11 #include <ac/unistd.h>
13 #include "ldap_defaults.h"
19 int allow_severity = LOG_INFO;
20 int deny_severity = LOG_NOTICE;
21 #endif /* TCP Wrappers */
24 ber_socket_t dtblsize;
32 struct sockaddr_in *addr;
34 } listeners[N_LISTENERS];
38 extern ldap_pvt_thread_cond_t started_event;
40 /* forward reference */
43 char *WSAGetLastErrorString();
44 static ldap_pvt_thread_t hit_tid;
46 #define WAKE_LISTENER(w) \
49 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );\
54 #define WAKE_LISTENER(w) \
57 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );\
65 volatile sig_atomic_t slapd_shutdown = 0;
67 static int daemon_initialized = 0;
68 static ldap_pvt_thread_t listener_tid;
69 static volatile sig_atomic_t slapd_listener = 0;
73 ldap_pvt_thread_mutex_t sd_mutex;
78 /* In winsock, accept() returns values higher than dtblsize
79 so don't bother with this optimization */
89 * Add a descriptor to daemon control
91 static void slapd_add(ber_socket_t s) {
92 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
94 assert( !FD_ISSET( s, &slap_daemon.sd_actives ));
95 assert( !FD_ISSET( s, &slap_daemon.sd_readers ));
96 assert( !FD_ISSET( s, &slap_daemon.sd_writers ));
99 if (s >= slap_daemon.sd_nfds) {
100 slap_daemon.sd_nfds = s + 1;
104 FD_SET( s, &slap_daemon.sd_actives );
105 FD_SET( s, &slap_daemon.sd_readers );
107 Debug( LDAP_DEBUG_CONNS, "daemon: added %ld%s%s\n",
109 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
110 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
112 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
116 * Remove the descriptor from daemon control
118 void slapd_remove(ber_socket_t s, int wake) {
119 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
122 Debug( LDAP_DEBUG_CONNS, "daemon: removing %ld%s%s\n",
124 FD_ISSET(s, &slap_daemon.sd_readers) ? "r" : "",
125 FD_ISSET(s, &slap_daemon.sd_writers) ? "w" : "" );
127 FD_CLR( s, &slap_daemon.sd_actives );
128 FD_CLR( s, &slap_daemon.sd_readers );
129 FD_CLR( s, &slap_daemon.sd_writers );
131 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
134 void slapd_clr_write(ber_socket_t s, int wake) {
135 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
138 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
139 FD_CLR( s, &slap_daemon.sd_writers );
141 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
144 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
148 void slapd_set_write(ber_socket_t s, int wake) {
149 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
152 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
153 FD_SET( (unsigned) s, &slap_daemon.sd_writers );
155 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
158 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
162 void slapd_clr_read(ber_socket_t s, int wake) {
163 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
166 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
167 FD_CLR( s, &slap_daemon.sd_readers );
169 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
172 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
176 void slapd_set_read(ber_socket_t s, int wake) {
177 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
180 assert( FD_ISSET( s, &slap_daemon.sd_actives) );
181 FD_SET( s, &slap_daemon.sd_readers );
183 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
186 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
190 static void slapd_close(ber_socket_t s) {
191 Debug( LDAP_DEBUG_CONNS, "daemon: closing %ld\n",
199 set_socket( struct sockaddr_in *addr )
201 ber_socket_t tcps = AC_SOCKET_INVALID;
203 if ( !daemon_initialized ) sockinit();
206 dtblsize = sysconf( _SC_OPEN_MAX );
207 #elif HAVE_GETDTABLESIZE
208 dtblsize = getdtablesize();
210 dtblsize = FD_SETSIZE;
214 if(dtblsize > FD_SETSIZE) {
215 dtblsize = FD_SETSIZE;
217 #endif /* !FD_SETSIZE */
222 if ( (tcps = socket( AF_INET, SOCK_STREAM, 0 )) == AC_SOCKET_INVALID ) {
225 Debug( LDAP_DEBUG_ANY,
226 "daemon: socket() failed errno %d (%s)\n", err,
227 err > -1 && err < sys_nerr ? sys_errlist[err] :
230 Debug( LDAP_DEBUG_ANY,
231 "daemon: socket() failed errno %d (%s)\n",
233 WSAGetLastErrorString(), 0 );
239 if ( tcps >= dtblsize ) {
240 Debug( LDAP_DEBUG_ANY,
241 "daemon: listener descriptor %ld is too great %ld\n",
242 (long) tcps, (long) dtblsize, 0 );
249 if ( setsockopt( tcps, SOL_SOCKET, SO_REUSEADDR,
250 (char *) &tmp, sizeof(tmp) ) == -1 )
253 Debug( LDAP_DEBUG_ANY,
254 "slapd(%ld): setsockopt() failed errno %d (%s)\n",
256 err > -1 && err < sys_nerr
257 ? sys_errlist[err] : "unknown" );
262 if ( setsockopt( tcps, SOL_SOCKET, SO_KEEPALIVE,
263 (char *) &tmp, sizeof(tmp) ) == -1 )
266 Debug( LDAP_DEBUG_ANY,
267 "slapd(%ld): setsockopt(KEEPALIVE) failed errno %d (%s)\n",
269 err > -1 && err < sys_nerr
270 ? sys_errlist[err] : "unknown" );
275 if ( bind( tcps, (struct sockaddr *) addr, sizeof(*addr) ) == -1 ) {
277 Debug( LDAP_DEBUG_ANY, "daemon: bind(%ld) failed errno %d (%s)\n",
279 err > -1 && err < sys_nerr
280 ? sys_errlist[err] : "unknown" );
294 struct slapd_args *args = (struct slapd_args *) ptr;
297 listeners[0].tcps = args->tcps;
298 listeners[0].addr = args->addr;
299 listeners[0].use_tls = 0;
301 listeners[1].tcps = args->tls_tcps;
302 listeners[1].addr = args->tls_addr;
303 listeners[1].use_tls = 1;
306 inetd = ( listeners[0].addr == NULL);
307 if ( !daemon_initialized ) sockinit();
311 ldap_pvt_thread_mutex_init( &slap_daemon.sd_mutex );
312 FD_ZERO( &slap_daemon.sd_readers );
313 FD_ZERO( &slap_daemon.sd_writers );
316 for ( l = 0; l < N_LISTENERS; l++ ) {
317 if ( listeners[l].tcps < 0 )
319 if ( listen( listeners[l].tcps, 5 ) == -1 ) {
321 Debug( LDAP_DEBUG_ANY,
322 "daemon: listen(%ld, 5) failed errno %d (%s)\n",
323 (long) listeners[l].tcps, err,
324 err > -1 && err < sys_nerr
325 ? sys_errlist[err] : "unknown" );
329 slapd_add( listeners[l].tcps );
333 if( connection_init( (ber_socket_t) 0, NULL, NULL ) ) {
334 Debug( LDAP_DEBUG_ANY,
335 "connection_init(%d) failed.\n",
344 if ( started_event != NULL )
345 ldap_pvt_thread_cond_signal( &started_event );
347 /* initialization complete. Here comes the loop. */
349 while ( !slapd_shutdown ) {
354 #define SLAPD_EBADF_LIMIT 10
357 #define SLAPD_IDLE_CHECK_LIMIT 4
358 time_t last_idle_check = slap_get_time();
365 struct sockaddr_in from;
366 #if defined(SLAPD_RLOOKUPS) || defined(HAVE_TCPD)
375 if( global_idletimeout > 0 && difftime(
376 last_idle_check+global_idletimeout/SLAPD_IDLE_CHECK_LIMIT,
379 connections_timeout_idle(now);
382 FD_ZERO( &writefds );
388 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
390 #ifdef FD_SET_MANUAL_COPY
391 for( s = 0; s < nfds; s++ ) {
392 if(FD_ISSET( &slap_sd_writers, s )) {
393 FD_SET( &writefds, s );
395 if(FD_ISSET( &slap_sd_writers, s )) {
396 FD_SET( &writefds, s );
400 memcpy( &readfds, &slap_daemon.sd_readers, sizeof(fd_set) );
401 memcpy( &writefds, &slap_daemon.sd_writers, sizeof(fd_set) );
404 for ( l = 0; l < N_LISTENERS; l++ ) {
405 if ( listeners[l].tcps < 0 )
407 FD_SET( (unsigned) listeners[l].tcps, &readfds );
411 nfds = slap_daemon.sd_nfds;
416 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
418 ldap_pvt_thread_mutex_lock( &active_threads_mutex );
420 ldap_pvt_thread_mutex_unlock( &active_threads_mutex );
422 #if defined( HAVE_YIELDING_SELECT ) || defined( NO_THREADS )
425 tvp = at ? &zero : NULL;
428 for ( i = 0; i < N_LISTENERS; i++ ) {
429 if ( listeners[l].tcps < 0 )
431 Debug( LDAP_DEBUG_CONNS,
432 "daemon: select: tcps=%d active_threads=%d tvp=%s\n",
433 listeners[i].tcps, at,
434 tvp == NULL ? "NULL" : "zero" );
437 switch(ns = select( nfds, &readfds,
439 /* don't pass empty fd_set */
440 ( writefds.fd_count > 0 ? &writefds : NULL ),
446 case -1: { /* failure - try again */
448 int err = WSAGetLastError();
453 if( err == EBADF && ++ebadf < SLAPD_EBADF_LIMIT) {
458 Debug( LDAP_DEBUG_CONNS,
459 "daemon: select failed (%d): %s\n",
461 err >= 0 && err < sys_nerr
462 ? sys_errlist[err] : "unknown",
471 case 0: /* timeout - let threads run */
473 Debug( LDAP_DEBUG_CONNS, "daemon: select timeout - yielding\n",
475 ldap_pvt_thread_yield();
478 default: /* something happened - deal with it */
480 Debug( LDAP_DEBUG_CONNS, "daemon: activity on %d descriptors\n",
485 for ( l = 0; l < N_LISTENERS; l++ ) {
487 int len = sizeof(from);
490 if ( listeners[l].tcps < 0 )
492 if ( !FD_ISSET( listeners[l].tcps, &readfds ) )
495 if ( (s = accept( listeners[l].tcps,
496 (struct sockaddr *) &from, &len )) == AC_SOCKET_INVALID )
499 Debug( LDAP_DEBUG_ANY,
500 "daemon: accept(%ld) failed errno %d (%s)\n", err,
501 (long) listeners[l].tcps,
502 err >= 0 && err < sys_nerr ?
503 sys_errlist[err] : "unknown");
508 ldap_pvt_thread_mutex_lock( &slap_daemon.sd_mutex );
510 /* newly accepted stream should not be in any of the FD SETS */
512 assert( !FD_ISSET( s, &slap_daemon.sd_actives) );
513 assert( !FD_ISSET( s, &slap_daemon.sd_readers) );
514 assert( !FD_ISSET( s, &slap_daemon.sd_writers) );
516 ldap_pvt_thread_mutex_unlock( &slap_daemon.sd_mutex );
520 /* make sure descriptor number isn't too great */
521 if ( s >= dtblsize ) {
522 Debug( LDAP_DEBUG_ANY,
523 "daemon: %ld beyond descriptor table size %ld\n",
524 (long) s, (long) dtblsize, 0 );
530 Debug( LDAP_DEBUG_CONNS, "daemon: new connection on %ld\n",
534 if ( getpeername( s, (struct sockaddr *) &from, &len ) == 0 ) {
535 client_addr = inet_ntoa( from.sin_addr );
537 #if defined(SLAPD_RLOOKUPS) || defined(HAVE_TCPD)
538 hp = gethostbyaddr( (char *)
539 &(from.sin_addr.s_addr),
540 sizeof(from.sin_addr.s_addr), AF_INET );
544 client_name = hp->h_name;
546 /* normalize the domain */
547 for ( p = client_name; *p; p++ ) {
548 *p = TOLOWER( (unsigned char) *p );
564 if(!hosts_ctl("slapd",
565 client_name != NULL ? client_name : STRING_UNKNOWN,
566 client_addr != NULL ? client_addr : STRING_UNKNOWN,
570 Statslog( LDAP_DEBUG_ANY,
571 "fd=%ld connection from %s (%s) denied.\n",
573 client_name == NULL ? "unknown" : client_name,
574 client_addr == NULL ? "unknown" : client_addr,
580 #endif /* HAVE_TCPD */
582 if( (id = connection_init(s, client_name, client_addr)) < 0 ) {
583 Debug( LDAP_DEBUG_ANY,
584 "daemon: connection_init(%ld, %s, %s) failed.\n",
586 client_name == NULL ? "unknown" : client_name,
587 client_addr == NULL ? "unknown" : client_addr);
592 Statslog( LDAP_DEBUG_STATS,
593 "daemon: conn=%d fd=%ld connection from %s (%s) accepted.\n",
595 client_name == NULL ? "unknown" : client_name,
596 client_addr == NULL ? "unknown" : client_addr,
604 Debug( LDAP_DEBUG_CONNS, "daemon: activity on:", 0, 0, 0 );
606 for ( i = 0; i < readfds.fd_count; i++ ) {
607 Debug( LDAP_DEBUG_CONNS, " %d%s",
608 readfds.fd_array[i], "r", 0 );
610 for ( i = 0; i < writefds.fd_count; i++ ) {
611 Debug( LDAP_DEBUG_CONNS, " %d%s",
612 writefds.fd_array[i], "w", 0 );
615 for ( i = 0; i < nfds; i++ ) {
619 for ( l = 0; l < N_LISTENERS; l++ ) {
620 if ( i == listeners[l].tcps ) {
628 r = FD_ISSET( i, &readfds );
629 w = FD_ISSET( i, &writefds );
631 Debug( LDAP_DEBUG_CONNS, " %d%s%s", i,
632 r ? "r" : "", w ? "w" : "" );
636 Debug( LDAP_DEBUG_CONNS, "\n", 0, 0, 0 );
639 /* loop through the writers */
641 for ( i = 0; i < writefds.fd_count; i++ )
643 for ( i = 0; i < nfds; i++ )
649 wd = writefds.fd_array[i];
651 if( ! FD_ISSET( i, &writefds ) ) {
657 for ( l = 0; l < N_LISTENERS; l++ ) {
658 if ( wd == listeners[l].tcps ) {
666 Debug( LDAP_DEBUG_CONNS,
667 "daemon: write active on %d\n",
671 * NOTE: it is possible that the connection was closed
672 * and that the stream is now inactive.
673 * connection_write() must valid the stream is still
677 if ( connection_write( wd ) < 0 ) {
678 FD_CLR( (unsigned) wd, &readfds );
684 for ( i = 0; i < readfds.fd_count; i++ )
686 for ( i = 0; i < nfds; i++ )
693 rd = readfds.fd_array[i];
695 if( ! FD_ISSET( i, &readfds ) ) {
701 for ( l = 0; l < N_LISTENERS; l++ ) {
702 if ( rd == listeners[l].tcps ) {
711 Debug ( LDAP_DEBUG_CONNS,
712 "daemon: read activity on %d\n", rd, 0, 0 );
715 * NOTE: it is possible that the connection was closed
716 * and that the stream is now inactive.
717 * connection_read() must valid the stream is still
721 if ( connection_read( rd ) < 0 ) {
725 ldap_pvt_thread_yield();
728 if( slapd_shutdown > 0 ) {
729 Debug( LDAP_DEBUG_TRACE,
730 "daemon: shutdown requested and initiated.\n",
733 } else if ( slapd_shutdown < 0 ) {
734 Debug( LDAP_DEBUG_TRACE,
735 "daemon: abnormal condition, shutdown initiated.\n",
738 Debug( LDAP_DEBUG_TRACE,
739 "daemon: no active streams, shutdown initiated.\n",
743 for ( l = 0; l < N_LISTENERS; l++ ) {
744 if ( listeners[l].tcps >= 0 ) {
745 slapd_close( listeners[l].tcps );
749 ldap_pvt_thread_mutex_lock( &active_threads_mutex );
750 Debug( LDAP_DEBUG_ANY,
751 "slapd shutdown: waiting for %d threads to terminate\n",
752 active_threads, 0, 0 );
753 while ( active_threads > 0 ) {
754 ldap_pvt_thread_cond_wait(&active_threads_cond, &active_threads_mutex);
756 ldap_pvt_thread_mutex_unlock( &active_threads_mutex );
762 int slapd_daemon( struct slapd_args *args )
766 if ( !daemon_initialized ) sockinit();
770 #define SLAPD_LISTENER_THREAD 1
771 #if defined( SLAPD_LISTENER_THREAD ) || !defined(HAVE_PTHREADS)
773 /* listener as a separate THREAD */
774 rc = ldap_pvt_thread_create( &listener_tid,
775 0, slapd_daemon_task, args );
778 Debug( LDAP_DEBUG_ANY,
779 "listener ldap_pvt_thread_create failed (%d)\n", rc, 0, 0 );
783 /* wait for the listener thread to complete */
784 ldap_pvt_thread_join( listener_tid, (void *) NULL );
786 /* expermimental code */
787 listener_tid = pthread_self();
788 slapd_daemon_task( args );
794 connections_destroy();
806 WORD wVersionRequested;
810 wVersionRequested = MAKEWORD( 2, 0 );
812 err = WSAStartup( wVersionRequested, &wsaData );
814 /* Tell the user that we couldn't find a usable */
819 /* Confirm that the WinSock DLL supports 2.0.*/
820 /* Note that if the DLL supports versions greater */
821 /* than 2.0 in addition to 2.0, it will still return */
822 /* 2.0 in wVersion since that is the version we */
825 if ( LOBYTE( wsaData.wVersion ) != 2 ||
826 HIBYTE( wsaData.wVersion ) != 0 )
828 /* Tell the user that we couldn't find a usable */
833 daemon_initialized = 1;
834 } /* The WinSock DLL is acceptable. Proceed. */
840 extern struct sockaddr_in bind_addr;
842 /* throw something at the socket to terminate the select() in the daemon thread. */
843 if (( s = socket( AF_INET, SOCK_STREAM, 0 )) == AC_SOCKET_INVALID )
844 Debug( LDAP_DEBUG_ANY,
845 "slap_set_shutdown: socket failed\n\tWSAGetLastError=%d (%s)\n",
846 WSAGetLastError(), WSAGetLastErrorString(), 0 );
848 if ( ioctlsocket( s, FIONBIO, &on ) == -1 )
849 Debug( LDAP_DEBUG_ANY,
850 "slap_set_shutdown:FIONBIO ioctl on %d faled\n\tWSAGetLastError=%d (%s)\n",
851 s, WSAGetLastError(), WSAGetLastError() );
853 bind_addr.sin_addr.s_addr = htonl( INADDR_LOOPBACK );
855 if ( connect( s, (struct sockaddr *)&bind_addr, sizeof( struct sockaddr_in )) == SOCKET_ERROR ) {
856 Debug( LDAP_DEBUG_ANY,
857 "hit_socket: error on connect: %d\n",
858 WSAGetLastError(), 0, 0 );
859 /* we can probably expect some error to occur here, mostly WSAEWOULDBLOCK */
868 if ( WSAStartup( 0x0101, &wsaData ) != 0 ) {
871 daemon_initialized = 1;
876 daemon_initialized = 1;
881 slap_set_shutdown( int sig )
884 slapd_shutdown = sig;
887 ldap_pvt_thread_kill( listener_tid, LDAP_SIGUSR1 );
890 Debug( LDAP_DEBUG_TRACE, "Shutdown %d ordered", sig, 0, 0 );
891 /* trying to "hit" the socket seems to always get a */
892 /* EWOULDBLOCK error, so just close the listen socket to */
893 /* break out of the select since we're shutting down anyway */
894 for ( l = 0; l < N_LISTENERS; l++ ) {
895 if ( listeners[l].tcps >= 0 ) {
896 tcp_close( listeners[l].tcps );
901 (void) SIGNAL( sig, slap_set_shutdown );
905 slap_do_nothing( int sig )
908 (void) SIGNAL( sig, slap_do_nothing );