m_sasl: temporarily reject clients after many failed attempts

[solanum.git] / include / client.h

diff --git a/include/client.h b/include/client.h
index a7ebc6960fb8b10fc2f82afccd4b092b44f584b3..c97bf8ab7487246181cbbab628ed73bb58a0a17b 100644 (file)
--- a/include/client.h
+++ b/include/client.h
@@ -41,9 +41,9 @@ struct Blacklist;
 
 /* we store ipv6 ips for remote clients, so this needs to be v6 always */
 #define HOSTIPLEN      53      /* sizeof("ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255.ipv6") */
-#define PASSWDLEN       128
-#define CIPHERKEYLEN    64     /* 512bit */
-#define CLIENT_BUFSIZE 512     /* must be at least 512 bytes */
+#define PASSWDLEN      128
+#define CIPHERKEYLEN   64      /* 512bit */
+#define CLIENT_BUFSIZE 512     /* must be at least 512 bytes */
 
 #define IDLEN          10
 
@@ -285,6 +285,17 @@ struct LocalUser
        char sasl_agent[IDLEN];
        unsigned char sasl_out;
        unsigned char sasl_complete;
+       unsigned short sasl_messages;
+};
+
+struct AuthClient
+{
+       uint32_t cid;   /* authd id */
+       time_t timeout; /* When to terminate authd query */
+       bool accepted;  /* did authd accept us? */
+       char cause;     /* rejection cause */
+       char *data;     /* reason data */
+       char *reason;   /* reason we were rejected */
 };
 
 struct PreClient
@@ -293,12 +304,7 @@ struct PreClient
        char spoofuser[USERLEN + 1];
        char spoofhost[HOSTLEN + 1];
 
-       uint32_t authd_cid;             /* authd id */
-       time_t authd_timeout;           /* When to terminate authd query */
-       bool authd_accepted;            /* did authd accept us? */
-       char authd_cause;               /* rejection cause */
-       char *authd_data;               /* reason data */
-       char *authd_reason;             /* reason we were rejected */
+       struct AuthClient auth;
 
        struct rb_sockaddr_storage lip; /* address of our side of the connection */
 };