1 /* syncrepl.c -- Replication Engine which uses the LDAP Sync protocol */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 2003-2004 The OpenLDAP Foundation.
6 * Portions Copyright 2003 by IBM Corporation.
7 * Portions Copyright 2003 by Howard Chu, Symas Corporation.
10 * Redistribution and use in source and binary forms, with or without
11 * modification, are permitted only as authorized by the OpenLDAP
14 * A copy of this license is available in the file LICENSE in the
15 * top-level directory of the distribution or, alternatively, at
16 * <http://www.OpenLDAP.org/license.html>.
23 #include <ac/string.h>
24 #include <ac/socket.h>
28 #include "lutil_ldap.h"
32 /* FIXME: for ldap_ld_free() */
34 #include "../../libraries/libldap/ldap-int.h"
36 #define SYNCREPL_STR "syncreplxxx"
39 static const struct berval slap_syncrepl_bvc = BER_BVC(SYNCREPL_STR);
40 static const struct berval slap_syncrepl_cn_bvc = BER_BVC(CN_STR SYNCREPL_STR);
42 static int syncuuid_cmp( const void *, const void * );
43 static void avl_ber_bvfree( void * );
44 static void syncrepl_del_nonpresent( Operation *, syncinfo_t * );
46 /* callback functions */
47 static int dn_callback( struct slap_op *, struct slap_rep * );
48 static int nonpresent_callback( struct slap_op *, struct slap_rep * );
49 static int null_callback( struct slap_op *, struct slap_rep * );
51 static AttributeDescription *sync_descs[4];
54 init_syncrepl(syncinfo_t *si)
57 char **attrs, **exattrs;
59 if ( !sync_descs[0] ) {
60 sync_descs[0] = slap_schema.si_ad_objectClass;
61 sync_descs[1] = slap_schema.si_ad_structuralObjectClass;
62 sync_descs[2] = slap_schema.si_ad_entryCSN;
66 if ( si->si_allattrs && si->si_allopattrs )
69 attrs = anlist2attrs( si->si_anlist );
72 if ( si->si_allattrs ) {
75 if ( !is_at_operational( at_find( attrs[i] ))) {
76 for ( j = i; attrs[j] != NULL; j++ ) {
79 attrs[j] = attrs[j+1];
85 attrs = ( char ** ) ch_realloc( attrs, (i + 2)*sizeof( char * ) );
86 attrs[i] = ch_strdup("*");
89 } else if ( si->si_allopattrs ) {
92 if ( is_at_operational( at_find( attrs[i] ))) {
93 for ( j = i; attrs[j] != NULL; j++ ) {
96 attrs[j] = attrs[j+1];
102 attrs = ( char ** ) ch_realloc( attrs, (i + 2)*sizeof( char * ) );
103 attrs[i] = ch_strdup("+");
107 for ( i = 0; sync_descs[i] != NULL; i++ ) {
110 if ( !strcmp( attrs[j], sync_descs[i]->ad_cname.bv_val )) {
111 for ( k = j; attrs[k] != NULL; k++ ) {
114 attrs[k] = attrs[k+1];
122 for ( n = 0; attrs[ n ] != NULL; n++ ) /* empty */;
124 if ( si->si_allopattrs ) {
125 attrs = ( char ** ) ch_realloc( attrs, (n + 2)*sizeof( char * ));
127 attrs = ( char ** ) ch_realloc( attrs, (n + 4)*sizeof( char * ));
130 if ( attrs == NULL ) {
131 Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 );
135 if ( si->si_allopattrs ) {
136 attrs[n++] = ch_strdup( sync_descs[0]->ad_cname.bv_val );
138 for ( i = 0; sync_descs[ i ] != NULL; i++ ) {
139 attrs[ n++ ] = ch_strdup ( sync_descs[i]->ad_cname.bv_val );
147 if ( si->si_allattrs == si->si_allopattrs ) {
148 attrs = (char**) ch_malloc( 3 * sizeof(char*) );
149 attrs[i++] = ch_strdup( "*" );
150 attrs[i++] = ch_strdup( "+" );
151 } else if ( si->si_allattrs && !si->si_allopattrs ) {
152 for ( n = 0; sync_descs[ n ] != NULL; n++ ) ;
153 attrs = (char**) ch_malloc( (n+1)* sizeof(char*) );
154 attrs[i++] = ch_strdup( "*" );
155 for ( j = 1; sync_descs[ j ] != NULL; j++ ) {
156 attrs[i++] = ch_strdup ( sync_descs[j]->ad_cname.bv_val );
158 } else if ( !si->si_allattrs && si->si_allopattrs ) {
159 attrs = (char**) ch_malloc( 3 * sizeof(char*) );
160 attrs[i++] = ch_strdup( "+" );
161 attrs[i++] = ch_strdup( sync_descs[0]->ad_cname.bv_val );
166 si->si_attrs = attrs;
168 exattrs = anlist2attrs( si->si_exanlist );
171 for ( n = 0; exattrs[n] != NULL; n++ ) ;
173 for ( i = 0; sync_descs[i] != NULL; i++ ) {
175 while ( exattrs[j] != NULL ) {
176 if ( !strcmp( exattrs[j], sync_descs[i]->ad_cname.bv_val )) {
177 for ( k = j; exattrs[k] != NULL; k++ ) {
179 ch_free( exattrs[k] );
180 exattrs[k] = exattrs[k+1];
188 for ( i = 0; exattrs[i] != NULL; i++ ) {
189 for ( j = 0; si->si_anlist[j].an_name.bv_val; j++ ) {
191 if ( ( oc = si->si_anlist[j].an_oc ) ) {
193 while ( oc->soc_required[k] ) {
194 if ( !strcmp( exattrs[i],
195 oc->soc_required[k]->sat_cname.bv_val )) {
196 for ( l = i; exattrs[l]; l++ ) {
198 ch_free( exattrs[i] );
199 exattrs[l] = exattrs[l+1];
209 for ( i = 0; exattrs[i] != NULL; i++ ) ;
212 exattrs = (char **) ch_realloc( exattrs, (i + 1)*sizeof(char *));
215 si->si_exattrs = exattrs;
223 BerElementBuffer berbuf;
224 BerElement *ber = (BerElement *)&berbuf;
225 LDAPControl c[2], *ctrls[3];
226 struct timeval timeout;
230 /* setup LDAP SYNC control */
231 ber_init2( ber, NULL, LBER_USE_DER );
232 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &ctx );
234 if ( si->si_syncCookie.octet_str &&
235 !BER_BVISNULL( &si->si_syncCookie.octet_str[0] ) )
237 ber_printf( ber, "{eO}",
239 &si->si_syncCookie.octet_str[0] );
241 ber_printf( ber, "{e}",
245 if ( (rc = ber_flatten2( ber, &c[0].ldctl_value, 0 )) == LBER_ERROR ) {
250 c[0].ldctl_oid = LDAP_CONTROL_SYNC;
251 c[0].ldctl_iscritical = si->si_type < 0;
254 if ( si->si_authzId ) {
255 c[1].ldctl_oid = LDAP_CONTROL_PROXY_AUTHZ;
256 ber_str2bv( si->si_authzId, 0, 0, &c[1].ldctl_value );
257 c[1].ldctl_iscritical = 1;
264 timeout.tv_sec = si->si_tlimit;
267 rc = ldap_search_ext( si->si_ld, si->si_base.bv_val, si->si_scope,
268 si->si_filterstr.bv_val, si->si_attrs, si->si_attrsonly,
269 ctrls, NULL, si->si_tlimit > 0 ? &timeout : NULL,
270 si->si_slimit, &msgid );
281 int cmdline_cookie_found = 0;
283 char syncrepl_cbuf[sizeof(CN_STR SYNCREPL_STR)];
284 struct berval syncrepl_cn_bv;
285 struct sync_cookie *sc = NULL;
291 psub = &si->si_be->be_nsuffix[0];
293 /* Init connection to master */
294 rc = ldap_initialize( &si->si_ld, si->si_provideruri );
295 if ( rc != LDAP_SUCCESS ) {
296 Debug( LDAP_DEBUG_ANY,
297 "do_syncrep1: ldap_initialize failed (%s)\n",
298 si->si_provideruri, 0, 0 );
302 op->o_protocol = LDAP_VERSION3;
303 ldap_set_option( si->si_ld, LDAP_OPT_PROTOCOL_VERSION, &op->o_protocol );
308 rc = ldap_start_tls_s( si->si_ld, NULL, NULL );
309 if( rc != LDAP_SUCCESS ) {
310 Debug( LDAP_DEBUG_ANY,
311 "%s: ldap_start_tls failed (%d)\n",
312 si->si_tls == SYNCINFO_TLS_CRITICAL ? "Error" : "Warning",
314 if( si->si_tls == SYNCINFO_TLS_CRITICAL ) goto done;
318 if ( si->si_bindmethod == LDAP_AUTH_SASL ) {
319 #ifdef HAVE_CYRUS_SASL
322 if ( si->si_secprops != NULL ) {
323 rc = ldap_set_option( si->si_ld,
324 LDAP_OPT_X_SASL_SECPROPS, si->si_secprops);
326 if( rc != LDAP_OPT_SUCCESS ) {
327 Debug( LDAP_DEBUG_ANY, "Error: ldap_set_option "
328 "(%s,SECPROPS,\"%s\") failed!\n",
329 si->si_provideruri, si->si_secprops, 0 );
334 defaults = lutil_sasl_defaults( si->si_ld, si->si_saslmech,
335 si->si_realm, si->si_authcId, si->si_passwd, si->si_authzId );
337 rc = ldap_sasl_interactive_bind_s( si->si_ld,
345 lutil_sasl_freedefs( defaults );
347 /* FIXME: different error behaviors according to
349 * 2) on err policy : exit, retry, backoff ...
351 if ( rc != LDAP_SUCCESS ) {
352 Debug( LDAP_DEBUG_ANY, "do_syncrep1: "
353 "ldap_sasl_interactive_bind_s failed (%d)\n",
356 /* FIXME (see above comment) */
357 /* if Kerberos credentials cache is not active, retry */
358 if ( strcmp( si->si_saslmech, "GSSAPI" ) == 0 &&
359 rc == LDAP_LOCAL_ERROR )
361 rc = LDAP_SERVER_DOWN;
366 #else /* HAVE_CYRUS_SASL */
367 /* Should never get here, we trapped this at config time */
369 fprintf( stderr, "not compiled with SASL support\n" );
375 rc = ldap_bind_s( si->si_ld,
376 si->si_binddn, si->si_passwd, si->si_bindmethod );
377 if ( rc != LDAP_SUCCESS ) {
378 Debug( LDAP_DEBUG_ANY, "do_syncrep1: "
379 "ldap_bind_s failed (%d)\n", rc, 0, 0 );
384 /* Set SSF to strongest of TLS, SASL SSFs */
387 op->o_transport_ssf = 0;
389 if ( ldap_get_option( si->si_ld, LDAP_OPT_X_TLS_SSL_CTX, &ssl )
390 == LDAP_SUCCESS && ssl != NULL )
392 op->o_tls_ssf = ldap_pvt_tls_get_strength( ssl );
394 #endif /* HAVE_TLS */
395 ldap_get_option( si->si_ld, LDAP_OPT_X_SASL_SSF, &op->o_sasl_ssf );
396 op->o_ssf = ( op->o_sasl_ssf > op->o_tls_ssf )
397 ? op->o_sasl_ssf : op->o_tls_ssf;
399 /* get syncrepl cookie of shadow replica from subentry */
400 assert( si->si_rid < 1000 );
401 syncrepl_cn_bv.bv_val = syncrepl_cbuf;
402 syncrepl_cn_bv.bv_len = snprintf( syncrepl_cbuf, sizeof(syncrepl_cbuf),
403 CN_STR "syncrepl%ld", si->si_rid );
404 build_new_dn( &op->o_req_ndn, psub, &syncrepl_cn_bv, op->o_tmpmemctx );
405 op->o_req_dn = op->o_req_ndn;
407 LDAP_STAILQ_FOREACH( sc, &SLAPD_GLOBAL(sync_cookie), sc_next ) {
408 if ( si->si_rid == sc->rid ) {
409 cmdline_cookie_found = 1;
414 if ( cmdline_cookie_found ) {
415 /* cookie is supplied in the command line */
416 BerVarray cookie = NULL;
417 struct berval cookie_bv;
419 LDAP_STAILQ_REMOVE( &SLAPD_GLOBAL(sync_cookie), sc, sync_cookie, sc_next );
420 slap_sync_cookie_free( &si->si_syncCookie, 0 );
422 /* read stored cookie if it exists */
423 backend_attribute( op, NULL, &op->o_req_ndn,
424 slap_schema.si_ad_syncreplCookie, &cookie, ACL_READ );
427 /* no stored cookie */
428 if ( sc->ctxcsn == NULL ||
429 BER_BVISNULL( sc->ctxcsn ) ) {
430 /* if cmdline cookie does not have ctxcsn */
431 /* component, set it to an initial value */
432 slap_init_sync_cookie_ctxcsn( sc );
434 slap_dup_sync_cookie( &si->si_syncCookie, sc );
435 slap_sync_cookie_free( sc, 1 );
440 struct berval newcookie = BER_BVNULL;
441 ber_dupbv( &cookie_bv, &cookie[0] );
442 ber_bvarray_add( &si->si_syncCookie.octet_str, &cookie_bv );
443 slap_parse_sync_cookie( &si->si_syncCookie );
444 ber_bvarray_free( si->si_syncCookie.octet_str );
445 si->si_syncCookie.octet_str = NULL;
446 ber_bvarray_free_x( cookie, op->o_tmpmemctx );
447 if ( sc->sid != -1 ) {
448 /* command line cookie wins */
449 si->si_syncCookie.sid = sc->sid;
451 if ( sc->ctxcsn != NULL ) {
452 /* command line cookie wins */
453 if ( si->si_syncCookie.ctxcsn ) {
454 ber_bvarray_free( si->si_syncCookie.ctxcsn );
455 si->si_syncCookie.ctxcsn = NULL;
457 ber_dupbv( &cookie_bv, &sc->ctxcsn[0] );
458 ber_bvarray_add( &si->si_syncCookie.ctxcsn, &cookie_bv );
460 if ( sc->rid != -1 ) {
461 /* command line cookie wins */
462 si->si_syncCookie.rid = sc->rid;
464 slap_sync_cookie_free( sc, 1 );
466 slap_compose_sync_cookie( NULL, &newcookie,
467 &si->si_syncCookie.ctxcsn[0],
468 si->si_syncCookie.sid, si->si_syncCookie.rid );
469 ber_bvarray_add( &si->si_syncCookie.octet_str, &newcookie );
473 /* no command line cookie is specified */
474 if ( si->si_syncCookie.octet_str == NULL ) {
475 BerVarray cookie = NULL;
476 struct berval cookie_bv;
477 /* try to read stored cookie */
478 backend_attribute( op, NULL, &op->o_req_ndn,
479 slap_schema.si_ad_syncreplCookie, &cookie, ACL_READ );
481 ber_dupbv( &cookie_bv, &cookie[0] );
482 ber_bvarray_add( &si->si_syncCookie.octet_str, &cookie_bv );
483 slap_parse_sync_cookie( &si->si_syncCookie );
484 ber_bvarray_free_x( cookie, op->o_tmpmemctx );
489 rc = ldap_sync_search( si, op->o_tmpmemctx );
491 if( rc != LDAP_SUCCESS ) {
492 Debug( LDAP_DEBUG_ANY, "do_syncrep1: "
493 "ldap_search_ext: %s (%d)\n", ldap_err2string( rc ), rc, 0 );
499 ldap_unbind( si->si_ld );
504 slap_sl_free( op->o_req_ndn.bv_val, op->o_tmpmemctx );
514 LDAPControl **rctrls = NULL;
517 BerElementBuffer berbuf;
518 BerElement *ber = (BerElement *)&berbuf;
520 LDAPMessage *res = NULL;
521 LDAPMessage *msg = NULL;
524 struct berval *retdata = NULL;
529 struct berval syncUUID = BER_BVNULL;
530 struct sync_cookie syncCookie = { NULL, -1, NULL };
531 struct sync_cookie syncCookie_req = { NULL, -1, NULL };
532 struct berval cookie = BER_BVNULL;
540 Modifications *modlist = NULL;
545 struct timeval *tout_p = NULL;
546 struct timeval tout = { 0, 0 };
548 int refreshDeletes = 0;
550 BerVarray syncUUIDs = NULL;
553 if ( SLAPD_GLOBAL(shutdown) ) {
558 ber_init2( ber, NULL, LBER_USE_DER );
559 ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
561 Debug( LDAP_DEBUG_TRACE, "=>do_syncrep2\n", 0, 0, 0 );
563 psub = &si->si_be->be_nsuffix[0];
565 slap_dup_sync_cookie( &syncCookie_req, &si->si_syncCookie );
567 if ( abs(si->si_type) == LDAP_SYNC_REFRESH_AND_PERSIST ) {
573 while (( rc = ldap_result( si->si_ld, LDAP_RES_ANY, LDAP_MSG_ONE,
574 tout_p, &res )) > 0 )
576 if ( SLAPD_GLOBAL(shutdown) ) {
580 for( msg = ldap_first_message( si->si_ld, res );
582 msg = ldap_next_message( si->si_ld, msg ) )
584 switch( ldap_msgtype( msg ) ) {
585 case LDAP_RES_SEARCH_ENTRY:
586 ldap_get_entry_controls( si->si_ld, msg, &rctrls );
587 /* we can't work without the control */
589 Debug( LDAP_DEBUG_ANY, "do_syncrep2 : "
590 "got search entry without "
591 "control\n", 0, 0, 0 );
596 ber_init2( ber, &rctrlp->ldctl_value, LBER_USE_DER );
597 ber_scanf( ber, "{em" /*"}"*/, &syncstate, &syncUUID );
598 if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) {
599 ber_scanf( ber, /*"{"*/ "m}", &cookie );
600 if ( !BER_BVISNULL( &cookie ) ) {
601 struct berval tmp_bv;
602 ber_dupbv( &tmp_bv, &cookie );
603 ber_bvarray_add( &syncCookie.octet_str, &tmp_bv );
605 if ( syncCookie.octet_str &&
606 !BER_BVISNULL( &syncCookie.octet_str[0] ) )
608 slap_parse_sync_cookie( &syncCookie );
611 if ( syncrepl_message_to_entry( si, op, msg,
612 &modlist, &entry, syncstate ) == LDAP_SUCCESS ) {
613 rc_efree = syncrepl_entry( si, op, entry, modlist,
614 syncstate, &syncUUID, &syncCookie_req );
615 if ( syncCookie.octet_str &&
616 !BER_BVISNULL( &syncCookie.octet_str[0] ) )
618 syncrepl_updateCookie( si, op, psub, &syncCookie );
621 ldap_controls_free( rctrls );
623 slap_mods_free( modlist );
625 if ( rc_efree && entry ) {
631 case LDAP_RES_SEARCH_REFERENCE:
632 Debug( LDAP_DEBUG_ANY,
633 "do_syncrep2 : reference received\n", 0, 0, 0 );
636 case LDAP_RES_SEARCH_RESULT:
637 ldap_parse_result( si->si_ld, msg, &err, NULL, NULL, NULL,
641 ber_init2( ber, &rctrlp->ldctl_value, LBER_USE_DER );
643 ber_scanf( ber, "{" /*"}"*/);
644 if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) {
645 ber_scanf( ber, "m", &cookie );
646 if ( !BER_BVISNULL( &cookie ) ) {
647 struct berval tmp_bv;
648 ber_dupbv( &tmp_bv, &cookie );
649 ber_bvarray_add( &syncCookie.octet_str, &tmp_bv);
651 if ( syncCookie.octet_str &&
652 !BER_BVISNULL( &syncCookie.octet_str[0] ) )
654 slap_parse_sync_cookie( &syncCookie );
657 if ( ber_peek_tag( ber, &len ) == LDAP_TAG_REFRESHDELETES )
659 ber_scanf( ber, "b", &refreshDeletes );
661 ber_scanf( ber, /*"{"*/ "}" );
663 if ( syncCookie_req.ctxcsn == NULL ) {
665 } else if ( syncCookie.ctxcsn == NULL ) {
668 value_match( &match, slap_schema.si_ad_entryCSN,
669 slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
670 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
671 &syncCookie_req.ctxcsn[0], &syncCookie.ctxcsn[0],
674 if ( syncCookie.octet_str && !BER_BVISNULL( syncCookie.octet_str ) &&
675 match < 0 && err == LDAP_SUCCESS )
677 syncrepl_updateCookie( si, op, psub, &syncCookie );
680 ldap_controls_free( rctrls );
682 if (si->si_type != LDAP_SYNC_REFRESH_AND_PERSIST) {
683 /* FIXME : different error behaviors according to
684 * 1) err code : LDAP_BUSY ...
685 * 2) on err policy : stop service, stop sync, retry
687 if ( refreshDeletes == 0 && match < 0 &&
688 err == LDAP_SUCCESS )
690 syncrepl_del_nonpresent( op, si );
692 avl_free( si->si_presentlist, avl_ber_bvfree );
693 si->si_presentlist = NULL;
700 case LDAP_RES_INTERMEDIATE:
701 rc = ldap_parse_intermediate( si->si_ld, msg,
702 &retoid, &retdata, NULL, 0 );
703 if ( !rc && !strcmp( retoid, LDAP_SYNC_INFO ) ) {
704 int si_refreshDelete = 0;
705 int si_refreshPresent = 0;
706 ber_init2( ber, retdata, LBER_USE_DER );
708 switch ( si_tag = ber_peek_tag( ber, &len )) {
710 case LDAP_TAG_SYNC_NEW_COOKIE:
711 ber_scanf( ber, "tm", &tag, &cookie );
713 case LDAP_TAG_SYNC_REFRESH_DELETE:
714 si_refreshDelete = 1;
715 case LDAP_TAG_SYNC_REFRESH_PRESENT:
716 si_refreshPresent = 1;
717 ber_scanf( ber, "t{" /*"}"*/, &tag );
718 if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE )
720 ber_scanf( ber, "m", &cookie );
721 if ( !BER_BVISNULL( &cookie ) ) {
722 struct berval tmp_bv;
723 ber_dupbv( &tmp_bv, &cookie );
724 ber_bvarray_add( &syncCookie.octet_str,
727 if ( syncCookie.octet_str &&
728 !BER_BVISNULL( &syncCookie.octet_str[0] ) )
730 slap_parse_sync_cookie( &syncCookie );
733 if ( ber_peek_tag( ber, &len ) ==
734 LDAP_TAG_REFRESHDONE )
736 ber_scanf( ber, "b", &refreshDone );
738 ber_scanf( ber, /*"{"*/ "}" );
740 case LDAP_TAG_SYNC_ID_SET:
741 ber_scanf( ber, "t{" /*"}"*/, &tag );
742 if ( ber_peek_tag( ber, &len ) ==
743 LDAP_TAG_SYNC_COOKIE )
745 ber_scanf( ber, "m", &cookie );
746 if ( !BER_BVISNULL( &cookie ) ) {
747 struct berval tmp_bv;
748 ber_dupbv( &tmp_bv, &cookie );
749 ber_bvarray_add( &syncCookie.octet_str,
752 if ( syncCookie.octet_str &&
753 !BER_BVISNULL( &syncCookie.octet_str[0] ) )
755 slap_parse_sync_cookie( &syncCookie );
758 if ( ber_peek_tag( ber, &len ) ==
759 LDAP_TAG_REFRESHDELETES )
761 ber_scanf( ber, "b", &refreshDeletes );
763 ber_scanf( ber, "[W]", &syncUUIDs );
764 ber_scanf( ber, /*"{"*/ "}" );
765 for ( i = 0; !BER_BVISNULL( &syncUUIDs[i] ); i++ ) {
766 struct berval *syncuuid_bv;
767 syncuuid_bv = ber_dupbv( NULL, &syncUUIDs[i] );
768 slap_sl_free( syncUUIDs[i].bv_val,op->o_tmpmemctx );
769 avl_insert( &si->si_presentlist,
770 (caddr_t) syncuuid_bv,
771 syncuuid_cmp, avl_dup_error );
773 slap_sl_free( syncUUIDs, op->o_tmpmemctx );
776 Debug( LDAP_DEBUG_ANY,
777 "do_syncrep2 : unknown syncinfo tag (%ld)\n",
778 (long) si_tag, 0, 0 );
779 ldap_memfree( retoid );
780 ber_bvfree( retdata );
784 if ( syncCookie_req.ctxcsn == NULL ) {
786 } else if ( syncCookie.ctxcsn == NULL ) {
789 value_match( &match, slap_schema.si_ad_entryCSN,
790 slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
791 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
792 &syncCookie_req.ctxcsn[0],
793 &syncCookie.ctxcsn[0], &text );
796 if ( syncCookie.ctxcsn && !BER_BVISNULL( &syncCookie.ctxcsn[0] ) &&
799 syncrepl_updateCookie( si, op, psub, &syncCookie);
802 if ( si_refreshPresent == 1 ) {
804 syncrepl_del_nonpresent( op, si );
808 ldap_memfree( retoid );
809 ber_bvfree( retdata );
813 Debug( LDAP_DEBUG_ANY, "do_syncrep2 : "
814 "unknown intermediate response (%d)\n",
816 ldap_memfree( retoid );
817 ber_bvfree( retdata );
823 Debug( LDAP_DEBUG_ANY, "do_syncrep2 : "
824 "unknown message\n", 0, 0, 0 );
828 if ( syncCookie.octet_str ) {
829 slap_sync_cookie_free( &syncCookie_req, 0 );
830 slap_dup_sync_cookie( &syncCookie_req, &syncCookie );
831 slap_sync_cookie_free( &syncCookie, 0 );
841 ldap_get_option( si->si_ld, LDAP_OPT_ERROR_NUMBER, &rc );
842 errstr = ldap_err2string( rc );
844 Debug( LDAP_DEBUG_ANY,
845 "do_syncrep2 : %s\n", errstr, 0, 0 );
849 slap_sync_cookie_free( &syncCookie, 0 );
850 slap_sync_cookie_free( &syncCookie_req, 0 );
852 if ( res ) ldap_msgfree( res );
854 if ( rc && si->si_ld ) {
855 ldap_unbind( si->si_ld );
867 struct re_s* rtask = arg;
868 syncinfo_t *si = ( syncinfo_t * ) rtask->arg;
869 Connection conn = {0};
871 int rc = LDAP_SUCCESS;
878 Debug( LDAP_DEBUG_TRACE, "=>do_syncrepl\n", 0, 0, 0 );
883 switch( abs( si->si_type )) {
884 case LDAP_SYNC_REFRESH_ONLY:
885 case LDAP_SYNC_REFRESH_AND_PERSIST:
891 if ( SLAPD_GLOBAL(shutdown) && si->si_ld ) {
892 ldap_get_option( si->si_ld, LDAP_OPT_DESC, &s );
893 connection_client_stop( s );
894 ldap_unbind( si->si_ld );
899 connection_fake_init( &conn, &op, ctx );
901 /* use global malloc for now */
902 op.o_tmpmemctx = NULL;
903 op.o_tmpmfuncs = &ch_mfuncs;
905 op.o_dn = si->si_updatedn;
906 op.o_ndn = si->si_updatedn;
907 op.o_managedsait = 1;
908 op.o_bd = be = si->si_be;
910 op.o_sync_state.ctxcsn = NULL;
911 op.o_sync_state.sid = -1;
912 op.o_sync_state.octet_str = NULL;
913 op.o_sync_slog_size = -1;
914 LDAP_STAILQ_FIRST( &op.o_sync_slog_list ) = NULL;
915 op.o_sync_slog_list.stqh_last = &LDAP_STAILQ_FIRST(&op.o_sync_slog_list);
917 /* Establish session, do search */
920 rc = do_syncrep1( &op, si );
923 /* Process results */
924 if ( rc == LDAP_SUCCESS ) {
925 ldap_get_option( si->si_ld, LDAP_OPT_DESC, &s );
927 rc = do_syncrep2( &op, si );
929 if ( abs(si->si_type) == LDAP_SYNC_REFRESH_AND_PERSIST ) {
930 /* If we succeeded, enable the connection for further listening.
931 * If we failed, tear down the connection and reschedule.
933 if ( rc == LDAP_SUCCESS ) {
935 rc = connection_client_setup( s, do_syncrepl, arg );
937 connection_client_enable( s );
939 } else if ( !first ) {
943 if ( rc == -2 ) rc = 0;
947 /* At this point, we have 4 cases:
948 * 1) for any hard failure, give up and remove this task
949 * 2) for ServerDown, reschedule this task to run
950 * 3) for Refresh and Success, reschedule to run
951 * 4) for Persist and Success, reschedule to defer
953 ldap_pvt_thread_mutex_lock( &SLAPD_GLOBAL(runqueue).rq_mutex );
955 if ( ldap_pvt_runqueue_isrunning( &SLAPD_GLOBAL(runqueue), rtask )) {
956 ldap_pvt_runqueue_stoptask( &SLAPD_GLOBAL(runqueue), rtask );
960 connection_client_stop( s );
963 if ( rc == LDAP_SUCCESS ) {
964 if ( si->si_type == LDAP_SYNC_REFRESH_ONLY ) {
967 rtask->interval.tv_sec = si->si_interval;
968 ldap_pvt_runqueue_resched( &SLAPD_GLOBAL(runqueue), rtask, defer );
969 if ( si->si_retrynum ) {
970 for ( i = 0; si->si_retrynum_init[i] != -2; i++ ) {
971 si->si_retrynum[i] = si->si_retrynum_init[i];
973 si->si_retrynum[i] = -2;
976 for ( i = 0; si->si_retrynum && si->si_retrynum[i] <= 0; i++ ) {
977 if ( si->si_retrynum[i] == -1 || si->si_retrynum[i] == -2 )
981 if ( !si->si_retrynum || si->si_retrynum[i] == -2 ) {
982 ldap_pvt_runqueue_remove( &SLAPD_GLOBAL(runqueue), rtask );
983 LDAP_STAILQ_REMOVE( &be->be_syncinfo, si, syncinfo_s, si_next );
985 } else if ( si->si_retrynum[i] >= -1 ) {
986 if ( si->si_retrynum[i] > 0 )
987 si->si_retrynum[i]--;
988 rtask->interval.tv_sec = si->si_retryinterval[i];
989 ldap_pvt_runqueue_resched( &SLAPD_GLOBAL(runqueue), rtask, 0 );
990 slap_wake_listener();
994 ldap_pvt_thread_mutex_unlock( &SLAPD_GLOBAL(runqueue).rq_mutex );
1000 syncrepl_message_to_entry(
1004 Modifications **modlist,
1010 BerElement *ber = NULL;
1013 Modifications **modtail = modlist;
1016 char txtbuf[SLAP_TEXT_BUFLEN];
1017 size_t textlen = sizeof txtbuf;
1019 struct berval bdn = {0, NULL}, dn, ndn;
1024 if ( ldap_msgtype( msg ) != LDAP_RES_SEARCH_ENTRY ) {
1025 Debug( LDAP_DEBUG_ANY,
1026 "Message type should be entry (%d)", ldap_msgtype( msg ), 0, 0 );
1030 op->o_tag = LDAP_REQ_ADD;
1032 rc = ldap_get_dn_ber( si->si_ld, msg, &ber, &bdn );
1034 if ( rc != LDAP_SUCCESS ) {
1035 Debug( LDAP_DEBUG_ANY,
1036 "syncrepl_message_to_entry : dn get failed (%d)", rc, 0, 0 );
1040 dnPrettyNormal( NULL, &bdn, &dn, &ndn, op->o_tmpmemctx );
1041 ber_dupbv( &op->o_req_dn, &dn );
1042 ber_dupbv( &op->o_req_ndn, &ndn );
1043 slap_sl_free( ndn.bv_val, op->o_tmpmemctx );
1044 slap_sl_free( dn.bv_val, op->o_tmpmemctx );
1046 if ( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_DELETE ) {
1049 return LDAP_SUCCESS;
1052 if ( entry == NULL ) {
1056 e = ( Entry * ) ch_calloc( 1, sizeof( Entry ) );
1058 e->e_name = op->o_req_dn;
1059 e->e_nname = op->o_req_ndn;
1061 while ( ber_remaining( ber ) ) {
1062 if ( (ber_scanf( ber, "{mW}", &tmp.sml_type, &tmp.sml_values ) ==
1063 LBER_ERROR ) || BER_BVISNULL( &tmp.sml_type ) )
1068 mod = (Modifications *) ch_malloc( sizeof( Modifications ));
1070 mod->sml_op = LDAP_MOD_REPLACE;
1071 mod->sml_next = NULL;
1072 mod->sml_desc = NULL;
1073 mod->sml_type = tmp.sml_type;
1074 mod->sml_values = tmp.sml_values;
1075 mod->sml_nvalues = NULL;
1078 modtail = &mod->sml_next;
1081 if ( *modlist == NULL ) {
1082 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: no attributes\n",
1088 rc = slap_mods_check( *modlist, 1, &text, txtbuf, textlen, NULL );
1090 if ( rc != LDAP_SUCCESS ) {
1091 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods check (%s)\n",
1096 /* Strip out dynamically generated attrs */
1097 for ( modtail = modlist; *modtail ; ) {
1099 if ( mod->sml_desc->ad_type->sat_flags & SLAP_AT_DYNAMIC ) {
1100 *modtail = mod->sml_next;
1101 slap_mod_free( &mod->sml_mod, 0 );
1104 modtail = &mod->sml_next;
1108 /* Strip out attrs in exattrs list */
1109 for ( modtail = modlist; *modtail ; ) {
1111 if ( ldap_charray_inlist( si->si_exattrs,
1112 mod->sml_desc->ad_type->sat_cname.bv_val )) {
1113 *modtail = mod->sml_next;
1114 slap_mod_free( &mod->sml_mod, 0 );
1117 modtail = &mod->sml_next;
1121 rc = slap_mods2entry( *modlist, &e, 1, 1, &text, txtbuf, textlen);
1122 if( rc != LDAP_SUCCESS ) {
1123 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods2entry (%s)\n",
1128 ber_free ( ber, 0 );
1129 if ( rc != LDAP_SUCCESS ) {
1144 Modifications* modlist,
1146 struct berval* syncUUID,
1147 struct sync_cookie* syncCookie_req )
1149 Backend *be = op->o_bd;
1150 slap_callback cb = { NULL };
1151 struct berval *syncuuid_bv = NULL;
1152 struct berval syncUUID_strrep = BER_BVNULL;
1153 struct berval uuid_bv = BER_BVNULL;
1155 SlapReply rs_search = {REP_RESULT};
1156 SlapReply rs_delete = {REP_RESULT};
1157 SlapReply rs_add = {REP_RESULT};
1158 SlapReply rs_modify = {REP_RESULT};
1160 AttributeAssertion ava = {0};
1161 int rc = LDAP_SUCCESS;
1162 int ret = LDAP_SUCCESS;
1164 struct berval pdn = BER_BVNULL;
1165 struct berval org_req_dn = BER_BVNULL;
1166 struct berval org_req_ndn = BER_BVNULL;
1167 struct berval org_dn = BER_BVNULL;
1168 struct berval org_ndn = BER_BVNULL;
1169 int org_managedsait;
1171 if (( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_ADD )) {
1172 syncuuid_bv = ber_dupbv( NULL, syncUUID );
1173 avl_insert( &si->si_presentlist, (caddr_t) syncuuid_bv,
1174 syncuuid_cmp, avl_dup_error );
1177 if ( syncstate == LDAP_SYNC_PRESENT ) {
1179 } else if ( syncstate != LDAP_SYNC_DELETE ) {
1180 if ( entry == NULL ) {
1185 f.f_choice = LDAP_FILTER_EQUALITY;
1187 ava.aa_desc = slap_schema.si_ad_entryUUID;
1188 (void)slap_uuidstr_from_normalized( &syncUUID_strrep, syncUUID, op->o_tmpmemctx );
1189 ava.aa_value = *syncUUID;
1190 op->ors_filter = &f;
1192 op->ors_filterstr.bv_len = STRLENOF( "entryUUID=" ) + syncUUID->bv_len;
1193 op->ors_filterstr.bv_val = (char *) slap_sl_malloc(
1194 op->ors_filterstr.bv_len + 1, op->o_tmpmemctx );
1195 AC_MEMCPY( op->ors_filterstr.bv_val, "entryUUID=", STRLENOF( "entryUUID=" ) );
1196 AC_MEMCPY( &op->ors_filterstr.bv_val[STRLENOF( "entryUUID=" )],
1197 syncUUID->bv_val, syncUUID->bv_len );
1198 op->ors_filterstr.bv_val[op->ors_filterstr.bv_len] = '\0';
1200 op->o_tag = LDAP_REQ_SEARCH;
1201 op->ors_scope = LDAP_SCOPE_SUBTREE;
1203 /* get syncrepl cookie of shadow replica from subentry */
1204 op->o_req_dn = si->si_base;
1205 op->o_req_ndn = si->si_base;
1207 op->o_time = slap_get_time();
1208 op->ors_tlimit = SLAP_NO_LIMIT;
1211 op->ors_attrs = slap_anlist_no_attrs;
1212 op->ors_attrsonly = 1;
1214 /* set callback function */
1215 op->o_callback = &cb;
1216 cb.sc_response = dn_callback;
1219 BER_BVZERO( &si->si_syncUUID_ndn );
1221 if ( limits_check( op, &rs_search ) == 0 ) {
1222 rc = be->be_search( op, &rs_search );
1225 if ( !BER_BVISNULL( &op->ors_filterstr ) ) {
1226 slap_sl_free( op->ors_filterstr.bv_val, op->o_tmpmemctx );
1229 cb.sc_response = null_callback;
1232 if ( rs_search.sr_err == LDAP_SUCCESS && !BER_BVISNULL( &si->si_syncUUID_ndn ) )
1236 if ( syncstate != LDAP_SYNC_DELETE ) {
1237 op->o_no_psearch = 1;
1240 ber_dupbv( &op->o_sync_csn, syncCookie_req->ctxcsn );
1241 if ( !BER_BVISNULL( &op->o_sync_csn ) ) {
1242 subseq_ptr = strstr( op->o_sync_csn.bv_val, "#0000" );
1247 op->o_req_dn = si->si_syncUUID_ndn;
1248 op->o_req_ndn = si->si_syncUUID_ndn;
1249 op->o_tag = LDAP_REQ_DELETE;
1250 rc = be->be_delete( op, &rs_delete );
1252 org_req_dn = op->o_req_dn;
1253 org_req_ndn = op->o_req_ndn;
1255 org_ndn = op->o_ndn;
1256 org_managedsait = get_manageDSAit( op );
1257 op->o_dn = op->o_bd->be_rootdn;
1258 op->o_ndn = op->o_bd->be_rootndn;
1259 op->o_managedsait = 1;
1261 while ( rs_delete.sr_err == LDAP_SUCCESS && op->o_delete_glue_parent ) {
1262 op->o_delete_glue_parent = 0;
1263 if ( !be_issuffix( op->o_bd, &op->o_req_ndn )) {
1264 slap_callback cb = { NULL };
1265 cb.sc_response = slap_null_cb;
1266 dnParent( &op->o_req_ndn, &pdn );
1268 op->o_req_ndn = pdn;
1269 op->o_callback = &cb;
1270 op->o_bd->be_delete( op, &rs_delete );
1276 op->o_managedsait = org_managedsait;
1278 op->o_ndn = org_ndn;
1279 op->o_req_dn = org_req_dn;
1280 op->o_req_ndn = org_req_ndn;
1281 op->o_delete_glue_parent = 0;
1283 op->o_no_psearch = 0;
1286 switch ( syncstate ) {
1288 case LDAP_SYNC_MODIFY:
1289 if ( rs_search.sr_err == LDAP_SUCCESS ||
1290 rs_search.sr_err == LDAP_REFERRAL ||
1291 rs_search.sr_err == LDAP_NO_SUCH_OBJECT ||
1292 rs_search.sr_err == LDAP_NOT_ALLOWED_ON_NONLEAF )
1294 attr_delete( &entry->e_attrs, slap_schema.si_ad_entryUUID );
1295 attr_merge_one( entry, slap_schema.si_ad_entryUUID,
1296 &syncUUID_strrep, syncUUID );
1298 op->o_tag = LDAP_REQ_ADD;
1300 op->o_req_dn = entry->e_name;
1301 op->o_req_ndn = entry->e_nname;
1303 rc = be->be_add( op, &rs_add );
1305 if ( rs_add.sr_err != LDAP_SUCCESS ) {
1306 if ( rs_add.sr_err == LDAP_ALREADY_EXISTS &&
1307 rs_search.sr_err != LDAP_NO_SUCH_OBJECT ) {
1309 Modifications *modtail = modlist;
1313 for ( mod = modlist; mod != NULL; mod = mod->sml_next ) {
1317 mod = (Modifications *)ch_calloc(1, sizeof(Modifications));
1318 ber_dupbv( &uuid_bv, syncUUID );
1319 mod->sml_op = LDAP_MOD_REPLACE;
1320 mod->sml_desc = slap_schema.si_ad_entryUUID;
1321 mod->sml_type = mod->sml_desc->ad_cname;
1322 ber_bvarray_add( &mod->sml_values, &uuid_bv );
1323 modtail->sml_next = mod;
1325 op->o_tag = LDAP_REQ_MODIFY;
1326 op->orm_modlist = modlist;
1327 op->o_req_dn = entry->e_name;
1328 op->o_req_ndn = entry->e_nname;
1330 rc = be->be_modify( op, &rs_modify );
1331 if ( rs_modify.sr_err != LDAP_SUCCESS ) {
1332 Debug( LDAP_DEBUG_ANY,
1333 "syncrepl_entry : be_modify failed (%d)\n",
1334 rs_modify.sr_err, 0, 0 );
1338 } else if ( rs_modify.sr_err == LDAP_REFERRAL ||
1339 rs_modify.sr_err == LDAP_NO_SUCH_OBJECT ) {
1340 syncrepl_add_glue( op, entry );
1344 Debug( LDAP_DEBUG_ANY,
1345 "syncrepl_entry : be_add failed (%d)\n",
1346 rs_add.sr_err, 0, 0 );
1351 be_entry_release_w( op, entry );
1356 Debug( LDAP_DEBUG_ANY,
1357 "syncrepl_entry : be_search failed (%d)\n",
1358 rs_search.sr_err, 0, 0 );
1363 case LDAP_SYNC_DELETE :
1364 /* Already deleted */
1369 Debug( LDAP_DEBUG_ANY,
1370 "syncrepl_entry : unknown syncstate\n", 0, 0, 0 );
1377 if ( !BER_BVISNULL( &syncUUID_strrep ) ) {
1378 slap_sl_free( syncUUID_strrep.bv_val, op->o_tmpmemctx );
1379 BER_BVZERO( &syncUUID_strrep );
1381 if ( !BER_BVISNULL( &si->si_syncUUID_ndn ) ) {
1382 ch_free( si->si_syncUUID_ndn.bv_val );
1383 BER_BVZERO( &si->si_syncUUID_ndn );
1388 static struct berval gcbva[] = {
1395 syncrepl_del_nonpresent(
1399 Backend* be = op->o_bd;
1400 slap_callback cb = { NULL };
1401 SlapReply rs_search = {REP_RESULT};
1402 SlapReply rs_delete = {REP_RESULT};
1403 SlapReply rs_modify = {REP_RESULT};
1404 struct nonpresent_entry *np_list, *np_prev;
1407 Modifications *mlnext;
1409 Modifications *modlist = NULL;
1410 Modifications **modtail = &modlist;
1411 AttributeName an[2];
1413 struct berval pdn = BER_BVNULL;
1414 struct berval org_req_dn = BER_BVNULL;
1415 struct berval org_req_ndn = BER_BVNULL;
1416 struct berval org_dn = BER_BVNULL;
1417 struct berval org_ndn = BER_BVNULL;
1418 int org_managedsait;
1420 op->o_req_dn = si->si_base;
1421 op->o_req_ndn = si->si_base;
1423 cb.sc_response = nonpresent_callback;
1426 op->o_callback = &cb;
1427 op->o_tag = LDAP_REQ_SEARCH;
1428 op->ors_scope = si->si_scope;
1429 op->ors_deref = LDAP_DEREF_NEVER;
1430 op->o_time = slap_get_time();
1431 op->ors_tlimit = SLAP_NO_LIMIT;
1432 op->ors_slimit = SLAP_NO_LIMIT;
1434 memset( &an[0], 0, 2 * sizeof( AttributeName ) );
1435 an[0].an_name = slap_schema.si_ad_entryUUID->ad_cname;
1436 an[0].an_desc = slap_schema.si_ad_entryUUID;
1439 op->ors_attrsonly = 0;
1440 op->ors_filter = str2filter_x( op, si->si_filterstr.bv_val );
1441 op->ors_filterstr = si->si_filterstr;
1443 op->o_nocaching = 1;
1444 op->o_managedsait = 0;
1446 if ( limits_check( op, &rs_search ) == 0 ) {
1447 rc = be->be_search( op, &rs_search );
1450 op->o_managedsait = 1;
1451 op->o_nocaching = 0;
1453 if ( op->ors_filter ) filter_free_x( op, op->ors_filter );
1455 if ( !LDAP_LIST_EMPTY( &si->si_nonpresentlist ) ) {
1456 np_list = LDAP_LIST_FIRST( &si->si_nonpresentlist );
1457 while ( np_list != NULL ) {
1458 LDAP_LIST_REMOVE( np_list, npe_link );
1460 np_list = LDAP_LIST_NEXT( np_list, npe_link );
1461 op->o_tag = LDAP_REQ_DELETE;
1462 op->o_callback = &cb;
1463 cb.sc_response = null_callback;
1465 op->o_req_dn = *np_prev->npe_name;
1466 op->o_req_ndn = *np_prev->npe_nname;
1467 rc = op->o_bd->be_delete( op, &rs_delete );
1469 if ( rs_delete.sr_err == LDAP_NOT_ALLOWED_ON_NONLEAF ) {
1470 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1471 mod->sml_op = LDAP_MOD_REPLACE;
1472 mod->sml_desc = slap_schema.si_ad_objectClass;
1473 mod->sml_type = mod->sml_desc->ad_cname;
1474 mod->sml_values = &gcbva[0];
1476 modtail = &mod->sml_next;
1478 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1479 mod->sml_op = LDAP_MOD_REPLACE;
1480 mod->sml_desc = slap_schema.si_ad_structuralObjectClass;
1481 mod->sml_type = mod->sml_desc->ad_cname;
1482 mod->sml_values = &gcbva[1];
1484 modtail = &mod->sml_next;
1486 op->o_tag = LDAP_REQ_MODIFY;
1487 op->orm_modlist = modlist;
1489 rc = be->be_modify( op, &rs_modify );
1491 for ( ml = modlist; ml != NULL; ml = mlnext ) {
1492 mlnext = ml->sml_next;
1497 org_req_dn = op->o_req_dn;
1498 org_req_ndn = op->o_req_ndn;
1500 org_ndn = op->o_ndn;
1501 org_managedsait = get_manageDSAit( op );
1502 op->o_dn = op->o_bd->be_rootdn;
1503 op->o_ndn = op->o_bd->be_rootndn;
1504 op->o_managedsait = 1;
1506 while ( rs_delete.sr_err == LDAP_SUCCESS &&
1507 op->o_delete_glue_parent ) {
1508 op->o_delete_glue_parent = 0;
1509 if ( !be_issuffix( op->o_bd, &op->o_req_ndn )) {
1510 slap_callback cb = { NULL };
1511 cb.sc_response = slap_null_cb;
1512 dnParent( &op->o_req_ndn, &pdn );
1514 op->o_req_ndn = pdn;
1515 op->o_callback = &cb;
1516 /* give it a root privil ? */
1517 op->o_bd->be_delete( op, &rs_delete );
1523 op->o_managedsait = org_managedsait;
1525 op->o_ndn = org_ndn;
1526 op->o_req_dn = org_req_dn;
1527 op->o_req_ndn = org_req_ndn;
1528 op->o_delete_glue_parent = 0;
1530 ber_bvfree( np_prev->npe_name );
1531 ber_bvfree( np_prev->npe_nname );
1532 BER_BVZERO( &op->o_req_dn );
1533 BER_BVZERO( &op->o_req_ndn );
1546 Backend *be = op->o_bd;
1547 slap_callback cb = { NULL };
1552 struct berval dn = {0, NULL};
1553 struct berval ndn = {0, NULL};
1555 SlapReply rs_add = {REP_RESULT};
1558 op->o_tag = LDAP_REQ_ADD;
1559 op->o_callback = &cb;
1560 cb.sc_response = null_callback;
1561 cb.sc_private = NULL;
1566 /* count RDNs in suffix */
1567 if ( !BER_BVISEMPTY( &be->be_nsuffix[0] ) ) {
1568 for ( i = 0, ptr = be->be_nsuffix[0].bv_val; ptr; ptr = strchr( ptr, ',' ) ) {
1578 /* Start with BE suffix */
1579 for ( i = 0, ptr = NULL; i < suffrdns; i++ ) {
1580 comma = strrchr( dn.bv_val, ',' );
1581 if ( ptr ) *ptr = ',';
1582 if ( comma ) *comma = '\0';
1587 dn.bv_len -= ptr - dn.bv_val;
1590 /* the normalizedDNs are always the same length, no counting
1593 if ( ndn.bv_len > be->be_nsuffix[0].bv_len ) {
1594 ndn.bv_val += ndn.bv_len - be->be_nsuffix[0].bv_len;
1595 ndn.bv_len = be->be_nsuffix[0].bv_len;
1598 while ( ndn.bv_val > e->e_nname.bv_val ) {
1599 glue = (Entry *) ch_calloc( 1, sizeof(Entry) );
1600 ber_dupbv( &glue->e_name, &dn );
1601 ber_dupbv( &glue->e_nname, &ndn );
1603 a = ch_calloc( 1, sizeof( Attribute ));
1604 a->a_desc = slap_schema.si_ad_objectClass;
1606 a->a_vals = ch_calloc( 3, sizeof( struct berval ));
1607 ber_dupbv( &a->a_vals[0], &gcbva[0] );
1608 ber_dupbv( &a->a_vals[1], &gcbva[1] );
1609 ber_dupbv( &a->a_vals[2], &gcbva[2] );
1611 a->a_nvals = a->a_vals;
1613 a->a_next = glue->e_attrs;
1616 a = ch_calloc( 1, sizeof( Attribute ));
1617 a->a_desc = slap_schema.si_ad_structuralObjectClass;
1619 a->a_vals = ch_calloc( 2, sizeof( struct berval ));
1620 ber_dupbv( &a->a_vals[0], &gcbva[1] );
1621 ber_dupbv( &a->a_vals[1], &gcbva[2] );
1623 a->a_nvals = a->a_vals;
1625 a->a_next = glue->e_attrs;
1628 op->o_req_dn = glue->e_name;
1629 op->o_req_ndn = glue->e_nname;
1631 rc = be->be_add ( op, &rs_add );
1632 if ( rs_add.sr_err == LDAP_SUCCESS ) {
1633 be_entry_release_w( op, glue );
1635 /* incl. ALREADY EXIST */
1639 /* Move to next child */
1640 for (ptr = dn.bv_val-2; ptr > e->e_name.bv_val && *ptr != ','; ptr--) {
1643 if ( ptr == e->e_name.bv_val ) break;
1645 dn.bv_len = e->e_name.bv_len - (ptr-e->e_name.bv_val);
1646 for( ptr = ndn.bv_val-2;
1647 ptr > e->e_nname.bv_val && *ptr != ',';
1653 ndn.bv_len = e->e_nname.bv_len - (ptr-e->e_nname.bv_val);
1656 op->o_req_dn = e->e_name;
1657 op->o_req_ndn = e->e_nname;
1659 rc = be->be_add ( op, &rs_add );
1660 if ( rs_add.sr_err == LDAP_SUCCESS ) {
1661 be_entry_release_w( op, e );
1669 static struct berval ocbva[] = {
1671 BER_BVC("subentry"),
1672 BER_BVC("syncConsumerSubentry"),
1676 static struct berval cnbva[] = {
1681 static struct berval ssbva[] = {
1686 static struct berval scbva[] = {
1692 syncrepl_updateCookie(
1696 struct sync_cookie *syncCookie )
1698 Backend *be = op->o_bd;
1700 Modifications *mlnext;
1702 Modifications *modlist = NULL;
1703 Modifications **modtail = &modlist;
1706 char txtbuf[SLAP_TEXT_BUFLEN];
1707 size_t textlen = sizeof txtbuf;
1712 char syncrepl_cbuf[sizeof(CN_STR SYNCREPL_STR)];
1713 struct berval slap_syncrepl_dn_bv = BER_BVNULL;
1714 struct berval slap_syncrepl_cn_bv = BER_BVNULL;
1716 slap_callback cb = { NULL };
1717 SlapReply rs_add = {REP_RESULT};
1718 SlapReply rs_modify = {REP_RESULT};
1720 slap_sync_cookie_free( &si->si_syncCookie, 0 );
1721 slap_dup_sync_cookie( &si->si_syncCookie, syncCookie );
1723 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1724 mod->sml_op = LDAP_MOD_REPLACE;
1725 mod->sml_desc = slap_schema.si_ad_objectClass;
1726 mod->sml_type = mod->sml_desc->ad_cname;
1727 mod->sml_values = ocbva;
1729 modtail = &mod->sml_next;
1731 ber_dupbv( &cnbva[0], (struct berval *) &slap_syncrepl_bvc );
1732 assert( si->si_rid < 1000 );
1733 cnbva[0].bv_len = snprintf( cnbva[0].bv_val,
1734 slap_syncrepl_bvc.bv_len + 1,
1735 "syncrepl%ld", si->si_rid );
1736 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1737 mod->sml_op = LDAP_MOD_REPLACE;
1738 mod->sml_desc = slap_schema.si_ad_cn;
1739 mod->sml_type = mod->sml_desc->ad_cname;
1740 mod->sml_values = cnbva;
1742 modtail = &mod->sml_next;
1744 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1745 mod->sml_op = LDAP_MOD_REPLACE;
1746 mod->sml_desc = slap_schema.si_ad_subtreeSpecification;
1747 mod->sml_type = mod->sml_desc->ad_cname;
1748 mod->sml_values = ssbva;
1750 modtail = &mod->sml_next;
1752 /* Keep this last, so we can avoid touching the previous
1753 * attributes unnecessarily.
1755 if ( scbva[0].bv_val ) ch_free( scbva[0].bv_val );
1756 ber_dupbv( &scbva[0], &si->si_syncCookie.octet_str[0] );
1757 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1758 mod->sml_op = LDAP_MOD_REPLACE;
1759 mod->sml_desc = slap_schema.si_ad_syncreplCookie;
1760 mod->sml_type = mod->sml_desc->ad_cname;
1761 mod->sml_values = scbva;
1763 modtail = &mod->sml_next;
1767 op->o_tag = LDAP_REQ_ADD;
1768 rc = slap_mods_opattrs( op, modlist, modtail,
1769 &text, txtbuf, textlen, 0 );
1771 for ( ml = modlist; ml != NULL; ml = ml->sml_next ) {
1772 ml->sml_op = LDAP_MOD_REPLACE;
1775 if( rc != LDAP_SUCCESS ) {
1776 Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods opattrs (%s)\n",
1780 e = ( Entry * ) ch_calloc( 1, sizeof( Entry ));
1782 slap_syncrepl_cn_bv.bv_val = syncrepl_cbuf;
1783 assert( si->si_rid < 1000 );
1784 slap_syncrepl_cn_bv.bv_len = snprintf( slap_syncrepl_cn_bv.bv_val,
1785 slap_syncrepl_cn_bvc.bv_len + 1,
1786 "cn=syncrepl%ld", si->si_rid );
1788 build_new_dn( &slap_syncrepl_dn_bv, pdn, &slap_syncrepl_cn_bv,
1790 ber_dupbv( &e->e_name, &slap_syncrepl_dn_bv );
1791 ber_dupbv( &e->e_nname, &slap_syncrepl_dn_bv );
1793 if ( !BER_BVISNULL( &slap_syncrepl_dn_bv ) ) {
1794 slap_sl_free( slap_syncrepl_dn_bv.bv_val, op->o_tmpmemctx );
1799 rc = slap_mods2entry( modlist, &e, 1, 1, &text, txtbuf, textlen );
1801 if( rc != LDAP_SUCCESS ) {
1802 Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods2entry (%s)\n",
1806 cb.sc_response = null_callback;
1809 op->o_callback = &cb;
1810 op->o_req_dn = e->e_name;
1811 op->o_req_ndn = e->e_nname;
1813 /* update persistent cookie */
1814 update_cookie_retry:
1815 op->o_tag = LDAP_REQ_MODIFY;
1816 /* Just modify the cookie value, not the entire entry */
1817 op->orm_modlist = mod;
1818 rc = be->be_modify( op, &rs_modify );
1820 if ( rs_modify.sr_err != LDAP_SUCCESS ) {
1821 if ( rs_modify.sr_err == LDAP_REFERRAL ||
1822 rs_modify.sr_err == LDAP_NO_SUCH_OBJECT ) {
1823 op->o_tag = LDAP_REQ_ADD;
1825 rc = be->be_add( op, &rs_add );
1826 if ( rs_add.sr_err != LDAP_SUCCESS ) {
1827 if ( rs_add.sr_err == LDAP_ALREADY_EXISTS ) {
1828 goto update_cookie_retry;
1829 } else if ( rs_add.sr_err == LDAP_REFERRAL ||
1830 rs_add.sr_err == LDAP_NO_SUCH_OBJECT ) {
1831 Debug( LDAP_DEBUG_ANY,
1832 "cookie will be non-persistent\n",
1835 Debug( LDAP_DEBUG_ANY,
1836 "be_add failed (%d)\n", rs_add.sr_err, 0, 0 );
1839 be_entry_release_w( op, e );
1843 Debug( LDAP_DEBUG_ANY,
1844 "be_modify failed (%d)\n", rs_modify.sr_err, 0, 0 );
1854 if ( !BER_BVISNULL( &cnbva[0] ) ) {
1855 ch_free( cnbva[0].bv_val );
1856 BER_BVZERO( &cnbva[0] );
1858 if ( !BER_BVISNULL( &scbva[0] ) ) {
1859 ch_free( scbva[0].bv_val );
1860 BER_BVZERO( &scbva[0] );
1863 if ( mlnext->sml_next ) {
1864 slap_mods_free( mlnext->sml_next );
1865 mlnext->sml_next = NULL;
1868 for (ml = modlist ; ml != NULL; ml = mlnext ) {
1869 mlnext = ml->sml_next;
1877 syncrepl_isupdate( Operation *op )
1879 return ( syncrepl_isupdate_dn( op->o_bd, &op->o_ndn ));
1883 syncrepl_isupdate_dn(
1885 struct berval* ndn )
1890 if ( !LDAP_STAILQ_EMPTY( &be->be_syncinfo )) {
1891 LDAP_STAILQ_FOREACH( si, &be->be_syncinfo, si_next ) {
1892 if ( ( ret = dn_match( &si->si_updatedn, ndn ) ) ) {
1905 syncinfo_t *si = op->o_callback->sc_private;
1907 if ( rs->sr_type == REP_SEARCH ) {
1908 if ( !BER_BVISNULL( &si->si_syncUUID_ndn ) ) {
1909 Debug( LDAP_DEBUG_ANY,
1910 "dn_callback : consistency error - "
1911 "entryUUID is not unique\n", 0, 0, 0 );
1913 ber_dupbv_x( &si->si_syncUUID_ndn, &rs->sr_entry->e_nname, NULL );
1915 } else if ( rs->sr_type == REP_RESULT ) {
1916 if ( rs->sr_err == LDAP_SIZELIMIT_EXCEEDED ) {
1917 Debug( LDAP_DEBUG_ANY,
1918 "dn_callback : consistency error - "
1919 "entryUUID is not unique\n", 0, 0, 0 );
1923 return LDAP_SUCCESS;
1927 nonpresent_callback(
1931 syncinfo_t *si = op->o_callback->sc_private;
1934 struct berval* present_uuid = NULL;
1935 struct nonpresent_entry *np_entry;
1937 if ( rs->sr_type == REP_RESULT ) {
1938 count = avl_free( si->si_presentlist, avl_ber_bvfree );
1939 si->si_presentlist = NULL;
1941 } else if ( rs->sr_type == REP_SEARCH ) {
1942 a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryUUID );
1944 if ( a == NULL ) return 0;
1946 present_uuid = avl_find( si->si_presentlist, &a->a_nvals[0],
1949 if ( present_uuid == NULL ) {
1950 np_entry = (struct nonpresent_entry *)
1951 ch_calloc( 1, sizeof( struct nonpresent_entry ));
1952 np_entry->npe_name = ber_dupbv( NULL, &rs->sr_entry->e_name );
1953 np_entry->npe_nname = ber_dupbv( NULL, &rs->sr_entry->e_nname );
1954 LDAP_LIST_INSERT_HEAD( &si->si_nonpresentlist, np_entry, npe_link );
1957 avl_delete( &si->si_presentlist,
1958 &a->a_nvals[0], syncuuid_cmp );
1959 ch_free( present_uuid->bv_val );
1960 ch_free( present_uuid );
1963 return LDAP_SUCCESS;
1971 if ( rs->sr_err != LDAP_SUCCESS &&
1972 rs->sr_err != LDAP_REFERRAL &&
1973 rs->sr_err != LDAP_ALREADY_EXISTS &&
1974 rs->sr_err != LDAP_NO_SUCH_OBJECT &&
1975 rs->sr_err != LDAP_NOT_ALLOWED_ON_NONLEAF )
1977 Debug( LDAP_DEBUG_ANY,
1978 "null_callback : error code 0x%x\n",
1981 return LDAP_SUCCESS;
1985 slap_create_syncrepl_entry(
1987 struct berval *context_csn,
1995 e = ( Entry * ) ch_calloc( 1, sizeof( Entry ));
1997 attr_merge( e, slap_schema.si_ad_objectClass, ocbva, NULL );
1999 attr_merge_one( e, slap_schema.si_ad_structuralObjectClass,
2002 attr_merge_one( e, slap_schema.si_ad_cn, cn, NULL );
2004 if ( context_csn ) {
2005 attr_merge_one( e, slap_schema.si_ad_syncreplCookie,
2006 context_csn, NULL );
2009 BER_BVSTR( &bv, "{}" );
2010 attr_merge_one( e, slap_schema.si_ad_subtreeSpecification, &bv, NULL );
2012 build_new_dn( &e->e_name, &be->be_nsuffix[0], rdn, NULL );
2013 ber_dupbv( &e->e_nname, &e->e_name );
2019 slap_uuidstr_from_normalized(
2020 struct berval* uuidstr,
2021 struct berval* normalized,
2025 unsigned char nibble;
2028 if ( normalized == NULL ) return NULL;
2029 if ( normalized->bv_len != 16 ) return NULL;
2034 new = (struct berval *)slap_sl_malloc( sizeof(struct berval), ctx );
2035 if ( new == NULL ) {
2042 if ( ( new->bv_val = slap_sl_malloc( new->bv_len + 1, ctx ) ) == NULL ) {
2043 if ( new != uuidstr ) {
2044 slap_sl_free( new, ctx );
2049 for ( i = 0; i < 16; i++ ) {
2050 if ( i == 4 || i == 6 || i == 8 || i == 10 ) {
2051 new->bv_val[(i<<1)+d] = '-';
2055 nibble = (normalized->bv_val[i] >> 4) & 0xF;
2056 if ( nibble < 10 ) {
2057 new->bv_val[(i<<1)+d] = nibble + '0';
2059 new->bv_val[(i<<1)+d] = nibble - 10 + 'a';
2062 nibble = (normalized->bv_val[i]) & 0xF;
2063 if ( nibble < 10 ) {
2064 new->bv_val[(i<<1)+d+1] = nibble + '0';
2066 new->bv_val[(i<<1)+d+1] = nibble - 10 + 'a';
2070 new->bv_val[new->bv_len] = '\0';
2075 syncuuid_cmp( const void* v_uuid1, const void* v_uuid2 )
2077 const struct berval *uuid1 = v_uuid1;
2078 const struct berval *uuid2 = v_uuid2;
2079 int rc = uuid1->bv_len - uuid2->bv_len;
2080 if ( rc ) return rc;
2081 return ( memcmp( uuid1->bv_val, uuid2->bv_val, uuid1->bv_len ) );
2085 avl_ber_bvfree( void *v_bv )
2087 struct berval *bv = (struct berval *)v_bv;
2089 if( v_bv == NULL ) return;
2090 if ( !BER_BVISNULL( bv ) ) {
2091 ch_free( bv->bv_val );
2093 ch_free( (char *) bv );
2097 syncinfo_free( syncinfo_t *sie )
2099 if ( sie->si_provideruri ) {
2100 ch_free( sie->si_provideruri );
2102 if ( sie->si_provideruri_bv ) {
2103 ber_bvarray_free( sie->si_provideruri_bv );
2105 if ( sie->si_updatedn.bv_val ) {
2106 ch_free( sie->si_updatedn.bv_val );
2108 if ( sie->si_binddn ) {
2109 ch_free( sie->si_binddn );
2111 if ( sie->si_passwd ) {
2112 ch_free( sie->si_passwd );
2114 if ( sie->si_saslmech ) {
2115 ch_free( sie->si_saslmech );
2117 if ( sie->si_secprops ) {
2118 ch_free( sie->si_secprops );
2120 if ( sie->si_realm ) {
2121 ch_free( sie->si_realm );
2123 if ( sie->si_authcId ) {
2124 ch_free( sie->si_authcId );
2126 if ( sie->si_authzId ) {
2127 ch_free( sie->si_authzId );
2129 if ( sie->si_filterstr.bv_val ) {
2130 ch_free( sie->si_filterstr.bv_val );
2132 if ( sie->si_base.bv_val ) {
2133 ch_free( sie->si_base.bv_val );
2135 if ( sie->si_attrs ) {
2137 while ( sie->si_attrs[i] != NULL ) {
2138 ch_free( sie->si_attrs[i] );
2141 ch_free( sie->si_attrs );
2143 if ( sie->si_exattrs ) {
2145 while ( sie->si_exattrs[i] != NULL ) {
2146 ch_free( sie->si_exattrs[i] );
2149 ch_free( sie->si_exattrs );
2151 if ( sie->si_anlist ) {
2153 while ( sie->si_anlist[i].an_name.bv_val != NULL ) {
2154 ch_free( sie->si_anlist[i].an_name.bv_val );
2157 ch_free( sie->si_anlist );
2159 if ( sie->si_exanlist ) {
2161 while ( sie->si_exanlist[i].an_name.bv_val != NULL ) {
2162 ch_free( sie->si_exanlist[i].an_name.bv_val );
2165 ch_free( sie->si_exanlist );
2167 if ( sie->si_retryinterval ) {
2168 ch_free( sie->si_retryinterval );
2170 if ( sie->si_retrynum ) {
2171 ch_free( sie->si_retrynum );
2173 if ( sie->si_retrynum_init ) {
2174 ch_free( sie->si_retrynum_init );
2176 slap_sync_cookie_free( &sie->si_syncCookie, 0 );
2177 if ( sie->si_syncUUID_ndn.bv_val ) {
2178 ch_free( sie->si_syncUUID_ndn.bv_val );
2180 if ( sie->si_presentlist ) {
2181 avl_free( sie->si_presentlist, avl_ber_bvfree );
2184 ldap_ld_free( sie->si_ld, 1, NULL, NULL );
2186 while ( !LDAP_LIST_EMPTY( &sie->si_nonpresentlist )) {
2187 struct nonpresent_entry* npe;
2188 npe = LDAP_LIST_FIRST( &sie->si_nonpresentlist );
2189 LDAP_LIST_REMOVE( npe, npe_link );
2190 if ( npe->npe_name ) {
2191 if ( npe->npe_name->bv_val ) {
2192 ch_free( npe->npe_name->bv_val );
2194 ch_free( npe->npe_name );
2196 if ( npe->npe_nname ) {
2197 if ( npe->npe_nname->bv_val ) {
2198 ch_free( npe->npe_nname->bv_val );
2200 ch_free( npe->npe_nname );
projects / openldap / blob