1 /* modify.c - ldap backend modify function */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2003 The OpenLDAP Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
17 * This work was initially developed by the Howard Chu for inclusion
18 * in OpenLDAP Software and subsequently enhanced by Pierangelo
21 /* This is an altered version */
23 * Copyright 1999, Howard Chu, All rights reserved. <hyc@highlandsun.com>
25 * Permission is granted to anyone to use this software for any purpose
26 * on any computer system, and to alter it and redistribute it, subject
27 * to the following restrictions:
29 * 1. The author is not responsible for the consequences of use of this
30 * software, no matter how awful, even if they arise from flaws in it.
32 * 2. The origin of this software must not be misrepresented, either by
33 * explicit claim or by omission. Since few users ever read sources,
34 * credits should appear in the documentation.
36 * 3. Altered versions must be plainly marked as such, and must not be
37 * misrepresented as being the original software. Since few users
38 * ever read sources, credits should appear in the documentation.
40 * 4. This notice may not be removed or altered.
44 * Copyright 2000, Pierangelo Masarati, All rights reserved. <ando@sys-net.it>
46 * This software is being modified by Pierangelo Masarati.
47 * The previously reported conditions apply to the modified code as well.
48 * Changes in the original code are highlighted where required.
49 * Credits for the original code go to the author, Howard Chu.
56 #include <ac/string.h>
57 #include <ac/socket.h>
60 #include "back-ldap.h"
67 struct ldapinfo *li = (struct ldapinfo *) op->o_bd->be_private;
69 LDAPMod **modv = NULL;
74 struct berval mdn = { 0, NULL };
77 #ifdef LDAP_BACK_PROXY_AUTHZ
78 LDAPControl **ctrls = NULL;
79 #endif /* LDAP_BACK_PROXY_AUTHZ */
81 lc = ldap_back_getconn(op, rs);
82 if ( !lc || !ldap_back_dobind( lc, op, rs ) ) {
87 * Rewrite the modify dn, if needed
89 dc.rwmap = &li->rwmap;
98 if ( ldap_back_dn_massage( &dc, &op->o_req_dn, &mdn ) ) {
99 send_ldap_result( op, rs );
103 for (i=0, ml=op->oq_modify.rs_modlist; ml; i++,ml=ml->sml_next)
106 mods = (LDAPMod *)ch_malloc(i*sizeof(LDAPMod));
111 modv = (LDAPMod **)ch_malloc((i+1)*sizeof(LDAPMod *));
117 #ifdef ENABLE_REWRITE
118 dc.ctx = "modifyAttrDN";
120 for (i=0, ml=op->oq_modify.rs_modlist; ml; ml=ml->sml_next) {
123 if ( ml->sml_desc->ad_type->sat_no_user_mod ) {
127 if ( ml->sml_desc == slap_schema.si_ad_objectClass
128 || ml->sml_desc == slap_schema.si_ad_structuralObjectClass ) {
130 mapped = ml->sml_desc->ad_cname;
133 ldap_back_map(&li->rwmap.rwm_at,
134 &ml->sml_desc->ad_cname,
135 &mapped, BACKLDAP_MAP);
136 if (mapped.bv_val == NULL || mapped.bv_val[0] == '\0') {
142 mods[i].mod_op = ml->sml_op | LDAP_MOD_BVALUES;
143 mods[i].mod_type = mapped.bv_val;
145 if ( ml->sml_bvalues != NULL ) {
147 for (j = 0; ml->sml_bvalues[j].bv_val; j++);
148 mods[i].mod_bvalues = (struct berval **)ch_malloc((j+1) *
149 sizeof(struct berval *));
150 for (j = 0; ml->sml_bvalues[j].bv_val; j++) {
151 ldap_back_map(&li->rwmap.rwm_oc,
153 &mapped, BACKLDAP_MAP);
154 if (mapped.bv_val == NULL || mapped.bv_val[0] == '\0') {
157 mods[i].mod_bvalues[j] = &mapped;
159 mods[i].mod_bvalues[j] = NULL;
162 if ( ml->sml_desc->ad_type->sat_syntax ==
163 slap_schema.si_syn_distinguishedName ) {
164 ldap_dnattr_rewrite( &dc, ml->sml_bvalues );
167 if ( ml->sml_bvalues == NULL ) {
171 for (j = 0; ml->sml_bvalues[j].bv_val; j++);
172 mods[i].mod_bvalues = (struct berval **)ch_malloc((j+1) *
173 sizeof(struct berval *));
174 for (j = 0; ml->sml_bvalues[j].bv_val; j++)
175 mods[i].mod_bvalues[j] = &ml->sml_bvalues[j];
176 mods[i].mod_bvalues[j] = NULL;
180 mods[i].mod_bvalues = NULL;
187 #ifdef LDAP_BACK_PROXY_AUTHZ
188 rc = ldap_back_proxy_authz_ctrl( lc, op, rs, &ctrls );
189 if ( rc != LDAP_SUCCESS ) {
192 #endif /* LDAP_BACK_PROXY_AUTHZ */
194 rs->sr_err = ldap_modify_ext( lc->ld, mdn.bv_val, modv,
195 #ifdef LDAP_BACK_PROXY_AUTHZ
197 #else /* ! LDAP_BACK_PROXY_AUTHZ */
199 #endif /* ! LDAP_BACK_PROXY_AUTHZ */
203 #ifdef LDAP_BACK_PROXY_AUTHZ
204 if ( ctrls && ctrls != op->o_ctrls ) {
208 #endif /* LDAP_BACK_PROXY_AUTHZ */
210 if ( mdn.bv_val != op->o_req_dn.bv_val ) {
213 for (i=0; modv[i]; i++) {
214 ch_free(modv[i]->mod_bvalues);
219 #ifdef LDAP_BACK_PROXY_AUTHZ
220 if ( rc != LDAP_SUCCESS ) {
221 send_ldap_result( op, rs );
224 #endif /* LDAP_BACK_PROXY_AUTHZ */
226 return ldap_back_op_result( lc, op, rs, msgid, 1 );