summaryrefslogtreecommitdiffstats
path: root/src
diff options
context:
space:
mode:
authorPavel Březina <pbrezina@redhat.com>2013-05-13 10:05:00 +0200
committerJakub Hrozek <jhrozek@redhat.com>2013-06-10 20:30:57 +0200
commitb79e0e50a935d108173ca3062f2afe16103fcb1d (patch)
tree50d5f58b98909db16f77699ffe9b9e8a445748e6 /src
parentac47e8854f3bc404f2a35c6682faf621673d6b32 (diff)
downloadsssd-b79e0e50a935d108173ca3062f2afe16103fcb1d.tar.gz
sssd-b79e0e50a935d108173ca3062f2afe16103fcb1d.tar.xz
sssd-b79e0e50a935d108173ca3062f2afe16103fcb1d.zip
back end: periodical refresh of expired records API
https://fedorahosted.org/sssd/ticket/1713
Diffstat (limited to 'src')
-rw-r--r--src/providers/dp_refresh.c310
-rw-r--r--src/providers/dp_refresh.h66
2 files changed, 376 insertions, 0 deletions
diff --git a/src/providers/dp_refresh.c b/src/providers/dp_refresh.c
new file mode 100644
index 000000000..5b0a394a2
--- /dev/null
+++ b/src/providers/dp_refresh.c
@@ -0,0 +1,310 @@
+/*
+ Authors:
+ Pavel Březina <pbrezina@redhat.com>
+
+ Copyright (C) 2013 Red Hat
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 3 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program. If not, see <http://www.gnu.org/licenses/>.
+*/
+
+#include <tevent.h>
+#include <talloc.h>
+#include <time.h>
+#include <ldb.h>
+
+#include "providers/dp_backend.h"
+#include "providers/dp_ptask.h"
+#include "providers/dp_refresh.h"
+#include "util/util_errors.h"
+#include "db/sysdb.h"
+
+static errno_t be_refresh_get_values(TALLOC_CTX *mem_ctx,
+ struct sss_domain_info *domain,
+ const char *objectclass,
+ struct ldb_dn *base_dn,
+ const char *attr,
+ char ***_values)
+{
+ TALLOC_CTX *tmp_ctx = NULL;
+ const char *attrs[] = {attr, NULL};
+ const char *filter = NULL;
+ char **values = NULL;
+ struct ldb_message **msgs = NULL;
+ struct sysdb_attrs **records = NULL;
+ size_t count;
+ time_t now = time(NULL);
+ errno_t ret;
+
+ tmp_ctx = talloc_new(NULL);
+ if (tmp_ctx == NULL) {
+ return ENOMEM;
+ }
+
+ filter = talloc_asprintf(tmp_ctx, "(&(%s<=%lld))",
+ SYSDB_CACHE_EXPIRE, (long long) now);
+ if (filter == NULL) {
+ ret = ENOMEM;
+ goto done;
+ }
+
+ ret = sysdb_search_entry(tmp_ctx, domain->sysdb, base_dn,
+ LDB_SCOPE_SUBTREE, filter, attrs,
+ &count, &msgs);
+ if (ret == ENOENT) {
+ count = 0;
+ } else if (ret != EOK) {
+ goto done;
+ }
+
+ ret = sysdb_msg2attrs(tmp_ctx, count, msgs, &records);
+ if (ret != EOK) {
+ DEBUG(SSSDBG_CRIT_FAILURE,
+ ("Could not convert ldb message to sysdb_attrs\n"));
+ goto done;
+ }
+
+ ret = sysdb_attrs_to_list(tmp_ctx, records, count, attr, &values);
+ if (ret != EOK) {
+ goto done;
+ }
+
+ *_values = talloc_steal(mem_ctx, values);
+ ret = EOK;
+
+done:
+ talloc_free(tmp_ctx);
+
+ return ret;
+}
+
+static errno_t be_refresh_get_netgroups(TALLOC_CTX *mem_ctx,
+ struct sss_domain_info *domain,
+ char ***_values)
+{
+ struct ldb_dn *base_dn = NULL;
+ errno_t ret;
+
+ base_dn = sysdb_netgroup_base_dn(domain->sysdb, mem_ctx, domain);
+ if (base_dn == NULL) {
+ return ENOMEM;
+ }
+
+ ret = be_refresh_get_values(mem_ctx, domain, SYSDB_NETGROUP_CLASS,
+ base_dn, SYSDB_NAME, _values);
+
+ talloc_free(base_dn);
+ return ret;
+}
+
+typedef errno_t
+(*be_refresh_get_values_t)(TALLOC_CTX *mem_ctx,
+ struct sss_domain_info *domain,
+ char ***_values);
+
+
+struct be_refresh_cb {
+ bool enabled;
+ be_refresh_get_values_t get_values;
+ be_refresh_send_t send;
+ be_refresh_recv_t recv;
+ void *pvt;
+};
+
+struct be_refresh_ctx {
+ struct be_refresh_cb callbacks[BE_REFRESH_TYPE_SENTINEL];
+};
+
+struct be_refresh_ctx *be_refresh_ctx_init(TALLOC_CTX *mem_ctx)
+{
+ struct be_refresh_ctx *ctx = NULL;
+
+ ctx = talloc_zero(mem_ctx, struct be_refresh_ctx);
+ if (ctx == NULL) {
+ return NULL;
+ }
+
+ ctx->callbacks[BE_REFRESH_TYPE_NETGROUPS].get_values \
+ = be_refresh_get_netgroups;
+
+ return ctx;
+}
+
+errno_t be_refresh_add_cb(struct be_refresh_ctx *ctx,
+ enum be_refresh_type type,
+ be_refresh_send_t send,
+ be_refresh_recv_t recv,
+ void *pvt)
+{
+ if (ctx == NULL || send == NULL || recv == NULL
+ || type >= BE_REFRESH_TYPE_SENTINEL) {
+ return EINVAL;
+ }
+
+ if (ctx->callbacks[type].enabled) {
+ return EEXIST;
+ }
+
+ ctx->callbacks[type].enabled = true;
+ ctx->callbacks[type].send = send;
+ ctx->callbacks[type].recv = recv;
+ ctx->callbacks[type].pvt = pvt;
+
+ return EOK;
+}
+
+struct be_refresh_state {
+ struct tevent_context *ev;
+ struct be_ctx *be_ctx;
+ struct be_refresh_ctx *ctx;
+ struct be_refresh_cb *cb;
+ enum be_refresh_type index;
+};
+
+static errno_t be_refresh_step(struct tevent_req *req);
+static void be_refresh_done(struct tevent_req *subreq);
+
+struct tevent_req *be_refresh_send(TALLOC_CTX *mem_ctx,
+ struct tevent_context *ev,
+ struct be_ctx *be_ctx,
+ struct be_ptask *be_ptask,
+ void *pvt)
+{
+ struct be_refresh_state *state = NULL;
+ struct tevent_req *req = NULL;
+ errno_t ret;
+
+ req = tevent_req_create(mem_ctx, &state,
+ struct be_refresh_state);
+ if (req == NULL) {
+ DEBUG(SSSDBG_CRIT_FAILURE, ("tevent_req_create() failed\n"));
+ return NULL;
+ }
+
+ state->ev = ev;
+ state->be_ctx = be_ctx;
+ state->ctx = talloc_get_type(pvt, struct be_refresh_ctx);
+ if (state->ctx == NULL) {
+ ret = EINVAL;
+ goto immediately;
+ }
+
+ ret = be_refresh_step(req);
+ if (ret == EOK) {
+ goto immediately;
+ } else if (ret != EAGAIN) {
+ DEBUG(SSSDBG_CRIT_FAILURE, ("be_refresh_step() failed [%d]: %s\n",
+ ret, sss_strerror(ret)));
+ goto immediately;
+ }
+
+ return req;
+
+immediately:
+ if (ret == EOK) {
+ tevent_req_done(req);
+ } else {
+ tevent_req_error(req, ret);
+ }
+ tevent_req_post(req, ev);
+
+ return req;
+}
+
+static errno_t be_refresh_step(struct tevent_req *req)
+{
+ struct be_refresh_state *state = NULL;
+ struct tevent_req *subreq = NULL;
+ char **values = NULL;
+ errno_t ret;
+
+ state = tevent_req_data(req, struct be_refresh_state);
+
+ state->cb = &state->ctx->callbacks[state->index];
+ while (state->index != BE_REFRESH_TYPE_SENTINEL && !state->cb->enabled) {
+ state->index++;
+ state->cb = &state->ctx->callbacks[state->index];
+ }
+
+ if (state->index == BE_REFRESH_TYPE_SENTINEL) {
+ ret = EOK;
+ goto done;
+ }
+
+ if (state->cb->get_values == NULL || state->cb->send == NULL
+ || state->cb->recv == NULL) {
+ ret = EINVAL;
+ goto done;
+ }
+
+ ret = state->cb->get_values(state, state->be_ctx->domain, &values);
+ if (ret != EOK) {
+ DEBUG(SSSDBG_CRIT_FAILURE, ("Unable to obtain DN list [%d]: %s\n",
+ ret, sss_strerror(ret)));
+ goto done;
+ }
+
+ subreq = state->cb->send(state, state->ev, state->be_ctx,
+ values, state->cb->pvt);
+ if (subreq == NULL) {
+ ret = ENOMEM;
+ goto done;
+ }
+
+ /* make the list disappear with subreq */
+ talloc_steal(subreq, values);
+
+ tevent_req_set_callback(subreq, be_refresh_done, req);
+
+ state->index++;
+ ret = EAGAIN;
+
+done:
+ return ret;
+}
+
+static void be_refresh_done(struct tevent_req *subreq)
+{
+ struct be_refresh_state *state = NULL;
+ struct tevent_req *req = NULL;
+ errno_t ret;
+
+ req = tevent_req_callback_data(subreq, struct tevent_req);
+ state = tevent_req_data(req, struct be_refresh_state);
+
+ ret = state->cb->recv(subreq);
+ talloc_zfree(subreq);
+ if (ret != EOK) {
+ goto done;
+ }
+
+ ret = be_refresh_step(req);
+ if (ret == EAGAIN) {
+ return;
+ }
+
+done:
+ if (ret != EOK) {
+ tevent_req_error(req, ret);
+ return;
+ }
+
+ tevent_req_done(req);
+}
+
+errno_t be_refresh_recv(struct tevent_req *req)
+{
+ TEVENT_REQ_RETURN_ON_ERROR(req);
+
+ return EOK;
+}
diff --git a/src/providers/dp_refresh.h b/src/providers/dp_refresh.h
new file mode 100644
index 000000000..cae2f7876
--- /dev/null
+++ b/src/providers/dp_refresh.h
@@ -0,0 +1,66 @@
+/*
+ Authors:
+ Pavel Březina <pbrezina@redhat.com>
+
+ Copyright (C) 2013 Red Hat
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 3 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program. If not, see <http://www.gnu.org/licenses/>.
+*/
+
+#ifndef _DP_REFRESH_H_
+#define _DP_REFRESH_H_
+
+#include <tevent.h>
+#include <talloc.h>
+
+#include "providers/dp_backend.h"
+#include "providers/dp_ptask.h"
+
+/**
+ * name_list contains SYSDB_NAME of all expired records.
+ */
+typedef struct tevent_req *
+(*be_refresh_send_t)(TALLOC_CTX *mem_ctx,
+ struct tevent_context *ev,
+ struct be_ctx *be_ctx,
+ char **values,
+ void *pvt);
+
+typedef errno_t
+(*be_refresh_recv_t)(struct tevent_req *req);
+
+enum be_refresh_type {
+ BE_REFRESH_TYPE_NETGROUPS,
+ BE_REFRESH_TYPE_SENTINEL
+};
+
+struct be_refresh_ctx;
+
+struct be_refresh_ctx *be_refresh_ctx_init(TALLOC_CTX *mem_ctx);
+
+errno_t be_refresh_add_cb(struct be_refresh_ctx *ctx,
+ enum be_refresh_type type,
+ be_refresh_send_t send,
+ be_refresh_recv_t recv,
+ void *pvt);
+
+struct tevent_req *be_refresh_send(TALLOC_CTX *mem_ctx,
+ struct tevent_context *ev,
+ struct be_ctx *be_ctx,
+ struct be_ptask *be_ptask,
+ void *pvt);
+
+errno_t be_refresh_recv(struct tevent_req *req);
+
+#endif /* _DP_REFRESH_H_ */