/* init.c - initialize various things */
/* $OpenLDAP$ */
/* This work is part of OpenLDAP Software .
*
* Copyright 1998-2022 The OpenLDAP Foundation.
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted only as authorized by the OpenLDAP
* Public License.
*
* A copy of this license is available in the file LICENSE in the
* top-level directory of the distribution or, alternatively, at
* .
*/
/* Portions Copyright (c) 1995 Regents of the University of Michigan.
* All rights reserved.
*
* Redistribution and use in source and binary forms are permitted
* provided that this notice is preserved and that due credit is given
* to the University of Michigan at Ann Arbor. The name of the University
* may not be used to endorse or promote products derived from this
* software without specific prior written permission. This software
* is provided ``as is'' without express or implied warranty.
*/
#include "portable.h"
#include
#include
#include
#include
#include "lload.h"
#include "lber_pvt.h"
#include "ldap_rq.h"
#ifndef BALANCER_MODULE
/*
* read-only global variables or variables only written by the listener
* thread (after they are initialized) - no need to protect them with a mutex.
*/
int slap_debug = 0;
#ifdef LDAP_DEBUG
int ldap_syslog = LDAP_DEBUG_STATS;
#else
int ldap_syslog;
#endif
#ifdef LOG_DEBUG
int ldap_syslog_level = LOG_DEBUG;
#endif
/*
* global variables that need mutex protection
*/
ldap_pvt_thread_pool_t connection_pool;
int connection_pool_max = SLAP_MAX_WORKER_THREADS;
int connection_pool_queues = 1;
int slap_tool_thread_max = 1;
int slapMode = SLAP_UNDEFINED_MODE;
#endif /* !BALANCER_MODULE */
static const char *lload_name = NULL;
int
lload_global_init( void )
{
int rc;
if ( lload_libevent_init() ) {
return -1;
}
#ifdef HAVE_TLS
if ( ldap_create( &lload_tls_backend_ld ) ) {
return -1;
}
if ( ldap_create( &lload_tls_ld ) ) {
return -1;
}
/* Library defaults to full certificate checking. This is correct when
* a client is verifying a server because all servers should have a
* valid cert. But few clients have valid certs, so we want our default
* to be no checking. The config file can override this as usual.
*/
rc = LDAP_OPT_X_TLS_NEVER;
(void)ldap_pvt_tls_set_option(
lload_tls_ld, LDAP_OPT_X_TLS_REQUIRE_CERT, &rc );
#endif
ldap_pvt_thread_mutex_init( &lload_wait_mutex );
ldap_pvt_thread_cond_init( &lload_wait_cond );
ldap_pvt_thread_cond_init( &lload_pause_cond );
ldap_pvt_thread_mutex_init( &clients_mutex );
ldap_pvt_thread_mutex_init( &lload_pin_mutex );
if ( lload_exop_init() ) {
return -1;
}
return 0;
}
int
lload_global_destroy( void )
{
if ( !BER_BVISNULL( &lloadd_identity ) ) {
ch_free( lloadd_identity.bv_val );
BER_BVZERO( &lloadd_identity );
}
lload_exop_destroy();
ldap_tavl_free( lload_control_actions, (AVL_FREE)lload_restriction_free );
ldap_tavl_free( lload_exop_actions, (AVL_FREE)lload_restriction_free );
#ifdef HAVE_TLS
if ( lload_tls_backend_ld ) {
ldap_unbind_ext( lload_tls_backend_ld, NULL, NULL );
}
if ( lload_tls_ld ) {
ldap_unbind_ext( lload_tls_ld, NULL, NULL );
}
if ( lload_tls_ctx ) {
ldap_pvt_tls_ctx_free( lload_tls_ctx );
}
#endif
ldap_pvt_thread_mutex_destroy( &lload_wait_mutex );
ldap_pvt_thread_cond_destroy( &lload_wait_cond );
ldap_pvt_thread_cond_destroy( &lload_pause_cond );
ldap_pvt_thread_mutex_destroy( &clients_mutex );
ldap_pvt_thread_mutex_destroy( &lload_pin_mutex );
lload_libevent_destroy();
return 0;
}
int
lload_tls_init( void )
{
#ifdef HAVE_TLS
int rc, opt = 1;
/* Force new ctx to be created */
rc = ldap_pvt_tls_set_option( lload_tls_ld, LDAP_OPT_X_TLS_NEWCTX, &opt );
if ( rc == 0 ) {
/* The ctx's refcount is bumped up here */
ldap_pvt_tls_get_option(
lload_tls_ld, LDAP_OPT_X_TLS_CTX, &lload_tls_ctx );
} else if ( rc != LDAP_NOT_SUPPORTED ) {
Debug( LDAP_DEBUG_ANY, "lload_global_init: "
"TLS init def ctx failed: %d\n",
rc );
return -1;
}
#endif
return 0;
}
int
lload_init( int mode, const char *name )
{
int rc = LDAP_SUCCESS;
assert( mode );
if ( slapMode != SLAP_UNDEFINED_MODE ) {
/* Make sure we write something to stderr */
slap_debug |= LDAP_DEBUG_NONE;
Debug( LDAP_DEBUG_ANY, "%s init: "
"init called twice (old=%d, new=%d)\n",
name, slapMode, mode );
return 1;
}
slapMode = mode;
switch ( slapMode & SLAP_MODE ) {
case SLAP_SERVER_MODE:
Debug( LDAP_DEBUG_TRACE, "%s init: "
"initiated server.\n",
name );
lload_name = name;
ldap_pvt_thread_pool_init_q( &connection_pool, connection_pool_max,
0, connection_pool_queues );
ldap_pvt_thread_mutex_init( &slapd_rq.rq_mutex );
LDAP_STAILQ_INIT( &slapd_rq.task_list );
LDAP_STAILQ_INIT( &slapd_rq.run_list );
rc = lload_global_init();
break;
default:
slap_debug |= LDAP_DEBUG_NONE;
Debug( LDAP_DEBUG_ANY, "%s init: "
"undefined mode (%d).\n",
name, mode );
rc = 1;
break;
}
return rc;
}
int
lload_destroy( void )
{
int rc = LDAP_SUCCESS;
Debug( LDAP_DEBUG_TRACE, "%s destroy: "
"freeing system resources.\n",
lload_name );
ldap_pvt_thread_pool_free( &connection_pool );
switch ( slapMode & SLAP_MODE ) {
case SLAP_SERVER_MODE:
break;
default:
Debug( LDAP_DEBUG_ANY, "lload_destroy(): "
"undefined mode (%d).\n",
slapMode );
rc = 1;
break;
}
ldap_pvt_thread_destroy();
/* should destroy the above mutex */
return rc;
}