2 /* syncprov.c - syncrepl provider */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2004-2018 The OpenLDAP Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
17 * This work was initially developed by Howard Chu for inclusion in
23 #ifdef SLAPD_OVER_SYNCPROV
25 #include <ac/string.h>
35 /* A modify request on a particular entry */
36 typedef struct modinst {
37 struct modinst *mi_next;
41 typedef struct modtarget {
42 struct modinst *mt_mods;
43 struct modinst *mt_tail;
45 ldap_pvt_thread_mutex_t mt_mutex;
48 /* All the info of a psearch result that's shared between
51 typedef struct resinfo {
52 struct syncres *ri_list;
56 struct berval ri_uuid;
58 struct berval ri_cookie;
60 ldap_pvt_thread_mutex_t ri_mutex;
63 /* A queued result of a persistent search */
64 typedef struct syncres {
65 struct syncres *s_next; /* list of results on this psearch queue */
66 struct syncres *s_rilist; /* list of psearches using this result */
71 /* Record of a persistent search */
72 typedef struct syncops {
73 struct syncops *s_next;
74 struct syncprov_info_t *s_si;
75 struct berval s_base; /* ndn of search base */
76 ID s_eid; /* entryID of search base */
77 Operation *s_op; /* search op */
80 struct berval s_filterstr;
81 int s_flags; /* search status */
82 #define PS_IS_REFRESHING 0x01
83 #define PS_IS_DETACHED 0x02
84 #define PS_WROTE_BASE 0x04
85 #define PS_FIND_BASE 0x08
86 #define PS_FIX_FILTER 0x10
87 #define PS_TASK_QUEUED 0x20
89 int s_inuse; /* reference count */
90 struct syncres *s_res;
91 struct syncres *s_restail;
93 ldap_pvt_thread_mutex_t s_mutex;
96 /* A received sync control */
97 typedef struct sync_control {
98 struct sync_cookie sr_state;
102 #if 0 /* moved back to slap.h */
103 #define o_sync o_ctrlflag[slap_cids.sc_LDAPsync]
105 /* o_sync_mode uses data bits of o_sync */
106 #define o_sync_mode o_ctrlflag[slap_cids.sc_LDAPsync]
108 #define SLAP_SYNC_NONE (LDAP_SYNC_NONE<<SLAP_CONTROL_SHIFT)
109 #define SLAP_SYNC_REFRESH (LDAP_SYNC_REFRESH_ONLY<<SLAP_CONTROL_SHIFT)
110 #define SLAP_SYNC_PERSIST (LDAP_SYNC_RESERVED<<SLAP_CONTROL_SHIFT)
111 #define SLAP_SYNC_REFRESH_AND_PERSIST (LDAP_SYNC_REFRESH_AND_PERSIST<<SLAP_CONTROL_SHIFT)
113 /* Record of which searches matched at premodify step */
114 typedef struct syncmatches {
115 struct syncmatches *sm_next;
119 /* Session log data */
120 typedef struct slog_entry {
121 struct slog_entry *se_next;
122 struct berval se_uuid;
123 struct berval se_csn;
128 typedef struct sessionlog {
137 ldap_pvt_thread_mutex_t sl_mutex;
140 /* The main state for this overlay */
141 typedef struct syncprov_info_t {
143 struct berval si_contextdn;
144 BerVarray si_ctxcsn; /* ldapsync context */
147 int si_chkops; /* checkpointing info */
149 int si_numops; /* number of ops since last checkpoint */
150 int si_nopres; /* Skip present phase */
151 int si_usehint; /* use reload hint */
152 int si_active; /* True if there are active mods */
153 int si_dirty; /* True if the context is dirty, i.e changes
154 * have been made without updating the csn. */
155 time_t si_chklast; /* time of last checkpoint */
156 Avlnode *si_mods; /* entries being modified */
158 ldap_pvt_thread_rdwr_t si_csn_rwlock;
159 ldap_pvt_thread_mutex_t si_ops_mutex;
160 ldap_pvt_thread_mutex_t si_mods_mutex;
161 ldap_pvt_thread_mutex_t si_resp_mutex;
164 typedef struct opcookie {
166 syncmatches *smatches;
169 struct berval sdn; /* DN of entry, for deletes */
171 struct berval suuid; /* UUID of entry */
172 struct berval sctxcsn;
173 short osid; /* sid of op csn */
174 short rsid; /* sid of relay */
175 short sreference; /* Is the entry a reference? */
179 typedef struct fbase_cookie {
180 struct berval *fdn; /* DN of a modified entry, for scope testing */
181 syncops *fss; /* persistent search we're testing against */
182 int fbase; /* if TRUE we found the search base and it's still valid */
183 int fscope; /* if TRUE then fdn is within the psearch scope */
186 static AttributeName csn_anlist[3];
187 static AttributeName uuid_anlist[2];
189 /* Build a LDAPsync intermediate state control */
195 int entry_sync_state,
199 struct berval *cookie )
204 BerElementBuffer berbuf;
205 BerElement *ber = (BerElement *)&berbuf;
208 struct berval entryuuid_bv = BER_BVNULL;
210 ber_init2( ber, 0, LBER_USE_DER );
211 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
213 for ( a = e->e_attrs; a != NULL; a = a->a_next ) {
214 AttributeDescription *desc = a->a_desc;
215 if ( desc == slap_schema.si_ad_entryUUID ) {
216 entryuuid_bv = a->a_nvals[0];
221 /* FIXME: what if entryuuid is NULL or empty ? */
223 if ( send_cookie && cookie ) {
224 ber_printf( ber, "{eOON}",
225 entry_sync_state, &entryuuid_bv, cookie );
227 ber_printf( ber, "{eON}",
228 entry_sync_state, &entryuuid_bv );
231 ret = ber_flatten2( ber, &bv, 0 );
233 cp = op->o_tmpalloc( sizeof( LDAPControl ) + bv.bv_len, op->o_tmpmemctx );
234 cp->ldctl_oid = LDAP_CONTROL_SYNC_STATE;
235 cp->ldctl_iscritical = (op->o_sync == SLAP_CONTROL_CRITICAL);
236 cp->ldctl_value.bv_val = (char *)&cp[1];
237 cp->ldctl_value.bv_len = bv.bv_len;
238 AC_MEMCPY( cp->ldctl_value.bv_val, bv.bv_val, bv.bv_len );
239 ctrls[num_ctrls] = cp;
244 Debug( LDAP_DEBUG_TRACE,
245 "slap_build_sync_ctrl: ber_flatten2 failed (%d)\n",
247 send_ldap_error( op, rs, LDAP_OTHER, "internal error" );
254 /* Build a LDAPsync final state control */
262 struct berval *cookie,
266 BerElementBuffer berbuf;
267 BerElement *ber = (BerElement *)&berbuf;
271 ber_init2( ber, NULL, LBER_USE_DER );
272 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
274 ber_printf( ber, "{" );
275 if ( send_cookie && cookie ) {
276 ber_printf( ber, "O", cookie );
278 if ( refreshDeletes == LDAP_SYNC_REFRESH_DELETES ) {
279 ber_printf( ber, "b", refreshDeletes );
281 ber_printf( ber, "N}" );
283 ret = ber_flatten2( ber, &bv, 0 );
285 cp = op->o_tmpalloc( sizeof( LDAPControl ) + bv.bv_len, op->o_tmpmemctx );
286 cp->ldctl_oid = LDAP_CONTROL_SYNC_DONE;
287 cp->ldctl_iscritical = (op->o_sync == SLAP_CONTROL_CRITICAL);
288 cp->ldctl_value.bv_val = (char *)&cp[1];
289 cp->ldctl_value.bv_len = bv.bv_len;
290 AC_MEMCPY( cp->ldctl_value.bv_val, bv.bv_val, bv.bv_len );
291 ctrls[num_ctrls] = cp;
297 Debug( LDAP_DEBUG_TRACE,
298 "syncprov_done_ctrl: ber_flatten2 failed (%d)\n",
300 send_ldap_error( op, rs, LDAP_OTHER, "internal error" );
312 struct berval *cookie,
317 BerElementBuffer berbuf;
318 BerElement *ber = (BerElement *)&berbuf;
319 struct berval rspdata;
323 ber_init2( ber, NULL, LBER_USE_DER );
324 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
328 case LDAP_TAG_SYNC_NEW_COOKIE:
329 ber_printf( ber, "tO", type, cookie );
331 case LDAP_TAG_SYNC_REFRESH_DELETE:
332 case LDAP_TAG_SYNC_REFRESH_PRESENT:
333 ber_printf( ber, "t{", type );
335 ber_printf( ber, "O", cookie );
337 if ( refreshDone == 0 ) {
338 ber_printf( ber, "b", refreshDone );
340 ber_printf( ber, "N}" );
342 case LDAP_TAG_SYNC_ID_SET:
343 ber_printf( ber, "t{", type );
345 ber_printf( ber, "O", cookie );
347 if ( refreshDeletes == 1 ) {
348 ber_printf( ber, "b", refreshDeletes );
350 ber_printf( ber, "[W]", syncUUIDs );
351 ber_printf( ber, "N}" );
354 Debug( LDAP_DEBUG_TRACE,
355 "syncprov_sendinfo: invalid syncinfo type (%d)\n",
361 ret = ber_flatten2( ber, &rspdata, 0 );
364 Debug( LDAP_DEBUG_TRACE,
365 "syncprov_sendinfo: ber_flatten2 failed (%d)\n",
367 send_ldap_error( op, rs, LDAP_OTHER, "internal error" );
371 rs->sr_rspoid = LDAP_SYNC_INFO;
372 rs->sr_rspdata = &rspdata;
373 send_ldap_intermediate( op, rs );
374 rs->sr_rspdata = NULL;
380 /* Find a modtarget in an AVL tree */
382 sp_avl_cmp( const void *c1, const void *c2 )
384 const modtarget *m1, *m2;
388 rc = m1->mt_dn.bv_len - m2->mt_dn.bv_len;
391 return ber_bvcmp( &m1->mt_dn, &m2->mt_dn );
394 /* syncprov_findbase:
395 * finds the true DN of the base of a search (with alias dereferencing) and
396 * checks to make sure the base entry doesn't get replaced with a different
397 * entry (e.g., swapping trees via ModDN, or retargeting an alias). If a
398 * change is detected, any persistent search on this base must be terminated /
400 * On the first call, we just save the DN and entryID. On subsequent calls
401 * we compare the DN and entryID with the saved values.
404 findbase_cb( Operation *op, SlapReply *rs )
406 slap_callback *sc = op->o_callback;
408 if ( rs->sr_type == REP_SEARCH && rs->sr_err == LDAP_SUCCESS ) {
409 fbase_cookie *fc = sc->sc_private;
411 /* If no entryID, we're looking for the first time.
412 * Just store whatever we got.
414 if ( fc->fss->s_eid == NOID ) {
416 fc->fss->s_eid = rs->sr_entry->e_id;
417 ber_dupbv( &fc->fss->s_base, &rs->sr_entry->e_nname );
419 } else if ( rs->sr_entry->e_id == fc->fss->s_eid &&
420 dn_match( &rs->sr_entry->e_nname, &fc->fss->s_base )) {
422 /* OK, the DN is the same and the entryID is the same. */
426 if ( rs->sr_err != LDAP_SUCCESS ) {
427 Debug( LDAP_DEBUG_ANY, "findbase failed! %d\n", rs->sr_err,0,0 );
432 static Filter generic_filter = { LDAP_FILTER_PRESENT, { 0 }, NULL };
433 static struct berval generic_filterstr = BER_BVC("(objectclass=*)");
436 syncprov_findbase( Operation *op, fbase_cookie *fc )
438 /* Use basic parameters from syncrepl search, but use
439 * current op's threadctx / tmpmemctx
441 ldap_pvt_thread_mutex_lock( &fc->fss->s_mutex );
442 if ( fc->fss->s_flags & PS_FIND_BASE ) {
443 slap_callback cb = {0};
445 SlapReply frs = { REP_RESULT };
448 fc->fss->s_flags ^= PS_FIND_BASE;
449 ldap_pvt_thread_mutex_unlock( &fc->fss->s_mutex );
451 fop = *fc->fss->s_op;
453 fop.o_bd = fop.o_bd->bd_self;
454 fop.o_hdr = op->o_hdr;
455 fop.o_time = op->o_time;
456 fop.o_tincr = op->o_tincr;
457 fop.o_extra = op->o_extra;
459 cb.sc_response = findbase_cb;
462 fop.o_sync_mode = 0; /* turn off sync mode */
463 fop.o_managedsait = SLAP_CONTROL_CRITICAL;
464 fop.o_callback = &cb;
465 fop.o_tag = LDAP_REQ_SEARCH;
466 fop.ors_scope = LDAP_SCOPE_BASE;
467 fop.ors_limit = NULL;
469 fop.ors_tlimit = SLAP_NO_LIMIT;
470 fop.ors_attrs = slap_anlist_no_attrs;
471 fop.ors_attrsonly = 1;
472 fop.ors_filter = &generic_filter;
473 fop.ors_filterstr = generic_filterstr;
475 rc = fop.o_bd->be_search( &fop, &frs );
477 ldap_pvt_thread_mutex_unlock( &fc->fss->s_mutex );
481 /* After the first call, see if the fdn resides in the scope */
482 if ( fc->fbase == 1 ) {
483 switch ( fc->fss->s_op->ors_scope ) {
484 case LDAP_SCOPE_BASE:
485 fc->fscope = dn_match( fc->fdn, &fc->fss->s_base );
487 case LDAP_SCOPE_ONELEVEL: {
489 dnParent( fc->fdn, &pdn );
490 fc->fscope = dn_match( &pdn, &fc->fss->s_base );
492 case LDAP_SCOPE_SUBTREE:
493 fc->fscope = dnIsSuffix( fc->fdn, &fc->fss->s_base );
495 case LDAP_SCOPE_SUBORDINATE:
496 fc->fscope = dnIsSuffix( fc->fdn, &fc->fss->s_base ) &&
497 !dn_match( fc->fdn, &fc->fss->s_base );
505 /* If entryID has changed, then the base of this search has
506 * changed. Invalidate the psearch.
508 return LDAP_NO_SUCH_OBJECT;
512 * This function has three different purposes, but they all use a search
513 * that filters on entryCSN so they're combined here.
514 * 1: at startup time, after a contextCSN has been read from the database,
515 * we search for all entries with CSN >= contextCSN in case the contextCSN
516 * was not checkpointed at the previous shutdown.
518 * 2: when the current contextCSN is known and we have a sync cookie, we search
519 * for one entry with CSN = the cookie CSN. If not found, try <= cookie CSN.
520 * If an entry is found, the cookie CSN is valid, otherwise it is stale.
522 * 3: during a refresh phase, we search for all entries with CSN <= the cookie
523 * CSN, and generate Present records for them. We always collect this result
524 * in SyncID sets, even if there's only one match.
526 typedef enum find_csn_t {
533 findmax_cb( Operation *op, SlapReply *rs )
535 if ( rs->sr_type == REP_SEARCH && rs->sr_err == LDAP_SUCCESS ) {
536 struct berval *maxcsn = op->o_callback->sc_private;
537 Attribute *a = attr_find( rs->sr_entry->e_attrs,
538 slap_schema.si_ad_entryCSN );
540 if ( a && ber_bvcmp( &a->a_vals[0], maxcsn ) > 0 &&
541 slap_parse_csn_sid( &a->a_vals[0] ) == slap_serverID ) {
542 maxcsn->bv_len = a->a_vals[0].bv_len;
543 strcpy( maxcsn->bv_val, a->a_vals[0].bv_val );
550 findcsn_cb( Operation *op, SlapReply *rs )
552 slap_callback *sc = op->o_callback;
554 /* We just want to know that at least one exists, so it's OK if
555 * we exceed the unchecked limit.
557 if ( rs->sr_err == LDAP_ADMINLIMIT_EXCEEDED ||
558 (rs->sr_type == REP_SEARCH && rs->sr_err == LDAP_SUCCESS )) {
559 sc->sc_private = (void *)1;
564 /* Build a list of entryUUIDs for sending in a SyncID set */
568 typedef struct fpres_cookie {
575 findpres_cb( Operation *op, SlapReply *rs )
577 slap_callback *sc = op->o_callback;
578 fpres_cookie *pc = sc->sc_private;
580 int ret = SLAP_CB_CONTINUE;
582 switch ( rs->sr_type ) {
584 a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryUUID );
586 pc->uuids[pc->num].bv_val = pc->last;
587 AC_MEMCPY( pc->uuids[pc->num].bv_val, a->a_nvals[0].bv_val,
588 pc->uuids[pc->num].bv_len );
590 pc->last = pc->uuids[pc->num].bv_val;
591 pc->uuids[pc->num].bv_val = NULL;
594 if ( pc->num != SLAP_SYNCUUID_SET_SIZE )
600 ret = syncprov_sendinfo( op, rs, LDAP_TAG_SYNC_ID_SET, NULL,
602 pc->uuids[pc->num].bv_val = pc->last;
604 pc->last = pc->uuids[0].bv_val;
614 syncprov_findcsn( Operation *op, find_csn_t mode, struct berval *csn )
616 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
617 syncprov_info_t *si = on->on_bi.bi_private;
619 slap_callback cb = {0};
621 SlapReply frs = { REP_RESULT };
622 char buf[LDAP_PVT_CSNSTR_BUFSIZE + STRLENOF("(entryCSN<=)")];
623 char cbuf[LDAP_PVT_CSNSTR_BUFSIZE];
624 struct berval maxcsn;
626 AttributeAssertion eq = ATTRIBUTEASSERTION_INIT;
627 fpres_cookie pcookie;
628 sync_control *srs = NULL;
629 struct slap_limits_set fc_limits;
630 int i, rc = LDAP_SUCCESS, findcsn_retry = 1;
633 if ( mode != FIND_MAXCSN ) {
634 srs = op->o_controls[slap_cids.sc_LDAPsync];
638 fop.o_sync_mode &= SLAP_CONTROL_MASK; /* turn off sync_mode */
639 /* We want pure entries, not referrals */
640 fop.o_managedsait = SLAP_CONTROL_CRITICAL;
643 cf.f_av_desc = slap_schema.si_ad_entryCSN;
644 BER_BVZERO( &cf.f_av_value );
647 fop.o_callback = &cb;
648 fop.ors_limit = NULL;
649 fop.ors_tlimit = SLAP_NO_LIMIT;
650 fop.ors_filter = &cf;
651 fop.ors_filterstr.bv_val = buf;
656 cf.f_choice = LDAP_FILTER_GE;
657 /* If there are multiple CSNs, use the one with our serverID */
658 for ( i=0; i<si->si_numcsns; i++) {
659 if ( slap_serverID == si->si_sids[i] ) {
664 if ( i == si->si_numcsns ) {
665 /* No match: this is multimaster, and none of the content in the DB
666 * originated locally. Treat like no CSN.
668 return LDAP_NO_SUCH_OBJECT;
670 cf.f_av_value = si->si_ctxcsn[maxid];
671 fop.ors_filterstr.bv_len = snprintf( buf, sizeof( buf ),
672 "(entryCSN>=%s)", cf.f_av_value.bv_val );
673 if ( fop.ors_filterstr.bv_len >= sizeof( buf ) ) {
676 fop.ors_attrsonly = 0;
677 fop.ors_attrs = csn_anlist;
678 fop.ors_slimit = SLAP_NO_LIMIT;
679 cb.sc_private = &maxcsn;
680 cb.sc_response = findmax_cb;
681 strcpy( cbuf, cf.f_av_value.bv_val );
682 maxcsn.bv_val = cbuf;
683 maxcsn.bv_len = cf.f_av_value.bv_len;
686 if ( BER_BVISEMPTY( &cf.f_av_value )) {
687 cf.f_av_value = *csn;
689 fop.o_dn = op->o_bd->be_rootdn;
690 fop.o_ndn = op->o_bd->be_rootndn;
691 fop.o_req_dn = op->o_bd->be_suffix[0];
692 fop.o_req_ndn = op->o_bd->be_nsuffix[0];
693 /* Look for exact match the first time */
694 if ( findcsn_retry ) {
695 cf.f_choice = LDAP_FILTER_EQUALITY;
696 fop.ors_filterstr.bv_len = snprintf( buf, sizeof( buf ),
697 "(entryCSN=%s)", cf.f_av_value.bv_val );
698 /* On retry, look for <= */
700 cf.f_choice = LDAP_FILTER_LE;
701 fop.ors_limit = &fc_limits;
702 memset( &fc_limits, 0, sizeof( fc_limits ));
703 fc_limits.lms_s_unchecked = 1;
704 fop.ors_filterstr.bv_len = snprintf( buf, sizeof( buf ),
705 "(entryCSN<=%s)", cf.f_av_value.bv_val );
707 if ( fop.ors_filterstr.bv_len >= sizeof( buf ) ) {
710 fop.ors_attrsonly = 1;
711 fop.ors_attrs = slap_anlist_no_attrs;
713 cb.sc_private = NULL;
714 cb.sc_response = findcsn_cb;
717 fop.ors_filter = op->ors_filter;
718 fop.ors_filterstr = op->ors_filterstr;
719 fop.ors_attrsonly = 0;
720 fop.ors_attrs = uuid_anlist;
721 fop.ors_slimit = SLAP_NO_LIMIT;
722 cb.sc_private = &pcookie;
723 cb.sc_response = findpres_cb;
726 /* preallocate storage for a full set */
727 pcookie.uuids = op->o_tmpalloc( (SLAP_SYNCUUID_SET_SIZE+1) *
728 sizeof(struct berval) + SLAP_SYNCUUID_SET_SIZE * UUID_LEN,
730 pcookie.last = (char *)(pcookie.uuids + SLAP_SYNCUUID_SET_SIZE+1);
731 pcookie.uuids[0].bv_val = pcookie.last;
732 pcookie.uuids[0].bv_len = UUID_LEN;
733 for (i=1; i<SLAP_SYNCUUID_SET_SIZE; i++) {
734 pcookie.uuids[i].bv_val = pcookie.uuids[i-1].bv_val + UUID_LEN;
735 pcookie.uuids[i].bv_len = UUID_LEN;
740 fop.o_bd->bd_info = (BackendInfo *)on->on_info;
741 fop.o_bd->be_search( &fop, &frs );
742 fop.o_bd->bd_info = (BackendInfo *)on;
746 if ( ber_bvcmp( &si->si_ctxcsn[maxid], &maxcsn )) {
748 Syntax *syn = slap_schema.si_ad_contextCSN->ad_type->sat_syntax;
749 assert( !syn->ssyn_validate( syn, &maxcsn ));
751 ber_bvreplace( &si->si_ctxcsn[maxid], &maxcsn );
752 si->si_numops++; /* ensure a checkpoint */
756 /* If matching CSN was not found, invalidate the context. */
757 if ( !cb.sc_private ) {
758 /* If we didn't find an exact match, then try for <= */
759 if ( findcsn_retry ) {
761 rs_reinit( &frs, REP_RESULT );
764 rc = LDAP_NO_SUCH_OBJECT;
768 op->o_tmpfree( pcookie.uuids, op->o_tmpmemctx );
775 static void free_resinfo( syncres *sr )
779 ldap_pvt_thread_mutex_lock( &sr->s_info->ri_mutex );
780 for (st = &sr->s_info->ri_list; *st; st = &(*st)->s_rilist) {
786 if ( !sr->s_info->ri_list )
788 ldap_pvt_thread_mutex_unlock( &sr->s_info->ri_mutex );
790 ldap_pvt_thread_mutex_destroy( &sr->s_info->ri_mutex );
791 if ( sr->s_info->ri_e )
792 entry_free( sr->s_info->ri_e );
793 if ( !BER_BVISNULL( &sr->s_info->ri_cookie ))
794 ch_free( sr->s_info->ri_cookie.bv_val );
795 ch_free( sr->s_info );
803 syncprov_free_syncop( syncops *so, int flags )
805 syncres *sr, *srnext;
806 GroupAssertion *ga, *gnext;
808 if ( flags & FS_LOCK )
809 ldap_pvt_thread_mutex_lock( &so->s_mutex );
810 /* already being freed, or still in use */
811 if ( !so->s_inuse || --so->s_inuse > 0 ) {
812 if ( flags & FS_LOCK )
813 ldap_pvt_thread_mutex_unlock( &so->s_mutex );
816 ldap_pvt_thread_mutex_unlock( &so->s_mutex );
817 if (( flags & FS_UNLINK ) && so->s_si ) {
819 ldap_pvt_thread_mutex_lock( &so->s_si->si_ops_mutex );
820 for ( sop = &so->s_si->si_ops; *sop; sop = &(*sop)->s_next ) {
826 ldap_pvt_thread_mutex_unlock( &so->s_si->si_ops_mutex );
828 if ( so->s_flags & PS_IS_DETACHED ) {
829 filter_free( so->s_op->ors_filter );
830 for ( ga = so->s_op->o_groups; ga; ga=gnext ) {
836 ch_free( so->s_base.bv_val );
837 for ( sr=so->s_res; sr; sr=srnext ) {
842 ldap_pvt_thread_mutex_destroy( &so->s_mutex );
847 /* Send a persistent search response */
849 syncprov_sendresp( Operation *op, resinfo *ri, syncops *so, int mode )
851 SlapReply rs = { REP_SEARCH };
852 struct berval cookie, csns[2];
854 Attribute a_uuid = {0};
856 if ( so->s_op->o_abandon )
857 return SLAPD_ABANDON;
859 rs.sr_ctrls = op->o_tmpalloc( sizeof(LDAPControl *)*2, op->o_tmpmemctx );
860 rs.sr_ctrls[1] = NULL;
861 rs.sr_flags = REP_CTRLS_MUSTBEFREED;
862 csns[0] = ri->ri_csn;
863 BER_BVZERO( &csns[1] );
864 slap_compose_sync_cookie( op, &cookie, csns, so->s_rid, slap_serverID ? slap_serverID : -1 );
867 if ( so->s_sid > 0 ) {
868 Debug( LDAP_DEBUG_SYNC, "syncprov_sendresp: to=%03x, cookie=%s\n",
869 so->s_sid, cookie.bv_val, 0 );
871 Debug( LDAP_DEBUG_SYNC, "syncprov_sendresp: cookie=%s\n",
872 cookie.bv_val, 0, 0 );
876 e_uuid.e_attrs = &a_uuid;
877 a_uuid.a_desc = slap_schema.si_ad_entryUUID;
878 a_uuid.a_nvals = &ri->ri_uuid;
879 rs.sr_err = syncprov_state_ctrl( op, &rs, &e_uuid,
880 mode, rs.sr_ctrls, 0, 1, &cookie );
881 op->o_tmpfree( cookie.bv_val, op->o_tmpmemctx );
883 rs.sr_entry = &e_uuid;
884 if ( mode == LDAP_SYNC_ADD || mode == LDAP_SYNC_MODIFY ) {
886 e_uuid.e_private = NULL;
891 if ( ri->ri_isref && so->s_op->o_managedsait <= SLAP_CONTROL_IGNORED ) {
892 rs.sr_ref = get_entry_referrals( op, rs.sr_entry );
893 rs.sr_err = send_search_reference( op, &rs );
894 ber_bvarray_free( rs.sr_ref );
898 case LDAP_SYNC_MODIFY:
899 rs.sr_attrs = op->ors_attrs;
900 rs.sr_err = send_search_entry( op, &rs );
902 case LDAP_SYNC_DELETE:
903 e_uuid.e_attrs = NULL;
904 e_uuid.e_name = ri->ri_dn;
905 e_uuid.e_nname = ri->ri_ndn;
906 if ( ri->ri_isref && so->s_op->o_managedsait <= SLAP_CONTROL_IGNORED ) {
907 struct berval bv = BER_BVNULL;
909 rs.sr_err = send_search_reference( op, &rs );
911 rs.sr_err = send_search_entry( op, &rs );
921 syncprov_qstart( syncops *so );
923 /* Play back queued responses */
925 syncprov_qplay( Operation *op, syncops *so )
931 ldap_pvt_thread_mutex_lock( &so->s_mutex );
933 /* Exit loop with mutex held */
936 so->s_res = sr->s_next;
938 so->s_restail = NULL;
939 ldap_pvt_thread_mutex_unlock( &so->s_mutex );
941 if ( !so->s_op->o_abandon ) {
943 if ( sr->s_mode == LDAP_SYNC_NEW_COOKIE ) {
944 SlapReply rs = { REP_INTERMEDIATE };
946 rc = syncprov_sendinfo( op, &rs, LDAP_TAG_SYNC_NEW_COOKIE,
947 &sr->s_info->ri_cookie, 0, NULL, 0 );
949 rc = syncprov_sendresp( op, sr->s_info, so, sr->s_mode );
956 if ( so->s_op->o_abandon )
959 /* Exit loop with mutex held */
960 ldap_pvt_thread_mutex_lock( &so->s_mutex );
965 /* We now only send one change at a time, to prevent one
966 * psearch from hogging all the CPU. Resubmit this task if
967 * there are more responses queued and no errors occurred.
970 if ( rc == 0 && so->s_res ) {
971 syncprov_qstart( so );
977 /* task for playing back queued responses */
979 syncprov_qtask( void *ctx, void *arg )
982 OperationBuffer opbuf;
989 op->o_hdr = &opbuf.ob_hdr;
990 op->o_controls = opbuf.ob_controls;
991 memset( op->o_controls, 0, sizeof(opbuf.ob_controls) );
992 op->o_sync = SLAP_CONTROL_IGNORED;
994 *op->o_hdr = *so->s_op->o_hdr;
996 op->o_tmpmemctx = slap_sl_mem_create(SLAP_SLAB_SIZE, SLAP_SLAB_STACK, ctx, 1);
997 op->o_tmpmfuncs = &slap_sl_mfuncs;
998 op->o_threadctx = ctx;
1000 /* syncprov_qplay expects a fake db */
1001 be = *so->s_op->o_bd;
1002 be.be_flags |= SLAP_DBFLAG_OVERLAY;
1004 LDAP_SLIST_FIRST(&op->o_extra) = NULL;
1005 op->o_callback = NULL;
1007 rc = syncprov_qplay( op, so );
1009 /* if an error occurred, or no responses left, task is no longer queued */
1010 if ( !rc && !so->s_res )
1013 /* decrement use count... */
1014 if ( !syncprov_free_syncop( so, FS_UNLINK )) {
1016 /* if we didn't unlink, and task is no longer queued, clear flag */
1017 so->s_flags ^= PS_TASK_QUEUED;
1018 ldap_pvt_thread_mutex_unlock( &so->s_mutex );
1024 /* Start the task to play back queued psearch responses */
1026 syncprov_qstart( syncops *so )
1028 so->s_flags |= PS_TASK_QUEUED;
1030 ldap_pvt_thread_pool_submit2( &connection_pool,
1031 syncprov_qtask, so, &so->s_pool_cookie );
1034 /* Queue a persistent search response */
1036 syncprov_qresp( opcookie *opc, syncops *so, int mode )
1041 struct berval csn = opc->sctxcsn;
1043 sr = ch_malloc( sizeof( syncres ));
1046 if ( !opc->ssres.s_info ) {
1048 srsize = sizeof( resinfo );
1050 srsize += csn.bv_len + 1;
1054 ri = ch_malloc( srsize );
1055 ri->ri_dn = opc->se->e_name;
1056 ri->ri_ndn = opc->se->e_nname;
1057 a = attr_find( opc->se->e_attrs, slap_schema.si_ad_entryUUID );
1059 ri->ri_uuid = a->a_nvals[0];
1061 ri->ri_uuid.bv_len = 0;
1063 ri->ri_csn.bv_val = (char *)(ri + 1);
1064 ri->ri_csn.bv_len = csn.bv_len;
1065 memcpy( ri->ri_csn.bv_val, csn.bv_val, csn.bv_len );
1066 ri->ri_csn.bv_val[csn.bv_len] = '\0';
1068 ri->ri_csn.bv_val = NULL;
1071 srsize += opc->suuid.bv_len +
1072 opc->sdn.bv_len + 1 + opc->sndn.bv_len + 1;
1073 ri = ch_malloc( srsize );
1074 ri->ri_dn.bv_val = (char *)(ri + 1);
1075 ri->ri_dn.bv_len = opc->sdn.bv_len;
1076 ri->ri_ndn.bv_val = lutil_strcopy( ri->ri_dn.bv_val,
1077 opc->sdn.bv_val ) + 1;
1078 ri->ri_ndn.bv_len = opc->sndn.bv_len;
1079 ri->ri_uuid.bv_val = lutil_strcopy( ri->ri_ndn.bv_val,
1080 opc->sndn.bv_val ) + 1;
1081 ri->ri_uuid.bv_len = opc->suuid.bv_len;
1082 AC_MEMCPY( ri->ri_uuid.bv_val, opc->suuid.bv_val, opc->suuid.bv_len );
1084 ri->ri_csn.bv_val = ri->ri_uuid.bv_val + ri->ri_uuid.bv_len;
1085 memcpy( ri->ri_csn.bv_val, csn.bv_val, csn.bv_len );
1086 ri->ri_csn.bv_val[csn.bv_len] = '\0';
1088 ri->ri_csn.bv_val = NULL;
1091 ri->ri_list = &opc->ssres;
1093 ri->ri_csn.bv_len = csn.bv_len;
1094 ri->ri_isref = opc->sreference;
1095 BER_BVZERO( &ri->ri_cookie );
1096 ldap_pvt_thread_mutex_init( &ri->ri_mutex );
1098 opc->ssres.s_info = ri;
1100 ri = opc->ssres.s_info;
1102 ldap_pvt_thread_mutex_lock( &ri->ri_mutex );
1103 sr->s_rilist = ri->ri_list;
1105 if ( mode == LDAP_SYNC_NEW_COOKIE && BER_BVISNULL( &ri->ri_cookie )) {
1106 syncprov_info_t *si = opc->son->on_bi.bi_private;
1108 slap_compose_sync_cookie( NULL, &ri->ri_cookie, si->si_ctxcsn,
1109 so->s_rid, slap_serverID ? slap_serverID : -1);
1111 ldap_pvt_thread_mutex_unlock( &ri->ri_mutex );
1113 ldap_pvt_thread_mutex_lock( &so->s_mutex );
1117 so->s_restail->s_next = sr;
1121 /* If the base of the psearch was modified, check it next time round */
1122 if ( so->s_flags & PS_WROTE_BASE ) {
1123 so->s_flags ^= PS_WROTE_BASE;
1124 so->s_flags |= PS_FIND_BASE;
1126 if (( so->s_flags & (PS_IS_DETACHED|PS_TASK_QUEUED)) == PS_IS_DETACHED ) {
1127 syncprov_qstart( so );
1129 ldap_pvt_thread_mutex_unlock( &so->s_mutex );
1130 return LDAP_SUCCESS;
1134 syncprov_drop_psearch( syncops *so, int lock )
1136 if ( so->s_flags & PS_IS_DETACHED ) {
1138 ldap_pvt_thread_mutex_lock( &so->s_op->o_conn->c_mutex );
1139 so->s_op->o_conn->c_n_ops_executing--;
1140 so->s_op->o_conn->c_n_ops_completed++;
1141 LDAP_STAILQ_REMOVE( &so->s_op->o_conn->c_ops, so->s_op, Operation,
1144 ldap_pvt_thread_mutex_unlock( &so->s_op->o_conn->c_mutex );
1146 return syncprov_free_syncop( so, FS_LOCK );
1150 syncprov_ab_cleanup( Operation *op, SlapReply *rs )
1152 slap_callback *sc = op->o_callback;
1153 op->o_callback = sc->sc_next;
1154 syncprov_drop_psearch( sc->sc_private, 0 );
1155 op->o_tmpfree( sc, op->o_tmpmemctx );
1160 syncprov_op_abandon( Operation *op, SlapReply *rs )
1162 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
1163 syncprov_info_t *si = on->on_bi.bi_private;
1166 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
1167 for ( sop=&si->si_ops; (so = *sop); sop = &(*sop)->s_next ) {
1168 if ( so->s_op->o_connid == op->o_connid &&
1169 so->s_op->o_msgid == op->orn_msgid ) {
1170 so->s_op->o_abandon = 1;
1175 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
1177 /* Is this really a Cancel exop? */
1178 if ( op->o_tag != LDAP_REQ_ABANDON ) {
1179 so->s_op->o_cancel = SLAP_CANCEL_ACK;
1180 rs->sr_err = LDAP_CANCELLED;
1181 send_ldap_result( so->s_op, rs );
1182 if ( so->s_flags & PS_IS_DETACHED ) {
1184 cb = op->o_tmpcalloc( 1, sizeof(slap_callback), op->o_tmpmemctx );
1185 cb->sc_cleanup = syncprov_ab_cleanup;
1186 cb->sc_next = op->o_callback;
1187 cb->sc_private = so;
1188 op->o_callback = cb;
1189 return SLAP_CB_CONTINUE;
1192 syncprov_drop_psearch( so, 0 );
1194 return SLAP_CB_CONTINUE;
1197 /* Find which persistent searches are affected by this operation */
1199 syncprov_matchops( Operation *op, opcookie *opc, int saveit )
1201 slap_overinst *on = opc->son;
1202 syncprov_info_t *si = on->on_bi.bi_private;
1209 struct berval newdn;
1211 BackendDB *b0 = op->o_bd, db;
1213 fc.fdn = &op->o_req_ndn;
1214 /* compute new DN */
1215 if ( op->o_tag == LDAP_REQ_MODRDN && !saveit ) {
1217 if ( op->orr_nnewSup ) pdn = *op->orr_nnewSup;
1218 else dnParent( fc.fdn, &pdn );
1219 build_new_dn( &newdn, &pdn, &op->orr_nnewrdn, op->o_tmpmemctx );
1223 if ( op->o_tag != LDAP_REQ_ADD ) {
1224 if ( !SLAP_ISOVERLAY( op->o_bd )) {
1228 rc = overlay_entry_get_ov( op, fc.fdn, NULL, NULL, 0, &e, on );
1229 /* If we're sending responses now, make a copy and unlock the DB */
1230 if ( e && !saveit ) {
1232 opc->se = entry_dup( e );
1233 overlay_entry_release_ov( op, e, 0, on );
1244 opc->se = entry_dup( e );
1249 if ( saveit || op->o_tag == LDAP_REQ_ADD ) {
1250 ber_dupbv_x( &opc->sdn, &e->e_name, op->o_tmpmemctx );
1251 ber_dupbv_x( &opc->sndn, &e->e_nname, op->o_tmpmemctx );
1252 opc->sreference = is_entry_referral( e );
1253 a = attr_find( e->e_attrs, slap_schema.si_ad_entryUUID );
1255 ber_dupbv_x( &opc->suuid, &a->a_nvals[0], op->o_tmpmemctx );
1256 } else if ( op->o_tag == LDAP_REQ_MODRDN && !saveit ) {
1257 op->o_tmpfree( opc->sndn.bv_val, op->o_tmpmemctx );
1258 op->o_tmpfree( opc->sdn.bv_val, op->o_tmpmemctx );
1259 ber_dupbv_x( &opc->sdn, &e->e_name, op->o_tmpmemctx );
1260 ber_dupbv_x( &opc->sndn, &e->e_nname, op->o_tmpmemctx );
1263 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
1264 for (pss = &si->si_ops; *pss; pss = gonext ? &(*pss)->s_next : pss)
1270 syncops *snext, *ss = *pss;
1273 if ( ss->s_op->o_abandon )
1276 /* Don't send ops back to the originator */
1277 if ( opc->osid > 0 && opc->osid == ss->s_sid ) {
1278 Debug( LDAP_DEBUG_SYNC, "syncprov_matchops: skipping original sid %03x\n",
1283 /* Don't send ops back to the messenger */
1284 if ( opc->rsid > 0 && opc->rsid == ss->s_sid ) {
1285 Debug( LDAP_DEBUG_SYNC, "syncprov_matchops: skipping relayed sid %03x\n",
1295 /* If the base of the search is missing, signal a refresh */
1296 rc = syncprov_findbase( op, &fc );
1297 if ( rc != LDAP_SUCCESS ) {
1298 SlapReply rs = {REP_RESULT};
1299 send_ldap_error( ss->s_op, &rs, LDAP_SYNC_REFRESH_REQUIRED,
1300 "search base has changed" );
1302 if ( syncprov_drop_psearch( ss, 1 ) )
1308 /* If we're sending results now, look for this op in old matches */
1312 /* Did we modify the search base? */
1313 if ( dn_match( &op->o_req_ndn, &ss->s_base )) {
1314 ldap_pvt_thread_mutex_lock( &ss->s_mutex );
1315 ss->s_flags |= PS_WROTE_BASE;
1316 ldap_pvt_thread_mutex_unlock( &ss->s_mutex );
1319 for ( sm=opc->smatches, old=(syncmatches *)&opc->smatches; sm;
1320 old=sm, sm=sm->sm_next ) {
1321 if ( sm->sm_op == ss ) {
1323 old->sm_next = sm->sm_next;
1324 op->o_tmpfree( sm, op->o_tmpmemctx );
1331 ldap_pvt_thread_mutex_lock( &ss->s_mutex );
1334 oh.oh_conn = ss->s_op->o_conn;
1335 oh.oh_connid = ss->s_op->o_connid;
1336 op2.o_bd = op->o_bd->bd_self;
1338 op2.o_extra = op->o_extra;
1339 op2.o_callback = NULL;
1340 if (ss->s_flags & PS_FIX_FILTER) {
1341 /* Skip the AND/GE clause that we stuck on in front. We
1342 would lose deletes/mods that happen during the refresh
1343 phase otherwise (ITS#6555) */
1344 op2.ors_filter = ss->s_op->ors_filter->f_and->f_next;
1346 rc = test_filter( &op2, e, op2.ors_filter );
1347 ldap_pvt_thread_mutex_unlock( &ss->s_mutex );
1350 Debug( LDAP_DEBUG_TRACE, "syncprov_matchops: sid %03x fscope %d rc %d\n",
1351 ss->s_sid, fc.fscope, rc );
1353 /* check if current o_req_dn is in scope and matches filter */
1354 if ( fc.fscope && rc == LDAP_COMPARE_TRUE ) {
1356 sm = op->o_tmpalloc( sizeof(syncmatches), op->o_tmpmemctx );
1357 sm->sm_next = opc->smatches;
1359 ldap_pvt_thread_mutex_lock( &ss->s_mutex );
1361 ldap_pvt_thread_mutex_unlock( &ss->s_mutex );
1364 /* if found send UPDATE else send ADD */
1365 syncprov_qresp( opc, ss,
1366 found ? LDAP_SYNC_MODIFY : LDAP_SYNC_ADD );
1368 } else if ( !saveit && found ) {
1370 syncprov_qresp( opc, ss, LDAP_SYNC_DELETE );
1371 } else if ( !saveit ) {
1372 syncprov_qresp( opc, ss, LDAP_SYNC_NEW_COOKIE );
1374 if ( !saveit && found ) {
1375 /* Decrement s_inuse, was incremented when called
1376 * with saveit == TRUE
1379 if ( syncprov_free_syncop( ss, FS_LOCK ) ) {
1385 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
1387 if ( op->o_tag != LDAP_REQ_ADD && e ) {
1388 if ( !SLAP_ISOVERLAY( op->o_bd )) {
1392 overlay_entry_release_ov( op, e, 0, on );
1396 if ( opc->ssres.s_info )
1397 free_resinfo( &opc->ssres );
1399 entry_free( opc->se );
1402 op->o_tmpfree( fc.fdn->bv_val, op->o_tmpmemctx );
1408 syncprov_op_cleanup( Operation *op, SlapReply *rs )
1410 slap_callback *cb = op->o_callback;
1411 opcookie *opc = cb->sc_private;
1412 slap_overinst *on = opc->son;
1413 syncprov_info_t *si = on->on_bi.bi_private;
1414 syncmatches *sm, *snext;
1417 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
1418 if ( si->si_active )
1420 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
1422 for (sm = opc->smatches; sm; sm=snext) {
1423 snext = sm->sm_next;
1424 syncprov_free_syncop( sm->sm_op, FS_LOCK|FS_UNLINK );
1425 op->o_tmpfree( sm, op->o_tmpmemctx );
1428 /* Remove op from lock table */
1431 modinst *mi = (modinst *)(opc+1), **m2;
1432 ldap_pvt_thread_mutex_lock( &mt->mt_mutex );
1433 for (m2 = &mt->mt_mods; ; m2 = &(*m2)->mi_next) {
1436 if ( mt->mt_tail == mi )
1437 mt->mt_tail = ( m2 == &mt->mt_mods ) ? NULL : (modinst *)m2;
1441 /* If there are more, promote the next one */
1442 if ( mt->mt_mods ) {
1443 ldap_pvt_thread_mutex_unlock( &mt->mt_mutex );
1445 ldap_pvt_thread_mutex_unlock( &mt->mt_mutex );
1446 ldap_pvt_thread_mutex_lock( &si->si_mods_mutex );
1447 avl_delete( &si->si_mods, mt, sp_avl_cmp );
1448 ldap_pvt_thread_mutex_unlock( &si->si_mods_mutex );
1449 ldap_pvt_thread_mutex_destroy( &mt->mt_mutex );
1450 ch_free( mt->mt_dn.bv_val );
1454 if ( !BER_BVISNULL( &opc->suuid ))
1455 op->o_tmpfree( opc->suuid.bv_val, op->o_tmpmemctx );
1456 if ( !BER_BVISNULL( &opc->sndn ))
1457 op->o_tmpfree( opc->sndn.bv_val, op->o_tmpmemctx );
1458 if ( !BER_BVISNULL( &opc->sdn ))
1459 op->o_tmpfree( opc->sdn.bv_val, op->o_tmpmemctx );
1460 op->o_callback = cb->sc_next;
1461 op->o_tmpfree(cb, op->o_tmpmemctx);
1467 syncprov_checkpoint( Operation *op, slap_overinst *on )
1469 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
1472 SlapReply rsm = {REP_RESULT};
1473 slap_callback cb = {0};
1478 Syntax *syn = slap_schema.si_ad_contextCSN->ad_type->sat_syntax;
1481 for ( i=0; i<si->si_numcsns; i++ ) {
1482 assert( !syn->ssyn_validate( syn, si->si_ctxcsn+i ));
1485 mod.sml_numvals = si->si_numcsns;
1486 mod.sml_values = si->si_ctxcsn;
1487 mod.sml_nvalues = NULL;
1488 mod.sml_desc = slap_schema.si_ad_contextCSN;
1489 mod.sml_op = LDAP_MOD_REPLACE;
1490 mod.sml_flags = SLAP_MOD_INTERNAL;
1491 mod.sml_next = NULL;
1493 cb.sc_response = slap_null_cb;
1495 opm.o_tag = LDAP_REQ_MODIFY;
1496 opm.o_callback = &cb;
1497 opm.orm_modlist = &mod;
1498 opm.orm_no_opattrs = 1;
1499 if ( SLAP_GLUE_SUBORDINATE( op->o_bd )) {
1500 be = *on->on_info->oi_origdb;
1503 opm.o_req_dn = si->si_contextdn;
1504 opm.o_req_ndn = si->si_contextdn;
1505 bi = opm.o_bd->bd_info;
1506 opm.o_bd->bd_info = on->on_info->oi_orig;
1507 opm.o_managedsait = SLAP_CONTROL_NONCRITICAL;
1508 opm.o_no_schema_check = 1;
1509 opm.o_dont_replicate = 1;
1511 opm.o_bd->be_modify( &opm, &rsm );
1513 if ( rsm.sr_err == LDAP_NO_SUCH_OBJECT &&
1514 SLAP_SYNC_SUBENTRY( opm.o_bd )) {
1516 char txtbuf[SLAP_TEXT_BUFLEN];
1517 size_t textlen = sizeof txtbuf;
1518 Entry *e = slap_create_context_csn_entry( opm.o_bd, NULL );
1519 rs_reinit( &rsm, REP_RESULT );
1520 slap_mods2entry( &mod, &e, 0, 1, &text, txtbuf, textlen);
1522 opm.o_bd->be_add( &opm, &rsm );
1523 if ( e == opm.ora_e )
1524 be_entry_release_w( &opm, opm.ora_e );
1526 opm.o_bd->bd_info = bi;
1528 if ( mod.sml_next != NULL ) {
1529 slap_mods_free( mod.sml_next, 1 );
1532 for ( i=0; i<si->si_numcsns; i++ ) {
1533 assert( !syn->ssyn_validate( syn, si->si_ctxcsn+i ));
1539 syncprov_add_slog( Operation *op )
1541 opcookie *opc = op->o_callback->sc_private;
1542 slap_overinst *on = opc->son;
1543 syncprov_info_t *si = on->on_bi.bi_private;
1549 if ( BER_BVISEMPTY( &op->o_csn ) ) {
1550 /* During the syncrepl refresh phase we can receive operations
1551 * without a csn. We cannot reliably determine the consumers
1552 * state with respect to such operations, so we ignore them and
1553 * wipe out anything in the log if we see them.
1555 ldap_pvt_thread_mutex_lock( &sl->sl_mutex );
1556 /* can only do this if no one else is reading the log at the moment */
1557 if (!sl->sl_playing) {
1558 while ( se = sl->sl_head ) {
1559 sl->sl_head = se->se_next;
1565 ldap_pvt_thread_mutex_unlock( &sl->sl_mutex );
1569 /* Allocate a record. UUIDs are not NUL-terminated. */
1570 se = ch_malloc( sizeof( slog_entry ) + opc->suuid.bv_len +
1571 op->o_csn.bv_len + 1 );
1573 se->se_tag = op->o_tag;
1575 se->se_uuid.bv_val = (char *)(&se[1]);
1576 AC_MEMCPY( se->se_uuid.bv_val, opc->suuid.bv_val, opc->suuid.bv_len );
1577 se->se_uuid.bv_len = opc->suuid.bv_len;
1579 se->se_csn.bv_val = se->se_uuid.bv_val + opc->suuid.bv_len;
1580 AC_MEMCPY( se->se_csn.bv_val, op->o_csn.bv_val, op->o_csn.bv_len );
1581 se->se_csn.bv_val[op->o_csn.bv_len] = '\0';
1582 se->se_csn.bv_len = op->o_csn.bv_len;
1583 se->se_sid = slap_parse_csn_sid( &se->se_csn );
1585 ldap_pvt_thread_mutex_lock( &sl->sl_mutex );
1586 if ( sl->sl_head ) {
1587 /* Keep the list in csn order. */
1588 if ( ber_bvcmp( &sl->sl_tail->se_csn, &se->se_csn ) <= 0 ) {
1589 sl->sl_tail->se_next = se;
1594 for ( sep = &sl->sl_head; *sep; sep = &(*sep)->se_next ) {
1595 if ( ber_bvcmp( &se->se_csn, &(*sep)->se_csn ) < 0 ) {
1605 if ( !sl->sl_mincsn ) {
1607 sl->sl_mincsn = ch_malloc( 2*sizeof( struct berval ));
1608 sl->sl_sids = ch_malloc( sizeof( int ));
1609 sl->sl_sids[0] = se->se_sid;
1610 ber_dupbv( sl->sl_mincsn, &se->se_csn );
1611 BER_BVZERO( &sl->sl_mincsn[1] );
1615 if (!sl->sl_playing) {
1616 while ( sl->sl_num > sl->sl_size ) {
1619 sl->sl_head = se->se_next;
1620 for ( i=0; i<sl->sl_numcsns; i++ )
1621 if ( sl->sl_sids[i] >= se->se_sid )
1623 if ( i == sl->sl_numcsns || sl->sl_sids[i] != se->se_sid ) {
1624 slap_insert_csn_sids( (struct sync_cookie *)sl,
1625 i, se->se_sid, &se->se_csn );
1627 ber_bvreplace( &sl->sl_mincsn[i], &se->se_csn );
1633 ldap_pvt_thread_mutex_unlock( &sl->sl_mutex );
1637 /* Just set a flag if we found the matching entry */
1639 playlog_cb( Operation *op, SlapReply *rs )
1641 if ( rs->sr_type == REP_SEARCH ) {
1642 op->o_callback->sc_private = (void *)1;
1647 /* enter with sl->sl_mutex locked, release before returning */
1649 syncprov_playlog( Operation *op, SlapReply *rs, sessionlog *sl,
1650 sync_control *srs, BerVarray ctxcsn, int numcsns, int *sids )
1652 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
1654 int i, j, ndel, num, nmods, mmods;
1655 char cbuf[LDAP_PVT_CSNSTR_BUFSIZE];
1657 struct berval delcsn[2];
1659 if ( !sl->sl_num ) {
1660 ldap_pvt_thread_mutex_unlock( &sl->sl_mutex );
1668 ldap_pvt_thread_mutex_unlock( &sl->sl_mutex );
1670 uuids = op->o_tmpalloc( (num+1) * sizeof( struct berval ) +
1671 num * UUID_LEN, op->o_tmpmemctx );
1672 uuids[0].bv_val = (char *)(uuids + num + 1);
1674 delcsn[0].bv_len = 0;
1675 delcsn[0].bv_val = cbuf;
1676 BER_BVZERO(&delcsn[1]);
1678 /* Make a copy of the relevant UUIDs. Put the Deletes up front
1679 * and everything else at the end. Do this first so we can
1680 * unlock the list mutex.
1682 Debug( LDAP_DEBUG_SYNC, "srs csn %s\n",
1683 srs->sr_state.ctxcsn[0].bv_val, 0, 0 );
1684 for ( se=sl->sl_head; se; se=se->se_next ) {
1686 Debug( LDAP_DEBUG_SYNC, "log csn %s\n", se->se_csn.bv_val, 0, 0 );
1688 for ( k=0; k<srs->sr_state.numcsns; k++ ) {
1689 if ( se->se_sid == srs->sr_state.sids[k] ) {
1690 ndel = ber_bvcmp( &se->se_csn, &srs->sr_state.ctxcsn[k] );
1695 Debug( LDAP_DEBUG_SYNC, "cmp %d, too old\n", ndel, 0, 0 );
1699 for ( k=0; k<numcsns; k++ ) {
1700 if ( se->se_sid == sids[k] ) {
1701 ndel = ber_bvcmp( &se->se_csn, &ctxcsn[k] );
1706 Debug( LDAP_DEBUG_SYNC, "cmp %d, too new\n", ndel, 0, 0 );
1709 if ( se->se_tag == LDAP_REQ_DELETE ) {
1712 AC_MEMCPY( cbuf, se->se_csn.bv_val, se->se_csn.bv_len );
1713 delcsn[0].bv_len = se->se_csn.bv_len;
1714 delcsn[0].bv_val[delcsn[0].bv_len] = '\0';
1716 if ( se->se_tag == LDAP_REQ_ADD )
1721 uuids[j].bv_val = uuids[0].bv_val + (j * UUID_LEN);
1722 AC_MEMCPY(uuids[j].bv_val, se->se_uuid.bv_val, UUID_LEN);
1723 uuids[j].bv_len = UUID_LEN;
1725 ldap_pvt_thread_mutex_lock( &sl->sl_mutex );
1727 ldap_pvt_thread_mutex_unlock( &sl->sl_mutex );
1731 /* Zero out unused slots */
1732 for ( i=ndel; i < num - nmods; i++ )
1733 uuids[i].bv_len = 0;
1735 /* Mods must be validated to see if they belong in this delete set.
1739 /* Strip any duplicates */
1740 for ( i=0; i<nmods; i++ ) {
1741 for ( j=0; j<ndel; j++ ) {
1742 if ( bvmatch( &uuids[j], &uuids[num - 1 - i] )) {
1743 uuids[num - 1 - i].bv_len = 0;
1748 if ( uuids[num - 1 - i].bv_len == 0 ) continue;
1749 for ( j=0; j<i; j++ ) {
1750 if ( bvmatch( &uuids[num - 1 - j], &uuids[num - 1 - i] )) {
1751 uuids[num - 1 - i].bv_len = 0;
1762 AttributeAssertion eq = ATTRIBUTEASSERTION_INIT;
1763 slap_callback cb = {0};
1767 fop.o_sync_mode = 0;
1768 fop.o_callback = &cb;
1769 fop.ors_limit = NULL;
1770 fop.ors_tlimit = SLAP_NO_LIMIT;
1771 fop.ors_attrs = slap_anlist_all_attributes;
1772 fop.ors_attrsonly = 0;
1773 fop.o_managedsait = SLAP_CONTROL_CRITICAL;
1775 af.f_choice = LDAP_FILTER_AND;
1778 mf.f_choice = LDAP_FILTER_EQUALITY;
1780 mf.f_av_desc = slap_schema.si_ad_entryUUID;
1781 mf.f_next = fop.ors_filter;
1783 fop.ors_filter = ⁡
1785 cb.sc_response = playlog_cb;
1786 fop.o_bd->bd_info = (BackendInfo *)on->on_info;
1788 for ( i=ndel; i<num; i++ ) {
1789 if ( uuids[i].bv_len != 0 ) {
1790 SlapReply frs = { REP_RESULT };
1792 mf.f_av_value = uuids[i];
1793 cb.sc_private = NULL;
1795 rc = fop.o_bd->be_search( &fop, &frs );
1797 /* If entry was not found, add to delete list */
1798 if ( !cb.sc_private ) {
1799 uuids[ndel++] = uuids[i];
1803 fop.o_bd->bd_info = (BackendInfo *)on;
1806 struct berval cookie;
1808 if ( delcsn[0].bv_len ) {
1809 slap_compose_sync_cookie( op, &cookie, delcsn, srs->sr_state.rid,
1810 slap_serverID ? slap_serverID : -1 );
1812 Debug( LDAP_DEBUG_SYNC, "syncprov_playlog: cookie=%s\n", cookie.bv_val, 0, 0 );
1815 uuids[ndel].bv_val = NULL;
1816 syncprov_sendinfo( op, rs, LDAP_TAG_SYNC_ID_SET,
1817 delcsn[0].bv_len ? &cookie : NULL, 0, uuids, 1 );
1818 if ( delcsn[0].bv_len ) {
1819 op->o_tmpfree( cookie.bv_val, op->o_tmpmemctx );
1822 op->o_tmpfree( uuids, op->o_tmpmemctx );
1826 syncprov_new_ctxcsn( opcookie *opc, syncprov_info_t *si, int csn_changed, int numvals, BerVarray vals )
1831 for ( i=0; i<numvals; i++ ) {
1832 sid = slap_parse_csn_sid( &vals[i] );
1833 for ( j=0; j<si->si_numcsns; j++ ) {
1834 if ( sid < si->si_sids[j] )
1836 if ( sid == si->si_sids[j] ) {
1837 if ( ber_bvcmp( &vals[i], &si->si_ctxcsn[j] ) > 0 ) {
1838 ber_bvreplace( &si->si_ctxcsn[j], &vals[i] );
1845 if ( j == si->si_numcsns || sid != si->si_sids[j] ) {
1846 slap_insert_csn_sids( (struct sync_cookie *)&si->si_ctxcsn,
1853 ldap_pvt_thread_rdwr_wunlock( &si->si_csn_rwlock );
1855 if ( csn_changed ) {
1857 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
1858 for ( ss = si->si_ops; ss; ss = ss->s_next ) {
1859 if ( ss->s_op->o_abandon )
1861 /* Send the updated csn to all syncrepl consumers,
1862 * including the server from which it originated.
1863 * The syncrepl consumer and syncprov provider on
1864 * the originating server may be configured to store
1865 * their csn values in different entries.
1867 syncprov_qresp( opc, ss, LDAP_SYNC_NEW_COOKIE );
1869 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
1875 syncprov_op_response( Operation *op, SlapReply *rs )
1877 opcookie *opc = op->o_callback->sc_private;
1878 slap_overinst *on = opc->son;
1879 syncprov_info_t *si = on->on_bi.bi_private;
1882 if ( rs->sr_err == LDAP_SUCCESS )
1884 struct berval maxcsn;
1885 char cbuf[LDAP_PVT_CSNSTR_BUFSIZE];
1886 int do_check = 0, have_psearches, foundit, csn_changed = 0;
1888 ldap_pvt_thread_mutex_lock( &si->si_resp_mutex );
1890 /* Update our context CSN */
1892 maxcsn.bv_val = cbuf;
1893 maxcsn.bv_len = sizeof(cbuf);
1894 ldap_pvt_thread_rdwr_wlock( &si->si_csn_rwlock );
1896 slap_get_commit_csn( op, &maxcsn, &foundit );
1897 if ( BER_BVISEMPTY( &maxcsn ) && SLAP_GLUE_SUBORDINATE( op->o_bd )) {
1898 /* syncrepl queues the CSN values in the db where
1899 * it is configured , not where the changes are made.
1900 * So look for a value in the glue db if we didn't
1901 * find any in this db.
1903 BackendDB *be = op->o_bd;
1904 op->o_bd = select_backend( &be->be_nsuffix[0], 1);
1905 maxcsn.bv_val = cbuf;
1906 maxcsn.bv_len = sizeof(cbuf);
1907 slap_get_commit_csn( op, &maxcsn, &foundit );
1910 if ( !BER_BVISEMPTY( &maxcsn ) ) {
1913 Syntax *syn = slap_schema.si_ad_contextCSN->ad_type->sat_syntax;
1914 assert( !syn->ssyn_validate( syn, &maxcsn ));
1916 sid = slap_parse_csn_sid( &maxcsn );
1917 for ( i=0; i<si->si_numcsns; i++ ) {
1918 if ( sid < si->si_sids[i] )
1920 if ( sid == si->si_sids[i] ) {
1921 if ( ber_bvcmp( &maxcsn, &si->si_ctxcsn[i] ) > 0 ) {
1922 ber_bvreplace( &si->si_ctxcsn[i], &maxcsn );
1928 /* It's a new SID for us */
1929 if ( i == si->si_numcsns || sid != si->si_sids[i] ) {
1930 slap_insert_csn_sids((struct sync_cookie *)&(si->si_ctxcsn),
1936 /* Don't do any processing for consumer contextCSN updates */
1937 if ( SLAPD_SYNC_IS_SYNCCONN( op->o_connid ) &&
1938 op->o_tag == LDAP_REQ_MODIFY &&
1940 op->orm_modlist->sml_op == LDAP_MOD_REPLACE &&
1941 op->orm_modlist->sml_desc == slap_schema.si_ad_contextCSN ) {
1942 /* Catch contextCSN updates from syncrepl. We have to look at
1943 * all the attribute values, as there may be more than one csn
1944 * that changed, and only one can be passed in the csn queue.
1946 csn_changed = syncprov_new_ctxcsn( opc, si, csn_changed,
1947 op->orm_modlist->sml_numvals, op->orm_modlist->sml_values );
1952 if ( op->o_dont_replicate ) {
1955 ldap_pvt_thread_rdwr_wunlock( &si->si_csn_rwlock );
1959 /* If we're adding the context entry, parse all of its contextCSNs */
1960 if ( op->o_tag == LDAP_REQ_ADD &&
1961 dn_match( &op->o_req_ndn, &si->si_contextdn )) {
1962 Attribute *a = attr_find( op->ora_e->e_attrs, slap_schema.si_ad_contextCSN );
1964 csn_changed = syncprov_new_ctxcsn( opc, si, csn_changed, a->a_numvals, a->a_vals );
1973 if ( si->si_chkops || si->si_chktime ) {
1974 /* Never checkpoint adding the context entry,
1977 if ( op->o_tag != LDAP_REQ_ADD ||
1978 !dn_match( &op->o_req_ndn, &si->si_contextdn )) {
1979 if ( si->si_chkops && si->si_numops >= si->si_chkops ) {
1983 if ( si->si_chktime &&
1984 (op->o_time - si->si_chklast >= si->si_chktime )) {
1985 if ( si->si_chklast ) {
1987 si->si_chklast = op->o_time;
1994 si->si_dirty = !csn_changed;
1995 ldap_pvt_thread_rdwr_wunlock( &si->si_csn_rwlock );
1999 ldap_pvt_thread_rdwr_rlock( &si->si_csn_rwlock );
2000 syncprov_checkpoint( op, on );
2001 ldap_pvt_thread_rdwr_runlock( &si->si_csn_rwlock );
2004 /* only update consumer ctx if this is a newer csn */
2005 if ( csn_changed ) {
2006 opc->sctxcsn = maxcsn;
2009 /* Handle any persistent searches */
2010 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
2011 have_psearches = ( si->si_ops != NULL );
2012 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
2013 if ( have_psearches ) {
2016 case LDAP_REQ_MODIFY:
2017 case LDAP_REQ_MODRDN:
2018 case LDAP_REQ_EXTENDED:
2019 syncprov_matchops( op, opc, 0 );
2021 case LDAP_REQ_DELETE:
2022 /* for each match in opc->smatches:
2025 for ( sm = opc->smatches; sm; sm=sm->sm_next ) {
2026 if ( sm->sm_op->s_op->o_abandon )
2028 syncprov_qresp( opc, sm->sm_op, LDAP_SYNC_DELETE );
2030 if ( opc->ssres.s_info )
2031 free_resinfo( &opc->ssres );
2036 /* Add any log records */
2037 if ( si->si_logs ) {
2038 syncprov_add_slog( op );
2040 leave: ldap_pvt_thread_mutex_unlock( &si->si_resp_mutex );
2042 return SLAP_CB_CONTINUE;
2045 /* We don't use a subentry to store the context CSN any more.
2046 * We expose the current context CSN as an operational attribute
2047 * of the suffix entry.
2050 syncprov_op_compare( Operation *op, SlapReply *rs )
2052 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
2053 syncprov_info_t *si = on->on_bi.bi_private;
2054 int rc = SLAP_CB_CONTINUE;
2056 if ( dn_match( &op->o_req_ndn, &si->si_contextdn ) &&
2057 op->oq_compare.rs_ava->aa_desc == slap_schema.si_ad_contextCSN )
2062 e.e_name = si->si_contextdn;
2063 e.e_nname = si->si_contextdn;
2066 a.a_desc = slap_schema.si_ad_contextCSN;
2068 ldap_pvt_thread_rdwr_rlock( &si->si_csn_rwlock );
2070 a.a_vals = si->si_ctxcsn;
2071 a.a_nvals = a.a_vals;
2072 a.a_numvals = si->si_numcsns;
2074 rs->sr_err = access_allowed( op, &e, op->oq_compare.rs_ava->aa_desc,
2075 &op->oq_compare.rs_ava->aa_value, ACL_COMPARE, NULL );
2076 if ( ! rs->sr_err ) {
2077 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
2078 goto return_results;
2081 if ( get_assert( op ) &&
2082 ( test_filter( op, &e, get_assertion( op ) ) != LDAP_COMPARE_TRUE ) )
2084 rs->sr_err = LDAP_ASSERTION_FAILED;
2085 goto return_results;
2089 rs->sr_err = LDAP_COMPARE_FALSE;
2091 if ( attr_valfind( &a,
2092 SLAP_MR_ATTRIBUTE_VALUE_NORMALIZED_MATCH |
2093 SLAP_MR_ASSERTED_VALUE_NORMALIZED_MATCH,
2094 &op->oq_compare.rs_ava->aa_value, NULL, op->o_tmpmemctx ) == 0 )
2096 rs->sr_err = LDAP_COMPARE_TRUE;
2101 ldap_pvt_thread_rdwr_runlock( &si->si_csn_rwlock );
2103 send_ldap_result( op, rs );
2105 if( rs->sr_err == LDAP_COMPARE_FALSE || rs->sr_err == LDAP_COMPARE_TRUE ) {
2106 rs->sr_err = LDAP_SUCCESS;
2115 syncprov_op_mod( Operation *op, SlapReply *rs )
2117 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
2118 syncprov_info_t *si = on->on_bi.bi_private;
2121 int have_psearches, cbsize;
2123 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
2124 have_psearches = ( si->si_ops != NULL );
2126 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
2128 cbsize = sizeof(slap_callback) + sizeof(opcookie) +
2129 (have_psearches ? sizeof(modinst) : 0 );
2131 cb = op->o_tmpcalloc(1, cbsize, op->o_tmpmemctx);
2132 opc = (opcookie *)(cb+1);
2134 cb->sc_response = syncprov_op_response;
2135 cb->sc_cleanup = syncprov_op_cleanup;
2136 cb->sc_private = opc;
2137 cb->sc_next = op->o_callback;
2138 op->o_callback = cb;
2142 if ( op->o_csn.bv_val ) {
2143 opc->osid = slap_parse_csn_sid( &op->o_csn );
2145 if ( op->o_controls ) {
2146 struct sync_cookie *scook =
2147 op->o_controls[slap_cids.sc_LDAPsync];
2149 opc->rsid = scook->sid;
2152 if ( op->o_dont_replicate )
2153 return SLAP_CB_CONTINUE;
2155 /* If there are active persistent searches, lock this operation.
2156 * See seqmod.c for the locking logic on its own.
2158 if ( have_psearches ) {
2159 modtarget *mt, mtdummy;
2162 mi = (modinst *)(opc+1);
2165 /* See if we're already modifying this entry... */
2166 mtdummy.mt_dn = op->o_req_ndn;
2168 ldap_pvt_thread_mutex_lock( &si->si_mods_mutex );
2169 mt = avl_find( si->si_mods, &mtdummy, sp_avl_cmp );
2171 ldap_pvt_thread_mutex_lock( &mt->mt_mutex );
2172 if ( mt->mt_mods == NULL ) {
2173 /* Cannot reuse this mt, as another thread is about
2174 * to release it in syncprov_op_cleanup. Wait for them
2175 * to finish; our own insert is required to succeed.
2177 ldap_pvt_thread_mutex_unlock( &mt->mt_mutex );
2178 ldap_pvt_thread_mutex_unlock( &si->si_mods_mutex );
2179 ldap_pvt_thread_yield();
2184 mt->mt_tail->mi_next = mi;
2186 ldap_pvt_thread_mutex_unlock( &si->si_mods_mutex );
2187 /* wait for this op to get to head of list */
2188 while ( mt->mt_mods != mi ) {
2190 /* don't wait on other mods from the same thread */
2191 for ( m2 = mt->mt_mods; m2; m2 = m2->mi_next ) {
2192 if ( m2->mi_op->o_threadctx == op->o_threadctx ) {
2199 ldap_pvt_thread_mutex_unlock( &mt->mt_mutex );
2200 /* FIXME: if dynamic config can delete overlays or
2201 * databases we'll have to check for cleanup here.
2202 * Currently it's not an issue because there are
2203 * no dynamic config deletes...
2205 if ( slapd_shutdown )
2206 return SLAPD_ABANDON;
2208 if ( !ldap_pvt_thread_pool_pausecheck( &connection_pool ))
2209 ldap_pvt_thread_yield();
2210 ldap_pvt_thread_mutex_lock( &mt->mt_mutex );
2212 /* clean up if the caller is giving up */
2213 if ( op->o_abandon ) {
2216 for (m2 = &mt->mt_mods; ; m2 = &(*m2)->mi_next) {
2219 if ( mt->mt_tail == mi )
2220 mt->mt_tail = ( m2 == &mt->mt_mods ) ? NULL : (modinst *)m2;
2224 for (sc = &op->o_callback; ; sc = &(*sc)->sc_next) {
2230 op->o_tmpfree( cb, op->o_tmpmemctx );
2231 ldap_pvt_thread_mutex_unlock( &mt->mt_mutex );
2232 return SLAPD_ABANDON;
2235 ldap_pvt_thread_mutex_unlock( &mt->mt_mutex );
2237 /* Record that we're modifying this entry now */
2238 mt = ch_malloc( sizeof(modtarget) );
2241 ber_dupbv( &mt->mt_dn, &mi->mi_op->o_req_ndn );
2242 ldap_pvt_thread_mutex_init( &mt->mt_mutex );
2243 avl_insert( &si->si_mods, mt, sp_avl_cmp, avl_dup_error );
2244 ldap_pvt_thread_mutex_unlock( &si->si_mods_mutex );
2249 if (( have_psearches || si->si_logs ) && op->o_tag != LDAP_REQ_ADD )
2250 syncprov_matchops( op, opc, 1 );
2252 return SLAP_CB_CONTINUE;
2256 syncprov_op_extended( Operation *op, SlapReply *rs )
2258 if ( exop_is_write( op ))
2259 return syncprov_op_mod( op, rs );
2261 return SLAP_CB_CONTINUE;
2264 typedef struct searchstate {
2265 slap_overinst *ss_on;
2267 BerVarray ss_ctxcsn;
2270 #define SS_PRESENT 0x01
2271 #define SS_CHANGED 0x02
2275 typedef struct SyncOperationBuffer {
2279 AttributeName sob_extra; /* not always present */
2280 /* Further data allocated here */
2281 } SyncOperationBuffer;
2284 syncprov_detach_op( Operation *op, syncops *so, slap_overinst *on )
2286 SyncOperationBuffer *sopbuf2;
2291 GroupAssertion *g1, *g2;
2293 /* count the search attrs */
2294 for (i=0; op->ors_attrs && !BER_BVISNULL( &op->ors_attrs[i].an_name ); i++) {
2295 alen += op->ors_attrs[i].an_name.bv_len + 1;
2297 /* Make a new copy of the operation */
2298 size = offsetof( SyncOperationBuffer, sob_extra ) +
2299 (i ? ( (i+1) * sizeof(AttributeName) + alen) : 0) +
2300 op->o_req_dn.bv_len + 1 +
2301 op->o_req_ndn.bv_len + 1 +
2302 op->o_ndn.bv_len + 1 +
2303 so->s_filterstr.bv_len + 1;
2304 sopbuf2 = ch_calloc( 1, size );
2305 op2 = &sopbuf2->sob_op;
2306 op2->o_hdr = &sopbuf2->sob_hdr;
2307 LDAP_SLIST_FIRST(&op2->o_extra) = &sopbuf2->sob_oe;
2309 /* Copy the fields we care about explicitly, leave the rest alone */
2310 *op2->o_hdr = *op->o_hdr;
2311 op2->o_tag = op->o_tag;
2312 op2->o_time = op->o_time;
2313 op2->o_bd = on->on_info->oi_origdb;
2314 op2->o_request = op->o_request;
2315 op2->o_managedsait = op->o_managedsait;
2316 LDAP_SLIST_FIRST(&op2->o_extra)->oe_key = on;
2317 LDAP_SLIST_NEXT(LDAP_SLIST_FIRST(&op2->o_extra), oe_next) = NULL;
2319 ptr = (char *) sopbuf2 + offsetof( SyncOperationBuffer, sob_extra );
2321 op2->ors_attrs = (AttributeName *) ptr;
2322 ptr = (char *) &op2->ors_attrs[i+1];
2323 for (i=0; !BER_BVISNULL( &op->ors_attrs[i].an_name ); i++) {
2324 op2->ors_attrs[i] = op->ors_attrs[i];
2325 op2->ors_attrs[i].an_name.bv_val = ptr;
2326 ptr = lutil_strcopy( ptr, op->ors_attrs[i].an_name.bv_val ) + 1;
2328 BER_BVZERO( &op2->ors_attrs[i].an_name );
2331 op2->o_authz = op->o_authz;
2332 op2->o_ndn.bv_val = ptr;
2333 ptr = lutil_strcopy(ptr, op->o_ndn.bv_val) + 1;
2334 op2->o_dn = op2->o_ndn;
2335 op2->o_req_dn.bv_len = op->o_req_dn.bv_len;
2336 op2->o_req_dn.bv_val = ptr;
2337 ptr = lutil_strcopy(ptr, op->o_req_dn.bv_val) + 1;
2338 op2->o_req_ndn.bv_len = op->o_req_ndn.bv_len;
2339 op2->o_req_ndn.bv_val = ptr;
2340 ptr = lutil_strcopy(ptr, op->o_req_ndn.bv_val) + 1;
2341 op2->ors_filterstr.bv_val = ptr;
2342 strcpy( ptr, so->s_filterstr.bv_val );
2343 op2->ors_filterstr.bv_len = so->s_filterstr.bv_len;
2345 /* Skip the AND/GE clause that we stuck on in front */
2346 if ( so->s_flags & PS_FIX_FILTER ) {
2347 op2->ors_filter = op->ors_filter->f_and->f_next;
2348 so->s_flags ^= PS_FIX_FILTER;
2350 op2->ors_filter = op->ors_filter;
2352 op2->ors_filter = filter_dup( op2->ors_filter, NULL );
2355 /* Copy any cached group ACLs individually */
2356 op2->o_groups = NULL;
2357 for ( g1=op->o_groups; g1; g1=g1->ga_next ) {
2358 g2 = ch_malloc( sizeof(GroupAssertion) + g1->ga_len );
2360 strcpy( g2->ga_ndn, g1->ga_ndn );
2361 g2->ga_next = op2->o_groups;
2364 /* Don't allow any further group caching */
2365 op2->o_do_not_cache = 1;
2367 /* Add op2 to conn so abandon will find us */
2368 op->o_conn->c_n_ops_executing++;
2369 op->o_conn->c_n_ops_completed--;
2370 LDAP_STAILQ_INSERT_TAIL( &op->o_conn->c_ops, op2, o_next );
2371 so->s_flags |= PS_IS_DETACHED;
2373 /* Prevent anyone else from trying to send a result for this op */
2378 syncprov_search_response( Operation *op, SlapReply *rs )
2380 searchstate *ss = op->o_callback->sc_private;
2381 slap_overinst *on = ss->ss_on;
2382 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
2383 sync_control *srs = op->o_controls[slap_cids.sc_LDAPsync];
2385 if ( rs->sr_type == REP_SEARCH || rs->sr_type == REP_SEARCHREF ) {
2387 /* If we got a referral without a referral object, there's
2388 * something missing that we cannot replicate. Just ignore it.
2389 * The consumer will abort because we didn't send the expected
2392 if ( !rs->sr_entry ) {
2393 assert( rs->sr_entry != NULL );
2394 Debug( LDAP_DEBUG_ANY, "bogus referral in context\n",0,0,0 );
2395 return SLAP_CB_CONTINUE;
2397 a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryCSN );
2398 if ( a == NULL && rs->sr_operational_attrs != NULL ) {
2399 a = attr_find( rs->sr_operational_attrs, slap_schema.si_ad_entryCSN );
2403 sid = slap_parse_csn_sid( &a->a_nvals[0] );
2405 /* If not a persistent search */
2407 /* Make sure entry is less than the snapshot'd contextCSN */
2408 for ( i=0; i<ss->ss_numcsns; i++ ) {
2409 if ( sid == ss->ss_sids[i] && ber_bvcmp( &a->a_nvals[0],
2410 &ss->ss_ctxcsn[i] ) > 0 ) {
2411 Debug( LDAP_DEBUG_SYNC,
2412 "Entry %s CSN %s greater than snapshot %s\n",
2413 rs->sr_entry->e_name.bv_val,
2414 a->a_nvals[0].bv_val,
2415 ss->ss_ctxcsn[i].bv_val );
2416 return LDAP_SUCCESS;
2421 /* Don't send old entries twice */
2422 if ( srs->sr_state.ctxcsn ) {
2423 for ( i=0; i<srs->sr_state.numcsns; i++ ) {
2424 if ( sid == srs->sr_state.sids[i] &&
2425 ber_bvcmp( &a->a_nvals[0],
2426 &srs->sr_state.ctxcsn[i] )<= 0 ) {
2427 Debug( LDAP_DEBUG_SYNC,
2428 "Entry %s CSN %s older or equal to ctx %s\n",
2429 rs->sr_entry->e_name.bv_val,
2430 a->a_nvals[0].bv_val,
2431 srs->sr_state.ctxcsn[i].bv_val );
2432 return LDAP_SUCCESS;
2437 rs->sr_ctrls = op->o_tmpalloc( sizeof(LDAPControl *)*2,
2439 rs->sr_ctrls[1] = NULL;
2440 rs->sr_flags |= REP_CTRLS_MUSTBEFREED;
2441 /* If we're in delta-sync mode, always send a cookie */
2442 if ( si->si_nopres && si->si_usehint && a ) {
2443 struct berval cookie;
2444 slap_compose_sync_cookie( op, &cookie, a->a_nvals, srs->sr_state.rid, slap_serverID ? slap_serverID : -1 );
2445 rs->sr_err = syncprov_state_ctrl( op, rs, rs->sr_entry,
2446 LDAP_SYNC_ADD, rs->sr_ctrls, 0, 1, &cookie );
2447 op->o_tmpfree( cookie.bv_val, op->o_tmpmemctx );
2449 rs->sr_err = syncprov_state_ctrl( op, rs, rs->sr_entry,
2450 LDAP_SYNC_ADD, rs->sr_ctrls, 0, 0, NULL );
2452 } else if ( rs->sr_type == REP_RESULT && rs->sr_err == LDAP_SUCCESS ) {
2453 struct berval cookie = BER_BVNULL;
2455 if ( ( ss->ss_flags & SS_CHANGED ) &&
2456 ss->ss_ctxcsn && !BER_BVISNULL( &ss->ss_ctxcsn[0] )) {
2457 slap_compose_sync_cookie( op, &cookie, ss->ss_ctxcsn,
2458 srs->sr_state.rid, slap_serverID ? slap_serverID : -1 );
2460 Debug( LDAP_DEBUG_SYNC, "syncprov_search_response: cookie=%s\n", cookie.bv_val, 0, 0 );
2463 /* Is this a regular refresh?
2464 * Note: refresh never gets here if there were no changes
2467 rs->sr_ctrls = op->o_tmpalloc( sizeof(LDAPControl *)*2,
2469 rs->sr_ctrls[1] = NULL;
2470 rs->sr_flags |= REP_CTRLS_MUSTBEFREED;
2471 rs->sr_err = syncprov_done_ctrl( op, rs, rs->sr_ctrls,
2472 0, 1, &cookie, ( ss->ss_flags & SS_PRESENT ) ? LDAP_SYNC_REFRESH_PRESENTS :
2473 LDAP_SYNC_REFRESH_DELETES );
2474 op->o_tmpfree( cookie.bv_val, op->o_tmpmemctx );
2476 /* It's RefreshAndPersist, transition to Persist phase */
2477 syncprov_sendinfo( op, rs, ( ss->ss_flags & SS_PRESENT ) ?
2478 LDAP_TAG_SYNC_REFRESH_PRESENT : LDAP_TAG_SYNC_REFRESH_DELETE,
2479 ( ss->ss_flags & SS_CHANGED ) ? &cookie : NULL,
2481 if ( !BER_BVISNULL( &cookie ))
2482 op->o_tmpfree( cookie.bv_val, op->o_tmpmemctx );
2484 /* Detach this Op from frontend control */
2485 ldap_pvt_thread_mutex_lock( &op->o_conn->c_mutex );
2487 /* But not if this connection was closed along the way */
2488 if ( op->o_abandon ) {
2489 ldap_pvt_thread_mutex_unlock( &op->o_conn->c_mutex );
2490 /* syncprov_ab_cleanup will free this syncop */
2491 return SLAPD_ABANDON;
2494 ldap_pvt_thread_mutex_lock( &ss->ss_so->s_mutex );
2495 /* Turn off the refreshing flag */
2496 ss->ss_so->s_flags ^= PS_IS_REFRESHING;
2498 syncprov_detach_op( op, ss->ss_so, on );
2500 ldap_pvt_thread_mutex_unlock( &op->o_conn->c_mutex );
2502 /* If there are queued responses, fire them off */
2503 if ( ss->ss_so->s_res )
2504 syncprov_qstart( ss->ss_so );
2505 ldap_pvt_thread_mutex_unlock( &ss->ss_so->s_mutex );
2508 return LDAP_SUCCESS;
2512 return SLAP_CB_CONTINUE;
2516 syncprov_op_search( Operation *op, SlapReply *rs )
2518 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
2519 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
2521 int gotstate = 0, changed = 0, do_present = 0;
2522 syncops *sop = NULL;
2526 int i, *sids, numcsns;
2527 struct berval mincsn, maxcsn;
2531 if ( !(op->o_sync_mode & SLAP_SYNC_REFRESH) ) return SLAP_CB_CONTINUE;
2533 if ( op->ors_deref & LDAP_DEREF_SEARCHING ) {
2534 send_ldap_error( op, rs, LDAP_PROTOCOL_ERROR, "illegal value for derefAliases" );
2538 srs = op->o_controls[slap_cids.sc_LDAPsync];
2540 /* If this is a persistent search, set it up right away */
2541 if ( op->o_sync_mode & SLAP_SYNC_PERSIST ) {
2545 slap_callback sc = {0};
2551 so.s_flags = PS_IS_REFRESHING | PS_FIND_BASE;
2552 /* syncprov_findbase expects to be called as a callback... */
2553 sc.sc_private = &opc;
2555 ldap_pvt_thread_mutex_init( &so.s_mutex );
2556 cb = op->o_callback;
2557 op->o_callback = ≻
2558 rs->sr_err = syncprov_findbase( op, &fc );
2559 op->o_callback = cb;
2560 ldap_pvt_thread_mutex_destroy( &so.s_mutex );
2562 if ( rs->sr_err != LDAP_SUCCESS ) {
2563 send_ldap_result( op, rs );
2566 sop = ch_malloc( sizeof( syncops ));
2568 sop->s_rid = srs->sr_state.rid;
2569 sop->s_sid = srs->sr_state.sid;
2570 /* set refcount=2 to prevent being freed out from under us
2571 * by abandons that occur while we're running here
2575 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
2576 while ( si->si_active ) {
2577 /* Wait for active mods to finish before proceeding, as they
2578 * may already have inspected the si_ops list looking for
2579 * consumers to replicate the change to. Using the log
2580 * doesn't help, as we may finish playing it before the
2581 * active mods gets added to it.
2583 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
2584 if ( slapd_shutdown ) {
2586 return SLAPD_ABANDON;
2588 if ( !ldap_pvt_thread_pool_pausecheck( &connection_pool ))
2589 ldap_pvt_thread_yield();
2590 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
2592 if ( op->o_abandon ) {
2593 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
2595 return SLAPD_ABANDON;
2597 ldap_pvt_thread_mutex_init( &sop->s_mutex );
2598 sop->s_next = si->si_ops;
2601 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
2604 /* snapshot the ctxcsn
2605 * Note: this must not be done before the psearch setup. (ITS#8365)
2607 ldap_pvt_thread_rdwr_rlock( &si->si_csn_rwlock );
2608 numcsns = si->si_numcsns;
2610 ber_bvarray_dup_x( &ctxcsn, si->si_ctxcsn, op->o_tmpmemctx );
2611 sids = op->o_tmpalloc( numcsns * sizeof(int), op->o_tmpmemctx );
2612 for ( i=0; i<numcsns; i++ )
2613 sids[i] = si->si_sids[i];
2618 dirty = si->si_dirty;
2619 ldap_pvt_thread_rdwr_runlock( &si->si_csn_rwlock );
2621 /* If we have a cookie, handle the PRESENT lookups */
2622 if ( srs->sr_state.ctxcsn ) {
2626 /* If we don't have any CSN of our own yet, bail out.
2629 rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
2630 rs->sr_text = "consumer has state info but provider doesn't!";
2634 if ( !si->si_nopres )
2635 do_present = SS_PRESENT;
2637 /* If there are SIDs we don't recognize in the cookie, drop them */
2638 for (i=0; i<srs->sr_state.numcsns; ) {
2639 for (j=i; j<numcsns; j++) {
2640 if ( srs->sr_state.sids[i] <= sids[j] ) {
2645 if ( j == numcsns || srs->sr_state.sids[i] != sids[j] ) {
2646 char *tmp = srs->sr_state.ctxcsn[i].bv_val;
2647 srs->sr_state.numcsns--;
2648 for ( j=i; j<srs->sr_state.numcsns; j++ ) {
2649 srs->sr_state.ctxcsn[j] = srs->sr_state.ctxcsn[j+1];
2650 srs->sr_state.sids[j] = srs->sr_state.sids[j+1];
2652 srs->sr_state.ctxcsn[j].bv_val = tmp;
2653 srs->sr_state.ctxcsn[j].bv_len = 0;
2659 if (srs->sr_state.numcsns != numcsns) {
2660 /* consumer doesn't have the right number of CSNs */
2661 changed = SS_CHANGED;
2662 if ( srs->sr_state.ctxcsn ) {
2663 ber_bvarray_free_x( srs->sr_state.ctxcsn, op->o_tmpmemctx );
2664 srs->sr_state.ctxcsn = NULL;
2666 if ( srs->sr_state.sids ) {
2667 slap_sl_free( srs->sr_state.sids, op->o_tmpmemctx );
2668 srs->sr_state.sids = NULL;
2670 srs->sr_state.numcsns = 0;
2674 /* Find the smallest CSN which differs from contextCSN */
2677 for ( i=0,j=0; i<srs->sr_state.numcsns; i++ ) {
2679 while ( srs->sr_state.sids[i] != sids[j] ) j++;
2680 if ( BER_BVISEMPTY( &maxcsn ) || ber_bvcmp( &maxcsn,
2681 &srs->sr_state.ctxcsn[i] ) < 0 ) {
2682 maxcsn = srs->sr_state.ctxcsn[i];
2685 newer = ber_bvcmp( &srs->sr_state.ctxcsn[i], &ctxcsn[j] );
2686 /* If our state is newer, tell consumer about changes */
2688 changed = SS_CHANGED;
2689 if ( BER_BVISEMPTY( &mincsn ) || ber_bvcmp( &mincsn,
2690 &srs->sr_state.ctxcsn[i] ) > 0 ) {
2691 mincsn = srs->sr_state.ctxcsn[i];
2694 } else if ( newer > 0 && sids[j] == slap_serverID ) {
2695 /* our state is older, complain to consumer */
2696 rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
2697 rs->sr_text = "consumer state is newer than provider!";
2698 Log4( LDAP_DEBUG_SYNC, ldap_syslog_level,
2699 "consumer %d state %s is newer than provider %d state %s\n",
2700 sids[i], srs->sr_state.ctxcsn[i].bv_val, sids[j], /* == slap_serverID */
2704 syncops **sp = &si->si_ops;
2706 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
2707 while ( *sp != sop )
2708 sp = &(*sp)->s_next;
2710 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
2713 rs->sr_ctrls = NULL;
2714 send_ldap_result( op, rs );
2718 if ( BER_BVISEMPTY( &mincsn )) {
2723 /* If nothing has changed, shortcut it */
2724 if ( !changed && !dirty ) {
2726 no_change: if ( !(op->o_sync_mode & SLAP_SYNC_PERSIST) ) {
2727 LDAPControl *ctrls[2];
2731 syncprov_done_ctrl( op, rs, ctrls, 0, 0,
2732 NULL, LDAP_SYNC_REFRESH_DELETES );
2733 rs->sr_ctrls = ctrls;
2734 rs->sr_err = LDAP_SUCCESS;
2735 send_ldap_result( op, rs );
2736 rs->sr_ctrls = NULL;
2742 /* Do we have a sessionlog for this search? */
2746 ldap_pvt_thread_mutex_lock( &sl->sl_mutex );
2747 /* Are there any log entries, and is the consumer state
2748 * present in the session log?
2750 if ( sl->sl_num > 0 ) {
2752 for ( i=0; i<sl->sl_numcsns; i++ ) {
2753 /* SID not present == new enough */
2754 if ( minsid < sl->sl_sids[i] ) {
2759 if ( minsid == sl->sl_sids[i] ) {
2761 if ( ber_bvcmp( &mincsn, &sl->sl_mincsn[i] ) >= 0 )
2766 /* SID not present == new enough */
2767 if ( i == sl->sl_numcsns )
2772 /* mutex is unlocked in playlog */
2773 syncprov_playlog( op, rs, sl, srs, ctxcsn, numcsns, sids );
2775 ldap_pvt_thread_mutex_unlock( &sl->sl_mutex );
2778 /* Is the CSN still present in the database? */
2779 if ( syncprov_findcsn( op, FIND_CSN, &mincsn ) != LDAP_SUCCESS ) {
2780 /* No, so a reload is required */
2781 /* the 2.2 consumer doesn't send this hint */
2782 if ( si->si_usehint && srs->sr_rhint == 0 ) {
2784 ber_bvarray_free_x( ctxcsn, op->o_tmpmemctx );
2786 op->o_tmpfree( sids, op->o_tmpmemctx );
2787 rs->sr_err = LDAP_SYNC_REFRESH_REQUIRED;
2788 rs->sr_text = "sync cookie is stale";
2791 if ( srs->sr_state.ctxcsn ) {
2792 ber_bvarray_free_x( srs->sr_state.ctxcsn, op->o_tmpmemctx );
2793 srs->sr_state.ctxcsn = NULL;
2795 if ( srs->sr_state.sids ) {
2796 slap_sl_free( srs->sr_state.sids, op->o_tmpmemctx );
2797 srs->sr_state.sids = NULL;
2799 srs->sr_state.numcsns = 0;
2802 /* If changed and doing Present lookup, send Present UUIDs */
2803 if ( do_present && syncprov_findcsn( op, FIND_PRESENT, 0 ) !=
2806 ber_bvarray_free_x( ctxcsn, op->o_tmpmemctx );
2808 op->o_tmpfree( sids, op->o_tmpmemctx );
2813 /* The consumer knows nothing, we know nothing. OK. */
2816 /* No consumer state, assume something has changed */
2817 changed = SS_CHANGED;
2821 /* Append CSN range to search filter, save original filter
2822 * for persistent search evaluation
2825 ldap_pvt_thread_mutex_lock( &sop->s_mutex );
2826 sop->s_filterstr = op->ors_filterstr;
2827 /* correct the refcount that was set to 2 before */
2831 /* If something changed, find the changes */
2832 if ( gotstate && ( changed || dirty ) ) {
2833 Filter *fand, *fava;
2835 fand = op->o_tmpalloc( sizeof(Filter), op->o_tmpmemctx );
2836 fand->f_choice = LDAP_FILTER_AND;
2837 fand->f_next = NULL;
2838 fava = op->o_tmpalloc( sizeof(Filter), op->o_tmpmemctx );
2840 fava->f_choice = LDAP_FILTER_GE;
2841 fava->f_ava = op->o_tmpalloc( sizeof(AttributeAssertion), op->o_tmpmemctx );
2842 fava->f_ava->aa_desc = slap_schema.si_ad_entryCSN;
2843 #ifdef LDAP_COMP_MATCH
2844 fava->f_ava->aa_cf = NULL;
2846 ber_dupbv_x( &fava->f_ava->aa_value, &mincsn, op->o_tmpmemctx );
2847 fava->f_next = op->ors_filter;
2848 op->ors_filter = fand;
2849 filter2bv_x( op, op->ors_filter, &op->ors_filterstr );
2851 sop->s_flags |= PS_FIX_FILTER;
2855 ldap_pvt_thread_mutex_unlock( &sop->s_mutex );
2858 /* Let our callback add needed info to returned entries */
2859 cb = op->o_tmpcalloc(1, sizeof(slap_callback)+sizeof(searchstate), op->o_tmpmemctx);
2860 ss = (searchstate *)(cb+1);
2863 ss->ss_flags = do_present | changed;
2864 ss->ss_ctxcsn = ctxcsn;
2865 ss->ss_numcsns = numcsns;
2867 cb->sc_response = syncprov_search_response;
2868 cb->sc_private = ss;
2869 cb->sc_next = op->o_callback;
2870 op->o_callback = cb;
2872 /* If this is a persistent search and no changes were reported during
2873 * the refresh phase, just invoke the response callback to transition
2874 * us into persist phase
2876 if ( !changed && !dirty ) {
2877 rs->sr_err = LDAP_SUCCESS;
2878 rs->sr_nentries = 0;
2879 send_ldap_result( op, rs );
2882 return SLAP_CB_CONTINUE;
2886 syncprov_operational(
2890 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
2891 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
2893 /* This prevents generating unnecessarily; frontend will strip
2894 * any statically stored copy.
2896 if ( op->o_sync != SLAP_CONTROL_NONE )
2897 return SLAP_CB_CONTINUE;
2899 if ( rs->sr_entry &&
2900 dn_match( &rs->sr_entry->e_nname, &si->si_contextdn )) {
2902 if ( SLAP_OPATTRS( rs->sr_attr_flags ) ||
2903 ad_inlist( slap_schema.si_ad_contextCSN, rs->sr_attrs )) {
2904 Attribute *a, **ap = NULL;
2906 for ( a=rs->sr_entry->e_attrs; a; a=a->a_next ) {
2907 if ( a->a_desc == slap_schema.si_ad_contextCSN )
2911 ldap_pvt_thread_rdwr_rlock( &si->si_csn_rwlock );
2912 if ( si->si_ctxcsn ) {
2914 for ( ap = &rs->sr_operational_attrs; *ap;
2915 ap=&(*ap)->a_next );
2917 a = attr_alloc( slap_schema.si_ad_contextCSN );
2922 if ( rs_entry2modifiable( op, rs, on )) {
2923 a = attr_find( rs->sr_entry->e_attrs,
2924 slap_schema.si_ad_contextCSN );
2926 if ( a->a_nvals != a->a_vals ) {
2927 ber_bvarray_free( a->a_nvals );
2930 ber_bvarray_free( a->a_vals );
2934 attr_valadd( a, si->si_ctxcsn, si->si_ctxcsn, si->si_numcsns );
2936 ldap_pvt_thread_rdwr_runlock( &si->si_csn_rwlock );
2939 return SLAP_CB_CONTINUE;
2949 static ConfigDriver sp_cf_gen;
2951 static ConfigTable spcfg[] = {
2952 { "syncprov-checkpoint", "ops> <minutes", 3, 3, 0, ARG_MAGIC|SP_CHKPT,
2953 sp_cf_gen, "( OLcfgOvAt:1.1 NAME 'olcSpCheckpoint' "
2954 "DESC 'ContextCSN checkpoint interval in ops and minutes' "
2955 "SYNTAX OMsDirectoryString SINGLE-VALUE )", NULL, NULL },
2956 { "syncprov-sessionlog", "ops", 2, 2, 0, ARG_INT|ARG_MAGIC|SP_SESSL,
2957 sp_cf_gen, "( OLcfgOvAt:1.2 NAME 'olcSpSessionlog' "
2958 "DESC 'Session log size in ops' "
2959 "SYNTAX OMsInteger SINGLE-VALUE )", NULL, NULL },
2960 { "syncprov-nopresent", NULL, 2, 2, 0, ARG_ON_OFF|ARG_MAGIC|SP_NOPRES,
2961 sp_cf_gen, "( OLcfgOvAt:1.3 NAME 'olcSpNoPresent' "
2962 "DESC 'Omit Present phase processing' "
2963 "SYNTAX OMsBoolean SINGLE-VALUE )", NULL, NULL },
2964 { "syncprov-reloadhint", NULL, 2, 2, 0, ARG_ON_OFF|ARG_MAGIC|SP_USEHINT,
2965 sp_cf_gen, "( OLcfgOvAt:1.4 NAME 'olcSpReloadHint' "
2966 "DESC 'Observe Reload Hint in Request control' "
2967 "SYNTAX OMsBoolean SINGLE-VALUE )", NULL, NULL },
2968 { NULL, NULL, 0, 0, 0, ARG_IGNORED }
2971 static ConfigOCs spocs[] = {
2972 { "( OLcfgOvOc:1.1 "
2973 "NAME 'olcSyncProvConfig' "
2974 "DESC 'SyncRepl Provider configuration' "
2975 "SUP olcOverlayConfig "
2976 "MAY ( olcSpCheckpoint "
2977 "$ olcSpSessionlog "
2979 "$ olcSpReloadHint "
2981 Cft_Overlay, spcfg },
2986 sp_cf_gen(ConfigArgs *c)
2988 slap_overinst *on = (slap_overinst *)c->bi;
2989 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
2992 if ( c->op == SLAP_CONFIG_EMIT ) {
2993 switch ( c->type ) {
2995 if ( si->si_chkops || si->si_chktime ) {
2997 /* we assume si_chktime is a multiple of 60
2998 * because the parsed value was originally
2999 * multiplied by 60 */
3000 bv.bv_len = snprintf( c->cr_msg, sizeof( c->cr_msg ),
3001 "%d %d", si->si_chkops, si->si_chktime/60 );
3002 if ( bv.bv_len >= sizeof( c->cr_msg ) ) {
3005 bv.bv_val = c->cr_msg;
3006 value_add_one( &c->rvalue_vals, &bv );
3013 if ( si->si_logs ) {
3014 c->value_int = si->si_logs->sl_size;
3020 if ( si->si_nopres ) {
3027 if ( si->si_usehint ) {
3035 } else if ( c->op == LDAP_MOD_DELETE ) {
3036 switch ( c->type ) {
3042 si->si_logs->sl_size = 0;
3053 switch ( c->type ) {
3055 if ( lutil_atoi( &si->si_chkops, c->argv[1] ) != 0 ) {
3056 snprintf( c->cr_msg, sizeof( c->cr_msg ), "%s unable to parse checkpoint ops # \"%s\"",
3057 c->argv[0], c->argv[1] );
3058 Debug( LDAP_DEBUG_CONFIG|LDAP_DEBUG_NONE,
3059 "%s: %s\n", c->log, c->cr_msg, 0 );
3060 return ARG_BAD_CONF;
3062 if ( si->si_chkops <= 0 ) {
3063 snprintf( c->cr_msg, sizeof( c->cr_msg ), "%s invalid checkpoint ops # \"%d\"",
3064 c->argv[0], si->si_chkops );
3065 Debug( LDAP_DEBUG_CONFIG|LDAP_DEBUG_NONE,
3066 "%s: %s\n", c->log, c->cr_msg, 0 );
3067 return ARG_BAD_CONF;
3069 if ( lutil_atoi( &si->si_chktime, c->argv[2] ) != 0 ) {
3070 snprintf( c->cr_msg, sizeof( c->cr_msg ), "%s unable to parse checkpoint time \"%s\"",
3071 c->argv[0], c->argv[1] );
3072 Debug( LDAP_DEBUG_CONFIG|LDAP_DEBUG_NONE,
3073 "%s: %s\n", c->log, c->cr_msg, 0 );
3074 return ARG_BAD_CONF;
3076 if ( si->si_chktime <= 0 ) {
3077 snprintf( c->cr_msg, sizeof( c->cr_msg ), "%s invalid checkpoint time \"%d\"",
3078 c->argv[0], si->si_chkops );
3079 Debug( LDAP_DEBUG_CONFIG|LDAP_DEBUG_NONE,
3080 "%s: %s\n", c->log, c->cr_msg, 0 );
3081 return ARG_BAD_CONF;
3083 si->si_chktime *= 60;
3087 int size = c->value_int;
3090 snprintf( c->cr_msg, sizeof( c->cr_msg ), "%s size %d is negative",
3092 Debug( LDAP_DEBUG_CONFIG|LDAP_DEBUG_NONE,
3093 "%s: %s\n", c->log, c->cr_msg, 0 );
3094 return ARG_BAD_CONF;
3098 sl = ch_malloc( sizeof( sessionlog ));
3099 sl->sl_mincsn = NULL;
3103 sl->sl_head = sl->sl_tail = NULL;
3104 ldap_pvt_thread_mutex_init( &sl->sl_mutex );
3111 si->si_nopres = c->value_int;
3114 si->si_usehint = c->value_int;
3120 /* ITS#3456 we cannot run this search on the main thread, must use a
3121 * child thread in order to insure we have a big enough stack.
3128 syncprov_findcsn( ptr, FIND_MAXCSN, 0 );
3133 /* Read any existing contextCSN from the underlying db.
3134 * Then search for any entries newer than that. If no value exists,
3135 * just generate it. Cache whatever result.
3143 slap_overinst *on = (slap_overinst *) be->bd_info;
3144 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
3146 Connection conn = { 0 };
3147 OperationBuffer opbuf;
3152 void *thrctx = NULL;
3154 if ( !SLAP_LASTMOD( be )) {
3155 Debug( LDAP_DEBUG_ANY,
3156 "syncprov_db_open: invalid config, lastmod must be enabled\n", 0, 0, 0 );
3160 if ( slapMode & SLAP_TOOL_MODE ) {
3164 rc = overlay_register_control( be, LDAP_CONTROL_SYNC );
3169 thrctx = ldap_pvt_thread_pool_context();
3170 connection_fake_init2( &conn, &opbuf, thrctx, 0 );
3173 op->o_dn = be->be_rootdn;
3174 op->o_ndn = be->be_rootndn;
3176 if ( SLAP_SYNC_SUBENTRY( be )) {
3177 build_new_dn( &si->si_contextdn, be->be_nsuffix,
3178 (struct berval *)&slap_ldapsync_cn_bv, NULL );
3180 si->si_contextdn = be->be_nsuffix[0];
3182 rc = overlay_entry_get_ov( op, &si->si_contextdn, NULL,
3183 slap_schema.si_ad_contextCSN, 0, &e, on );
3186 ldap_pvt_thread_t tid;
3188 a = attr_find( e->e_attrs, slap_schema.si_ad_contextCSN );
3190 ber_bvarray_dup_x( &si->si_ctxcsn, a->a_vals, NULL );
3191 si->si_numcsns = a->a_numvals;
3192 si->si_sids = slap_parse_csn_sids( si->si_ctxcsn, a->a_numvals, NULL );
3193 slap_sort_csn_sids( si->si_ctxcsn, si->si_sids, si->si_numcsns, NULL );
3195 overlay_entry_release_ov( op, e, 0, on );
3196 if ( si->si_ctxcsn && !SLAP_DBCLEAN( be )) {
3197 op->o_tag = LDAP_REQ_SEARCH;
3198 op->o_req_dn = be->be_suffix[0];
3199 op->o_req_ndn = be->be_nsuffix[0];
3200 op->ors_scope = LDAP_SCOPE_SUBTREE;
3201 ldap_pvt_thread_create( &tid, 0, syncprov_db_otask, op );
3202 ldap_pvt_thread_join( tid, NULL );
3206 /* Didn't find a contextCSN, should we generate one? */
3207 if ( !si->si_ctxcsn ) {
3208 char csnbuf[ LDAP_PVT_CSNSTR_BUFSIZE ];
3211 if ( slap_serverID || SLAP_SYNC_SHADOW( op->o_bd )) {
3212 /* If we're also a consumer, then don't generate anything.
3213 * Wait for our provider to send it to us, or for a local
3214 * modify if we have multimaster.
3218 csn.bv_val = csnbuf;
3219 csn.bv_len = sizeof( csnbuf );
3220 slap_get_csn( op, &csn, 0 );
3221 value_add_one( &si->si_ctxcsn, &csn );
3223 si->si_sids = ch_malloc( sizeof(int) );
3224 si->si_sids[0] = slap_serverID;
3226 /* make sure we do a checkpoint on close */
3230 /* Initialize the sessionlog mincsn */
3231 if ( si->si_logs && si->si_numcsns ) {
3232 sessionlog *sl = si->si_logs;
3234 ber_bvarray_dup_x( &sl->sl_mincsn, si->si_ctxcsn, NULL );
3235 sl->sl_numcsns = si->si_numcsns;
3236 sl->sl_sids = ch_malloc( si->si_numcsns * sizeof(int) );
3237 for ( i=0; i < si->si_numcsns; i++ )
3238 sl->sl_sids[i] = si->si_sids[i];
3242 op->o_bd->bd_info = (BackendInfo *)on;
3246 /* Write the current contextCSN into the underlying db.
3254 slap_overinst *on = (slap_overinst *) be->bd_info;
3255 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
3256 #ifdef SLAP_CONFIG_DELETE
3257 syncops *so, *sonext;
3258 #endif /* SLAP_CONFIG_DELETE */
3260 if ( slapMode & SLAP_TOOL_MODE ) {
3263 if ( si->si_numops ) {
3264 Connection conn = {0};
3265 OperationBuffer opbuf;
3269 thrctx = ldap_pvt_thread_pool_context();
3270 connection_fake_init2( &conn, &opbuf, thrctx, 0 );
3273 op->o_dn = be->be_rootdn;
3274 op->o_ndn = be->be_rootndn;
3275 syncprov_checkpoint( op, on );
3278 #ifdef SLAP_CONFIG_DELETE
3279 if ( !slapd_shutdown ) {
3280 ldap_pvt_thread_mutex_lock( &si->si_ops_mutex );
3281 for ( so=si->si_ops, sonext=so; so; so=sonext ) {
3282 SlapReply rs = {REP_RESULT};
3283 rs.sr_err = LDAP_UNAVAILABLE;
3284 send_ldap_result( so->s_op, &rs );
3286 if ( so->s_flags & PS_TASK_QUEUED )
3287 ldap_pvt_thread_pool_retract( so->s_pool_cookie );
3288 if ( !syncprov_drop_psearch( so, 0 ))
3292 ldap_pvt_thread_mutex_unlock( &si->si_ops_mutex );
3294 overlay_unregister_control( be, LDAP_CONTROL_SYNC );
3295 #endif /* SLAP_CONFIG_DELETE */
3306 slap_overinst *on = (slap_overinst *)be->bd_info;
3307 syncprov_info_t *si;
3309 if ( SLAP_ISGLOBALOVERLAY( be ) ) {
3310 Debug( LDAP_DEBUG_ANY,
3311 "syncprov must be instantiated within a database.\n",
3316 si = ch_calloc(1, sizeof(syncprov_info_t));
3317 on->on_bi.bi_private = si;
3318 ldap_pvt_thread_rdwr_init( &si->si_csn_rwlock );
3319 ldap_pvt_thread_mutex_init( &si->si_ops_mutex );
3320 ldap_pvt_thread_mutex_init( &si->si_mods_mutex );
3321 ldap_pvt_thread_mutex_init( &si->si_resp_mutex );
3323 csn_anlist[0].an_desc = slap_schema.si_ad_entryCSN;
3324 csn_anlist[0].an_name = slap_schema.si_ad_entryCSN->ad_cname;
3325 csn_anlist[1].an_desc = slap_schema.si_ad_entryUUID;
3326 csn_anlist[1].an_name = slap_schema.si_ad_entryUUID->ad_cname;
3328 uuid_anlist[0].an_desc = slap_schema.si_ad_entryUUID;
3329 uuid_anlist[0].an_name = slap_schema.si_ad_entryUUID->ad_cname;
3335 syncprov_db_destroy(
3340 slap_overinst *on = (slap_overinst *)be->bd_info;
3341 syncprov_info_t *si = (syncprov_info_t *)on->on_bi.bi_private;
3344 if ( si->si_logs ) {
3345 sessionlog *sl = si->si_logs;
3346 slog_entry *se = sl->sl_head;
3349 slog_entry *se_next = se->se_next;
3353 if ( sl->sl_mincsn )
3354 ber_bvarray_free( sl->sl_mincsn );
3356 ch_free( sl->sl_sids );
3358 ldap_pvt_thread_mutex_destroy(&si->si_logs->sl_mutex);
3359 ch_free( si->si_logs );
3361 if ( si->si_ctxcsn )
3362 ber_bvarray_free( si->si_ctxcsn );
3364 ch_free( si->si_sids );
3365 ldap_pvt_thread_mutex_destroy( &si->si_resp_mutex );
3366 ldap_pvt_thread_mutex_destroy( &si->si_mods_mutex );
3367 ldap_pvt_thread_mutex_destroy( &si->si_ops_mutex );
3368 ldap_pvt_thread_rdwr_destroy( &si->si_csn_rwlock );
3375 static int syncprov_parseCtrl (
3381 BerElementBuffer berbuf;
3382 BerElement *ber = (BerElement *)&berbuf;
3385 struct berval cookie = BER_BVNULL;
3389 if ( op->o_sync != SLAP_CONTROL_NONE ) {
3390 rs->sr_text = "Sync control specified multiple times";
3391 return LDAP_PROTOCOL_ERROR;
3394 if ( op->o_pagedresults != SLAP_CONTROL_NONE ) {
3395 rs->sr_text = "Sync control specified with pagedResults control";
3396 return LDAP_PROTOCOL_ERROR;
3399 if ( BER_BVISNULL( &ctrl->ldctl_value ) ) {
3400 rs->sr_text = "Sync control value is absent";
3401 return LDAP_PROTOCOL_ERROR;
3404 if ( BER_BVISEMPTY( &ctrl->ldctl_value ) ) {
3405 rs->sr_text = "Sync control value is empty";
3406 return LDAP_PROTOCOL_ERROR;
3409 /* Parse the control value
3410 * syncRequestValue ::= SEQUENCE {
3415 * refreshAndPersist (3)
3417 * cookie syncCookie OPTIONAL
3421 ber_init2( ber, &ctrl->ldctl_value, 0 );
3423 if ( (tag = ber_scanf( ber, "{i" /*}*/, &mode )) == LBER_ERROR ) {
3424 rs->sr_text = "Sync control : mode decoding error";
3425 return LDAP_PROTOCOL_ERROR;
3429 case LDAP_SYNC_REFRESH_ONLY:
3430 mode = SLAP_SYNC_REFRESH;
3432 case LDAP_SYNC_REFRESH_AND_PERSIST:
3433 mode = SLAP_SYNC_REFRESH_AND_PERSIST;
3436 rs->sr_text = "Sync control : unknown update mode";
3437 return LDAP_PROTOCOL_ERROR;
3440 tag = ber_peek_tag( ber, &len );
3442 if ( tag == LDAP_TAG_SYNC_COOKIE ) {
3443 if (( ber_scanf( ber, /*{*/ "m", &cookie )) == LBER_ERROR ) {
3444 rs->sr_text = "Sync control : cookie decoding error";
3445 return LDAP_PROTOCOL_ERROR;
3447 tag = ber_peek_tag( ber, &len );
3449 if ( tag == LDAP_TAG_RELOAD_HINT ) {
3450 if (( ber_scanf( ber, /*{*/ "b", &rhint )) == LBER_ERROR ) {
3451 rs->sr_text = "Sync control : rhint decoding error";
3452 return LDAP_PROTOCOL_ERROR;
3455 if (( ber_scanf( ber, /*{*/ "}")) == LBER_ERROR ) {
3456 rs->sr_text = "Sync control : decoding error";
3457 return LDAP_PROTOCOL_ERROR;
3459 sr = op->o_tmpcalloc( 1, sizeof(struct sync_control), op->o_tmpmemctx );
3460 sr->sr_rhint = rhint;
3461 if (!BER_BVISNULL(&cookie)) {
3462 ber_dupbv_x( &sr->sr_state.octet_str, &cookie, op->o_tmpmemctx );
3463 /* If parse fails, pretend no cookie was sent */
3464 if ( slap_parse_sync_cookie( &sr->sr_state, op->o_tmpmemctx ) ||
3465 sr->sr_state.rid == -1 ) {
3466 if ( sr->sr_state.ctxcsn ) {
3467 ber_bvarray_free_x( sr->sr_state.ctxcsn, op->o_tmpmemctx );
3468 sr->sr_state.ctxcsn = NULL;
3470 sr->sr_state.numcsns = 0;
3474 op->o_controls[slap_cids.sc_LDAPsync] = sr;
3476 op->o_sync = ctrl->ldctl_iscritical
3477 ? SLAP_CONTROL_CRITICAL
3478 : SLAP_CONTROL_NONCRITICAL;
3480 op->o_sync_mode |= mode; /* o_sync_mode shares o_sync */
3482 return LDAP_SUCCESS;
3485 /* This overlay is set up for dynamic loading via moduleload. For static
3486 * configuration, you'll need to arrange for the slap_overinst to be
3487 * initialized and registered by some other function inside slapd.
3490 static slap_overinst syncprov;
3493 syncprov_initialize()
3497 rc = register_supported_control( LDAP_CONTROL_SYNC,
3498 SLAP_CTRL_SEARCH, NULL,
3499 syncprov_parseCtrl, &slap_cids.sc_LDAPsync );
3500 if ( rc != LDAP_SUCCESS ) {
3501 Debug( LDAP_DEBUG_ANY,
3502 "syncprov_init: Failed to register control %d\n", rc, 0, 0 );
3506 syncprov.on_bi.bi_type = "syncprov";
3507 syncprov.on_bi.bi_db_init = syncprov_db_init;
3508 syncprov.on_bi.bi_db_destroy = syncprov_db_destroy;
3509 syncprov.on_bi.bi_db_open = syncprov_db_open;
3510 syncprov.on_bi.bi_db_close = syncprov_db_close;
3512 syncprov.on_bi.bi_op_abandon = syncprov_op_abandon;
3513 syncprov.on_bi.bi_op_cancel = syncprov_op_abandon;
3515 syncprov.on_bi.bi_op_add = syncprov_op_mod;
3516 syncprov.on_bi.bi_op_compare = syncprov_op_compare;
3517 syncprov.on_bi.bi_op_delete = syncprov_op_mod;
3518 syncprov.on_bi.bi_op_modify = syncprov_op_mod;
3519 syncprov.on_bi.bi_op_modrdn = syncprov_op_mod;
3520 syncprov.on_bi.bi_op_search = syncprov_op_search;
3521 syncprov.on_bi.bi_extended = syncprov_op_extended;
3522 syncprov.on_bi.bi_operational = syncprov_operational;
3524 syncprov.on_bi.bi_cf_ocs = spocs;
3526 generic_filter.f_desc = slap_schema.si_ad_objectClass;
3528 rc = config_register_schema( spcfg, spocs );
3529 if ( rc ) return rc;
3531 return overlay_register( &syncprov );
3534 #if SLAPD_OVER_SYNCPROV == SLAPD_MOD_DYNAMIC
3536 init_module( int argc, char *argv[] )
3538 return syncprov_initialize();
3540 #endif /* SLAPD_OVER_SYNCPROV == SLAPD_MOD_DYNAMIC */
3542 #endif /* defined(SLAPD_OVER_SYNCPROV) */
projects / openldap / blob