1 /* slapcommon.c - common routine for the slap tools */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 1998-2018 The OpenLDAP Foundation.
6 * Portions Copyright 1998-2003 Kurt D. Zeilenga.
7 * Portions Copyright 2003 IBM Corporation.
10 * Redistribution and use in source and binary forms, with or without
11 * modification, are permitted only as authorized by the OpenLDAP
14 * A copy of this license is available in file LICENSE in the
15 * top-level directory of the distribution or, alternatively, at
16 * <http://www.OpenLDAP.org/license.html>.
19 * This work was initially developed by Kurt Zeilenga for inclusion
20 * in OpenLDAP Software. Additional signficant contributors include
22 * Hallvard B. Furuseth
31 #include <ac/stdlib.h>
33 #include <ac/string.h>
34 #include <ac/socket.h>
35 #include <ac/unistd.h>
37 #include "slapcommon.h"
41 tool_vars tool_globals;
44 static char *leakfilename;
45 static FILE *leakfile;
50 #if defined(LDAP_SYSLOG) && defined(LDAP_DEBUG)
52 static char **syslog_unknowns;
54 static int syslogUser = SLAP_DEFAULT_SYSLOG_USER;
55 #endif /* LOG_LOCAL4 */
56 #endif /* LDAP_DEBUG && LDAP_SYSLOG */
59 usage( int tool, const char *progname )
63 "usage: %s [-v] [-d debuglevel] [-f configfile] [-F configdir] [-o <name>[=<value>]]",
68 options = "\n\t[-U authcID | -D authcDN] [-X authzID | -o authzDN=<DN>]"
69 "\n\t-b DN [-u] [attr[/access][:value]] [...]\n";
73 options = " [-c]\n\t[-g] [-n databasenumber | -b suffix]\n"
74 "\t[-l ldiffile] [-j linenumber] [-q] [-u] [-s] [-w]\n";
78 options = "\n\t[-U authcID] [-X authzID] [-R realm] [-M mech] ID [...]\n";
82 options = " [-c]\n\t[-g] [-n databasenumber | -b suffix]"
83 " [-l ldiffile] [-a filter] [-s subtree] [-H url]\n";
87 options = "\n\t[-N | -P] DN [...]\n";
91 options = " [-c]\n\t[-g] [-n databasenumber | -b suffix] [attr ...] [-q] [-t]\n";
95 options = " [-n databasenumber] [-u] [-Q]\n";
99 options = " [-c]\n\t[-g] [-n databasenumber | -b suffix]"
100 " [-l errorfile] [-a filter] [-s subtree] [-H url]\n";
104 if ( options != NULL ) {
105 fputs( options, stderr );
107 exit( EXIT_FAILURE );
111 parse_slapopt( int tool, int *mode )
116 p = strchr( optarg, '=' );
122 if ( strncasecmp( optarg, "sockurl", len ) == 0 ) {
123 if ( !BER_BVISNULL( &listener_url ) ) {
124 ber_memfree( listener_url.bv_val );
126 ber_str2bv( p, 0, 1, &listener_url );
128 } else if ( strncasecmp( optarg, "domain", len ) == 0 ) {
129 if ( !BER_BVISNULL( &peer_domain ) ) {
130 ber_memfree( peer_domain.bv_val );
132 ber_str2bv( p, 0, 1, &peer_domain );
134 } else if ( strncasecmp( optarg, "peername", len ) == 0 ) {
135 if ( !BER_BVISNULL( &peer_name ) ) {
136 ber_memfree( peer_name.bv_val );
138 ber_str2bv( p, 0, 1, &peer_name );
140 } else if ( strncasecmp( optarg, "sockname", len ) == 0 ) {
141 if ( !BER_BVISNULL( &sock_name ) ) {
142 ber_memfree( sock_name.bv_val );
144 ber_str2bv( p, 0, 1, &sock_name );
146 } else if ( strncasecmp( optarg, "ssf", len ) == 0 ) {
147 if ( lutil_atou( &ssf, p ) ) {
148 Debug( LDAP_DEBUG_ANY, "unable to parse ssf=\"%s\".\n", p, 0, 0 );
152 } else if ( strncasecmp( optarg, "transport_ssf", len ) == 0 ) {
153 if ( lutil_atou( &transport_ssf, p ) ) {
154 Debug( LDAP_DEBUG_ANY, "unable to parse transport_ssf=\"%s\".\n", p, 0, 0 );
158 } else if ( strncasecmp( optarg, "tls_ssf", len ) == 0 ) {
159 if ( lutil_atou( &tls_ssf, p ) ) {
160 Debug( LDAP_DEBUG_ANY, "unable to parse tls_ssf=\"%s\".\n", p, 0, 0 );
164 } else if ( strncasecmp( optarg, "sasl_ssf", len ) == 0 ) {
165 if ( lutil_atou( &sasl_ssf, p ) ) {
166 Debug( LDAP_DEBUG_ANY, "unable to parse sasl_ssf=\"%s\".\n", p, 0, 0 );
170 } else if ( strncasecmp( optarg, "authzDN", len ) == 0 ) {
171 ber_str2bv( p, 0, 1, &authzDN );
173 #if defined(LDAP_SYSLOG) && defined(LDAP_DEBUG)
174 } else if ( strncasecmp( optarg, "syslog", len ) == 0 ) {
175 if ( parse_debug_level( p, &ldap_syslog, &syslog_unknowns ) ) {
180 } else if ( strncasecmp( optarg, "syslog-level", len ) == 0 ) {
181 if ( parse_syslog_level( p, &ldap_syslog_level ) ) {
187 } else if ( strncasecmp( optarg, "syslog-user", len ) == 0 ) {
188 if ( parse_syslog_user( p, &syslogUser ) ) {
192 #endif /* LOG_LOCAL4 */
193 #endif /* LDAP_DEBUG && LDAP_SYSLOG */
195 } else if ( strncasecmp( optarg, "schema-check", len ) == 0 ) {
198 if ( strcasecmp( p, "yes" ) == 0 ) {
199 *mode &= ~SLAP_TOOL_NO_SCHEMA_CHECK;
200 } else if ( strcasecmp( p, "no" ) == 0 ) {
201 *mode |= SLAP_TOOL_NO_SCHEMA_CHECK;
203 Debug( LDAP_DEBUG_ANY, "unable to parse schema-check=\"%s\".\n", p, 0, 0 );
209 Debug( LDAP_DEBUG_ANY, "schema-check meaningless for tool.\n", 0, 0, 0 );
213 } else if ( strncasecmp( optarg, "value-check", len ) == 0 ) {
216 if ( strcasecmp( p, "yes" ) == 0 ) {
217 *mode |= SLAP_TOOL_VALUE_CHECK;
218 } else if ( strcasecmp( p, "no" ) == 0 ) {
219 *mode &= ~SLAP_TOOL_VALUE_CHECK;
221 Debug( LDAP_DEBUG_ANY, "unable to parse value-check=\"%s\".\n", p, 0, 0 );
227 Debug( LDAP_DEBUG_ANY, "value-check meaningless for tool.\n", 0, 0, 0 );
231 } else if ( ( strncasecmp( optarg, "ldif_wrap", len ) == 0 ) ||
232 ( strncasecmp( optarg, "ldif-wrap", len ) == 0 ) ) {
235 if ( strcasecmp( p, "no" ) == 0 ) {
236 ldif_wrap = LDIF_LINE_WIDTH_MAX;
240 if ( lutil_atou( &u, p ) ) {
241 Debug( LDAP_DEBUG_ANY, "unable to parse ldif_wrap=\"%s\".\n", p, 0, 0 );
244 ldif_wrap = (ber_len_t)u;
249 Debug( LDAP_DEBUG_ANY, "ldif-wrap meaningless for tool.\n", 0, 0, 0 );
261 * slap_tool_init - initialize slap utility, handle program options.
265 * argc, argv command line arguments
268 static int need_shutdown;
272 const char* progname,
274 int argc, char **argv )
277 char *conffile = NULL;
278 char *confdir = NULL;
279 struct berval base = BER_BVNULL;
280 char *filterstr = NULL;
281 char *subtree = NULL;
282 char *ldiffile = NULL;
283 char **debug_unknowns = NULL;
285 int mode = SLAP_TOOL_MODE;
286 int truncatemode = 0;
291 /* tools default to "none", so that at least LDAP_DEBUG_ANY
292 * messages show up; use -d 0 to reset */
293 slap_debug = LDAP_DEBUG_NONE;
294 ldif_debug = slap_debug;
299 leakfilename = malloc( strlen( progname ) + STRLENOF( ".leak" ) + 1 );
300 sprintf( leakfilename, "%s.leak", progname );
301 if( ( leakfile = fopen( leakfilename, "w" )) == NULL ) {
304 free( leakfilename );
308 ldif_wrap = LDIF_LINE_WIDTH;
310 scope = LDAP_SCOPE_DEFAULT;
314 options = "b:cd:f:F:gj:l:n:o:qsS:uvw";
318 options = "a:b:cd:f:F:gH:l:n:o:s:v";
319 mode |= SLAP_TOOL_READMAIN | SLAP_TOOL_READONLY;
323 options = "d:f:F:No:Pv";
324 mode |= SLAP_TOOL_READMAIN | SLAP_TOOL_READONLY;
328 options = "b:cd:f:F:gj:l:n:o:qsS:uvw";
332 options = "a:b:cd:f:F:gH:l:n:o:s:v";
333 mode |= SLAP_TOOL_READMAIN | SLAP_TOOL_READONLY;
337 options = "d:f:F:n:o:Quv";
338 mode |= SLAP_TOOL_READMAIN | SLAP_TOOL_READONLY;
342 options = "d:f:F:M:o:R:U:vX:";
343 mode |= SLAP_TOOL_READMAIN | SLAP_TOOL_READONLY;
347 options = "b:cd:f:F:gn:o:qtv";
348 mode |= SLAP_TOOL_READMAIN;
352 options = "b:D:d:f:F:o:uU:vX:";
353 mode |= SLAP_TOOL_READMAIN | SLAP_TOOL_READONLY;
357 fprintf( stderr, "%s: unknown tool mode (%d)\n", progname, tool );
358 exit( EXIT_FAILURE );
362 while ( (i = getopt( argc, argv, options )) != EOF ) {
365 filterstr = ch_strdup( optarg );
369 ber_str2bv( optarg, 0, 1, &base );
372 case 'c': /* enable continue mode */
376 case 'd': { /* turn on debugging */
379 if ( parse_debug_level( optarg, &level, &debug_unknowns ) ) {
380 usage( tool, progname );
384 /* allow to reset log level */
392 fputs( "must compile with LDAP_DEBUG for debugging\n",
398 ber_str2bv( optarg, 0, 1, &authcDN );
401 case 'f': /* specify a conf file */
402 conffile = ch_strdup( optarg );
405 case 'F': /* specify a conf dir */
406 confdir = ch_strdup( optarg );
409 case 'g': /* disable subordinate glue */
417 rc = ldap_url_parse_ext( optarg, &ludp,
418 LDAP_PVT_URL_PARSE_NOEMPTY_HOST | LDAP_PVT_URL_PARSE_NOEMPTY_DN );
419 if ( rc != LDAP_URL_SUCCESS ) {
420 usage( tool, progname );
423 /* don't accept host, port, attrs, extensions */
424 if ( ldap_pvt_url_scheme2proto( ludp->lud_scheme ) != LDAP_PROTO_TCP ) {
425 usage( tool, progname );
428 if ( ludp->lud_host != NULL ) {
429 usage( tool, progname );
432 if ( ludp->lud_port != 0 ) {
433 usage( tool, progname );
436 if ( ludp->lud_attrs != NULL ) {
437 usage( tool, progname );
440 if ( ludp->lud_exts != NULL ) {
441 usage( tool, progname );
444 if ( ludp->lud_dn != NULL && ludp->lud_dn[0] != '\0' ) {
446 subtree = ludp->lud_dn;
450 if ( ludp->lud_filter != NULL && ludp->lud_filter[0] != '\0' ) {
451 filterstr = ludp->lud_filter;
452 ludp->lud_filter = NULL;
455 scope = ludp->lud_scope;
457 ldap_free_urldesc( ludp );
460 case 'j': /* jump to linenumber */
461 if ( lutil_atoul( &jumpline, optarg ) ) {
462 usage( tool, progname );
466 case 'l': /* LDIF file */
467 ldiffile = ch_strdup( optarg );
471 ber_str2bv( optarg, 0, 0, &mech );
475 if ( dn_mode && dn_mode != SLAP_TOOL_LDAPDN_NORMAL ) {
476 usage( tool, progname );
478 dn_mode = SLAP_TOOL_LDAPDN_NORMAL;
481 case 'n': /* which config file db to index */
482 if ( lutil_atoi( &dbnum, optarg ) || dbnum < 0 ) {
483 usage( tool, progname );
488 if ( parse_slapopt( tool, &mode ) ) {
489 usage( tool, progname );
494 if ( dn_mode && dn_mode != SLAP_TOOL_LDAPDN_PRETTY ) {
495 usage( tool, progname );
497 dn_mode = SLAP_TOOL_LDAPDN_PRETTY;
505 case 'q': /* turn on quick */
506 mode |= SLAP_TOOL_QUICK;
514 if ( lutil_atou( &csnsid, optarg )
515 || csnsid > SLAP_SYNC_SID_MAX )
517 usage( tool, progname );
525 /* no schema check */
526 mode |= SLAP_TOOL_NO_SCHEMA_CHECK;
533 subtree = ch_strdup( optarg );
538 case 't': /* turn on truncate */
540 mode |= SLAP_TRUNCATE_MODE;
544 ber_str2bv( optarg, 0, 0, &authcID );
547 case 'u': /* dry run */
551 case 'v': /* turn on verbose */
555 case 'w': /* write context csn at the end */
560 ber_str2bv( optarg, 0, 0, &authzID );
564 usage( tool, progname );
569 #if defined(LDAP_SYSLOG) && defined(LDAP_DEBUG)
570 if ( start_syslog ) {
573 logName = ch_strdup( progname );
576 logName = (char *)progname;
580 openlog( logName, OPENLOG_OPTIONS, syslogUser );
581 #elif defined LOG_DEBUG
582 openlog( logName, OPENLOG_OPTIONS );
589 #endif /* LDAP_DEBUG && LDAP_SYSLOG */
607 if ( ( argc != optind ) || (dbnum >= 0 && base.bv_val != NULL ) ) {
608 usage( tool, progname );
614 if ( dbnum >= 0 && base.bv_val != NULL ) {
615 usage( tool, progname );
621 if ( argc == optind ) {
622 usage( tool, progname );
627 if ( argc == optind && BER_BVISNULL( &authcID ) ) {
628 usage( tool, progname );
633 if ( argc != optind ) {
634 usage( tool, progname );
639 if ( !BER_BVISNULL( &authcDN ) && !BER_BVISNULL( &authcID ) ) {
640 usage( tool, progname );
642 if ( BER_BVISNULL( &base ) ) {
643 usage( tool, progname );
645 ber_dupbv( &baseDN, &base );
652 if ( ldiffile == NULL ) {
653 dummy.fp = writer ? stdout : stdin;
656 } else if ((ldiffp = ldif_open( ldiffile, writer ? "w" : "r" ))
660 exit( EXIT_FAILURE );
664 * initialize stuff and figure out which backend we're dealing with
667 rc = slap_init( mode, progname );
669 fprintf( stderr, "%s: slap_init failed!\n", progname );
670 exit( EXIT_FAILURE );
673 rc = read_config( conffile, confdir );
676 fprintf( stderr, "%s: bad configuration %s!\n",
677 progname, confdir ? "directory" : "file" );
678 exit( EXIT_FAILURE );
681 if ( debug_unknowns ) {
682 rc = parse_debug_unknowns( debug_unknowns, &slap_debug );
683 ldap_charray_free( debug_unknowns );
684 debug_unknowns = NULL;
686 exit( EXIT_FAILURE );
689 #if defined(LDAP_SYSLOG) && defined(LDAP_DEBUG)
690 if ( syslog_unknowns ) {
691 rc = parse_debug_unknowns( syslog_unknowns, &ldap_syslog );
692 ldap_charray_free( syslog_unknowns );
693 syslog_unknowns = NULL;
695 exit( EXIT_FAILURE );
708 fprintf( stderr, "No databases found "
709 "in config file\n" );
710 exit( EXIT_FAILURE );
719 rc = glue_sub_attach( 0 );
723 "%s: subordinate configuration error\n", progname );
724 exit( EXIT_FAILURE );
728 rc = slap_schema_check();
731 fprintf( stderr, "%s: slap_schema_prep failed!\n", progname );
732 exit( EXIT_FAILURE );
750 filter = str2filter( filterstr );
752 if( filter == NULL ) {
753 fprintf( stderr, "Invalid filter '%s'\n", filterstr );
754 exit( EXIT_FAILURE );
757 ch_free( filterstr );
763 ber_str2bv( subtree, 0, 0, &val );
764 rc = dnNormalize( 0, NULL, NULL, &val, &sub_ndn, NULL );
765 if( rc != LDAP_SUCCESS ) {
766 fprintf( stderr, "Invalid subtree DN '%s'\n", subtree );
767 exit( EXIT_FAILURE );
770 if ( BER_BVISNULL( &base ) && dbnum == -1 ) {
778 if( base.bv_val != NULL ) {
781 rc = dnNormalize( 0, NULL, NULL, &base, &nbase, NULL );
782 if( rc != LDAP_SUCCESS ) {
783 fprintf( stderr, "%s: slap_init invalid suffix (\"%s\")\n",
784 progname, base.bv_val );
785 exit( EXIT_FAILURE );
788 be = select_backend( &nbase, 0 );
789 ber_memfree( nbase.bv_val );
790 BER_BVZERO( &nbase );
793 fprintf( stderr, "%s: slap_init no backend for \"%s\"\n",
794 progname, base.bv_val );
795 exit( EXIT_FAILURE );
805 /* If the named base is a glue master, operate on the
808 if ( SLAP_GLUE_INSTANCE( be ) ) {
812 ch_free( base.bv_val );
815 } else if ( dbnum == -1 ) {
816 /* no suffix and no dbnum specified, just default to
817 * the first available database
819 if ( nbackends <= 0 ) {
820 fprintf( stderr, "No available databases\n" );
821 exit( EXIT_FAILURE );
823 LDAP_STAILQ_FOREACH( be, &backendDB, be_next ) {
826 /* db #0 is cn=config, don't select it as a default */
827 if ( dbnum < 1 ) continue;
829 if ( SLAP_MONITOR(be))
832 /* If just doing the first by default and it is a
833 * glue subordinate, find the master.
835 if ( SLAP_GLUE_SUBORDINATE(be) ) {
843 fprintf( stderr, "Available database(s) "
844 "do not allow %s\n", progname );
845 exit( EXIT_FAILURE );
848 if ( nosubordinates == 0 && dbnum > 1 ) {
849 Debug( LDAP_DEBUG_ANY,
850 "The first database does not allow %s;"
851 " using the first available one (%d)\n",
852 progname, dbnum, 0 );
855 } else if ( dbnum >= nbackends ) {
857 "Database number selected via -n is out of range\n"
858 "Must be in the range 0 to %d"
859 " (the number of configured databases)\n",
861 exit( EXIT_FAILURE );
865 LDAP_STAILQ_FOREACH( be, &backendDB, be_next ) {
866 if ( dbnum == 0 ) break;
871 if ( scope != LDAP_SCOPE_DEFAULT && BER_BVISNULL( &sub_ndn ) ) {
872 if ( be && be->be_nsuffix ) {
873 ber_dupbv( &sub_ndn, be->be_nsuffix );
877 "<scope> needs a DN or a valid database\n" );
878 exit( EXIT_FAILURE );
887 LDAP_STAILQ_FOREACH( bdtmp, &backendDB, be_next ) {
888 if ( bdtmp == be ) break;
897 if ( conffile != NULL ) {
902 if ( confdir != NULL ) {
907 if ( ldiffile != NULL ) {
912 /* slapdn doesn't specify a backend to startup */
913 if ( !dryrun && tool != SLAPDN ) {
916 if ( slap_startup( be ) ) {
919 fprintf( stderr, "slap_startup failed "
920 "(test would succeed using "
921 "the -u switch)\n" );
925 fprintf( stderr, "slap_startup failed\n" );
929 exit( EXIT_FAILURE );
934 int slap_tool_destroy( void )
938 if ( need_shutdown ) {
939 if ( slap_shutdown( be ))
946 if ( slapMode == SLAP_SERVER_MODE ) {
947 /* always false. just pulls in necessary symbol references. */
948 lutil_uuidstr(NULL, 0);
954 ldap_pvt_tls_destroy();
959 mal_dumpleaktrace( leakfile );
962 if ( !BER_BVISNULL( &authcDN ) ) {
963 ch_free( authcDN.bv_val );
964 BER_BVZERO( &authcDN );
967 if ( ldiffp && ldiffp != &dummy ) {
968 ldif_close( ldiffp );
974 slap_tool_update_ctxcsn(
975 const char *progname,
977 struct berval *bvtext )
982 int rc = EXIT_SUCCESS;
984 if ( !(update_ctxcsn && !dryrun && sid != SLAP_SYNC_SID_MAX + 1) ) {
988 if ( SLAP_SYNC_SUBENTRY( be )) {
989 build_new_dn( &ctxdn, &be->be_nsuffix[0],
990 (struct berval *)&slap_ldapsync_cn_bv, NULL );
992 ctxdn = be->be_nsuffix[0];
994 ctxcsn_id = be->be_dn2id_get( be, &ctxdn );
995 if ( ctxcsn_id == NOID ) {
996 if ( SLAP_SYNC_SUBENTRY( be )) {
997 ctxcsn_e = slap_create_context_csn_entry( be, NULL );
998 for ( sid = 0; sid <= SLAP_SYNC_SID_MAX; sid++ ) {
999 if ( maxcsn[ sid ].bv_len ) {
1000 attr_merge_one( ctxcsn_e, slap_schema.si_ad_contextCSN,
1001 &maxcsn[ sid ], NULL );
1004 ctxcsn_id = be->be_entry_put( be, ctxcsn_e, bvtext );
1005 if ( ctxcsn_id == NOID ) {
1006 fprintf( stderr, "%s: couldn't create context entry\n", progname );
1009 entry_free( ctxcsn_e );
1011 fprintf( stderr, "%s: context entry is missing\n", progname );
1015 ctxcsn_e = be->be_entry_get( be, ctxcsn_id );
1016 if ( ctxcsn_e != NULL ) {
1017 Operation op = { 0 };
1018 Entry *e = entry_dup( ctxcsn_e );
1019 Attribute *attr = attr_find( e->e_attrs, slap_schema.si_ad_contextCSN );
1023 be_entry_release_r( &op, ctxcsn_e );
1030 for ( i = 0; !BER_BVISNULL( &attr->a_nvals[ i ] ); i++ ) {
1033 const char *text = NULL;
1035 rc_sid = slap_parse_csn_sid( &attr->a_nvals[ i ] );
1037 Debug( LDAP_DEBUG_ANY,
1038 "%s: unable to extract SID "
1039 "from #%d contextCSN=%s\n",
1041 attr->a_nvals[ i ].bv_val );
1045 assert( rc_sid <= SLAP_SYNC_SID_MAX );
1047 sid = (unsigned)rc_sid;
1049 if ( maxcsn[ sid ].bv_len == 0 ) {
1053 value_match( &match, slap_schema.si_ad_entryCSN,
1054 slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
1055 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
1056 &maxcsn[ sid ], &attr->a_nvals[i], &text );
1062 AC_MEMCPY( maxcsn[ sid ].bv_val,
1063 attr->a_nvals[ i ].bv_val,
1064 attr->a_nvals[ i ].bv_len );
1065 maxcsn[ sid ].bv_val[ attr->a_nvals[ i ].bv_len ] = '\0';
1066 maxcsn[ sid ].bv_len = attr->a_nvals[ i ].bv_len;
1071 if ( attr->a_nvals != attr->a_vals ) {
1072 ber_bvarray_free( attr->a_nvals );
1074 attr->a_nvals = NULL;
1075 ber_bvarray_free( attr->a_vals );
1076 attr->a_vals = NULL;
1077 attr->a_numvals = 0;
1084 for ( sid = 0; sid <= SLAP_SYNC_SID_MAX; sid++ ) {
1085 if ( maxcsn[ sid ].bv_len ) {
1086 attr_merge_one( e, slap_schema.si_ad_contextCSN,
1087 &maxcsn[ sid], NULL );
1091 ctxcsn_id = be->be_entry_modify( be, e, bvtext );
1092 if( ctxcsn_id == NOID ) {
1093 fprintf( stderr, "%s: could not modify ctxcsn (%s)\n",
1094 progname, bvtext->bv_val ? bvtext->bv_val : "" );
1096 } else if ( verbose ) {
1097 fprintf( stderr, "modified: \"%s\" (%08lx)\n",
1098 e->e_dn, (long) ctxcsn_id );
1110 * -1: update_ctxcsn == 0
1111 * SLAP_SYNC_SID_MAX + 1: unable to extract SID
1112 * 0 <= SLAP_SYNC_SID_MAX: the SID
1115 slap_tool_update_ctxcsn_check(
1116 const char *progname,
1119 if ( update_ctxcsn ) {
1120 unsigned long sid = SLAP_SYNC_SID_MAX + 1;
1124 attr = attr_find( e->e_attrs, slap_schema.si_ad_entryCSN );
1125 assert( attr != NULL );
1127 rc_sid = slap_parse_csn_sid( &attr->a_nvals[ 0 ] );
1129 Debug( LDAP_DEBUG_ANY, "%s: could not "
1130 "extract SID from entryCSN=%s, entry dn=\"%s\"\n",
1131 progname, attr->a_nvals[ 0 ].bv_val, e->e_name.bv_val );
1132 return (unsigned long)(-1);
1136 const char *text = NULL;
1138 assert( rc_sid <= SLAP_SYNC_SID_MAX );
1140 sid = (unsigned)rc_sid;
1141 if ( maxcsn[ sid ].bv_len != 0 ) {
1143 value_match( &match, slap_schema.si_ad_entryCSN,
1144 slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
1145 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
1146 &maxcsn[ sid ], &attr->a_nvals[0], &text );
1151 strcpy( maxcsn[ sid ].bv_val, attr->a_nvals[0].bv_val );
1152 maxcsn[ sid ].bv_len = attr->a_nvals[0].bv_len;
1157 return (unsigned long)(-1);
1161 slap_tool_update_ctxcsn_init(void)
1163 if ( update_ctxcsn ) {
1165 maxcsn[ 0 ].bv_val = maxcsnbuf;
1166 for ( sid = 1; sid <= SLAP_SYNC_SID_MAX; sid++ ) {
1167 maxcsn[ sid ].bv_val = maxcsn[ sid - 1 ].bv_val + LDAP_PVT_CSNSTR_BUFSIZE;
1168 maxcsn[ sid ].bv_len = 0;
1176 slap_tool_entry_check(
1177 const char *progname,
1185 /* NOTE: we may want to conditionally enable manage */
1188 Attribute *oc = attr_find( e->e_attrs,
1189 slap_schema.si_ad_objectClass );
1192 fprintf( stderr, "%s: dn=\"%s\" (line=%d): %s\n",
1193 progname, e->e_dn, lineno,
1194 "no objectClass attribute");
1195 return LDAP_NO_SUCH_ATTRIBUTE;
1201 if ( (slapMode & SLAP_TOOL_NO_SCHEMA_CHECK) == 0) {
1202 int rc = entry_schema_check( op, e, NULL, manage, 1, NULL,
1203 text, textbuf, textlen );
1205 if( rc != LDAP_SUCCESS ) {
1206 fprintf( stderr, "%s: dn=\"%s\" (line=%d): (%d) %s\n",
1207 progname, e->e_dn, lineno, rc, *text );
1210 textbuf[ 0 ] = '\0';
1213 if ( (slapMode & SLAP_TOOL_VALUE_CHECK) != 0) {
1214 Modifications *ml = NULL;
1216 int rc = slap_entry2mods( e, &ml, text, textbuf, textlen );
1217 if ( rc != LDAP_SUCCESS ) {
1218 fprintf( stderr, "%s: dn=\"%s\" (line=%d): (%d) %s\n",
1219 progname, e->e_dn, lineno, rc, *text );
1222 textbuf[ 0 ] = '\0';
1224 rc = slap_mods_check( op, ml, text, textbuf, textlen, NULL );
1225 slap_mods_free( ml, 1 );
1226 if ( rc != LDAP_SUCCESS ) {
1227 fprintf( stderr, "%s: dn=\"%s\" (line=%d): (%d) %s\n",
1228 progname, e->e_dn, lineno, rc, *text );
1231 textbuf[ 0 ] = '\0';
1234 return LDAP_SUCCESS;