1 /* add.c - ldap BerkeleyDB back-end add routine */
4 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
11 #include <ac/string.h>
17 bdb_add(Operation *op, SlapReply *rs )
19 struct bdb_info *bdb = (struct bdb_info *) op->o_bd->be_private;
23 char textbuf[SLAP_TEXT_BUFLEN];
24 size_t textlen = sizeof textbuf;
25 AttributeDescription *children = slap_schema.si_ad_children;
26 AttributeDescription *entry = slap_schema.si_ad_entry;
27 DB_TXN *ltid = NULL, *lt2;
28 struct bdb_op_info opinfo;
41 LDAP_LOG ( OPERATION, ARGS, "==> bdb_add: %s\n", op->oq_add.rs_e->e_name.bv_val, 0, 0 );
43 Debug(LDAP_DEBUG_ARGS, "==> bdb_add: %s\n", op->oq_add.rs_e->e_name.bv_val, 0, 0);
46 /* check entry's schema */
47 rs->sr_err = entry_schema_check( op->o_bd, op->oq_add.rs_e, NULL, &rs->sr_text, textbuf, textlen );
48 if ( rs->sr_err != LDAP_SUCCESS ) {
50 LDAP_LOG ( OPERATION, ERR,
51 "bdb_add: entry failed schema check: %s (%d)\n", rs->sr_text, rs->sr_err, 0 );
53 Debug( LDAP_DEBUG_TRACE,
54 "bdb_add: entry failed schema check: %s (%d)\n",
55 rs->sr_text, rs->sr_err, 0 );
61 subentry = is_entry_subentry( op->oq_add.rs_e );
65 * acquire an ID outside of the operation transaction
66 * to avoid serializing adds.
68 rs->sr_err = bdb_next_id( op->o_bd, NULL, &op->oq_add.rs_e->e_id );
69 if( rs->sr_err != 0 ) {
71 LDAP_LOG ( OPERATION, ERR,
72 "bdb_add: next_id failed (%d)\n", rs->sr_err, 0, 0 );
74 Debug( LDAP_DEBUG_TRACE,
75 "bdb_add: next_id failed (%d)\n",
78 rs->sr_err = LDAP_OTHER;
79 rs->sr_text = "internal error";
84 retry: /* transaction retry */
86 /* free parent and reader lock */
87 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
90 rs->sr_err = TXN_ABORT( ltid );
93 op->o_do_not_cache = opinfo.boi_acl_cache;
94 if( rs->sr_err != 0 ) {
95 rs->sr_err = LDAP_OTHER;
96 rs->sr_text = "internal error";
99 ldap_pvt_thread_yield();
102 /* begin transaction */
103 rs->sr_err = TXN_BEGIN( bdb->bi_dbenv, NULL, <id,
104 bdb->bi_db_opflags );
106 if( rs->sr_err != 0 ) {
108 LDAP_LOG ( OPERATION, ERR,
109 "bdb_add: txn_begin failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
111 Debug( LDAP_DEBUG_TRACE,
112 "bdb_add: txn_begin failed: %s (%d)\n",
113 db_strerror(rs->sr_err), rs->sr_err, 0 );
115 rs->sr_err = LDAP_OTHER;
116 rs->sr_text = "internal error";
120 locker = TXN_ID ( ltid );
122 opinfo.boi_bdb = op->o_bd;
123 opinfo.boi_txn = ltid;
124 opinfo.boi_locker = locker;
126 opinfo.boi_acl_cache = op->o_do_not_cache;
127 op->o_private = &opinfo;
130 * Get the parent dn and see if the corresponding entry exists.
131 * If the parent does not exist, only allow the "root" user to
134 if ( be_issuffix( op->o_bd, &op->oq_add.rs_e->e_nname ) ) {
137 dnParent( &op->oq_add.rs_e->e_nname, &pdn );
140 /* get entry or parent */
141 rs->sr_err = bdb_dn2entry( op, ltid, &op->ora_e->e_nname, &ei,
143 switch( rs->sr_err ) {
145 rs->sr_err = LDAP_ALREADY_EXISTS;
149 case DB_LOCK_DEADLOCK:
150 case DB_LOCK_NOTGRANTED:
153 rs->sr_text = "ldap server busy";
156 rs->sr_err = LDAP_OTHER;
157 rs->sr_text = "internal error";
163 if ( !bvmatch( &pdn, &p->e_nname ) ) {
164 rs->sr_matched = ber_strdup_x( p->e_name.bv_val,
166 rs->sr_ref = is_entry_referral( p )
167 ? get_entry_referrals( op, p )
169 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
172 LDAP_LOG ( OPERATION, DETAIL1,
173 "bdb_add: parent does not exist\n", 0, 0, 0 );
175 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent does not exist\n",
179 rs->sr_err = LDAP_REFERRAL;
180 send_ldap_result( op, rs );
182 ber_bvarray_free( rs->sr_ref );
183 op->o_tmpfree( (char *)rs->sr_matched, op->o_tmpmemctx );
185 rs->sr_matched = NULL;
190 rs->sr_err = access_allowed( op, p,
191 children, NULL, ACL_WRITE, NULL );
193 if ( ! rs->sr_err ) {
194 switch( opinfo.boi_err ) {
195 case DB_LOCK_DEADLOCK:
196 case DB_LOCK_NOTGRANTED:
201 LDAP_LOG ( OPERATION, DETAIL1,
202 "bdb_add: no write access to parent\n", 0, 0, 0 );
204 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to parent\n",
207 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
208 rs->sr_text = "no write access to parent";
209 goto return_results;;
212 #ifdef BDB_SUBENTRIES
213 if ( is_entry_subentry( p ) ) {
214 /* parent is a subentry, don't allow add */
216 LDAP_LOG ( OPERATION, DETAIL1,
217 "bdb_add: parent is subentry\n", 0, 0, 0 );
219 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is subentry\n",
222 rs->sr_err = LDAP_OBJECT_CLASS_VIOLATION;
223 rs->sr_text = "parent is a subentry";
224 goto return_results;;
228 if ( is_entry_alias( p ) ) {
229 /* parent is an alias, don't allow add */
231 LDAP_LOG ( OPERATION, DETAIL1,
232 "bdb_add: parent is alias\n", 0, 0, 0 );
234 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is alias\n",
237 rs->sr_err = LDAP_ALIAS_PROBLEM;
238 rs->sr_text = "parent is an alias";
239 goto return_results;;
243 if ( is_entry_referral( p ) ) {
244 /* parent is a referral, don't allow add */
245 rs->sr_matched = p->e_name.bv_val;
246 rs->sr_ref = get_entry_referrals( op, p );
249 LDAP_LOG ( OPERATION, DETAIL1,
250 "bdb_add: parent is referral\n", 0, 0, 0 );
252 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is referral\n",
256 rs->sr_err = LDAP_REFERRAL;
257 send_ldap_result( op, rs );
259 ber_bvarray_free( rs->sr_ref );
260 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
262 rs->sr_matched = NULL;
267 #ifdef BDB_SUBENTRIES
270 /* parent must be an administrative point of the required kind */
274 /* free parent and reader lock */
275 bdb_unlocked_cache_return_entry_r( &bdb->bi_cache, p );
281 * must be adding entry at suffix or with parent ""
283 if ( !be_isroot( op->o_bd, &op->o_ndn )) {
284 if ( be_issuffix( op->o_bd, (struct berval *)&slap_empty_bv )
285 || be_isupdate( op->o_bd, &op->o_ndn ) )
287 p = (Entry *)&slap_entry_root;
289 /* check parent for "children" acl */
290 rs->sr_err = access_allowed( op, p,
291 children, NULL, ACL_WRITE, NULL );
295 if ( ! rs->sr_err ) {
296 switch( opinfo.boi_err ) {
297 case DB_LOCK_DEADLOCK:
298 case DB_LOCK_NOTGRANTED:
303 LDAP_LOG ( OPERATION, DETAIL1,
304 "bdb_add: no write access to parent\n", 0, 0, 0 );
306 Debug( LDAP_DEBUG_TRACE,
307 "bdb_add: no write access to parent\n",
310 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
311 rs->sr_text = "no write access to parent";
312 goto return_results;;
317 LDAP_LOG ( OPERATION, DETAIL1, "bdb_add: %s denied\n",
318 pdn.bv_len == 0 ? "suffix" : "entry at root", 0, 0 );
320 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s denied\n",
321 pdn.bv_len == 0 ? "suffix" : "entry at root",
324 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
329 #ifdef BDB_SUBENTRIES
332 LDAP_LOG ( OPERATION, DETAIL1,
333 "bdb_add: no parent, cannot add subentry\n", 0, 0, 0 );
335 Debug( LDAP_DEBUG_TRACE,
336 "bdb_add: no parent, cannot add subentry\n",
339 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
340 rs->sr_text = "no parent, cannot add subentry";
341 goto return_results;;
346 if ( get_assert( op ) &&
347 ( test_filter( op, op->oq_add.rs_e, get_assertion( op ))
348 != LDAP_COMPARE_TRUE ))
350 rs->sr_err = LDAP_ASSERTION_FAILED;
354 rs->sr_err = access_allowed( op, op->oq_add.rs_e,
355 entry, NULL, ACL_WRITE, NULL );
357 if ( ! rs->sr_err ) {
358 switch( opinfo.boi_err ) {
359 case DB_LOCK_DEADLOCK:
360 case DB_LOCK_NOTGRANTED:
365 LDAP_LOG ( OPERATION, DETAIL1,
366 "bdb_add: no write access to entry\n", 0, 0, 0 );
368 Debug( LDAP_DEBUG_TRACE, "bdb_add: no write access to entry\n",
371 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
372 rs->sr_text = "no write access to entry";
373 goto return_results;;
376 /* nested transaction */
377 rs->sr_err = TXN_BEGIN( bdb->bi_dbenv, ltid, <2,
378 bdb->bi_db_opflags );
380 if( rs->sr_err != 0 ) {
382 LDAP_LOG ( OPERATION, ERR,
383 "bdb_add: txn_begin(2) failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
385 Debug( LDAP_DEBUG_TRACE,
386 "bdb_add: txn_begin(2) failed: %s (%d)\n",
387 db_strerror(rs->sr_err), rs->sr_err, 0 );
389 rs->sr_err = LDAP_OTHER;
390 rs->sr_text = "internal error";
395 rs->sr_err = bdb_dn2id_add( op, lt2, ei, op->oq_add.rs_e );
396 if ( rs->sr_err != 0 ) {
398 LDAP_LOG ( OPERATION, ERR,
399 "bdb_add: dn2id_add failed: %s (%d)\n", db_strerror(rs->sr_err), rs->sr_err, 0 );
401 Debug( LDAP_DEBUG_TRACE, "bdb_add: dn2id_add failed: %s (%d)\n",
402 db_strerror(rs->sr_err), rs->sr_err, 0 );
405 switch( rs->sr_err ) {
406 case DB_LOCK_DEADLOCK:
407 case DB_LOCK_NOTGRANTED:
410 rs->sr_err = LDAP_ALREADY_EXISTS;
413 rs->sr_err = LDAP_OTHER;
419 rs->sr_err = bdb_id2entry_add( op->o_bd, lt2, op->oq_add.rs_e );
420 if ( rs->sr_err != 0 ) {
422 LDAP_LOG ( OPERATION, ERR, "bdb_add: id2entry_add failed\n", 0, 0, 0 );
424 Debug( LDAP_DEBUG_TRACE, "bdb_add: id2entry_add failed\n",
427 switch( rs->sr_err ) {
428 case DB_LOCK_DEADLOCK:
429 case DB_LOCK_NOTGRANTED:
432 rs->sr_err = LDAP_OTHER;
434 rs->sr_text = "entry store failed";
438 /* attribute indexes */
439 rs->sr_err = bdb_index_entry_add( op, lt2, op->oq_add.rs_e );
440 if ( rs->sr_err != LDAP_SUCCESS ) {
442 LDAP_LOG ( OPERATION, ERR,
443 "bdb_add: index_entry_add failed\n", 0, 0, 0 );
445 Debug( LDAP_DEBUG_TRACE, "bdb_add: index_entry_add failed\n",
448 switch( rs->sr_err ) {
449 case DB_LOCK_DEADLOCK:
450 case DB_LOCK_NOTGRANTED:
453 rs->sr_err = LDAP_OTHER;
455 rs->sr_text = "index generation failed";
458 if ( TXN_COMMIT( lt2, 0 ) != 0 ) {
459 rs->sr_err = LDAP_OTHER;
460 rs->sr_text = "txn_commit(2) failed";
465 if (( rs->sr_err=TXN_ABORT( ltid )) != 0 ) {
466 rs->sr_text = "txn_abort (no-op) failed";
469 rs->sr_err = LDAP_SUCCESS;
473 char gid[DB_XIDDATASIZE];
475 snprintf( gid, sizeof( gid ), "%s-%08lx-%08lx",
476 bdb_uuid.bv_val, (long) op->o_connid, (long) op->o_opid );
478 if (( rs->sr_err=TXN_PREPARE( ltid, gid )) != 0 ) {
479 rs->sr_text = "txn_prepare failed";
485 nrdn.bv_val = op->ora_e->e_nname.bv_val;
486 nrdn.bv_len = pdn.bv_val - nrdn.bv_val - 1;
488 nrdn = op->ora_e->e_nname;
491 bdb_cache_add(bdb, ei, op->oq_add.rs_e, &nrdn, locker );
493 if(( rs->sr_err=TXN_COMMIT( ltid, 0 )) != 0 ) {
494 rs->sr_text = "txn_commit failed";
496 rs->sr_err = LDAP_SUCCESS;
502 op->o_private = NULL;
504 if (rs->sr_err == LDAP_SUCCESS) {
506 LDAP_LOG ( OPERATION, RESULTS,
507 "bdb_add: added%s id=%08lx dn=\"%s\"\n",
508 op->o_noop ? " (no-op)" : "", op->oq_add.rs_e->e_id, op->oq_add.rs_e->e_dn );
510 Debug(LDAP_DEBUG_TRACE, "bdb_add: added%s id=%08lx dn=\"%s\"\n",
511 op->o_noop ? " (no-op)" : "", op->oq_add.rs_e->e_id, op->oq_add.rs_e->e_dn );
517 LDAP_LOG ( OPERATION, ERR,
518 "bdb_add: %s : %s (%d)\n", rs->sr_text, db_strerror(rs->sr_err), rs->sr_err );
520 Debug( LDAP_DEBUG_TRACE, "bdb_add: %s : %s (%d)\n",
521 rs->sr_text, db_strerror(rs->sr_err), rs->sr_err );
523 rs->sr_err = LDAP_OTHER;
527 send_ldap_result( op, rs );
530 if ( rs->sr_err == LDAP_SUCCESS && !noop ) {
531 LDAP_LIST_FOREACH ( ps_list, &bdb->bi_psearch_list, o_ps_link ) {
532 bdb_psearch( op, rs, ps_list, op->oq_add.rs_e, LDAP_PSEARCH_BY_ADD );
537 if( rs->sr_err == LDAP_SUCCESS && bdb->bi_txn_cp ) {
538 ldap_pvt_thread_yield();
539 TXN_CHECKPOINT( bdb->bi_dbenv,
540 bdb->bi_txn_cp_kbyte, bdb->bi_txn_cp_min, 0 );
547 op->o_private = NULL;
550 return ( ( rs->sr_err == LDAP_SUCCESS ) ? noop : rs->sr_err );
projects / openldap / blob