1 /* add.c - ldap backend add function */
4 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
7 /* This is an altered version */
9 * Copyright 1999, Howard Chu, All rights reserved. <hyc@highlandsun.com>
11 * Permission is granted to anyone to use this software for any purpose
12 * on any computer system, and to alter it and redistribute it, subject
13 * to the following restrictions:
15 * 1. The author is not responsible for the consequences of use of this
16 * software, no matter how awful, even if they arise from flaws in it.
18 * 2. The origin of this software must not be misrepresented, either by
19 * explicit claim or by omission. Since few users ever read sources,
20 * credits should appear in the documentation.
22 * 3. Altered versions must be plainly marked as such, and must not be
23 * misrepresented as being the original software. Since few users
24 * ever read sources, credits should appear in the documentation.
26 * 4. This notice may not be removed or altered.
30 * Copyright 2000, Pierangelo Masarati, All rights reserved. <ando@sys-net.it>
32 * This software is being modified by Pierangelo Masarati.
33 * The previously reported conditions apply to the modified code as well.
34 * Changes in the original code are highlighted where required.
35 * Credits for the original code go to the author, Howard Chu.
42 #include <ac/string.h>
43 #include <ac/socket.h>
46 #include "back-ldap.h"
56 struct ldapinfo *li = (struct ldapinfo *) be->be_private;
62 struct berval mdn = { 0, NULL };
65 LDAP_LOG( BACK_LDAP, ENTRY, "ldap_back_add: %s\n", e->e_dn, 0, 0 );
66 #else /* !NEW_LOGGING */
67 Debug(LDAP_DEBUG_ARGS, "==> ldap_back_add: %s\n", e->e_dn, 0, 0);
68 #endif /* !NEW_LOGGING */
70 lc = ldap_back_getconn(li, conn, op);
71 if ( !lc || !ldap_back_dobind( lc, op ) ) {
76 * Rewrite the add dn, if needed
79 switch (rewrite_session( li->rwinfo, "addDn", e->e_dn, conn,
81 case REWRITE_REGEXEC_OK:
82 if ( mdn.bv_val != NULL && mdn.bv_val[ 0 ] != '\0' ) {
83 mdn.bv_len = strlen( mdn.bv_val );
88 LDAP_LOG( BACK_LDAP, DETAIL1,
89 "[rw] addDn: \"%s\" -> \"%s\"\n", e->e_dn, mdn.bv_val, 0 );
90 #else /* !NEW_LOGGING */
91 Debug( LDAP_DEBUG_ARGS, "rw> addDn: \"%s\" -> \"%s\"\n%s",
92 e->e_dn, mdn.bv_val, "" );
93 #endif /* !NEW_LOGGING */
96 case REWRITE_REGEXEC_UNWILLING:
97 send_ldap_result( conn, op, LDAP_UNWILLING_TO_PERFORM,
98 NULL, "Operation not allowed", NULL, NULL );
101 case REWRITE_REGEXEC_ERR:
102 send_ldap_result( conn, op, LDAP_OTHER,
103 NULL, "Rewrite error", NULL, NULL );
106 #else /* !ENABLE_REWRITE */
107 ldap_back_dn_massage( li, &e->e_name, &mdn, 0, 1 );
108 #endif /* !ENABLE_REWRITE */
110 /* Count number of attributes in entry */
111 for (i = 1, a = e->e_attrs; a; i++, a = a->a_next)
114 /* Create array of LDAPMods for ldap_add() */
115 attrs = (LDAPMod **)ch_malloc(sizeof(LDAPMod *)*i);
117 for (i=0, a=e->e_attrs; a; a=a->a_next) {
119 * lastmod should always be <off>, so that
120 * creation/modification operational attrs
121 * of the target directory are used, if available
124 if ( !strcasecmp( a->a_desc->ad_cname.bv_val,
125 slap_schema.si_ad_creatorsName->ad_cname.bv_val )
126 || !strcasecmp( a->a_desc->ad_cname.bv_val,
127 slap_schema.si_ad_createTimestamp->ad_cname.bv_val )
128 || !strcasecmp( a->a_desc->ad_cname.bv_val,
129 slap_schema.si_ad_modifiersName->ad_cname.bv_val )
130 || !strcasecmp( a->a_desc->ad_cname.bv_val,
131 slap_schema.si_ad_modifyTimestamp->ad_cname.bv_val )
137 if ( a->a_desc->ad_type->sat_no_user_mod ) {
141 ldap_back_map(&li->at_map, &a->a_desc->ad_cname, &mapped,
143 if (mapped.bv_val == NULL || mapped.bv_val[0] == '\0') {
147 attrs[i] = (LDAPMod *)ch_malloc(sizeof(LDAPMod));
148 if (attrs[i] == NULL) {
152 attrs[i]->mod_op = LDAP_MOD_BVALUES;
153 attrs[i]->mod_type = mapped.bv_val;
155 #ifdef ENABLE_REWRITE
157 * FIXME: dn-valued attrs should be rewritten
158 * to allow their use in ACLs at back-ldap level.
160 if ( strcmp( a->a_desc->ad_type->sat_syntax->ssyn_oid,
161 SLAPD_DN_SYNTAX ) == 0 ) {
163 * FIXME: rewrite could fail; in this case
164 * the operation should give up, right?
166 (void)ldap_dnattr_rewrite( li->rwinfo, a->a_vals, conn );
168 #endif /* ENABLE_REWRITE */
170 for (j=0; a->a_vals[j].bv_val; j++);
171 attrs[i]->mod_vals.modv_bvals = ch_malloc((j+1)*sizeof(struct berval *));
172 for (j=0; a->a_vals[j].bv_val; j++)
173 attrs[i]->mod_vals.modv_bvals[j] = &a->a_vals[j];
174 attrs[i]->mod_vals.modv_bvals[j] = NULL;
179 ldap_add_s(lc->ld, mdn.bv_val, attrs);
180 for (--i; i>= 0; --i) {
181 ch_free(attrs[i]->mod_vals.modv_bvals);
185 if ( mdn.bv_val != e->e_dn ) {
189 return( ldap_back_op_result( lc, op ) );
192 #ifdef ENABLE_REWRITE
195 struct rewrite_info *rwinfo,
202 for ( ; a_vals->bv_val != NULL; a_vals++ ) {
203 switch ( rewrite_session( rwinfo, "bindDn", a_vals->bv_val,
205 case REWRITE_REGEXEC_OK:
206 if ( mattr == NULL ) {
207 /* no substitution */
211 LDAP_LOG( BACK_LDAP, DETAIL1,
212 "[rw] bindDn (in add of dn-valued"
213 " attr): \"%s\" -> \"%s\"\n", a_vals->bv_val, mattr, 0 );
214 #else /* !NEW_LOGGING */
215 Debug( LDAP_DEBUG_ARGS,
216 "rw> bindDn (in add of dn-valued attr):"
217 " \"%s\" -> \"%s\"\n%s",
218 a_vals->bv_val, mattr, "" );
219 #endif /* !NEW_LOGGING */
222 * FIXME: replacing server-allocated memory
223 * (ch_malloc) with librewrite allocated memory
226 ch_free( a_vals->bv_val );
227 a_vals->bv_val = mattr;
228 a_vals->bv_len = strlen( mattr );
232 case REWRITE_REGEXEC_UNWILLING:
234 case REWRITE_REGEXEC_ERR:
236 * FIXME: better give up,
238 * or leave it untouched?
246 #endif /* ENABLE_REWRITE */