Import ITS#4158 fixes from HEAD

[openldap] / servers / slapd / back-sql / compare.c

/* $OpenLDAP$ */
/* This work is part of OpenLDAP Software <http://www.openldap.org/>.
 *
 * Copyright 1999-2005 The OpenLDAP Foundation.
 * Portions Copyright 1999 Dmitry Kovalev.
 * All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted only as authorized by the OpenLDAP
 * Public License.
 *
 * A copy of this license is available in the file LICENSE in the
 * top-level directory of the distribution or, alternatively, at
 * <http://www.OpenLDAP.org/license.html>.
 */
/* ACKNOWLEDGEMENTS:
 * This work was initially developed by Dmitry Kovalev for inclusion
 * by OpenLDAP Software.
 */

#include "portable.h"

#ifdef SLAPD_SQL

#include <stdio.h>
#include <sys/types.h>

#include "slap.h"
#include "proto-sql.h"

int
backsql_compare( Operation *op, SlapReply *rs )
{
        backsql_info            *bi = (backsql_info*)op->o_bd->be_private;
        backsql_entryID         user_id = BACKSQL_ENTRYID_INIT;
        SQLHDBC                 dbh;
        Entry                   *e = NULL, user_entry;
        Attribute               *a = NULL;
        backsql_srch_info       bsi;
        int                     rc;
        AttributeName           anlist[2];
        struct berval           dn;

        user_entry.e_name.bv_val = NULL;
        user_entry.e_name.bv_len = 0;
        user_entry.e_nname.bv_val = NULL;
        user_entry.e_nname.bv_len = 0;
        user_entry.e_attrs = NULL;
 
        Debug( LDAP_DEBUG_TRACE, "==>backsql_compare()\n", 0, 0, 0 );

        rs->sr_err = backsql_get_db_conn( op, &dbh );
        if (!dbh) {
                Debug( LDAP_DEBUG_TRACE, "backsql_compare(): "
                        "could not get connection handle - exiting\n",
                        0, 0, 0 );

                rs->sr_text = ( rs->sr_err == LDAP_OTHER )
                        ? "SQL-backend error" : NULL;
                goto return_results;
        }

        dn = op->o_req_dn;
        if ( backsql_api_dn2odbc( op, rs, &dn ) ) {
                Debug( LDAP_DEBUG_TRACE, "backsql_search(): "
                        "backsql_api_dn2odbc failed\n", 
                        0, 0, 0 );
                rs->sr_err = LDAP_OTHER;
                rs->sr_text = "SQL-backend error";
                goto return_results;
        }

        rc = backsql_dn2id( bi, &user_id, dbh, &dn );
        if ( rc != LDAP_SUCCESS ) {
                Debug( LDAP_DEBUG_TRACE, "backsql_compare(): "
                        "could not retrieve compare dn id - no such entry\n", 
                        0, 0, 0 );
                rs->sr_err = LDAP_NO_SUCH_OBJECT;
                goto return_results;
        }

        memset( &anlist[0], 0, 2 * sizeof( AttributeName ) );
        anlist[0].an_name = op->oq_compare.rs_ava->aa_desc->ad_cname;
        anlist[0].an_desc = op->oq_compare.rs_ava->aa_desc;

        /*
         * Try to get attr as dynamic operational
         */
        if ( is_at_operational( op->oq_compare.rs_ava->aa_desc->ad_type ) ) {
                SlapReply       nrs = { 0 };
 
                user_entry.e_attrs = NULL;
                user_entry.e_name = op->o_req_dn;
                user_entry.e_nname = op->o_req_ndn;
 
                nrs.sr_attrs = anlist;
                nrs.sr_entry = &user_entry;
                rs->sr_err = backsql_operational( op, &nrs, 0, &user_entry.e_attrs );
 
                if ( rs->sr_err != LDAP_SUCCESS ) {
                        goto return_results;
                }
                
        } else {
                backsql_init_search( &bsi, &dn, LDAP_SCOPE_BASE, 
                                        -1, -1, -1, NULL, dbh, op, rs, anlist );
                bsi.bsi_e = &user_entry;
                rc = backsql_id2entry( &bsi, &user_id );
                if ( rc != LDAP_SUCCESS ) {
                        Debug( LDAP_DEBUG_TRACE, "backsql_compare(): "
                                "error %d in backsql_id2entry() "
                                "- compare failed\n", rc, 0, 0 );
                        rs->sr_err = rc;
                        goto return_results;
                }
        }
        e = &user_entry;

        if ( ! access_allowed( op, e, op->oq_compare.rs_ava->aa_desc, 
                                &op->oq_compare.rs_ava->aa_value,
                                ACL_COMPARE, NULL ) ) {
                rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
                goto return_results;
        }

        rs->sr_err = LDAP_NO_SUCH_ATTRIBUTE;
        for ( a = attrs_find( e->e_attrs, op->oq_compare.rs_ava->aa_desc );
                        a != NULL;
                        a = attrs_find( a->a_next, op->oq_compare.rs_ava->aa_desc ))
        {
                rs->sr_err = LDAP_COMPARE_FALSE;
                if ( value_find_ex( op->oq_compare.rs_ava->aa_desc,
                                        SLAP_MR_ATTRIBUTE_VALUE_NORMALIZED_MATCH |
                                        SLAP_MR_ASSERTED_VALUE_NORMALIZED_MATCH,
                                        a->a_nvals,
                                        &op->oq_compare.rs_ava->aa_value,
                                        op->o_tmpmemctx ) == 0 )
                {
                        rs->sr_err = LDAP_COMPARE_TRUE;
                        break;
                }
        }

return_results:;
        send_ldap_result( op, rs );

        if ( dn.bv_val != op->o_req_dn.bv_val ) {
                ch_free( dn.bv_val );
        }

        if ( e != NULL ) {
                entry_clean( e );
        }

        Debug(LDAP_DEBUG_TRACE,"<==backsql_compare()\n",0,0,0);
        switch ( rs->sr_err ) {
        case LDAP_COMPARE_TRUE:
        case LDAP_COMPARE_FALSE:
                return 0;

        default:
                return 1;
        }
}
 
#endif /* SLAPD_SQL */