openldap

mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-29 19:19:35 -05:00

Author	SHA1	Message	Date
Ondřej Kuzník	9bd90a741c	Fix a race on bind response processing. During response processing, an upstream connection could be marked ready after a different bind had already been allocated to it, thus allowing two binds to be in progress on the same connection.	2020-11-17 17:58:14 +00:00
Nadezhda Ivanova	2d33032504	Lload cn=monitor initial implementation	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	7a69017f6f	Resolve authzid after a successful auth	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	cbc0ec04c0	Fix pinned operation forwarding	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	5c1245de06	Manage c_sasl_bind_mech on upstream	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	003a35c62f	SASL bind support Introduces pinned operations. When SASL bind finishes, we might still have to maintain a link between the client an an upstream for future bind operations if we got a SASL Bind in Progress result code. We zero out the msgids and remember a server-unique identifer on the client and the relevant operation that lets us retrieve that link again. This operation is reclaimed just like anything else when connections drop. Hopefully, this should work for LDAP TXN and VC Exop support with SASL later as well since it allows for many-to-many links to exist.	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	ddd1acc327	Passing the client directly will allow clearing it from op	2020-11-17 17:58:14 +00:00
Nadezhda Ivanova	8bc7650a7c	Clean ups and renames to coexist with slapd	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	c386d527ca	Protect currently impossible branch	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	1790018488	Record operation activity times	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	a0ec50b33d	Upstream queues ordered by c_connid In preparation for operation timeout events.	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	0cfd4fca4d	Make timeouts common and redo connection read timeouts	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	f87127dfa2	Set up TLS context for backends	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	a0cd41ecd2	Upstream TLS support	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	5ee4b67673	Move bind handling to bind.c	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	b801ca17cb	Rename macros and symbols to lloadd	2020-11-17 17:58:14 +00:00
Ondřej Kuzník	c60ef73984	Rework upstream conn setup	2020-11-17 17:58:13 +00:00
Ondřej Kuzník	8d93e0baa0	Unify connection locking and I/O	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	5fcef01d62	Switch from a global mutex	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	f7cf34e69c	Reset connection state on abandon	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	6140cdf6f8	Handle a client connection disconnected from op	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	d4225924bc	CLOSING is another potential state we could be in	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	622b87d5e8	Make ready only when still alive	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	7046444327	Do not read on the last iteration. When the pdu processing limit is hit, we still attempt to read another PDU. If we succeed, the ber_get_next call in the read callback will abort since a full PDU is already present.	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	65def94380	More logging improvements	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	30e538e836	Realign logging levels. Stats now logs all operations, stats2 additionally intermediate messages (search entries).	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	1dd0e5131a	Only one bind at a time	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	46fe014378	Make sure operation stays alive when we process it	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	0ff462b619	Fix issues in bind response handling	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	37cff37305	Manage connection refcnt better	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	05f2ac2583	Unify logging output	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	873d6fa3e1	Handle backend unsolicited response properly	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	961b600a42	Rework proxyauthz handling	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	6ee21f1181	Split bind configuration from backends	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	5b1ad43178	Handle upstream connection shutdown properly	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	a8a0fe26b0	Documentation updates	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	495dfa69a2	Split client/upstream PDU size limits	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	1082486874	Only enable verifycredentials if libldap does	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	26f721510a	Improve logging	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	cf05722b6c	Lookup operations by saved connid. We reset the connection pointer on a destruction attempt, avoid the spurious asserts.	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	f4afc06920	Tweak connection error logging. Do not log when receiving the last bytes on a connection. Log failed writes.	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	ee288cfc2d	Fix refcounting for all code paths	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	58a880bc7b	Convert backend and upstream management to use CIRCLEQ. This alone doesn't make the server do a round robin.	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	643194e79e	Revert connection/operation mutex order. There was still a race where the connection could be freed as the operation was still being used.	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	9ebe5acb62	Clean up events properly	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	8eb7f3fbca	Stop the read callback on a dead connection. The connection might be ready to read (close) but if we can't destroy it yet, we don't want the callback to trigger all the time or process new data.	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	6899d0123d	Do not bother to write to a dying connection	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	77f2c57132	Reset c_*ber after freeing and check c_pendingber race	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	07b5744c2a	Retain a reference around for handle_responses	2020-11-17 17:55:46 +00:00
Ondřej Kuzník	c5584fd32a	Do not leak responses to abandoned ops	2020-11-17 17:55:46 +00:00

1 2

71 commits