1 /* sssvlv.c - server side sort / virtual list view */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2009-2013 The OpenLDAP Foundation.
6 * Portions copyright 2009 Symas Corporation.
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted only as authorized by the OpenLDAP
13 * A copy of this license is available in the file LICENSE in the
14 * top-level directory of the distribution or, alternatively, at
15 * <http://www.OpenLDAP.org/license.html>.
18 * This work was initially developed by Howard Chu for inclusion in
19 * OpenLDAP Software. Support for multiple sorts per connection added
25 #ifdef SLAPD_OVER_SSSVLV
29 #include <ac/string.h>
38 #include "../../../libraries/liblber/lber-int.h" /* ber_rewind */
40 /* RFC2891: Server Side Sorting
41 * RFC2696: Paged Results
43 #ifndef LDAP_MATCHRULE_IDENTIFIER
44 #define LDAP_MATCHRULE_IDENTIFIER 0x80L
45 #define LDAP_REVERSEORDER_IDENTIFIER 0x81L
46 #define LDAP_ATTRTYPES_IDENTIFIER 0x80L
49 /* draft-ietf-ldapext-ldapv3-vlv-09.txt: Virtual List Views
51 #ifndef LDAP_VLVBYINDEX_IDENTIFIER
52 #define LDAP_VLVBYINDEX_IDENTIFIER 0xa0L
53 #define LDAP_VLVBYVALUE_IDENTIFIER 0x81L
54 #define LDAP_VLVCONTEXT_IDENTIFIER 0x04L
56 #define LDAP_VLV_SSS_MISSING 0x4C
57 #define LDAP_VLV_RANGE_ERROR 0x4D
60 #define SAFESTR(macro_str, macro_def) ((macro_str) ? (macro_str) : (macro_def))
62 #define SSSVLV_DEFAULT_MAX_KEYS 5
63 #define SSSVLV_DEFAULT_MAX_REQUEST_PER_CONN 5
65 #define NO_PS_COOKIE (PagedResultsCookie) -1
66 #define NO_VC_CONTEXT (unsigned long) -1
68 typedef struct vlv_ctrl {
73 struct berval vc_value;
74 unsigned long vc_context;
77 typedef struct sort_key
79 AttributeDescription *sk_ad;
80 MatchingRule *sk_ordering;
81 int sk_direction; /* 1=normal, -1=reverse */
84 typedef struct sort_ctrl {
90 typedef struct sort_node
95 struct berval *sn_vals;
98 typedef struct sssvlv_info
100 int svi_max; /* max concurrent sorts */
101 int svi_num; /* current # sorts */
102 int svi_max_keys; /* max sort keys per request */
103 int svi_max_percon; /* max concurrent sorts per con */
106 typedef struct sort_op
110 sssvlv_info *so_info;
118 unsigned long so_vcontext;
121 /* There is only one conn table for all overlay instances */
122 /* Each conn can handle one session by context */
123 static sort_op ***sort_conns;
124 static ldap_pvt_thread_mutex_t sort_conns_mutex;
126 static const char *debug_header = "sssvlv";
131 /* RFC 2981 Section 2.2
132 * If a sort key is a multi-valued attribute, and an entry happens to
133 * have multiple values for that attribute and no other controls are
134 * present that affect the sorting order, then the server SHOULD use the
135 * least value (according to the ORDERING rule for that attribute).
137 static struct berval* select_value(
141 struct berval* ber1, *ber2;
142 MatchingRule *mr = key->sk_ordering;
146 ber1 = &(attr->a_nvals[0]);
148 for ( i = 1; i < attr->a_numvals; i++,ber2++ ) {
149 mr->smr_match( &cmp, 0, mr->smr_syntax, mr, ber1, ber2 );
155 Debug(LDAP_DEBUG_TRACE, "%s: value selected for compare: %s\n",
157 SAFESTR(ber1->bv_val, "<Empty>"),
163 static int node_cmp( const void* val1, const void* val2 )
165 sort_node *sn1 = (sort_node *)val1;
166 sort_node *sn2 = (sort_node *)val2;
170 assert( sort_conns[sn1->sn_conn]
171 && sort_conns[sn1->sn_conn][sn1->sn_session]
172 && sort_conns[sn1->sn_conn][sn1->sn_session]->so_ctrl );
173 sc = sort_conns[sn1->sn_conn][sn1->sn_session]->so_ctrl;
175 for ( i=0; cmp == 0 && i<sc->sc_nkeys; i++ ) {
176 if ( BER_BVISNULL( &sn1->sn_vals[i] )) {
177 if ( BER_BVISNULL( &sn2->sn_vals[i] ))
180 cmp = sc->sc_keys[i].sk_direction;
181 } else if ( BER_BVISNULL( &sn2->sn_vals[i] )) {
182 cmp = sc->sc_keys[i].sk_direction * -1;
184 mr = sc->sc_keys[i].sk_ordering;
185 mr->smr_match( &cmp, 0, mr->smr_syntax, mr,
186 &sn1->sn_vals[i], &sn2->sn_vals[i] );
188 cmp *= sc->sc_keys[i].sk_direction;
194 static int node_insert( const void *val1, const void *val2 )
196 /* Never return equal so that new entries are always inserted */
197 return node_cmp( val1, val2 ) < 0 ? -1 : 1;
200 static int pack_vlv_response_control(
204 LDAPControl **ctrlsp )
207 BerElementBuffer berbuf;
208 BerElement *ber = (BerElement *)&berbuf;
209 struct berval cookie, bv;
212 ber_init2( ber, NULL, LBER_USE_DER );
213 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
215 rc = ber_printf( ber, "{iie", so->so_vlv_target, so->so_nentries,
218 if ( rc != -1 && so->so_vcontext ) {
219 cookie.bv_val = (char *)&so->so_vcontext;
220 cookie.bv_len = sizeof(so->so_vcontext);
221 rc = ber_printf( ber, "tO", LDAP_VLVCONTEXT_IDENTIFIER, &cookie );
225 rc = ber_printf( ber, "}" );
229 rc = ber_flatten2( ber, &bv, 0 );
233 ctrl = (LDAPControl *)op->o_tmpalloc( sizeof(LDAPControl)+
234 bv.bv_len, op->o_tmpmemctx );
235 ctrl->ldctl_oid = LDAP_CONTROL_VLVRESPONSE;
236 ctrl->ldctl_iscritical = 0;
237 ctrl->ldctl_value.bv_val = (char *)(ctrl+1);
238 ctrl->ldctl_value.bv_len = bv.bv_len;
239 AC_MEMCPY( ctrl->ldctl_value.bv_val, bv.bv_val, bv.bv_len );
243 rs->sr_err = LDAP_OTHER;
251 static int pack_pagedresult_response_control(
255 LDAPControl **ctrlsp )
258 BerElementBuffer berbuf;
259 BerElement *ber = (BerElement *)&berbuf;
260 PagedResultsCookie resp_cookie;
261 struct berval cookie, bv;
264 ber_init2( ber, NULL, LBER_USE_DER );
265 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
267 if ( so->so_nentries > 0 ) {
268 resp_cookie = ( PagedResultsCookie )so->so_tree;
269 cookie.bv_len = sizeof( PagedResultsCookie );
270 cookie.bv_val = (char *)&resp_cookie;
272 resp_cookie = ( PagedResultsCookie )0;
273 BER_BVZERO( &cookie );
276 op->o_conn->c_pagedresults_state.ps_cookie = resp_cookie;
277 op->o_conn->c_pagedresults_state.ps_count
278 = ((PagedResultsState *)op->o_pagedresults_state)->ps_count
281 rc = ber_printf( ber, "{iO}", so->so_nentries, &cookie );
283 rc = ber_flatten2( ber, &bv, 0 );
287 ctrl = (LDAPControl *)op->o_tmpalloc( sizeof(LDAPControl)+
288 bv.bv_len, op->o_tmpmemctx );
289 ctrl->ldctl_oid = LDAP_CONTROL_PAGEDRESULTS;
290 ctrl->ldctl_iscritical = 0;
291 ctrl->ldctl_value.bv_val = (char *)(ctrl+1);
292 ctrl->ldctl_value.bv_len = bv.bv_len;
293 AC_MEMCPY( ctrl->ldctl_value.bv_val, bv.bv_val, bv.bv_len );
297 rs->sr_err = LDAP_OTHER;
305 static int pack_sss_response_control(
308 LDAPControl **ctrlsp )
311 BerElementBuffer berbuf;
312 BerElement *ber = (BerElement *)&berbuf;
316 ber_init2( ber, NULL, LBER_USE_DER );
317 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
319 /* Pack error code */
320 rc = ber_printf(ber, "{e}", rs->sr_err);
323 rc = ber_flatten2( ber, &bv, 0 );
326 ctrl = (LDAPControl *)op->o_tmpalloc( sizeof(LDAPControl)+
327 bv.bv_len, op->o_tmpmemctx );
328 ctrl->ldctl_oid = LDAP_CONTROL_SORTRESPONSE;
329 ctrl->ldctl_iscritical = 0;
330 ctrl->ldctl_value.bv_val = (char *)(ctrl+1);
331 ctrl->ldctl_value.bv_len = bv.bv_len;
332 AC_MEMCPY( ctrl->ldctl_value.bv_val, bv.bv_val, bv.bv_len );
336 rs->sr_err = LDAP_OTHER;
344 /* Return the session id or -1 if unknown */
345 static int find_session_by_so(
354 for (sess_id = 0; sess_id < svi_max_percon; sess_id++) {
355 if ( sort_conns[conn_id] && sort_conns[conn_id][sess_id] == so )
361 /* Return the session id or -1 if unknown */
362 static int find_session_by_context(
365 unsigned long vc_context,
366 PagedResultsCookie ps_cookie )
369 for(sess_id = 0; sess_id < svi_max_percon; sess_id++) {
370 if( sort_conns[conn_id] && sort_conns[conn_id][sess_id] &&
371 ( sort_conns[conn_id][sess_id]->so_vcontext == vc_context ||
372 (PagedResultsCookie) sort_conns[conn_id][sess_id]->so_tree == ps_cookie ) )
378 static int find_next_session(
383 assert(sort_conns[conn_id] != NULL);
384 for(sess_id = 0; sess_id < svi_max_percon; sess_id++) {
385 if(!sort_conns[conn_id][sess_id]) {
389 if (sess_id >= svi_max_percon) {
396 static void free_sort_op( Connection *conn, sort_op *so )
400 tavl_free( so->so_tree, ch_free );
404 ldap_pvt_thread_mutex_lock( &sort_conns_mutex );
405 sess_id = find_session_by_so( so->so_info->svi_max_percon, conn->c_conn_idx, so );
406 sort_conns[conn->c_conn_idx][sess_id] = NULL;
407 so->so_info->svi_num--;
408 ldap_pvt_thread_mutex_unlock( &sort_conns_mutex );
413 static void free_sort_ops( Connection *conn, sort_op **sos, int svi_max_percon )
418 for( sess_id = 0; sess_id < svi_max_percon ; sess_id++ ) {
419 so = sort_conns[conn->c_conn_idx][sess_id];
421 free_sort_op( conn, so );
422 sort_conns[conn->c_conn_idx][sess_id] = NULL;
427 static void send_list(
432 Avlnode *cur_node, *tmp_node;
433 vlv_ctrl *vc = op->o_controls[vlv_cid];
437 LDAPControl *ctrls[2];
439 rs->sr_attrs = op->ors_attrs;
441 /* FIXME: it may be better to just flatten the tree into
442 * an array before doing all of this...
445 /* Are we just counting an offset? */
446 if ( BER_BVISNULL( &vc->vc_value )) {
447 if ( vc->vc_offset == vc->vc_count ) {
448 /* wants the last entry in the list */
449 cur_node = tavl_end(so->so_tree, TAVL_DIR_RIGHT);
450 so->so_vlv_target = so->so_nentries;
451 } else if ( vc->vc_offset == 1 ) {
452 /* wants the first entry in the list */
453 cur_node = tavl_end(so->so_tree, TAVL_DIR_LEFT);
454 so->so_vlv_target = 1;
457 /* Just iterate to the right spot */
458 if ( vc->vc_count && vc->vc_count != so->so_nentries ) {
459 if ( vc->vc_offset > vc->vc_count )
461 target = so->so_nentries * vc->vc_offset / vc->vc_count;
463 if ( vc->vc_offset > so->so_nentries ) {
465 so->so_vlv_rc = LDAP_VLV_RANGE_ERROR;
466 pack_vlv_response_control( op, rs, so, ctrls );
468 slap_add_ctrls( op, rs, ctrls );
469 rs->sr_err = LDAP_VLV_ERROR;
472 target = vc->vc_offset;
474 so->so_vlv_target = target;
475 /* Start at left and go right, or start at right and go left? */
476 if ( target < so->so_nentries / 2 ) {
477 cur_node = tavl_end(so->so_tree, TAVL_DIR_LEFT);
478 dir = TAVL_DIR_RIGHT;
480 cur_node = tavl_end(so->so_tree, TAVL_DIR_RIGHT);
482 target = so->so_nentries - target + 1;
484 for ( i=1; i<target; i++ )
485 cur_node = tavl_next( cur_node, dir );
488 /* we're looking for a specific value */
489 sort_ctrl *sc = so->so_ctrl;
490 MatchingRule *mr = sc->sc_keys[0].sk_ordering;
494 if ( mr->smr_normalize ) {
495 rc = mr->smr_normalize( SLAP_MR_VALUE_OF_SYNTAX,
496 mr->smr_syntax, mr, &vc->vc_value, &bv, op->o_tmpmemctx );
498 so->so_vlv_rc = LDAP_INAPPROPRIATE_MATCHING;
499 pack_vlv_response_control( op, rs, so, ctrls );
501 slap_add_ctrls( op, rs, ctrls );
502 rs->sr_err = LDAP_VLV_ERROR;
509 sn = op->o_tmpalloc( sizeof(sort_node) +
510 sc->sc_nkeys * sizeof(struct berval), op->o_tmpmemctx );
511 sn->sn_vals = (struct berval *)(sn+1);
512 sn->sn_conn = op->o_conn->c_conn_idx;
513 sn->sn_session = find_session_by_so( so->so_info->svi_max_percon, op->o_conn->c_conn_idx, so );
515 for (i=1; i<sc->sc_nkeys; i++) {
516 BER_BVZERO( &sn->sn_vals[i] );
518 cur_node = tavl_find3( so->so_tree, sn, node_cmp, &j );
519 /* didn't find >= match */
522 cur_node = tavl_next( cur_node, TAVL_DIR_RIGHT );
524 op->o_tmpfree( sn, op->o_tmpmemctx );
527 so->so_vlv_target = so->so_nentries + 1;
529 sort_node *sn = so->so_tree->avl_data;
530 /* start from the left or the right side? */
531 mr->smr_match( &i, 0, mr->smr_syntax, mr, &bv, &sn->sn_vals[0] );
533 tmp_node = tavl_end(so->so_tree, TAVL_DIR_RIGHT);
536 tmp_node = tavl_end(so->so_tree, TAVL_DIR_LEFT);
537 dir = TAVL_DIR_RIGHT;
539 for (i=0; tmp_node != cur_node;
540 tmp_node = tavl_next( tmp_node, dir ), i++);
541 so->so_vlv_target = (dir == TAVL_DIR_RIGHT) ? i+1 : so->so_nentries - i;
543 if ( bv.bv_val != vc->vc_value.bv_val )
544 op->o_tmpfree( bv.bv_val, op->o_tmpmemctx );
548 cur_node = tavl_end(so->so_tree, TAVL_DIR_RIGHT);
552 for ( ; i<vc->vc_before; i++ ) {
553 tmp_node = tavl_next( cur_node, TAVL_DIR_LEFT );
554 if ( !tmp_node ) break;
557 j = i + vc->vc_after + 1;
559 for ( i=0; i<j; i++ ) {
560 sort_node *sn = cur_node->avl_data;
562 if ( slapd_shutdown ) break;
564 op->o_bd = select_backend( &sn->sn_dn, 0 );
566 rc = be_entry_get_rw( op, &sn->sn_dn, NULL, NULL, 0, &e );
568 if ( e && rc == LDAP_SUCCESS ) {
570 rs->sr_flags = REP_ENTRY_MUSTRELEASE;
571 rs->sr_err = send_search_entry( op, rs );
572 if ( rs->sr_err == LDAP_UNAVAILABLE )
575 cur_node = tavl_next( cur_node, TAVL_DIR_RIGHT );
576 if ( !cur_node ) break;
578 so->so_vlv_rc = LDAP_SUCCESS;
583 static void send_page( Operation *op, SlapReply *rs, sort_op *so )
585 Avlnode *cur_node = so->so_tree;
586 Avlnode *next_node = NULL;
587 BackendDB *be = op->o_bd;
591 rs->sr_attrs = op->ors_attrs;
593 while ( cur_node && rs->sr_nentries < so->so_page_size ) {
594 sort_node *sn = cur_node->avl_data;
596 if ( slapd_shutdown ) break;
598 next_node = tavl_next( cur_node, TAVL_DIR_RIGHT );
600 op->o_bd = select_backend( &sn->sn_dn, 0 );
602 rc = be_entry_get_rw( op, &sn->sn_dn, NULL, NULL, 0, &e );
604 ch_free( cur_node->avl_data );
605 ber_memfree( cur_node );
607 cur_node = next_node;
610 if ( e && rc == LDAP_SUCCESS ) {
612 rs->sr_flags = REP_ENTRY_MUSTRELEASE;
613 rs->sr_err = send_search_entry( op, rs );
614 if ( rs->sr_err == LDAP_UNAVAILABLE )
619 /* Set the first entry to send for the next page */
620 so->so_tree = next_node;
621 next_node->avl_left = NULL;
626 static void send_entry(
631 Debug(LDAP_DEBUG_TRACE,
632 "%s: response control: status=%d, text=%s\n",
633 debug_header, rs->sr_err, SAFESTR(rs->sr_text, "<None>"));
638 /* RFC 2891: If critical then send the entries iff they were
639 * succesfully sorted. If non-critical send all entries
640 * whether they were sorted or not.
642 if ( (op->o_ctrlflag[sss_cid] != SLAP_CONTROL_CRITICAL) ||
643 (rs->sr_err == LDAP_SUCCESS) )
645 if ( so->so_vlv > SLAP_CONTROL_IGNORED ) {
646 send_list( op, rs, so );
648 /* Get the first node to send */
649 Avlnode *start_node = tavl_end(so->so_tree, TAVL_DIR_LEFT);
650 so->so_tree = start_node;
652 if ( so->so_paged <= SLAP_CONTROL_IGNORED ) {
653 /* Not paged result search. Send all entries.
654 * Set the page size to the number of entries
655 * so that send_page() will send all entries.
657 so->so_page_size = so->so_nentries;
660 send_page( op, rs, so );
665 static void send_result(
670 LDAPControl *ctrls[3];
673 rc = pack_sss_response_control( op, rs, ctrls );
674 if ( rc == LDAP_SUCCESS ) {
677 if ( so->so_paged > SLAP_CONTROL_IGNORED ) {
678 rc = pack_pagedresult_response_control( op, rs, so, ctrls+1 );
679 } else if ( so->so_vlv > SLAP_CONTROL_IGNORED ) {
680 rc = pack_vlv_response_control( op, rs, so, ctrls+1 );
682 if ( rc == LDAP_SUCCESS )
687 if ( ctrls[0] != NULL )
688 slap_add_ctrls( op, rs, ctrls );
689 send_ldap_result( op, rs );
691 if ( so->so_tree == NULL ) {
692 /* Search finished, so clean up */
693 free_sort_op( op->o_conn, so );
697 static int sssvlv_op_response(
701 sort_ctrl *sc = op->o_controls[sss_cid];
702 sort_op *so = op->o_callback->sc_private;
704 if ( rs->sr_type == REP_SEARCH ) {
711 len = sizeof(sort_node) + sc->sc_nkeys * sizeof(struct berval) +
712 rs->sr_entry->e_nname.bv_len + 1;
713 sn = op->o_tmpalloc( len, op->o_tmpmemctx );
714 sn->sn_vals = (struct berval *)(sn+1);
716 /* Build tmp list of key values */
717 for ( i=0; i<sc->sc_nkeys; i++ ) {
718 Attribute *a = attr_find( rs->sr_entry->e_attrs,
719 sc->sc_keys[i].sk_ad );
721 if ( a->a_numvals > 1 ) {
722 bv = select_value( a, &sc->sc_keys[i] );
726 sn->sn_vals[i] = *bv;
727 len += bv->bv_len + 1;
729 BER_BVZERO( &sn->sn_vals[i] );
733 /* Now dup into regular memory */
734 sn2 = ch_malloc( len );
735 sn2->sn_vals = (struct berval *)(sn2+1);
736 AC_MEMCPY( sn2->sn_vals, sn->sn_vals,
737 sc->sc_nkeys * sizeof(struct berval));
739 ptr = (char *)(sn2->sn_vals + sc->sc_nkeys);
740 sn2->sn_dn.bv_val = ptr;
741 sn2->sn_dn.bv_len = rs->sr_entry->e_nname.bv_len;
742 AC_MEMCPY( ptr, rs->sr_entry->e_nname.bv_val,
743 rs->sr_entry->e_nname.bv_len );
744 ptr += rs->sr_entry->e_nname.bv_len;
746 for ( i=0; i<sc->sc_nkeys; i++ ) {
747 if ( !BER_BVISNULL( &sn2->sn_vals[i] )) {
748 AC_MEMCPY(ptr, sn2->sn_vals[i].bv_val, sn2->sn_vals[i].bv_len);
749 sn2->sn_vals[i].bv_val = ptr;
750 ptr += sn2->sn_vals[i].bv_len;
754 op->o_tmpfree( sn, op->o_tmpmemctx );
756 sn->sn_conn = op->o_conn->c_conn_idx;
757 sn->sn_session = find_session_by_so( so->so_info->svi_max_percon, op->o_conn->c_conn_idx, so );
759 /* Insert into the AVL tree */
760 tavl_insert(&(so->so_tree), sn, node_insert, avl_dup_error);
764 /* Collected the keys so that they can be sorted. Thus, stop
765 * the entry from propagating.
767 rs->sr_err = LDAP_SUCCESS;
769 else if ( rs->sr_type == REP_RESULT ) {
770 /* Remove serversort response callback.
771 * We don't want the entries that we are about to send to be
772 * processed by serversort response again.
774 if ( op->o_callback->sc_response == sssvlv_op_response ) {
775 op->o_callback = op->o_callback->sc_next;
778 send_entry( op, rs, so );
779 send_result( op, rs, so );
785 static int sssvlv_op_search(
789 slap_overinst *on = (slap_overinst *)op->o_bd->bd_info;
790 sssvlv_info *si = on->on_bi.bi_private;
791 int rc = SLAP_CB_CONTINUE;
793 sort_op *so = NULL, so2;
795 PagedResultsState *ps;
799 if ( op->o_ctrlflag[sss_cid] <= SLAP_CONTROL_IGNORED ) {
800 if ( op->o_ctrlflag[vlv_cid] > SLAP_CONTROL_IGNORED ) {
801 LDAPControl *ctrls[2];
803 so2.so_vlv_target = 0;
805 so2.so_vlv_rc = LDAP_VLV_SSS_MISSING;
806 so2.so_vlv = op->o_ctrlflag[vlv_cid];
807 rc = pack_vlv_response_control( op, rs, &so2, ctrls );
808 if ( rc == LDAP_SUCCESS ) {
810 slap_add_ctrls( op, rs, ctrls );
812 rs->sr_err = LDAP_VLV_ERROR;
813 rs->sr_text = "Sort control is required with VLV";
816 /* Not server side sort so just continue */
817 return SLAP_CB_CONTINUE;
820 Debug(LDAP_DEBUG_TRACE,
821 "==> sssvlv_search: <%s> %s, control flag: %d\n",
822 op->o_req_dn.bv_val, op->ors_filterstr.bv_val,
823 op->o_ctrlflag[sss_cid]);
825 sc = op->o_controls[sss_cid];
826 if ( sc->sc_nkeys > si->svi_max_keys ) {
827 rs->sr_text = "Too many sort keys";
828 rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
832 ps = ( op->o_pagedresults > SLAP_CONTROL_IGNORED ) ?
833 (PagedResultsState*)(op->o_pagedresults_state) : NULL;
834 vc = op->o_ctrlflag[vlv_cid] > SLAP_CONTROL_IGNORED ?
835 op->o_controls[vlv_cid] : NULL;
838 rs->sr_text = "VLV incompatible with PagedResults";
839 rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
844 ldap_pvt_thread_mutex_lock( &sort_conns_mutex );
845 /* Is there already a sort running on this conn? */
846 sess_id = find_session_by_context( si->svi_max_percon, op->o_conn->c_conn_idx, vc ? vc->vc_context : NO_VC_CONTEXT, ps ? ps->ps_cookie : NO_PS_COOKIE );
847 if ( sess_id >= 0 ) {
848 so = sort_conns[op->o_conn->c_conn_idx][sess_id];
849 /* Is it a continuation of a VLV search? */
850 if ( !vc || so->so_vlv <= SLAP_CONTROL_IGNORED ||
851 vc->vc_context != so->so_vcontext ) {
852 /* Is it a continuation of a paged search? */
853 if ( !ps || so->so_paged <= SLAP_CONTROL_IGNORED ||
854 op->o_conn->c_pagedresults_state.ps_cookie != ps->ps_cookie ) {
856 } else if ( !ps->ps_size ) {
857 /* Abandoning current request */
860 rs->sr_err = LDAP_SUCCESS;
863 if (( vc && so->so_paged > SLAP_CONTROL_IGNORED ) ||
864 ( ps && so->so_vlv > SLAP_CONTROL_IGNORED )) {
865 /* changed from paged to vlv or vice versa, abandon */
868 rs->sr_err = LDAP_UNWILLING_TO_PERFORM;
870 /* Are there too many running overall? */
871 } else if ( si->svi_num >= si->svi_max ) {
873 } else if ( ( sess_id = find_next_session(si->svi_max_percon, op->o_conn->c_conn_idx ) ) < 0 ) {
876 /* OK, this connection now has a sort running */
878 sort_conns[op->o_conn->c_conn_idx][sess_id] = &so2;
879 sort_conns[op->o_conn->c_conn_idx][sess_id]->so_session = sess_id;
881 ldap_pvt_thread_mutex_unlock( &sort_conns_mutex );
883 /* If we're a global overlay, this check got bypassed */
884 if ( !op->ors_limit && limits_check( op, rs ))
886 /* are we continuing a VLV search? */
887 if ( so && vc && vc->vc_context ) {
889 send_list( op, rs, so );
890 send_result( op, rs, so );
892 /* are we continuing a paged search? */
893 } else if ( so && ps && ps->ps_cookie ) {
895 send_page( op, rs, so );
896 send_result( op, rs, so );
899 slap_callback *cb = op->o_tmpalloc( sizeof(slap_callback),
901 /* Install serversort response callback to handle a new search */
903 so = ch_calloc( 1, sizeof(sort_op));
905 so = op->o_tmpcalloc( 1, sizeof(sort_op), op->o_tmpmemctx );
907 sort_conns[op->o_conn->c_conn_idx][sess_id] = so;
909 cb->sc_cleanup = NULL;
910 cb->sc_response = sssvlv_op_response;
911 cb->sc_next = op->o_callback;
918 so->so_paged = op->o_pagedresults;
919 so->so_page_size = ps->ps_size;
920 op->o_pagedresults = SLAP_CONTROL_IGNORED;
923 so->so_page_size = 0;
925 so->so_vlv = op->o_ctrlflag[vlv_cid];
926 so->so_vlv_target = 0;
929 so->so_vlv = SLAP_CONTROL_NONE;
932 so->so_session = sess_id;
933 so->so_vlv = op->o_ctrlflag[vlv_cid];
934 so->so_vcontext = (unsigned long)so;
940 if ( so && !so->so_nentries ) {
941 free_sort_op( op->o_conn, so );
943 rs->sr_text = "Other sort requests already in progress";
944 rs->sr_err = LDAP_BUSY;
948 send_ldap_result( op, rs );
954 static int get_ordering_rule(
955 AttributeDescription *ad,
956 struct berval *matchrule,
958 MatchingRule **ordering )
962 if ( matchrule && matchrule->bv_val ) {
963 mr = mr_find( matchrule->bv_val );
965 rs->sr_err = LDAP_INAPPROPRIATE_MATCHING;
966 rs->sr_text = "serverSort control: No ordering rule";
967 Debug(LDAP_DEBUG_TRACE, "%s: no ordering rule function for %s\n",
968 debug_header, matchrule->bv_val, 0);
972 mr = ad->ad_type->sat_ordering;
974 rs->sr_err = LDAP_INAPPROPRIATE_MATCHING;
975 rs->sr_text = "serverSort control: No ordering rule";
976 Debug(LDAP_DEBUG_TRACE,
977 "%s: no ordering rule specified and no default ordering rule for attribute %s\n",
978 debug_header, ad->ad_cname.bv_val, 0);
986 static int count_key(BerElement *ber)
993 /* Server Side Sort Control is a SEQUENCE of SEQUENCE */
994 for ( tag = ber_first_element( ber, &len, &end );
995 tag == LBER_SEQUENCE;
996 tag = ber_next_element( ber, &len, end ))
998 tag = ber_skip_tag( ber, &len );
999 ber_skip_data( ber, len );
1007 static int build_key(
1013 struct berval matchrule = BER_BVNULL;
1014 ber_int_t reverse = 0;
1017 MatchingRule *ordering = NULL;
1018 AttributeDescription *ad = NULL;
1021 if (( tag = ber_scanf( ber, "{" )) == LBER_ERROR ) {
1022 rs->sr_text = "serverSort control: decoding error";
1023 rs->sr_err = LDAP_PROTOCOL_ERROR;
1027 if (( tag = ber_scanf( ber, "m", &attr )) == LBER_ERROR ) {
1028 rs->sr_text = "serverSort control: attribute decoding error";
1029 rs->sr_err = LDAP_PROTOCOL_ERROR;
1033 tag = ber_peek_tag( ber, &len );
1034 if ( tag == LDAP_MATCHRULE_IDENTIFIER ) {
1035 if (( tag = ber_scanf( ber, "m", &matchrule )) == LBER_ERROR ) {
1036 rs->sr_text = "serverSort control: matchrule decoding error";
1037 rs->sr_err = LDAP_PROTOCOL_ERROR;
1040 tag = ber_peek_tag( ber, &len );
1043 if ( tag == LDAP_REVERSEORDER_IDENTIFIER ) {
1044 if (( tag = ber_scanf( ber, "b", &reverse )) == LBER_ERROR ) {
1045 rs->sr_text = "serverSort control: reverse decoding error";
1046 rs->sr_err = LDAP_PROTOCOL_ERROR;
1051 if (( tag = ber_scanf( ber, "}" )) == LBER_ERROR ) {
1052 rs->sr_text = "serverSort control: decoding error";
1053 rs->sr_err = LDAP_PROTOCOL_ERROR;
1057 if ( slap_bv2ad( &attr, &ad, &text ) != LDAP_SUCCESS ) {
1059 "serverSort control: Unrecognized attribute type in sort key";
1060 Debug(LDAP_DEBUG_TRACE,
1061 "%s: Unrecognized attribute type in sort key: %s\n",
1062 debug_header, SAFESTR(attr.bv_val, "<None>"), 0);
1063 rs->sr_err = LDAP_NO_SUCH_ATTRIBUTE;
1067 /* get_ordering_rule will set sr_err and sr_text */
1068 get_ordering_rule( ad, &matchrule, rs, &ordering );
1069 if ( rs->sr_err != LDAP_SUCCESS ) {
1074 key->sk_ordering = ordering;
1075 key->sk_direction = reverse ? -1 : 1;
1080 /* Conforms to RFC4510 re: Criticality, original RFC2891 spec is broken
1081 * Also see ITS#7253 for discussion
1083 static int sss_parseCtrl(
1088 BerElementBuffer berbuf;
1095 rs->sr_err = LDAP_PROTOCOL_ERROR;
1097 if ( op->o_ctrlflag[sss_cid] > SLAP_CONTROL_IGNORED ) {
1098 rs->sr_text = "sorted results control specified multiple times";
1099 } else if ( BER_BVISNULL( &ctrl->ldctl_value ) ) {
1100 rs->sr_text = "sorted results control value is absent";
1101 } else if ( BER_BVISEMPTY( &ctrl->ldctl_value ) ) {
1102 rs->sr_text = "sorted results control value is empty";
1104 rs->sr_err = LDAP_SUCCESS;
1106 if ( rs->sr_err != LDAP_SUCCESS )
1109 op->o_ctrlflag[sss_cid] = ctrl->ldctl_iscritical ?
1110 SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
1112 ber = (BerElement *)&berbuf;
1113 ber_init2( ber, &ctrl->ldctl_value, 0 );
1114 i = count_key( ber );
1116 sc = op->o_tmpalloc( sizeof(sort_ctrl) +
1117 (i-1) * sizeof(sort_key), op->o_tmpmemctx );
1119 op->o_controls[sss_cid] = sc;
1121 /* peel off initial sequence */
1122 ber_scanf( ber, "{" );
1126 if ( build_key( ber, rs, &sc->sc_keys[i] ) != LDAP_SUCCESS )
1129 tag = ber_peek_tag( ber, &len );
1130 } while ( tag != LBER_DEFAULT );
1135 static int vlv_parseCtrl(
1140 BerElementBuffer berbuf;
1146 rs->sr_err = LDAP_PROTOCOL_ERROR;
1149 if ( op->o_ctrlflag[vlv_cid] > SLAP_CONTROL_IGNORED ) {
1150 rs->sr_text = "vlv control specified multiple times";
1151 } else if ( BER_BVISNULL( &ctrl->ldctl_value ) ) {
1152 rs->sr_text = "vlv control value is absent";
1153 } else if ( BER_BVISEMPTY( &ctrl->ldctl_value ) ) {
1154 rs->sr_text = "vlv control value is empty";
1156 if ( rs->sr_text != NULL )
1159 op->o_ctrlflag[vlv_cid] = ctrl->ldctl_iscritical ?
1160 SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
1162 ber = (BerElement *)&berbuf;
1163 ber_init2( ber, &ctrl->ldctl_value, 0 );
1165 rs->sr_err = LDAP_PROTOCOL_ERROR;
1167 tag = ber_scanf( ber, "{ii", &vc2.vc_before, &vc2.vc_after );
1168 if ( tag == LBER_ERROR ) {
1172 tag = ber_peek_tag( ber, &len );
1173 if ( tag == LDAP_VLVBYINDEX_IDENTIFIER ) {
1174 tag = ber_scanf( ber, "{ii}", &vc2.vc_offset, &vc2.vc_count );
1175 if ( tag == LBER_ERROR )
1177 BER_BVZERO( &vc2.vc_value );
1178 } else if ( tag == LDAP_VLVBYVALUE_IDENTIFIER ) {
1179 tag = ber_scanf( ber, "m", &vc2.vc_value );
1180 if ( tag == LBER_ERROR || BER_BVISNULL( &vc2.vc_value ))
1185 tag = ber_peek_tag( ber, &len );
1186 if ( tag == LDAP_VLVCONTEXT_IDENTIFIER ) {
1188 tag = ber_scanf( ber, "m", &bv );
1189 if ( tag == LBER_ERROR || bv.bv_len != sizeof(vc2.vc_context))
1191 AC_MEMCPY( &vc2.vc_context, bv.bv_val, bv.bv_len );
1196 vc = op->o_tmpalloc( sizeof(vlv_ctrl), op->o_tmpmemctx );
1198 op->o_controls[vlv_cid] = vc;
1199 rs->sr_err = LDAP_SUCCESS;
1204 static int sssvlv_connection_destroy( BackendDB *be, Connection *conn )
1206 slap_overinst *on = (slap_overinst *)be->bd_info;
1207 sssvlv_info *si = on->on_bi.bi_private;
1209 if ( sort_conns[conn->c_conn_idx] ) {
1210 free_sort_ops( conn, sort_conns[conn->c_conn_idx], si->svi_max_percon );
1213 return LDAP_SUCCESS;
1216 static int sssvlv_db_open(
1220 slap_overinst *on = (slap_overinst *)be->bd_info;
1221 sssvlv_info *si = on->on_bi.bi_private;
1225 /* If not set, default to 1/2 of available threads */
1227 si->svi_max = connection_pool_max / 2;
1229 if ( dtblsize && !sort_conns ) {
1230 ldap_pvt_thread_mutex_init( &sort_conns_mutex );
1231 /* accommodate for c_conn_idx == -1 */
1232 sort_conns = ch_calloc( dtblsize + 1, sizeof(sort_op **) );
1233 for ( conn_index = 0 ; conn_index < dtblsize + 1 ; conn_index++ ) {
1234 sort_conns[conn_index] = ch_calloc( si->svi_max_percon, sizeof(sort_op *) );
1239 rc = overlay_register_control( be, LDAP_CONTROL_SORTREQUEST );
1240 if ( rc == LDAP_SUCCESS )
1241 rc = overlay_register_control( be, LDAP_CONTROL_VLVREQUEST );
1245 static ConfigTable sssvlv_cfg[] = {
1246 { "sssvlv-max", "num",
1247 2, 2, 0, ARG_INT|ARG_OFFSET,
1248 (void *)offsetof(sssvlv_info, svi_max),
1249 "( OLcfgOvAt:21.1 NAME 'olcSssVlvMax' "
1250 "DESC 'Maximum number of concurrent Sort requests' "
1251 "SYNTAX OMsInteger SINGLE-VALUE )", NULL, NULL },
1252 { "sssvlv-maxkeys", "num",
1253 2, 2, 0, ARG_INT|ARG_OFFSET,
1254 (void *)offsetof(sssvlv_info, svi_max_keys),
1255 "( OLcfgOvAt:21.2 NAME 'olcSssVlvMaxKeys' "
1256 "DESC 'Maximum number of Keys in a Sort request' "
1257 "SYNTAX OMsInteger SINGLE-VALUE )", NULL, NULL },
1258 { "sssvlv-maxperconn", "num",
1259 2, 2, 0, ARG_INT|ARG_OFFSET,
1260 (void *)offsetof(sssvlv_info, svi_max_percon),
1261 "( OLcfgOvAt:21.3 NAME 'olcSssVlvMaxPerConn' "
1262 "DESC 'Maximum number of concurrent paged search requests per connection' "
1263 "SYNTAX OMsInteger SINGLE-VALUE )", NULL, NULL },
1264 { NULL, NULL, 0, 0, 0, ARG_IGNORED }
1267 static ConfigOCs sssvlv_ocs[] = {
1268 { "( OLcfgOvOc:21.1 "
1269 "NAME 'olcSssVlvConfig' "
1270 "DESC 'SSS VLV configuration' "
1271 "SUP olcOverlayConfig "
1272 "MAY ( olcSssVlvMax $ olcSssVlvMaxKeys ) )",
1273 Cft_Overlay, sssvlv_cfg, NULL, NULL },
1277 static int sssvlv_db_init(
1281 slap_overinst *on = (slap_overinst *)be->bd_info;
1284 if ( ov_count == 0 ) {
1287 rc = register_supported_control2( LDAP_CONTROL_SORTREQUEST,
1293 if ( rc != LDAP_SUCCESS ) {
1294 Debug( LDAP_DEBUG_ANY, "Failed to register Sort Request control '%s' (%d)\n",
1295 LDAP_CONTROL_SORTREQUEST, rc, 0 );
1299 rc = register_supported_control2( LDAP_CONTROL_VLVREQUEST,
1305 if ( rc != LDAP_SUCCESS ) {
1306 Debug( LDAP_DEBUG_ANY, "Failed to register VLV Request control '%s' (%d)\n",
1307 LDAP_CONTROL_VLVREQUEST, rc, 0 );
1308 #ifdef SLAP_CONFIG_DELETE
1309 overlay_unregister_control( be, LDAP_CONTROL_SORTREQUEST );
1310 unregister_supported_control( LDAP_CONTROL_SORTREQUEST );
1311 #endif /* SLAP_CONFIG_DELETE */
1316 si = (sssvlv_info *)ch_malloc(sizeof(sssvlv_info));
1317 on->on_bi.bi_private = si;
1321 si->svi_max_keys = SSSVLV_DEFAULT_MAX_KEYS;
1322 si->svi_max_percon = SSSVLV_DEFAULT_MAX_REQUEST_PER_CONN;
1326 return LDAP_SUCCESS;
1329 static int sssvlv_db_destroy(
1333 slap_overinst *on = (slap_overinst *)be->bd_info;
1334 sssvlv_info *si = (sssvlv_info *)on->on_bi.bi_private;
1338 if ( !ov_count && sort_conns) {
1340 for ( conn_index = 0 ; conn_index < dtblsize + 1 ; conn_index++ ) {
1341 ch_free(sort_conns[conn_index]);
1343 ch_free(sort_conns);
1344 ldap_pvt_thread_mutex_destroy( &sort_conns_mutex );
1347 #ifdef SLAP_CONFIG_DELETE
1348 overlay_unregister_control( be, LDAP_CONTROL_SORTREQUEST );
1349 overlay_unregister_control( be, LDAP_CONTROL_VLVREQUEST );
1350 if ( ov_count == 0 ) {
1351 unregister_supported_control( LDAP_CONTROL_SORTREQUEST );
1352 unregister_supported_control( LDAP_CONTROL_VLVREQUEST );
1354 #endif /* SLAP_CONFIG_DELETE */
1358 on->on_bi.bi_private = NULL;
1360 return LDAP_SUCCESS;
1363 static slap_overinst sssvlv;
1365 int sssvlv_initialize()
1369 sssvlv.on_bi.bi_type = "sssvlv";
1370 sssvlv.on_bi.bi_db_init = sssvlv_db_init;
1371 sssvlv.on_bi.bi_db_destroy = sssvlv_db_destroy;
1372 sssvlv.on_bi.bi_db_open = sssvlv_db_open;
1373 sssvlv.on_bi.bi_connection_destroy = sssvlv_connection_destroy;
1374 sssvlv.on_bi.bi_op_search = sssvlv_op_search;
1376 sssvlv.on_bi.bi_cf_ocs = sssvlv_ocs;
1378 rc = config_register_schema( sssvlv_cfg, sssvlv_ocs );
1382 rc = overlay_register( &sssvlv );
1383 if ( rc != LDAP_SUCCESS ) {
1384 Debug( LDAP_DEBUG_ANY, "Failed to register server side sort overlay\n", 0, 0, 0 );
1390 #if SLAPD_OVER_SSSVLV == SLAPD_MOD_DYNAMIC
1391 int init_module( int argc, char *argv[])
1393 return sssvlv_initialize();
1397 #endif /* SLAPD_OVER_SSSVLV */
projects / openldap / blob