| 391 |
ret = ssh_event_dopoll(event, 100); // 0.1 second |
ret = ssh_event_dopoll(event, 100); // 0.1 second |
| 392 |
if (ret == SSH_ERROR) |
if (ret == SSH_ERROR) |
| 393 |
{ |
{ |
| 394 |
#ifdef _DEBUG |
log_debug("ssh_event_dopoll() error: %s\n", ssh_get_error(SSH_session)); |
|
log_error("ssh_event_dopoll() error: %s\n", ssh_get_error(SSH_session)); |
|
|
#endif |
|
| 395 |
goto cleanup; |
goto cleanup; |
| 396 |
} |
} |
| 397 |
} |
} |
| 528 |
int nfds; |
int nfds; |
| 529 |
int notify_child_exit = 0; |
int notify_child_exit = 0; |
| 530 |
time_t tm_notify_child_exit = time(NULL); |
time_t tm_notify_child_exit = time(NULL); |
|
int i, j; |
|
| 531 |
pid_t pid; |
pid_t pid; |
| 532 |
int ssh_key_valid = 0; |
int ssh_key_valid = 0; |
| 533 |
int ssh_log_level = SSH_LOG_NOLOG; |
int ssh_log_level = SSH_LOG_NOLOG; |
| 574 |
|
|
| 575 |
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDADDR, hostaddr) < 0 || |
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDADDR, hostaddr) < 0 || |
| 576 |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDPORT, &port) < 0 || |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDPORT, &port) < 0 || |
| 577 |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY_ALGORITHMS, "+ssh-rsa") < 0 || |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY_ALGORITHMS, "+ssh-ed25519,ecdsa-sha2-nistp256,ssh-rsa") < 0 || |
| 578 |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_LOG_VERBOSITY, &ssh_log_level) < 0) |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_LOG_VERBOSITY, &ssh_log_level) < 0) |
| 579 |
{ |
{ |
| 580 |
log_error("Error setting SSH bind options: %s\n", ssh_get_error(sshbind)); |
log_error("Error setting SSH bind options: %s\n", ssh_get_error(sshbind)); |
| 592 |
#endif |
#endif |
| 593 |
|
|
| 594 |
// Server socket |
// Server socket |
| 595 |
for (i = 0; i < 2; i++) |
for (int i = 0; i < 2; i++) |
| 596 |
{ |
{ |
| 597 |
socket_server[i] = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); |
socket_server[i] = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); |
| 598 |
|
|
| 710 |
|
|
| 711 |
if (pid != section_list_loader_pid) |
if (pid != section_list_loader_pid) |
| 712 |
{ |
{ |
| 713 |
j = 0; |
int64_t j = 0; |
| 714 |
ret = hash_dict_get(hash_dict_pid_sockaddr, (uint64_t)pid, (int64_t *)&j); |
ret = hash_dict_get(hash_dict_pid_sockaddr, (uint64_t)pid, &j); |
| 715 |
if (ret < 0) |
if (ret < 0) |
| 716 |
{ |
{ |
| 717 |
log_error("hash_dict_get(hash_dict_pid_sockaddr, %d) error\n", pid); |
log_error("hash_dict_get(hash_dict_pid_sockaddr, %d) error\n", pid); |
| 718 |
} |
} |
| 719 |
else |
else |
| 720 |
{ |
{ |
| 721 |
ret = hash_dict_inc(hash_dict_sockaddr_count, (uint64_t)j, -1); |
ret = hash_dict_inc(hash_dict_sockaddr_count, (in_addr_t)j, -1); |
| 722 |
if (ret < 0) |
if (ret <= 0) |
| 723 |
{ |
{ |
| 724 |
log_error("hash_dict_inc(hash_dict_sockaddr_count, %d, -1) error\n", j); |
log_error("hash_dict_inc(hash_dict_sockaddr_count, %lu, -1) error: %d\n", (in_addr_t)j, ret); |
| 725 |
} |
} |
| 726 |
|
|
| 727 |
ret = hash_dict_del(hash_dict_pid_sockaddr, (uint64_t)pid); |
ret = hash_dict_del(hash_dict_pid_sockaddr, (uint64_t)pid); |
| 728 |
if (ret < 0) |
if (ret < 0) |
| 729 |
{ |
{ |
| 730 |
log_error("hash_dict_del(hash_dict_pid_sockaddr, %d) error\n", pid); |
log_error("hash_dict_del(hash_dict_pid_sockaddr, %lu) error\n", (uint64_t)pid); |
| 731 |
} |
} |
| 732 |
} |
} |
| 733 |
} |
} |
| 789 |
sd_notify(0, "RELOADING=1"); |
sd_notify(0, "RELOADING=1"); |
| 790 |
#endif |
#endif |
| 791 |
|
|
| 792 |
|
log_common("Reload configuration\n"); |
| 793 |
|
|
| 794 |
// Restart log |
// Restart log |
| 795 |
if (log_restart() < 0) |
if (log_restart() < 0) |
| 796 |
{ |
{ |
| 938 |
|
|
| 939 |
if (SYS_child_process_count - 1 < BBS_max_client) |
if (SYS_child_process_count - 1 < BBS_max_client) |
| 940 |
{ |
{ |
| 941 |
j = 0; |
int64_t j = 0; |
| 942 |
ret = hash_dict_get(hash_dict_sockaddr_count, (uint64_t)sin.sin_addr.s_addr, (int64_t *)&j); |
ret = hash_dict_get(hash_dict_sockaddr_count, sin.sin_addr.s_addr, &j); |
| 943 |
if (ret < 0) |
if (ret < 0) |
| 944 |
{ |
{ |
| 945 |
log_error("hash_dict_get(hash_dict_sockaddr_count, %s) error\n", hostaddr_client); |
log_error("hash_dict_get(hash_dict_sockaddr_count, %s) error\n", hostaddr_client); |
| 947 |
|
|
| 948 |
if (j < BBS_max_client_per_ip) |
if (j < BBS_max_client_per_ip) |
| 949 |
{ |
{ |
|
log_common("Accept %s connection from %s:%d, already have %d connections\n", |
|
|
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, j); |
|
|
|
|
| 950 |
if ((pid = fork_server()) < 0) |
if ((pid = fork_server()) < 0) |
| 951 |
{ |
{ |
| 952 |
log_error("fork_server() error\n"); |
log_error("fork_server() error\n"); |
| 956 |
ret = hash_dict_set(hash_dict_pid_sockaddr, (uint64_t)pid, sin.sin_addr.s_addr); |
ret = hash_dict_set(hash_dict_pid_sockaddr, (uint64_t)pid, sin.sin_addr.s_addr); |
| 957 |
if (ret < 0) |
if (ret < 0) |
| 958 |
{ |
{ |
| 959 |
log_error("hash_dict_set(hash_dict_pid_sockaddr, %d, %s) error\n", pid, hostaddr_client); |
log_error("hash_dict_set(hash_dict_pid_sockaddr, %lu, %s) error\n", (uint64_t)pid, hostaddr_client); |
| 960 |
} |
} |
| 961 |
|
|
| 962 |
ret = hash_dict_inc(hash_dict_sockaddr_count, (uint64_t)sin.sin_addr.s_addr, 1); |
if (j == 0) |
| 963 |
if (ret < 0) |
{ |
| 964 |
|
// First connection from this IP |
| 965 |
|
log_common("Accept %s connection from %s:%d\n", |
| 966 |
|
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client); |
| 967 |
|
|
| 968 |
|
ret = hash_dict_set(hash_dict_sockaddr_count, (uint64_t)sin.sin_addr.s_addr, 1); |
| 969 |
|
if (ret < 0) |
| 970 |
|
{ |
| 971 |
|
log_error("hash_dict_set(hash_dict_sockaddr_count, %s, 1) error\n", hostaddr_client); |
| 972 |
|
} |
| 973 |
|
} |
| 974 |
|
else |
| 975 |
{ |
{ |
| 976 |
log_error("hash_dict_inc(hash_dict_sockaddr_count, %s, %d) error\n", hostaddr_client, 1); |
// Increase connection count from this IP |
| 977 |
|
log_common("Accept %s connection from %s:%d, already have %d connections\n", |
| 978 |
|
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, j); |
| 979 |
|
|
| 980 |
|
ret = hash_dict_inc(hash_dict_sockaddr_count, (uint64_t)sin.sin_addr.s_addr, 1); |
| 981 |
|
if (ret <= 0) |
| 982 |
|
{ |
| 983 |
|
log_error("hash_dict_inc(hash_dict_sockaddr_count, %s, 1) error: %d\n", hostaddr_client, ret); |
| 984 |
|
} |
| 985 |
} |
} |
| 986 |
} |
} |
| 987 |
} |
} |
| 988 |
else |
else |
| 989 |
{ |
{ |
| 990 |
log_error("Rejected %s connection from %s:%d over limit per IP (%d)\n", |
log_error("Rejected %s connection from %s:%d over limit per IP (%d >= %d)\n", |
| 991 |
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, BBS_max_client_per_ip); |
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, j, BBS_max_client_per_ip); |
| 992 |
} |
} |
| 993 |
} |
} |
| 994 |
else |
else |
| 995 |
{ |
{ |
| 996 |
log_error("Rejected %s connection from %s:%d over limit (%d)\n", |
log_error("Rejected %s connection from %s:%d over limit (%d >= %d)\n", |
| 997 |
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, SYS_child_process_count - 1); |
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, SYS_child_process_count - 1, BBS_max_client); |
| 998 |
} |
} |
| 999 |
|
|
| 1000 |
if (close(socket_client) == -1) |
if (close(socket_client) == -1) |
| 1013 |
} |
} |
| 1014 |
#endif |
#endif |
| 1015 |
|
|
| 1016 |
for (i = 0; i < 2; i++) |
for (int i = 0; i < 2; i++) |
| 1017 |
{ |
{ |
| 1018 |
if (close(socket_server[i]) == -1) |
if (close(socket_server[i]) == -1) |
| 1019 |
{ |
{ |
Parent Directory
| 
Revision Log
| 
Patch