dovecot/original-hg/dovecot-1.2: src/master/login-process.c comparison

comparison src/master/login-process.c @ 1610:6850142c4e25 HEAD

New configuration file code. Some syntax changes, but tries to be somewhat backwards compatible. SIGHUP now reverts back to old configuration if it detected errors in new one.

author	Timo Sirainen <tss@iki.fi>
date	Thu, 10 Jul 2003 06:04:07 +0300
parents	e7c627bacaaf
children	b3526668de78

comparison

equal deleted inserted replaced

-:5c2ad8ec50db
+:6850142c4e25
 #include "master-login-interface.h"
 #include <unistd.h>
 #include <syslog.h>
-struct login_group {
-	struct login_group *next;
-	struct login_settings *set;
-	unsigned int processes;
-	unsigned int listening_processes;
-	unsigned int wanted_processes_count;
-	struct login_process *oldest_nonlisten_process;
-	struct login_process *newest_nonlisten_process;
-	const char *executable;
-	const char *module_dir;
-	unsigned int process_size;
-	int process_type;
-	int *listen_fd, *ssl_listen_fd;
-};
 struct login_process {
 	struct login_group *group;
 	struct login_process *prev_nonlisten, *next_nonlisten;
 	int refcount;
 static void login_process_destroy(struct login_process *p);
 static void login_process_unref(struct login_process *p);
 static int login_process_init_group(struct login_process *p);
-static void login_group_create(struct login_settings *login_set)
+static void login_group_create(struct settings *set)
 {
 	struct login_group *group;
-	if (strstr(set->protocols, login_set->name) == NULL) {
-		/* not enabled */
-		return;
-	}
 	group = i_new(struct login_group, 1);
-	group->set = login_set;
+	group->set = set;
+	group->process_type = set->protocol == MAIL_PROTOCOL_IMAP ?
-	if (strcmp(login_set->name, "imap") == 0) {
+		PROCESS_TYPE_IMAP : PROCESS_TYPE_POP3;
-		group->executable = set->imap_executable;
-		group->process_size = set->imap_process_size;
-		group->process_type = PROCESS_TYPE_IMAP;
-		group->listen_fd = &mail_fd[FD_IMAP];
-		group->ssl_listen_fd = &mail_fd[FD_IMAPS];
-		group->module_dir = !set->imap_use_modules ? NULL :
-set->imap_modules;
-	} else if (strcmp(login_set->name, "pop3") == 0) {
-		group->executable = set->pop3_executable;
-		group->process_size = set->pop3_process_size;
-		group->process_type = PROCESS_TYPE_POP3;
-		group->listen_fd = &mail_fd[FD_POP3];
-		group->ssl_listen_fd = &mail_fd[FD_POP3S];
-		group->module_dir = !set->pop3_use_modules ? NULL :
-set->pop3_modules;
-	} else
-		i_panic("Unknown login group name '%s'", login_set->name);
 	group->next = login_groups;
 	login_groups = group;
 }
 		master_reply.success = FALSE;
 	else {
 		struct login_group *group = request->process->group;
 		master_reply.success =
-			create_mail_process(request->fd, &request->ip,
+			create_mail_process(group, request->fd, &request->ip,
-					    group->executable,
-					    group->module_dir,
-					    group->process_size,
-					    group->process_type,
 					    reply, (const char *) data);
 	}
 	/* reply to login */
 	master_reply.tag = request->login_tag;
 		if (p->group->oldest_nonlisten_process == NULL)
 			p->group->oldest_nonlisten_process = p;
 	}
 }
-static struct login_group *login_group_process_find(const char *name)
+static void login_process_groups_create(void)
+{
+	struct server_settings *server;
+	for (server = settings_root; server != NULL; server = server->next) {
+		if (server->imap != NULL)
+			login_group_create(server->imap);
+		if (server->pop3 != NULL)
+			login_group_create(server->pop3);
+	}
+}
+static struct login_group *
+login_group_process_find(const char *name, enum mail_protocol protocol)
 {
 	struct login_group *group;
-	struct login_settings *login;
+	if (login_groups == NULL)
-	if (login_groups == NULL) {
+login_process_groups_create();
-		for (login = set->logins; login != NULL; login = login->next)
-			login_group_create(login);
-	}
 	for (group = login_groups; group != NULL; group = group->next) {
-		if (strcmp(group->set->name, name) == 0)
+		if (strcmp(group->set->server->name, name) == 0 &&
+		    group->set->protocol == protocol)
 			return group;
 	}
 	return NULL;
 }
 static int login_process_read_group(struct login_process *p)
 {
 	struct login_group *group;
-	const char *name;
+	const char *name, *proto;
 	char buf[256];
+	enum mail_protocol protocol;
 	unsigned int len;
 	ssize_t ret;
 	/* read length */
 	ret = read(p->fd, buf, 1);
 	if (ret != 1)
 		len = 0;
 	else {
 		len = buf[0];
 		if (len >= sizeof(buf)) {
-			i_error("login: Process name length too large");
+			i_error("login: Server name length too large");
 			return FALSE;
 		}
 		ret = read(p->fd, buf, len);
 	}
 	if (ret < 0)
 		i_error("login: read() failed: %m");
 	else if (len == 0 || (size_t)ret != len)
-		i_error("login: Process name wasn't sent");
+		i_error("login: Server name wasn't sent");
 	else {
 		name = t_strndup(buf, len);
-		group = login_group_process_find(name);
+		proto = strchr(buf, '/');
+		if (proto == NULL) {
+			i_error("login: Missing protocol from server name '%s'",
+				name);
+			return FALSE;
+		}
+		name = t_strdup_until(buf, proto++);
+		if (strcmp(proto, "imap") == 0)
+			protocol = MAIL_PROTOCOL_IMAP;
+		else if (strcmp(proto, "pop3") == 0)
+			protocol = MAIL_PROTOCOL_IMAP;
+		else {
+			i_error("login: Unknown protocol '%s'", proto);
+			return FALSE;
+		}
+		group = login_group_process_find(name, protocol);
 		if (group == NULL) {
-			i_error("login: Unknown process group '%s'", name);
+			i_error("login: Unknown server name '%s'", name);
 			return FALSE;
 		}
 		p->group = group;
 		return login_process_init_group(p);
 	i_free(p);
 }
 static void login_process_init_env(struct login_group *group, pid_t pid)
 {
-	child_process_init_env();
+	struct settings *set = group->set;
+	child_process_init_env(set);
 	/* setup access environment - needs to be done after
 	   clean_child_process() since it clears environment */
-	restrict_access_set_env(group->set->user,
+	restrict_access_set_env(set->login_user, set->login_uid, set->login_gid,
-				group->set->uid, set->login_gid,
 				set->login_chroot ? set->login_dir : NULL,
 				0, 0);
 	env_put("DOVECOT_MASTER=1");
 	if (!set->ssl_disable) {
 		env_put(t_strconcat("SSL_CERT_FILE=",
 				    set->ssl_cert_file, NULL));
-		env_put(t_strconcat("SSL_KEY_FILE=", set->ssl_key_file, NULL));
+		env_put(t_strconcat("SSL_KEY_FILE=",
+				    set->ssl_key_file, NULL));
 		env_put(t_strconcat("SSL_PARAM_FILE=",
 				    set->ssl_parameters_file, NULL));
 	}
 	if (set->disable_plaintext_auth)
 	if (set->verbose_proctitle)
 		env_put("VERBOSE_PROCTITLE=1");
 	if (set->verbose_ssl)
 		env_put("VERBOSE_SSL=1");
-	if (group->set->process_per_connection) {
+	if (set->login_process_per_connection) {
 		env_put("PROCESS_PER_CONNECTION=1");
 		env_put("MAX_LOGGING_USERS=1");
 	} else {
 		env_put(t_strdup_printf("MAX_LOGGING_USERS=%u",
-					group->set->max_logging_users));
+					set->login_max_logging_users));
 	}
 	env_put(t_strdup_printf("PROCESS_UID=%s", dec2str(pid)));
 }
 {
 	static const char *argv[] = { NULL, NULL };
 	pid_t pid;
 	int fd[2];
-	if (group->set->process_per_connection &&
+	if (group->set->login_process_per_connection &&
 	    group->processes - group->listening_processes >=
-	    group->set->max_logging_users) {
+	    group->set->login_max_logging_users) {
 		if (group->oldest_nonlisten_process != NULL)
 			login_process_destroy(group->oldest_nonlisten_process);
 	}
-	if (group->set->uid == 0)
+	if (group->set->login_uid == 0)
 		i_fatal("Login process must not run as root");
 	/* create communication to process with a socket pair */
 	if (socketpair(AF_UNIX, SOCK_STREAM, 0, fd) == -1) {
 		i_error("socketpair() failed: %m");
 		(void)close(fd[1]);
 		return pid;
 	}
 	/* move the listen handle */
-	if (dup2(*group->listen_fd, LOGIN_LISTEN_FD) < 0)
+	if (dup2(group->set->listen_fd, LOGIN_LISTEN_FD) < 0)
 		i_fatal("login: dup2(listen_fd) failed: %m");
 	fd_close_on_exec(LOGIN_LISTEN_FD, FALSE);
 	/* move the SSL listen handle */
-	if (dup2(*group->ssl_listen_fd, LOGIN_SSL_LISTEN_FD) < 0)
+	if (dup2(group->set->ssl_listen_fd, LOGIN_SSL_LISTEN_FD) < 0)
 		i_fatal("login: dup2(ssl_listen_fd) failed: %m");
 	fd_close_on_exec(LOGIN_SSL_LISTEN_FD, FALSE);
 	/* move communication handle */
 	if (dup2(fd[1], LOGIN_MASTER_SOCKET_FD) < 0)
 	(void)close(fd[0]);
 	(void)close(fd[1]);
 	login_process_init_env(group, getpid());
-	if (!set->login_chroot) {
+	if (!group->set->login_chroot) {
 		/* no chrooting, but still change to the directory */
-		if (chdir(set->login_dir) < 0)
+		if (chdir(group->set->login_dir) < 0) {
-			i_fatal("chdir(%s) failed: %m", set->login_dir);
+			i_fatal("chdir(%s) failed: %m",
-	}
+				group->set->login_dir);
+		}
-	restrict_process_size(group->set->process_size, (unsigned int)-1);
+	}
+	restrict_process_size(group->set->login_process_size, (unsigned int)-1);
 	/* make sure we don't leak syslog fd, but do it last so that
 	   any errors above will be logged */
 	closelog();
 	/* hide the path, it's ugly */
-	argv[0] = strrchr(group->set->executable, '/');
+	argv[0] = strrchr(group->set->login_executable, '/');
-	if (argv[0] == NULL) argv[0] = group->set->executable; else argv[0]++;
+	if (argv[0] == NULL)
+		argv[0] = group->set->login_executable;
-	execv(group->set->executable, (char **) argv);
+	else
+		argv[0]++;
+	execv(group->set->login_executable, (char **) argv);
 	i_fatal_status(FATAL_EXEC, "execv(%s) failed: %m",
-		       group->set->executable);
+		       group->set->login_executable);
 	return -1;
 }
 void login_process_abormal_exit(pid_t pid)
 {
 	}
 }
 static void login_group_start_missings(struct login_group *group)
 {
-	if (!group->set->process_per_connection) {
+	if (!group->set->login_process_per_connection) {
 		/* create max. one process every second, that way if it keeps
 		   dying all the time we don't eat all cpu with fork()ing. */
-		if (group->listening_processes < group->set->processes_count)
+		if (group->listening_processes <
+		    group->set->login_processes_count)
 			(void)create_login_process(group);
 		return;
 	}
 	/* we want to respond fast when multiple clients are connecting
 	   same method as apache: check once a second if we need new
 	   processes. if yes and we've used all the existing processes,
 	   double their amount (unless we've hit the high limit).
 	   Then for each second that didn't use all existing processes,
 	   drop the max. process count by one. */
-	if (group->wanted_processes_count < group->set->processes_count)
+	if (group->wanted_processes_count < group->set->login_processes_count) {
-		group->wanted_processes_count = group->set->processes_count;
+		group->wanted_processes_count =
-	else if (group->listening_processes == 0)
+			group->set->login_processes_count;
+	} else if (group->listening_processes == 0)
 		group->wanted_processes_count *= 2;
-	else if (group->wanted_processes_count > group->set->processes_count)
+	else if (group->wanted_processes_count >
+		 group->set->login_processes_count)
 		group->wanted_processes_count--;
-	if (group->wanted_processes_count > group->set->max_processes_count)
+	if (group->wanted_processes_count >
-		group->wanted_processes_count = group->set->max_processes_count;
+	    group->set->login_max_processes_count) {
+		group->wanted_processes_count =
+			group->set->login_max_processes_count;
+	}
 	while (group->listening_processes < group->wanted_processes_count)
 		(void)create_login_process(group);
 }
 static void
 login_processes_start_missing(void *context __attr_unused__)
 {
 	struct login_group *group;
-	struct login_settings *login;
+	if (login_groups == NULL)
-	if (login_groups == NULL) {
+		login_process_groups_create();
-		for (login = set->logins; login != NULL; login = login->next)
-			login_group_create(login);
-	}
 	for (group = login_groups; group != NULL; group = group->next)
 		login_group_start_missings(group);
 }

Mercurial > dovecot > original-hg > dovecot-1.2

comparison src/master/login-process.c @ 1610:6850142c4e25 HEAD