mirror of
https://git.openldap.org/openldap/openldap.git
synced 2025-01-24 13:24:56 +08:00
212 lines
5.3 KiB
C
212 lines
5.3 KiB
C
/* init.c - initialize various things */
|
|
/* $OpenLDAP$ */
|
|
/* This work is part of OpenLDAP Software <http://www.openldap.org/>.
|
|
*
|
|
* Copyright 1998-2020 The OpenLDAP Foundation.
|
|
* All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted only as authorized by the OpenLDAP
|
|
* Public License.
|
|
*
|
|
* A copy of this license is available in the file LICENSE in the
|
|
* top-level directory of the distribution or, alternatively, at
|
|
* <http://www.OpenLDAP.org/license.html>.
|
|
*/
|
|
/* Portions Copyright (c) 1995 Regents of the University of Michigan.
|
|
* All rights reserved.
|
|
*
|
|
* Redistribution and use in source and binary forms are permitted
|
|
* provided that this notice is preserved and that due credit is given
|
|
* to the University of Michigan at Ann Arbor. The name of the University
|
|
* may not be used to endorse or promote products derived from this
|
|
* software without specific prior written permission. This software
|
|
* is provided ``as is'' without express or implied warranty.
|
|
*/
|
|
|
|
#include "portable.h"
|
|
|
|
#include <stdio.h>
|
|
|
|
#include <ac/socket.h>
|
|
#include <ac/string.h>
|
|
#include <ac/time.h>
|
|
|
|
#include "lload.h"
|
|
#include "lber_pvt.h"
|
|
|
|
#include "ldap_rq.h"
|
|
|
|
#ifndef BALANCER_MODULE
|
|
/*
|
|
* read-only global variables or variables only written by the listener
|
|
* thread (after they are initialized) - no need to protect them with a mutex.
|
|
*/
|
|
int slap_debug = 0;
|
|
|
|
#ifdef LDAP_DEBUG
|
|
int ldap_syslog = LDAP_DEBUG_STATS;
|
|
#else
|
|
int ldap_syslog;
|
|
#endif
|
|
|
|
#ifdef LOG_DEBUG
|
|
int ldap_syslog_level = LOG_DEBUG;
|
|
#endif
|
|
|
|
/*
|
|
* global variables that need mutex protection
|
|
*/
|
|
ldap_pvt_thread_pool_t connection_pool;
|
|
int connection_pool_max = SLAP_MAX_WORKER_THREADS;
|
|
int connection_pool_queues = 1;
|
|
int slap_tool_thread_max = 1;
|
|
|
|
int slapMode = SLAP_UNDEFINED_MODE;
|
|
#endif /* !BALANCER_MODULE */
|
|
|
|
static const char *lload_name = NULL;
|
|
|
|
int
|
|
lload_global_init( void )
|
|
{
|
|
int rc;
|
|
|
|
if ( lload_libevent_init() ) {
|
|
return -1;
|
|
}
|
|
|
|
#ifdef HAVE_TLS
|
|
if ( ldap_create( &lload_tls_backend_ld ) ) {
|
|
return -1;
|
|
}
|
|
if ( ldap_create( &lload_tls_ld ) ) {
|
|
return -1;
|
|
}
|
|
|
|
/* Library defaults to full certificate checking. This is correct when
|
|
* a client is verifying a server because all servers should have a
|
|
* valid cert. But few clients have valid certs, so we want our default
|
|
* to be no checking. The config file can override this as usual.
|
|
*/
|
|
rc = LDAP_OPT_X_TLS_NEVER;
|
|
(void)ldap_pvt_tls_set_option(
|
|
lload_tls_ld, LDAP_OPT_X_TLS_REQUIRE_CERT, &rc );
|
|
#endif
|
|
|
|
ldap_pvt_thread_mutex_init( &lload_wait_mutex );
|
|
ldap_pvt_thread_cond_init( &lload_wait_cond );
|
|
ldap_pvt_thread_cond_init( &lload_pause_cond );
|
|
|
|
ldap_pvt_thread_mutex_init( &backend_mutex );
|
|
ldap_pvt_thread_mutex_init( &clients_mutex );
|
|
ldap_pvt_thread_mutex_init( &lload_pin_mutex );
|
|
|
|
if ( lload_exop_init() ) {
|
|
return -1;
|
|
}
|
|
return 0;
|
|
}
|
|
|
|
int
|
|
lload_tls_init( void )
|
|
{
|
|
#ifdef HAVE_TLS
|
|
int rc, opt = 1;
|
|
|
|
/* Force new ctx to be created */
|
|
rc = ldap_pvt_tls_set_option( lload_tls_ld, LDAP_OPT_X_TLS_NEWCTX, &opt );
|
|
if ( rc == 0 ) {
|
|
/* The ctx's refcount is bumped up here */
|
|
ldap_pvt_tls_get_option(
|
|
lload_tls_ld, LDAP_OPT_X_TLS_CTX, &lload_tls_ctx );
|
|
} else if ( rc != LDAP_NOT_SUPPORTED ) {
|
|
Debug( LDAP_DEBUG_ANY, "lload_global_init: "
|
|
"TLS init def ctx failed: %d\n",
|
|
rc );
|
|
return -1;
|
|
}
|
|
#endif
|
|
return 0;
|
|
}
|
|
|
|
int
|
|
lload_init( int mode, const char *name )
|
|
{
|
|
int rc = LDAP_SUCCESS;
|
|
|
|
assert( mode );
|
|
|
|
if ( slapMode != SLAP_UNDEFINED_MODE ) {
|
|
/* Make sure we write something to stderr */
|
|
slap_debug |= LDAP_DEBUG_NONE;
|
|
Debug( LDAP_DEBUG_ANY, "%s init: "
|
|
"init called twice (old=%d, new=%d)\n",
|
|
name, slapMode, mode );
|
|
|
|
return 1;
|
|
}
|
|
|
|
slapMode = mode;
|
|
|
|
switch ( slapMode & SLAP_MODE ) {
|
|
case SLAP_SERVER_MODE:
|
|
Debug( LDAP_DEBUG_TRACE, "%s init: "
|
|
"initiated server.\n",
|
|
name );
|
|
|
|
lload_name = name;
|
|
|
|
ldap_pvt_thread_pool_init_q( &connection_pool, connection_pool_max,
|
|
0, connection_pool_queues );
|
|
|
|
ldap_pvt_thread_mutex_init( &slapd_rq.rq_mutex );
|
|
LDAP_STAILQ_INIT( &slapd_rq.task_list );
|
|
LDAP_STAILQ_INIT( &slapd_rq.run_list );
|
|
|
|
rc = lload_global_init();
|
|
break;
|
|
|
|
default:
|
|
slap_debug |= LDAP_DEBUG_NONE;
|
|
Debug( LDAP_DEBUG_ANY, "%s init: "
|
|
"undefined mode (%d).\n",
|
|
name, mode );
|
|
|
|
rc = 1;
|
|
break;
|
|
}
|
|
|
|
return rc;
|
|
}
|
|
|
|
int
|
|
lload_destroy( void )
|
|
{
|
|
int rc = LDAP_SUCCESS;
|
|
|
|
Debug( LDAP_DEBUG_TRACE, "%s destroy: "
|
|
"freeing system resources.\n",
|
|
lload_name );
|
|
|
|
ldap_pvt_thread_pool_free( &connection_pool );
|
|
|
|
switch ( slapMode & SLAP_MODE ) {
|
|
case SLAP_SERVER_MODE:
|
|
break;
|
|
|
|
default:
|
|
Debug( LDAP_DEBUG_ANY, "lload_destroy(): "
|
|
"undefined mode (%d).\n",
|
|
slapMode );
|
|
|
|
rc = 1;
|
|
break;
|
|
}
|
|
|
|
ldap_pvt_thread_destroy();
|
|
|
|
/* should destroy the above mutex */
|
|
return rc;
|
|
}
|