11 #include <ac/unistd.h>
13 #include "ldap_defaults.h"
19 int allow_severity = LOG_INFO;
20 int deny_severity = LOG_NOTICE;
21 #endif /* TCP Wrappers */
24 ber_socket_t dtblsize;
32 struct sockaddr_in *addr;
34 } listeners[N_LISTENERS];
38 extern ldap_pvt_thread_cond_t started_event;
40 /* forward reference */
43 char *WSAGetLastErrorString();
44 static ldap_pvt_thread_t hit_tid;
46 #define WAKE_LISTENER(w) \
49 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );\
54 #define WAKE_LISTENER(w) \
57 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );\
65 volatile sig_atomic_t slapd_shutdown = 0;
67 static int daemon_initialized = 0;
68 static ldap_pvt_thread_t listener_tid;
69 static volatile sig_atomic_t slapd_listener = 0;
73 ldap_pvt_thread_mutex_t sd_mutex;
78 /* In winsock, accept() returns values higher than dtblsize
79 so don't bother with this optimization */
89 * Add a descriptor to daemon control
91 static void slapd_add(ber_socket_t s) {
92 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
94 assert( !FD_ISSET( s, &slap_daemon.sd_actives ));
95 assert( !FD_ISSET( s, &slap_daemon.sd_readers ));
96 assert( !FD_ISSET( s, &slap_daemon.sd_writers ));
99 if (s >= slap_daemon.sd_nfds) {
100 slap_daemon.sd_nfds = s + 1;
104 FD_SET( s, &slap_daemon.sd_actives );
105 FD_SET( s, &slap_daemon.sd_readers );
107 Debug( LDAP_DEBUG_CONNS, "daemon: added %ld%s%s\n",
109 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
110 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
112 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
116 * Remove the descriptor from daemon control
118 void slapd_remove(ber_socket_t s, int wake) {
119 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
122 Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n",
124 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
125 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
127 FD_CLR( s, &slap_daemon.sd_actives );
128 FD_CLR( s, &slap_daemon.sd_readers );
129 FD_CLR( s, &slap_daemon.sd_writers );
131 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
134 void slapd_clr_write(ber_socket_t s, int wake) {
135 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
138 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
139 FD_CLR( s, &slap_daemon.sd_writers );
141 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
144 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
148 void slapd_set_write(ber_socket_t s, int wake) {
149 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
152 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
153 FD_SET( (unsigned) s, &slap_daemon.sd_writers );
155 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
158 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
162 void slapd_clr_read(ber_socket_t s, int wake) {
163 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
166 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
167 FD_CLR( s, &slap_daemon.sd_readers );
169 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
172 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
176 void slapd_set_read(ber_socket_t s, int wake) {
177 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
180 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
181 FD_SET( s, &slap_daemon.sd_readers );
183 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
186 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
190 static void slapd_close(ber_socket_t s) {
191 Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n",
199 set_socket( struct sockaddr_in *addr )
201 ber_socket_t tcps = AC_SOCKET_INVALID;
203 if ( !daemon_initialized ) sockinit();
206 dtblsize = sysconf( _SC_OPEN_MAX );
207 #elif HAVE_GETDTABLESIZE
208 dtblsize = getdtablesize();
210 dtblsize = FD_SETSIZE;
214 if(dtblsize > FD_SETSIZE) {
215 dtblsize = FD_SETSIZE;
217 #endif /* !FD_SETSIZE */
222 if ( (tcps = socket( AF_INET, SOCK_STREAM, 0 )) == AC_SOCKET_INVALID ) {
225 Debug( LDAP_DEBUG_ANY,
226 "daemon: socket() failed errno %d (%s)\n", err,
227 err > -1 && err < sys_nerr ? sys_errlist[err] :
230 Debug( LDAP_DEBUG_ANY,
231 "daemon: socket() failed errno %d (%s)\n",
233 WSAGetLastErrorString(), 0 );
239 if ( tcps >= dtblsize ) {
240 Debug( LDAP_DEBUG_ANY,
241 "daemon: listener descriptor %ld is too great %ld\n",
242 (long) tcps, (long) dtblsize, 0 );
249 if ( setsockopt( tcps, SOL_SOCKET, SO_REUSEADDR,
250 (char *) &tmp, sizeof(tmp) ) == -1 )
253 Debug( LDAP_DEBUG_ANY,
254 "slapd(%ld): setsockopt() failed errno %d (%s)\n",
256 err > -1 && err < sys_nerr
257 ? sys_errlist[err] : "unknown" );
262 if ( setsockopt( tcps, SOL_SOCKET, SO_KEEPALIVE,
263 (char *) &tmp, sizeof(tmp) ) == -1 )
266 Debug( LDAP_DEBUG_ANY,
267 "slapd(%ld): setsockopt(KEEPALIVE) failed errno %d (%s)\n",
269 err > -1 && err < sys_nerr
270 ? sys_errlist[err] : "unknown" );
275 if ( bind( tcps, (struct sockaddr *) addr, sizeof(*addr) ) == -1 ) {
277 Debug( LDAP_DEBUG_ANY, "daemon: bind(%ld) failed errno %d (%s)\n",
279 err > -1 && err < sys_nerr
280 ? sys_errlist[err] : "unknown" );
294 struct slapd_args *args = (struct slapd_args *) ptr;
297 listeners[0].tcps = args->tcps;
298 listeners[0].addr = args->addr;
299 listeners[0].use_tls = 0;
301 listeners[1].tcps = args->tls_tcps;
302 listeners[1].addr = args->tls_addr;
303 listeners[1].use_tls = 1;
306 inetd = ( listeners[0].addr == NULL);
307 if ( !daemon_initialized ) sockinit();
311 ldap_pvt_thread_mutex_init( &slap_daemon.sd_mutex );
312 FD_ZERO( &slap_daemon.sd_readers );
313 FD_ZERO( &slap_daemon.sd_writers );
316 for ( l = 0; l < N_LISTENERS; l++ ) {
317 if ( listeners[l].tcps < 0 )
319 if ( listen( listeners[l].tcps, 5 ) == -1 ) {
321 Debug( LDAP_DEBUG_ANY,
322 "daemon: listen(%ld, 5) failed errno %d (%s)\n",
323 (long) listeners[l].tcps, err,
324 err > -1 && err < sys_nerr
325 ? sys_errlist[err] : "unknown" );
329 slapd_add( listeners[l].tcps );
333 if( connection_init( (ber_socket_t) 0, NULL, NULL, 0 ) ) {
334 Debug( LDAP_DEBUG_ANY,
335 "connection_init(%d) failed.\n",
344 if ( started_event != NULL )
345 ldap_pvt_thread_cond_signal( &started_event );
347 /* initialization complete. Here comes the loop. */
349 while ( !slapd_shutdown ) {
354 #define SLAPD_EBADF_LIMIT 10
357 #define SLAPD_IDLE_CHECK_LIMIT 4
358 time_t last_idle_check = slap_get_time();
365 struct sockaddr_in from;
366 #if defined(SLAPD_RLOOKUPS) || defined(HAVE_TCPD)
375 if( global_idletimeout > 0 && difftime(
376 last_idle_check+global_idletimeout/SLAPD_IDLE_CHECK_LIMIT,
379 connections_timeout_idle(now);
382 FD_ZERO( &writefds );
388 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
390 #ifdef FD_SET_MANUAL_COPY
391 for( s = 0; s < nfds; s++ ) {
392 if(FD_ISSET( &slap_sd_writers, s )) {
393 FD_SET( &writefds, s );
395 if(FD_ISSET( &slap_sd_writers, s )) {
396 FD_SET( &writefds, s );
400 memcpy( &readfds, &slap_daemon.sd_readers, sizeof(fd_set) );
401 memcpy( &writefds, &slap_daemon.sd_writers, sizeof(fd_set) );
404 for ( l = 0; l < N_LISTENERS; l++ ) {
405 if ( listeners[l].tcps < 0 )
407 FD_SET( (unsigned) listeners[l].tcps, &readfds );
411 nfds = slap_daemon.sd_nfds;
416 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
418 ldap_pvt_thread_mutex_lock( &active_threads_mutex );
420 ldap_pvt_thread_mutex_unlock( &active_threads_mutex );
422 #if defined( HAVE_YIELDING_SELECT ) || defined( NO_THREADS )
425 tvp = at ? &zero : NULL;
428 for ( i = 0; i < N_LISTENERS; i++ ) {
429 if ( listeners[l].tcps < 0 )
431 Debug( LDAP_DEBUG_CONNS,
432 "daemon: select: tcps=%d active_threads=%d tvp=%s\n",
433 listeners[i].tcps, at,
434 tvp == NULL ? "NULL" : "zero" );
437 switch(ns = select( nfds, &readfds,
439 /* don't pass empty fd_set */
440 ( writefds.fd_count > 0 ? &writefds : NULL ),
446 case -1: { /* failure - try again */
448 int err = WSAGetLastError();
453 if( err == EBADF && ++ebadf < SLAPD_EBADF_LIMIT) {
458 Debug( LDAP_DEBUG_CONNS,
459 "daemon: select failed (%d): %s\n",
461 err >= 0 && err < sys_nerr
462 ? sys_errlist[err] : "unknown",
471 case 0: /* timeout - let threads run */
473 Debug( LDAP_DEBUG_CONNS, "daemon: select timeout - yielding\n",
475 ldap_pvt_thread_yield();
478 default: /* something happened - deal with it */
480 Debug( LDAP_DEBUG_CONNS, "daemon: activity on %d descriptors\n",
485 for ( l = 0; l < N_LISTENERS; l++ ) {
487 socklen_t len = sizeof(from);
490 if ( listeners[l].tcps < 0 )
492 if ( !FD_ISSET( listeners[l].tcps, &readfds ) )
495 if ( (s = accept( listeners[l].tcps,
496 (struct sockaddr *) &from, &len )) == AC_SOCKET_INVALID )
499 Debug( LDAP_DEBUG_ANY,
500 "daemon: accept(%ld) failed errno %d (%s)\n", err,
501 (long) listeners[l].tcps,
502 err >= 0 && err < sys_nerr ?
503 sys_errlist[err] : "unknown");
508 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
510 /* newly accepted stream should not be in any of the FD SETS */
512 assert( !FD_ISSET( s, &slap_daemon.sd_actives) );
513 assert( !FD_ISSET( s, &slap_daemon.sd_readers) );
514 assert( !FD_ISSET( s, &slap_daemon.sd_writers) );
516 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
520 /* make sure descriptor number isn't too great */
521 if ( s >= dtblsize ) {
522 Debug( LDAP_DEBUG_ANY,
523 "daemon: %ld beyond descriptor table size %ld\n",
524 (long) s, (long) dtblsize, 0 );
530 Debug( LDAP_DEBUG_CONNS, "daemon: new connection on %ld\n",
534 if ( getpeername( s, (struct sockaddr *) &from, &len ) == 0 ) {
535 client_addr = inet_ntoa( from.sin_addr );
537 #if defined(SLAPD_RLOOKUPS) || defined(HAVE_TCPD)
538 hp = gethostbyaddr( (char *)
539 &(from.sin_addr.s_addr),
540 sizeof(from.sin_addr.s_addr), AF_INET );
544 client_name = hp->h_name;
546 /* normalize the domain */
547 for ( p = client_name; *p; p++ ) {
548 *p = TOLOWER( (unsigned char) *p );
564 if(!hosts_ctl("slapd",
565 client_name != NULL ? client_name : STRING_UNKNOWN,
566 client_addr != NULL ? client_addr : STRING_UNKNOWN,
570 Statslog( LDAP_DEBUG_ANY,
571 "fd=%ld connection from %s (%s) denied.\n",
573 client_name == NULL ? "unknown" : client_name,
574 client_addr == NULL ? "unknown" : client_addr,
580 #endif /* HAVE_TCPD */
582 if( (id = connection_init(s, client_name, client_addr,
583 listeners[l].use_tls)) < 0 ) {
584 Debug( LDAP_DEBUG_ANY,
585 "daemon: connection_init(%ld, %s, %s) failed.\n",
587 client_name == NULL ? "unknown" : client_name,
588 client_addr == NULL ? "unknown" : client_addr);
593 Statslog( LDAP_DEBUG_STATS,
594 "daemon: conn=%d fd=%ld connection from %s (%s) accepted.\n",
596 client_name == NULL ? "unknown" : client_name,
597 client_addr == NULL ? "unknown" : client_addr,
605 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:", 0, 0, 0 );
607 for ( i = 0; i < readfds.fd_count; i++ ) {
608 Debug( LDAP_DEBUG_CONNS, " %d%s",
609 readfds.fd_array[i], "r", 0 );
611 for ( i = 0; i < writefds.fd_count; i++ ) {
612 Debug( LDAP_DEBUG_CONNS, " %d%s",
613 writefds.fd_array[i], "w", 0 );
616 for ( i = 0; i < nfds; i++ ) {
620 for ( l = 0; l < N_LISTENERS; l++ ) {
621 if ( i == listeners[l].tcps ) {
629 r = FD_ISSET( i, &readfds );
630 w = FD_ISSET( i, &writefds );
632 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i,
633 r ? "r" : "", w ? "w" : "" );
637 Debug( LDAP_DEBUG_CONNS, "\n", 0, 0, 0 );
640 /* loop through the writers */
642 for ( i = 0; i < writefds.fd_count; i++ )
644 for ( i = 0; i < nfds; i++ )
650 wd = writefds.fd_array[i];
652 if( ! FD_ISSET( i, &writefds ) ) {
658 for ( l = 0; l < N_LISTENERS; l++ ) {
659 if ( wd == listeners[l].tcps ) {
667 Debug( LDAP_DEBUG_CONNS,
668 "daemon: write active on %d\n",
672 * NOTE: it is possible that the connection was closed
673 * and that the stream is now inactive.
674 * connection_write() must valid the stream is still
678 if ( connection_write( wd ) < 0 ) {
679 FD_CLR( (unsigned) wd, &readfds );
685 for ( i = 0; i < readfds.fd_count; i++ )
687 for ( i = 0; i < nfds; i++ )
695 rd = readfds.fd_array[i];
697 if( ! FD_ISSET( i, &readfds ) ) {
703 for ( l = 0; l < N_LISTENERS; l++ ) {
704 if ( rd == listeners[l].tcps ) {
713 Debug ( LDAP_DEBUG_CONNS,
714 "daemon: read activity on %d\n", rd, 0, 0 );
717 * NOTE: it is possible that the connection was closed
718 * and that the stream is now inactive.
719 * connection_read() must valid the stream is still
723 while ( ( rc = connection_read( rd ) ) > 0 )
729 ldap_pvt_thread_yield();
732 if( slapd_shutdown > 0 ) {
733 Debug( LDAP_DEBUG_TRACE,
734 "daemon: shutdown requested and initiated.\n",
737 } else if ( slapd_shutdown < 0 ) {
738 Debug( LDAP_DEBUG_TRACE,
739 "daemon: abnormal condition, shutdown initiated.\n",
742 Debug( LDAP_DEBUG_TRACE,
743 "daemon: no active streams, shutdown initiated.\n",
747 for ( l = 0; l < N_LISTENERS; l++ ) {
748 if ( listeners[l].tcps >= 0 ) {
749 slapd_close( listeners[l].tcps );
753 ldap_pvt_thread_mutex_lock( &active_threads_mutex );
754 Debug( LDAP_DEBUG_ANY,
755 "slapd shutdown: waiting for %d threads to terminate\n",
756 active_threads, 0, 0 );
757 while ( active_threads > 0 ) {
758 ldap_pvt_thread_cond_wait(&active_threads_cond, &active_threads_mutex);
760 ldap_pvt_thread_mutex_unlock( &active_threads_mutex );
766 int slapd_daemon( struct slapd_args *args )
770 if ( !daemon_initialized ) sockinit();
774 #define SLAPD_LISTENER_THREAD 1
775 #if defined( SLAPD_LISTENER_THREAD ) || !defined(HAVE_PTHREADS)
777 /* listener as a separate THREAD */
778 rc = ldap_pvt_thread_create( &listener_tid,
779 0, slapd_daemon_task, args );
782 Debug( LDAP_DEBUG_ANY,
783 "listener ldap_pvt_thread_create failed (%d)\n", rc, 0, 0 );
787 /* wait for the listener thread to complete */
788 ldap_pvt_thread_join( listener_tid, (void *) NULL );
790 /* expermimental code */
791 listener_tid = pthread_self();
792 slapd_daemon_task( args );
798 connections_destroy();
810 WORD wVersionRequested;
814 wVersionRequested = MAKEWORD( 2, 0 );
816 err = WSAStartup( wVersionRequested, &wsaData );
818 /* Tell the user that we couldn't find a usable */
823 /* Confirm that the WinSock DLL supports 2.0.*/
824 /* Note that if the DLL supports versions greater */
825 /* than 2.0 in addition to 2.0, it will still return */
826 /* 2.0 in wVersion since that is the version we */
829 if ( LOBYTE( wsaData.wVersion ) != 2 ||
830 HIBYTE( wsaData.wVersion ) != 0 )
832 /* Tell the user that we couldn't find a usable */
837 daemon_initialized = 1;
838 } /* The WinSock DLL is acceptable. Proceed. */
844 extern struct sockaddr_in bind_addr;
846 /* throw something at the socket to terminate the select() in the daemon thread. */
847 if (( s = socket( AF_INET, SOCK_STREAM, 0 )) == AC_SOCKET_INVALID )
848 Debug( LDAP_DEBUG_ANY,
849 "slap_set_shutdown: socket failed\n\tWSAGetLastError=%d (%s)\n",
850 WSAGetLastError(), WSAGetLastErrorString(), 0 );
852 if ( ioctlsocket( s, FIONBIO, &on ) == -1 )
853 Debug( LDAP_DEBUG_ANY,
854 "slap_set_shutdown:FIONBIO ioctl on %d faled\n\tWSAGetLastError=%d (%s)\n",
855 s, WSAGetLastError(), WSAGetLastError() );
857 bind_addr.sin_addr.s_addr = htonl( INADDR_LOOPBACK );
859 if ( connect( s, (struct sockaddr *)&bind_addr, sizeof( struct sockaddr_in )) == SOCKET_ERROR ) {
860 Debug( LDAP_DEBUG_ANY,
861 "hit_socket: error on connect: %d\n",
862 WSAGetLastError(), 0, 0 );
863 /* we can probably expect some error to occur here, mostly WSAEWOULDBLOCK */
872 if ( WSAStartup( 0x0101, &wsaData ) != 0 ) {
875 daemon_initialized = 1;
880 daemon_initialized = 1;
885 slap_set_shutdown( int sig )
888 slapd_shutdown = sig;
891 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
894 Debug( LDAP_DEBUG_TRACE, "Shutdown %d ordered", sig, 0, 0 );
895 /* trying to "hit" the socket seems to always get a */
896 /* EWOULDBLOCK error, so just close the listen socket to */
897 /* break out of the select since we're shutting down anyway */
898 for ( l = 0; l < N_LISTENERS; l++ ) {
899 if ( listeners[l].tcps >= 0 ) {
900 tcp_close( listeners[l].tcps );
905 (void) SIGNAL( sig, slap_set_shutdown );
909 slap_do_nothing( int sig )
912 (void) SIGNAL( sig, slap_do_nothing );