1 /* result.c - routines to send ldap results, errors, and referrals */
7 #include <sys/socket.h>
8 #include <netinet/in.h>
14 #ifndef SYSERRLIST_IN_STDIO
16 extern char *sys_errlist[];
18 extern int active_threads;
19 extern pthread_mutex_t active_threads_mutex;
20 extern pthread_mutex_t new_conn_mutex;
21 extern pthread_t listener_tid;
22 extern struct acl *acl_get_applicable();
23 extern long num_entries_sent;
24 extern long num_bytes_sent;
25 extern pthread_mutex_t num_sent_mutex;
27 void close_connection();
41 unsigned long tag, bytes;
43 Debug( LDAP_DEBUG_TRACE, "send_ldap_result %d:%s:%s\n", err, matched ?
44 matched : "", text ? text : "" );
46 switch ( op->o_tag ) {
52 tag = LDAP_RES_SEARCH_RESULT;
56 tag = LDAP_RES_DELETE;
65 if ( (ber = ber_alloc_t( conn->c_version == 30 ? 0 : LBER_USE_DER ))
68 if ( (ber = der_alloc()) == NULLBER ) {
70 Debug( LDAP_DEBUG_ANY, "ber_alloc failed\n", 0, 0, 0 );
76 rc = ber_printf( ber, "{is{t{ess}}}", op->o_msgid, "", tag,
77 err, matched ? matched : "", text ? text : "" );
81 if ( conn->c_version == 30 ) {
82 rc = ber_printf( ber, "{it{{ess}}}", op->o_msgid, tag, err,
83 matched ? matched : "", text ? text : "" );
86 rc = ber_printf( ber, "{it{ess}}", op->o_msgid, tag, err,
87 matched ? matched : "", text ? text : "" );
90 Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
94 /* write only one pdu at a time - wait til it's our turn */
95 pthread_mutex_lock( &conn->c_pdumutex );
98 bytes = ber->ber_ptr - ber->ber_buf;
99 pthread_mutex_lock( &new_conn_mutex );
100 while ( conn->c_connid == op->o_connid && ber_flush( &conn->c_sb, ber,
102 pthread_mutex_unlock( &new_conn_mutex );
104 * we got an error. if it's ewouldblock, we need to
105 * wait on the socket being writable. otherwise, figure
106 * it's a hard error and return.
109 Debug( LDAP_DEBUG_CONNS, "ber_flush failed errno %d msg (%s)\n",
110 errno, errno > -1 && errno < sys_nerr ? sys_errlist[errno]
113 if ( errno != EWOULDBLOCK && errno != EAGAIN ) {
114 close_connection( conn, op->o_connid, op->o_opid );
116 pthread_mutex_unlock( &conn->c_pdumutex );
120 /* wait for socket to be write-ready */
121 pthread_mutex_lock( &active_threads_mutex );
123 conn->c_writewaiter = 1;
126 pthread_kill( listener_tid, SIGSTKFLT );
128 pthread_kill( listener_tid, SIGUSR1 );
131 pthread_cond_wait( &conn->c_wcv, &active_threads_mutex );
132 pthread_mutex_unlock( &active_threads_mutex );
135 pthread_mutex_lock( &new_conn_mutex );
137 pthread_mutex_unlock( &new_conn_mutex );
138 pthread_mutex_unlock( &conn->c_pdumutex );
140 pthread_mutex_lock( &num_sent_mutex );
141 num_bytes_sent += bytes;
142 pthread_mutex_unlock( &num_sent_mutex );
144 Statslog( LDAP_DEBUG_STATS,
145 "conn=%d op=%d RESULT err=%d tag=%d nentries=%d\n", conn->c_connid,
146 op->o_opid, err, tag, nentries );
162 SAFEMEMCPY( (char *)conn->c_sb.sb_useaddr, &op->o_clientaddr,
163 sizeof( struct sockaddr ));
164 Debug( LDAP_DEBUG_TRACE, "UDP response to %s port %d\n",
165 inet_ntoa(((struct sockaddr_in *)
166 conn->c_sb.sb_useaddr)->sin_addr ),
167 ((struct sockaddr_in *) conn->c_sb.sb_useaddr)->sin_port,
171 send_ldap_result2( conn, op, err, matched, text, 0 );
175 send_ldap_search_result(
184 send_ldap_result2( conn, op, err, matched, text, nentries );
199 int i, rc, bytes, sd;
203 Debug( LDAP_DEBUG_TRACE, "=> send_search_entry (%s)\n", e->e_dn, 0, 0 );
205 if ( ! access_allowed( be, conn, op, e, "entry", NULL, op->o_dn,
207 Debug( LDAP_DEBUG_ACL, "acl: access to entry not allowed\n",
212 edn = dn_normalize_case( strdup( e->e_dn ) );
215 if ( (ber = ber_alloc_t( conn->c_version == 30 ? 0 : LBER_USE_DER ))
218 if ( (ber = der_alloc()) == NULLBER )
221 Debug( LDAP_DEBUG_ANY, "ber_alloc failed\n", 0, 0, 0 );
222 send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR, NULL,
229 if ( conn->c_version == 30 ) {
230 rc = ber_printf( ber, "{it{{s{", op->o_msgid,
231 LDAP_RES_SEARCH_ENTRY, e->e_dn );
235 rc = ber_printf( ber, "{it{s{", op->o_msgid,
236 LDAP_RES_SEARCH_ENTRY, e->e_dn );
240 Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
242 send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR, NULL,
248 for ( a = e->e_attrs; a != NULL; a = a->a_next ) {
249 regmatch_t matches[MAXREMATCHES];
251 if ( attrs != NULL && ! charray_inlist( attrs, a->a_type ) ) {
255 /* the lastmod attributes are ignored by ACL checking */
256 if ( strcasecmp( a->a_type, "modifiersname" ) == 0 ||
257 strcasecmp( a->a_type, "modifytimestamp" ) == 0 ||
258 strcasecmp( a->a_type, "creatorsname" ) == 0 ||
259 strcasecmp( a->a_type, "createtimestamp" ) == 0 )
261 Debug( LDAP_DEBUG_ACL, "LASTMOD attribute: %s access DEFAULT\n",
265 acl = acl_get_applicable( be, op, e, a->a_type, edn,
266 MAXREMATCHES, matches );
269 if ( ! acl_access_allowed( acl, be, conn, e, NULL, op, ACL_READ,
275 if ( ber_printf( ber, "{s[", a->a_type ) == -1 ) {
276 Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
278 send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
279 NULL, "ber_printf type" );
285 for ( i = 0; a->a_vals[i] != NULL; i++ ) {
286 if ( a->a_syntax & SYNTAX_DN &&
287 ! acl_access_allowed( acl, be, conn, e, a->a_vals[i], op,
288 ACL_READ, edn, matches) )
293 if ( ber_printf( ber, "o",
294 a->a_vals[i]->bv_val,
295 a->a_vals[i]->bv_len ) == -1 )
297 Debug( LDAP_DEBUG_ANY,
298 "ber_printf failed\n", 0, 0, 0 );
300 send_ldap_result( conn, op,
301 LDAP_OPERATIONS_ERROR, NULL,
302 "ber_printf value" );
309 if ( ber_printf( ber, "]}" ) == -1 ) {
310 Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
312 send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
313 NULL, "ber_printf type end" );
322 if ( conn->c_version == 30 ) {
323 rc = ber_printf( ber, "}}}}" );
326 rc = ber_printf( ber, "}}}" );
329 Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
331 send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR, NULL,
332 "ber_printf entry end" );
336 /* write only one pdu at a time - wait til it's our turn */
337 pthread_mutex_lock( &conn->c_pdumutex );
339 bytes = ber->ber_ptr - ber->ber_buf;
340 pthread_mutex_lock( &new_conn_mutex );
341 while ( conn->c_connid == op->o_connid && ber_flush( &conn->c_sb, ber,
343 pthread_mutex_unlock( &new_conn_mutex );
345 * we got an error. if it's ewouldblock, we need to
346 * wait on the socket being writable. otherwise, figure
347 * it's a hard error and return.
350 Debug( LDAP_DEBUG_CONNS, "ber_flush failed errno %d msg (%s)\n",
351 errno, errno > -1 && errno < sys_nerr ? sys_errlist[errno]
354 if ( errno != EWOULDBLOCK && errno != EAGAIN ) {
355 close_connection( conn, op->o_connid, op->o_opid );
357 pthread_mutex_unlock( &conn->c_pdumutex );
361 /* wait for socket to be write-ready */
362 pthread_mutex_lock( &active_threads_mutex );
364 conn->c_writewaiter = 1;
365 pthread_kill( listener_tid, SIGUSR1 );
366 pthread_cond_wait( &conn->c_wcv, &active_threads_mutex );
367 pthread_mutex_unlock( &active_threads_mutex );
370 pthread_mutex_lock( &new_conn_mutex );
372 pthread_mutex_unlock( &new_conn_mutex );
373 pthread_mutex_unlock( &conn->c_pdumutex );
375 pthread_mutex_lock( &num_sent_mutex );
376 num_bytes_sent += bytes;
378 pthread_mutex_unlock( &num_sent_mutex );
380 pthread_mutex_lock( &new_conn_mutex );
381 if ( conn->c_connid == op->o_connid ) {
383 Statslog( LDAP_DEBUG_STATS2, "conn=%d op=%d ENTRY dn=\"%s\"\n",
384 conn->c_connid, op->o_opid, e->e_dn, 0, 0 );
388 pthread_mutex_unlock( &new_conn_mutex );
390 Debug( LDAP_DEBUG_TRACE, "<= send_search_entry\n", 0, 0, 0 );
406 *code = LDAP_SUCCESS;
410 if ( strncasecmp( s, "RESULT", 6 ) != 0 ) {
411 Debug( LDAP_DEBUG_ANY, "str2result (%s) expecting \"RESULT\"\n",
418 while ( (s = strchr( s, '\n' )) != NULL ) {
423 if ( (c = strchr( s, ':' )) != NULL ) {
427 if ( strncasecmp( s, "code", 4 ) == 0 ) {
431 } else if ( strncasecmp( s, "matched", 7 ) == 0 ) {
435 } else if ( strncasecmp( s, "info", 4 ) == 0 ) {
440 Debug( LDAP_DEBUG_ANY, "str2result (%s) unknown\n",
450 * close_connection - close a connection. takes the connection to close,
451 * the connid associated with the operation generating the close (so we
452 * don't accidentally close a connection that's not ours), and the opid
453 * of the operation generating the close (for logging purposes).
456 close_connection( Connection *conn, int opconnid, int opid )
458 pthread_mutex_lock( &new_conn_mutex );
459 if ( conn->c_sb.sb_sd != -1 && conn->c_connid == opconnid ) {
460 Statslog( LDAP_DEBUG_STATS,
461 "conn=%d op=%d fd=%d closed errno=%d\n", conn->c_connid,
462 opid, conn->c_sb.sb_sd, errno, 0 );
463 close( conn->c_sb.sb_sd );
464 conn->c_sb.sb_sd = -1;
467 pthread_mutex_unlock( &new_conn_mutex );
projects / openldap / blob