diff options
Diffstat (limited to 'src/anvil')
-rw-r--r-- | src/anvil/Makefile.am | 48 | ||||
-rw-r--r-- | src/anvil/Makefile.in | 867 | ||||
-rw-r--r-- | src/anvil/anvil-connection.c | 226 | ||||
-rw-r--r-- | src/anvil/anvil-connection.h | 10 | ||||
-rw-r--r-- | src/anvil/anvil-settings.c | 50 | ||||
-rw-r--r-- | src/anvil/common.h | 10 | ||||
-rw-r--r-- | src/anvil/connect-limit.c | 192 | ||||
-rw-r--r-- | src/anvil/connect-limit.h | 16 | ||||
-rw-r--r-- | src/anvil/main.c | 90 | ||||
-rw-r--r-- | src/anvil/penalty.c | 273 | ||||
-rw-r--r-- | src/anvil/penalty.h | 22 | ||||
-rw-r--r-- | src/anvil/test-penalty.c | 64 |
12 files changed, 1868 insertions, 0 deletions
diff --git a/src/anvil/Makefile.am b/src/anvil/Makefile.am new file mode 100644 index 0000000..1af526f --- /dev/null +++ b/src/anvil/Makefile.am @@ -0,0 +1,48 @@ +pkglibexecdir = $(libexecdir)/dovecot + +pkglibexec_PROGRAMS = anvil + +AM_CPPFLAGS = \ + -I$(top_srcdir)/src/lib \ + -I$(top_srcdir)/src/lib-test \ + -I$(top_srcdir)/src/lib-settings \ + -I$(top_srcdir)/src/lib-master \ + $(BINARY_CFLAGS) + +anvil_LDADD = \ + $(LIBDOVECOT) \ + $(RAND_LIBS) \ + $(BINARY_LDFLAGS) + +anvil_DEPENDENCIES = $(LIBDOVECOT_DEPS) + +anvil_SOURCES = \ + main.c \ + anvil-connection.c \ + anvil-settings.c \ + connect-limit.c \ + penalty.c + +noinst_HEADERS = \ + anvil-connection.h \ + common.h \ + connect-limit.h \ + penalty.h + +test_programs = \ + test-penalty + +noinst_PROGRAMS = $(test_programs) + +test_libs = \ + ../lib-test/libtest.la \ + ../lib/liblib.la + +test_penalty_SOURCES = test-penalty.c +test_penalty_LDADD = penalty.o $(test_libs) +test_penalty_DEPENDENCIES = $(pkglibexec_PROGRAMS) $(test_libs) + +check-local: + for bin in $(test_programs); do \ + if ! $(RUN_TEST) ./$$bin; then exit 1; fi; \ + done diff --git a/src/anvil/Makefile.in b/src/anvil/Makefile.in new file mode 100644 index 0000000..778dff2 --- /dev/null +++ b/src/anvil/Makefile.in @@ -0,0 +1,867 @@ +# Makefile.in generated by automake 1.16.1 from Makefile.am. +# @configure_input@ + +# Copyright (C) 1994-2018 Free Software Foundation, Inc. + +# This Makefile.in is free software; the Free Software Foundation +# gives unlimited permission to copy and/or distribute it, +# with or without modifications, as long as this notice is preserved. + +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY, to the extent permitted by law; without +# even the implied warranty of MERCHANTABILITY or FITNESS FOR A +# PARTICULAR PURPOSE. + +@SET_MAKE@ + + +VPATH = @srcdir@ +am__is_gnu_make = { \ + if test -z '$(MAKELEVEL)'; then \ + false; \ + elif test -n '$(MAKE_HOST)'; then \ + true; \ + elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ + true; \ + else \ + false; \ + fi; \ +} +am__make_running_with_option = \ + case $${target_option-} in \ + ?) ;; \ + *) echo "am__make_running_with_option: internal error: invalid" \ + "target option '$${target_option-}' specified" >&2; \ + exit 1;; \ + esac; \ + has_opt=no; \ + sane_makeflags=$$MAKEFLAGS; \ + if $(am__is_gnu_make); then \ + sane_makeflags=$$MFLAGS; \ + else \ + case $$MAKEFLAGS in \ + *\\[\ \ ]*) \ + bs=\\; \ + sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ + | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ + esac; \ + fi; \ + skip_next=no; \ + strip_trailopt () \ + { \ + flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ + }; \ + for flg in $$sane_makeflags; do \ + test $$skip_next = yes && { skip_next=no; continue; }; \ + case $$flg in \ + *=*|--*) continue;; \ + -*I) strip_trailopt 'I'; skip_next=yes;; \ + -*I?*) strip_trailopt 'I';; \ + -*O) strip_trailopt 'O'; skip_next=yes;; \ + -*O?*) strip_trailopt 'O';; \ + -*l) strip_trailopt 'l'; skip_next=yes;; \ + -*l?*) strip_trailopt 'l';; \ + -[dEDm]) skip_next=yes;; \ + -[JT]) skip_next=yes;; \ + esac; \ + case $$flg in \ + *$$target_option*) has_opt=yes; break;; \ + esac; \ + done; \ + test $$has_opt = yes +am__make_dryrun = (target_option=n; $(am__make_running_with_option)) +am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) +pkgdatadir = $(datadir)/@PACKAGE@ +pkgincludedir = $(includedir)/@PACKAGE@ +pkglibdir = $(libdir)/@PACKAGE@ +am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd +install_sh_DATA = $(install_sh) -c -m 644 +install_sh_PROGRAM = $(install_sh) -c +install_sh_SCRIPT = $(install_sh) -c +INSTALL_HEADER = $(INSTALL_DATA) +transform = $(program_transform_name) +NORMAL_INSTALL = : +PRE_INSTALL = : +POST_INSTALL = : +NORMAL_UNINSTALL = : +PRE_UNINSTALL = : +POST_UNINSTALL = : +build_triplet = @build@ +host_triplet = @host@ +pkglibexec_PROGRAMS = anvil$(EXEEXT) +noinst_PROGRAMS = $(am__EXEEXT_1) +subdir = src/anvil +ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 +am__aclocal_m4_deps = $(top_srcdir)/m4/ac_checktype2.m4 \ + $(top_srcdir)/m4/ac_typeof.m4 $(top_srcdir)/m4/arc4random.m4 \ + $(top_srcdir)/m4/blockdev.m4 $(top_srcdir)/m4/c99_vsnprintf.m4 \ + $(top_srcdir)/m4/clock_gettime.m4 $(top_srcdir)/m4/crypt.m4 \ + $(top_srcdir)/m4/crypt_xpg6.m4 $(top_srcdir)/m4/dbqlk.m4 \ + $(top_srcdir)/m4/dirent_dtype.m4 $(top_srcdir)/m4/dovecot.m4 \ + $(top_srcdir)/m4/fd_passing.m4 $(top_srcdir)/m4/fdatasync.m4 \ + $(top_srcdir)/m4/flexible_array_member.m4 \ + $(top_srcdir)/m4/glibc.m4 $(top_srcdir)/m4/gmtime_max.m4 \ + $(top_srcdir)/m4/gmtime_tm_gmtoff.m4 \ + $(top_srcdir)/m4/ioloop.m4 $(top_srcdir)/m4/iovec.m4 \ + $(top_srcdir)/m4/ipv6.m4 $(top_srcdir)/m4/libcap.m4 \ + $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/libwrap.m4 \ + $(top_srcdir)/m4/linux_mremap.m4 $(top_srcdir)/m4/ltoptions.m4 \ + $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ + $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/m4/mmap_write.m4 \ + $(top_srcdir)/m4/mntctl.m4 $(top_srcdir)/m4/modules.m4 \ + $(top_srcdir)/m4/notify.m4 $(top_srcdir)/m4/nsl.m4 \ + $(top_srcdir)/m4/off_t_max.m4 $(top_srcdir)/m4/pkg.m4 \ + $(top_srcdir)/m4/pr_set_dumpable.m4 \ + $(top_srcdir)/m4/q_quotactl.m4 $(top_srcdir)/m4/quota.m4 \ + $(top_srcdir)/m4/random.m4 $(top_srcdir)/m4/rlimit.m4 \ + $(top_srcdir)/m4/sendfile.m4 $(top_srcdir)/m4/size_t_signed.m4 \ + $(top_srcdir)/m4/sockpeercred.m4 $(top_srcdir)/m4/sql.m4 \ + $(top_srcdir)/m4/ssl.m4 $(top_srcdir)/m4/st_tim.m4 \ + $(top_srcdir)/m4/static_array.m4 $(top_srcdir)/m4/test_with.m4 \ + $(top_srcdir)/m4/time_t.m4 $(top_srcdir)/m4/typeof.m4 \ + $(top_srcdir)/m4/typeof_dev_t.m4 \ + $(top_srcdir)/m4/uoff_t_max.m4 $(top_srcdir)/m4/vararg.m4 \ + $(top_srcdir)/m4/want_apparmor.m4 \ + $(top_srcdir)/m4/want_bsdauth.m4 \ + $(top_srcdir)/m4/want_bzlib.m4 \ + $(top_srcdir)/m4/want_cassandra.m4 \ + $(top_srcdir)/m4/want_cdb.m4 \ + $(top_srcdir)/m4/want_checkpassword.m4 \ + $(top_srcdir)/m4/want_clucene.m4 $(top_srcdir)/m4/want_db.m4 \ + $(top_srcdir)/m4/want_gssapi.m4 $(top_srcdir)/m4/want_icu.m4 \ + $(top_srcdir)/m4/want_ldap.m4 $(top_srcdir)/m4/want_lua.m4 \ + $(top_srcdir)/m4/want_lz4.m4 $(top_srcdir)/m4/want_lzma.m4 \ + $(top_srcdir)/m4/want_mysql.m4 $(top_srcdir)/m4/want_pam.m4 \ + $(top_srcdir)/m4/want_passwd.m4 $(top_srcdir)/m4/want_pgsql.m4 \ + $(top_srcdir)/m4/want_prefetch.m4 \ + $(top_srcdir)/m4/want_shadow.m4 \ + $(top_srcdir)/m4/want_sodium.m4 $(top_srcdir)/m4/want_solr.m4 \ + $(top_srcdir)/m4/want_sqlite.m4 \ + $(top_srcdir)/m4/want_stemmer.m4 \ + $(top_srcdir)/m4/want_systemd.m4 \ + $(top_srcdir)/m4/want_textcat.m4 \ + $(top_srcdir)/m4/want_unwind.m4 $(top_srcdir)/m4/want_zlib.m4 \ + $(top_srcdir)/m4/want_zstd.m4 $(top_srcdir)/configure.ac +am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ + $(ACLOCAL_M4) +DIST_COMMON = $(srcdir)/Makefile.am $(noinst_HEADERS) \ + $(am__DIST_COMMON) +mkinstalldirs = $(install_sh) -d +CONFIG_HEADER = $(top_builddir)/config.h +CONFIG_CLEAN_FILES = +CONFIG_CLEAN_VPATH_FILES = +am__EXEEXT_1 = test-penalty$(EXEEXT) +am__installdirs = "$(DESTDIR)$(pkglibexecdir)" +PROGRAMS = $(noinst_PROGRAMS) $(pkglibexec_PROGRAMS) +am_anvil_OBJECTS = main.$(OBJEXT) anvil-connection.$(OBJEXT) \ + anvil-settings.$(OBJEXT) connect-limit.$(OBJEXT) \ + penalty.$(OBJEXT) +anvil_OBJECTS = $(am_anvil_OBJECTS) +am__DEPENDENCIES_1 = +AM_V_lt = $(am__v_lt_@AM_V@) +am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) +am__v_lt_0 = --silent +am__v_lt_1 = +am_test_penalty_OBJECTS = test-penalty.$(OBJEXT) +test_penalty_OBJECTS = $(am_test_penalty_OBJECTS) +AM_V_P = $(am__v_P_@AM_V@) +am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) +am__v_P_0 = false +am__v_P_1 = : +AM_V_GEN = $(am__v_GEN_@AM_V@) +am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) +am__v_GEN_0 = @echo " GEN " $@; +am__v_GEN_1 = +AM_V_at = $(am__v_at_@AM_V@) +am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) +am__v_at_0 = @ +am__v_at_1 = +DEFAULT_INCLUDES = -I.@am__isrc@ -I$(top_builddir) +depcomp = $(SHELL) $(top_srcdir)/depcomp +am__maybe_remake_depfiles = depfiles +am__depfiles_remade = ./$(DEPDIR)/anvil-connection.Po \ + ./$(DEPDIR)/anvil-settings.Po ./$(DEPDIR)/connect-limit.Po \ + ./$(DEPDIR)/main.Po ./$(DEPDIR)/penalty.Po \ + ./$(DEPDIR)/test-penalty.Po +am__mv = mv -f +COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ + $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) +LTCOMPILE = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ + $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) \ + $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) \ + $(AM_CFLAGS) $(CFLAGS) +AM_V_CC = $(am__v_CC_@AM_V@) +am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) +am__v_CC_0 = @echo " CC " $@; +am__v_CC_1 = +CCLD = $(CC) +LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ + $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ + $(AM_LDFLAGS) $(LDFLAGS) -o $@ +AM_V_CCLD = $(am__v_CCLD_@AM_V@) +am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) +am__v_CCLD_0 = @echo " CCLD " $@; +am__v_CCLD_1 = +SOURCES = $(anvil_SOURCES) $(test_penalty_SOURCES) +DIST_SOURCES = $(anvil_SOURCES) $(test_penalty_SOURCES) +am__can_run_installinfo = \ + case $$AM_UPDATE_INFO_DIR in \ + n|no|NO) false;; \ + *) (install-info --version) >/dev/null 2>&1;; \ + esac +HEADERS = $(noinst_HEADERS) +am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) +# Read a list of newline-separated strings from the standard input, +# and print each of them once, without duplicates. Input order is +# *not* preserved. +am__uniquify_input = $(AWK) '\ + BEGIN { nonempty = 0; } \ + { items[$$0] = 1; nonempty = 1; } \ + END { if (nonempty) { for (i in items) print i; }; } \ +' +# Make sure the list of sources is unique. This is necessary because, +# e.g., the same source file might be shared among _SOURCES variables +# for different programs/libraries. +am__define_uniq_tagged_files = \ + list='$(am__tagged_files)'; \ + unique=`for i in $$list; do \ + if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ + done | $(am__uniquify_input)` +ETAGS = etags +CTAGS = ctags +am__DIST_COMMON = $(srcdir)/Makefile.in $(top_srcdir)/depcomp +DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) +pkglibexecdir = $(libexecdir)/dovecot +ACLOCAL = @ACLOCAL@ +ACLOCAL_AMFLAGS = @ACLOCAL_AMFLAGS@ +AMTAR = @AMTAR@ +AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ +APPARMOR_LIBS = @APPARMOR_LIBS@ +AR = @AR@ +AUTH_CFLAGS = @AUTH_CFLAGS@ +AUTH_LIBS = @AUTH_LIBS@ +AUTOCONF = @AUTOCONF@ +AUTOHEADER = @AUTOHEADER@ +AUTOMAKE = @AUTOMAKE@ +AWK = @AWK@ +BINARY_CFLAGS = @BINARY_CFLAGS@ +BINARY_LDFLAGS = @BINARY_LDFLAGS@ +BISON = @BISON@ +CASSANDRA_CFLAGS = @CASSANDRA_CFLAGS@ +CASSANDRA_LIBS = @CASSANDRA_LIBS@ +CC = @CC@ +CCDEPMODE = @CCDEPMODE@ +CDB_LIBS = @CDB_LIBS@ +CFLAGS = @CFLAGS@ +CLUCENE_CFLAGS = @CLUCENE_CFLAGS@ +CLUCENE_LIBS = @CLUCENE_LIBS@ +COMPRESS_LIBS = @COMPRESS_LIBS@ +CPP = @CPP@ +CPPFLAGS = @CPPFLAGS@ +CRYPT_LIBS = @CRYPT_LIBS@ +CXX = @CXX@ +CXXCPP = @CXXCPP@ +CXXDEPMODE = @CXXDEPMODE@ +CXXFLAGS = @CXXFLAGS@ +CYGPATH_W = @CYGPATH_W@ +DEFS = @DEFS@ +DEPDIR = @DEPDIR@ +DICT_LIBS = @DICT_LIBS@ +DLLIB = @DLLIB@ +DLLTOOL = @DLLTOOL@ +DSYMUTIL = @DSYMUTIL@ +DUMPBIN = @DUMPBIN@ +ECHO_C = @ECHO_C@ +ECHO_N = @ECHO_N@ +ECHO_T = @ECHO_T@ +EGREP = @EGREP@ +EXEEXT = @EXEEXT@ +FGREP = @FGREP@ +FLEX = @FLEX@ +FUZZER_CPPFLAGS = @FUZZER_CPPFLAGS@ +FUZZER_LDFLAGS = @FUZZER_LDFLAGS@ +GREP = @GREP@ +INSTALL = @INSTALL@ +INSTALL_DATA = @INSTALL_DATA@ +INSTALL_PROGRAM = @INSTALL_PROGRAM@ +INSTALL_SCRIPT = @INSTALL_SCRIPT@ +INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ +KRB5CONFIG = @KRB5CONFIG@ +KRB5_CFLAGS = @KRB5_CFLAGS@ +KRB5_LIBS = @KRB5_LIBS@ +LD = @LD@ +LDAP_LIBS = @LDAP_LIBS@ +LDFLAGS = @LDFLAGS@ +LD_NO_WHOLE_ARCHIVE = @LD_NO_WHOLE_ARCHIVE@ +LD_WHOLE_ARCHIVE = @LD_WHOLE_ARCHIVE@ +LIBCAP = @LIBCAP@ +LIBDOVECOT = @LIBDOVECOT@ +LIBDOVECOT_COMPRESS = @LIBDOVECOT_COMPRESS@ +LIBDOVECOT_DEPS = @LIBDOVECOT_DEPS@ +LIBDOVECOT_DSYNC = @LIBDOVECOT_DSYNC@ +LIBDOVECOT_LA_LIBS = @LIBDOVECOT_LA_LIBS@ +LIBDOVECOT_LDA = @LIBDOVECOT_LDA@ +LIBDOVECOT_LDAP = @LIBDOVECOT_LDAP@ +LIBDOVECOT_LIBFTS = @LIBDOVECOT_LIBFTS@ +LIBDOVECOT_LIBFTS_DEPS = @LIBDOVECOT_LIBFTS_DEPS@ +LIBDOVECOT_LOGIN = @LIBDOVECOT_LOGIN@ +LIBDOVECOT_LUA = @LIBDOVECOT_LUA@ +LIBDOVECOT_LUA_DEPS = @LIBDOVECOT_LUA_DEPS@ +LIBDOVECOT_SQL = @LIBDOVECOT_SQL@ +LIBDOVECOT_STORAGE = @LIBDOVECOT_STORAGE@ +LIBDOVECOT_STORAGE_DEPS = @LIBDOVECOT_STORAGE_DEPS@ +LIBEXTTEXTCAT_CFLAGS = @LIBEXTTEXTCAT_CFLAGS@ +LIBEXTTEXTCAT_LIBS = @LIBEXTTEXTCAT_LIBS@ +LIBICONV = @LIBICONV@ +LIBICU_CFLAGS = @LIBICU_CFLAGS@ +LIBICU_LIBS = @LIBICU_LIBS@ +LIBOBJS = @LIBOBJS@ +LIBS = @LIBS@ +LIBSODIUM_CFLAGS = @LIBSODIUM_CFLAGS@ +LIBSODIUM_LIBS = @LIBSODIUM_LIBS@ +LIBTIRPC_CFLAGS = @LIBTIRPC_CFLAGS@ +LIBTIRPC_LIBS = @LIBTIRPC_LIBS@ +LIBTOOL = @LIBTOOL@ +LIBUNWIND_CFLAGS = @LIBUNWIND_CFLAGS@ +LIBUNWIND_LIBS = @LIBUNWIND_LIBS@ +LIBWRAP_LIBS = @LIBWRAP_LIBS@ +LINKED_STORAGE_LDADD = @LINKED_STORAGE_LDADD@ +LIPO = @LIPO@ +LN_S = @LN_S@ +LTLIBICONV = @LTLIBICONV@ +LTLIBOBJS = @LTLIBOBJS@ +LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ +LUA_CFLAGS = @LUA_CFLAGS@ +LUA_LIBS = @LUA_LIBS@ +MAINT = @MAINT@ +MAKEINFO = @MAKEINFO@ +MANIFEST_TOOL = @MANIFEST_TOOL@ +MKDIR_P = @MKDIR_P@ +MODULE_LIBS = @MODULE_LIBS@ +MODULE_SUFFIX = @MODULE_SUFFIX@ +MYSQL_CFLAGS = @MYSQL_CFLAGS@ +MYSQL_CONFIG = @MYSQL_CONFIG@ +MYSQL_LIBS = @MYSQL_LIBS@ +NM = @NM@ +NMEDIT = @NMEDIT@ +NOPLUGIN_LDFLAGS = @NOPLUGIN_LDFLAGS@ +OBJDUMP = @OBJDUMP@ +OBJEXT = @OBJEXT@ +OTOOL = @OTOOL@ +OTOOL64 = @OTOOL64@ +PACKAGE = @PACKAGE@ +PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ +PACKAGE_NAME = @PACKAGE_NAME@ +PACKAGE_STRING = @PACKAGE_STRING@ +PACKAGE_TARNAME = @PACKAGE_TARNAME@ +PACKAGE_URL = @PACKAGE_URL@ +PACKAGE_VERSION = @PACKAGE_VERSION@ +PANDOC = @PANDOC@ +PATH_SEPARATOR = @PATH_SEPARATOR@ +PGSQL_CFLAGS = @PGSQL_CFLAGS@ +PGSQL_LIBS = @PGSQL_LIBS@ +PG_CONFIG = @PG_CONFIG@ +PIE_CFLAGS = @PIE_CFLAGS@ +PIE_LDFLAGS = @PIE_LDFLAGS@ +PKG_CONFIG = @PKG_CONFIG@ +PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ +PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ +QUOTA_LIBS = @QUOTA_LIBS@ +RANLIB = @RANLIB@ +RELRO_LDFLAGS = @RELRO_LDFLAGS@ +RPCGEN = @RPCGEN@ +RUN_TEST = @RUN_TEST@ +SED = @SED@ +SETTING_FILES = @SETTING_FILES@ +SET_MAKE = @SET_MAKE@ +SHELL = @SHELL@ +SQLITE_CFLAGS = @SQLITE_CFLAGS@ +SQLITE_LIBS = @SQLITE_LIBS@ +SQL_CFLAGS = @SQL_CFLAGS@ +SQL_LIBS = @SQL_LIBS@ +SSL_CFLAGS = @SSL_CFLAGS@ +SSL_LIBS = @SSL_LIBS@ +STRIP = @STRIP@ +SYSTEMD_CFLAGS = @SYSTEMD_CFLAGS@ +SYSTEMD_LIBS = @SYSTEMD_LIBS@ +VALGRIND = @VALGRIND@ +VERSION = @VERSION@ +ZSTD_CFLAGS = @ZSTD_CFLAGS@ +ZSTD_LIBS = @ZSTD_LIBS@ +abs_builddir = @abs_builddir@ +abs_srcdir = @abs_srcdir@ +abs_top_builddir = @abs_top_builddir@ +abs_top_srcdir = @abs_top_srcdir@ +ac_ct_AR = @ac_ct_AR@ +ac_ct_CC = @ac_ct_CC@ +ac_ct_CXX = @ac_ct_CXX@ +ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ +am__include = @am__include@ +am__leading_dot = @am__leading_dot@ +am__quote = @am__quote@ +am__tar = @am__tar@ +am__untar = @am__untar@ +bindir = @bindir@ +build = @build@ +build_alias = @build_alias@ +build_cpu = @build_cpu@ +build_os = @build_os@ +build_vendor = @build_vendor@ +builddir = @builddir@ +datadir = @datadir@ +datarootdir = @datarootdir@ +dict_drivers = @dict_drivers@ +docdir = @docdir@ +dvidir = @dvidir@ +exec_prefix = @exec_prefix@ +host = @host@ +host_alias = @host_alias@ +host_cpu = @host_cpu@ +host_os = @host_os@ +host_vendor = @host_vendor@ +htmldir = @htmldir@ +includedir = @includedir@ +infodir = @infodir@ +install_sh = @install_sh@ +libdir = @libdir@ +libexecdir = @libexecdir@ +localedir = @localedir@ +localstatedir = @localstatedir@ +mandir = @mandir@ +mkdir_p = @mkdir_p@ +moduledir = @moduledir@ +oldincludedir = @oldincludedir@ +pdfdir = @pdfdir@ +prefix = @prefix@ +program_transform_name = @program_transform_name@ +psdir = @psdir@ +rundir = @rundir@ +runstatedir = @runstatedir@ +sbindir = @sbindir@ +sharedstatedir = @sharedstatedir@ +sql_drivers = @sql_drivers@ +srcdir = @srcdir@ +ssldir = @ssldir@ +statedir = @statedir@ +sysconfdir = @sysconfdir@ +systemdservicetype = @systemdservicetype@ +systemdsystemunitdir = @systemdsystemunitdir@ +target_alias = @target_alias@ +top_build_prefix = @top_build_prefix@ +top_builddir = @top_builddir@ +top_srcdir = @top_srcdir@ +AM_CPPFLAGS = \ + -I$(top_srcdir)/src/lib \ + -I$(top_srcdir)/src/lib-test \ + -I$(top_srcdir)/src/lib-settings \ + -I$(top_srcdir)/src/lib-master \ + $(BINARY_CFLAGS) + +anvil_LDADD = \ + $(LIBDOVECOT) \ + $(RAND_LIBS) \ + $(BINARY_LDFLAGS) + +anvil_DEPENDENCIES = $(LIBDOVECOT_DEPS) +anvil_SOURCES = \ + main.c \ + anvil-connection.c \ + anvil-settings.c \ + connect-limit.c \ + penalty.c + +noinst_HEADERS = \ + anvil-connection.h \ + common.h \ + connect-limit.h \ + penalty.h + +test_programs = \ + test-penalty + +test_libs = \ + ../lib-test/libtest.la \ + ../lib/liblib.la + +test_penalty_SOURCES = test-penalty.c +test_penalty_LDADD = penalty.o $(test_libs) +test_penalty_DEPENDENCIES = $(pkglibexec_PROGRAMS) $(test_libs) +all: all-am + +.SUFFIXES: +.SUFFIXES: .c .lo .o .obj +$(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) + @for dep in $?; do \ + case '$(am__configure_deps)' in \ + *$$dep*) \ + ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ + && { if test -f $@; then exit 0; else break; fi; }; \ + exit 1;; \ + esac; \ + done; \ + echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign src/anvil/Makefile'; \ + $(am__cd) $(top_srcdir) && \ + $(AUTOMAKE) --foreign src/anvil/Makefile +Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status + @case '$?' in \ + *config.status*) \ + cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ + *) \ + echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ + cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ + esac; + +$(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) + cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh + +$(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) + cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh +$(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) + cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh +$(am__aclocal_m4_deps): + +clean-noinstPROGRAMS: + @list='$(noinst_PROGRAMS)'; test -n "$$list" || exit 0; \ + echo " rm -f" $$list; \ + rm -f $$list || exit $$?; \ + test -n "$(EXEEXT)" || exit 0; \ + list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ + echo " rm -f" $$list; \ + rm -f $$list +install-pkglibexecPROGRAMS: $(pkglibexec_PROGRAMS) + @$(NORMAL_INSTALL) + @list='$(pkglibexec_PROGRAMS)'; test -n "$(pkglibexecdir)" || list=; \ + if test -n "$$list"; then \ + echo " $(MKDIR_P) '$(DESTDIR)$(pkglibexecdir)'"; \ + $(MKDIR_P) "$(DESTDIR)$(pkglibexecdir)" || exit 1; \ + fi; \ + for p in $$list; do echo "$$p $$p"; done | \ + sed 's/$(EXEEXT)$$//' | \ + while read p p1; do if test -f $$p \ + || test -f $$p1 \ + ; then echo "$$p"; echo "$$p"; else :; fi; \ + done | \ + sed -e 'p;s,.*/,,;n;h' \ + -e 's|.*|.|' \ + -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ + sed 'N;N;N;s,\n, ,g' | \ + $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ + { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ + if ($$2 == $$4) files[d] = files[d] " " $$1; \ + else { print "f", $$3 "/" $$4, $$1; } } \ + END { for (d in files) print "f", d, files[d] }' | \ + while read type dir files; do \ + if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ + test -z "$$files" || { \ + echo " $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(pkglibexecdir)$$dir'"; \ + $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(pkglibexecdir)$$dir" || exit $$?; \ + } \ + ; done + +uninstall-pkglibexecPROGRAMS: + @$(NORMAL_UNINSTALL) + @list='$(pkglibexec_PROGRAMS)'; test -n "$(pkglibexecdir)" || list=; \ + files=`for p in $$list; do echo "$$p"; done | \ + sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ + -e 's/$$/$(EXEEXT)/' \ + `; \ + test -n "$$list" || exit 0; \ + echo " ( cd '$(DESTDIR)$(pkglibexecdir)' && rm -f" $$files ")"; \ + cd "$(DESTDIR)$(pkglibexecdir)" && rm -f $$files + +clean-pkglibexecPROGRAMS: + @list='$(pkglibexec_PROGRAMS)'; test -n "$$list" || exit 0; \ + echo " rm -f" $$list; \ + rm -f $$list || exit $$?; \ + test -n "$(EXEEXT)" || exit 0; \ + list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ + echo " rm -f" $$list; \ + rm -f $$list + +anvil$(EXEEXT): $(anvil_OBJECTS) $(anvil_DEPENDENCIES) $(EXTRA_anvil_DEPENDENCIES) + @rm -f anvil$(EXEEXT) + $(AM_V_CCLD)$(LINK) $(anvil_OBJECTS) $(anvil_LDADD) $(LIBS) + +test-penalty$(EXEEXT): $(test_penalty_OBJECTS) $(test_penalty_DEPENDENCIES) $(EXTRA_test_penalty_DEPENDENCIES) + @rm -f test-penalty$(EXEEXT) + $(AM_V_CCLD)$(LINK) $(test_penalty_OBJECTS) $(test_penalty_LDADD) $(LIBS) + +mostlyclean-compile: + -rm -f *.$(OBJEXT) + +distclean-compile: + -rm -f *.tab.c + +@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/anvil-connection.Po@am__quote@ # am--include-marker +@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/anvil-settings.Po@am__quote@ # am--include-marker +@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/connect-limit.Po@am__quote@ # am--include-marker +@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/main.Po@am__quote@ # am--include-marker +@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/penalty.Po@am__quote@ # am--include-marker +@AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/test-penalty.Po@am__quote@ # am--include-marker + +$(am__depfiles_remade): + @$(MKDIR_P) $(@D) + @echo '# dummy' >$@-t && $(am__mv) $@-t $@ + +am--depfiles: $(am__depfiles_remade) + +.c.o: +@am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< + +.c.obj: +@am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ `$(CYGPATH_W) '$<'` +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` + +.c.lo: +@am__fastdepCC_TRUE@ $(AM_V_CC)$(LTCOMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< +@am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Plo +@AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=yes @AMDEPBACKSLASH@ +@AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ +@am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LTCOMPILE) -c -o $@ $< + +mostlyclean-libtool: + -rm -f *.lo + +clean-libtool: + -rm -rf .libs _libs + +ID: $(am__tagged_files) + $(am__define_uniq_tagged_files); mkid -fID $$unique +tags: tags-am +TAGS: tags + +tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) + set x; \ + here=`pwd`; \ + $(am__define_uniq_tagged_files); \ + shift; \ + if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ + test -n "$$unique" || unique=$$empty_fix; \ + if test $$# -gt 0; then \ + $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ + "$$@" $$unique; \ + else \ + $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ + $$unique; \ + fi; \ + fi +ctags: ctags-am + +CTAGS: ctags +ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) + $(am__define_uniq_tagged_files); \ + test -z "$(CTAGS_ARGS)$$unique" \ + || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ + $$unique + +GTAGS: + here=`$(am__cd) $(top_builddir) && pwd` \ + && $(am__cd) $(top_srcdir) \ + && gtags -i $(GTAGS_ARGS) "$$here" +cscopelist: cscopelist-am + +cscopelist-am: $(am__tagged_files) + list='$(am__tagged_files)'; \ + case "$(srcdir)" in \ + [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ + *) sdir=$(subdir)/$(srcdir) ;; \ + esac; \ + for i in $$list; do \ + if test -f "$$i"; then \ + echo "$(subdir)/$$i"; \ + else \ + echo "$$sdir/$$i"; \ + fi; \ + done >> $(top_builddir)/cscope.files + +distclean-tags: + -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags + +distdir: $(BUILT_SOURCES) + $(MAKE) $(AM_MAKEFLAGS) distdir-am + +distdir-am: $(DISTFILES) + @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ + topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ + list='$(DISTFILES)'; \ + dist_files=`for file in $$list; do echo $$file; done | \ + sed -e "s|^$$srcdirstrip/||;t" \ + -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ + case $$dist_files in \ + */*) $(MKDIR_P) `echo "$$dist_files" | \ + sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ + sort -u` ;; \ + esac; \ + for file in $$dist_files; do \ + if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ + if test -d $$d/$$file; then \ + dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ + if test -d "$(distdir)/$$file"; then \ + find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ + fi; \ + if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ + cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ + find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ + fi; \ + cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ + else \ + test -f "$(distdir)/$$file" \ + || cp -p $$d/$$file "$(distdir)/$$file" \ + || exit 1; \ + fi; \ + done +check-am: all-am + $(MAKE) $(AM_MAKEFLAGS) check-local +check: check-am +all-am: Makefile $(PROGRAMS) $(HEADERS) +installdirs: + for dir in "$(DESTDIR)$(pkglibexecdir)"; do \ + test -z "$$dir" || $(MKDIR_P) "$$dir"; \ + done +install: install-am +install-exec: install-exec-am +install-data: install-data-am +uninstall: uninstall-am + +install-am: all-am + @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am + +installcheck: installcheck-am +install-strip: + if test -z '$(STRIP)'; then \ + $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ + install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ + install; \ + else \ + $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ + install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ + "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ + fi +mostlyclean-generic: + +clean-generic: + +distclean-generic: + -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) + -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) + +maintainer-clean-generic: + @echo "This command is intended for maintainers to use" + @echo "it deletes files that may require special tools to rebuild." +clean: clean-am + +clean-am: clean-generic clean-libtool clean-noinstPROGRAMS \ + clean-pkglibexecPROGRAMS mostlyclean-am + +distclean: distclean-am + -rm -f ./$(DEPDIR)/anvil-connection.Po + -rm -f ./$(DEPDIR)/anvil-settings.Po + -rm -f ./$(DEPDIR)/connect-limit.Po + -rm -f ./$(DEPDIR)/main.Po + -rm -f ./$(DEPDIR)/penalty.Po + -rm -f ./$(DEPDIR)/test-penalty.Po + -rm -f Makefile +distclean-am: clean-am distclean-compile distclean-generic \ + distclean-tags + +dvi: dvi-am + +dvi-am: + +html: html-am + +html-am: + +info: info-am + +info-am: + +install-data-am: + +install-dvi: install-dvi-am + +install-dvi-am: + +install-exec-am: install-pkglibexecPROGRAMS + +install-html: install-html-am + +install-html-am: + +install-info: install-info-am + +install-info-am: + +install-man: + +install-pdf: install-pdf-am + +install-pdf-am: + +install-ps: install-ps-am + +install-ps-am: + +installcheck-am: + +maintainer-clean: maintainer-clean-am + -rm -f ./$(DEPDIR)/anvil-connection.Po + -rm -f ./$(DEPDIR)/anvil-settings.Po + -rm -f ./$(DEPDIR)/connect-limit.Po + -rm -f ./$(DEPDIR)/main.Po + -rm -f ./$(DEPDIR)/penalty.Po + -rm -f ./$(DEPDIR)/test-penalty.Po + -rm -f Makefile +maintainer-clean-am: distclean-am maintainer-clean-generic + +mostlyclean: mostlyclean-am + +mostlyclean-am: mostlyclean-compile mostlyclean-generic \ + mostlyclean-libtool + +pdf: pdf-am + +pdf-am: + +ps: ps-am + +ps-am: + +uninstall-am: uninstall-pkglibexecPROGRAMS + +.MAKE: check-am install-am install-strip + +.PHONY: CTAGS GTAGS TAGS all all-am am--depfiles check check-am \ + check-local clean clean-generic clean-libtool \ + clean-noinstPROGRAMS clean-pkglibexecPROGRAMS cscopelist-am \ + ctags ctags-am distclean distclean-compile distclean-generic \ + distclean-libtool distclean-tags distdir dvi dvi-am html \ + html-am info info-am install install-am install-data \ + install-data-am install-dvi install-dvi-am install-exec \ + install-exec-am install-html install-html-am install-info \ + install-info-am install-man install-pdf install-pdf-am \ + install-pkglibexecPROGRAMS install-ps install-ps-am \ + install-strip installcheck installcheck-am installdirs \ + maintainer-clean maintainer-clean-generic mostlyclean \ + mostlyclean-compile mostlyclean-generic mostlyclean-libtool \ + pdf pdf-am ps ps-am tags tags-am uninstall uninstall-am \ + uninstall-pkglibexecPROGRAMS + +.PRECIOUS: Makefile + + +check-local: + for bin in $(test_programs); do \ + if ! $(RUN_TEST) ./$$bin; then exit 1; fi; \ + done + +# Tell versions [3.59,3.63) of GNU make to not export all variables. +# Otherwise a system limit (for SysV at least) may be exceeded. +.NOEXPORT: diff --git a/src/anvil/anvil-connection.c b/src/anvil/anvil-connection.c new file mode 100644 index 0000000..20e859b --- /dev/null +++ b/src/anvil/anvil-connection.c @@ -0,0 +1,226 @@ +/* Copyright (c) 2009-2018 Dovecot authors, see the included COPYING file */ + +#include "common.h" +#include "llist.h" +#include "istream.h" +#include "ostream.h" +#include "strescape.h" +#include "master-service.h" +#include "master-interface.h" +#include "connect-limit.h" +#include "penalty.h" +#include "anvil-connection.h" + +#include <unistd.h> + +#define MAX_INBUF_SIZE 1024 + +#define ANVIL_CLIENT_PROTOCOL_MAJOR_VERSION 1 +#define ANVIL_CLIENT_PROTOCOL_MINOR_VERSION 0 + +struct anvil_connection { + struct anvil_connection *prev, *next; + + int fd; + struct istream *input; + struct ostream *output; + struct io *io; + + bool version_received:1; + bool handshaked:1; + bool master:1; + bool fifo:1; +}; + +static struct anvil_connection *anvil_connections = NULL; + +static const char *const * +anvil_connection_next_line(struct anvil_connection *conn) +{ + const char *line; + + line = i_stream_next_line(conn->input); + return line == NULL ? NULL : t_strsplit_tabescaped(line); +} + +static int +anvil_connection_request(struct anvil_connection *conn, + const char *const *args, const char **error_r) +{ + const char *cmd = args[0]; + unsigned int value, checksum; + time_t stamp; + pid_t pid; + + args++; + if (strcmp(cmd, "CONNECT") == 0) { + if (args[0] == NULL || args[1] == NULL) { + *error_r = "CONNECT: Not enough parameters"; + return -1; + } + if (str_to_pid(args[0], &pid) < 0) { + *error_r = "CONNECT: Invalid pid"; + return -1; + } + connect_limit_connect(connect_limit, pid, args[1]); + } else if (strcmp(cmd, "DISCONNECT") == 0) { + if (args[0] == NULL || args[1] == NULL) { + *error_r = "DISCONNECT: Not enough parameters"; + return -1; + } + if (str_to_pid(args[0], &pid) < 0) { + *error_r = "DISCONNECT: Invalid pid"; + return -1; + } + connect_limit_disconnect(connect_limit, pid, args[1]); + } else if (strcmp(cmd, "CONNECT-DUMP") == 0) { + connect_limit_dump(connect_limit, conn->output); + } else if (strcmp(cmd, "KILL") == 0) { + if (args[0] == NULL) { + *error_r = "KILL: Not enough parameters"; + return -1; + } + if (!conn->master) { + *error_r = "KILL sent by a non-master connection"; + return -1; + } + if (str_to_pid(args[0], &pid) < 0) { + *error_r = "KILL: Invalid pid"; + return -1; + } + connect_limit_disconnect_pid(connect_limit, pid); + } else if (strcmp(cmd, "LOOKUP") == 0) { + if (args[0] == NULL) { + *error_r = "LOOKUP: Not enough parameters"; + return -1; + } + if (conn->output == NULL) { + *error_r = "LOOKUP on a FIFO, can't send reply"; + return -1; + } + value = connect_limit_lookup(connect_limit, args[0]); + o_stream_nsend_str(conn->output, + t_strdup_printf("%u\n", value)); + } else if (strcmp(cmd, "PENALTY-GET") == 0) { + if (args[0] == NULL) { + *error_r = "PENALTY-GET: Not enough parameters"; + return -1; + } + value = penalty_get(penalty, args[0], &stamp); + o_stream_nsend_str(conn->output, + t_strdup_printf("%u %s\n", value, dec2str(stamp))); + } else if (strcmp(cmd, "PENALTY-INC") == 0) { + if (args[0] == NULL || args[1] == NULL || args[2] == NULL) { + *error_r = "PENALTY-INC: Not enough parameters"; + return -1; + } + if (str_to_uint(args[1], &checksum) < 0 || + str_to_uint(args[2], &value) < 0 || + value > PENALTY_MAX_VALUE || + (value == 0 && checksum != 0)) { + *error_r = "PENALTY-INC: Invalid parameters"; + return -1; + } + penalty_inc(penalty, args[0], checksum, value); + } else if (strcmp(cmd, "PENALTY-SET-EXPIRE-SECS") == 0) { + if (args[0] == NULL || str_to_uint(args[0], &value) < 0) { + *error_r = "PENALTY-SET-EXPIRE-SECS: " + "Invalid parameters"; + return -1; + } + penalty_set_expire_secs(penalty, value); + } else if (strcmp(cmd, "PENALTY-DUMP") == 0) { + penalty_dump(penalty, conn->output); + } else { + *error_r = t_strconcat("Unknown command: ", cmd, NULL); + return -1; + } + return 0; +} + +static void anvil_connection_input(struct anvil_connection *conn) +{ + const char *line, *const *args, *error; + + switch (i_stream_read(conn->input)) { + case -2: + i_error("BUG: Anvil client connection sent too much data"); + anvil_connection_destroy(conn); + return; + case -1: + anvil_connection_destroy(conn); + return; + } + + if (!conn->version_received) { + if ((line = i_stream_next_line(conn->input)) == NULL) + return; + + if (!version_string_verify(line, "anvil", + ANVIL_CLIENT_PROTOCOL_MAJOR_VERSION)) { + if (anvil_restarted && (conn->master || conn->fifo)) { + /* old pending data. ignore input until we get + the handshake. */ + anvil_connection_input(conn); + return; + } + i_error("Anvil client not compatible with this server " + "(mixed old and new binaries?) %s", line); + anvil_connection_destroy(conn); + return; + } + conn->version_received = TRUE; + } + + while ((args = anvil_connection_next_line(conn)) != NULL) { + if (args[0] != NULL) { + if (anvil_connection_request(conn, args, &error) < 0) { + i_error("Anvil client input error: %s", error); + anvil_connection_destroy(conn); + break; + } + } + } +} + +struct anvil_connection * +anvil_connection_create(int fd, bool master, bool fifo) +{ + struct anvil_connection *conn; + + conn = i_new(struct anvil_connection, 1); + conn->fd = fd; + conn->input = i_stream_create_fd(fd, MAX_INBUF_SIZE); + if (!fifo) { + conn->output = o_stream_create_fd(fd, SIZE_MAX); + o_stream_set_no_error_handling(conn->output, TRUE); + } + conn->io = io_add(fd, IO_READ, anvil_connection_input, conn); + conn->master = master; + conn->fifo = fifo; + DLLIST_PREPEND(&anvil_connections, conn); + return conn; +} + +void anvil_connection_destroy(struct anvil_connection *conn) +{ + bool fifo = conn->fifo; + + DLLIST_REMOVE(&anvil_connections, conn); + + io_remove(&conn->io); + i_stream_destroy(&conn->input); + o_stream_destroy(&conn->output); + if (close(conn->fd) < 0) + i_error("close(anvil conn) failed: %m"); + i_free(conn); + + if (!fifo) + master_service_client_connection_destroyed(master_service); +} + +void anvil_connections_destroy_all(void) +{ + while (anvil_connections != NULL) + anvil_connection_destroy(anvil_connections); +} diff --git a/src/anvil/anvil-connection.h b/src/anvil/anvil-connection.h new file mode 100644 index 0000000..f94fbab --- /dev/null +++ b/src/anvil/anvil-connection.h @@ -0,0 +1,10 @@ +#ifndef ANVIL_CONNECTION_H +#define ANVIL_CONNECTION_H + +struct anvil_connection * +anvil_connection_create(int fd, bool master, bool fifo); +void anvil_connection_destroy(struct anvil_connection *conn); + +void anvil_connections_destroy_all(void); + +#endif diff --git a/src/anvil/anvil-settings.c b/src/anvil/anvil-settings.c new file mode 100644 index 0000000..a94823e --- /dev/null +++ b/src/anvil/anvil-settings.c @@ -0,0 +1,50 @@ +/* Copyright (c) 2009-2018 Dovecot authors, see the included COPYING file */ + +#include "lib.h" +#include "buffer.h" +#include "settings-parser.h" +#include "service-settings.h" + +#include <stddef.h> + +/* <settings checks> */ +static struct file_listener_settings anvil_unix_listeners_array[] = { + { "anvil", 0600, "", "" }, + { "anvil-auth-penalty", 0600, "", "" } +}; +static struct file_listener_settings *anvil_unix_listeners[] = { + &anvil_unix_listeners_array[0], + &anvil_unix_listeners_array[1] +}; +static buffer_t anvil_unix_listeners_buf = { + { { anvil_unix_listeners, sizeof(anvil_unix_listeners) } } +}; +/* </settings checks> */ + +struct service_settings anvil_service_settings = { + .name = "anvil", + .protocol = "", + .type = "anvil", + .executable = "anvil", + .user = "$default_internal_user", + .group = "", + .privileged_group = "", + .extra_groups = "", + .chroot = "empty", + + .drop_priv_before_exec = FALSE, + + .process_min_avail = 1, + .process_limit = 1, + .client_limit = 0, + .service_count = 0, + .idle_kill = UINT_MAX, + .vsz_limit = UOFF_T_MAX, + + .unix_listeners = { { &anvil_unix_listeners_buf, + sizeof(anvil_unix_listeners[0]) } }, + .fifo_listeners = ARRAY_INIT, + .inet_listeners = ARRAY_INIT, + + .process_limit_1 = TRUE +}; diff --git a/src/anvil/common.h b/src/anvil/common.h new file mode 100644 index 0000000..f9a44bd --- /dev/null +++ b/src/anvil/common.h @@ -0,0 +1,10 @@ +#ifndef COMMON_H +#define COMMON_H + +#include "lib.h" + +extern struct connect_limit *connect_limit; +extern struct penalty *penalty; +extern bool anvil_restarted; + +#endif diff --git a/src/anvil/connect-limit.c b/src/anvil/connect-limit.c new file mode 100644 index 0000000..0d27368 --- /dev/null +++ b/src/anvil/connect-limit.c @@ -0,0 +1,192 @@ +/* Copyright (c) 2009-2018 Dovecot authors, see the included COPYING file */ + +#include "common.h" +#include "hash.h" +#include "str.h" +#include "strescape.h" +#include "ostream.h" +#include "connect-limit.h" + +struct ident_pid { + /* ident string points to ident_hash keys */ + const char *ident; + pid_t pid; + unsigned int refcount; +}; + +struct connect_limit { + /* ident => unsigned int refcount */ + HASH_TABLE(char *, void *) ident_hash; + /* struct ident_pid => struct ident_pid */ + HASH_TABLE(struct ident_pid *, struct ident_pid *) ident_pid_hash; +}; + +static void +connect_limit_ident_hash_unref(struct connect_limit *limit, const char *ident); + +static unsigned int ident_pid_hash(const struct ident_pid *i) +{ + return str_hash(i->ident) ^ i->pid; +} + +static int ident_pid_cmp(const struct ident_pid *i1, const struct ident_pid *i2) +{ + if (i1->pid < i2->pid) + return -1; + else if (i1->pid > i2->pid) + return 1; + else + return strcmp(i1->ident, i2->ident); +} + +struct connect_limit *connect_limit_init(void) +{ + struct connect_limit *limit; + + limit = i_new(struct connect_limit, 1); + hash_table_create(&limit->ident_hash, default_pool, 0, str_hash, strcmp); + hash_table_create(&limit->ident_pid_hash, default_pool, 0, + ident_pid_hash, ident_pid_cmp); + return limit; +} + +void connect_limit_deinit(struct connect_limit **_limit) +{ + struct connect_limit *limit = *_limit; + struct hash_iterate_context *iter; + struct ident_pid *i, *value; + + iter = hash_table_iterate_init(limit->ident_pid_hash); + while (hash_table_iterate(iter, limit->ident_pid_hash, &i, &value)) { + hash_table_remove(limit->ident_pid_hash, i); + for (; i->refcount > 0; i->refcount--) + connect_limit_ident_hash_unref(limit, i->ident); + i_free(i); + } + hash_table_iterate_deinit(&iter); + + *_limit = NULL; + hash_table_destroy(&limit->ident_hash); + hash_table_destroy(&limit->ident_pid_hash); + i_free(limit); +} + +unsigned int connect_limit_lookup(struct connect_limit *limit, + const char *ident) +{ + void *value; + + value = hash_table_lookup(limit->ident_hash, ident); + return POINTER_CAST_TO(value, unsigned int); +} + +void connect_limit_connect(struct connect_limit *limit, pid_t pid, + const char *ident) +{ + struct ident_pid *i, lookup_i; + char *key; + void *value; + + if (!hash_table_lookup_full(limit->ident_hash, ident, + &key, &value)) { + key = i_strdup(ident); + value = POINTER_CAST(1); + hash_table_insert(limit->ident_hash, key, value); + } else { + value = POINTER_CAST(POINTER_CAST_TO(value, unsigned int) + 1); + hash_table_update(limit->ident_hash, key, value); + } + + lookup_i.ident = ident; + lookup_i.pid = pid; + i = hash_table_lookup(limit->ident_pid_hash, &lookup_i); + if (i == NULL) { + i = i_new(struct ident_pid, 1); + i->ident = key; + i->pid = pid; + i->refcount = 1; + hash_table_insert(limit->ident_pid_hash, i, i); + } else { + i->refcount++; + } +} + +static void +connect_limit_ident_hash_unref(struct connect_limit *limit, const char *ident) +{ + char *key; + void *value; + unsigned int new_refcount; + + if (!hash_table_lookup_full(limit->ident_hash, ident, &key, &value)) + i_panic("connect limit hash tables are inconsistent"); + + new_refcount = POINTER_CAST_TO(value, unsigned int) - 1; + if (new_refcount > 0) { + value = POINTER_CAST(new_refcount); + hash_table_update(limit->ident_hash, key, value); + } else { + hash_table_remove(limit->ident_hash, key); + i_free(key); + } +} + +void connect_limit_disconnect(struct connect_limit *limit, pid_t pid, + const char *ident) +{ + struct ident_pid *i, lookup_i; + + lookup_i.ident = ident; + lookup_i.pid = pid; + + i = hash_table_lookup(limit->ident_pid_hash, &lookup_i); + if (i == NULL) { + i_error("connect limit: disconnection for unknown " + "pid %s + ident %s", dec2str(pid), ident); + return; + } + + if (--i->refcount == 0) { + hash_table_remove(limit->ident_pid_hash, i); + i_free(i); + } + + connect_limit_ident_hash_unref(limit, ident); +} + +void connect_limit_disconnect_pid(struct connect_limit *limit, pid_t pid) +{ + struct hash_iterate_context *iter; + struct ident_pid *i, *value; + + /* this should happen rarely (or never), so this slow implementation + should be fine. */ + iter = hash_table_iterate_init(limit->ident_pid_hash); + while (hash_table_iterate(iter, limit->ident_pid_hash, &i, &value)) { + if (i->pid == pid) { + hash_table_remove(limit->ident_pid_hash, i); + for (; i->refcount > 0; i->refcount--) + connect_limit_ident_hash_unref(limit, i->ident); + i_free(i); + } + } + hash_table_iterate_deinit(&iter); +} + +void connect_limit_dump(struct connect_limit *limit, struct ostream *output) +{ + struct hash_iterate_context *iter; + struct ident_pid *i, *value; + string_t *str = t_str_new(256); + + iter = hash_table_iterate_init(limit->ident_pid_hash); + while (hash_table_iterate(iter, limit->ident_pid_hash, &i, &value)) { + str_truncate(str, 0); + str_append_tabescaped(str, i->ident); + str_printfa(str, "\t%ld\t%u\n", (long)i->pid, i->refcount); + if (o_stream_send(output, str_data(str), str_len(str)) < 0) + break; + } + hash_table_iterate_deinit(&iter); + o_stream_nsend(output, "\n", 1); +} diff --git a/src/anvil/connect-limit.h b/src/anvil/connect-limit.h new file mode 100644 index 0000000..2d3c611 --- /dev/null +++ b/src/anvil/connect-limit.h @@ -0,0 +1,16 @@ +#ifndef CONNECT_LIMIT_H +#define CONNECT_LIMIT_H + +struct connect_limit *connect_limit_init(void); +void connect_limit_deinit(struct connect_limit **limit); + +unsigned int connect_limit_lookup(struct connect_limit *limit, + const char *ident); +void connect_limit_connect(struct connect_limit *limit, pid_t pid, + const char *ident); +void connect_limit_disconnect(struct connect_limit *limit, pid_t pid, + const char *ident); +void connect_limit_disconnect_pid(struct connect_limit *limit, pid_t pid); +void connect_limit_dump(struct connect_limit *limit, struct ostream *output); + +#endif diff --git a/src/anvil/main.c b/src/anvil/main.c new file mode 100644 index 0000000..7e4050b --- /dev/null +++ b/src/anvil/main.c @@ -0,0 +1,90 @@ +/* Copyright (c) 2009-2018 Dovecot authors, see the included COPYING file */ + +#include "common.h" +#include "array.h" +#include "env-util.h" +#include "fdpass.h" +#include "ioloop.h" +#include "restrict-access.h" +#include "master-service.h" +#include "master-service-settings.h" +#include "master-interface.h" +#include "connect-limit.h" +#include "penalty.h" +#include "anvil-connection.h" + +#include <unistd.h> + +struct connect_limit *connect_limit; +struct penalty *penalty; +bool anvil_restarted; +static struct io *log_fdpass_io; + +static void client_connected(struct master_service_connection *conn) +{ + bool master = conn->listen_fd == MASTER_LISTEN_FD_FIRST; + + master_service_client_connection_accept(conn); + (void)anvil_connection_create(conn->fd, master, conn->fifo); +} + +static void ATTR_NULL(1) +log_fdpass_input(void *context ATTR_UNUSED) +{ + int fd; + char c; + ssize_t ret; + + /* master wants us to replace the log fd */ + ret = fd_read(MASTER_ANVIL_LOG_FDPASS_FD, &c, 1, &fd); + if (ret < 0) + i_error("fd_read(log fd) failed: %m"); + else if (ret == 0) { + /* master died. lib-master should notice it soon. */ + io_remove(&log_fdpass_io); + } else { + if (dup2(fd, STDERR_FILENO) < 0) + i_fatal("dup2(fd_read log fd, stderr) failed: %m"); + if (close(fd) < 0) + i_error("close(fd_read log fd) failed: %m"); + } +} + +int main(int argc, char *argv[]) +{ + const enum master_service_flags service_flags = + MASTER_SERVICE_FLAG_DONT_SEND_STATS | + MASTER_SERVICE_FLAG_UPDATE_PROCTITLE; + const char *error; + + master_service = master_service_init("anvil", service_flags, + &argc, &argv, ""); + if (master_getopt(master_service) > 0) + return FATAL_DEFAULT; + if (master_service_settings_read_simple(master_service, + NULL, &error) < 0) + i_fatal("Error reading configuration: %s", error); + master_service_init_log(master_service); + + restrict_access_by_env(RESTRICT_ACCESS_FLAG_ALLOW_ROOT, NULL); + restrict_access_allow_coredumps(TRUE); + anvil_restarted = getenv("ANVIL_RESTARTED") != NULL; + + /* delay dying until all of our clients are gone */ + master_service_set_die_with_master(master_service, FALSE); + + connect_limit = connect_limit_init(); + penalty = penalty_init(); + log_fdpass_io = io_add(MASTER_ANVIL_LOG_FDPASS_FD, IO_READ, + log_fdpass_input, NULL); + master_service_init_finish(master_service); + + master_service_run(master_service, client_connected); + + io_remove(&log_fdpass_io); + penalty_deinit(&penalty); + connect_limit_deinit(&connect_limit); + anvil_connections_destroy_all(); + master_service_deinit(&master_service); + return 0; +} diff --git a/src/anvil/penalty.c b/src/anvil/penalty.c new file mode 100644 index 0000000..2ab6da1 --- /dev/null +++ b/src/anvil/penalty.c @@ -0,0 +1,273 @@ +/* Copyright (c) 2009-2018 Dovecot authors, see the included COPYING file */ + +/* The idea behind checksums is that the same username+password doesn't + increase the penalty, because it's most likely a user with a misconfigured + account. */ + +#include "lib.h" +#include "ioloop.h" +#include "hash.h" +#include "str.h" +#include "strescape.h" +#include "llist.h" +#include "ostream.h" +#include "penalty.h" + +#include <time.h> + +#define PENALTY_DEFAULT_EXPIRE_SECS (60*60) +#define PENALTY_CHECKSUM_SAVE_COUNT +#define CHECKSUM_VALUE_COUNT 2 +#define CHECKSUM_VALUE_PTR_COUNT 10 + +#define LAST_UPDATE_BITS 15 + +struct penalty_rec { + /* ordered by last_update */ + struct penalty_rec *prev, *next; + + char *ident; + unsigned int last_penalty; + + unsigned int penalty:16; + unsigned int last_update:LAST_UPDATE_BITS; /* last_penalty + n */ + bool checksum_is_pointer:1; + /* we use value up to two different checksums. + after that switch to pointer. */ + union { + unsigned int value[CHECKSUM_VALUE_COUNT]; + unsigned int *value_ptr; + } checksum; +}; + +struct penalty { + /* ident => penalty_rec */ + HASH_TABLE(char *, struct penalty_rec *) hash; + struct penalty_rec *oldest, *newest; + + unsigned int expire_secs; + struct timeout *to; +}; + +struct penalty *penalty_init(void) +{ + struct penalty *penalty; + + penalty = i_new(struct penalty, 1); + hash_table_create(&penalty->hash, default_pool, 0, str_hash, strcmp); + penalty->expire_secs = PENALTY_DEFAULT_EXPIRE_SECS; + return penalty; +} + +static void penalty_rec_free(struct penalty *penalty, struct penalty_rec *rec) +{ + DLLIST2_REMOVE(&penalty->oldest, &penalty->newest, rec); + if (rec->checksum_is_pointer) + i_free(rec->checksum.value_ptr); + i_free(rec->ident); + i_free(rec); +} + +void penalty_deinit(struct penalty **_penalty) +{ + struct penalty *penalty = *_penalty; + + *_penalty = NULL; + + while (penalty->oldest != NULL) + penalty_rec_free(penalty, penalty->oldest); + hash_table_destroy(&penalty->hash); + + timeout_remove(&penalty->to); + i_free(penalty); +} + +void penalty_set_expire_secs(struct penalty *penalty, unsigned int expire_secs) +{ + penalty->expire_secs = expire_secs; +} + +static bool +penalty_bump_checksum(struct penalty_rec *rec, unsigned int checksum) +{ + unsigned int *checksums; + unsigned int i, count; + + if (!rec->checksum_is_pointer) { + checksums = rec->checksum.value; + count = CHECKSUM_VALUE_COUNT; + } else { + checksums = rec->checksum.value_ptr; + count = CHECKSUM_VALUE_PTR_COUNT; + } + + for (i = 0; i < count; i++) { + if (checksums[i] == checksum) { + if (i > 0) { + memmove(checksums + 1, checksums, + sizeof(checksums[0]) * i); + checksums[0] = checksum; + } + return TRUE; + } + } + return FALSE; +} + +static void penalty_add_checksum(struct penalty_rec *rec, unsigned int checksum) +{ + unsigned int *checksums; + + i_assert(checksum != 0); + + if (!rec->checksum_is_pointer) { + if (rec->checksum.value[CHECKSUM_VALUE_COUNT-1] == 0) { + memcpy(rec->checksum.value + 1, rec->checksum.value, + sizeof(rec->checksum.value[0]) * + (CHECKSUM_VALUE_COUNT-1)); + rec->checksum.value[0] = checksum; + return; + } + + /* switch to using a pointer */ + checksums = i_new(unsigned int, CHECKSUM_VALUE_PTR_COUNT); + memcpy(checksums, rec->checksum.value, + sizeof(checksums[0]) * CHECKSUM_VALUE_COUNT); + rec->checksum.value_ptr = checksums; + rec->checksum_is_pointer = TRUE; + } + + memmove(rec->checksum.value_ptr + 1, rec->checksum.value_ptr, + sizeof(rec->checksum.value_ptr[0]) * + (CHECKSUM_VALUE_PTR_COUNT-1)); + rec->checksum.value_ptr[0] = checksum; +} + +unsigned int penalty_get(struct penalty *penalty, const char *ident, + time_t *last_penalty_r) +{ + struct penalty_rec *rec; + + rec = hash_table_lookup(penalty->hash, ident); + if (rec == NULL) { + *last_penalty_r = 0; + return 0; + } + + *last_penalty_r = rec->last_penalty; + return rec->penalty; +} + +static void penalty_timeout(struct penalty *penalty) +{ + struct penalty_rec *rec; + time_t rec_last_update, expire_time; + unsigned int diff; + + timeout_remove(&penalty->to); + + expire_time = ioloop_time - penalty->expire_secs; + while (penalty->oldest != NULL) { + rec = penalty->oldest; + + rec_last_update = rec->last_penalty + rec->last_update; + if (rec_last_update > expire_time) { + diff = rec_last_update - expire_time; + penalty->to = timeout_add(diff * 1000, + penalty_timeout, penalty); + break; + } + hash_table_remove(penalty->hash, rec->ident); + penalty_rec_free(penalty, rec); + } +} + +void penalty_inc(struct penalty *penalty, const char *ident, + unsigned int checksum, unsigned int value) +{ + struct penalty_rec *rec; + time_t diff; + + i_assert(value > 0 || checksum == 0); + i_assert(value <= INT_MAX); + + rec = hash_table_lookup(penalty->hash, ident); + if (rec == NULL) { + rec = i_new(struct penalty_rec, 1); + rec->ident = i_strdup(ident); + hash_table_insert(penalty->hash, rec->ident, rec); + } else { + DLLIST2_REMOVE(&penalty->oldest, &penalty->newest, rec); + } + + if (checksum == 0) { + rec->penalty = value; + rec->last_penalty = ioloop_time; + } else { + if (penalty_bump_checksum(rec, checksum)) + rec->penalty = value - 1; + else { + penalty_add_checksum(rec, checksum); + rec->penalty = value; + rec->last_penalty = ioloop_time; + } + } + + diff = ioloop_time - rec->last_penalty; + if (diff >= (1 << LAST_UPDATE_BITS)) { + rec->last_update = (1 << LAST_UPDATE_BITS) - 1; + rec->last_penalty = ioloop_time - rec->last_update; + } else { + rec->last_update = diff; + } + + DLLIST2_APPEND(&penalty->oldest, &penalty->newest, rec); + + if (penalty->to == NULL) { + penalty->to = timeout_add(penalty->expire_secs * 1000, + penalty_timeout, penalty); + } +} + +bool penalty_has_checksum(struct penalty *penalty, const char *ident, + unsigned int checksum) +{ + struct penalty_rec *rec; + const unsigned int *checksums; + unsigned int i, count; + + rec = hash_table_lookup(penalty->hash, ident); + if (rec == NULL) + return FALSE; + + if (!rec->checksum_is_pointer) { + checksums = rec->checksum.value; + count = CHECKSUM_VALUE_COUNT; + } else { + checksums = rec->checksum.value_ptr; + count = CHECKSUM_VALUE_PTR_COUNT; + } + + for (i = 0; i < count; i++) { + if (checksums[i] == checksum) + return TRUE; + } + return FALSE; +} + +void penalty_dump(struct penalty *penalty, struct ostream *output) +{ + const struct penalty_rec *rec; + string_t *str = t_str_new(256); + + for (rec = penalty->oldest; rec != NULL; rec = rec->next) { + str_truncate(str, 0); + str_append_tabescaped(str, rec->ident); + str_printfa(str, "\t%u\t%u\t%u\n", + rec->penalty, rec->last_penalty, + rec->last_penalty + rec->last_update); + if (o_stream_send(output, str_data(str), str_len(str)) < 0) + break; + } + o_stream_nsend(output, "\n", 1); +} diff --git a/src/anvil/penalty.h b/src/anvil/penalty.h new file mode 100644 index 0000000..23a182c --- /dev/null +++ b/src/anvil/penalty.h @@ -0,0 +1,22 @@ +#ifndef PENALTY_H +#define PENALTY_H + +#define PENALTY_MAX_VALUE ((1 << 16)-1) + +struct penalty *penalty_init(void); +void penalty_deinit(struct penalty **penalty); + +void penalty_set_expire_secs(struct penalty *penalty, unsigned int expire_secs); + +unsigned int penalty_get(struct penalty *penalty, const char *ident, + time_t *last_penalty_r); +/* if checksum is non-zero and it already exists for ident, the value + is set to "value-1", otherwise it's set to "value". */ +void penalty_inc(struct penalty *penalty, const char *ident, + unsigned int checksum, unsigned int value); + +bool penalty_has_checksum(struct penalty *penalty, const char *ident, + unsigned int checksum); +void penalty_dump(struct penalty *penalty, struct ostream *output); + +#endif diff --git a/src/anvil/test-penalty.c b/src/anvil/test-penalty.c new file mode 100644 index 0000000..438bf9e --- /dev/null +++ b/src/anvil/test-penalty.c @@ -0,0 +1,64 @@ +/* Copyright (c) 2010-2018 Dovecot authors, see the included COPYING file */ + +#include "lib.h" +#include "ioloop.h" +#include "penalty.h" +#include "test-common.h" + +static void test_penalty_checksum(void) +{ + struct penalty *penalty; + struct ioloop *ioloop; + time_t t; + unsigned int i, j; + + test_begin("penalty"); + + ioloop = io_loop_create(); + penalty = penalty_init(); + + test_assert(penalty_get(penalty, "foo", &t) == 0); + for (i = 1; i <= 10; i++) { + ioloop_time = 12345678 + i; + penalty_inc(penalty, "foo", i, 5+i); + + for (j = I_MIN(1, i-1); j <= i; j++) { + test_assert(penalty_get(penalty, "foo", &t) == 5+i); + test_assert(t == (time_t)(12345678 + i)); + test_assert(penalty_has_checksum(penalty, "foo", i)); + } + test_assert(penalty_get(penalty, "foo", &t) == 5+i); + test_assert(t == (time_t)(12345678 + i)); + test_assert(!penalty_has_checksum(penalty, "foo", j)); + } + test_assert(penalty_get(penalty, "foo2", &t) == 0); + + /* overflows checksum array */ + ioloop_time = 12345678 + i; + penalty_inc(penalty, "foo", i, 5 + i); + penalty_inc(penalty, "foo", i, 5 + i); + penalty_inc(penalty, "foo", 0, 5 + i); + + test_assert(penalty_get(penalty, "foo", &t) == 5+i); + test_assert(t == (time_t)(12345678 + i)); + test_assert(!penalty_has_checksum(penalty, "foo", 1)); + + for (j = 2; j <= i; j++) { + test_assert(penalty_get(penalty, "foo", &t) == 5+i); + test_assert(t == (time_t)(12345678 + i)); + test_assert(penalty_has_checksum(penalty, "foo", i)); + } + + penalty_deinit(&penalty); + io_loop_destroy(&ioloop); + test_end(); +} + +int main(void) +{ + static void (*const test_functions[])(void) = { + test_penalty_checksum, + NULL + }; + return test_run(test_functions); +} |