git.sur5r.net Git - openldap/blob - servers/slapd/back-ldap/compare.c

   1 /* compare.c - ldap backend compare function */
   2 /* $OpenLDAP$ */
   3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
   4  *
   5  * Copyright 2003-2004 The OpenLDAP Foundation.
   6  * Portions Copyright 1999-2003 Howard Chu.
   7  * Portions Copyright 2000-2003 Pierangelo Masarati.
   8  * All rights reserved.
   9  *
  10  * Redistribution and use in source and binary forms, with or without
  11  * modification, are permitted only as authorized by the OpenLDAP
  12  * Public License.
  13  *
  14  * A copy of this license is available in the file LICENSE in the
  15  * top-level directory of the distribution or, alternatively, at
  16  * <http://www.OpenLDAP.org/license.html>.
  17  */
  18 /* ACKNOWLEDGEMENTS:
  19  * This work was initially developed by the Howard Chu for inclusion
  20  * in OpenLDAP Software and subsequently enhanced by Pierangelo
  21  * Masarati.
  22  */
  23
  24 #include "portable.h"
  25
  26 #include <stdio.h>
  27
  28 #include <ac/string.h>
  29 #include <ac/socket.h>
  30
  31 #include "slap.h"
  32 #include "back-ldap.h"
  33
  34 int
  35 ldap_back_compare(
  36     Operation   *op,
  37     SlapReply   *rs )
  38 {
  39         struct ldapinfo *li = (struct ldapinfo *) op->o_bd->be_private;
  40         struct ldapconn *lc;
  41         struct berval mapped_at = BER_BVNULL, mapped_val = BER_BVNULL;
  42         struct berval mdn = BER_BVNULL;
  43         ber_int_t msgid;
  44         int freeval = 0;
  45         int do_retry = 1;
  46         dncookie dc;
  47         LDAPControl **ctrls = NULL;
  48         int rc = LDAP_SUCCESS;
  49
  50         lc = ldap_back_getconn(op, rs);
  51         if (!lc || !ldap_back_dobind( lc, op, rs ) ) {
  52                 return( -1 );
  53         }
  54
  55         /*
  56          * Rewrite the compare dn, if needed
  57          */
  58         dc.rwmap = &li->rwmap;
  59 #ifdef ENABLE_REWRITE
  60         dc.conn = op->o_conn;
  61         dc.rs = rs;
  62         dc.ctx = "compareDN";
  63 #else
  64         dc.tofrom = 1;
  65         dc.normalized = 0;
  66 #endif
  67         if ( ldap_back_dn_massage( &dc, &op->o_req_ndn, &mdn ) ) {
  68                 send_ldap_result( op, rs );
  69                 return -1;
  70         }
  71
  72         if ( op->orc_ava->aa_desc == slap_schema.si_ad_objectClass
  73                 || op->orc_ava->aa_desc == slap_schema.si_ad_structuralObjectClass ) {
  74                 ldap_back_map(&li->rwmap.rwm_oc, &op->orc_ava->aa_value,
  75                                 &mapped_val, BACKLDAP_MAP);
  76                 if (mapped_val.bv_val == NULL || mapped_val.bv_val[0] == '\0') {
  77                         return( -1 );
  78                 }
  79                 mapped_at = op->orc_ava->aa_desc->ad_cname;
  80         } else {
  81                 ldap_back_map(&li->rwmap.rwm_at,
  82                                 &op->orc_ava->aa_desc->ad_cname, &mapped_at,
  83                                 BACKLDAP_MAP);
  84                 if (mapped_at.bv_val == NULL || mapped_at.bv_val[0] == '\0') {
  85                         return( -1 );
  86                 }
  87                 if (op->orc_ava->aa_desc->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName ) {
  88 #ifdef ENABLE_REWRITE
  89                         dc.ctx = "compareAttrDN";
  90 #endif
  91                         ldap_back_dn_massage( &dc, &op->orc_ava->aa_value, &mapped_val );
  92                         if (mapped_val.bv_val == NULL || mapped_val.bv_val[0] == '\0') {
  93                                 mapped_val = op->orc_ava->aa_value;
  94                         } else if (mapped_val.bv_val != op->orc_ava->aa_value.bv_val) {
  95                                 freeval = 1;
  96                         }
  97                 } else {
  98                         mapped_val = op->orc_ava->aa_value;
  99                 }
 100         }
 101
 102         ctrls = op->o_ctrls;
 103 #ifdef LDAP_BACK_PROXY_AUTHZ
 104         rc = ldap_back_proxy_authz_ctrl( lc, op, rs, &ctrls );
 105         if ( rc != LDAP_SUCCESS ) {
 106                 send_ldap_result( op, rs );
 107                 rc = -1;
 108                 goto cleanup;
 109         }
 110 #endif /* LDAP_BACK_PROXY_AUTHZ */
 111
 112 retry:
 113         rs->sr_err = ldap_compare_ext( lc->ld, mdn.bv_val,
 114                         mapped_at.bv_val, &mapped_val,
 115                         ctrls, NULL, &msgid );
 116         rc = ldap_back_op_result( lc, op, rs, msgid, 1 );
 117         if ( rs->sr_err == LDAP_UNAVAILABLE && do_retry ) {
 118                 do_retry = 0;
 119                 if ( ldap_back_retry (lc, op, rs )) goto retry;
 120         }
 121
 122 #ifdef LDAP_BACK_PROXY_AUTHZ
 123 cleanup:
 124         if ( ctrls && ctrls != op->o_ctrls ) {
 125                 free( ctrls[ 0 ] );
 126                 free( ctrls );
 127         }
 128 #endif /* LDAP_BACK_PROXY_AUTHZ */
 129
 130         if ( mdn.bv_val != op->o_req_ndn.bv_val ) {
 131                 free( mdn.bv_val );
 132         }
 133         if ( freeval ) {
 134                 free( mapped_val.bv_val );
 135         }
 136         return rc;
 137 }