2 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
4 * Copyright 2002-2005 The OpenLDAP Foundation.
5 * Portions Copyright 1997,2002-2003 IBM Corporation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
17 * This work was initially developed by IBM Corporation for use in
18 * IBM products and subsequently ported to OpenLDAP Software by
19 * Steve Omrani. Additional significant contributors include:
25 #include <ac/string.h>
26 #include <ac/stdarg.h>
28 #include <ac/unistd.h>
35 * use a fake listener when faking a connection,
36 * so it can be used in ACLs
38 static struct slap_listener slap_unknown_listener = {
39 BER_BVC("unknown"), /* FIXME: use a URI form? (e.g. slapi://) */
49 /* XXX needs review after internal API change */
50 /* rs->sr_nentries appears to always be 0 */
51 if (op->o_tag == LDAP_REQ_SEARCH)
52 slapi_pblock_set( (Slapi_PBlock *)op->o_pb,
53 SLAPI_NENTRIES, (void *)rs->sr_nentries );
60 internal_search_entry(
64 int nentries = 0, len = 0, i = 0;
65 Slapi_Entry **head = NULL, **tp;
68 entry = slapi_entry_dup( rs->sr_entry );
69 if ( entry == NULL ) {
73 slapi_pblock_get( (Slapi_PBlock *)op->o_pb,
74 SLAPI_NENTRIES, &nentries );
75 slapi_pblock_get( (Slapi_PBlock *)op->o_pb,
76 SLAPI_PLUGIN_INTOP_SEARCH_ENTRIES, &head );
79 if ( nentries == 0 ) {
80 tp = (Slapi_Entry **)slapi_ch_malloc( 2 * sizeof(Slapi_Entry *) );
82 slapi_entry_free( entry );
88 tp = (Slapi_Entry **)slapi_ch_realloc( (char *)head,
89 sizeof(Slapi_Entry *) * ( i + 1 ) );
91 slapi_entry_free( entry );
98 slapi_pblock_set( (Slapi_PBlock *)op->o_pb,
99 SLAPI_PLUGIN_INTOP_SEARCH_ENTRIES, (void *)tp );
100 slapi_pblock_set( (Slapi_PBlock *)op->o_pb,
101 SLAPI_NENTRIES, (void *)i );
115 internal_search_reference(
123 slapi_int_init_connection(
128 ber_len_t max = sockbuf_max_incoming;
130 pConn = (Connection *) slapi_ch_calloc(1, sizeof(Connection));
132 return (Connection *)NULL;
135 LDAP_STAILQ_INIT( &pConn->c_pending_ops );
137 pConn->c_pending_ops.stqh_first =
138 (Operation *) slapi_ch_calloc( 1, sizeof(Operation) );
139 if ( pConn->c_pending_ops.stqh_first == NULL ) {
140 slapi_ch_free( (void **)&pConn );
141 return (Connection *)NULL;
144 pConn->c_pending_ops.stqh_first->o_pb =
145 (Slapi_PBlock *) slapi_pblock_new();
146 if ( pConn->c_pending_ops.stqh_first->o_pb == NULL ) {
147 slapi_ch_free( (void **)&pConn->c_pending_ops.stqh_first );
148 slapi_ch_free( (void **)&pConn );
149 return (Connection *)NULL;
152 /* connection object */
153 pConn->c_authmech.bv_val = NULL;
154 pConn->c_authmech.bv_len = 0;
155 pConn->c_dn.bv_val = NULL;
156 pConn->c_dn.bv_len = 0;
157 pConn->c_ndn.bv_val = NULL;
158 pConn->c_ndn.bv_len = 0;
160 pConn->c_listener = &slap_unknown_listener;
161 ber_dupbv( &pConn->c_peer_domain, (struct berval *)&slap_unknown_bv );
162 ber_dupbv( &pConn->c_peer_name, (struct berval *)&slap_unknown_bv );
164 LDAP_STAILQ_INIT( &pConn->c_ops );
166 pConn->c_sasl_bind_mech.bv_val = NULL;
167 pConn->c_sasl_bind_mech.bv_len = 0;
168 pConn->c_sasl_authctx = NULL;
169 pConn->c_sasl_sockctx = NULL;
170 pConn->c_sasl_extra = NULL;
172 pConn->c_sb = ber_sockbuf_alloc( );
174 ber_sockbuf_ctrl( pConn->c_sb, LBER_SB_OPT_SET_MAX_INCOMING, &max );
176 pConn->c_currentber = NULL;
178 /* should check status of thread calls */
179 ldap_pvt_thread_mutex_init( &pConn->c_mutex );
180 ldap_pvt_thread_mutex_init( &pConn->c_write_mutex );
181 ldap_pvt_thread_cond_init( &pConn->c_write_cv );
183 ldap_pvt_thread_mutex_lock( &pConn->c_mutex );
185 pConn->c_n_ops_received = 0;
186 pConn->c_n_ops_executing = 0;
187 pConn->c_n_ops_pending = 0;
188 pConn->c_n_ops_completed = 0;
192 pConn->c_n_write = 0;
194 pConn->c_protocol = LDAP_VERSION3;
196 pConn->c_activitytime = pConn->c_starttime = slap_get_time();
199 * A real connection ID is required, because syncrepl associates
200 * pending CSNs with unique ( connection, operation ) tuples.
201 * Setting a fake connection ID will cause slap_get_commit_csn()
202 * to return a stale value.
204 connection_assign_nextid( pConn );
206 pConn->c_conn_state = 0x01; /* SLAP_C_ACTIVE */
207 pConn->c_struct_state = 0x02; /* SLAP_C_USED */
209 pConn->c_ssf = pConn->c_transport_ssf = 0;
210 pConn->c_tls_ssf = 0;
212 backend_connection_init( pConn );
214 pConn->c_send_ldap_result = internal_result_v3;
215 pConn->c_send_search_entry = internal_search_entry;
216 pConn->c_send_ldap_extended = internal_result_ext;
217 pConn->c_send_search_reference = internal_search_reference;
219 /* operation object */
220 pConn->c_pending_ops.stqh_first->o_tag = OpType;
221 pConn->c_pending_ops.stqh_first->o_protocol = LDAP_VERSION3;
222 pConn->c_pending_ops.stqh_first->o_authmech.bv_val = NULL;
223 pConn->c_pending_ops.stqh_first->o_authmech.bv_len = 0;
224 pConn->c_pending_ops.stqh_first->o_time = slap_get_time();
225 pConn->c_pending_ops.stqh_first->o_do_not_cache = 1;
226 pConn->c_pending_ops.stqh_first->o_threadctx = ldap_pvt_thread_pool_context();
227 pConn->c_pending_ops.stqh_first->o_tmpmemctx = NULL;
228 pConn->c_pending_ops.stqh_first->o_tmpmfuncs = &ch_mfuncs;
229 pConn->c_pending_ops.stqh_first->o_conn = pConn;
230 pConn->c_pending_ops.stqh_first->o_connid = pConn->c_connid;
232 ldap_pvt_thread_mutex_unlock( &pConn->c_mutex );
237 void slapi_int_connection_destroy( Connection **pConn )
239 Connection *conn = *pConn;
242 if ( pConn == NULL ) {
246 op = (Operation *)conn->c_pending_ops.stqh_first;
248 slap_graduate_commit_csn( op );
250 if ( op->o_req_dn.bv_val != NULL ) {
251 slapi_ch_free( (void **)&op->o_req_dn.bv_val );
253 if ( op->o_req_ndn.bv_val != NULL ) {
254 slapi_ch_free( (void **)&op->o_req_ndn.bv_val );
257 if ( conn->c_sb != NULL ) {
258 ber_sockbuf_free( conn->c_sb );
261 slapi_ch_free( (void **)&op );
263 slapi_ch_free( (void **)pConn );
267 * Function : values2obj
268 * Convert an array of strings into a BerVarray.
279 if ( ppValue == NULL ) {
284 for ( i = 0; ppValue[i] != NULL; i++ )
287 tmpberval = (BerVarray)slapi_ch_malloc( (i+1) * (sizeof(struct berval)) );
288 if ( tmpberval == NULL ) {
289 return LDAP_NO_MEMORY;
291 for ( i = 0; ppValue[i] != NULL; i++ ) {
292 size_t len = strlen( ppValue[i] );
294 tmpberval[i].bv_val = slapi_ch_malloc( len + 1 );
295 AC_MEMCPY( tmpberval[i].bv_val, ppValue[i], len + 1 );
296 tmpberval[i].bv_len = len;
298 tmpberval[i].bv_val = NULL;
299 tmpberval[i].bv_len = 0;
308 struct berval **bvptr,
314 if ( bvptr == NULL ) {
319 for ( i = 0; bvptr[i] != NULL; i++ )
322 tmpberval = (BerVarray)slapi_ch_malloc( (i + 1) * sizeof(struct berval));
323 if ( tmpberval == NULL ) {
324 return LDAP_NO_MEMORY;
327 for ( i = 0; bvptr[i] != NULL; i++ ) {
328 tmpberval[i].bv_val = slapi_ch_malloc( bvptr[i]->bv_len );
329 tmpberval[i].bv_len = bvptr[i]->bv_len;
330 AC_MEMCPY( tmpberval[i].bv_val, bvptr[i]->bv_val, bvptr[i]->bv_len );
333 tmpberval[i].bv_val = NULL;
334 tmpberval[i].bv_len = 0;
342 * Function : slapi_int_ldapmod_to_entry
343 * convert a dn plus an array of LDAPMod struct ptrs to an entry structure
344 * with a link list of the correspondent attributes.
345 * Return value : LDAP_SUCCESS
350 slapi_int_ldapmod_to_entry(
355 struct berval dn = BER_BVNULL;
361 Modifications *modlist = NULL;
362 Modifications **modtail = &modlist;
365 int rc = LDAP_SUCCESS;
368 const char *text = NULL;
370 op = (Operation *)pConn->c_pending_ops.stqh_first;
372 pEntry = (Entry *) ch_calloc( 1, sizeof(Entry) );
373 if ( pEntry == NULL) {
378 dn.bv_val = slapi_ch_strdup(ldn);
379 dn.bv_len = strlen(ldn);
381 rc = dnPrettyNormal( NULL, &dn, &pEntry->e_name, &pEntry->e_nname, NULL );
382 if ( rc != LDAP_SUCCESS ) {
386 if ( rc == LDAP_SUCCESS ) {
387 for ( i = 0, pMod = mods[0]; rc == LDAP_SUCCESS && pMod != NULL; pMod = mods[++i]) {
390 if ( (pMod->mod_op & LDAP_MOD_BVALUES) != 0 ) {
392 * Convert an array of pointers to bervals to
393 * an array of bervals. Note that we need to copy the
394 * values too, as the slap_mods_check() will free the
395 * original values after prettying; the modifications
396 * being passed in may not have been allocated on the
399 rc = bvptr2obj_copy( pMod->mod_bvalues, &bv );
400 if ( rc != LDAP_SUCCESS ) goto cleanup;
401 tmp.sml_type.bv_val = pMod->mod_type;
402 tmp.sml_type.bv_len = strlen( pMod->mod_type );
404 tmp.sml_nvalues = NULL;
406 mod = (Modifications *) ch_malloc( sizeof(Modifications) );
408 mod->sml_op = LDAP_MOD_ADD;
409 mod->sml_next = NULL;
410 mod->sml_desc = NULL;
411 mod->sml_type = tmp.sml_type;
412 mod->sml_values = tmp.sml_values;
413 mod->sml_nvalues = tmp.sml_nvalues;
416 modtail = &mod->sml_next;
419 /* attr values are in string format, need to be converted */
420 /* to an array of bervals */
421 if ( pMod->mod_values == NULL ) {
424 rc = values2obj_copy( pMod->mod_values, &bv );
425 if ( rc != LDAP_SUCCESS ) goto cleanup;
426 tmp.sml_type.bv_val = pMod->mod_type;
427 tmp.sml_type.bv_len = strlen( pMod->mod_type );
429 tmp.sml_nvalues = NULL;
431 mod = (Modifications *) ch_malloc( sizeof(Modifications) );
433 mod->sml_op = LDAP_MOD_ADD;
434 mod->sml_next = NULL;
435 mod->sml_desc = NULL;
436 mod->sml_type = tmp.sml_type;
437 mod->sml_values = tmp.sml_values;
438 mod->sml_nvalues = tmp.sml_nvalues;
441 modtail = &mod->sml_next;
444 } /* for each LDAPMod */
447 op->o_bd = select_backend( &pEntry->e_nname, 0, 0 );
448 if ( op->o_bd == NULL ) {
449 rc = LDAP_PARTIAL_RESULTS;
451 int repl_user = be_isupdate_dn( op->o_bd, &op->o_bd->be_rootdn );
452 if ( !op->o_bd->be_update_ndn.bv_len || repl_user ) {
453 int update = !BER_BVISNULL( &op->o_bd->be_update_ndn );
454 char textbuf[ SLAP_TEXT_BUFLEN ];
455 size_t textlen = sizeof( textbuf );
457 rc = slap_mods_check( modlist, &text,
458 textbuf, textlen, NULL );
459 if ( rc != LDAP_SUCCESS) {
464 rc = slap_mods_no_user_mod_check( op, modlist,
465 &text, textbuf, textlen );
466 if ( rc != LDAP_SUCCESS) {
472 rc = slap_mods_opattrs( op, modlist, modtail,
473 &text, textbuf, textlen, 1 );
474 if ( rc != LDAP_SUCCESS) {
479 rc = slap_mods2entry( modlist, &pEntry, repl_user,
480 0, &text, textbuf, textlen );
481 if (rc != LDAP_SUCCESS) {
492 slapi_ch_free( (void **)&dn.bv_val );
493 if ( modlist != NULL )
494 slap_mods_free( modlist );
495 if ( rc != LDAP_SUCCESS ) {
496 if ( pEntry != NULL ) {
497 slapi_entry_free( pEntry );
505 /* Function : slapi_delete_internal
507 * Description : Plugin functions call this routine to delete an entry
508 * in the backend directly
509 * Return values : LDAP_SUCCESS
513 * LDAP_UNWILLING_TO_PERFORM
516 slapi_delete_internal(
518 LDAPControl **controls,
522 Connection *pConn = NULL;
523 Operation *op = NULL;
524 Slapi_PBlock *pPB = NULL;
525 SlapReply rs = { REP_RESULT };
526 struct berval dn = BER_BVNULL;
528 int manageDsaIt = SLAP_CONTROL_NONE;
532 rs.sr_err = LDAP_PARAM_ERROR;
536 pConn = slapi_int_init_connection( NULL, LDAP_REQ_DELETE );
538 rs.sr_err = LDAP_NO_MEMORY;
542 op = (Operation *)pConn->c_pending_ops.stqh_first;
543 pPB = (Slapi_PBlock *)op->o_pb;
544 op->o_ctrls = controls;
546 dn.bv_val = slapi_ch_strdup(ldn);
547 dn.bv_len = strlen(ldn);
548 rs.sr_err = dnPrettyNormal( NULL, &dn, &op->o_req_dn, &op->o_req_ndn, NULL );
549 if ( rs.sr_err != LDAP_SUCCESS )
552 if ( slapi_control_present( controls,
553 SLAPI_CONTROL_MANAGEDSAIT_OID, NULL, &isCritical) ) {
554 manageDsaIt = isCritical ? SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
557 op->o_bd = select_backend( &op->o_req_ndn, manageDsaIt, 1 );
558 if ( op->o_bd == NULL ) {
559 rs.sr_err = LDAP_PARTIAL_RESULTS;
563 op->o_dn = pConn->c_dn = op->o_bd->be_rootdn;
564 op->o_ndn = pConn->c_ndn = op->o_bd->be_rootndn;
566 if ( op->o_bd->be_delete ) {
567 int repl_user = be_isupdate( op );
568 if ( !op->o_bd->be_update_ndn.bv_len || repl_user ) {
569 slap_callback cb = { NULL, slap_replog_cb, NULL, NULL };
570 if ( log_change ) op->o_callback = &cb;
571 if ( (*op->o_bd->be_delete)( op, &rs ) ) {
572 rs.sr_err = LDAP_OTHER;
575 rs.sr_err = LDAP_REFERRAL;
578 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
583 slapi_pblock_set( pPB, SLAPI_PLUGIN_INTOP_RESULT, (void *)rs.sr_err );
586 slapi_ch_free( (void **)&dn.bv_val );
589 slapi_int_connection_destroy( &pConn );
594 #endif /* LDAP_SLAPI */
598 static Slapi_PBlock *
599 slapi_int_add_entry_locked(
602 LDAPControl **controls,
605 Operation *op = NULL;
606 Slapi_PBlock *pPB = NULL;
608 int manageDsaIt = SLAP_CONTROL_NONE;
610 SlapReply rs = { REP_RESULT };
613 rs.sr_err = LDAP_PARAM_ERROR;
617 if ( slapi_control_present( controls, LDAP_CONTROL_MANAGEDSAIT,
618 NULL, &isCritical ) ) {
619 manageDsaIt = isCritical ? SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
622 op = (Operation *)pConn->c_pending_ops.stqh_first;
623 pPB = (Slapi_PBlock *)op->o_pb;
624 op->o_ctrls = controls;
626 op->o_bd = select_backend( &((*e)->e_nname), manageDsaIt, 1 );
627 if ( op->o_bd == NULL ) {
628 rs.sr_err = LDAP_PARTIAL_RESULTS;
632 op->o_dn = pConn->c_dn = op->o_bd->be_rootdn;
633 op->o_ndn = pConn->c_ndn = op->o_bd->be_rootndn;
634 op->oq_add.rs_e = *e;
636 if ( op->o_bd->be_add ) {
637 int repl_user = be_isupdate( op );
638 if ( !op->o_bd->be_update_ndn.bv_len || repl_user ) {
639 slap_callback cb = { NULL, slap_replog_cb, NULL, NULL };
640 if ( log_changes ) op->o_callback = &cb;
641 if ( (*op->o_bd->be_add)( op, &rs ) == 0 ) {
642 be_entry_release_w( op, *e );
646 rs.sr_err = LDAP_REFERRAL;
649 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
654 slapi_pblock_set( pPB, SLAPI_PLUGIN_INTOP_RESULT, (void *)rs.sr_err );
659 #endif /* LDAP_SLAPI */
662 slapi_add_entry_internal(
664 LDAPControl **controls,
668 Slapi_PBlock *pb = NULL;
669 Slapi_Entry *entry = NULL;
670 Connection *pConn = NULL;
672 pConn = slapi_int_init_connection( NULL, LDAP_REQ_ADD );
673 if ( pConn == NULL ) {
678 * We make a copy to avoid an entry that may be freed later
679 * by the caller being placed in the cache.
681 entry = slapi_entry_dup( e );
682 pb = slapi_int_add_entry_locked( pConn, &entry, controls, log_changes );
683 if ( entry != NULL ) {
684 slapi_entry_free( entry );
687 slapi_int_connection_destroy( &pConn );
699 LDAPControl **controls,
703 LDAPMod *pMod = NULL;
704 Connection *pConn = NULL;
705 Slapi_PBlock *pb = NULL;
706 Entry *pEntry = NULL;
707 int i, rc = LDAP_SUCCESS;
709 if ( mods == NULL || *mods == NULL || dn == NULL || *dn == '\0' ) {
710 rc = LDAP_PARAM_ERROR ;
713 if ( rc == LDAP_SUCCESS ) {
714 for ( i = 0, pMod = mods[0]; pMod != NULL; pMod = mods[++i] ) {
715 if ( (pMod->mod_op & LDAP_MOD_OP ) != LDAP_MOD_ADD ) {
722 if ( rc == LDAP_SUCCESS ) {
723 pConn = slapi_int_init_connection( NULL, LDAP_REQ_ADD );
724 if ( pConn != NULL ) {
725 pEntry = slapi_int_ldapmod_to_entry( pConn, dn, mods );
726 if ( pEntry == NULL ) {
732 if ( rc != LDAP_SUCCESS ) {
733 pb = slapi_pblock_new();
734 slapi_pblock_set( pb, SLAPI_PLUGIN_INTOP_RESULT, (void *)rc );
736 pb = slapi_int_add_entry_locked( pConn, &pEntry, controls, log_changes );
739 if ( pEntry != NULL ) {
740 slapi_entry_free( pEntry );
743 slapi_int_connection_destroy( &pConn );
748 #endif /* LDAP_SLAPI */
751 /* Function : slapi_modrdn_internal
753 * Description : Plugin functions call this routine to modify the rdn
754 * of an entry in the backend directly
755 * Return values : LDAP_SUCCESS
759 * LDAP_UNWILLING_TO_PERFORM
761 * NOTE: This function does not support the "newSuperior" option from LDAP V3.
764 slapi_modrdn_internal(
768 LDAPControl **controls,
772 struct berval dn = BER_BVNULL;
773 struct berval newrdn = BER_BVNULL;
774 Connection *pConn = NULL;
775 Operation *op = NULL;
776 Slapi_PBlock *pPB = NULL;
777 int manageDsaIt = SLAP_CONTROL_NONE;
779 SlapReply rs = { REP_RESULT };
781 pConn = slapi_int_init_connection( NULL, LDAP_REQ_MODRDN );
782 if ( pConn == NULL) {
783 rs.sr_err = LDAP_NO_MEMORY;
787 op = (Operation *)pConn->c_pending_ops.stqh_first;
788 pPB = (Slapi_PBlock *)op->o_pb;
789 op->o_ctrls = controls;
791 if ( slapi_control_present( controls,
792 SLAPI_CONTROL_MANAGEDSAIT_OID, NULL, &isCritical ) ) {
793 manageDsaIt = isCritical ? SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
796 op->o_bd = select_backend( &op->o_req_ndn, manageDsaIt, 1 );
797 if ( op->o_bd == NULL ) {
798 rs.sr_err = LDAP_PARTIAL_RESULTS;
802 op->o_dn = pConn->c_dn = op->o_bd->be_rootdn;
803 op->o_ndn = pConn->c_ndn = op->o_bd->be_rootndn;
805 dn.bv_val = slapi_ch_strdup( olddn );
806 dn.bv_len = strlen( olddn );
808 rs.sr_err = dnPrettyNormal( NULL, &dn, &op->o_req_dn, &op->o_req_ndn, NULL );
809 if ( rs.sr_err != LDAP_SUCCESS ) {
813 if ( op->o_req_dn.bv_len == 0 ) {
814 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
818 newrdn.bv_val = slapi_ch_strdup( lnewrdn );
819 newrdn.bv_len = strlen( lnewrdn );
821 rs.sr_err = dnPrettyNormal( NULL, &newrdn, &op->oq_modrdn.rs_newrdn, &op->oq_modrdn.rs_nnewrdn, NULL );
822 if ( rs.sr_err != LDAP_SUCCESS ) {
826 if ( rdn_validate( &op->oq_modrdn.rs_nnewrdn ) != LDAP_SUCCESS ) {
830 op->oq_modrdn.rs_newSup = NULL;
831 op->oq_modrdn.rs_nnewSup = NULL;
832 op->oq_modrdn.rs_deleteoldrdn = deloldrdn;
834 if ( op->o_bd->be_modrdn ) {
835 int repl_user = be_isupdate( op );
836 if ( !op->o_bd->be_update_ndn.bv_len || repl_user ) {
837 slap_callback cb = { NULL, slap_replog_cb, NULL, NULL };
838 if ( log_change ) op->o_callback = &cb;
839 if ( (*op->o_bd->be_modrdn)( op, &rs ) ) {
840 rs.sr_err = LDAP_OTHER;
843 rs.sr_err = LDAP_REFERRAL;
846 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
852 slapi_pblock_set( pPB, SLAPI_PLUGIN_INTOP_RESULT, (void *)rs.sr_err );
856 slapi_ch_free( (void **)&dn.bv_val );
859 slapi_ch_free( (void **)&newrdn.bv_val );
860 if ( op->oq_modrdn.rs_newrdn.bv_val )
861 slapi_ch_free( (void **)&op->oq_modrdn.rs_newrdn.bv_val );
862 if ( op->oq_modrdn.rs_nnewrdn.bv_val )
863 slapi_ch_free( (void **)&op->oq_modrdn.rs_nnewrdn.bv_val );
865 slapi_int_connection_destroy( &pConn );
870 #endif /* LDAP_SLAPI */
873 /* Function : slapi_modify_internal
875 * Description: Plugin functions call this routine to modify an entry
876 * in the backend directly
877 * Return values : LDAP_SUCCESS
881 * LDAP_UNWILLING_TO_PERFORM
884 slapi_modify_internal(
887 LDAPControl **controls,
892 Connection *pConn = NULL;
893 Operation *op = NULL;
894 Slapi_PBlock *pPB = NULL;
896 struct berval dn = BER_BVNULL;
898 int manageDsaIt = SLAP_CONTROL_NONE;
903 Modifications *modlist = NULL;
904 Modifications **modtail = &modlist;
907 SlapReply rs = { REP_RESULT };
909 if ( mods == NULL || *mods == NULL || ldn == NULL ) {
910 rs.sr_err = LDAP_PARAM_ERROR ;
914 pConn = slapi_int_init_connection( NULL, LDAP_REQ_MODIFY );
915 if ( pConn == NULL ) {
916 rs.sr_err = LDAP_NO_MEMORY;
920 op = (Operation *)pConn->c_pending_ops.stqh_first;
921 pPB = (Slapi_PBlock *)op->o_pb;
922 op->o_ctrls = controls;
924 dn.bv_val = slapi_ch_strdup( ldn );
925 dn.bv_len = strlen( ldn );
926 rs.sr_err = dnPrettyNormal( NULL, &dn, &op->o_req_dn, &op->o_req_ndn, NULL );
927 if ( rs.sr_err != LDAP_SUCCESS ) {
931 if ( slapi_control_present( controls,
932 SLAPI_CONTROL_MANAGEDSAIT_OID, NULL, &isCritical ) ) {
933 manageDsaIt = isCritical ? SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
936 op->o_bd = select_backend( &op->o_req_ndn, manageDsaIt, 1 );
937 if ( op->o_bd == NULL ) {
938 rs.sr_err = LDAP_PARTIAL_RESULTS;
942 op->o_dn = pConn->c_dn = op->o_bd->be_rootdn;
943 op->o_ndn = pConn->c_ndn = op->o_bd->be_rootndn;
945 for ( i = 0, pMod = mods[0];
946 rs.sr_err == LDAP_SUCCESS && pMod != NULL;
951 if ( (pMod->mod_op & LDAP_MOD_BVALUES) != 0 ) {
953 * attr values are in berval format
954 * convert an array of pointers to bervals
955 * to an array of bervals
957 rs.sr_err = bvptr2obj_copy( pMod->mod_bvalues, &bv );
958 if ( rs.sr_err != LDAP_SUCCESS )
960 tmp.sml_type.bv_val = pMod->mod_type;
961 tmp.sml_type.bv_len = strlen( pMod->mod_type );
963 tmp.sml_nvalues = NULL;
965 mod = (Modifications *)ch_malloc( sizeof(Modifications) );
967 mod->sml_op = pMod->mod_op & LDAP_MOD_OP;
968 mod->sml_next = NULL;
969 mod->sml_desc = NULL;
970 mod->sml_type = tmp.sml_type;
971 mod->sml_values = tmp.sml_values;
972 mod->sml_nvalues = tmp.sml_nvalues;
974 rs.sr_err = values2obj_copy( pMod->mod_values, &bv );
975 if ( rs.sr_err != LDAP_SUCCESS )
977 tmp.sml_type.bv_val = pMod->mod_type;
978 tmp.sml_type.bv_len = strlen( pMod->mod_type );
980 tmp.sml_nvalues = NULL;
982 mod = (Modifications *) ch_malloc( sizeof(Modifications) );
984 mod->sml_op = pMod->mod_op & LDAP_MOD_OP;
985 mod->sml_next = NULL;
986 mod->sml_desc = NULL;
987 mod->sml_type = tmp.sml_type;
988 mod->sml_values = tmp.sml_values;
989 mod->sml_nvalues = tmp.sml_nvalues;
992 modtail = &mod->sml_next;
994 switch( pMod->mod_op & LDAP_MOD_OP ) {
996 if ( mod->sml_values == NULL ) {
997 rs.sr_err = LDAP_PROTOCOL_ERROR;
1002 case LDAP_MOD_DELETE:
1003 case LDAP_MOD_REPLACE:
1004 case LDAP_MOD_INCREMENT:
1008 rs.sr_err = LDAP_PROTOCOL_ERROR;
1014 if ( op->o_req_ndn.bv_len == 0 ) {
1015 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
1019 op->oq_modify.rs_modlist = modlist;
1021 if ( op->o_bd->be_modify ) {
1022 int repl_user = be_isupdate( op );
1023 if ( !op->o_bd->be_update_ndn.bv_len || repl_user ) {
1024 int update = !BER_BVISEMPTY( &op->o_bd->be_update_ndn );
1025 const char *text = NULL;
1026 char textbuf[ SLAP_TEXT_BUFLEN ];
1027 size_t textlen = sizeof( textbuf );
1028 slap_callback cb = { NULL, slap_replog_cb, NULL, NULL };
1030 rs.sr_err = slap_mods_check( modlist,
1031 &text, textbuf, textlen, NULL );
1032 if ( rs.sr_err != LDAP_SUCCESS ) {
1037 rs.sr_err = slap_mods_no_user_mod_check( op, modlist,
1038 &text, textbuf, textlen );
1039 if ( rs.sr_err != LDAP_SUCCESS ) {
1045 rs.sr_err = slap_mods_opattrs( op, modlist,
1046 modtail, &text, textbuf,
1048 if ( rs.sr_err != LDAP_SUCCESS ) {
1052 if ( log_change ) op->o_callback = &cb;
1053 if ( (*op->o_bd->be_modify)( op, &rs ) ) {
1054 rs.sr_err = LDAP_OTHER;
1057 rs.sr_err = LDAP_REFERRAL;
1060 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
1066 slapi_pblock_set( pPB, SLAPI_PLUGIN_INTOP_RESULT, (void *)rs.sr_err );
1069 slapi_ch_free( (void **)&dn.bv_val );
1071 if ( modlist != NULL )
1072 slap_mods_free( modlist );
1074 slapi_int_connection_destroy( &pConn );
1079 #endif /* LDAP_SLAPI */
1083 slapi_search_internal(
1087 LDAPControl **controls,
1093 Operation *op = NULL;
1094 Slapi_PBlock *pPB = NULL;
1095 struct berval dn = BER_BVNULL;
1096 Filter *filter=NULL;
1097 struct berval fstr = BER_BVNULL;
1098 AttributeName *an = NULL;
1099 const char *text = NULL;
1101 int manageDsaIt = SLAP_CONTROL_NONE;
1105 SlapReply rs = { REP_RESULT };
1107 c = slapi_int_init_connection( NULL, LDAP_REQ_SEARCH );
1109 rs.sr_err = LDAP_NO_MEMORY;
1113 op = (Operation *)c->c_pending_ops.stqh_first;
1114 pPB = (Slapi_PBlock *)op->o_pb;
1115 op->o_ctrls = controls;
1117 if ( ldn != NULL ) {
1118 dn.bv_val = slapi_ch_strdup(ldn);
1119 dn.bv_len = strlen(ldn);
1122 rs.sr_err = dnPrettyNormal( NULL, &dn, &op->o_req_dn, &op->o_req_ndn, NULL );
1123 if ( rs.sr_err != LDAP_SUCCESS ) {
1127 if ( scope != LDAP_SCOPE_BASE &&
1128 scope != LDAP_SCOPE_ONELEVEL &&
1129 scope != LDAP_SCOPE_SUBTREE ) {
1130 rs.sr_err = LDAP_PROTOCOL_ERROR;
1134 filter = slapi_str2filter(filStr);
1135 if ( filter == NULL ) {
1136 rs.sr_err = LDAP_PROTOCOL_ERROR;
1140 filter2bv( filter, &fstr );
1142 for ( i = 0; attrs != NULL && attrs[i] != NULL; i++ ) {
1143 ; /* count the number of attributes */
1147 an = (AttributeName *)slapi_ch_calloc( (i + 1), sizeof(AttributeName) );
1148 for (i = 0; attrs[i] != 0; i++) {
1149 an[i].an_desc = NULL;
1151 an[i].an_oc_exclude = 0;
1152 an[i].an_name.bv_val = slapi_ch_strdup(attrs[i]);
1153 an[i].an_name.bv_len = strlen(attrs[i]);
1154 slap_bv2ad( &an[i].an_name, &an[i].an_desc, &text );
1156 an[i].an_name.bv_val = NULL;
1159 memset( &rs, 0, sizeof(rs) );
1160 rs.sr_type = REP_RESULT;
1161 rs.sr_err = LDAP_SUCCESS;
1162 rs.sr_entry = NULL; /* paranoia */
1164 if ( scope == LDAP_SCOPE_BASE ) {
1167 if ( op->o_req_ndn.bv_len == 0 ) {
1168 rs.sr_err = root_dse_info( c, &rs.sr_entry, &rs.sr_text );
1171 if( rs.sr_err != LDAP_SUCCESS ) {
1172 send_ldap_result( op, &rs );
1174 } else if ( rs.sr_entry != NULL ) {
1175 rs.sr_err = test_filter( op, rs.sr_entry, filter );
1177 if ( rs.sr_err == LDAP_COMPARE_TRUE ) {
1178 rs.sr_type = REP_SEARCH;
1179 rs.sr_err = LDAP_SUCCESS;
1181 rs.sr_operational_attrs = NULL;
1182 rs.sr_flags = REP_ENTRY_MODIFIABLE;
1184 send_search_entry( op, &rs );
1187 entry_free( rs.sr_entry );
1189 rs.sr_type = REP_RESULT;
1190 rs.sr_err = LDAP_SUCCESS;
1192 send_ldap_result( op, &rs );
1198 if ( !op->o_req_ndn.bv_len && default_search_nbase.bv_len ) {
1199 slapi_ch_free( (void **)&op->o_req_dn.bv_val );
1200 slapi_ch_free( (void **)&op->o_req_ndn.bv_val );
1202 ber_dupbv( &op->o_req_dn, &default_search_base );
1203 ber_dupbv( &op->o_req_ndn, &default_search_nbase );
1206 if ( slapi_control_present( controls,
1207 LDAP_CONTROL_MANAGEDSAIT, NULL, &isCritical ) ) {
1208 manageDsaIt = isCritical ? SLAP_CONTROL_CRITICAL : SLAP_CONTROL_NONCRITICAL;
1211 op->o_bd = select_backend( &op->o_req_ndn, manageDsaIt, 1 );
1212 if ( op->o_bd == NULL ) {
1213 if ( manageDsaIt > SLAP_CONTROL_NONE ) {
1214 rs.sr_err = LDAP_NO_SUCH_OBJECT;
1216 rs.sr_err = LDAP_PARTIAL_RESULTS;
1221 op->o_dn = c->c_dn = op->o_bd->be_rootdn;
1222 op->o_ndn = c->c_ndn = op->o_bd->be_rootndn;
1224 op->oq_search.rs_scope = scope;
1225 op->oq_search.rs_deref = 0;
1226 op->oq_search.rs_slimit = SLAP_NO_LIMIT;
1227 op->oq_search.rs_tlimit = SLAP_NO_LIMIT;
1228 op->oq_search.rs_attrsonly = attrsonly;
1229 op->oq_search.rs_attrs = an;
1230 op->oq_search.rs_filter = filter;
1231 op->oq_search.rs_filterstr = fstr;
1233 if ( op->o_bd->be_search ) {
1234 if ( (*op->o_bd->be_search)( op, &rs ) != 0 ) {
1235 rs.sr_err = LDAP_OTHER;
1238 rs.sr_err = LDAP_UNWILLING_TO_PERFORM;
1244 slapi_pblock_set( pPB, SLAPI_PLUGIN_INTOP_RESULT, (void *)rs.sr_err );
1247 slapi_ch_free( (void **)&dn.bv_val );
1249 slapi_filter_free( filter, 1 );
1251 slapi_ch_free( (void **)&fstr.bv_val );
1253 slapi_ch_free( (void **)&an );
1255 slapi_int_connection_destroy( &c );
1260 #endif /* LDAP_SLAPI */