2 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
4 * Copyright 1999-2005 The OpenLDAP Foundation.
5 * Portions Copyright 1999 Dmitry Kovalev.
6 * Portions Copyright 2002 Pierangelo Masarati.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted only as authorized by the OpenLDAP
13 * A copy of this license is available in the file LICENSE in the
14 * top-level directory of the distribution or, alternatively, at
15 * <http://www.OpenLDAP.org/license.html>.
18 * This work was initially developed by Dmitry Kovalev for inclusion
19 * by OpenLDAP Software. Additional significant contributors include
20 * Pierangelo Masarati.
26 #include <sys/types.h>
27 #include "ac/string.h"
30 #include "proto-sql.h"
33 backsql_modify( Operation *op, SlapReply *rs )
35 backsql_info *bi = (backsql_info*)op->o_bd->be_private;
36 SQLHDBC dbh = SQL_NULL_HDBC;
37 backsql_oc_map_rec *oc = NULL;
38 backsql_srch_info bsi = { 0 };
39 Entry m = { 0 }, *e = NULL;
40 int manageDSAit = get_manageDSAit( op );
41 SQLUSMALLINT CompletionType = SQL_ROLLBACK;
44 * FIXME: in case part of the operation cannot be performed
45 * (missing mapping, SQL write fails or so) the entire operation
46 * should be rolled-back
48 Debug( LDAP_DEBUG_TRACE, "==>backsql_modify(): modifying entry \"%s\"\n",
49 op->o_req_ndn.bv_val, 0, 0 );
51 rs->sr_err = backsql_get_db_conn( op, &dbh );
52 if ( rs->sr_err != LDAP_SUCCESS ) {
53 Debug( LDAP_DEBUG_TRACE, " backsql_modify(): "
54 "could not get connection handle - exiting\n",
57 * FIXME: we don't want to send back
58 * excessively detailed messages
60 rs->sr_text = ( rs->sr_err == LDAP_OTHER )
61 ? "SQL-backend error" : NULL;
66 rs->sr_err = backsql_init_search( &bsi, &op->o_req_ndn,
68 SLAP_NO_LIMIT, SLAP_NO_LIMIT,
69 (time_t)(-1), NULL, dbh, op, rs,
70 slap_anlist_all_attributes,
71 ( BACKSQL_ISF_MATCHED | BACKSQL_ISF_GET_ENTRY ) );
72 switch ( rs->sr_err ) {
77 if ( manageDSAit && !BER_BVISNULL( &bsi.bsi_e->e_nname ) &&
78 dn_match( &op->o_req_ndn, &bsi.bsi_e->e_nname ) )
80 rs->sr_err = LDAP_SUCCESS;
82 rs->sr_matched = NULL;
84 ber_bvarray_free( rs->sr_ref );
93 Debug( LDAP_DEBUG_TRACE, "backsql_modify(): "
94 "could not retrieve modifyDN ID - no such entry\n",
96 if ( !BER_BVISNULL( &m.e_nname ) ) {
97 /* FIXME: should always be true! */
106 #ifdef BACKSQL_ARBITRARY_KEY
107 Debug( LDAP_DEBUG_TRACE, " backsql_modify(): "
108 "modifying entry \"%s\" (id=%s)\n",
109 bsi.bsi_base_id.eid_dn.bv_val,
110 bsi.bsi_base_id.eid_id.bv_val, 0 );
111 #else /* ! BACKSQL_ARBITRARY_KEY */
112 Debug( LDAP_DEBUG_TRACE, " backsql_modify(): "
113 "modifying entry \"%s\" (id=%ld)\n",
114 bsi.bsi_base_id.eid_dn.bv_val, bsi.bsi_base_id.eid_id, 0 );
115 #endif /* ! BACKSQL_ARBITRARY_KEY */
117 if ( get_assert( op ) &&
118 ( test_filter( op, &m, get_assertion( op ) )
119 != LDAP_COMPARE_TRUE ))
121 rs->sr_err = LDAP_ASSERTION_FAILED;
126 oc = backsql_id2oc( bi, bsi.bsi_base_id.eid_oc_id );
128 Debug( LDAP_DEBUG_TRACE, " backsql_modify(): "
129 "cannot determine objectclass of entry -- aborting\n",
132 * FIXME: should never occur, since the entry was built!!!
136 * FIXME: we don't want to send back
137 * excessively detailed messages
139 rs->sr_err = LDAP_OTHER;
140 rs->sr_text = "SQL-backend error";
145 if ( !acl_check_modlist( op, &m, op->oq_modify.rs_modlist ) ) {
146 rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
151 rs->sr_err = backsql_modify_internal( op, rs, dbh, oc,
152 &bsi.bsi_base_id, op->oq_modify.rs_modlist );
153 if ( rs->sr_err != LDAP_SUCCESS ) {
158 if ( global_schemacheck ) {
159 char textbuf[ SLAP_TEXT_BUFLEN ] = { '\0' };
164 rs->sr_err = backsql_id2entry( &bsi, &bsi.bsi_base_id );
165 if ( rs->sr_err != LDAP_SUCCESS ) {
170 rs->sr_err = entry_schema_check( op->o_bd, &m,
172 &rs->sr_text, textbuf, sizeof( textbuf ) );
173 if ( rs->sr_err != LDAP_SUCCESS ) {
174 Debug( LDAP_DEBUG_TRACE, " backsql_add(\"%s\"): "
175 "entry failed schema check -- aborting\n",
176 m.e_name.bv_val, 0, 0 );
184 * Commit only if all operations succeed
186 if ( rs->sr_err == LDAP_SUCCESS && !op->o_noop ) {
187 CompletionType = SQL_COMMIT;
190 SQLTransact( SQL_NULL_HENV, dbh, CompletionType );
193 #ifdef SLAP_ACL_HONOR_DISCLOSE
195 if ( !access_allowed( op, e, slap_schema.si_ad_entry, NULL,
196 ACL_DISCLOSE, NULL ) )
198 rs->sr_err = LDAP_NO_SUCH_OBJECT;
200 rs->sr_matched = NULL;
202 ber_bvarray_free( rs->sr_ref );
207 #endif /* SLAP_ACL_HONOR_DISCLOSE */
209 send_ldap_result( op, rs );
211 if ( !BER_BVISNULL( &bsi.bsi_base_id.eid_ndn ) ) {
212 (void)backsql_free_entryID( op, &bsi.bsi_base_id, 0 );
215 if ( !BER_BVISNULL( &m.e_nname ) ) {
219 if ( bsi.bsi_attrs != NULL ) {
220 op->o_tmpfree( bsi.bsi_attrs, op->o_tmpmemctx );
223 Debug( LDAP_DEBUG_TRACE, "<==backsql_modify()\n", 0, 0, 0 );