directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From conflue...@apache.org
Subject [CONF] Apache Directory Server v1.5 > ApacheDS Bootstrapping
Date Thu, 03 Sep 2009 16:00:00 GMT
<html>
<head>
    <base href="http://cwiki.apache.org/confluence">
            <link rel="stylesheet" href="/confluence/s/1519/1/1/_/styles/combined.css?spaceKey=DIRxSRVx11&amp;forWysiwyg=true"
type="text/css">
    </head>
<body style="background-color: white" bgcolor="white">
<div id="pageContent">
<div id="notificationFormat">
<div class="wiki-content">
<div class="email">
     <h2><a href="http://cwiki.apache.org/confluence/display/DIRxSRVx11/ApacheDS+Bootstrapping">ApacheDS
Bootstrapping</a></h2>
     <h4>Page <b>edited</b> by             <a href="http://cwiki.apache.org/confluence/display/~akarasulu">Alex
Karasulu</a>
    </h4>
     
          <br/>
     <div class="notificationGreySide">
         <h2><a name="ApacheDSBootstrapping-Introduction"></a>Introduction</h2>

<p>This document describes the process where ApacheDS is first started up, starts to
initialize various components, to finally reach a solid state of operation where it can service
LDAP request along with other directory backed protocol requests.  </p>

<p>We break up this process into several different categories as phases in the bootstrapping
process, since each phase involves a different set of facilities and components.  The phases
are:</p>

<ol>
	<li>Daemon Bootstrapping Phase</li>
	<li>Initial Bootstrap Schema Load Phase</li>
	<li>Full Schema Load Phase</li>
	<li>Configuration Load Phase</li>
	<li>Wiring and DI Phase</li>
</ol>



<h2><a name="ApacheDSBootstrapping-DaemonBootstrappingPhase"></a>Daemon
Bootstrapping Phase</h2>

<p>Several daemon frameworks have been used in the past to make ApacheDS' process act
like a daemon on *NIX platforms and as a service on Windows platforms. These frameworks were
Procrun, Jsvc, and the Tanuki wrapper.</p>

<p>Each framework has a means to start up a Java program and set it up so it detaches
from the console and becomes a daemon on UNIX and/or a service on Windows.  How this is done
is abstracted away by some minimal code in ApacheDS used to bootstrap it.  Some of this code
is very specific to the wrapper and some is quit general.</p>

<h3><a name="ApacheDSBootstrapping-Bootstrappers"></a>Bootstrappers</h3>

<p>In ApacheDS' repository there's a daemon-bootstrappers project which contains a base
Bootstrapper implementation and some helper classes along with various framework subtypes
of the Bootstrapper.</p>

<p>The goal here was to adapt the set of events handled by various frameworks to startup
a Java based daemon, to a generalized interface.  In this case the generalized interface is
really a class called Bootstrapper.</p>

<h3><a name="ApacheDSBootstrapping-TanukiBootstrapper"></a>Tanuki Bootstrapper</h3>

<p>The Tanuki framework has a TanukiBootstrapper implementation extending the Bootstrapper
class.  On startup the Tanuki framework calls the main(String[]) method of this TanukiBootstrapper.
 The apacheds.conf file contains configuration entries telling Tanuki to start ApacheDS by
calling this class' main method with various arguments.</p>

<p>The static main() method in the TanukiBootstrapper simply instantiates a new TanukiBootstrapper
instance and asks the wrapper framework (WrapperManager) to start up the TanukiBootstrapper.
 Here are the String[] args handed off to the main() method:</p>

<div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent
panelContent">
<pre>/usr/local/apacheds-1.5.5-SNAPSHOT, 
org.apache.directory.server.Service, 
/usr/local/apacheds-1.5.5-SNAPSHOT/instances/default/conf/server.xml
</pre>
</div></div>

<h3><a name="ApacheDSBootstrapping-FutureWork"></a>Future Work</h3>

<p>We envision a configuration free of Maven plugins to generate the installers.  We
also would like to modify the InstallationLayout bean and the InstanceLayout bean so that
the InstanceLayout bean has a handle on the InstallationLayout.  The InstanceLayout bean will
be provided to higher layers for the server to properly conduct it's bootstrap process in
later phases.</p>

<h2><a name="ApacheDSBootstrapping-InitialBootstrapSchemaLoadPhase"></a>Initial
Bootstrap Schema Load Phase</h2>

<p>We store the schema in a partition.  We also store configuration state information
regarding which schema is to be enabled and which schema are disabled in this partition. 
Everything that is needed for loading and setting up the schema subsystem is located in this
partition.</p>

<p>Also this partition can use any kind of backing store, or Partition interface implementation
so those wishing to store schema information in various backing stores can do so.</p>

<h3><a name="ApacheDSBootstrapping-PrepackagedSchemaLDIFFiles"></a>Pre-packaged
Schema LDIF Files</h3>

<p>The ldap-schema project in shared produces a jar file which contains LDIF files within
in a specific layout.  These LDIF files encode schema information for various published schema
as well as a minimal set of critical schema specifically required for ApacheDS operation.</p>

<p>The layout in the jar file contains a top level <b>schema</b> directory.
 Under this there is a schema.ldif file and yet another <b>schema</b> directory.
 This ldif and the directory is analogous to the ou=schema context in ApacheDS. </p>

<p>Under this second <b>schema</b> directory you'll find a set of directories
with the names of various schema in lower case:</p>

<ul>
	<li>apache</li>
	<li>apachedns</li>
	<li>apachemeta</li>
	<li>autofs</li>
	<li>collective</li>
	<li>corba</li>
	<li>core</li>
	<li>cosine</li>
	<li>dhcp</li>
	<li>inetorgperson</li>
	<li>java</li>
	<li>krb5kdc</li>
	<li>mozilla</li>
	<li>nis</li>
	<li>other</li>
	<li>samba</li>
	<li>system</li>
</ul>


<p>Along side each of these schema directories rests an LDIF file with the same name
plus the <b>.ldif</b> extension.  So next to the <b>java</b> directory
you'll find <b>java.ldif</b>.</p>

<p>Under each schema directory there is a standard structure for storing the various
kinds of schema entities: syntaxCheckers, syntaxes, comparators, normalizers, matchingRules,
attributeTypes, objectClasses, nameForms, matchingRuleUses, ditStructureRules, and ditContentRules.</p>

<p>For each kind of schema entity you have a directory with the name of the entities
above.  Like for example there is a <b>schema/schema/java/attributeTypes</b> directory
in the java schema for storing LDIF files of each attributeType in this schema.  For the same
name of the this directory you have an LDIF file beside it: <b>schema/schema/java/attributeTypes.ldif</b>.
 Inside each schema entity directory you'll have LDIF files. The LDIF file will use the OID
of the schema object as the base file name and the standard LDIF file extension.  So for example
in the java schema you will have this file: <b>schema/schema/java/attributeTypes/1.3.6.1.4.1.42.2.27.4.1.10.ldif</b>.
The file for example contains the following LDIF:</p>

<div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent
panelContent">
<pre>dn: m-oid=1.3.6.1.4.1.42.2.27.4.1.10,ou=attributeTypes,cn=java,ou=schema
m-equality: caseExactMatch
m-usage: USER_APPLICATIONS
objectclass: metaAttributeType
objectclass: metaTop
objectclass: top
createtimestamp: 20090818022732Z
creatorsname: uid=admin,ou=system
m-name: javaFactory
m-oid: 1.3.6.1.4.1.42.2.27.4.1.10
m-singlevalue: TRUE
m-description: Fully qualified Java class name of a JNDI object factory
entryuuid:: bVjvv73vv70Q77+9Q8ySWmNj77+977+9dwM=
m-collective: FALSE
m-obsolete: FALSE
m-nousermodification: FALSE
entrycsn: 20090818052732.339000Z#000000#000#000000
m-syntax: 1.3.6.1.4.1.1466.115.121.1.15
</pre>
</div></div>

<p>The schema used to encode the schema itself is called the apachemeta schema.  These
m- attributes and the metaXXX values you see for objectClass all come from the apachemeta
schema.  So as you can see to properly load and make sense of this data you at first need
to know the apachemeta schema and this presents a slight chicken and egg problem for us that
we must overcome.</p>

<p>So this apacheds-ldap-schema-[version].jar file has all these LDIF files zipped up
inside it.  In addition it contains a special extractor which will extract out this zipped
schema repository onto disk.</p>

<h3><a name="ApacheDSBootstrapping-SolvingtheChickenandEggProblem"></a>Solving
the Chicken and Egg Problem</h3>

<p>As we stated earlier we have a slight chicken and egg issue to overcome.  To load
the schema into registries from a partition containing this information we have to be aware
at least of the apachemeta schema and the other schemas it depends on.  This dependencies
pull in the following schema as the critical set of schemas required to read and bootstrap
all schema:</p>

<ul>
	<li>apache</li>
	<li>apachemeta</li>
	<li>core</li>
	<li>system</li>
</ul>


<p>Let's call this critical schema set, the <b>bootstrap schema set</b>.
 We need to load a set of registries with this schema set in order to initialize a partition
containing entries storing all the schema information to be loaded.  Remember our server is
designed to store schema in a partition which is accessible via LDAP in this well organized
structure in addition to using the standard LDAP mechanism which uses a schemaSubentry.</p>

<p>So how do we do this?  These 4 schema are so critical that they are read only.  No
administrator should ever be allowed to change the elements in the bootstrap schema set. 
For this reason we are comfortable loading these critical elements from the ldap-schema jar
without extracting them to disk.  We also read them without having active registries.</p>

<p>Without active registries schema checking is not possible.  Nor is schema integrity
checks possible which make sure the schema is right before loading it.  Instead we just load
and hope all goes well in the end with a post load integrity check.  This however is not a
major issue if no one is allowed to change the bootstrap schema set.</p>

<p>So the initial bootstrap schema loading stage loads these 4 critical schema into
the registries.  This is done by a special Partition implementation called SchemaPartition.
 The SchemaPartition uses a special JarLdifSchemaLoader class to load these four schema into
a Registries object.</p>

<p>The SchemaPartition itself does not store schema data in some persistent store. 
Instead this Partition delegates persistence to a wrapped Partition that it contains.  The
idea here is to allow anyone to replace the underlying storage used to store schema data in
ApacheDS.  Hence any Partition implementation such as the, OraclePartition, JdbmPartition,
or LdifPartition can be plugged in.</p>

<div class='panelMacro'><table class='noteMacro'><colgroup><col width='24'><col></colgroup><tr><td
valign='top'><img src="/confluence/images/icons/emoticons/warning.gif" width="16" height="16"
align="absmiddle" alt="" border="0"></td><td><p>Regardless of the Partition
implementation used, the partition must be self configuring.  Meaning it must not require
an external configuration to come online and provide access to the schema data it stores.
 This is because when this partition is brought online, the configuration partition of ApacheDS
is not yet available.</p></td></tr></table></div>

<h2><a name="ApacheDSBootstrapping-FullSchemaLoadPhase"></a>Full Schema
Load Phase</h2>

<p>The SchemaPartition uses the initial critical set of bootstrap schema to initialize
it's wrapped Partition, whatever implementation it may be.  The SchemaPartition delegates
Partition interface operations to this wrapped Partition while also updating the registries
to reflect the changes to schema during solid state operation of the server.</p>

<p>Once the wrapped Partition with our schema content in the expected DIT namespace
is initialized the second full schema load phase can begin.  In this phase, a second schema
loader is incorporated to load the schema from within a Partition.  This loader uses the Partition
interface methods to search the Partition and load the Registries with all the schema enabled
in this partition.  For example in the <b>ou=schema,cn=java</b> entry you'll find
the same content that was bundled into the ldap-schema jar LDIF <b>schema/schema/java.ldif</b>:</p>

<div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent
panelContent">
<pre>dn: cn=java,ou=schema
entryuuid:: 77+9Fxdi77+9e07vv73vv73vv73vv73vv70g77+9aFQ=
creatorsname: uid=admin,ou=system
createtimestamp: 20090818022726Z
cn: java
objectclass: metaSchema
objectclass: top
entrycsn: 20090818052726.390000Z#000000#000#000000
m-dependencies: system
m-dependencies: core
m-disabled: FALSE
</pre>
</div></div>

<p><b>NOTE</b> the m-disable attribute is set to FALSE.  This LDIF or entry
in the wrapped Partition tells the PartitionSchemaLoader that it must load the Java schema
into the registries in this full schema load phase.  The first 4 schema in the critical bootstrap
schema set do not need to be reloaded since they are already enabled and present in the Registries
object due to the initial bootstrap schema load phase.</p>

<h2><a name="ApacheDSBootstrapping-"></a></h2>


     </div>
     <div id="commentsSection" class="wiki-content pageSection">
       <div style="float: right;">
            <a href="http://cwiki.apache.org/confluence/users/viewnotifications.action"
class="grey">Change Notification Preferences</a>
       </div>

       <a href="http://cwiki.apache.org/confluence/display/DIRxSRVx11/ApacheDS+Bootstrapping">View
Online</a>
       |
       <a href="http://cwiki.apache.org/confluence/pages/diffpagesbyversion.action?pageId=2330706&revisedVersion=4&originalVersion=3">View
Change</a>
            </div>
</div>
</div>
</div>
</div>
</body>
</html>

Mime
View raw message