3 * Copyright 1998-2000 The OpenLDAP Foundation, All Rights Reserved.
4 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
13 #include <ac/signal.h>
14 #include <ac/socket.h>
15 #include <ac/string.h>
17 #include <ac/unistd.h>
20 #include "ldap_pvt_thread.h"
27 int allow_severity = LOG_INFO;
28 int deny_severity = LOG_NOTICE;
29 #endif /* TCP Wrappers */
33 #endif /* LDAP_PF_LOCAL */
37 ber_socket_t dtblsize;
39 typedef struct slap_listener {
45 #ifdef LDAP_CONNECTIONLESS
46 int sl_is_udp; /* UDP listener is also data port */
50 #define sl_addr sl_sa.sa_in_addr
53 Listener **slap_listeners = NULL;
55 #define SLAPD_LISTEN 10
57 static ber_socket_t wake_sds[2];
61 #define WAKE_LISTENER(w) \
62 ((w && !waking) ? tcp_write( wake_sds[1], "0", 1 ), waking=1 : 0)
64 #define WAKE_LISTENER(w) \
65 do { if (w) tcp_write( wake_sds[1], "0", 1 ); } while(0)
71 volatile sig_atomic_t slapd_shutdown = 0;
73 static struct slap_daemon {
74 ldap_pvt_thread_mutex_t sd_mutex;
79 /* In winsock, accept() returns values higher than dtblsize
80 so don't bother with this optimization */
93 * SLP related functions
97 #define LDAP_SRVTYPE_PREFIX "service:ldap://"
98 #define LDAPS_SRVTYPE_PREFIX "service:ldaps://"
99 static char** slapd_srvurls = NULL;
100 static SLPHandle slapd_hslp = 0;
102 void slapd_slp_init( const char* urls ) {
105 slapd_srvurls = str2charray( urls, " " );
107 if( slapd_srvurls == NULL ) return;
109 /* find and expand INADDR_ANY URLs */
110 for( i=0; slapd_srvurls[i] != NULL; i++ ) {
111 if( strcmp( slapd_srvurls[i], "ldap:///" ) == 0) {
112 char *host = ldap_pvt_get_fqdn( NULL );
113 if ( host != NULL ) {
114 slapd_srvurls[i] = (char *) realloc( slapd_srvurls[i],
116 sizeof( LDAP_SRVTYPE_PREFIX ) );
117 strcpy( slapd_srvurls[i], LDAP_SRVTYPE_PREFIX );
118 strcat( slapd_srvurls[i], host );
123 } else if ( strcmp( slapd_srvurls[i], "ldaps:///" ) == 0) {
124 char *host = ldap_pvt_get_fqdn( NULL );
125 if ( host != NULL ) {
126 slapd_srvurls[i] = (char *) realloc( slapd_srvurls[i],
128 sizeof( LDAPS_SRVTYPE_PREFIX ) );
129 strcpy( slapd_srvurls[i], LDAPS_SRVTYPE_PREFIX );
130 strcat( slapd_srvurls[i], host );
137 /* open the SLP handle */
138 SLPOpen( "en", 0, &slapd_hslp );
141 void slapd_slp_deinit() {
142 if( slapd_srvurls == NULL ) return;
144 charray_free( slapd_srvurls );
145 slapd_srvurls = NULL;
147 /* close the SLP handle */
148 SLPClose( slapd_hslp );
151 void slapd_slp_regreport(
159 void slapd_slp_reg() {
162 for( i=0; slapd_srvurls[i] != NULL; i++ ) {
163 if( strncmp( slapd_srvurls[i], LDAP_SRVTYPE_PREFIX,
164 sizeof( LDAP_SRVTYPE_PREFIX ) - 1 ) == 0 ||
165 strncmp( slapd_srvurls[i], LDAPS_SRVTYPE_PREFIX,
166 sizeof( LDAPS_SRVTYPE_PREFIX ) - 1 ) == 0 )
170 SLP_LIFETIME_MAXIMUM,
180 void slapd_slp_dereg() {
183 for( i=0; slapd_srvurls[i] != NULL; i++ ) {
184 SLPDereg( slapd_hslp,
190 #endif /* HAVE_SLP */
193 * Add a descriptor to daemon control
195 static void slapd_add(ber_socket_t s) {
196 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
198 assert( !FD_ISSET( s, &slap_daemon.sd_actives ));
199 assert( !FD_ISSET( s, &slap_daemon.sd_readers ));
200 assert( !FD_ISSET( s, &slap_daemon.sd_writers ));
203 if (s >= slap_daemon.sd_nfds) {
204 slap_daemon.sd_nfds = s + 1;
208 FD_SET( s, &slap_daemon.sd_actives );
209 FD_SET( s, &slap_daemon.sd_readers );
212 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
213 "slapd_add: added %ld%s%s\n",
215 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
216 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" ));
218 Debug( LDAP_DEBUG_CONNS, "daemon: added %ld%s%s\n",
220 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
221 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
223 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
227 * Remove the descriptor from daemon control
229 void slapd_remove(ber_socket_t s, int wake) {
230 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
233 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
234 "slapd_remove: removing %ld%s%s\n",
236 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
237 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" ));
239 Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n",
241 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
242 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
244 FD_CLR( s, &slap_daemon.sd_actives );
245 FD_CLR( s, &slap_daemon.sd_readers );
246 FD_CLR( s, &slap_daemon.sd_writers );
248 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
252 void slapd_clr_write(ber_socket_t s, int wake) {
253 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
255 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
256 FD_CLR( s, &slap_daemon.sd_writers );
258 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
262 void slapd_set_write(ber_socket_t s, int wake) {
263 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
265 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
266 if (!FD_ISSET(s, &slap_daemon.sd_writers))
267 FD_SET( (unsigned) s, &slap_daemon.sd_writers );
269 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
273 void slapd_clr_read(ber_socket_t s, int wake) {
274 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
276 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
277 FD_CLR( s, &slap_daemon.sd_readers );
279 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
283 void slapd_set_read(ber_socket_t s, int wake) {
284 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
286 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
287 if (!FD_ISSET(s, &slap_daemon.sd_readers))
288 FD_SET( s, &slap_daemon.sd_readers );
290 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
294 static void slapd_close(ber_socket_t s) {
296 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
297 "slapd_close: closing %ld\n", (long)s ));
299 Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n",
305 static void slap_free_listener_addresses(struct sockaddr **sal)
307 struct sockaddr **sap;
313 for (sap = sal; *sap != NULL; sap++) {
320 /* port = 0 indicates AF_LOCAL */
321 static int slap_get_listener_addresses(
324 struct sockaddr ***sal)
326 struct sockaddr **sap;
330 *sal = ch_malloc(2 * sizeof(void *));
336 *sap = ch_malloc(sizeof(struct sockaddr_un));
342 (sizeof(((struct sockaddr_un *)*sap)->sun_path) - 1) ) {
344 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
345 "slap_get_listener_addresses: domain socket path (%s) too long in URL\n",
348 Debug( LDAP_DEBUG_ANY,
349 "daemon: domain socket path (%s) too long in URL",
355 (void)memset( (void *)*sap, '\0', sizeof(struct sockaddr_un) );
356 (*sap)->sa_family = AF_LOCAL;
357 strcpy( ((struct sockaddr_un *)*sap)->sun_path, host );
361 #ifdef HAVE_GETADDRINFO
362 struct addrinfo hints, *res, *sai;
366 memset( &hints, '\0', sizeof(hints) );
367 hints.ai_flags = AI_PASSIVE;
368 hints.ai_socktype = SOCK_STREAM;
369 hints.ai_family = AF_UNSPEC;
370 snprintf(serv, sizeof serv, "%d", port);
372 if ( (err = getaddrinfo(host, serv, &hints, &res)) ) {
374 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
375 "slap_get_listener_addresses: getaddrinfo failed: %s\n",
376 AC_GAI_STRERROR(err) ));
378 Debug( LDAP_DEBUG_ANY, "daemon: getaddrinfo failed: %s\n",
379 AC_GAI_STRERROR(err), 0, 0);
385 for (n=2; (sai = sai->ai_next) != NULL; n++) {
388 *sal = ch_calloc(n, sizeof(void *));
396 for ( sai=res; sai; sai=sai->ai_next ) {
397 if( sai->ai_addr == NULL ) {
399 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
400 "slap_get_listener_addresses: "
401 "getaddrinfo ai_addr is NULL?\n" ));
403 Debug( LDAP_DEBUG_ANY, "slap_get_listener_addresses: "
404 "getaddrinfo ai_addr is NULL?\n", 0, 0, 0 );
410 switch (sai->ai_family) {
411 # ifdef LDAP_PF_INET6
413 *sap = ch_malloc(sizeof(struct sockaddr_in6));
418 *(struct sockaddr_in6 *)*sap =
419 *((struct sockaddr_in6 *)sai->ai_addr);
423 *sap = ch_malloc(sizeof(struct sockaddr_in));
428 *(struct sockaddr_in *)*sap =
429 *((struct sockaddr_in *)sai->ai_addr);
437 (*sap)->sa_family = sai->ai_family;
447 if ( host == NULL ) {
448 in.s_addr = htonl(INADDR_ANY);
450 } else if ( !inet_aton( host, &in ) ) {
451 struct hostent *he = gethostbyname( host );
454 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
455 "slap_get_listener_addresses: invalid host %s\n",
458 Debug( LDAP_DEBUG_ANY,
459 "daemon: invalid host %s", host, 0, 0);
463 AC_MEMCPY( &in, he->h_addr, sizeof( in ) );
466 *sal = ch_malloc(2 * sizeof(void *));
472 *sap = ch_malloc(sizeof(struct sockaddr_in));
478 (void)memset( (void *)*sap, '\0', sizeof(struct sockaddr_in) );
479 (*sap)->sa_family = AF_INET;
480 ((struct sockaddr_in *)*sap)->sin_port = htons(port);
481 ((struct sockaddr_in *)*sap)->sin_addr = in;
488 slap_free_listener_addresses(*sal);
492 static Listener * slap_open_listener(
500 int err, addrlen = 0;
501 struct sockaddr **sal, **psal;
502 int socktype = SOCK_STREAM; /* default to COTS */
504 rc = ldap_url_parse( url, &lud );
506 if( rc != LDAP_URL_SUCCESS ) {
508 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
509 "slap_open_listener: listen URL \"%s\" parse error %d\n",
512 Debug( LDAP_DEBUG_ANY,
513 "daemon: listen URL \"%s\" parse error=%d\n",
520 if( ldap_pvt_url_scheme2tls( lud->lud_scheme ) ) {
522 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
523 "slap_open_listener: TLS is not supported (%s)\n",
526 Debug( LDAP_DEBUG_ANY,
527 "daemon: TLS not supported (%s)\n",
530 ldap_free_urldesc( lud );
534 if(! lud->lud_port ) {
535 lud->lud_port = LDAP_PORT;
539 l.sl_is_tls = ldap_pvt_url_scheme2tls( lud->lud_scheme );
541 if(! lud->lud_port ) {
542 lud->lud_port = l.sl_is_tls ? LDAPS_PORT : LDAP_PORT;
546 port = (unsigned short) lud->lud_port;
548 tmp = ldap_pvt_url_scheme2proto(lud->lud_scheme);
549 if ( tmp == LDAP_PROTO_IPC ) {
551 if ( lud->lud_host == NULL || lud->lud_host[0] == '\0' ) {
552 err = slap_get_listener_addresses(LDAPI_SOCK, 0, &sal);
554 err = slap_get_listener_addresses(lud->lud_host, 0, &sal);
559 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
560 "slap_open_listener: URL scheme is not supported: %s\n",
563 Debug( LDAP_DEBUG_ANY, "daemon: URL scheme not supported: %s",
566 ldap_free_urldesc( lud );
570 #ifdef LDAP_CONNECTIONLESS
571 l.sl_is_udp = ( tmp == LDAP_PROTO_UDP );
573 if( lud->lud_host == NULL || lud->lud_host[0] == '\0'
574 || strcmp(lud->lud_host, "*") == 0 )
576 err = slap_get_listener_addresses(NULL, port, &sal);
578 err = slap_get_listener_addresses(lud->lud_host, port, &sal);
582 ldap_free_urldesc( lud );
588 while ( *sal != NULL ) {
589 switch( (*sal)->sa_family ) {
602 #ifdef LDAP_CONNECTIONLESS
604 socktype = SOCK_DGRAM;
606 l.sl_sd = socket( (*sal)->sa_family, socktype, 0);
607 if ( l.sl_sd == AC_SOCKET_INVALID ) {
608 int err = sock_errno();
610 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
611 "slap_open_listener: socket() failed errno=%d (%s)\n",
612 err, sock_errstr(err) ));
614 Debug( LDAP_DEBUG_ANY,
615 "daemon: socket() failed errno=%d (%s)\n", err,
616 sock_errstr(err), 0 );
622 if ( l.sl_sd >= dtblsize ) {
624 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
625 "slap_open_listener: listener descriptor %ld is too great %ld\n",
626 (long)l.sl_sd, (long)dtblsize ));
628 Debug( LDAP_DEBUG_ANY,
629 "daemon: listener descriptor %ld is too great %ld\n",
630 (long) l.sl_sd, (long) dtblsize, 0 );
632 tcp_close( l.sl_sd );
638 if ( (*sal)->sa_family == AF_LOCAL ) {
639 unlink ( ((struct sockaddr_un *)*sal)->sun_path );
644 /* enable address reuse */
646 rc = setsockopt( l.sl_sd, SOL_SOCKET, SO_REUSEADDR,
647 (char *) &tmp, sizeof(tmp) );
648 if ( rc == AC_SOCKET_ERROR ) {
649 int err = sock_errno();
651 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
652 "slap_open_listener: setsockopt( %ld, SO_REUSEADDR ) failed errno %d (%s)\n",
653 (long)l.sl_sd, err, sock_errstr(err) ));
655 Debug( LDAP_DEBUG_ANY,
656 "slapd(%ld): setsockopt(SO_REUSEADDR) failed errno=%d (%s)\n",
657 (long) l.sl_sd, err, sock_errstr(err) );
663 switch( (*sal)->sa_family ) {
665 addrlen = sizeof(struct sockaddr_in);
669 addrlen = sizeof(struct sockaddr_in6);
674 addrlen = sizeof(struct sockaddr_un);
679 if (!bind(l.sl_sd, *sal, addrlen))
683 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
684 "slap_open_listener: bind(%ld) failed errno=%d (%s)\n",
685 (long)l.sl_sd, err, sock_errstr(err) ));
687 Debug( LDAP_DEBUG_ANY, "daemon: bind(%ld) failed errno=%d (%s)\n",
688 (long) l.sl_sd, err, sock_errstr(err) );
690 tcp_close( l.sl_sd );
692 } /* while ( *sal != NULL ) */
694 if ( *sal == NULL ) {
696 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
697 "slap_open_listener: bind(%ld) failed.\n", (long)l.sl_sd ));
699 Debug( LDAP_DEBUG_ANY, "daemon: bind(%ld) failed\n",
700 (long) l.sl_sd, 0, 0 );
702 slap_free_listener_addresses(psal);
706 switch ( (*sal)->sa_family ) {
709 char *addr = ((struct sockaddr_un *)*sal)->sun_path;
710 if ( chmod( addr, S_IRWXU ) < 0 ) {
711 int err = sock_errno();
713 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
714 "slap_open_listener: fchmod(%ld) failed errno=%d (%s)\n",
715 (long)l.sl_sd, err, sock_errstr(err) ));
717 Debug( LDAP_DEBUG_ANY, "daemon: fchmod(%ld) failed errno=%d (%s)",
718 (long) l.sl_sd, err, sock_errstr(err) );
720 tcp_close( l.sl_sd );
721 slap_free_listener_addresses(psal);
724 l.sl_name = ch_malloc( strlen(addr) + sizeof("PATH=") );
725 sprintf( l.sl_name, "PATH=%s", addr );
727 #endif /* LDAP_PF_LOCAL */
731 #if defined( HAVE_GETADDRINFO ) && defined( HAVE_INET_NTOP )
732 char addr[INET_ADDRSTRLEN];
733 inet_ntop( AF_INET, &((struct sockaddr_in *)*sal)->sin_addr,
734 addr, sizeof(addr) );
736 port = ((struct sockaddr_in *)*sal) ->sin_port;
738 s = inet_ntoa( l.sl_addr.sin_addr );
739 port = l.sl_addr.sin_port;
741 l.sl_name = ch_malloc( sizeof("IP=255.255.255.255:65535") );
742 sprintf( l.sl_name, "IP=%s:%d",
743 s != NULL ? s : "unknown" , port );
748 char addr[INET6_ADDRSTRLEN];
749 inet_ntop( AF_INET6, &((struct sockaddr_in6 *)*sal)->sin6_addr,
751 port = ((struct sockaddr_in6 *)*sal)->sin6_port;
752 l.sl_name = ch_malloc( strlen(addr) + sizeof("IP= 65535") );
753 sprintf( l.sl_name, "IP=%s %d", addr, port );
755 #endif /* LDAP_PF_INET6 */
759 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
760 "slap_open_listener: unsupported address family (%d)\n",
761 (int)(*sal)->sa_family ));
763 Debug( LDAP_DEBUG_ANY, "daemon: unsupported address family (%d)\n",
764 (int) (*sal)->sa_family, 0, 0 );
769 slap_free_listener_addresses(psal);
771 l.sl_url = ch_strdup( url );
772 li = ch_malloc( sizeof( Listener ) );
776 LDAP_LOG(( "connection", LDAP_LEVEL_RESULTS,
777 "slap_open_listener: daemon initialzed %s\n", l.sl_url ));
779 Debug( LDAP_DEBUG_TRACE, "daemon: initialized %s\n",
785 static int sockinit(void);
786 static int sockdestroy(void);
788 int slapd_daemon_init( const char *urls )
794 LDAP_LOG(( "connection", LDAP_LEVEL_ARGS,
795 "slapd_daemon_init: %s\n",
796 urls ? urls : "<null>" ));
798 Debug( LDAP_DEBUG_ARGS, "daemon_init: %s\n",
799 urls ? urls : "<null>", 0, 0 );
801 if( (rc = sockinit()) != 0 ) {
806 dtblsize = sysconf( _SC_OPEN_MAX );
807 #elif HAVE_GETDTABLESIZE
808 dtblsize = getdtablesize();
810 dtblsize = FD_SETSIZE;
814 if(dtblsize > FD_SETSIZE) {
815 dtblsize = FD_SETSIZE;
817 #endif /* !FD_SETSIZE */
819 /* open a pipe (or something equivalent connected to itself).
820 * we write a byte on this fd whenever we catch a signal. The main
821 * loop will be select'ing on this socket, and will wake up when
824 if( (rc = lutil_pair( wake_sds )) < 0 ) {
826 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
827 "slap_daemon_init: lutil_pair() failed rc=%d\n", rc ));
829 Debug( LDAP_DEBUG_ANY,
830 "daemon: lutil_pair() failed rc=%d\n", rc, 0, 0 );
835 FD_ZERO( &slap_daemon.sd_readers );
836 FD_ZERO( &slap_daemon.sd_writers );
842 u = str2charray( urls, " " );
844 if( u == NULL || u[0] == NULL ) {
846 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
847 "slap_daemon_init: no urls (%s) provided.\n", urls ));
849 Debug( LDAP_DEBUG_ANY, "daemon_init: no urls (%s) provided.\n",
855 for( i=0; u[i] != NULL; i++ ) {
857 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
858 "slap_daemon_init: listen on %s\n.", u[i] ));
860 Debug( LDAP_DEBUG_TRACE, "daemon_init: listen on %s\n",
867 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
868 "slap_daemon_init: no listeners to open (%s)\n", urls ));
870 Debug( LDAP_DEBUG_ANY, "daemon_init: no listeners to open (%s)\n",
878 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
879 "slap_daemon_init: %d listeners to open...\n", i ));
881 Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners to open...\n",
884 slap_listeners = ch_malloc( (i+1)*sizeof(Listener *) );
886 for(i = 0; u[i] != NULL; i++ ) {
887 slap_listeners[i] = slap_open_listener( u[i] );
889 if( slap_listeners[i] == NULL ) {
894 slap_listeners[i] = NULL;
897 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
898 "slap_daemon_init: %d listeners opened\n", i ));
900 Debug( LDAP_DEBUG_TRACE, "daemon_init: %d listeners opened\n",
905 slapd_slp_init( urls );
910 ldap_pvt_thread_mutex_init( &slap_daemon.sd_mutex );
916 slapd_daemon_destroy(void)
918 connections_destroy();
919 tcp_close( wake_sds[1] );
920 tcp_close( wake_sds[0] );
938 time_t last_idle_check = 0;
941 if ( global_idletimeout > 0 ) {
942 last_idle_check = slap_get_time();
944 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
945 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
947 #ifdef LDAP_CONNECTIONLESS
948 /* Since this is connectionless, the data port is the
949 * listening port. The listen() and accept() calls
952 if ( slap_listeners[l]->sl_is_udp )
954 slapd_add( slap_listeners[l]->sl_sd );
959 if ( listen( slap_listeners[l]->sl_sd, SLAPD_LISTEN ) == -1 ) {
960 int err = sock_errno();
962 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
963 "slapd_daemon_task: listen( %s, 5 ) failed errno=%d (%s)\n",
964 slap_listeners[l]->sl_url, err, sock_errstr(err) ));
966 Debug( LDAP_DEBUG_ANY,
967 "daemon: listen(%s, 5) failed errno=%d (%s)\n",
968 slap_listeners[l]->sl_url, err,
974 slapd_add( slap_listeners[l]->sl_sd );
977 #ifdef HAVE_NT_SERVICE_MANAGER
978 if ( started_event != NULL ) {
979 ldap_pvt_thread_cond_signal( &started_event );
982 /* initialization complete. Here comes the loop. */
984 while ( !slapd_shutdown ) {
989 #define SLAPD_EBADF_LIMIT 16
993 #define SLAPD_IDLE_CHECK_LIMIT 4
1001 #if defined(SLAPD_RLOOKUPS)
1004 struct timeval zero;
1005 struct timeval *tvp;
1008 now = slap_get_time();
1009 connections_timeout_idle( now );
1011 else if ( global_idletimeout > 0 ) {
1012 now = slap_get_time();
1013 if ( difftime( last_idle_check+global_idletimeout/SLAPD_IDLE_CHECK_LIMIT, now ) < 0 ) {
1014 connections_timeout_idle( now );
1018 FD_ZERO( &writefds );
1019 FD_ZERO( &readfds );
1024 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
1026 #ifdef FD_SET_MANUAL_COPY
1027 for( s = 0; s < nfds; s++ ) {
1028 if(FD_ISSET( &slap_sd_readers, s )) {
1029 FD_SET( s, &readfds );
1031 if(FD_ISSET( &slap_sd_writers, s )) {
1032 FD_SET( s, &writefds );
1036 AC_MEMCPY( &readfds, &slap_daemon.sd_readers, sizeof(fd_set) );
1037 AC_MEMCPY( &writefds, &slap_daemon.sd_writers, sizeof(fd_set) );
1039 assert(!FD_ISSET(wake_sds[0], &readfds));
1040 FD_SET( wake_sds[0], &readfds );
1042 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1043 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
1045 if (!FD_ISSET(slap_listeners[l]->sl_sd, &readfds))
1046 FD_SET( slap_listeners[l]->sl_sd, &readfds );
1049 #ifndef HAVE_WINSOCK
1050 nfds = slap_daemon.sd_nfds;
1055 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
1057 at = ldap_pvt_thread_pool_backload(&connection_pool);
1059 #if defined( HAVE_YIELDING_SELECT ) || defined( NO_THREADS )
1062 tvp = at ? &zero : NULL;
1065 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1066 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
1070 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
1071 "slapd_daemon_task: select: listen=%d active_threads=%d tvp=%s\n",
1072 slap_listeners[l]->sl_sd, at, tvp == NULL ? "NULL" : "zero" ));
1074 Debug( LDAP_DEBUG_CONNS,
1075 "daemon: select: listen=%d active_threads=%d tvp=%s\n",
1076 slap_listeners[l]->sl_sd, at,
1077 tvp == NULL ? "NULL" : "zero" );
1081 switch(ns = select( nfds, &readfds,
1083 /* don't pass empty fd_set */
1084 ( writefds.fd_count > 0 ? &writefds : NULL ),
1090 case -1: { /* failure - try again */
1091 int err = sock_errno();
1095 /* you'd think this would be EBADF */
1096 || err == WSAENOTSOCK
1099 if (++ebadf < SLAPD_EBADF_LIMIT)
1103 if( err != EINTR ) {
1105 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
1106 "slapd_daemon_task: select failed (%d): %s\n",
1107 err, sock_errstr(err) ));
1109 Debug( LDAP_DEBUG_CONNS,
1110 "daemon: select failed (%d): %s\n",
1111 err, sock_errstr(err), 0 );
1113 slapd_shutdown = -1;
1118 case 0: /* timeout - let threads run */
1121 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1122 "slapd_daemon_task: select timeout - yielding\n" ));
1124 Debug( LDAP_DEBUG_CONNS, "daemon: select timeout - yielding\n",
1127 ldap_pvt_thread_yield();
1130 default: /* something happened - deal with it */
1131 if( slapd_shutdown ) continue;
1135 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1136 "slapd_daemon_task: activity on %d descriptors\n", ns ));
1138 Debug( LDAP_DEBUG_CONNS, "daemon: activity on %d descriptors\n",
1144 if( FD_ISSET( wake_sds[0], &readfds ) ) {
1146 tcp_read( wake_sds[0], c, sizeof(c) );
1153 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1155 socklen_t len = sizeof(from);
1158 char *authid = NULL;
1160 char *dnsname = NULL;
1162 #ifdef LDAP_PF_LOCAL
1163 char peername[MAXPATHLEN + sizeof("PATH=")];
1164 #elif defined(LDAP_PF_INET6)
1165 char peername[sizeof("IP=ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff 65535")];
1167 char peername[sizeof("IP=255.255.255.255:65336")];
1168 #endif /* LDAP_PF_LOCAL */
1172 if ( slap_listeners[l]->sl_sd == AC_SOCKET_INVALID )
1175 if ( !FD_ISSET( slap_listeners[l]->sl_sd, &readfds ) )
1178 #ifdef LDAP_CONNECTIONLESS
1179 if ( slap_listeners[l]->sl_is_udp )
1181 /* The first time we receive a query, we set this
1182 * up as a "connection". It remains open for the life
1185 if ( slap_listeners[l]->sl_is_udp < 2 )
1187 id = connection_init(
1188 slap_listeners[l]->sl_sd,
1189 slap_listeners[l]->sl_url, "", "",
1190 slap_listeners[l]->sl_name,
1192 slap_listeners[l]->sl_is_udp++;
1198 s = accept( slap_listeners[l]->sl_sd,
1199 (struct sockaddr *) &from, &len );
1200 if ( s == AC_SOCKET_INVALID ) {
1201 int err = sock_errno();
1204 if( err == EMFILE ) {
1209 if( err == ENFILE ) {
1219 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
1220 "slapd_daemon_task: accept(%ld) failed errno=%d (%s)\n",
1221 (long)slap_listeners[l]->sl_sd, err, sock_errstr(err) ));
1223 Debug( LDAP_DEBUG_ANY,
1224 "daemon: accept(%ld) failed errno=%d (%s)\n",
1225 (long) slap_listeners[l]->sl_sd, err,
1229 /* prevent busy loop */
1231 if( emfile % 4 == 3 ) usleep( 250 );
1233 if( emfile % 8 == 7 ) sleep( 1 );
1237 ldap_pvt_thread_yield();
1242 #ifndef HAVE_WINSOCK
1243 /* make sure descriptor number isn't too great */
1244 if ( s >= dtblsize ) {
1246 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
1247 "slapd_daemon_task: %ld beyond descriptor table size %ld\n",
1248 (long)s, (long)dtblsize ));
1250 Debug( LDAP_DEBUG_ANY,
1251 "daemon: %ld beyond descriptor table size %ld\n",
1252 (long) s, (long) dtblsize, 0 );
1256 ldap_pvt_thread_yield();
1262 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
1264 /* newly accepted stream should not be in any of the FD SETS */
1265 assert( !FD_ISSET( s, &slap_daemon.sd_actives) );
1266 assert( !FD_ISSET( s, &slap_daemon.sd_readers) );
1267 assert( !FD_ISSET( s, &slap_daemon.sd_writers) );
1269 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
1272 #if defined( SO_KEEPALIVE ) || defined( TCP_NODELAY )
1273 #ifdef LDAP_PF_LOCAL
1274 /* for IPv4 and IPv6 sockets only */
1275 if ( from.sa_addr.sa_family != AF_LOCAL )
1276 #endif /* LDAP_PF_LOCAL */
1281 /* enable keep alives */
1283 rc = setsockopt( s, SOL_SOCKET, SO_KEEPALIVE,
1284 (char *) &tmp, sizeof(tmp) );
1285 if ( rc == AC_SOCKET_ERROR ) {
1286 int err = sock_errno();
1288 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
1289 "slapd_daemon_task: setsockopt( %ld, SO_KEEPALIVE) failed errno=%d (%s)\n",
1290 (long)s, err, sock_errstr(err) ));
1292 Debug( LDAP_DEBUG_ANY,
1293 "slapd(%ld): setsockopt(SO_KEEPALIVE) failed "
1294 "errno=%d (%s)\n", (long) s, err, sock_errstr(err) );
1299 /* enable no delay */
1301 rc = setsockopt( s, IPPROTO_TCP, TCP_NODELAY,
1302 (char *)&tmp, sizeof(tmp) );
1303 if ( rc == AC_SOCKET_ERROR ) {
1304 int err = sock_errno();
1306 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
1307 "slapd_daemon_task: setsockopt( %ld, TCP_NODELAY) failed errno=%d (%s)\n",
1308 (long)s, err, sock_errstr(err) ));
1310 Debug( LDAP_DEBUG_ANY,
1311 "slapd(%ld): setsockopt(TCP_NODELAY) failed "
1312 "errno=%d (%s)\n", (long) s, err, sock_errstr(err) );
1320 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL1,
1321 "slapd_daemon_task: new connection on %ld\n", (long)s ));
1323 Debug( LDAP_DEBUG_CONNS, "daemon: new connection on %ld\n",
1326 switch ( from.sa_addr.sa_family ) {
1327 # ifdef LDAP_PF_LOCAL
1329 sprintf( peername, "PATH=%s", from.sa_un_addr.sun_path );
1330 ssf = LDAP_PVT_SASL_LOCAL_SSF;
1332 #endif /* LDAP_PF_LOCAL */
1334 # ifdef LDAP_PF_INET6
1336 if ( IN6_IS_ADDR_V4MAPPED(&from.sa_in6_addr.sin6_addr) ) {
1337 peeraddr = inet_ntoa( *((struct in_addr *)
1338 &from.sa_in6_addr.sin6_addr.s6_addr[12]) );
1339 sprintf( peername, "IP=%s:%d",
1340 peeraddr != NULL ? peeraddr : "unknown",
1341 (unsigned) ntohs( from.sa_in6_addr.sin6_port ) );
1343 char addr[INET6_ADDRSTRLEN];
1344 sprintf( peername, "IP=%s %d",
1345 inet_ntop( AF_INET6,
1346 &from.sa_in6_addr.sin6_addr,
1347 addr, sizeof addr) ? addr : "unknown",
1348 (unsigned) ntohs( from.sa_in6_addr.sin6_port ) );
1351 # endif /* LDAP_PF_INET6 */
1354 peeraddr = inet_ntoa( from.sa_in_addr.sin_addr );
1355 sprintf( peername, "IP=%s:%d",
1356 peeraddr != NULL ? peeraddr : "unknown",
1357 (unsigned) ntohs( from.sa_in_addr.sin_port ) );
1365 if ( ( from.sa_addr.sa_family == AF_INET )
1366 #ifdef LDAP_PF_INET6
1367 || ( from.sa_addr.sa_family == AF_INET6 )
1370 #ifdef SLAPD_RLOOKUPS
1371 # ifdef LDAP_PF_INET6
1372 if ( from.sa_addr.sa_family == AF_INET6 )
1374 (char *)&(from.sa_in6_addr.sin6_addr),
1375 sizeof(from.sa_in6_addr.sin6_addr),
1378 # endif /* LDAP_PF_INET6 */
1380 (char *) &(from.sa_in_addr.sin_addr),
1381 sizeof(from.sa_in_addr.sin_addr),
1383 dnsname = hp ? ldap_pvt_str2lower( hp->h_name ) : NULL;
1386 #endif /* SLAPD_RLOOKUPS */
1389 if ( !hosts_ctl("slapd",
1390 dnsname != NULL ? dnsname : STRING_UNKNOWN,
1391 peeraddr != NULL ? peeraddr : STRING_UNKNOWN,
1395 Statslog( LDAP_DEBUG_ANY,
1396 "fd=%ld host access from %s (%s) denied.\n",
1398 dnsname != NULL ? dnsname : "unknown",
1399 peeraddr != NULL ? peeraddr : "unknown",
1404 #endif /* HAVE_TCPD */
1407 id = connection_init(s,
1408 slap_listeners[l]->sl_url,
1409 dnsname != NULL ? dnsname : "unknown",
1411 slap_listeners[l]->sl_name,
1413 slap_listeners[l]->sl_is_tls,
1420 if( authid ) ch_free(authid);
1424 LDAP_LOG(( "connection", LDAP_LEVEL_INFO,
1425 "slapd_daemon_task: connection_init(%ld, %s, %s) failed.\n",
1426 (long)s, peername, slap_listeners[l]->sl_name ));
1428 Debug( LDAP_DEBUG_ANY,
1429 "daemon: connection_init(%ld, %s, %s) failed.\n",
1432 slap_listeners[l]->sl_name );
1438 Statslog( LDAP_DEBUG_STATS,
1439 "daemon: conn=%ld fd=%ld connection from %s (%s) accepted.\n",
1442 slap_listeners[l]->sl_name,
1451 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1452 "slapd_daemon_task: activity on " ));
1454 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:", 0, 0, 0 );
1457 for ( i = 0; i < readfds.fd_count; i++ ) {
1459 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1460 " %d%s", readfds.fd_array[i], "r", 0 ));
1462 Debug( LDAP_DEBUG_CONNS, " %d%s",
1463 readfds.fd_array[i], "r", 0 );
1466 for ( i = 0; i < writefds.fd_count; i++ ) {
1468 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1469 " %d%s", writefds.fd_array[i], "w" ));
1471 Debug( LDAP_DEBUG_CONNS, " %d%s",
1472 writefds.fd_array[i], "w", 0 );
1477 for ( i = 0; i < nfds; i++ ) {
1479 int is_listener = 0;
1481 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1482 if ( i == slap_listeners[l]->sl_sd ) {
1483 #ifdef LDAP_CONNECTIONLESS
1484 /* The listener is the data port. Don't
1487 if (slap_listeners[l]->sl_is_udp)
1494 if ( is_listener ) {
1497 r = FD_ISSET( i, &readfds );
1498 w = FD_ISSET( i, &writefds );
1501 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1503 r ? "r" : "", w ? "w" : "" ));
1505 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i,
1506 r ? "r" : "", w ? "w" : "" );
1512 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2, "\n" ));
1514 Debug( LDAP_DEBUG_CONNS, "\n", 0, 0, 0 );
1519 /* loop through the writers */
1521 for ( i = 0; i < writefds.fd_count; i++ )
1523 for ( i = 0; i < nfds; i++ )
1527 int is_listener = 0;
1529 wd = writefds.fd_array[i];
1531 if( ! FD_ISSET( i, &writefds ) ) {
1537 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1538 if ( i == slap_listeners[l]->sl_sd ) {
1539 #ifdef LDAP_CONNECTIONLESS
1540 if (slap_listeners[l]->sl_is_udp)
1547 if ( is_listener ) {
1551 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1552 "slapd_daemon_task: write active on %d\n", wd ));
1554 Debug( LDAP_DEBUG_CONNS,
1555 "daemon: write active on %d\n",
1559 * NOTE: it is possible that the connection was closed
1560 * and that the stream is now inactive.
1561 * connection_write() must valid the stream is still
1565 if ( connection_write( wd ) < 0 ) {
1566 FD_CLR( (unsigned) wd, &readfds );
1572 for ( i = 0; i < readfds.fd_count; i++ )
1574 for ( i = 0; i < nfds; i++ )
1578 int is_listener = 0;
1581 rd = readfds.fd_array[i];
1583 if( ! FD_ISSET( i, &readfds ) ) {
1589 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1590 if ( rd == slap_listeners[l]->sl_sd ) {
1591 #ifdef LDAP_CONNECTIONLESS
1592 if (slap_listeners[l]->sl_is_udp)
1599 if ( is_listener ) {
1604 LDAP_LOG(( "connection", LDAP_LEVEL_DETAIL2,
1605 "slapd_daemon_task: read activity on %d\n", rd ));
1607 Debug ( LDAP_DEBUG_CONNS,
1608 "daemon: read activity on %d\n", rd, 0, 0 );
1611 * NOTE: it is possible that the connection was closed
1612 * and that the stream is now inactive.
1613 * connection_read() must valid the stream is still
1617 if ( connection_read( rd ) < 0 ) {
1621 ldap_pvt_thread_yield();
1624 if( slapd_shutdown > 0 ) {
1626 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1627 "slapd_daemon_task: shutdown requested and initiated.\n"));
1629 Debug( LDAP_DEBUG_TRACE,
1630 "daemon: shutdown requested and initiated.\n",
1634 } else if ( slapd_shutdown < 0 ) {
1635 #ifdef HAVE_NT_SERVICE_MANAGER
1636 if (slapd_shutdown == -1)
1639 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1640 "slapd_daemon_task: shutdown initiated by Service Manager.\n"));
1642 Debug( LDAP_DEBUG_TRACE,
1643 "daemon: shutdown initiated by Service Manager.\n",
1651 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1652 "slapd_daemon_task: abnormal condition, shutdown initiated.\n" ));
1654 Debug( LDAP_DEBUG_TRACE,
1655 "daemon: abnormal condition, shutdown initiated.\n",
1661 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1662 "slapd_daemon_task: no active streams, shutdown initiated.\n" ));
1664 Debug( LDAP_DEBUG_TRACE,
1665 "daemon: no active streams, shutdown initiated.\n",
1670 for ( l = 0; slap_listeners[l] != NULL; l++ ) {
1671 if ( slap_listeners[l]->sl_sd != AC_SOCKET_INVALID ) {
1672 #ifdef LDAP_PF_LOCAL
1673 if ( slap_listeners[l]->sl_sa.sa_addr.sa_family == AF_LOCAL ) {
1674 unlink( slap_listeners[l]->sl_sa.sa_un_addr.sun_path );
1676 #endif /* LDAP_PF_LOCAL */
1677 slapd_close( slap_listeners[l]->sl_sd );
1683 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1684 "slapd_daemon_task: shutdown waiting for %d threads to terminate.\n",
1685 ldap_pvt_thread_pool_backload(&connection_pool) ));
1687 Debug( LDAP_DEBUG_ANY,
1688 "slapd shutdown: waiting for %d threads to terminate\n",
1689 ldap_pvt_thread_pool_backload(&connection_pool), 0, 0 );
1691 ldap_pvt_thread_pool_destroy(&connection_pool, 1);
1697 int slapd_daemon( void )
1703 #define SLAPD_LISTENER_THREAD 1
1704 #if defined( SLAPD_LISTENER_THREAD )
1706 ldap_pvt_thread_t listener_tid;
1708 /* listener as a separate THREAD */
1709 rc = ldap_pvt_thread_create( &listener_tid,
1710 0, slapd_daemon_task, NULL );
1714 LDAP_LOG(( "connection", LDAP_LEVEL_ERR,
1715 "slapd_daemon: listener ldap_pvt_thread_create failed (%d).\n", rc ));
1717 Debug( LDAP_DEBUG_ANY,
1718 "listener ldap_pvt_thread_create failed (%d)\n", rc, 0, 0 );
1723 /* wait for the listener thread to complete */
1724 ldap_pvt_thread_join( listener_tid, (void *) NULL );
1727 /* experimental code */
1728 slapd_daemon_task( NULL );
1737 #if defined( HAVE_WINSOCK2 )
1738 WORD wVersionRequested;
1742 wVersionRequested = MAKEWORD( 2, 0 );
1744 err = WSAStartup( wVersionRequested, &wsaData );
1746 /* Tell the user that we couldn't find a usable */
1751 /* Confirm that the WinSock DLL supports 2.0.*/
1752 /* Note that if the DLL supports versions greater */
1753 /* than 2.0 in addition to 2.0, it will still return */
1754 /* 2.0 in wVersion since that is the version we */
1757 if ( LOBYTE( wsaData.wVersion ) != 2 ||
1758 HIBYTE( wsaData.wVersion ) != 0 )
1760 /* Tell the user that we couldn't find a usable */
1766 /* The WinSock DLL is acceptable. Proceed. */
1767 #elif defined( HAVE_WINSOCK )
1769 if ( WSAStartup( 0x0101, &wsaData ) != 0 ) {
1776 int sockdestroy(void)
1778 #if defined( HAVE_WINSOCK2 ) || defined( HAVE_WINSOCK )
1785 slap_sig_shutdown( int sig )
1788 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1789 "slap_sig_shutdown: signal %d\n", sig ));
1791 Debug(LDAP_DEBUG_TRACE, "slap_sig_shutdown: signal %d\n", sig, 0, 0);
1795 * If the NT Service Manager is controlling the server, we don't
1796 * want SIGBREAK to kill the server. For some strange reason,
1797 * SIGBREAK is generated when a user logs out.
1800 #if HAVE_NT_SERVICE_MANAGER && SIGBREAK
1801 if (is_NT_Service && sig == SIGBREAK)
1803 LDAP_LOG(( "connection", LDAP_LEVEL_CRIT,
1804 "slap_sig_shutdown: SIGBREAK ignored.\n" ));
1806 Debug(LDAP_DEBUG_TRACE, "slap_sig_shutdown: SIGBREAK ignored.\n",
1811 slapd_shutdown = sig;
1815 /* reinstall self */
1816 (void) SIGNAL_REINSTALL( sig, slap_sig_shutdown );
1820 slap_sig_wake( int sig )
1824 /* reinstall self */
1825 (void) SIGNAL_REINSTALL( sig, slap_sig_wake );
1829 void slapd_add_internal(ber_socket_t s) {
projects / openldap / blob