
727 8dd8ebe6bcac We use close-on-exec flag now to make sure that master process closes the Timo Sirainen <tss@iki.fi> parents: 722 diff changeset	457 fd_close_on_exec(fd[0], TRUE);
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	458 (void)login_process_new(group, pid, fd[0]);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	459 (void)close(fd[1]);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	460 return pid;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	461 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	462
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	463 /* move the listen handle */
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	464 if (dup2(*group->listen_fd, LOGIN_LISTEN_FD) < 0)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	465 i_fatal("login: dup2(listen_fd) failed: %m");
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	466 fd_close_on_exec(LOGIN_LISTEN_FD, FALSE);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	467
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	468 /* move the SSL listen handle */
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	469 if (dup2(*group->ssl_listen_fd, LOGIN_SSL_LISTEN_FD) < 0)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	470 i_fatal("login: dup2(ssl_listen_fd) failed: %m");
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	471 fd_close_on_exec(LOGIN_SSL_LISTEN_FD, FALSE);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	472
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	473 /* move communication handle */
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	474 if (dup2(fd[1], LOGIN_MASTER_SOCKET_FD) < 0)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	475 i_fatal("login: dup2(master) failed: %m");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	476 fd_close_on_exec(LOGIN_MASTER_SOCKET_FD, FALSE);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	477
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	478 (void)close(fd[0]);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	479 (void)close(fd[1]);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	480
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	481 login_process_init_env(group, getpid());
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	482
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	483 if (!set->login_chroot) {
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	484 /* no chrooting, but still change to the directory */
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	485 if (chdir(set->login_dir) < 0)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	486 i_fatal("chdir(%s) failed: %m", set->login_dir);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	487 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	488
1398 b2a2edafdd91 Moved setting process limit after exec(). Timo Sirainen <tss@iki.fi> parents: 1358 diff changeset	489 restrict_process_size(group->set->process_size, (unsigned int)-1);
722 0438621d25ff Added virtual memory size limits to processes. Default values are pretty Timo Sirainen <tss@iki.fi> parents: 699 diff changeset	490
801 86224ff16bf6 Drop root privileges earlier. Close syslog more later in imap-master when Timo Sirainen <tss@iki.fi> parents: 791 diff changeset	491 /* make sure we don't leak syslog fd, but do it last so that
86224ff16bf6 Drop root privileges earlier. Close syslog more later in imap-master when Timo Sirainen <tss@iki.fi> parents: 791 diff changeset	492 any errors above will be logged */
86224ff16bf6 Drop root privileges earlier. Close syslog more later in imap-master when Timo Sirainen <tss@iki.fi> parents: 791 diff changeset	493 closelog();
86224ff16bf6 Drop root privileges earlier. Close syslog more later in imap-master when Timo Sirainen <tss@iki.fi> parents: 791 diff changeset	494
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	495 /* hide the path, it's ugly */
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	496 argv[0] = strrchr(group->set->executable, '/');
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	497 if (argv[0] == NULL) argv[0] = group->set->executable; else argv[0]++;
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	498
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	499 execv(group->set->executable, (char **) argv);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	500
1441 a83ce8395316 If exec() fails, show the full path rather than argv[0] Timo Sirainen <tss@iki.fi> parents: 1398 diff changeset	501 i_fatal_status(FATAL_EXEC, "execv(%s) failed: %m",
a83ce8395316 If exec() fails, show the full path rather than argv[0] Timo Sirainen <tss@iki.fi> parents: 1398 diff changeset	502 group->set->executable);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	503 return -1;
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	504 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	505
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	506 void login_process_abormal_exit(pid_t pid)
615 0d852af6842e Master process generates DH/RSA parameters now and stores them into file Timo Sirainen <tss@iki.fi> parents: 614 diff changeset	507 {
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	508 struct login_process *p;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	509
615 0d852af6842e Master process generates DH/RSA parameters now and stores them into file Timo Sirainen <tss@iki.fi> parents: 614 diff changeset	510 /* don't start raising the process count if they're dying all
0d852af6842e Master process generates DH/RSA parameters now and stores them into file Timo Sirainen <tss@iki.fi> parents: 614 diff changeset	511 the time */
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	512 p = hash_lookup(processes, POINTER_CAST(pid));
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	513 if (p != NULL && p->group != NULL)
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	514 p->group->wanted_processes_count = 0;
615 0d852af6842e Master process generates DH/RSA parameters now and stores them into file Timo Sirainen <tss@iki.fi> parents: 614 diff changeset	515 }
0d852af6842e Master process generates DH/RSA parameters now and stores them into file Timo Sirainen <tss@iki.fi> parents: 614 diff changeset	516
635 90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	517 static void login_hash_destroy(void key __attr_unused__, void value,
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	518 void *context __attr_unused__)
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	519 {
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	520 login_process_destroy(value);
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	521 }
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	522
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	523 void login_processes_destroy_all(void)
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	524 {
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	525 hash_foreach(processes, login_hash_destroy, NULL);
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	526
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	527 while (login_groups != NULL) {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	528 struct login_group *group = login_groups;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	529
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	530 login_groups = group->next;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	531 login_group_destroy(group);
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	532 }
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	533 }
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	534
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	535 static void login_group_start_missings(struct login_group *group)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	536 {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	537 if (!group->set->process_per_connection) {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	538 /* create max. one process every second, that way if it keeps
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	539 dying all the time we don't eat all cpu with fork()ing. */
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	540 if (group->listening_processes < group->set->processes_count)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	541 (void)create_login_process(group);
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	542 return;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	543 }
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	544
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	545 /* we want to respond fast when multiple clients are connecting
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	546 at once, but we also want to prevent fork-bombing. use the
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	547 same method as apache: check once a second if we need new
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	548 processes. if yes and we've used all the existing processes,
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	549 double their amount (unless we've hit the high limit).
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	550 Then for each second that didn't use all existing processes,
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	551 drop the max. process count by one. */
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	552 if (group->wanted_processes_count < group->set->processes_count)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	553 group->wanted_processes_count = group->set->processes_count;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	554 else if (group->listening_processes == 0)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	555 group->wanted_processes_count *= 2;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	556 else if (group->wanted_processes_count > group->set->processes_count)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	557 group->wanted_processes_count--;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	558
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	559 if (group->wanted_processes_count > group->set->max_processes_count)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	560 group->wanted_processes_count = group->set->max_processes_count;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	561
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	562 while (group->listening_processes < group->wanted_processes_count)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	563 (void)create_login_process(group);
635 90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	564 }
90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	565
903 fd8888f6f037 Naming style changes, finally got tired of most of the typedefs. Also the Timo Sirainen <tss@iki.fi> parents: 876 diff changeset	566 static void
1036 f782b3319553 Removed useless parameters from io_callback_t and timeout_callback_t. Timo Sirainen <tss@iki.fi> parents: 1035 diff changeset	567 login_processes_start_missing(void *context __attr_unused__)
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	568 {
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	569 struct login_group *group;
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	570 struct login_settings *login;
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	571
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	572 if (login_groups == NULL) {
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	573 for (login = set->logins; login != NULL; login = login->next)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	574 login_group_create(login);
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	575 }
614 e60620644af3 login_process_per_connection = yes scales now better when multiple users are Timo Sirainen <tss@iki.fi> parents: 613 diff changeset	576
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	577 for (group = login_groups; group != NULL; group = group->next)
a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	578 login_group_start_missings(group);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	579 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	580
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	581 static int login_process_send_env(struct login_process *p)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	582 {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	583 extern char **environ;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	584 char **env;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	585 size_t len;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	586 int ret = 0;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	587
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	588 /* this will clear our environment. luckily we don't need it. */
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	589 login_process_init_env(p->group, p->pid);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	590
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	591 for (env = environ; *env != NULL; env++) {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	592 len = strlen(*env);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	593
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	594 if (o_stream_send(p->output, *env, len) != (ssize_t)len \|\|
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	595 o_stream_send(p->output, "\n", 1) != 1) {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	596 ret = -1;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	597 break;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	598 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	599 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	600
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	601 if (ret == 0 && o_stream_send(p->output, "\n", 1) != 1)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	602 ret = -1;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	603
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	604 env_clean();
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	605 return ret;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	606 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	607
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	608 static int login_process_init_group(struct login_process *p)
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	609 {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	610 p->group->processes++;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	611 p->group->listening_processes++;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	612
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	613 if (login_process_send_env(p) < 0) {
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	614 i_error("login: Couldn't send environment");
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	615 return FALSE;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	616 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	617
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	618 return TRUE;
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	619 }
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	620
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	621 static void inetd_login_accept(void *context __attr_unused__)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	622 {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	623 struct login_process *p;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	624 int fd;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	625
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	626 fd = net_accept(inetd_login_fd, NULL, NULL);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	627 if (fd < 0) {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	628 if (fd < -1)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	629 i_fatal("accept(inetd_login_fd) failed: %m");
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	630 } else {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	631 net_set_nonblock(fd, TRUE);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	632 fd_close_on_exec(fd, TRUE);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	633
1275 af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	634 p = login_process_new(NULL, ++login_pid_counter, fd);
af685269ead0 login: Wait until we're connected to auth process before executing command Timo Sirainen <tss@iki.fi> parents: 1273 diff changeset	635 p->initialized = TRUE;
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	636 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	637 }
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	638
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	639 void login_processes_init(void)
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	640 {
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	641 auth_id_counter = 0;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	642 login_pid_counter = 0;
1055 a72bba3f8a55 Rewrote setting handling. Changed some existing settings also since POP3 Timo Sirainen <tss@iki.fi> parents: 1039 diff changeset	643 login_groups = NULL;
613 1906116a62ce Finally support for handling each login connection in it's own process. Timo Sirainen <tss@iki.fi> parents: 596 diff changeset	644
945 501f076f2e74 Rewrote hash table code, works with less memory now. Also some memory Timo Sirainen <tss@iki.fi> parents: 929 diff changeset	645 processes = hash_create(default_pool, default_pool, 128, NULL, NULL);
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	646 if (!IS_INETD()) {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	647 to = timeout_add(1000, login_processes_start_missing, NULL);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	648 io_listen = NULL;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	649 } else {
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	650 to = NULL;
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	651 io_listen = io_add(inetd_login_fd, IO_READ,
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	652 inetd_login_accept, NULL);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	653 }
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	654 }
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	655
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	656 void login_processes_deinit(void)
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	657 {
1273 2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	658 if (to != NULL)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	659 timeout_remove(to);
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	660 if (io_listen != NULL)
2cf2e08a6ee9 Somewhat working code to support loading Dovecot from inetd and such. It Timo Sirainen <tss@iki.fi> parents: 1237 diff changeset	661 io_remove(io_listen);
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	662
635 90a65c017bf0 SIGHUP reloads now settings. Logged in clients are left untouched, but Timo Sirainen <tss@iki.fi> parents: 615 diff changeset	663 login_processes_destroy_all();
0 3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	664 hash_destroy(processes);
3b1985cbc908 Initial revision Timo Sirainen <tss@iki.fi> parents: diff changeset	665 }

Mercurial > dovecot > original-hg > dovecot-1.2

annotate src/master/login-process.c @ 1506:e7c627bacaaf HEAD