3 * Copyright 1998-2000 The OpenLDAP Foundation, All Rights Reserved.
4 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
7 * Copyright (c) 1995 Regents of the University of Michigan.
11 * This notice applies to changes, created by or for Novell, Inc.,
12 * to preexisting works for which notices appear elsewhere in this file.
14 * Copyright (C) 1999, 2000 Novell, Inc. All Rights Reserved.
16 * THIS WORK IS SUBJECT TO U.S. AND INTERNATIONAL COPYRIGHT LAWS AND TREATIES.
17 * USE, MODIFICATION, AND REDISTRIBUTION OF THIS WORK IS SUBJECT TO VERSION
18 * 2.0.1 OF THE OPENLDAP PUBLIC LICENSE, A COPY OF WHICH IS AVAILABLE AT
19 * HTTP://WWW.OPENLDAP.ORG/LICENSE.HTML OR IN THE FILE "LICENSE" IN THE
20 * TOP-LEVEL DIRECTORY OF THE DISTRIBUTION. ANY USE OR EXPLOITATION OF THIS
21 * WORK OTHER THAN AS AUTHORIZED IN VERSION 2.0.1 OF THE OPENLDAP PUBLIC
22 * LICENSE, OR OTHER PRIOR WRITTEN CONSENT FROM NOVELL, COULD SUBJECT THE
23 * PERPETRATOR TO CRIMINAL AND CIVIL LIABILITY.
25 * Modification to OpenLDAP source by Novell, Inc.
26 * April 2000 sfs Added code to chase V3 referrals
27 * request.c - sending of ldap requests; handling of referrals
34 #include <ac/stdlib.h>
37 #include <ac/socket.h>
38 #include <ac/string.h>
40 #include <ac/unistd.h>
45 static LDAPConn *find_connection LDAP_P(( LDAP *ld, LDAPURLDesc *srv, int any ));
46 static void use_connection LDAP_P(( LDAP *ld, LDAPConn *lc ));
48 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
49 static LDAPURLDesc *dn2servers LDAP_P(( LDAP *ld, const char *dn ));
50 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
52 static BerElement *re_encode_request LDAP_P((
61 ldap_alloc_ber_with_options( LDAP *ld )
65 if (( ber = ber_alloc_t( ld->ld_lberoptions )) == NULL ) {
66 ld->ld_errno = LDAP_NO_MEMORY;
67 #ifdef STR_TRANSLATION
69 ldap_set_ber_options( ld, ber );
70 #endif /* STR_TRANSLATION */
78 ldap_set_ber_options( LDAP *ld, BerElement *ber )
80 ber->ber_options = ld->ld_lberoptions;
81 #ifdef STR_TRANSLATION
82 if (( ld->ld_lberoptions & LBER_TRANSLATE_STRINGS ) != 0 ) {
83 ber_set_string_translators( ber,
84 ld->ld_lber_encode_translate_proc,
85 ld->ld_lber_decode_translate_proc );
87 #endif /* STR_TRANSLATION */
92 ldap_send_initial_request(
101 Debug( LDAP_DEBUG_TRACE, "ldap_send_initial_request\n", 0, 0, 0 );
103 if ( ! ber_pvt_sb_in_use(&ld->ld_sb ) ) {
104 /* not connected yet */
105 int rc = ldap_open_defconn( ld );
112 Debug( LDAP_DEBUG_TRACE,
113 "ldap_delayed_open successful, ld_host is %s\n",
114 ( ld->ld_host == NULL ) ? "(null)" : ld->ld_host, 0, 0 );
117 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
118 if ( LDAP_BOOL_GET(&ld->ld_options, LDAP_BOOL_DNS )
119 && ldap_is_dns_dn( dn ) )
121 if (( servers = dn2servers( ld, dn )) == NULL ) {
127 if ( ldap_debug & LDAP_DEBUG_TRACE ) {
132 srv = srv->lud_next )
135 "LDAP server %s: dn %s, port %d\n",
136 srv->lud_host, ( srv->lud_dn == NULL ) ?
137 "(default)" : srv->lud_dn,
141 #endif /* LDAP_DEBUG */
143 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
146 * use of DNS is turned off or this is an X.500 DN...
147 * use our default connection
152 rc = ldap_send_server_request( ld, ber, ld->ld_msgid, NULL,
153 servers, NULL, NULL );
155 ldap_free_urllist(servers);
162 ldap_send_server_request(
166 LDAPRequest *parentreq,
167 LDAPURLDesc *srvlist,
174 Debug( LDAP_DEBUG_TRACE, "ldap_send_server_request\n", 0, 0, 0 );
177 ld->ld_errno = LDAP_SUCCESS; /* optimistic */
180 if ( srvlist == NULL ) {
183 if (( lc = find_connection( ld, srvlist, 1 )) ==
185 if ( (bind != NULL) && (parentreq != NULL) ) {
186 /* Remember the bind in the parent */
188 ++parentreq->lr_outrefcnt;
190 lc = ldap_new_connection( ld, srvlist, 0, 1, bind );
195 if ( lc == NULL || lc->lconn_status != LDAP_CONNST_CONNECTED ) {
197 if ( ld->ld_errno == LDAP_SUCCESS ) {
198 ld->ld_errno = LDAP_SERVER_DOWN;
201 /* Forget about the bind */
202 --parentreq->lr_outrefcnt;
207 use_connection( ld, lc );
208 if (( lr = (LDAPRequest *)LDAP_CALLOC( 1, sizeof( LDAPRequest ))) ==
210 ld->ld_errno = LDAP_NO_MEMORY;
211 ldap_free_connection( ld, lc, 0, 0 );
214 /* Forget about the bind */
215 --parentreq->lr_outrefcnt;
219 lr->lr_msgid = msgid;
220 lr->lr_status = LDAP_REQST_INPROGRESS;
221 lr->lr_res_errno = LDAP_SUCCESS; /* optimistic */
224 if ( parentreq != NULL ) { /* sub-request */
226 /* Increment if we didn't do it before the bind */
227 ++parentreq->lr_outrefcnt;
229 lr->lr_origid = parentreq->lr_origid;
230 lr->lr_parentcnt = parentreq->lr_parentcnt + 1;
231 lr->lr_parent = parentreq;
232 lr->lr_refnext = parentreq->lr_refnext;
233 parentreq->lr_refnext = lr;
234 } else { /* original request */
235 lr->lr_origid = lr->lr_msgid;
238 if (( lr->lr_next = ld->ld_requests ) != NULL ) {
239 lr->lr_next->lr_prev = lr;
241 ld->ld_requests = lr;
244 if ( ber_flush( lc->lconn_sb, ber, 0 ) != 0 ) {
246 if ( errno == EWOULDBLOCK ) {
247 /* need to continue write later */
248 lr->lr_status = LDAP_REQST_WRITING;
249 ldap_mark_select_write( ld, lc->lconn_sb );
252 ld->ld_errno = LDAP_SERVER_DOWN;
253 ldap_free_request( ld, lr );
254 ldap_free_connection( ld, lc, 0, 0 );
261 if ( parentreq == NULL ) {
262 ber->ber_end = ber->ber_ptr;
263 ber->ber_ptr = ber->ber_buf;
266 /* sent -- waiting for a response */
267 ldap_mark_select_read( ld, lc->lconn_sb );
270 ld->ld_errno = LDAP_SUCCESS;
275 ldap_new_connection( LDAP *ld, LDAPURLDesc *srvlist, int use_ldsb,
276 int connect, LDAPreqinfo *bind )
282 Debug( LDAP_DEBUG_TRACE, "ldap_new_connection\n", 0, 0, 0 );
284 * make a new LDAP server connection
285 * XXX open connection synchronously for now
287 if (( lc = (LDAPConn *)LDAP_CALLOC( 1, sizeof( LDAPConn ))) == NULL ||
288 ( !use_ldsb && ( (sb = ber_sockbuf_alloc()) == NULL ))) {
290 LDAP_FREE( (char *)lc );
292 ld->ld_errno = LDAP_NO_MEMORY;
296 lc->lconn_sb = ( use_ldsb ) ? &ld->ld_sb : sb;
299 for ( srv = srvlist; srv != NULL; srv = srv->lud_next ) {
300 if ( open_ldap_connection( ld, lc->lconn_sb,
301 srv, &lc->lconn_krbinstance, 0 ) != -1 )
309 ber_sockbuf_free( lc->lconn_sb );
311 LDAP_FREE( (char *)lc );
312 ld->ld_errno = LDAP_SERVER_DOWN;
316 lc->lconn_server = ldap_url_dup(srv);
319 lc->lconn_status = LDAP_CONNST_CONNECTED;
320 lc->lconn_next = ld->ld_conns;
324 * XXX for now, we always do a synchronous bind. This will have
325 * to change in the long run...
329 LDAPConn *savedefconn;
331 /* Set flag to prevent additional referrals from being processed on this
332 * connection until the bind has completed
334 lc->lconn_rebind_inprogress = 1;
335 /* V3 rebind function */
336 if ( ld->ld_rebindproc != NULL) {
337 LDAPURLDesc *srvfunc;
338 if( ( srvfunc = ldap_url_dup( srvlist)) == NULL) {
339 ld->ld_errno = LDAP_NO_MEMORY;
342 savedefconn = ld->ld_defconn;
343 ++lc->lconn_refcnt; /* avoid premature free */
346 Debug( LDAP_DEBUG_TRACE, "Call application rebindproc\n", 0, 0, 0);
347 err = (*ld->ld_rebindproc)( ld, bind->ri_url, bind->ri_request, bind->ri_msgid);
349 ld->ld_defconn = savedefconn;
354 ldap_free_connection( ld, lc, 1, 0 );
357 ldap_free_urldesc( srvfunc);
360 savedefconn = ld->ld_defconn;
361 ++lc->lconn_refcnt; /* avoid premature free */
364 Debug( LDAP_DEBUG_TRACE, "anonymous rebind via ldap_bind_s\n", 0, 0, 0);
365 if ( ldap_bind_s( ld, "", "", LDAP_AUTH_SIMPLE ) != LDAP_SUCCESS ) {
368 ld->ld_defconn = savedefconn;
372 ldap_free_connection( ld, lc, 1, 0 );
377 lc->lconn_rebind_inprogress = 0;
385 find_connection( LDAP *ld, LDAPURLDesc *srv, int any )
387 * return an existing connection (if any) to the server srv
388 * if "any" is non-zero, check for any server in the "srv" chain
394 for ( lc = ld->ld_conns; lc != NULL; lc = lc->lconn_next ) {
395 for ( ls = srv; ls != NULL; ls = ls->lud_next ) {
396 if ( lc->lconn_server->lud_host != NULL &&
397 ls->lud_host != NULL && strcasecmp(
398 ls->lud_host, lc->lconn_server->lud_host ) == 0
399 && ls->lud_port == lc->lconn_server->lud_port ) {
414 use_connection( LDAP *ld, LDAPConn *lc )
417 lc->lconn_lastused = time( NULL );
422 ldap_free_connection( LDAP *ld, LDAPConn *lc, int force, int unbind )
424 LDAPConn *tmplc, *prevlc;
426 Debug( LDAP_DEBUG_TRACE, "ldap_free_connection\n", 0, 0, 0 );
428 if ( force || --lc->lconn_refcnt <= 0 ) {
429 if ( lc->lconn_status == LDAP_CONNST_CONNECTED ) {
430 ldap_mark_select_clear( ld, lc->lconn_sb );
432 ldap_send_unbind( ld, lc->lconn_sb, NULL, NULL );
437 ldap_close_connection( lc->lconn_sb );
438 ber_pvt_sb_destroy( lc->lconn_sb );
440 if( lc->lconn_ber != NULL ) {
441 ber_free( lc->lconn_ber, 1 );
445 for ( tmplc = ld->ld_conns; tmplc != NULL;
446 tmplc = tmplc->lconn_next ) {
448 if ( prevlc == NULL ) {
449 ld->ld_conns = tmplc->lconn_next;
451 prevlc->lconn_next = tmplc->lconn_next;
457 ldap_free_urllist( lc->lconn_server );
458 if ( lc->lconn_krbinstance != NULL ) {
459 LDAP_FREE( lc->lconn_krbinstance );
461 if ( lc->lconn_sb != &ld->ld_sb ) {
462 ber_sockbuf_free( lc->lconn_sb );
464 if( lc->lconn_rebind_queue != NULL) {
466 for( i = 0; lc->lconn_rebind_queue[i] != NULL; i++) {
467 free_strarray(lc->lconn_rebind_queue[i]);
469 LDAP_FREE( lc->lconn_rebind_queue);
472 Debug( LDAP_DEBUG_TRACE, "ldap_free_connection: actually freed\n",
475 lc->lconn_lastused = time( NULL );
476 Debug( LDAP_DEBUG_TRACE, "ldap_free_connection: refcnt %d\n",
477 lc->lconn_refcnt, 0, 0 );
484 ldap_dump_connection( LDAP *ld, LDAPConn *lconns, int all )
489 fprintf( stderr, "** Connection%s:\n", all ? "s" : "" );
490 for ( lc = lconns; lc != NULL; lc = lc->lconn_next ) {
491 if ( lc->lconn_server != NULL ) {
492 fprintf( stderr, "* host: %s port: %d%s\n",
493 ( lc->lconn_server->lud_host == NULL ) ? "(null)"
494 : lc->lconn_server->lud_host,
495 lc->lconn_server->lud_port, ( lc->lconn_sb ==
496 &ld->ld_sb ) ? " (default)" : "" );
498 fprintf( stderr, " refcnt: %d status: %s\n", lc->lconn_refcnt,
499 ( lc->lconn_status == LDAP_CONNST_NEEDSOCKET ) ?
500 "NeedSocket" : ( lc->lconn_status ==
501 LDAP_CONNST_CONNECTING ) ? "Connecting" : "Connected" );
502 fprintf( stderr, " last used: %s",
503 ldap_pvt_ctime( &lc->lconn_lastused, timebuf ));
504 if( lc->lconn_rebind_inprogress ) {
505 fprintf( stderr, " rebind in progress\n");
506 if( lc->lconn_rebind_queue != NULL) {
508 for( ;lc->lconn_rebind_queue[i] != NULL; i++) {
510 for( ;lc->lconn_rebind_queue[i][j] != 0; j++) {
511 fprintf( stderr, " queue %d entry %d - %s\n",
512 i, j, lc->lconn_rebind_queue[i][j]);
516 fprintf( stderr, " queue is empty\n");
519 fprintf(stderr, "\n");
528 ldap_dump_requests_and_responses( LDAP *ld )
533 fprintf( stderr, "** Outstanding Requests:\n" );
534 if (( lr = ld->ld_requests ) == NULL ) {
535 fprintf( stderr, " Empty\n" );
537 for ( ; lr != NULL; lr = lr->lr_next ) {
538 fprintf( stderr, " * msgid %d, origid %d, status %s\n",
539 lr->lr_msgid, lr->lr_origid,
540 ( lr->lr_status == LDAP_REQST_INPROGRESS ) ? "InProgress" :
541 ( lr->lr_status == LDAP_REQST_CHASINGREFS ) ? "ChasingRefs" :
542 ( lr->lr_status == LDAP_REQST_NOTCONNECTED ) ? "NotConnected" :
543 ( lr->lr_status == LDAP_REQST_WRITING) ? "Writing" :
544 ( lr->lr_status == LDAP_REQST_COMPLETED ? "Request Completed" : "Invalid Status"));
545 fprintf( stderr, " outstanding referrals %d, parent count %d\n",
546 lr->lr_outrefcnt, lr->lr_parentcnt );
549 fprintf( stderr, "** Response Queue:\n" );
550 if (( lm = ld->ld_responses ) == NULL ) {
551 fprintf( stderr, " Empty\n" );
553 for ( ; lm != NULL; lm = lm->lm_next ) {
554 fprintf( stderr, " * msgid %d, type %lu\n",
555 lm->lm_msgid, (unsigned long) lm->lm_msgtype );
556 if (( l = lm->lm_chain ) != NULL ) {
557 fprintf( stderr, " chained responses:\n" );
558 for ( ; l != NULL; l = l->lm_chain ) {
560 " * msgid %d, type %lu\n",
562 (unsigned long) l->lm_msgtype );
567 #endif /* LDAP_DEBUG */
571 ldap_free_request( LDAP *ld, LDAPRequest *lr )
573 LDAPRequest *tmplr, *nextlr;
575 Debug( LDAP_DEBUG_TRACE, "ldap_free_request (origid %d, msgid %d)\n",
576 lr->lr_origid, lr->lr_msgid, 0 );
578 if ( lr->lr_parent != NULL ) {
579 --lr->lr_parent->lr_outrefcnt;
581 /* free all referrals (child requests) */
582 for ( tmplr = lr->lr_refnext; tmplr != NULL; tmplr = nextlr ) {
583 nextlr = tmplr->lr_refnext;
584 ldap_free_request( ld, tmplr );
588 if ( lr->lr_prev == NULL ) {
589 ld->ld_requests = lr->lr_next;
591 lr->lr_prev->lr_next = lr->lr_next;
594 if ( lr->lr_next != NULL ) {
595 lr->lr_next->lr_prev = lr->lr_prev;
598 if ( lr->lr_ber != NULL ) {
599 ber_free( lr->lr_ber, 1 );
602 if ( lr->lr_res_error != NULL ) {
603 LDAP_FREE( lr->lr_res_error );
606 if ( lr->lr_res_matched != NULL ) {
607 LDAP_FREE( lr->lr_res_matched );
617 * (IN) ld = LDAP connection handle
618 * (IN) lr = LDAP Request structure
619 * (IN) refs = array of pointers to referral strings that we will chase
620 * The array will be free'd by this function when no longer needed
621 * (OUT) errstrp = Place to return a string of referrals which could not be followed
622 * (OUT) hadrefp = 1 if sucessfully followed referral
624 * Return value - number of referrals followed
627 ldap_chase_v3referrals( LDAP *ld, LDAPRequest *lr, char **refs, char **errstrp, int *hadrefp )
630 int unfollowedcnt = 0;
631 LDAPRequest *origreq;
632 LDAPURLDesc *srv = NULL;
634 char **refarray = NULL;
639 ld->ld_errno = LDAP_SUCCESS; /* optimistic */
642 Debug( LDAP_DEBUG_TRACE, "ldap_chase_v3referrals\n", 0, 0, 0 );
647 /* If no referrals in array, return */
648 if ( (refs == NULL) || ( (refs)[0] == NULL) ) {
653 /* Check for hop limit exceeded */
654 if ( lr->lr_parentcnt >= ld->ld_refhoplimit ) {
655 Debug( LDAP_DEBUG_ANY,
656 "more than %d referral hops (dropping)\n", ld->ld_refhoplimit, 0, 0 );
657 ld->ld_errno = LDAP_REFERRAL_LIMIT_EXCEEDED;
662 /* find original request */
663 for ( origreq = lr; origreq->lr_parent != NULL; origreq = origreq->lr_parent ) {
669 /* parse out & follow referrals */
670 for( i=0; refarray[i] != NULL; i++) {
671 /* Parse the referral URL */
672 if (( rc = ldap_url_parse( refarray[i], &srv)) != LDAP_SUCCESS) {
678 /* treat ldap://hostpart and ldap://hostpart/ the same */
679 if ( srv->lud_dn && srv->lud_dn[0] == '\0' ) {
680 LDAP_FREE( srv->lud_dn );
684 /* check connection for re-bind in progress */
685 if (( lc = find_connection( ld, srv, 1 )) != NULL ) {
686 if( lc->lconn_rebind_inprogress) {
687 /* We are already chasing a referral or search reference and a
688 * bind on that connection is in progress. We must queue
689 * referrals on that connection, so we don't get a request
690 * going out before the bind operation completes. This happens
691 * if two search references come in one behind the other
692 * for the same server with different contexts.
694 Debug( LDAP_DEBUG_TRACE, "ldap_chase_v3referrals: queue referral \"%s\"\n",
696 if( lc->lconn_rebind_queue == NULL ) {
697 /* Create a referral list */
698 if( (lc->lconn_rebind_queue = (char ***)LDAP_MALLOC( sizeof(void *) * 2)) == NULL) {
699 ld->ld_errno = LDAP_NO_MEMORY;
703 lc->lconn_rebind_queue[0] = refarray;
704 lc->lconn_rebind_queue[1] = NULL;
707 /* Count how many referral arrays we already have */
708 for( j = 0; lc->lconn_rebind_queue[j] != NULL; j++) {
711 /* Add the new referral to the list */
712 if( (lc->lconn_rebind_queue = (char ***)LDAP_REALLOC(
713 lc->lconn_rebind_queue, sizeof(void *) * (j + 2))) == NULL) {
714 ld->ld_errno = LDAP_NO_MEMORY;
718 lc->lconn_rebind_queue[j] = refarray;
719 lc->lconn_rebind_queue[j+1] = NULL;
722 /* We have queued the referral/reference, now just return */
725 count = 1; /* Pretend we already followed referral */
729 /* Re-encode the request with the new starting point of the search.
730 * Note: In the future we also need to replace the filter if one
731 * was provided with the search reference
733 if (( ber = re_encode_request( ld, origreq->lr_ber,
734 ++ld->ld_msgid, &srv->lud_dn, &rinfo.ri_request )) == NULL ) {
735 ld->ld_errno = LDAP_ENCODING_ERROR;
740 Debug( LDAP_DEBUG_TRACE, "ldap_chase_v3referral: msgid %d, url \"%s\"\n",
741 lr->lr_msgid, refarray[i], 0);
743 /* Send the new request to the server - may require a bind */
744 rinfo.ri_msgid = origreq->lr_origid;
745 rinfo.ri_url = refarray[i];
746 if ( (rc = ldap_send_server_request( ld, ber, ld->ld_msgid,
747 origreq, srv, NULL, &rinfo )) < 0 ) {
748 /* Failure, try next referral in the list */
749 Debug( LDAP_DEBUG_ANY, "Unable to chase referral \"%s\" (%s)\n",
750 refarray[i], ldap_err2string( ld->ld_errno ), 0);
751 unfollowedcnt += ldap_append_referral( ld, &unfollowed, refarray[i]);
752 ldap_free_urllist(srv);
755 /* Success, no need to try this referral list further */
760 /* check if there is a queue of referrals that came in during bind */
762 if (( lc = find_connection( ld, srv, 1 )) == NULL ) {
763 ld->ld_errno = LDAP_OPERATIONS_ERROR;
769 if( lc->lconn_rebind_queue != NULL) {
770 /* Release resources of previous list */
771 free_strarray(refarray);
773 ldap_free_urllist(srv);
776 /* Pull entries off end of queue so list always null terminated */
777 for( j = 0; lc->lconn_rebind_queue[j] != NULL; j++) {
780 refarray = lc->lconn_rebind_queue[j-1];
781 lc->lconn_rebind_queue[j-1] = NULL;
782 /* we pulled off last entry from queue, free queue */
784 LDAP_FREE( lc->lconn_rebind_queue);
785 lc->lconn_rebind_queue = NULL;
787 /* restart the loop the with new referral list */
791 break; /* referral followed, break out of for loop */
795 free_strarray(refarray);
796 ldap_free_urllist(srv);
797 LDAP_FREE( *errstrp );
801 LDAP_FREE( unfollowed );
804 ld->ld_errno = LDAP_REFERRAL;
805 *errstrp = unfollowed;
811 * XXX merging of errors in this routine needs to be improved
814 ldap_chase_referrals( LDAP *ld, LDAPRequest *lr, char **errstrp, int *hadrefp )
816 int rc, count, len, newdn;
817 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
819 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
820 char *p, *ports, *ref, *tmpref, *refdn, *unfollowed;
821 LDAPRequest *origreq;
826 Debug( LDAP_DEBUG_TRACE, "ldap_chase_referrals\n", 0, 0, 0 );
828 ld->ld_errno = LDAP_SUCCESS; /* optimistic */
831 if ( *errstrp == NULL ) {
835 len = strlen( *errstrp );
836 for ( p = *errstrp; len >= LDAP_REF_STR_LEN; ++p, --len ) {
837 if (( *p == 'R' || *p == 'r' ) && strncasecmp( p,
838 LDAP_REF_STR, LDAP_REF_STR_LEN ) == 0 ) {
840 p += LDAP_REF_STR_LEN;
845 if ( len < LDAP_REF_STR_LEN ) {
849 if ( lr->lr_parentcnt >= ld->ld_refhoplimit ) {
850 Debug( LDAP_DEBUG_ANY,
851 "more than %d referral hops (dropping)\n",
852 ld->ld_refhoplimit, 0, 0 );
853 /* XXX report as error in ld->ld_errno? */
857 /* find original request */
858 for ( origreq = lr; origreq->lr_parent != NULL;
859 origreq = origreq->lr_parent ) {
866 /* parse out & follow referrals */
867 for ( ref = p; rc == 0 && ref != NULL; ref = p ) {
868 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
870 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
872 if (( p = strchr( ref, '\n' )) != NULL ) {
878 ldap_pvt_hex_unescape( ref );
881 if ( len > LDAP_LDAP_REF_STR_LEN && strncasecmp( ref,
882 LDAP_LDAP_REF_STR, LDAP_LDAP_REF_STR_LEN ) == 0 ) {
883 Debug( LDAP_DEBUG_TRACE,
884 "chasing LDAP referral: <%s>\n", ref, 0, 0 );
885 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
887 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
888 tmpref = ref + LDAP_LDAP_REF_STR_LEN;
889 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
890 } else if ( len > LDAP_DX_REF_STR_LEN && strncasecmp( ref,
891 LDAP_DX_REF_STR, LDAP_DX_REF_STR_LEN ) == 0 ) {
892 Debug( LDAP_DEBUG_TRACE,
893 "chasing DX referral: <%s>\n", ref, 0, 0 );
894 tmpref = ref + LDAP_DX_REF_STR_LEN;
895 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
897 Debug( LDAP_DEBUG_TRACE,
898 "ignoring unknown referral <%s>\n", ref, 0, 0 );
899 rc = ldap_append_referral( ld, &unfollowed, ref );
904 /* copy the complete referral for rebind process */
905 rinfo.ri_url = LDAP_STRDUP( ref );
909 if (( refdn = strchr( tmpref, '/' )) != NULL ) {
911 newdn = refdn[0] != '?' && refdn[0] != '\0';
912 if( !newdn ) refdn = NULL;
917 if (( ber = re_encode_request( ld, origreq->lr_ber,
918 ++ld->ld_msgid, &refdn, &rinfo.ri_request )) == NULL ) {
922 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
924 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
925 if (( srv = (LDAPURLDesc *)LDAP_CALLOC( 1,
926 sizeof( LDAPURLDesc ))) == NULL ) {
928 ld->ld_errno = LDAP_NO_MEMORY;
932 if (( srv->lud_host = LDAP_STRDUP( tmpref )) == NULL ) {
933 LDAP_FREE( (char *)srv );
935 ld->ld_errno = LDAP_NO_MEMORY;
939 if (( ports = strchr( srv->lud_host, ':' )) != NULL ) {
941 srv->lud_port = atoi( ports );
943 srv->lud_port = ldap_int_global_options.ldo_defport;
945 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
947 srv = dn2servers( ld, tmpref );
949 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
951 rinfo.ri_msgid = origreq->lr_origid;
952 if ( srv != NULL && ldap_send_server_request( ld, ber, ld->ld_msgid,
953 lr, srv, NULL, &rinfo ) >= 0 ) {
956 Debug( LDAP_DEBUG_ANY,
957 "Unable to chase referral (%s)\n",
958 ldap_err2string( ld->ld_errno ), 0, 0 );
959 rc = ldap_append_referral( ld, &unfollowed, ref );
961 LDAP_FREE( rinfo.ri_url);
964 ldap_free_urllist(srv);
966 if ( !newdn && refdn != NULL ) {
971 LDAP_FREE( *errstrp );
972 *errstrp = unfollowed;
974 return(( rc == 0 ) ? count : rc );
979 ldap_append_referral( LDAP *ld, char **referralsp, char *s )
983 if ( *referralsp == NULL ) {
985 *referralsp = (char *)LDAP_MALLOC( strlen( s ) + LDAP_REF_STR_LEN
989 *referralsp = (char *)LDAP_REALLOC( *referralsp,
990 strlen( *referralsp ) + strlen( s ) + 2 );
993 if ( *referralsp == NULL ) {
994 ld->ld_errno = LDAP_NO_MEMORY;
999 strcpy( *referralsp, LDAP_REF_STR );
1001 strcat( *referralsp, "\n" );
1003 strcat( *referralsp, s );
1011 re_encode_request( LDAP *ld, BerElement *origber, ber_int_t msgid, char **dnp, int *type )
1014 * XXX this routine knows way too much about how the lber library works!
1020 BerElement tmpber, *ber;
1023 Debug( LDAP_DEBUG_TRACE,
1024 "re_encode_request: new msgid %ld, new dn <%s>\n",
1025 (long) msgid, ( *dnp == NULL ) ? "NONE" : *dnp, 0 );
1030 * all LDAP requests are sequences that start with a message id.
1031 * For all except delete, this is followed by a sequence that is
1032 * tagged with the operation code. For delete, the provided DN
1033 * is not wrapped by a sequence.
1035 rc = ber_scanf( &tmpber, "{it", /*}*/ &along, &tag );
1037 if ( rc == LBER_ERROR ) {
1038 ld->ld_errno = LDAP_DECODING_ERROR;
1043 if ( tag == LDAP_REQ_BIND ) {
1044 /* bind requests have a version number before the DN & other stuff */
1045 rc = ber_scanf( &tmpber, "{ia" /*}*/, &ver, &orig_dn );
1047 } else if ( tag == LDAP_REQ_DELETE ) {
1048 /* delete requests don't have a DN wrapping sequence */
1049 rc = ber_scanf( &tmpber, "a", &orig_dn );
1052 rc = ber_scanf( &tmpber, "{a" /*}*/, &orig_dn );
1055 if( rc == LBER_ERROR ) {
1056 ld->ld_errno = LDAP_DECODING_ERROR;
1060 if ( *dnp == NULL ) {
1063 LDAP_FREE( orig_dn );
1066 if (( ber = ldap_alloc_ber_with_options( ld )) == NULL ) {
1070 if ( tag == LDAP_REQ_BIND ) {
1071 rc = ber_printf( ber, "{it{is" /*}}*/, msgid, tag, ver, *dnp );
1072 } else if ( tag == LDAP_REQ_DELETE ) {
1073 rc = ber_printf( ber, "{its}", msgid, tag, *dnp );
1075 rc = ber_printf( ber, "{it{s" /*}}*/, msgid, tag, *dnp );
1079 ld->ld_errno = LDAP_ENCODING_ERROR;
1084 if ( tag != LDAP_REQ_DELETE && (
1085 ber_write(ber, tmpber.ber_ptr, ( tmpber.ber_end - tmpber.ber_ptr ), 0)
1086 != ( tmpber.ber_end - tmpber.ber_ptr ) ||
1087 ber_printf( ber, /*{{*/ "}}" ) == -1 ) )
1089 ld->ld_errno = LDAP_ENCODING_ERROR;
1095 if ( ldap_debug & LDAP_DEBUG_PACKETS ) {
1096 Debug( LDAP_DEBUG_ANY, "re_encode_request new request is:\n",
1098 ber_log_dump( LDAP_DEBUG_BER, ldap_debug, ber, 0 );
1100 #endif /* LDAP_DEBUG */
1102 *type = tag; /* return request type */
1108 ldap_find_request_by_msgid( LDAP *ld, ber_int_t msgid )
1112 for ( lr = ld->ld_requests; lr != NULL; lr = lr->lr_next ) {
1113 if( lr->lr_status == LDAP_REQST_COMPLETED ) {
1114 continue; /* Skip completed requests */
1116 if ( msgid == lr->lr_msgid ) {
1125 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_DNS
1126 static LDAPURLDesc *
1127 dn2servers( LDAP *ld, const char *dn ) /* dn can also be a domain.... */
1129 char *p, *host, *server_dn, **dxs;
1132 LDAPURLDesc *srvlist, *prevsrv, *srv;
1134 if (( domain = strrchr( dn, '@' )) != NULL ) {
1140 if (( dxs = ldap_getdxbyname( domain )) == NULL ) {
1141 ld->ld_errno = LDAP_NO_MEMORY;
1146 for ( i = 0; dxs[ i ] != NULL; ++i ) {
1147 if (ldap_url_parselist(&srv, dxs[i]) == LDAP_SUCCESS
1148 || ldap_url_parsehosts(&srv, dxs[i]) == LDAP_SUCCESS)
1150 /* add to end of list of servers */
1151 if ( srvlist == NULL ) {
1154 prevsrv->lud_next = srv;
1160 ldap_value_free( dxs );
1162 if ( srvlist == NULL ) {
1163 ld->ld_errno = LDAP_SERVER_DOWN;
1168 #endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_DNS */
projects / openldap / blob