1 /* compare.c - ldap backend compare function */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2003 The OpenLDAP Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
17 * This work was initially developed by the Howard Chu for inclusion
18 * in OpenLDAP Software and subsequently enhanced by Pierangelo
21 /* This is an altered version */
23 * Copyright 1999, Howard Chu, All rights reserved. <hyc@highlandsun.com>
25 * Permission is granted to anyone to use this software for any purpose
26 * on any computer system, and to alter it and redistribute it, subject
27 * to the following restrictions:
29 * 1. The author is not responsible for the consequences of use of this
30 * software, no matter how awful, even if they arise from flaws in it.
32 * 2. The origin of this software must not be misrepresented, either by
33 * explicit claim or by omission. Since few users ever read sources,
34 * credits should appear in the documentation.
36 * 3. Altered versions must be plainly marked as such, and must not be
37 * misrepresented as being the original software. Since few users
38 * ever read sources, credits should appear in the documentation.
40 * 4. This notice may not be removed or altered.
44 * Copyright 2000, Pierangelo Masarati, All rights reserved. <ando@sys-net.it>
46 * This software is being modified by Pierangelo Masarati.
47 * The previously reported conditions apply to the modified code as well.
48 * Changes in the original code are highlighted where required.
49 * Credits for the original code go to the author, Howard Chu.
56 #include <ac/string.h>
57 #include <ac/socket.h>
60 #include "back-ldap.h"
67 struct ldapinfo *li = (struct ldapinfo *) op->o_bd->be_private;
69 struct berval mapped_at = { 0, NULL }, mapped_val = { 0, NULL };
70 struct berval mdn = { 0, NULL };
74 #ifdef LDAP_BACK_PROXY_AUTHZ
75 LDAPControl **ctrls = NULL;
76 int rc = LDAP_SUCCESS;
77 #endif /* LDAP_BACK_PROXY_AUTHZ */
79 lc = ldap_back_getconn(op, rs);
80 if (!lc || !ldap_back_dobind( lc, op, rs ) ) {
85 * Rewrite the compare dn, if needed
87 dc.rwmap = &li->rwmap;
96 if ( ldap_back_dn_massage( &dc, &op->o_req_dn, &mdn ) ) {
97 send_ldap_result( op, rs );
101 if ( op->orc_ava->aa_desc == slap_schema.si_ad_objectClass
102 || op->orc_ava->aa_desc == slap_schema.si_ad_structuralObjectClass ) {
103 ldap_back_map(&li->rwmap.rwm_oc, &op->orc_ava->aa_value,
104 &mapped_val, BACKLDAP_MAP);
105 if (mapped_val.bv_val == NULL || mapped_val.bv_val[0] == '\0') {
108 mapped_at = op->orc_ava->aa_desc->ad_cname;
110 ldap_back_map(&li->rwmap.rwm_at,
111 &op->orc_ava->aa_desc->ad_cname, &mapped_at,
113 if (mapped_at.bv_val == NULL || mapped_at.bv_val[0] == '\0') {
116 if (op->orc_ava->aa_desc->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName ) {
117 #ifdef ENABLE_REWRITE
118 dc.ctx = "compareAttrDN";
120 ldap_back_dn_massage( &dc, &op->orc_ava->aa_value, &mapped_val );
121 if (mapped_val.bv_val == NULL || mapped_val.bv_val[0] == '\0') {
122 mapped_val = op->orc_ava->aa_value;
123 } else if (mapped_val.bv_val != op->orc_ava->aa_value.bv_val) {
127 mapped_val = op->orc_ava->aa_value;
131 #ifdef LDAP_BACK_PROXY_AUTHZ
132 rc = ldap_back_proxy_authz_ctrl( lc, op, rs, &ctrls );
133 if ( rc != LDAP_SUCCESS ) {
136 #endif /* LDAP_BACK_PROXY_AUTHZ */
138 rs->sr_err = ldap_compare_ext( lc->ld, mdn.bv_val,
139 mapped_at.bv_val, &mapped_val,
140 #ifdef LDAP_BACK_PROXY_AUTHZ
142 #else /* ! LDAP_BACK_PROXY_AUTHZ */
144 #endif /* ! LDAP_BACK_PROXY_AUTHZ */
147 #ifdef LDAP_BACK_PROXY_AUTHZ
149 if ( ctrls && ctrls != op->o_ctrls ) {
153 #endif /* LDAP_BACK_PROXY_AUTHZ */
155 if ( mdn.bv_val != op->o_req_dn.bv_val ) {
159 free( mapped_val.bv_val );
162 #ifdef LDAP_BACK_PROXY_AUTHZ
163 if ( rc != LDAP_SUCCESS ) {
164 send_ldap_result( op, rs );
167 #endif /* LDAP_BACK_PROXY_AUTHZ */
168 return( ldap_back_op_result( lc, op, rs, msgid, 1 ) );