1 /* add.c - ldap BerkeleyDB back-end add routine */
4 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
11 #include <ac/string.h>
17 bdb_add(Operation *op, SlapReply *rs )
19 struct bdb_info *bdb = (struct bdb_info *) op->o_bd->be_private;
23 char textbuf[SLAP_TEXT_BUFLEN];
24 size_t textlen = sizeof textbuf;
25 AttributeDescription *children = slap_schema.si_ad_children;
26 AttributeDescription *entry = slap_schema.si_ad_entry;
27 DB_TXN *ltid = NULL, *lt2;
28 struct bdb_op_info opinfo;
40 EntryInfo *suffix_ei = NULL;
44 LDAPControl *ctrls[SLAP_MAX_RESPONSE_CONTROLS];
48 LDAP_LOG ( OPERATION, ARGS, "==> bdb_add: %s\n", op->oq_add.rs_e->e_name.bv_val, 0, 0 );
50 Debug(LDAP_DEBUG_ARGS, "==> bdb_add: %s\n", op->oq_add.rs_e->e_name.bv_val, 0, 0);
53 /* check entry's schema */
54 rs->sr_err = entry_schema_check( op->o_bd, op->oq_add.rs_e, NULL, &rs->sr_text, textbuf, textlen );
55 if ( rs->sr_err != LDAP_SUCCESS ) {
57 LDAP_LOG ( OPERATION, ERR,
58 "bdb_add: entry failed schema check: %s (%d)\n", rs->sr_text, rs->sr_err, 0 );
60 Debug( LDAP_DEBUG_TRACE,
61 "bdb_add: entry failed schema check: %s (%d)\n",
62 rs->sr_text, rs->sr_err, 0 );
68 subentry = is_entry_subentry( op->oq_add.rs_e );
72 * acquire an ID outside of the operation transaction
73 * to avoid serializing adds.
75 rs->sr_err = bdb_next_id( op->o_bd, NULL, &op->oq_add.rs_e->e_id );
76 if( rs->sr_err != 0 ) {
78 LDAP_LOG ( OPERATION, ERR,
79 "bdb_add: next_id failed (%d)\n", rs->sr_err, 0, 0 );
81 Debug( LDAP_DEBUG_TRACE,
82 "bdb_add: next_id failed (%d)\n", rs->sr_err, 0, 0 );
84 rs->sr_err = LDAP_OTHER;
85 rs->sr_text = "internal error";
90 retry: /* transaction retry */
92 /* free parent and reader lock */
93 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
96 rs->sr_err = TXN_ABORT( ltid );
99 op->o_do_not_cache = opinfo.boi_acl_cache;
100 if( rs->sr_err != 0 ) {
101 rs->sr_err = LDAP_OTHER;
102 rs->sr_text = "internal error";
105 ldap_pvt_thread_yield();
106 bdb_trans_backoff( ++num_retries );
109 /* begin transaction */
110 rs->sr_err = TXN_BEGIN( bdb->bi_dbenv, NULL, <id,
111 bdb->bi_db_opflags );
113 if( rs->sr_err != 0 ) {
115 LDAP_LOG ( OPERATION, ERR,
116 "bdb_add: txn_begin failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
118 Debug( LDAP_DEBUG_TRACE,
119 "bdb_add: txn_begin failed: %s (%d)\n",
120 db_strerror(rs->sr_err), rs->sr_err, 0 );
122 rs->sr_err = LDAP_OTHER;
123 rs->sr_text = "internal error";
127 locker = TXN_ID ( ltid );
129 opinfo.boi_bdb = op->o_bd;
130 opinfo.boi_txn = ltid;
131 opinfo.boi_locker = locker;
133 opinfo.boi_acl_cache = op->o_do_not_cache;
134 op->o_private = &opinfo;
137 * Get the parent dn and see if the corresponding entry exists.
138 * If the parent does not exist, only allow the "root" user to
141 if ( be_issuffix( op->o_bd, &op->oq_add.rs_e->e_nname ) ) {
144 dnParent( &op->oq_add.rs_e->e_nname, &pdn );
147 /* get entry or parent */
148 rs->sr_err = bdb_dn2entry( op, ltid, &op->ora_e->e_nname, &ei,
150 switch( rs->sr_err ) {
152 rs->sr_err = LDAP_ALREADY_EXISTS;
156 case DB_LOCK_DEADLOCK:
157 case DB_LOCK_NOTGRANTED:
160 rs->sr_text = "ldap server busy";
163 rs->sr_err = LDAP_OTHER;
164 rs->sr_text = "internal error";
170 if ( !bvmatch( &pdn, &p->e_nname ) ) {
171 rs->sr_matched = ber_strdup_x( p->e_name.bv_val,
173 rs->sr_ref = is_entry_referral( p )
174 ? get_entry_referrals( op, p )
176 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
179 LDAP_LOG ( OPERATION, DETAIL1,
180 "bdb_add: parent does not exist\n", 0, 0, 0 );
182 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent does not exist\n",
186 rs->sr_err = LDAP_REFERRAL;
187 send_ldap_result( op, rs );
189 ber_bvarray_free( rs->sr_ref );
190 op->o_tmpfree( (char *)rs->sr_matched, op->o_tmpmemctx );
192 rs->sr_matched = NULL;
197 rs->sr_err = access_allowed( op, p,
198 children, NULL, ACL_WRITE, NULL );
200 if ( ! rs->sr_err ) {
201 switch( opinfo.boi_err ) {
202 case DB_LOCK_DEADLOCK:
203 case DB_LOCK_NOTGRANTED:
208 LDAP_LOG ( OPERATION, DETAIL1,
209 "bdb_add: no write access to parent\n", 0, 0, 0 );
211 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to parent\n",
214 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
215 rs->sr_text = "no write access to parent";
216 goto return_results;;
219 #ifdef BDB_SUBENTRIES
220 if ( is_entry_subentry( p ) ) {
221 /* parent is a subentry, don't allow add */
223 LDAP_LOG ( OPERATION, DETAIL1,
224 "bdb_add: parent is subentry\n", 0, 0, 0 );
226 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is subentry\n",
229 rs->sr_err = LDAP_OBJECT_CLASS_VIOLATION;
230 rs->sr_text = "parent is a subentry";
231 goto return_results;;
235 if ( is_entry_alias( p ) ) {
236 /* parent is an alias, don't allow add */
238 LDAP_LOG ( OPERATION, DETAIL1,
239 "bdb_add: parent is alias\n", 0, 0, 0 );
241 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is alias\n",
244 rs->sr_err = LDAP_ALIAS_PROBLEM;
245 rs->sr_text = "parent is an alias";
246 goto return_results;;
250 if ( is_entry_referral( p ) ) {
251 /* parent is a referral, don't allow add */
252 rs->sr_matched = p->e_name.bv_val;
253 rs->sr_ref = get_entry_referrals( op, p );
256 LDAP_LOG ( OPERATION, DETAIL1,
257 "bdb_add: parent is referral\n", 0, 0, 0 );
259 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is referral\n",
263 rs->sr_err = LDAP_REFERRAL;
264 send_ldap_result( op, rs );
266 ber_bvarray_free( rs->sr_ref );
267 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
269 rs->sr_matched = NULL;
274 #ifdef BDB_SUBENTRIES
277 /* parent must be an administrative point of the required kind */
281 /* free parent and reader lock */
282 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
288 * must be adding entry at suffix or with parent ""
290 if ( be_issuffix( op->o_bd, (struct berval *)&slap_empty_bv )
291 || be_isupdate( op->o_bd, &op->o_ndn ) )
293 p = (Entry *)&slap_entry_root;
295 /* check parent for "children" acl */
296 rs->sr_err = access_allowed( op, p,
297 children, NULL, ACL_WRITE, NULL );
301 if ( ! rs->sr_err ) {
302 switch( opinfo.boi_err ) {
303 case DB_LOCK_DEADLOCK:
304 case DB_LOCK_NOTGRANTED:
309 LDAP_LOG ( OPERATION, DETAIL1,
310 "bdb_add: no write access to parent\n", 0, 0, 0 );
312 Debug( LDAP_DEBUG_TRACE,
313 "bdb_add: no write access to parent\n",
316 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
317 rs->sr_text = "no write access to parent";
321 } else if ( !is_entry_glue( op->oq_add.rs_e )) {
323 LDAP_LOG ( OPERATION, DETAIL1, "bdb_add: %s denied\n",
324 pdn.bv_len == 0 ? "suffix" : "entry at root", 0, 0 );
326 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s denied\n",
327 pdn.bv_len == 0 ? "suffix" : "entry at root",
330 rs->sr_err = LDAP_NO_SUCH_OBJECT;
335 if ( get_assert( op ) &&
336 ( test_filter( op, op->oq_add.rs_e, get_assertion( op ))
337 != LDAP_COMPARE_TRUE ))
339 rs->sr_err = LDAP_ASSERTION_FAILED;
343 rs->sr_err = access_allowed( op, op->oq_add.rs_e,
344 entry, NULL, ACL_WRITE, NULL );
346 if ( ! rs->sr_err ) {
347 switch( opinfo.boi_err ) {
348 case DB_LOCK_DEADLOCK:
349 case DB_LOCK_NOTGRANTED:
354 LDAP_LOG ( OPERATION, DETAIL1,
355 "bdb_add: no write access to entry\n", 0, 0, 0 );
357 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to entry\n",
360 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
361 rs->sr_text = "no write access to entry";
362 goto return_results;;
366 if( op->o_postread ) {
367 if ( slap_read_controls( op, rs, op->oq_add.rs_e,
368 &slap_post_read_bv, &ctrls[num_ctrls] ) )
371 LDAP_LOG ( OPERATION, DETAIL1,
372 "<=- bdb_add: post-read failed!\n", 0, 0, 0 );
374 Debug( LDAP_DEBUG_TRACE,
375 "<=- bdb_add: post-read failed!\n", 0, 0, 0 );
379 ctrls[++num_ctrls] = NULL;
382 /* nested transaction */
383 rs->sr_err = TXN_BEGIN( bdb->bi_dbenv, ltid, <2,
384 bdb->bi_db_opflags );
386 if( rs->sr_err != 0 ) {
388 LDAP_LOG ( OPERATION, ERR,
389 "bdb_add: txn_begin(2) failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
391 Debug( LDAP_DEBUG_TRACE,
392 "bdb_add: txn_begin(2) failed: %s (%d)\n",
393 db_strerror(rs->sr_err), rs->sr_err, 0 );
395 rs->sr_err = LDAP_OTHER;
396 rs->sr_text = "internal error";
401 rs->sr_err = bdb_dn2id_add( op, lt2, ei, op->oq_add.rs_e );
402 if ( rs->sr_err != 0 ) {
404 LDAP_LOG ( OPERATION, ERR,
405 "bdb_add: dn2id_add failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
407 Debug( LDAP_DEBUG_TRACE, "bdb_add: dn2id_add failed: %s (%d)\n",
408 db_strerror(rs->sr_err), rs->sr_err, 0 );
411 switch( rs->sr_err ) {
412 case DB_LOCK_DEADLOCK:
413 case DB_LOCK_NOTGRANTED:
416 rs->sr_err = LDAP_ALREADY_EXISTS;
419 rs->sr_err = LDAP_OTHER;
425 rs->sr_err = bdb_id2entry_add( op->o_bd, lt2, op->oq_add.rs_e );
426 if ( rs->sr_err != 0 ) {
428 LDAP_LOG ( OPERATION, ERR, "bdb_add: id2entry_add failed\n", 0, 0, 0 );
430 Debug( LDAP_DEBUG_TRACE, "bdb_add: id2entry_add failed\n",
433 switch( rs->sr_err ) {
434 case DB_LOCK_DEADLOCK:
435 case DB_LOCK_NOTGRANTED:
438 rs->sr_err = LDAP_OTHER;
440 rs->sr_text = "entry store failed";
444 /* attribute indexes */
445 rs->sr_err = bdb_index_entry_add( op, lt2, op->oq_add.rs_e );
446 if ( rs->sr_err != LDAP_SUCCESS ) {
448 LDAP_LOG ( OPERATION, ERR,
449 "bdb_add: index_entry_add failed\n", 0, 0, 0 );
451 Debug( LDAP_DEBUG_TRACE, "bdb_add: index_entry_add failed\n",
454 switch( rs->sr_err ) {
455 case DB_LOCK_DEADLOCK:
456 case DB_LOCK_NOTGRANTED:
459 rs->sr_err = LDAP_OTHER;
461 rs->sr_text = "index generation failed";
464 if ( TXN_COMMIT( lt2, 0 ) != 0 ) {
465 rs->sr_err = LDAP_OTHER;
466 rs->sr_text = "txn_commit(2) failed";
470 if ( !op->o_bd->syncinfo ) {
471 rc = bdb_csn_commit( op, rs, ltid, ei, &suffix_ei,
472 &ctxcsn_e, &ctxcsn_added, locker );
482 if (( rs->sr_err=TXN_ABORT( ltid )) != 0 ) {
483 rs->sr_text = "txn_abort (no-op) failed";
486 rs->sr_err = LDAP_SUCCESS;
490 char gid[DB_XIDDATASIZE];
492 memset( gid, 0, sizeof(gid) );
493 snprintf( gid, sizeof( gid ), "%s-%08lx-%08lx",
494 bdb_uuid.bv_val, (long) op->o_connid, (long) op->o_opid );
496 if (( rs->sr_err=TXN_PREPARE( ltid, gid )) != 0 ) {
497 rs->sr_text = "txn_prepare failed";
503 nrdn.bv_val = op->ora_e->e_nname.bv_val;
504 nrdn.bv_len = pdn.bv_val - nrdn.bv_val - 1;
506 nrdn = op->ora_e->e_nname;
509 bdb_cache_add( bdb, ei, op->oq_add.rs_e, &nrdn, locker );
511 if ( suffix_ei == NULL ) {
512 suffix_ei = op->oq_add.rs_e->e_private;
515 if ( !op->o_bd->syncinfo ) {
516 if ( ctxcsn_added ) {
517 bdb_cache_add( bdb, suffix_ei, ctxcsn_e, (struct berval *)&slap_ldapsync_cn_bv, locker );
521 if(( rs->sr_err=TXN_COMMIT( ltid, 0 )) != 0 ) {
522 rs->sr_text = "txn_commit failed";
524 rs->sr_err = LDAP_SUCCESS;
530 op->o_private = NULL;
532 if (rs->sr_err != LDAP_SUCCESS) {
534 LDAP_LOG ( OPERATION, ERR,
535 "bdb_add: %s : %s (%d)\n", rs->sr_text,
536 db_strerror(rs->sr_err), rs->sr_err );
538 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s : %s (%d)\n",
539 rs->sr_text, db_strerror(rs->sr_err), rs->sr_err );
541 rs->sr_err = LDAP_OTHER;
546 LDAP_LOG ( OPERATION, RESULTS,
547 "bdb_add: added%s id=%08lx dn=\"%s\"\n",
548 op->o_noop ? " (no-op)" : "",
549 op->oq_add.rs_e->e_id, op->oq_add.rs_e->e_dn );
551 Debug(LDAP_DEBUG_TRACE, "bdb_add: added%s id=%08lx dn=\"%s\"\n",
552 op->o_noop ? " (no-op)" : "",
553 op->oq_add.rs_e->e_id, op->oq_add.rs_e->e_dn );
557 if( num_ctrls ) rs->sr_ctrls = ctrls;
560 send_ldap_result( op, rs );
562 if ( rs->sr_err == LDAP_SUCCESS && !noop ) {
563 LDAP_LIST_FOREACH ( ps_list, &bdb->bi_psearch_list, o_ps_link ) {
564 bdb_psearch( op, rs, ps_list, op->oq_add.rs_e, LDAP_PSEARCH_BY_ADD );
568 if( rs->sr_err == LDAP_SUCCESS && bdb->bi_txn_cp ) {
569 ldap_pvt_thread_yield();
570 TXN_CHECKPOINT( bdb->bi_dbenv,
571 bdb->bi_txn_cp_kbyte, bdb->bi_txn_cp_min, 0 );
577 op->o_private = NULL;
580 return ( ( rs->sr_err == LDAP_SUCCESS ) ? noop : rs->sr_err );