0N/Apackage org.opends.server.protocols.ldap;

0N/A

0N/Aimport java.io.Closeable;

0N/Aimport java.io.IOException;

0N/Aimport java.net.InetAddress;

0N/Aimport java.net.Socket;

0N/Aimport java.nio.ByteBuffer;

0N/Aimport java.nio.channels.*;

0N/Aimport java.security.cert.Certificate;

0N/Aimport java.util.Collection;

0N/Aimport java.util.Iterator;

0N/Aimport java.util.List;

0N/Aimport java.util.concurrent.ConcurrentHashMap;

0N/Aimport java.util.concurrent.atomic.AtomicLong;

0N/Aimport java.util.concurrent.atomic.AtomicReference;

0N/Aimport java.util.concurrent.locks.Lock;

0N/Aimport java.util.concurrent.locks.ReentrantLock;

0N/A

0N/Aimport javax.net.ssl.SSLException;

0N/A

0N/Aimport org.forgerock.i18n.LocalizableMessage;

import org.forgerock.i18n.LocalizableMessageBuilder;

import org.forgerock.i18n.slf4j.LocalizedLogger;

import org.forgerock.opendj.io.ASN1;

import org.forgerock.opendj.io.ASN1Writer;

import org.forgerock.opendj.ldap.ByteString;

import org.forgerock.opendj.ldap.ByteStringBuilder;

import org.forgerock.opendj.ldap.ResultCode;

import org.opends.server.api.ClientConnection;

import org.opends.server.api.ConnectionHandler;

import org.opends.server.core.*;

import org.opends.server.extensions.ConnectionSecurityProvider;

import org.opends.server.extensions.RedirectingByteChannel;

import org.opends.server.extensions.TLSByteChannel;

import org.opends.server.extensions.TLSCapableConnection;

import org.opends.server.types.*;

import org.opends.server.util.StaticUtils;

import org.opends.server.util.TimeThread;

import static org.opends.messages.CoreMessages.*;

import static org.opends.messages.ProtocolMessages.*;

import static org.opends.server.core.DirectoryServer.*;

import static org.opends.server.loggers.AccessLogger.*;

import static org.opends.server.protocols.ldap.LDAPConstants.*;

import static org.opends.server.util.ServerConstants.*;

import static org.opends.server.util.StaticUtils.*;

public final class LDAPClientConnection extends ClientConnection implements

TLSCapableConnection

{

/**

private static final class ConnectionFinalizerJob implements Runnable

{

/** The client connection ASN1 reader. */

private final ASN1ByteChannelReader asn1Reader;

/** The client connection socket channel. */

private final SocketChannel socketChannel;

/** Creates a new connection finalizer job. */

private ConnectionFinalizerJob(ASN1ByteChannelReader asn1Reader,

SocketChannel socketChannel)

{

this.asn1Reader = asn1Reader;

this.socketChannel = socketChannel;

}

/**

@Override

public void run()

{

try

{

asn1Reader.close();

}

catch (Exception e)

{

// In general, we don't care about any exception that might be

// thrown here.

logger.traceException(e);

}

try

{

socketChannel.close();

}

catch (Exception e)

{

// In general, we don't care about any exception that might be

// thrown here.

logger.traceException(e);

}

}

}

/**

private class TimeoutWriteByteChannel implements ByteChannel

{

/** Synchronize concurrent writes to the same connection. */

private final Lock writeLock = new ReentrantLock();

@Override

public int read(ByteBuffer byteBuffer) throws IOException

{

int bytesRead = clientChannel.read(byteBuffer);

if (bytesRead > 0 && keepStats)

{

statTracker.updateBytesRead(bytesRead);

}

return bytesRead;

}

@Override

public boolean isOpen()

{

return clientChannel.isOpen();

}

@Override

public void close() throws IOException

{

clientChannel.close();

}

@Override

public int write(ByteBuffer byteBuffer) throws IOException

{

writeLock.lock();

try

{

int bytesToWrite = byteBuffer.remaining();

int bytesWritten = clientChannel.write(byteBuffer);

if (bytesWritten > 0 && keepStats)

{

statTracker.updateBytesWritten(bytesWritten);

}

if (!byteBuffer.hasRemaining())

{

return bytesToWrite;

}

long startTime = System.currentTimeMillis();

long waitTime = getMaxBlockedWriteTimeLimit();

if (waitTime <= 0)

{

// We won't support an infinite time limit, so fall back to using

// five minutes, which is a very long timeout given that we're

// blocking a worker thread.

waitTime = 300000L;

}

long stopTime = startTime + waitTime;

Selector selector = getWriteSelector();

if (selector == null)

{

// The client connection does not provide a selector, so we'll

// fall back to a more inefficient way that will work without a

// selector.

while (byteBuffer.hasRemaining()

&& (System.currentTimeMillis() < stopTime))

{

bytesWritten = clientChannel.write(byteBuffer);

if (bytesWritten < 0)

{

// The client connection has been closed.

throw new ClosedChannelException();

}

if (bytesWritten > 0 && keepStats)

{

statTracker.updateBytesWritten(bytesWritten);

}

}

if (byteBuffer.hasRemaining())

{

// If we've gotten here, then the write timed out.

throw new ClosedChannelException();

}

return bytesToWrite;

}

// Register with the selector for handling write operations.

SelectionKey key = clientChannel.register(selector,

SelectionKey.OP_WRITE);

try

{

selector.select(waitTime);

while (byteBuffer.hasRemaining())

{

long currentTime = System.currentTimeMillis();

if (currentTime >= stopTime)

{

// We've been blocked for too long.

throw new ClosedChannelException();

}

else

{

waitTime = stopTime - currentTime;

}

Iterator<SelectionKey> iterator = selector.selectedKeys()

.iterator();

while (iterator.hasNext())

{

SelectionKey k = iterator.next();

if (k.isWritable())

{

bytesWritten = clientChannel.write(byteBuffer);

if (bytesWritten < 0)

{

// The client connection has been closed.

throw new ClosedChannelException();

}

if (bytesWritten > 0 && keepStats)

{

statTracker.updateBytesWritten(bytesWritten);

}

iterator.remove();

}

}

if (byteBuffer.hasRemaining())

{

selector.select(waitTime);

}

}

return bytesToWrite;

}

finally

{

if (key.isValid())

{

key.cancel();

selector.selectNow();

}

}

}

finally

{

writeLock.unlock();

}

}

}

/** The tracer object for the debug logger. */

private static final LocalizedLogger logger = LocalizedLogger.getLoggerForThisClass();

/**

private static final class ASN1WriterHolder implements Closeable

{

private final ASN1Writer writer;

private final ByteStringBuilder buffer;

private final int maxBufferSize;

private ASN1WriterHolder()

{

this.buffer = new ByteStringBuilder();

this.maxBufferSize = getMaxInternalBufferSize();

this.writer = ASN1.getWriter(buffer, maxBufferSize);

}

/** {@inheritDoc} */

@Override

public void close() throws IOException

{

StaticUtils.close(writer);

buffer.clearAndTruncate(maxBufferSize, maxBufferSize);

}

}

/**

private static final ThreadLocal<ASN1WriterHolder> ASN1_WRITER_CACHE =

new ThreadLocal<ASN1WriterHolder>()

{

/**

@Override

protected ASN1WriterHolder initialValue()

{

return new ASN1WriterHolder();

}

};

private ASN1WriterHolder getASN1Writer()

{

ASN1WriterHolder holder = ASN1_WRITER_CACHE.get();

if (holder.maxBufferSize != getMaxInternalBufferSize())

{

// Setting has changed, so recreate the holder.

holder = new ASN1WriterHolder();

ASN1_WRITER_CACHE.set(holder);

}

return holder;

}

/** The time that the last operation was completed. */

private final AtomicLong lastCompletionTime;

/** The next operation ID that should be used for this connection. */

private final AtomicLong nextOperationID;

/** The selector that may be used for write operations. */

private final AtomicReference<Selector> writeSelector;

/**

private volatile boolean connectionValid;

/**

private boolean disconnectRequested;

/**

private final boolean keepStats;

/** The set of all operations currently in progress on this connection. */

private final ConcurrentHashMap<Integer, Operation> operationsInProgress;

/**

private final AtomicLong operationsPerformed;

/** The port on the client from which this connection originated. */

private final int clientPort;

/**

private int ldapVersion;

/** The port on the server to which this client has connected. */

private final int serverPort;

/** The reference to the connection handler that accepted this connection. */

private final LDAPConnectionHandler connectionHandler;

/** The statistics tracker associated with this client connection. */

private final LDAPStatistics statTracker;

private boolean useNanoTime=false;

/** The connection ID assigned to this connection. */

private final long connectionID;

/**

private final Object opsInProgressLock;

/** The socket channel with which this client connection is associated. */

private final SocketChannel clientChannel;

/** The byte channel used for blocking writes with time out. */

private final ByteChannel timeoutClientChannel;

/** The string representation of the address of the client. */

private final String clientAddress;

/**

private final String protocol;

/**

private final String serverAddress;

private ASN1ByteChannelReader asn1Reader;

private final int bufferSize;

private final RedirectingByteChannel saslChannel;

private final RedirectingByteChannel tlsChannel;

private volatile ConnectionSecurityProvider saslActiveProvider = null;

private volatile ConnectionSecurityProvider tlsActiveProvider = null;

private volatile ConnectionSecurityProvider saslPendingProvider = null;

private volatile ConnectionSecurityProvider tlsPendingProvider = null;

/**

LDAPClientConnection(LDAPConnectionHandler connectionHandler,

SocketChannel clientChannel, String protocol) throws DirectoryException

{

this.connectionHandler = connectionHandler;

this.clientChannel = clientChannel;

timeoutClientChannel = new TimeoutWriteByteChannel();

opsInProgressLock = new Object();

ldapVersion = 3;

lastCompletionTime = new AtomicLong(TimeThread.getTime());

nextOperationID = new AtomicLong(0);

connectionValid = true;

disconnectRequested = false;

operationsInProgress = new ConcurrentHashMap<Integer, Operation>();

operationsPerformed = new AtomicLong(0);

keepStats = connectionHandler.keepStats();

this.protocol = protocol;

writeSelector = new AtomicReference<Selector>();

final Socket socket = clientChannel.socket();

clientAddress = socket.getInetAddress().getHostAddress();

clientPort = socket.getPort();

serverAddress = socket.getLocalAddress().getHostAddress();

serverPort = socket.getLocalPort();

statTracker = this.connectionHandler.getStatTracker();

if (keepStats)

{

statTracker.updateConnect();

this.useNanoTime=DirectoryServer.getUseNanoTime();

}

bufferSize = connectionHandler.getBufferSize();

tlsChannel =

RedirectingByteChannel.getRedirectingByteChannel(

timeoutClientChannel);

saslChannel =

RedirectingByteChannel.getRedirectingByteChannel(tlsChannel);

this.asn1Reader = new ASN1ByteChannelReader(saslChannel, bufferSize, connectionHandler.getMaxRequestSize());

if (connectionHandler.useSSL())

{

enableSSL(connectionHandler.getTLSByteChannel(timeoutClientChannel));

}

connectionID = DirectoryServer.newConnectionAccepted(this);

}

/**

@Override

public long getConnectionID()

{

return connectionID;

}

/**

@Override

public ConnectionHandler<?> getConnectionHandler()

{

return connectionHandler;

}

/**

@Override

public SocketChannel getSocketChannel()

{

return clientChannel;

}

/**

@Override

public String getProtocol()

{

return protocol;

}

/**

@Override

public String getClientAddress()

{

return clientAddress;

}

/**

@Override

public int getClientPort()

{

return clientPort;

}

/**

@Override

public String getServerAddress()

{

return serverAddress;

}

/**

@Override

public int getServerPort()

{

return serverPort;

}

/**

@Override

public InetAddress getRemoteAddress()

{

return clientChannel.socket().getInetAddress();

}

/**

@Override

public InetAddress getLocalAddress()

{

return clientChannel.socket().getLocalAddress();

}

/** {@inheritDoc} */

@Override

public boolean isConnectionValid()

{

return this.connectionValid;

}

/**

@Override

public boolean isSecure()

{

boolean secure = false;

if (tlsActiveProvider != null)

{

secure = tlsActiveProvider.isSecure();

}

if (!secure && saslActiveProvider != null)

{

secure = saslActiveProvider.isSecure();

}

return secure;

}

/**

@Override

public void sendResponse(Operation operation)

{

// Since this is the final response for this operation, we can go

// ahead and remove it from the "operations in progress" list. It

// can't be canceled after this point, and this will avoid potential

// race conditions in which the client immediately sends another

// request with the same message ID as was used for this operation.

if (keepStats) {

long time;

if (useNanoTime) {

time = operation.getProcessingNanoTime();

} else {

time = operation.getProcessingTime();

}

this.statTracker.updateOperationMonitoringData(

operation.getOperationType(),

time);

}

// Avoid sending the response if one has already been sent. This may happen

// if operation processing encounters a run-time exception after sending the

// response: the worker thread exception handling code will attempt to send

// an error result to the client indicating that a problem occurred.

if (removeOperationInProgress(operation.getMessageID()))

{

LDAPMessage message = operationToResponseLDAPMessage(operation);

if (message != null)

{

sendLDAPMessage(message);

}

}

}

/**

private LDAPMessage operationToResponseLDAPMessage(Operation operation)

{

ResultCode resultCode = operation.getResultCode();

if (resultCode == null)

{

// This must mean that the operation has either not yet completed

// or that it completed without a result for some reason. In any

// case, log a message and set the response to "operations error".

logger.error(ERR_LDAP_CLIENT_SEND_RESPONSE_NO_RESULT_CODE, operation.getOperationType(),

operation.getConnectionID(), operation.getOperationID());

resultCode = DirectoryServer.getServerErrorResultCode();

}

LocalizableMessageBuilder errorMessage = operation.getErrorMessage();

DN matchedDN = operation.getMatchedDN();

// Referrals are not allowed for LDAPv2 clients.

List<String> referralURLs;

if (ldapVersion == 2)

{

referralURLs = null;

if (resultCode == ResultCode.REFERRAL)

{

resultCode = ResultCode.CONSTRAINT_VIOLATION;

errorMessage.append(ERR_LDAPV2_REFERRAL_RESULT_CHANGED.get());

}

List<String> opReferrals = operation.getReferralURLs();

if ((opReferrals != null) && (!opReferrals.isEmpty()))

{

StringBuilder referralsStr = new StringBuilder();

Iterator<String> iterator = opReferrals.iterator();

referralsStr.append(iterator.next());

while (iterator.hasNext())

{

referralsStr.append(", ");

referralsStr.append(iterator.next());

}

errorMessage.append(ERR_LDAPV2_REFERRALS_OMITTED.get(referralsStr));

}

}

else

{

referralURLs = operation.getReferralURLs();

}

ProtocolOp protocolOp;

switch (operation.getOperationType())

{

case ADD:

protocolOp =

new AddResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs);

break;

case BIND:

ByteString serverSASLCredentials =

((BindOperationBasis) operation).getServerSASLCredentials();

protocolOp =

new BindResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs,

serverSASLCredentials);

break;

case COMPARE:

protocolOp =

new CompareResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs);

break;

case DELETE:

protocolOp =

new DeleteResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs);

break;

case EXTENDED:

// If this an LDAPv2 client, then we can't send this.

if (ldapVersion == 2)

{

logger.error(ERR_LDAPV2_SKIPPING_EXTENDED_RESPONSE,

getConnectionID(), operation.getOperationID(), operation);

return null;

}

ExtendedOperationBasis extOp = (ExtendedOperationBasis) operation;

protocolOp =

new ExtendedResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs, extOp

.getResponseOID(), extOp.getResponseValue());

break;

case MODIFY:

protocolOp =

new ModifyResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs);

break;

case MODIFY_DN:

protocolOp =

new ModifyDNResponseProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs);

break;

case SEARCH:

protocolOp =

new SearchResultDoneProtocolOp(resultCode.intValue(),

errorMessage.toMessage(), matchedDN, referralURLs);

break;

default:

// This must be a type of operation that doesn't have a response.

// This shouldn't happen, so log a message and return.

logger.error(ERR_LDAP_CLIENT_SEND_RESPONSE_INVALID_OP, operation.getOperationType(), getConnectionID(),

operation.getOperationID(), operation);

return null;

}

// Controls are not allowed for LDAPv2 clients.

List<Control> controls;

if (ldapVersion == 2)

{

controls = null;

}

else

{

controls = operation.getResponseControls();

}

return new LDAPMessage(operation.getMessageID(), protocolOp,

controls);

}

/**

@Override

public void sendSearchEntry(SearchOperation searchOperation,

SearchResultEntry searchEntry)

{

SearchResultEntryProtocolOp protocolOp =

new SearchResultEntryProtocolOp(searchEntry, ldapVersion);

sendLDAPMessage(new LDAPMessage(searchOperation.getMessageID(),

protocolOp, searchEntry.getControls()));

}

/**

@Override

public boolean sendSearchReference(SearchOperation searchOperation,

SearchResultReference searchReference)

{

// Make sure this is not an LDAPv2 client. If it is, then they can't

// see referrals so we'll not send anything. Also, throw an

// exception so that the core server will know not to try sending

// any more referrals to this client for the rest of the operation.

if (ldapVersion == 2)

{

logger.error(ERR_LDAPV2_SKIPPING_SEARCH_REFERENCE, getConnectionID(),

searchOperation.getOperationID(), searchReference);

return false;

}

SearchResultReferenceProtocolOp protocolOp =

new SearchResultReferenceProtocolOp(searchReference);

sendLDAPMessage(new LDAPMessage(searchOperation.getMessageID(),

protocolOp, searchReference.getControls()));

return true;

}

/**

@Override

protected boolean sendIntermediateResponseMessage(

IntermediateResponse intermediateResponse)

{

IntermediateResponseProtocolOp protocolOp =

new IntermediateResponseProtocolOp(intermediateResponse

.getOID(), intermediateResponse.getValue());

Operation operation = intermediateResponse.getOperation();

LDAPMessage message =

new LDAPMessage(operation.getMessageID(), protocolOp,

intermediateResponse.getControls());

sendLDAPMessage(message);

// The only reason we shouldn't continue processing is if the

// connection is closed.

return connectionValid;

}

/**

private void sendLDAPMessage(LDAPMessage message)

{

// Use a thread local writer.

final ASN1WriterHolder holder = getASN1Writer();

try

{

message.write(holder.writer);

holder.buffer.copyTo(saslChannel);

if (logger.isTraceEnabled())

{

logger.trace("LDAPMessage=%s", message);

}

if (keepStats)

{

statTracker.updateMessageWritten(message);

}

}

catch (Exception e)

{

logger.traceException(e);

// FIXME -- Log a message or something

disconnect(DisconnectReason.SERVER_ERROR, false, null);

return;

}

finally

{

// Clear and reset all of the internal buffers ready for the next usage.

// The ASN1Writer is based on a ByteStringBuilder so closing will cause

// the internal buffers to be resized if needed.

close(holder);

}

}

/**

@Override

public void disconnect(DisconnectReason disconnectReason,

boolean sendNotification, LocalizableMessage message)

{

// Set a flag indicating that the connection is being terminated so

// that no new requests will be accepted. Also cancel all operations

// in progress.

synchronized (opsInProgressLock)

{

// If we are already in the middle of a disconnect, then don't

// do anything.

if (disconnectRequested)

{

return;

}

disconnectRequested = true;

}

if (keepStats)

{

statTracker.updateDisconnect();

}

if (connectionID >= 0)

{

DirectoryServer.connectionClosed(this);

}

// Indicate that this connection is no longer valid.

connectionValid = false;

if (message != null)

{

LocalizableMessageBuilder msgBuilder = new LocalizableMessageBuilder();

msgBuilder.append(disconnectReason.getClosureMessage());

msgBuilder.append(": ");

msgBuilder.append(message);

cancelAllOperations(new CancelRequest(true, msgBuilder

.toMessage()));

}

else

{

cancelAllOperations(new CancelRequest(true, disconnectReason

.getClosureMessage()));

}

finalizeConnectionInternal();

// If there is a write selector for this connection, then close it.

Selector selector = writeSelector.get();

close(selector);

// See if we should send a notification to the client. If so, then

// construct and send a notice of disconnection unsolicited

// response. Note that we cannot send this notification to an LDAPv2

// client.

if (sendNotification && (ldapVersion != 2))

{

try

{

int resultCode;

switch (disconnectReason)

{

case PROTOCOL_ERROR:

resultCode = LDAPResultCode.PROTOCOL_ERROR;

break;

case SERVER_SHUTDOWN:

resultCode = LDAPResultCode.UNAVAILABLE;

break;

case SERVER_ERROR:

resultCode = DirectoryServer.getServerErrorResultCode().intValue();

break;

case ADMIN_LIMIT_EXCEEDED:

case IDLE_TIME_LIMIT_EXCEEDED:

case MAX_REQUEST_SIZE_EXCEEDED:

case IO_TIMEOUT:

resultCode = LDAPResultCode.ADMIN_LIMIT_EXCEEDED;

break;

case CONNECTION_REJECTED:

resultCode = LDAPResultCode.CONSTRAINT_VIOLATION;

break;

case INVALID_CREDENTIALS:

resultCode = LDAPResultCode.INVALID_CREDENTIALS;

break;

default:

resultCode = LDAPResultCode.OTHER;

break;

}

LocalizableMessage errMsg;

if (message == null)

{

errMsg =

INFO_LDAP_CLIENT_GENERIC_NOTICE_OF_DISCONNECTION.get();

}

else

{

errMsg = message;

}

ExtendedResponseProtocolOp notificationOp =

new ExtendedResponseProtocolOp(resultCode, errMsg, null,

null, OID_NOTICE_OF_DISCONNECTION, null);

sendLDAPMessage(new LDAPMessage(0, notificationOp, null));

}

catch (Exception e)

{

// NYI -- Log a message indicating that we couldn't send the

// notice of disconnection.

logger.traceException(e);

}

}

// Enqueue the connection channels for closing by the finalizer.

Runnable r = new ConnectionFinalizerJob(asn1Reader, clientChannel);

connectionHandler.registerConnectionFinalizer(r);

// NYI -- Deregister the client connection from any server components that

// might know about it.

// Log a disconnect message.

logDisconnect(this, disconnectReason, message);

try

{

PluginConfigManager pluginManager =

DirectoryServer.getPluginConfigManager();

pluginManager.invokePostDisconnectPlugins(this, disconnectReason,

message);

}

catch (Exception e)

{

logger.traceException(e);

}

}

/**

@Override

public Collection<Operation> getOperationsInProgress()

{

return operationsInProgress.values();

}

/**

@Override

public Operation getOperationInProgress(int messageID)

{

return operationsInProgress.get(messageID);

}

/**

private void addOperationInProgress(Operation operation)

throws DirectoryException

{

int messageID = operation.getMessageID();

// We need to grab a lock to ensure that no one else can add

// operations to the queue while we are performing some preliminary

// checks.

try

{

synchronized (opsInProgressLock)

{

// If we're already in the process of disconnecting the client,

// then reject the operation.

if (disconnectRequested)

{

LocalizableMessage message = WARN_CLIENT_DISCONNECT_IN_PROGRESS.get();

throw new DirectoryException(ResultCode.UNWILLING_TO_PERFORM,

message);

}

// Add the operation to the list of operations in progress for

// this connection.

Operation op = operationsInProgress.putIfAbsent(messageID, operation);

// See if there is already an operation in progress with the

// same message ID. If so, then we can't allow it.

if (op != null)

{

LocalizableMessage message =

WARN_LDAP_CLIENT_DUPLICATE_MESSAGE_ID.get(messageID);

throw new DirectoryException(ResultCode.PROTOCOL_ERROR,

message);

}

}

// Try to add the operation to the work queue,

// or run it synchronously (typically for the administration

// connector)

connectionHandler.getQueueingStrategy().enqueueRequest(

operation);

}

catch (DirectoryException de)

{

logger.traceException(de);

operationsInProgress.remove(messageID);

lastCompletionTime.set(TimeThread.getTime());

throw de;

}

catch (Exception e)

{

logger.traceException(e);

LocalizableMessage message =

WARN_LDAP_CLIENT_CANNOT_ENQUEUE.get(getExceptionMessage(e));

throw new DirectoryException(DirectoryServer

.getServerErrorResultCode(), message, e);

}

}

/**

@Override

public boolean removeOperationInProgress(int messageID)

{

Operation operation = operationsInProgress.remove(messageID);

if (operation == null)

{

return false;

}

if (operation.getOperationType() == OperationType.ABANDON)

{

if (keepStats && operation.getResultCode() == ResultCode.CANCELLED)

{

statTracker.updateAbandonedOperation();

}

}

lastCompletionTime.set(TimeThread.getTime());

return true;

}

/**

@Override

public CancelResult cancelOperation(int messageID,

CancelRequest cancelRequest)

{

Operation op = operationsInProgress.get(messageID);

if (op == null)

{

// See if the operation is in the list of persistent searches.

for (PersistentSearch ps : getPersistentSearches())

{

if (ps.getMessageID() == messageID)

{

// We only need to find the first persistent search

// associated with the provided message ID. The persistent

// search will ensure that all other related persistent

// searches are cancelled.

CancelResult cancelResult = ps.cancel();

return cancelResult;

}

}

return new CancelResult(ResultCode.NO_SUCH_OPERATION, null);

}

else

{

CancelResult cancelResult = op.cancel(cancelRequest);

return cancelResult;

}

}

/**

@Override

public void cancelAllOperations(CancelRequest cancelRequest)

{

// Make sure that no one can add any new operations.

synchronized (opsInProgressLock)

{

try

{

for (Operation o : operationsInProgress.values())

{

try

{

o.abort(cancelRequest);

// TODO: Assume its cancelled?

if (keepStats)

{

statTracker.updateAbandonedOperation();

}

}

catch (Exception e)

{

logger.traceException(e);

}

}

if (!(operationsInProgress.isEmpty() && getPersistentSearches()

.isEmpty()))

{

lastCompletionTime.set(TimeThread.getTime());

}

operationsInProgress.clear();

for (PersistentSearch persistentSearch : getPersistentSearches())

{

persistentSearch.cancel();

}

}

catch (Exception e)

{

logger.traceException(e);

}

}

}

/**

@Override

public void cancelAllOperationsExcept(CancelRequest cancelRequest,

int messageID)

{

// Make sure that no one can add any new operations.

synchronized (opsInProgressLock)