1 /* modify.c - mdb backend modify routine */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2000-2016 The OpenLDAP Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
20 #include <ac/string.h>
25 static struct berval scbva[] = {
33 AttributeDescription *desc,
41 /* check if modified attribute was indexed
42 * but not in case of NOOP... */
43 ai = mdb_index_mask( op->o_bd, desc, &ix_at );
49 ap = attr_find( oldattrs, desc );
50 if ( ap ) ap->a_flags |= SLAP_ATTR_IXDEL;
52 /* Find all other attrs that index to same slot */
53 for ( ap = newattrs; ap; ap = ap->a_next ) {
54 ai = mdb_index_mask( op->o_bd, ap->a_desc, &ix2 );
55 if ( ai && ix2.bv_val == ix_at.bv_val )
56 ap->a_flags |= SLAP_ATTR_IXADD;
62 ap = attr_find( newattrs, desc );
63 if ( ap ) ap->a_flags |= SLAP_ATTR_IXADD;
68 int mdb_modify_internal(
71 Modifications *modlist,
77 struct mdb_info *mdb = (struct mdb_info *) op->o_bd->be_private;
81 Attribute *save_attrs;
82 Attribute *ap, *aold, *anew;
83 int glue_attr_delete = 0;
84 int softop, chkpresent;
87 MDB_cursor *mvc = NULL;
89 Debug( LDAP_DEBUG_TRACE, "mdb_modify_internal: 0x%08lx: %s\n",
92 if ( !acl_check_modlist( op, e, modlist )) {
93 return LDAP_INSUFFICIENT_ACCESS;
96 /* save_attrs will be disposed of by caller */
97 save_attrs = e->e_attrs;
98 e->e_attrs = attrs_dup( e->e_attrs );
100 for ( ml = modlist; ml != NULL; ml = ml->sml_next ) {
103 switch( mod->sm_op ) {
105 case LDAP_MOD_REPLACE:
106 if ( mod->sm_desc == slap_schema.si_ad_structuralObjectClass ) {
107 value_match( &match, slap_schema.si_ad_structuralObjectClass,
108 slap_schema.si_ad_structuralObjectClass->
109 ad_type->sat_equality,
110 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
111 &mod->sm_values[0], &scbva[0], text );
112 if ( !match ) glue_attr_delete = 1;
115 if ( glue_attr_delete )
119 if ( glue_attr_delete ) {
120 Attribute **app = &e->e_attrs;
121 while ( *app != NULL ) {
122 if ( !is_at_operational( (*app)->a_desc->ad_type )) {
123 Attribute *save = *app;
124 *app = (*app)->a_next;
128 app = &(*app)->a_next;
132 for ( ml = modlist; ml != NULL; ml = ml->sml_next ) {
136 aold = attr_find( e->e_attrs, mod->sm_desc );
138 a_flags = aold->a_flags;
142 switch ( mod->sm_op ) {
146 Debug(LDAP_DEBUG_ARGS,
147 "mdb_modify_internal: add %s\n",
148 mod->sm_desc->ad_cname.bv_val, 0, 0);
151 err = modify_add_values( e, mod, get_permissiveModify(op),
152 text, textbuf, textlen );
155 mod->sm_op = SLAP_MOD_SOFTADD;
156 if ( err == LDAP_TYPE_OR_VALUE_EXISTS )
160 mod->sm_op = SLAP_MOD_ADD_IF_NOT_PRESENT;
163 if( err != LDAP_SUCCESS ) {
164 Debug(LDAP_DEBUG_ARGS, "mdb_modify_internal: %d %s\n",
168 anew = attr_find( e->e_attrs, mod->sm_desc );
171 /* check for big multivalued attrs */
172 if ( anew->a_numvals > mdb->mi_multi_hi )
173 anew->a_flags |= SLAP_ATTR_BIG_MULTI;
174 if ( anew->a_flags & SLAP_ATTR_BIG_MULTI ) {
176 err = mdb_cursor_open( tid, mdb->mi_dbis[MDB_ID2VAL], &mvc );
180 /* if prev was set, just add new values */
181 if (a_flags & SLAP_ATTR_BIG_MULTI ) {
182 anew = (Attribute *)mod;
185 anew->a_nvals = anew->a_vals;
187 err = mdb_mval_put(op, mvc, e->e_id, anew);
188 if (a_flags & SLAP_ATTR_BIG_MULTI ) {
189 /* Undo nvals tweak */
190 if (anew->a_nvals == anew->a_vals)
191 anew->a_nvals = NULL;
197 case LDAP_MOD_DELETE:
198 if ( glue_attr_delete ) {
204 Debug(LDAP_DEBUG_ARGS,
205 "mdb_modify_internal: delete %s\n",
206 mod->sm_desc->ad_cname.bv_val, 0, 0);
208 err = modify_delete_values( e, mod, get_permissiveModify(op),
209 text, textbuf, textlen );
212 mod->sm_op = SLAP_MOD_SOFTDEL;
213 if ( err == LDAP_NO_SUCH_ATTRIBUTE ) {
219 if( err != LDAP_SUCCESS ) {
220 Debug(LDAP_DEBUG_ARGS, "mdb_modify_internal: %d %s\n",
225 /* check for big multivalued attrs */
226 if (a_flags & SLAP_ATTR_BIG_MULTI) {
229 err = mdb_cursor_open( tid, mdb->mi_dbis[MDB_ID2VAL], &mvc );
233 if ( mod->sm_numvals ) {
234 anew = attr_find( e->e_attrs, mod->sm_desc );
236 if ( anew->a_numvals < mdb->mi_multi_lo ) {
237 anew->a_flags ^= SLAP_ATTR_BIG_MULTI;
240 anew = (Attribute *)mod;
247 /* delete all values */
249 anew->a_desc = mod->sm_desc;
252 err = mdb_mval_del( op, mvc, e->e_id, anew );
257 case LDAP_MOD_REPLACE:
258 Debug(LDAP_DEBUG_ARGS,
259 "mdb_modify_internal: replace %s\n",
260 mod->sm_desc->ad_cname.bv_val, 0, 0);
261 err = modify_replace_values( e, mod, get_permissiveModify(op),
262 text, textbuf, textlen );
263 if( err != LDAP_SUCCESS ) {
264 Debug(LDAP_DEBUG_ARGS, "mdb_modify_internal: %d %s\n",
268 if (a_flags & SLAP_ATTR_BIG_MULTI) {
271 err = mdb_cursor_open( tid, mdb->mi_dbis[MDB_ID2VAL], &mvc );
275 /* delete all values */
277 anew->a_desc = mod->sm_desc;
279 err = mdb_mval_del( op, mvc, e->e_id, anew );
283 anew = attr_find( e->e_attrs, mod->sm_desc );
284 if (mod->sm_numvals >= mdb->mi_multi_lo) {
285 anew->a_flags |= SLAP_ATTR_BIG_MULTI;
287 err = mdb_cursor_open( tid, mdb->mi_dbis[MDB_ID2VAL], &mvc );
291 err = mdb_mval_put(op, mvc, e->e_id, anew);
293 /* revert back to normal attr */
294 anew->a_flags &= ~SLAP_ATTR_BIG_MULTI;
299 case LDAP_MOD_INCREMENT:
300 Debug(LDAP_DEBUG_ARGS,
301 "mdb_modify_internal: increment %s\n",
302 mod->sm_desc->ad_cname.bv_val, 0, 0);
303 err = modify_increment_values( e, mod, get_permissiveModify(op),
304 text, textbuf, textlen );
305 if( err != LDAP_SUCCESS ) {
306 Debug(LDAP_DEBUG_ARGS,
307 "mdb_modify_internal: %d %s\n",
314 case SLAP_MOD_SOFTADD:
315 Debug(LDAP_DEBUG_ARGS,
316 "mdb_modify_internal: softadd %s\n",
317 mod->sm_desc->ad_cname.bv_val, 0, 0);
318 /* Avoid problems in index_add_mods()
319 * We need to add index if necessary.
321 mod->sm_op = LDAP_MOD_ADD;
325 case SLAP_MOD_SOFTDEL:
326 Debug(LDAP_DEBUG_ARGS,
327 "mdb_modify_internal: softdel %s\n",
328 mod->sm_desc->ad_cname.bv_val, 0, 0);
329 /* Avoid problems in index_delete_mods()
330 * We need to add index if necessary.
332 mod->sm_op = LDAP_MOD_DELETE;
336 case SLAP_MOD_ADD_IF_NOT_PRESENT:
337 if ( attr_find( e->e_attrs, mod->sm_desc ) != NULL ) {
343 Debug(LDAP_DEBUG_ARGS,
344 "mdb_modify_internal: add_if_not_present %s\n",
345 mod->sm_desc->ad_cname.bv_val, 0, 0);
346 /* Avoid problems in index_add_mods()
347 * We need to add index if necessary.
349 mod->sm_op = LDAP_MOD_ADD;
354 Debug(LDAP_DEBUG_ANY, "mdb_modify_internal: invalid op %d\n",
356 *text = "Invalid modify operation";
358 Debug(LDAP_DEBUG_ARGS, "mdb_modify_internal: %d %s\n",
362 if ( err != LDAP_SUCCESS ) {
363 attrs_free( e->e_attrs );
364 e->e_attrs = save_attrs;
365 /* unlock entry, delete from cache */
369 /* If objectClass was modified, reset the flags */
370 if ( mod->sm_desc == slap_schema.si_ad_objectClass ) {
374 if ( glue_attr_delete ) e->e_ocflags = 0;
377 /* check if modified attribute was indexed
378 * but not in case of NOOP... */
380 mdb_modify_idxflags( op, mod->sm_desc, got_delete, e->e_attrs, save_attrs );
384 /* check that the entry still obeys the schema */
386 rc = entry_schema_check( op, e, save_attrs, get_relax(op), 0, &ap,
387 text, textbuf, textlen );
388 if ( rc != LDAP_SUCCESS || op->o_noop ) {
389 attrs_free( e->e_attrs );
390 /* clear the indexing flags */
391 for ( ap = save_attrs; ap != NULL; ap = ap->a_next ) {
392 ap->a_flags &= ~(SLAP_ATTR_IXADD|SLAP_ATTR_IXDEL);
394 e->e_attrs = save_attrs;
396 if ( rc != LDAP_SUCCESS ) {
397 Debug( LDAP_DEBUG_ANY,
398 "entry failed schema check: %s\n",
402 /* if NOOP then silently revert to saved attrs */
406 /* structuralObjectClass modified! */
408 assert( ap->a_desc == slap_schema.si_ad_structuralObjectClass );
410 mdb_modify_idxflags( op, slap_schema.si_ad_structuralObjectClass,
411 1, e->e_attrs, save_attrs );
415 /* update the indices of the modified attributes */
417 /* start with deleting the old index entries */
418 for ( ap = save_attrs; ap != NULL; ap = ap->a_next ) {
419 if ( ap->a_flags & SLAP_ATTR_IXDEL ) {
422 ap->a_flags &= ~SLAP_ATTR_IXDEL;
423 a2 = attr_find( e->e_attrs, ap->a_desc );
425 /* need to detect which values were deleted */
427 /* let add know there were deletes */
428 if ( a2->a_flags & SLAP_ATTR_IXADD )
429 a2->a_flags |= SLAP_ATTR_IXDEL;
430 vals = op->o_tmpalloc( (ap->a_numvals + 1) *
431 sizeof(struct berval), op->o_tmpmemctx );
433 for ( i=0; i < ap->a_numvals; i++ ) {
434 rc = attr_valfind( a2, SLAP_MR_ASSERTED_VALUE_NORMALIZED_MATCH,
435 &ap->a_nvals[i], NULL, op->o_tmpmemctx );
436 /* Save deleted values */
437 if ( rc == LDAP_NO_SUCH_ATTRIBUTE )
438 vals[j++] = ap->a_nvals[i];
442 /* attribute was completely deleted */
446 if ( !BER_BVISNULL( vals )) {
447 rc = mdb_index_values( op, tid, ap->a_desc,
448 vals, e->e_id, SLAP_INDEX_DELETE_OP );
449 if ( rc != LDAP_SUCCESS ) {
450 Debug( LDAP_DEBUG_ANY,
451 "%s: attribute \"%s\" index delete failure\n",
452 op->o_log_prefix, ap->a_desc->ad_cname.bv_val, 0 );
453 attrs_free( e->e_attrs );
454 e->e_attrs = save_attrs;
457 if ( vals != ap->a_nvals )
458 op->o_tmpfree( vals, op->o_tmpmemctx );
463 /* add the new index entries */
464 for ( ap = e->e_attrs; ap != NULL; ap = ap->a_next ) {
465 if (ap->a_flags & SLAP_ATTR_IXADD) {
466 ap->a_flags &= ~SLAP_ATTR_IXADD;
467 if ( ap->a_flags & SLAP_ATTR_IXDEL ) {
468 /* if any values were deleted, we must readd index
469 * for all remaining values.
471 ap->a_flags &= ~SLAP_ATTR_IXDEL;
472 rc = mdb_index_values( op, tid, ap->a_desc,
474 e->e_id, SLAP_INDEX_ADD_OP );
477 /* if this was only an add, we only need to index
480 for ( ml = modlist; ml != NULL; ml = ml->sml_next ) {
482 if ( ml->sml_desc != ap->a_desc || !ml->sml_numvals )
485 switch( ml->sml_op ) {
487 case LDAP_MOD_REPLACE:
488 case LDAP_MOD_INCREMENT:
489 case SLAP_MOD_SOFTADD:
490 case SLAP_MOD_ADD_IF_NOT_PRESENT:
491 if ( ml->sml_op == LDAP_MOD_INCREMENT )
493 else if ( ml->sml_nvalues )
494 vals = ml->sml_nvalues;
496 vals = ml->sml_values;
497 rc = mdb_index_values( op, tid, ap->a_desc,
498 vals, e->e_id, SLAP_INDEX_ADD_OP );
504 /* This attr was affected by a modify of a subtype, so
505 * there was no direct match in the modlist. Just readd
509 rc = mdb_index_values( op, tid, ap->a_desc,
511 e->e_id, SLAP_INDEX_ADD_OP );
514 if ( rc != LDAP_SUCCESS ) {
515 Debug( LDAP_DEBUG_ANY,
516 "%s: attribute \"%s\" index add failure\n",
517 op->o_log_prefix, ap->a_desc->ad_cname.bv_val, 0 );
518 attrs_free( e->e_attrs );
519 e->e_attrs = save_attrs;
530 mdb_modify( Operation *op, SlapReply *rs )
532 struct mdb_info *mdb = (struct mdb_info *) op->o_bd->be_private;
534 int manageDSAit = get_manageDSAit( op );
535 char textbuf[SLAP_TEXT_BUFLEN];
536 size_t textlen = sizeof textbuf;
538 mdb_op_info opinfo = {{{ 0 }}}, *moi = &opinfo;
541 LDAPControl **preread_ctrl = NULL;
542 LDAPControl **postread_ctrl = NULL;
543 LDAPControl *ctrls[SLAP_MAX_RESPONSE_CONTROLS];
545 int numads = mdb->mi_numads;
547 Debug( LDAP_DEBUG_ARGS, LDAP_XSTRING(mdb_modify) ": %s\n",
548 op->o_req_dn.bv_val, 0, 0 );
551 if( op->o_txnSpec && txn_preop( op, rs ))
555 ctrls[num_ctrls] = NULL;
557 /* begin transaction */
558 rs->sr_err = mdb_opinfo_get( op, mdb, 0, &moi );
560 if( rs->sr_err != 0 ) {
561 Debug( LDAP_DEBUG_TRACE,
562 LDAP_XSTRING(mdb_modify) ": txn_begin failed: "
563 "%s (%d)\n", mdb_strerror(rs->sr_err), rs->sr_err, 0 );
564 rs->sr_err = LDAP_OTHER;
565 rs->sr_text = "internal error";
570 /* Don't touch the opattrs, if this is a contextCSN update
571 * initiated from updatedn */
572 if ( !be_isupdate(op) || !op->orm_modlist || op->orm_modlist->sml_next ||
573 op->orm_modlist->sml_desc != slap_schema.si_ad_contextCSN ) {
575 slap_mods_opattrs( op, &op->orm_modlist, 1 );
578 /* get entry or ancestor */
579 rs->sr_err = mdb_dn2entry( op, txn, NULL, &op->o_req_ndn, &e, NULL, 1 );
581 if ( rs->sr_err != 0 ) {
582 Debug( LDAP_DEBUG_TRACE,
583 LDAP_XSTRING(mdb_modify) ": dn2entry failed (%d)\n",
585 switch( rs->sr_err ) {
589 rs->sr_text = "ldap server busy";
592 rs->sr_err = LDAP_OTHER;
593 rs->sr_text = "internal error";
598 /* acquire and lock entry */
599 /* FIXME: dn2entry() should return non-glue entry */
600 if (( rs->sr_err == MDB_NOTFOUND ) ||
601 ( !manageDSAit && e && is_entry_glue( e )))
604 rs->sr_matched = ch_strdup( e->e_dn );
605 if ( is_entry_referral( e )) {
606 BerVarray ref = get_entry_referrals( op, e );
607 rs->sr_ref = referral_rewrite( ref, &e->e_name,
608 &op->o_req_dn, LDAP_SCOPE_DEFAULT );
609 ber_bvarray_free( ref );
613 mdb_entry_return( op, e );
617 rs->sr_ref = referral_rewrite( default_referral, NULL,
618 &op->o_req_dn, LDAP_SCOPE_DEFAULT );
621 rs->sr_flags = REP_MATCHED_MUSTBEFREED | REP_REF_MUSTBEFREED;
622 rs->sr_err = LDAP_REFERRAL;
623 send_ldap_result( op, rs );
627 if ( !manageDSAit && is_entry_referral( e ) ) {
628 /* entry is a referral, don't allow modify */
629 rs->sr_ref = get_entry_referrals( op, e );
631 Debug( LDAP_DEBUG_TRACE,
632 LDAP_XSTRING(mdb_modify) ": entry is referral\n",
635 rs->sr_err = LDAP_REFERRAL;
636 rs->sr_matched = e->e_name.bv_val;
637 rs->sr_flags = REP_REF_MUSTBEFREED;
638 send_ldap_result( op, rs );
639 rs->sr_matched = NULL;
643 if ( get_assert( op ) &&
644 ( test_filter( op, e, get_assertion( op )) != LDAP_COMPARE_TRUE ))
646 rs->sr_err = LDAP_ASSERTION_FAILED;
650 if( op->o_preread ) {
651 if( preread_ctrl == NULL ) {
652 preread_ctrl = &ctrls[num_ctrls++];
653 ctrls[num_ctrls] = NULL;
655 if ( slap_read_controls( op, rs, e,
656 &slap_pre_read_bv, preread_ctrl ) )
658 Debug( LDAP_DEBUG_TRACE,
659 "<=- " LDAP_XSTRING(mdb_modify) ": pre-read "
660 "failed!\n", 0, 0, 0 );
661 if ( op->o_preread & SLAP_CONTROL_CRITICAL ) {
662 /* FIXME: is it correct to abort
663 * operation if control fails? */
669 /* Modify the entry */
671 rs->sr_err = mdb_modify_internal( op, txn, op->orm_modlist,
672 &dummy, &rs->sr_text, textbuf, textlen );
674 if( rs->sr_err != LDAP_SUCCESS ) {
675 Debug( LDAP_DEBUG_TRACE,
676 LDAP_XSTRING(mdb_modify) ": modify failed (%d)\n",
678 /* Only free attrs if they were dup'd. */
679 if ( dummy.e_attrs == e->e_attrs ) dummy.e_attrs = NULL;
683 /* change the entry itself */
684 rs->sr_err = mdb_id2entry_update( op, txn, NULL, &dummy );
685 if ( rs->sr_err != 0 ) {
686 Debug( LDAP_DEBUG_TRACE,
687 LDAP_XSTRING(mdb_modify) ": id2entry update failed " "(%d)\n",
689 if ( rs->sr_err == LDAP_ADMINLIMIT_EXCEEDED ) {
690 rs->sr_text = "entry too big";
692 rs->sr_err = LDAP_OTHER;
693 rs->sr_text = "entry update failed";
698 if( op->o_postread ) {
699 if( postread_ctrl == NULL ) {
700 postread_ctrl = &ctrls[num_ctrls++];
701 ctrls[num_ctrls] = NULL;
703 if( slap_read_controls( op, rs, &dummy,
704 &slap_post_read_bv, postread_ctrl ) )
706 Debug( LDAP_DEBUG_TRACE,
707 "<=- " LDAP_XSTRING(mdb_modify)
708 ": post-read failed!\n", 0, 0, 0 );
709 if ( op->o_postread & SLAP_CONTROL_CRITICAL ) {
710 /* FIXME: is it correct to abort
711 * operation if control fails? */
717 /* Only free attrs if they were dup'd. */
718 if ( dummy.e_attrs == e->e_attrs ) dummy.e_attrs = NULL;
719 if( moi == &opinfo ) {
720 LDAP_SLIST_REMOVE( &op->o_extra, &opinfo.moi_oe, OpExtra, oe_next );
721 opinfo.moi_oe.oe_key = NULL;
723 mdb->mi_numads = numads;
724 mdb_txn_abort( txn );
725 rs->sr_err = LDAP_X_NO_OPERATION;
729 rs->sr_err = mdb_txn_commit( txn );
731 mdb->mi_numads = numads;
736 if( rs->sr_err != 0 ) {
737 Debug( LDAP_DEBUG_ANY,
738 LDAP_XSTRING(mdb_modify) ": txn_%s failed: %s (%d)\n",
739 op->o_noop ? "abort (no-op)" : "commit",
740 mdb_strerror(rs->sr_err), rs->sr_err );
741 rs->sr_err = LDAP_OTHER;
742 rs->sr_text = "commit failed";
747 Debug( LDAP_DEBUG_TRACE,
748 LDAP_XSTRING(mdb_modify) ": updated%s id=%08lx dn=\"%s\"\n",
749 op->o_noop ? " (no-op)" : "",
750 dummy.e_id, op->o_req_dn.bv_val );
752 rs->sr_err = LDAP_SUCCESS;
754 if( num_ctrls ) rs->sr_ctrls = ctrls;
757 if( dummy.e_attrs ) {
758 attrs_free( dummy.e_attrs );
760 send_ldap_result( op, rs );
763 if( rs->sr_err == LDAP_SUCCESS && mdb->bi_txn_cp_kbyte ) {
764 TXN_CHECKPOINT( mdb->bi_dbenv,
765 mdb->bi_txn_cp_kbyte, mdb->bi_txn_cp_min, 0 );
770 slap_graduate_commit_csn( op );
772 if( moi == &opinfo ) {
774 mdb->mi_numads = numads;
775 mdb_txn_abort( txn );
777 if ( opinfo.moi_oe.oe_key ) {
778 LDAP_SLIST_REMOVE( &op->o_extra, &opinfo.moi_oe, OpExtra, oe_next );
785 mdb_entry_return( op, e );
788 if( preread_ctrl != NULL && (*preread_ctrl) != NULL ) {
789 slap_sl_free( (*preread_ctrl)->ldctl_value.bv_val, op->o_tmpmemctx );
790 slap_sl_free( *preread_ctrl, op->o_tmpmemctx );
792 if( postread_ctrl != NULL && (*postread_ctrl) != NULL ) {
793 slap_sl_free( (*postread_ctrl)->ldctl_value.bv_val, op->o_tmpmemctx );
794 slap_sl_free( *postread_ctrl, op->o_tmpmemctx );