| 40 |
#include <netinet/in.h> |
#include <netinet/in.h> |
| 41 |
#include <sys/ioctl.h> |
#include <sys/ioctl.h> |
| 42 |
#include <sys/socket.h> |
#include <sys/socket.h> |
| 43 |
|
#include <sys/stat.h> |
| 44 |
#include <sys/types.h> |
#include <sys/types.h> |
| 45 |
#include <sys/wait.h> |
#include <sys/wait.h> |
| 46 |
|
|
| 115 |
else |
else |
| 116 |
{ |
{ |
| 117 |
ret = check_user(user, password); |
ret = check_user(user, password); |
| 118 |
|
if (ret == 2) // Enforce update user agreement |
| 119 |
|
{ |
| 120 |
|
BBS_update_eula = 1; |
| 121 |
|
ret = 0; |
| 122 |
|
} |
| 123 |
} |
} |
| 124 |
|
|
| 125 |
if (ret == 0) |
if (ret == 0) |
| 428 |
log_error("Error setting SSH options: %s\n", ssh_get_error(SSH_session)); |
log_error("Error setting SSH options: %s\n", ssh_get_error(SSH_session)); |
| 429 |
goto cleanup; |
goto cleanup; |
| 430 |
} |
} |
| 431 |
|
|
| 432 |
|
ssh_set_blocking(SSH_session, 0); |
| 433 |
} |
} |
| 434 |
|
|
| 435 |
// Redirect Input |
// Redirect Input |
| 454 |
|
|
| 455 |
SYS_child_process_count = 0; |
SYS_child_process_count = 0; |
| 456 |
|
|
| 457 |
|
// BWF compile |
| 458 |
|
if (bwf_compile() < 0) |
| 459 |
|
{ |
| 460 |
|
log_error("bwf_compile() error\n"); |
| 461 |
|
goto cleanup; |
| 462 |
|
} |
| 463 |
|
|
| 464 |
bbs_main(); |
bbs_main(); |
| 465 |
|
|
| 466 |
cleanup: |
cleanup: |
| 497 |
ssh_free(SSH_session); |
ssh_free(SSH_session); |
| 498 |
ssh_finalize(); |
ssh_finalize(); |
| 499 |
|
|
| 500 |
|
// BWF cleanup |
| 501 |
|
bwf_cleanup(); |
| 502 |
|
|
| 503 |
// Close Input and Output for client |
// Close Input and Output for client |
| 504 |
io_cleanup(); |
io_cleanup(); |
| 505 |
close(STDIN_FILENO); |
close(STDIN_FILENO); |
| 515 |
|
|
| 516 |
int net_server(const char *hostaddr, in_port_t port[]) |
int net_server(const char *hostaddr, in_port_t port[]) |
| 517 |
{ |
{ |
| 518 |
|
struct stat file_stat; |
| 519 |
unsigned int addrlen; |
unsigned int addrlen; |
| 520 |
int ret; |
int ret; |
| 521 |
int flags_server[2]; |
int flags_server[2]; |
| 530 |
int nfds; |
int nfds; |
| 531 |
int notify_child_exit = 0; |
int notify_child_exit = 0; |
| 532 |
time_t tm_notify_child_exit = time(NULL); |
time_t tm_notify_child_exit = time(NULL); |
|
MENU_SET bbs_menu_new; |
|
|
MENU_SET top10_menu_new; |
|
| 533 |
int i, j; |
int i, j; |
| 534 |
pid_t pid; |
pid_t pid; |
| 535 |
|
int ssh_key_valid = 0; |
| 536 |
int ssh_log_level = SSH_LOG_NOLOG; |
int ssh_log_level = SSH_LOG_NOLOG; |
| 537 |
|
|
| 538 |
#ifdef HAVE_SYSTEMD_SD_DAEMON_H |
#ifdef HAVE_SYSTEMD_SD_DAEMON_H |
| 543 |
|
|
| 544 |
sshbind = ssh_bind_new(); |
sshbind = ssh_bind_new(); |
| 545 |
|
|
| 546 |
|
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY, SSH_HOST_RSA_KEY_FILE) < 0) |
| 547 |
|
{ |
| 548 |
|
log_error("Error loading SSH RSA key: %s\n", SSH_HOST_RSA_KEY_FILE); |
| 549 |
|
} |
| 550 |
|
else |
| 551 |
|
{ |
| 552 |
|
ssh_key_valid = 1; |
| 553 |
|
} |
| 554 |
|
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY, SSH_HOST_ED25519_KEY_FILE) < 0) |
| 555 |
|
{ |
| 556 |
|
log_error("Error loading SSH ED25519 key: %s\n", SSH_HOST_ED25519_KEY_FILE); |
| 557 |
|
} |
| 558 |
|
else |
| 559 |
|
{ |
| 560 |
|
ssh_key_valid = 1; |
| 561 |
|
} |
| 562 |
|
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY, SSH_HOST_ECDSA_KEY_FILE) < 0) |
| 563 |
|
{ |
| 564 |
|
log_error("Error loading SSH ECDSA key: %s\n", SSH_HOST_ECDSA_KEY_FILE); |
| 565 |
|
} |
| 566 |
|
else |
| 567 |
|
{ |
| 568 |
|
ssh_key_valid = 1; |
| 569 |
|
} |
| 570 |
|
|
| 571 |
|
if (!ssh_key_valid) |
| 572 |
|
{ |
| 573 |
|
log_error("Error: no valid SSH host key\n"); |
| 574 |
|
ssh_bind_free(sshbind); |
| 575 |
|
return -1; |
| 576 |
|
} |
| 577 |
|
|
| 578 |
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDADDR, hostaddr) < 0 || |
if (ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDADDR, hostaddr) < 0 || |
| 579 |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDPORT, &port) < 0 || |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_BINDPORT, &port) < 0 || |
| 580 |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY, SSH_HOST_KEYFILE) < 0 || |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY_ALGORITHMS, "+ssh-rsa") < 0 || |
|
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_HOSTKEY_ALGORITHMS, "ssh-rsa,rsa-sha2-512,rsa-sha2-256") < 0 || |
|
| 581 |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_LOG_VERBOSITY, &ssh_log_level) < 0) |
ssh_bind_options_set(sshbind, SSH_BIND_OPTIONS_LOG_VERBOSITY, &ssh_log_level) < 0) |
| 582 |
{ |
{ |
| 583 |
log_error("Error setting SSH bind options: %s\n", ssh_get_error(sshbind)); |
log_error("Error setting SSH bind options: %s\n", ssh_get_error(sshbind)); |
| 655 |
fcntl(socket_server[i], F_SETFL, flags_server[i] | O_NONBLOCK); |
fcntl(socket_server[i], F_SETFL, flags_server[i] | O_NONBLOCK); |
| 656 |
} |
} |
| 657 |
|
|
| 658 |
|
ssh_bind_set_blocking(sshbind, 0); |
| 659 |
|
|
| 660 |
hash_dict_pid_sockaddr = hash_dict_create(MAX_CLIENT_LIMIT); |
hash_dict_pid_sockaddr = hash_dict_create(MAX_CLIENT_LIMIT); |
| 661 |
if (hash_dict_pid_sockaddr == NULL) |
if (hash_dict_pid_sockaddr == NULL) |
| 662 |
{ |
{ |
| 692 |
{ |
{ |
| 693 |
SYS_child_exit = 0; |
SYS_child_exit = 0; |
| 694 |
|
|
| 695 |
pid = waitpid(-1, NULL, WNOHANG); |
pid = waitpid(-1, &ret, WNOHANG); |
| 696 |
if (pid > 0) |
if (pid > 0) |
| 697 |
{ |
{ |
| 698 |
SYS_child_exit = 1; // Retry waitid |
SYS_child_exit = 1; // Retry waitid |
|
|
|
| 699 |
SYS_child_process_count--; |
SYS_child_process_count--; |
| 700 |
log_common("Child process (%d) exited\n", pid); |
|
| 701 |
|
if (WIFEXITED(ret)) |
| 702 |
|
{ |
| 703 |
|
log_common("Child process (%d) exited, status=%d\n", pid, WEXITSTATUS(ret)); |
| 704 |
|
} |
| 705 |
|
else if (WIFSIGNALED(ret)) |
| 706 |
|
{ |
| 707 |
|
log_common("Child process (%d) is killed, status=%d\n", pid, WTERMSIG(ret)); |
| 708 |
|
} |
| 709 |
|
else |
| 710 |
|
{ |
| 711 |
|
log_common("Child process (%d) exited abnormally, status=%d\n", pid, ret); |
| 712 |
|
} |
| 713 |
|
|
| 714 |
if (pid != section_list_loader_pid) |
if (pid != section_list_loader_pid) |
| 715 |
{ |
{ |
| 755 |
log_common("Notify %d child process to exit\n", SYS_child_process_count); |
log_common("Notify %d child process to exit\n", SYS_child_process_count); |
| 756 |
#endif |
#endif |
| 757 |
|
|
| 758 |
if (kill(-getpid(), SIGTERM) < 0) |
if (kill(0, SIGTERM) < 0) |
| 759 |
{ |
{ |
| 760 |
log_error("Send SIGTERM signal failed (%d)\n", errno); |
log_error("Send SIGTERM signal failed (%d)\n", errno); |
| 761 |
} |
} |
| 769 |
sd_notifyf(0, "STATUS=Kill %d child process", SYS_child_process_count); |
sd_notifyf(0, "STATUS=Kill %d child process", SYS_child_process_count); |
| 770 |
#endif |
#endif |
| 771 |
|
|
| 772 |
if (kill(-getpid(), SIGKILL) < 0) |
if (kill(0, SIGKILL) < 0) |
| 773 |
{ |
{ |
| 774 |
log_error("Send SIGKILL signal failed (%d)\n", errno); |
log_error("Send SIGKILL signal failed (%d)\n", errno); |
| 775 |
} |
} |
| 810 |
log_error("Reload BWF conf failed\n"); |
log_error("Reload BWF conf failed\n"); |
| 811 |
} |
} |
| 812 |
|
|
| 813 |
if (load_menu(&bbs_menu_new, CONF_MENU) < 0) |
// Get EULA modification tm |
| 814 |
|
if (stat(DATA_EULA, &file_stat) == -1) |
| 815 |
{ |
{ |
| 816 |
unload_menu(&bbs_menu_new); |
log_error("stat(%s) error\n", DATA_EULA, errno); |
|
log_error("Reload bbs menu failed\n"); |
|
| 817 |
} |
} |
| 818 |
else |
else |
| 819 |
{ |
{ |
| 820 |
|
BBS_eula_tm = file_stat.st_mtim.tv_sec; |
| 821 |
|
} |
| 822 |
|
|
| 823 |
|
if (detach_menu_shm(&bbs_menu) < 0) |
| 824 |
|
{ |
| 825 |
|
log_error("detach_menu_shm(bbs_menu) error\n"); |
| 826 |
|
} |
| 827 |
|
if (load_menu(&bbs_menu, CONF_MENU) < 0) |
| 828 |
|
{ |
| 829 |
|
log_error("load_menu(bbs_menu) error\n"); |
| 830 |
unload_menu(&bbs_menu); |
unload_menu(&bbs_menu); |
|
memcpy(&bbs_menu, &bbs_menu_new, sizeof(bbs_menu_new)); |
|
|
log_common("Reload bbs menu successfully\n"); |
|
| 831 |
} |
} |
| 832 |
|
|
| 833 |
if (load_menu(&top10_menu_new, CONF_TOP10_MENU) < 0) |
if (detach_menu_shm(&top10_menu) < 0) |
| 834 |
{ |
{ |
| 835 |
unload_menu(&top10_menu_new); |
log_error("detach_menu_shm(top10_menu) error\n"); |
|
log_error("Reload top10 menu failed\n"); |
|
| 836 |
} |
} |
| 837 |
else |
if (load_menu(&top10_menu, CONF_TOP10_MENU) < 0) |
| 838 |
{ |
{ |
| 839 |
|
log_error("load_menu(top10_menu) error\n"); |
| 840 |
unload_menu(&top10_menu); |
unload_menu(&top10_menu); |
|
top10_menu_new.allow_exit = 1; |
|
|
memcpy(&top10_menu, &top10_menu_new, sizeof(top10_menu_new)); |
|
|
log_common("Reload top10 menu successfully\n"); |
|
| 841 |
} |
} |
| 842 |
|
top10_menu.allow_exit = 1; |
| 843 |
|
|
| 844 |
for (int i = 0; i < data_files_load_startup_count; i++) |
for (int i = 0; i < data_files_load_startup_count; i++) |
| 845 |
{ |
{ |
| 848 |
log_error("load_file(%s) error\n", data_files_load_startup[i]); |
log_error("load_file(%s) error\n", data_files_load_startup[i]); |
| 849 |
} |
} |
| 850 |
} |
} |
|
log_common("Reload data files successfully\n"); |
|
| 851 |
|
|
| 852 |
// Load section config and gen_ex |
// Load section config and gen_ex |
| 853 |
if (load_section_config_from_db(1) < 0) |
if (load_section_config_from_db(1) < 0) |
| 854 |
{ |
{ |
| 855 |
log_error("load_section_config_from_db(1) error\n"); |
log_error("load_section_config_from_db(1) error\n"); |
| 856 |
} |
} |
|
else |
|
|
{ |
|
|
log_common("Reload section config and gen_ex successfully\n"); |
|
|
} |
|
| 857 |
|
|
| 858 |
// Notify child processes to reload configuration |
// Notify child processes to reload configuration |
| 859 |
if (kill(-getpid(), SIGUSR1) < 0) |
if (kill(0, SIGUSR1) < 0) |
| 860 |
{ |
{ |
| 861 |
log_error("Send SIGUSR1 signal failed (%d)\n", errno); |
log_error("Send SIGUSR1 signal failed (%d)\n", errno); |
| 862 |
} |
} |
| 914 |
while (!SYS_server_exit) // Accept all incoming connections until error |
while (!SYS_server_exit) // Accept all incoming connections until error |
| 915 |
{ |
{ |
| 916 |
addrlen = sizeof(sin); |
addrlen = sizeof(sin); |
| 917 |
socket_client = accept(socket_server[SSH_v2], (struct sockaddr *)&sin, &addrlen); |
socket_client = accept(socket_server[SSH_v2], (struct sockaddr *)&sin, (socklen_t *)&addrlen); |
| 918 |
if (socket_client < 0) |
if (socket_client < 0) |
| 919 |
{ |
{ |
| 920 |
if (errno == EAGAIN || errno == EWOULDBLOCK) |
if (errno == EAGAIN || errno == EWOULDBLOCK) |
| 937 |
|
|
| 938 |
port_client = ntohs(sin.sin_port); |
port_client = ntohs(sin.sin_port); |
| 939 |
|
|
|
log_common("Accept %s connection from %s:%d\n", (SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client); |
|
|
|
|
| 940 |
if (SYS_child_process_count - 1 < BBS_max_client) |
if (SYS_child_process_count - 1 < BBS_max_client) |
| 941 |
{ |
{ |
| 942 |
j = 0; |
j = 0; |
| 948 |
|
|
| 949 |
if (j < BBS_max_client_per_ip) |
if (j < BBS_max_client_per_ip) |
| 950 |
{ |
{ |
| 951 |
|
log_common("Accept %s connection from %s:%d, already have %d connections\n", |
| 952 |
|
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, j); |
| 953 |
|
|
| 954 |
if ((pid = fork_server()) < 0) |
if ((pid = fork_server()) < 0) |
| 955 |
{ |
{ |
| 956 |
log_error("fork_server() error\n"); |
log_error("fork_server() error\n"); |
| 972 |
} |
} |
| 973 |
else |
else |
| 974 |
{ |
{ |
| 975 |
log_error("Rejected client connection from %s over limit per IP (%d)\n", hostaddr_client, BBS_max_client_per_ip); |
log_error("Rejected %s connection from %s:%d over limit per IP (%d)\n", |
| 976 |
|
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, BBS_max_client_per_ip); |
| 977 |
} |
} |
| 978 |
} |
} |
| 979 |
else |
else |
| 980 |
{ |
{ |
| 981 |
log_error("Rejected client connection over limit (%d)\n", SYS_child_process_count - 1); |
log_error("Rejected %s connection from %s:%d over limit (%d)\n", |
| 982 |
|
(SSH_v2 ? "SSH" : "telnet"), hostaddr_client, port_client, SYS_child_process_count - 1); |
| 983 |
} |
} |
| 984 |
|
|
| 985 |
if (close(socket_client) == -1) |
if (close(socket_client) == -1) |
Parent Directory
| 
Revision Log
| 
Patch