clearlinux/tallow
2
0
Fork 0
mirror of https://github.com/clearlinux/tallow.git synced 2026-06-16 01:15:48 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: clearlinux/tallow:v10
Branches Tags
clearlinux/tallow:master
clearlinux/tallow:v21 clearlinux/tallow:v20 clearlinux/tallow:v19 clearlinux/tallow:v18 clearlinux/tallow:v17 clearlinux/tallow:v16 clearlinux/tallow:v15 clearlinux/tallow:v14 clearlinux/tallow:v13 clearlinux/tallow:v12 clearlinux/tallow:untagged-b3f44d644b7903f8fa67 clearlinux/tallow:v11 clearlinux/tallow:v10 clearlinux/tallow:v9 clearlinux/tallow:v8 clearlinux/tallow:v7 clearlinux/tallow:v6 clearlinux/tallow:v5 clearlinux/tallow:v4 clearlinux/tallow:v3 clearlinux/tallow:v2 clearlinux/tallow:v1
...
compare: clearlinux/tallow:v12
Branches Tags
clearlinux/tallow:master
clearlinux/tallow:v21 clearlinux/tallow:v20 clearlinux/tallow:v19 clearlinux/tallow:v18 clearlinux/tallow:v17 clearlinux/tallow:v16 clearlinux/tallow:v15 clearlinux/tallow:v14 clearlinux/tallow:v13 clearlinux/tallow:v12 clearlinux/tallow:untagged-b3f44d644b7903f8fa67 clearlinux/tallow:v11 clearlinux/tallow:v10 clearlinux/tallow:v9 clearlinux/tallow:v8 clearlinux/tallow:v7 clearlinux/tallow:v6 clearlinux/tallow:v5 clearlinux/tallow:v4 clearlinux/tallow:v3 clearlinux/tallow:v2 clearlinux/tallow:v1

2 Commits
v10 ... v12

Author SHA1 Message Date
Auke Kok dccbfce478 Tune down badness for attempts a small bit. 
We're still blocking really agressively. Tune it down a notch
and make timeouts a bit less for human-error like conditions
(forgotten key, ^C etc).
 2018-10-04 11:23:09 -07:00
Auke Kok 5503ff0b20 Possibly handle journald restarts better. 
I've encountered two runaway tallow daemons now that seem to
coincide with journald restarts that send it spinning tight
on the `continue` statement and hitting the same _get_data()
error (ENOENT).

I'm unsure if the `break` will fix it, but the `continue`
is definitely broken here. Hopefully the `sd_journal_wait()`
will properly reassess the journal state and notify us of
rotations or other issues.
 2018-06-25 12:13:30 -07:00
2 changed files with 11 additions and 8 deletions
Expand all files Collapse all files
configure.ac
+1 -1
View File
@@ -2,7 +2,7 @@
# Process this file with autoconf to produce a configure script.
AC_PREREQ([2.64])
AC_INIT([tallow], [10], [auke-jan.h.kok@intel.com])
AC_INIT([tallow], [12], [auke-jan.h.kok@intel.com])
AM_INIT_AUTOMAKE([foreign])
AC_CONFIG_FILES([Makefile])
tallow.c
+10 -7
View File
@@ -58,14 +58,14 @@ struct pattern_struct {
#define PATTERN_COUNT 10
static struct pattern_struct patterns[PATTERN_COUNT] = {
{ 0, 0.3, "MESSAGE=Failed .* for .* from ([0-9a-z:.]+) port \\d+ ssh2", NULL},
{ 0, 0.3, "MESSAGE=error: PAM: Authentication failure for .* from ([0-9a-z:.]+)", NULL},
{15, 0.3, "MESSAGE=Invalid user .* from ([0-9a-z:.]+) port \\d+", NULL},
{15, 0.3, "MESSAGE=Did not receive identification string from ([0-9a-z:.]+) port \\d+", NULL},
{ 0, 0.2, "MESSAGE=Failed .* for .* from ([0-9a-z:.]+) port \\d+ ssh2", NULL},
{ 0, 0.2, "MESSAGE=error: PAM: Authentication failure for .* from ([0-9a-z:.]+)", NULL},
{10, 0.2, "MESSAGE=Invalid user .* from ([0-9a-z:.]+) port \\d+", NULL},
{10, 0.3, "MESSAGE=Did not receive identification string from ([0-9a-z:.]+) port \\d+", NULL},
{15, 0.4, "MESSAGE=Bad protocol version identification .* from ([0-9a-z:.]+)", NULL},
{15, 0.4, "MESSAGE=Connection closed by authenticating user .* ([0-9a-z:.]+) port \\d+", NULL},
{15, 0.4, "MESSAGE=Received disconnect from ([0-9a-z:.]+) port .*\\[preauth\\]", NULL},
{15, 0.4, "MESSAGE=Connection closed by ([0-9a-z:.]+) port .*\\[preauth\\]", NULL},
{10, 0.3, "MESSAGE=Received disconnect from ([0-9a-z:.]+) port .*\\[preauth\\]", NULL},
{10, 0.3, "MESSAGE=Connection closed by ([0-9a-z:.]+) port .*\\[preauth\\]", NULL},
{30, 0.5, "MESSAGE=Failed .* for root from ([0-9a-z:.]+) port \\d+ ssh2", NULL},
{60, 0.6, "MESSAGE=Unable to negotiate with ([0-9a-z:.]+) port \\d+: no matching key exchange method found.", NULL}
};
@@ -434,6 +434,9 @@ int main(void)
if (r == SD_JOURNAL_INVALIDATE) {
fprintf(stderr, "Journal was rotated, resetting\n");
sd_journal_seek_tail(j);
} else if (r == SD_JOURNAL_NOP) {
dbg("Timeout reached, waiting again\n");
continue;
}
while (sd_journal_next(j) != 0) {
@@ -441,7 +444,7 @@ int main(void)
if (sd_journal_get_data(j, "MESSAGE", &d, &l) < 0) {
fprintf(stderr, "Failed to read message field: %s\n", strerror(-r));
continue;
break;
}
m = strndup(d, l+1);