1 /* add.c - ldap BerkeleyDB back-end add routine */
4 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
11 #include <ac/string.h>
17 bdb_add(Operation *op, SlapReply *rs )
19 struct bdb_info *bdb = (struct bdb_info *) op->o_bd->be_private;
23 char textbuf[SLAP_TEXT_BUFLEN];
24 size_t textlen = sizeof textbuf;
25 AttributeDescription *children = slap_schema.si_ad_children;
26 AttributeDescription *entry = slap_schema.si_ad_entry;
27 DB_TXN *ltid = NULL, *lt2;
28 struct bdb_op_info opinfo;
40 EntryInfo *suffix_ei = NULL;
44 LDAPControl *ctrls[SLAP_MAX_RESPONSE_CONTROLS];
48 LDAP_LOG ( OPERATION, ARGS, "==> bdb_add: %s\n", op->oq_add.rs_e->e_name.bv_val, 0, 0 );
50 Debug(LDAP_DEBUG_ARGS, "==> bdb_add: %s\n", op->oq_add.rs_e->e_name.bv_val, 0, 0);
53 /* check entry's schema */
54 rs->sr_err = entry_schema_check( op->o_bd, op->oq_add.rs_e, NULL, &rs->sr_text, textbuf, textlen );
55 if ( rs->sr_err != LDAP_SUCCESS ) {
57 LDAP_LOG ( OPERATION, ERR,
58 "bdb_add: entry failed schema check: %s (%d)\n", rs->sr_text, rs->sr_err, 0 );
60 Debug( LDAP_DEBUG_TRACE,
61 "bdb_add: entry failed schema check: %s (%d)\n",
62 rs->sr_text, rs->sr_err, 0 );
68 subentry = is_entry_subentry( op->oq_add.rs_e );
72 * acquire an ID outside of the operation transaction
73 * to avoid serializing adds.
75 rs->sr_err = bdb_next_id( op->o_bd, NULL, &op->oq_add.rs_e->e_id );
76 if( rs->sr_err != 0 ) {
78 LDAP_LOG ( OPERATION, ERR,
79 "bdb_add: next_id failed (%d)\n", rs->sr_err, 0, 0 );
81 Debug( LDAP_DEBUG_TRACE,
82 "bdb_add: next_id failed (%d)\n", rs->sr_err, 0, 0 );
84 rs->sr_err = LDAP_OTHER;
85 rs->sr_text = "internal error";
90 retry: /* transaction retry */
92 /* free parent and reader lock */
93 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
96 rs->sr_err = TXN_ABORT( ltid );
99 op->o_do_not_cache = opinfo.boi_acl_cache;
100 if( rs->sr_err != 0 ) {
101 rs->sr_err = LDAP_OTHER;
102 rs->sr_text = "internal error";
105 ldap_pvt_thread_yield();
106 bdb_trans_backoff( ++num_retries );
109 /* begin transaction */
110 rs->sr_err = TXN_BEGIN( bdb->bi_dbenv, NULL, <id,
111 bdb->bi_db_opflags );
113 if( rs->sr_err != 0 ) {
115 LDAP_LOG ( OPERATION, ERR,
116 "bdb_add: txn_begin failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
118 Debug( LDAP_DEBUG_TRACE,
119 "bdb_add: txn_begin failed: %s (%d)\n",
120 db_strerror(rs->sr_err), rs->sr_err, 0 );
122 rs->sr_err = LDAP_OTHER;
123 rs->sr_text = "internal error";
127 locker = TXN_ID ( ltid );
129 opinfo.boi_bdb = op->o_bd;
130 opinfo.boi_txn = ltid;
131 opinfo.boi_locker = locker;
133 opinfo.boi_acl_cache = op->o_do_not_cache;
134 op->o_private = &opinfo;
137 * Get the parent dn and see if the corresponding entry exists.
138 * If the parent does not exist, only allow the "root" user to
141 if ( be_issuffix( op->o_bd, &op->oq_add.rs_e->e_nname ) ) {
144 dnParent( &op->oq_add.rs_e->e_nname, &pdn );
147 /* get entry or parent */
148 rs->sr_err = bdb_dn2entry( op, ltid, &op->ora_e->e_nname, &ei,
150 switch( rs->sr_err ) {
152 rs->sr_err = LDAP_ALREADY_EXISTS;
156 case DB_LOCK_DEADLOCK:
157 case DB_LOCK_NOTGRANTED:
160 rs->sr_text = "ldap server busy";
163 rs->sr_err = LDAP_OTHER;
164 rs->sr_text = "internal error";
170 if ( !bvmatch( &pdn, &p->e_nname ) ) {
171 rs->sr_matched = ber_strdup_x( p->e_name.bv_val,
173 rs->sr_ref = is_entry_referral( p )
174 ? get_entry_referrals( op, p )
176 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
179 LDAP_LOG ( OPERATION, DETAIL1,
180 "bdb_add: parent does not exist\n", 0, 0, 0 );
182 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent does not exist\n",
186 rs->sr_err = LDAP_REFERRAL;
187 send_ldap_result( op, rs );
189 ber_bvarray_free( rs->sr_ref );
190 op->o_tmpfree( (char *)rs->sr_matched, op->o_tmpmemctx );
192 rs->sr_matched = NULL;
197 rs->sr_err = access_allowed( op, p,
198 children, NULL, ACL_WRITE, NULL );
200 if ( ! rs->sr_err ) {
201 switch( opinfo.boi_err ) {
202 case DB_LOCK_DEADLOCK:
203 case DB_LOCK_NOTGRANTED:
208 LDAP_LOG ( OPERATION, DETAIL1,
209 "bdb_add: no write access to parent\n", 0, 0, 0 );
211 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to parent\n",
214 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
215 rs->sr_text = "no write access to parent";
216 goto return_results;;
219 #ifdef BDB_SUBENTRIES
220 if ( is_entry_subentry( p ) ) {
221 /* parent is a subentry, don't allow add */
223 LDAP_LOG ( OPERATION, DETAIL1,
224 "bdb_add: parent is subentry\n", 0, 0, 0 );
226 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is subentry\n",
229 rs->sr_err = LDAP_OBJECT_CLASS_VIOLATION;
230 rs->sr_text = "parent is a subentry";
231 goto return_results;;
235 if ( is_entry_alias( p ) ) {
236 /* parent is an alias, don't allow add */
238 LDAP_LOG ( OPERATION, DETAIL1,
239 "bdb_add: parent is alias\n", 0, 0, 0 );
241 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is alias\n",
244 rs->sr_err = LDAP_ALIAS_PROBLEM;
245 rs->sr_text = "parent is an alias";
246 goto return_results;;
250 if ( is_entry_referral( p ) ) {
251 /* parent is a referral, don't allow add */
252 rs->sr_matched = p->e_name.bv_val;
253 rs->sr_ref = get_entry_referrals( op, p );
256 LDAP_LOG ( OPERATION, DETAIL1,
257 "bdb_add: parent is referral\n", 0, 0, 0 );
259 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is referral\n",
263 rs->sr_err = LDAP_REFERRAL;
264 send_ldap_result( op, rs );
266 ber_bvarray_free( rs->sr_ref );
267 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
269 rs->sr_matched = NULL;
274 #ifdef BDB_SUBENTRIES
277 /* parent must be an administrative point of the required kind */
281 /* free parent and reader lock */
282 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
288 * must be adding entry at suffix or with parent ""
290 if ( !be_isroot( op->o_bd, &op->o_ndn )) {
291 if ( be_issuffix( op->o_bd, (struct berval *)&slap_empty_bv )
292 || be_isupdate( op->o_bd, &op->o_ndn ) )
294 p = (Entry *)&slap_entry_root;
296 /* check parent for "children" acl */
297 rs->sr_err = access_allowed( op, p,
298 children, NULL, ACL_WRITE, NULL );
302 if ( ! rs->sr_err ) {
303 switch( opinfo.boi_err ) {
304 case DB_LOCK_DEADLOCK:
305 case DB_LOCK_NOTGRANTED:
310 LDAP_LOG ( OPERATION, DETAIL1,
311 "bdb_add: no write access to parent\n", 0, 0, 0 );
313 Debug( LDAP_DEBUG_TRACE,
314 "bdb_add: no write access to parent\n",
317 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
318 rs->sr_text = "no write access to parent";
321 } else if ( !is_entry_glue( op->oq_add.rs_e )) {
323 LDAP_LOG ( OPERATION, DETAIL1, "bdb_add: %s denied\n",
324 pdn.bv_len == 0 ? "suffix" : "entry at root", 0, 0 );
326 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s denied\n",
327 pdn.bv_len == 0 ? "suffix" : "entry at root",
330 rs->sr_err = LDAP_NO_SUCH_OBJECT;
335 #ifdef BDB_SUBENTRIES
338 LDAP_LOG ( OPERATION, DETAIL1,
339 "bdb_add: no parent, cannot add subentry\n", 0, 0, 0 );
341 Debug( LDAP_DEBUG_TRACE,
342 "bdb_add: no parent, cannot add subentry\n",
345 rs->sr_err = LDAP_NO_SUCH_OBJECT;
346 rs->sr_text = "no parent, cannot add subentry";
352 if ( get_assert( op ) &&
353 ( test_filter( op, op->oq_add.rs_e, get_assertion( op ))
354 != LDAP_COMPARE_TRUE ))
356 rs->sr_err = LDAP_ASSERTION_FAILED;
360 rs->sr_err = access_allowed( op, op->oq_add.rs_e,
361 entry, NULL, ACL_WRITE, NULL );
363 if ( ! rs->sr_err ) {
364 switch( opinfo.boi_err ) {
365 case DB_LOCK_DEADLOCK:
366 case DB_LOCK_NOTGRANTED:
371 LDAP_LOG ( OPERATION, DETAIL1,
372 "bdb_add: no write access to entry\n", 0, 0, 0 );
374 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to entry\n",
377 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
378 rs->sr_text = "no write access to entry";
379 goto return_results;;
383 if( op->o_postread ) {
384 if ( slap_read_controls( op, rs, op->oq_add.rs_e,
385 &slap_post_read_bv, &ctrls[num_ctrls] ) )
388 LDAP_LOG ( OPERATION, DETAIL1,
389 "<=- bdb_add: post-read failed!\n", 0, 0, 0 );
391 Debug( LDAP_DEBUG_TRACE,
392 "<=- bdb_add: post-read failed!\n", 0, 0, 0 );
396 ctrls[++num_ctrls] = NULL;
399 /* nested transaction */
400 rs->sr_err = TXN_BEGIN( bdb->bi_dbenv, ltid, <2,
401 bdb->bi_db_opflags );
403 if( rs->sr_err != 0 ) {
405 LDAP_LOG ( OPERATION, ERR,
406 "bdb_add: txn_begin(2) failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
408 Debug( LDAP_DEBUG_TRACE,
409 "bdb_add: txn_begin(2) failed: %s (%d)\n",
410 db_strerror(rs->sr_err), rs->sr_err, 0 );
412 rs->sr_err = LDAP_OTHER;
413 rs->sr_text = "internal error";
418 rs->sr_err = bdb_dn2id_add( op, lt2, ei, op->oq_add.rs_e );
419 if ( rs->sr_err != 0 ) {
421 LDAP_LOG ( OPERATION, ERR,
422 "bdb_add: dn2id_add failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
424 Debug( LDAP_DEBUG_TRACE, "bdb_add: dn2id_add failed: %s (%d)\n",
425 db_strerror(rs->sr_err), rs->sr_err, 0 );
428 switch( rs->sr_err ) {
429 case DB_LOCK_DEADLOCK:
430 case DB_LOCK_NOTGRANTED:
433 rs->sr_err = LDAP_ALREADY_EXISTS;
436 rs->sr_err = LDAP_OTHER;
442 rs->sr_err = bdb_id2entry_add( op->o_bd, lt2, op->oq_add.rs_e );
443 if ( rs->sr_err != 0 ) {
445 LDAP_LOG ( OPERATION, ERR, "bdb_add: id2entry_add failed\n", 0, 0, 0 );
447 Debug( LDAP_DEBUG_TRACE, "bdb_add: id2entry_add failed\n",
450 switch( rs->sr_err ) {
451 case DB_LOCK_DEADLOCK:
452 case DB_LOCK_NOTGRANTED:
455 rs->sr_err = LDAP_OTHER;
457 rs->sr_text = "entry store failed";
461 /* attribute indexes */
462 rs->sr_err = bdb_index_entry_add( op, lt2, op->oq_add.rs_e );
463 if ( rs->sr_err != LDAP_SUCCESS ) {
465 LDAP_LOG ( OPERATION, ERR,
466 "bdb_add: index_entry_add failed\n", 0, 0, 0 );
468 Debug( LDAP_DEBUG_TRACE, "bdb_add: index_entry_add failed\n",
471 switch( rs->sr_err ) {
472 case DB_LOCK_DEADLOCK:
473 case DB_LOCK_NOTGRANTED:
476 rs->sr_err = LDAP_OTHER;
478 rs->sr_text = "index generation failed";
481 if ( TXN_COMMIT( lt2, 0 ) != 0 ) {
482 rs->sr_err = LDAP_OTHER;
483 rs->sr_text = "txn_commit(2) failed";
487 if ( !op->o_bd->syncinfo ) {
488 rc = bdb_csn_commit( op, rs, ltid, ei, &suffix_ei,
489 &ctxcsn_e, &ctxcsn_added, locker );
499 if (( rs->sr_err=TXN_ABORT( ltid )) != 0 ) {
500 rs->sr_text = "txn_abort (no-op) failed";
503 rs->sr_err = LDAP_SUCCESS;
507 char gid[DB_XIDDATASIZE];
509 memset( gid, 0, sizeof(gid) );
510 snprintf( gid, sizeof( gid ), "%s-%08lx-%08lx",
511 bdb_uuid.bv_val, (long) op->o_connid, (long) op->o_opid );
513 if (( rs->sr_err=TXN_PREPARE( ltid, gid )) != 0 ) {
514 rs->sr_text = "txn_prepare failed";
520 nrdn.bv_val = op->ora_e->e_nname.bv_val;
521 nrdn.bv_len = pdn.bv_val - nrdn.bv_val - 1;
523 nrdn = op->ora_e->e_nname;
526 bdb_cache_add( bdb, ei, op->oq_add.rs_e, &nrdn, locker );
528 if ( suffix_ei == NULL ) {
529 suffix_ei = op->oq_add.rs_e->e_private;
532 if ( !op->o_bd->syncinfo ) {
533 if ( ctxcsn_added ) {
534 bdb_cache_add( bdb, suffix_ei, ctxcsn_e, (struct berval *)&slap_ldapsync_cn_bv, locker );
538 if(( rs->sr_err=TXN_COMMIT( ltid, 0 )) != 0 ) {
539 rs->sr_text = "txn_commit failed";
541 rs->sr_err = LDAP_SUCCESS;
547 op->o_private = NULL;
549 if (rs->sr_err != LDAP_SUCCESS) {
551 LDAP_LOG ( OPERATION, ERR,
552 "bdb_add: %s : %s (%d)\n", rs->sr_text,
553 db_strerror(rs->sr_err), rs->sr_err );
555 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s : %s (%d)\n",
556 rs->sr_text, db_strerror(rs->sr_err), rs->sr_err );
558 rs->sr_err = LDAP_OTHER;
563 LDAP_LOG ( OPERATION, RESULTS,
564 "bdb_add: added%s id=%08lx dn=\"%s\"\n",
565 op->o_noop ? " (no-op)" : "",
566 op->oq_add.rs_e->e_id, op->oq_add.rs_e->e_dn );
568 Debug(LDAP_DEBUG_TRACE, "bdb_add: added%s id=%08lx dn=\"%s\"\n",
569 op->o_noop ? " (no-op)" : "",
570 op->oq_add.rs_e->e_id, op->oq_add.rs_e->e_dn );
574 if( num_ctrls ) rs->sr_ctrls = ctrls;
577 send_ldap_result( op, rs );
579 if ( rs->sr_err == LDAP_SUCCESS && !noop ) {
580 LDAP_LIST_FOREACH ( ps_list, &bdb->bi_psearch_list, o_ps_link ) {
581 bdb_psearch( op, rs, ps_list, op->oq_add.rs_e, LDAP_PSEARCH_BY_ADD );
585 if( rs->sr_err == LDAP_SUCCESS && bdb->bi_txn_cp ) {
586 ldap_pvt_thread_yield();
587 TXN_CHECKPOINT( bdb->bi_dbenv,
588 bdb->bi_txn_cp_kbyte, bdb->bi_txn_cp_min, 0 );
594 op->o_private = NULL;
597 return ( ( rs->sr_err == LDAP_SUCCESS ) ? noop : rs->sr_err );