git.sur5r.net Git - openldap/blob - servers/slapd/back-ldap/add.c

   1 /* add.c - ldap backend add function */
   2 /* $OpenLDAP$ */
   3 /*
   4  * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
   5  * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
   6  */
   7 /* This is an altered version */
   8 /*
   9  * Copyright 1999, Howard Chu, All rights reserved. <hyc@highlandsun.com>
  10  *
  11  * Permission is granted to anyone to use this software for any purpose
  12  * on any computer system, and to alter it and redistribute it, subject
  13  * to the following restrictions:
  14  *
  15  * 1. The author is not responsible for the consequences of use of this
  16  *    software, no matter how awful, even if they arise from flaws in it.
  17  *
  18  * 2. The origin of this software must not be misrepresented, either by
  19  *    explicit claim or by omission.  Since few users ever read sources,
  20  *    credits should appear in the documentation.
  21  *
  22  * 3. Altered versions must be plainly marked as such, and must not be
  23  *    misrepresented as being the original software.  Since few users
  24  *    ever read sources, credits should appear in the documentation.
  25  *
  26  * 4. This notice may not be removed or altered.
  27  *
  28  *
  29  *
  30  * Copyright 2000, Pierangelo Masarati, All rights reserved. <ando@sys-net.it>
  31  *
  32  * This software is being modified by Pierangelo Masarati.
  33  * The previously reported conditions apply to the modified code as well.
  34  * Changes in the original code are highlighted where required.
  35  * Credits for the original code go to the author, Howard Chu.
  36  */
  37
  38 #include "portable.h"
  39
  40 #include <stdio.h>
  41
  42 #include <ac/string.h>
  43 #include <ac/socket.h>
  44
  45 #include "slap.h"
  46 #include "back-ldap.h"
  47
  48 int
  49 ldap_back_add(
  50     Backend     *be,
  51     Connection  *conn,
  52     Operation   *op,
  53     Entry       *e
  54 )
  55 {
  56         struct ldapinfo *li = (struct ldapinfo *) be->be_private;
  57         struct ldapconn *lc;
  58         int i, j;
  59         Attribute *a;
  60         LDAPMod **attrs;
  61         struct berval mapped;
  62         struct berval mdn = { 0, NULL };
  63
  64 #ifdef NEW_LOGGING
  65         LDAP_LOG( BACK_LDAP, ENTRY, "ldap_back_add: %s\n", e->e_dn, 0, 0 );
  66 #else /* !NEW_LOGGING */
  67         Debug(LDAP_DEBUG_ARGS, "==> ldap_back_add: %s\n", e->e_dn, 0, 0);
  68 #endif /* !NEW_LOGGING */
  69
  70         lc = ldap_back_getconn(li, conn, op);
  71         if ( !lc || !ldap_back_dobind( lc, op ) ) {
  72                 return( -1 );
  73         }
  74
  75         /*
  76          * Rewrite the add dn, if needed
  77          */
  78 #ifdef ENABLE_REWRITE
  79         switch (rewrite_session( li->rwinfo, "addDn", e->e_dn, conn,
  80                                 &mdn.bv_val )) {
  81         case REWRITE_REGEXEC_OK:
  82                 if ( mdn.bv_val != NULL && mdn.bv_val[ 0 ] != '\0' ) {
  83                         mdn.bv_len = strlen( mdn.bv_val );
  84                 } else {
  85                         mdn = e->e_name;
  86                 }
  87 #ifdef NEW_LOGGING
  88                 LDAP_LOG( BACK_LDAP, DETAIL1,
  89                         "[rw] addDn: \"%s\" -> \"%s\"\n", e->e_dn, mdn.bv_val, 0 );
  90 #else /* !NEW_LOGGING */
  91                 Debug( LDAP_DEBUG_ARGS, "rw> addDn: \"%s\" -> \"%s\"\n%s",
  92                                 e->e_dn, mdn.bv_val, "" );
  93 #endif /* !NEW_LOGGING */
  94                 break;
  95
  96         case REWRITE_REGEXEC_UNWILLING:
  97                 send_ldap_result( conn, op, LDAP_UNWILLING_TO_PERFORM,
  98                                 NULL, "Operation not allowed", NULL, NULL );
  99                 return( -1 );
 100
 101         case REWRITE_REGEXEC_ERR:
 102                 send_ldap_result( conn, op, LDAP_OTHER,
 103                                 NULL, "Rewrite error", NULL, NULL );
 104                 return( -1 );
 105         }
 106 #else /* !ENABLE_REWRITE */
 107         ldap_back_dn_massage( li, &e->e_name, &mdn, 0, 1 );
 108 #endif /* !ENABLE_REWRITE */
 109
 110         /* Count number of attributes in entry */
 111         for (i = 1, a = e->e_attrs; a; i++, a = a->a_next)
 112                 ;
 113
 114         /* Create array of LDAPMods for ldap_add() */
 115         attrs = (LDAPMod **)ch_malloc(sizeof(LDAPMod *)*i);
 116
 117         for (i=0, a=e->e_attrs; a; a=a->a_next) {
 118                 /*
 119                  * lastmod should always be <off>, so that
 120                  * creation/modification operational attrs
 121                  * of the target directory are used, if available
 122                  */
 123 #if 0
 124                 if ( !strcasecmp( a->a_desc->ad_cname.bv_val,
 125                         slap_schema.si_ad_creatorsName->ad_cname.bv_val )
 126                         || !strcasecmp( a->a_desc->ad_cname.bv_val,
 127                         slap_schema.si_ad_createTimestamp->ad_cname.bv_val )
 128                         || !strcasecmp( a->a_desc->ad_cname.bv_val,
 129                         slap_schema.si_ad_modifiersName->ad_cname.bv_val )
 130                         || !strcasecmp( a->a_desc->ad_cname.bv_val,
 131                         slap_schema.si_ad_modifyTimestamp->ad_cname.bv_val )
 132                 ) {
 133                         continue;
 134                 }
 135 #endif
 136
 137                 if ( a->a_desc->ad_type->sat_no_user_mod  ) {
 138                         continue;
 139                 }
 140
 141                 ldap_back_map(&li->at_map, &a->a_desc->ad_cname, &mapped, 0);
 142                 if (mapped.bv_val == NULL) {
 143                         continue;
 144                 }
 145
 146                 attrs[i] = (LDAPMod *)ch_malloc(sizeof(LDAPMod));
 147                 if (attrs[i] == NULL) {
 148                         continue;
 149                 }
 150
 151                 attrs[i]->mod_op = LDAP_MOD_BVALUES;
 152                 attrs[i]->mod_type = mapped.bv_val;
 153
 154 #ifdef ENABLE_REWRITE
 155                 /*
 156                  * FIXME: dn-valued attrs should be rewritten
 157                  * to allow their use in ACLs at back-ldap level.
 158                  */
 159                 if ( strcmp( a->a_desc->ad_type->sat_syntax->ssyn_oid,
 160                                         SLAPD_DN_SYNTAX ) == 0 ) {
 161                         /*
 162                          * FIXME: rewrite could fail; in this case
 163                          * the operation should give up, right?
 164                          */
 165                         (void)ldap_dnattr_rewrite( li->rwinfo, a->a_vals, conn );
 166                 }
 167 #endif /* ENABLE_REWRITE */
 168
 169                 for (j=0; a->a_vals[j].bv_val; j++);
 170                 attrs[i]->mod_vals.modv_bvals = ch_malloc((j+1)*sizeof(struct berval *));
 171                 for (j=0; a->a_vals[j].bv_val; j++)
 172                         attrs[i]->mod_vals.modv_bvals[j] = &a->a_vals[j];
 173                 attrs[i]->mod_vals.modv_bvals[j] = NULL;
 174                 i++;
 175         }
 176         attrs[i] = NULL;
 177
 178         ldap_add_s(lc->ld, mdn.bv_val, attrs);
 179         for (--i; i>= 0; --i) {
 180                 ch_free(attrs[i]->mod_vals.modv_bvals);
 181                 ch_free(attrs[i]);
 182         }
 183         ch_free(attrs);
 184         if ( mdn.bv_val != e->e_dn ) {
 185                 free( mdn.bv_val );
 186         }
 187
 188         return( ldap_back_op_result( lc, op ) );
 189 }
 190
 191 #ifdef ENABLE_REWRITE
 192 int
 193 ldap_dnattr_rewrite(
 194                 struct rewrite_info     *rwinfo,
 195                 BerVarray                       a_vals,
 196                 void                    *cookie
 197 )
 198 {
 199         char *mattr;
 200
 201         for ( ; a_vals->bv_val != NULL; a_vals++ ) {
 202                 switch ( rewrite_session( rwinfo, "bindDn", a_vals->bv_val,
 203                                         cookie, &mattr )) {
 204                 case REWRITE_REGEXEC_OK:
 205                         if ( mattr == NULL ) {
 206                                 /* no substitution */
 207                                 continue;
 208                         }
 209 #ifdef NEW_LOGGING
 210                         LDAP_LOG( BACK_LDAP, DETAIL1,
 211                                 "[rw] bindDn (in add of dn-valued"
 212                                 " attr): \"%s\" -> \"%s\"\n", a_vals->bv_val, mattr, 0 );
 213 #else /* !NEW_LOGGING */
 214                         Debug( LDAP_DEBUG_ARGS,
 215                                         "rw> bindDn (in add of dn-valued attr):"
 216                                         " \"%s\" -> \"%s\"\n%s",
 217                                         a_vals->bv_val, mattr, "" );
 218 #endif /* !NEW_LOGGING */
 219
 220                         /*
 221                          * FIXME: replacing server-allocated memory
 222                          * (ch_malloc) with librewrite allocated memory
 223                          * (malloc)
 224                          */
 225                         ch_free( a_vals->bv_val );
 226                         a_vals->bv_val = mattr;
 227                         a_vals->bv_len = strlen( mattr );
 228
 229                         break;
 230
 231                 case REWRITE_REGEXEC_UNWILLING:
 232
 233                 case REWRITE_REGEXEC_ERR:
 234                         /*
 235                          * FIXME: better give up,
 236                          * skip the attribute
 237                          * or leave it untouched?
 238                          */
 239                         break;
 240                 }
 241         }
 242
 243         return 0;
 244 }
 245 #endif /* ENABLE_REWRITE */
 246