]> git.ipfire.org Git - thirdparty/dovecot/core.git/log
thirdparty/dovecot/core.git
8 years agolib: Add tests for hashed var-expand
Aki Tuomi [Thu, 27 Oct 2016 13:20:20 +0000 (16:20 +0300)] 
lib: Add tests for hashed var-expand

8 years agolib: Add generic hashing support to var-expand
Aki Tuomi [Thu, 27 Oct 2016 12:37:45 +0000 (15:37 +0300)] 
lib: Add generic hashing support to var-expand

Enables use of

%{H;rounds=<rounds>,truncate=<bits>,salt=<salt>:field}

syntax in any variable expansion. H is any supported
hash algorithm or pkcs5 for PKCS#5 PBKDF2 using SHA256.

8 years agolib: Do not consume {} inside %{}
Aki Tuomi [Thu, 27 Oct 2016 13:19:52 +0000 (16:19 +0300)] 
lib: Do not consume {} inside %{}

8 years agolib: Add unit test for buffer truncate
Aki Tuomi [Tue, 1 Nov 2016 18:14:43 +0000 (20:14 +0200)] 
lib: Add unit test for buffer truncate

8 years agolib: Add buffer truncate
Aki Tuomi [Tue, 1 Nov 2016 18:06:46 +0000 (20:06 +0200)] 
lib: Add buffer truncate

8 years agoauth: Make static analyzer happier.
Timo Sirainen [Wed, 2 Nov 2016 21:00:50 +0000 (23:00 +0200)] 
auth: Make static analyzer happier.

Don't complain about uninitialized static_password being sent to
passdb_handle_credentials(). It could only happen for failures, and
passdb_handle_credentials() wouldn't have used the password then.

8 years agofts: Fix error message when syncing FTS root mailbox fails.
Timo Sirainen [Wed, 2 Nov 2016 19:59:12 +0000 (21:59 +0200)] 
fts: Fix error message when syncing FTS root mailbox fails.

8 years agoauth: Fixes to previous var_expand() change.
Timo Sirainen [Wed, 2 Nov 2016 13:43:37 +0000 (15:43 +0200)] 
auth: Fixes to previous var_expand() change.

8 years agolib: ioloop-notify-kqueue wasn't storing source filename.
Timo Sirainen [Wed, 2 Nov 2016 13:31:14 +0000 (15:31 +0200)] 
lib: ioloop-notify-kqueue wasn't storing source filename.

8 years agolib-storage: Fix previous var_expand() change.
Timo Sirainen [Wed, 2 Nov 2016 13:22:25 +0000 (15:22 +0200)] 
lib-storage: Fix previous var_expand() change.

8 years agolib: API change - var_expand_func_table.func() can now return error.
Timo Sirainen [Mon, 31 Oct 2016 20:05:11 +0000 (22:05 +0200)] 
lib: API change - var_expand_func_table.func() can now return error.

None of the existing functions were changed to return errors (yet).

8 years agolib: API change - var_expand*() now returns error string.
Timo Sirainen [Mon, 31 Oct 2016 19:48:16 +0000 (21:48 +0200)] 
lib: API change - var_expand*() now returns error string.

This allows callers to fail properly if the format string is invalid.

8 years agoauth: Code cleanup - Move passwd-file extra fields import to its own function.
Timo Sirainen [Mon, 31 Oct 2016 18:26:02 +0000 (20:26 +0200)] 
auth: Code cleanup - Move passwd-file extra fields import to its own function.

This will shrink the diff output for the following var_expand() change.

8 years agolib: var_expand() code cleanup - Moved short %v expansion to its own function.
Timo Sirainen [Mon, 31 Oct 2016 17:20:51 +0000 (19:20 +0200)] 
lib: var_expand() code cleanup - Moved short %v expansion to its own function.

8 years agoimap-login: Adjusted IMAP AUTHENTICATE command to return CONTACTADMIN and EXPIRED...
Stephan Bosch [Sat, 1 Oct 2016 18:12:13 +0000 (20:12 +0200)] 
imap-login: Adjusted IMAP AUTHENTICATE command to return CONTACTADMIN and EXPIRED response codes when appropriate.

8 years agoauth,login-common: Added result code for invalid base64-encoded response data.
Stephan Bosch [Tue, 1 Nov 2016 21:45:16 +0000 (22:45 +0100)] 
auth,login-common: Added result code for invalid base64-encoded response data.

8 years agologin-common: Added result codes for mechanism-related failures.
Stephan Bosch [Wed, 2 Nov 2016 00:31:40 +0000 (01:31 +0100)] 
login-common: Added result codes for mechanism-related failures.

8 years agologin-common: Added result code for a nologin code from the auth service.
Stephan Bosch [Tue, 1 Nov 2016 22:12:25 +0000 (23:12 +0100)] 
login-common: Added result code for a nologin code from the auth service.

8 years agologin-common: Added result code for password-expired authentication failure.
Stephan Bosch [Wed, 2 Nov 2016 00:39:49 +0000 (01:39 +0100)] 
login-common: Added result code for password-expired authentication failure.

8 years agoauth: Added a code= field to the auth FAIL response that replaces the "authz", "temp...
Stephan Bosch [Tue, 1 Nov 2016 20:32:42 +0000 (21:32 +0100)] 
auth: Added a code= field to the auth FAIL response that replaces the "authz", "temp", "pass_expired", and "user_disabled" fields.

8 years agolib-http: Added DNS-related tests to test-http-client-errors.
Stephan Bosch [Tue, 25 Oct 2016 07:56:34 +0000 (09:56 +0200)] 
lib-http: Added DNS-related tests to test-http-client-errors.

8 years agolib-http: client: Destroy host and associated queue objects after no more requests...
Stephan Bosch [Fri, 16 Sep 2016 18:29:00 +0000 (20:29 +0200)] 
lib-http: client: Destroy host and associated queue objects after no more requests remain and an idle timeout expires.

8 years agolib-http: client: Implemented host name lookup TTL.
Stephan Bosch [Fri, 16 Sep 2016 18:22:17 +0000 (20:22 +0200)] 
lib-http: client: Implemented host name lookup TTL.

Host name lookups will now be performed again when the results have expired.
Without access to TTL information from DNS lookups, all lookups will use the same default TTL for now.

8 years agolib-http: client: Added http_client_queue_requests_active().
Stephan Bosch [Thu, 15 Sep 2016 20:49:54 +0000 (22:49 +0200)] 
lib-http: client: Added http_client_queue_requests_active().

It counts how many active requests a queue has.

8 years agolib-http: client: Create queue->pending_peers array from the beginning.
Stephan Bosch [Thu, 15 Sep 2016 23:58:27 +0000 (01:58 +0200)] 
lib-http: client: Create queue->pending_peers array from the beginning.

This simplifies the code, since the pending peers array is always used.

8 years agolib-http: client: Link peers to queue earlier: during connection attempts.
Stephan Bosch [Thu, 15 Sep 2016 23:35:09 +0000 (01:35 +0200)] 
lib-http: client: Link peers to queue earlier: during connection attempts.

This makes sure that queues keep track of which peers are doing stuff on its behalf.
This is important to be able to manage the active peers when a new host name lookup was performed; if a peer is no longer listed in the returned IPs it should be dropped.

8 years agolib-http: client: Created http_client_peer_drop() function that closes a peer object...
Stephan Bosch [Thu, 15 Sep 2016 00:14:46 +0000 (02:14 +0200)] 
lib-http: client: Created http_client_peer_drop() function that closes a peer object gracefully.

It checks whether any connections are still present.
It checks whether a backoff timer is still active.
This change and subsequent changes prepare for being able to destroy a queue when it becomes unused.
All peers linked to such a queue are unlinked and dropped when inactive and unlinked.

8 years agolib-http: client: Unlink all queues from peer when it is disconnected.
Stephan Bosch [Thu, 15 Sep 2016 00:09:47 +0000 (02:09 +0200)] 
lib-http: client: Unlink all queues from peer when it is disconnected.

Before, queues were only destroyed when the whole client was destroyed.
This change and subsequent changes prepare for being able to destroy a queue when it becomes unused.

8 years agolib-http: client: Improved logging of connection loss handling in peer.
Stephan Bosch [Wed, 14 Sep 2016 23:59:23 +0000 (01:59 +0200)] 
lib-http: client: Improved logging of connection loss handling in peer.

8 years agolib-http: client: If a peer object is no longer linked to a queue, don't close it...
Stephan Bosch [Wed, 14 Sep 2016 19:37:38 +0000 (21:37 +0200)] 
lib-http: client: If a peer object is no longer linked to a queue, don't close it until all connections are inactive.

The peer object is canceled, rather than closed. Which means that any newly started and idle connections are closed immediately.
Requests may be pending though.
This is only relevant when hosts/queues are removed at some point.
This is a preparational change for having a maximum lifetime on hosts/queues, in which case this becomes a possibility.

8 years agolib-http: client: Added debug messages that indicate when a queue is linked/unlinked...
Stephan Bosch [Tue, 13 Sep 2016 23:37:05 +0000 (01:37 +0200)] 
lib-http: client: Added debug messages that indicate when a queue is linked/unlinked to a peer.

8 years agolib-http: client: Added function that counts how many connections are active within...
Stephan Bosch [Tue, 13 Sep 2016 23:30:16 +0000 (01:30 +0200)] 
lib-http: client: Added function that counts how many connections are active within a peer.

8 years agolib-http: client: Added function that checks whether a connection is currently active.
Stephan Bosch [Tue, 13 Sep 2016 23:26:10 +0000 (01:26 +0200)] 
lib-http: client: Added function that checks whether a connection is currently active.

8 years agolib-http: client: Created http_client_connection_failure() handler.
Stephan Bosch [Sun, 11 Sep 2016 17:34:34 +0000 (19:34 +0200)] 
lib-http: client: Created http_client_connection_failure() handler.

8 years agolib-http: client: Set conn->connect_request to NULL immediately in http_client_connec...
Stephan Bosch [Sun, 11 Sep 2016 17:44:32 +0000 (19:44 +0200)] 
lib-http: client: Set conn->connect_request to NULL immediately in http_client_connection_tunnel_response().

Prevents referring to this completed request in other parts of the code.

8 years agolib-http: client: Improved handling of hosts with explicit IP address.
Stephan Bosch [Sun, 11 Sep 2016 15:46:10 +0000 (17:46 +0200)] 
lib-http: client: Improved handling of hosts with explicit IP address.

8 years agolib-http: Made test-http-client-errors more reliable.
Stephan Bosch [Sun, 11 Sep 2016 12:51:28 +0000 (14:51 +0200)] 
lib-http: Made test-http-client-errors more reliable.

8 years agolib-index: Don't waste 3 bytes of space in struct mail_index_record.
Timo Sirainen [Tue, 1 Nov 2016 10:35:08 +0000 (12:35 +0200)] 
lib-index: Don't waste 3 bytes of space in struct mail_index_record.

It was always supposed to be used mainly for keywords, but it got broken
many years ago and nobody noticed.

8 years agolib-storage: Don't enable modseqs on STATUS_HIGHESTMODSEQ.
Timo Sirainen [Tue, 1 Nov 2016 10:43:03 +0000 (12:43 +0200)] 
lib-storage: Don't enable modseqs on STATUS_HIGHESTMODSEQ.

This is requested always by IMAP's SELECT command even when the IMAP client
hasn't requested it. We don't want to unnecessarily enable modseqs that use up
memory and disk space when they're not really needed. Other callers may also be
interested in asking for HIGHESTMODSEQ (which is nowadays actually always
available) without enabling full modseq tracking.

8 years agolib-storage: Reverse MAIL_SEARCH_ARG_FLAG_USE_TZ handling.
Timo Sirainen [Tue, 1 Nov 2016 13:51:02 +0000 (15:51 +0200)] 
lib-storage: Reverse MAIL_SEARCH_ARG_FLAG_USE_TZ handling.

It was being used the wrong way. SEARCH SENTON/BEFORE/AFTER should have
checked the times within the mail's timezone, not UTC.

8 years agodoveadm director: Fix memory leaks if hostname lookup fails.
Timo Sirainen [Mon, 31 Oct 2016 19:39:44 +0000 (21:39 +0200)] 
doveadm director: Fix memory leaks if hostname lookup fails.

8 years agolib: Fix str_truncate() when string size is already smaller.
Timo Sirainen [Tue, 1 Nov 2016 15:09:27 +0000 (17:09 +0200)] 
lib: Fix str_truncate() when string size is already smaller.

Previous behavior either added extra NULs to the string or assert-crashed.

8 years agoimap/pop3 proxy: If passdb returns proxy_not_trusted, don't send ID/XCLIENT
Timo Sirainen [Fri, 16 Sep 2016 06:53:06 +0000 (09:53 +0300)] 
imap/pop3 proxy: If passdb returns proxy_not_trusted, don't send ID/XCLIENT

This allows using Dovecot proxying feature towards less trusted servers.

8 years agoauth: Code cleanup - Return void in passdb.set_credentials()
Timo Sirainen [Mon, 31 Oct 2016 18:42:03 +0000 (20:42 +0200)] 
auth: Code cleanup - Return void in passdb.set_credentials()

It's an asynchronous function, so the result will be in the callback
parameters.

8 years agoauth: If passwd-file can't be read, return tempfail (not user unknown).
Timo Sirainen [Mon, 31 Oct 2016 18:19:07 +0000 (20:19 +0200)] 
auth: If passwd-file can't be read, return tempfail (not user unknown).

8 years agoauth: If uidgid_file doesn't exist, fail the userdb lookup.
Timo Sirainen [Mon, 31 Oct 2016 18:06:35 +0000 (20:06 +0200)] 
auth: If uidgid_file doesn't exist, fail the userdb lookup.

8 years agomdbox: Fix assert-crash caused by race condition with multiple doveadm purges.
Timo Sirainen [Fri, 28 Oct 2016 10:26:42 +0000 (13:26 +0300)] 
mdbox: Fix assert-crash caused by race condition with multiple doveadm purges.

This fixes a problem where an email that was just written to a new m.* file gets
expunged and purged by another process.

Fixes:
Panic: file mdbox-map.c: line 1359: unreached

8 years agofs-randomfail: "write" probability was reversed.
Timo Sirainen [Mon, 31 Oct 2016 17:12:14 +0000 (19:12 +0200)] 
fs-randomfail: "write" probability was reversed.

0 meant 100% while 100 meant 0%

8 years agolib-test: Do not init/deinit library twice
Aki Tuomi [Mon, 31 Oct 2016 13:37:00 +0000 (15:37 +0200)] 
lib-test: Do not init/deinit library twice

If lib is initialized, do not initialize
or deinitialize library. This is done to
allow using master_service in unit tests
which also wants to perform lib init
and deinit itself.

8 years agolib: Add function to see if lib is initialized
Aki Tuomi [Mon, 31 Oct 2016 13:36:39 +0000 (15:36 +0200)] 
lib: Add function to see if lib is initialized

This is needed by test-lib to prevent double init/deinit.

8 years agoconfigure: Fix link ordering
Timo Sirainen [Fri, 28 Oct 2016 18:34:41 +0000 (21:34 +0300)] 
configure: Fix link ordering

libprogram_client.la needs to be before libdns.la

8 years agodsync: Fix potential assert on mailbox deinit.
Timo Sirainen [Fri, 28 Oct 2016 16:38:43 +0000 (19:38 +0300)] 
dsync: Fix potential assert on mailbox deinit.

Should have happened only in somewhat rare error conditions that require
resyncing.

Fixes:
Panic: file dsync-brain-mailbox.c: line 358 (dsync_brain_sync_mailbox_deinit): assertion failed: (brain->failed || brain->sync_type == DSYNC_BRAIN_SYNC_TYPE_CHANGED)

8 years agoconfigure: Improve check for OpenSSL without EC support
Paul Howarth [Fri, 28 Oct 2016 13:36:41 +0000 (14:36 +0100)] 
configure: Improve check for OpenSSL without EC support

The original test was for EC_KEY_new but some systems had that and not
EVP_PKEY_CTX_new_id, so the test was switched to that function.
However, Fedora releases 12 through 17 have EVP_PKEY_CTX_new_id but
not EC_KEY_new. So we need to test for both functions before enabling
the dcrypt build.

8 years agolib-program-client: Fix building with compilers that have no typeof()
Timo Sirainen [Fri, 28 Oct 2016 13:59:43 +0000 (16:59 +0300)] 
lib-program-client: Fix building with compilers that have no typeof()

8 years agolib: Removed t_strsplit_tab()
Timo Sirainen [Fri, 28 Oct 2016 10:02:55 +0000 (13:02 +0300)] 
lib: Removed t_strsplit_tab()

It's too easy to use it accidentally instead of using
t_strsplit_tabescaped(). It's also rarely what is actually wanted.

8 years agoauth-worker: Fix potential crash when importing passdb/userdb fields without value.
Timo Sirainen [Fri, 28 Oct 2016 09:12:28 +0000 (12:12 +0300)] 
auth-worker: Fix potential crash when importing passdb/userdb fields without value.

These were being converted to NULL values in auth-worker, while elsewhere they were
converted to "". Changed to "" here as well and added asserts to make sure they
won't happen again.

Most of the NULL values would have been fine, but overriding any IP/port
fields would have caused a crash when trying to parse the value.

8 years agoauth: Fix crash when exporting passdb fields to auth-worker that have NULL values
Timo Sirainen [Fri, 28 Oct 2016 08:54:27 +0000 (11:54 +0300)] 
auth: Fix crash when exporting passdb fields to auth-worker that have NULL values

8 years agolib-compression: Fixed fd leak in unit test
Timo Sirainen [Thu, 27 Oct 2016 10:20:03 +0000 (13:20 +0300)] 
lib-compression: Fixed fd leak in unit test

9 years agolib-auth: Minor debug logging improvement.
Timo Sirainen [Thu, 27 Oct 2016 08:19:50 +0000 (11:19 +0300)] 
lib-auth: Minor debug logging improvement.

Include "PASS" or "USER" in the prefix to make it clear what the reply is
for.

9 years agolib-storage: rename get_real_mail to get_backend_mail
Martti Rannanjärvi [Fri, 12 Aug 2016 22:51:32 +0000 (01:51 +0300)] 
lib-storage: rename get_real_mail to get_backend_mail

Also change the function signature so that it returns an int to indicate
success or failure.

9 years agodoveadm: fix compile warning in doveadm-dump-index
Martti Rannanjärvi [Thu, 27 Oct 2016 00:58:21 +0000 (03:58 +0300)] 
doveadm: fix compile warning in doveadm-dump-index

9 years agodoveadm dump: Dump mailbox names in mailbox.list.index's header.
Timo Sirainen [Wed, 26 Oct 2016 20:20:17 +0000 (23:20 +0300)] 
doveadm dump: Dump mailbox names in mailbox.list.index's header.

9 years ago*-login: Removed enforcing maximum calculated fd limit.
Timo Sirainen [Wed, 26 Oct 2016 15:06:36 +0000 (18:06 +0300)] 
*-login: Removed enforcing maximum calculated fd limit.

Just use the regular ulimit. Login process has become complicated enough
that counting the exact fd size isn't so easy anymore.

Also apparently this low fd limit is causing errors with new Linux kernels:
pop3-login: Error: fd_send(pop3, 18) failed: Too many references: cannot splice

9 years agolib-program-client: Remove code duplication
Aki Tuomi [Wed, 26 Oct 2016 09:21:16 +0000 (12:21 +0300)] 
lib-program-client: Remove code duplication

The content is sent on connected already. Do not
send it early in async connect.

9 years agolib-program-client: Retry connection on EAGAIN
Aki Tuomi [Wed, 26 Oct 2016 09:20:06 +0000 (12:20 +0300)] 
lib-program-client: Retry connection on EAGAIN

9 years agoCompiler warning fixes with -Wstrict-bool
Timo Sirainen [Wed, 26 Oct 2016 15:05:32 +0000 (18:05 +0300)] 
Compiler warning fixes with -Wstrict-bool

9 years agolib: Fixed net_str2port*() comments
Timo Sirainen [Wed, 26 Oct 2016 11:58:56 +0000 (14:58 +0300)] 
lib: Fixed net_str2port*() comments

9 years agodoveadm fs get: Use pager formatter by default to avoid extra LF at the end.
Timo Sirainen [Tue, 25 Oct 2016 17:52:16 +0000 (20:52 +0300)] 
doveadm fs get: Use pager formatter by default to avoid extra LF at the end.

9 years agodoveadm: Code cleanup - add and use DOVEADM_PRINT_TYPE_PAGER macro
Timo Sirainen [Tue, 25 Oct 2016 17:54:17 +0000 (20:54 +0300)] 
doveadm: Code cleanup - add and use DOVEADM_PRINT_TYPE_PAGER macro

9 years agodoveadm: "pager" formatter supports now DOVEADM_PRINT_HEADER_FLAG_HIDE_TITLE
Timo Sirainen [Tue, 25 Oct 2016 17:51:36 +0000 (20:51 +0300)] 
doveadm: "pager" formatter supports now DOVEADM_PRINT_HEADER_FLAG_HIDE_TITLE

9 years agodirector: Avoid assert-crash at deinit if user moves are still being added.
Timo Sirainen [Tue, 25 Oct 2016 19:39:38 +0000 (22:39 +0300)] 
director: Avoid assert-crash at deinit if user moves are still being added.

Fixes:
Panic: file user-directory.c: line 312 (user_directory_deinit): assertion failed: (array_count(&dir->iters) == 0)

9 years agodirector: Send user's old and new backend IPs to flush script.
Timo Sirainen [Tue, 25 Oct 2016 19:17:23 +0000 (22:17 +0300)] 
director: Send user's old and new backend IPs to flush script.

If user was created due to the user-move, don't execute the flush script
since it wouldn't really have any work to do anyway.

9 years agodirector: User move - Don't try to kick user's connections if user wasn't even known.
Timo Sirainen [Tue, 25 Oct 2016 19:12:01 +0000 (22:12 +0300)] 
director: User move - Don't try to kick user's connections if user wasn't even known.

9 years agodirector: Code cleanup - moved user kill startup to its own function.
Timo Sirainen [Tue, 25 Oct 2016 19:06:02 +0000 (22:06 +0300)] 
director: Code cleanup - moved user kill startup to its own function.

No functional changes.

9 years agodirector: Code cleanup - global director is no longer needed.
Timo Sirainen [Tue, 25 Oct 2016 18:47:01 +0000 (21:47 +0300)] 
director: Code cleanup - global director is no longer needed.

9 years agodirector: Moved all user killing state to struct director_kill_context
Timo Sirainen [Sun, 16 Oct 2016 22:07:50 +0000 (01:07 +0300)] 
director: Moved all user killing state to struct director_kill_context

This should make it a bit easier to understand the life time of user
killing. It also simplifies code by removing struct
director_user_kill_finish_ctx.

Finally, this already reduces memory usage with 32bit systems, and would
make it possible to reduce also on 64bit systems if timestamp is shrank to
31 bits and weak bit moved after it. I'm not sure if that would be better
for performance though. In any case it would provide free space for 4 extra
bytes if that were needed in future.

9 years agodirector: Code cleanup - rename director_kill_context.self to kill_is_self_initiated
Timo Sirainen [Tue, 25 Oct 2016 18:41:16 +0000 (21:41 +0300)] 
director: Code cleanup - rename director_kill_context.self to kill_is_self_initiated

9 years agodirector: Code cleanup - added USER_IS_BEING_KILLED() macro
Timo Sirainen [Thu, 20 Oct 2016 13:46:31 +0000 (16:46 +0300)] 
director: Code cleanup - added USER_IS_BEING_KILLED() macro

9 years agodirector: Code cleanup - move enum user_kill_state to director.h
Timo Sirainen [Thu, 20 Oct 2016 13:41:23 +0000 (16:41 +0300)] 
director: Code cleanup - move enum user_kill_state to director.h

This will be needed by following commits

9 years agolib-lda: Add back subject sanitization to mail sending.
Timo Sirainen [Tue, 25 Oct 2016 20:47:13 +0000 (23:47 +0300)] 
lib-lda: Add back subject sanitization to mail sending.

Broken by acfda38b75d0f0e899ef692fef01593bd56ed85e

9 years agodirector: Fix HOST-RESET-USERS with host parameter.
Timo Sirainen [Tue, 25 Oct 2016 18:20:54 +0000 (21:20 +0300)] 
director: Fix HOST-RESET-USERS with host parameter.

The logic was reversed: It should flush the specified host, not some other
host. Broken by 11ee3b40320a31669bd717fecbe1e332dad4fd84

9 years agodoveadm director dump: Fixed output to include LFs
Timo Sirainen [Mon, 24 Oct 2016 22:03:05 +0000 (01:03 +0300)] 
doveadm director dump: Fixed output to include LFs

Otherwise all the output will be mixed up in the same line.

9 years agodirector: Execute director_flush_socket only from one director.
Timo Sirainen [Mon, 24 Oct 2016 21:48:08 +0000 (00:48 +0300)] 
director: Execute director_flush_socket only from one director.

Having each director do it would be redundant since they're all supposed to
be performing the same flush task to the same backend.

9 years agodirector: Improve debug logging output.
Timo Sirainen [Mon, 24 Oct 2016 21:32:59 +0000 (00:32 +0300)] 
director: Improve debug logging output.

9 years agodirector: Fix user move hangs when another move is triggered early.
Timo Sirainen [Mon, 24 Oct 2016 21:25:38 +0000 (00:25 +0300)] 
director: Fix user move hangs when another move is triggered early.

Running "doveadm director flush" before the previous flush hadn't fully
finished could have caused users to hang until their move timeout:

director: Error: Finishing user 3249070169 move timed out, its state may now be inconsistent (state=waiting-for-everyone)

9 years agodirector: Prevent race conditions by adding USER_KILL_STATE_FLUSHING
Timo Sirainen [Mon, 24 Oct 2016 21:22:20 +0000 (00:22 +0300)] 
director: Prevent race conditions by adding USER_KILL_STATE_FLUSHING

In theory it's possible that a user is freed during a flush and added back
before flush is finished, possibly even being moved again. This check makes
sure that we don't finish such move unless we're actually at the correct
flushing state. (If there's another flush also running for the user it'll
be ignored.)

This is also useful for logging purposes.

9 years agodirector: If user host conflict is detected, make sure new host is sent back.
Timo Sirainen [Mon, 24 Oct 2016 21:13:23 +0000 (00:13 +0300)] 
director: If user host conflict is detected, make sure new host is sent back.

USER-KICK-HASH was sent, but the sender didn't get back a USER reply with
the new host. This could have increased how long user's host differred in
directors.

Avoids repeating this error:
Error: User hash 2957018085 is being redirected to two hosts: 10.0.0.30 and 10.0.0.201 (old_ts=1477338836)

9 years agodoveadm director flush: Added --max-parallel parameter.
Timo Sirainen [Mon, 24 Oct 2016 19:42:43 +0000 (22:42 +0300)] 
doveadm director flush: Added --max-parallel parameter.

9 years agodirector: HOST-RESET-USERS moves users more slowly now.
Timo Sirainen [Mon, 24 Oct 2016 19:41:25 +0000 (22:41 +0300)] 
director: HOST-RESET-USERS moves users more slowly now.

By default only 100 users can be moved in parallel. This can be overridden
with HOST-RESET-USERS parameter.

This delaying is especially useful when director_flush_socket is used to
avoid huge floods to the script service. Even without the socket it's still
good for avoiding unnecessary load spikes when all users are kicked at once
and they reconnect back at the same time.

9 years agodirector: If user move times out, log the state it was in at the time.
Timo Sirainen [Mon, 24 Oct 2016 21:11:50 +0000 (00:11 +0300)] 
director: If user move times out, log the state it was in at the time.

9 years agodirector: Log user's kill_state with a human-readable string.
Timo Sirainen [Mon, 24 Oct 2016 19:39:56 +0000 (22:39 +0300)] 
director: Log user's kill_state with a human-readable string.

9 years agodoveadm director: Invalid parameters cause doveadm to fail silently.
Timo Sirainen [Mon, 24 Oct 2016 19:27:30 +0000 (22:27 +0300)] 
doveadm director: Invalid parameters cause doveadm to fail silently.

doveadm_cmd_context.cmd doesn't point directly to doveadm_cmd_director.

9 years agodirector: Fix sending up/down state in handshakes.
Timo Sirainen [Mon, 24 Oct 2016 19:22:28 +0000 (22:22 +0300)] 
director: Fix sending up/down state in handshakes.

They were never sent, because HOSTs were sent before director had waited for
the remote to send its version number. So sender thought that the remote's
minor_version was too old and it didn't send the up/down state at all.

This caused errors like:

Warning: director(10.0.0.30:9090/left): Host 10.0.0.30 is being updated before previous update had finished (up -> down) - setting to state=down vhosts=100
Error: director(10.0.0.30:9090/left): Director 10.0.0.30 SYNC request hosts don't match us - resending hosts (seq=6, remote hosts_hash=262126213, my hosts_hash=2458934259)

9 years agodirector: If SYNCs are received during handshake, send them later.
Timo Sirainen [Mon, 24 Oct 2016 18:58:03 +0000 (21:58 +0300)] 
director: If SYNCs are received during handshake, send them later.

This fixes delays during handshake:
Error: Ring SYNC appears to have got lost, resending

9 years agodirector: Code cleanup - Give tab-unescaped args to all doveadm command handlers.
Timo Sirainen [Mon, 24 Oct 2016 17:21:36 +0000 (20:21 +0300)] 
director: Code cleanup - Give tab-unescaped args to all doveadm command handlers.

9 years agodirector: USER-MOVE didn't handle non-hash username correctly.
Timo Sirainen [Mon, 24 Oct 2016 17:20:09 +0000 (20:20 +0300)] 
director: USER-MOVE didn't handle non-hash username correctly.

The entire command line was being hashed instead of just the username.

9 years agodirector: Make sure IP address parsing works in DIRECTOR-ADD/REMOVE
Timo Sirainen [Mon, 24 Oct 2016 17:16:57 +0000 (20:16 +0300)] 
director: Make sure IP address parsing works in DIRECTOR-ADD/REMOVE

We were passing the entire string through to net_addr2ip(). It seems that
inet_aton() stops at whitespace though, so this wasn't actually causing
errors at least on Linux.

9 years agodirector: Code cleanup - moved command handling to its own function.
Timo Sirainen [Mon, 24 Oct 2016 17:08:54 +0000 (20:08 +0300)] 
director: Code cleanup - moved command handling to its own function.

9 years agodirector: Show in process title how many users are being moved.
Timo Sirainen [Mon, 24 Oct 2016 17:07:26 +0000 (20:07 +0300)] 
director: Show in process title how many users are being moved.

9 years agodirector: Code cleanup - Finish user move always in the same function.
Timo Sirainen [Mon, 24 Oct 2016 17:00:40 +0000 (20:00 +0300)] 
director: Code cleanup - Finish user move always in the same function.