1 /* rwm.c - rewrite/remap operations */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2003-2010 The OpenLDAP Foundation.
6 * Portions Copyright 2003 Pierangelo Masarati.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted only as authorized by the OpenLDAP
13 * A copy of this license is available in the file LICENSE in the
14 * top-level directory of the distribution or, alternatively, at
15 * <http://www.OpenLDAP.org/license.html>.
24 #include <ac/string.h>
31 typedef struct rwm_op_state {
39 AttributeName *mapped_attrs;
43 typedef struct rwm_op_cb {
49 rwm_db_destroy( BackendDB *be, ConfigReply *cr );
52 rwm_send_entry( Operation *op, SlapReply *rs );
55 rwm_op_rollback( Operation *op, SlapReply *rs, rwm_op_state *ros )
57 /* in case of successful extended operation cleanup
58 * gets called *after* (ITS#6632); this hack counts
59 * on others to cleanup our o_req_dn/o_req_ndn,
60 * while we cleanup theirs. */
61 if ( ros->r_tag == LDAP_REQ_EXTENDED && rs->sr_err == LDAP_SUCCESS ) {
62 if ( !BER_BVISNULL( &ros->rx_dn ) ) {
63 ch_free( ros->rx_dn.bv_val );
65 if ( !BER_BVISNULL( &ros->rx_ndn ) ) {
66 ch_free( ros->rx_ndn.bv_val );
70 if ( !BER_BVISNULL( &ros->ro_dn ) ) {
71 op->o_req_dn = ros->ro_dn;
73 if ( !BER_BVISNULL( &ros->ro_ndn ) ) {
74 op->o_req_ndn = ros->ro_ndn;
77 if ( !BER_BVISNULL( &ros->r_dn )
78 && ros->r_dn.bv_val != ros->ro_dn.bv_val )
80 assert( ros->r_dn.bv_val != ros->r_ndn.bv_val );
81 ch_free( ros->r_dn.bv_val );
84 if ( !BER_BVISNULL( &ros->r_ndn )
85 && ros->r_ndn.bv_val != ros->ro_ndn.bv_val )
87 ch_free( ros->r_ndn.bv_val );
91 BER_BVZERO( &ros->r_dn );
92 BER_BVZERO( &ros->r_ndn );
93 BER_BVZERO( &ros->ro_dn );
94 BER_BVZERO( &ros->ro_ndn );
95 BER_BVZERO( &ros->rx_dn );
96 BER_BVZERO( &ros->rx_ndn );
98 switch( ros->r_tag ) {
99 case LDAP_REQ_COMPARE:
100 if ( op->orc_ava->aa_value.bv_val != ros->orc_ava->aa_value.bv_val )
101 op->o_tmpfree( op->orc_ava->aa_value.bv_val, op->o_tmpmemctx );
102 op->orc_ava = ros->orc_ava;
104 case LDAP_REQ_MODIFY:
105 slap_mods_free( op->orm_modlist, 1 );
106 op->orm_modlist = ros->orm_modlist;
108 case LDAP_REQ_MODRDN:
109 if ( op->orr_newSup != ros->orr_newSup ) {
110 ch_free( op->orr_newSup->bv_val );
111 ch_free( op->orr_nnewSup->bv_val );
112 op->o_tmpfree( op->orr_newSup, op->o_tmpmemctx );
113 op->o_tmpfree( op->orr_nnewSup, op->o_tmpmemctx );
114 op->orr_newSup = ros->orr_newSup;
115 op->orr_nnewSup = ros->orr_nnewSup;
117 if ( op->orr_newrdn.bv_val != ros->orr_newrdn.bv_val ) {
118 ch_free( op->orr_newrdn.bv_val );
119 ch_free( op->orr_nnewrdn.bv_val );
120 op->orr_newrdn = ros->orr_newrdn;
121 op->orr_nnewrdn = ros->orr_nnewrdn;
124 case LDAP_REQ_SEARCH:
125 op->o_tmpfree( ros->mapped_attrs, op->o_tmpmemctx );
126 filter_free_x( op, op->ors_filter, 1 );
127 op->o_tmpfree( op->ors_filterstr.bv_val, op->o_tmpmemctx );
128 op->ors_attrs = ros->ors_attrs;
129 op->ors_filter = ros->ors_filter;
130 op->ors_filterstr = ros->ors_filterstr;
132 case LDAP_REQ_EXTENDED:
133 if ( op->ore_reqdata != ros->ore_reqdata ) {
134 ber_bvfree( op->ore_reqdata );
135 op->ore_reqdata = ros->ore_reqdata;
139 if ( rs->sr_err == LDAP_SUCCESS ) {
141 ldap_pvt_thread_mutex_lock( &op->o_conn->c_mutex );
142 /* too late, c_mutex released */
143 Debug( LDAP_DEBUG_ANY, "*** DN: \"%s\" => \"%s\"\n",
144 op->o_conn->c_ndn.bv_val,
145 op->o_req_ndn.bv_val );
146 ber_bvreplace( &op->o_conn->c_ndn,
148 ldap_pvt_thread_mutex_unlock( &op->o_conn->c_mutex );
157 rwm_op_cleanup( Operation *op, SlapReply *rs )
159 slap_callback *cb = op->o_callback;
160 rwm_op_state *ros = cb->sc_private;
162 if ( rs->sr_type == REP_RESULT || rs->sr_type == REP_EXTENDED ||
163 op->o_abandon || rs->sr_err == SLAPD_ABANDON )
165 rwm_op_rollback( op, rs, ros );
167 op->o_callback = op->o_callback->sc_next;
168 op->o_tmpfree( cb, op->o_tmpmemctx );
171 return SLAP_CB_CONTINUE;
175 rwm_callback_get( Operation *op, SlapReply *rs )
177 rwm_op_cb *roc = NULL;
179 roc = op->o_tmpalloc( sizeof( struct rwm_op_cb ), op->o_tmpmemctx );
180 roc->cb.sc_cleanup = rwm_op_cleanup;
181 roc->cb.sc_response = NULL;
182 roc->cb.sc_next = op->o_callback;
183 roc->cb.sc_private = &roc->ros;
184 roc->ros.r_tag = op->o_tag;
185 roc->ros.ro_dn = op->o_req_dn;
186 roc->ros.ro_ndn = op->o_req_ndn;
187 roc->ros.o_request = op->o_request;
188 BER_BVZERO( &roc->ros.r_dn );
189 BER_BVZERO( &roc->ros.r_ndn );
196 rwm_op_dn_massage( Operation *op, SlapReply *rs, void *cookie,
199 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
200 struct ldaprwmap *rwmap =
201 (struct ldaprwmap *)on->on_bi.bi_private;
203 struct berval dn = BER_BVNULL,
209 * Rewrite the dn if needed
212 dc.conn = op->o_conn;
214 dc.ctx = (char *)cookie;
216 /* NOTE: in those cases where only the ndn is available,
217 * and the caller sets op->o_req_dn = op->o_req_ndn,
218 * only rewrite the op->o_req_ndn and use it as
219 * op->o_req_dn as well */
221 if ( op->o_req_dn.bv_val != op->o_req_ndn.bv_val ) {
223 rc = rwm_dn_massage_pretty_normalize( &dc, &op->o_req_dn, &dn, &ndn );
225 rc = rwm_dn_massage_normalize( &dc, &op->o_req_ndn, &ndn );
228 if ( rc != LDAP_SUCCESS ) {
232 if ( ( op->o_req_dn.bv_val != op->o_req_ndn.bv_val && dn.bv_val == op->o_req_dn.bv_val )
233 || ndn.bv_val == op->o_req_ndn.bv_val )
238 if ( op->o_req_dn.bv_val != op->o_req_ndn.bv_val ) {
240 assert( BER_BVISNULL( &ros->r_dn ) );
246 assert( BER_BVISNULL( &ros->r_ndn ) );
249 if ( ros->r_tag == LDAP_REQ_EXTENDED ) {
250 ros->rx_dn = ros->r_dn;
251 ros->rx_ndn = ros->r_ndn;
258 rwm_op_add( Operation *op, SlapReply *rs )
260 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
261 struct ldaprwmap *rwmap =
262 (struct ldaprwmap *)on->on_bi.bi_private;
266 Attribute **ap = NULL;
267 char *olddn = op->o_req_dn.bv_val;
270 rwm_op_cb *roc = rwm_callback_get( op, rs );
272 rc = rwm_op_dn_massage( op, rs, "addDN", &roc->ros );
273 if ( rc != LDAP_SUCCESS ) {
274 op->o_bd->bd_info = (BackendInfo *)on->on_info;
275 send_ldap_error( op, rs, rc, "addDN massage error" );
279 if ( olddn != op->o_req_dn.bv_val ) {
280 ber_bvreplace( &op->ora_e->e_name, &op->o_req_dn );
281 ber_bvreplace( &op->ora_e->e_nname, &op->o_req_ndn );
284 /* Count number of attributes in entry */
285 isupdate = be_shadow_update( op );
286 for ( i = 0, ap = &op->oq_add.rs_e->e_attrs; *ap; ) {
289 if ( (*ap)->a_desc == slap_schema.si_ad_objectClass ||
290 (*ap)->a_desc == slap_schema.si_ad_structuralObjectClass )
294 last = (*ap)->a_numvals - 1;
295 for ( j = 0; !BER_BVISNULL( &(*ap)->a_vals[ j ] ); j++ ) {
296 struct ldapmapping *mapping = NULL;
298 ( void )rwm_mapping( &rwmap->rwm_oc, &(*ap)->a_vals[ j ],
300 if ( mapping == NULL ) {
301 if ( rwmap->rwm_at.drop_missing ) {
302 /* FIXME: we allow to remove objectClasses as well;
303 * if the resulting entry is inconsistent, that's
304 * the relayed database's business...
306 ch_free( (*ap)->a_vals[ j ].bv_val );
308 (*ap)->a_vals[ j ] = (*ap)->a_vals[ last ];
310 BER_BVZERO( &(*ap)->a_vals[ last ] );
317 ch_free( (*ap)->a_vals[ j ].bv_val );
318 ber_dupbv( &(*ap)->a_vals[ j ], &mapping->m_dst );
322 } else if ( !isupdate && !get_relax( op ) && (*ap)->a_desc->ad_type->sat_no_user_mod )
327 struct ldapmapping *mapping = NULL;
329 ( void )rwm_mapping( &rwmap->rwm_at, &(*ap)->a_desc->ad_cname,
331 if ( mapping == NULL ) {
332 if ( rwmap->rwm_at.drop_missing ) {
337 if ( (*ap)->a_desc->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName
338 || ( mapping != NULL && mapping->m_dst_ad->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName ) )
341 * FIXME: rewrite could fail; in this case
342 * the operation should give up, right?
344 rc = rwm_dnattr_rewrite( op, rs, "addAttrDN",
346 (*ap)->a_nvals ? &(*ap)->a_nvals : NULL );
351 } else if ( (*ap)->a_desc == slap_schema.si_ad_ref ) {
352 rc = rwm_referral_rewrite( op, rs, "referralAttrDN",
354 (*ap)->a_nvals ? &(*ap)->a_nvals : NULL );
355 if ( rc != LDAP_SUCCESS ) {
360 if ( mapping != NULL ) {
361 assert( mapping->m_dst_ad != NULL );
362 (*ap)->a_desc = mapping->m_dst_ad;
371 /* FIXME: leaking attribute/values? */
378 op->o_callback = &roc->cb;
380 return SLAP_CB_CONTINUE;
384 rwm_conn_init( BackendDB *be, Connection *conn )
386 slap_overinst *on = (slap_overinst *) be->bd_info;
387 struct ldaprwmap *rwmap =
388 (struct ldaprwmap *)on->on_bi.bi_private;
390 ( void )rewrite_session_init( rwmap->rwm_rw, conn );
392 return SLAP_CB_CONTINUE;
396 rwm_conn_destroy( BackendDB *be, Connection *conn )
398 slap_overinst *on = (slap_overinst *) be->bd_info;
399 struct ldaprwmap *rwmap =
400 (struct ldaprwmap *)on->on_bi.bi_private;
402 ( void )rewrite_session_delete( rwmap->rwm_rw, conn );
404 return SLAP_CB_CONTINUE;
408 rwm_op_bind( Operation *op, SlapReply *rs )
410 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
413 rwm_op_cb *roc = rwm_callback_get( op, rs );
415 rc = rwm_op_dn_massage( op, rs, "bindDN", &roc->ros );
416 if ( rc != LDAP_SUCCESS ) {
417 op->o_bd->bd_info = (BackendInfo *)on->on_info;
418 send_ldap_error( op, rs, rc, "bindDN massage error" );
422 overlay_callback_after_backover( op, &roc->cb, 1 );
424 return SLAP_CB_CONTINUE;
428 rwm_op_unbind( Operation *op, SlapReply *rs )
430 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
431 struct ldaprwmap *rwmap =
432 (struct ldaprwmap *)on->on_bi.bi_private;
434 rewrite_session_delete( rwmap->rwm_rw, op->o_conn );
436 return SLAP_CB_CONTINUE;
440 rwm_op_compare( Operation *op, SlapReply *rs )
442 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
443 struct ldaprwmap *rwmap =
444 (struct ldaprwmap *)on->on_bi.bi_private;
447 struct berval mapped_vals[2] = { BER_BVNULL, BER_BVNULL };
449 rwm_op_cb *roc = rwm_callback_get( op, rs );
451 rc = rwm_op_dn_massage( op, rs, "compareDN", &roc->ros );
452 if ( rc != LDAP_SUCCESS ) {
453 op->o_bd->bd_info = (BackendInfo *)on->on_info;
454 send_ldap_error( op, rs, rc, "compareDN massage error" );
458 /* if the attribute is an objectClass, try to remap its value */
459 if ( op->orc_ava->aa_desc == slap_schema.si_ad_objectClass
460 || op->orc_ava->aa_desc == slap_schema.si_ad_structuralObjectClass )
462 rwm_map( &rwmap->rwm_oc, &op->orc_ava->aa_value,
463 &mapped_vals[0], RWM_MAP );
464 if ( BER_BVISNULL( &mapped_vals[0] ) || BER_BVISEMPTY( &mapped_vals[0] ) )
466 op->o_bd->bd_info = (BackendInfo *)on->on_info;
467 send_ldap_error( op, rs, LDAP_OTHER, "compare objectClass map error" );
470 } else if ( mapped_vals[0].bv_val != op->orc_ava->aa_value.bv_val ) {
471 ber_dupbv_x( &op->orc_ava->aa_value, &mapped_vals[0],
476 struct ldapmapping *mapping = NULL;
477 AttributeDescription *ad = op->orc_ava->aa_desc;
479 ( void )rwm_mapping( &rwmap->rwm_at, &op->orc_ava->aa_desc->ad_cname,
481 if ( mapping == NULL ) {
482 if ( rwmap->rwm_at.drop_missing ) {
483 op->o_bd->bd_info = (BackendInfo *)on->on_info;
484 send_ldap_error( op, rs, LDAP_OTHER, "compare attributeType map error" );
489 assert( mapping->m_dst_ad != NULL );
490 ad = mapping->m_dst_ad;
493 if ( op->orc_ava->aa_desc->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName
494 || ( mapping != NULL && mapping->m_dst_ad->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName ) )
496 struct berval *mapped_valsp[2];
498 mapped_valsp[0] = &mapped_vals[0];
499 mapped_valsp[1] = &mapped_vals[1];
501 mapped_vals[0] = op->orc_ava->aa_value;
503 rc = rwm_dnattr_rewrite( op, rs, "compareAttrDN", NULL, mapped_valsp );
505 if ( rc != LDAP_SUCCESS ) {
506 op->o_bd->bd_info = (BackendInfo *)on->on_info;
507 send_ldap_error( op, rs, rc, "compareAttrDN massage error" );
511 if ( mapped_vals[ 0 ].bv_val != op->orc_ava->aa_value.bv_val ) {
512 /* NOTE: if we get here, rwm_dnattr_rewrite()
513 * already freed the old value, so now
515 ber_dupbv_x( &op->orc_ava->aa_value, &mapped_vals[0],
517 ber_memfree_x( mapped_vals[ 0 ].bv_val, NULL );
520 op->orc_ava->aa_desc = ad;
523 op->o_callback = &roc->cb;
525 return SLAP_CB_CONTINUE;
529 rwm_op_delete( Operation *op, SlapReply *rs )
531 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
534 rwm_op_cb *roc = rwm_callback_get( op, rs );
536 rc = rwm_op_dn_massage( op, rs, "deleteDN", &roc->ros );
537 if ( rc != LDAP_SUCCESS ) {
538 op->o_bd->bd_info = (BackendInfo *)on->on_info;
539 send_ldap_error( op, rs, rc, "deleteDN massage error" );
543 op->o_callback = &roc->cb;
545 return SLAP_CB_CONTINUE;
549 rwm_op_modify( Operation *op, SlapReply *rs )
551 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
552 struct ldaprwmap *rwmap =
553 (struct ldaprwmap *)on->on_bi.bi_private;
559 rwm_op_cb *roc = rwm_callback_get( op, rs );
561 rc = rwm_op_dn_massage( op, rs, "modifyDN", &roc->ros );
562 if ( rc != LDAP_SUCCESS ) {
563 op->o_bd->bd_info = (BackendInfo *)on->on_info;
564 send_ldap_error( op, rs, rc, "modifyDN massage error" );
568 isupdate = be_shadow_update( op );
569 for ( mlp = &op->orm_modlist; *mlp; ) {
571 Modifications *ml = *mlp;
572 struct ldapmapping *mapping = NULL;
574 /* ml points to a temporary mod until needs duplication */
575 if ( ml->sml_desc == slap_schema.si_ad_objectClass
576 || ml->sml_desc == slap_schema.si_ad_structuralObjectClass )
580 } else if ( !isupdate && !get_relax( op ) && ml->sml_desc->ad_type->sat_no_user_mod )
582 ml = ch_malloc( sizeof( Modifications ) );
584 if ( (*mlp)->sml_values ) {
585 ber_bvarray_dup_x( &ml->sml_values, (*mlp)->sml_values, NULL );
586 if ( (*mlp)->sml_nvalues ) {
587 ber_bvarray_dup_x( &ml->sml_nvalues, (*mlp)->sml_nvalues, NULL );
596 drop_missing = rwm_mapping( &rwmap->rwm_at,
597 &ml->sml_desc->ad_cname,
599 if ( drop_missing || ( mapping != NULL && BER_BVISNULL( &mapping->m_dst ) ) )
605 /* duplicate the modlist */
606 ml = ch_malloc( sizeof( Modifications ));
610 if ( ml->sml_values != NULL ) {
614 for ( num = 0; !BER_BVISNULL( &ml->sml_values[ num ] ); num++ )
617 bva = ch_malloc( (num+1) * sizeof( struct berval ));
618 for (i=0; i<num; i++)
619 ber_dupbv( &bva[i], &ml->sml_values[i] );
620 BER_BVZERO( &bva[i] );
621 ml->sml_values = bva;
623 if ( ml->sml_nvalues ) {
624 bva = ch_malloc( (num+1) * sizeof( struct berval ));
625 for (i=0; i<num; i++)
626 ber_dupbv( &bva[i], &ml->sml_nvalues[i] );
627 BER_BVZERO( &bva[i] );
628 ml->sml_nvalues = bva;
636 for ( j = 0; !BER_BVISNULL( &ml->sml_values[ j ] ); j++ ) {
637 struct ldapmapping *oc_mapping = NULL;
639 ( void )rwm_mapping( &rwmap->rwm_oc, &ml->sml_values[ j ],
640 &oc_mapping, RWM_MAP );
641 if ( oc_mapping == NULL ) {
642 if ( rwmap->rwm_at.drop_missing ) {
643 /* FIXME: we allow to remove objectClasses as well;
644 * if the resulting entry is inconsistent, that's
645 * the relayed database's business...
648 ch_free( ml->sml_values[ j ].bv_val );
649 ml->sml_values[ j ] = ml->sml_values[ last ];
651 BER_BVZERO( &ml->sml_values[ last ] );
657 ch_free( ml->sml_values[ j ].bv_val );
658 ber_dupbv( &ml->sml_values[ j ], &oc_mapping->m_dst );
663 if ( ml->sml_desc->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName
664 || ( mapping != NULL && mapping->m_dst_ad->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName ) )
666 rc = rwm_dnattr_rewrite( op, rs, "modifyAttrDN",
668 ml->sml_nvalues ? &ml->sml_nvalues : NULL );
670 } else if ( ml->sml_desc == slap_schema.si_ad_ref ) {
671 rc = rwm_referral_rewrite( op, rs,
674 ml->sml_nvalues ? &ml->sml_nvalues : NULL );
675 if ( rc != LDAP_SUCCESS ) {
680 if ( rc != LDAP_SUCCESS ) {
687 if ( mapping != NULL ) {
688 /* use new attribute description */
689 assert( mapping->m_dst_ad != NULL );
690 ml->sml_desc = mapping->m_dst_ad;
697 *mlp = (*mlp)->sml_next;
702 *mlp = (*mlp)->sml_next;
703 slap_mod_free( &ml->sml_mod, 0 );
707 op->o_callback = &roc->cb;
709 return SLAP_CB_CONTINUE;
713 rwm_op_modrdn( Operation *op, SlapReply *rs )
715 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
716 struct ldaprwmap *rwmap =
717 (struct ldaprwmap *)on->on_bi.bi_private;
722 rwm_op_cb *roc = rwm_callback_get( op, rs );
724 if ( op->orr_newSup ) {
725 struct berval nnewSup = BER_BVNULL;
726 struct berval newSup = BER_BVNULL;
729 * Rewrite the new superior, if defined and required
732 dc.conn = op->o_conn;
734 dc.ctx = "newSuperiorDN";
735 newSup = *op->orr_newSup;
736 nnewSup = *op->orr_nnewSup;
737 rc = rwm_dn_massage_pretty_normalize( &dc, op->orr_newSup, &newSup, &nnewSup );
738 if ( rc != LDAP_SUCCESS ) {
739 op->o_bd->bd_info = (BackendInfo *)on->on_info;
740 send_ldap_error( op, rs, rc, "newSuperiorDN massage error" );
744 if ( op->orr_newSup->bv_val != newSup.bv_val ) {
745 op->orr_newSup = op->o_tmpalloc( sizeof( struct berval ),
747 op->orr_nnewSup = op->o_tmpalloc( sizeof( struct berval ),
749 *op->orr_newSup = newSup;
750 *op->orr_nnewSup = nnewSup;
755 * Rewrite the newRDN, if needed
758 struct berval newrdn = BER_BVNULL;
759 struct berval nnewrdn = BER_BVNULL;
762 dc.conn = op->o_conn;
765 newrdn = op->orr_newrdn;
766 nnewrdn = op->orr_nnewrdn;
767 rc = rwm_dn_massage_pretty_normalize( &dc, &op->orr_newrdn, &newrdn, &nnewrdn );
768 if ( rc != LDAP_SUCCESS ) {
769 op->o_bd->bd_info = (BackendInfo *)on->on_info;
770 send_ldap_error( op, rs, rc, "newRDN massage error" );
774 if ( op->orr_newrdn.bv_val != newrdn.bv_val ) {
775 op->orr_newrdn = newrdn;
776 op->orr_nnewrdn = nnewrdn;
781 * Rewrite the dn, if needed
783 rc = rwm_op_dn_massage( op, rs, "renameDN", &roc->ros );
784 if ( rc != LDAP_SUCCESS ) {
785 op->o_bd->bd_info = (BackendInfo *)on->on_info;
786 send_ldap_error( op, rs, rc, "renameDN massage error" );
790 op->o_callback = &roc->cb;
792 rc = SLAP_CB_CONTINUE;
796 if ( op->orr_newSup != roc->ros.orr_newSup ) {
797 ch_free( op->orr_newSup->bv_val );
798 ch_free( op->orr_nnewSup->bv_val );
799 op->o_tmpfree( op->orr_newSup, op->o_tmpmemctx );
800 op->o_tmpfree( op->orr_nnewSup, op->o_tmpmemctx );
801 op->orr_newSup = roc->ros.orr_newSup;
802 op->orr_nnewSup = roc->ros.orr_nnewSup;
805 if ( op->orr_newrdn.bv_val != roc->ros.orr_newrdn.bv_val ) {
806 ch_free( op->orr_newrdn.bv_val );
807 ch_free( op->orr_nnewrdn.bv_val );
808 op->orr_newrdn = roc->ros.orr_newrdn;
809 op->orr_nnewrdn = roc->ros.orr_nnewrdn;
818 rwm_swap_attrs( Operation *op, SlapReply *rs )
820 slap_callback *cb = op->o_callback;
821 rwm_op_state *ros = cb->sc_private;
823 rs->sr_attrs = ros->ors_attrs;
825 /* other overlays might have touched op->ors_attrs,
826 * so we restore the original version here, otherwise
827 * attribute-mapping might fail */
828 op->ors_attrs = ros->mapped_attrs;
830 return SLAP_CB_CONTINUE;
834 * NOTE: this implementation of get/release entry is probably far from
835 * optimal. The rationale consists in intercepting the request directed
836 * to the underlying database, in order to rewrite/remap the request,
837 * perform it using the modified data, duplicate the resulting entry
838 * and finally free it when release is called.
839 * This implies that subsequent overlays are not called, as the request
840 * is directly shunted to the underlying database.
843 rwm_entry_release_rw( Operation *op, Entry *e, int rw )
845 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
848 if ( ((BackendInfo *)on->on_info->oi_orig)->bi_entry_get_rw == NULL ) {
849 return SLAP_CB_CONTINUE;
852 /* just free entry if (probably) ours */
853 if ( e->e_private == NULL && BER_BVISNULL( &e->e_bv ) ) {
858 return SLAP_CB_CONTINUE;
862 rwm_entry_get_rw( Operation *op, struct berval *ndn,
863 ObjectClass *oc, AttributeDescription *at, int rw, Entry **ep )
865 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
866 struct ldaprwmap *rwmap =
867 (struct ldaprwmap *)on->on_bi.bi_private;
874 SlapReply rs = { REP_SEARCH };
876 rwm_op_state ros = { 0 };
877 struct berval mndn = BER_BVNULL;
879 if ( ((BackendInfo *)on->on_info->oi_orig)->bi_entry_get_rw == NULL ) {
880 return SLAP_CB_CONTINUE;
884 op2.o_tag = LDAP_REQ_SEARCH;
887 op2.o_req_ndn = *ndn;
888 rc = rwm_op_dn_massage( &op2, &rs, "searchDN", &ros );
889 if ( rc != LDAP_SUCCESS ) {
893 mndn = BER_BVISNULL( &ros.r_ndn ) ? *ndn : ros.r_ndn;
895 /* map attribute & objectClass */
905 op2.o_bd->bd_info = (BackendInfo *)on->on_info->oi_orig;
906 op2.ors_attrs = slap_anlist_all_attributes;
907 rc = op2.o_bd->bd_info->bi_entry_get_rw( &op2, &mndn, oc, at, rw, ep );
908 if ( rc == LDAP_SUCCESS && *ep != NULL ) {
909 /* we assume be_entry_release() needs to be called */
910 rs.sr_flags = REP_ENTRY_MUSTRELEASE;
913 /* duplicate & release */
914 op2.o_bd->bd_info = (BackendInfo *)on;
915 rc = rwm_send_entry( &op2, &rs );
916 if ( rc == SLAP_CB_CONTINUE ) {
922 if ( !BER_BVISNULL( &ros.r_ndn) && ros.r_ndn.bv_val != ndn->bv_val ) {
923 op->o_tmpfree( ros.r_ndn.bv_val, op->o_tmpmemctx );
930 rwm_op_search( Operation *op, SlapReply *rs )
932 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
933 struct ldaprwmap *rwmap =
934 (struct ldaprwmap *)on->on_bi.bi_private;
939 struct berval fstr = BER_BVNULL;
942 AttributeName *an = NULL;
946 rwm_op_cb *roc = rwm_callback_get( op, rs );
948 rc = rewrite_session_var_set( rwmap->rwm_rw, op->o_conn,
949 "searchFilter", op->ors_filterstr.bv_val );
950 if ( rc == LDAP_SUCCESS )
951 rc = rwm_op_dn_massage( op, rs, "searchDN", &roc->ros );
952 if ( rc != LDAP_SUCCESS ) {
953 text = "searchDN massage error";
958 * Rewrite the dn if needed
961 dc.conn = op->o_conn;
963 dc.ctx = "searchFilterAttrDN";
965 rc = rwm_filter_map_rewrite( op, &dc, op->ors_filter, &fstr );
966 if ( rc != LDAP_SUCCESS ) {
967 text = "searchFilter/searchFilterAttrDN massage error";
971 f = str2filter_x( op, fstr.bv_val );
974 text = "massaged filter parse error";
979 op->ors_filterstr = fstr;
981 rc = rwm_map_attrnames( op, &rwmap->rwm_at, &rwmap->rwm_oc,
982 op->ors_attrs, &an, RWM_MAP );
983 if ( rc != LDAP_SUCCESS ) {
984 text = "attribute list mapping error";
989 /* store the mapped Attributes for later usage, in
990 * the case that other overlays change op->ors_attrs */
991 roc->ros.mapped_attrs = an;
992 roc->cb.sc_response = rwm_swap_attrs;
994 op->o_callback = &roc->cb;
996 return SLAP_CB_CONTINUE;
1004 filter_free_x( op, f, 1 );
1007 if ( !BER_BVISNULL( &fstr ) ) {
1008 op->o_tmpfree( fstr.bv_val, op->o_tmpmemctx );
1011 rwm_op_rollback( op, rs, &roc->ros );
1012 op->oq_search = roc->ros.oq_search;
1013 op->o_tmpfree( roc, op->o_tmpmemctx );
1015 op->o_bd->bd_info = (BackendInfo *)on->on_info;
1016 send_ldap_error( op, rs, rc, text );
1023 rwm_exop_passwd( Operation *op, SlapReply *rs )
1025 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
1029 struct berval id = BER_BVNULL,
1032 BerElement *ber = NULL;
1034 if ( !BER_BVISNULL( &op->o_req_ndn ) ) {
1035 return LDAP_SUCCESS;
1038 if ( !SLAP_ISGLOBALOVERLAY( op->o_bd ) ) {
1039 rs->sr_err = LDAP_OTHER;
1043 rs->sr_err = slap_passwd_parse( op->ore_reqdata, &id,
1044 &pwold, &pwnew, &rs->sr_text );
1045 if ( rs->sr_err != LDAP_SUCCESS ) {
1049 if ( !BER_BVISNULL( &id ) ) {
1050 char idNul = id.bv_val[id.bv_len];
1051 id.bv_val[id.bv_len] = '\0';
1052 rs->sr_err = dnPrettyNormal( NULL, &id, &op->o_req_dn,
1053 &op->o_req_ndn, op->o_tmpmemctx );
1054 id.bv_val[id.bv_len] = idNul;
1055 if ( rs->sr_err != LDAP_SUCCESS ) {
1056 rs->sr_text = "Invalid DN";
1061 ber_dupbv_x( &op->o_req_dn, &op->o_dn, op->o_tmpmemctx );
1062 ber_dupbv_x( &op->o_req_ndn, &op->o_ndn, op->o_tmpmemctx );
1065 roc = rwm_callback_get( op, rs );
1067 rc = rwm_op_dn_massage( op, rs, "extendedDN", &roc->ros );
1068 if ( rc != LDAP_SUCCESS ) {
1069 op->o_bd->bd_info = (BackendInfo *)on->on_info;
1070 send_ldap_error( op, rs, rc, "extendedDN massage error" );
1074 ber = ber_alloc_t( LBER_USE_DER );
1076 rs->sr_err = LDAP_OTHER;
1077 rs->sr_text = "No memory";
1080 ber_printf( ber, "{" );
1081 if ( !BER_BVISNULL( &id )) {
1082 ber_printf( ber, "tO", LDAP_TAG_EXOP_MODIFY_PASSWD_ID,
1085 if ( !BER_BVISNULL( &pwold )) {
1086 ber_printf( ber, "tO", LDAP_TAG_EXOP_MODIFY_PASSWD_OLD, &pwold );
1088 if ( !BER_BVISNULL( &pwnew )) {
1089 ber_printf( ber, "tO", LDAP_TAG_EXOP_MODIFY_PASSWD_NEW, &pwnew );
1091 ber_printf( ber, "N}" );
1092 ber_flatten( ber, &op->ore_reqdata );
1095 op->o_callback = &roc->cb;
1097 return SLAP_CB_CONTINUE;
1100 static struct exop {
1102 BI_op_extended *extended;
1104 { BER_BVC(LDAP_EXOP_MODIFY_PASSWD), rwm_exop_passwd },
1105 { BER_BVNULL, NULL }
1109 rwm_extended( Operation *op, SlapReply *rs )
1111 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
1117 for ( i = 0; exop_table[i].extended != NULL; i++ ) {
1118 if ( bvmatch( &exop_table[i].oid, &op->oq_extended.rs_reqoid ) )
1120 rc = exop_table[i].extended( op, rs );
1125 case SLAP_CB_CONTINUE:
1130 send_ldap_result( op, rs );
1137 roc = rwm_callback_get( op, rs );
1139 rc = rwm_op_dn_massage( op, rs, "extendedDN", &roc->ros );
1140 if ( rc != LDAP_SUCCESS ) {
1141 op->o_bd->bd_info = (BackendInfo *)on->on_info;
1142 send_ldap_error( op, rs, rc, "extendedDN massage error" );
1146 /* TODO: rewrite/map extended data ? ... */
1147 op->o_callback = &roc->cb;
1149 return SLAP_CB_CONTINUE;
1153 rwm_matched( Operation *op, SlapReply *rs )
1155 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
1156 struct ldaprwmap *rwmap =
1157 (struct ldaprwmap *)on->on_bi.bi_private;
1159 struct berval dn, mdn;
1163 if ( rs->sr_matched == NULL ) {
1164 return SLAP_CB_CONTINUE;
1168 dc.conn = op->o_conn;
1170 dc.ctx = "matchedDN";
1171 ber_str2bv( rs->sr_matched, 0, 0, &dn );
1173 rc = rwm_dn_massage_pretty( &dc, &dn, &mdn );
1174 if ( rc != LDAP_SUCCESS ) {
1176 rs->sr_text = "Rewrite error";
1180 if ( mdn.bv_val != dn.bv_val ) {
1181 if ( rs->sr_flags & REP_MATCHED_MUSTBEFREED ) {
1182 ch_free( (void *)rs->sr_matched );
1185 rs->sr_flags |= REP_MATCHED_MUSTBEFREED;
1187 rs->sr_matched = mdn.bv_val;
1190 return SLAP_CB_CONTINUE;
1194 rwm_attrs( Operation *op, SlapReply *rs, Attribute** a_first, int stripEntryDN )
1196 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
1197 struct ldaprwmap *rwmap =
1198 (struct ldaprwmap *)on->on_bi.bi_private;
1204 int check_duplicate_attrs = 0;
1207 * Rewrite the dn attrs, if needed
1210 dc.conn = op->o_conn;
1213 /* FIXME: the entries are in the remote mapping form;
1214 * so we need to select those attributes we are willing
1215 * to return, and remap them accordingly */
1217 /* FIXME: in principle, one could map an attribute
1218 * on top of another, which already exists.
1219 * As such, in the end there might exist more than
1220 * one instance of an attribute.
1221 * We should at least check if this occurs, and issue
1222 * an error (because multiple instances of attrs in
1223 * response are not valid), or merge the values (what
1224 * about duplicate values?) */
1225 isupdate = be_shadow_update( op );
1226 for ( ap = a_first; *ap; ) {
1227 struct ldapmapping *mapping = NULL;
1232 if ( ( rwmap->rwm_flags & RWM_F_DROP_UNREQUESTED_ATTRS ) &&
1233 op->ors_attrs != NULL &&
1234 !SLAP_USERATTRS( rs->sr_attr_flags ) &&
1235 !ad_inlist( (*ap)->a_desc, op->ors_attrs ) )
1240 drop_missing = rwm_mapping( &rwmap->rwm_at,
1241 &(*ap)->a_desc->ad_cname, &mapping, RWM_REMAP );
1242 if ( drop_missing || ( mapping != NULL && BER_BVISEMPTY( &mapping->m_dst ) ) )
1246 if ( mapping != NULL ) {
1247 assert( mapping->m_dst_ad != NULL );
1249 /* try to normalize mapped Attributes if the original
1250 * AttributeType was not normalized */
1251 if ( (!(*ap)->a_desc->ad_type->sat_equality ||
1252 !(*ap)->a_desc->ad_type->sat_equality->smr_normalize) &&
1253 mapping->m_dst_ad->ad_type->sat_equality &&
1254 mapping->m_dst_ad->ad_type->sat_equality->smr_normalize )
1256 if ((rwmap->rwm_flags & RWM_F_NORMALIZE_MAPPED_ATTRS))
1260 last = (*ap)->a_numvals;
1263 (*ap)->a_nvals = ch_malloc( (last+1) * sizeof(struct berval) );
1265 for ( i = 0; !BER_BVISNULL( &(*ap)->a_vals[i]); i++ ) {
1268 * check that each value is valid per syntax
1269 * and pretty if appropriate
1271 rc = mapping->m_dst_ad->ad_type->sat_equality->smr_normalize(
1272 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
1273 mapping->m_dst_ad->ad_type->sat_syntax,
1274 mapping->m_dst_ad->ad_type->sat_equality,
1275 &(*ap)->a_vals[i], &(*ap)->a_nvals[i],
1278 if ( rc != LDAP_SUCCESS ) {
1279 BER_BVZERO( &(*ap)->a_nvals[i] );
1282 BER_BVZERO( &(*ap)->a_nvals[i] );
1286 assert( (*ap)->a_nvals == (*ap)->a_vals );
1287 (*ap)->a_nvals = NULL;
1288 ber_bvarray_dup_x( &(*ap)->a_nvals, (*ap)->a_vals, NULL );
1292 /* rewrite the attribute description */
1293 (*ap)->a_desc = mapping->m_dst_ad;
1295 /* will need to check for duplicate attrs */
1296 check_duplicate_attrs++;
1299 if ( (*ap)->a_desc == slap_schema.si_ad_entryDN ) {
1300 if ( stripEntryDN ) {
1301 /* will be generated by frontend */
1305 } else if ( !isupdate
1307 && (*ap)->a_desc->ad_type->sat_no_user_mod
1308 && (*ap)->a_desc->ad_type != slap_schema.si_at_undefined )
1313 if ( last == -1 ) { /* not yet counted */
1314 last = (*ap)->a_numvals;
1318 /* empty? leave it in place because of attrsonly and vlv */
1323 if ( (*ap)->a_desc == slap_schema.si_ad_objectClass
1324 || (*ap)->a_desc == slap_schema.si_ad_structuralObjectClass )
1328 for ( bv = (*ap)->a_vals; !BER_BVISNULL( bv ); bv++ ) {
1329 struct berval mapped;
1331 rwm_map( &rwmap->rwm_oc, &bv[0], &mapped, RWM_REMAP );
1332 if ( BER_BVISNULL( &mapped ) || BER_BVISEMPTY( &mapped ) ) {
1334 ch_free( bv[0].bv_val );
1335 BER_BVZERO( &bv[0] );
1336 if ( &(*ap)->a_vals[last] > &bv[0] ) {
1337 bv[0] = (*ap)->a_vals[last];
1338 BER_BVZERO( &(*ap)->a_vals[last] );
1343 } else if ( mapped.bv_val != bv[0].bv_val
1344 && ber_bvstrcasecmp( &mapped, &bv[0] ) != 0 )
1348 for ( i = 0; !BER_BVISNULL( &(*ap)->a_vals[ i ] ); i++ ) {
1349 if ( &(*ap)->a_vals[ i ] == bv ) {
1353 if ( ber_bvstrcasecmp( &mapped, &(*ap)->a_vals[ i ] ) == 0 ) {
1358 if ( !BER_BVISNULL( &(*ap)->a_vals[ i ] ) ) {
1363 * FIXME: after LBER_FREEing
1364 * the value is replaced by
1365 * ch_alloc'ed memory
1367 ber_bvreplace( &bv[0], &mapped );
1369 /* FIXME: will need to check
1370 * if the structuralObjectClass
1376 * It is necessary to try to rewrite attributes with
1377 * dn syntax because they might be used in ACLs as
1378 * members of groups; since ACLs are applied to the
1379 * rewritten stuff, no dn-based subject clause could
1380 * be used at the ldap backend side (see
1381 * http://www.OpenLDAP.org/faq/data/cache/452.html)
1382 * The problem can be overcome by moving the dn-based
1383 * ACLs to the target directory server, and letting
1384 * everything pass thru the ldap backend. */
1385 /* FIXME: handle distinguishedName-like syntaxes, like
1386 * nameAndOptionalUID */
1387 } else if ( (*ap)->a_desc->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName
1388 || ( mapping != NULL && mapping->m_src_ad->ad_type->sat_syntax == slap_schema.si_syn_distinguishedName ) )
1390 dc.ctx = "searchAttrDN";
1391 rc = rwm_dnattr_result_rewrite( &dc, (*ap)->a_vals, (*ap)->a_nvals );
1392 if ( rc != LDAP_SUCCESS ) {
1396 } else if ( (*ap)->a_desc == slap_schema.si_ad_ref ) {
1397 dc.ctx = "searchAttrDN";
1398 rc = rwm_referral_result_rewrite( &dc, (*ap)->a_vals );
1399 if ( rc != LDAP_SUCCESS ) {
1406 ap = &(*ap)->a_next;
1411 *ap = (*ap)->a_next;
1416 /* only check if some mapping occurred */
1417 if ( check_duplicate_attrs ) {
1418 for ( ap = a_first; *ap != NULL; ap = &(*ap)->a_next ) {
1421 for ( tap = &(*ap)->a_next; *tap != NULL; ) {
1422 if ( (*tap)->a_desc == (*ap)->a_desc ) {
1424 Modification mod = { 0 };
1425 const char *text = NULL;
1426 char textbuf[ SLAP_TEXT_BUFLEN ];
1427 Attribute *next = (*tap)->a_next;
1429 BER_BVSTR( &e.e_name, "" );
1430 BER_BVSTR( &e.e_nname, "" );
1432 mod.sm_op = LDAP_MOD_ADD;
1433 mod.sm_desc = (*ap)->a_desc;
1434 mod.sm_type = mod.sm_desc->ad_cname;
1435 mod.sm_numvals = (*tap)->a_numvals;
1436 mod.sm_values = (*tap)->a_vals;
1437 if ( (*tap)->a_nvals != (*tap)->a_vals ) {
1438 mod.sm_nvalues = (*tap)->a_nvals;
1441 (void)modify_add_values( &e, &mod,
1443 &text, textbuf, sizeof( textbuf ) );
1445 /* should not insert new attrs! */
1446 assert( e.e_attrs == *ap );
1452 tap = &(*tap)->a_next;
1462 rwm_send_entry( Operation *op, SlapReply *rs )
1464 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
1465 struct ldaprwmap *rwmap =
1466 (struct ldaprwmap *)on->on_bi.bi_private;
1470 struct berval dn = BER_BVNULL,
1475 assert( rs->sr_entry != NULL );
1478 * Rewrite the dn of the result, if needed
1481 dc.conn = op->o_conn;
1483 dc.ctx = "searchEntryDN";
1486 flags = rs->sr_flags;
1487 if ( !( rs->sr_flags & REP_ENTRY_MODIFIABLE ) ) {
1488 /* FIXME: all we need to duplicate are:
1491 * - attributes that are requested
1492 * - no values if attrsonly is set
1497 rc = LDAP_NO_MEMORY;
1501 flags &= ~REP_ENTRY_MUSTRELEASE;
1502 flags |= ( REP_ENTRY_MODIFIABLE | REP_ENTRY_MUSTBEFREED );
1506 * Note: this may fail if the target host(s) schema differs
1507 * from the one known to the meta, and a DN with unknown
1508 * attributes is returned.
1512 rc = rwm_dn_massage_pretty_normalize( &dc, &e->e_name, &dn, &ndn );
1513 if ( rc != LDAP_SUCCESS ) {
1518 if ( e->e_name.bv_val != dn.bv_val ) {
1519 ch_free( e->e_name.bv_val );
1520 ch_free( e->e_nname.bv_val );
1526 /* TODO: map entry attribute types, objectclasses
1527 * and dn-valued attribute values */
1529 /* FIXME: the entries are in the remote mapping form;
1530 * so we need to select those attributes we are willing
1531 * to return, and remap them accordingly */
1532 (void)rwm_attrs( op, rs, &e->e_attrs, 1 );
1534 if ( rs->sr_flags & REP_ENTRY_MUSTRELEASE ) {
1535 /* ITS#6423: REP_ENTRY_MUSTRELEASE incompatible
1536 * with REP_ENTRY_MODIFIABLE */
1537 if ( rs->sr_entry == e ) {
1542 op->o_bd->bd_info = (BackendInfo *)on->on_info;
1543 be_entry_release_r( op, rs->sr_entry );
1544 op->o_bd->bd_info = (BackendInfo *)on;
1548 rs->sr_flags = flags;
1550 return SLAP_CB_CONTINUE;
1553 if ( e != NULL && e != rs->sr_entry ) {
1554 if ( e->e_name.bv_val == dn.bv_val ) {
1555 BER_BVZERO( &e->e_name );
1558 if ( e->e_nname.bv_val == ndn.bv_val ) {
1559 BER_BVZERO( &e->e_nname );
1565 if ( !BER_BVISNULL( &dn ) ) {
1566 ch_free( dn.bv_val );
1569 if ( !BER_BVISNULL( &ndn ) ) {
1570 ch_free( ndn.bv_val );
1577 rwm_operational( Operation *op, SlapReply *rs )
1579 /* FIXME: the entries are in the remote mapping form;
1580 * so we need to select those attributes we are willing
1581 * to return, and remap them accordingly */
1582 if ( rs->sr_operational_attrs ) {
1583 rwm_attrs( op, rs, &rs->sr_operational_attrs, 1 );
1586 return SLAP_CB_CONTINUE;
1590 /* don't use this; it cannot be reverted, and leaves op->o_req_dn
1591 * rewritten for subsequent operations; fine for plain suffixmassage,
1592 * but destroys everything else */
1594 rwm_chk_referrals( Operation *op, SlapReply *rs )
1596 slap_overinst *on = (slap_overinst *) op->o_bd->bd_info;
1599 rc = rwm_op_dn_massage( op, rs, "referralCheckDN" );
1600 if ( rc != LDAP_SUCCESS ) {
1601 op->o_bd->bd_info = (BackendInfo *)on->on_info;
1602 send_ldap_error( op, rs, rc, "referralCheckDN massage error" );
1606 return SLAP_CB_CONTINUE;
1618 slap_overinst *on = (slap_overinst *) be->bd_info;
1619 struct ldaprwmap *rwmap =
1620 (struct ldaprwmap *)on->on_bi.bi_private;
1622 return rewrite_parse( rwmap->rwm_rw,
1623 fname, lineno, argc, argv );
1629 rwm_suffixmassage_config(
1636 slap_overinst *on = (slap_overinst *) be->bd_info;
1637 struct ldaprwmap *rwmap =
1638 (struct ldaprwmap *)on->on_bi.bi_private;
1640 struct berval bvnc, nvnc, pvnc, brnc, nrnc, prnc;
1647 * suffixmassage [<suffix>] <massaged suffix>
1649 * the [<suffix>] field must be defined as a valid suffix
1650 * for the current database;
1651 * the <massaged suffix> shouldn't have already been
1652 * defined as a valid suffix for the current server
1655 if ( be->be_suffix == NULL ) {
1656 Debug( LDAP_DEBUG_ANY, "%s: line %d: "
1657 " \"suffixMassage [<suffix>]"
1658 " <massaged suffix>\" without "
1659 "<suffix> part requires database "
1660 "suffix be defined first.\n",
1664 bvnc = be->be_suffix[ 0 ];
1667 } else if ( argc == 3 ) {
1668 ber_str2bv( argv[ 1 ], 0, 0, &bvnc );
1672 Debug( LDAP_DEBUG_ANY, "%s: line %d: syntax is"
1673 " \"suffixMassage [<suffix>]"
1674 " <massaged suffix>\"\n",
1679 if ( dnPrettyNormal( NULL, &bvnc, &pvnc, &nvnc, NULL ) != LDAP_SUCCESS ) {
1680 Debug( LDAP_DEBUG_ANY, "%s: line %d: suffix DN %s is invalid\n",
1681 fname, lineno, bvnc.bv_val );
1685 ber_str2bv( argv[ massaged ], 0, 0, &brnc );
1686 if ( dnPrettyNormal( NULL, &brnc, &prnc, &nrnc, NULL ) != LDAP_SUCCESS ) {
1687 Debug( LDAP_DEBUG_ANY, "%s: line %d: suffix DN %s is invalid\n",
1688 fname, lineno, brnc.bv_val );
1689 free( nvnc.bv_val );
1690 free( pvnc.bv_val );
1695 * The suffix massaging is emulated
1696 * by means of the rewrite capabilities
1698 rc = rwm_suffix_massage_config( rwmap->rwm_rw,
1699 &pvnc, &nvnc, &prnc, &nrnc );
1700 free( nvnc.bv_val );
1701 free( pvnc.bv_val );
1702 free( nrnc.bv_val );
1703 free( prnc.bv_val );
1716 slap_overinst *on = (slap_overinst *) be->bd_info;
1717 struct ldaprwmap *rwmap =
1718 (struct ldaprwmap *)on->on_bi.bi_private;
1720 /* objectclass/attribute mapping */
1721 return rwm_map_config( &rwmap->rwm_oc,
1723 fname, lineno, argc, argv );
1727 rwm_response( Operation *op, SlapReply *rs )
1729 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
1730 struct ldaprwmap *rwmap =
1731 (struct ldaprwmap *)on->on_bi.bi_private;
1735 if ( op->o_tag == LDAP_REQ_SEARCH && rs->sr_type == REP_SEARCH ) {
1736 return rwm_send_entry( op, rs );
1739 switch( op->o_tag ) {
1740 case LDAP_REQ_SEARCH:
1743 case LDAP_REQ_DELETE:
1744 case LDAP_REQ_MODRDN:
1745 case LDAP_REQ_MODIFY:
1746 case LDAP_REQ_COMPARE:
1747 case LDAP_REQ_EXTENDED:
1752 * Rewrite the dn of the referrals, if needed
1755 dc.conn = op->o_conn;
1757 dc.ctx = "referralDN";
1758 rc = rwm_referral_result_rewrite( &dc, rs->sr_ref );
1759 if ( rc != LDAP_SUCCESS ) {
1764 rc = rwm_matched( op, rs );
1768 rc = SLAP_CB_CONTINUE;
1783 slap_overinst *on = (slap_overinst *) be->bd_info;
1784 struct ldaprwmap *rwmap =
1785 (struct ldaprwmap *)on->on_bi.bi_private;
1790 if ( strncasecmp( argv[ 0 ], "rwm-", STRLENOF( "rwm-" ) ) == 0 ) {
1792 argv[ 0 ] = &argv0[ STRLENOF( "rwm-" ) ];
1795 if ( strncasecmp( argv[0], "rewrite", STRLENOF("rewrite") ) == 0 ) {
1796 rc = rwm_rw_config( be, fname, lineno, argc, argv );
1798 } else if ( strcasecmp( argv[0], "map" ) == 0 ) {
1799 rc = rwm_m_config( be, fname, lineno, argc, argv );
1801 } else if ( strcasecmp( argv[0], "suffixmassage" ) == 0 ) {
1802 rc = rwm_suffixmassage_config( be, fname, lineno, argc, argv );
1804 } else if ( strcasecmp( argv[0], "t-f-support" ) == 0 ) {
1806 Debug( LDAP_DEBUG_ANY,
1807 "%s: line %d: \"t-f-support {no|yes|discover}\" needs 1 argument.\n",
1812 if ( strcasecmp( argv[ 1 ], "no" ) == 0 ) {
1813 rwmap->rwm_flags &= ~(RWM_F_SUPPORT_T_F_MASK2);
1815 } else if ( strcasecmp( argv[ 1 ], "yes" ) == 0 ) {
1816 rwmap->rwm_flags |= RWM_F_SUPPORT_T_F;
1818 /* TODO: not implemented yet */
1819 } else if ( strcasecmp( argv[ 1 ], "discover" ) == 0 ) {
1820 Debug( LDAP_DEBUG_ANY,
1821 "%s: line %d: \"discover\" not supported yet "
1822 "in \"t-f-support {no|yes|discover}\".\n",
1826 rwmap->rwm_flags |= RWM_F_SUPPORT_T_F_DISCOVER;
1830 Debug( LDAP_DEBUG_ANY,
1831 "%s: line %d: unknown value \"%s\" for \"t-f-support {no|yes|discover}\".\n",
1832 fname, lineno, argv[ 1 ] );
1836 } else if ( strcasecmp( argv[0], "normalize-mapped-attrs" ) == 0 ) {
1838 Debug( LDAP_DEBUG_ANY,
1839 "%s: line %d: \"normalize-mapped-attrs {no|yes}\" needs 1 argument.\n",
1844 if ( strcasecmp( argv[ 1 ], "no" ) == 0 ) {
1845 rwmap->rwm_flags &= ~(RWM_F_NORMALIZE_MAPPED_ATTRS);
1847 } else if ( strcasecmp( argv[ 1 ], "yes" ) == 0 ) {
1848 rwmap->rwm_flags |= RWM_F_NORMALIZE_MAPPED_ATTRS;
1852 rc = SLAP_CONF_UNKNOWN;
1863 * dynamic configuration...
1873 RWM_CF_NORMALIZE_MAPPED,
1874 RWM_CF_DROP_UNREQUESTED,
1879 static slap_verbmasks t_f_mode[] = {
1880 { BER_BVC( "true" ), RWM_F_SUPPORT_T_F },
1881 { BER_BVC( "yes" ), RWM_F_SUPPORT_T_F },
1882 { BER_BVC( "discover" ), RWM_F_SUPPORT_T_F_DISCOVER },
1883 { BER_BVC( "false" ), RWM_F_NONE },
1884 { BER_BVC( "no" ), RWM_F_NONE },
1888 static ConfigDriver rwm_cf_gen;
1890 static ConfigTable rwmcfg[] = {
1891 { "rwm-rewrite", "rewrite",
1892 2, 0, STRLENOF("rwm-rewrite"),
1893 ARG_MAGIC|RWM_CF_REWRITE, rwm_cf_gen,
1894 "( OLcfgOvAt:16.1 NAME 'olcRwmRewrite' "
1895 "DESC 'Rewrites strings' "
1896 "EQUALITY caseIgnoreMatch "
1897 "SYNTAX OMsDirectoryString "
1898 "X-ORDERED 'VALUES' )",
1901 { "rwm-suffixmassage", "[virtual]> <real",
1902 2, 3, 0, ARG_MAGIC|RWM_CF_REWRITE, rwm_cf_gen,
1905 { "rwm-t-f-support", "true|false|discover",
1906 2, 2, 0, ARG_MAGIC|RWM_CF_T_F_SUPPORT, rwm_cf_gen,
1907 "( OLcfgOvAt:16.2 NAME 'olcRwmTFSupport' "
1908 "DESC 'Absolute filters support' "
1909 "SYNTAX OMsDirectoryString "
1913 { "rwm-map", "{objectClass|attribute}",
1914 2, 4, 0, ARG_MAGIC|RWM_CF_MAP, rwm_cf_gen,
1915 "( OLcfgOvAt:16.3 NAME 'olcRwmMap' "
1916 "DESC 'maps attributes/objectClasses' "
1917 "EQUALITY caseIgnoreMatch "
1918 "SYNTAX OMsDirectoryString "
1919 "X-ORDERED 'VALUES' )",
1922 { "rwm-normalize-mapped-attrs", "true|false",
1923 2, 2, 0, ARG_MAGIC|ARG_ON_OFF|RWM_CF_NORMALIZE_MAPPED, rwm_cf_gen,
1924 "( OLcfgOvAt:16.4 NAME 'olcRwmNormalizeMapped' "
1925 "DESC 'Normalize mapped attributes/objectClasses' "
1926 "SYNTAX OMsBoolean "
1930 { "rwm-drop-unrequested-attrs", "true|false",
1931 2, 2, 0, ARG_MAGIC|ARG_ON_OFF|RWM_CF_DROP_UNREQUESTED, rwm_cf_gen,
1932 "( OLcfgOvAt:16.5 NAME 'olcRwmDropUnrequested' "
1933 "DESC 'Drop unrequested attributes' "
1934 "SYNTAX OMsBoolean "
1938 { NULL, NULL, 0, 0, 0, ARG_IGNORED }
1941 static ConfigOCs rwmocs[] = {
1942 { "( OLcfgOvOc:16.1 "
1943 "NAME 'olcRwmConfig' "
1944 "DESC 'Rewrite/remap configuration' "
1945 "SUP olcOverlayConfig "
1948 "olcRwmTFSupport $ "
1950 "olcRwmNormalizeMapped "
1952 Cft_Overlay, rwmcfg, NULL, NULL },
1957 slap_bv_x_ordered_unparse( BerVarray in, BerVarray *out )
1960 BerVarray bva = NULL;
1961 char ibuf[32], *ptr;
1964 assert( in != NULL );
1966 for ( i = 0; !BER_BVISNULL( &in[i] ); i++ )
1975 bva = ch_malloc( ( i + 1 ) * sizeof(struct berval) );
1976 BER_BVZERO( &bva[ 0 ] );
1978 for ( i = 0; !BER_BVISNULL( &in[i] ); i++ ) {
1979 idx.bv_len = snprintf( idx.bv_val, sizeof( ibuf ), "{%d}", i );
1980 if ( idx.bv_len >= sizeof( ibuf ) ) {
1981 ber_bvarray_free( bva );
1985 bva[i].bv_len = idx.bv_len + in[i].bv_len;
1986 bva[i].bv_val = ch_malloc( bva[i].bv_len + 1 );
1987 ptr = lutil_strcopy( bva[i].bv_val, ibuf );
1988 ptr = lutil_strcopy( ptr, in[i].bv_val );
1990 BER_BVZERO( &bva[ i + 1 ] );
2005 line = ldap_charray2str( argv, "\" \"" );
2006 if ( line != NULL ) {
2007 int len = strlen( argv[ 0 ] );
2009 ber_str2bv( line, 0, 0, &bv );
2010 AC_MEMCPY( &bv.bv_val[ len ], &bv.bv_val[ len + 1 ],
2011 bv.bv_len - ( len + 1 ) );
2012 bv.bv_val[ bv.bv_len - 1 ] = '"';
2015 ber_bvarray_add( bva, &bv );
2028 rwm_bva_rewrite_add(
2029 struct ldaprwmap *rwmap,
2033 return rwm_bva_add( &rwmap->rwm_bva_rewrite, idx, argv );
2038 struct ldaprwmap *rwmap,
2042 return rwm_bva_add( &rwmap->rwm_bva_map, idx, argv );
2046 rwm_info_init( struct rewrite_info ** rwm_rw )
2050 *rwm_rw = rewrite_info_init( REWRITE_MODE_USE_DEFAULT );
2051 if ( *rwm_rw == NULL ) {
2055 /* this rewriteContext by default must be null;
2056 * rules can be added if required */
2057 rargv[ 0 ] = "rewriteContext";
2058 rargv[ 1 ] = "searchFilter";
2060 rewrite_parse( *rwm_rw, "<suffix massage>", 1, 2, rargv );
2062 rargv[ 0 ] = "rewriteContext";
2063 rargv[ 1 ] = "default";
2065 rewrite_parse( *rwm_rw, "<suffix massage>", 2, 2, rargv );
2071 rwm_cf_gen( ConfigArgs *c )
2073 slap_overinst *on = (slap_overinst *)c->bi;
2074 struct ldaprwmap *rwmap =
2075 (struct ldaprwmap *)on->on_bi.bi_private;
2085 if ( c->op == SLAP_CONFIG_EMIT ) {
2086 struct berval bv = BER_BVNULL;
2088 switch ( c->type ) {
2089 case RWM_CF_REWRITE:
2090 if ( rwmap->rwm_bva_rewrite == NULL ) {
2094 slap_bv_x_ordered_unparse( rwmap->rwm_bva_rewrite, &c->rvalue_vals );
2095 if ( !c->rvalue_vals ) {
2101 case RWM_CF_T_F_SUPPORT:
2102 enum_to_verb( t_f_mode, (rwmap->rwm_flags & RWM_F_SUPPORT_T_F_MASK2), &bv );
2103 if ( BER_BVISNULL( &bv ) ) {
2104 /* there's something wrong... */
2109 value_add_one( &c->rvalue_vals, &bv );
2114 if ( rwmap->rwm_bva_map == NULL ) {
2118 slap_bv_x_ordered_unparse( rwmap->rwm_bva_map, &c->rvalue_vals );
2119 if ( !c->rvalue_vals ) {
2125 case RWM_CF_NORMALIZE_MAPPED:
2126 c->value_int = ( rwmap->rwm_flags & RWM_F_NORMALIZE_MAPPED_ATTRS );
2129 case RWM_CF_DROP_UNREQUESTED:
2130 c->value_int = ( rwmap->rwm_flags & RWM_F_DROP_UNREQUESTED_ATTRS );
2140 } else if ( c->op == LDAP_MOD_DELETE ) {
2141 switch ( c->type ) {
2142 case RWM_CF_REWRITE:
2143 if ( c->valx >= 0 ) {
2146 for ( i = 0; !BER_BVISNULL( &rwmap->rwm_bva_rewrite[ i ] ); i++ )
2149 if ( c->valx >= i ) {
2154 ber_memfree( rwmap->rwm_bva_rewrite[ c->valx ].bv_val );
2155 for ( i = c->valx; !BER_BVISNULL( &rwmap->rwm_bva_rewrite[ i + 1 ] ); i++ )
2157 rwmap->rwm_bva_rewrite[ i ] = rwmap->rwm_bva_rewrite[ i + 1 ];
2159 BER_BVZERO( &rwmap->rwm_bva_rewrite[ i ] );
2161 rewrite_info_delete( &rwmap->rwm_rw );
2162 assert( rwmap->rwm_rw == NULL );
2164 rc = rwm_info_init( &rwmap->rwm_rw );
2166 for ( i = 0; !BER_BVISNULL( &rwmap->rwm_bva_rewrite[ i ] ); i++ )
2168 ConfigArgs ca = { 0 };
2170 ca.line = rwmap->rwm_bva_rewrite[ i ].bv_val;
2172 config_fp_parse_line( &ca );
2174 if ( strcasecmp( ca.argv[ 0 ], "suffixmassage" ) == 0 ) {
2175 rc = rwm_suffixmassage_config( &db, c->fname, c->lineno,
2179 rc = rwm_rw_config( &db, c->fname, c->lineno,
2183 ch_free( ca.tline );
2189 } else if ( rwmap->rwm_rw != NULL ) {
2190 rewrite_info_delete( &rwmap->rwm_rw );
2191 assert( rwmap->rwm_rw == NULL );
2193 ber_bvarray_free( rwmap->rwm_bva_rewrite );
2194 rwmap->rwm_bva_rewrite = NULL;
2196 rc = rwm_info_init( &rwmap->rwm_rw );
2200 case RWM_CF_T_F_SUPPORT:
2201 rwmap->rwm_flags &= ~RWM_F_SUPPORT_T_F_MASK2;
2205 if ( c->valx >= 0 ) {
2206 struct ldapmap rwm_oc = rwmap->rwm_oc;
2207 struct ldapmap rwm_at = rwmap->rwm_at;
2211 if ( rwmap->rwm_bva_map ) {
2212 for ( ; !BER_BVISNULL( &rwmap->rwm_bva_map[ cnt ] ); cnt++ )
2216 if ( c->valx >= cnt ) {
2221 memset( &rwmap->rwm_oc, 0, sizeof( rwmap->rwm_oc ) );
2222 memset( &rwmap->rwm_at, 0, sizeof( rwmap->rwm_at ) );
2224 /* re-parse all mappings except the one
2225 * that needs to be eliminated */
2227 for ( cnt = 0; !BER_BVISNULL( &rwmap->rwm_bva_map[ cnt ] ); cnt++ ) {
2228 ConfigArgs ca = { 0 };
2230 if ( cnt == c->valx ) {
2234 ca.line = rwmap->rwm_bva_map[ cnt ].bv_val;
2236 config_fp_parse_line( &ca );
2238 argv[1] = ca.argv[0];
2239 argv[2] = ca.argv[1];
2240 argv[3] = ca.argv[2];
2241 argv[4] = ca.argv[3];
2243 rc = rwm_m_config( &db, c->fname, c->lineno, ca.argc + 1, argv );
2245 ch_free( ca.tline );
2248 /* in case of failure, restore
2249 * the existing mapping */
2251 avl_free( rwmap->rwm_oc.remap, rwm_mapping_dst_free );
2252 avl_free( rwmap->rwm_oc.map, rwm_mapping_free );
2253 avl_free( rwmap->rwm_at.remap, rwm_mapping_dst_free );
2254 avl_free( rwmap->rwm_at.map, rwm_mapping_free );
2255 rwmap->rwm_oc = rwm_oc;
2256 rwmap->rwm_at = rwm_at;
2261 /* in case of success, destroy the old mapping
2262 * and eliminate the deleted one */
2264 avl_free( rwm_oc.remap, rwm_mapping_dst_free );
2265 avl_free( rwm_oc.map, rwm_mapping_free );
2266 avl_free( rwm_at.remap, rwm_mapping_dst_free );
2267 avl_free( rwm_at.map, rwm_mapping_free );
2269 ber_memfree( rwmap->rwm_bva_map[ c->valx ].bv_val );
2270 for ( cnt = c->valx; !BER_BVISNULL( &rwmap->rwm_bva_map[ cnt ] ); cnt++ ) {
2271 rwmap->rwm_bva_map[ cnt ] = rwmap->rwm_bva_map[ cnt + 1 ];
2276 avl_free( rwmap->rwm_oc.remap, rwm_mapping_dst_free );
2277 avl_free( rwmap->rwm_oc.map, rwm_mapping_free );
2278 avl_free( rwmap->rwm_at.remap, rwm_mapping_dst_free );
2279 avl_free( rwmap->rwm_at.map, rwm_mapping_free );
2281 rwmap->rwm_oc.remap = NULL;
2282 rwmap->rwm_oc.map = NULL;
2283 rwmap->rwm_at.remap = NULL;
2284 rwmap->rwm_at.map = NULL;
2286 ber_bvarray_free( rwmap->rwm_bva_map );
2287 rwmap->rwm_bva_map = NULL;
2291 case RWM_CF_NORMALIZE_MAPPED:
2292 rwmap->rwm_flags &= ~RWM_F_NORMALIZE_MAPPED_ATTRS;
2295 case RWM_CF_DROP_UNREQUESTED:
2296 rwmap->rwm_flags &= ~RWM_F_DROP_UNREQUESTED_ATTRS;
2305 if ( strncasecmp( c->argv[ 0 ], "olcRwm", STRLENOF( "olcRwm" ) ) == 0 ) {
2309 switch ( c->type ) {
2310 case RWM_CF_REWRITE:
2311 if ( c->valx >= 0 ) {
2312 struct rewrite_info *rwm_rw = rwmap->rwm_rw;
2315 for ( last = 0; rwmap->rwm_bva_rewrite && !BER_BVISNULL( &rwmap->rwm_bva_rewrite[ last ] ); last++ )
2318 if ( c->valx > last ) {
2322 rwmap->rwm_rw = NULL;
2323 rc = rwm_info_init( &rwmap->rwm_rw );
2325 for ( i = 0; i < c->valx; i++ ) {
2326 ConfigArgs ca = { 0 };
2328 ca.line = rwmap->rwm_bva_rewrite[ i ].bv_val;
2330 config_fp_parse_line( &ca );
2332 argv0 = ca.argv[ 0 ];
2333 ca.argv[ 0 ] += STRLENOF( "rwm-" );
2335 if ( strcasecmp( ca.argv[ 0 ], "suffixmassage" ) == 0 ) {
2336 rc = rwm_suffixmassage_config( &db, c->fname, c->lineno,
2340 rc = rwm_rw_config( &db, c->fname, c->lineno,
2344 ca.argv[ 0 ] = argv0;
2346 ch_free( ca.tline );
2352 argv0 = c->argv[ idx0 ];
2353 if ( strncasecmp( argv0, "rwm-", STRLENOF( "rwm-" ) ) != 0 ) {
2356 c->argv[ idx0 ] += STRLENOF( "rwm-" );
2357 if ( strcasecmp( c->argv[ idx0 ], "suffixmassage" ) == 0 ) {
2358 rc = rwm_suffixmassage_config( &db, c->fname, c->lineno,
2359 c->argc - idx0, &c->argv[ idx0 ] );
2362 rc = rwm_rw_config( &db, c->fname, c->lineno,
2363 c->argc - idx0, &c->argv[ idx0 ] );
2365 c->argv[ idx0 ] = argv0;
2367 rewrite_info_delete( &rwmap->rwm_rw );
2368 assert( rwmap->rwm_rw == NULL );
2370 rwmap->rwm_rw = rwm_rw;
2374 for ( i = c->valx; rwmap->rwm_bva_rewrite && !BER_BVISNULL( &rwmap->rwm_bva_rewrite[ i ] ); i++ )
2376 ConfigArgs ca = { 0 };
2378 ca.line = rwmap->rwm_bva_rewrite[ i ].bv_val;
2380 config_fp_parse_line( &ca );
2382 argv0 = ca.argv[ 0 ];
2383 ca.argv[ 0 ] += STRLENOF( "rwm-" );
2385 if ( strcasecmp( ca.argv[ 0 ], "suffixmassage" ) == 0 ) {
2386 rc = rwm_suffixmassage_config( &db, c->fname, c->lineno,
2390 rc = rwm_rw_config( &db, c->fname, c->lineno,
2394 ca.argv[ 0 ] = argv0;
2396 ch_free( ca.tline );
2402 rwmap->rwm_bva_rewrite = ch_realloc( rwmap->rwm_bva_rewrite,
2403 ( last + 2 )*sizeof( struct berval ) );
2404 BER_BVZERO( &rwmap->rwm_bva_rewrite[last+1] );
2406 for ( i = last - 1; i >= c->valx; i-- )
2408 rwmap->rwm_bva_rewrite[ i + 1 ] = rwmap->rwm_bva_rewrite[ i ];
2411 rwm_bva_rewrite_add( rwmap, c->valx, &c->argv[ idx0 ] );
2413 rewrite_info_delete( &rwm_rw );
2414 assert( rwm_rw == NULL );
2419 argv0 = c->argv[ idx0 ];
2420 if ( strncasecmp( argv0, "rwm-", STRLENOF( "rwm-" ) ) != 0 ) {
2423 c->argv[ idx0 ] += STRLENOF( "rwm-" );
2424 if ( strcasecmp( c->argv[ idx0 ], "suffixmassage" ) == 0 ) {
2425 rc = rwm_suffixmassage_config( &db, c->fname, c->lineno,
2426 c->argc - idx0, &c->argv[ idx0 ] );
2429 rc = rwm_rw_config( &db, c->fname, c->lineno,
2430 c->argc - idx0, &c->argv[ idx0 ] );
2432 c->argv[ idx0 ] = argv0;
2437 rwm_bva_rewrite_add( rwmap, -1, &c->argv[ idx0 ] );
2441 case RWM_CF_T_F_SUPPORT:
2442 rc = verb_to_mask( c->argv[ 1 ], t_f_mode );
2443 if ( BER_BVISNULL( &t_f_mode[ rc ].word ) ) {
2447 rwmap->rwm_flags &= ~RWM_F_SUPPORT_T_F_MASK2;
2448 rwmap->rwm_flags |= t_f_mode[ rc ].mask;
2453 if ( c->valx >= 0 ) {
2454 struct ldapmap rwm_oc = rwmap->rwm_oc;
2455 struct ldapmap rwm_at = rwmap->rwm_at;
2459 if ( rwmap->rwm_bva_map ) {
2460 for ( ; !BER_BVISNULL( &rwmap->rwm_bva_map[ cnt ] ); cnt++ )
2464 if ( c->valx >= cnt ) {
2468 memset( &rwmap->rwm_oc, 0, sizeof( rwmap->rwm_oc ) );
2469 memset( &rwmap->rwm_at, 0, sizeof( rwmap->rwm_at ) );
2471 /* re-parse all mappings, including the one
2472 * that needs to be added */
2474 for ( cnt = 0; cnt < c->valx; cnt++ ) {
2475 ConfigArgs ca = { 0 };
2477 ca.line = rwmap->rwm_bva_map[ cnt ].bv_val;
2479 config_fp_parse_line( &ca );
2481 argv[1] = ca.argv[0];
2482 argv[2] = ca.argv[1];
2483 argv[3] = ca.argv[2];
2484 argv[4] = ca.argv[3];
2486 rc = rwm_m_config( &db, c->fname, c->lineno, ca.argc + 1, argv );
2488 ch_free( ca.tline );
2491 /* in case of failure, restore
2492 * the existing mapping */
2500 rc = rwm_m_config( &db, c->fname, c->lineno, c->argc, c->argv );
2506 if ( rwmap->rwm_bva_map ) {
2507 for ( ; !BER_BVISNULL( &rwmap->rwm_bva_map[ cnt ] ); cnt++ ) {
2508 ConfigArgs ca = { 0 };
2510 ca.line = rwmap->rwm_bva_map[ cnt ].bv_val;
2512 config_fp_parse_line( &ca );
2514 argv[1] = ca.argv[0];
2515 argv[2] = ca.argv[1];
2516 argv[3] = ca.argv[2];
2517 argv[4] = ca.argv[3];
2519 rc = rwm_m_config( &db, c->fname, c->lineno, ca.argc + 1, argv );
2521 ch_free( ca.tline );
2524 /* in case of failure, restore
2525 * the existing mapping */
2532 /* in case of success, destroy the old mapping
2533 * and add the new one */
2536 struct berval bv, *bvp = &bv;
2538 if ( rwm_bva_add( &bvp, 0, &c->argv[ idx0 ] ) ) {
2543 tmp = ber_memrealloc( rwmap->rwm_bva_map,
2544 sizeof( struct berval )*( cnt + 2 ) );
2545 if ( tmp == NULL ) {
2546 ber_memfree( bv.bv_val );
2550 rwmap->rwm_bva_map = tmp;
2551 BER_BVZERO( &rwmap->rwm_bva_map[ cnt + 1 ] );
2553 avl_free( rwm_oc.remap, rwm_mapping_dst_free );
2554 avl_free( rwm_oc.map, rwm_mapping_free );
2555 avl_free( rwm_at.remap, rwm_mapping_dst_free );
2556 avl_free( rwm_at.map, rwm_mapping_free );
2558 for ( ; cnt-- > c->valx; ) {
2559 rwmap->rwm_bva_map[ cnt + 1 ] = rwmap->rwm_bva_map[ cnt ];
2561 rwmap->rwm_bva_map[ c->valx ] = bv;
2565 avl_free( rwmap->rwm_oc.remap, rwm_mapping_dst_free );
2566 avl_free( rwmap->rwm_oc.map, rwm_mapping_free );
2567 avl_free( rwmap->rwm_at.remap, rwm_mapping_dst_free );
2568 avl_free( rwmap->rwm_at.map, rwm_mapping_free );
2569 rwmap->rwm_oc = rwm_oc;
2570 rwmap->rwm_at = rwm_at;
2576 argv0 = c->argv[ 0 ];
2577 c->argv[ 0 ] += STRLENOF( "rwm-" );
2578 rc = rwm_m_config( &db, c->fname, c->lineno, c->argc, c->argv );
2579 c->argv[ 0 ] = argv0;
2587 line = ldap_charray2str( &c->argv[ 1 ], " " );
2588 if ( line != NULL ) {
2589 ber_str2bv( line, 0, 0, &bv );
2590 ber_bvarray_add( &rwmap->rwm_bva_map, &bv );
2595 case RWM_CF_NORMALIZE_MAPPED:
2596 if ( c->value_int ) {
2597 rwmap->rwm_flags |= RWM_F_NORMALIZE_MAPPED_ATTRS;
2599 rwmap->rwm_flags &= ~RWM_F_NORMALIZE_MAPPED_ATTRS;
2603 case RWM_CF_DROP_UNREQUESTED:
2604 if ( c->value_int ) {
2605 rwmap->rwm_flags |= RWM_F_DROP_UNREQUESTED_ATTRS;
2607 rwmap->rwm_flags &= ~RWM_F_DROP_UNREQUESTED_ATTRS;
2624 slap_overinst *on = (slap_overinst *) be->bd_info;
2625 struct ldaprwmap *rwmap;
2628 rwmap = (struct ldaprwmap *)ch_calloc( 1, sizeof( struct ldaprwmap ) );
2631 rwmap->rwm_flags = RWM_F_DROP_UNREQUESTED_ATTRS;
2633 rc = rwm_info_init( &rwmap->rwm_rw );
2635 on->on_bi.bi_private = (void *)rwmap;
2638 (void)rwm_db_destroy( be, NULL );
2649 slap_overinst *on = (slap_overinst *) be->bd_info;
2652 if ( on->on_bi.bi_private ) {
2653 struct ldaprwmap *rwmap =
2654 (struct ldaprwmap *)on->on_bi.bi_private;
2656 if ( rwmap->rwm_rw ) {
2657 rewrite_info_delete( &rwmap->rwm_rw );
2658 if ( rwmap->rwm_bva_rewrite )
2659 ber_bvarray_free( rwmap->rwm_bva_rewrite );
2662 avl_free( rwmap->rwm_oc.remap, rwm_mapping_dst_free );
2663 avl_free( rwmap->rwm_oc.map, rwm_mapping_free );
2664 avl_free( rwmap->rwm_at.remap, rwm_mapping_dst_free );
2665 avl_free( rwmap->rwm_at.map, rwm_mapping_free );
2666 ber_bvarray_free( rwmap->rwm_bva_map );
2674 static slap_overinst rwm = { { NULL } };
2676 #if SLAPD_OVER_RWM == SLAPD_MOD_DYNAMIC
2678 #endif /* SLAPD_OVER_RWM == SLAPD_MOD_DYNAMIC */
2680 rwm_initialize( void )
2684 /* Make sure we don't exceed the bits reserved for userland */
2685 config_check_userland( RWM_CF_LAST );
2687 memset( &rwm, 0, sizeof( slap_overinst ) );
2689 rwm.on_bi.bi_type = "rwm";
2690 rwm.on_bi.bi_flags =
2691 SLAPO_BFLAG_SINGLE |
2694 rwm.on_bi.bi_db_init = rwm_db_init;
2695 rwm.on_bi.bi_db_config = rwm_db_config;
2696 rwm.on_bi.bi_db_destroy = rwm_db_destroy;
2698 rwm.on_bi.bi_op_bind = rwm_op_bind;
2699 rwm.on_bi.bi_op_search = rwm_op_search;
2700 rwm.on_bi.bi_op_compare = rwm_op_compare;
2701 rwm.on_bi.bi_op_modify = rwm_op_modify;
2702 rwm.on_bi.bi_op_modrdn = rwm_op_modrdn;
2703 rwm.on_bi.bi_op_add = rwm_op_add;
2704 rwm.on_bi.bi_op_delete = rwm_op_delete;
2705 rwm.on_bi.bi_op_unbind = rwm_op_unbind;
2706 rwm.on_bi.bi_extended = rwm_extended;
2708 rwm.on_bi.bi_entry_release_rw = rwm_entry_release_rw;
2709 rwm.on_bi.bi_entry_get_rw = rwm_entry_get_rw;
2712 rwm.on_bi.bi_operational = rwm_operational;
2713 rwm.on_bi.bi_chk_referrals = 0 /* rwm_chk_referrals */ ;
2715 rwm.on_bi.bi_connection_init = rwm_conn_init;
2716 rwm.on_bi.bi_connection_destroy = rwm_conn_destroy;
2718 rwm.on_response = rwm_response;
2720 rwm.on_bi.bi_cf_ocs = rwmocs;
2722 rc = config_register_schema( rwmcfg, rwmocs );
2727 return overlay_register( &rwm );
2730 #if SLAPD_OVER_RWM == SLAPD_MOD_DYNAMIC
2732 init_module( int argc, char *argv[] )
2734 return rwm_initialize();
2736 #endif /* SLAPD_OVER_RWM == SLAPD_MOD_DYNAMIC */
2738 #endif /* SLAPD_OVER_RWM */
projects / openldap / blob