/usr/share/arc/ldap-monitor/includes/recursive_giis_info.inc is in nordugrid-arc-ldap-monitor 1.1.1-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 | <?php
// Author: oxana.smirnova@hep.lu.se
/**
* @return array
* @param giislist array
* @param element string
* @param debug integer
* @param loopcnt integer
* @desc Returns base GIIS info recursively down to the lowest level
*/
function recursive_giis_info($giislist,$element,$errors,$debug="0",$loopcnt="1")
{
/*
* Array $giislist is assumed to be a 3-dim array of the type:
* array(
* array("host" => "grid.nbi.dk",
* "port" => "2135",
* "base" => "mds-vo-name=NorduGrid,o=grid"),...)
*/
$loopcnt++;
$tlim = 2;
$tout = 5;
if($debug && count($giislist) < 5) dbgmsg("<div align=\"left\"><i>:::> ".$errors["114"].$tlim.$errors["102"].$tout.$errors["103"]." <:::</div><BR>");
$greg = array("giisregistrationstatus");
$gfilter = "(objectclass=mds*)";
$ngiis = count($giislist);
$counter = 0;
$tag = array();
$dsarray = array();
$dnarray = array();
$hnarray = array();
$entries = array();
$blacklist = array();
if ( file_exists("blacklist.inc") ) include('blacklist.inc');
// Loop on entered sites
// If a host is blacklisted, skip
// If a host is a cluster (GRIS), keep and skip
// If a host is any other local GRIS, skip
for ( $ig = 0; $ig < $ngiis; $ig++ ) {
$ghost = $giislist[$ig]["host"];
if ( @$blacklist[$ghost] ) {
if ( $debug ) dbgmsg("<div align=\"left\"><font color=\"red\"><b>".$errors["122"]."$ghost</b></font></div>\n");
continue;
}
$gport = $giislist[$ig]["port"];
$gbase = $giislist[$ig]["base"];
if ( preg_match("/$element/i",$gbase) ) {
// Invent a "fake DN" for host tagging and skip duplicated entries
$fakedn = "hn=".$ghost.", ".$gbase;
if ( @$tag[$fakedn] ) continue;
$tag[$fakedn] = 1;
array_push($entries,$giislist[$ig]);
$counter++;
continue;
} elseif ( preg_match("/local/i",$gbase) ) {
if ( $debug ) dbgmsg("<div align=\"left\"><b>".$errors["115"].$ghost." (".$errors["116"].$element.")</b>");
continue;
}
if ( $debug == 2 ) dbgmsg("<div align=\"left\">".$errors["117"]."<b>$ghost</b>...");
$fp = @fsockopen($ghost, $gport, $errno, $errstr, 2);
$gconn = ldap_connect($ghost,$gport);
if ( $fp && $gconn ) {
fclose($fp);
if ( $debug == 2 ) dbgmsg($errors["118"]);
array_push($dsarray,$gconn);
array_push($dnarray,$gbase);
array_push($hnarray,$ghost);
}
if ( $debug == 2 ) dbgmsg("</div>");
}
// Some debugging printout
if ( $debug == 2 ) {
dbgmsg("<div align=\"center\"><br><u>".$errors["119"].$element.": ".$counter."</u><br></div>");
foreach ( $entries as $num=>$val ) dbgmsg($val["host"].":".$val["base"]."<br>");
}
// Check if there is underlying structure
$srarray = @ldap_read($dsarray,$dnarray,$gfilter,$greg,0,0,$tlim,LDAP_DEREF_NEVER);
// If using the pached LDAP
//$srarray = @ldap_read($dsarray,$dnarray,$gfilter,$greg,0,0,$tlim,LDAP_DEREF_NEVER,$tout);
// Debug: check if something eventualy timeouts or something
if ( $debug ) {
$nconns = count($dsarray);
for ( $ii = 0; $ii < $nconns; $ii++ ) {
$ldconn = $dsarray[$ii];
$hnconn = $hnarray[$ii];
if ( ldap_errno($ldconn) != 0x00 ) {
$ldaperrmess = ldap_error($ldconn);
dbgmsg("<i><font color=\"red\">".$errors["120"].$hnconn.": ".$ldaperrmess."</font></i><br>");
}
}
}
$nhosts = count($srarray);
// If GIISes are found, loop on contacted GIISes
if ( $nhosts ) {
$truecount = 0;
for( $ids = 0; $ids < $nhosts; $ids++ ) {
// suppose N hosts answered (nhosts), each returned M lower registrants (nrecords)
// some of lower registrants are the same and have to be purged
// and everything should be re-arranged in a new common array
$sr = $srarray[$ids];
$ds = $dsarray[$ids];
$base = $dnarray[$ids];
if ($sr) $truecount++;
$record = @ldap_get_entries($ds,$sr);
$nrecords = $record["count"];
// Per each contacted GIIS, loop on potential lower-level GIISes/clusters
for ($i = 0; $i < $nrecords; $i++) {
$curdn = $record[$i]["dn"];
$curhost = $record[$i]["mds-service-hn"][0];
$curstat = $record[$i]["mds-reg-status"][0];
$curport = $record[$i]["mds-service-port"][0];
$cursuff = $record[$i]["mds-service-ldap-suffix"][0];
// Introduce "fake" DN for tagging purpose - helps skipping sites registering twice
$fakedn = "hn=".$curhost.", ".$cursuff;
if ( @$tag[$fakedn] ) continue;
if ( @$blacklist[$curhost] ) {
if ( $debug>0 ) dbgmsg("<div align=\"left\"><font color=\"red\"><b>".$errors["122"]."$curhost</b></font></div>\n");
continue;
}
if ( $curstat != "VALID" ) {
if ( $debug ) dbgmsg("<div align=\"left\"><font color=\"red\"><b>$curstat".$errors["121"]."$fakedn</b></font></div>\n");
continue;
}
// array_push($entries,$record[$i]);
$entries[$counter]["host"] = $curhost;
$entries[$counter]["port"] = $curport;
$entries[$counter]["base"] = $cursuff;
if ( $debug == 2 ) dbgmsg("<div align=\"left\">".$errors["123"]."$base: <i>$fakedn</i></div>\n");
$tag[$fakedn] = 1;
$counter++;
}
}
// Array $entries contains all possible stuff which registers to a GIIS
// Keep recursing
if ($truecount && $loopcnt < 10 ) $entries = recursive_giis_info($entries,$element,$errors,$debug,$loopcnt);
}
return $entries;
}
?>
|