2 * Copyright (C) Joerg Lenneis 2003
3 * Copyright (C) Frank Lahm 2009, 2010
5 * All Rights Reserved. See COPYING.
9 cnid_dbd metadaemon to start up cnid_dbd upon request from afpd.
13 1. afpd -------> cnid_metad
15 via UNIX domain socket
16 2. cnid_metad -------> cnid_dbd
19 3. cnid_metad -------> cnid_dbd
23 4. afpd -------> cnid_dbd
25 cnid_metad and cnid_dbd have been converted to non-blocking IO in 2010.
31 #endif /* HAVE_CONFIG_H */
37 #include <sys/param.h>
41 #include <sys/types.h>
43 #include <sys/resource.h>
48 #include <sys/socket.h>
53 #define WEXITSTATUS(stat_val) ((unsigned)(stat_val) >> 8)
54 #endif /* ! WEXITSTATUS */
56 #define WIFEXITED(stat_val) (((stat_val) & 255) == 0)
57 #endif /* ! WIFEXITED */
59 #define WIFSTOPPED(status) (((status) & 0xff) == 0x7f)
63 #define WIFSIGNALED(status) (!WIFSTOPPED(status) && !WIFEXITED(status))
66 #define WTERMSIG(status) ((status) & 0x7f)
69 /* functions for username and group */
76 #define USE_SETRESUID 1
77 #define SWITCH_TO_GID(gid) ((setresgid(gid,gid,gid) < 0 || setgid(gid) < 0) ? -1 : 0)
78 #define SWITCH_TO_UID(uid) ((setresuid(uid,uid,uid) < 0 || setuid(uid) < 0) ? -1 : 0)
79 #endif /* USE_SETRESUID */
83 #define SWITCH_TO_GID(gid) ((setegid(gid) < 0 || setgid(gid) < 0) ? -1 : 0)
84 #define SWITCH_TO_UID(uid) ((setuid(uid) < 0 || seteuid(uid) < 0 || setuid(uid) < 0) ? -1 : 0)
85 #endif /* USE_SETEUID */
88 #include <atalk/util.h>
89 #include <atalk/logger.h>
90 #include <atalk/cnid_dbd_private.h>
91 #include <atalk/paths.h>
92 #include <atalk/compat.h>
93 #include <atalk/errchk.h>
94 #include <atalk/bstrlib.h>
95 #include <atalk/netatalk_conf.h>
96 #include <atalk/volume.h>
100 #define DBHOME ".AppleDB"
105 static volatile sig_atomic_t sigchild = 0;
108 #define MAXSPAWN 3 /* Max times respawned in.. */
109 #define TESTTIME 10 /* this much seconds apfd client tries to *
110 * to reconnect every 5 secondes, catch it */
112 #define DEFAULTHOST "localhost"
113 #define DEFAULTPORT "4700"
118 time_t tm; /* When respawned last */
119 unsigned int count; /* Times respawned in the last TESTTIME secondes */
120 int control_fd; /* file descriptor to child cnid_dbd process */
123 static struct server srv[MAXVOLS];
125 static void daemon_exit(int i)
130 /* ------------------ */
131 static void sig_handler(int sig)
136 LOG(log_note, logtype_afpd, "shutting down on %s",
137 sig == SIGTERM ? "SIGTERM" : "SIGQUIT");
140 LOG(log_error, logtype_afpd, "unexpected signal: %d", sig);
145 static struct server *test_usockfn(const char *path)
149 for (i = 0; i < maxvol; i++) {
150 if (srv[i].v_path && STRCMP(path, ==, srv[i].v_path))
157 /* -------------------- */
158 static int maybe_start_dbd(const AFPObj *obj, char *dbdpn, const char *volpath)
168 LOG(log_debug, logtype_cnid, "maybe_start_dbd(\"%s\"): BEGIN", volpath);
170 up = test_usockfn(volpath);
172 /* we already have a process, send our fd */
173 LOG(log_debug, logtype_cnid, "maybe_start_dbd: cnid_dbd[%d] already serving", up->pid);
174 if (send_fd(up->control_fd, rqstfd) < 0) {
181 LOG(log_debug, logtype_cnid, "maybe_start_dbd: no cnid_dbd serving yet");
185 /* find an empty slot (i < maxvol) or the first free slot (i == maxvol)*/
186 for (i = 0; i <= maxvol; i++) {
187 if (srv[i].v_path == NULL && i < MAXVOLS) {
189 if ((up->v_path = strdup(volpath)) == NULL)
199 LOG(log_error, logtype_cnid, "no free slot for cnid_dbd child. Configured maximum: %d. Do you have so many volumes?", MAXVOLS);
203 /* we have a slot but no process */
205 /* check for respawn too fast */
206 if (t < (up->tm + TESTTIME)) {
207 /* We're in the respawn time window */
208 if (up->count > MAXSPAWN) {
209 /* ...and already tried to fork too often */
210 LOG(log_maxdebug, logtype_cnid, "maybe_start_dbd: respawning too fast");
211 return -1; /* just exit, dont sleep, because we might have work to do for another client */
214 /* out of respawn too fast windows reset the count */
215 LOG(log_info, logtype_cnid, "maybe_start_dbd: respawn window ended");
221 LOG(log_maxdebug, logtype_cnid, "maybe_start_dbd: respawn count: %u", up->count);
222 if (up->count > MAXSPAWN) {
223 /* We spawned too fast. From now until the first time we tried + TESTTIME seconds
224 we will just return -1 above */
225 LOG(log_info, logtype_cnid, "maybe_start_dbd: reached MAXSPAWN threshhold");
230 Create socketpair for comm between parent and child.
231 We use it to pass fds from connecting afpd processes to our
232 cnid_dbd child via fd passing.
234 if (socketpair(PF_UNIX, SOCK_STREAM, 0, sv) < 0) {
235 LOG(log_error, logtype_cnid, "error in socketpair: %s", strerror(errno));
239 if ((pid = fork()) < 0) {
240 LOG(log_error, logtype_cnid, "error in fork: %s", strerror(errno));
246 * Child. Close descriptors and start the daemon. If it fails
247 * just log it. The client process will fail connecting
254 for (i = 0; i < MAXVOLS; i++) {
255 if (srv[i].pid && up != &srv[i]) {
256 close(srv[i].control_fd);
260 sprintf(buf1, "%i", sv[1]);
261 sprintf(buf2, "%i", rqstfd);
263 if (up->count == MAXSPAWN) {
264 /* there's a pb with the db inform child, it will delete the db */
265 LOG(log_warning, logtype_cnid,
266 "Multiple attempts to start CNID db daemon for \"%s\" failed, wiping the slate clean...",
268 ret = execlp(dbdpn, dbdpn, "-F", obj->options.configfile, "-p", volpath, "-t", buf1, "-l", buf2, "-d", NULL);
270 ret = execlp(dbdpn, dbdpn, "-F", obj->options.configfile, "-p", volpath, "-t", buf1, "-l", buf2, NULL);
272 /* Yikes! We're still here, so exec failed... */
273 LOG(log_error, logtype_cnid, "Fatal error in exec: %s", strerror(errno));
281 up->control_fd = sv[0];
285 /* ------------------ */
286 static int set_dbdir(const char *dbdir, const char *vpath)
291 bstring oldpath, newpath, cmd = NULL;
293 EC_NULL_LOG( oldpath = bformat("%s/%s/", vpath, DBHOME) );
294 EC_NULL_LOG( newpath = bformat("%s/%s/", dbdir, DBHOME) );
296 if (lstat(dbdir, &st) < 0 && mkdir(dbdir, 0755) < 0) {
297 LOG(log_error, logtype_cnid, "set_dbdir: mkdir failed for %s", dbdir);
301 if (lstat(bdata(oldpath), &st) == 0 && lstat(bdata(newpath), &st) != 0 && errno == ENOENT) {
302 /* There's an .AppleDB in the volume root, we move it */
303 EC_NULL_LOG( cmd = bformat("mv '%s' '%s'", bdata(oldpath), dbdir) );
304 LOG(log_debug, logtype_cnid, "set_dbdir: cmd: %s", bdata(cmd));
305 if (WEXITSTATUS(system(bdata(cmd))) != 0) {
306 LOG(log_error, logtype_cnid, "set_dbdir: moving CNID db from \"%s\" to \"%s\" failed",
307 bdata(oldpath), dbdir);
312 if (lstat(bdata(newpath), &st) < 0 && mkdir(bdata(newpath), 0755 ) < 0) {
313 LOG(log_error, logtype_cnid, "set_dbdir: mkdir failed for %s", bdata(newpath));
324 /* ------------------ */
325 static uid_t user_to_uid (char *username)
327 struct passwd *this_passwd;
329 /* check for anything */
330 if ( !username || strlen ( username ) < 1 ) return 0;
332 /* grab the /etc/passwd record relating to username */
333 this_passwd = getpwnam ( username );
335 /* return false if there is no structure returned */
336 if (this_passwd == NULL) return 0;
338 /* return proper uid */
339 return this_passwd->pw_uid;
343 /* ------------------ */
344 static gid_t group_to_gid ( char *group)
346 struct group *this_group;
348 /* check for anything */
349 if ( !group || strlen ( group ) < 1 ) return 0;
351 /* grab the /etc/groups record relating to group */
352 this_group = getgrnam ( group );
354 /* return false if there is no structure returned */
355 if (this_group == NULL) return 0;
357 /* return proper gid */
358 return this_group->gr_gid;
362 /* ------------------ */
363 static void catch_child(int sig _U_)
368 /* ----------------------- */
369 static void set_signal(void)
374 memset(&sv, 0, sizeof(sv));
377 sv.sa_handler = catch_child;
378 sv.sa_flags = SA_NOCLDSTOP;
379 sigemptyset(&sv.sa_mask);
380 if (sigaction(SIGCHLD, &sv, NULL) < 0) {
381 LOG(log_error, logtype_cnid, "cnid_metad: sigaction: %s", strerror(errno));
382 daemon_exit(EXITERR_SYS);
385 /* Catch SIGTERM and SIGQUIT */
386 sv.sa_handler = sig_handler;
387 sigfillset(&sv.sa_mask );
388 if (sigaction(SIGTERM, &sv, NULL ) < 0 ) {
389 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
390 daemon_exit(EXITERR_SYS);
392 if (sigaction(SIGQUIT, &sv, NULL ) < 0 ) {
393 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
394 daemon_exit(EXITERR_SYS);
397 /* Ignore the rest */
398 sv.sa_handler = SIG_IGN;
399 sigemptyset(&sv.sa_mask );
400 if (sigaction(SIGALRM, &sv, NULL ) < 0 ) {
401 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
402 daemon_exit(EXITERR_SYS);
404 sv.sa_handler = SIG_IGN;
405 sigemptyset(&sv.sa_mask );
406 if (sigaction(SIGHUP, &sv, NULL ) < 0 ) {
407 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
408 daemon_exit(EXITERR_SYS);
410 sv.sa_handler = SIG_IGN;
411 sigemptyset(&sv.sa_mask );
412 if (sigaction(SIGUSR1, &sv, NULL ) < 0 ) {
413 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
414 daemon_exit(EXITERR_SYS);
416 sv.sa_handler = SIG_IGN;
417 sigemptyset(&sv.sa_mask );
418 if (sigaction(SIGUSR2, &sv, NULL ) < 0 ) {
419 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
420 daemon_exit(EXITERR_SYS);
422 sv.sa_handler = SIG_IGN;
423 sigemptyset(&sv.sa_mask );
424 if (sigaction(SIGPIPE, &sv, NULL ) < 0 ) {
425 LOG(log_error, logtype_afpd, "sigaction: %s", strerror(errno) );
426 daemon_exit(EXITERR_SYS);
429 /* block everywhere but in pselect */
431 sigaddset(&set, SIGCHLD);
432 sigprocmask(SIG_SETMASK, &set, NULL);
435 static int setlimits(void)
439 if (getrlimit(RLIMIT_NOFILE, &rlim) != 0) {
440 LOG(log_error, logtype_afpd, "setlimits: %s", strerror(errno));
443 if (rlim.rlim_cur != RLIM_INFINITY && rlim.rlim_cur < 65535) {
444 rlim.rlim_cur = 65535;
445 if (rlim.rlim_max != RLIM_INFINITY && rlim.rlim_max < 65535)
446 rlim.rlim_max = 65535;
447 if (setrlimit(RLIMIT_NOFILE, &rlim) != 0) {
448 LOG(log_error, logtype_afpd, "setlimits: %s", strerror(errno));
455 /* ------------------ */
456 int main(int argc, char *argv[])
458 char volpath[MAXPATHLEN + 1];
462 char *dbdpn = _PATH_CNID_DBD;
476 while (( cc = getopt( argc, argv, "dF:vV")) != -1 ) {
482 obj.cmdlineconfigfile = strdup(optarg);
486 printf("cnid_metad (Netatalk %s)\n", VERSION);
489 printf("cnid_metad [-dvV] [-F alternate configfile ]\n");
494 if (!debug && daemonize(0, 0) != 0)
497 if (afp_config_parse(&obj) != 0)
500 set_processname("cnid_metad");
501 setuplog(obj.options.logconfig, obj.options.logfile);
503 if (load_volumes(&obj, NULL) != 0)
508 host = iniparser_getstrdup(obj.iniconfig, INISEC_GLOBAL, "cnid listen", "localhost:4700");
509 if (port = strrchr(host, ':'))
513 if ((srvfd = tsockfd_create(host, port, 10)) < 0)
516 LOG(log_note, logtype_afpd, "CNID Server listening on %s:%s", host, port);
520 LOG(log_debug, logtype_cnid, "Setting uid/gid to %i/%i", uid, gid);
522 if (SWITCH_TO_GID(gid) < 0) {
523 LOG(log_info, logtype_cnid, "unable to switch to group %d", gid);
528 if (SWITCH_TO_UID(uid) < 0) {
529 LOG(log_info, logtype_cnid, "unable to switch to user %d", uid);
538 sigprocmask(SIG_SETMASK, NULL, &set);
539 sigdelset(&set, SIGCHLD);
542 rqstfd = usockfd_check(srvfd, &set);
543 /* Collect zombie processes and log what happened to them */
544 if (sigchild) while ((pid = waitpid(-1, &status, WNOHANG)) > 0) {
545 for (i = 0; i < maxvol; i++) {
546 if (srv[i].pid == pid) {
548 close(srv[i].control_fd);
552 if (WIFEXITED(status)) {
553 LOG(log_info, logtype_cnid, "cnid_dbd[%i] exited with exit code %i",
554 pid, WEXITSTATUS(status));
556 /* cnid_dbd did a clean exit probably on idle timeout, reset bookkeeping */
560 if (WIFSIGNALED(status)) {
561 LOG(log_info, logtype_cnid, "cnid_dbd[%i] got signal %i",
562 pid, WTERMSIG(status));
569 ret = readt(rqstfd, &len, sizeof(int), 1, 4);
576 LOG(log_severe, logtype_cnid, "error read: %s", strerror(errno));
579 else if (ret != sizeof(int)) {
580 LOG(log_error, logtype_cnid, "short read: got %d", ret);
584 * checks for buffer overruns. The client libatalk side does it too
585 * before handing the dir path over but who trusts clients?
587 if (!len || len +DBHOMELEN +2 > MAXPATHLEN) {
588 LOG(log_error, logtype_cnid, "wrong len parameter: %d", len);
592 actual_len = readt(rqstfd, volpath, len, 1, 5);
593 if (actual_len < 0) {
594 LOG(log_severe, logtype_cnid, "Read(2) error : %s", strerror(errno));
597 if (actual_len != len) {
598 LOG(log_error, logtype_cnid, "error/short read (dir): %s", strerror(errno));
603 LOG(log_debug, logtype_cnid, "main: request for volume: %s", volpath);
605 if (load_volumes(&obj, NULL) != 0) {
606 LOG(log_severe, logtype_cnid, "main: error reloading config");
610 if ((vol = getvolbypath(&obj, volpath)) == NULL) {
611 LOG(log_severe, logtype_cnid, "main: no volume for path \"%s\"", volpath);
615 LOG(log_maxdebug, logtype_cnid, "main: dbpath: %s", vol->v_dbpath);
617 if (set_dbdir(vol->v_dbpath, volpath) < 0) {
621 maybe_start_dbd(&obj, dbdpn, vol->v_path);