1 /* search.c - ldbm backend search function */
4 * Copyright 1998-2000 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
12 #include <ac/string.h>
13 #include <ac/socket.h>
16 #include "back-ldbm.h"
17 #include "proto-back-ldbm.h"
19 static ID_BLOCK *base_candidate(
20 Backend *be, Entry *e );
22 static ID_BLOCK *search_candidates(
23 Backend *be, Entry *e, Filter *filter,
24 int scope, int deref, int manageDSAit );
39 const char *filterstr,
43 struct ldbminfo *li = (struct ldbminfo *) be->be_private;
45 const char *text = NULL;
50 struct berval **v2refs = NULL;
51 Entry *matched = NULL;
52 char *realbase = NULL;
54 int manageDSAit = get_manageDSAit( op );
56 Debug(LDAP_DEBUG_TRACE, "=> ldbm_back_search\n", 0, 0, 0);
58 /* get entry with reader lock */
59 if ( deref & LDAP_DEREF_FINDING ) {
60 e = deref_dn_r( be, nbase, &err, &matched, &text );
63 e = dn2entry_r( be, nbase, &matched );
64 err = e != NULL ? LDAP_SUCCESS : LDAP_REFERRAL;
69 char *matched_dn = NULL;
70 struct berval **refs = NULL;
72 if ( matched != NULL ) {
73 matched_dn = ch_strdup( matched->e_dn );
75 refs = is_entry_referral( matched )
76 ? get_entry_referrals( be, conn, op, matched )
79 cache_return_entry_r( &li->li_cache, matched );
81 refs = default_referral;
84 send_ldap_result( conn, op, err,
85 matched_dn, text, refs, NULL );
87 if( matched != NULL ) {
95 if (!manageDSAit && is_entry_referral( e ) ) {
96 /* entry is a referral, don't allow add */
97 char *matched_dn = ch_strdup( e->e_dn );
98 struct berval **refs = get_entry_referrals( be,
101 cache_return_entry_r( &li->li_cache, e );
103 Debug( LDAP_DEBUG_TRACE, "entry is referral\n", 0,
106 send_ldap_result( conn, op, LDAP_REFERRAL,
107 matched_dn, NULL, refs, NULL );
109 ber_bvecfree( refs );
115 if ( is_entry_alias( e ) ) {
117 deref = LDAP_DEREF_NEVER;
120 if ( tlimit == 0 && be_isroot( be, op->o_ndn ) ) {
121 tlimit = -1; /* allow root to set no limit */
123 tlimit = (tlimit > be->be_timelimit || tlimit < 1) ?
124 be->be_timelimit : tlimit;
125 stoptime = op->o_time + tlimit;
128 if ( slimit == 0 && be_isroot( be, op->o_ndn ) ) {
129 slimit = -1; /* allow root to set no limit */
131 slimit = (slimit > be->be_sizelimit || slimit < 1) ?
132 be->be_sizelimit : slimit;
135 if ( scope == LDAP_SCOPE_BASE ) {
136 candidates = base_candidate( be, e );
139 candidates = search_candidates( be, e, filter,
140 scope, deref, manageDSAit );
143 /* need normalized dn below */
144 realbase = ch_strdup( e->e_ndn );
146 cache_return_entry_r( &li->li_cache, e );
148 if ( candidates == NULL ) {
150 Debug( LDAP_DEBUG_TRACE, "no candidates\n", 0,
153 send_search_result( conn, op,
155 NULL, NULL, NULL, NULL, 0 );
161 for ( id = idl_firstid( candidates, &cursor ); id != NOID;
162 id = idl_nextid( candidates, &cursor ) )
166 /* check for abandon */
167 ldap_pvt_thread_mutex_lock( &op->o_abandonmutex );
169 if ( op->o_abandon ) {
170 ldap_pvt_thread_mutex_unlock( &op->o_abandonmutex );
175 ldap_pvt_thread_mutex_unlock( &op->o_abandonmutex );
177 /* check time limit */
178 if ( tlimit != -1 && slap_get_time() > stoptime ) {
179 send_search_result( conn, op, LDAP_TIMELIMIT_EXCEEDED,
180 NULL, NULL, v2refs, NULL, nentries );
185 /* get the entry with reader lock */
186 e = id2entry_r( be, id );
189 Debug( LDAP_DEBUG_ARGS, "search: candidate %ld not found\n",
195 if ( deref & LDAP_DEREF_SEARCHING && is_entry_alias( e ) ) {
200 e = deref_entry_r( be, e, &err, &matched, &text );
207 if( e->e_id == id ) {
212 /* need to skip alias which deref into scope */
213 if( scope & LDAP_SCOPE_ONELEVEL ) {
214 char *pdn = dn_parent( NULL, e->e_ndn );
216 if( strcmp( pdn, realbase ) ) {
223 } else if ( dn_issuffix( e->e_ndn, realbase ) ) {
224 /* alias is within scope */
225 Debug( LDAP_DEBUG_ARGS, "search: \"%s\" in subtree\n",
234 * if it's a referral, add it to the list of referrals. only do
235 * this for non-base searches, and don't check the filter
236 * explicitly here since it's only a candidate anyway.
238 if ( !manageDSAit && scope != LDAP_SCOPE_BASE &&
239 is_entry_referral( e ) )
241 struct berval **refs = get_entry_referrals(
244 send_search_reference( be, conn, op,
245 e, refs, scope, NULL, &v2refs );
247 ber_bvecfree( refs );
252 /* if it matches the filter and scope, send it */
253 if ( test_filter( be, conn, op, e, filter ) == LDAP_COMPARE_TRUE ) {
257 if ( !scopeok && scope == LDAP_SCOPE_ONELEVEL ) {
258 if ( (dn = dn_parent( be, e->e_ndn )) != NULL ) {
259 (void) dn_normalize( dn );
260 scopeok = (dn == realbase)
262 : (strcmp( dn, realbase ) ? 0 : 1 );
266 scopeok = (realbase == NULL || *realbase == '\0');
269 } else if ( !scopeok && scope == LDAP_SCOPE_SUBTREE ) {
270 dn = ch_strdup( e->e_ndn );
271 scopeok = dn_issuffix( dn, realbase );
279 /* check size limit */
280 if ( --slimit == -1 ) {
281 cache_return_entry_r( &li->li_cache, e );
282 send_search_result( conn, op,
283 LDAP_SIZELIMIT_EXCEEDED, NULL, NULL,
284 v2refs, NULL, nentries );
290 int result = send_search_entry(be, conn, op,
291 e, attrs, attrsonly, NULL);
294 case 0: /* entry sent ok */
297 case 1: /* entry not sent */
299 case -1: /* connection closed */
300 cache_return_entry_r( &li->li_cache, e );
306 Debug( LDAP_DEBUG_TRACE, "candidate %ld scope not okay\n",
310 Debug( LDAP_DEBUG_TRACE, "candidate %ld does match filter\n",
316 /* free reader lock */
317 cache_return_entry_r( &li->li_cache, e );
320 ldap_pvt_thread_yield();
322 send_search_result( conn, op,
323 v2refs == NULL ? LDAP_SUCCESS : LDAP_REFERRAL,
324 NULL, NULL, v2refs, NULL, nentries );
329 if( candidates != NULL )
330 idl_free( candidates );
332 ber_bvecfree( v2refs );
333 if( realbase ) free( realbase );
345 Debug(LDAP_DEBUG_TRACE, "base_candidates: base: \"%s\"\n",
348 idl = idl_alloc( 1 );
349 idl_insert( &idl, e->e_id, 1 );
363 ID_BLOCK *candidates;
364 Filter f, fand, rf, af, xf;
365 AttributeAssertion aa_ref, aa_alias;
366 static struct berval bv_ref = { sizeof("REFERRAL")-1, "REFERRAL" };
367 static struct berval bv_alias = { sizeof("ALIAS")-1, "ALIAS" };
369 Debug(LDAP_DEBUG_TRACE, "search_candidates: base=\"%s\" s=%d d=%d\n",
370 e->e_ndn, scope, deref );
373 xf.f_choice = LDAP_FILTER_OR;
377 /* match referrals */
378 rf.f_choice = LDAP_FILTER_EQUALITY;
380 rf.f_av_desc = slap_schema.si_ad_objectClass;
381 rf.f_av_value = &bv_ref;
386 if( deref & LDAP_DEREF_SEARCHING ) {
388 af.f_choice = LDAP_FILTER_EQUALITY;
389 af.f_ava = &aa_alias;
390 af.f_av_desc = slap_schema.si_ad_objectClass;
391 af.f_av_value = &bv_alias;
397 f.f_choice = LDAP_FILTER_AND;
399 fand.f_choice = scope == LDAP_SCOPE_SUBTREE
400 ? SLAPD_FILTER_DN_SUBTREE
401 : SLAPD_FILTER_DN_ONE;
402 fand.f_dn = e->e_ndn;
403 fand.f_next = xf.f_or == filter ? filter : &xf ;
405 candidates = filter_candidates( be, &f );
407 return( candidates );