1 /* add.c - ldap ldbm back-end add routine */
4 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
12 #include <ac/socket.h>
13 #include <ac/string.h>
16 #include "back-ldbm.h"
17 #include "proto-back-ldbm.h"
24 struct ldbminfo *li = (struct ldbminfo *) op->o_bd->be_private;
28 AttributeDescription *children = slap_schema.si_ad_children;
29 AttributeDescription *entry = slap_schema.si_ad_entry;
30 char textbuf[SLAP_TEXT_BUFLEN];
31 size_t textlen = sizeof textbuf;
32 #ifdef LDBM_SUBENTRIES
37 LDAP_LOG( BACK_LDBM, ENTRY, "ldbm_back_add: %s\n", op->o_req_dn.bv_val, 0, 0 );
39 Debug(LDAP_DEBUG_ARGS, "==> ldbm_back_add: %s\n", op->o_req_dn.bv_val, 0, 0);
42 rs->sr_err = entry_schema_check( op->o_bd, op->oq_add.rs_e, NULL, &rs->sr_text, textbuf, textlen );
44 if ( rs->sr_err != LDAP_SUCCESS ) {
46 LDAP_LOG( BACK_LDBM, ERR,
47 "ldbm_back_add: entry (%s) failed schema check.\n", op->o_req_dn.bv_val, 0, 0 );
49 Debug( LDAP_DEBUG_TRACE, "entry failed schema check: %s\n",
53 send_ldap_result( op, rs );
57 #ifdef LDBM_SUBENTRIES
58 subentry = is_entry_subentry( op->oq_add.rs_e );
61 if ( !access_allowed( op, op->oq_add.rs_e,
62 entry, NULL, ACL_WRITE, NULL ) )
65 LDAP_LOG( BACK_LDBM, ERR,
66 "ldbm_back_add: No write access to entry (%s).\n",
67 op->o_req_dn.bv_val, 0, 0 );
69 Debug( LDAP_DEBUG_TRACE, "no write access to entry\n", 0,
73 send_ldap_error( op, rs, LDAP_INSUFFICIENT_ACCESS,
74 "no write access to entry" );
76 return LDAP_INSUFFICIENT_ACCESS;
79 /* grab giant lock for writing */
80 ldap_pvt_thread_rdwr_wlock(&li->li_giant_rwlock);
82 if ( ( rs->sr_err = dn2id( op->o_bd, &op->o_req_ndn, &id ) ) || id != NOID ) {
83 /* if (rs->sr_err) something bad happened to ldbm cache */
84 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
85 rs->sr_err = rs->sr_err ? LDAP_OTHER : LDAP_ALREADY_EXISTS;
86 send_ldap_result( op, rs );
91 * Get the parent dn and see if the corresponding entry exists.
92 * If the parent does not exist, only allow the "root" user to
96 if ( be_issuffix( op->o_bd, &op->o_req_ndn ) ) {
99 dnParent( &op->o_req_ndn, &pdn );
104 Entry *matched = NULL;
106 /* get parent with writer lock */
107 if ( (p = dn2entry_w( op->o_bd, &pdn, &matched )) == NULL ) {
108 if ( matched != NULL ) {
109 rs->sr_matched = ch_strdup( matched->e_dn );
110 rs->sr_ref = is_entry_referral( matched )
111 ? get_entry_referrals( op, matched )
113 cache_return_entry_r( &li->li_cache, matched );
116 rs->sr_ref = referral_rewrite( default_referral,
117 NULL, &op->o_req_dn, LDAP_SCOPE_DEFAULT );
120 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
123 LDAP_LOG( BACK_LDBM, ERR,
124 "ldbm_back_add: Parent of (%s) does not exist.\n",
125 op->o_req_dn.bv_val, 0, 0 );
127 Debug( LDAP_DEBUG_TRACE, "parent does not exist\n",
131 rs->sr_text = rs->sr_ref ? "parent is referral" : "parent does not exist";
132 rs->sr_err = LDAP_REFERRAL;
133 send_ldap_result( op, rs );
135 ber_bvarray_free( rs->sr_ref );
136 free( (char *)rs->sr_matched );
138 rs->sr_matched = NULL;
142 if ( ! access_allowed( op, p,
143 children, NULL, ACL_WRITE, NULL ) )
145 /* free parent and writer lock */
146 cache_return_entry_w( &li->li_cache, p );
147 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
150 LDAP_LOG( BACK_LDBM, ERR,
151 "ldbm_back_add: No write access to parent (%s).\n",
152 op->o_req_dn.bv_val, 0, 0 );
154 Debug( LDAP_DEBUG_TRACE, "no write access to parent\n", 0,
158 send_ldap_error( op, rs, LDAP_INSUFFICIENT_ACCESS,
159 "no write access to parent" );
161 return LDAP_INSUFFICIENT_ACCESS;
164 #ifdef LDBM_SUBENTRIES
165 if ( is_entry_subentry( p )) {
167 LDAP_LOG( OPERATION, DETAIL1,
168 "bdb_add: parent is subentry\n", 0, 0, 0 );
170 Debug( LDAP_DEBUG_TRACE, "bdb_add: parent is subentry\n",
173 rs->sr_err = LDAP_OBJECT_CLASS_VIOLATION;
174 rs->sr_text = "parent is a subentry";
179 if ( is_entry_alias( p ) ) {
180 /* parent is an alias, don't allow add */
182 /* free parent and writer lock */
183 cache_return_entry_w( &li->li_cache, p );
184 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
187 LDAP_LOG(BACK_LDBM, ERR,
188 "ldbm_back_add: Parent is an alias.\n", 0, 0, 0 );
190 Debug( LDAP_DEBUG_TRACE, "parent is alias\n", 0,
195 send_ldap_error( op, rs, LDAP_ALIAS_PROBLEM,
196 "parent is an alias" );
198 return LDAP_ALIAS_PROBLEM;
201 if ( is_entry_referral( p ) ) {
202 /* parent is a referral, don't allow add */
203 rs->sr_matched = ch_strdup( p->e_dn );
204 rs->sr_ref = is_entry_referral( p )
205 ? get_entry_referrals( op, p )
208 /* free parent and writer lock */
209 cache_return_entry_w( &li->li_cache, p );
210 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
213 LDAP_LOG( BACK_LDBM, ERR,
214 "ldbm_back_add: Parent is referral.\n", 0, 0, 0 );
216 Debug( LDAP_DEBUG_TRACE, "parent is referral\n", 0,
219 rs->sr_err = LDAP_REFERRAL;
220 send_ldap_result( op, rs );
222 ber_bvarray_free( rs->sr_ref );
223 free( (char *)rs->sr_matched );
225 rs->sr_matched = NULL;
229 #ifdef LDBM_SUBENTRIES
232 /* parent must be an administrative point of the required kind */
237 if( pdn.bv_val != NULL )
239 assert( *pdn.bv_val == '\0' );
242 /* no parent, must be adding entry to root */
243 if ( !be_isroot( op->o_bd, &op->o_ndn ) )
245 if ( be_issuffix( op->o_bd, (struct berval *)&slap_empty_bv ) || be_isupdate( op->o_bd, &op->o_ndn ) ) {
246 p = (Entry *)&slap_entry_root;
248 rs->sr_err = access_allowed( op, p,
249 children, NULL, ACL_WRITE, NULL );
252 if ( ! rs->sr_err ) {
253 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
256 LDAP_LOG( BACK_LDBM, ERR,
257 "ldbm_back_add: No write "
258 "access to parent (\"\").\n", 0, 0, 0 );
260 Debug( LDAP_DEBUG_TRACE,
261 "no write access to parent\n",
265 send_ldap_error( op, rs,
266 LDAP_INSUFFICIENT_ACCESS,
267 "no write access to parent" );
269 return LDAP_INSUFFICIENT_ACCESS;
271 } else if ( !is_entry_glue( op->oq_add.rs_e )) {
272 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
275 LDAP_LOG( BACK_LDBM, ERR,
276 "ldbm_back_add: %s add denied.\n",
277 pdn.bv_val == NULL ? "suffix"
278 : "entry at root", 0, 0 );
280 Debug( LDAP_DEBUG_TRACE, "%s add denied\n",
281 pdn.bv_val == NULL ? "suffix"
282 : "entry at root", 0, 0 );
285 send_ldap_error( op, rs,
286 LDAP_NO_SUCH_OBJECT, NULL );
288 return LDAP_NO_SUCH_OBJECT;
292 #ifdef LDBM_SUBENTRIES
295 LDAP_LOG ( OPERATION, DETAIL1,
296 "bdb_add: no parent, cannot add subentry\n", 0, 0, 0 );
298 Debug( LDAP_DEBUG_TRACE,
299 "bdb_add: no parent, cannot add subentry\n", 0, 0, 0 );
301 rs->sr_err = LDAP_NO_SUCH_OBJECT;
302 rs->sr_text = "no parent, cannot add subentry";
309 if ( next_id( op->o_bd, &op->oq_add.rs_e->e_id ) ) {
311 /* free parent and writer lock */
312 cache_return_entry_w( &li->li_cache, p );
315 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
318 LDAP_LOG( BACK_LDBM, ERR,
319 "ldbm_back_add: next_id failed.\n", 0, 0, 0 );
321 Debug( LDAP_DEBUG_ANY, "ldbm_add: next_id failed\n",
325 send_ldap_error( op, rs, LDAP_OTHER,
326 "next_id add failed" );
332 * Try to add the entry to the cache, assign it a new dnid.
334 rs->sr_err = cache_add_entry_rw(&li->li_cache, op->oq_add.rs_e, CACHE_WRITE_LOCK);
336 if ( rs->sr_err != 0 ) {
338 /* free parent and writer lock */
339 cache_return_entry_w( &li->li_cache, p );
342 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
345 LDAP_LOG( BACK_LDBM, ERR,
346 "ldbm_back_add: cache_add_entry_lock failed.\n", 0, 0, 0 );
348 Debug( LDAP_DEBUG_ANY, "cache_add_entry_lock failed\n", 0, 0,
352 rs->sr_text = rs->sr_err > 0 ? NULL : "cache add failed";
353 rs->sr_err = rs->sr_err > 0 ? LDAP_ALREADY_EXISTS : LDAP_OTHER;
354 send_ldap_result( op, rs );
361 /* attribute indexes */
362 if ( index_entry_add( op, op->oq_add.rs_e ) != LDAP_SUCCESS ) {
364 LDAP_LOG( BACK_LDBM, ERR,
365 "ldbm_back_add: index_entry_add failed.\n", 0, 0, 0 );
367 Debug( LDAP_DEBUG_TRACE, "index_entry_add failed\n", 0,
371 send_ldap_error( op, rs, LDAP_OTHER,
372 "index generation failed" );
378 if ( dn2id_add( op->o_bd, &op->oq_add.rs_e->e_nname, op->oq_add.rs_e->e_id ) != 0 ) {
380 LDAP_LOG( BACK_LDBM, ERR,
381 "ldbm_back_add: dn2id_add failed.\n", 0, 0, 0 );
383 Debug( LDAP_DEBUG_TRACE, "dn2id_add failed\n", 0,
386 /* FIXME: delete attr indices? */
388 send_ldap_error( op, rs, LDAP_OTHER,
389 "DN index generation failed" );
395 if ( id2entry_add( op->o_bd, op->oq_add.rs_e ) != 0 ) {
397 LDAP_LOG( BACK_LDBM, ERR,
398 "ldbm_back_add: id2entry_add failed.\n", 0, 0, 0 );
400 Debug( LDAP_DEBUG_TRACE, "id2entry_add failed\n", 0,
404 /* FIXME: delete attr indices? */
405 (void) dn2id_delete( op->o_bd, &op->oq_add.rs_e->e_nname, op->oq_add.rs_e->e_id );
407 send_ldap_error( op, rs, LDAP_OTHER,
408 "entry store failed" );
413 rs->sr_err = LDAP_SUCCESS;
415 send_ldap_result( op, rs );
417 /* marks the entry as committed, so it is added to the cache;
418 * otherwise it is removed from the cache, but not destroyed;
419 * it will be destroyed by the caller */
420 cache_entry_commit( op->oq_add.rs_e );
424 /* free parent and writer lock */
425 cache_return_entry_w( &li->li_cache, p );
430 * in case of error, writer lock is freed
431 * and entry's private data is destroyed.
432 * otherwise, this is done when entry is released
434 cache_return_entry_w( &li->li_cache, op->oq_add.rs_e );
435 ldap_pvt_thread_rdwr_wunlock(&li->li_giant_rwlock);
438 return( rs->sr_err );
projects / openldap / blob