11 #include <ac/unistd.h>
13 #include "ldap_defaults.h"
19 int allow_severity = LOG_INFO;
20 int deny_severity = LOG_NOTICE;
21 #endif /* TCP Wrappers */
24 ber_socket_t dtblsize;
32 struct sockaddr_in *addr;
34 } listeners[N_LISTENERS];
38 extern ldap_pvt_thread_cond_t started_event;
40 /* forward reference */
43 char *WSAGetLastErrorString();
44 static ldap_pvt_thread_t hit_tid;
46 #define WAKE_LISTENER(w) \
49 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );\
54 #define WAKE_LISTENER(w) \
57 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );\
65 volatile sig_atomic_t slapd_shutdown = 0;
67 static int daemon_initialized = 0;
68 static ldap_pvt_thread_t listener_tid;
69 static volatile sig_atomic_t slapd_listener = 0;
73 ldap_pvt_thread_mutex_t sd_mutex;
78 /* In winsock, accept() returns values higher than dtblsize
79 so don't bother with this optimization */
89 * Add a descriptor to daemon control
91 static void slapd_add(ber_socket_t s) {
92 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
94 assert( !FD_ISSET( s, &slap_daemon.sd_actives ));
95 assert( !FD_ISSET( s, &slap_daemon.sd_readers ));
96 assert( !FD_ISSET( s, &slap_daemon.sd_writers ));
99 if (s >= slap_daemon.sd_nfds) {
100 slap_daemon.sd_nfds = s + 1;
104 FD_SET( s, &slap_daemon.sd_actives );
105 FD_SET( s, &slap_daemon.sd_readers );
107 Debug( LDAP_DEBUG_CONNS, "daemon: added %ld%s%s\n",
109 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
110 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
112 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
116 * Remove the descriptor from daemon control
118 void slapd_remove(ber_socket_t s, int wake) {
119 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
122 Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n",
124 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
125 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
127 FD_CLR( s, &slap_daemon.sd_actives );
128 FD_CLR( s, &slap_daemon.sd_readers );
129 FD_CLR( s, &slap_daemon.sd_writers );
131 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
134 void slapd_clr_write(ber_socket_t s, int wake) {
135 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
138 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
139 FD_CLR( s, &slap_daemon.sd_writers );
141 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
144 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
148 void slapd_set_write(ber_socket_t s, int wake) {
149 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
152 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
153 FD_SET( (unsigned) s, &slap_daemon.sd_writers );
155 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
158 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
162 void slapd_clr_read(ber_socket_t s, int wake) {
163 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
166 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
167 FD_CLR( s, &slap_daemon.sd_readers );
169 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
172 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
176 void slapd_set_read(ber_socket_t s, int wake) {
177 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
180 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
181 FD_SET( s, &slap_daemon.sd_readers );
183 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
186 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
190 static void slapd_close(ber_socket_t s) {
191 Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n",
199 set_socket( struct sockaddr_in *addr )
201 ber_socket_t tcps = AC_SOCKET_INVALID;
203 if ( !daemon_initialized ) sockinit();
206 dtblsize = sysconf( _SC_OPEN_MAX );
207 #elif HAVE_GETDTABLESIZE
208 dtblsize = getdtablesize();
210 dtblsize = FD_SETSIZE;
214 if(dtblsize > FD_SETSIZE) {
215 dtblsize = FD_SETSIZE;
217 #endif /* !FD_SETSIZE */
222 if ( (tcps = socket( AF_INET, SOCK_STREAM, 0 )) == AC_SOCKET_INVALID ) {
225 Debug( LDAP_DEBUG_ANY,
226 "daemon: socket() failed errno %d (%s)\n", err,
227 err > -1 && err < sys_nerr ? sys_errlist[err] :
230 Debug( LDAP_DEBUG_ANY,
231 "daemon: socket() failed errno %d (%s)\n",
233 WSAGetLastErrorString(), 0 );
239 if ( tcps >= dtblsize ) {
240 Debug( LDAP_DEBUG_ANY,
241 "daemon: listener descriptor %ld is too great %ld\n",
242 (long) tcps, (long) dtblsize, 0 );
249 if ( setsockopt( tcps, SOL_SOCKET, SO_REUSEADDR,
250 (char *) &tmp, sizeof(tmp) ) == -1 )
253 Debug( LDAP_DEBUG_ANY,
254 "slapd(%ld): setsockopt() failed errno %d (%s)\n",
256 err > -1 && err < sys_nerr
257 ? sys_errlist[err] : "unknown" );
262 if ( setsockopt( tcps, SOL_SOCKET, SO_KEEPALIVE,
263 (char *) &tmp, sizeof(tmp) ) == -1 )
266 Debug( LDAP_DEBUG_ANY,
267 "slapd(%ld): setsockopt(KEEPALIVE) failed errno %d (%s)\n",
269 err > -1 && err < sys_nerr
270 ? sys_errlist[err] : "unknown" );
275 if ( bind( tcps, (struct sockaddr *) addr, sizeof(*addr) ) == -1 ) {
277 Debug( LDAP_DEBUG_ANY, "daemon: bind(%ld) failed errno %d (%s)\n",
279 err > -1 && err < sys_nerr
280 ? sys_errlist[err] : "unknown" );
294 struct slapd_args *args = (struct slapd_args *) ptr;
297 listeners[0].tcps = args->tcps;
298 listeners[0].addr = args->addr;
299 listeners[0].use_tls = 0;
301 listeners[1].tcps = args->tls_tcps;
302 listeners[1].addr = args->tls_addr;
303 listeners[1].use_tls = 1;
306 inetd = ( listeners[0].addr == NULL);
307 if ( !daemon_initialized ) sockinit();
311 ldap_pvt_thread_mutex_init( &slap_daemon.sd_mutex );
312 FD_ZERO( &slap_daemon.sd_readers );
313 FD_ZERO( &slap_daemon.sd_writers );
316 for ( l = 0; l < N_LISTENERS; l++ ) {
317 if ( listen( listeners[l].tcps, 5 ) == -1 ) {
319 Debug( LDAP_DEBUG_ANY,
320 "daemon: listen(%ld, 5) failed errno %d (%s)\n",
321 (long) listeners[l].tcps, err,
322 err > -1 && err < sys_nerr
323 ? sys_errlist[err] : "unknown" );
327 slapd_add( listeners[l].tcps );
331 if( connection_init( (ber_socket_t) 0, NULL, NULL ) ) {
332 Debug( LDAP_DEBUG_ANY,
333 "connection_init(%d) failed.\n",
342 if ( started_event != NULL )
343 ldap_pvt_thread_cond_signal( &started_event );
345 /* initialization complete. Here comes the loop. */
347 while ( !slapd_shutdown ) {
352 #define SLAPD_EBADF_LIMIT 10
355 #define SLAPD_IDLE_CHECK_LIMIT 4
356 time_t last_idle_check = slap_get_time();
363 struct sockaddr_in from;
364 #if defined(SLAPD_RLOOKUPS) || defined(HAVE_TCPD)
373 if( global_idletimeout > 0 && difftime(
374 last_idle_check+global_idletimeout/SLAPD_IDLE_CHECK_LIMIT,
377 connections_timeout_idle(now);
380 FD_ZERO( &writefds );
386 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
388 #ifdef FD_SET_MANUAL_COPY
389 for( s = 0; s < nfds; s++ ) {
390 if(FD_ISSET( &slap_sd_writers, s )) {
391 FD_SET( &writefds, s );
393 if(FD_ISSET( &slap_sd_writers, s )) {
394 FD_SET( &writefds, s );
398 memcpy( &readfds, &slap_daemon.sd_readers, sizeof(fd_set) );
399 memcpy( &writefds, &slap_daemon.sd_writers, sizeof(fd_set) );
402 for ( l = 0; l < N_LISTENERS; l++ ) {
403 FD_SET( (unsigned) listeners[l].tcps, &readfds );
407 nfds = slap_daemon.sd_nfds;
412 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
414 ldap_pvt_thread_mutex_lock( &active_threads_mutex );
416 ldap_pvt_thread_mutex_unlock( &active_threads_mutex );
418 #if defined( HAVE_YIELDING_SELECT ) || defined( NO_THREADS )
421 tvp = at ? &zero : NULL;
424 for ( i = 0; i < N_LISTENERS; i++ ) {
425 Debug( LDAP_DEBUG_CONNS,
426 "daemon: select: tcps=%d active_threads=%d tvp=%s\n",
427 listeners[i].tcps, at,
428 tvp == NULL ? "NULL" : "zero" );
431 switch(ns = select( nfds, &readfds,
433 /* don't pass empty fd_set */
434 ( writefds.fd_count > 0 ? &writefds : NULL ),
440 case -1: { /* failure - try again */
442 int err = WSAGetLastError();
447 if( err == EBADF && ++ebadf < SLAPD_EBADF_LIMIT) {
452 Debug( LDAP_DEBUG_CONNS,
453 "daemon: select failed (%d): %s\n",
455 err >= 0 && err < sys_nerr
456 ? sys_errlist[err] : "unknown",
465 case 0: /* timeout - let threads run */
467 Debug( LDAP_DEBUG_CONNS, "daemon: select timeout - yielding\n",
469 ldap_pvt_thread_yield();
472 default: /* something happened - deal with it */
474 Debug( LDAP_DEBUG_CONNS, "daemon: activity on %d descriptors\n",
479 for ( l = 0; l < N_LISTENERS; l++ ) {
481 int len = sizeof(from);
484 if ( !FD_ISSET( listeners[l].tcps, &readfds ) )
487 if ( (s = accept( listeners[l].tcps,
488 (struct sockaddr *) &from, &len )) == AC_SOCKET_INVALID )
491 Debug( LDAP_DEBUG_ANY,
492 "daemon: accept(%ld) failed errno %d (%s)\n", err,
493 (long) listeners[l].tcps,
494 err >= 0 && err < sys_nerr ?
495 sys_errlist[err] : "unknown");
500 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
502 /* newly accepted stream should not be in any of the FD SETS */
504 assert( !FD_ISSET( s, &slap_daemon.sd_actives) );
505 assert( !FD_ISSET( s, &slap_daemon.sd_readers) );
506 assert( !FD_ISSET( s, &slap_daemon.sd_writers) );
508 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
512 /* make sure descriptor number isn't too great */
513 if ( s >= dtblsize ) {
514 Debug( LDAP_DEBUG_ANY,
515 "daemon: %ld beyond descriptor table size %ld\n",
516 (long) s, (long) dtblsize, 0 );
522 Debug( LDAP_DEBUG_CONNS, "daemon: new connection on %ld\n",
526 if ( getpeername( s, (struct sockaddr *) &from, &len ) == 0 ) {
527 client_addr = inet_ntoa( from.sin_addr );
529 #if defined(SLAPD_RLOOKUPS) || defined(HAVE_TCPD)
530 hp = gethostbyaddr( (char *)
531 &(from.sin_addr.s_addr),
532 sizeof(from.sin_addr.s_addr), AF_INET );
536 client_name = hp->h_name;
538 /* normalize the domain */
539 for ( p = client_name; *p; p++ ) {
540 *p = TOLOWER( (unsigned char) *p );
556 if(!hosts_ctl("slapd",
557 client_name != NULL ? client_name : STRING_UNKNOWN,
558 client_addr != NULL ? client_addr : STRING_UNKNOWN,
562 Statslog( LDAP_DEBUG_ANY,
563 "fd=%ld connection from %s (%s) denied.\n",
565 client_name == NULL ? "unknown" : client_name,
566 client_addr == NULL ? "unknown" : client_addr,
572 #endif /* HAVE_TCPD */
574 if( (id = connection_init(s, client_name, client_addr)) < 0 ) {
575 Debug( LDAP_DEBUG_ANY,
576 "daemon: connection_init(%ld, %s, %s) failed.\n",
578 client_name == NULL ? "unknown" : client_name,
579 client_addr == NULL ? "unknown" : client_addr);
584 Statslog( LDAP_DEBUG_STATS,
585 "daemon: conn=%d fd=%ld connection from %s (%s) accepted.\n",
587 client_name == NULL ? "unknown" : client_name,
588 client_addr == NULL ? "unknown" : client_addr,
596 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:", 0, 0, 0 );
598 for ( i = 0; i < readfds.fd_count; i++ ) {
599 Debug( LDAP_DEBUG_CONNS, " %d%s",
600 readfds.fd_array[i], "r", 0 );
602 for ( i = 0; i < writefds.fd_count; i++ ) {
603 Debug( LDAP_DEBUG_CONNS, " %d%s",
604 writefds.fd_array[i], "w", 0 );
607 for ( i = 0; i < nfds; i++ ) {
611 for ( l = 0; l < N_LISTENERS; l++ ) {
612 if ( i == listeners[l].tcps ) {
620 r = FD_ISSET( i, &readfds );
621 w = FD_ISSET( i, &writefds );
623 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i,
624 r ? "r" : "", w ? "w" : "" );
628 Debug( LDAP_DEBUG_CONNS, "\n", 0, 0, 0 );
631 /* loop through the writers */
633 for ( i = 0; i < writefds.fd_count; i++ )
635 for ( i = 0; i < nfds; i++ )
641 wd = writefds.fd_array[i];
643 if( ! FD_ISSET( i, &writefds ) ) {
649 for ( l = 0; l < N_LISTENERS; l++ ) {
650 if ( wd == listeners[l].tcps ) {
658 Debug( LDAP_DEBUG_CONNS,
659 "daemon: write active on %d\n",
663 * NOTE: it is possible that the connection was closed
664 * and that the stream is now inactive.
665 * connection_write() must valid the stream is still
669 if ( connection_write( wd ) < 0 ) {
670 FD_CLR( (unsigned) wd, &readfds );
676 for ( i = 0; i < readfds.fd_count; i++ )
678 for ( i = 0; i < nfds; i++ )
685 rd = readfds.fd_array[i];
687 if( ! FD_ISSET( i, &readfds ) ) {
693 for ( l = 0; l < N_LISTENERS; l++ ) {
694 if ( rd == listeners[l].tcps ) {
703 Debug ( LDAP_DEBUG_CONNS,
704 "daemon: read activity on %d\n", rd, 0, 0 );
707 * NOTE: it is possible that the connection was closed
708 * and that the stream is now inactive.
709 * connection_read() must valid the stream is still
713 if ( connection_read( rd ) < 0 ) {
717 ldap_pvt_thread_yield();
720 if( slapd_shutdown > 0 ) {
721 Debug( LDAP_DEBUG_TRACE,
722 "daemon: shutdown requested and initiated.\n",
725 } else if ( slapd_shutdown < 0 ) {
726 Debug( LDAP_DEBUG_TRACE,
727 "daemon: abnormal condition, shutdown initiated.\n",
730 Debug( LDAP_DEBUG_TRACE,
731 "daemon: no active streams, shutdown initiated.\n",
735 for ( l = 0; l < N_LISTENERS; l++ ) {
736 if ( listeners[l].tcps >= 0 ) {
737 slapd_close( listeners[l].tcps );
741 ldap_pvt_thread_mutex_lock( &active_threads_mutex );
742 Debug( LDAP_DEBUG_ANY,
743 "slapd shutdown: waiting for %d threads to terminate\n",
744 active_threads, 0, 0 );
745 while ( active_threads > 0 ) {
746 ldap_pvt_thread_cond_wait(&active_threads_cond, &active_threads_mutex);
748 ldap_pvt_thread_mutex_unlock( &active_threads_mutex );
754 int slapd_daemon( struct slapd_args *args )
758 if ( !daemon_initialized ) sockinit();
762 #define SLAPD_LISTENER_THREAD 1
763 #if defined( SLAPD_LISTENER_THREAD ) || !defined(HAVE_PTHREADS)
765 /* listener as a separate THREAD */
766 rc = ldap_pvt_thread_create( &listener_tid,
767 0, slapd_daemon_task, args );
770 Debug( LDAP_DEBUG_ANY,
771 "listener ldap_pvt_thread_create failed (%d)\n", rc, 0, 0 );
775 /* wait for the listener thread to complete */
776 ldap_pvt_thread_join( listener_tid, (void *) NULL );
778 /* expermimental code */
779 listener_tid = pthread_self();
780 slapd_daemon_task( args );
786 connections_destroy();
798 WORD wVersionRequested;
802 wVersionRequested = MAKEWORD( 2, 0 );
804 err = WSAStartup( wVersionRequested, &wsaData );
806 /* Tell the user that we couldn't find a usable */
811 /* Confirm that the WinSock DLL supports 2.0.*/
812 /* Note that if the DLL supports versions greater */
813 /* than 2.0 in addition to 2.0, it will still return */
814 /* 2.0 in wVersion since that is the version we */
817 if ( LOBYTE( wsaData.wVersion ) != 2 ||
818 HIBYTE( wsaData.wVersion ) != 0 )
820 /* Tell the user that we couldn't find a usable */
825 daemon_initialized = 1;
826 } /* The WinSock DLL is acceptable. Proceed. */
832 extern struct sockaddr_in bind_addr;
834 /* throw something at the socket to terminate the select() in the daemon thread. */
835 if (( s = socket( AF_INET, SOCK_STREAM, 0 )) == AC_SOCKET_INVALID )
836 Debug( LDAP_DEBUG_ANY,
837 "slap_set_shutdown: socket failed\n\tWSAGetLastError=%d (%s)\n",
838 WSAGetLastError(), WSAGetLastErrorString(), 0 );
840 if ( ioctlsocket( s, FIONBIO, &on ) == -1 )
841 Debug( LDAP_DEBUG_ANY,
842 "slap_set_shutdown:FIONBIO ioctl on %d faled\n\tWSAGetLastError=%d (%s)\n",
843 s, WSAGetLastError(), WSAGetLastError() );
845 bind_addr.sin_addr.s_addr = htonl( INADDR_LOOPBACK );
847 if ( connect( s, (struct sockaddr *)&bind_addr, sizeof( struct sockaddr_in )) == SOCKET_ERROR ) {
848 Debug( LDAP_DEBUG_ANY,
849 "hit_socket: error on connect: %d\n",
850 WSAGetLastError(), 0, 0 );
851 /* we can probably expect some error to occur here, mostly WSAEWOULDBLOCK */
860 if ( WSAStartup( 0x0101, &wsaData ) != 0 ) {
863 daemon_initialized = 1;
868 daemon_initialized = 1;
873 slap_set_shutdown( int sig )
876 slapd_shutdown = sig;
879 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
882 Debug( LDAP_DEBUG_TRACE, "Shutdown %d ordered", sig, 0, 0 );
883 /* trying to "hit" the socket seems to always get a */
884 /* EWOULDBLOCK error, so just close the listen socket to */
885 /* break out of the select since we're shutting down anyway */
886 for ( l = 0; l < N_LISTENERS; l++ ) {
887 if ( listeners[l].tcps >= 0 ) {
888 tcp_close( listeners[l].tcps );
893 (void) SIGNAL( sig, slap_set_shutdown );
897 slap_do_nothing( int sig )
900 (void) SIGNAL( sig, slap_do_nothing );