main.c revision 45312f52ff3a3d4c137447be4c7556500c2f8bf2
/* Copyright (c) 2002-2009 Dovecot authors, see the included COPYING file */
#include "common.h"
#include "ioloop.h"
#include "array.h"
#include "lib-signals.h"
#include "randgen.h"
#include "restrict-access.h"
#include "restrict-process-size.h"
#include "process-title.h"
#include "fd-close-on-exec.h"
#include "master.h"
#include "client-common.h"
#include "auth-client.h"
#include "ssl-proxy.h"
#include "login-proxy.h"
#include <stdlib.h>
#include <unistd.h>
#include <syslog.h>
bool ssl_require_client_cert;
const char *greeting, *log_format;
const char *const *log_format_elements;
const char *trusted_networks;
unsigned int max_connections;
unsigned int login_process_uid;
struct auth_client *auth_client;
bool closing_down;
static const char *process_name;
static int main_refcount;
static unsigned int listen_count, ssl_listen_count;
void main_ref(void)
{
}
void main_unref(void)
{
if (--main_refcount == 0) {
/* nothing to do, quit */
} else if (closing_down && clients_get_count() == 0) {
/* last login finished, close all communications
to master process */
master_close();
/* we might still be proxying. close the connection to
dovecot-auth, since it's not needed anymore. */
if (auth_client != NULL)
} else if (clients_get_count() == 0) {
/* make sure we clear all the memory used by the
authentication connections. also this makes sure that if
this connection's authentication was finished but the master
login wasn't, the next connection won't be able to log in
as this user by finishing the master login. */
if (auth_client != NULL)
}
}
{
/* warn about being killed because of some signal, except SIGINT (^C)
which is too common at least while testing :) */
}
static void login_accept(void *context)
{
unsigned int remote_port, local_port;
int fd;
if (fd < 0) {
if (fd < -1)
i_error("accept() failed: %m");
return;
}
local_port = 0;
}
if (process_per_connection) {
closing_down = TRUE;
}
}
static void login_accept_ssl(void *context)
{
unsigned int remote_port, local_port;
if (fd < 0) {
if (fd < -1)
i_error("accept() failed: %m");
return;
}
local_port = 0;
}
if (fd_ssl == -1)
else {
}
if (process_per_connection) {
closing_down = TRUE;
}
}
void main_listen_start(void)
{
unsigned int i, current_count;
int cur_fd;
if (listening)
return;
if (closing_down) {
/* typically happens only with
login_process_per_connection=yes after client logs in */
return;
}
if (current_count >= max_connections) {
/* can't accept any more connections until existing proxies
get destroyed */
return;
}
for (i = 0; i < listen_count; i++, cur_fd++) {
}
for (i = 0; i < ssl_listen_count; i++, cur_fd++) {
}
/* the initial notification tells master that we're ok. if we die
before sending it, the master should shutdown itself. */
}
void main_listen_stop(void)
{
unsigned int i, count;
int cur_fd;
if (!listening)
return;
for (i = 0; i < count; i++)
if (closing_down) {
i_fatal("close(listener %d) failed: %m",
cur_fd);
}
}
}
if (io_loop_is_running(ioloop)) {
}
}
void connection_queue_add(unsigned int connection_count)
{
unsigned int current_count;
return;
/* after this client we've reached max users count,
so stop listening for more. reserve +2 extra for SSL with
login proxy connections. */
if (current_count >= max_connections) {
/* already reached max. users count, kill few of the
oldest connections.
this happens when we've maxed out the login process
count and master has told us to start listening for
new connections even though we're full. */
}
}
}
{
if (connected)
}
static void drop_privileges(void)
{
const char *value;
if (!is_inetd)
else {
/* log to syslog */
/* if we don't chroot, we must chdir */
}
}
/* Initialize SSL proxy so it can read certificate and private
key file. */
random_init();
/* set the number of fds we want to use. it may get increased or
decreased. leave a couple of extra fds for auth sockets and such.
normal connections each use one fd, but SSL connections use two */
max_connections*2);
/* Refuse to run as root - we should never need it and it's
dangerous with SSL. */
/* make sure we can't fork() */
}
static void main_init(void)
{
const char *value;
i_fatal("Dovecot version mismatch: "
"(if you don't care, set version_ignore=yes)", value);
}
value = "user=<%u> method=%m rip=%r lip=%l %c : %$";
if (log_format == NULL)
log_format = "%$: %s";
i_fatal("BUG: PROCESS_UID environment not given");
if (login_process_uid == 0)
i_fatal("BUG: PROCESS_UID environment is 0");
/* capability default is set in imap/pop3-login */
main_refcount = 0;
clients_init();
if (!ssl_initialized && ssl_listen_count > 0) {
/* this shouldn't happen, master should have
disabled the ssl socket.. */
i_fatal("BUG: SSL initialization parameters not given "
"while they should have been");
}
if (!is_inetd) {
}
}
static void main_deinit(void)
{
closing_down = TRUE;
if (auth_client != NULL)
closelog();
}
{
const char *group_name;
unsigned int remote_port, local_port;
#ifdef DEBUG
const char *env;
i = LOGIN_MASTER_SOCKET_FD + 1;
fd_debug_verify_leaks(i, 1024);
}
#endif
/* clear all allocated memory before freeing it. this makes the login
processes pretty safe to reuse for new connections since the
attacker won't be able to find anything interesting from the
memory. */
/* NOTE: we start rooted, so keep the code minimal until
restrict_access_by_env() is called */
lib_init();
if (is_inetd) {
/* running from inetd. create master process before
dropping privileges. */
for (i = 1; i < argc; i++) {
break;
}
}
}
ioloop = io_loop_create();
main_init();
if (is_inetd) {
i_fatal("%s can be started only through dovecot "
"master process, inetd or equivalent", argv[0]);
}
local_port = 0;
}
fd = 1;
for (i = 1; i < argc; i++) {
}
/* hardcoded imaps and pop3s ports to be SSL by default */
if (fd == -1)
return 1;
}
closing_down = TRUE;
if (fd != -1) {
}
}
main_deinit();
lib_deinit();
return 0;
}