1 /* $NetBSD: daemon.c,v 1.4 2025/09/05 21:16:25 christos Exp $ */ 2 3 /* $OpenLDAP$ */ 4 /* This work is part of OpenLDAP Software <http://www.openldap.org/>. 5 * 6 * Copyright 1998-2024 The OpenLDAP Foundation. 7 * Portions Copyright 2007 by Howard Chu, Symas Corporation. 8 * All rights reserved. 9 * 10 * Redistribution and use in source and binary forms, with or without 11 * modification, are permitted only as authorized by the OpenLDAP 12 * Public License. 13 * 14 * A copy of this license is available in the file LICENSE in the 15 * top-level directory of the distribution or, alternatively, at 16 * <http://www.OpenLDAP.org/license.html>. 17 */ 18 /* Portions Copyright (c) 1995 Regents of the University of Michigan. 19 * All rights reserved. 20 * 21 * Redistribution and use in source and binary forms are permitted 22 * provided that this notice is preserved and that due credit is given 23 * to the University of Michigan at Ann Arbor. The name of the University 24 * may not be used to endorse or promote products derived from this 25 * software without specific prior written permission. This software 26 * is provided ``as is'' without express or implied warranty. 27 */ 28 29 #include <sys/cdefs.h> 30 __RCSID("$NetBSD: daemon.c,v 1.4 2025/09/05 21:16:25 christos Exp $"); 31 32 #include "portable.h" 33 34 #include <stdio.h> 35 36 #include <ac/ctype.h> 37 #include <ac/errno.h> 38 #include <ac/socket.h> 39 #include <ac/string.h> 40 #include <ac/time.h> 41 #include <ac/unistd.h> 42 43 #include "slap.h" 44 #include "ldap_pvt_thread.h" 45 #include "lutil.h" 46 47 #include "ldap_rq.h" 48 49 #ifdef HAVE_SYSTEMD 50 #include "sd-notify.h" 51 #endif 52 53 #ifdef HAVE_POLL 54 #include <poll.h> 55 #endif 56 57 #ifdef HAVE_KQUEUE 58 # include <sys/types.h> 59 # include <sys/event.h> 60 # include <sys/time.h> 61 #elif defined(HAVE_SYS_EPOLL_H) && defined(HAVE_EPOLL) 62 # include <sys/epoll.h> 63 #elif defined(SLAP_X_DEVPOLL) && defined(HAVE_SYS_DEVPOLL_H) && defined(HAVE_DEVPOLL) 64 # include <sys/types.h> 65 # include <sys/stat.h> 66 # include <fcntl.h> 67 # include <sys/devpoll.h> 68 #endif /* ! kqueue && ! epoll && ! /dev/poll */ 69 70 #ifdef HAVE_TCPD 71 int allow_severity = LOG_INFO; 72 int deny_severity = LOG_NOTICE; 73 #endif /* TCP Wrappers */ 74 75 #ifdef LDAP_PF_LOCAL 76 # include <sys/stat.h> 77 /* this should go in <ldap.h> as soon as it is accepted */ 78 # define LDAPI_MOD_URLEXT "x-mod" 79 #endif /* LDAP_PF_LOCAL */ 80 81 #ifdef LDAP_PF_INET6 82 int slap_inet4or6 = AF_UNSPEC; 83 #else /* ! INETv6 */ 84 int slap_inet4or6 = AF_INET; 85 #endif /* ! INETv6 */ 86 87 /* globals */ 88 time_t starttime; 89 ber_socket_t dtblsize; 90 slap_ssf_t local_ssf = LDAP_PVT_SASL_LOCAL_SSF; 91 struct runqueue_s slapd_rq; 92 93 int slapd_daemon_threads = 1; 94 int slapd_daemon_mask; 95 96 #ifdef LDAP_TCP_BUFFER 97 int slapd_tcp_rmem; 98 int slapd_tcp_wmem; 99 #endif /* LDAP_TCP_BUFFER */ 100 101 Listener **slap_listeners = NULL; 102 static volatile sig_atomic_t listening = 1; /* 0 when slap_listeners closed */ 103 104 #ifndef SLAPD_LISTEN_BACKLOG 105 #define SLAPD_LISTEN_BACKLOG 2048 106 #endif /* ! SLAPD_LISTEN_BACKLOG */ 107 108 #define DAEMON_ID(fd) (fd & slapd_daemon_mask) 109 110 typedef ber_socket_t sdpair[2]; 111 112 static sdpair *wake_sds; 113 static ldap_pvt_thread_mutex_t emfile_mutex; 114 static int emfile; 115 116 static volatile int waking; 117 #define WAKE_LISTENER(l,w) do { \ 118 if (w) { \ 119 (void)!tcp_write( SLAP_FD2SOCK(wake_sds[l][1]), "0", 1 ); \ 120 } \ 121 } while (0) 122 123 ldap_pvt_thread_mutex_t slapd_init_mutex; 124 ldap_pvt_thread_cond_t slapd_init_cond; 125 int slapd_ready = 0; 126 127 volatile sig_atomic_t slapd_shutdown = 0; 128 volatile sig_atomic_t slapd_gentle_shutdown = 0; 129 volatile sig_atomic_t slapd_abrupt_shutdown = 0; 130 131 #ifdef HAVE_WINSOCK 132 ldap_pvt_thread_mutex_t slapd_ws_mutex; 133 SOCKET *slapd_ws_sockets; 134 #define SD_READ 1 135 #define SD_WRITE 2 136 #define SD_ACTIVE 4 137 #define SD_LISTENER 8 138 #endif 139 140 #ifdef HAVE_TCPD 141 static ldap_pvt_thread_mutex_t sd_tcpd_mutex; 142 #endif /* TCP Wrappers */ 143 144 typedef struct slap_daemon_st { 145 ldap_pvt_thread_mutex_t sd_mutex; 146 147 ber_socket_t sd_nactives; 148 int sd_nwriters; 149 int sd_nfds; 150 ldap_pvt_thread_t sd_tid; 151 152 #if defined(HAVE_KQUEUE) 153 uint8_t* sd_fdmodes; /* indexed by fd */ 154 Listener** sd_l; /* indexed by fd */ 155 /* Double buffer the kqueue changes to avoid holding the sd_mutex \ 156 * during a kevent() call. \ 157 */ 158 struct kq_change { 159 struct kevent* sd_changes; 160 int sd_nchanges; 161 int sd_maxchanges; 162 } sd_kqc[2]; 163 int sd_changeidx; /* index to current change buffer */ 164 int sd_kq; 165 #elif defined(HAVE_EPOLL) 166 167 struct epoll_event *sd_epolls; 168 int *sd_index; 169 int sd_epfd; 170 #elif defined(SLAP_X_DEVPOLL) && defined(HAVE_DEVPOLL) 171 /* eXperimental */ 172 struct pollfd *sd_pollfd; 173 int *sd_index; 174 Listener **sd_l; 175 int sd_dpfd; 176 #else /* ! kqueue && ! epoll && ! /dev/poll */ 177 #ifdef HAVE_WINSOCK 178 char *sd_flags; 179 char *sd_rflags; 180 #else /* ! HAVE_WINSOCK */ 181 fd_set sd_actives; 182 fd_set sd_readers; 183 fd_set sd_writers; 184 #endif /* ! HAVE_WINSOCK */ 185 #endif /* ! kqueue && ! epoll && ! /dev/poll */ 186 } slap_daemon_st; 187 188 static slap_daemon_st *slap_daemon; 189 190 /* 191 * NOTE: naming convention for macros: 192 * 193 * - SLAP_SOCK_* and SLAP_EVENT_* for public interface that deals 194 * with file descriptors and events respectively 195 * 196 * - SLAP_<type>_* for private interface; type by now is one of 197 * EPOLL, DEVPOLL, SELECT, KQUEUE 198 * 199 * private interface should not be used in the code. 200 */ 201 #ifdef HAVE_KQUEUE 202 # define SLAP_EVENT_FNAME "kqueue" 203 # define SLAP_EVENTS_ARE_INDEXED 0 204 # define SLAP_EVENT_MAX(t) (2 * dtblsize) /* each fd can have a read & a write event */ 205 206 # define SLAP_EVENT_DECL \ 207 static struct kevent* events = NULL 208 209 # define SLAP_EVENT_INIT(t) do {\ 210 if (!events) { \ 211 events = ch_malloc(sizeof(*events) * SLAP_EVENT_MAX(t)); \ 212 } \ 213 } while (0) 214 215 # define SLAP_SOCK_INIT(t) do { \ 216 int kq_i; \ 217 size_t kq_nbytes; \ 218 Debug(LDAP_DEBUG_ANY, "daemon: SLAP_SOCK_INIT: dtblsize=%d\n", dtblsize); \ 219 slap_daemon[t].sd_nfds = 0; \ 220 slap_daemon[t].sd_changeidx = 0; \ 221 for (kq_i = 0; kq_i < 2; kq_i++) { \ 222 struct kq_change* kqc = &slap_daemon[t].sd_kqc[kq_i]; \ 223 kqc->sd_nchanges = 0; \ 224 kqc->sd_maxchanges = 256; /* will grow as needed */ \ 225 kq_nbytes = sizeof(*kqc->sd_changes) * kqc->sd_maxchanges; \ 226 kqc->sd_changes = ch_calloc(1, kq_nbytes); \ 227 } \ 228 kq_nbytes = sizeof(*slap_daemon[t].sd_fdmodes) * dtblsize; \ 229 slap_daemon[t].sd_fdmodes = ch_calloc(1, kq_nbytes); \ 230 kq_nbytes = sizeof(*slap_daemon[t].sd_l) * dtblsize; \ 231 slap_daemon[t].sd_l = ch_calloc(1, kq_nbytes); \ 232 slap_daemon[t].sd_kq = kqueue(); \ 233 } while (0) 234 235 /* a kqueue fd obtained before a fork isn't inherited by child process. 236 * reacquire it. 237 */ 238 # define SLAP_SOCK_INIT2() do { \ 239 slap_daemon[0].sd_kq = kqueue(); \ 240 } while (0) 241 242 # define SLAP_SOCK_DESTROY(t) do { \ 243 int kq_i; \ 244 if (slap_daemon[t].sd_kq > 0) { \ 245 close(slap_daemon[t].sd_kq); \ 246 slap_daemon[t].sd_kq = -1; \ 247 } \ 248 for (kq_i = 0; kq_i < 2; kq_i++) { \ 249 if (slap_daemon[t].sd_kqc[kq_i].sd_changes != NULL) { \ 250 ch_free(slap_daemon[t].sd_kqc[kq_i].sd_changes); \ 251 slap_daemon[t].sd_kqc[kq_i].sd_changes = NULL; \ 252 } \ 253 slap_daemon[t].sd_kqc[kq_i].sd_nchanges = 0; \ 254 slap_daemon[t].sd_kqc[kq_i].sd_maxchanges = 0; \ 255 } \ 256 if (slap_daemon[t].sd_l != NULL) { \ 257 ch_free(slap_daemon[t].sd_l); \ 258 slap_daemon[t].sd_l = NULL; \ 259 } \ 260 if (slap_daemon[t].sd_fdmodes != NULL) { \ 261 ch_free(slap_daemon[t].sd_fdmodes); \ 262 slap_daemon[t].sd_fdmodes = NULL; \ 263 } \ 264 slap_daemon[t].sd_nfds = 0; \ 265 } while (0) 266 267 # define SLAP_KQUEUE_SOCK_ACTIVE 0x01 268 # define SLAP_KQUEUE_SOCK_READ_ENABLED 0x02 269 # define SLAP_KQUEUE_SOCK_WRITE_ENABLED 0x04 270 271 # define SLAP_SOCK_IS_ACTIVE(t,s) (slap_daemon[t].sd_fdmodes[(s)] != 0) 272 # define SLAP_SOCK_NOT_ACTIVE(t,s) (slap_daemon[t].sd_fdmodes[(s)] == 0) 273 # define SLAP_SOCK_IS_READ(t,s) (slap_daemon[t].sd_fdmodes[(s)] & SLAP_KQUEUE_SOCK_READ_ENABLED) 274 # define SLAP_SOCK_IS_WRITE(t,s) (slap_daemon[t].sd_fdmodes[(s)] & SLAP_KQUEUE_SOCK_WRITE_ENABLED) 275 276 /* 277 * SLAP_SOCK_SET_* & SLAP_SOCK_CLR_* get called a _lot_. Since kevent() 278 * processes changes before it looks for events, batch up the changes which 279 * will get submitted the next time kevent() is called for events. 280 */ 281 282 # define SLAP_KQUEUE_CHANGE(t, s, filter, flag) do { \ 283 /* If maxchanges is reached, have to realloc to make room for more. \ 284 * Ideally we'd call kevent(), but the daemon thread could be sitting \ 285 * in kevent() waiting for events. \ 286 */ \ 287 struct kq_change* kqc = &slap_daemon[t].sd_kqc[slap_daemon[t].sd_changeidx]; \ 288 if (kqc->sd_nchanges == kqc->sd_maxchanges) { \ 289 /* Don't want to do this very often. Double the size. */ \ 290 size_t kq_nbytes; \ 291 Debug(LDAP_DEBUG_CONNS, \ 292 "daemon: SLAP_KQUEUE_CHANGE: increasing slap_daemon.sd_kqc[%d].maxchanges from %d to %d\n", \ 293 slap_daemon[t].sd_changeidx, kqc->sd_maxchanges, 2*kqc->sd_maxchanges); \ 294 kqc->sd_maxchanges += kqc->sd_maxchanges; \ 295 kq_nbytes = sizeof(*kqc->sd_changes) * kqc->sd_maxchanges; \ 296 kqc->sd_changes = ch_realloc(kqc->sd_changes, kq_nbytes); \ 297 } \ 298 EV_SET(&kqc->sd_changes[kqc->sd_nchanges++], \ 299 (s), (filter), (flag), 0, 0, slap_daemon[t].sd_l[(s)]); \ 300 } while (0) 301 302 # define SLAP_KQUEUE_SOCK_SET(t, s, filter, mode) do { \ 303 if ((slap_daemon[t].sd_fdmodes[(s)] & (mode)) != (mode)) { \ 304 slap_daemon[t].sd_fdmodes[(s)] |= (mode); \ 305 SLAP_KQUEUE_CHANGE(t, (s), (filter), EV_ENABLE); \ 306 } \ 307 } while (0) 308 309 # define SLAP_KQUEUE_SOCK_CLR(t, s, filter, mode) do { \ 310 if (slap_daemon[t].sd_fdmodes[(s)] & (mode)) { \ 311 slap_daemon[t].sd_fdmodes[(s)] &= ~(mode); \ 312 SLAP_KQUEUE_CHANGE(t, (s), (filter), EV_DISABLE); \ 313 } \ 314 } while (0) 315 316 # define SLAP_SOCK_SET_READ(t, s) SLAP_KQUEUE_SOCK_SET(t, (s), EVFILT_READ, SLAP_KQUEUE_SOCK_READ_ENABLED) 317 # define SLAP_SOCK_SET_WRITE(t, s) SLAP_KQUEUE_SOCK_SET(t, (s), EVFILT_WRITE, SLAP_KQUEUE_SOCK_WRITE_ENABLED) 318 # define SLAP_SOCK_CLR_READ(t, s) SLAP_KQUEUE_SOCK_CLR(t, (s), EVFILT_READ, SLAP_KQUEUE_SOCK_READ_ENABLED) 319 # define SLAP_SOCK_CLR_WRITE(t, s) SLAP_KQUEUE_SOCK_CLR(t, (s), EVFILT_WRITE, SLAP_KQUEUE_SOCK_WRITE_ENABLED) 320 321 /* kqueue doesn't need to do anything to clear the event. */ 322 # define SLAP_EVENT_CLR_READ(i) do {} while (0) 323 # define SLAP_EVENT_CLR_WRITE(i) do {} while (0) 324 325 # define SLAP_SOCK_ADD(t, s, l) do { \ 326 assert( s < dtblsize ); \ 327 slap_daemon[t].sd_l[(s)] = (l); \ 328 slap_daemon[t].sd_fdmodes[(s)] = SLAP_KQUEUE_SOCK_ACTIVE | SLAP_KQUEUE_SOCK_READ_ENABLED; \ 329 ++slap_daemon[t].sd_nfds; \ 330 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_READ, EV_ADD); \ 331 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_WRITE, EV_ADD | EV_DISABLE); \ 332 } while (0) 333 334 # define SLAP_SOCK_DEL(t, s) do { \ 335 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_READ, EV_DELETE); \ 336 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_WRITE, EV_DELETE); \ 337 slap_daemon[t].sd_l[(s)] = NULL; \ 338 slap_daemon[t].sd_fdmodes[(s)] = 0; \ 339 --slap_daemon[t].sd_nfds; \ 340 } while (0) 341 342 # define SLAP_EVENT_FD(t, i) (events[(i)].ident) 343 344 # define SLAP_EVENT_IS_READ(t, i) \ 345 (events[(i)].filter == EVFILT_READ && SLAP_SOCK_IS_READ(t, SLAP_EVENT_FD(0, i))) 346 347 # define SLAP_EVENT_IS_WRITE(t, i) \ 348 (events[(i)].filter == EVFILT_WRITE && SLAP_SOCK_IS_WRITE(t, SLAP_EVENT_FD(0, i))) 349 350 # define SLAP_EVENT_IS_LISTENER(t, i) \ 351 (events[(i)].udata && SLAP_SOCK_IS_READ(t, SLAP_EVENT_FD(t, i))) 352 353 # define SLAP_EVENT_LISTENER(t, i) ((Listener*)(events[(i)].udata)) 354 355 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 356 struct timespec kq_ts; \ 357 struct timespec* kq_tsp; \ 358 int kq_idx; \ 359 if (tvp) { \ 360 TIMEVAL_TO_TIMESPEC((tvp), &kq_ts); \ 361 kq_tsp = &kq_ts; \ 362 } else { \ 363 kq_tsp = NULL; \ 364 } \ 365 /* Save the change buffer index for use when the mutex is unlocked, \ 366 * then switch the index so new changes go to the other buffer. \ 367 */ \ 368 ldap_pvt_thread_mutex_lock( &slap_daemon[t].sd_mutex ); \ 369 kq_idx = slap_daemon[t].sd_changeidx; \ 370 slap_daemon[t].sd_changeidx ^= 1; \ 371 ldap_pvt_thread_mutex_unlock( &slap_daemon[t].sd_mutex ); \ 372 *(nsp) = kevent(slap_daemon[t].sd_kq, \ 373 slap_daemon[t].sd_kqc[kq_idx].sd_nchanges \ 374 ? slap_daemon[t].sd_kqc[kq_idx].sd_changes : NULL, \ 375 slap_daemon[t].sd_kqc[kq_idx].sd_nchanges, \ 376 events, SLAP_EVENT_MAX(t), kq_tsp); \ 377 slap_daemon[t].sd_kqc[kq_idx].sd_nchanges = 0; \ 378 } while(0) 379 380 /*-------------------------------------------------------------------------------*/ 381 382 #elif defined(HAVE_EPOLL) 383 /*************************************** 384 * Use epoll infrastructure - epoll(4) * 385 ***************************************/ 386 # define SLAP_EVENT_FNAME "epoll" 387 # define SLAP_EVENTS_ARE_INDEXED 0 388 # define SLAP_EPOLL_SOCK_IX(t,s) (slap_daemon[t].sd_index[(s)]) 389 # define SLAP_EPOLL_SOCK_EP(t,s) (slap_daemon[t].sd_epolls[SLAP_EPOLL_SOCK_IX(t,s)]) 390 # define SLAP_EPOLL_SOCK_EV(t,s) (SLAP_EPOLL_SOCK_EP(t,s).events) 391 # define SLAP_SOCK_IS_ACTIVE(t,s) (SLAP_EPOLL_SOCK_IX(t,s) != -1) 392 # define SLAP_SOCK_NOT_ACTIVE(t,s) (SLAP_EPOLL_SOCK_IX(t,s) == -1) 393 # define SLAP_EPOLL_SOCK_IS_SET(t,s, mode) (SLAP_EPOLL_SOCK_EV(t,s) & (mode)) 394 395 # define SLAP_SOCK_IS_READ(t,s) SLAP_EPOLL_SOCK_IS_SET(t,(s), EPOLLIN) 396 # define SLAP_SOCK_IS_WRITE(t,s) SLAP_EPOLL_SOCK_IS_SET(t,(s), EPOLLOUT) 397 398 # define SLAP_EPOLL_SOCK_SET(t,s, mode) do { \ 399 if ( (SLAP_EPOLL_SOCK_EV(t,s) & (mode)) != (mode) ) { \ 400 SLAP_EPOLL_SOCK_EV(t,s) |= (mode); \ 401 epoll_ctl( slap_daemon[t].sd_epfd, EPOLL_CTL_MOD, (s), \ 402 &SLAP_EPOLL_SOCK_EP(t,s) ); \ 403 } \ 404 } while (0) 405 406 # define SLAP_EPOLL_SOCK_CLR(t,s, mode) do { \ 407 if ( (SLAP_EPOLL_SOCK_EV(t,s) & (mode)) ) { \ 408 SLAP_EPOLL_SOCK_EV(t,s) &= ~(mode); \ 409 epoll_ctl( slap_daemon[t].sd_epfd, EPOLL_CTL_MOD, s, \ 410 &SLAP_EPOLL_SOCK_EP(t,s) ); \ 411 } \ 412 } while (0) 413 414 # define SLAP_SOCK_SET_READ(t,s) SLAP_EPOLL_SOCK_SET(t,s, EPOLLIN) 415 # define SLAP_SOCK_SET_WRITE(t,s) SLAP_EPOLL_SOCK_SET(t,s, EPOLLOUT) 416 417 # define SLAP_SOCK_CLR_READ(t,s) SLAP_EPOLL_SOCK_CLR(t,(s), EPOLLIN) 418 # define SLAP_SOCK_CLR_WRITE(t,s) SLAP_EPOLL_SOCK_CLR(t,(s), EPOLLOUT) 419 420 # define SLAP_SOCK_SET_SUSPEND(t,s) \ 421 ( slap_daemon[t].sd_suspend[SLAP_EPOLL_SOCK_IX(t,s)] = 1 ) 422 # define SLAP_SOCK_CLR_SUSPEND(t,s) \ 423 ( slap_daemon[t].sd_suspend[SLAP_EPOLL_SOCK_IX(t,s)] = 0 ) 424 # define SLAP_SOCK_IS_SUSPEND(t,s) \ 425 ( slap_daemon[t].sd_suspend[SLAP_EPOLL_SOCK_IX(t,s)] == 1 ) 426 427 # define SLAP_EPOLL_EVENT_CLR(i, mode) (revents[(i)].events &= ~(mode)) 428 429 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 430 431 /* If a Listener address is provided, store that as the epoll data. 432 * Otherwise, store the address of this socket's slot in the 433 * index array. If we can't do this add, the system is out of 434 * resources and we need to shutdown. 435 */ 436 # define SLAP_SOCK_ADD(t, s, l) do { \ 437 int rc; \ 438 SLAP_EPOLL_SOCK_IX(t,(s)) = slap_daemon[t].sd_nfds; \ 439 SLAP_EPOLL_SOCK_EP(t,(s)).data.ptr = (l) ? (l) : (void *)(&SLAP_EPOLL_SOCK_IX(t,s)); \ 440 SLAP_EPOLL_SOCK_EV(t,(s)) = EPOLLIN; \ 441 rc = epoll_ctl(slap_daemon[t].sd_epfd, EPOLL_CTL_ADD, \ 442 (s), &SLAP_EPOLL_SOCK_EP(t,(s))); \ 443 if ( rc == 0 ) { \ 444 slap_daemon[t].sd_nfds++; \ 445 } else { \ 446 int saved_errno = errno; \ 447 Debug( LDAP_DEBUG_ANY, \ 448 "daemon: epoll_ctl(ADD,fd=%d) failed, errno=%d, shutting down\n", \ 449 s, saved_errno ); \ 450 slapd_shutdown = 2; \ 451 } \ 452 } while (0) 453 454 # define SLAP_EPOLL_EV_LISTENER(t,ptr) \ 455 (((int *)(ptr) >= slap_daemon[t].sd_index && \ 456 (int *)(ptr) <= &slap_daemon[t].sd_index[dtblsize]) ? 0 : 1 ) 457 458 # define SLAP_EPOLL_EV_PTRFD(t,ptr) (SLAP_EPOLL_EV_LISTENER(t,ptr) ? \ 459 ((Listener *)ptr)->sl_sd : \ 460 (ber_socket_t) ((int *)(ptr) - slap_daemon[t].sd_index)) 461 462 # define SLAP_SOCK_DEL(t,s) do { \ 463 int fd, rc, index = SLAP_EPOLL_SOCK_IX(t,(s)); \ 464 if ( index < 0 ) break; \ 465 rc = epoll_ctl(slap_daemon[t].sd_epfd, EPOLL_CTL_DEL, \ 466 (s), &SLAP_EPOLL_SOCK_EP(t,(s))); \ 467 slap_daemon[t].sd_epolls[index] = \ 468 slap_daemon[t].sd_epolls[slap_daemon[t].sd_nfds-1]; \ 469 fd = SLAP_EPOLL_EV_PTRFD(t,slap_daemon[t].sd_epolls[index].data.ptr); \ 470 slap_daemon[t].sd_index[fd] = index; \ 471 slap_daemon[t].sd_index[(s)] = -1; \ 472 slap_daemon[t].sd_nfds--; \ 473 } while (0) 474 475 # define SLAP_EVENT_CLR_READ(i) SLAP_EPOLL_EVENT_CLR((i), EPOLLIN) 476 # define SLAP_EVENT_CLR_WRITE(i) SLAP_EPOLL_EVENT_CLR((i), EPOLLOUT) 477 478 # define SLAP_EPOLL_EVENT_CHK(i, mode) (revents[(i)].events & mode) 479 480 # define SLAP_EVENT_IS_READ(i) SLAP_EPOLL_EVENT_CHK((i), EPOLLIN) 481 # define SLAP_EVENT_IS_WRITE(i) SLAP_EPOLL_EVENT_CHK((i), EPOLLOUT) 482 # define SLAP_EVENT_IS_LISTENER(t,i) SLAP_EPOLL_EV_LISTENER(t,revents[(i)].data.ptr) 483 # define SLAP_EVENT_LISTENER(t,i) ((Listener *)(revents[(i)].data.ptr)) 484 485 # define SLAP_EVENT_FD(t,i) SLAP_EPOLL_EV_PTRFD(t,revents[(i)].data.ptr) 486 487 # define SLAP_SOCK_INIT(t) do { \ 488 int j; \ 489 slap_daemon[t].sd_epolls = ch_calloc(1, \ 490 ( sizeof(struct epoll_event) * 2 \ 491 + sizeof(int) ) * dtblsize * 2); \ 492 slap_daemon[t].sd_index = (int *)&slap_daemon[t].sd_epolls[ 2 * dtblsize ]; \ 493 slap_daemon[t].sd_epfd = epoll_create( dtblsize / slapd_daemon_threads ); \ 494 for ( j = 0; j < dtblsize; j++ ) slap_daemon[t].sd_index[j] = -1; \ 495 } while (0) 496 497 # define SLAP_SOCK_INIT2() 498 499 # define SLAP_SOCK_DESTROY(t) do { \ 500 if ( slap_daemon[t].sd_epolls != NULL ) { \ 501 ch_free( slap_daemon[t].sd_epolls ); \ 502 slap_daemon[t].sd_epolls = NULL; \ 503 slap_daemon[t].sd_index = NULL; \ 504 close( slap_daemon[t].sd_epfd ); \ 505 } \ 506 } while ( 0 ) 507 508 # define SLAP_EVENT_DECL struct epoll_event *revents 509 510 # define SLAP_EVENT_INIT(t) do { \ 511 revents = slap_daemon[t].sd_epolls + dtblsize; \ 512 } while (0) 513 514 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 515 *(nsp) = epoll_wait( slap_daemon[t].sd_epfd, revents, \ 516 dtblsize, (tvp) ? ((tvp)->tv_sec * 1000 + (tvp)->tv_usec / 1000) : -1 ); \ 517 } while (0) 518 519 #elif defined(SLAP_X_DEVPOLL) && defined(HAVE_DEVPOLL) 520 521 /************************************************************* 522 * Use Solaris' (>= 2.7) /dev/poll infrastructure - poll(7d) * 523 *************************************************************/ 524 # define SLAP_EVENT_FNAME "/dev/poll" 525 # define SLAP_EVENTS_ARE_INDEXED 0 526 /* 527 * - sd_index is used much like with epoll() 528 * - sd_l is maintained as an array containing the address 529 * of the listener; the index is the fd itself 530 * - sd_pollfd is used to keep track of what data has been 531 * registered in /dev/poll 532 */ 533 # define SLAP_DEVPOLL_SOCK_IX(t,s) (slap_daemon[t].sd_index[(s)]) 534 # define SLAP_DEVPOLL_SOCK_LX(t,s) (slap_daemon[t].sd_l[(s)]) 535 # define SLAP_DEVPOLL_SOCK_EP(t,s) (slap_daemon[t].sd_pollfd[SLAP_DEVPOLL_SOCK_IX(t,(s))]) 536 # define SLAP_DEVPOLL_SOCK_FD(t,s) (SLAP_DEVPOLL_SOCK_EP(t,(s)).fd) 537 # define SLAP_DEVPOLL_SOCK_EV(t,s) (SLAP_DEVPOLL_SOCK_EP(t,(s)).events) 538 # define SLAP_SOCK_IS_ACTIVE(t,s) (SLAP_DEVPOLL_SOCK_IX(t,(s)) != -1) 539 # define SLAP_SOCK_NOT_ACTIVE(t,s) (SLAP_DEVPOLL_SOCK_IX(t,(s)) == -1) 540 # define SLAP_SOCK_IS_SET(t,s, mode) (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) 541 542 # define SLAP_SOCK_IS_READ(t,s) SLAP_SOCK_IS_SET(t,(s), POLLIN) 543 # define SLAP_SOCK_IS_WRITE(t,s) SLAP_SOCK_IS_SET(t,(s), POLLOUT) 544 545 /* as far as I understand, any time we need to communicate with the kernel 546 * about the number and/or properties of a file descriptor we need it to 547 * wait for, we have to rewrite the whole set */ 548 # define SLAP_DEVPOLL_WRITE_POLLFD(t,s, pfd, n, what, shdn) do { \ 549 int rc; \ 550 size_t size = (n) * sizeof( struct pollfd ); \ 551 /* FIXME: use pwrite? */ \ 552 rc = write( slap_daemon[t].sd_dpfd, (pfd), size ); \ 553 if ( rc != size ) { \ 554 int saved_errno = errno; \ 555 Debug( LDAP_DEBUG_ANY, "daemon: " SLAP_EVENT_FNAME ": " \ 556 "%s fd=%d failed errno=%d\n", \ 557 (what), (s), saved_errno ); \ 558 if ( (shdn) ) { \ 559 slapd_shutdown = 2; \ 560 } \ 561 } \ 562 } while (0) 563 564 # define SLAP_DEVPOLL_SOCK_SET(t,s, mode) do { \ 565 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_SET_%s(%d)=%d\n", \ 566 (mode) == POLLIN ? "READ" : "WRITE", (s), \ 567 ( (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) != (mode) ) ); \ 568 if ( (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) != (mode) ) { \ 569 struct pollfd pfd; \ 570 SLAP_DEVPOLL_SOCK_EV(t,(s)) |= (mode); \ 571 pfd.fd = SLAP_DEVPOLL_SOCK_FD(t,(s)); \ 572 pfd.events = /* (mode) */ SLAP_DEVPOLL_SOCK_EV(t,(s)); \ 573 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &pfd, 1, "SET", 0); \ 574 } \ 575 } while (0) 576 577 # define SLAP_DEVPOLL_SOCK_CLR(t,s, mode) do { \ 578 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_CLR_%s(%d)=%d\n", \ 579 (mode) == POLLIN ? "READ" : "WRITE", (s), \ 580 ( (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) == (mode) ) ); \ 581 if ((SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) == (mode) ) { \ 582 struct pollfd pfd[2]; \ 583 SLAP_DEVPOLL_SOCK_EV(t,(s)) &= ~(mode); \ 584 pfd[0].fd = SLAP_DEVPOLL_SOCK_FD(t,(s)); \ 585 pfd[0].events = POLLREMOVE; \ 586 pfd[1] = SLAP_DEVPOLL_SOCK_EP(t,(s)); \ 587 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &pfd[0], 2, "CLR", 0); \ 588 } \ 589 } while (0) 590 591 # define SLAP_SOCK_SET_READ(t,s) SLAP_DEVPOLL_SOCK_SET(t,s, POLLIN) 592 # define SLAP_SOCK_SET_WRITE(t,s) SLAP_DEVPOLL_SOCK_SET(t,s, POLLOUT) 593 594 # define SLAP_SOCK_CLR_READ(t,s) SLAP_DEVPOLL_SOCK_CLR(t,(s), POLLIN) 595 # define SLAP_SOCK_CLR_WRITE(t,s) SLAP_DEVPOLL_SOCK_CLR(t,(s), POLLOUT) 596 597 # define SLAP_SOCK_SET_SUSPEND(t,s) \ 598 ( slap_daemon[t].sd_suspend[SLAP_DEVPOLL_SOCK_IX(t,(s))] = 1 ) 599 # define SLAP_SOCK_CLR_SUSPEND(t,s) \ 600 ( slap_daemon[t].sd_suspend[SLAP_DEVPOLL_SOCK_IX(t,(s))] = 0 ) 601 # define SLAP_SOCK_IS_SUSPEND(t,s) \ 602 ( slap_daemon[t].sd_suspend[SLAP_DEVPOLL_SOCK_IX(t,(s))] == 1 ) 603 604 # define SLAP_DEVPOLL_EVENT_CLR(i, mode) (revents[(i)].events &= ~(mode)) 605 606 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 607 608 /* If a Listener address is provided, store that in the sd_l array. 609 * If we can't do this add, the system is out of resources and we 610 * need to shutdown. 611 */ 612 # define SLAP_SOCK_ADD(t, s, l) do { \ 613 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_ADD(%d, %p)\n", (s), (l) ); \ 614 SLAP_DEVPOLL_SOCK_IX(t,(s)) = slap_daemon[t].sd_nfds; \ 615 SLAP_DEVPOLL_SOCK_LX(t,(s)) = (l); \ 616 SLAP_DEVPOLL_SOCK_FD(t,(s)) = (s); \ 617 SLAP_DEVPOLL_SOCK_EV(t,(s)) = POLLIN; \ 618 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &SLAP_DEVPOLL_SOCK_EP(t, (s)), 1, "ADD", 1); \ 619 slap_daemon[t].sd_nfds++; \ 620 } while (0) 621 622 # define SLAP_DEVPOLL_EV_LISTENER(ptr) ((ptr) != NULL) 623 624 # define SLAP_SOCK_DEL(t,s) do { \ 625 int fd, index = SLAP_DEVPOLL_SOCK_IX(t,(s)); \ 626 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_DEL(%d)\n", (s) ); \ 627 if ( index < 0 ) break; \ 628 if ( index < slap_daemon[t].sd_nfds - 1 ) { \ 629 struct pollfd pfd = slap_daemon[t].sd_pollfd[index]; \ 630 fd = slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1].fd; \ 631 slap_daemon[t].sd_pollfd[index] = slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1]; \ 632 slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1] = pfd; \ 633 slap_daemon[t].sd_index[fd] = index; \ 634 } \ 635 slap_daemon[t].sd_index[(s)] = -1; \ 636 slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1].events = POLLREMOVE; \ 637 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1], 1, "DEL", 0); \ 638 slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1].events = 0; \ 639 slap_daemon[t].sd_nfds--; \ 640 } while (0) 641 642 # define SLAP_EVENT_CLR_READ(i) SLAP_DEVPOLL_EVENT_CLR((i), POLLIN) 643 # define SLAP_EVENT_CLR_WRITE(i) SLAP_DEVPOLL_EVENT_CLR((i), POLLOUT) 644 645 # define SLAP_DEVPOLL_EVENT_CHK(i, mode) (revents[(i)].events & (mode)) 646 647 # define SLAP_EVENT_FD(t,i) (revents[(i)].fd) 648 649 # define SLAP_EVENT_IS_READ(i) SLAP_DEVPOLL_EVENT_CHK((i), POLLIN) 650 # define SLAP_EVENT_IS_WRITE(i) SLAP_DEVPOLL_EVENT_CHK((i), POLLOUT) 651 # define SLAP_EVENT_IS_LISTENER(t,i) SLAP_DEVPOLL_EV_LISTENER(SLAP_DEVPOLL_SOCK_LX(t, SLAP_EVENT_FD(t,(i)))) 652 # define SLAP_EVENT_LISTENER(t,i) SLAP_DEVPOLL_SOCK_LX(t, SLAP_EVENT_FD(t,(i))) 653 654 # define SLAP_SOCK_DESTROY(t) do { \ 655 if ( slap_daemon[t].sd_pollfd != NULL ) { \ 656 ch_free( slap_daemon[t].sd_pollfd ); \ 657 slap_daemon[t].sd_pollfd = NULL; \ 658 slap_daemon[t].sd_index = NULL; \ 659 slap_daemon[t].sd_l = NULL; \ 660 close( slap_daemon[t].sd_dpfd ); \ 661 } \ 662 } while ( 0 ) 663 664 # define SLAP_SOCK_INIT(t) do { \ 665 slap_daemon[t].sd_pollfd = ch_calloc( 1, \ 666 ( sizeof(struct pollfd) * 2 \ 667 + sizeof( int ) \ 668 + sizeof( Listener * ) ) * dtblsize ); \ 669 slap_daemon[t].sd_index = (int *)&slap_daemon[t].sd_pollfd[ 2 * dtblsize ]; \ 670 slap_daemon[t].sd_l = (Listener **)&slap_daemon[t].sd_index[ dtblsize ]; \ 671 slap_daemon[t].sd_dpfd = open( SLAP_EVENT_FNAME, O_RDWR ); \ 672 if ( slap_daemon[t].sd_dpfd == -1 ) { \ 673 int saved_errno = errno; \ 674 Debug( LDAP_DEBUG_ANY, "daemon: " SLAP_EVENT_FNAME ": " \ 675 "open(\"" SLAP_EVENT_FNAME "\") failed errno=%d\n", \ 676 saved_errno ); \ 677 SLAP_SOCK_DESTROY(t); \ 678 return -1; \ 679 } \ 680 for ( i = 0; i < dtblsize; i++ ) { \ 681 slap_daemon[t].sd_pollfd[i].fd = -1; \ 682 slap_daemon[t].sd_index[i] = -1; \ 683 } \ 684 } while (0) 685 686 # define SLAP_SOCK_INIT2() 687 688 # define SLAP_EVENT_DECL struct pollfd *revents 689 690 # define SLAP_EVENT_INIT(t) do { \ 691 revents = &slap_daemon[t].sd_pollfd[ dtblsize ]; \ 692 } while (0) 693 694 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 695 struct dvpoll sd_dvpoll; \ 696 sd_dvpoll.dp_timeout = (tvp) ? ((tvp)->tv_sec * 1000 + (tvp)->tv_usec / 1000) : -1; \ 697 sd_dvpoll.dp_nfds = dtblsize; \ 698 sd_dvpoll.dp_fds = revents; \ 699 *(nsp) = ioctl( slap_daemon[t].sd_dpfd, DP_POLL, &sd_dvpoll ); \ 700 } while (0) 701 702 #else /* ! kqueue && ! epoll && ! /dev/poll */ 703 # ifdef HAVE_WINSOCK 704 # define SLAP_EVENT_FNAME "WSselect" 705 /* Winsock provides a "select" function but its fd_sets are 706 * actually arrays of sockets. Since these sockets are handles 707 * and not a contiguous range of small integers, we manage our 708 * own "fd" table of socket handles and use their indices as 709 * descriptors. 710 * 711 * All of our listener/connection structures use fds; the actual 712 * I/O functions use sockets. The SLAP_FD2SOCK macro in proto-slap.h 713 * handles the mapping. 714 * 715 * Despite the mapping overhead, this is about 45% more efficient 716 * than just using Winsock's select and FD_ISSET directly. 717 * 718 * Unfortunately Winsock's select implementation doesn't scale well 719 * as the number of connections increases. This probably needs to be 720 * rewritten to use the Winsock overlapped/asynchronous I/O functions. 721 */ 722 # define SLAP_EVENTS_ARE_INDEXED 1 723 # define SLAP_EVENT_DECL fd_set readfds, writefds; char *rflags 724 # define SLAP_EVENT_INIT(t) do { \ 725 int i; \ 726 FD_ZERO( &readfds ); \ 727 FD_ZERO( &writefds ); \ 728 rflags = slap_daemon[t].sd_rflags; \ 729 memset( rflags, 0, slap_daemon[t].sd_nfds ); \ 730 for ( i=0; i<slap_daemon[t].sd_nfds; i++ ) { \ 731 if ( slap_daemon[t].sd_flags[i] & SD_READ ) \ 732 FD_SET( slapd_ws_sockets[i], &readfds );\ 733 if ( slap_daemon[t].sd_flags[i] & SD_WRITE ) \ 734 FD_SET( slapd_ws_sockets[i], &writefds ); \ 735 } } while ( 0 ) 736 737 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 738 739 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 740 int i; \ 741 *(nsp) = select( SLAP_EVENT_MAX(t), &readfds, \ 742 nwriters > 0 ? &writefds : NULL, NULL, (tvp) ); \ 743 for ( i=0; i<readfds.fd_count; i++) { \ 744 int fd = slapd_sock2fd(readfds.fd_array[i]); \ 745 if ( fd >= 0 ) { \ 746 slap_daemon[t].sd_rflags[fd] = SD_READ; \ 747 if ( fd >= *(nsp)) *(nsp) = fd+1; \ 748 } \ 749 } \ 750 for ( i=0; i<writefds.fd_count; i++) { \ 751 int fd = slapd_sock2fd(writefds.fd_array[i]); \ 752 if ( fd >= 0 ) { \ 753 slap_daemon[t].sd_rflags[fd] = SD_WRITE; \ 754 if ( fd >= *(nsp)) *(nsp) = fd+1; \ 755 } \ 756 } \ 757 } while (0) 758 759 # define SLAP_EVENT_IS_READ(fd) (rflags[fd] & SD_READ) 760 # define SLAP_EVENT_IS_WRITE(fd) (rflags[fd] & SD_WRITE) 761 762 # define SLAP_EVENT_CLR_READ(fd) rflags[fd] &= ~SD_READ 763 # define SLAP_EVENT_CLR_WRITE(fd) rflags[fd] &= ~SD_WRITE 764 765 # define SLAP_SOCK_INIT(t) do { \ 766 if (!t) { \ 767 ldap_pvt_thread_mutex_init( &slapd_ws_mutex ); \ 768 slapd_ws_sockets = ch_malloc( dtblsize * ( sizeof(SOCKET) + 2)); \ 769 memset( slapd_ws_sockets, -1, dtblsize * sizeof(SOCKET) ); \ 770 } \ 771 slap_daemon[t].sd_flags = (char *)(slapd_ws_sockets + dtblsize); \ 772 slap_daemon[t].sd_rflags = slap_daemon[t].sd_flags + dtblsize; \ 773 memset( slap_daemon[t].sd_flags, 0, dtblsize ); \ 774 slapd_ws_sockets[t*2] = wake_sds[t][0]; \ 775 slapd_ws_sockets[t*2+1] = wake_sds[t][1]; \ 776 wake_sds[t][0] = t*2; \ 777 wake_sds[t][1] = t*2+1; \ 778 slap_daemon[t].sd_nfds = t*2 + 2; \ 779 } while ( 0 ) 780 781 # define SLAP_SOCK_INIT2() 782 783 # define SLAP_SOCK_DESTROY(t) do { \ 784 ch_free( slapd_ws_sockets ); slapd_ws_sockets = NULL; \ 785 slap_daemon[t].sd_flags = NULL; \ 786 slap_daemon[t].sd_rflags = NULL; \ 787 ldap_pvt_thread_mutex_destroy( &slapd_ws_mutex ); \ 788 } while ( 0 ) 789 790 # define SLAP_SOCK_IS_ACTIVE(t,fd) ( slap_daemon[t].sd_flags[fd] & SD_ACTIVE ) 791 # define SLAP_SOCK_IS_READ(t,fd) ( slap_daemon[t].sd_flags[fd] & SD_READ ) 792 # define SLAP_SOCK_IS_WRITE(t,fd) ( slap_daemon[t].sd_flags[fd] & SD_WRITE ) 793 # define SLAP_SOCK_NOT_ACTIVE(t,fd) (!slap_daemon[t].sd_flags[fd]) 794 795 # define SLAP_SOCK_SET_READ(t,fd) ( slap_daemon[t].sd_flags[fd] |= SD_READ ) 796 # define SLAP_SOCK_SET_WRITE(t,fd) ( slap_daemon[t].sd_flags[fd] |= SD_WRITE ) 797 798 # define SLAP_SELECT_ADDTEST(t,s) do { \ 799 if ((s) >= slap_daemon[t].sd_nfds) slap_daemon[t].sd_nfds = (s)+1; \ 800 } while (0) 801 802 # define SLAP_SOCK_CLR_READ(t,fd) ( slap_daemon[t].sd_flags[fd] &= ~SD_READ ) 803 # define SLAP_SOCK_CLR_WRITE(t,fd) ( slap_daemon[t].sd_flags[fd] &= ~SD_WRITE ) 804 805 # define SLAP_SOCK_ADD(t,s, l) do { \ 806 SLAP_SELECT_ADDTEST(t,(s)); \ 807 slap_daemon[t].sd_flags[s] = SD_ACTIVE|SD_READ; \ 808 } while ( 0 ) 809 810 # define SLAP_SOCK_DEL(t,s) do { \ 811 slap_daemon[t].sd_flags[s] = 0; \ 812 slapd_sockdel( s ); \ 813 } while ( 0 ) 814 815 # else /* !HAVE_WINSOCK */ 816 817 /************************************** 818 * Use select system call - select(2) * 819 **************************************/ 820 # define SLAP_EVENT_FNAME "select" 821 /* select */ 822 # define SLAP_EVENTS_ARE_INDEXED 1 823 # define SLAP_EVENT_DECL fd_set readfds, writefds 824 825 # define SLAP_EVENT_INIT(t) do { \ 826 AC_MEMCPY( &readfds, &slap_daemon[t].sd_readers, sizeof(fd_set) ); \ 827 if ( nwriters ) { \ 828 AC_MEMCPY( &writefds, &slap_daemon[t].sd_writers, sizeof(fd_set) ); \ 829 } else { \ 830 FD_ZERO( &writefds ); \ 831 } \ 832 } while (0) 833 834 # ifdef FD_SETSIZE 835 # define SLAP_SELECT_CHK_SETSIZE do { \ 836 if (dtblsize > FD_SETSIZE) dtblsize = FD_SETSIZE; \ 837 } while (0) 838 # else /* ! FD_SETSIZE */ 839 # define SLAP_SELECT_CHK_SETSIZE do { ; } while (0) 840 # endif /* ! FD_SETSIZE */ 841 842 # define SLAP_SOCK_INIT(t) do { \ 843 SLAP_SELECT_CHK_SETSIZE; \ 844 FD_ZERO(&slap_daemon[t].sd_actives); \ 845 FD_ZERO(&slap_daemon[t].sd_readers); \ 846 FD_ZERO(&slap_daemon[t].sd_writers); \ 847 } while (0) 848 849 # define SLAP_SOCK_INIT2() 850 851 # define SLAP_SOCK_DESTROY(t) 852 853 # define SLAP_SOCK_IS_ACTIVE(t,fd) FD_ISSET((fd), &slap_daemon[t].sd_actives) 854 # define SLAP_SOCK_IS_READ(t,fd) FD_ISSET((fd), &slap_daemon[t].sd_readers) 855 # define SLAP_SOCK_IS_WRITE(t,fd) FD_ISSET((fd), &slap_daemon[t].sd_writers) 856 857 # define SLAP_SOCK_NOT_ACTIVE(t,fd) (!SLAP_SOCK_IS_ACTIVE(t,fd) && \ 858 !SLAP_SOCK_IS_READ(t,fd) && !SLAP_SOCK_IS_WRITE(t,fd)) 859 860 # define SLAP_SOCK_SET_READ(t,fd) FD_SET((fd), &slap_daemon[t].sd_readers) 861 # define SLAP_SOCK_SET_WRITE(t,fd) FD_SET((fd), &slap_daemon[t].sd_writers) 862 863 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 864 # define SLAP_SELECT_ADDTEST(t,s) do { \ 865 if ((s) >= slap_daemon[t].sd_nfds) slap_daemon[t].sd_nfds = (s)+1; \ 866 } while (0) 867 868 # define SLAP_SOCK_CLR_READ(t,fd) FD_CLR((fd), &slap_daemon[t].sd_readers) 869 # define SLAP_SOCK_CLR_WRITE(t,fd) FD_CLR((fd), &slap_daemon[t].sd_writers) 870 871 # define SLAP_SOCK_ADD(t,s, l) do { \ 872 SLAP_SELECT_ADDTEST(t,(s)); \ 873 FD_SET((s), &slap_daemon[t].sd_actives); \ 874 FD_SET((s), &slap_daemon[t].sd_readers); \ 875 } while (0) 876 877 # define SLAP_SOCK_DEL(t,s) do { \ 878 FD_CLR((s), &slap_daemon[t].sd_actives); \ 879 FD_CLR((s), &slap_daemon[t].sd_readers); \ 880 FD_CLR((s), &slap_daemon[t].sd_writers); \ 881 } while (0) 882 883 # define SLAP_EVENT_IS_READ(fd) FD_ISSET((fd), &readfds) 884 # define SLAP_EVENT_IS_WRITE(fd) FD_ISSET((fd), &writefds) 885 886 # define SLAP_EVENT_CLR_READ(fd) FD_CLR((fd), &readfds) 887 # define SLAP_EVENT_CLR_WRITE(fd) FD_CLR((fd), &writefds) 888 889 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 890 *(nsp) = select( SLAP_EVENT_MAX(t), &readfds, \ 891 nwriters > 0 ? &writefds : NULL, NULL, (tvp) ); \ 892 } while (0) 893 # endif /* !HAVE_WINSOCK */ 894 #endif /* ! kqueue && ! epoll && ! /dev/poll */ 895 896 #ifdef HAVE_SLP 897 /* 898 * SLP related functions 899 */ 900 #include <slp.h> 901 902 #define LDAP_SRVTYPE_PREFIX "service:ldap://" 903 #define LDAPS_SRVTYPE_PREFIX "service:ldaps://" 904 static char** slapd_srvurls = NULL; 905 static SLPHandle slapd_hslp = 0; 906 int slapd_register_slp = 0; 907 const char *slapd_slp_attrs = NULL; 908 909 static SLPError slapd_slp_cookie; 910 911 static void 912 slapd_slp_init( const char* urls ) 913 { 914 int i; 915 SLPError err; 916 917 slapd_srvurls = ldap_str2charray( urls, " " ); 918 919 if ( slapd_srvurls == NULL ) return; 920 921 /* find and expand INADDR_ANY URLs */ 922 for ( i = 0; slapd_srvurls[i] != NULL; i++ ) { 923 if ( strcmp( slapd_srvurls[i], "ldap:///" ) == 0 ) { 924 slapd_srvurls[i] = (char *) ch_realloc( slapd_srvurls[i], 925 global_host_bv.bv_len + 926 sizeof( LDAP_SRVTYPE_PREFIX ) ); 927 strcpy( lutil_strcopy(slapd_srvurls[i], 928 LDAP_SRVTYPE_PREFIX ), global_host_bv.bv_val ); 929 } else if ( strcmp( slapd_srvurls[i], "ldaps:///" ) == 0 ) { 930 slapd_srvurls[i] = (char *) ch_realloc( slapd_srvurls[i], 931 global_host_bv.bv_len + 932 sizeof( LDAPS_SRVTYPE_PREFIX ) ); 933 strcpy( lutil_strcopy(slapd_srvurls[i], 934 LDAPS_SRVTYPE_PREFIX ), global_host_bv.bv_val ); 935 } 936 } 937 938 /* open the SLP handle */ 939 err = SLPOpen( "en", 0, &slapd_hslp ); 940 941 if ( err != SLP_OK ) { 942 Debug( LDAP_DEBUG_CONNS, "daemon: SLPOpen() failed with %ld\n", 943 (long)err ); 944 } 945 } 946 947 static void 948 slapd_slp_deinit( void ) 949 { 950 if ( slapd_srvurls == NULL ) return; 951 952 ldap_charray_free( slapd_srvurls ); 953 slapd_srvurls = NULL; 954 955 /* close the SLP handle */ 956 SLPClose( slapd_hslp ); 957 } 958 959 static void 960 slapd_slp_regreport( 961 SLPHandle hslp, 962 SLPError errcode, 963 void *cookie ) 964 { 965 /* return the error code in the cookie */ 966 *(SLPError*)cookie = errcode; 967 } 968 969 static void 970 slapd_slp_reg() 971 { 972 int i; 973 SLPError err; 974 975 if ( slapd_srvurls == NULL ) return; 976 977 for ( i = 0; slapd_srvurls[i] != NULL; i++ ) { 978 if ( strncmp( slapd_srvurls[i], LDAP_SRVTYPE_PREFIX, 979 sizeof( LDAP_SRVTYPE_PREFIX ) - 1 ) == 0 || 980 strncmp( slapd_srvurls[i], LDAPS_SRVTYPE_PREFIX, 981 sizeof( LDAPS_SRVTYPE_PREFIX ) - 1 ) == 0 ) 982 { 983 err = SLPReg( slapd_hslp, 984 slapd_srvurls[i], 985 SLP_LIFETIME_MAXIMUM, 986 "ldap", 987 (slapd_slp_attrs) ? slapd_slp_attrs : "", 988 SLP_TRUE, 989 slapd_slp_regreport, 990 &slapd_slp_cookie ); 991 992 if ( err != SLP_OK || slapd_slp_cookie != SLP_OK ) { 993 Debug( LDAP_DEBUG_CONNS, 994 "daemon: SLPReg(%s) failed with %ld, cookie = %ld\n", 995 slapd_srvurls[i], (long)err, (long)slapd_slp_cookie ); 996 } 997 } 998 } 999 } 1000 1001 static void 1002 slapd_slp_dereg( void ) 1003 { 1004 int i; 1005 SLPError err; 1006 1007 if ( slapd_srvurls == NULL ) return; 1008 1009 for ( i = 0; slapd_srvurls[i] != NULL; i++ ) { 1010 err = SLPDereg( slapd_hslp, 1011 slapd_srvurls[i], 1012 slapd_slp_regreport, 1013 &slapd_slp_cookie ); 1014 1015 if ( err != SLP_OK || slapd_slp_cookie != SLP_OK ) { 1016 Debug( LDAP_DEBUG_CONNS, 1017 "daemon: SLPDereg(%s) failed with %ld, cookie = %ld\n", 1018 slapd_srvurls[i], (long)err, (long)slapd_slp_cookie ); 1019 } 1020 } 1021 } 1022 #endif /* HAVE_SLP */ 1023 1024 #ifdef HAVE_WINSOCK 1025 /* Manage the descriptor to socket table */ 1026 ber_socket_t 1027 slapd_socknew( ber_socket_t s ) 1028 { 1029 ber_socket_t i; 1030 ldap_pvt_thread_mutex_lock( &slapd_ws_mutex ); 1031 for ( i = 0; i < dtblsize && slapd_ws_sockets[i] != INVALID_SOCKET; i++ ); 1032 if ( i == dtblsize ) { 1033 WSASetLastError( WSAEMFILE ); 1034 } else { 1035 slapd_ws_sockets[i] = s; 1036 } 1037 ldap_pvt_thread_mutex_unlock( &slapd_ws_mutex ); 1038 return i; 1039 } 1040 1041 void 1042 slapd_sockdel( ber_socket_t s ) 1043 { 1044 ldap_pvt_thread_mutex_lock( &slapd_ws_mutex ); 1045 slapd_ws_sockets[s] = INVALID_SOCKET; 1046 ldap_pvt_thread_mutex_unlock( &slapd_ws_mutex ); 1047 } 1048 1049 ber_socket_t 1050 slapd_sock2fd( ber_socket_t s ) 1051 { 1052 ber_socket_t i; 1053 for ( i=0; i<dtblsize && slapd_ws_sockets[i] != s; i++); 1054 if ( i == dtblsize ) 1055 i = -1; 1056 return i; 1057 } 1058 #endif 1059 1060 #ifdef DEBUG_CLOSE 1061 /* Was used to find a bug causing slapd's descriptors to be closed 1062 * out from under it. Tracked it down to a long-standing (from 2009) 1063 * bug in Heimdal https://github.com/heimdal/heimdal/issues/431 . 1064 * Leaving this here for future use, if necessary. 1065 */ 1066 #include <dlfcn.h> 1067 #ifndef RTLD_NEXT 1068 #define RTLD_NEXT (void *)-1L 1069 #endif 1070 static char *newconns; 1071 typedef int (closefunc)(int fd); 1072 static closefunc *close_ptr; 1073 int close( int s ) 1074 { 1075 if (newconns) { 1076 Debug( LDAP_DEBUG_CONNS, 1077 "daemon: close(%d)\n", s ); 1078 if (s >= 0 && s < dtblsize && newconns[s]) 1079 assert(newconns[s] == 2); 1080 } 1081 return close_ptr ? close_ptr(s) : -1; 1082 } 1083 1084 void slapd_debug_close() 1085 { 1086 if (dtblsize) 1087 newconns = ch_calloc(1, dtblsize); 1088 close_ptr = dlsym(RTLD_NEXT, "close"); 1089 } 1090 1091 void slapd_set_close(int fd) 1092 { 1093 newconns[fd] = 3; 1094 } 1095 #define SETUP_CLOSE() slapd_debug_close() 1096 #define SET_CLOSE(fd) slapd_set_close(fd) 1097 #define CLR_CLOSE(fd) if (newconns[fd]) newconns[fd]-- 1098 #else 1099 #define SETUP_CLOSE(fd) 1100 #define SET_CLOSE(fd) 1101 #define CLR_CLOSE(fd) 1102 #endif 1103 1104 /* 1105 * Add a descriptor to daemon control 1106 * 1107 * If isactive, the descriptor is a live server session and is subject 1108 * to idletimeout control. Otherwise, the descriptor is a passive 1109 * listener or an outbound client session, and not subject to 1110 * idletimeout. The underlying event handler may record the Listener 1111 * argument to differentiate Listener's from real sessions. 1112 */ 1113 static void 1114 slapd_add( ber_socket_t s, int isactive, Listener *sl, int id ) 1115 { 1116 if (id < 0) 1117 id = DAEMON_ID(s); 1118 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1119 1120 assert( SLAP_SOCK_NOT_ACTIVE(id, s) ); 1121 1122 if ( isactive ) slap_daemon[id].sd_nactives++; 1123 1124 SLAP_SOCK_ADD(id, s, sl); 1125 1126 Debug( LDAP_DEBUG_CONNS, "daemon: added %ldr%s listener=%p\n", 1127 (long) s, isactive ? " (active)" : "", (void *)sl ); 1128 1129 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1130 1131 WAKE_LISTENER(id,1); 1132 } 1133 1134 /* 1135 * Remove the descriptor from daemon control 1136 */ 1137 void 1138 slapd_remove( 1139 ber_socket_t s, 1140 Sockbuf *sb, 1141 int wasactive, 1142 int wake, 1143 int locked ) 1144 { 1145 int waswriter; 1146 int wasreader; 1147 int id = DAEMON_ID(s); 1148 1149 if ( !locked ) 1150 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1151 1152 assert( SLAP_SOCK_IS_ACTIVE( id, s )); 1153 1154 if ( wasactive ) slap_daemon[id].sd_nactives--; 1155 1156 waswriter = SLAP_SOCK_IS_WRITE(id, s); 1157 wasreader = SLAP_SOCK_IS_READ(id, s); 1158 1159 Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n", 1160 (long) s, 1161 wasreader ? "r" : "", 1162 waswriter ? "w" : "" ); 1163 1164 if ( waswriter ) slap_daemon[id].sd_nwriters--; 1165 1166 SLAP_SOCK_DEL(id, s); 1167 CLR_CLOSE(s); 1168 1169 if ( sb ) 1170 ber_sockbuf_free(sb); 1171 1172 /* If we ran out of file descriptors, we dropped a listener from 1173 * the select() loop. Now that we're removing a session from our 1174 * control, we can try to resume a dropped listener to use. 1175 */ 1176 ldap_pvt_thread_mutex_lock( &emfile_mutex ); 1177 if ( emfile && listening ) { 1178 int i; 1179 for ( i = 0; slap_listeners[i] != NULL; i++ ) { 1180 Listener *lr = slap_listeners[i]; 1181 1182 if ( lr->sl_sd == AC_SOCKET_INVALID ) continue; 1183 if ( lr->sl_sd == s ) continue; 1184 if ( lr->sl_mute ) { 1185 lr->sl_mute = 0; 1186 emfile--; 1187 if ( DAEMON_ID(lr->sl_sd) != id ) 1188 WAKE_LISTENER(DAEMON_ID(lr->sl_sd), wake); 1189 break; 1190 } 1191 } 1192 /* Walked the entire list without enabling anything; emfile 1193 * counter is stale. Reset it. 1194 */ 1195 if ( slap_listeners[i] == NULL ) emfile = 0; 1196 } 1197 ldap_pvt_thread_mutex_unlock( &emfile_mutex ); 1198 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1199 WAKE_LISTENER(id, wake || slapd_gentle_shutdown == 2); 1200 } 1201 1202 void 1203 slapd_clr_write( ber_socket_t s, int wake ) 1204 { 1205 int id = DAEMON_ID(s); 1206 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1207 1208 if ( SLAP_SOCK_IS_WRITE( id, s )) { 1209 assert( SLAP_SOCK_IS_ACTIVE( id, s )); 1210 1211 SLAP_SOCK_CLR_WRITE( id, s ); 1212 slap_daemon[id].sd_nwriters--; 1213 } 1214 1215 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1216 WAKE_LISTENER(id,wake); 1217 } 1218 1219 void 1220 slapd_set_write( ber_socket_t s, int wake ) 1221 { 1222 int id = DAEMON_ID(s); 1223 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1224 1225 assert( SLAP_SOCK_IS_ACTIVE( id, s )); 1226 1227 if ( !SLAP_SOCK_IS_WRITE( id, s )) { 1228 SLAP_SOCK_SET_WRITE( id, s ); 1229 slap_daemon[id].sd_nwriters++; 1230 } 1231 1232 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1233 WAKE_LISTENER(id,wake); 1234 } 1235 1236 int 1237 slapd_clr_read( ber_socket_t s, int wake ) 1238 { 1239 int rc = 1; 1240 int id = DAEMON_ID(s); 1241 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1242 1243 if ( SLAP_SOCK_IS_ACTIVE( id, s )) { 1244 SLAP_SOCK_CLR_READ( id, s ); 1245 rc = 0; 1246 } 1247 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1248 if ( !rc ) 1249 WAKE_LISTENER(id,wake); 1250 return rc; 1251 } 1252 1253 void 1254 slapd_set_read( ber_socket_t s, int wake ) 1255 { 1256 int do_wake = 1; 1257 int id = DAEMON_ID(s); 1258 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1259 1260 if( SLAP_SOCK_IS_ACTIVE( id, s ) && !SLAP_SOCK_IS_READ( id, s )) { 1261 SLAP_SOCK_SET_READ( id, s ); 1262 } else { 1263 do_wake = 0; 1264 } 1265 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1266 if ( do_wake ) 1267 WAKE_LISTENER(id,wake); 1268 } 1269 1270 static void 1271 slapd_close( ber_socket_t s ) 1272 { 1273 Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n", 1274 (long) s ); 1275 CLR_CLOSE( SLAP_FD2SOCK(s) ); 1276 tcp_close( SLAP_FD2SOCK(s) ); 1277 #ifdef HAVE_WINSOCK 1278 slapd_sockdel( s ); 1279 #endif 1280 } 1281 1282 void 1283 slapd_shutsock( ber_socket_t s ) 1284 { 1285 Debug( LDAP_DEBUG_CONNS, "daemon: shutdown socket %ld\n", 1286 (long) s ); 1287 shutdown( SLAP_FD2SOCK(s), 2 ); 1288 } 1289 1290 static void 1291 slap_free_listener_addresses( struct sockaddr **sal ) 1292 { 1293 struct sockaddr **sap; 1294 if (sal == NULL) return; 1295 for (sap = sal; *sap != NULL; sap++) ch_free(*sap); 1296 ch_free(sal); 1297 } 1298 1299 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD) 1300 static int 1301 get_url_perms( 1302 char **exts, 1303 mode_t *perms, 1304 int *crit ) 1305 { 1306 int i; 1307 1308 assert( exts != NULL ); 1309 assert( perms != NULL ); 1310 assert( crit != NULL ); 1311 1312 *crit = 0; 1313 for ( i = 0; exts[ i ]; i++ ) { 1314 char *type = exts[ i ]; 1315 int c = 0; 1316 1317 if ( type[ 0 ] == '!' ) { 1318 c = 1; 1319 type++; 1320 } 1321 1322 if ( strncasecmp( type, LDAPI_MOD_URLEXT "=", 1323 sizeof(LDAPI_MOD_URLEXT "=") - 1 ) == 0 ) 1324 { 1325 char *value = type + ( sizeof(LDAPI_MOD_URLEXT "=") - 1 ); 1326 mode_t p = 0; 1327 int j; 1328 1329 switch (strlen(value)) { 1330 case 4: 1331 /* skip leading '0' */ 1332 if ( value[ 0 ] != '0' ) return LDAP_OTHER; 1333 value++; 1334 1335 case 3: 1336 for ( j = 0; j < 3; j++) { 1337 int v; 1338 1339 v = value[ j ] - '0'; 1340 1341 if ( v < 0 || v > 7 ) return LDAP_OTHER; 1342 1343 p |= v << 3*(2-j); 1344 } 1345 break; 1346 1347 case 10: 1348 for ( j = 1; j < 10; j++ ) { 1349 static mode_t m[] = { 0, 1350 S_IRUSR, S_IWUSR, S_IXUSR, 1351 S_IRGRP, S_IWGRP, S_IXGRP, 1352 S_IROTH, S_IWOTH, S_IXOTH 1353 }; 1354 static const char c[] = "-rwxrwxrwx"; 1355 1356 if ( value[ j ] == c[ j ] ) { 1357 p |= m[ j ]; 1358 1359 } else if ( value[ j ] != '-' ) { 1360 return LDAP_OTHER; 1361 } 1362 } 1363 break; 1364 1365 default: 1366 return LDAP_OTHER; 1367 } 1368 1369 *crit = c; 1370 *perms = p; 1371 1372 return LDAP_SUCCESS; 1373 } 1374 } 1375 1376 return LDAP_OTHER; 1377 } 1378 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */ 1379 1380 /* port = 0 indicates AF_LOCAL */ 1381 static int 1382 slap_get_listener_addresses( 1383 const char *host, 1384 unsigned short port, 1385 struct sockaddr ***sal ) 1386 { 1387 struct sockaddr **sap; 1388 1389 #ifdef LDAP_PF_LOCAL 1390 if ( port == 0 ) { 1391 sap = *sal = ch_malloc(2 * sizeof(void *)); 1392 1393 *sap = ch_malloc(sizeof(struct sockaddr_un)); 1394 sap[1] = NULL; 1395 1396 if ( strlen(host) > 1397 (sizeof(((struct sockaddr_un *)*sap)->sun_path) - 1) ) 1398 { 1399 Debug( LDAP_DEBUG_ANY, 1400 "daemon: domain socket path (%s) too long in URL", 1401 host ); 1402 goto errexit; 1403 } 1404 1405 (void)memset( (void *)*sap, '\0', sizeof(struct sockaddr_un) ); 1406 (*sap)->sa_family = AF_LOCAL; 1407 strcpy( ((struct sockaddr_un *)*sap)->sun_path, host ); 1408 } else 1409 #endif /* LDAP_PF_LOCAL */ 1410 { 1411 #ifdef HAVE_GETADDRINFO 1412 struct addrinfo hints, *res, *sai; 1413 int n, err; 1414 char serv[7]; 1415 1416 memset( &hints, '\0', sizeof(hints) ); 1417 hints.ai_flags = AI_PASSIVE; 1418 hints.ai_socktype = SOCK_STREAM; 1419 hints.ai_family = slap_inet4or6; 1420 snprintf(serv, sizeof serv, "%d", port); 1421 1422 if ( (err = getaddrinfo(host, serv, &hints, &res)) ) { 1423 Debug( LDAP_DEBUG_ANY, "daemon: getaddrinfo() failed: %s\n", 1424 AC_GAI_STRERROR(err) ); 1425 return -1; 1426 } 1427 1428 sai = res; 1429 for (n=2; (sai = sai->ai_next) != NULL; n++) { 1430 /* EMPTY */ ; 1431 } 1432 sap = *sal = ch_calloc(n, sizeof(void *)); 1433 *sap = NULL; 1434 1435 for ( sai=res; sai; sai=sai->ai_next ) { 1436 if( sai->ai_addr == NULL ) { 1437 Debug( LDAP_DEBUG_ANY, "slap_get_listener_addresses: " 1438 "getaddrinfo ai_addr is NULL?\n" ); 1439 freeaddrinfo(res); 1440 goto errexit; 1441 } 1442 1443 switch (sai->ai_family) { 1444 # ifdef LDAP_PF_INET6 1445 case AF_INET6: 1446 *sap = ch_malloc(sizeof(struct sockaddr_in6)); 1447 *(struct sockaddr_in6 *)*sap = 1448 *((struct sockaddr_in6 *)sai->ai_addr); 1449 break; 1450 # endif /* LDAP_PF_INET6 */ 1451 case AF_INET: 1452 *sap = ch_malloc(sizeof(struct sockaddr_in)); 1453 *(struct sockaddr_in *)*sap = 1454 *((struct sockaddr_in *)sai->ai_addr); 1455 break; 1456 default: 1457 *sap = NULL; 1458 break; 1459 } 1460 1461 if (*sap != NULL) { 1462 (*sap)->sa_family = sai->ai_family; 1463 sap++; 1464 *sap = NULL; 1465 } 1466 } 1467 1468 freeaddrinfo(res); 1469 1470 #else /* ! HAVE_GETADDRINFO */ 1471 int i, n = 1; 1472 struct in_addr in; 1473 struct hostent *he = NULL; 1474 1475 if ( host == NULL ) { 1476 in.s_addr = htonl(INADDR_ANY); 1477 1478 } else if ( !inet_aton( host, &in ) ) { 1479 he = gethostbyname( host ); 1480 if( he == NULL ) { 1481 Debug( LDAP_DEBUG_ANY, 1482 "daemon: invalid host %s", host ); 1483 return -1; 1484 } 1485 for (n = 0; he->h_addr_list[n]; n++) /* empty */; 1486 } 1487 1488 sap = *sal = ch_malloc((n+1) * sizeof(void *)); 1489 1490 for ( i = 0; i<n; i++ ) { 1491 sap[i] = ch_calloc(1, sizeof(struct sockaddr_in)); 1492 sap[i]->sa_family = AF_INET; 1493 ((struct sockaddr_in *)sap[i])->sin_port = htons(port); 1494 AC_MEMCPY( &((struct sockaddr_in *)sap[i])->sin_addr, 1495 he ? (struct in_addr *)he->h_addr_list[i] : &in, 1496 sizeof(struct in_addr) ); 1497 } 1498 sap[i] = NULL; 1499 #endif /* ! HAVE_GETADDRINFO */ 1500 } 1501 1502 return 0; 1503 1504 errexit: 1505 slap_free_listener_addresses(*sal); 1506 return -1; 1507 } 1508 1509 static int 1510 slap_open_listener( 1511 const char* url, 1512 int *listeners, 1513 int *cur ) 1514 { 1515 int num, tmp, rc; 1516 Listener l; 1517 Listener *li; 1518 LDAPURLDesc *lud; 1519 unsigned short port; 1520 int err, addrlen = 0; 1521 struct sockaddr **sal = NULL, **psal; 1522 int socktype = SOCK_STREAM; /* default to COTS */ 1523 ber_socket_t s; 1524 char ebuf[128]; 1525 1526 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD) 1527 /* 1528 * use safe defaults 1529 */ 1530 int crit = 1; 1531 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */ 1532 1533 rc = ldap_url_parse( url, &lud ); 1534 1535 if( rc != LDAP_URL_SUCCESS ) { 1536 Debug( LDAP_DEBUG_ANY, 1537 "daemon: listen URL \"%s\" parse error=%d\n", 1538 url, rc ); 1539 return rc; 1540 } 1541 1542 l.sl_url.bv_val = NULL; 1543 l.sl_mute = 0; 1544 l.sl_busy = 0; 1545 1546 #ifndef HAVE_TLS 1547 if( ldap_pvt_url_scheme2tls( lud->lud_scheme ) ) { 1548 Debug( LDAP_DEBUG_ANY, "daemon: TLS not supported (%s)\n", 1549 url ); 1550 ldap_free_urldesc( lud ); 1551 return -1; 1552 } 1553 1554 if(! lud->lud_port ) lud->lud_port = LDAP_PORT; 1555 1556 #else /* HAVE_TLS */ 1557 l.sl_is_tls = ldap_pvt_url_scheme2tls( lud->lud_scheme ); 1558 1559 if(! lud->lud_port ) { 1560 lud->lud_port = l.sl_is_tls ? LDAPS_PORT : LDAP_PORT; 1561 } 1562 #endif /* HAVE_TLS */ 1563 1564 l.sl_is_proxied = ldap_pvt_url_scheme2proxied( lud->lud_scheme ); 1565 1566 #ifdef LDAP_TCP_BUFFER 1567 l.sl_tcp_rmem = 0; 1568 l.sl_tcp_wmem = 0; 1569 #endif /* LDAP_TCP_BUFFER */ 1570 1571 port = (unsigned short) lud->lud_port; 1572 1573 tmp = ldap_pvt_url_scheme2proto(lud->lud_scheme); 1574 if ( tmp == LDAP_PROTO_IPC ) { 1575 #ifdef LDAP_PF_LOCAL 1576 if ( lud->lud_host == NULL || lud->lud_host[0] == '\0' ) { 1577 err = slap_get_listener_addresses(LDAPI_SOCK, 0, &sal); 1578 } else { 1579 err = slap_get_listener_addresses(lud->lud_host, 0, &sal); 1580 } 1581 #else /* ! LDAP_PF_LOCAL */ 1582 1583 Debug( LDAP_DEBUG_ANY, "daemon: URL scheme not supported: %s", 1584 url ); 1585 ldap_free_urldesc( lud ); 1586 return -1; 1587 #endif /* ! LDAP_PF_LOCAL */ 1588 } else { 1589 if( lud->lud_host == NULL || lud->lud_host[0] == '\0' 1590 || strcmp(lud->lud_host, "*") == 0 ) 1591 { 1592 err = slap_get_listener_addresses(NULL, port, &sal); 1593 } else { 1594 err = slap_get_listener_addresses(lud->lud_host, port, &sal); 1595 } 1596 } 1597 1598 #ifdef LDAP_CONNECTIONLESS 1599 l.sl_is_udp = ( tmp == LDAP_PROTO_UDP ); 1600 #endif /* LDAP_CONNECTIONLESS */ 1601 1602 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD) 1603 if ( lud->lud_exts ) { 1604 err = get_url_perms( lud->lud_exts, &l.sl_perms, &crit ); 1605 } else { 1606 l.sl_perms = S_IRWXU | S_IRWXO; 1607 } 1608 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */ 1609 1610 if ( lud->lud_dn && lud->lud_dn[0] ) { 1611 sprintf( (char *)url, "%s://%s/", lud->lud_scheme, lud->lud_host ); 1612 Debug( LDAP_DEBUG_ANY, "daemon: listener URL %s<junk> DN must be absent (%s)\n", 1613 url, lud->lud_dn ); 1614 ldap_free_urldesc( lud ); 1615 return -1; 1616 } 1617 1618 ldap_free_urldesc( lud ); 1619 if ( err ) { 1620 slap_free_listener_addresses(sal); 1621 return -1; 1622 } 1623 1624 /* If we got more than one address returned, we need to make space 1625 * for it in the slap_listeners array. 1626 */ 1627 for ( num=0; sal[num]; num++ ) /* empty */; 1628 if ( num > 1 ) { 1629 *listeners += num-1; 1630 slap_listeners = ch_realloc( slap_listeners, 1631 (*listeners + 1) * sizeof(Listener *) ); 1632 } 1633 1634 psal = sal; 1635 while ( *sal != NULL ) { 1636 char *af; 1637 switch( (*sal)->sa_family ) { 1638 case AF_INET: 1639 af = "IPv4"; 1640 break; 1641 #ifdef LDAP_PF_INET6 1642 case AF_INET6: 1643 af = "IPv6"; 1644 break; 1645 #endif /* LDAP_PF_INET6 */ 1646 #ifdef LDAP_PF_LOCAL 1647 case AF_LOCAL: 1648 af = "Local"; 1649 break; 1650 #endif /* LDAP_PF_LOCAL */ 1651 default: 1652 sal++; 1653 continue; 1654 } 1655 1656 #ifdef LDAP_CONNECTIONLESS 1657 if( l.sl_is_udp ) socktype = SOCK_DGRAM; 1658 #endif /* LDAP_CONNECTIONLESS */ 1659 1660 s = socket( (*sal)->sa_family, socktype, 0); 1661 if ( s == AC_SOCKET_INVALID ) { 1662 int err = sock_errno(); 1663 Debug( LDAP_DEBUG_ANY, 1664 "daemon: %s socket() failed errno=%d (%s)\n", 1665 af, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 1666 sal++; 1667 continue; 1668 } 1669 l.sl_sd = SLAP_SOCKNEW( s ); 1670 1671 if ( l.sl_sd >= dtblsize ) { 1672 Debug( LDAP_DEBUG_ANY, 1673 "daemon: listener descriptor %ld is too great %ld\n", 1674 (long) l.sl_sd, (long) dtblsize ); 1675 tcp_close( s ); 1676 sal++; 1677 continue; 1678 } 1679 1680 #ifdef LDAP_PF_LOCAL 1681 if ( (*sal)->sa_family == AF_LOCAL ) { 1682 unlink( ((struct sockaddr_un *)*sal)->sun_path ); 1683 } else 1684 #endif /* LDAP_PF_LOCAL */ 1685 { 1686 #ifdef SO_REUSEADDR 1687 /* enable address reuse */ 1688 tmp = 1; 1689 rc = setsockopt( s, SOL_SOCKET, SO_REUSEADDR, 1690 (char *) &tmp, sizeof(tmp) ); 1691 if ( rc == AC_SOCKET_ERROR ) { 1692 int err = sock_errno(); 1693 Debug( LDAP_DEBUG_ANY, "slapd(%ld): " 1694 "setsockopt(SO_REUSEADDR) failed errno=%d (%s)\n", 1695 (long) l.sl_sd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 1696 } 1697 #endif /* SO_REUSEADDR */ 1698 } 1699 1700 switch( (*sal)->sa_family ) { 1701 case AF_INET: 1702 addrlen = sizeof(struct sockaddr_in); 1703 break; 1704 #ifdef LDAP_PF_INET6 1705 case AF_INET6: 1706 #ifdef IPV6_V6ONLY 1707 /* Try to use IPv6 sockets for IPv6 only */ 1708 tmp = 1; 1709 rc = setsockopt( s , IPPROTO_IPV6, IPV6_V6ONLY, 1710 (char *) &tmp, sizeof(tmp) ); 1711 if ( rc == AC_SOCKET_ERROR ) { 1712 int err = sock_errno(); 1713 Debug( LDAP_DEBUG_ANY, "slapd(%ld): " 1714 "setsockopt(IPV6_V6ONLY) failed errno=%d (%s)\n", 1715 (long) l.sl_sd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 1716 } 1717 #endif /* IPV6_V6ONLY */ 1718 addrlen = sizeof(struct sockaddr_in6); 1719 break; 1720 #endif /* LDAP_PF_INET6 */ 1721 1722 #ifdef LDAP_PF_LOCAL 1723 case AF_LOCAL: 1724 #ifdef LOCAL_CREDS 1725 { 1726 int one = 1; 1727 setsockopt( s, 0, LOCAL_CREDS, &one, sizeof( one ) ); 1728 } 1729 #endif /* LOCAL_CREDS */ 1730 1731 addrlen = sizeof( struct sockaddr_un ); 1732 break; 1733 #endif /* LDAP_PF_LOCAL */ 1734 } 1735 1736 #ifdef LDAP_PF_LOCAL 1737 /* create socket with all permissions set for those systems 1738 * that honor permissions on sockets (e.g. Linux); typically, 1739 * only write is required. To exploit filesystem permissions, 1740 * place the socket in a directory and use directory's 1741 * permissions. Need write perms to the directory to 1742 * create/unlink the socket; likely need exec perms to access 1743 * the socket (ITS#4709) */ 1744 { 1745 mode_t old_umask = 0; 1746 1747 if ( (*sal)->sa_family == AF_LOCAL ) { 1748 old_umask = umask( 0 ); 1749 } 1750 #endif /* LDAP_PF_LOCAL */ 1751 rc = bind( s, *sal, addrlen ); 1752 #ifdef LDAP_PF_LOCAL 1753 if ( old_umask != 0 ) { 1754 umask( old_umask ); 1755 } 1756 } 1757 #endif /* LDAP_PF_LOCAL */ 1758 if ( rc ) { 1759 err = sock_errno(); 1760 Debug( LDAP_DEBUG_ANY, 1761 "daemon: bind(%ld) failed errno=%d (%s)\n", 1762 (long)l.sl_sd, err, sock_errstr( err, ebuf, sizeof(ebuf) ) ); 1763 tcp_close( s ); 1764 sal++; 1765 continue; 1766 } 1767 1768 switch ( (*sal)->sa_family ) { 1769 #ifdef LDAP_PF_LOCAL 1770 case AF_LOCAL: { 1771 char *path = ((struct sockaddr_un *)*sal)->sun_path; 1772 l.sl_name.bv_len = strlen(path) + STRLENOF("PATH="); 1773 l.sl_name.bv_val = ch_malloc( l.sl_name.bv_len + 1 ); 1774 snprintf( l.sl_name.bv_val, l.sl_name.bv_len + 1, 1775 "PATH=%s", path ); 1776 } break; 1777 #endif /* LDAP_PF_LOCAL */ 1778 1779 case AF_INET: { 1780 char addr[INET_ADDRSTRLEN]; 1781 const char *s; 1782 #if defined( HAVE_GETADDRINFO ) && defined( HAVE_INET_NTOP ) 1783 s = inet_ntop( AF_INET, &((struct sockaddr_in *)*sal)->sin_addr, 1784 addr, sizeof(addr) ); 1785 #else /* ! HAVE_GETADDRINFO || ! HAVE_INET_NTOP */ 1786 s = inet_ntoa( ((struct sockaddr_in *) *sal)->sin_addr ); 1787 #endif /* ! HAVE_GETADDRINFO || ! HAVE_INET_NTOP */ 1788 if (!s) s = SLAP_STRING_UNKNOWN; 1789 port = ntohs( ((struct sockaddr_in *)*sal) ->sin_port ); 1790 l.sl_name.bv_val = 1791 ch_malloc( sizeof("IP=255.255.255.255:65535") ); 1792 snprintf( l.sl_name.bv_val, sizeof("IP=255.255.255.255:65535"), 1793 "IP=%s:%d", s, port ); 1794 l.sl_name.bv_len = strlen( l.sl_name.bv_val ); 1795 } break; 1796 1797 #ifdef LDAP_PF_INET6 1798 case AF_INET6: { 1799 char addr[INET6_ADDRSTRLEN]; 1800 const char *s; 1801 s = inet_ntop( AF_INET6, &((struct sockaddr_in6 *)*sal)->sin6_addr, 1802 addr, sizeof addr); 1803 if (!s) s = SLAP_STRING_UNKNOWN; 1804 port = ntohs( ((struct sockaddr_in6 *)*sal)->sin6_port ); 1805 l.sl_name.bv_len = strlen(s) + sizeof("IP=[]:65535"); 1806 l.sl_name.bv_val = ch_malloc( l.sl_name.bv_len ); 1807 snprintf( l.sl_name.bv_val, l.sl_name.bv_len, "IP=[%s]:%d", 1808 s, port ); 1809 l.sl_name.bv_len = strlen( l.sl_name.bv_val ); 1810 } break; 1811 #endif /* LDAP_PF_INET6 */ 1812 1813 default: 1814 Debug( LDAP_DEBUG_ANY, "daemon: unsupported address family (%d)\n", 1815 (int) (*sal)->sa_family ); 1816 break; 1817 } 1818 1819 AC_MEMCPY(&l.sl_sa, *sal, addrlen); 1820 ber_str2bv( url, 0, 1, &l.sl_url); 1821 li = ch_malloc( sizeof( Listener ) ); 1822 *li = l; 1823 slap_listeners[*cur] = li; 1824 (*cur)++; 1825 sal++; 1826 } 1827 1828 slap_free_listener_addresses(psal); 1829 1830 if ( l.sl_url.bv_val == NULL ) { 1831 Debug( LDAP_DEBUG_TRACE, 1832 "slap_open_listener: failed on %s\n", url ); 1833 return -1; 1834 } 1835 1836 Debug( LDAP_DEBUG_TRACE, "daemon: listener initialized %s\n", 1837 l.sl_url.bv_val ); 1838 return 0; 1839 } 1840 1841 static int sockinit(void); 1842 static int sockdestroy(void); 1843 1844 static int daemon_inited = 0; 1845 1846 int 1847 slapd_daemon_init( const char *urls ) 1848 { 1849 int i, j, n, rc; 1850 char **u; 1851 1852 Debug( LDAP_DEBUG_ARGS, "daemon_init: %s\n", 1853 urls ? urls : "<null>" ); 1854 1855 wake_sds = ch_malloc( slapd_daemon_threads * sizeof( sdpair )); 1856 for ( i=0; i<slapd_daemon_threads; i++ ) { 1857 wake_sds[i][0] = AC_SOCKET_INVALID; 1858 wake_sds[i][1] = AC_SOCKET_INVALID; 1859 } 1860 1861 slap_daemon = ch_calloc( slapd_daemon_threads, sizeof( slap_daemon_st )); 1862 ldap_pvt_thread_mutex_init( &slap_daemon[0].sd_mutex ); 1863 #ifdef HAVE_TCPD 1864 ldap_pvt_thread_mutex_init( &sd_tcpd_mutex ); 1865 #endif /* TCP Wrappers */ 1866 ldap_pvt_thread_mutex_init( &emfile_mutex ); 1867 1868 daemon_inited = 1; 1869 1870 if( (rc = sockinit()) != 0 ) return rc; 1871 1872 #ifdef HAVE_SYSCONF 1873 dtblsize = sysconf( _SC_OPEN_MAX ); 1874 #elif defined(HAVE_GETDTABLESIZE) 1875 dtblsize = getdtablesize(); 1876 #else /* ! HAVE_SYSCONF && ! HAVE_GETDTABLESIZE */ 1877 dtblsize = FD_SETSIZE; 1878 #endif /* ! HAVE_SYSCONF && ! HAVE_GETDTABLESIZE */ 1879 1880 SETUP_CLOSE(); 1881 1882 /* open a pipe (or something equivalent connected to itself). 1883 * we write a byte on this fd whenever we catch a signal. The main 1884 * loop will be select'ing on this socket, and will wake up when 1885 * this byte arrives. 1886 */ 1887 if( (rc = lutil_pair( wake_sds[0] )) < 0 ) { 1888 Debug( LDAP_DEBUG_ANY, 1889 "daemon: lutil_pair() failed rc=%d\n", rc ); 1890 return rc; 1891 } 1892 ber_pvt_socket_set_nonblock( wake_sds[0][1], 1 ); 1893 1894 SLAP_SOCK_INIT(0); 1895 1896 if( urls == NULL ) urls = "ldap:///"; 1897 1898 u = ldap_str2charray( urls, " " ); 1899 1900 if( u == NULL || u[0] == NULL ) { 1901 Debug( LDAP_DEBUG_ANY, "daemon_init: no urls (%s) provided.\n", 1902 urls ); 1903 if ( u ) 1904 ldap_charray_free( u ); 1905 return -1; 1906 } 1907 1908 for( i=0; u[i] != NULL; i++ ) { 1909 Debug( LDAP_DEBUG_TRACE, "daemon_init: listen on %s\n", 1910 u[i] ); 1911 } 1912 1913 if( i == 0 ) { 1914 Debug( LDAP_DEBUG_ANY, "daemon_init: no listeners to open (%s)\n", 1915 urls ); 1916 ldap_charray_free( u ); 1917 return -1; 1918 } 1919 1920 Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners to open...\n", 1921 i ); 1922 slap_listeners = ch_malloc( (i+1)*sizeof(Listener *) ); 1923 1924 for(n = 0, j = 0; u[n]; n++ ) { 1925 if ( slap_open_listener( u[n], &i, &j ) ) { 1926 ldap_charray_free( u ); 1927 return -1; 1928 } 1929 } 1930 slap_listeners[j] = NULL; 1931 1932 Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners opened\n", 1933 i ); 1934 1935 1936 #ifdef HAVE_SLP 1937 if( slapd_register_slp ) { 1938 slapd_slp_init( urls ); 1939 slapd_slp_reg(); 1940 } 1941 #endif /* HAVE_SLP */ 1942 1943 ldap_charray_free( u ); 1944 1945 return !i; 1946 } 1947 1948 /* transfer control of active sockets from old to new listener threads */ 1949 static void 1950 slapd_socket_realloc( int newnum ) 1951 { 1952 int i, j, oldid, newid; 1953 int newmask = newnum - 1; 1954 Listener *sl; 1955 int num_listeners; 1956 1957 for ( i=0; slap_listeners[i] != NULL; i++ ) ; 1958 num_listeners = i; 1959 1960 for ( i=0; i<dtblsize; i++ ) { 1961 int skip = 0; 1962 1963 /* don't bother with wake_sds, they're assigned independent of mask */ 1964 for (j=0; j<slapd_daemon_threads; j++) { 1965 if ( i == wake_sds[j][0] || i == wake_sds[j][1] ) { 1966 skip = 1; 1967 break; 1968 } 1969 } 1970 if ( skip ) continue; 1971 1972 oldid = DAEMON_ID(i); 1973 newid = i & newmask; 1974 if ( oldid == newid ) continue; 1975 if ( !SLAP_SOCK_IS_ACTIVE( oldid, i )) continue; 1976 sl = NULL; 1977 if ( num_listeners ) { 1978 for ( j=0; slap_listeners[j] != NULL; j++ ) { 1979 if ( slap_listeners[j]->sl_sd == i ) { 1980 sl = slap_listeners[j]; 1981 num_listeners--; 1982 break; 1983 } 1984 } 1985 } 1986 SLAP_SOCK_ADD( newid, i, sl ); 1987 if ( SLAP_SOCK_IS_READ( oldid, i )) { 1988 SLAP_SOCK_SET_READ( newid, i ); 1989 } 1990 if ( SLAP_SOCK_IS_WRITE( oldid, i )) { 1991 SLAP_SOCK_SET_WRITE( newid, i ); 1992 slap_daemon[oldid].sd_nwriters--; 1993 slap_daemon[newid].sd_nwriters++; 1994 } 1995 if ( connection_is_active( i )) { 1996 slap_daemon[oldid].sd_nactives--; 1997 slap_daemon[newid].sd_nactives++; 1998 } 1999 SLAP_SOCK_DEL( oldid, i ); 2000 } 2001 } 2002 2003 2004 int 2005 slapd_daemon_destroy( void ) 2006 { 2007 connections_destroy(); 2008 if ( daemon_inited ) { 2009 int i; 2010 2011 for ( i=0; i<slapd_daemon_threads; i++ ) { 2012 #ifdef HAVE_WINSOCK 2013 if ( wake_sds[i][1] != INVALID_SOCKET && 2014 SLAP_FD2SOCK( wake_sds[i][1] ) != SLAP_FD2SOCK( wake_sds[i][0] )) 2015 #endif /* HAVE_WINSOCK */ 2016 tcp_close( SLAP_FD2SOCK(wake_sds[i][1]) ); 2017 #ifdef HAVE_WINSOCK 2018 if ( wake_sds[i][0] != INVALID_SOCKET ) 2019 #endif /* HAVE_WINSOCK */ 2020 tcp_close( SLAP_FD2SOCK(wake_sds[i][0]) ); 2021 ldap_pvt_thread_mutex_destroy( &slap_daemon[i].sd_mutex ); 2022 SLAP_SOCK_DESTROY(i); 2023 } 2024 daemon_inited = 0; 2025 ldap_pvt_thread_mutex_destroy( &emfile_mutex ); 2026 #ifdef HAVE_TCPD 2027 ldap_pvt_thread_mutex_destroy( &sd_tcpd_mutex ); 2028 #endif /* TCP Wrappers */ 2029 } 2030 sockdestroy(); 2031 2032 #ifdef HAVE_SLP 2033 if( slapd_register_slp ) { 2034 slapd_slp_dereg(); 2035 slapd_slp_deinit(); 2036 } 2037 #endif /* HAVE_SLP */ 2038 2039 return 0; 2040 } 2041 2042 2043 static void 2044 close_listeners( 2045 int remove ) 2046 { 2047 int l; 2048 2049 if ( !listening ) 2050 return; 2051 listening = 0; 2052 2053 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2054 Listener *lr = slap_listeners[l]; 2055 2056 if ( lr->sl_sd != AC_SOCKET_INVALID ) { 2057 int s = lr->sl_sd; 2058 lr->sl_sd = AC_SOCKET_INVALID; 2059 if ( remove ) slapd_remove( s, NULL, 0, 0, 0 ); 2060 2061 #ifdef LDAP_PF_LOCAL 2062 if ( lr->sl_sa.sa_addr.sa_family == AF_LOCAL ) { 2063 unlink( lr->sl_sa.sa_un_addr.sun_path ); 2064 } 2065 #endif /* LDAP_PF_LOCAL */ 2066 2067 slapd_close( s ); 2068 } 2069 } 2070 } 2071 2072 static void 2073 destroy_listeners( void ) 2074 { 2075 Listener *lr, **ll = slap_listeners; 2076 2077 if ( ll == NULL ) 2078 return; 2079 2080 while ( (lr = *ll++) != NULL ) { 2081 if ( lr->sl_url.bv_val ) { 2082 ber_memfree( lr->sl_url.bv_val ); 2083 } 2084 2085 if ( lr->sl_name.bv_val ) { 2086 ber_memfree( lr->sl_name.bv_val ); 2087 } 2088 2089 free( lr ); 2090 } 2091 2092 free( slap_listeners ); 2093 slap_listeners = NULL; 2094 } 2095 2096 static int 2097 slap_listener( 2098 Listener *sl ) 2099 { 2100 Sockaddr from; 2101 2102 ber_socket_t s, sfd; 2103 ber_socklen_t len = sizeof(from); 2104 Connection *c; 2105 slap_ssf_t ssf = 0; 2106 struct berval authid = BER_BVNULL; 2107 #ifdef SLAPD_RLOOKUPS 2108 char hbuf[NI_MAXHOST]; 2109 #endif /* SLAPD_RLOOKUPS */ 2110 2111 char *dnsname = NULL; 2112 /* we assume INET6_ADDRSTRLEN > INET_ADDRSTRLEN */ 2113 char peername[LDAP_IPADDRLEN]; 2114 struct berval peerbv = BER_BVC(peername); 2115 #ifdef LDAP_PF_LOCAL_SENDMSG 2116 char peerbuf[8]; 2117 #endif 2118 int cflag; 2119 int tid; 2120 char ebuf[128]; 2121 2122 Debug( LDAP_DEBUG_TRACE, 2123 ">>> slap_listener(%s)\n", 2124 sl->sl_url.bv_val ); 2125 2126 peername[0] = '\0'; 2127 2128 #ifdef LDAP_CONNECTIONLESS 2129 if ( sl->sl_is_udp ) return 1; 2130 #endif /* LDAP_CONNECTIONLESS */ 2131 2132 # ifdef LDAP_PF_LOCAL 2133 /* FIXME: apparently accept doesn't fill 2134 * the sun_path sun_path member */ 2135 from.sa_un_addr.sun_path[0] = '\0'; 2136 # endif /* LDAP_PF_LOCAL */ 2137 2138 s = accept( SLAP_FD2SOCK( sl->sl_sd ), (struct sockaddr *) &from, &len ); 2139 if ( s != AC_SOCKET_INVALID ) { 2140 SET_CLOSE(s); 2141 } 2142 Debug( LDAP_DEBUG_CONNS, 2143 "daemon: accept() = %d\n", s ); 2144 2145 /* Resume the listener FD to allow concurrent-processing of 2146 * additional incoming connections. 2147 */ 2148 sl->sl_busy = 0; 2149 WAKE_LISTENER(DAEMON_ID(sl->sl_sd),1); 2150 2151 if ( s == AC_SOCKET_INVALID ) { 2152 int err = sock_errno(); 2153 2154 if( 2155 #ifdef EMFILE 2156 err == EMFILE || 2157 #endif /* EMFILE */ 2158 #ifdef ENFILE 2159 err == ENFILE || 2160 #endif /* ENFILE */ 2161 0 ) 2162 { 2163 ldap_pvt_thread_mutex_lock( &emfile_mutex ); 2164 emfile++; 2165 /* Stop listening until an existing session closes */ 2166 sl->sl_mute = 1; 2167 ldap_pvt_thread_mutex_unlock( &emfile_mutex ); 2168 } 2169 2170 Debug( LDAP_DEBUG_ANY, 2171 "daemon: accept(%ld) failed errno=%d (%s)\n", 2172 (long) sl->sl_sd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2173 ldap_pvt_thread_yield(); 2174 return 0; 2175 } 2176 sfd = SLAP_SOCKNEW( s ); 2177 2178 /* make sure descriptor number isn't too great */ 2179 if ( sfd >= dtblsize ) { 2180 Debug( LDAP_DEBUG_ANY, 2181 "daemon: %ld beyond descriptor table size %ld\n", 2182 (long) sfd, (long) dtblsize ); 2183 2184 tcp_close(s); 2185 ldap_pvt_thread_yield(); 2186 return 0; 2187 } 2188 tid = DAEMON_ID(sfd); 2189 2190 #ifdef LDAP_DEBUG 2191 ldap_pvt_thread_mutex_lock( &slap_daemon[tid].sd_mutex ); 2192 /* newly accepted stream should not be in any of the FD SETS */ 2193 assert( SLAP_SOCK_NOT_ACTIVE( tid, sfd )); 2194 ldap_pvt_thread_mutex_unlock( &slap_daemon[tid].sd_mutex ); 2195 #endif /* LDAP_DEBUG */ 2196 2197 #if defined( SO_KEEPALIVE ) || defined( TCP_NODELAY ) 2198 #ifdef LDAP_PF_LOCAL 2199 /* for IPv4 and IPv6 sockets only */ 2200 if ( from.sa_addr.sa_family != AF_LOCAL ) 2201 #endif /* LDAP_PF_LOCAL */ 2202 { 2203 int rc; 2204 int tmp; 2205 #ifdef SO_KEEPALIVE 2206 /* enable keep alives */ 2207 tmp = 1; 2208 rc = setsockopt( s, SOL_SOCKET, SO_KEEPALIVE, 2209 (char *) &tmp, sizeof(tmp) ); 2210 if ( rc == AC_SOCKET_ERROR ) { 2211 int err = sock_errno(); 2212 Debug( LDAP_DEBUG_ANY, 2213 "slapd(%ld): setsockopt(SO_KEEPALIVE) failed " 2214 "errno=%d (%s)\n", (long) sfd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2215 slapd_close(sfd); 2216 return 0; 2217 } 2218 #endif /* SO_KEEPALIVE */ 2219 #ifdef TCP_NODELAY 2220 /* enable no delay */ 2221 tmp = 1; 2222 rc = setsockopt( s, IPPROTO_TCP, TCP_NODELAY, 2223 (char *)&tmp, sizeof(tmp) ); 2224 if ( rc == AC_SOCKET_ERROR ) { 2225 int err = sock_errno(); 2226 Debug( LDAP_DEBUG_ANY, 2227 "slapd(%ld): setsockopt(TCP_NODELAY) failed " 2228 "errno=%d (%s)\n", (long) sfd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2229 slapd_close(sfd); 2230 return 0; 2231 } 2232 #endif /* TCP_NODELAY */ 2233 } 2234 #endif /* SO_KEEPALIVE || TCP_NODELAY */ 2235 2236 Debug( LDAP_DEBUG_CONNS, 2237 "daemon: listen=%ld, new connection on %ld\n", 2238 (long) sl->sl_sd, (long) sfd ); 2239 2240 cflag = 0; 2241 switch ( from.sa_addr.sa_family ) { 2242 # ifdef LDAP_PF_LOCAL 2243 case AF_LOCAL: 2244 cflag |= CONN_IS_IPC; 2245 2246 /* FIXME: apparently accept doesn't fill 2247 * the sun_path sun_path member */ 2248 if ( from.sa_un_addr.sun_path[0] == '\0' ) { 2249 AC_MEMCPY( from.sa_un_addr.sun_path, 2250 sl->sl_sa.sa_un_addr.sun_path, 2251 sizeof( from.sa_un_addr.sun_path ) ); 2252 } 2253 2254 sprintf( peername, "PATH=%s", from.sa_un_addr.sun_path ); 2255 ssf = local_ssf; 2256 { 2257 uid_t uid; 2258 gid_t gid; 2259 2260 #ifdef LDAP_PF_LOCAL_SENDMSG 2261 peerbv.bv_val = peerbuf; 2262 peerbv.bv_len = sizeof( peerbuf ); 2263 #endif 2264 if( LUTIL_GETPEEREID( s, &uid, &gid, &peerbv ) == 0 ) { 2265 authid.bv_val = ch_malloc( 2266 STRLENOF( "gidNumber=4294967295+uidNumber=4294967295," 2267 "cn=peercred,cn=external,cn=auth" ) + 1 ); 2268 authid.bv_len = sprintf( authid.bv_val, 2269 "gidNumber=%u+uidNumber=%u," 2270 "cn=peercred,cn=external,cn=auth", 2271 gid, uid ); 2272 assert( authid.bv_len <= 2273 STRLENOF( "gidNumber=4294967295+uidNumber=4294967295," 2274 "cn=peercred,cn=external,cn=auth" ) ); 2275 } 2276 } 2277 dnsname = "local"; 2278 break; 2279 #endif /* LDAP_PF_LOCAL */ 2280 2281 # ifdef LDAP_PF_INET6 2282 case AF_INET6: 2283 # endif /* LDAP_PF_INET6 */ 2284 case AF_INET: 2285 if ( sl->sl_is_proxied ) { 2286 if ( !proxyp( sfd, &from ) ) { 2287 Debug( LDAP_DEBUG_ANY, "slapd(%ld): proxyp failed\n", (long)sfd ); 2288 slapd_close( sfd ); 2289 return 0; 2290 } 2291 } 2292 ldap_pvt_sockaddrstr( &from, &peerbv ); 2293 break; 2294 2295 default: 2296 slapd_close(sfd); 2297 return 0; 2298 } 2299 2300 if ( ( from.sa_addr.sa_family == AF_INET ) 2301 #ifdef LDAP_PF_INET6 2302 || ( from.sa_addr.sa_family == AF_INET6 ) 2303 #endif /* LDAP_PF_INET6 */ 2304 ) 2305 { 2306 dnsname = NULL; 2307 #ifdef SLAPD_RLOOKUPS 2308 if ( use_reverse_lookup ) { 2309 char *herr; 2310 if (ldap_pvt_get_hname( (const struct sockaddr *)&from, len, hbuf, 2311 sizeof(hbuf), &herr ) == 0) { 2312 ldap_pvt_str2lower( hbuf ); 2313 dnsname = hbuf; 2314 } 2315 } 2316 #endif /* SLAPD_RLOOKUPS */ 2317 2318 #ifdef HAVE_TCPD 2319 { 2320 int rc; 2321 char *peeraddr, *paend; 2322 peeraddr = peerbv.bv_val + 3; 2323 if ( *peeraddr == '[' ) { 2324 peeraddr++; 2325 paend = strrchr( peeraddr, ']' ); 2326 } else { 2327 paend = strrchr( peeraddr, ':' ); 2328 } 2329 if ( paend ) 2330 *paend = '\0'; 2331 ldap_pvt_thread_mutex_lock( &sd_tcpd_mutex ); 2332 rc = hosts_ctl("slapd", 2333 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN, 2334 peeraddr, 2335 SLAP_STRING_UNKNOWN ); 2336 ldap_pvt_thread_mutex_unlock( &sd_tcpd_mutex ); 2337 if ( !rc ) { 2338 /* DENY ACCESS */ 2339 Debug( LDAP_DEBUG_STATS, 2340 "fd=%ld DENIED from %s (%s)\n", 2341 (long) sfd, 2342 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN, 2343 peeraddr ); 2344 slapd_close(sfd); 2345 return 0; 2346 } 2347 if ( paend ) { 2348 if ( peeraddr[-1] == '[' ) 2349 *paend = ']'; 2350 else 2351 *paend = ':'; 2352 } 2353 } 2354 #endif /* HAVE_TCPD */ 2355 } 2356 2357 #ifdef HAVE_TLS 2358 if ( sl->sl_is_tls ) cflag |= CONN_IS_TLS; 2359 #endif 2360 c = connection_init(sfd, sl, 2361 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN, 2362 peername, cflag, ssf, 2363 authid.bv_val ? &authid : NULL 2364 LDAP_PF_LOCAL_SENDMSG_ARG(&peerbv)); 2365 2366 if( authid.bv_val ) ch_free(authid.bv_val); 2367 2368 if( !c ) { 2369 Debug( LDAP_DEBUG_ANY, 2370 "daemon: connection_init(%ld, %s, %s) failed.\n", 2371 (long) sfd, peername, sl->sl_name.bv_val ); 2372 slapd_close(sfd); 2373 } 2374 2375 return 0; 2376 } 2377 2378 static void* 2379 slap_listener_thread( 2380 void* ctx, 2381 void* ptr ) 2382 { 2383 int rc; 2384 Listener *sl = (Listener *)ptr; 2385 2386 rc = slap_listener( sl ); 2387 2388 if( rc != LDAP_SUCCESS ) { 2389 Debug( LDAP_DEBUG_ANY, 2390 "slap_listener_thread(%s): failed err=%d", 2391 sl->sl_url.bv_val, rc ); 2392 } 2393 2394 return (void*)NULL; 2395 } 2396 2397 static int 2398 slap_listener_activate( 2399 Listener* sl ) 2400 { 2401 int rc; 2402 2403 Debug( LDAP_DEBUG_TRACE, "slap_listener_activate(%d): %s\n", 2404 sl->sl_sd, sl->sl_busy ? "busy" : "" ); 2405 2406 sl->sl_busy = 1; 2407 2408 rc = ldap_pvt_thread_pool_submit( &connection_pool, 2409 slap_listener_thread, (void *) sl ); 2410 2411 if( rc != 0 ) { 2412 Debug( LDAP_DEBUG_ANY, 2413 "slap_listener_activate(%d): submit failed (%d)\n", 2414 sl->sl_sd, rc ); 2415 } 2416 return rc; 2417 } 2418 2419 static void * 2420 slapd_rtask_trampoline( 2421 void *ctx, 2422 void *arg ) 2423 { 2424 struct re_s *rtask = arg; 2425 2426 /* invalidate pool_cookie */ 2427 rtask->pool_cookie = NULL; 2428 return rtask->routine( ctx, arg ); 2429 } 2430 2431 static void * 2432 slapd_daemon_task( 2433 void *ptr ) 2434 { 2435 int l; 2436 time_t last_idle_check = 0; 2437 int ebadf = 0; 2438 int tid = (slap_daemon_st *) ptr - slap_daemon; 2439 char ebuf[128]; 2440 2441 #define SLAPD_IDLE_CHECK_LIMIT 4 2442 2443 slapd_add( wake_sds[tid][0], 0, NULL, tid ); 2444 if ( tid ) 2445 goto loop; 2446 2447 /* Init stuff done only by thread 0 */ 2448 2449 last_idle_check = slap_get_time(); 2450 2451 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2452 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID ) continue; 2453 2454 #ifdef LDAP_CONNECTIONLESS 2455 /* Since this is connectionless, the data port is the 2456 * listening port. The listen() and accept() calls 2457 * are unnecessary. 2458 */ 2459 if ( slap_listeners[l]->sl_is_udp ) 2460 continue; 2461 #endif /* LDAP_CONNECTIONLESS */ 2462 2463 /* FIXME: TCP-only! */ 2464 #ifdef LDAP_TCP_BUFFER 2465 if ( 1 ) { 2466 int origsize, size, realsize, rc; 2467 socklen_t optlen; 2468 2469 size = 0; 2470 if ( slap_listeners[l]->sl_tcp_rmem > 0 ) { 2471 size = slap_listeners[l]->sl_tcp_rmem; 2472 } else if ( slapd_tcp_rmem > 0 ) { 2473 size = slapd_tcp_rmem; 2474 } 2475 2476 if ( size > 0 ) { 2477 optlen = sizeof( origsize ); 2478 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2479 SOL_SOCKET, 2480 SO_RCVBUF, 2481 (void *)&origsize, 2482 &optlen ); 2483 2484 if ( rc ) { 2485 int err = sock_errno(); 2486 Debug( LDAP_DEBUG_ANY, 2487 "slapd_daemon_task: getsockopt(SO_RCVBUF) failed errno=%d (%s)\n", 2488 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2489 } 2490 2491 optlen = sizeof( size ); 2492 rc = setsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2493 SOL_SOCKET, 2494 SO_RCVBUF, 2495 (const void *)&size, 2496 optlen ); 2497 2498 if ( rc ) { 2499 int err = sock_errno(); 2500 Debug( LDAP_DEBUG_ANY, 2501 "slapd_daemon_task: setsockopt(SO_RCVBUF) failed errno=%d (%s)\n", 2502 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2503 } 2504 2505 optlen = sizeof( realsize ); 2506 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2507 SOL_SOCKET, 2508 SO_RCVBUF, 2509 (void *)&realsize, 2510 &optlen ); 2511 2512 if ( rc ) { 2513 int err = sock_errno(); 2514 Debug( LDAP_DEBUG_ANY, 2515 "slapd_daemon_task: getsockopt(SO_RCVBUF) failed errno=%d (%s)\n", 2516 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2517 } 2518 2519 Debug(LDAP_DEBUG_ANY, 2520 "slapd_daemon_task: url=%s (#%d) RCVBUF original size=%d requested size=%d real size=%d\n", 2521 slap_listeners[l]->sl_url.bv_val, l, 2522 origsize, size, realsize ); 2523 } 2524 2525 size = 0; 2526 if ( slap_listeners[l]->sl_tcp_wmem > 0 ) { 2527 size = slap_listeners[l]->sl_tcp_wmem; 2528 } else if ( slapd_tcp_wmem > 0 ) { 2529 size = slapd_tcp_wmem; 2530 } 2531 2532 if ( size > 0 ) { 2533 optlen = sizeof( origsize ); 2534 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2535 SOL_SOCKET, 2536 SO_SNDBUF, 2537 (void *)&origsize, 2538 &optlen ); 2539 2540 if ( rc ) { 2541 int err = sock_errno(); 2542 Debug( LDAP_DEBUG_ANY, 2543 "slapd_daemon_task: getsockopt(SO_SNDBUF) failed errno=%d (%s)\n", 2544 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2545 } 2546 2547 optlen = sizeof( size ); 2548 rc = setsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2549 SOL_SOCKET, 2550 SO_SNDBUF, 2551 (const void *)&size, 2552 optlen ); 2553 2554 if ( rc ) { 2555 int err = sock_errno(); 2556 Debug( LDAP_DEBUG_ANY, 2557 "slapd_daemon_task: setsockopt(SO_SNDBUF) failed errno=%d (%s)", 2558 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2559 } 2560 2561 optlen = sizeof( realsize ); 2562 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2563 SOL_SOCKET, 2564 SO_SNDBUF, 2565 (void *)&realsize, 2566 &optlen ); 2567 2568 if ( rc ) { 2569 int err = sock_errno(); 2570 Debug( LDAP_DEBUG_ANY, 2571 "slapd_daemon_task: getsockopt(SO_SNDBUF) failed errno=%d (%s)\n", 2572 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2573 } 2574 2575 Debug(LDAP_DEBUG_ANY, 2576 "slapd_daemon_task: url=%s (#%d) SNDBUF original size=%d requested size=%d real size=%d\n", 2577 slap_listeners[l]->sl_url.bv_val, l, 2578 origsize, size, realsize ); 2579 } 2580 } 2581 #endif /* LDAP_TCP_BUFFER */ 2582 2583 if ( listen( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), SLAPD_LISTEN_BACKLOG ) == -1 ) { 2584 int err = sock_errno(); 2585 2586 #ifdef LDAP_PF_INET6 2587 /* If error is EADDRINUSE, we are trying to listen to INADDR_ANY and 2588 * we are already listening to in6addr_any, then we want to ignore 2589 * this and continue. 2590 */ 2591 if ( err == EADDRINUSE ) { 2592 int i; 2593 struct sockaddr_in sa = slap_listeners[l]->sl_sa.sa_in_addr; 2594 struct sockaddr_in6 sa6; 2595 2596 if ( sa.sin_family == AF_INET && 2597 sa.sin_addr.s_addr == htonl(INADDR_ANY) ) { 2598 for ( i = 0 ; i < l; i++ ) { 2599 sa6 = slap_listeners[i]->sl_sa.sa_in6_addr; 2600 if ( sa6.sin6_family == AF_INET6 && 2601 !memcmp( &sa6.sin6_addr, &in6addr_any, 2602 sizeof(struct in6_addr) ) ) 2603 { 2604 break; 2605 } 2606 } 2607 2608 if ( i < l ) { 2609 /* We are already listening to in6addr_any */ 2610 Debug( LDAP_DEBUG_CONNS, 2611 "daemon: Attempt to listen to 0.0.0.0 failed, " 2612 "already listening on ::, assuming IPv4 included\n" ); 2613 slapd_close( slap_listeners[l]->sl_sd ); 2614 slap_listeners[l]->sl_sd = AC_SOCKET_INVALID; 2615 continue; 2616 } 2617 } 2618 } 2619 #endif /* LDAP_PF_INET6 */ 2620 Debug( LDAP_DEBUG_ANY, 2621 "daemon: listen(%s, 5) failed errno=%d (%s)\n", 2622 slap_listeners[l]->sl_url.bv_val, err, 2623 sock_errstr(err, ebuf, sizeof(ebuf)) ); 2624 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 2625 slapd_shutdown = 2; 2626 ldap_pvt_thread_cond_signal( &slapd_init_cond ); 2627 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 2628 return (void*)-1; 2629 } 2630 2631 /* make the listening socket non-blocking */ 2632 if ( ber_pvt_socket_set_nonblock( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 1 ) < 0 ) { 2633 Debug( LDAP_DEBUG_ANY, "slapd_daemon_task: " 2634 "set nonblocking on a listening socket failed\n" ); 2635 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 2636 slapd_shutdown = 2; 2637 ldap_pvt_thread_cond_signal( &slapd_init_cond ); 2638 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 2639 return (void*)-1; 2640 } 2641 2642 slapd_add( slap_listeners[l]->sl_sd, 0, slap_listeners[l], -1 ); 2643 } 2644 2645 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 2646 slapd_ready = 1; 2647 ldap_pvt_thread_cond_signal( &slapd_init_cond ); 2648 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 2649 2650 #ifdef HAVE_NT_SERVICE_MANAGER 2651 if ( started_event != NULL ) { 2652 ldap_pvt_thread_cond_signal( &started_event ); 2653 } 2654 #endif /* HAVE_NT_SERVICE_MANAGER */ 2655 2656 loop: 2657 2658 /* initialization complete. Here comes the loop. */ 2659 2660 while ( !slapd_shutdown ) { 2661 ber_socket_t i; 2662 int ns, nwriters; 2663 int at; 2664 ber_socket_t nfds; 2665 #if SLAP_EVENTS_ARE_INDEXED 2666 ber_socket_t nrfds, nwfds; 2667 #endif /* SLAP_EVENTS_ARE_INDEXED */ 2668 #define SLAPD_EBADF_LIMIT 16 2669 2670 time_t now; 2671 2672 SLAP_EVENT_DECL; 2673 2674 struct timeval tv; 2675 struct timeval *tvp; 2676 2677 struct timeval cat; 2678 time_t tdelta = 1; 2679 struct re_s* rtask; 2680 2681 now = slap_get_time(); 2682 2683 if ( !tid && ( global_idletimeout > 0 )) { 2684 int check = 0; 2685 /* Set the select timeout. 2686 * Don't just truncate, preserve the fractions of 2687 * seconds to prevent sleeping for zero time. 2688 */ 2689 { 2690 tv.tv_sec = global_idletimeout / SLAPD_IDLE_CHECK_LIMIT; 2691 tv.tv_usec = global_idletimeout - \ 2692 ( tv.tv_sec * SLAPD_IDLE_CHECK_LIMIT ); 2693 tv.tv_usec *= 1000000 / SLAPD_IDLE_CHECK_LIMIT; 2694 if ( difftime( last_idle_check + 2695 global_idletimeout/SLAPD_IDLE_CHECK_LIMIT, now ) < 0 ) 2696 check = 1; 2697 } 2698 if ( check ) { 2699 connections_timeout_idle( now ); 2700 last_idle_check = now; 2701 } 2702 } else { 2703 tv.tv_sec = 0; 2704 tv.tv_usec = 0; 2705 } 2706 2707 #ifdef SIGHUP 2708 if ( slapd_gentle_shutdown ) { 2709 ber_socket_t active; 2710 2711 if ( !tid && slapd_gentle_shutdown == 1 ) { 2712 BackendDB *be; 2713 Debug( LDAP_DEBUG_ANY, "slapd gentle shutdown\n" ); 2714 close_listeners( 1 ); 2715 frontendDB->be_restrictops |= SLAP_RESTRICT_OP_WRITES; 2716 LDAP_STAILQ_FOREACH(be, &backendDB, be_next) { 2717 be->be_restrictops |= SLAP_RESTRICT_OP_WRITES; 2718 } 2719 slapd_gentle_shutdown = 2; 2720 } 2721 2722 ldap_pvt_thread_mutex_lock( &slap_daemon[tid].sd_mutex ); 2723 active = slap_daemon[tid].sd_nactives; 2724 ldap_pvt_thread_mutex_unlock( &slap_daemon[tid].sd_mutex ); 2725 2726 if ( active == 0 ) { 2727 if ( !tid ) { 2728 for ( l=1; l<slapd_daemon_threads; l++ ) { 2729 ldap_pvt_thread_mutex_lock( &slap_daemon[l].sd_mutex ); 2730 active += slap_daemon[l].sd_nactives; 2731 ldap_pvt_thread_mutex_unlock( &slap_daemon[l].sd_mutex ); 2732 } 2733 if ( !active ) 2734 slapd_shutdown = 1; 2735 } 2736 if ( !active ) 2737 break; 2738 } 2739 } 2740 #endif /* SIGHUP */ 2741 at = 0; 2742 2743 ldap_pvt_thread_mutex_lock( &slap_daemon[tid].sd_mutex ); 2744 2745 nwriters = slap_daemon[tid].sd_nwriters; 2746 2747 if ( listening ) 2748 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2749 Listener *lr = slap_listeners[l]; 2750 2751 if ( lr->sl_sd == AC_SOCKET_INVALID ) continue; 2752 if ( DAEMON_ID( lr->sl_sd ) != tid ) continue; 2753 if ( !SLAP_SOCK_IS_ACTIVE( tid, lr->sl_sd )) continue; 2754 2755 if ( lr->sl_mute || lr->sl_busy ) 2756 { 2757 SLAP_SOCK_CLR_READ( tid, lr->sl_sd ); 2758 } else { 2759 SLAP_SOCK_SET_READ( tid, lr->sl_sd ); 2760 } 2761 } 2762 2763 SLAP_EVENT_INIT(tid); 2764 2765 nfds = SLAP_EVENT_MAX(tid); 2766 2767 if (( global_idletimeout ) && slap_daemon[tid].sd_nactives ) at = 1; 2768 2769 ldap_pvt_thread_mutex_unlock( &slap_daemon[tid].sd_mutex ); 2770 2771 if ( at 2772 #if defined(HAVE_YIELDING_SELECT) 2773 && ( tv.tv_sec || tv.tv_usec ) 2774 #endif /* HAVE_YIELDING_SELECT */ 2775 ) 2776 { 2777 tvp = &tv; 2778 } else { 2779 tvp = NULL; 2780 } 2781 2782 /* Only thread 0 handles runqueue */ 2783 if ( !tid ) { 2784 ldap_pvt_thread_mutex_lock( &slapd_rq.rq_mutex ); 2785 rtask = ldap_pvt_runqueue_next_sched( &slapd_rq, &cat ); 2786 while ( rtask && cat.tv_sec && cat.tv_sec <= now ) { 2787 if ( ldap_pvt_runqueue_isrunning( &slapd_rq, rtask )) { 2788 ldap_pvt_runqueue_resched( &slapd_rq, rtask, 0 ); 2789 } else { 2790 ldap_pvt_runqueue_runtask( &slapd_rq, rtask ); 2791 ldap_pvt_runqueue_resched( &slapd_rq, rtask, 0 ); 2792 ldap_pvt_thread_mutex_unlock( &slapd_rq.rq_mutex ); 2793 ldap_pvt_thread_pool_submit2( &connection_pool, 2794 slapd_rtask_trampoline, (void *) rtask, &rtask->pool_cookie ); 2795 ldap_pvt_thread_mutex_lock( &slapd_rq.rq_mutex ); 2796 } 2797 rtask = ldap_pvt_runqueue_next_sched( &slapd_rq, &cat ); 2798 } 2799 ldap_pvt_thread_mutex_unlock( &slapd_rq.rq_mutex ); 2800 2801 if ( rtask && cat.tv_sec ) { 2802 /* NOTE: diff __should__ always be >= 0, 2803 * AFAI understand; however (ITS#4872), 2804 * time_t might be unsigned in some systems, 2805 * while difftime() returns a double */ 2806 double diff = difftime( cat.tv_sec, now ); 2807 if ( diff <= 0 ) { 2808 diff = tdelta; 2809 } 2810 if ( tvp == NULL || diff < tv.tv_sec ) { 2811 tv.tv_sec = diff; 2812 tv.tv_usec = 0; 2813 tvp = &tv; 2814 } 2815 } 2816 } 2817 2818 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2819 Listener *lr = slap_listeners[l]; 2820 2821 if ( lr->sl_sd == AC_SOCKET_INVALID ) { 2822 continue; 2823 } 2824 2825 if ( DAEMON_ID( lr->sl_sd ) != tid ) continue; 2826 2827 if ( lr->sl_mute ) { 2828 Debug( LDAP_DEBUG_CONNS, 2829 "daemon: " SLAP_EVENT_FNAME ": " 2830 "listen=%d muted\n", 2831 lr->sl_sd ); 2832 continue; 2833 } 2834 2835 if ( lr->sl_busy ) { 2836 Debug( LDAP_DEBUG_CONNS, 2837 "daemon: " SLAP_EVENT_FNAME ": " 2838 "listen=%d busy\n", 2839 lr->sl_sd ); 2840 continue; 2841 } 2842 2843 Debug( LDAP_DEBUG_CONNS, 2844 "daemon: " SLAP_EVENT_FNAME ": " 2845 "listen=%d active_threads=%d tvp=%s\n", 2846 lr->sl_sd, at, tvp == NULL ? "NULL" : "zero" ); 2847 } 2848 2849 SLAP_EVENT_WAIT( tid, tvp, &ns ); 2850 switch ( ns ) { 2851 case -1: { /* failure - try again */ 2852 int err = sock_errno(); 2853 2854 if ( err != EINTR ) { 2855 ebadf++; 2856 2857 /* Don't log unless we got it twice in a row */ 2858 if ( !( ebadf & 1 ) ) { 2859 Debug( LDAP_DEBUG_ANY, 2860 "daemon: " 2861 SLAP_EVENT_FNAME 2862 " failed count %d " 2863 "err (%d): %s\n", 2864 ebadf, err, 2865 sock_errstr( err, ebuf, sizeof(ebuf) ) ); 2866 } 2867 if ( ebadf >= SLAPD_EBADF_LIMIT ) { 2868 slapd_shutdown = 2; 2869 } 2870 } 2871 } 2872 continue; 2873 2874 case 0: /* timeout - let threads run */ 2875 ebadf = 0; 2876 #ifndef HAVE_YIELDING_SELECT 2877 Debug( LDAP_DEBUG_CONNS, "daemon: " SLAP_EVENT_FNAME 2878 "timeout - yielding\n" ); 2879 2880 ldap_pvt_thread_yield(); 2881 #endif /* ! HAVE_YIELDING_SELECT */ 2882 continue; 2883 2884 default: /* something happened - deal with it */ 2885 if ( slapd_shutdown ) continue; 2886 2887 ebadf = 0; 2888 Debug( LDAP_DEBUG_CONNS, 2889 "daemon: activity on %d descriptor%s\n", 2890 ns, ns != 1 ? "s" : "" ); 2891 /* FALL THRU */ 2892 } 2893 2894 #if SLAP_EVENTS_ARE_INDEXED 2895 if ( SLAP_EVENT_IS_READ( wake_sds[tid][0] ) ) { 2896 char c[BUFSIZ]; 2897 SLAP_EVENT_CLR_READ( wake_sds[tid][0] ); 2898 waking = 0; 2899 tcp_read( SLAP_FD2SOCK(wake_sds[tid][0]), c, sizeof(c) ); 2900 Debug( LDAP_DEBUG_CONNS, "daemon: waked\n" ); 2901 continue; 2902 } 2903 2904 /* The event slot equals the descriptor number - this is 2905 * true for Unix select and poll. We treat Windows select 2906 * like this too, even though it's a kludge. 2907 */ 2908 if ( listening ) 2909 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2910 int rc; 2911 2912 if ( ns <= 0 ) break; 2913 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID ) continue; 2914 if ( DAEMON_ID( slap_listeners[l]->sl_sd ) != tid ) continue; 2915 #ifdef LDAP_CONNECTIONLESS 2916 if ( slap_listeners[l]->sl_is_udp ) continue; 2917 #endif /* LDAP_CONNECTIONLESS */ 2918 if ( !SLAP_EVENT_IS_READ( slap_listeners[l]->sl_sd ) ) continue; 2919 2920 /* clear events */ 2921 SLAP_EVENT_CLR_READ( slap_listeners[l]->sl_sd ); 2922 SLAP_EVENT_CLR_WRITE( slap_listeners[l]->sl_sd ); 2923 ns--; 2924 2925 rc = slap_listener_activate( slap_listeners[l] ); 2926 } 2927 2928 /* bypass the following tests if no descriptors left */ 2929 if ( ns <= 0 ) { 2930 #ifndef HAVE_YIELDING_SELECT 2931 ldap_pvt_thread_yield(); 2932 #endif /* HAVE_YIELDING_SELECT */ 2933 continue; 2934 } 2935 2936 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:" ); 2937 nrfds = 0; 2938 nwfds = 0; 2939 for ( i = 0; i < nfds; i++ ) { 2940 int r, w; 2941 2942 r = SLAP_EVENT_IS_READ( i ); 2943 /* writefds was not initialized if nwriters was zero */ 2944 w = nwriters ? SLAP_EVENT_IS_WRITE( i ) : 0; 2945 if ( r || w ) { 2946 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i, 2947 r ? "r" : "", w ? "w" : "" ); 2948 if ( r ) { 2949 nrfds++; 2950 ns--; 2951 } 2952 if ( w ) { 2953 nwfds++; 2954 ns--; 2955 } 2956 } 2957 if ( ns <= 0 ) break; 2958 } 2959 Debug( LDAP_DEBUG_CONNS, "\n" ); 2960 2961 /* loop through the writers */ 2962 for ( i = 0; nwfds > 0; i++ ) { 2963 ber_socket_t wd; 2964 if ( ! SLAP_EVENT_IS_WRITE( i ) ) continue; 2965 wd = i; 2966 2967 SLAP_EVENT_CLR_WRITE( wd ); 2968 nwfds--; 2969 2970 Debug( LDAP_DEBUG_CONNS, 2971 "daemon: write active on %d\n", 2972 wd ); 2973 2974 /* 2975 * NOTE: it is possible that the connection was closed 2976 * and that the stream is now inactive. 2977 * connection_write() must validate the stream is still 2978 * active. 2979 * 2980 * ITS#4338: if the stream is invalid, there is no need to 2981 * close it here. It has already been closed in connection.c. 2982 */ 2983 if ( connection_write( wd ) < 0 ) { 2984 if ( SLAP_EVENT_IS_READ( wd ) ) { 2985 SLAP_EVENT_CLR_READ( (unsigned) wd ); 2986 nrfds--; 2987 } 2988 } 2989 } 2990 2991 for ( i = 0; nrfds > 0; i++ ) { 2992 ber_socket_t rd; 2993 if ( ! SLAP_EVENT_IS_READ( i ) ) continue; 2994 rd = i; 2995 SLAP_EVENT_CLR_READ( rd ); 2996 nrfds--; 2997 2998 Debug ( LDAP_DEBUG_CONNS, 2999 "daemon: read activity on %d\n", rd ); 3000 /* 3001 * NOTE: it is possible that the connection was closed 3002 * and that the stream is now inactive. 3003 * connection_read() must valid the stream is still 3004 * active. 3005 */ 3006 3007 connection_read_activate( rd ); 3008 } 3009 #else /* !SLAP_EVENTS_ARE_INDEXED */ 3010 /* FIXME */ 3011 /* The events are returned in an arbitrary list. This is true 3012 * for /dev/poll, epoll and kqueue. In order to prioritize things 3013 * so that we can handle wake_sds first, listeners second, and then 3014 * all other connections last (as we do for select), we would need 3015 * to use multiple event handles and cascade them. 3016 * 3017 * That seems like a bit of hassle. So the wake_sds check has been 3018 * skipped. For epoll and kqueue we can associate arbitrary data with 3019 * an event, so we could use pointers to the listener structure 3020 * instead of just the file descriptor. For /dev/poll we have to 3021 * search the listeners array for a matching descriptor. 3022 * 3023 * We now handle wake events when we see them; they are not given 3024 * higher priority. 3025 */ 3026 #ifdef LDAP_DEBUG 3027 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:" ); 3028 3029 for ( i = 0; i < ns; i++ ) { 3030 int r, w, fd; 3031 3032 /* Don't log listener events */ 3033 if ( SLAP_EVENT_IS_LISTENER( tid, i ) 3034 #ifdef LDAP_CONNECTIONLESS 3035 && !( (SLAP_EVENT_LISTENER( tid, i ))->sl_is_udp ) 3036 #endif /* LDAP_CONNECTIONLESS */ 3037 ) 3038 { 3039 continue; 3040 } 3041 3042 fd = SLAP_EVENT_FD( tid, i ); 3043 /* Don't log internal wake events */ 3044 if ( fd == wake_sds[tid][0] ) continue; 3045 3046 #ifdef HAVE_KQUEUE 3047 r = SLAP_EVENT_IS_READ( tid, i ); 3048 w = SLAP_EVENT_IS_WRITE( tid, i ); 3049 #else 3050 r = SLAP_EVENT_IS_READ( i ); 3051 w = SLAP_EVENT_IS_WRITE( i ); 3052 #endif /* HAVE_KQUEUE */ 3053 if ( r || w ) { 3054 Debug( LDAP_DEBUG_CONNS, " %d%s%s", fd, 3055 r ? "r" : "", w ? "w" : "" ); 3056 } 3057 } 3058 Debug( LDAP_DEBUG_CONNS, "\n" ); 3059 #endif /* LDAP_DEBUG */ 3060 3061 for ( i = 0; i < ns; i++ ) { 3062 int rc = 1, fd, w = 0, r = 0; 3063 3064 if ( SLAP_EVENT_IS_LISTENER( tid, i ) ) { 3065 rc = slap_listener_activate( SLAP_EVENT_LISTENER( tid, i ) ); 3066 } 3067 3068 /* If we found a regular listener, rc is now zero, and we 3069 * can skip the data portion. But if it was a UDP listener 3070 * then rc is still 1, and we want to handle the data. 3071 */ 3072 if ( rc ) { 3073 fd = SLAP_EVENT_FD( tid, i ); 3074 3075 /* Handle wake events */ 3076 if ( fd == wake_sds[tid][0] ) { 3077 char c[BUFSIZ]; 3078 waking = 0; 3079 (void)!tcp_read( SLAP_FD2SOCK(wake_sds[tid][0]), c, sizeof(c) ); 3080 continue; 3081 } 3082 3083 #ifdef HAVE_KQUEUE 3084 if ( SLAP_EVENT_IS_WRITE( tid, i ) ) 3085 #else 3086 if ( SLAP_EVENT_IS_WRITE( i ) ) 3087 #endif /* HAVE_KQUEUE */ 3088 { 3089 Debug( LDAP_DEBUG_CONNS, 3090 "daemon: write active on %d\n", 3091 fd ); 3092 3093 SLAP_EVENT_CLR_WRITE( i ); 3094 w = 1; 3095 3096 /* 3097 * NOTE: it is possible that the connection was closed 3098 * and that the stream is now inactive. 3099 * connection_write() must valid the stream is still 3100 * active. 3101 */ 3102 if ( connection_write( fd ) < 0 ) { 3103 continue; 3104 } 3105 } 3106 /* If event is a read */ 3107 #ifdef HAVE_KQUEUE 3108 if ( SLAP_EVENT_IS_READ( tid, i )) 3109 #else 3110 if ( SLAP_EVENT_IS_READ( i )) 3111 #endif /* HAVE_KQUEUE */ 3112 { 3113 r = 1; 3114 Debug( LDAP_DEBUG_CONNS, 3115 "daemon: read active on %d\n", 3116 fd ); 3117 3118 SLAP_EVENT_CLR_READ( i ); 3119 connection_read_activate( fd ); 3120 } else if ( !w ) { 3121 #ifdef HAVE_EPOLL 3122 /* Don't keep reporting the hangup 3123 */ 3124 if ( SLAP_SOCK_IS_ACTIVE( tid, fd )) { 3125 SLAP_EPOLL_SOCK_SET( tid, fd, EPOLLET ); 3126 } 3127 #endif 3128 } 3129 } 3130 } 3131 #endif /* SLAP_EVENTS_ARE_INDEXED */ 3132 3133 /* Was number of listener threads decreased? */ 3134 if ( ldap_pvt_thread_pool_pausecheck_native( &connection_pool )) { 3135 /* decreased, let this thread finish */ 3136 if ( tid >= slapd_daemon_threads ) 3137 break; 3138 } 3139 3140 #ifndef HAVE_YIELDING_SELECT 3141 ldap_pvt_thread_yield(); 3142 #endif /* ! HAVE_YIELDING_SELECT */ 3143 } 3144 3145 /* Only thread 0 handles shutdown */ 3146 if ( tid ) 3147 return NULL; 3148 3149 if ( slapd_shutdown == 1 ) { 3150 Debug( LDAP_DEBUG_ANY, 3151 "daemon: shutdown requested and initiated.\n" ); 3152 3153 } else if ( slapd_shutdown == 2 ) { 3154 #ifdef HAVE_NT_SERVICE_MANAGER 3155 Debug( LDAP_DEBUG_ANY, 3156 "daemon: shutdown initiated by Service Manager.\n" ); 3157 #else /* !HAVE_NT_SERVICE_MANAGER */ 3158 Debug( LDAP_DEBUG_ANY, 3159 "daemon: abnormal condition, shutdown initiated.\n" ); 3160 #endif /* !HAVE_NT_SERVICE_MANAGER */ 3161 } else { 3162 Debug( LDAP_DEBUG_ANY, 3163 "daemon: no active streams, shutdown initiated.\n" ); 3164 } 3165 3166 close_listeners( 1 ); 3167 3168 if ( !slapd_gentle_shutdown ) { 3169 slapd_abrupt_shutdown = 1; 3170 connections_shutdown(); 3171 } 3172 3173 #ifdef HAVE_KQUEUE 3174 close( slap_daemon[tid].sd_kq ); 3175 #endif 3176 3177 if ( LogTest( LDAP_DEBUG_ANY )) { 3178 int t = ldap_pvt_thread_pool_backload( &connection_pool ); 3179 Debug( LDAP_DEBUG_ANY, 3180 "slapd shutdown: waiting for %d operations/tasks to finish\n", 3181 t ); 3182 } 3183 ldap_pvt_thread_pool_close( &connection_pool, 1 ); 3184 3185 return NULL; 3186 } 3187 3188 typedef struct slap_tid_waiter { 3189 int num_tids; 3190 ldap_pvt_thread_t tids[0]; 3191 } slap_tid_waiter; 3192 3193 static void * 3194 slapd_daemon_tid_cleanup( 3195 void *ctx, 3196 void *ptr ) 3197 { 3198 slap_tid_waiter *tids = ptr; 3199 int i; 3200 3201 for ( i=0; i<tids->num_tids; i++ ) 3202 ldap_pvt_thread_join( tids->tids[i], (void *)NULL ); 3203 ch_free( ptr ); 3204 return NULL; 3205 } 3206 3207 int 3208 slapd_daemon_resize( int newnum ) 3209 { 3210 int i, rc; 3211 3212 if ( newnum == slapd_daemon_threads ) 3213 return 0; 3214 3215 /* wake up all current listener threads */ 3216 for ( i=0; i<slapd_daemon_threads; i++ ) 3217 WAKE_LISTENER(i,1); 3218 3219 /* mutexes may not survive realloc, so destroy & recreate later */ 3220 for ( i=0; i<slapd_daemon_threads; i++ ) 3221 ldap_pvt_thread_mutex_destroy( &slap_daemon[i].sd_mutex ); 3222 3223 if ( newnum > slapd_daemon_threads ) { 3224 wake_sds = ch_realloc( wake_sds, newnum * sizeof( sdpair )); 3225 slap_daemon = ch_realloc( slap_daemon, newnum * sizeof( slap_daemon_st )); 3226 3227 for ( i=slapd_daemon_threads; i<newnum; i++ ) 3228 { 3229 memset( &slap_daemon[i], 0, sizeof( slap_daemon_st )); 3230 if( (rc = lutil_pair( wake_sds[i] )) < 0 ) { 3231 Debug( LDAP_DEBUG_ANY, 3232 "daemon: lutil_pair() failed rc=%d\n", rc ); 3233 return rc; 3234 } 3235 ber_pvt_socket_set_nonblock( wake_sds[i][1], 1 ); 3236 3237 SLAP_SOCK_INIT(i); 3238 } 3239 3240 for ( i=0; i<newnum; i++ ) 3241 ldap_pvt_thread_mutex_init( &slap_daemon[i].sd_mutex ); 3242 3243 slapd_socket_realloc( newnum ); 3244 3245 for ( i=slapd_daemon_threads; i<newnum; i++ ) 3246 { 3247 /* listener as a separate THREAD */ 3248 rc = ldap_pvt_thread_create( &slap_daemon[i].sd_tid, 3249 0, slapd_daemon_task, &slap_daemon[i] ); 3250 3251 if ( rc != 0 ) { 3252 Debug( LDAP_DEBUG_ANY, 3253 "listener ldap_pvt_thread_create failed (%d)\n", rc ); 3254 return rc; 3255 } 3256 } 3257 } else { 3258 int j; 3259 slap_tid_waiter *tids = ch_malloc( sizeof(slap_tid_waiter) + 3260 ((slapd_daemon_threads - newnum) * sizeof(ldap_pvt_thread_t ))); 3261 slapd_socket_realloc( newnum ); 3262 tids->num_tids = slapd_daemon_threads - newnum; 3263 for ( i=newnum, j=0; i<slapd_daemon_threads; i++, j++ ) { 3264 tids->tids[j] = slap_daemon[i].sd_tid; 3265 #ifdef HAVE_WINSOCK 3266 if ( wake_sds[i][1] != INVALID_SOCKET && 3267 SLAP_FD2SOCK( wake_sds[i][1] ) != SLAP_FD2SOCK( wake_sds[i][0] )) 3268 #endif /* HAVE_WINSOCK */ 3269 tcp_close( SLAP_FD2SOCK(wake_sds[i][1]) ); 3270 #ifdef HAVE_WINSOCK 3271 if ( wake_sds[i][0] != INVALID_SOCKET ) 3272 #endif /* HAVE_WINSOCK */ 3273 tcp_close( SLAP_FD2SOCK(wake_sds[i][0]) ); 3274 3275 SLAP_SOCK_DESTROY( i ); 3276 } 3277 3278 wake_sds = ch_realloc( wake_sds, newnum * sizeof( sdpair )); 3279 slap_daemon = ch_realloc( slap_daemon, newnum * sizeof( slap_daemon_st )); 3280 for ( i=0; i<newnum; i++ ) 3281 ldap_pvt_thread_mutex_init( &slap_daemon[i].sd_mutex ); 3282 ldap_pvt_thread_pool_submit( &connection_pool, 3283 slapd_daemon_tid_cleanup, (void *) tids ); 3284 } 3285 slapd_daemon_threads = newnum; 3286 slapd_daemon_mask = newnum - 1; 3287 return 0; 3288 } 3289 3290 #ifdef LDAP_CONNECTIONLESS 3291 static int 3292 connectionless_init( void ) 3293 { 3294 int l; 3295 3296 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 3297 Listener *lr = slap_listeners[l]; 3298 Connection *c; 3299 3300 if ( !lr->sl_is_udp ) { 3301 continue; 3302 } 3303 3304 c = connection_init( lr->sl_sd, lr, "", "", 3305 CONN_IS_UDP, (slap_ssf_t) 0, NULL 3306 LDAP_PF_LOCAL_SENDMSG_ARG(NULL)); 3307 3308 if ( !c ) { 3309 Debug( LDAP_DEBUG_TRACE, 3310 "connectionless_init: failed on %s (%d)\n", 3311 lr->sl_url.bv_val, lr->sl_sd ); 3312 return -1; 3313 } 3314 lr->sl_is_udp++; 3315 } 3316 3317 return 0; 3318 } 3319 #endif /* LDAP_CONNECTIONLESS */ 3320 3321 int 3322 slapd_daemon( void ) 3323 { 3324 int i, rc; 3325 3326 #ifdef LDAP_CONNECTIONLESS 3327 connectionless_init(); 3328 #endif /* LDAP_CONNECTIONLESS */ 3329 3330 SLAP_SOCK_INIT2(); 3331 3332 /* daemon_init only inits element 0 */ 3333 for ( i=1; i<slapd_daemon_threads; i++ ) 3334 { 3335 ldap_pvt_thread_mutex_init( &slap_daemon[i].sd_mutex ); 3336 3337 if( (rc = lutil_pair( wake_sds[i] )) < 0 ) { 3338 Debug( LDAP_DEBUG_ANY, 3339 "daemon: lutil_pair() failed rc=%d\n", rc ); 3340 return rc; 3341 } 3342 ber_pvt_socket_set_nonblock( wake_sds[i][1], 1 ); 3343 3344 SLAP_SOCK_INIT(i); 3345 } 3346 3347 for ( i=0; i<slapd_daemon_threads; i++ ) 3348 { 3349 /* listener as a separate THREAD */ 3350 rc = ldap_pvt_thread_create( &slap_daemon[i].sd_tid, 3351 0, slapd_daemon_task, &slap_daemon[i] ); 3352 3353 if ( rc != 0 ) { 3354 Debug( LDAP_DEBUG_ANY, 3355 "listener ldap_pvt_thread_create failed (%d)\n", rc ); 3356 return rc; 3357 } 3358 } 3359 3360 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 3361 while ( !slapd_ready && !slapd_shutdown ) { 3362 ldap_pvt_thread_cond_wait( &slapd_init_cond, &slapd_init_mutex ); 3363 } 3364 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 3365 3366 if ( slapd_shutdown ) { 3367 Debug( LDAP_DEBUG_ANY, 3368 "listener initialization failed\n" ); 3369 return 1; 3370 } 3371 3372 #ifdef HAVE_SYSTEMD 3373 rc = sd_notify( 1, "READY=1" ); 3374 if ( rc < 0 ) { 3375 Debug( LDAP_DEBUG_ANY, 3376 "systemd sd_notify failed (%d)\n", rc ); 3377 } 3378 #endif /* HAVE_SYSTEMD */ 3379 3380 /* wait for the listener threads to complete */ 3381 for ( i=0; i<slapd_daemon_threads; i++ ) 3382 ldap_pvt_thread_join( slap_daemon[i].sd_tid, (void *)NULL ); 3383 3384 destroy_listeners(); 3385 3386 return 0; 3387 } 3388 3389 static int 3390 sockinit( void ) 3391 { 3392 #if defined( HAVE_WINSOCK2 ) 3393 WORD wVersionRequested; 3394 WSADATA wsaData; 3395 int err; 3396 3397 wVersionRequested = MAKEWORD( 2, 0 ); 3398 3399 err = WSAStartup( wVersionRequested, &wsaData ); 3400 if ( err != 0 ) { 3401 /* Tell the user that we couldn't find a usable */ 3402 /* WinSock DLL. */ 3403 return -1; 3404 } 3405 3406 /* Confirm that the WinSock DLL supports 2.0.*/ 3407 /* Note that if the DLL supports versions greater */ 3408 /* than 2.0 in addition to 2.0, it will still return */ 3409 /* 2.0 in wVersion since that is the version we */ 3410 /* requested. */ 3411 3412 if ( LOBYTE( wsaData.wVersion ) != 2 || 3413 HIBYTE( wsaData.wVersion ) != 0 ) 3414 { 3415 /* Tell the user that we couldn't find a usable */ 3416 /* WinSock DLL. */ 3417 WSACleanup(); 3418 return -1; 3419 } 3420 3421 /* The WinSock DLL is acceptable. Proceed. */ 3422 #elif defined( HAVE_WINSOCK ) 3423 WSADATA wsaData; 3424 if ( WSAStartup( 0x0101, &wsaData ) != 0 ) return -1; 3425 #endif /* ! HAVE_WINSOCK2 && ! HAVE_WINSOCK */ 3426 3427 return 0; 3428 } 3429 3430 static int 3431 sockdestroy( void ) 3432 { 3433 #if defined( HAVE_WINSOCK2 ) || defined( HAVE_WINSOCK ) 3434 WSACleanup(); 3435 #endif /* HAVE_WINSOCK2 || HAVE_WINSOCK */ 3436 3437 return 0; 3438 } 3439 3440 RETSIGTYPE 3441 slap_sig_shutdown( int sig ) 3442 { 3443 int save_errno = errno; 3444 int i; 3445 3446 #if 0 3447 Debug(LDAP_DEBUG_TRACE, "slap_sig_shutdown: signal %d\n", sig); 3448 #endif 3449 3450 /* 3451 * If the NT Service Manager is controlling the server, we don't 3452 * want SIGBREAK to kill the server. For some strange reason, 3453 * SIGBREAK is generated when a user logs out. 3454 */ 3455 3456 #if defined(HAVE_NT_SERVICE_MANAGER) && defined(SIGBREAK) 3457 if (is_NT_Service && sig == SIGBREAK) { 3458 /* empty */; 3459 } else 3460 #endif /* HAVE_NT_SERVICE_MANAGER && SIGBREAK */ 3461 #ifdef SIGHUP 3462 if (sig == SIGHUP && global_gentlehup && slapd_gentle_shutdown == 0) { 3463 slapd_gentle_shutdown = 1; 3464 } else 3465 #endif /* SIGHUP */ 3466 { 3467 slapd_shutdown = 1; 3468 } 3469 3470 for (i=0; i<slapd_daemon_threads; i++) { 3471 WAKE_LISTENER(i,1); 3472 } 3473 3474 /* reinstall self */ 3475 (void) SIGNAL_REINSTALL( sig, slap_sig_shutdown ); 3476 3477 errno = save_errno; 3478 } 3479 3480 RETSIGTYPE 3481 slap_sig_wake( int sig ) 3482 { 3483 int save_errno = errno; 3484 3485 WAKE_LISTENER(0,1); 3486 3487 /* reinstall self */ 3488 (void) SIGNAL_REINSTALL( sig, slap_sig_wake ); 3489 3490 errno = save_errno; 3491 } 3492 3493 int 3494 slap_pause_server( void ) 3495 { 3496 BackendInfo *bi; 3497 int rc = LDAP_SUCCESS; 3498 3499 rc = ldap_pvt_thread_pool_pause( &connection_pool ); 3500 3501 LDAP_STAILQ_FOREACH(bi, &backendInfo, bi_next) { 3502 if ( bi->bi_pause ) { 3503 rc = bi->bi_pause( bi ); 3504 if ( rc != LDAP_SUCCESS ) { 3505 Debug( LDAP_DEBUG_ANY, "slap_pause_server: " 3506 "bi_pause failed for backend %s\n", 3507 bi->bi_type ); 3508 return rc; 3509 } 3510 } 3511 } 3512 3513 return rc; 3514 } 3515 3516 int 3517 slap_unpause_server( void ) 3518 { 3519 BackendInfo *bi; 3520 int rc = LDAP_SUCCESS; 3521 3522 LDAP_STAILQ_FOREACH(bi, &backendInfo, bi_next) { 3523 if ( bi->bi_unpause ) { 3524 rc = bi->bi_unpause( bi ); 3525 if ( rc != LDAP_SUCCESS ) { 3526 Debug( LDAP_DEBUG_ANY, "slap_unpause_server: " 3527 "bi_unpause failed for backend %s\n", 3528 bi->bi_type ); 3529 return rc; 3530 } 3531 } 3532 } 3533 3534 rc = ldap_pvt_thread_pool_resume( &connection_pool ); 3535 return rc; 3536 } 3537 3538 3539 void 3540 slapd_add_internal( ber_socket_t s, int isactive ) 3541 { 3542 if (!isactive) { 3543 SET_CLOSE(s); 3544 } 3545 slapd_add( s, isactive, NULL, -1 ); 3546 } 3547 3548 Listener ** 3549 slapd_get_listeners( void ) 3550 { 3551 /* Could return array with no listeners if !listening, but current 3552 * callers mostly look at the URLs. E.g. syncrepl uses this to 3553 * identify the server, which means it wants the startup arguments. 3554 */ 3555 return slap_listeners; 3556 } 3557 3558 /* Reject all incoming requests */ 3559 void 3560 slap_suspend_listeners( void ) 3561 { 3562 int i; 3563 for (i=0; slap_listeners[i]; i++) { 3564 slap_listeners[i]->sl_mute = 1; 3565 listen( slap_listeners[i]->sl_sd, 0 ); 3566 } 3567 } 3568 3569 /* Resume after a suspend */ 3570 void 3571 slap_resume_listeners( void ) 3572 { 3573 int i; 3574 for (i=0; slap_listeners[i]; i++) { 3575 slap_listeners[i]->sl_mute = 0; 3576 listen( slap_listeners[i]->sl_sd, SLAPD_LISTEN_BACKLOG ); 3577 } 3578 } 3579 3580 void 3581 slap_wake_listener() 3582 { 3583 WAKE_LISTENER(0,1); 3584 } 3585 3586 /* return 0 on timeout, 1 on writer ready 3587 * -1 on general error 3588 */ 3589 int 3590 slapd_wait_writer( ber_socket_t sd ) 3591 { 3592 #ifdef HAVE_WINSOCK 3593 fd_set writefds; 3594 struct timeval tv, *tvp; 3595 3596 FD_ZERO( &writefds ); 3597 FD_SET( slapd_ws_sockets[sd], &writefds ); 3598 if ( global_writetimeout ) { 3599 tv.tv_sec = global_writetimeout; 3600 tv.tv_usec = 0; 3601 tvp = &tv; 3602 } else { 3603 tvp = NULL; 3604 } 3605 return select( 0, NULL, &writefds, NULL, tvp ); 3606 #else 3607 struct pollfd fds; 3608 int timeout = global_writetimeout ? global_writetimeout * 1000 : -1; 3609 3610 fds.fd = sd; 3611 fds.events = POLLOUT; 3612 3613 return poll( &fds, 1, timeout ); 3614 #endif 3615 } 3616
Indexes created Tue Feb 24 08:35:24 UTC 2026