Mercurial > dovecot > original-hg > dovecot-1.2
view src/auth/passdb-cache.c @ 2798:54b29901a793 HEAD
Added simple LRU cache for auth requests. Currently only for sql passdb.
| author | Timo Sirainen <tss@iki.fi> |
|---|---|
| date | Thu, 21 Oct 2004 05:23:09 +0300 |
| parents | |
| children | 253fae0aa95f |
line wrap: on
line source
/* Copyright (C) 2004 Timo Sirainen */ #include "common.h" #include "password-scheme.h" #include "passdb.h" #include "passdb-cache.h" #include <stdlib.h> struct auth_cache *passdb_cache = NULL; static void list_save(struct auth_request *request, const char *password, const char *const *list) { struct auth_request_extra *extra; const char *name, *value; if (*list == NULL) return; extra = auth_request_extra_begin(request, password); for (; *list != NULL; list++) { t_push(); value = strchr(*list, '='); if (value == NULL) { name = *list; value = ""; } else { name = t_strcut(*list, '='); value++; } auth_request_extra_next(extra, name, value); t_pop(); } auth_request_extra_finish(extra, NULL); } int passdb_cache_verify_plain(struct auth_request *request, const char *key, const char *password, const char *default_scheme, enum passdb_result *result_r) { const char *value, *cached_pw, *scheme, *const *list; int ret; i_assert(default_scheme != NULL); if (passdb_cache == NULL) return FALSE; /* value = password \t ... */ value = auth_cache_lookup(passdb_cache, request, key); if (value == NULL) return FALSE; if (*value == '\0') { /* negative cache entry */ *result_r = PASSDB_RESULT_USER_UNKNOWN; return TRUE; } list = t_strsplit(value, "\t"); cached_pw = list[0]; scheme = password_get_scheme(&cached_pw); if (scheme == NULL) scheme = default_scheme; list_save(request, password, list+1); ret = password_verify(password, cached_pw, scheme, request->user); if (ret < 0) { i_error("cache(%s): Unknown password scheme %s", get_log_prefix(request), scheme); } else if (ret == 0) { if (verbose) { i_info("cache(%s): Password mismatch", get_log_prefix(request)); } } *result_r = ret > 0 ? PASSDB_RESULT_OK : PASSDB_RESULT_PASSWORD_MISMATCH; return TRUE; } int passdb_cache_lookup_credentials(struct auth_request *request, const char *key, const char **result_r, const char **scheme_r) { const char *value, *const *list; const char *cached_pw; if (passdb_cache == NULL) return FALSE; value = auth_cache_lookup(passdb_cache, request, key); if (value == NULL) return FALSE; if (*value == '\0') { /* negative cache entry */ *result_r = NULL; *scheme_r = NULL; return TRUE; } list = t_strsplit(value, "\t"); list_save(request, NULL, list+1); *result_r = list[0]; *scheme_r = password_get_scheme(&cached_pw); return TRUE; } void passdb_cache_init(void) { const char *env; size_t max_size; unsigned int cache_ttl; env = getenv("CACHE_SIZE"); if (env == NULL) return; max_size = (size_t)strtoul(env, NULL, 10) * 1024; if (max_size == 0) return; env = getenv("CACHE_TTL"); if (env == NULL) return; cache_ttl = (unsigned int)strtoul(env, NULL, 10); if (cache_ttl == 0) return; passdb_cache = auth_cache_new(max_size, cache_ttl); } void passdb_cache_deinit(void) { auth_cache_free(passdb_cache); }