2 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
4 * Copyright 1999-2007 The OpenLDAP Foundation.
5 * Portions Copyright 1999 Dmitry Kovalev.
6 * Portions Copyright 2002 Pierangelo Masarati.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted only as authorized by the OpenLDAP
13 * A copy of this license is available in the file LICENSE in the
14 * top-level directory of the distribution or, alternatively, at
15 * <http://www.OpenLDAP.org/license.html>.
18 * This work was initially developed by Dmitry Kovalev for inclusion
19 * by OpenLDAP Software. Additional significant contributors include
20 * Pierangelo Masarati.
26 #include <sys/types.h>
27 #include "ac/string.h"
30 #include "proto-sql.h"
32 typedef struct backsql_delete_attr_t {
36 backsql_entryID *e_id;
37 } backsql_delete_attr_t;
40 backsql_delete_attr_f( void *v_at, void *v_bda )
42 backsql_at_map_rec *at = (backsql_at_map_rec *)v_at;
43 backsql_delete_attr_t *bda = (backsql_delete_attr_t *)v_bda;
46 rc = backsql_modify_delete_all_values( bda->op,
47 bda->rs, bda->dbh, bda->e_id, at );
49 if ( rc != LDAP_SUCCESS ) {
50 return BACKSQL_AVL_STOP;
53 return BACKSQL_AVL_CONTINUE;
57 backsql_delete_all_attrs(
61 backsql_entryID *eid )
63 backsql_delete_attr_t bda;
71 rc = avl_apply( eid->eid_oc->bom_attrs, backsql_delete_attr_f, &bda,
72 BACKSQL_AVL_STOP, AVL_INORDER );
73 if ( rc == BACKSQL_AVL_STOP ) {
89 backsql_info *bi = (backsql_info*)op->o_bd->be_private;
90 SQLHSTMT sth = SQL_NULL_HSTMT;
92 int prc = LDAP_SUCCESS;
93 /* first parameter no */
99 rs->sr_err = backsql_delete_all_attrs( op, rs, dbh, eid );
100 if ( rs->sr_err != LDAP_SUCCESS ) {
104 rc = backsql_Prepare( dbh, &sth, eid->eid_oc->bom_delete_proc, 0 );
105 if ( rc != SQL_SUCCESS ) {
106 Debug( LDAP_DEBUG_TRACE,
107 " backsql_delete(): "
108 "error preparing delete query\n",
110 backsql_PrintErrors( bi->sql_db_env, dbh, sth, rc );
112 rs->sr_err = LDAP_OTHER;
113 rs->sr_text = "SQL-backend error";
118 if ( BACKSQL_IS_DEL( eid->eid_oc->bom_expect_return ) ) {
120 rc = backsql_BindParamInt( sth, 1, SQL_PARAM_OUTPUT, &prc );
121 if ( rc != SQL_SUCCESS ) {
122 Debug( LDAP_DEBUG_TRACE,
123 " backsql_delete(): "
124 "error binding output parameter for objectClass %s\n",
125 eid->eid_oc->bom_oc->soc_cname.bv_val, 0, 0 );
126 backsql_PrintErrors( bi->sql_db_env, dbh,
128 SQLFreeStmt( sth, SQL_DROP );
130 rs->sr_text = "SQL-backend error";
131 rs->sr_err = LDAP_OTHER;
137 rc = backsql_BindParamID( sth, pno + 1, SQL_PARAM_INPUT, &eid->eid_keyval );
138 if ( rc != SQL_SUCCESS ) {
139 Debug( LDAP_DEBUG_TRACE,
140 " backsql_delete(): "
141 "error binding keyval parameter for objectClass %s\n",
142 eid->eid_oc->bom_oc->soc_cname.bv_val, 0, 0 );
143 backsql_PrintErrors( bi->sql_db_env, dbh,
145 SQLFreeStmt( sth, SQL_DROP );
147 rs->sr_text = "SQL-backend error";
148 rs->sr_err = LDAP_OTHER;
153 rc = SQLExecute( sth );
154 if ( rc == SQL_SUCCESS && prc == LDAP_SUCCESS ) {
155 rs->sr_err = LDAP_SUCCESS;
158 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
159 "delete_proc execution failed (rc=%d, prc=%d)\n",
163 if ( prc != LDAP_SUCCESS ) {
164 /* SQL procedure executed fine
165 * but returned an error */
166 rs->sr_err = BACKSQL_SANITIZE_ERROR( prc );
169 backsql_PrintErrors( bi->sql_db_env, dbh,
171 rs->sr_err = LDAP_OTHER;
173 SQLFreeStmt( sth, SQL_DROP );
176 SQLFreeStmt( sth, SQL_DROP );
178 /* delete "auxiliary" objectClasses, if any... */
179 rc = backsql_Prepare( dbh, &sth, bi->sql_delobjclasses_stmt, 0 );
180 if ( rc != SQL_SUCCESS ) {
181 Debug( LDAP_DEBUG_TRACE,
182 " backsql_delete(): "
183 "error preparing ldap_entry_objclasses delete query\n",
185 backsql_PrintErrors( bi->sql_db_env, dbh, sth, rc );
187 rs->sr_err = LDAP_OTHER;
188 rs->sr_text = "SQL-backend error";
193 rc = backsql_BindParamID( sth, 1, SQL_PARAM_INPUT, &eid->eid_id );
194 if ( rc != SQL_SUCCESS ) {
195 Debug( LDAP_DEBUG_TRACE,
196 " backsql_delete(): "
197 "error binding auxiliary objectClasses "
198 "entry ID parameter for objectClass %s\n",
199 eid->eid_oc->bom_oc->soc_cname.bv_val, 0, 0 );
200 backsql_PrintErrors( bi->sql_db_env, dbh,
202 SQLFreeStmt( sth, SQL_DROP );
204 rs->sr_text = "SQL-backend error";
205 rs->sr_err = LDAP_OTHER;
210 rc = SQLExecute( sth );
213 /* apparently there were no "auxiliary" objectClasses
214 * for this entry... */
219 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
220 "failed to delete record from ldap_entry_objclasses\n",
222 backsql_PrintErrors( bi->sql_db_env, dbh, sth, rc );
223 SQLFreeStmt( sth, SQL_DROP );
224 rs->sr_err = LDAP_OTHER;
225 rs->sr_text = "SQL-backend error";
229 SQLFreeStmt( sth, SQL_DROP );
231 /* delete entry... */
232 rc = backsql_Prepare( dbh, &sth, bi->sql_delentry_stmt, 0 );
233 if ( rc != SQL_SUCCESS ) {
234 Debug( LDAP_DEBUG_TRACE,
235 " backsql_delete(): "
236 "error preparing ldap_entries delete query\n",
238 backsql_PrintErrors( bi->sql_db_env, dbh, sth, rc );
240 rs->sr_err = LDAP_OTHER;
241 rs->sr_text = "SQL-backend error";
246 rc = backsql_BindParamID( sth, 1, SQL_PARAM_INPUT, &eid->eid_id );
247 if ( rc != SQL_SUCCESS ) {
248 Debug( LDAP_DEBUG_TRACE,
249 " backsql_delete(): "
250 "error binding entry ID parameter "
251 "for objectClass %s\n",
252 eid->eid_oc->bom_oc->soc_cname.bv_val, 0, 0 );
253 backsql_PrintErrors( bi->sql_db_env, dbh,
255 SQLFreeStmt( sth, SQL_DROP );
257 rs->sr_text = "SQL-backend error";
258 rs->sr_err = LDAP_OTHER;
263 rc = SQLExecute( sth );
264 if ( rc != SQL_SUCCESS ) {
265 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
266 "failed to delete record from ldap_entries\n",
268 backsql_PrintErrors( bi->sql_db_env, dbh, sth, rc );
269 SQLFreeStmt( sth, SQL_DROP );
270 rs->sr_err = LDAP_OTHER;
271 rs->sr_text = "SQL-backend error";
275 SQLFreeStmt( sth, SQL_DROP );
277 rs->sr_err = LDAP_SUCCESS;
286 typedef struct backsql_tree_delete_t {
289 backsql_entryID *btd_eid;
290 } backsql_tree_delete_t;
293 backsql_tree_delete_search_cb( Operation *op, SlapReply *rs )
295 if ( rs->sr_type == REP_SEARCH ) {
296 backsql_info *bi = (backsql_info*)op->o_bd->be_private;
297 backsql_tree_delete_t *btd;
298 backsql_entryID *eid;
300 btd = (backsql_tree_delete_t *)op->o_callback->sc_private;
302 if ( !access_allowed( btd->btd_op, rs->sr_entry,
303 slap_schema.si_ad_entry, NULL, ACL_WDEL, NULL )
304 || !access_allowed( btd->btd_op, rs->sr_entry,
305 slap_schema.si_ad_children, NULL, ACL_WDEL, NULL ) )
307 btd->btd_rc = LDAP_INSUFFICIENT_ACCESS;
308 return rs->sr_err = LDAP_UNAVAILABLE;
311 assert( rs->sr_entry != NULL );
312 assert( rs->sr_entry->e_private != NULL );
314 eid = (backsql_entryID *)rs->sr_entry->e_private;
315 assert( eid->eid_oc != NULL );
316 if ( eid->eid_oc == NULL || eid->eid_oc->bom_delete_proc == NULL ) {
317 btd->btd_rc = LDAP_UNWILLING_TO_PERFORM;
318 return rs->sr_err = LDAP_UNAVAILABLE;
321 eid = backsql_entryID_dup( eid, op->o_tmpmemctx );
322 eid->eid_next = btd->btd_eid;
337 slap_callback sc = { 0 };
338 SlapReply rs2 = { 0 };
340 backsql_tree_delete_t btd = { 0 };
345 * - perform an internal subtree search as the rootdn
348 * - check objectClass and delete method(s)
351 * - if successful, commit
354 op2.o_tag = LDAP_REQ_SEARCH;
355 op2.o_protocol = LDAP_VERSION3;
358 sc.sc_private = &btd;
359 sc.sc_response = backsql_tree_delete_search_cb;
360 op2.o_callback = ≻
362 op2.o_dn = op->o_bd->be_rootdn;
363 op2.o_ndn = op->o_bd->be_rootndn;
365 op2.o_managedsait = SLAP_CONTROL_CRITICAL;
367 op2.ors_scope = LDAP_SCOPE_SUBTREE;
368 op2.ors_deref = LDAP_DEREF_NEVER;
369 op2.ors_slimit = SLAP_NO_LIMIT;
370 op2.ors_tlimit = SLAP_NO_LIMIT;
372 f.f_choice = LDAP_FILTER_PRESENT;
373 f.f_desc = slap_schema.si_ad_objectClass;
374 BER_BVSTR( &op2.ors_filterstr, "(objectClass=*)" );
375 op2.ors_attrs = slap_anlist_all_attributes;
376 op2.ors_attrsonly = 0;
378 rc = op->o_bd->be_search( &op2, &rs2 );
379 if ( rc != LDAP_SUCCESS ) {
380 rc = rs->sr_err = btd.btd_rc;
381 rs->sr_text = "subtree delete not possible";
382 send_ldap_result( op, rs );
386 for ( ; btd.btd_eid != NULL;
387 btd.btd_eid = backsql_free_entryID( btd.btd_eid,
388 1, op->o_tmpmemctx ) )
390 Entry *e = (void *)0xbad;
391 rc = backsql_delete_int( op, rs, dbh, sthp, btd.btd_eid, &e );
392 if ( rc != LDAP_SUCCESS ) {
398 for ( ; btd.btd_eid != NULL;
399 btd.btd_eid = backsql_free_entryID( btd.btd_eid,
400 1, op->o_tmpmemctx ) )
407 backsql_delete( Operation *op, SlapReply *rs )
409 backsql_info *bi = (backsql_info*)op->o_bd->be_private;
410 SQLHDBC dbh = SQL_NULL_HDBC;
411 SQLHSTMT sth = SQL_NULL_HSTMT;
412 backsql_oc_map_rec *oc = NULL;
413 backsql_srch_info bsi = { 0 };
414 backsql_entryID e_id = { 0 };
415 Entry d = { 0 }, p = { 0 }, *e = NULL;
416 struct berval pdn = BER_BVNULL;
417 int manageDSAit = get_manageDSAit( op );
419 Debug( LDAP_DEBUG_TRACE, "==>backsql_delete(): deleting entry \"%s\"\n",
420 op->o_req_ndn.bv_val, 0, 0 );
422 rs->sr_err = backsql_get_db_conn( op, &dbh );
423 if ( rs->sr_err != LDAP_SUCCESS ) {
424 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
425 "could not get connection handle - exiting\n",
427 rs->sr_text = ( rs->sr_err == LDAP_OTHER )
428 ? "SQL-backend error" : NULL;
437 rs->sr_err = backsql_init_search( &bsi, &op->o_req_ndn,
439 (time_t)(-1), NULL, dbh, op, rs, slap_anlist_no_attrs,
440 ( BACKSQL_ISF_MATCHED | BACKSQL_ISF_GET_ENTRY | BACKSQL_ISF_GET_OC ) );
441 switch ( rs->sr_err ) {
446 if ( manageDSAit && !BER_BVISNULL( &bsi.bsi_e->e_nname ) &&
447 dn_match( &op->o_req_ndn, &bsi.bsi_e->e_nname ) )
449 rs->sr_err = LDAP_SUCCESS;
451 rs->sr_matched = NULL;
453 ber_bvarray_free( rs->sr_ref );
462 Debug( LDAP_DEBUG_TRACE, "backsql_delete(): "
463 "could not retrieve deleteDN ID - no such entry\n",
465 if ( !BER_BVISNULL( &d.e_nname ) ) {
466 /* FIXME: should always be true! */
475 if ( get_assert( op ) &&
476 ( test_filter( op, &d, get_assertion( op ) )
477 != LDAP_COMPARE_TRUE ) )
479 rs->sr_err = LDAP_ASSERTION_FAILED;
484 if ( !access_allowed( op, &d, slap_schema.si_ad_entry,
485 NULL, ACL_WDEL, NULL ) )
487 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
488 "no write access to entry\n",
490 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
495 rs->sr_err = backsql_has_children( op, dbh, &op->o_req_ndn );
496 switch ( rs->sr_err ) {
497 case LDAP_COMPARE_FALSE:
498 rs->sr_err = LDAP_SUCCESS;
501 case LDAP_COMPARE_TRUE:
502 #ifdef SLAP_CONTROL_X_TREE_DELETE
503 if ( get_treeDelete( op ) ) {
504 rs->sr_err = LDAP_SUCCESS;
507 #endif /* SLAP_CONTROL_X_TREE_DELETE */
509 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
510 "entry \"%s\" has children\n",
511 op->o_req_dn.bv_val, 0, 0 );
512 rs->sr_err = LDAP_NOT_ALLOWED_ON_NONLEAF;
513 rs->sr_text = "subordinate objects must be deleted first";
521 assert( bsi.bsi_base_id.eid_oc != NULL );
522 oc = bsi.bsi_base_id.eid_oc;
523 if ( oc->bom_delete_proc == NULL ) {
524 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
525 "delete procedure is not defined "
526 "for this objectclass - aborting\n", 0, 0, 0 );
527 rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
528 rs->sr_text = "operation not permitted within namingContext";
536 e_id = bsi.bsi_base_id;
537 memset( &bsi.bsi_base_id, 0, sizeof( bsi.bsi_base_id ) );
538 if ( !be_issuffix( op->o_bd, &op->o_req_ndn ) ) {
539 dnParent( &op->o_req_ndn, &pdn );
541 rs->sr_err = backsql_init_search( &bsi, &pdn,
543 (time_t)(-1), NULL, dbh, op, rs,
544 slap_anlist_no_attrs,
545 BACKSQL_ISF_GET_ENTRY );
546 if ( rs->sr_err != LDAP_SUCCESS ) {
547 Debug( LDAP_DEBUG_TRACE, "backsql_delete(): "
548 "could not retrieve deleteDN ID "
555 (void)backsql_free_entryID( &bsi.bsi_base_id, 0, op->o_tmpmemctx );
557 /* check parent for "children" acl */
558 if ( !access_allowed( op, &p, slap_schema.si_ad_children,
559 NULL, ACL_WDEL, NULL ) )
561 Debug( LDAP_DEBUG_TRACE, " backsql_delete(): "
562 "no write access to parent\n",
564 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
572 #ifdef SLAP_CONTROL_X_TREE_DELETE
573 if ( get_treeDelete( op ) ) {
574 backsql_tree_delete( op, rs, dbh, &sth );
575 if ( rs->sr_err == LDAP_OTHER || rs->sr_err == LDAP_SUCCESS )
581 #endif /* SLAP_CONTROL_X_TREE_DELETE */
583 backsql_delete_int( op, rs, dbh, &sth, &e_id, &e );
587 * Commit only if all operations succeed
589 if ( sth != SQL_NULL_HSTMT ) {
590 SQLUSMALLINT CompletionType = SQL_ROLLBACK;
592 if ( rs->sr_err == LDAP_SUCCESS && !op->o_noop ) {
594 CompletionType = SQL_COMMIT;
597 SQLTransact( SQL_NULL_HENV, dbh, CompletionType );
602 if ( !access_allowed( op, e, slap_schema.si_ad_entry, NULL,
603 ACL_DISCLOSE, NULL ) )
605 rs->sr_err = LDAP_NO_SUCH_OBJECT;
607 rs->sr_matched = NULL;
609 ber_bvarray_free( rs->sr_ref );
615 if ( op->o_noop && rs->sr_err == LDAP_SUCCESS ) {
616 rs->sr_err = LDAP_X_NO_OPERATION;
619 send_ldap_result( op, rs );
621 Debug( LDAP_DEBUG_TRACE, "<==backsql_delete()\n", 0, 0, 0 );
623 if ( !BER_BVISNULL( &e_id.eid_ndn ) ) {
624 (void)backsql_free_entryID( &e_id, 0, op->o_tmpmemctx );
627 if ( !BER_BVISNULL( &d.e_nname ) ) {
628 backsql_entry_clean( op, &d );
631 if ( !BER_BVISNULL( &p.e_nname ) ) {
632 backsql_entry_clean( op, &p );
636 ber_bvarray_free( rs->sr_ref );
projects / openldap / blob