git.sur5r.net Git - openldap/blob - servers/slapd/daemon.c

   1 /* $OpenLDAP$ */
   2 /*
   3  * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
   4  * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
   5  */
   6
   7 #include "portable.h"
   8
   9 #include <stdio.h>
  10
  11 #include <ac/ctype.h>
  12 #include <ac/errno.h>
  13 #include <ac/socket.h>
  14 #include <ac/string.h>
  15 #include <ac/time.h>
  16 #include <ac/unistd.h>
  17
  18 #include "ldap_pvt.h"
  19 #include "ldap_pvt_thread.h"
  20 #include "lutil.h"
  21 #include "slap.h"
  22
  23 #include "ldap_rq.h"
  24
  25 #ifdef HAVE_TCPD
  26 #include <tcpd.h>
  27 #define SLAP_STRING_UNKNOWN     STRING_UNKNOWN
  28
  29 int allow_severity = LOG_INFO;
  30 int deny_severity = LOG_NOTICE;
  31 #else /* ! TCP Wrappers */
  32 #define SLAP_STRING_UNKNOWN     "unknown"
  33 #endif /* ! TCP Wrappers */
  34
  35 #ifdef LDAP_PF_LOCAL
  36 #include <sys/stat.h>
  37 /* this should go in <ldap.h> as soon as it is accepted */
  38 #define LDAPI_MOD_URLEXT                "x-mod"
  39 #endif /* LDAP_PF_LOCAL */
  40
  41 #ifdef LDAP_PF_INET6
  42 int slap_inet4or6 = AF_UNSPEC;
  43 #else
  44 int slap_inet4or6 = AF_INET;
  45 #endif
  46
  47 /* globals */
  48 time_t starttime;
  49 ber_socket_t dtblsize;
  50
  51 Listener **slap_listeners = NULL;
  52
  53 #define SLAPD_LISTEN 10
  54
  55 static ber_socket_t wake_sds[2];
  56 static int emfile;
  57
  58 #if defined(NO_THREADS) || defined(HAVE_GNU_PTH)
  59 static int waking;
  60 #define WAKE_LISTENER(w) \
  61 ((w && !waking) ? tcp_write( wake_sds[1], "0", 1 ), waking=1 : 0)
  62 #else
  63 #define WAKE_LISTENER(w) \
  64 do { if (w) tcp_write( wake_sds[1], "0", 1 ); } while(0)
  65 #endif
  66
  67 #ifndef HAVE_WINSOCK
  68 static
  69 #endif
  70 volatile sig_atomic_t slapd_shutdown = 0, slapd_gentle_shutdown = 0;
  71
  72 static struct slap_daemon {
  73         ldap_pvt_thread_mutex_t sd_mutex;
  74
  75         ber_socket_t sd_nactives;
  76
  77 #ifndef HAVE_WINSOCK
  78         /* In winsock, accept() returns values higher than dtblsize
  79                 so don't bother with this optimization */
  80         int sd_nfds;
  81 #endif
  82
  83         fd_set sd_actives;
  84         fd_set sd_readers;
  85         fd_set sd_writers;
  86 } slap_daemon;
  87
  88
  89
  90 #ifdef HAVE_SLP
  91 /*
  92  * SLP related functions
  93  */
  94 #include <slp.h>
  95
  96 #define LDAP_SRVTYPE_PREFIX "service:ldap://"
  97 #define LDAPS_SRVTYPE_PREFIX "service:ldaps://"
  98 static char** slapd_srvurls = NULL;
  99 static SLPHandle slapd_hslp = 0;
 100
 101 void slapd_slp_init( const char* urls ) {
 102         int i;
 103
 104         slapd_srvurls = ldap_str2charray( urls, " " );
 105
 106         if( slapd_srvurls == NULL ) return;
 107
 108         /* find and expand INADDR_ANY URLs */
 109         for( i=0; slapd_srvurls[i] != NULL; i++ ) {
 110                 if( strcmp( slapd_srvurls[i], "ldap:///" ) == 0) {
 111                         char *host = ldap_pvt_get_fqdn( NULL );
 112                         if ( host != NULL ) {
 113                                 slapd_srvurls[i] = (char *) ch_realloc( slapd_srvurls[i],
 114                                         strlen( host ) +
 115                                         sizeof( LDAP_SRVTYPE_PREFIX ) );
 116                                 strcpy( lutil_strcopy(slapd_srvurls[i],
 117                                         LDAP_SRVTYPE_PREFIX ), host );
 118
 119                                 ch_free( host );
 120                         }
 121
 122                 } else if ( strcmp( slapd_srvurls[i], "ldaps:///" ) == 0) {
 123                         char *host = ldap_pvt_get_fqdn( NULL );
 124                         if ( host != NULL ) {
 125                                 slapd_srvurls[i] = (char *) ch_realloc( slapd_srvurls[i],
 126                                         strlen( host ) +
 127                                         sizeof( LDAPS_SRVTYPE_PREFIX ) );
 128                                 strcpy( lutil_strcopy(slapd_srvurls[i],
 129                                         LDAPS_SRVTYPE_PREFIX ), host );
 130
 131                                 ch_free( host );
 132                         }
 133                 }
 134         }
 135
 136         /* open the SLP handle */
 137         SLPOpen( "en", 0, &slapd_hslp );
 138 }
 139
 140 void slapd_slp_deinit() {
 141         if( slapd_srvurls == NULL ) return;
 142
 143         ldap_charray_free( slapd_srvurls );
 144         slapd_srvurls = NULL;
 145
 146         /* close the SLP handle */
 147         SLPClose( slapd_hslp );
 148 }
 149
 150 void slapd_slp_regreport(
 151         SLPHandle hslp,
 152         SLPError errcode,
 153         void* cookie )
 154 {
 155         /* empty report */
 156 }
 157
 158 void slapd_slp_reg() {
 159         int i;
 160
 161         if( slapd_srvurls == NULL ) return;
 162
 163         for( i=0; slapd_srvurls[i] != NULL; i++ ) {
 164                 if( strncmp( slapd_srvurls[i], LDAP_SRVTYPE_PREFIX,
 165                                 sizeof( LDAP_SRVTYPE_PREFIX ) - 1 ) == 0 ||
 166                     strncmp( slapd_srvurls[i], LDAPS_SRVTYPE_PREFIX,
 167                                 sizeof( LDAPS_SRVTYPE_PREFIX ) - 1 ) == 0 )
 168                 {
 169                         SLPReg( slapd_hslp,
 170                                 slapd_srvurls[i],
 171                                 SLP_LIFETIME_MAXIMUM,
 172                                 "ldap",
 173                                 "",
 174                                 1,
 175                                 slapd_slp_regreport,
 176                                 NULL );
 177                 }
 178         }
 179 }
 180
 181 void slapd_slp_dereg() {
 182         int i;
 183
 184         if( slapd_srvurls == NULL ) return;
 185
 186         for( i=0; slapd_srvurls[i] != NULL; i++ ) {
 187                 SLPDereg( slapd_hslp,
 188                         slapd_srvurls[i],
 189                         slapd_slp_regreport,
 190                         NULL );
 191         }
 192 }
 193 #endif /* HAVE_SLP */
 194
 195 /*
 196  * Add a descriptor to daemon control
 197  */
 198 static void slapd_add(ber_socket_t s) {
 199         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
 200
 201         assert( !FD_ISSET( s, &slap_daemon.sd_actives ));
 202         assert( !FD_ISSET( s, &slap_daemon.sd_readers ));
 203         assert( !FD_ISSET( s, &slap_daemon.sd_writers ));
 204
 205 #ifndef HAVE_WINSOCK
 206         if (s >= slap_daemon.sd_nfds) {
 207                 slap_daemon.sd_nfds = s + 1;
 208         }
 209 #endif
 210
 211         slap_daemon.sd_nactives++;
 212
 213         FD_SET( s, &slap_daemon.sd_actives );
 214         FD_SET( s, &slap_daemon.sd_readers );
 215
 216 #ifdef NEW_LOGGING
 217         LDAP_LOG( CONNECTION, DETAIL1,
 218                 "slapd_add: added %ld%s%s\n", (long)s,
 219                 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
 220                 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
 221 #else
 222         Debug( LDAP_DEBUG_CONNS, "daemon: added %ld%s%s\n",
 223                 (long) s,
 224             FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
 225                 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
 226 #endif
 227         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
 228 }
 229
 230 /*
 231  * Remove the descriptor from daemon control
 232  */
 233 void slapd_remove(ber_socket_t s, int wake) {
 234         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
 235
 236         slap_daemon.sd_nactives--;
 237
 238 #ifdef NEW_LOGGING
 239         LDAP_LOG( CONNECTION, DETAIL1,
 240                 "slapd_remove: removing %ld%s%s\n", (long) s,
 241                 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
 242                 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : ""  );
 243 #else
 244         Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n",
 245                 (long) s,
 246             FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
 247                 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
 248 #endif
 249         FD_CLR( s, &slap_daemon.sd_actives );
 250         FD_CLR( s, &slap_daemon.sd_readers );
 251         FD_CLR( s, &slap_daemon.sd_writers );
 252
 253         /* If we ran out of file descriptors, we dropped a listener from
 254          * the select() loop. Now that we're removing a session from our
 255          * control, we can try to resume a dropped listener to use.
 256          */
 257         if ( emfile ) {
 258                 int i;
 259                 for ( i = 0; slap_listeners[i] != NULL; i++ ) {
 260                         if ( slap_listeners[i]->sl_sd != AC_SOCKET_INVALID ) {
 261                                 if ( slap_listeners[i]->sl_sd == s ) continue;
 262                                 if ( slap_listeners[i]->sl_is_mute ) {
 263                                         slap_listeners[i]->sl_is_mute = 0;
 264                                         emfile--;
 265                                         break;
 266                                 }
 267                         }
 268                 }
 269                 /* Walked the entire list without enabling anything; emfile
 270                  * counter is stale. Reset it.
 271                  */
 272                 if ( slap_listeners[i] == NULL )
 273                         emfile = 0;
 274         }
 275         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
 276         WAKE_LISTENER(wake || slapd_gentle_shutdown == 2);
 277 }
 278
 279 void slapd_clr_write(ber_socket_t s, int wake) {
 280         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
 281
 282         assert( FD_ISSET( s, &slap_daemon.sd_actives) );
 283         FD_CLR( s, &slap_daemon.sd_writers );
 284
 285         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
 286         WAKE_LISTENER(wake);
 287 }
 288
 289 void slapd_set_write(ber_socket_t s, int wake) {
 290         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
 291
 292         assert( FD_ISSET( s, &slap_daemon.sd_actives) );
 293         if (!FD_ISSET(s, &slap_daemon.sd_writers))
 294             FD_SET( (unsigned) s, &slap_daemon.sd_writers );
 295
 296         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
 297         WAKE_LISTENER(wake);
 298 }
 299
 300 void slapd_clr_read(ber_socket_t s, int wake) {
 301         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
 302
 303         assert( FD_ISSET( s, &slap_daemon.sd_actives) );
 304         FD_CLR( s, &slap_daemon.sd_readers );
 305
 306         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
 307         WAKE_LISTENER(wake);
 308 }
 309
 310 void slapd_set_read(ber_socket_t s, int wake) {
 311         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
 312
 313         assert( FD_ISSET( s, &slap_daemon.sd_actives) );
 314         if (!FD_ISSET(s, &slap_daemon.sd_readers))
 315             FD_SET( s, &slap_daemon.sd_readers );
 316
 317         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
 318         WAKE_LISTENER(wake);
 319 }
 320
 321 static void slapd_close(ber_socket_t s) {
 322 #ifdef NEW_LOGGING
 323         LDAP_LOG( CONNECTION, DETAIL1, "slapd_close: closing %ld\n", (long)s, 0, 0);
 324 #else
 325         Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n",
 326                 (long) s, 0, 0 );
 327 #endif
 328         tcp_close(s);
 329 }
 330
 331 static void slap_free_listener_addresses(struct sockaddr **sal)
 332 {
 333         struct sockaddr **sap;
 334
 335         if (sal == NULL) {
 336                 return;
 337         }
 338
 339         for (sap = sal; *sap != NULL; sap++) {
 340                 ch_free(*sap);
 341         }
 342
 343         ch_free(sal);
 344 }
 345
 346 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD)
 347 static int get_url_perms(
 348         char    **exts,
 349         mode_t  *perms,
 350         int     *crit )
 351 {
 352         int     i;
 353
 354         assert( exts );
 355         assert( perms );
 356         assert( crit );
 357
 358         *crit = 0;
 359         for ( i = 0; exts[ i ]; i++ ) {
 360                 char    *type = exts[ i ];
 361                 int     c = 0;
 362
 363                 if ( type[ 0 ] == '!' ) {
 364                         c = 1;
 365                         type++;
 366                 }
 367
 368                 if ( strncasecmp( type, LDAPI_MOD_URLEXT "=", sizeof(LDAPI_MOD_URLEXT "=") - 1 ) == 0 ) {
 369                         char    *value = type
 370                                 + ( sizeof(LDAPI_MOD_URLEXT "=") - 1 );
 371                         mode_t  p = 0;
 372                         int     j;
 373
 374                         switch (strlen(value)) {
 375                         case 4:
 376                                 /* skip leading '0' */
 377                                 if ( value[ 0 ] != '0' ) {
 378                                         return LDAP_OTHER;
 379                                 }
 380                                 value++;
 381
 382                         case 3:
 383                                 for ( j = 0; j < 3; j++) {
 384                                         int     v;
 385
 386                                         v = value[ j ] - '0';
 387
 388                                         if ( v < 0 || v > 7 ) {
 389                                                 return LDAP_OTHER;
 390                                         }
 391
 392                                         p |= v << 3*(2-j);
 393                                 }
 394                                 break;
 395
 396                         case 10:
 397                                 for ( j = 1; j < 10; j++ ) {
 398                                         static mode_t   m[] = { 0,
 399                                                 S_IRUSR, S_IWUSR, S_IXUSR,
 400                                                 S_IRGRP, S_IWGRP, S_IXGRP,
 401                                                 S_IROTH, S_IWOTH, S_IXOTH
 402                                         };
 403                                         static char     c[] = "-rwxrwxrwx";
 404
 405                                         if ( value[ j ] == c[ j ] ) {
 406                                                 p |= m[ j ];
 407
 408                                         } else if ( value[ j ] != '-' ) {
 409                                                 return LDAP_OTHER;
 410                                         }
 411                                 }
 412                                 break;
 413
 414                         default:
 415                                 return LDAP_OTHER;
 416                         }
 417
 418                         *crit = c;
 419                         *perms = p;
 420
 421                         return LDAP_SUCCESS;
 422                 }
 423         }
 424
 425         return LDAP_OTHER;
 426 }
 427 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */
 428
 429 /* port = 0 indicates AF_LOCAL */
 430 static int slap_get_listener_addresses(
 431         const char *host,
 432         unsigned short port,
 433         struct sockaddr ***sal)
 434 {
 435         struct sockaddr **sap;
 436
 437 #ifdef LDAP_PF_LOCAL
 438         if ( port == 0 ) {
 439                 *sal = ch_malloc(2 * sizeof(void *));
 440                 if (*sal == NULL) {
 441                         return -1;
 442                 }
 443
 444                 sap = *sal;
 445                 *sap = ch_malloc(sizeof(struct sockaddr_un));
 446                 if (*sap == NULL)
 447                         goto errexit;
 448                 sap[1] = NULL;
 449
 450                 if ( strlen(host) >
 451                      (sizeof(((struct sockaddr_un *)*sap)->sun_path) - 1) ) {
 452 #ifdef NEW_LOGGING
 453                         LDAP_LOG( CONNECTION, INFO,
 454                                 "slap_get_listener_addresses: domain socket path (%s) "
 455                                 "too long in URL\n", host, 0, 0 );
 456 #else
 457                         Debug( LDAP_DEBUG_ANY,
 458                                "daemon: domain socket path (%s) too long in URL",
 459                                host, 0, 0);
 460 #endif
 461                         goto errexit;
 462                 }
 463
 464                 (void)memset( (void *)*sap, '\0', sizeof(struct sockaddr_un) );
 465                 (*sap)->sa_family = AF_LOCAL;
 466                 strcpy( ((struct sockaddr_un *)*sap)->sun_path, host );
 467         } else
 468 #endif
 469         {
 470 #ifdef HAVE_GETADDRINFO
 471                 struct addrinfo hints, *res, *sai;
 472                 int n, err;
 473                 char serv[7];
 474
 475                 memset( &hints, '\0', sizeof(hints) );
 476                 hints.ai_flags = AI_PASSIVE;
 477                 hints.ai_socktype = SOCK_STREAM;
 478                 hints.ai_family = slap_inet4or6;
 479                 snprintf(serv, sizeof serv, "%d", port);
 480
 481                 if ( (err = getaddrinfo(host, serv, &hints, &res)) ) {
 482 #ifdef NEW_LOGGING
 483                         LDAP_LOG( CONNECTION, INFO,
 484                                    "slap_get_listener_addresses: getaddrinfo failed: %s\n",
 485                                    AC_GAI_STRERROR(err), 0, 0 );
 486 #else
 487                         Debug( LDAP_DEBUG_ANY, "daemon: getaddrinfo failed: %s\n",
 488                                 AC_GAI_STRERROR(err), 0, 0);
 489 #endif
 490                         return -1;
 491                 }
 492
 493                 sai = res;
 494                 for (n=2; (sai = sai->ai_next) != NULL; n++) {
 495                         /* EMPTY */ ;
 496                 }
 497                 *sal = ch_calloc(n, sizeof(void *));
 498                 if (*sal == NULL) {
 499                         return -1;
 500                 }
 501
 502                 sap = *sal;
 503                 *sap = NULL;
 504
 505                 for ( sai=res; sai; sai=sai->ai_next ) {
 506                         if( sai->ai_addr == NULL ) {
 507 #ifdef NEW_LOGGING
 508                                 LDAP_LOG( CONNECTION, INFO,
 509                                         "slap_get_listener_addresses: "
 510                                         "getaddrinfo ai_addr is NULL?\n", 0, 0, 0 );
 511 #else
 512                                 Debug( LDAP_DEBUG_ANY, "slap_get_listener_addresses: "
 513                                         "getaddrinfo ai_addr is NULL?\n", 0, 0, 0 );
 514 #endif
 515                                 freeaddrinfo(res);
 516                                 goto errexit;
 517                         }
 518
 519                         switch (sai->ai_family) {
 520 #  ifdef LDAP_PF_INET6
 521                         case AF_INET6:
 522                                 *sap = ch_malloc(sizeof(struct sockaddr_in6));
 523                                 if (*sap == NULL) {
 524                                         freeaddrinfo(res);
 525                                         goto errexit;
 526                                 }
 527                                 *(struct sockaddr_in6 *)*sap =
 528                                         *((struct sockaddr_in6 *)sai->ai_addr);
 529                                 break;
 530 #  endif
 531                         case AF_INET:
 532                                 *sap = ch_malloc(sizeof(struct sockaddr_in));
 533                                 if (*sap == NULL) {
 534                                         freeaddrinfo(res);
 535                                         goto errexit;
 536                                 }
 537                                 *(struct sockaddr_in *)*sap =
 538                                         *((struct sockaddr_in *)sai->ai_addr);
 539                                 break;
 540                         default:
 541                                 *sap = NULL;
 542                                 break;
 543                         }
 544
 545                         if (*sap != NULL) {
 546                                 (*sap)->sa_family = sai->ai_family;
 547                                 sap++;
 548                                 *sap = NULL;
 549                         }
 550                 }
 551
 552                 freeaddrinfo(res);
 553 #else
 554                 int i, n = 1;
 555                 struct in_addr in;
 556                 struct hostent *he = NULL;
 557
 558                 if ( host == NULL ) {
 559                         in.s_addr = htonl(INADDR_ANY);
 560
 561                 } else if ( !inet_aton( host, &in ) ) {
 562                         he = gethostbyname( host );
 563                         if( he == NULL ) {
 564 #ifdef NEW_LOGGING
 565                                 LDAP_LOG( CONNECTION, INFO,
 566                                         "slap_get_listener_addresses: invalid host %s\n", host, 0, 0 );
 567 #else
 568                                 Debug( LDAP_DEBUG_ANY,
 569                                        "daemon: invalid host %s", host, 0, 0);
 570 #endif
 571                                 return -1;
 572                         }
 573                         for (n = 0; he->h_addr_list[n]; n++) ;
 574                 }
 575
 576                 *sal = ch_malloc((n+1) * sizeof(void *));
 577                 if (*sal == NULL) {
 578                         return -1;
 579                 }
 580
 581                 sap = *sal;
 582                 for ( i = 0; i<n; i++ ) {
 583                         sap[i] = ch_malloc(sizeof(struct sockaddr_in));
 584                         if (*sap == NULL) {
 585                                 goto errexit;
 586                         }
 587                         (void)memset( (void *)sap[i], '\0', sizeof(struct sockaddr_in) );
 588                         sap[i]->sa_family = AF_INET;
 589                         ((struct sockaddr_in *)sap[i])->sin_port = htons(port);
 590                         if (he) {
 591                                 AC_MEMCPY( &((struct sockaddr_in *)sap[i])->sin_addr, he->h_addr_list[i], sizeof(struct in_addr) );
 592                         } else {
 593                                 AC_MEMCPY( &((struct sockaddr_in *)sap[i])->sin_addr, &in, sizeof(struct in_addr) );
 594                         }
 595                 }
 596                 sap[i] = NULL;
 597 #endif
 598         }
 599
 600         return 0;
 601
 602 errexit:
 603         slap_free_listener_addresses(*sal);
 604         return -1;
 605 }
 606
 607 static int slap_open_listener(
 608         const char* url,
 609         int *listeners,
 610         int *cur
 611         )
 612 {
 613         int     num, tmp, rc;
 614         Listener l;
 615         Listener *li;
 616         LDAPURLDesc *lud;
 617         unsigned short port;
 618         int err, addrlen = 0;
 619         struct sockaddr **sal, **psal;
 620         int socktype = SOCK_STREAM;     /* default to COTS */
 621
 622 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD)
 623         /*
 624          * use safe defaults
 625          */
 626         int     crit = 1;
 627 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */
 628
 629         rc = ldap_url_parse( url, &lud );
 630
 631         if( rc != LDAP_URL_SUCCESS ) {
 632 #ifdef NEW_LOGGING
 633                 LDAP_LOG( CONNECTION, ERR,
 634                         "slap_open_listener: listen URL \"%s\" parse error %d\n",
 635                         url, rc , 0 );
 636 #else
 637                 Debug( LDAP_DEBUG_ANY,
 638                         "daemon: listen URL \"%s\" parse error=%d\n",
 639                         url, rc, 0 );
 640 #endif
 641                 return rc;
 642         }
 643
 644         l.sl_url.bv_val = NULL;
 645         l.sl_is_mute = 0;
 646
 647 #ifndef HAVE_TLS
 648         if( ldap_pvt_url_scheme2tls( lud->lud_scheme ) ) {
 649 #ifdef NEW_LOGGING
 650                 LDAP_LOG( CONNECTION, INFO,
 651                            "slap_open_listener: TLS is not supported (%s)\n", url, 0, 0 );
 652 #else
 653                 Debug( LDAP_DEBUG_ANY,
 654                         "daemon: TLS not supported (%s)\n",
 655                         url, 0, 0 );
 656 #endif
 657                 ldap_free_urldesc( lud );
 658                 return -1;
 659         }
 660
 661         if(! lud->lud_port ) {
 662                 lud->lud_port = LDAP_PORT;
 663         }
 664
 665 #else
 666         l.sl_is_tls = ldap_pvt_url_scheme2tls( lud->lud_scheme );
 667
 668         if(! lud->lud_port ) {
 669                 lud->lud_port = l.sl_is_tls ? LDAPS_PORT : LDAP_PORT;
 670         }
 671 #endif
 672
 673         port = (unsigned short) lud->lud_port;
 674
 675         tmp = ldap_pvt_url_scheme2proto(lud->lud_scheme);
 676         if ( tmp == LDAP_PROTO_IPC ) {
 677 #ifdef LDAP_PF_LOCAL
 678                 if ( lud->lud_host == NULL || lud->lud_host[0] == '\0' ) {
 679                         err = slap_get_listener_addresses(LDAPI_SOCK, 0, &sal);
 680                 } else {
 681                         err = slap_get_listener_addresses(lud->lud_host, 0, &sal);
 682                 }
 683 #else
 684
 685 #ifdef NEW_LOGGING
 686                 LDAP_LOG( CONNECTION, INFO,
 687                         "slap_open_listener: URL scheme is not supported: %s\n", url, 0, 0 );
 688 #else
 689                 Debug( LDAP_DEBUG_ANY, "daemon: URL scheme not supported: %s",
 690                         url, 0, 0);
 691 #endif
 692                 ldap_free_urldesc( lud );
 693                 return -1;
 694 #endif
 695         } else {
 696                 if( lud->lud_host == NULL || lud->lud_host[0] == '\0'
 697                         || strcmp(lud->lud_host, "*") == 0 )
 698                 {
 699                         err = slap_get_listener_addresses(NULL, port, &sal);
 700                 } else {
 701                         err = slap_get_listener_addresses(lud->lud_host, port, &sal);
 702                 }
 703         }
 704 #ifdef LDAP_CONNECTIONLESS
 705         l.sl_is_udp = ( tmp == LDAP_PROTO_UDP );
 706 #endif
 707
 708 #if defined(LDAP_PF_LOCAL) || defined(SLAP_X_LISTENER_MOD)
 709         if ( lud->lud_exts ) {
 710                 err = get_url_perms( lud->lud_exts, &l.sl_perms, &crit );
 711         } else {
 712                 l.sl_perms = S_IRWXU | S_IRWXO;
 713         }
 714 #endif /* LDAP_PF_LOCAL || SLAP_X_LISTENER_MOD */
 715
 716         ldap_free_urldesc( lud );
 717         if ( err ) {
 718                 return -1;
 719         }
 720
 721         /* If we got more than one address returned, we need to make space
 722          * for it in the slap_listeners array.
 723          */
 724         for ( num=0; sal[num]; num++ );
 725         if ( num > 1 ) {
 726                 *listeners += num-1;
 727                 slap_listeners = ch_realloc( slap_listeners, (*listeners + 1) * sizeof(Listener *) );
 728         }
 729
 730         psal = sal;
 731         while ( *sal != NULL ) {
 732                 char *af;
 733                 switch( (*sal)->sa_family ) {
 734                 case AF_INET:
 735                         af = "IPv4";
 736                         break;
 737 #ifdef LDAP_PF_INET6
 738                 case AF_INET6:
 739                         af = "IPv6";
 740                         break;
 741 #endif
 742 #ifdef LDAP_PF_LOCAL
 743                 case AF_LOCAL:
 744                         af = "Local";
 745                         break;
 746 #endif
 747                 default:
 748                         sal++;
 749                         continue;
 750                 }
 751 #ifdef LDAP_CONNECTIONLESS
 752                 if( l.sl_is_udp ) socktype = SOCK_DGRAM;
 753 #endif
 754                 l.sl_sd = socket( (*sal)->sa_family, socktype, 0);
 755                 if ( l.sl_sd == AC_SOCKET_INVALID ) {
 756                         int err = sock_errno();
 757 #ifdef NEW_LOGGING
 758                         LDAP_LOG( CONNECTION, ERR,
 759                                 "slap_open_listener: %s socket() failed errno=%d (%s)\n",
 760                                 af, err, sock_errstr(err) );
 761 #else
 762                         Debug( LDAP_DEBUG_ANY,
 763                                 "daemon: %s socket() failed errno=%d (%s)\n",
 764                                 af, err, sock_errstr(err) );
 765 #endif
 766                         sal++;
 767                         continue;
 768                 }
 769 #ifndef HAVE_WINSOCK
 770                 if ( l.sl_sd >= dtblsize ) {
 771 #ifdef NEW_LOGGING
 772                         LDAP_LOG( CONNECTION, ERR,
 773                                 "slap_open_listener: listener descriptor %ld is too "
 774                                 "great %ld\n", (long)l.sl_sd, (long)dtblsize, 0 );
 775 #else
 776                         Debug( LDAP_DEBUG_ANY,
 777                                 "daemon: listener descriptor %ld is too great %ld\n",
 778                                 (long) l.sl_sd, (long) dtblsize, 0 );
 779 #endif
 780                         tcp_close( l.sl_sd );
 781                         sal++;
 782                         continue;
 783                 }
 784 #endif
 785 #ifdef LDAP_PF_LOCAL
 786                 if ( (*sal)->sa_family == AF_LOCAL ) {
 787                         unlink ( ((struct sockaddr_un *)*sal)->sun_path );
 788                 } else
 789 #endif
 790                 {
 791 #ifdef SO_REUSEADDR
 792                         /* enable address reuse */
 793                         tmp = 1;
 794                         rc = setsockopt( l.sl_sd, SOL_SOCKET, SO_REUSEADDR,
 795                                 (char *) &tmp, sizeof(tmp) );
 796                         if ( rc == AC_SOCKET_ERROR ) {
 797                                 int err = sock_errno();
 798 #ifdef NEW_LOGGING
 799                                 LDAP_LOG( CONNECTION, INFO,
 800                                         "slap_open_listener: setsockopt( %ld, SO_REUSEADDR ) "
 801                                         "failed errno %d (%s)\n", (long)l.sl_sd, err,
 802                                         sock_errstr(err) );
 803 #else
 804                                 Debug( LDAP_DEBUG_ANY,
 805                                        "slapd(%ld): setsockopt(SO_REUSEADDR) failed errno=%d (%s)\n",
 806                                        (long) l.sl_sd, err, sock_errstr(err) );
 807 #endif
 808                         }
 809 #endif
 810                 }
 811
 812                 switch( (*sal)->sa_family ) {
 813                 case AF_INET:
 814                         addrlen = sizeof(struct sockaddr_in);
 815                         break;
 816 #ifdef LDAP_PF_INET6
 817                 case AF_INET6:
 818 #ifdef IPV6_V6ONLY
 819                         /* Try to use IPv6 sockets for IPv6 only */
 820                         tmp = 1;
 821                         rc = setsockopt( l.sl_sd, IPPROTO_IPV6, IPV6_V6ONLY,
 822                                          (char *) &tmp, sizeof(tmp) );
 823                         if ( rc == AC_SOCKET_ERROR ) {
 824                                 int err = sock_errno();
 825 #ifdef NEW_LOGGING
 826                                 LDAP_LOG( CONNECTION, INFO,
 827                                            "slap_open_listener: setsockopt( %ld, IPV6_V6ONLY ) failed errno %d (%s)\n",
 828                                            (long)l.sl_sd, err, sock_errstr(err) );
 829 #else
 830                                 Debug( LDAP_DEBUG_ANY,
 831                                        "slapd(%ld): setsockopt(IPV6_V6ONLY) failed errno=%d (%s)\n",
 832                                        (long) l.sl_sd, err, sock_errstr(err) );
 833 #endif
 834                         }
 835 #endif
 836                         addrlen = sizeof(struct sockaddr_in6);
 837                         break;
 838 #endif
 839 #ifdef LDAP_PF_LOCAL
 840                 case AF_LOCAL:
 841                         addrlen = sizeof(struct sockaddr_un);
 842                         break;
 843 #endif
 844                 }
 845
 846                 if (bind(l.sl_sd, *sal, addrlen)) {
 847                         err = sock_errno();
 848 #ifdef NEW_LOGGING
 849                 LDAP_LOG( CONNECTION, INFO,
 850                         "slap_open_listener: bind(%ld) failed errno=%d (%s)\n",
 851                         (long)l.sl_sd, err, sock_errstr(err) );
 852 #else
 853                 Debug( LDAP_DEBUG_ANY, "daemon: bind(%ld) failed errno=%d (%s)\n",
 854                        (long) l.sl_sd, err, sock_errstr(err) );
 855 #endif
 856                         tcp_close( l.sl_sd );
 857                         sal++;
 858                         continue;
 859                 }
 860
 861         switch ( (*sal)->sa_family ) {
 862 #ifdef LDAP_PF_LOCAL
 863         case AF_LOCAL: {
 864                 char *addr = ((struct sockaddr_un *)*sal)->sun_path;
 865 #if 0 /* don't muck with socket perms */
 866                 if ( chmod( addr, l.sl_perms ) < 0 && crit ) {
 867                         int err = sock_errno();
 868 #ifdef NEW_LOGGING
 869                         LDAP_LOG( CONNECTION, INFO,
 870                                 "slap_open_listener: fchmod(%ld) failed errno=%d (%s)\n",
 871                                 (long)l.sl_sd, err, sock_errstr(err) );
 872 #else
 873                         Debug( LDAP_DEBUG_ANY, "daemon: fchmod(%ld) failed errno=%d (%s)",
 874                                (long) l.sl_sd, err, sock_errstr(err) );
 875 #endif
 876                         tcp_close( l.sl_sd );
 877                         slap_free_listener_addresses(psal);
 878                         return -1;
 879                 }
 880 #endif
 881                 l.sl_name.bv_len = strlen(addr) + sizeof("PATH=") - 1;
 882                 l.sl_name.bv_val = ber_memalloc( l.sl_name.bv_len + 1 );
 883                 snprintf( l.sl_name.bv_val, l.sl_name.bv_len + 1,
 884                                 "PATH=%s", addr );
 885         } break;
 886 #endif /* LDAP_PF_LOCAL */
 887
 888         case AF_INET: {
 889                 char *s;
 890 #if defined( HAVE_GETADDRINFO ) && defined( HAVE_INET_NTOP )
 891                 char addr[INET_ADDRSTRLEN];
 892                 inet_ntop( AF_INET, &((struct sockaddr_in *)*sal)->sin_addr,
 893                            addr, sizeof(addr) );
 894                 s = addr;
 895 #else
 896                 s = inet_ntoa( ((struct sockaddr_in *) *sal)->sin_addr );
 897 #endif
 898                 port = ntohs( ((struct sockaddr_in *)*sal) ->sin_port );
 899                 l.sl_name.bv_val = ber_memalloc( sizeof("IP=255.255.255.255:65535") );
 900                 snprintf( l.sl_name.bv_val, sizeof("IP=255.255.255.255:65535"),
 901                         "IP=%s:%d",
 902                          s != NULL ? s : SLAP_STRING_UNKNOWN, port );
 903                 l.sl_name.bv_len = strlen( l.sl_name.bv_val );
 904         } break;
 905
 906 #ifdef LDAP_PF_INET6
 907         case AF_INET6: {
 908                 char addr[INET6_ADDRSTRLEN];
 909                 inet_ntop( AF_INET6, &((struct sockaddr_in6 *)*sal)->sin6_addr,
 910                            addr, sizeof addr);
 911                 port = ntohs( ((struct sockaddr_in6 *)*sal)->sin6_port );
 912                 l.sl_name.bv_len = strlen(addr) + sizeof("IP= 65535");
 913                 l.sl_name.bv_val = ber_memalloc( l.sl_name.bv_len );
 914                 snprintf( l.sl_name.bv_val, l.sl_name.bv_len, "IP=%s %d",
 915                                 addr, port );
 916                 l.sl_name.bv_len = strlen( l.sl_name.bv_val );
 917         } break;
 918 #endif /* LDAP_PF_INET6 */
 919
 920         default:
 921 #ifdef NEW_LOGGING
 922                 LDAP_LOG( CONNECTION, INFO,
 923                         "slap_open_listener: unsupported address family (%d)\n",
 924                         (int)(*sal)->sa_family, 0, 0 );
 925 #else
 926                 Debug( LDAP_DEBUG_ANY, "daemon: unsupported address family (%d)\n",
 927                         (int) (*sal)->sa_family, 0, 0 );
 928 #endif
 929                 break;
 930         }
 931
 932         AC_MEMCPY(&l.sl_sa, *sal, addrlen);
 933         ber_str2bv( url, 0, 1, &l.sl_url);
 934         li = ch_malloc( sizeof( Listener ) );
 935         *li = l;
 936         slap_listeners[*cur] = li;
 937         (*cur)++;
 938         sal++;
 939
 940         } /* while ( *sal != NULL ) */
 941
 942         slap_free_listener_addresses(psal);
 943
 944         if ( l.sl_url.bv_val == NULL )
 945         {
 946 #ifdef NEW_LOGGING
 947                 LDAP_LOG( CONNECTION, RESULTS,
 948                         "slap_open_listener: failed on %s\n", url, 0, 0 );
 949 #else
 950                 Debug( LDAP_DEBUG_TRACE,
 951                         "slap_open_listener: failed on %s\n", url, 0, 0 );
 952 #endif
 953                 return -1;
 954         }
 955
 956 #ifdef NEW_LOGGING
 957         LDAP_LOG( CONNECTION, RESULTS,
 958                 "slap_open_listener: daemon initialized %s\n",
 959                 l.sl_url.bv_val, 0, 0 );
 960 #else
 961         Debug( LDAP_DEBUG_TRACE, "daemon: initialized %s\n",
 962                 l.sl_url.bv_val, 0, 0 );
 963 #endif
 964         return 0;
 965 }
 966
 967 static int sockinit(void);
 968 static int sockdestroy(void);
 969
 970 int slapd_daemon_init( const char *urls )
 971 {
 972         int i, j, n, rc;
 973         char **u;
 974
 975 #ifdef NEW_LOGGING
 976         LDAP_LOG( CONNECTION, ARGS,
 977                 "slapd_daemon_init: %s\n", urls ? urls : "<null>", 0, 0 );
 978 #else
 979         Debug( LDAP_DEBUG_ARGS, "daemon_init: %s\n",
 980                 urls ? urls : "<null>", 0, 0 );
 981 #endif
 982         if( (rc = sockinit()) != 0 ) {
 983                 return rc;
 984         }
 985
 986 #ifdef HAVE_SYSCONF
 987         dtblsize = sysconf( _SC_OPEN_MAX );
 988 #elif HAVE_GETDTABLESIZE
 989         dtblsize = getdtablesize();
 990 #else
 991         dtblsize = FD_SETSIZE;
 992 #endif
 993
 994 #ifdef FD_SETSIZE
 995         if(dtblsize > FD_SETSIZE) {
 996                 dtblsize = FD_SETSIZE;
 997         }
 998 #endif  /* !FD_SETSIZE */
 999
1000         /* open a pipe (or something equivalent connected to itself).
1001          * we write a byte on this fd whenever we catch a signal. The main
1002          * loop will be select'ing on this socket, and will wake up when
1003          * this byte arrives.
1004          */
1005         if( (rc = lutil_pair( wake_sds )) < 0 ) {
1006 #ifdef NEW_LOGGING
1007                 LDAP_LOG( CONNECTION, ERR,
1008                         "slap_daemon_init: lutil_pair() failed rc=%d\n", rc, 0, 0);
1009 #else
1010                 Debug( LDAP_DEBUG_ANY,
1011                         "daemon: lutil_pair() failed rc=%d\n", rc, 0, 0 );
1012 #endif
1013                 return rc;
1014         }
1015
1016         FD_ZERO( &slap_daemon.sd_readers );
1017         FD_ZERO( &slap_daemon.sd_writers );
1018
1019         if( urls == NULL ) {
1020                 urls = "ldap:///";
1021         }
1022
1023         u = ldap_str2charray( urls, " " );
1024
1025         if( u == NULL || u[0] == NULL ) {
1026 #ifdef NEW_LOGGING
1027                 LDAP_LOG( CONNECTION, ERR,
1028                         "slap_daemon_init: no urls (%s) provided.\n", urls, 0, 0 );
1029 #else
1030                 Debug( LDAP_DEBUG_ANY, "daemon_init: no urls (%s) provided.\n",
1031                         urls, 0, 0 );
1032 #endif
1033                 return -1;
1034         }
1035
1036         for( i=0; u[i] != NULL; i++ ) {
1037 #ifdef NEW_LOGGING
1038                 LDAP_LOG( CONNECTION, DETAIL1,
1039                         "slap_daemon_init: listen on %s\n", u[i], 0, 0 );
1040 #else
1041                 Debug( LDAP_DEBUG_TRACE, "daemon_init: listen on %s\n",
1042                         u[i], 0, 0 );
1043 #endif
1044         }
1045
1046         if( i == 0 ) {
1047 #ifdef NEW_LOGGING
1048                 LDAP_LOG( CONNECTION, INFO,
1049                          "slap_daemon_init: no listeners to open (%s)\n", urls, 0, 0 );
1050 #else
1051                 Debug( LDAP_DEBUG_ANY, "daemon_init: no listeners to open (%s)\n",
1052                         urls, 0, 0 );
1053 #endif
1054                 ldap_charray_free( u );
1055                 return -1;
1056         }
1057
1058 #ifdef NEW_LOGGING
1059         LDAP_LOG( CONNECTION, INFO,
1060                 "slap_daemon_init: %d listeners to open...\n", i, 0, 0 );
1061 #else
1062         Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners to open...\n",
1063                 i, 0, 0 );
1064 #endif
1065         slap_listeners = ch_malloc( (i+1)*sizeof(Listener *) );
1066
1067         for(n = 0, j = 0; u[n]; n++ ) {
1068                 if ( slap_open_listener( u[n], &i, &j ) ) {
1069                         ldap_charray_free( u );
1070                         return -1;
1071                 }
1072         }
1073         slap_listeners[j] = NULL;
1074
1075 #ifdef NEW_LOGGING
1076         LDAP_LOG( CONNECTION, DETAIL1,
1077                 "slap_daemon_init: %d listeners opened\n", i, 0, 0 );
1078 #else
1079         Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners opened\n",
1080                 i, 0, 0 );
1081 #endif
1082
1083 #ifdef HAVE_SLP
1084         slapd_slp_init( urls );
1085         slapd_slp_reg();
1086 #endif
1087
1088         ldap_charray_free( u );
1089         ldap_pvt_thread_mutex_init( &slap_daemon.sd_mutex );
1090         return !i;
1091 }
1092
1093
1094 int
1095 slapd_daemon_destroy(void)
1096 {
1097         connections_destroy();
1098         tcp_close( wake_sds[1] );
1099         tcp_close( wake_sds[0] );
1100         sockdestroy();
1101
1102 #ifdef HAVE_SLP
1103         slapd_slp_dereg();
1104         slapd_slp_deinit();
1105 #endif
1106
1107         return 0;
1108 }
1109
1110
1111 static void
1112 close_listeners(
1113         int remove
1114 )
1115 {
1116         int l;
1117
1118         for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1119                 if ( slap_listeners[l]->sl_sd != AC_SOCKET_INVALID ) {
1120                         if ( remove )
1121                                 slapd_remove( slap_listeners[l]->sl_sd, 0 );
1122 #ifdef LDAP_PF_LOCAL
1123                         if ( slap_listeners[l]->sl_sa.sa_addr.sa_family == AF_LOCAL ) {
1124                                 unlink( slap_listeners[l]->sl_sa.sa_un_addr.sun_path );
1125                         }
1126 #endif /* LDAP_PF_LOCAL */
1127                         slapd_close( slap_listeners[l]->sl_sd );
1128                 }
1129                 if ( slap_listeners[l]->sl_url.bv_val )
1130                         ber_memfree( slap_listeners[l]->sl_url.bv_val );
1131                 if ( slap_listeners[l]->sl_name.bv_val )
1132                         ber_memfree( slap_listeners[l]->sl_name.bv_val );
1133                 free ( slap_listeners[l] );
1134                 slap_listeners[l] = NULL;
1135         }
1136 }
1137
1138
1139 static void *
1140 slapd_daemon_task(
1141         void *ptr
1142 )
1143 {
1144         int l;
1145         time_t  last_idle_check = 0;
1146         struct timeval idle;
1147
1148 #define SLAPD_IDLE_CHECK_LIMIT 4
1149
1150         if ( global_idletimeout > 0 ) {
1151                 last_idle_check = slap_get_time();
1152                 /* Set the select timeout.
1153                  * Don't just truncate, preserve the fractions of
1154                  * seconds to prevent sleeping for zero time.
1155                  */
1156                 idle.tv_sec = global_idletimeout/SLAPD_IDLE_CHECK_LIMIT;
1157                 idle.tv_usec = global_idletimeout - idle.tv_sec * SLAPD_IDLE_CHECK_LIMIT;
1158                 idle.tv_usec *= 1000000 / SLAPD_IDLE_CHECK_LIMIT;
1159         } else {
1160                 idle.tv_sec = 0;
1161                 idle.tv_usec = 0;
1162         }
1163
1164         for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1165                 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
1166                         continue;
1167 #ifdef LDAP_CONNECTIONLESS
1168                 /* Since this is connectionless, the data port is the
1169                  * listening port. The listen() and accept() calls
1170                  * are unnecessary.
1171                  */
1172                 if ( slap_listeners[l]->sl_is_udp ) {
1173                         slapd_add( slap_listeners[l]->sl_sd );
1174                         continue;
1175                 }
1176 #endif
1177
1178                 if ( listen( slap_listeners[l]->sl_sd, SLAPD_LISTEN ) == -1 ) {
1179                         int err = sock_errno();
1180
1181 #ifdef LDAP_PF_INET6
1182                         /* If error is EADDRINUSE, we are trying to listen to INADDR_ANY and
1183                          * we are already listening to in6addr_any, then we want to ignore
1184                          * this and continue.
1185                          */
1186                         if ( err == EADDRINUSE ) {
1187                                 int i;
1188                                 struct sockaddr_in sa = slap_listeners[l]->sl_sa.sa_in_addr;
1189                                 struct sockaddr_in6 sa6;
1190
1191                                 if ( sa.sin_family == AF_INET &&
1192                                      sa.sin_addr.s_addr == htonl(INADDR_ANY) ) {
1193                                         for ( i = 0 ; i < l; i++ ) {
1194                                                 sa6 = slap_listeners[i]->sl_sa.sa_in6_addr;
1195                                                 if ( sa6.sin6_family == AF_INET6 &&
1196                                                      !memcmp( &sa6.sin6_addr, &in6addr_any, sizeof(struct in6_addr) ) )
1197                                                         break;
1198                                         }
1199
1200                                         if ( i < l ) {
1201                                                 /* We are already listening to in6addr_any */
1202 #ifdef NEW_LOGGING
1203                                                 LDAP_LOG(CONNECTION, WARNING,
1204                                                            "slapd_daemon_task: Attempt to listen to 0.0.0.0 failed, already listening on ::, assuming IPv4 included\n", 0, 0, 0 );
1205 #else
1206                                                 Debug( LDAP_DEBUG_CONNS,
1207                                                        "daemon: Attempt to listen to 0.0.0.0 failed, already listening on ::, assuming IPv4 included\n",
1208                                                        0, 0, 0 );
1209 #endif
1210                                                 slapd_close( slap_listeners[l]->sl_sd );
1211                                                 slap_listeners[l]->sl_sd = AC_SOCKET_INVALID;
1212                                                 continue;
1213                                         }
1214                                 }
1215                         }
1216 #endif
1217 #ifdef NEW_LOGGING
1218                         LDAP_LOG( CONNECTION, ERR,
1219                                 "slapd_daemon_task: listen( %s, 5 ) failed errno=%d (%s)\n",
1220                                 slap_listeners[l]->sl_url.bv_val, err, sock_errstr(err) );
1221 #else
1222                         Debug( LDAP_DEBUG_ANY,
1223                                 "daemon: listen(%s, 5) failed errno=%d (%s)\n",
1224                                         slap_listeners[l]->sl_url.bv_val, err,
1225                                         sock_errstr(err) );
1226 #endif
1227                         return( (void*)-1 );
1228                 }
1229
1230                 slapd_add( slap_listeners[l]->sl_sd );
1231         }
1232
1233 #ifdef HAVE_NT_SERVICE_MANAGER
1234         if ( started_event != NULL ) {
1235                 ldap_pvt_thread_cond_signal( &started_event );
1236         }
1237 #endif
1238         /* initialization complete. Here comes the loop. */
1239
1240         while ( !slapd_shutdown ) {
1241                 ber_socket_t i;
1242                 int ns;
1243                 int at;
1244                 ber_socket_t nfds;
1245 #define SLAPD_EBADF_LIMIT 16
1246                 int ebadf = 0;
1247
1248                 time_t  now;
1249
1250                 fd_set                  readfds;
1251                 fd_set                  writefds;
1252                 Sockaddr                from;
1253
1254                 struct timeval          tv;
1255                 struct timeval          *tvp;
1256
1257                 struct timeval          *cat;
1258                 time_t                          tdelta = 1;
1259                 struct re_s*            rtask;
1260                 now = slap_get_time();
1261
1262                 if( ( global_idletimeout > 0 ) &&
1263                         difftime( last_idle_check +
1264                         global_idletimeout/SLAPD_IDLE_CHECK_LIMIT, now ) < 0 ) {
1265                         connections_timeout_idle( now );
1266                         last_idle_check = now;
1267                 }
1268                 tv = idle;
1269
1270 #ifdef SIGHUP
1271                 if( slapd_gentle_shutdown ) {
1272                         ber_socket_t active;
1273
1274                         if( slapd_gentle_shutdown == 1 ) {
1275                                 Debug( LDAP_DEBUG_ANY, "slapd gentle shutdown\n", 0, 0, 0 );
1276                                 close_listeners( 1 );
1277                                 global_restrictops |= SLAP_RESTRICT_OP_WRITES;
1278                                 slapd_gentle_shutdown = 2;
1279                         }
1280
1281                         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
1282                         active = slap_daemon.sd_nactives;
1283                         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
1284                         if( active == 0 ) {
1285                                 slapd_shutdown = 2;
1286                                 break;
1287                         }
1288                 }
1289 #endif
1290
1291                 FD_ZERO( &writefds );
1292                 FD_ZERO( &readfds );
1293
1294                 at = 0;
1295
1296                 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
1297
1298 #ifdef FD_SET_MANUAL_COPY
1299                 for( s = 0; s < nfds; s++ ) {
1300                         if(FD_ISSET( &slap_sd_readers, s )) {
1301                                 FD_SET( s, &readfds );
1302                         }
1303                         if(FD_ISSET( &slap_sd_writers, s )) {
1304                                 FD_SET( s, &writefds );
1305                         }
1306                 }
1307 #else
1308                 AC_MEMCPY( &readfds, &slap_daemon.sd_readers, sizeof(fd_set) );
1309                 AC_MEMCPY( &writefds, &slap_daemon.sd_writers, sizeof(fd_set) );
1310 #endif
1311                 assert(!FD_ISSET(wake_sds[0], &readfds));
1312                 FD_SET( wake_sds[0], &readfds );
1313
1314                 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1315                         if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
1316                                 continue;
1317                         if ( slap_listeners[l]->sl_is_mute )
1318                                 FD_CLR( slap_listeners[l]->sl_sd, &readfds );
1319                         else
1320                         if (!FD_ISSET(slap_listeners[l]->sl_sd, &readfds))
1321                             FD_SET( slap_listeners[l]->sl_sd, &readfds );
1322                 }
1323
1324 #ifndef HAVE_WINSOCK
1325                 nfds = slap_daemon.sd_nfds;
1326 #else
1327                 nfds = dtblsize;
1328 #endif
1329                 if ( global_idletimeout && slap_daemon.sd_nactives )
1330                         at = 1;
1331
1332                 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
1333
1334                 if ( !at ) {
1335                         at = ldap_pvt_thread_pool_backload(&connection_pool) -
1336                                  ldap_pvt_runqueue_persistent_backload( &syncrepl_rq );
1337                 }
1338
1339                 if ( at
1340 #if defined(HAVE_YIELDING_SELECT) || defined(NO_THREADS)
1341                         &&  ( tv.tv_sec || tv.tv_usec )
1342 #endif
1343                         )
1344                         tvp = &tv;
1345                 else
1346                         tvp = NULL;
1347
1348                 ldap_pvt_thread_mutex_lock( &syncrepl_rq.rq_mutex );
1349                 rtask = ldap_pvt_runqueue_next_sched( &syncrepl_rq, &cat );
1350                 while ( cat && cat->tv_sec && cat->tv_sec <= now ) {
1351                         if ( ldap_pvt_runqueue_isrunning( &syncrepl_rq, rtask )) {
1352                                 ldap_pvt_runqueue_resched( &syncrepl_rq, rtask );
1353                         } else {
1354                                 ldap_pvt_runqueue_runtask( &syncrepl_rq, rtask );
1355                                 ldap_pvt_runqueue_resched( &syncrepl_rq, rtask );
1356                                 ldap_pvt_thread_mutex_unlock( &syncrepl_rq.rq_mutex );
1357                                 ldap_pvt_thread_pool_submit( &connection_pool,
1358                                                                                         rtask->routine, (void *) rtask );
1359                         }
1360                         rtask = ldap_pvt_runqueue_next_sched( &syncrepl_rq, &cat );
1361                 }
1362                 rtask = ldap_pvt_runqueue_next_sched( &syncrepl_rq, &cat );
1363                 ldap_pvt_thread_mutex_unlock( &syncrepl_rq.rq_mutex );
1364
1365                 if ( cat != NULL ) {
1366                         time_t diff = difftime( cat->tv_sec, now );
1367                         if ( diff == 0 )
1368                                 diff = tdelta;
1369                         if ( tvp == NULL || diff < tv.tv_sec ) {
1370                                 tv.tv_sec = diff;
1371                                 tv.tv_usec = 0;
1372                                 tvp = &tv;
1373                         }
1374                 }
1375
1376                 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1377                         if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID ||
1378                             slap_listeners[l]->sl_is_mute )
1379                                 continue;
1380
1381 #ifdef NEW_LOGGING
1382                         LDAP_LOG( CONNECTION, DETAIL1,
1383                                 "slapd_daemon_task: select: listen=%d "
1384                                 "active_threads=%d tvp=%s\n",
1385                                 slap_listeners[l]->sl_sd, at, tvp == NULL ? "NULL" : "zero" );
1386 #else
1387                         Debug( LDAP_DEBUG_CONNS,
1388                                 "daemon: select: listen=%d active_threads=%d tvp=%s\n",
1389                                         slap_listeners[l]->sl_sd, at,
1390                                         tvp == NULL ? "NULL" : "zero" );
1391 #endif
1392                 }
1393
1394                 switch(ns = select( nfds, &readfds,
1395 #ifdef HAVE_WINSOCK
1396                         /* don't pass empty fd_set */
1397                         ( writefds.fd_count > 0 ? &writefds : NULL ),
1398 #else
1399                         &writefds,
1400 #endif
1401                         NULL, tvp ))
1402                 {
1403                 case -1: {      /* failure - try again */
1404                                 int err = sock_errno();
1405
1406                                 if( err == EBADF
1407 #ifdef WSAENOTSOCK
1408                                         /* you'd think this would be EBADF */
1409                                         || err == WSAENOTSOCK
1410 #endif
1411                                 ) {
1412                                         if (++ebadf < SLAPD_EBADF_LIMIT)
1413                                                 continue;
1414                                 }
1415
1416                                 if( err != EINTR ) {
1417 #ifdef NEW_LOGGING
1418                                         LDAP_LOG( CONNECTION, INFO,
1419                                                 "slapd_daemon_task: select failed (%d): %s\n",
1420                                                 err, sock_errstr(err), 0 );
1421 #else
1422                                         Debug( LDAP_DEBUG_CONNS,
1423                                                 "daemon: select failed (%d): %s\n",
1424                                                 err, sock_errstr(err), 0 );
1425 #endif
1426                                         slapd_shutdown = 2;
1427                                 }
1428                         }
1429                         continue;
1430
1431                 case 0:         /* timeout - let threads run */
1432                         ebadf = 0;
1433 #ifdef NEW_LOGGING
1434                         LDAP_LOG( CONNECTION, DETAIL2,
1435                                    "slapd_daemon_task: select timeout - yielding\n", 0, 0, 0 );
1436 #else
1437                         Debug( LDAP_DEBUG_CONNS, "daemon: select timeout - yielding\n",
1438                             0, 0, 0 );
1439 #endif
1440
1441                         ldap_pvt_thread_yield();
1442                         continue;
1443
1444                 default:        /* something happened - deal with it */
1445                         if( slapd_shutdown ) continue;
1446
1447                         ebadf = 0;
1448 #ifdef NEW_LOGGING
1449                         LDAP_LOG( CONNECTION, DETAIL2,
1450                                    "slapd_daemon_task: activity on %d descriptors\n", ns, 0, 0 );
1451 #else
1452                         Debug( LDAP_DEBUG_CONNS, "daemon: activity on %d descriptors\n",
1453                                 ns, 0, 0 );
1454 #endif
1455                         /* FALL THRU */
1456                 }
1457
1458                 if( FD_ISSET( wake_sds[0], &readfds ) ) {
1459                         char c[BUFSIZ];
1460                         tcp_read( wake_sds[0], c, sizeof(c) );
1461 #if defined(NO_THREADS) || defined(HAVE_GNU_PTH)
1462                         waking = 0;
1463 #endif
1464                         continue;
1465                 }
1466
1467                 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1468                         ber_socket_t s;
1469                         socklen_t len = sizeof(from);
1470                         long id;
1471                         slap_ssf_t ssf = 0;
1472                         char *authid = NULL;
1473 #ifdef SLAPD_RLOOKUPS
1474                         char hbuf[NI_MAXHOST];
1475 #endif
1476
1477                         char    *dnsname = NULL;
1478                         char    *peeraddr = NULL;
1479 #ifdef LDAP_PF_LOCAL
1480                         char    peername[MAXPATHLEN + sizeof("PATH=")];
1481 #elif defined(LDAP_PF_INET6)
1482                         char    peername[sizeof("IP=ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff 65535")];
1483 #else
1484                         char    peername[sizeof("IP=255.255.255.255:65336")];
1485 #endif /* LDAP_PF_LOCAL */
1486
1487                         peername[0] = '\0';
1488
1489                         if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
1490                                 continue;
1491
1492                         if ( !FD_ISSET( slap_listeners[l]->sl_sd, &readfds ) )
1493                                 continue;
1494
1495 #ifdef LDAP_CONNECTIONLESS
1496                         if ( slap_listeners[l]->sl_is_udp ) {
1497                                 /* The first time we receive a query, we set this
1498                                  * up as a "connection". It remains open for the life
1499                                  * of the slapd.
1500                                  */
1501                                 if ( slap_listeners[l]->sl_is_udp < 2 ) {
1502                                     id = connection_init(
1503                                         slap_listeners[l]->sl_sd,
1504                                         slap_listeners[l], "", "",
1505                                         2, ssf, authid );
1506                                     slap_listeners[l]->sl_is_udp++;
1507                                 }
1508                                 continue;
1509                         }
1510 #endif
1511
1512                         /* Don't need to look at this in the data loops */
1513                         FD_CLR( slap_listeners[l]->sl_sd, &readfds );
1514                         FD_CLR( slap_listeners[l]->sl_sd, &writefds );
1515
1516                         s = accept( slap_listeners[l]->sl_sd,
1517                                 (struct sockaddr *) &from, &len );
1518                         if ( s == AC_SOCKET_INVALID ) {
1519                                 int err = sock_errno();
1520
1521                                 if(
1522 #ifdef EMFILE
1523                                     err == EMFILE ||
1524 #endif
1525 #ifdef ENFILE
1526                                     err == ENFILE ||
1527 #endif
1528                                     0 )
1529                                 {
1530                                         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
1531                                         emfile++;
1532                                         /* Stop listening until an existing session closes */
1533                                         slap_listeners[l]->sl_is_mute = 1;
1534                                         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
1535                                 }
1536
1537 #ifdef NEW_LOGGING
1538                                 LDAP_LOG( CONNECTION, ERR,
1539                                         "slapd_daemon_task: accept(%ld) failed errno=%d (%s)\n",
1540                                         (long)slap_listeners[l]->sl_sd,
1541                                         err, sock_errstr(err) );
1542 #else
1543                                 Debug( LDAP_DEBUG_ANY,
1544                                         "daemon: accept(%ld) failed errno=%d (%s)\n",
1545                                         (long) slap_listeners[l]->sl_sd, err,
1546                                         sock_errstr(err) );
1547 #endif
1548                                 ldap_pvt_thread_yield();
1549                                 continue;
1550                         }
1551
1552 #ifndef HAVE_WINSOCK
1553                         /* make sure descriptor number isn't too great */
1554                         if ( s >= dtblsize ) {
1555 #ifdef NEW_LOGGING
1556                                 LDAP_LOG( CONNECTION, ERR,
1557                                    "slapd_daemon_task: %ld beyond descriptor table size %ld\n",
1558                                    (long)s, (long)dtblsize, 0 );
1559 #else
1560                                 Debug( LDAP_DEBUG_ANY,
1561                                         "daemon: %ld beyond descriptor table size %ld\n",
1562                                         (long) s, (long) dtblsize, 0 );
1563 #endif
1564
1565                                 slapd_close(s);
1566                                 ldap_pvt_thread_yield();
1567                                 continue;
1568                         }
1569 #endif
1570
1571 #ifdef LDAP_DEBUG
1572                         ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
1573
1574                         /* newly accepted stream should not be in any of the FD SETS */
1575                         assert( !FD_ISSET( s, &slap_daemon.sd_actives) );
1576                         assert( !FD_ISSET( s, &slap_daemon.sd_readers) );
1577                         assert( !FD_ISSET( s, &slap_daemon.sd_writers) );
1578
1579                         ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
1580 #endif
1581
1582 #if defined( SO_KEEPALIVE ) || defined( TCP_NODELAY )
1583 #ifdef LDAP_PF_LOCAL
1584                         /* for IPv4 and IPv6 sockets only */
1585                         if ( from.sa_addr.sa_family != AF_LOCAL )
1586 #endif /* LDAP_PF_LOCAL */
1587                         {
1588                                 int rc;
1589                                 int tmp;
1590 #ifdef SO_KEEPALIVE
1591                                 /* enable keep alives */
1592                                 tmp = 1;
1593                                 rc = setsockopt( s, SOL_SOCKET, SO_KEEPALIVE,
1594                                         (char *) &tmp, sizeof(tmp) );
1595                                 if ( rc == AC_SOCKET_ERROR ) {
1596                                         int err = sock_errno();
1597 #ifdef NEW_LOGGING
1598                                         LDAP_LOG( CONNECTION, ERR,
1599                                                 "slapd_daemon_task: setsockopt( %ld, SO_KEEPALIVE)"
1600                                            " failed errno=%d (%s)\n",
1601                                                 (long)s, err, sock_errstr(err) );
1602 #else
1603                                         Debug( LDAP_DEBUG_ANY,
1604                                                 "slapd(%ld): setsockopt(SO_KEEPALIVE) failed "
1605                                                 "errno=%d (%s)\n", (long) s, err, sock_errstr(err) );
1606 #endif
1607                                 }
1608 #endif
1609 #ifdef TCP_NODELAY
1610                                 /* enable no delay */
1611                                 tmp = 1;
1612                                 rc = setsockopt( s, IPPROTO_TCP, TCP_NODELAY,
1613                                         (char *)&tmp, sizeof(tmp) );
1614                                 if ( rc == AC_SOCKET_ERROR ) {
1615                                         int err = sock_errno();
1616 #ifdef NEW_LOGGING
1617                                         LDAP_LOG( CONNECTION, ERR,
1618                                                 "slapd_daemon_task: setsockopt( %ld, "
1619                                                 "TCP_NODELAY) failed errno=%d (%s)\n",
1620                                                 (long)s, err, sock_errstr(err) );
1621 #else
1622                                         Debug( LDAP_DEBUG_ANY,
1623                                                 "slapd(%ld): setsockopt(TCP_NODELAY) failed "
1624                                                 "errno=%d (%s)\n", (long) s, err, sock_errstr(err) );
1625 #endif
1626                                 }
1627 #endif
1628                         }
1629 #endif
1630
1631 #ifdef NEW_LOGGING
1632                         LDAP_LOG( CONNECTION, DETAIL1,
1633                                 "slapd_daemon_task: new connection on %ld\n", (long)s, 0, 0 );
1634 #else
1635                         Debug( LDAP_DEBUG_CONNS, "daemon: new connection on %ld\n",
1636                                 (long) s, 0, 0 );
1637 #endif
1638                         switch ( from.sa_addr.sa_family ) {
1639 #  ifdef LDAP_PF_LOCAL
1640                         case AF_LOCAL:
1641                                 sprintf( peername, "PATH=%s", from.sa_un_addr.sun_path );
1642                                 ssf = LDAP_PVT_SASL_LOCAL_SSF;
1643                                 {
1644                                         uid_t uid;
1645                                         gid_t gid;
1646
1647                                         if( getpeereid( s, &uid, &gid ) == 0 ) {
1648                                                 authid = ch_malloc(
1649                                                         sizeof("uidnumber=4294967295+gidnumber=4294967295,"
1650                                                                 "cn=peercred,cn=external,cn=auth"));
1651                                                 sprintf(authid, "uidnumber=%d+gidnumber=%d,"
1652                                                         "cn=peercred,cn=external,cn=auth",
1653                                                         (int) uid, (int) gid);
1654                                         }
1655                                 }
1656                                 dnsname = "local";
1657                                 break;
1658 #endif /* LDAP_PF_LOCAL */
1659
1660 #  ifdef LDAP_PF_INET6
1661                         case AF_INET6:
1662                         if ( IN6_IS_ADDR_V4MAPPED(&from.sa_in6_addr.sin6_addr) ) {
1663                                 peeraddr = inet_ntoa( *((struct in_addr *)
1664                                                         &from.sa_in6_addr.sin6_addr.s6_addr[12]) );
1665                                 sprintf( peername, "IP=%s:%d",
1666                                          peeraddr != NULL ? peeraddr : SLAP_STRING_UNKNOWN,
1667                                          (unsigned) ntohs( from.sa_in6_addr.sin6_port ) );
1668                         } else {
1669                                 char addr[INET6_ADDRSTRLEN];
1670
1671                                 peeraddr = (char *) inet_ntop( AF_INET6,
1672                                                       &from.sa_in6_addr.sin6_addr,
1673                                                       addr, sizeof addr );
1674                                 sprintf( peername, "IP=%s %d",
1675                                          peeraddr != NULL ? peeraddr : SLAP_STRING_UNKNOWN,
1676                                          (unsigned) ntohs( from.sa_in6_addr.sin6_port ) );
1677                         }
1678                         break;
1679 #  endif /* LDAP_PF_INET6 */
1680
1681                         case AF_INET:
1682                         peeraddr = inet_ntoa( from.sa_in_addr.sin_addr );
1683                         sprintf( peername, "IP=%s:%d",
1684                                 peeraddr != NULL ? peeraddr : SLAP_STRING_UNKNOWN,
1685                                 (unsigned) ntohs( from.sa_in_addr.sin_port ) );
1686                                 break;
1687
1688                         default:
1689                                 slapd_close(s);
1690                                 continue;
1691                         }
1692
1693                         if ( ( from.sa_addr.sa_family == AF_INET )
1694 #ifdef LDAP_PF_INET6
1695                                 || ( from.sa_addr.sa_family == AF_INET6 )
1696 #endif
1697                         ) {
1698 #ifdef SLAPD_RLOOKUPS
1699                                 if ( use_reverse_lookup ) {
1700                                         char *herr;
1701                                         if (ldap_pvt_get_hname( (const struct sockaddr *)&from, len, hbuf,
1702                                                 sizeof(hbuf), &herr ) == 0) {
1703                                                 ldap_pvt_str2lower( hbuf );
1704                                                 dnsname = hbuf;
1705                                         }
1706                                 }
1707 #else
1708                                 dnsname = NULL;
1709 #endif /* SLAPD_RLOOKUPS */
1710
1711 #ifdef HAVE_TCPD
1712                                 if ( !hosts_ctl("slapd",
1713                                                 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN,
1714                                                 peeraddr != NULL ? peeraddr : SLAP_STRING_UNKNOWN,
1715                                                 SLAP_STRING_UNKNOWN ))
1716                                 {
1717                                         /* DENY ACCESS */
1718                                         Statslog( LDAP_DEBUG_STATS,
1719                                                 "fd=%ld DENIED from %s (%s)\n",
1720                                                 (long) s,
1721                                                 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN,
1722                                                 peeraddr != NULL ? peeraddr : SLAP_STRING_UNKNOWN,
1723                                                 0, 0 );
1724                                         slapd_close(s);
1725                                         continue;
1726                                 }
1727 #endif /* HAVE_TCPD */
1728                         }
1729
1730                         id = connection_init(s,
1731                                 slap_listeners[l],
1732                                 dnsname != NULL ? dnsname : SLAP_STRING_UNKNOWN,
1733                                 peername,
1734 #ifdef HAVE_TLS
1735                                 slap_listeners[l]->sl_is_tls,
1736 #else
1737                                 0,
1738 #endif
1739                                 ssf,
1740                                 authid );
1741
1742                         if( authid ) ch_free(authid);
1743
1744                         if( id < 0 ) {
1745 #ifdef NEW_LOGGING
1746                                 LDAP_LOG( CONNECTION, INFO,
1747                                         "slapd_daemon_task: "
1748                                         "connection_init(%ld, %s, %s) "
1749                                         "failed.\n",
1750                                         (long)s, peername,
1751                                         slap_listeners[l]->sl_name.bv_val );
1752 #else
1753                                 Debug( LDAP_DEBUG_ANY,
1754                                         "daemon: connection_init(%ld, %s, %s) "
1755                                         "failed.\n",
1756                                         (long) s,
1757                                         peername,
1758                                         slap_listeners[l]->sl_name.bv_val );
1759 #endif
1760                                 slapd_close(s);
1761                                 continue;
1762                         }
1763
1764                         Statslog( LDAP_DEBUG_STATS,
1765                                 "conn=%ld fd=%ld ACCEPT from %s (%s)\n",
1766                                 id, (long) s,
1767                                 peername,
1768                                 slap_listeners[l]->sl_name.bv_val,
1769                                 0 );
1770
1771                         slapd_add( s );
1772                         continue;
1773                 }
1774
1775 #ifdef LDAP_DEBUG
1776 #ifdef NEW_LOGGING
1777                 LDAP_LOG( CONNECTION, DETAIL2,
1778                            "slapd_daemon_task: activity on ", 0, 0, 0 );
1779 #else
1780                 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:", 0, 0, 0 );
1781 #endif
1782 #ifdef HAVE_WINSOCK
1783                 for ( i = 0; i < readfds.fd_count; i++ ) {
1784 #ifdef NEW_LOGGING
1785                         LDAP_LOG( CONNECTION, DETAIL2,
1786                                 " %d%s", readfds.fd_array[i], "r", 0, 0 );
1787 #else
1788                         Debug( LDAP_DEBUG_CONNS, " %d%s",
1789                                 readfds.fd_array[i], "r", 0 );
1790 #endif
1791                 }
1792                 for ( i = 0; i < writefds.fd_count; i++ ) {
1793 #ifdef NEW_LOGGING
1794                         LDAP_LOG( CONNECTION, DETAIL2,
1795                                 " %d%s", writefds.fd_array[i], "w" , 0 );
1796 #else
1797                         Debug( LDAP_DEBUG_CONNS, " %d%s",
1798                                 writefds.fd_array[i], "w", 0 );
1799 #endif
1800                 }
1801
1802 #else
1803                 for ( i = 0; i < nfds; i++ ) {
1804                         int     r, w;
1805
1806                         r = FD_ISSET( i, &readfds );
1807                         w = FD_ISSET( i, &writefds );
1808                         if ( r || w ) {
1809 #ifdef NEW_LOGGING
1810                                 LDAP_LOG( CONNECTION, DETAIL2,
1811                                         " %d%s%s", i, r ? "r" : "", w ? "w" : "" );
1812 #else
1813                                 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i,
1814                                     r ? "r" : "", w ? "w" : "" );
1815 #endif
1816                         }
1817                 }
1818 #endif
1819 #ifdef NEW_LOGGING
1820                 LDAP_LOG( CONNECTION, DETAIL2, "\n", 0, 0, 0 );
1821 #else
1822                 Debug( LDAP_DEBUG_CONNS, "\n", 0, 0, 0 );
1823 #endif
1824
1825 #endif
1826
1827                 /* loop through the writers */
1828 #ifdef HAVE_WINSOCK
1829                 for ( i = 0; i < writefds.fd_count; i++ )
1830 #else
1831                 for ( i = 0; i < nfds; i++ )
1832 #endif
1833                 {
1834                         ber_socket_t wd;
1835 #ifdef HAVE_WINSOCK
1836                         wd = writefds.fd_array[i];
1837 #else
1838                         if( ! FD_ISSET( i, &writefds ) ) {
1839                                 continue;
1840                         }
1841                         wd = i;
1842 #endif
1843
1844 #ifdef NEW_LOGGING
1845                         LDAP_LOG( CONNECTION, DETAIL2,
1846                                 "slapd_daemon_task: write active on %d\n", wd, 0, 0 );
1847 #else
1848                         Debug( LDAP_DEBUG_CONNS,
1849                                 "daemon: write active on %d\n",
1850                                 wd, 0, 0 );
1851 #endif
1852                         /*
1853                          * NOTE: it is possible that the connection was closed
1854                          * and that the stream is now inactive.
1855                          * connection_write() must valid the stream is still
1856                          * active.
1857                          */
1858
1859                         if ( connection_write( wd ) < 0 ) {
1860                                 FD_CLR( (unsigned) wd, &readfds );
1861                                 slapd_close( wd );
1862                         }
1863                 }
1864
1865 #ifdef HAVE_WINSOCK
1866                 for ( i = 0; i < readfds.fd_count; i++ )
1867 #else
1868                 for ( i = 0; i < nfds; i++ )
1869 #endif
1870                 {
1871                         ber_socket_t rd;
1872 #ifdef HAVE_WINSOCK
1873                         rd = readfds.fd_array[i];
1874 #else
1875                         if( ! FD_ISSET( i, &readfds ) ) {
1876                                 continue;
1877                         }
1878                         rd = i;
1879 #endif
1880
1881 #ifdef NEW_LOGGING
1882                         LDAP_LOG( CONNECTION, DETAIL2,
1883                                 "slapd_daemon_task: read activity on %d\n", rd, 0, 0 );
1884 #else
1885                         Debug ( LDAP_DEBUG_CONNS,
1886                                 "daemon: read activity on %d\n", rd, 0, 0 );
1887 #endif
1888                         /*
1889                          * NOTE: it is possible that the connection was closed
1890                          * and that the stream is now inactive.
1891                          * connection_read() must valid the stream is still
1892                          * active.
1893                          */
1894
1895                         if ( connection_read( rd ) < 0 ) {
1896                                 slapd_close( rd );
1897                         }
1898                 }
1899                 ldap_pvt_thread_yield();
1900         }
1901
1902         if( slapd_shutdown == 1 ) {
1903 #ifdef NEW_LOGGING
1904                 LDAP_LOG( CONNECTION, CRIT,
1905                    "slapd_daemon_task: shutdown requested and initiated.\n", 0, 0, 0 );
1906 #else
1907                 Debug( LDAP_DEBUG_TRACE,
1908                         "daemon: shutdown requested and initiated.\n",
1909                         0, 0, 0 );
1910 #endif
1911
1912         } else if ( slapd_shutdown == 2 ) {
1913 #ifdef HAVE_NT_SERVICE_MANAGER
1914 #ifdef NEW_LOGGING
1915                         LDAP_LOG( CONNECTION, CRIT,
1916                            "slapd_daemon_task: shutdown initiated by Service Manager.\n",
1917                            0, 0, 0);
1918 #else
1919                         Debug( LDAP_DEBUG_TRACE,
1920                                "daemon: shutdown initiated by Service Manager.\n",
1921                                0, 0, 0);
1922 #endif
1923 #else /* !HAVE_NT_SERVICE_MANAGER */
1924 #ifdef NEW_LOGGING
1925                         LDAP_LOG( CONNECTION, CRIT,
1926                            "slapd_daemon_task: abnormal condition, "
1927                            "shutdown initiated.\n", 0, 0, 0 );
1928 #else
1929                         Debug( LDAP_DEBUG_TRACE,
1930                                "daemon: abnormal condition, shutdown initiated.\n",
1931                                0, 0, 0 );
1932 #endif
1933 #endif /* !HAVE_NT_SERVICE_MANAGER */
1934         } else {
1935 #ifdef NEW_LOGGING
1936                 LDAP_LOG( CONNECTION, CRIT,
1937                    "slapd_daemon_task: no active streams, shutdown initiated.\n",
1938                    0, 0, 0 );
1939 #else
1940                 Debug( LDAP_DEBUG_TRACE,
1941                        "daemon: no active streams, shutdown initiated.\n",
1942                        0, 0, 0 );
1943 #endif
1944         }
1945
1946         if( slapd_gentle_shutdown != 2 ) {
1947                 close_listeners ( 0 );
1948         }
1949
1950         free ( slap_listeners );
1951         slap_listeners = NULL;
1952
1953         if( !slapd_gentle_shutdown ) {
1954                 connections_shutdown();
1955         }
1956
1957 #ifdef NEW_LOGGING
1958         LDAP_LOG( CONNECTION, CRIT,
1959                 "slapd_daemon_task: shutdown waiting for %d threads to terminate.\n",
1960                 ldap_pvt_thread_pool_backload(&connection_pool), 0, 0 );
1961 #else
1962         Debug( LDAP_DEBUG_ANY,
1963             "slapd shutdown: waiting for %d threads to terminate\n",
1964             ldap_pvt_thread_pool_backload(&connection_pool), 0, 0 );
1965 #endif
1966         ldap_pvt_thread_pool_destroy(&connection_pool, 1);
1967
1968         return NULL;
1969 }
1970
1971
1972 int slapd_daemon( void )
1973 {
1974         int rc;
1975
1976         connections_init();
1977
1978 #define SLAPD_LISTENER_THREAD 1
1979 #if defined( SLAPD_LISTENER_THREAD )
1980         {
1981                 ldap_pvt_thread_t       listener_tid;
1982
1983                 /* listener as a separate THREAD */
1984                 rc = ldap_pvt_thread_create( &listener_tid,
1985                         0, slapd_daemon_task, NULL );
1986
1987                 if ( rc != 0 ) {
1988 #ifdef NEW_LOGGING
1989                         LDAP_LOG( CONNECTION, ERR,
1990                                 "slapd_daemon: listener ldap_pvt_thread_create failed (%d).\n",
1991                                 rc, 0, 0 );
1992 #else
1993                         Debug( LDAP_DEBUG_ANY,
1994                         "listener ldap_pvt_thread_create failed (%d)\n", rc, 0, 0 );
1995 #endif
1996                         return rc;
1997                 }
1998
1999                 /* wait for the listener thread to complete */
2000                 ldap_pvt_thread_join( listener_tid, (void *) NULL );
2001         }
2002 #else
2003         /* experimental code */
2004         slapd_daemon_task( NULL );
2005 #endif
2006
2007         return 0;
2008
2009 }
2010
2011 int sockinit(void)
2012 {
2013 #if defined( HAVE_WINSOCK2 )
2014     WORD wVersionRequested;
2015         WSADATA wsaData;
2016         int err;
2017
2018         wVersionRequested = MAKEWORD( 2, 0 );
2019
2020         err = WSAStartup( wVersionRequested, &wsaData );
2021         if ( err != 0 ) {
2022                 /* Tell the user that we couldn't find a usable */
2023                 /* WinSock DLL.                                  */
2024                 return -1;
2025         }
2026
2027         /* Confirm that the WinSock DLL supports 2.0.*/
2028         /* Note that if the DLL supports versions greater    */
2029         /* than 2.0 in addition to 2.0, it will still return */
2030         /* 2.0 in wVersion since that is the version we      */
2031         /* requested.                                        */
2032
2033         if ( LOBYTE( wsaData.wVersion ) != 2 ||
2034                 HIBYTE( wsaData.wVersion ) != 0 )
2035         {
2036             /* Tell the user that we couldn't find a usable */
2037             /* WinSock DLL.                                  */
2038             WSACleanup();
2039             return -1;
2040         }
2041
2042         /* The WinSock DLL is acceptable. Proceed. */
2043 #elif defined( HAVE_WINSOCK )
2044         WSADATA wsaData;
2045         if ( WSAStartup( 0x0101, &wsaData ) != 0 ) {
2046             return -1;
2047         }
2048 #endif
2049         return 0;
2050 }
2051
2052 int sockdestroy(void)
2053 {
2054 #if defined( HAVE_WINSOCK2 ) || defined( HAVE_WINSOCK )
2055         WSACleanup();
2056 #endif
2057         return 0;
2058 }
2059
2060 RETSIGTYPE
2061 slap_sig_shutdown( int sig )
2062 {
2063 #if 0
2064 #ifdef NEW_LOGGING
2065         LDAP_LOG( CONNECTION, CRIT,
2066                 "slap_sig_shutdown: signal %d\n", sig, 0, 0 );
2067 #else
2068         Debug(LDAP_DEBUG_TRACE, "slap_sig_shutdown: signal %d\n", sig, 0, 0);
2069 #endif
2070 #endif
2071
2072         /*
2073          * If the NT Service Manager is controlling the server, we don't
2074          * want SIGBREAK to kill the server. For some strange reason,
2075          * SIGBREAK is generated when a user logs out.
2076          */
2077
2078 #if 0
2079 #if HAVE_NT_SERVICE_MANAGER && SIGBREAK
2080         if (is_NT_Service && sig == SIGBREAK)
2081 #ifdef NEW_LOGGING
2082             LDAP_LOG( CONNECTION, CRIT,
2083                     "slap_sig_shutdown: SIGBREAK ignored.\n", 0, 0, 0 );
2084 #else
2085             Debug(LDAP_DEBUG_TRACE, "slap_sig_shutdown: SIGBREAK ignored.\n",
2086                   0, 0, 0);
2087 #endif
2088         else
2089 #endif
2090 #endif
2091 #ifdef SIGHUP
2092         if (sig == SIGHUP && global_gentlehup && slapd_gentle_shutdown == 0)
2093                 slapd_gentle_shutdown = 1;
2094         else
2095 #endif
2096         slapd_shutdown = 1;
2097
2098         WAKE_LISTENER(1);
2099
2100         /* reinstall self */
2101         (void) SIGNAL_REINSTALL( sig, slap_sig_shutdown );
2102 }
2103
2104 RETSIGTYPE
2105 slap_sig_wake( int sig )
2106 {
2107         WAKE_LISTENER(1);
2108
2109         /* reinstall self */
2110         (void) SIGNAL_REINSTALL( sig, slap_sig_wake );
2111 }
2112
2113
2114 void slapd_add_internal(ber_socket_t s) {
2115         slapd_add(s);
2116 }
2117
2118 Listener ** slapd_get_listeners(void) {
2119         return slap_listeners;
2120 }