1 /* search.c - ldbm backend search function */
11 #include "back-ldbm.h"
12 #include "proto-back-ldbm.h"
14 static IDList *base_candidates(Backend *be, Connection *conn, Operation *op, char *base, Filter *filter, char **attrs, int attrsonly, char **matched, int *err);
15 static IDList *onelevel_candidates(Backend *be, Connection *conn, Operation *op, char *base, Filter *filter, char **attrs, int attrsonly, char **matched, int *err);
16 static IDList *subtree_candidates(Backend *be, Connection *conn, Operation *op, char *base, Filter *filter, char **attrs, int attrsonly, char **matched, Entry *e, int *err, int lookupbase);
18 #define GRABSIZE BUFSIZ
20 #define MAKE_SPACE( n ) { \
21 if ( rcur + n > rbuf + rmaxsize ) { \
22 int offset = rcur - rbuf; \
23 rbuf = ch_realloc( rbuf, rmaxsize + GRABSIZE ); \
24 rmaxsize += GRABSIZE; \
25 rcur = rbuf + offset; \
45 struct ldbminfo *li = (struct ldbminfo *) be->be_private;
54 char *rbuf, *rcur, *r;
58 Debug(LDAP_DEBUG_ARGS, "=> ldbm_back_search\n", 0, 0, 0);
60 if ( tlimit == 0 && be_isroot( be, op->o_dn ) ) {
61 tlimit = -1; /* allow root to set no limit */
63 tlimit = (tlimit > be->be_timelimit || tlimit < 1) ?
64 be->be_timelimit : tlimit;
65 stoptime = op->o_time + tlimit;
67 if ( slimit == 0 && be_isroot( be, op->o_dn ) ) {
68 slimit = -1; /* allow root to set no limit */
70 slimit = (slimit > be->be_sizelimit || slimit < 1) ?
71 be->be_sizelimit : slimit;
75 * check and apply aliasing where the dereferencing applies to
76 * the subordinates of the base
80 case LDAP_DEREF_FINDING:
81 case LDAP_DEREF_ALWAYS:
82 realBase = derefDN ( be, conn, op, base );
85 realBase = ch_strdup(base);
88 (void) dn_normalize (realBase);
90 Debug( LDAP_DEBUG_TRACE, "using base \"%s\"\n",
95 candidates = base_candidates( be, conn, op, realBase, filter,
96 attrs, attrsonly, &matched, &err );
99 case LDAP_SCOPE_ONELEVEL:
100 candidates = onelevel_candidates( be, conn, op, realBase, filter,
101 attrs, attrsonly, &matched, &err );
104 case LDAP_SCOPE_SUBTREE:
105 candidates = subtree_candidates( be, conn, op, realBase, filter,
106 attrs, attrsonly, &matched, NULL, &err, 1 );
110 send_ldap_result( conn, op, LDAP_PROTOCOL_ERROR, "",
112 if( realBase != NULL) {
118 /* null candidates means we could not find the base object */
119 if ( candidates == NULL ) {
120 send_ldap_result( conn, op, err, matched, "" );
121 if ( matched != NULL ) {
124 if( realBase != NULL) {
130 if ( matched != NULL ) {
137 MAKE_SPACE( sizeof("Referral:") + 1 );
138 strcpy( rbuf, "Referral:" );
139 rcur = strchr( rbuf, '\0' );
140 for ( id = idl_firstid( candidates ); id != NOID;
141 id = idl_nextid( candidates, id ) ) {
142 /* check for abandon */
143 pthread_mutex_lock( &op->o_abandonmutex );
144 if ( op->o_abandon ) {
145 pthread_mutex_unlock( &op->o_abandonmutex );
146 idl_free( candidates );
148 if( realBase != NULL) {
153 pthread_mutex_unlock( &op->o_abandonmutex );
155 /* check time limit */
156 pthread_mutex_lock( ¤ttime_mutex );
157 time( ¤ttime );
158 if ( tlimit != -1 && currenttime > stoptime ) {
159 pthread_mutex_unlock( ¤ttime_mutex );
160 send_ldap_search_result( conn, op,
161 LDAP_TIMELIMIT_EXCEEDED, NULL, nrefs > 0 ? rbuf :
163 idl_free( candidates );
165 if( realBase != NULL) {
170 pthread_mutex_unlock( ¤ttime_mutex );
172 /* get the entry with reader lock */
173 if ( (e = id2entry_r( be, id )) == NULL ) {
174 Debug( LDAP_DEBUG_ARGS, "candidate %lu not found\n",
180 * if it's a referral, add it to the list of referrals. only do
181 * this for subtree searches, and don't check the filter explicitly
182 * here since it's only a candidate anyway.
184 if ( e->e_dn != NULL &&
185 strncasecmp( e->e_dn, "ref=", 4 ) == 0 &&
186 (ref = attr_find( e->e_attrs, "ref" )) != NULL &&
187 scope == LDAP_SCOPE_SUBTREE )
191 if ( ref->a_vals == NULL ) {
192 Debug( LDAP_DEBUG_ANY, "null ref in (%s)\n",
195 for ( i = 0; ref->a_vals[i] != NULL; i++ ) {
196 /* referral + newline + null */
197 MAKE_SPACE( ref->a_vals[i]->bv_len + 2 );
199 strncpy( rcur, ref->a_vals[i]->bv_val,
200 ref->a_vals[i]->bv_len );
201 rcur = rcur + ref->a_vals[i]->bv_len;
207 /* otherwise it's an entry - see if it matches the filter */
209 /* if it matches the filter and scope, send it */
210 if ( test_filter( be, conn, op, e, filter ) == 0 ) {
216 if ( scope == LDAP_SCOPE_ONELEVEL ) {
217 if ( (dn = dn_parent( be, e->e_dn )) != NULL ) {
218 (void) dn_normalize( dn );
219 scopeok = (dn == realBase) ? 1 : (! strcasecmp( dn, realBase ));
221 scopeok = (realBase == NULL || *realBase == '\0');
224 } else if ( scope == LDAP_SCOPE_SUBTREE ) {
225 dn = ch_strdup( e->e_dn );
226 (void) dn_normalize( dn );
227 scopeok = dn_issuffix( dn, realBase );
232 /* check size limit */
233 if ( --slimit == -1 ) {
234 cache_return_entry_r( &li->li_cache, e );
235 send_ldap_search_result( conn, op,
236 LDAP_SIZELIMIT_EXCEEDED, NULL,
237 nrefs > 0 ? rbuf : NULL, nentries );
238 idl_free( candidates );
241 if( realBase != NULL) {
248 * check and apply aliasing where the dereferencing applies to
249 * the subordinates of the base
252 case LDAP_DEREF_SEARCHING:
253 case LDAP_DEREF_ALWAYS:
255 Entry *newe = derefAlias_r( be, conn, op, e );
256 cache_return_entry_r( &li->li_cache, e );
262 switch ( send_search_entry( be, conn, op, e,
263 attrs, attrsonly ) ) {
264 case 0: /* entry sent ok */
267 case 1: /* entry not sent */
269 case -1: /* connection closed */
270 cache_return_entry_r( &li->li_cache, e );
271 idl_free( candidates );
274 if( realBase != NULL) {
284 /* free reader lock */
285 cache_return_entry_r( &li->li_cache, e );
290 idl_free( candidates );
292 send_ldap_search_result( conn, op, LDAP_PARTIAL_RESULTS, NULL,
295 send_ldap_search_result( conn, op, LDAP_SUCCESS, NULL, NULL,
300 if( realBase != NULL) {
320 struct ldbminfo *li = (struct ldbminfo *) be->be_private;
326 Debug(LDAP_DEBUG_TRACE, "base_candidates: base: \"%s\"\n", base, 0, 0);
330 /* get entry with reader lock */
331 if ( (e = dn2entry_r( be, base, matched )) == NULL ) {
332 *err = LDAP_NO_SUCH_OBJECT;
336 /* check for deleted */
338 idl = idl_alloc( 1 );
339 idl_insert( &idl, e->e_id, 1 );
342 /* free reader lock */
343 cache_return_entry_r( &li->li_cache, e );
361 struct ldbminfo *li = (struct ldbminfo *) be->be_private;
367 Debug(LDAP_DEBUG_TRACE, "onelevel_candidates: base: \"%s\"\n", base, 0, 0);
371 /* get the base object with reader lock */
372 if ( base != NULL && *base != '\0' &&
373 (e = dn2entry_r( be, base, matched )) == NULL )
375 *err = LDAP_NO_SUCH_OBJECT;
380 * modify the filter to be something like this:
382 * parent=baseobject & originalfilter
385 f = (Filter *) ch_malloc( sizeof(Filter) );
387 f->f_choice = LDAP_FILTER_AND;
388 f->f_and = (Filter *) ch_malloc( sizeof(Filter) );
389 f->f_and->f_choice = LDAP_FILTER_EQUALITY;
390 f->f_and->f_ava.ava_type = ch_strdup( "id2children" );
391 sprintf( buf, "%ld", e != NULL ? e->e_id : 0 );
392 f->f_and->f_ava.ava_value.bv_val = ch_strdup( buf );
393 f->f_and->f_ava.ava_value.bv_len = strlen( buf );
394 f->f_and->f_next = filter;
396 /* from here, it's just like subtree_candidates */
397 candidates = subtree_candidates( be, conn, op, base, f, attrs,
398 attrsonly, matched, e, err, 0 );
400 /* free up just the filter stuff we allocated above */
401 f->f_and->f_next = NULL;
404 /* free entry and reader lock */
405 cache_return_entry_r( &li->li_cache, e );
406 return( candidates );
424 struct ldbminfo *li = (struct ldbminfo *) be->be_private;
425 Filter *f, **filterarg_ptr;
428 Debug(LDAP_DEBUG_TRACE, "subtree_candidates: base: \"%s\" %s\n",
429 base ? base : "NULL", lookupbase ? "lookupbase" : "", 0);
432 * get the base object - unless we already have it (from one-level).
433 * also, unless this is a one-level search or a subtree search
434 * starting at the very top of our subtree, we need to modify the
435 * filter to be something like this:
437 * dn=*baseobjectdn & (originalfilter | ref=*)
439 * the "objectclass=referral" part is used to select referrals to return
445 if ( base != NULL && *base != '\0' &&
446 (e = dn2entry_r( be, base, matched )) == NULL )
448 *err = LDAP_NO_SUCH_OBJECT;
453 cache_return_entry_r( &li->li_cache, e );
456 f = (Filter *) ch_malloc( sizeof(Filter) );
458 f->f_choice = LDAP_FILTER_OR;
459 f->f_or = (Filter *) ch_malloc( sizeof(Filter) );
460 f->f_or->f_choice = LDAP_FILTER_EQUALITY;
461 f->f_or->f_avtype = ch_strdup( "objectclass" );
462 /* Patch to use normalized uppercase */
463 f->f_or->f_avvalue.bv_val = ch_strdup( "REFERRAL" );
464 f->f_or->f_avvalue.bv_len = strlen( "REFERRAL" );
465 filterarg_ptr = &f->f_or->f_next;
466 *filterarg_ptr = filter;
469 if ( ! be_issuffix( be, base ) ) {
470 f = (Filter *) ch_malloc( sizeof(Filter) );
472 f->f_choice = LDAP_FILTER_AND;
473 f->f_and = (Filter *) ch_malloc( sizeof(Filter) );
474 f->f_and->f_choice = LDAP_FILTER_SUBSTRINGS;
475 f->f_and->f_sub_type = ch_strdup( "dn" );
476 f->f_and->f_sub_initial = NULL;
477 f->f_and->f_sub_any = NULL;
478 f->f_and->f_sub_final = ch_strdup( base );
479 value_normalize( f->f_and->f_sub_final, SYNTAX_CIS );
480 f->f_and->f_next = filter;
485 candidates = filter_candidates( be, filter );
487 /* free up just the parts we allocated above */
489 *filterarg_ptr = NULL;
493 return( candidates );
projects / openldap / blob