1 /* $NetBSD: daemon.c,v 1.3 2021/08/14 16:14:58 christos Exp $ */ 2 3 /* $OpenLDAP$ */ 4 /* This work is part of OpenLDAP Software <http://www.openldap.org/>. 5 * 6 * Copyright 1998-2021 The OpenLDAP Foundation. 7 * Portions Copyright 2007 by Howard Chu, Symas Corporation. 8 * All rights reserved. 9 * 10 * Redistribution and use in source and binary forms, with or without 11 * modification, are permitted only as authorized by the OpenLDAP 12 * Public License. 13 * 14 * A copy of this license is available in the file LICENSE in the 15 * top-level directory of the distribution or, alternatively, at 16 * <http://www.OpenLDAP.org/license.html>. 17 */ 18 /* Portions Copyright (c) 1995 Regents of the University of Michigan. 19 * All rights reserved. 20 * 21 * Redistribution and use in source and binary forms are permitted 22 * provided that this notice is preserved and that due credit is given 23 * to the University of Michigan at Ann Arbor. The name of the University 24 * may not be used to endorse or promote products derived from this 25 * software without specific prior written permission. This software 26 * is provided ``as is'' without express or implied warranty. 27 */ 28 29 #include <sys/cdefs.h> 30 __RCSID("$NetBSD: daemon.c,v 1.3 2021/08/14 16:14:58 christos Exp $"); 31 32 #include "portable.h" 33 34 #include <stdio.h> 35 36 #include <ac/ctype.h> 37 #include <ac/errno.h> 38 #include <ac/socket.h> 39 #include <ac/string.h> 40 #include <ac/time.h> 41 #include <ac/unistd.h> 42 43 #include "slap.h" 44 #include "ldap_pvt_thread.h" 45 #include "lutil.h" 46 47 #include "ldap_rq.h" 48 49 #ifdef HAVE_SYSTEMD_SD_DAEMON_H 50 #include <systemd/sd-daemon.h> 51 #endif 52 53 #ifdef HAVE_POLL 54 #include <poll.h> 55 #endif 56 57 #ifdef HAVE_KQUEUE 58 # include <sys/types.h> 59 # include <sys/event.h> 60 # include <sys/time.h> 61 #elif defined(HAVE_SYS_EPOLL_H) && defined(HAVE_EPOLL) 62 # include <sys/epoll.h> 63 #elif defined(SLAP_X_DEVPOLL) && defined(HAVE_SYS_DEVPOLL_H) && defined(HAVE_DEVPOLL) 64 # include <sys/types.h> 65 # include <sys/stat.h> 66 # include <fcntl.h> 67 # include <sys/devpoll.h> 68 #endif /* ! kqueue && ! epoll && ! /dev/poll */ 69 70 #ifdef HAVE_TCPD 71 int allow_severity = LOG_INFO; 72 int deny_severity = LOG_NOTICE; 73 #endif /* TCP Wrappers */ 74 75 #ifdef LDAP_PF_LOCAL 76 # include <sys/stat.h> 77 /* this should go in <ldap.h> as soon as it is accepted */ 78 # define LDAPI_MOD_URLEXT "x-mod" 79 #endif /* LDAP_PF_LOCAL */ 80 81 #ifdef LDAP_PF_INET6 82 int slap_inet4or6 = AF_UNSPEC; 83 #else /* ! INETv6 */ 84 int slap_inet4or6 = AF_INET; 85 #endif /* ! INETv6 */ 86 87 /* globals */ 88 time_t starttime; 89 ber_socket_t dtblsize; 90 slap_ssf_t local_ssf = LDAP_PVT_SASL_LOCAL_SSF; 91 struct runqueue_s slapd_rq; 92 93 int slapd_daemon_threads = 1; 94 int slapd_daemon_mask; 95 96 #ifdef LDAP_TCP_BUFFER 97 int slapd_tcp_rmem; 98 int slapd_tcp_wmem; 99 #endif /* LDAP_TCP_BUFFER */ 100 101 Listener **slap_listeners = NULL; 102 static volatile sig_atomic_t listening = 1; /* 0 when slap_listeners closed */ 103 104 #ifndef SLAPD_LISTEN_BACKLOG 105 #define SLAPD_LISTEN_BACKLOG 2048 106 #endif /* ! SLAPD_LISTEN_BACKLOG */ 107 108 #define DAEMON_ID(fd) (fd & slapd_daemon_mask) 109 110 typedef ber_socket_t sdpair[2]; 111 112 static sdpair *wake_sds; 113 static ldap_pvt_thread_mutex_t emfile_mutex; 114 static int emfile; 115 116 static volatile int waking; 117 #define WAKE_LISTENER(l,w) do { \ 118 if (w) { \ 119 (void)!tcp_write( SLAP_FD2SOCK(wake_sds[l][1]), "0", 1 ); \ 120 } \ 121 } while (0) 122 123 ldap_pvt_thread_mutex_t slapd_init_mutex; 124 ldap_pvt_thread_cond_t slapd_init_cond; 125 int slapd_ready = 0; 126 127 volatile sig_atomic_t slapd_shutdown = 0; 128 volatile sig_atomic_t slapd_gentle_shutdown = 0; 129 volatile sig_atomic_t slapd_abrupt_shutdown = 0; 130 131 #ifdef HAVE_WINSOCK 132 ldap_pvt_thread_mutex_t slapd_ws_mutex; 133 SOCKET *slapd_ws_sockets; 134 #define SD_READ 1 135 #define SD_WRITE 2 136 #define SD_ACTIVE 4 137 #define SD_LISTENER 8 138 #endif 139 140 #ifdef HAVE_TCPD 141 static ldap_pvt_thread_mutex_t sd_tcpd_mutex; 142 #endif /* TCP Wrappers */ 143 144 typedef struct slap_daemon_st { 145 ldap_pvt_thread_mutex_t sd_mutex; 146 147 ber_socket_t sd_nactives; 148 int sd_nwriters; 149 int sd_nfds; 150 ldap_pvt_thread_t sd_tid; 151 152 #if defined(HAVE_KQUEUE) 153 uint8_t* sd_fdmodes; /* indexed by fd */ 154 Listener** sd_l; /* indexed by fd */ 155 /* Double buffer the kqueue changes to avoid holding the sd_mutex \ 156 * during a kevent() call. \ 157 */ 158 struct kq_change { 159 struct kevent* sd_changes; 160 int sd_nchanges; 161 int sd_maxchanges; 162 } sd_kqc[2]; 163 int sd_changeidx; /* index to current change buffer */ 164 int sd_kq; 165 #elif defined(HAVE_EPOLL) 166 167 struct epoll_event *sd_epolls; 168 int *sd_index; 169 int sd_epfd; 170 #elif defined(SLAP_X_DEVPOLL) && defined(HAVE_DEVPOLL) 171 /* eXperimental */ 172 struct pollfd *sd_pollfd; 173 int *sd_index; 174 Listener **sd_l; 175 int sd_dpfd; 176 #else /* ! kqueue && ! epoll && ! /dev/poll */ 177 #ifdef HAVE_WINSOCK 178 char *sd_flags; 179 char *sd_rflags; 180 #else /* ! HAVE_WINSOCK */ 181 fd_set sd_actives; 182 fd_set sd_readers; 183 fd_set sd_writers; 184 #endif /* ! HAVE_WINSOCK */ 185 #endif /* ! kqueue && ! epoll && ! /dev/poll */ 186 } slap_daemon_st; 187 188 static slap_daemon_st *slap_daemon; 189 190 /* 191 * NOTE: naming convention for macros: 192 * 193 * - SLAP_SOCK_* and SLAP_EVENT_* for public interface that deals 194 * with file descriptors and events respectively 195 * 196 * - SLAP_<type>_* for private interface; type by now is one of 197 * EPOLL, DEVPOLL, SELECT, KQUEUE 198 * 199 * private interface should not be used in the code. 200 */ 201 #ifdef HAVE_KQUEUE 202 # define SLAP_EVENT_FNAME "kqueue" 203 # define SLAP_EVENTS_ARE_INDEXED 0 204 # define SLAP_EVENT_MAX(t) (2 * dtblsize) /* each fd can have a read & a write event */ 205 206 # define SLAP_EVENT_DECL \ 207 static struct kevent* events = NULL 208 209 # define SLAP_EVENT_INIT(t) do {\ 210 if (!events) { \ 211 events = ch_malloc(sizeof(*events) * SLAP_EVENT_MAX(t)); \ 212 } \ 213 } while (0) 214 215 # define SLAP_SOCK_INIT(t) do { \ 216 int kq_i; \ 217 size_t kq_nbytes; \ 218 Debug(LDAP_DEBUG_ANY, "daemon: SLAP_SOCK_INIT: dtblsize=%d\n", dtblsize); \ 219 slap_daemon[t].sd_nfds = 0; \ 220 slap_daemon[t].sd_changeidx = 0; \ 221 for (kq_i = 0; kq_i < 2; kq_i++) { \ 222 struct kq_change* kqc = &slap_daemon[t].sd_kqc[kq_i]; \ 223 kqc->sd_nchanges = 0; \ 224 kqc->sd_maxchanges = 256; /* will grow as needed */ \ 225 kq_nbytes = sizeof(*kqc->sd_changes) * kqc->sd_maxchanges; \ 226 kqc->sd_changes = ch_calloc(1, kq_nbytes); \ 227 } \ 228 kq_nbytes = sizeof(*slap_daemon[t].sd_fdmodes) * dtblsize; \ 229 slap_daemon[t].sd_fdmodes = ch_calloc(1, kq_nbytes); \ 230 kq_nbytes = sizeof(*slap_daemon[t].sd_l) * dtblsize; \ 231 slap_daemon[t].sd_l = ch_calloc(1, kq_nbytes); \ 232 slap_daemon[t].sd_kq = kqueue(); \ 233 } while (0) 234 235 /* a kqueue fd obtained before a fork can't be used in child process. 236 * close it and reacquire it. 237 */ 238 # define SLAP_SOCK_INIT2() do { \ 239 close(slap_daemon[0].sd_kq); \ 240 slap_daemon[0].sd_kq = kqueue(); \ 241 } while (0) 242 243 # define SLAP_SOCK_DESTROY(t) do { \ 244 int kq_i; \ 245 if (slap_daemon[t].sd_kq > 0) { \ 246 close(slap_daemon[t].sd_kq); \ 247 slap_daemon[t].sd_kq = -1; \ 248 } \ 249 for (kq_i = 0; kq_i < 2; kq_i++) { \ 250 if (slap_daemon[t].sd_kqc[kq_i].sd_changes != NULL) { \ 251 ch_free(slap_daemon[t].sd_kqc[kq_i].sd_changes); \ 252 slap_daemon[t].sd_kqc[kq_i].sd_changes = NULL; \ 253 } \ 254 slap_daemon[t].sd_kqc[kq_i].sd_nchanges = 0; \ 255 slap_daemon[t].sd_kqc[kq_i].sd_maxchanges = 0; \ 256 } \ 257 if (slap_daemon[t].sd_l != NULL) { \ 258 ch_free(slap_daemon[t].sd_l); \ 259 slap_daemon[t].sd_l = NULL; \ 260 } \ 261 if (slap_daemon[t].sd_fdmodes != NULL) { \ 262 ch_free(slap_daemon[t].sd_fdmodes); \ 263 slap_daemon[t].sd_fdmodes = NULL; \ 264 } \ 265 slap_daemon[t].sd_nfds = 0; \ 266 } while (0) 267 268 # define SLAP_KQUEUE_SOCK_ACTIVE 0x01 269 # define SLAP_KQUEUE_SOCK_READ_ENABLED 0x02 270 # define SLAP_KQUEUE_SOCK_WRITE_ENABLED 0x04 271 272 # define SLAP_SOCK_IS_ACTIVE(t,s) (slap_daemon[t].sd_fdmodes[(s)] != 0) 273 # define SLAP_SOCK_NOT_ACTIVE(t,s) (slap_daemon[t].sd_fdmodes[(s)] == 0) 274 # define SLAP_SOCK_IS_READ(t,s) (slap_daemon[t].sd_fdmodes[(s)] & SLAP_KQUEUE_SOCK_READ_ENABLED) 275 # define SLAP_SOCK_IS_WRITE(t,s) (slap_daemon[t].sd_fdmodes[(s)] & SLAP_KQUEUE_SOCK_WRITE_ENABLED) 276 277 /* 278 * SLAP_SOCK_SET_* & SLAP_SOCK_CLR_* get called a _lot_. Since kevent() 279 * processes changes before it looks for events, batch up the changes which 280 * will get submitted the next time kevent() is called for events. 281 */ 282 283 # define SLAP_KQUEUE_CHANGE(t, s, filter, flag) do { \ 284 /* If maxchanges is reached, have to realloc to make room for more. \ 285 * Ideally we'd call kevent(), but the daemon thread could be sitting \ 286 * in kevent() waiting for events. \ 287 */ \ 288 struct kq_change* kqc = &slap_daemon[t].sd_kqc[slap_daemon[t].sd_changeidx]; \ 289 if (kqc->sd_nchanges == kqc->sd_maxchanges) { \ 290 /* Don't want to do this very often. Double the size. */ \ 291 size_t kq_nbytes; \ 292 Debug(LDAP_DEBUG_CONNS, \ 293 "daemon: SLAP_KQUEUE_CHANGE: increasing slap_daemon.sd_kqc[%d].maxchanges from %d to %d\n", \ 294 slap_daemon[t].sd_changeidx, kqc->sd_maxchanges, 2*kqc->sd_maxchanges); \ 295 kqc->sd_maxchanges += kqc->sd_maxchanges; \ 296 kq_nbytes = sizeof(*kqc->sd_changes) * kqc->sd_maxchanges; \ 297 kqc->sd_changes = ch_realloc(kqc->sd_changes, kq_nbytes); \ 298 } \ 299 EV_SET(&kqc->sd_changes[kqc->sd_nchanges++], \ 300 (s), (filter), (flag), 0, 0, slap_daemon[t].sd_l[(s)]); \ 301 } while (0) 302 303 # define SLAP_KQUEUE_SOCK_SET(t, s, filter, mode) do { \ 304 if ((slap_daemon[t].sd_fdmodes[(s)] & (mode)) != (mode)) { \ 305 slap_daemon[t].sd_fdmodes[(s)] |= (mode); \ 306 SLAP_KQUEUE_CHANGE(t, (s), (filter), EV_ENABLE); \ 307 } \ 308 } while (0) 309 310 # define SLAP_KQUEUE_SOCK_CLR(t, s, filter, mode) do { \ 311 if (slap_daemon[t].sd_fdmodes[(s)] & (mode)) { \ 312 slap_daemon[t].sd_fdmodes[(s)] &= ~(mode); \ 313 SLAP_KQUEUE_CHANGE(t, (s), (filter), EV_DISABLE); \ 314 } \ 315 } while (0) 316 317 # define SLAP_SOCK_SET_READ(t, s) SLAP_KQUEUE_SOCK_SET(t, (s), EVFILT_READ, SLAP_KQUEUE_SOCK_READ_ENABLED) 318 # define SLAP_SOCK_SET_WRITE(t, s) SLAP_KQUEUE_SOCK_SET(t, (s), EVFILT_WRITE, SLAP_KQUEUE_SOCK_WRITE_ENABLED) 319 # define SLAP_SOCK_CLR_READ(t, s) SLAP_KQUEUE_SOCK_CLR(t, (s), EVFILT_READ, SLAP_KQUEUE_SOCK_READ_ENABLED) 320 # define SLAP_SOCK_CLR_WRITE(t, s) SLAP_KQUEUE_SOCK_CLR(t, (s), EVFILT_WRITE, SLAP_KQUEUE_SOCK_WRITE_ENABLED) 321 322 /* kqueue doesn't need to do anything to clear the event. */ 323 # define SLAP_EVENT_CLR_READ(i) do {} while (0) 324 # define SLAP_EVENT_CLR_WRITE(i) do {} while (0) 325 326 # define SLAP_SOCK_ADD(t, s, l) do { \ 327 assert( s < dtblsize ); \ 328 slap_daemon[t].sd_l[(s)] = (l); \ 329 slap_daemon[t].sd_fdmodes[(s)] = SLAP_KQUEUE_SOCK_ACTIVE | SLAP_KQUEUE_SOCK_READ_ENABLED; \ 330 ++slap_daemon[t].sd_nfds; \ 331 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_READ, EV_ADD); \ 332 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_WRITE, EV_ADD | EV_DISABLE); \ 333 } while (0) 334 335 # define SLAP_SOCK_DEL(t, s) do { \ 336 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_READ, EV_DELETE); \ 337 SLAP_KQUEUE_CHANGE(t, (s), EVFILT_WRITE, EV_DELETE); \ 338 slap_daemon[t].sd_l[(s)] = NULL; \ 339 slap_daemon[t].sd_fdmodes[(s)] = 0; \ 340 --slap_daemon[t].sd_nfds; \ 341 } while (0) 342 343 # define SLAP_EVENT_FD(t, i) (events[(i)].ident) 344 345 # define SLAP_EVENT_IS_READ(t, i) \ 346 (events[(i)].filter == EVFILT_READ && SLAP_SOCK_IS_READ(t, SLAP_EVENT_FD(0, i))) 347 348 # define SLAP_EVENT_IS_WRITE(t, i) \ 349 (events[(i)].filter == EVFILT_WRITE && SLAP_SOCK_IS_WRITE(t, SLAP_EVENT_FD(0, i))) 350 351 # define SLAP_EVENT_IS_LISTENER(t, i) \ 352 (events[(i)].udata && SLAP_SOCK_IS_READ(t, SLAP_EVENT_FD(t, i))) 353 354 # define SLAP_EVENT_LISTENER(t, i) ((Listener*)(events[(i)].udata)) 355 356 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 357 struct timespec kq_ts; \ 358 struct timespec* kq_tsp; \ 359 int kq_idx; \ 360 if (tvp) { \ 361 TIMEVAL_TO_TIMESPEC((tvp), &kq_ts); \ 362 kq_tsp = &kq_ts; \ 363 } else { \ 364 kq_tsp = NULL; \ 365 } \ 366 /* Save the change buffer index for use when the mutex is unlocked, \ 367 * then switch the index so new changes go to the other buffer. \ 368 */ \ 369 ldap_pvt_thread_mutex_lock( &slap_daemon[t].sd_mutex ); \ 370 kq_idx = slap_daemon[t].sd_changeidx; \ 371 slap_daemon[t].sd_changeidx ^= 1; \ 372 ldap_pvt_thread_mutex_unlock( &slap_daemon[t].sd_mutex ); \ 373 *(nsp) = kevent(slap_daemon[t].sd_kq, \ 374 slap_daemon[t].sd_kqc[kq_idx].sd_nchanges \ 375 ? slap_daemon[t].sd_kqc[kq_idx].sd_changes : NULL, \ 376 slap_daemon[t].sd_kqc[kq_idx].sd_nchanges, \ 377 events, SLAP_EVENT_MAX(t), kq_tsp); \ 378 slap_daemon[t].sd_kqc[kq_idx].sd_nchanges = 0; \ 379 } while(0) 380 381 /*-------------------------------------------------------------------------------*/ 382 383 #elif defined(HAVE_EPOLL) 384 /*************************************** 385 * Use epoll infrastructure - epoll(4) * 386 ***************************************/ 387 # define SLAP_EVENT_FNAME "epoll" 388 # define SLAP_EVENTS_ARE_INDEXED 0 389 # define SLAP_EPOLL_SOCK_IX(t,s) (slap_daemon[t].sd_index[(s)]) 390 # define SLAP_EPOLL_SOCK_EP(t,s) (slap_daemon[t].sd_epolls[SLAP_EPOLL_SOCK_IX(t,s)]) 391 # define SLAP_EPOLL_SOCK_EV(t,s) (SLAP_EPOLL_SOCK_EP(t,s).events) 392 # define SLAP_SOCK_IS_ACTIVE(t,s) (SLAP_EPOLL_SOCK_IX(t,s) != -1) 393 # define SLAP_SOCK_NOT_ACTIVE(t,s) (SLAP_EPOLL_SOCK_IX(t,s) == -1) 394 # define SLAP_EPOLL_SOCK_IS_SET(t,s, mode) (SLAP_EPOLL_SOCK_EV(t,s) & (mode)) 395 396 # define SLAP_SOCK_IS_READ(t,s) SLAP_EPOLL_SOCK_IS_SET(t,(s), EPOLLIN) 397 # define SLAP_SOCK_IS_WRITE(t,s) SLAP_EPOLL_SOCK_IS_SET(t,(s), EPOLLOUT) 398 399 # define SLAP_EPOLL_SOCK_SET(t,s, mode) do { \ 400 if ( (SLAP_EPOLL_SOCK_EV(t,s) & (mode)) != (mode) ) { \ 401 SLAP_EPOLL_SOCK_EV(t,s) |= (mode); \ 402 epoll_ctl( slap_daemon[t].sd_epfd, EPOLL_CTL_MOD, (s), \ 403 &SLAP_EPOLL_SOCK_EP(t,s) ); \ 404 } \ 405 } while (0) 406 407 # define SLAP_EPOLL_SOCK_CLR(t,s, mode) do { \ 408 if ( (SLAP_EPOLL_SOCK_EV(t,s) & (mode)) ) { \ 409 SLAP_EPOLL_SOCK_EV(t,s) &= ~(mode); \ 410 epoll_ctl( slap_daemon[t].sd_epfd, EPOLL_CTL_MOD, s, \ 411 &SLAP_EPOLL_SOCK_EP(t,s) ); \ 412 } \ 413 } while (0) 414 415 # define SLAP_SOCK_SET_READ(t,s) SLAP_EPOLL_SOCK_SET(t,s, EPOLLIN) 416 # define SLAP_SOCK_SET_WRITE(t,s) SLAP_EPOLL_SOCK_SET(t,s, EPOLLOUT) 417 418 # define SLAP_SOCK_CLR_READ(t,s) SLAP_EPOLL_SOCK_CLR(t,(s), EPOLLIN) 419 # define SLAP_SOCK_CLR_WRITE(t,s) SLAP_EPOLL_SOCK_CLR(t,(s), EPOLLOUT) 420 421 # define SLAP_SOCK_SET_SUSPEND(t,s) \ 422 ( slap_daemon[t].sd_suspend[SLAP_EPOLL_SOCK_IX(t,s)] = 1 ) 423 # define SLAP_SOCK_CLR_SUSPEND(t,s) \ 424 ( slap_daemon[t].sd_suspend[SLAP_EPOLL_SOCK_IX(t,s)] = 0 ) 425 # define SLAP_SOCK_IS_SUSPEND(t,s) \ 426 ( slap_daemon[t].sd_suspend[SLAP_EPOLL_SOCK_IX(t,s)] == 1 ) 427 428 # define SLAP_EPOLL_EVENT_CLR(i, mode) (revents[(i)].events &= ~(mode)) 429 430 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 431 432 /* If a Listener address is provided, store that as the epoll data. 433 * Otherwise, store the address of this socket's slot in the 434 * index array. If we can't do this add, the system is out of 435 * resources and we need to shutdown. 436 */ 437 # define SLAP_SOCK_ADD(t, s, l) do { \ 438 int rc; \ 439 SLAP_EPOLL_SOCK_IX(t,(s)) = slap_daemon[t].sd_nfds; \ 440 SLAP_EPOLL_SOCK_EP(t,(s)).data.ptr = (l) ? (l) : (void *)(&SLAP_EPOLL_SOCK_IX(t,s)); \ 441 SLAP_EPOLL_SOCK_EV(t,(s)) = EPOLLIN; \ 442 rc = epoll_ctl(slap_daemon[t].sd_epfd, EPOLL_CTL_ADD, \ 443 (s), &SLAP_EPOLL_SOCK_EP(t,(s))); \ 444 if ( rc == 0 ) { \ 445 slap_daemon[t].sd_nfds++; \ 446 } else { \ 447 int saved_errno = errno; \ 448 Debug( LDAP_DEBUG_ANY, \ 449 "daemon: epoll_ctl(ADD,fd=%d) failed, errno=%d, shutting down\n", \ 450 s, saved_errno ); \ 451 slapd_shutdown = 2; \ 452 } \ 453 } while (0) 454 455 # define SLAP_EPOLL_EV_LISTENER(t,ptr) \ 456 (((int *)(ptr) >= slap_daemon[t].sd_index && \ 457 (int *)(ptr) <= &slap_daemon[t].sd_index[dtblsize]) ? 0 : 1 ) 458 459 # define SLAP_EPOLL_EV_PTRFD(t,ptr) (SLAP_EPOLL_EV_LISTENER(t,ptr) ? \ 460 ((Listener *)ptr)->sl_sd : \ 461 (ber_socket_t) ((int *)(ptr) - slap_daemon[t].sd_index)) 462 463 # define SLAP_SOCK_DEL(t,s) do { \ 464 int fd, rc, index = SLAP_EPOLL_SOCK_IX(t,(s)); \ 465 if ( index < 0 ) break; \ 466 rc = epoll_ctl(slap_daemon[t].sd_epfd, EPOLL_CTL_DEL, \ 467 (s), &SLAP_EPOLL_SOCK_EP(t,(s))); \ 468 slap_daemon[t].sd_epolls[index] = \ 469 slap_daemon[t].sd_epolls[slap_daemon[t].sd_nfds-1]; \ 470 fd = SLAP_EPOLL_EV_PTRFD(t,slap_daemon[t].sd_epolls[index].data.ptr); \ 471 slap_daemon[t].sd_index[fd] = index; \ 472 slap_daemon[t].sd_index[(s)] = -1; \ 473 slap_daemon[t].sd_nfds--; \ 474 } while (0) 475 476 # define SLAP_EVENT_CLR_READ(i) SLAP_EPOLL_EVENT_CLR((i), EPOLLIN) 477 # define SLAP_EVENT_CLR_WRITE(i) SLAP_EPOLL_EVENT_CLR((i), EPOLLOUT) 478 479 # define SLAP_EPOLL_EVENT_CHK(i, mode) (revents[(i)].events & mode) 480 481 # define SLAP_EVENT_IS_READ(i) SLAP_EPOLL_EVENT_CHK((i), EPOLLIN) 482 # define SLAP_EVENT_IS_WRITE(i) SLAP_EPOLL_EVENT_CHK((i), EPOLLOUT) 483 # define SLAP_EVENT_IS_LISTENER(t,i) SLAP_EPOLL_EV_LISTENER(t,revents[(i)].data.ptr) 484 # define SLAP_EVENT_LISTENER(t,i) ((Listener *)(revents[(i)].data.ptr)) 485 486 # define SLAP_EVENT_FD(t,i) SLAP_EPOLL_EV_PTRFD(t,revents[(i)].data.ptr) 487 488 # define SLAP_SOCK_INIT(t) do { \ 489 int j; \ 490 slap_daemon[t].sd_epolls = ch_calloc(1, \ 491 ( sizeof(struct epoll_event) * 2 \ 492 + sizeof(int) ) * dtblsize * 2); \ 493 slap_daemon[t].sd_index = (int *)&slap_daemon[t].sd_epolls[ 2 * dtblsize ]; \ 494 slap_daemon[t].sd_epfd = epoll_create( dtblsize / slapd_daemon_threads ); \ 495 for ( j = 0; j < dtblsize; j++ ) slap_daemon[t].sd_index[j] = -1; \ 496 } while (0) 497 498 # define SLAP_SOCK_INIT2() 499 500 # define SLAP_SOCK_DESTROY(t) do { \ 501 if ( slap_daemon[t].sd_epolls != NULL ) { \ 502 ch_free( slap_daemon[t].sd_epolls ); \ 503 slap_daemon[t].sd_epolls = NULL; \ 504 slap_daemon[t].sd_index = NULL; \ 505 close( slap_daemon[t].sd_epfd ); \ 506 } \ 507 } while ( 0 ) 508 509 # define SLAP_EVENT_DECL struct epoll_event *revents 510 511 # define SLAP_EVENT_INIT(t) do { \ 512 revents = slap_daemon[t].sd_epolls + dtblsize; \ 513 } while (0) 514 515 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 516 *(nsp) = epoll_wait( slap_daemon[t].sd_epfd, revents, \ 517 dtblsize, (tvp) ? ((tvp)->tv_sec * 1000 + (tvp)->tv_usec / 1000) : -1 ); \ 518 } while (0) 519 520 #elif defined(SLAP_X_DEVPOLL) && defined(HAVE_DEVPOLL) 521 522 /************************************************************* 523 * Use Solaris' (>= 2.7) /dev/poll infrastructure - poll(7d) * 524 *************************************************************/ 525 # define SLAP_EVENT_FNAME "/dev/poll" 526 # define SLAP_EVENTS_ARE_INDEXED 0 527 /* 528 * - sd_index is used much like with epoll() 529 * - sd_l is maintained as an array containing the address 530 * of the listener; the index is the fd itself 531 * - sd_pollfd is used to keep track of what data has been 532 * registered in /dev/poll 533 */ 534 # define SLAP_DEVPOLL_SOCK_IX(t,s) (slap_daemon[t].sd_index[(s)]) 535 # define SLAP_DEVPOLL_SOCK_LX(t,s) (slap_daemon[t].sd_l[(s)]) 536 # define SLAP_DEVPOLL_SOCK_EP(t,s) (slap_daemon[t].sd_pollfd[SLAP_DEVPOLL_SOCK_IX(t,(s))]) 537 # define SLAP_DEVPOLL_SOCK_FD(t,s) (SLAP_DEVPOLL_SOCK_EP(t,(s)).fd) 538 # define SLAP_DEVPOLL_SOCK_EV(t,s) (SLAP_DEVPOLL_SOCK_EP(t,(s)).events) 539 # define SLAP_SOCK_IS_ACTIVE(t,s) (SLAP_DEVPOLL_SOCK_IX(t,(s)) != -1) 540 # define SLAP_SOCK_NOT_ACTIVE(t,s) (SLAP_DEVPOLL_SOCK_IX(t,(s)) == -1) 541 # define SLAP_SOCK_IS_SET(t,s, mode) (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) 542 543 # define SLAP_SOCK_IS_READ(t,s) SLAP_SOCK_IS_SET(t,(s), POLLIN) 544 # define SLAP_SOCK_IS_WRITE(t,s) SLAP_SOCK_IS_SET(t,(s), POLLOUT) 545 546 /* as far as I understand, any time we need to communicate with the kernel 547 * about the number and/or properties of a file descriptor we need it to 548 * wait for, we have to rewrite the whole set */ 549 # define SLAP_DEVPOLL_WRITE_POLLFD(t,s, pfd, n, what, shdn) do { \ 550 int rc; \ 551 size_t size = (n) * sizeof( struct pollfd ); \ 552 /* FIXME: use pwrite? */ \ 553 rc = write( slap_daemon[t].sd_dpfd, (pfd), size ); \ 554 if ( rc != size ) { \ 555 int saved_errno = errno; \ 556 Debug( LDAP_DEBUG_ANY, "daemon: " SLAP_EVENT_FNAME ": " \ 557 "%s fd=%d failed errno=%d\n", \ 558 (what), (s), saved_errno ); \ 559 if ( (shdn) ) { \ 560 slapd_shutdown = 2; \ 561 } \ 562 } \ 563 } while (0) 564 565 # define SLAP_DEVPOLL_SOCK_SET(t,s, mode) do { \ 566 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_SET_%s(%d)=%d\n", \ 567 (mode) == POLLIN ? "READ" : "WRITE", (s), \ 568 ( (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) != (mode) ) ); \ 569 if ( (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) != (mode) ) { \ 570 struct pollfd pfd; \ 571 SLAP_DEVPOLL_SOCK_EV(t,(s)) |= (mode); \ 572 pfd.fd = SLAP_DEVPOLL_SOCK_FD(t,(s)); \ 573 pfd.events = /* (mode) */ SLAP_DEVPOLL_SOCK_EV(t,(s)); \ 574 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &pfd, 1, "SET", 0); \ 575 } \ 576 } while (0) 577 578 # define SLAP_DEVPOLL_SOCK_CLR(t,s, mode) do { \ 579 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_CLR_%s(%d)=%d\n", \ 580 (mode) == POLLIN ? "READ" : "WRITE", (s), \ 581 ( (SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) == (mode) ) ); \ 582 if ((SLAP_DEVPOLL_SOCK_EV(t,(s)) & (mode)) == (mode) ) { \ 583 struct pollfd pfd[2]; \ 584 SLAP_DEVPOLL_SOCK_EV(t,(s)) &= ~(mode); \ 585 pfd[0].fd = SLAP_DEVPOLL_SOCK_FD(t,(s)); \ 586 pfd[0].events = POLLREMOVE; \ 587 pfd[1] = SLAP_DEVPOLL_SOCK_EP(t,(s)); \ 588 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &pfd[0], 2, "CLR", 0); \ 589 } \ 590 } while (0) 591 592 # define SLAP_SOCK_SET_READ(t,s) SLAP_DEVPOLL_SOCK_SET(t,s, POLLIN) 593 # define SLAP_SOCK_SET_WRITE(t,s) SLAP_DEVPOLL_SOCK_SET(t,s, POLLOUT) 594 595 # define SLAP_SOCK_CLR_READ(t,s) SLAP_DEVPOLL_SOCK_CLR(t,(s), POLLIN) 596 # define SLAP_SOCK_CLR_WRITE(t,s) SLAP_DEVPOLL_SOCK_CLR(t,(s), POLLOUT) 597 598 # define SLAP_SOCK_SET_SUSPEND(t,s) \ 599 ( slap_daemon[t].sd_suspend[SLAP_DEVPOLL_SOCK_IX(t,(s))] = 1 ) 600 # define SLAP_SOCK_CLR_SUSPEND(t,s) \ 601 ( slap_daemon[t].sd_suspend[SLAP_DEVPOLL_SOCK_IX(t,(s))] = 0 ) 602 # define SLAP_SOCK_IS_SUSPEND(t,s) \ 603 ( slap_daemon[t].sd_suspend[SLAP_DEVPOLL_SOCK_IX(t,(s))] == 1 ) 604 605 # define SLAP_DEVPOLL_EVENT_CLR(i, mode) (revents[(i)].events &= ~(mode)) 606 607 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 608 609 /* If a Listener address is provided, store that in the sd_l array. 610 * If we can't do this add, the system is out of resources and we 611 * need to shutdown. 612 */ 613 # define SLAP_SOCK_ADD(t, s, l) do { \ 614 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_ADD(%d, %p)\n", (s), (l) ); \ 615 SLAP_DEVPOLL_SOCK_IX(t,(s)) = slap_daemon[t].sd_nfds; \ 616 SLAP_DEVPOLL_SOCK_LX(t,(s)) = (l); \ 617 SLAP_DEVPOLL_SOCK_FD(t,(s)) = (s); \ 618 SLAP_DEVPOLL_SOCK_EV(t,(s)) = POLLIN; \ 619 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &SLAP_DEVPOLL_SOCK_EP(t, (s)), 1, "ADD", 1); \ 620 slap_daemon[t].sd_nfds++; \ 621 } while (0) 622 623 # define SLAP_DEVPOLL_EV_LISTENER(ptr) ((ptr) != NULL) 624 625 # define SLAP_SOCK_DEL(t,s) do { \ 626 int fd, index = SLAP_DEVPOLL_SOCK_IX(t,(s)); \ 627 Debug( LDAP_DEBUG_CONNS, "SLAP_SOCK_DEL(%d)\n", (s) ); \ 628 if ( index < 0 ) break; \ 629 if ( index < slap_daemon[t].sd_nfds - 1 ) { \ 630 struct pollfd pfd = slap_daemon[t].sd_pollfd[index]; \ 631 fd = slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1].fd; \ 632 slap_daemon[t].sd_pollfd[index] = slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1]; \ 633 slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1] = pfd; \ 634 slap_daemon[t].sd_index[fd] = index; \ 635 } \ 636 slap_daemon[t].sd_index[(s)] = -1; \ 637 slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1].events = POLLREMOVE; \ 638 SLAP_DEVPOLL_WRITE_POLLFD(t,(s), &slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1], 1, "DEL", 0); \ 639 slap_daemon[t].sd_pollfd[slap_daemon[t].sd_nfds - 1].events = 0; \ 640 slap_daemon[t].sd_nfds--; \ 641 } while (0) 642 643 # define SLAP_EVENT_CLR_READ(i) SLAP_DEVPOLL_EVENT_CLR((i), POLLIN) 644 # define SLAP_EVENT_CLR_WRITE(i) SLAP_DEVPOLL_EVENT_CLR((i), POLLOUT) 645 646 # define SLAP_DEVPOLL_EVENT_CHK(i, mode) (revents[(i)].events & (mode)) 647 648 # define SLAP_EVENT_FD(t,i) (revents[(i)].fd) 649 650 # define SLAP_EVENT_IS_READ(i) SLAP_DEVPOLL_EVENT_CHK((i), POLLIN) 651 # define SLAP_EVENT_IS_WRITE(i) SLAP_DEVPOLL_EVENT_CHK((i), POLLOUT) 652 # define SLAP_EVENT_IS_LISTENER(t,i) SLAP_DEVPOLL_EV_LISTENER(SLAP_DEVPOLL_SOCK_LX(t, SLAP_EVENT_FD(t,(i)))) 653 # define SLAP_EVENT_LISTENER(t,i) SLAP_DEVPOLL_SOCK_LX(t, SLAP_EVENT_FD(t,(i))) 654 655 # define SLAP_SOCK_DESTROY(t) do { \ 656 if ( slap_daemon[t].sd_pollfd != NULL ) { \ 657 ch_free( slap_daemon[t].sd_pollfd ); \ 658 slap_daemon[t].sd_pollfd = NULL; \ 659 slap_daemon[t].sd_index = NULL; \ 660 slap_daemon[t].sd_l = NULL; \ 661 close( slap_daemon[t].sd_dpfd ); \ 662 } \ 663 } while ( 0 ) 664 665 # define SLAP_SOCK_INIT(t) do { \ 666 slap_daemon[t].sd_pollfd = ch_calloc( 1, \ 667 ( sizeof(struct pollfd) * 2 \ 668 + sizeof( int ) \ 669 + sizeof( Listener * ) ) * dtblsize ); \ 670 slap_daemon[t].sd_index = (int *)&slap_daemon[t].sd_pollfd[ 2 * dtblsize ]; \ 671 slap_daemon[t].sd_l = (Listener **)&slap_daemon[t].sd_index[ dtblsize ]; \ 672 slap_daemon[t].sd_dpfd = open( SLAP_EVENT_FNAME, O_RDWR ); \ 673 if ( slap_daemon[t].sd_dpfd == -1 ) { \ 674 int saved_errno = errno; \ 675 Debug( LDAP_DEBUG_ANY, "daemon: " SLAP_EVENT_FNAME ": " \ 676 "open(\"" SLAP_EVENT_FNAME "\") failed errno=%d\n", \ 677 saved_errno ); \ 678 SLAP_SOCK_DESTROY(t); \ 679 return -1; \ 680 } \ 681 for ( i = 0; i < dtblsize; i++ ) { \ 682 slap_daemon[t].sd_pollfd[i].fd = -1; \ 683 slap_daemon[t].sd_index[i] = -1; \ 684 } \ 685 } while (0) 686 687 # define SLAP_SOCK_INIT2() 688 689 # define SLAP_EVENT_DECL struct pollfd *revents 690 691 # define SLAP_EVENT_INIT(t) do { \ 692 revents = &slap_daemon[t].sd_pollfd[ dtblsize ]; \ 693 } while (0) 694 695 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 696 struct dvpoll sd_dvpoll; \ 697 sd_dvpoll.dp_timeout = (tvp) ? ((tvp)->tv_sec * 1000 + (tvp)->tv_usec / 1000) : -1; \ 698 sd_dvpoll.dp_nfds = dtblsize; \ 699 sd_dvpoll.dp_fds = revents; \ 700 *(nsp) = ioctl( slap_daemon[t].sd_dpfd, DP_POLL, &sd_dvpoll ); \ 701 } while (0) 702 703 #else /* ! kqueue && ! epoll && ! /dev/poll */ 704 # ifdef HAVE_WINSOCK 705 # define SLAP_EVENT_FNAME "WSselect" 706 /* Winsock provides a "select" function but its fd_sets are 707 * actually arrays of sockets. Since these sockets are handles 708 * and not a contiguous range of small integers, we manage our 709 * own "fd" table of socket handles and use their indices as 710 * descriptors. 711 * 712 * All of our listener/connection structures use fds; the actual 713 * I/O functions use sockets. The SLAP_FD2SOCK macro in proto-slap.h 714 * handles the mapping. 715 * 716 * Despite the mapping overhead, this is about 45% more efficient 717 * than just using Winsock's select and FD_ISSET directly. 718 * 719 * Unfortunately Winsock's select implementation doesn't scale well 720 * as the number of connections increases. This probably needs to be 721 * rewritten to use the Winsock overlapped/asynchronous I/O functions. 722 */ 723 # define SLAP_EVENTS_ARE_INDEXED 1 724 # define SLAP_EVENT_DECL fd_set readfds, writefds; char *rflags 725 # define SLAP_EVENT_INIT(t) do { \ 726 int i; \ 727 FD_ZERO( &readfds ); \ 728 FD_ZERO( &writefds ); \ 729 rflags = slap_daemon[t].sd_rflags; \ 730 memset( rflags, 0, slap_daemon[t].sd_nfds ); \ 731 for ( i=0; i<slap_daemon[t].sd_nfds; i++ ) { \ 732 if ( slap_daemon[t].sd_flags[i] & SD_READ ) \ 733 FD_SET( slapd_ws_sockets[i], &readfds );\ 734 if ( slap_daemon[t].sd_flags[i] & SD_WRITE ) \ 735 FD_SET( slapd_ws_sockets[i], &writefds ); \ 736 } } while ( 0 ) 737 738 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 739 740 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 741 int i; \ 742 *(nsp) = select( SLAP_EVENT_MAX(t), &readfds, \ 743 nwriters > 0 ? &writefds : NULL, NULL, (tvp) ); \ 744 for ( i=0; i<readfds.fd_count; i++) { \ 745 int fd = slapd_sock2fd(readfds.fd_array[i]); \ 746 if ( fd >= 0 ) { \ 747 slap_daemon[t].sd_rflags[fd] = SD_READ; \ 748 if ( fd >= *(nsp)) *(nsp) = fd+1; \ 749 } \ 750 } \ 751 for ( i=0; i<writefds.fd_count; i++) { \ 752 int fd = slapd_sock2fd(writefds.fd_array[i]); \ 753 if ( fd >= 0 ) { \ 754 slap_daemon[t].sd_rflags[fd] = SD_WRITE; \ 755 if ( fd >= *(nsp)) *(nsp) = fd+1; \ 756 } \ 757 } \ 758 } while (0) 759 760 # define SLAP_EVENT_IS_READ(fd) (rflags[fd] & SD_READ) 761 # define SLAP_EVENT_IS_WRITE(fd) (rflags[fd] & SD_WRITE) 762 763 # define SLAP_EVENT_CLR_READ(fd) rflags[fd] &= ~SD_READ 764 # define SLAP_EVENT_CLR_WRITE(fd) rflags[fd] &= ~SD_WRITE 765 766 # define SLAP_SOCK_INIT(t) do { \ 767 if (!t) { \ 768 ldap_pvt_thread_mutex_init( &slapd_ws_mutex ); \ 769 slapd_ws_sockets = ch_malloc( dtblsize * ( sizeof(SOCKET) + 2)); \ 770 memset( slapd_ws_sockets, -1, dtblsize * sizeof(SOCKET) ); \ 771 } \ 772 slap_daemon[t].sd_flags = (char *)(slapd_ws_sockets + dtblsize); \ 773 slap_daemon[t].sd_rflags = slap_daemon[t].sd_flags + dtblsize; \ 774 memset( slap_daemon[t].sd_flags, 0, dtblsize ); \ 775 slapd_ws_sockets[t*2] = wake_sds[t][0]; \ 776 slapd_ws_sockets[t*2+1] = wake_sds[t][1]; \ 777 wake_sds[t][0] = t*2; \ 778 wake_sds[t][1] = t*2+1; \ 779 slap_daemon[t].sd_nfds = t*2 + 2; \ 780 } while ( 0 ) 781 782 # define SLAP_SOCK_INIT2() 783 784 # define SLAP_SOCK_DESTROY(t) do { \ 785 ch_free( slapd_ws_sockets ); slapd_ws_sockets = NULL; \ 786 slap_daemon[t].sd_flags = NULL; \ 787 slap_daemon[t].sd_rflags = NULL; \ 788 ldap_pvt_thread_mutex_destroy( &slapd_ws_mutex ); \ 789 } while ( 0 ) 790 791 # define SLAP_SOCK_IS_ACTIVE(t,fd) ( slap_daemon[t].sd_flags[fd] & SD_ACTIVE ) 792 # define SLAP_SOCK_IS_READ(t,fd) ( slap_daemon[t].sd_flags[fd] & SD_READ ) 793 # define SLAP_SOCK_IS_WRITE(t,fd) ( slap_daemon[t].sd_flags[fd] & SD_WRITE ) 794 # define SLAP_SOCK_NOT_ACTIVE(t,fd) (!slap_daemon[t].sd_flags[fd]) 795 796 # define SLAP_SOCK_SET_READ(t,fd) ( slap_daemon[t].sd_flags[fd] |= SD_READ ) 797 # define SLAP_SOCK_SET_WRITE(t,fd) ( slap_daemon[t].sd_flags[fd] |= SD_WRITE ) 798 799 # define SLAP_SELECT_ADDTEST(t,s) do { \ 800 if ((s) >= slap_daemon[t].sd_nfds) slap_daemon[t].sd_nfds = (s)+1; \ 801 } while (0) 802 803 # define SLAP_SOCK_CLR_READ(t,fd) ( slap_daemon[t].sd_flags[fd] &= ~SD_READ ) 804 # define SLAP_SOCK_CLR_WRITE(t,fd) ( slap_daemon[t].sd_flags[fd] &= ~SD_WRITE ) 805 806 # define SLAP_SOCK_ADD(t,s, l) do { \ 807 SLAP_SELECT_ADDTEST(t,(s)); \ 808 slap_daemon[t].sd_flags[s] = SD_ACTIVE|SD_READ; \ 809 } while ( 0 ) 810 811 # define SLAP_SOCK_DEL(t,s) do { \ 812 slap_daemon[t].sd_flags[s] = 0; \ 813 slapd_sockdel( s ); \ 814 } while ( 0 ) 815 816 # else /* !HAVE_WINSOCK */ 817 818 /************************************** 819 * Use select system call - select(2) * 820 **************************************/ 821 # define SLAP_EVENT_FNAME "select" 822 /* select */ 823 # define SLAP_EVENTS_ARE_INDEXED 1 824 # define SLAP_EVENT_DECL fd_set readfds, writefds 825 826 # define SLAP_EVENT_INIT(t) do { \ 827 AC_MEMCPY( &readfds, &slap_daemon[t].sd_readers, sizeof(fd_set) ); \ 828 if ( nwriters ) { \ 829 AC_MEMCPY( &writefds, &slap_daemon[t].sd_writers, sizeof(fd_set) ); \ 830 } else { \ 831 FD_ZERO( &writefds ); \ 832 } \ 833 } while (0) 834 835 # ifdef FD_SETSIZE 836 # define SLAP_SELECT_CHK_SETSIZE do { \ 837 if (dtblsize > FD_SETSIZE) dtblsize = FD_SETSIZE; \ 838 } while (0) 839 # else /* ! FD_SETSIZE */ 840 # define SLAP_SELECT_CHK_SETSIZE do { ; } while (0) 841 # endif /* ! FD_SETSIZE */ 842 843 # define SLAP_SOCK_INIT(t) do { \ 844 SLAP_SELECT_CHK_SETSIZE; \ 845 FD_ZERO(&slap_daemon[t].sd_actives); \ 846 FD_ZERO(&slap_daemon[t].sd_readers); \ 847 FD_ZERO(&slap_daemon[t].sd_writers); \ 848 } while (0) 849 850 # define SLAP_SOCK_INIT2() 851 852 # define SLAP_SOCK_DESTROY(t) 853 854 # define SLAP_SOCK_IS_ACTIVE(t,fd) FD_ISSET((fd), &slap_daemon[t].sd_actives) 855 # define SLAP_SOCK_IS_READ(t,fd) FD_ISSET((fd), &slap_daemon[t].sd_readers) 856 # define SLAP_SOCK_IS_WRITE(t,fd) FD_ISSET((fd), &slap_daemon[t].sd_writers) 857 858 # define SLAP_SOCK_NOT_ACTIVE(t,fd) (!SLAP_SOCK_IS_ACTIVE(t,fd) && \ 859 !SLAP_SOCK_IS_READ(t,fd) && !SLAP_SOCK_IS_WRITE(t,fd)) 860 861 # define SLAP_SOCK_SET_READ(t,fd) FD_SET((fd), &slap_daemon[t].sd_readers) 862 # define SLAP_SOCK_SET_WRITE(t,fd) FD_SET((fd), &slap_daemon[t].sd_writers) 863 864 # define SLAP_EVENT_MAX(t) slap_daemon[t].sd_nfds 865 # define SLAP_SELECT_ADDTEST(t,s) do { \ 866 if ((s) >= slap_daemon[t].sd_nfds) slap_daemon[t].sd_nfds = (s)+1; \ 867 } while (0) 868 869 # define SLAP_SOCK_CLR_READ(t,fd) FD_CLR((fd), &slap_daemon[t].sd_readers) 870 # define SLAP_SOCK_CLR_WRITE(t,fd) FD_CLR((fd), &slap_daemon[t].sd_writers) 871 872 # define SLAP_SOCK_ADD(t,s, l) do { \ 873 SLAP_SELECT_ADDTEST(t,(s)); \ 874 FD_SET((s), &slap_daemon[t].sd_actives); \ 875 FD_SET((s), &slap_daemon[t].sd_readers); \ 876 } while (0) 877 878 # define SLAP_SOCK_DEL(t,s) do { \ 879 FD_CLR((s), &slap_daemon[t].sd_actives); \ 880 FD_CLR((s), &slap_daemon[t].sd_readers); \ 881 FD_CLR((s), &slap_daemon[t].sd_writers); \ 882 } while (0) 883 884 # define SLAP_EVENT_IS_READ(fd) FD_ISSET((fd), &readfds) 885 # define SLAP_EVENT_IS_WRITE(fd) FD_ISSET((fd), &writefds) 886 887 # define SLAP_EVENT_CLR_READ(fd) FD_CLR((fd), &readfds) 888 # define SLAP_EVENT_CLR_WRITE(fd) FD_CLR((fd), &writefds) 889 890 # define SLAP_EVENT_WAIT(t, tvp, nsp) do { \ 891 *(nsp) = select( SLAP_EVENT_MAX(t), &readfds, \ 892 nwriters > 0 ? &writefds : NULL, NULL, (tvp) ); \ 893 } while (0) 894 # endif /* !HAVE_WINSOCK */ 895 #endif /* ! kqueue && ! epoll && ! /dev/poll */ 896 897 #ifdef HAVE_SLP 898 /* 899 * SLP related functions 900 */ 901 #include <slp.h> 902 903 #define LDAP_SRVTYPE_PREFIX "service:ldap://" 904 #define LDAPS_SRVTYPE_PREFIX "service:ldaps://" 905 static char** slapd_srvurls = NULL; 906 static SLPHandle slapd_hslp = 0; 907 int slapd_register_slp = 0; 908 const char *slapd_slp_attrs = NULL; 909 910 static SLPError slapd_slp_cookie; 911 912 static void 913 slapd_slp_init( const char* urls ) 914 { 915 int i; 916 SLPError err; 917 918 slapd_srvurls = ldap_str2charray( urls, " " ); 919 920 if ( slapd_srvurls == NULL ) return; 921 922 /* find and expand INADDR_ANY URLs */ 923 for ( i = 0; slapd_srvurls[i] != NULL; i++ ) { 924 if ( strcmp( slapd_srvurls[i], "ldap:///" ) == 0 ) { 925 slapd_srvurls[i] = (char *) ch_realloc( slapd_srvurls[i], 926 global_host_bv.bv_len + 927 sizeof( LDAP_SRVTYPE_PREFIX ) ); 928 strcpy( lutil_strcopy(slapd_srvurls[i], 929 LDAP_SRVTYPE_PREFIX ), global_host_bv.bv_val ); 930 } else if ( strcmp( slapd_srvurls[i], "ldaps:///" ) == 0 ) { 931 slapd_srvurls[i] = (char *) ch_realloc( slapd_srvurls[i], 932 global_host_bv.bv_len + 933 sizeof( LDAPS_SRVTYPE_PREFIX ) ); 934 strcpy( lutil_strcopy(slapd_srvurls[i], 935 LDAPS_SRVTYPE_PREFIX ), global_host_bv.bv_val ); 936 } 937 } 938 939 /* open the SLP handle */ 940 err = SLPOpen( "en", 0, &slapd_hslp ); 941 942 if ( err != SLP_OK ) { 943 Debug( LDAP_DEBUG_CONNS, "daemon: SLPOpen() failed with %ld\n", 944 (long)err ); 945 } 946 } 947 948 static void 949 slapd_slp_deinit( void ) 950 { 951 if ( slapd_srvurls == NULL ) return; 952 953 ldap_charray_free( slapd_srvurls ); 954 slapd_srvurls = NULL; 955 956 /* close the SLP handle */ 957 SLPClose( slapd_hslp ); 958 } 959 960 static void 961 slapd_slp_regreport( 962 SLPHandle hslp, 963 SLPError errcode, 964 void *cookie ) 965 { 966 /* return the error code in the cookie */ 967 *(SLPError*)cookie = errcode; 968 } 969 970 static void 971 slapd_slp_reg() 972 { 973 int i; 974 SLPError err; 975 976 if ( slapd_srvurls == NULL ) return; 977 978 for ( i = 0; slapd_srvurls[i] != NULL; i++ ) { 979 if ( strncmp( slapd_srvurls[i], LDAP_SRVTYPE_PREFIX, 980 sizeof( LDAP_SRVTYPE_PREFIX ) - 1 ) == 0 || 981 strncmp( slapd_srvurls[i], LDAPS_SRVTYPE_PREFIX, 982 sizeof( LDAPS_SRVTYPE_PREFIX ) - 1 ) == 0 ) 983 { 984 err = SLPReg( slapd_hslp, 985 slapd_srvurls[i], 986 SLP_LIFETIME_MAXIMUM, 987 "ldap", 988 (slapd_slp_attrs) ? slapd_slp_attrs : "", 989 SLP_TRUE, 990 slapd_slp_regreport, 991 &slapd_slp_cookie ); 992 993 if ( err != SLP_OK || slapd_slp_cookie != SLP_OK ) { 994 Debug( LDAP_DEBUG_CONNS, 995 "daemon: SLPReg(%s) failed with %ld, cookie = %ld\n", 996 slapd_srvurls[i], (long)err, (long)slapd_slp_cookie ); 997 } 998 } 999 } 1000 } 1001 1002 static void 1003 slapd_slp_dereg( void ) 1004 { 1005 int i; 1006 SLPError err; 1007 1008 if ( slapd_srvurls == NULL ) return; 1009 1010 for ( i = 0; slapd_srvurls[i] != NULL; i++ ) { 1011 err = SLPDereg( slapd_hslp, 1012 slapd_srvurls[i], 1013 slapd_slp_regreport, 1014 &slapd_slp_cookie ); 1015 1016 if ( err != SLP_OK || slapd_slp_cookie != SLP_OK ) { 1017 Debug( LDAP_DEBUG_CONNS, 1018 "daemon: SLPDereg(%s) failed with %ld, cookie = %ld\n", 1019 slapd_srvurls[i], (long)err, (long)slapd_slp_cookie ); 1020 } 1021 } 1022 } 1023 #endif /* HAVE_SLP */ 1024 1025 #ifdef HAVE_WINSOCK 1026 /* Manage the descriptor to socket table */ 1027 ber_socket_t 1028 slapd_socknew( ber_socket_t s ) 1029 { 1030 ber_socket_t i; 1031 ldap_pvt_thread_mutex_lock( &slapd_ws_mutex ); 1032 for ( i = 0; i < dtblsize && slapd_ws_sockets[i] != INVALID_SOCKET; i++ ); 1033 if ( i == dtblsize ) { 1034 WSASetLastError( WSAEMFILE ); 1035 } else { 1036 slapd_ws_sockets[i] = s; 1037 } 1038 ldap_pvt_thread_mutex_unlock( &slapd_ws_mutex ); 1039 return i; 1040 } 1041 1042 void 1043 slapd_sockdel( ber_socket_t s ) 1044 { 1045 ldap_pvt_thread_mutex_lock( &slapd_ws_mutex ); 1046 slapd_ws_sockets[s] = INVALID_SOCKET; 1047 ldap_pvt_thread_mutex_unlock( &slapd_ws_mutex ); 1048 } 1049 1050 ber_socket_t 1051 slapd_sock2fd( ber_socket_t s ) 1052 { 1053 ber_socket_t i; 1054 for ( i=0; i<dtblsize && slapd_ws_sockets[i] != s; i++); 1055 if ( i == dtblsize ) 1056 i = -1; 1057 return i; 1058 } 1059 #endif 1060 1061 #ifdef DEBUG_CLOSE 1062 /* Was used to find a bug causing slapd's descriptors to be closed 1063 * out from under it. Tracked it down to a long-standing (from 2009) 1064 * bug in Heimdal https://github.com/heimdal/heimdal/issues/431 . 1065 * Leaving this here for future use, if necessary. 1066 */ 1067 #include <dlfcn.h> 1068 #ifndef RTLD_NEXT 1069 #define RTLD_NEXT (void *)-1L 1070 #endif 1071 static char *newconns; 1072 typedef int (closefunc)(int fd); 1073 static closefunc *close_ptr; 1074 int close( int s ) 1075 { 1076 if (newconns) { 1077 Debug( LDAP_DEBUG_CONNS, 1078 "daemon: close(%d)\n", s ); 1079 if (s >= 0 && s < dtblsize && newconns[s]) 1080 assert(newconns[s] == 2); 1081 } 1082 return close_ptr ? close_ptr(s) : -1; 1083 } 1084 1085 void slapd_debug_close() 1086 { 1087 if (dtblsize) 1088 newconns = ch_calloc(1, dtblsize); 1089 close_ptr = dlsym(RTLD_NEXT, "close"); 1090 } 1091 1092 void slapd_set_close(int fd) 1093 { 1094 newconns[fd] = 3; 1095 } 1096 #define SETUP_CLOSE() slapd_debug_close() 1097 #define SET_CLOSE(fd) slapd_set_close(fd) 1098 #define CLR_CLOSE(fd) if (newconns[fd]) newconns[fd]-- 1099 #else 1100 #define SETUP_CLOSE(fd) 1101 #define SET_CLOSE(fd) 1102 #define CLR_CLOSE(fd) 1103 #endif 1104 1105 /* 1106 * Add a descriptor to daemon control 1107 * 1108 * If isactive, the descriptor is a live server session and is subject 1109 * to idletimeout control. Otherwise, the descriptor is a passive 1110 * listener or an outbound client session, and not subject to 1111 * idletimeout. The underlying event handler may record the Listener 1112 * argument to differentiate Listener's from real sessions. 1113 */ 1114 static void 1115 slapd_add( ber_socket_t s, int isactive, Listener *sl, int id ) 1116 { 1117 if (id < 0) 1118 id = DAEMON_ID(s); 1119 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1120 1121 assert( SLAP_SOCK_NOT_ACTIVE(id, s) ); 1122 1123 if ( isactive ) slap_daemon[id].sd_nactives++; 1124 1125 SLAP_SOCK_ADD(id, s, sl); 1126 1127 Debug( LDAP_DEBUG_CONNS, "daemon: added %ldr%s listener=%p\n", 1128 (long) s, isactive ? " (active)" : "", (void *)sl ); 1129 1130 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1131 1132 WAKE_LISTENER(id,1); 1133 } 1134 1135 /* 1136 * Remove the descriptor from daemon control 1137 */ 1138 void 1139 slapd_remove( 1140 ber_socket_t s, 1141 Sockbuf *sb, 1142 int wasactive, 1143 int wake, 1144 int locked ) 1145 { 1146 int waswriter; 1147 int wasreader; 1148 int id = DAEMON_ID(s); 1149 1150 if ( !locked ) 1151 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1152 1153 assert( SLAP_SOCK_IS_ACTIVE( id, s )); 1154 1155 if ( wasactive ) slap_daemon[id].sd_nactives--; 1156 1157 waswriter = SLAP_SOCK_IS_WRITE(id, s); 1158 wasreader = SLAP_SOCK_IS_READ(id, s); 1159 1160 Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n", 1161 (long) s, 1162 wasreader ? "r" : "", 1163 waswriter ? "w" : "" ); 1164 1165 if ( waswriter ) slap_daemon[id].sd_nwriters--; 1166 1167 SLAP_SOCK_DEL(id, s); 1168 CLR_CLOSE(s); 1169 1170 if ( sb ) 1171 ber_sockbuf_free(sb); 1172 1173 /* If we ran out of file descriptors, we dropped a listener from 1174 * the select() loop. Now that we're removing a session from our 1175 * control, we can try to resume a dropped listener to use. 1176 */ 1177 ldap_pvt_thread_mutex_lock( &emfile_mutex ); 1178 if ( emfile && listening ) { 1179 int i; 1180 for ( i = 0; slap_listeners[i] != NULL; i++ ) { 1181 Listener *lr = slap_listeners[i]; 1182 1183 if ( lr->sl_sd == AC_SOCKET_INVALID ) continue; 1184 if ( lr->sl_sd == s ) continue; 1185 if ( lr->sl_mute ) { 1186 lr->sl_mute = 0; 1187 emfile--; 1188 if ( DAEMON_ID(lr->sl_sd) != id ) 1189 WAKE_LISTENER(DAEMON_ID(lr->sl_sd), wake); 1190 break; 1191 } 1192 } 1193 /* Walked the entire list without enabling anything; emfile 1194 * counter is stale. Reset it. 1195 */ 1196 if ( slap_listeners[i] == NULL ) emfile = 0; 1197 } 1198 ldap_pvt_thread_mutex_unlock( &emfile_mutex ); 1199 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1200 WAKE_LISTENER(id, wake || slapd_gentle_shutdown == 2); 1201 } 1202 1203 void 1204 slapd_clr_write( ber_socket_t s, int wake ) 1205 { 1206 int id = DAEMON_ID(s); 1207 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1208 1209 if ( SLAP_SOCK_IS_WRITE( id, s )) { 1210 assert( SLAP_SOCK_IS_ACTIVE( id, s )); 1211 1212 SLAP_SOCK_CLR_WRITE( id, s ); 1213 slap_daemon[id].sd_nwriters--; 1214 } 1215 1216 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1217 WAKE_LISTENER(id,wake); 1218 } 1219 1220 void 1221 slapd_set_write( ber_socket_t s, int wake ) 1222 { 1223 int id = DAEMON_ID(s); 1224 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1225 1226 assert( SLAP_SOCK_IS_ACTIVE( id, s )); 1227 1228 if ( !SLAP_SOCK_IS_WRITE( id, s )) { 1229 SLAP_SOCK_SET_WRITE( id, s ); 1230 slap_daemon[id].sd_nwriters++; 1231 } 1232 1233 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1234 WAKE_LISTENER(id,wake); 1235 } 1236 1237 int 1238 slapd_clr_read( ber_socket_t s, int wake ) 1239 { 1240 int rc = 1; 1241 int id = DAEMON_ID(s); 1242 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1243 1244 if ( SLAP_SOCK_IS_ACTIVE( id, s )) { 1245 SLAP_SOCK_CLR_READ( id, s ); 1246 rc = 0; 1247 } 1248 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1249 if ( !rc ) 1250 WAKE_LISTENER(id,wake); 1251 return rc; 1252 } 1253 1254 void 1255 slapd_set_read( ber_socket_t s, int wake ) 1256 { 1257 int do_wake = 1; 1258 int id = DAEMON_ID(s); 1259 ldap_pvt_thread_mutex_lock( &slap_daemon[id].sd_mutex ); 1260 1261 if( SLAP_SOCK_IS_ACTIVE( id, s ) && !SLAP_SOCK_IS_READ( id, s )) { 1262 SLAP_SOCK_SET_READ( id, s ); 1263 } else { 1264 do_wake = 0; 1265 } 1266 ldap_pvt_thread_mutex_unlock( &slap_daemon[id].sd_mutex ); 1267 if ( do_wake ) 1268 WAKE_LISTENER(id,wake); 1269 } 1270 1271 static void 1272 slapd_close( ber_socket_t s ) 1273 { 1274 Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n", 1275 (long) s ); 1276 CLR_CLOSE( SLAP_FD2SOCK(s) ); 1277 tcp_close( SLAP_FD2SOCK(s) ); 1278 #ifdef HAVE_WINSOCK 1279 slapd_sockdel( s ); 1280 #endif 1281 } 1282 1283 void 1284 slapd_shutsock( ber_socket_t s ) 1285 { 1286 Debug( LDAP_DEBUG_CONNS, "daemon: shutdown socket %ld\n", 1287 (long) s ); 1288 shutdown( SLAP_FD2SOCK(s), 2 ); 1289 } 1290 1291 static void 1292 slap_free_listener_addresses( struct sockaddr **sal ) 1293 { 1294 struct sockaddr **sap; 1295 if (sal == NULL) return; 1296 for (sap = sal; *sap != NULL; sap++) ch_free(*sap); 1297 ch_free(sal); 1298 } 1299 1300 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD) 1301 static int 1302 get_url_perms( 1303 char **exts, 1304 mode_t *perms, 1305 int *crit ) 1306 { 1307 int i; 1308 1309 assert( exts != NULL ); 1310 assert( perms != NULL ); 1311 assert( crit != NULL ); 1312 1313 *crit = 0; 1314 for ( i = 0; exts[ i ]; i++ ) { 1315 char *type = exts[ i ]; 1316 int c = 0; 1317 1318 if ( type[ 0 ] == '!' ) { 1319 c = 1; 1320 type++; 1321 } 1322 1323 if ( strncasecmp( type, LDAPI_MOD_URLEXT "=", 1324 sizeof(LDAPI_MOD_URLEXT "=") - 1 ) == 0 ) 1325 { 1326 char *value = type + ( sizeof(LDAPI_MOD_URLEXT "=") - 1 ); 1327 mode_t p = 0; 1328 int j; 1329 1330 switch (strlen(value)) { 1331 case 4: 1332 /* skip leading '0' */ 1333 if ( value[ 0 ] != '0' ) return LDAP_OTHER; 1334 value++; 1335 1336 case 3: 1337 for ( j = 0; j < 3; j++) { 1338 int v; 1339 1340 v = value[ j ] - '0'; 1341 1342 if ( v < 0 || v > 7 ) return LDAP_OTHER; 1343 1344 p |= v << 3*(2-j); 1345 } 1346 break; 1347 1348 case 10: 1349 for ( j = 1; j < 10; j++ ) { 1350 static mode_t m[] = { 0, 1351 S_IRUSR, S_IWUSR, S_IXUSR, 1352 S_IRGRP, S_IWGRP, S_IXGRP, 1353 S_IROTH, S_IWOTH, S_IXOTH 1354 }; 1355 static const char c[] = "-rwxrwxrwx"; 1356 1357 if ( value[ j ] == c[ j ] ) { 1358 p |= m[ j ]; 1359 1360 } else if ( value[ j ] != '-' ) { 1361 return LDAP_OTHER; 1362 } 1363 } 1364 break; 1365 1366 default: 1367 return LDAP_OTHER; 1368 } 1369 1370 *crit = c; 1371 *perms = p; 1372 1373 return LDAP_SUCCESS; 1374 } 1375 } 1376 1377 return LDAP_OTHER; 1378 } 1379 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */ 1380 1381 /* port = 0 indicates AF_LOCAL */ 1382 static int 1383 slap_get_listener_addresses( 1384 const char *host, 1385 unsigned short port, 1386 struct sockaddr ***sal ) 1387 { 1388 struct sockaddr **sap; 1389 1390 #ifdef LDAP_PF_LOCAL 1391 if ( port == 0 ) { 1392 sap = *sal = ch_malloc(2 * sizeof(void *)); 1393 1394 *sap = ch_malloc(sizeof(struct sockaddr_un)); 1395 sap[1] = NULL; 1396 1397 if ( strlen(host) > 1398 (sizeof(((struct sockaddr_un *)*sap)->sun_path) - 1) ) 1399 { 1400 Debug( LDAP_DEBUG_ANY, 1401 "daemon: domain socket path (%s) too long in URL", 1402 host ); 1403 goto errexit; 1404 } 1405 1406 (void)memset( (void *)*sap, '\0', sizeof(struct sockaddr_un) ); 1407 (*sap)->sa_family = AF_LOCAL; 1408 strcpy( ((struct sockaddr_un *)*sap)->sun_path, host ); 1409 } else 1410 #endif /* LDAP_PF_LOCAL */ 1411 { 1412 #ifdef HAVE_GETADDRINFO 1413 struct addrinfo hints, *res, *sai; 1414 int n, err; 1415 char serv[7]; 1416 1417 memset( &hints, '\0', sizeof(hints) ); 1418 hints.ai_flags = AI_PASSIVE; 1419 hints.ai_socktype = SOCK_STREAM; 1420 hints.ai_family = slap_inet4or6; 1421 snprintf(serv, sizeof serv, "%d", port); 1422 1423 if ( (err = getaddrinfo(host, serv, &hints, &res)) ) { 1424 Debug( LDAP_DEBUG_ANY, "daemon: getaddrinfo() failed: %s\n", 1425 AC_GAI_STRERROR(err) ); 1426 return -1; 1427 } 1428 1429 sai = res; 1430 for (n=2; (sai = sai->ai_next) != NULL; n++) { 1431 /* EMPTY */ ; 1432 } 1433 sap = *sal = ch_calloc(n, sizeof(void *)); 1434 *sap = NULL; 1435 1436 for ( sai=res; sai; sai=sai->ai_next ) { 1437 if( sai->ai_addr == NULL ) { 1438 Debug( LDAP_DEBUG_ANY, "slap_get_listener_addresses: " 1439 "getaddrinfo ai_addr is NULL?\n" ); 1440 freeaddrinfo(res); 1441 goto errexit; 1442 } 1443 1444 switch (sai->ai_family) { 1445 # ifdef LDAP_PF_INET6 1446 case AF_INET6: 1447 *sap = ch_malloc(sizeof(struct sockaddr_in6)); 1448 *(struct sockaddr_in6 *)*sap = 1449 *((struct sockaddr_in6 *)sai->ai_addr); 1450 break; 1451 # endif /* LDAP_PF_INET6 */ 1452 case AF_INET: 1453 *sap = ch_malloc(sizeof(struct sockaddr_in)); 1454 *(struct sockaddr_in *)*sap = 1455 *((struct sockaddr_in *)sai->ai_addr); 1456 break; 1457 default: 1458 *sap = NULL; 1459 break; 1460 } 1461 1462 if (*sap != NULL) { 1463 (*sap)->sa_family = sai->ai_family; 1464 sap++; 1465 *sap = NULL; 1466 } 1467 } 1468 1469 freeaddrinfo(res); 1470 1471 #else /* ! HAVE_GETADDRINFO */ 1472 int i, n = 1; 1473 struct in_addr in; 1474 struct hostent *he = NULL; 1475 1476 if ( host == NULL ) { 1477 in.s_addr = htonl(INADDR_ANY); 1478 1479 } else if ( !inet_aton( host, &in ) ) { 1480 he = gethostbyname( host ); 1481 if( he == NULL ) { 1482 Debug( LDAP_DEBUG_ANY, 1483 "daemon: invalid host %s", host ); 1484 return -1; 1485 } 1486 for (n = 0; he->h_addr_list[n]; n++) /* empty */; 1487 } 1488 1489 sap = *sal = ch_malloc((n+1) * sizeof(void *)); 1490 1491 for ( i = 0; i<n; i++ ) { 1492 sap[i] = ch_calloc(1, sizeof(struct sockaddr_in)); 1493 sap[i]->sa_family = AF_INET; 1494 ((struct sockaddr_in *)sap[i])->sin_port = htons(port); 1495 AC_MEMCPY( &((struct sockaddr_in *)sap[i])->sin_addr, 1496 he ? (struct in_addr *)he->h_addr_list[i] : &in, 1497 sizeof(struct in_addr) ); 1498 } 1499 sap[i] = NULL; 1500 #endif /* ! HAVE_GETADDRINFO */ 1501 } 1502 1503 return 0; 1504 1505 errexit: 1506 slap_free_listener_addresses(*sal); 1507 return -1; 1508 } 1509 1510 static int 1511 slap_open_listener( 1512 const char* url, 1513 int *listeners, 1514 int *cur ) 1515 { 1516 int num, tmp, rc; 1517 Listener l; 1518 Listener *li; 1519 LDAPURLDesc *lud; 1520 unsigned short port; 1521 int err, addrlen = 0; 1522 struct sockaddr **sal = NULL, **psal; 1523 int socktype = SOCK_STREAM; /* default to COTS */ 1524 ber_socket_t s; 1525 char ebuf[128]; 1526 1527 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD) 1528 /* 1529 * use safe defaults 1530 */ 1531 int crit = 1; 1532 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */ 1533 1534 rc = ldap_url_parse( url, &lud ); 1535 1536 if( rc != LDAP_URL_SUCCESS ) { 1537 Debug( LDAP_DEBUG_ANY, 1538 "daemon: listen URL \"%s\" parse error=%d\n", 1539 url, rc ); 1540 return rc; 1541 } 1542 1543 l.sl_url.bv_val = NULL; 1544 l.sl_mute = 0; 1545 l.sl_busy = 0; 1546 1547 #ifndef HAVE_TLS 1548 if( ldap_pvt_url_scheme2tls( lud->lud_scheme ) ) { 1549 Debug( LDAP_DEBUG_ANY, "daemon: TLS not supported (%s)\n", 1550 url ); 1551 ldap_free_urldesc( lud ); 1552 return -1; 1553 } 1554 1555 if(! lud->lud_port ) lud->lud_port = LDAP_PORT; 1556 1557 #else /* HAVE_TLS */ 1558 l.sl_is_tls = ldap_pvt_url_scheme2tls( lud->lud_scheme ); 1559 1560 if(! lud->lud_port ) { 1561 lud->lud_port = l.sl_is_tls ? LDAPS_PORT : LDAP_PORT; 1562 } 1563 #endif /* HAVE_TLS */ 1564 1565 l.sl_is_proxied = ldap_pvt_url_scheme2proxied( lud->lud_scheme ); 1566 1567 #ifdef LDAP_TCP_BUFFER 1568 l.sl_tcp_rmem = 0; 1569 l.sl_tcp_wmem = 0; 1570 #endif /* LDAP_TCP_BUFFER */ 1571 1572 port = (unsigned short) lud->lud_port; 1573 1574 tmp = ldap_pvt_url_scheme2proto(lud->lud_scheme); 1575 if ( tmp == LDAP_PROTO_IPC ) { 1576 #ifdef LDAP_PF_LOCAL 1577 if ( lud->lud_host == NULL || lud->lud_host[0] == '\0' ) { 1578 err = slap_get_listener_addresses(LDAPI_SOCK, 0, &sal); 1579 } else { 1580 err = slap_get_listener_addresses(lud->lud_host, 0, &sal); 1581 } 1582 #else /* ! LDAP_PF_LOCAL */ 1583 1584 Debug( LDAP_DEBUG_ANY, "daemon: URL scheme not supported: %s", 1585 url ); 1586 ldap_free_urldesc( lud ); 1587 return -1; 1588 #endif /* ! LDAP_PF_LOCAL */ 1589 } else { 1590 if( lud->lud_host == NULL || lud->lud_host[0] == '\0' 1591 || strcmp(lud->lud_host, "*") == 0 ) 1592 { 1593 err = slap_get_listener_addresses(NULL, port, &sal); 1594 } else { 1595 err = slap_get_listener_addresses(lud->lud_host, port, &sal); 1596 } 1597 } 1598 1599 #ifdef LDAP_CONNECTIONLESS 1600 l.sl_is_udp = ( tmp == LDAP_PROTO_UDP ); 1601 #endif /* LDAP_CONNECTIONLESS */ 1602 1603 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD) 1604 if ( lud->lud_exts ) { 1605 err = get_url_perms( lud->lud_exts, &l.sl_perms, &crit ); 1606 } else { 1607 l.sl_perms = S_IRWXU | S_IRWXO; 1608 } 1609 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */ 1610 1611 if ( lud->lud_dn && lud->lud_dn[0] ) { 1612 sprintf( (char *)url, "%s://%s/", lud->lud_scheme, lud->lud_host ); 1613 Debug( LDAP_DEBUG_ANY, "daemon: listener URL %s<junk> DN must be absent (%s)\n", 1614 url, lud->lud_dn ); 1615 ldap_free_urldesc( lud ); 1616 return -1; 1617 } 1618 1619 ldap_free_urldesc( lud ); 1620 if ( err ) { 1621 slap_free_listener_addresses(sal); 1622 return -1; 1623 } 1624 1625 /* If we got more than one address returned, we need to make space 1626 * for it in the slap_listeners array. 1627 */ 1628 for ( num=0; sal[num]; num++ ) /* empty */; 1629 if ( num > 1 ) { 1630 *listeners += num-1; 1631 slap_listeners = ch_realloc( slap_listeners, 1632 (*listeners + 1) * sizeof(Listener *) ); 1633 } 1634 1635 psal = sal; 1636 while ( *sal != NULL ) { 1637 char *af; 1638 switch( (*sal)->sa_family ) { 1639 case AF_INET: 1640 af = "IPv4"; 1641 break; 1642 #ifdef LDAP_PF_INET6 1643 case AF_INET6: 1644 af = "IPv6"; 1645 break; 1646 #endif /* LDAP_PF_INET6 */ 1647 #ifdef LDAP_PF_LOCAL 1648 case AF_LOCAL: 1649 af = "Local"; 1650 break; 1651 #endif /* LDAP_PF_LOCAL */ 1652 default: 1653 sal++; 1654 continue; 1655 } 1656 1657 #ifdef LDAP_CONNECTIONLESS 1658 if( l.sl_is_udp ) socktype = SOCK_DGRAM; 1659 #endif /* LDAP_CONNECTIONLESS */ 1660 1661 s = socket( (*sal)->sa_family, socktype, 0); 1662 if ( s == AC_SOCKET_INVALID ) { 1663 int err = sock_errno(); 1664 Debug( LDAP_DEBUG_ANY, 1665 "daemon: %s socket() failed errno=%d (%s)\n", 1666 af, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 1667 sal++; 1668 continue; 1669 } 1670 l.sl_sd = SLAP_SOCKNEW( s ); 1671 1672 if ( l.sl_sd >= dtblsize ) { 1673 Debug( LDAP_DEBUG_ANY, 1674 "daemon: listener descriptor %ld is too great %ld\n", 1675 (long) l.sl_sd, (long) dtblsize ); 1676 tcp_close( s ); 1677 sal++; 1678 continue; 1679 } 1680 1681 #ifdef LDAP_PF_LOCAL 1682 if ( (*sal)->sa_family == AF_LOCAL ) { 1683 unlink( ((struct sockaddr_un *)*sal)->sun_path ); 1684 } else 1685 #endif /* LDAP_PF_LOCAL */ 1686 { 1687 #ifdef SO_REUSEADDR 1688 /* enable address reuse */ 1689 tmp = 1; 1690 rc = setsockopt( s, SOL_SOCKET, SO_REUSEADDR, 1691 (char *) &tmp, sizeof(tmp) ); 1692 if ( rc == AC_SOCKET_ERROR ) { 1693 int err = sock_errno(); 1694 Debug( LDAP_DEBUG_ANY, "slapd(%ld): " 1695 "setsockopt(SO_REUSEADDR) failed errno=%d (%s)\n", 1696 (long) l.sl_sd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 1697 } 1698 #endif /* SO_REUSEADDR */ 1699 } 1700 1701 switch( (*sal)->sa_family ) { 1702 case AF_INET: 1703 addrlen = sizeof(struct sockaddr_in); 1704 break; 1705 #ifdef LDAP_PF_INET6 1706 case AF_INET6: 1707 #ifdef IPV6_V6ONLY 1708 /* Try to use IPv6 sockets for IPv6 only */ 1709 tmp = 1; 1710 rc = setsockopt( s , IPPROTO_IPV6, IPV6_V6ONLY, 1711 (char *) &tmp, sizeof(tmp) ); 1712 if ( rc == AC_SOCKET_ERROR ) { 1713 int err = sock_errno(); 1714 Debug( LDAP_DEBUG_ANY, "slapd(%ld): " 1715 "setsockopt(IPV6_V6ONLY) failed errno=%d (%s)\n", 1716 (long) l.sl_sd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 1717 } 1718 #endif /* IPV6_V6ONLY */ 1719 addrlen = sizeof(struct sockaddr_in6); 1720 break; 1721 #endif /* LDAP_PF_INET6 */ 1722 1723 #ifdef LDAP_PF_LOCAL 1724 case AF_LOCAL: 1725 #ifdef LOCAL_CREDS 1726 { 1727 int one = 1; 1728 setsockopt( s, 0, LOCAL_CREDS, &one, sizeof( one ) ); 1729 } 1730 #endif /* LOCAL_CREDS */ 1731 1732 addrlen = sizeof( struct sockaddr_un ); 1733 break; 1734 #endif /* LDAP_PF_LOCAL */ 1735 } 1736 1737 #ifdef LDAP_PF_LOCAL 1738 /* create socket with all permissions set for those systems 1739 * that honor permissions on sockets (e.g. Linux); typically, 1740 * only write is required. To exploit filesystem permissions, 1741 * place the socket in a directory and use directory's 1742 * permissions. Need write perms to the directory to 1743 * create/unlink the socket; likely need exec perms to access 1744 * the socket (ITS#4709) */ 1745 { 1746 mode_t old_umask = 0; 1747 1748 if ( (*sal)->sa_family == AF_LOCAL ) { 1749 old_umask = umask( 0 ); 1750 } 1751 #endif /* LDAP_PF_LOCAL */ 1752 rc = bind( s, *sal, addrlen ); 1753 #ifdef LDAP_PF_LOCAL 1754 if ( old_umask != 0 ) { 1755 umask( old_umask ); 1756 } 1757 } 1758 #endif /* LDAP_PF_LOCAL */ 1759 if ( rc ) { 1760 err = sock_errno(); 1761 Debug( LDAP_DEBUG_ANY, 1762 "daemon: bind(%ld) failed errno=%d (%s)\n", 1763 (long)l.sl_sd, err, sock_errstr( err, ebuf, sizeof(ebuf) ) ); 1764 tcp_close( s ); 1765 sal++; 1766 continue; 1767 } 1768 1769 switch ( (*sal)->sa_family ) { 1770 #ifdef LDAP_PF_LOCAL 1771 case AF_LOCAL: { 1772 char *path = ((struct sockaddr_un *)*sal)->sun_path; 1773 l.sl_name.bv_len = strlen(path) + STRLENOF("PATH="); 1774 l.sl_name.bv_val = ch_malloc( l.sl_name.bv_len + 1 ); 1775 snprintf( l.sl_name.bv_val, l.sl_name.bv_len + 1, 1776 "PATH=%s", path ); 1777 } break; 1778 #endif /* LDAP_PF_LOCAL */ 1779 1780 case AF_INET: { 1781 char addr[INET_ADDRSTRLEN]; 1782 const char *s; 1783 #if defined( HAVE_GETADDRINFO ) && defined( HAVE_INET_NTOP ) 1784 s = inet_ntop( AF_INET, &((struct sockaddr_in *)*sal)->sin_addr, 1785 addr, sizeof(addr) ); 1786 #else /* ! HAVE_GETADDRINFO || ! HAVE_INET_NTOP */ 1787 s = inet_ntoa( ((struct sockaddr_in *) *sal)->sin_addr ); 1788 #endif /* ! HAVE_GETADDRINFO || ! HAVE_INET_NTOP */ 1789 if (!s) s = SLAP_STRING_UNKNOWN; 1790 port = ntohs( ((struct sockaddr_in *)*sal) ->sin_port ); 1791 l.sl_name.bv_val = 1792 ch_malloc( sizeof("IP=255.255.255.255:65535") ); 1793 snprintf( l.sl_name.bv_val, sizeof("IP=255.255.255.255:65535"), 1794 "IP=%s:%d", s, port ); 1795 l.sl_name.bv_len = strlen( l.sl_name.bv_val ); 1796 } break; 1797 1798 #ifdef LDAP_PF_INET6 1799 case AF_INET6: { 1800 char addr[INET6_ADDRSTRLEN]; 1801 const char *s; 1802 s = inet_ntop( AF_INET6, &((struct sockaddr_in6 *)*sal)->sin6_addr, 1803 addr, sizeof addr); 1804 if (!s) s = SLAP_STRING_UNKNOWN; 1805 port = ntohs( ((struct sockaddr_in6 *)*sal)->sin6_port ); 1806 l.sl_name.bv_len = strlen(s) + sizeof("IP=[]:65535"); 1807 l.sl_name.bv_val = ch_malloc( l.sl_name.bv_len ); 1808 snprintf( l.sl_name.bv_val, l.sl_name.bv_len, "IP=[%s]:%d", 1809 s, port ); 1810 l.sl_name.bv_len = strlen( l.sl_name.bv_val ); 1811 } break; 1812 #endif /* LDAP_PF_INET6 */ 1813 1814 default: 1815 Debug( LDAP_DEBUG_ANY, "daemon: unsupported address family (%d)\n", 1816 (int) (*sal)->sa_family ); 1817 break; 1818 } 1819 1820 AC_MEMCPY(&l.sl_sa, *sal, addrlen); 1821 ber_str2bv( url, 0, 1, &l.sl_url); 1822 li = ch_malloc( sizeof( Listener ) ); 1823 *li = l; 1824 slap_listeners[*cur] = li; 1825 (*cur)++; 1826 sal++; 1827 } 1828 1829 slap_free_listener_addresses(psal); 1830 1831 if ( l.sl_url.bv_val == NULL ) { 1832 Debug( LDAP_DEBUG_TRACE, 1833 "slap_open_listener: failed on %s\n", url ); 1834 return -1; 1835 } 1836 1837 Debug( LDAP_DEBUG_TRACE, "daemon: listener initialized %s\n", 1838 l.sl_url.bv_val ); 1839 return 0; 1840 } 1841 1842 static int sockinit(void); 1843 static int sockdestroy(void); 1844 1845 static int daemon_inited = 0; 1846 1847 int 1848 slapd_daemon_init( const char *urls ) 1849 { 1850 int i, j, n, rc; 1851 char **u; 1852 1853 Debug( LDAP_DEBUG_ARGS, "daemon_init: %s\n", 1854 urls ? urls : "<null>" ); 1855 1856 wake_sds = ch_malloc( slapd_daemon_threads * sizeof( sdpair )); 1857 for ( i=0; i<slapd_daemon_threads; i++ ) { 1858 wake_sds[i][0] = AC_SOCKET_INVALID; 1859 wake_sds[i][1] = AC_SOCKET_INVALID; 1860 } 1861 1862 slap_daemon = ch_calloc( slapd_daemon_threads, sizeof( slap_daemon_st )); 1863 ldap_pvt_thread_mutex_init( &slap_daemon[0].sd_mutex ); 1864 #ifdef HAVE_TCPD 1865 ldap_pvt_thread_mutex_init( &sd_tcpd_mutex ); 1866 #endif /* TCP Wrappers */ 1867 ldap_pvt_thread_mutex_init( &emfile_mutex ); 1868 1869 daemon_inited = 1; 1870 1871 if( (rc = sockinit()) != 0 ) return rc; 1872 1873 #ifdef HAVE_SYSCONF 1874 dtblsize = sysconf( _SC_OPEN_MAX ); 1875 #elif defined(HAVE_GETDTABLESIZE) 1876 dtblsize = getdtablesize(); 1877 #else /* ! HAVE_SYSCONF && ! HAVE_GETDTABLESIZE */ 1878 dtblsize = FD_SETSIZE; 1879 #endif /* ! HAVE_SYSCONF && ! HAVE_GETDTABLESIZE */ 1880 1881 SETUP_CLOSE(); 1882 1883 /* open a pipe (or something equivalent connected to itself). 1884 * we write a byte on this fd whenever we catch a signal. The main 1885 * loop will be select'ing on this socket, and will wake up when 1886 * this byte arrives. 1887 */ 1888 if( (rc = lutil_pair( wake_sds[0] )) < 0 ) { 1889 Debug( LDAP_DEBUG_ANY, 1890 "daemon: lutil_pair() failed rc=%d\n", rc ); 1891 return rc; 1892 } 1893 ber_pvt_socket_set_nonblock( wake_sds[0][1], 1 ); 1894 1895 SLAP_SOCK_INIT(0); 1896 1897 if( urls == NULL ) urls = "ldap:///"; 1898 1899 u = ldap_str2charray( urls, " " ); 1900 1901 if( u == NULL || u[0] == NULL ) { 1902 Debug( LDAP_DEBUG_ANY, "daemon_init: no urls (%s) provided.\n", 1903 urls ); 1904 if ( u ) 1905 ldap_charray_free( u ); 1906 return -1; 1907 } 1908 1909 for( i=0; u[i] != NULL; i++ ) { 1910 Debug( LDAP_DEBUG_TRACE, "daemon_init: listen on %s\n", 1911 u[i] ); 1912 } 1913 1914 if( i == 0 ) { 1915 Debug( LDAP_DEBUG_ANY, "daemon_init: no listeners to open (%s)\n", 1916 urls ); 1917 ldap_charray_free( u ); 1918 return -1; 1919 } 1920 1921 Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners to open...\n", 1922 i ); 1923 slap_listeners = ch_malloc( (i+1)*sizeof(Listener *) ); 1924 1925 for(n = 0, j = 0; u[n]; n++ ) { 1926 if ( slap_open_listener( u[n], &i, &j ) ) { 1927 ldap_charray_free( u ); 1928 return -1; 1929 } 1930 } 1931 slap_listeners[j] = NULL; 1932 1933 Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners opened\n", 1934 i ); 1935 1936 1937 #ifdef HAVE_SLP 1938 if( slapd_register_slp ) { 1939 slapd_slp_init( urls ); 1940 slapd_slp_reg(); 1941 } 1942 #endif /* HAVE_SLP */ 1943 1944 ldap_charray_free( u ); 1945 1946 return !i; 1947 } 1948 1949 /* transfer control of active sockets from old to new listener threads */ 1950 static void 1951 slapd_socket_realloc( int newnum ) 1952 { 1953 int i, j, oldid, newid; 1954 int newmask = newnum - 1; 1955 Listener *sl; 1956 int num_listeners; 1957 1958 for ( i=0; slap_listeners[i] != NULL; i++ ) ; 1959 num_listeners = i; 1960 1961 for ( i=0; i<dtblsize; i++ ) { 1962 int skip = 0; 1963 1964 /* don't bother with wake_sds, they're assigned independent of mask */ 1965 for (j=0; j<slapd_daemon_threads; j++) { 1966 if ( i == wake_sds[j][0] || i == wake_sds[j][1] ) { 1967 skip = 1; 1968 break; 1969 } 1970 } 1971 if ( skip ) continue; 1972 1973 oldid = DAEMON_ID(i); 1974 newid = i & newmask; 1975 if ( oldid == newid ) continue; 1976 if ( !SLAP_SOCK_IS_ACTIVE( oldid, i )) continue; 1977 sl = NULL; 1978 if ( num_listeners ) { 1979 for ( j=0; slap_listeners[j] != NULL; j++ ) { 1980 if ( slap_listeners[j]->sl_sd == i ) { 1981 sl = slap_listeners[j]; 1982 num_listeners--; 1983 break; 1984 } 1985 } 1986 } 1987 SLAP_SOCK_ADD( newid, i, sl ); 1988 if ( SLAP_SOCK_IS_READ( oldid, i )) { 1989 SLAP_SOCK_SET_READ( newid, i ); 1990 } 1991 if ( SLAP_SOCK_IS_WRITE( oldid, i )) { 1992 SLAP_SOCK_SET_WRITE( newid, i ); 1993 slap_daemon[oldid].sd_nwriters--; 1994 slap_daemon[newid].sd_nwriters++; 1995 } 1996 if ( connection_is_active( i )) { 1997 slap_daemon[oldid].sd_nactives--; 1998 slap_daemon[newid].sd_nactives++; 1999 } 2000 SLAP_SOCK_DEL( oldid, i ); 2001 } 2002 } 2003 2004 2005 int 2006 slapd_daemon_destroy( void ) 2007 { 2008 connections_destroy(); 2009 if ( daemon_inited ) { 2010 int i; 2011 2012 for ( i=0; i<slapd_daemon_threads; i++ ) { 2013 #ifdef HAVE_WINSOCK 2014 if ( wake_sds[i][1] != INVALID_SOCKET && 2015 SLAP_FD2SOCK( wake_sds[i][1] ) != SLAP_FD2SOCK( wake_sds[i][0] )) 2016 #endif /* HAVE_WINSOCK */ 2017 tcp_close( SLAP_FD2SOCK(wake_sds[i][1]) ); 2018 #ifdef HAVE_WINSOCK 2019 if ( wake_sds[i][0] != INVALID_SOCKET ) 2020 #endif /* HAVE_WINSOCK */ 2021 tcp_close( SLAP_FD2SOCK(wake_sds[i][0]) ); 2022 ldap_pvt_thread_mutex_destroy( &slap_daemon[i].sd_mutex ); 2023 SLAP_SOCK_DESTROY(i); 2024 } 2025 daemon_inited = 0; 2026 ldap_pvt_thread_mutex_destroy( &emfile_mutex ); 2027 #ifdef HAVE_TCPD 2028 ldap_pvt_thread_mutex_destroy( &sd_tcpd_mutex ); 2029 #endif /* TCP Wrappers */ 2030 } 2031 sockdestroy(); 2032 2033 #ifdef HAVE_SLP 2034 if( slapd_register_slp ) { 2035 slapd_slp_dereg(); 2036 slapd_slp_deinit(); 2037 } 2038 #endif /* HAVE_SLP */ 2039 2040 return 0; 2041 } 2042 2043 2044 static void 2045 close_listeners( 2046 int remove ) 2047 { 2048 int l; 2049 2050 if ( !listening ) 2051 return; 2052 listening = 0; 2053 2054 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2055 Listener *lr = slap_listeners[l]; 2056 2057 if ( lr->sl_sd != AC_SOCKET_INVALID ) { 2058 int s = lr->sl_sd; 2059 lr->sl_sd = AC_SOCKET_INVALID; 2060 if ( remove ) slapd_remove( s, NULL, 0, 0, 0 ); 2061 2062 #ifdef LDAP_PF_LOCAL 2063 if ( lr->sl_sa.sa_addr.sa_family == AF_LOCAL ) { 2064 unlink( lr->sl_sa.sa_un_addr.sun_path ); 2065 } 2066 #endif /* LDAP_PF_LOCAL */ 2067 2068 slapd_close( s ); 2069 } 2070 } 2071 } 2072 2073 static void 2074 destroy_listeners( void ) 2075 { 2076 Listener *lr, **ll = slap_listeners; 2077 2078 if ( ll == NULL ) 2079 return; 2080 2081 while ( (lr = *ll++) != NULL ) { 2082 if ( lr->sl_url.bv_val ) { 2083 ber_memfree( lr->sl_url.bv_val ); 2084 } 2085 2086 if ( lr->sl_name.bv_val ) { 2087 ber_memfree( lr->sl_name.bv_val ); 2088 } 2089 2090 free( lr ); 2091 } 2092 2093 free( slap_listeners ); 2094 slap_listeners = NULL; 2095 } 2096 2097 static int 2098 slap_listener( 2099 Listener *sl ) 2100 { 2101 Sockaddr from; 2102 2103 ber_socket_t s, sfd; 2104 ber_socklen_t len = sizeof(from); 2105 Connection *c; 2106 slap_ssf_t ssf = 0; 2107 struct berval authid = BER_BVNULL; 2108 #ifdef SLAPD_RLOOKUPS 2109 char hbuf[NI_MAXHOST]; 2110 #endif /* SLAPD_RLOOKUPS */ 2111 2112 char *dnsname = NULL; 2113 /* we assume INET6_ADDRSTRLEN > INET_ADDRSTRLEN */ 2114 char peername[LDAP_IPADDRLEN]; 2115 struct berval peerbv = BER_BVC(peername); 2116 #ifdef LDAP_PF_LOCAL_SENDMSG 2117 char peerbuf[8]; 2118 struct berval peerbv = BER_BVNULL; 2119 #endif 2120 int cflag; 2121 int tid; 2122 char ebuf[128]; 2123 2124 Debug( LDAP_DEBUG_TRACE, 2125 ">>> slap_listener(%s)\n", 2126 sl->sl_url.bv_val ); 2127 2128 peername[0] = '\0'; 2129 2130 #ifdef LDAP_CONNECTIONLESS 2131 if ( sl->sl_is_udp ) return 1; 2132 #endif /* LDAP_CONNECTIONLESS */ 2133 2134 # ifdef LDAP_PF_LOCAL 2135 /* FIXME: apparently accept doesn't fill 2136 * the sun_path sun_path member */ 2137 from.sa_un_addr.sun_path[0] = '\0'; 2138 # endif /* LDAP_PF_LOCAL */ 2139 2140 s = accept( SLAP_FD2SOCK( sl->sl_sd ), (struct sockaddr *) &from, &len ); 2141 if ( s != AC_SOCKET_INVALID ) { 2142 SET_CLOSE(s); 2143 } 2144 Debug( LDAP_DEBUG_CONNS, 2145 "daemon: accept() = %d\n", s ); 2146 2147 /* Resume the listener FD to allow concurrent-processing of 2148 * additional incoming connections. 2149 */ 2150 sl->sl_busy = 0; 2151 WAKE_LISTENER(DAEMON_ID(sl->sl_sd),1); 2152 2153 if ( s == AC_SOCKET_INVALID ) { 2154 int err = sock_errno(); 2155 2156 if( 2157 #ifdef EMFILE 2158 err == EMFILE || 2159 #endif /* EMFILE */ 2160 #ifdef ENFILE 2161 err == ENFILE || 2162 #endif /* ENFILE */ 2163 0 ) 2164 { 2165 ldap_pvt_thread_mutex_lock( &emfile_mutex ); 2166 emfile++; 2167 /* Stop listening until an existing session closes */ 2168 sl->sl_mute = 1; 2169 ldap_pvt_thread_mutex_unlock( &emfile_mutex ); 2170 } 2171 2172 Debug( LDAP_DEBUG_ANY, 2173 "daemon: accept(%ld) failed errno=%d (%s)\n", 2174 (long) sl->sl_sd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2175 ldap_pvt_thread_yield(); 2176 return 0; 2177 } 2178 sfd = SLAP_SOCKNEW( s ); 2179 2180 /* make sure descriptor number isn't too great */ 2181 if ( sfd >= dtblsize ) { 2182 Debug( LDAP_DEBUG_ANY, 2183 "daemon: %ld beyond descriptor table size %ld\n", 2184 (long) sfd, (long) dtblsize ); 2185 2186 tcp_close(s); 2187 ldap_pvt_thread_yield(); 2188 return 0; 2189 } 2190 tid = DAEMON_ID(sfd); 2191 2192 #ifdef LDAP_DEBUG 2193 ldap_pvt_thread_mutex_lock( &slap_daemon[tid].sd_mutex ); 2194 /* newly accepted stream should not be in any of the FD SETS */ 2195 assert( SLAP_SOCK_NOT_ACTIVE( tid, sfd )); 2196 ldap_pvt_thread_mutex_unlock( &slap_daemon[tid].sd_mutex ); 2197 #endif /* LDAP_DEBUG */ 2198 2199 #if defined( SO_KEEPALIVE ) || defined( TCP_NODELAY ) 2200 #ifdef LDAP_PF_LOCAL 2201 /* for IPv4 and IPv6 sockets only */ 2202 if ( from.sa_addr.sa_family != AF_LOCAL ) 2203 #endif /* LDAP_PF_LOCAL */ 2204 { 2205 int rc; 2206 int tmp; 2207 #ifdef SO_KEEPALIVE 2208 /* enable keep alives */ 2209 tmp = 1; 2210 rc = setsockopt( s, SOL_SOCKET, SO_KEEPALIVE, 2211 (char *) &tmp, sizeof(tmp) ); 2212 if ( rc == AC_SOCKET_ERROR ) { 2213 int err = sock_errno(); 2214 Debug( LDAP_DEBUG_ANY, 2215 "slapd(%ld): setsockopt(SO_KEEPALIVE) failed " 2216 "errno=%d (%s)\n", (long) sfd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2217 slapd_close(sfd); 2218 return 0; 2219 } 2220 #endif /* SO_KEEPALIVE */ 2221 #ifdef TCP_NODELAY 2222 /* enable no delay */ 2223 tmp = 1; 2224 rc = setsockopt( s, IPPROTO_TCP, TCP_NODELAY, 2225 (char *)&tmp, sizeof(tmp) ); 2226 if ( rc == AC_SOCKET_ERROR ) { 2227 int err = sock_errno(); 2228 Debug( LDAP_DEBUG_ANY, 2229 "slapd(%ld): setsockopt(TCP_NODELAY) failed " 2230 "errno=%d (%s)\n", (long) sfd, err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2231 slapd_close(sfd); 2232 return 0; 2233 } 2234 #endif /* TCP_NODELAY */ 2235 } 2236 #endif /* SO_KEEPALIVE || TCP_NODELAY */ 2237 2238 Debug( LDAP_DEBUG_CONNS, 2239 "daemon: listen=%ld, new connection on %ld\n", 2240 (long) sl->sl_sd, (long) sfd ); 2241 2242 cflag = 0; 2243 switch ( from.sa_addr.sa_family ) { 2244 # ifdef LDAP_PF_LOCAL 2245 case AF_LOCAL: 2246 cflag |= CONN_IS_IPC; 2247 2248 /* FIXME: apparently accept doesn't fill 2249 * the sun_path sun_path member */ 2250 if ( from.sa_un_addr.sun_path[0] == '\0' ) { 2251 AC_MEMCPY( from.sa_un_addr.sun_path, 2252 sl->sl_sa.sa_un_addr.sun_path, 2253 sizeof( from.sa_un_addr.sun_path ) ); 2254 } 2255 2256 sprintf( peername, "PATH=%s", from.sa_un_addr.sun_path ); 2257 ssf = local_ssf; 2258 { 2259 uid_t uid; 2260 gid_t gid; 2261 2262 #ifdef LDAP_PF_LOCAL_SENDMSG 2263 peerbv.bv_val = peerbuf; 2264 peerbv.bv_len = sizeof( peerbuf ); 2265 #endif 2266 if( LUTIL_GETPEEREID( s, &uid, &gid, &peerbv ) == 0 ) { 2267 authid.bv_val = ch_malloc( 2268 STRLENOF( "gidNumber=4294967295+uidNumber=4294967295," 2269 "cn=peercred,cn=external,cn=auth" ) + 1 ); 2270 authid.bv_len = sprintf( authid.bv_val, 2271 "gidNumber=%d+uidNumber=%d," 2272 "cn=peercred,cn=external,cn=auth", 2273 (int) gid, (int) uid ); 2274 assert( authid.bv_len <= 2275 STRLENOF( "gidNumber=4294967295+uidNumber=4294967295," 2276 "cn=peercred,cn=external,cn=auth" ) ); 2277 } 2278 } 2279 dnsname = "local"; 2280 break; 2281 #endif /* LDAP_PF_LOCAL */ 2282 2283 # ifdef LDAP_PF_INET6 2284 case AF_INET6: 2285 # endif /* LDAP_PF_INET6 */ 2286 case AF_INET: 2287 if ( sl->sl_is_proxied ) { 2288 if ( !proxyp( sfd, &from ) ) { 2289 Debug( LDAP_DEBUG_ANY, "slapd(%ld): proxyp failed\n", (long)sfd ); 2290 slapd_close( sfd ); 2291 return 0; 2292 } 2293 } 2294 ldap_pvt_sockaddrstr( &from, &peerbv ); 2295 break; 2296 2297 default: 2298 slapd_close(sfd); 2299 return 0; 2300 } 2301 2302 if ( ( from.sa_addr.sa_family == AF_INET ) 2303 #ifdef LDAP_PF_INET6 2304 || ( from.sa_addr.sa_family == AF_INET6 ) 2305 #endif /* LDAP_PF_INET6 */ 2306 ) 2307 { 2308 dnsname = NULL; 2309 #ifdef SLAPD_RLOOKUPS 2310 if ( use_reverse_lookup ) { 2311 char *herr; 2312 if (ldap_pvt_get_hname( (const struct sockaddr *)&from, len, hbuf, 2313 sizeof(hbuf), &herr ) == 0) { 2314 ldap_pvt_str2lower( hbuf ); 2315 dnsname = hbuf; 2316 } 2317 } 2318 #endif /* SLAPD_RLOOKUPS */ 2319 2320 #ifdef HAVE_TCPD 2321 { 2322 int rc; 2323 char *peeraddr, *paend; 2324 peeraddr = peerbv.bv_val + 3; 2325 if ( *peeraddr == '[' ) { 2326 peeraddr++; 2327 paend = strrchr( peeraddr, ']' ); 2328 } else { 2329 paend = strrchr( peeraddr, ':' ); 2330 } 2331 if ( paend ) 2332 *paend = '\0'; 2333 ldap_pvt_thread_mutex_lock( &sd_tcpd_mutex ); 2334 rc = hosts_ctl("slapd", 2335 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN, 2336 peeraddr, 2337 SLAP_STRING_UNKNOWN ); 2338 ldap_pvt_thread_mutex_unlock( &sd_tcpd_mutex ); 2339 if ( !rc ) { 2340 /* DENY ACCESS */ 2341 Debug( LDAP_DEBUG_STATS, 2342 "fd=%ld DENIED from %s (%s)\n", 2343 (long) sfd, 2344 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN, 2345 peeraddr ); 2346 slapd_close(sfd); 2347 return 0; 2348 } 2349 if ( paend ) { 2350 if ( peeraddr[-1] == '[' ) 2351 *paend = ']'; 2352 else 2353 *paend = ':'; 2354 } 2355 } 2356 #endif /* HAVE_TCPD */ 2357 } 2358 2359 #ifdef HAVE_TLS 2360 if ( sl->sl_is_tls ) cflag |= CONN_IS_TLS; 2361 #endif 2362 c = connection_init(sfd, sl, 2363 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN, 2364 peername, cflag, ssf, 2365 authid.bv_val ? &authid : NULL 2366 LDAP_PF_LOCAL_SENDMSG_ARG(&peerbv)); 2367 2368 if( authid.bv_val ) ch_free(authid.bv_val); 2369 2370 if( !c ) { 2371 Debug( LDAP_DEBUG_ANY, 2372 "daemon: connection_init(%ld, %s, %s) failed.\n", 2373 (long) sfd, peername, sl->sl_name.bv_val ); 2374 slapd_close(sfd); 2375 } 2376 2377 return 0; 2378 } 2379 2380 static void* 2381 slap_listener_thread( 2382 void* ctx, 2383 void* ptr ) 2384 { 2385 int rc; 2386 Listener *sl = (Listener *)ptr; 2387 2388 rc = slap_listener( sl ); 2389 2390 if( rc != LDAP_SUCCESS ) { 2391 Debug( LDAP_DEBUG_ANY, 2392 "slap_listener_thread(%s): failed err=%d", 2393 sl->sl_url.bv_val, rc ); 2394 } 2395 2396 return (void*)NULL; 2397 } 2398 2399 static int 2400 slap_listener_activate( 2401 Listener* sl ) 2402 { 2403 int rc; 2404 2405 Debug( LDAP_DEBUG_TRACE, "slap_listener_activate(%d): %s\n", 2406 sl->sl_sd, sl->sl_busy ? "busy" : "" ); 2407 2408 sl->sl_busy = 1; 2409 2410 rc = ldap_pvt_thread_pool_submit( &connection_pool, 2411 slap_listener_thread, (void *) sl ); 2412 2413 if( rc != 0 ) { 2414 Debug( LDAP_DEBUG_ANY, 2415 "slap_listener_activate(%d): submit failed (%d)\n", 2416 sl->sl_sd, rc ); 2417 } 2418 return rc; 2419 } 2420 2421 static void * 2422 slapd_daemon_task( 2423 void *ptr ) 2424 { 2425 int l; 2426 time_t last_idle_check = 0; 2427 int ebadf = 0; 2428 int tid = (slap_daemon_st *) ptr - slap_daemon; 2429 char ebuf[128]; 2430 2431 #define SLAPD_IDLE_CHECK_LIMIT 4 2432 2433 slapd_add( wake_sds[tid][0], 0, NULL, tid ); 2434 if ( tid ) 2435 goto loop; 2436 2437 /* Init stuff done only by thread 0 */ 2438 2439 last_idle_check = slap_get_time(); 2440 2441 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2442 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID ) continue; 2443 2444 #ifdef LDAP_CONNECTIONLESS 2445 /* Since this is connectionless, the data port is the 2446 * listening port. The listen() and accept() calls 2447 * are unnecessary. 2448 */ 2449 if ( slap_listeners[l]->sl_is_udp ) 2450 continue; 2451 #endif /* LDAP_CONNECTIONLESS */ 2452 2453 /* FIXME: TCP-only! */ 2454 #ifdef LDAP_TCP_BUFFER 2455 if ( 1 ) { 2456 int origsize, size, realsize, rc; 2457 socklen_t optlen; 2458 2459 size = 0; 2460 if ( slap_listeners[l]->sl_tcp_rmem > 0 ) { 2461 size = slap_listeners[l]->sl_tcp_rmem; 2462 } else if ( slapd_tcp_rmem > 0 ) { 2463 size = slapd_tcp_rmem; 2464 } 2465 2466 if ( size > 0 ) { 2467 optlen = sizeof( origsize ); 2468 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2469 SOL_SOCKET, 2470 SO_RCVBUF, 2471 (void *)&origsize, 2472 &optlen ); 2473 2474 if ( rc ) { 2475 int err = sock_errno(); 2476 Debug( LDAP_DEBUG_ANY, 2477 "slapd_daemon_task: getsockopt(SO_RCVBUF) failed errno=%d (%s)\n", 2478 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2479 } 2480 2481 optlen = sizeof( size ); 2482 rc = setsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2483 SOL_SOCKET, 2484 SO_RCVBUF, 2485 (const void *)&size, 2486 optlen ); 2487 2488 if ( rc ) { 2489 int err = sock_errno(); 2490 Debug( LDAP_DEBUG_ANY, 2491 "slapd_daemon_task: setsockopt(SO_RCVBUF) failed errno=%d (%s)\n", 2492 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2493 } 2494 2495 optlen = sizeof( realsize ); 2496 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2497 SOL_SOCKET, 2498 SO_RCVBUF, 2499 (void *)&realsize, 2500 &optlen ); 2501 2502 if ( rc ) { 2503 int err = sock_errno(); 2504 Debug( LDAP_DEBUG_ANY, 2505 "slapd_daemon_task: getsockopt(SO_RCVBUF) failed errno=%d (%s)\n", 2506 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2507 } 2508 2509 Debug(LDAP_DEBUG_ANY, 2510 "slapd_daemon_task: url=%s (#%d) RCVBUF original size=%d requested size=%d real size=%d\n", 2511 slap_listeners[l]->sl_url.bv_val, l, 2512 origsize, size, realsize ); 2513 } 2514 2515 size = 0; 2516 if ( slap_listeners[l]->sl_tcp_wmem > 0 ) { 2517 size = slap_listeners[l]->sl_tcp_wmem; 2518 } else if ( slapd_tcp_wmem > 0 ) { 2519 size = slapd_tcp_wmem; 2520 } 2521 2522 if ( size > 0 ) { 2523 optlen = sizeof( origsize ); 2524 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2525 SOL_SOCKET, 2526 SO_SNDBUF, 2527 (void *)&origsize, 2528 &optlen ); 2529 2530 if ( rc ) { 2531 int err = sock_errno(); 2532 Debug( LDAP_DEBUG_ANY, 2533 "slapd_daemon_task: getsockopt(SO_SNDBUF) failed errno=%d (%s)\n", 2534 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2535 } 2536 2537 optlen = sizeof( size ); 2538 rc = setsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2539 SOL_SOCKET, 2540 SO_SNDBUF, 2541 (const void *)&size, 2542 optlen ); 2543 2544 if ( rc ) { 2545 int err = sock_errno(); 2546 Debug( LDAP_DEBUG_ANY, 2547 "slapd_daemon_task: setsockopt(SO_SNDBUF) failed errno=%d (%s)", 2548 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2549 } 2550 2551 optlen = sizeof( realsize ); 2552 rc = getsockopt( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 2553 SOL_SOCKET, 2554 SO_SNDBUF, 2555 (void *)&realsize, 2556 &optlen ); 2557 2558 if ( rc ) { 2559 int err = sock_errno(); 2560 Debug( LDAP_DEBUG_ANY, 2561 "slapd_daemon_task: getsockopt(SO_SNDBUF) failed errno=%d (%s)\n", 2562 err, sock_errstr(err, ebuf, sizeof(ebuf)) ); 2563 } 2564 2565 Debug(LDAP_DEBUG_ANY, 2566 "slapd_daemon_task: url=%s (#%d) SNDBUF original size=%d requested size=%d real size=%d\n", 2567 slap_listeners[l]->sl_url.bv_val, l, 2568 origsize, size, realsize ); 2569 } 2570 } 2571 #endif /* LDAP_TCP_BUFFER */ 2572 2573 if ( listen( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), SLAPD_LISTEN_BACKLOG ) == -1 ) { 2574 int err = sock_errno(); 2575 2576 #ifdef LDAP_PF_INET6 2577 /* If error is EADDRINUSE, we are trying to listen to INADDR_ANY and 2578 * we are already listening to in6addr_any, then we want to ignore 2579 * this and continue. 2580 */ 2581 if ( err == EADDRINUSE ) { 2582 int i; 2583 struct sockaddr_in sa = slap_listeners[l]->sl_sa.sa_in_addr; 2584 struct sockaddr_in6 sa6; 2585 2586 if ( sa.sin_family == AF_INET && 2587 sa.sin_addr.s_addr == htonl(INADDR_ANY) ) { 2588 for ( i = 0 ; i < l; i++ ) { 2589 sa6 = slap_listeners[i]->sl_sa.sa_in6_addr; 2590 if ( sa6.sin6_family == AF_INET6 && 2591 !memcmp( &sa6.sin6_addr, &in6addr_any, 2592 sizeof(struct in6_addr) ) ) 2593 { 2594 break; 2595 } 2596 } 2597 2598 if ( i < l ) { 2599 /* We are already listening to in6addr_any */ 2600 Debug( LDAP_DEBUG_CONNS, 2601 "daemon: Attempt to listen to 0.0.0.0 failed, " 2602 "already listening on ::, assuming IPv4 included\n" ); 2603 slapd_close( slap_listeners[l]->sl_sd ); 2604 slap_listeners[l]->sl_sd = AC_SOCKET_INVALID; 2605 continue; 2606 } 2607 } 2608 } 2609 #endif /* LDAP_PF_INET6 */ 2610 Debug( LDAP_DEBUG_ANY, 2611 "daemon: listen(%s, 5) failed errno=%d (%s)\n", 2612 slap_listeners[l]->sl_url.bv_val, err, 2613 sock_errstr(err, ebuf, sizeof(ebuf)) ); 2614 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 2615 slapd_shutdown = 2; 2616 ldap_pvt_thread_cond_signal( &slapd_init_cond ); 2617 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 2618 return (void*)-1; 2619 } 2620 2621 /* make the listening socket non-blocking */ 2622 if ( ber_pvt_socket_set_nonblock( SLAP_FD2SOCK( slap_listeners[l]->sl_sd ), 1 ) < 0 ) { 2623 Debug( LDAP_DEBUG_ANY, "slapd_daemon_task: " 2624 "set nonblocking on a listening socket failed\n" ); 2625 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 2626 slapd_shutdown = 2; 2627 ldap_pvt_thread_cond_signal( &slapd_init_cond ); 2628 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 2629 return (void*)-1; 2630 } 2631 2632 slapd_add( slap_listeners[l]->sl_sd, 0, slap_listeners[l], -1 ); 2633 } 2634 2635 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 2636 slapd_ready = 1; 2637 ldap_pvt_thread_cond_signal( &slapd_init_cond ); 2638 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 2639 2640 #ifdef HAVE_NT_SERVICE_MANAGER 2641 if ( started_event != NULL ) { 2642 ldap_pvt_thread_cond_signal( &started_event ); 2643 } 2644 #endif /* HAVE_NT_SERVICE_MANAGER */ 2645 2646 loop: 2647 2648 /* initialization complete. Here comes the loop. */ 2649 2650 while ( !slapd_shutdown ) { 2651 ber_socket_t i; 2652 int ns, nwriters; 2653 int at; 2654 ber_socket_t nfds; 2655 #if SLAP_EVENTS_ARE_INDEXED 2656 ber_socket_t nrfds, nwfds; 2657 #endif /* SLAP_EVENTS_ARE_INDEXED */ 2658 #define SLAPD_EBADF_LIMIT 16 2659 2660 time_t now; 2661 2662 SLAP_EVENT_DECL; 2663 2664 struct timeval tv; 2665 struct timeval *tvp; 2666 2667 struct timeval cat; 2668 time_t tdelta = 1; 2669 struct re_s* rtask; 2670 2671 now = slap_get_time(); 2672 2673 if ( !tid && ( global_idletimeout > 0 )) { 2674 int check = 0; 2675 /* Set the select timeout. 2676 * Don't just truncate, preserve the fractions of 2677 * seconds to prevent sleeping for zero time. 2678 */ 2679 { 2680 tv.tv_sec = global_idletimeout / SLAPD_IDLE_CHECK_LIMIT; 2681 tv.tv_usec = global_idletimeout - \ 2682 ( tv.tv_sec * SLAPD_IDLE_CHECK_LIMIT ); 2683 tv.tv_usec *= 1000000 / SLAPD_IDLE_CHECK_LIMIT; 2684 if ( difftime( last_idle_check + 2685 global_idletimeout/SLAPD_IDLE_CHECK_LIMIT, now ) < 0 ) 2686 check = 1; 2687 } 2688 if ( check ) { 2689 connections_timeout_idle( now ); 2690 last_idle_check = now; 2691 } 2692 } else { 2693 tv.tv_sec = 0; 2694 tv.tv_usec = 0; 2695 } 2696 2697 #ifdef SIGHUP 2698 if ( slapd_gentle_shutdown ) { 2699 ber_socket_t active; 2700 2701 if ( !tid && slapd_gentle_shutdown == 1 ) { 2702 BackendDB *be; 2703 Debug( LDAP_DEBUG_ANY, "slapd gentle shutdown\n" ); 2704 close_listeners( 1 ); 2705 frontendDB->be_restrictops |= SLAP_RESTRICT_OP_WRITES; 2706 LDAP_STAILQ_FOREACH(be, &backendDB, be_next) { 2707 be->be_restrictops |= SLAP_RESTRICT_OP_WRITES; 2708 } 2709 slapd_gentle_shutdown = 2; 2710 } 2711 2712 ldap_pvt_thread_mutex_lock( &slap_daemon[tid].sd_mutex ); 2713 active = slap_daemon[tid].sd_nactives; 2714 ldap_pvt_thread_mutex_unlock( &slap_daemon[tid].sd_mutex ); 2715 2716 if ( active == 0 ) { 2717 if ( !tid ) { 2718 for ( l=1; l<slapd_daemon_threads; l++ ) { 2719 ldap_pvt_thread_mutex_lock( &slap_daemon[l].sd_mutex ); 2720 active += slap_daemon[l].sd_nactives; 2721 ldap_pvt_thread_mutex_unlock( &slap_daemon[l].sd_mutex ); 2722 } 2723 if ( !active ) 2724 slapd_shutdown = 1; 2725 } 2726 if ( !active ) 2727 break; 2728 } 2729 } 2730 #endif /* SIGHUP */ 2731 at = 0; 2732 2733 ldap_pvt_thread_mutex_lock( &slap_daemon[tid].sd_mutex ); 2734 2735 nwriters = slap_daemon[tid].sd_nwriters; 2736 2737 if ( listening ) 2738 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2739 Listener *lr = slap_listeners[l]; 2740 2741 if ( lr->sl_sd == AC_SOCKET_INVALID ) continue; 2742 if ( DAEMON_ID( lr->sl_sd ) != tid ) continue; 2743 if ( !SLAP_SOCK_IS_ACTIVE( tid, lr->sl_sd )) continue; 2744 2745 if ( lr->sl_mute || lr->sl_busy ) 2746 { 2747 SLAP_SOCK_CLR_READ( tid, lr->sl_sd ); 2748 } else { 2749 SLAP_SOCK_SET_READ( tid, lr->sl_sd ); 2750 } 2751 } 2752 2753 SLAP_EVENT_INIT(tid); 2754 2755 nfds = SLAP_EVENT_MAX(tid); 2756 2757 if (( global_idletimeout ) && slap_daemon[tid].sd_nactives ) at = 1; 2758 2759 ldap_pvt_thread_mutex_unlock( &slap_daemon[tid].sd_mutex ); 2760 2761 if ( at 2762 #if defined(HAVE_YIELDING_SELECT) 2763 && ( tv.tv_sec || tv.tv_usec ) 2764 #endif /* HAVE_YIELDING_SELECT */ 2765 ) 2766 { 2767 tvp = &tv; 2768 } else { 2769 tvp = NULL; 2770 } 2771 2772 /* Only thread 0 handles runqueue */ 2773 if ( !tid ) { 2774 ldap_pvt_thread_mutex_lock( &slapd_rq.rq_mutex ); 2775 rtask = ldap_pvt_runqueue_next_sched( &slapd_rq, &cat ); 2776 while ( rtask && cat.tv_sec && cat.tv_sec <= now ) { 2777 if ( ldap_pvt_runqueue_isrunning( &slapd_rq, rtask )) { 2778 ldap_pvt_runqueue_resched( &slapd_rq, rtask, 0 ); 2779 } else { 2780 ldap_pvt_runqueue_runtask( &slapd_rq, rtask ); 2781 ldap_pvt_runqueue_resched( &slapd_rq, rtask, 0 ); 2782 ldap_pvt_thread_mutex_unlock( &slapd_rq.rq_mutex ); 2783 ldap_pvt_thread_pool_submit2( &connection_pool, 2784 rtask->routine, (void *) rtask, &rtask->pool_cookie ); 2785 ldap_pvt_thread_mutex_lock( &slapd_rq.rq_mutex ); 2786 } 2787 rtask = ldap_pvt_runqueue_next_sched( &slapd_rq, &cat ); 2788 } 2789 ldap_pvt_thread_mutex_unlock( &slapd_rq.rq_mutex ); 2790 2791 if ( rtask && cat.tv_sec ) { 2792 /* NOTE: diff __should__ always be >= 0, 2793 * AFAI understand; however (ITS#4872), 2794 * time_t might be unsigned in some systems, 2795 * while difftime() returns a double */ 2796 double diff = difftime( cat.tv_sec, now ); 2797 if ( diff <= 0 ) { 2798 diff = tdelta; 2799 } 2800 if ( tvp == NULL || diff < tv.tv_sec ) { 2801 tv.tv_sec = diff; 2802 tv.tv_usec = 0; 2803 tvp = &tv; 2804 } 2805 } 2806 } 2807 2808 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2809 Listener *lr = slap_listeners[l]; 2810 2811 if ( lr->sl_sd == AC_SOCKET_INVALID ) { 2812 continue; 2813 } 2814 2815 if ( DAEMON_ID( lr->sl_sd ) != tid ) continue; 2816 2817 if ( lr->sl_mute ) { 2818 Debug( LDAP_DEBUG_CONNS, 2819 "daemon: " SLAP_EVENT_FNAME ": " 2820 "listen=%d muted\n", 2821 lr->sl_sd ); 2822 continue; 2823 } 2824 2825 if ( lr->sl_busy ) { 2826 Debug( LDAP_DEBUG_CONNS, 2827 "daemon: " SLAP_EVENT_FNAME ": " 2828 "listen=%d busy\n", 2829 lr->sl_sd ); 2830 continue; 2831 } 2832 2833 Debug( LDAP_DEBUG_CONNS, 2834 "daemon: " SLAP_EVENT_FNAME ": " 2835 "listen=%d active_threads=%d tvp=%s\n", 2836 lr->sl_sd, at, tvp == NULL ? "NULL" : "zero" ); 2837 } 2838 2839 SLAP_EVENT_WAIT( tid, tvp, &ns ); 2840 switch ( ns ) { 2841 case -1: { /* failure - try again */ 2842 int err = sock_errno(); 2843 2844 if ( err != EINTR ) { 2845 ebadf++; 2846 2847 /* Don't log unless we got it twice in a row */ 2848 if ( !( ebadf & 1 ) ) { 2849 Debug( LDAP_DEBUG_ANY, 2850 "daemon: " 2851 SLAP_EVENT_FNAME 2852 " failed count %d " 2853 "err (%d): %s\n", 2854 ebadf, err, 2855 sock_errstr( err, ebuf, sizeof(ebuf) ) ); 2856 } 2857 if ( ebadf >= SLAPD_EBADF_LIMIT ) { 2858 slapd_shutdown = 2; 2859 } 2860 } 2861 } 2862 continue; 2863 2864 case 0: /* timeout - let threads run */ 2865 ebadf = 0; 2866 #ifndef HAVE_YIELDING_SELECT 2867 Debug( LDAP_DEBUG_CONNS, "daemon: " SLAP_EVENT_FNAME 2868 "timeout - yielding\n" ); 2869 2870 ldap_pvt_thread_yield(); 2871 #endif /* ! HAVE_YIELDING_SELECT */ 2872 continue; 2873 2874 default: /* something happened - deal with it */ 2875 if ( slapd_shutdown ) continue; 2876 2877 ebadf = 0; 2878 Debug( LDAP_DEBUG_CONNS, 2879 "daemon: activity on %d descriptor%s\n", 2880 ns, ns != 1 ? "s" : "" ); 2881 /* FALL THRU */ 2882 } 2883 2884 #if SLAP_EVENTS_ARE_INDEXED 2885 if ( SLAP_EVENT_IS_READ( wake_sds[tid][0] ) ) { 2886 char c[BUFSIZ]; 2887 SLAP_EVENT_CLR_READ( wake_sds[tid][0] ); 2888 waking = 0; 2889 tcp_read( SLAP_FD2SOCK(wake_sds[tid][0]), c, sizeof(c) ); 2890 Debug( LDAP_DEBUG_CONNS, "daemon: waked\n" ); 2891 continue; 2892 } 2893 2894 /* The event slot equals the descriptor number - this is 2895 * true for Unix select and poll. We treat Windows select 2896 * like this too, even though it's a kludge. 2897 */ 2898 if ( listening ) 2899 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 2900 int rc; 2901 2902 if ( ns <= 0 ) break; 2903 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID ) continue; 2904 if ( DAEMON_ID( slap_listeners[l]->sl_sd ) != tid ) continue; 2905 #ifdef LDAP_CONNECTIONLESS 2906 if ( slap_listeners[l]->sl_is_udp ) continue; 2907 #endif /* LDAP_CONNECTIONLESS */ 2908 if ( !SLAP_EVENT_IS_READ( slap_listeners[l]->sl_sd ) ) continue; 2909 2910 /* clear events */ 2911 SLAP_EVENT_CLR_READ( slap_listeners[l]->sl_sd ); 2912 SLAP_EVENT_CLR_WRITE( slap_listeners[l]->sl_sd ); 2913 ns--; 2914 2915 rc = slap_listener_activate( slap_listeners[l] ); 2916 } 2917 2918 /* bypass the following tests if no descriptors left */ 2919 if ( ns <= 0 ) { 2920 #ifndef HAVE_YIELDING_SELECT 2921 ldap_pvt_thread_yield(); 2922 #endif /* HAVE_YIELDING_SELECT */ 2923 continue; 2924 } 2925 2926 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:" ); 2927 nrfds = 0; 2928 nwfds = 0; 2929 for ( i = 0; i < nfds; i++ ) { 2930 int r, w; 2931 2932 r = SLAP_EVENT_IS_READ( i ); 2933 /* writefds was not initialized if nwriters was zero */ 2934 w = nwriters ? SLAP_EVENT_IS_WRITE( i ) : 0; 2935 if ( r || w ) { 2936 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i, 2937 r ? "r" : "", w ? "w" : "" ); 2938 if ( r ) { 2939 nrfds++; 2940 ns--; 2941 } 2942 if ( w ) { 2943 nwfds++; 2944 ns--; 2945 } 2946 } 2947 if ( ns <= 0 ) break; 2948 } 2949 Debug( LDAP_DEBUG_CONNS, "\n" ); 2950 2951 /* loop through the writers */ 2952 for ( i = 0; nwfds > 0; i++ ) { 2953 ber_socket_t wd; 2954 if ( ! SLAP_EVENT_IS_WRITE( i ) ) continue; 2955 wd = i; 2956 2957 SLAP_EVENT_CLR_WRITE( wd ); 2958 nwfds--; 2959 2960 Debug( LDAP_DEBUG_CONNS, 2961 "daemon: write active on %d\n", 2962 wd ); 2963 2964 /* 2965 * NOTE: it is possible that the connection was closed 2966 * and that the stream is now inactive. 2967 * connection_write() must validate the stream is still 2968 * active. 2969 * 2970 * ITS#4338: if the stream is invalid, there is no need to 2971 * close it here. It has already been closed in connection.c. 2972 */ 2973 if ( connection_write( wd ) < 0 ) { 2974 if ( SLAP_EVENT_IS_READ( wd ) ) { 2975 SLAP_EVENT_CLR_READ( (unsigned) wd ); 2976 nrfds--; 2977 } 2978 } 2979 } 2980 2981 for ( i = 0; nrfds > 0; i++ ) { 2982 ber_socket_t rd; 2983 if ( ! SLAP_EVENT_IS_READ( i ) ) continue; 2984 rd = i; 2985 SLAP_EVENT_CLR_READ( rd ); 2986 nrfds--; 2987 2988 Debug ( LDAP_DEBUG_CONNS, 2989 "daemon: read activity on %d\n", rd ); 2990 /* 2991 * NOTE: it is possible that the connection was closed 2992 * and that the stream is now inactive. 2993 * connection_read() must valid the stream is still 2994 * active. 2995 */ 2996 2997 connection_read_activate( rd ); 2998 } 2999 #else /* !SLAP_EVENTS_ARE_INDEXED */ 3000 /* FIXME */ 3001 /* The events are returned in an arbitrary list. This is true 3002 * for /dev/poll, epoll and kqueue. In order to prioritize things 3003 * so that we can handle wake_sds first, listeners second, and then 3004 * all other connections last (as we do for select), we would need 3005 * to use multiple event handles and cascade them. 3006 * 3007 * That seems like a bit of hassle. So the wake_sds check has been 3008 * skipped. For epoll and kqueue we can associate arbitrary data with 3009 * an event, so we could use pointers to the listener structure 3010 * instead of just the file descriptor. For /dev/poll we have to 3011 * search the listeners array for a matching descriptor. 3012 * 3013 * We now handle wake events when we see them; they are not given 3014 * higher priority. 3015 */ 3016 #ifdef LDAP_DEBUG 3017 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:" ); 3018 3019 for ( i = 0; i < ns; i++ ) { 3020 int r, w, fd; 3021 3022 /* Don't log listener events */ 3023 if ( SLAP_EVENT_IS_LISTENER( tid, i ) 3024 #ifdef LDAP_CONNECTIONLESS 3025 && !( (SLAP_EVENT_LISTENER( tid, i ))->sl_is_udp ) 3026 #endif /* LDAP_CONNECTIONLESS */ 3027 ) 3028 { 3029 continue; 3030 } 3031 3032 fd = SLAP_EVENT_FD( tid, i ); 3033 /* Don't log internal wake events */ 3034 if ( fd == wake_sds[tid][0] ) continue; 3035 3036 #ifdef HAVE_KQUEUE 3037 r = SLAP_EVENT_IS_READ( tid, i ); 3038 w = SLAP_EVENT_IS_WRITE( tid, i ); 3039 #else 3040 r = SLAP_EVENT_IS_READ( i ); 3041 w = SLAP_EVENT_IS_WRITE( i ); 3042 #endif /* HAVE_KQUEUE */ 3043 if ( r || w ) { 3044 Debug( LDAP_DEBUG_CONNS, " %d%s%s", fd, 3045 r ? "r" : "", w ? "w" : "" ); 3046 } 3047 } 3048 Debug( LDAP_DEBUG_CONNS, "\n" ); 3049 #endif /* LDAP_DEBUG */ 3050 3051 for ( i = 0; i < ns; i++ ) { 3052 int rc = 1, fd, w = 0, r = 0; 3053 3054 if ( SLAP_EVENT_IS_LISTENER( tid, i ) ) { 3055 rc = slap_listener_activate( SLAP_EVENT_LISTENER( tid, i ) ); 3056 } 3057 3058 /* If we found a regular listener, rc is now zero, and we 3059 * can skip the data portion. But if it was a UDP listener 3060 * then rc is still 1, and we want to handle the data. 3061 */ 3062 if ( rc ) { 3063 fd = SLAP_EVENT_FD( tid, i ); 3064 3065 /* Handle wake events */ 3066 if ( fd == wake_sds[tid][0] ) { 3067 char c[BUFSIZ]; 3068 waking = 0; 3069 (void)!tcp_read( SLAP_FD2SOCK(wake_sds[tid][0]), c, sizeof(c) ); 3070 continue; 3071 } 3072 3073 #ifdef HAVE_KQUEUE 3074 if ( SLAP_EVENT_IS_WRITE( tid, i ) ) 3075 #else 3076 if ( SLAP_EVENT_IS_WRITE( i ) ) 3077 #endif /* HAVE_KQUEUE */ 3078 { 3079 Debug( LDAP_DEBUG_CONNS, 3080 "daemon: write active on %d\n", 3081 fd ); 3082 3083 SLAP_EVENT_CLR_WRITE( i ); 3084 w = 1; 3085 3086 /* 3087 * NOTE: it is possible that the connection was closed 3088 * and that the stream is now inactive. 3089 * connection_write() must valid the stream is still 3090 * active. 3091 */ 3092 if ( connection_write( fd ) < 0 ) { 3093 continue; 3094 } 3095 } 3096 /* If event is a read */ 3097 #ifdef HAVE_KQUEUE 3098 if ( SLAP_EVENT_IS_READ( tid, i )) 3099 #else 3100 if ( SLAP_EVENT_IS_READ( i )) 3101 #endif /* HAVE_KQUEUE */ 3102 { 3103 r = 1; 3104 Debug( LDAP_DEBUG_CONNS, 3105 "daemon: read active on %d\n", 3106 fd ); 3107 3108 SLAP_EVENT_CLR_READ( i ); 3109 connection_read_activate( fd ); 3110 } else if ( !w ) { 3111 #ifdef HAVE_EPOLL 3112 /* Don't keep reporting the hangup 3113 */ 3114 if ( SLAP_SOCK_IS_ACTIVE( tid, fd )) { 3115 SLAP_EPOLL_SOCK_SET( tid, fd, EPOLLET ); 3116 } 3117 #endif 3118 } 3119 } 3120 } 3121 #endif /* SLAP_EVENTS_ARE_INDEXED */ 3122 3123 /* Was number of listener threads decreased? */ 3124 if ( ldap_pvt_thread_pool_pausecheck_native( &connection_pool )) { 3125 /* decreased, let this thread finish */ 3126 if ( tid >= slapd_daemon_threads ) 3127 break; 3128 } 3129 3130 #ifndef HAVE_YIELDING_SELECT 3131 ldap_pvt_thread_yield(); 3132 #endif /* ! HAVE_YIELDING_SELECT */ 3133 } 3134 3135 /* Only thread 0 handles shutdown */ 3136 if ( tid ) 3137 return NULL; 3138 3139 if ( slapd_shutdown == 1 ) { 3140 Debug( LDAP_DEBUG_ANY, 3141 "daemon: shutdown requested and initiated.\n" ); 3142 3143 } else if ( slapd_shutdown == 2 ) { 3144 #ifdef HAVE_NT_SERVICE_MANAGER 3145 Debug( LDAP_DEBUG_ANY, 3146 "daemon: shutdown initiated by Service Manager.\n" ); 3147 #else /* !HAVE_NT_SERVICE_MANAGER */ 3148 Debug( LDAP_DEBUG_ANY, 3149 "daemon: abnormal condition, shutdown initiated.\n" ); 3150 #endif /* !HAVE_NT_SERVICE_MANAGER */ 3151 } else { 3152 Debug( LDAP_DEBUG_ANY, 3153 "daemon: no active streams, shutdown initiated.\n" ); 3154 } 3155 3156 close_listeners( 1 ); 3157 3158 if ( !slapd_gentle_shutdown ) { 3159 slapd_abrupt_shutdown = 1; 3160 connections_shutdown(); 3161 } 3162 3163 #ifdef HAVE_KQUEUE 3164 close( slap_daemon[tid].sd_kq ); 3165 #endif 3166 3167 if ( LogTest( LDAP_DEBUG_ANY )) { 3168 int t = ldap_pvt_thread_pool_backload( &connection_pool ); 3169 Debug( LDAP_DEBUG_ANY, 3170 "slapd shutdown: waiting for %d operations/tasks to finish\n", 3171 t ); 3172 } 3173 ldap_pvt_thread_pool_close( &connection_pool, 1 ); 3174 3175 return NULL; 3176 } 3177 3178 typedef struct slap_tid_waiter { 3179 int num_tids; 3180 ldap_pvt_thread_t tids[0]; 3181 } slap_tid_waiter; 3182 3183 static void * 3184 slapd_daemon_tid_cleanup( 3185 void *ctx, 3186 void *ptr ) 3187 { 3188 slap_tid_waiter *tids = ptr; 3189 int i; 3190 3191 for ( i=0; i<tids->num_tids; i++ ) 3192 ldap_pvt_thread_join( tids->tids[i], (void *)NULL ); 3193 ch_free( ptr ); 3194 return NULL; 3195 } 3196 3197 int 3198 slapd_daemon_resize( int newnum ) 3199 { 3200 int i, rc; 3201 3202 if ( newnum == slapd_daemon_threads ) 3203 return 0; 3204 3205 /* wake up all current listener threads */ 3206 for ( i=0; i<slapd_daemon_threads; i++ ) 3207 WAKE_LISTENER(i,1); 3208 3209 /* mutexes may not survive realloc, so destroy & recreate later */ 3210 for ( i=0; i<slapd_daemon_threads; i++ ) 3211 ldap_pvt_thread_mutex_destroy( &slap_daemon[i].sd_mutex ); 3212 3213 if ( newnum > slapd_daemon_threads ) { 3214 wake_sds = ch_realloc( wake_sds, newnum * sizeof( sdpair )); 3215 slap_daemon = ch_realloc( slap_daemon, newnum * sizeof( slap_daemon_st )); 3216 3217 for ( i=slapd_daemon_threads; i<newnum; i++ ) 3218 { 3219 memset( &slap_daemon[i], 0, sizeof( slap_daemon_st )); 3220 if( (rc = lutil_pair( wake_sds[i] )) < 0 ) { 3221 Debug( LDAP_DEBUG_ANY, 3222 "daemon: lutil_pair() failed rc=%d\n", rc ); 3223 return rc; 3224 } 3225 ber_pvt_socket_set_nonblock( wake_sds[i][1], 1 ); 3226 3227 SLAP_SOCK_INIT(i); 3228 } 3229 3230 for ( i=0; i<newnum; i++ ) 3231 ldap_pvt_thread_mutex_init( &slap_daemon[i].sd_mutex ); 3232 3233 slapd_socket_realloc( newnum ); 3234 3235 for ( i=slapd_daemon_threads; i<newnum; i++ ) 3236 { 3237 /* listener as a separate THREAD */ 3238 rc = ldap_pvt_thread_create( &slap_daemon[i].sd_tid, 3239 0, slapd_daemon_task, &slap_daemon[i] ); 3240 3241 if ( rc != 0 ) { 3242 Debug( LDAP_DEBUG_ANY, 3243 "listener ldap_pvt_thread_create failed (%d)\n", rc ); 3244 return rc; 3245 } 3246 } 3247 } else { 3248 int j; 3249 slap_tid_waiter *tids = ch_malloc( sizeof(slap_tid_waiter) + 3250 ((slapd_daemon_threads - newnum) * sizeof(ldap_pvt_thread_t ))); 3251 slapd_socket_realloc( newnum ); 3252 tids->num_tids = slapd_daemon_threads - newnum; 3253 for ( i=newnum, j=0; i<slapd_daemon_threads; i++, j++ ) { 3254 tids->tids[j] = slap_daemon[i].sd_tid; 3255 #ifdef HAVE_WINSOCK 3256 if ( wake_sds[i][1] != INVALID_SOCKET && 3257 SLAP_FD2SOCK( wake_sds[i][1] ) != SLAP_FD2SOCK( wake_sds[i][0] )) 3258 #endif /* HAVE_WINSOCK */ 3259 tcp_close( SLAP_FD2SOCK(wake_sds[i][1]) ); 3260 #ifdef HAVE_WINSOCK 3261 if ( wake_sds[i][0] != INVALID_SOCKET ) 3262 #endif /* HAVE_WINSOCK */ 3263 tcp_close( SLAP_FD2SOCK(wake_sds[i][0]) ); 3264 3265 SLAP_SOCK_DESTROY( i ); 3266 } 3267 3268 wake_sds = ch_realloc( wake_sds, newnum * sizeof( sdpair )); 3269 slap_daemon = ch_realloc( slap_daemon, newnum * sizeof( slap_daemon_st )); 3270 for ( i=0; i<newnum; i++ ) 3271 ldap_pvt_thread_mutex_init( &slap_daemon[i].sd_mutex ); 3272 ldap_pvt_thread_pool_submit( &connection_pool, 3273 slapd_daemon_tid_cleanup, (void *) tids ); 3274 } 3275 slapd_daemon_threads = newnum; 3276 slapd_daemon_mask = newnum - 1; 3277 return 0; 3278 } 3279 3280 #ifdef LDAP_CONNECTIONLESS 3281 static int 3282 connectionless_init( void ) 3283 { 3284 int l; 3285 3286 for ( l = 0; slap_listeners[l] != NULL; l++ ) { 3287 Listener *lr = slap_listeners[l]; 3288 Connection *c; 3289 3290 if ( !lr->sl_is_udp ) { 3291 continue; 3292 } 3293 3294 c = connection_init( lr->sl_sd, lr, "", "", 3295 CONN_IS_UDP, (slap_ssf_t) 0, NULL 3296 LDAP_PF_LOCAL_SENDMSG_ARG(NULL)); 3297 3298 if ( !c ) { 3299 Debug( LDAP_DEBUG_TRACE, 3300 "connectionless_init: failed on %s (%d)\n", 3301 lr->sl_url.bv_val, lr->sl_sd ); 3302 return -1; 3303 } 3304 lr->sl_is_udp++; 3305 } 3306 3307 return 0; 3308 } 3309 #endif /* LDAP_CONNECTIONLESS */ 3310 3311 int 3312 slapd_daemon( void ) 3313 { 3314 int i, rc; 3315 3316 #ifdef LDAP_CONNECTIONLESS 3317 connectionless_init(); 3318 #endif /* LDAP_CONNECTIONLESS */ 3319 3320 SLAP_SOCK_INIT2(); 3321 3322 /* daemon_init only inits element 0 */ 3323 for ( i=1; i<slapd_daemon_threads; i++ ) 3324 { 3325 ldap_pvt_thread_mutex_init( &slap_daemon[i].sd_mutex ); 3326 3327 if( (rc = lutil_pair( wake_sds[i] )) < 0 ) { 3328 Debug( LDAP_DEBUG_ANY, 3329 "daemon: lutil_pair() failed rc=%d\n", rc ); 3330 return rc; 3331 } 3332 ber_pvt_socket_set_nonblock( wake_sds[i][1], 1 ); 3333 3334 SLAP_SOCK_INIT(i); 3335 } 3336 3337 for ( i=0; i<slapd_daemon_threads; i++ ) 3338 { 3339 /* listener as a separate THREAD */ 3340 rc = ldap_pvt_thread_create( &slap_daemon[i].sd_tid, 3341 0, slapd_daemon_task, &slap_daemon[i] ); 3342 3343 if ( rc != 0 ) { 3344 Debug( LDAP_DEBUG_ANY, 3345 "listener ldap_pvt_thread_create failed (%d)\n", rc ); 3346 return rc; 3347 } 3348 } 3349 3350 ldap_pvt_thread_mutex_lock( &slapd_init_mutex ); 3351 while ( !slapd_ready && !slapd_shutdown ) { 3352 ldap_pvt_thread_cond_wait( &slapd_init_cond, &slapd_init_mutex ); 3353 } 3354 ldap_pvt_thread_mutex_unlock( &slapd_init_mutex ); 3355 3356 if ( slapd_shutdown ) { 3357 Debug( LDAP_DEBUG_ANY, 3358 "listener initialization failed\n" ); 3359 return 1; 3360 } 3361 3362 #ifdef HAVE_SYSTEMD 3363 rc = sd_notify( 1, "READY=1" ); 3364 if ( rc < 0 ) { 3365 Debug( LDAP_DEBUG_ANY, 3366 "systemd sd_notify failed (%d)\n", rc ); 3367 } 3368 #endif /* HAVE_SYSTEMD */ 3369 3370 /* wait for the listener threads to complete */ 3371 for ( i=0; i<slapd_daemon_threads; i++ ) 3372 ldap_pvt_thread_join( slap_daemon[i].sd_tid, (void *)NULL ); 3373 3374 destroy_listeners(); 3375 3376 return 0; 3377 } 3378 3379 static int 3380 sockinit( void ) 3381 { 3382 #if defined( HAVE_WINSOCK2 ) 3383 WORD wVersionRequested; 3384 WSADATA wsaData; 3385 int err; 3386 3387 wVersionRequested = MAKEWORD( 2, 0 ); 3388 3389 err = WSAStartup( wVersionRequested, &wsaData ); 3390 if ( err != 0 ) { 3391 /* Tell the user that we couldn't find a usable */ 3392 /* WinSock DLL. */ 3393 return -1; 3394 } 3395 3396 /* Confirm that the WinSock DLL supports 2.0.*/ 3397 /* Note that if the DLL supports versions greater */ 3398 /* than 2.0 in addition to 2.0, it will still return */ 3399 /* 2.0 in wVersion since that is the version we */ 3400 /* requested. */ 3401 3402 if ( LOBYTE( wsaData.wVersion ) != 2 || 3403 HIBYTE( wsaData.wVersion ) != 0 ) 3404 { 3405 /* Tell the user that we couldn't find a usable */ 3406 /* WinSock DLL. */ 3407 WSACleanup(); 3408 return -1; 3409 } 3410 3411 /* The WinSock DLL is acceptable. Proceed. */ 3412 #elif defined( HAVE_WINSOCK ) 3413 WSADATA wsaData; 3414 if ( WSAStartup( 0x0101, &wsaData ) != 0 ) return -1; 3415 #endif /* ! HAVE_WINSOCK2 && ! HAVE_WINSOCK */ 3416 3417 return 0; 3418 } 3419 3420 static int 3421 sockdestroy( void ) 3422 { 3423 #if defined( HAVE_WINSOCK2 ) || defined( HAVE_WINSOCK ) 3424 WSACleanup(); 3425 #endif /* HAVE_WINSOCK2 || HAVE_WINSOCK */ 3426 3427 return 0; 3428 } 3429 3430 RETSIGTYPE 3431 slap_sig_shutdown( int sig ) 3432 { 3433 int save_errno = errno; 3434 int i; 3435 3436 #if 0 3437 Debug(LDAP_DEBUG_TRACE, "slap_sig_shutdown: signal %d\n", sig); 3438 #endif 3439 3440 /* 3441 * If the NT Service Manager is controlling the server, we don't 3442 * want SIGBREAK to kill the server. For some strange reason, 3443 * SIGBREAK is generated when a user logs out. 3444 */ 3445 3446 #if defined(HAVE_NT_SERVICE_MANAGER) && defined(SIGBREAK) 3447 if (is_NT_Service && sig == SIGBREAK) { 3448 /* empty */; 3449 } else 3450 #endif /* HAVE_NT_SERVICE_MANAGER && SIGBREAK */ 3451 #ifdef SIGHUP 3452 if (sig == SIGHUP && global_gentlehup && slapd_gentle_shutdown == 0) { 3453 slapd_gentle_shutdown = 1; 3454 } else 3455 #endif /* SIGHUP */ 3456 { 3457 slapd_shutdown = 1; 3458 } 3459 3460 for (i=0; i<slapd_daemon_threads; i++) { 3461 WAKE_LISTENER(i,1); 3462 } 3463 3464 /* reinstall self */ 3465 (void) SIGNAL_REINSTALL( sig, slap_sig_shutdown ); 3466 3467 errno = save_errno; 3468 } 3469 3470 RETSIGTYPE 3471 slap_sig_wake( int sig ) 3472 { 3473 int save_errno = errno; 3474 3475 WAKE_LISTENER(0,1); 3476 3477 /* reinstall self */ 3478 (void) SIGNAL_REINSTALL( sig, slap_sig_wake ); 3479 3480 errno = save_errno; 3481 } 3482 3483 int 3484 slap_pause_server( void ) 3485 { 3486 BackendInfo *bi; 3487 int rc = LDAP_SUCCESS; 3488 3489 rc = ldap_pvt_thread_pool_pause( &connection_pool ); 3490 3491 LDAP_STAILQ_FOREACH(bi, &backendInfo, bi_next) { 3492 if ( bi->bi_pause ) { 3493 rc = bi->bi_pause( bi ); 3494 if ( rc != LDAP_SUCCESS ) { 3495 Debug( LDAP_DEBUG_ANY, "slap_pause_server: " 3496 "bi_pause failed for backend %s\n", 3497 bi->bi_type ); 3498 return rc; 3499 } 3500 } 3501 } 3502 3503 return rc; 3504 } 3505 3506 int 3507 slap_unpause_server( void ) 3508 { 3509 BackendInfo *bi; 3510 int rc = LDAP_SUCCESS; 3511 3512 LDAP_STAILQ_FOREACH(bi, &backendInfo, bi_next) { 3513 if ( bi->bi_unpause ) { 3514 rc = bi->bi_unpause( bi ); 3515 if ( rc != LDAP_SUCCESS ) { 3516 Debug( LDAP_DEBUG_ANY, "slap_unpause_server: " 3517 "bi_unpause failed for backend %s\n", 3518 bi->bi_type ); 3519 return rc; 3520 } 3521 } 3522 } 3523 3524 rc = ldap_pvt_thread_pool_resume( &connection_pool ); 3525 return rc; 3526 } 3527 3528 3529 void 3530 slapd_add_internal( ber_socket_t s, int isactive ) 3531 { 3532 if (!isactive) { 3533 SET_CLOSE(s); 3534 } 3535 slapd_add( s, isactive, NULL, -1 ); 3536 } 3537 3538 Listener ** 3539 slapd_get_listeners( void ) 3540 { 3541 /* Could return array with no listeners if !listening, but current 3542 * callers mostly look at the URLs. E.g. syncrepl uses this to 3543 * identify the server, which means it wants the startup arguments. 3544 */ 3545 return slap_listeners; 3546 } 3547 3548 /* Reject all incoming requests */ 3549 void 3550 slap_suspend_listeners( void ) 3551 { 3552 int i; 3553 for (i=0; slap_listeners[i]; i++) { 3554 slap_listeners[i]->sl_mute = 1; 3555 listen( slap_listeners[i]->sl_sd, 0 ); 3556 } 3557 } 3558 3559 /* Resume after a suspend */ 3560 void 3561 slap_resume_listeners( void ) 3562 { 3563 int i; 3564 for (i=0; slap_listeners[i]; i++) { 3565 slap_listeners[i]->sl_mute = 0; 3566 listen( slap_listeners[i]->sl_sd, SLAPD_LISTEN_BACKLOG ); 3567 } 3568 } 3569 3570 void 3571 slap_wake_listener() 3572 { 3573 WAKE_LISTENER(0,1); 3574 } 3575 3576 /* return 0 on timeout, 1 on writer ready 3577 * -1 on general error 3578 */ 3579 int 3580 slapd_wait_writer( ber_socket_t sd ) 3581 { 3582 #ifdef HAVE_WINSOCK 3583 fd_set writefds; 3584 struct timeval tv, *tvp; 3585 3586 FD_ZERO( &writefds ); 3587 FD_SET( slapd_ws_sockets[sd], &writefds ); 3588 if ( global_writetimeout ) { 3589 tv.tv_sec = global_writetimeout; 3590 tv.tv_usec = 0; 3591 tvp = &tv; 3592 } else { 3593 tvp = NULL; 3594 } 3595 return select( 0, NULL, &writefds, NULL, tvp ); 3596 #else 3597 struct pollfd fds; 3598 int timeout = global_writetimeout ? global_writetimeout * 1000 : -1; 3599 3600 fds.fd = sd; 3601 fds.events = POLLOUT; 3602 3603 return poll( &fds, 1, timeout ); 3604 #endif 3605 } 3606