1 /* add.c - ldap BerkeleyDB back-end add routine */
4 * Copyright 1998-2000 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
11 #include <ac/string.h>
23 struct bdb_info *bdb = (struct bdb_info *) be->be_private;
28 char textbuf[SLAP_TEXT_BUFLEN];
29 size_t textlen = sizeof textbuf;
30 AttributeDescription *children = slap_schema.si_ad_children;
32 struct bdb_op_info opinfo;
34 Debug(LDAP_DEBUG_ARGS, "==> bdb_add: %s\n", e->e_dn, 0, 0);
36 /* check entry's schema */
37 rc = entry_schema_check( e, NULL, &text, textbuf, textlen );
38 if ( rc != LDAP_SUCCESS ) {
39 Debug( LDAP_DEBUG_TRACE,
40 "bdb_add: entry failed schema check: %s (%d)\n",
46 * acquire an ID outside of the operation transaction
47 * to avoid serializing adds.
49 rc = bdb_next_id( be, NULL, &e->e_id );
51 Debug( LDAP_DEBUG_TRACE,
52 "bdb_add: next_id failed (%d)\n",
55 text = "internal error";
60 /* transaction retry */
61 retry: rc = txn_abort( ltid );
66 text = "internal error";
71 /* begin transaction */
72 rc = txn_begin( bdb->bi_dbenv, NULL, <id, 0 );
75 Debug( LDAP_DEBUG_TRACE,
76 "bdb_add: txn_begin failed: %s (%d)\n",
77 db_strerror(rc), rc, 0 );
79 text = "internal error";
84 opinfo.boi_txn = ltid;
86 op->o_private = &opinfo;
89 * Get the parent dn and see if the corresponding entry exists.
90 * If the parent does not exist, only allow the "root" user to
93 pdn = dn_parent( be, e->e_ndn );
95 if( pdn != NULL && *pdn != '\0' ) {
96 Entry *matched = NULL;
99 rc = bdb_dn2entry( be, ltid, pdn, &p, &matched, 0 );
106 case DB_LOCK_DEADLOCK:
107 case DB_LOCK_NOTGRANTED:
111 text = "internal error";
116 char *matched_dn = NULL;
117 struct berval **refs;
119 if ( matched != NULL ) {
120 matched_dn = ch_strdup( matched->e_dn );
121 refs = is_entry_referral( matched )
122 ? get_entry_referrals( be, conn, op,
123 matched, e->e_dn, LDAP_SCOPE_DEFAULT )
125 bdb_entry_return( be, matched );
129 refs = referral_rewrite( default_referral,
130 NULL, e->e_dn, LDAP_SCOPE_DEFAULT );
133 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent does not exist\n",
136 send_ldap_result( conn, op, rc = LDAP_REFERRAL,
137 matched_dn, NULL, refs, NULL );
139 ber_bvecfree( refs );
140 ch_free( matched_dn );
145 if ( ! access_allowed( be, conn, op, p,
146 children, NULL, ACL_WRITE ) )
148 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to parent\n",
150 rc = LDAP_INSUFFICIENT_ACCESS;
151 text = "no write access to parent";
152 goto return_results;;
155 if ( is_entry_alias( p ) ) {
156 /* parent is an alias, don't allow add */
157 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is alias\n",
159 rc = LDAP_ALIAS_PROBLEM;
160 text = "parent is an alias";
161 goto return_results;;
164 if ( is_entry_referral( p ) ) {
165 /* parent is a referral, don't allow add */
166 char *matched_dn = ch_strdup( p->e_dn );
167 struct berval **refs = is_entry_referral( p )
168 ? get_entry_referrals( be, conn, op, p,
169 e->e_dn, LDAP_SCOPE_DEFAULT )
172 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is referral\n",
175 send_ldap_result( conn, op, rc = LDAP_REFERRAL,
176 matched_dn, NULL, refs, NULL );
178 ber_bvecfree( refs );
183 /* free parent and writer lock */
184 bdb_entry_return( be, p );
194 * must be adding entry to at suffix
197 if ( !be_isroot( be, op->o_ndn )) {
198 if ( be_issuffix( be, "" ) || be_isupdate( be, op->o_ndn ) ) {
200 p = (Entry *)&slap_entry_root;
202 /* check parent for "children" acl */
203 rc = access_allowed( be, conn, op, p,
204 children, NULL, ACL_WRITE );
208 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to parent\n",
210 rc = LDAP_INSUFFICIENT_ACCESS;
211 text = "no write access to parent";
212 goto return_results;;
216 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s denied\n",
217 pdn == NULL ? "suffix" : "entry at root",
219 rc = LDAP_INSUFFICIENT_ACCESS;
226 rc = bdb_dn2id_add( be, ltid, e->e_ndn, e->e_id );
228 Debug( LDAP_DEBUG_TRACE, "bdb_add: dn2id_add failed: %s (%d)\n",
229 db_strerror(rc), rc, 0 );
232 case DB_LOCK_DEADLOCK:
233 case DB_LOCK_NOTGRANTED:
236 rc = LDAP_ALREADY_EXISTS;
245 rc = bdb_id2entry_add( be, ltid, e );
247 Debug( LDAP_DEBUG_TRACE, "bdb_add: id2entry_add failed\n",
250 case DB_LOCK_DEADLOCK:
251 case DB_LOCK_NOTGRANTED:
256 text = "entry store failed";
260 /* attribute indexes */
261 if ( bdb_index_entry_add( be, ltid, e, e->e_attrs ) != LDAP_SUCCESS ) {
262 Debug( LDAP_DEBUG_TRACE, "bdb_add: index_entry_add failed\n",
265 case DB_LOCK_DEADLOCK:
266 case DB_LOCK_NOTGRANTED:
271 text = "index generation failed";
275 rc = txn_commit( ltid, 0 );
277 op->o_private = NULL;
280 Debug( LDAP_DEBUG_TRACE,
281 "bdb_add: txn_commit failed: %s (%d)\n",
282 db_strerror(rc), rc, 0 );
284 text = "commit failed";
286 Debug( LDAP_DEBUG_TRACE,
287 "bdb_add: added id=%08lx dn=\"%s\"\n",
288 e->e_id, e->e_dn, 0 );
294 send_ldap_result( conn, op, rc,
295 NULL, text, NULL, NULL );
297 if(rc == LDAP_SUCCESS && bdb->bi_txn_cp ) {
298 ldap_pvt_thread_yield();
299 txn_checkpoint( bdb->bi_dbenv,
300 bdb->bi_txn_cp_kbyte, bdb->bi_txn_cp_min, 0 );
305 /* free parent and writer lock */
306 bdb_entry_return( be, p );
311 op->o_private = NULL;