1 /* database.c - deals with database subsystem */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2001-2006 The OpenLDAP Foundation.
6 * Portions Copyright 2001-2003 Pierangelo Masarati.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted only as authorized by the OpenLDAP
13 * A copy of this license is available in file LICENSE in the
14 * top-level directory of the distribution or, alternatively, at
15 * <http://www.OpenLDAP.org/license.html>.
18 * This work was initially developed by Pierangelo Masarati for inclusion
19 * in OpenLDAP Software.
25 #include <ac/string.h>
26 #include <ac/unistd.h>
29 #include "back-monitor.h"
31 #if defined(LDAP_SLAPI)
33 static int monitor_back_add_plugin( monitor_info_t *mi, Backend *be, Entry *e );
34 #endif /* defined(LDAP_SLAPI) */
36 #if 0 /* moved to back-bdb/monitor.c */
37 #if defined(SLAPD_BDB)
38 #include "../back-bdb/back-bdb.h"
39 #endif /* defined(SLAPD_BDB) */
40 #if defined(SLAPD_HDB)
41 #include "../back-hdb/back-bdb.h"
42 #endif /* defined(SLAPD_HDB) */
44 #if defined(SLAPD_LDAP)
45 #include "../back-ldap/back-ldap.h"
46 #endif /* defined(SLAPD_LDAP) */
47 #if defined(SLAPD_META)
48 #include "../back-meta/back-meta.h"
49 #endif /* defined(SLAPD_META) */
51 /* for PATH_MAX on some systems (e.g. Solaris) */
54 #endif /* HAVE_LIMITS_H */
57 #endif /* ! PATH_MAX */
60 monitor_subsys_database_modify(
65 static struct restricted_ops_t {
68 } restricted_ops[] = {
69 { BER_BVC( "add" ), SLAP_RESTRICT_OP_ADD },
70 { BER_BVC( "bind" ), SLAP_RESTRICT_OP_BIND },
71 { BER_BVC( "compare" ), SLAP_RESTRICT_OP_COMPARE },
72 { BER_BVC( "delete" ), SLAP_RESTRICT_OP_DELETE },
73 { BER_BVC( "extended" ), SLAP_RESTRICT_OP_EXTENDED },
74 { BER_BVC( "modify" ), SLAP_RESTRICT_OP_MODIFY },
75 { BER_BVC( "rename" ), SLAP_RESTRICT_OP_RENAME },
76 { BER_BVC( "search" ), SLAP_RESTRICT_OP_SEARCH },
78 }, restricted_exops[] = {
79 { BER_BVC( LDAP_EXOP_START_TLS ), SLAP_RESTRICT_EXOP_START_TLS },
80 { BER_BVC( LDAP_EXOP_MODIFY_PASSWD ), SLAP_RESTRICT_EXOP_MODIFY_PASSWD },
81 { BER_BVC( LDAP_EXOP_WHO_AM_I ), SLAP_RESTRICT_EXOP_WHOAMI },
82 { BER_BVC( LDAP_EXOP_CANCEL ), SLAP_RESTRICT_EXOP_CANCEL },
87 init_readOnly( monitor_info_t *mi, Entry *e, slap_mask_t restrictops )
89 struct berval *tf = ( ( restrictops & SLAP_RESTRICT_OP_MASK ) == SLAP_RESTRICT_OP_WRITES ) ?
90 (struct berval *)&slap_true_bv : (struct berval *)&slap_false_bv;
92 return attr_merge_one( e, mi->mi_ad_readOnly, tf, tf );
96 init_restrictedOperation( monitor_info_t *mi, Entry *e, slap_mask_t restrictops )
100 for ( i = 0; restricted_ops[ i ].op.bv_val; i++ ) {
101 if ( restrictops & restricted_ops[ i ].tag ) {
102 rc = attr_merge_one( e, mi->mi_ad_restrictedOperation,
103 &restricted_ops[ i ].op,
104 &restricted_ops[ i ].op );
111 for ( i = 0; restricted_exops[ i ].op.bv_val; i++ ) {
112 if ( restrictops & restricted_exops[ i ].tag ) {
113 rc = attr_merge_one( e, mi->mi_ad_restrictedOperation,
114 &restricted_exops[ i ].op,
115 &restricted_exops[ i ].op );
126 monitor_subsys_database_init(
132 Entry *e_database, **ep;
135 monitor_subsys_t *ms_backend,
138 assert( be != NULL );
140 ms->mss_modify = monitor_subsys_database_modify;
142 mi = ( monitor_info_t * )be->be_private;
144 ms_backend = monitor_back_get_subsys( SLAPD_MONITOR_BACKEND_NAME );
145 if ( ms_backend == NULL ) {
146 Debug( LDAP_DEBUG_ANY,
147 "monitor_subsys_database_init: "
149 "\"" SLAPD_MONITOR_BACKEND_NAME "\" "
155 ms_overlay = monitor_back_get_subsys( SLAPD_MONITOR_OVERLAY_NAME );
156 if ( ms_overlay == NULL ) {
157 Debug( LDAP_DEBUG_ANY,
158 "monitor_subsys_database_init: "
160 "\"" SLAPD_MONITOR_OVERLAY_NAME "\" "
166 if ( monitor_cache_get( mi, &ms->mss_ndn, &e_database ) ) {
167 Debug( LDAP_DEBUG_ANY,
168 "monitor_subsys_database_init: "
169 "unable to get entry \"%s\"\n",
170 ms->mss_ndn.bv_val, 0, 0 );
174 (void)init_readOnly( mi, e_database, frontendDB->be_restrictops );
175 (void)init_restrictedOperation( mi, e_database, frontendDB->be_restrictops );
177 mp = ( monitor_entry_t * )e_database->e_private;
178 mp->mp_children = NULL;
179 ep = &mp->mp_children;
182 LDAP_STAILQ_FOREACH( be, &backendDB, be_next ) {
183 char buf[ BACKMONITOR_BUFSIZE ];
185 slap_overinfo *oi = NULL;
186 BackendInfo *bi, *bi2;
194 if ( overlay_is_over( be ) ) {
195 oi = (slap_overinfo *)be->bd_info->bi_private;
199 /* Subordinates are not exposed as their own naming context */
200 if ( SLAP_GLUE_SUBORDINATE( be ) ) {
204 bv.bv_len = snprintf( buf, sizeof( buf ),
205 "cn=Database %d", i );
207 e = monitor_entry_stub( &ms->mss_dn, &ms->mss_ndn, &bv,
208 mi->mi_oc_monitoredObject, mi, NULL, NULL );
211 Debug( LDAP_DEBUG_ANY,
212 "monitor_subsys_database_init: "
213 "unable to create entry \"cn=Database %d,%s\"\n",
214 i, ms->mss_dn.bv_val, 0 );
218 ber_str2bv( bi->bi_type, 0, 0, &bv );
219 attr_merge_one( e, mi->mi_ad_monitoredInfo, &bv, NULL );
220 attr_merge_one( e, mi->mi_ad_monitorIsShadow,
221 SLAP_SHADOW( be ) ? (struct berval *)&slap_true_bv :
222 (struct berval *)&slap_false_bv, NULL );
224 if ( SLAP_MONITOR( be ) ) {
225 attr_merge( e, slap_schema.si_ad_monitorContext,
226 be->be_suffix, be->be_nsuffix );
227 attr_merge( e_database, slap_schema.si_ad_monitorContext,
228 be->be_suffix, be->be_nsuffix );
231 if ( be->be_suffix == NULL ) {
232 Debug( LDAP_DEBUG_ANY,
233 "monitor_subsys_database_init: "
234 "missing suffix for database %d\n",
238 attr_merge( e, slap_schema.si_ad_namingContexts,
239 be->be_suffix, be->be_nsuffix );
240 attr_merge( e_database, slap_schema.si_ad_namingContexts,
241 be->be_suffix, be->be_nsuffix );
244 (void)init_readOnly( mi, e, be->be_restrictops );
245 (void)init_restrictedOperation( mi, e, be->be_restrictops );
247 if ( SLAP_SHADOW( be ) && be->be_update_refs ) {
248 attr_merge_normalize( e, mi->mi_ad_monitorUpdateRef,
249 be->be_update_refs, NULL );
253 slap_overinst *on = oi->oi_list,
256 for ( ; on; on = on->on_next ) {
260 for ( on2 = on1; on2 != on; on2 = on2->on_next ) {
261 if ( on2->on_bi.bi_type == on->on_bi.bi_type ) {
270 ber_str2bv( on->on_bi.bi_type, 0, 0, &bv );
271 attr_merge_normalize_one( e, mi->mi_ad_monitorOverlay,
274 /* find the overlay number, j */
275 for ( on2 = overlay_next( NULL ), j = 0; on2; on2 = overlay_next( on2 ), j++ ) {
276 if ( on2->on_bi.bi_type == on->on_bi.bi_type ) {
280 assert( on2 != NULL );
282 snprintf( buf, sizeof( buf ),
284 j, ms_overlay->mss_dn.bv_val );
285 ber_str2bv( buf, 0, 0, &bv );
286 attr_merge_normalize_one( e,
287 slap_schema.si_ad_seeAlso,
296 #if 0 /* moved into back-bdb/monitor.c */
297 #if defined(SLAPD_BDB) || defined(SLAPD_HDB)
298 } else if ( strcmp( bi->bi_type, "bdb" ) == 0
299 || strcmp( bi->bi_type, "hdb" ) == 0 )
302 ber_len_t pathlen = 0, len = 0;
303 char path[ PATH_MAX ] = { '\0' };
304 struct bdb_info *bdb = (struct bdb_info *) be->be_private;
305 char *fname = bdb->bi_dbenv_home;
307 len = strlen( fname );
308 if ( fname[ 0 ] != '/' ) {
309 /* get full path name */
310 getcwd( path, sizeof( path ) );
311 pathlen = strlen( path );
313 if ( fname[ 0 ] == '.' && fname[ 1 ] == '/' ) {
319 bv.bv_len = STRLENOF( "file://" ) + pathlen
320 + STRLENOF( "/" ) + len;
321 bv.bv_val = ch_malloc( bv.bv_len + STRLENOF( "/" ) + 1 );
322 AC_MEMCPY( bv.bv_val, "file://", STRLENOF( "file://" ) );
324 AC_MEMCPY( &bv.bv_val[ STRLENOF( "file://" ) ],
326 bv.bv_val[ STRLENOF( "file://" ) + pathlen ] = '/';
329 AC_MEMCPY( &bv.bv_val[ STRLENOF( "file://" ) + pathlen ],
331 if ( bv.bv_val[ bv.bv_len - 1 ] != '/' ) {
332 bv.bv_val[ bv.bv_len ] = '/';
335 bv.bv_val[ bv.bv_len ] = '\0';
337 attr_merge_normalize_one( e, slap_schema.si_ad_labeledURI,
340 ch_free( bv.bv_val );
342 #endif /* defined(SLAPD_BDB) || defined(SLAPD_HDB) */
344 #if defined(SLAPD_LDAP)
345 } else if ( strcmp( bi->bi_type, "ldap" ) == 0 ) {
346 ldapinfo_t *li = (ldapinfo_t *)be->be_private;
348 attr_merge_normalize( e, slap_schema.si_ad_labeledURI,
349 li->li_bvuri, NULL );
351 char **urls = ldap_str2charray( li->li_uri, " " );
353 if ( urls != NULL ) {
356 for ( u = 0; urls[ u ] != NULL; u++ ) {
359 ber_str2bv( urls[ u ], 0, 0, &bv );
361 attr_merge_normalize_one( e,
362 slap_schema.si_ad_labeledURI,
366 ldap_charray_free( urls );
370 #endif /* defined(SLAPD_LDAP) */
371 #if defined(SLAPD_META)
372 } else if ( strcmp( bi->bi_type, "meta" ) == 0 ) {
373 metainfo_t *mi = (metainfo_t *)be->be_private;
376 for ( t = 0; t < mi->mi_ntargets; t++ ) {
377 char **urls = ldap_str2charray( mi->mi_targets[ t ]->mt_uri, " " );
379 if ( urls != NULL ) {
382 for ( u = 0; urls[ u ] != NULL; u++ ) {
385 ber_str2bv( urls[ u ], 0, 0, &bv );
387 attr_merge_normalize_one( e,
388 slap_schema.si_ad_labeledURI,
391 ldap_charray_free( urls );
394 #endif /* defined(SLAPD_META) */
398 LDAP_STAILQ_FOREACH( bi2, &backendInfo, bi_next ) {
400 if ( bi2->bi_type == bi->bi_type ) {
403 snprintf( buf, sizeof( buf ),
405 j, ms_backend->mss_dn.bv_val );
407 bv.bv_len = strlen( buf );
408 attr_merge_normalize_one( e,
409 slap_schema.si_ad_seeAlso,
414 /* we must find it! */
417 mp = monitor_entrypriv_create();
421 e->e_private = ( void * )mp;
423 mp->mp_flags = ms->mss_flags
426 if ( monitor_cache_add( mi, e ) ) {
427 Debug( LDAP_DEBUG_ANY,
428 "monitor_subsys_database_init: "
429 "unable to add entry \"cn=Database %d,%s\"\n",
430 i, ms->mss_dn.bv_val, 0 );
434 #if defined(LDAP_SLAPI)
435 monitor_back_add_plugin( mi, be, e );
436 #endif /* defined(LDAP_SLAPI) */
439 Entry **ep_overlay = &mp->mp_children;
440 monitor_entry_t *mp_overlay;
441 slap_overinst *on = oi->oi_list;
444 for ( o = 0; on; o++, on = on->on_next ) {
448 /* find the overlay number, j */
449 for ( on2 = overlay_next( NULL ), j = 0; on2; on2 = overlay_next( on2 ), j++ ) {
450 if ( on2->on_bi.bi_type == on->on_bi.bi_type ) {
454 assert( on2 != NULL );
456 bv.bv_len = snprintf( buf, sizeof( buf ), "cn=Overlay %d", o );
459 e_overlay = monitor_entry_stub( &e->e_name, &e->e_nname, &bv,
460 mi->mi_oc_monitoredObject, mi, NULL, NULL );
462 if ( e_overlay == NULL ) {
463 Debug( LDAP_DEBUG_ANY,
464 "monitor_subsys_database_init: "
465 "unable to create entry "
466 "\"cn=Overlay %d,cn=Database %d,%s\"\n",
467 o, i, ms->mss_dn.bv_val );
470 ber_str2bv( on->on_bi.bi_type, 0, 0, &bv );
471 attr_merge_one( e_overlay, mi->mi_ad_monitoredInfo, &bv, NULL );
473 bv.bv_len = snprintf( buf, sizeof( buf ), "cn=Overlay %d,%s",
474 j, ms_overlay->mss_dn.bv_val );
476 attr_merge_normalize_one( e_overlay, slap_schema.si_ad_seeAlso,
479 mp_overlay = monitor_entrypriv_create();
480 if ( mp_overlay == NULL ) {
483 e_overlay->e_private = ( void * )mp_overlay;
484 mp_overlay->mp_info = ms;
485 mp_overlay->mp_flags = ms->mss_flags
488 if ( monitor_cache_add( mi, e_overlay ) ) {
489 Debug( LDAP_DEBUG_ANY,
490 "monitor_subsys_database_init: "
491 "unable to add entry "
492 "\"cn=Overlay %d,cn=Database %d,%s\"\n",
493 o, i, ms->mss_dn.bv_val );
497 *ep_overlay = e_overlay;
498 ep_overlay = &mp_overlay->mp_next;
506 monitor_cache_release( mi, e_database );
513 * cur: must not contain the tags corresponding to the values in v
514 * delta: will contain the tags corresponding to the values in v
517 value_mask( BerVarray v, slap_mask_t cur, slap_mask_t *delta )
519 for ( ; !BER_BVISNULL( v ); v++ ) {
520 struct restricted_ops_t *rops;
523 if ( OID_LEADCHAR( v->bv_val[ 0 ] ) ) {
524 rops = restricted_exops;
527 rops = restricted_ops;
530 for ( i = 0; !BER_BVISNULL( &rops[ i ].op ); i++ ) {
531 if ( ber_bvstrcasecmp( v, &rops[ i ].op ) != 0 ) {
535 if ( rops[ i ].tag & *delta ) {
539 if ( rops[ i ].tag & cur ) {
543 cur |= rops[ i ].tag;
544 *delta |= rops[ i ].tag;
549 if ( BER_BVISNULL( &rops[ i ].op ) ) {
550 return LDAP_INVALID_SYNTAX;
558 monitor_subsys_database_modify(
563 monitor_info_t *mi = (monitor_info_t *)op->o_bd->be_private;
565 Attribute *save_attrs, *a;
568 int ro_gotval = 1, i, n;
569 slap_mask_t rp_add = 0, rp_delete = 0, rp_cur;
572 i = sscanf( e->e_nname.bv_val, "cn=database %d,", &n );
574 return SLAP_CB_CONTINUE;
577 if ( n < 0 || n >= nBackendDB ) {
578 rs->sr_text = "invalid database index";
579 return ( rs->sr_err = LDAP_NO_SUCH_OBJECT );
582 LDAP_STAILQ_FOREACH( be, &backendDB, be_next ) {
588 /* do not allow some changes on back-monitor (needs work)... */
589 if ( SLAP_MONITOR( be ) ) {
590 rs->sr_text = "no modifications allowed to monitor database entry";
591 return ( rs->sr_err = LDAP_UNWILLING_TO_PERFORM );
594 rp_cur = be->be_restrictops;
596 save_attrs = e->e_attrs;
597 e->e_attrs = attrs_dup( e->e_attrs );
599 for ( ml = op->orm_modlist; ml; ml = ml->sml_next ) {
600 Modification *mod = &ml->sml_mod;
602 if ( mod->sm_desc == mi->mi_ad_readOnly ) {
605 if ( mod->sm_values ) {
606 if ( !BER_BVISNULL( &mod->sm_values[ 1 ] ) ) {
607 rs->sr_text = "attempting to modify multiple values of single-valued attribute";
608 rc = rs->sr_err = LDAP_CONSTRAINT_VIOLATION;
612 if ( bvmatch( &slap_true_bv, mod->sm_values )) {
615 } else if ( bvmatch( &slap_false_bv, mod->sm_values )) {
620 rc = rs->sr_err = LDAP_INVALID_SYNTAX;
625 switch ( mod->sm_op ) {
626 case LDAP_MOD_DELETE:
627 if ( ro_gotval < 1 ) {
628 rc = rs->sr_err = LDAP_CONSTRAINT_VIOLATION;
633 if ( val == 0 && ( rp_cur & SLAP_RESTRICT_OP_WRITES ) == SLAP_RESTRICT_OP_WRITES ) {
634 rc = rs->sr_err = LDAP_NO_SUCH_ATTRIBUTE;
638 if ( val == 1 && ( rp_cur & SLAP_RESTRICT_OP_WRITES ) != SLAP_RESTRICT_OP_WRITES ) {
639 rc = rs->sr_err = LDAP_NO_SUCH_ATTRIBUTE;
645 case LDAP_MOD_REPLACE:
650 if ( ro_gotval > 0 ) {
651 rc = rs->sr_err = LDAP_CONSTRAINT_VIOLATION;
657 rp_add |= (~rp_cur) & SLAP_RESTRICT_OP_WRITES;
658 rp_cur |= SLAP_RESTRICT_OP_WRITES;
659 rp_delete &= ~SLAP_RESTRICT_OP_WRITES;
661 } else if ( val == 0 ) {
662 rp_delete |= rp_cur & SLAP_RESTRICT_OP_WRITES;
663 rp_cur &= ~SLAP_RESTRICT_OP_WRITES;
664 rp_add &= ~SLAP_RESTRICT_OP_WRITES;
669 rc = rs->sr_err = LDAP_OTHER;
673 } else if ( mod->sm_desc == mi->mi_ad_restrictedOperation ) {
674 slap_mask_t mask = 0;
676 switch ( mod->sm_op ) {
677 case LDAP_MOD_DELETE:
678 if ( mod->sm_values == NULL ) {
684 rc = value_mask( mod->sm_values, ~rp_cur, &mask );
685 if ( rc == LDAP_SUCCESS ) {
690 } else if ( rc == LDAP_OTHER ) {
691 rc = LDAP_NO_SUCH_ATTRIBUTE;
695 case LDAP_MOD_REPLACE:
702 rc = value_mask( mod->sm_values, rp_cur, &mask );
703 if ( rc == LDAP_SUCCESS ) {
708 } else if ( rc == LDAP_OTHER ) {
709 rc = rs->sr_err = LDAP_TYPE_OR_VALUE_EXISTS;
714 rc = rs->sr_err = LDAP_OTHER;
718 if ( rc != LDAP_SUCCESS ) {
722 } else if ( is_at_operational( mod->sm_desc->ad_type )) {
723 /* accept all operational attributes */
724 attr_delete( &e->e_attrs, mod->sm_desc );
725 rc = attr_merge( e, mod->sm_desc, mod->sm_values,
728 rc = rs->sr_err = LDAP_OTHER;
733 rc = rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
739 if ( ro_gotval < 1 ) {
740 rc = rs->sr_err = LDAP_CONSTRAINT_VIOLATION;
744 if ( ( rp_cur & SLAP_RESTRICT_OP_EXTENDED ) && ( rp_cur & SLAP_RESTRICT_EXOP_MASK ) ) {
745 rc = rs->sr_err = LDAP_CONSTRAINT_VIOLATION;
749 if ( rp_delete & rp_add ) {
750 rc = rs->sr_err = LDAP_OTHER;
754 /* check current value of readOnly */
755 if ( ( rp_cur & SLAP_RESTRICT_OP_WRITES ) == SLAP_RESTRICT_OP_WRITES ) {
756 tf = (struct berval *)&slap_true_bv;
759 tf = (struct berval *)&slap_false_bv;
762 a = attr_find( e->e_attrs, mi->mi_ad_readOnly );
768 if ( !bvmatch( &a->a_vals[ 0 ], tf ) ) {
769 attr_delete( &e->e_attrs, mi->mi_ad_readOnly );
770 rc = attr_merge_one( e, mi->mi_ad_readOnly, tf, tf );
773 if ( rc == LDAP_SUCCESS ) {
775 if ( rp_delete == be->be_restrictops ) {
776 attr_delete( &e->e_attrs, mi->mi_ad_restrictedOperation );
779 a = attr_find( e->e_attrs, mi->mi_ad_restrictedOperation );
781 rc = rs->sr_err = LDAP_OTHER;
785 for ( i = 0; !BER_BVISNULL( &restricted_ops[ i ].op ); i++ ) {
786 if ( rp_delete & restricted_ops[ i ].tag ) {
789 for ( j = 0; !BER_BVISNULL( &a->a_nvals[ j ] ); j++ ) {
792 if ( !bvmatch( &a->a_nvals[ j ], &restricted_ops[ i ].op ) ) {
796 ch_free( a->a_vals[ j ].bv_val );
797 ch_free( a->a_nvals[ j ].bv_val );
799 for ( k = j + 1; !BER_BVISNULL( &a->a_nvals[ k ] ); k++ ) {
800 a->a_vals[ k - 1 ] = a->a_vals[ k ];
801 a->a_nvals[ k - 1 ] = a->a_nvals[ k ];
804 BER_BVZERO( &a->a_vals[ k - 1 ] );
805 BER_BVZERO( &a->a_nvals[ k - 1 ] );
810 for ( i = 0; !BER_BVISNULL( &restricted_exops[ i ].op ); i++ ) {
811 if ( rp_delete & restricted_exops[ i ].tag ) {
814 for ( j = 0; !BER_BVISNULL( &a->a_nvals[ j ] ); j++ ) {
817 if ( !bvmatch( &a->a_nvals[ j ], &restricted_exops[ i ].op ) ) {
821 ch_free( a->a_vals[ j ].bv_val );
822 ch_free( a->a_nvals[ j ].bv_val );
824 for ( k = j + 1; !BER_BVISNULL( &a->a_nvals[ k ] ); k++ ) {
825 a->a_vals[ k - 1 ] = a->a_vals[ k ];
826 a->a_nvals[ k - 1 ] = a->a_nvals[ k ];
829 BER_BVZERO( &a->a_vals[ k - 1 ] );
830 BER_BVZERO( &a->a_nvals[ k - 1 ] );
838 for ( i = 0; !BER_BVISNULL( &restricted_ops[ i ].op ); i++ ) {
839 if ( rp_add & restricted_ops[ i ].tag ) {
840 attr_merge_one( e, mi->mi_ad_restrictedOperation,
841 &restricted_ops[ i ].op,
842 &restricted_ops[ i ].op );
846 for ( i = 0; !BER_BVISNULL( &restricted_exops[ i ].op ); i++ ) {
847 if ( rp_add & restricted_exops[ i ].tag ) {
848 attr_merge_one( e, mi->mi_ad_restrictedOperation,
849 &restricted_exops[ i ].op,
850 &restricted_exops[ i ].op );
856 be->be_restrictops = rp_cur;
859 if ( rc == LDAP_SUCCESS ) {
860 attrs_free( save_attrs );
861 rc = SLAP_CB_CONTINUE;
864 Attribute *tmp = e->e_attrs;
865 e->e_attrs = save_attrs;
871 #if defined(LDAP_SLAPI)
873 monitor_back_add_plugin( monitor_info_t *mi, Backend *be, Entry *e_database )
875 Slapi_PBlock *pCurrentPB;
876 int i, rc = LDAP_SUCCESS;
878 if ( slapi_int_pblock_get_first( be, &pCurrentPB ) != LDAP_SUCCESS ) {
880 * LDAP_OTHER is returned if no plugins are installed
888 Slapi_PluginDesc *srchdesc;
889 char buf[ BACKMONITOR_BUFSIZE ];
892 rc = slapi_pblock_get( pCurrentPB, SLAPI_PLUGIN_DESCRIPTION,
894 if ( rc != LDAP_SUCCESS ) {
898 snprintf( buf, sizeof(buf),
899 "plugin %d name: %s; "
905 srchdesc->spd_vendor,
906 srchdesc->spd_version,
907 srchdesc->spd_description );
909 ber_str2bv( buf, 0, 0, &bv );
910 attr_merge_normalize_one( e_database,
911 mi->mi_ad_monitoredInfo, &bv, NULL );
915 } while ( ( slapi_int_pblock_get_next( &pCurrentPB ) == LDAP_SUCCESS )
916 && ( pCurrentPB != NULL ) );
921 #endif /* defined(LDAP_SLAPI) */