3 * Replication Engine which uses the LDAP Sync protocol
5 /* Copyright (c) 2003 by International Business Machines, Inc.
7 * International Business Machines, Inc. (hereinafter called IBM) grants
8 * permission under its copyrights to use, copy, modify, and distribute this
9 * Software with or without fee, provided that the above copyright notice and
10 * all paragraphs of this notice appear in all copies, and that the name of IBM
11 * not be used in connection with the marketing of any product incorporating
12 * the Software or modifications thereof, without specific, written prior
15 * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES,
16 * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
17 * PARTICULAR PURPOSE. IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL,
18 * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING
19 * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN
20 * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES.
27 #include <ac/string.h>
28 #include <ac/socket.h>
34 #include "lutil_ldap.h"
39 syncrepl_del_nonpresent( LDAP *, Operation * );
41 /* callback functions */
42 static int cookie_callback( struct slap_op *, struct slap_rep * );
43 static int dn_callback( struct slap_op *, struct slap_rep * );
44 static int nonpresent_callback( struct slap_op *, struct slap_rep * );
45 static int null_callback( struct slap_op *, struct slap_rep * );
46 static int contextcsn_callback( Operation*, SlapReply* );
48 static AttributeDescription **sync_descs;
50 struct runqueue_s syncrepl_rq;
55 sync_descs = ch_malloc( 4 * sizeof( AttributeDescription * ));
56 sync_descs[0] = slap_schema.si_ad_objectClass;
57 sync_descs[1] = slap_schema.si_ad_structuralObjectClass;
58 sync_descs[2] = slap_schema.si_ad_entryCSN;
75 BerElement *sync_ber = NULL;
76 struct berval *sync_bvalp = NULL;
80 struct timeval timeout;
82 /* setup LDAP SYNC control */
83 sync_ber = ber_alloc_t( LBER_USE_DER );
84 ber_set_option( sync_ber, LBER_OPT_BER_MEMCTX, NULL );
86 if ( si->syncCookie ) {
87 ber_printf( sync_ber, "{eO}", abs(si->type), si->syncCookie );
89 ber_printf( sync_ber, "{e}", abs(si->type) );
92 if ( ber_flatten( sync_ber, &sync_bvalp ) == LBER_ERROR ) {
93 ber_free( sync_ber, 1 );
96 ber_free( sync_ber, 1 );
98 ctrls = (LDAPControl**) sl_calloc( 3, sizeof(LDAPControl*), NULL );
100 c[0].ldctl_oid = LDAP_CONTROL_SYNC;
101 c[0].ldctl_value = (*sync_bvalp);
102 c[0].ldctl_iscritical = si->type < 0;
106 c[1].ldctl_oid = LDAP_CONTROL_PROXY_AUTHZ;
107 c[1].ldctl_value.bv_val = si->authzId;
108 c[1].ldctl_value.bv_len = strlen( si->authzId );
109 c[1].ldctl_iscritical = 1;
117 err = ldap_set_option( ld, LDAP_OPT_SERVER_CONTROLS, ctrls );
119 ber_bvfree( sync_bvalp );
122 if ( err != LDAP_OPT_SUCCESS )
123 fprintf( stderr, "Could not set controls : %d\n", err );
125 timeout.tv_sec = si->tlimit > 0 ? si->tlimit : 1;
127 rc = ldap_search_ext( ld, si->base, si->scope, si->filterstr,
128 si->attrs, si->attrsonly, sctrls, cctrls,
129 si->tlimit < 0 ? NULL : &timeout,
130 si->slimit, msgidp );
140 struct re_s* rtask = arg;
141 syncinfo_t *si = ( syncinfo_t * ) rtask->arg;
142 Backend *be = si->be;
144 SlapReply rs = {REP_RESULT};
147 LDAPControl **sctrls = NULL;
148 LDAPControl **rctrls = NULL;
149 LDAPControl *rctrlp = NULL;
150 BerElement *sync_ber = NULL;
151 struct berval *sync_bvalp = NULL;
153 BerElement *ctrl_ber = NULL;
154 BerElement *res_ber = NULL;
157 LDAPMessage *res = NULL;
158 LDAPMessage *msg = NULL;
162 int nresponses, nreferences, nextended, npartial;
163 int nresponses_psearch;
165 int cancel_msgid = -1;
167 struct berval *retdata = NULL;
169 int sync_info_arrived = 0;
173 struct berval syncUUID = { 0, NULL };
174 struct berval syncCookie = { 0, NULL };
175 struct berval syncCookie_req = { 0, NULL };
180 int syncinfo_arrived = 0;
183 AttributeDescription** descs = NULL;
195 struct berval base_bv = { 0, NULL };
196 struct berval pbase = { 0, NULL };
197 struct berval nbase = { 0, NULL };
198 struct berval sub_bv = { 0, NULL };
199 struct berval psubrdn = { 0, NULL };
200 struct berval nsubrdn = { 0, NULL };
201 struct berval psub = { 0, NULL };
202 struct berval nsub = { 0, NULL };
204 Modifications *modlist = NULL;
205 Modifications *ml, *mlnext;
206 char *def_filter_str = NULL;
211 struct timeval *tout_p = NULL;
212 struct timeval tout = { 10, 0 };
215 LDAP_LOG ( OPERATION, DETAIL1, "do_syncrepl\n", 0, 0, 0 );
217 Debug( LDAP_DEBUG_TRACE, "=>do_syncrepl\n", 0, 0, 0 );
223 if ( abs(si->type) != LDAP_SYNC_REFRESH_ONLY &&
224 abs(si->type) != LDAP_SYNC_REFRESH_AND_PERSIST ) {
228 si->sync_mode = LDAP_SYNC_STATE_MODE;
230 /* Init connection to master */
232 rc = ldap_initialize( &ld, si->provideruri );
233 if ( rc != LDAP_SUCCESS ) {
235 LDAP_LOG( OPERATION, ERR, "do_syncrepl: "
236 "ldap_initialize failed (%s)\n",
237 si->provideruri, 0, 0 );
239 Debug( LDAP_DEBUG_ANY, "do_syncrepl: "
240 "ldap_initialize failed (%s)\n",
241 si->provideruri, 0, 0 );
245 op.o_protocol = LDAP_VERSION3;
246 ldap_set_option( ld, LDAP_OPT_PROTOCOL_VERSION, &op.o_protocol );
251 rc = ldap_start_tls_s( ld, NULL, NULL );
252 if( rc != LDAP_SUCCESS ) {
254 LDAP_LOG ( OPERATION, ERR, "do_syncrepl: "
255 "%s: ldap_start_tls failed (%d)\n",
256 si->tls == TLS_CRITICAL ? "Error" : "Warning",
259 Debug( LDAP_DEBUG_ANY,
260 "%s: ldap_start_tls failed (%d)\n",
261 si->tls == TLS_CRITICAL ? "Error" : "Warning",
264 if( si->tls == TLS_CRITICAL )
269 if ( si->bindmethod == LDAP_AUTH_SASL ) {
270 #ifdef HAVE_CYRUS_SASL
273 if ( si->secprops != NULL ) {
274 int err = ldap_set_option( ld,
275 LDAP_OPT_X_SASL_SECPROPS, si->secprops);
277 if( err != LDAP_OPT_SUCCESS ) {
279 LDAP_LOG ( OPERATION, ERR, "do_bind: Error: "
280 "ldap_set_option(%s,SECPROPS,\"%s\") failed!\n",
281 si->provideruri, si->secprops, 0 );
283 Debug( LDAP_DEBUG_ANY, "Error: ldap_set_option "
284 "(%s,SECPROPS,\"%s\") failed!\n",
285 si->provideruri, si->secprops, NULL );
291 defaults = lutil_sasl_defaults( ld,
298 rc = ldap_sasl_interactive_bind_s( ld,
306 /* FIXME : different error behaviors according to
308 2) on err policy : exit, retry, backoff ...
310 if ( rc != LDAP_SUCCESS ) {
312 LDAP_LOG ( OPERATION, ERR, "do_syncrepl: "
313 "ldap_sasl_interactive_bind_s failed (%d)\n",
316 Debug( LDAP_DEBUG_ANY, "do_syncrepl: "
317 "ldap_sasl_interactive_bind_s failed (%d)\n",
322 #else /* HAVE_CYRUS_SASL */
323 fprintf( stderr, "not compiled with SASL support\n" );
327 rc = ldap_bind_s( ld, si->binddn, si->passwd, si->bindmethod );
328 if ( rc != LDAP_SUCCESS ) {
330 LDAP_LOG ( OPERATION, ERR, "do_syncrepl: "
331 "ldap_bind_s failed (%d)\n", rc, 0, 0 );
333 Debug( LDAP_DEBUG_ANY, "do_syncrepl: "
334 "ldap_bind_s failed (%d)\n", rc, 0, 0 );
340 /* set thread context in syncinfo */
343 /* set memory context */
344 #define SLAB_SIZE 1048576
346 memctx = sl_mem_create( memsiz, ctx );
347 op.o_tmpmemctx = memctx;
348 op.o_tmpmfuncs = &sl_mfuncs;
351 op.o_tag = LDAP_REQ_SEARCH;
352 op.o_dn = si->updatedn;
353 op.o_ndn = si->updatedn;
355 op.o_time = slap_get_time();
356 op.o_managedsait = 1;
357 op.o_threadctx = si->ctx;
360 op.o_connid = op.o_conn->c_connid;
361 op.ors_scope = LDAP_SCOPE_BASE;
362 op.ors_deref = LDAP_DEREF_NEVER;
365 op.ors_attrsonly = 0;
367 op.ors_filter = str2filter_x( &op, def_filter_str = "(objectClass=*)" );
368 ber_str2bv( def_filter_str, 0, 0, &op.ors_filterstr );
371 conn.c_send_ldap_result = slap_send_ldap_result;
372 conn.c_send_search_entry = slap_send_search_entry;
373 conn.c_send_search_reference = slap_send_search_reference;
375 /* get syncrepl cookie of shadow replica from subentry */
376 ber_str2bv( si->base, 0, 0, &base_bv );
377 dnPrettyNormal( 0, &base_bv, &pbase, &nbase, op.o_tmpmemctx );
379 sprintf( substr, "cn=syncrepl%d", si->id );
380 ber_str2bv( substr, 0, 0, &sub_bv );
381 dnPrettyNormal( 0, &sub_bv, &psubrdn, &nsubrdn, op.o_tmpmemctx );
383 build_new_dn( &op.o_req_dn, &pbase, &psubrdn, op.o_tmpmemctx );
384 build_new_dn( &op.o_req_ndn, &nbase, &nsubrdn, op.o_tmpmemctx );
386 /* set callback function */
387 cb.sc_response = cookie_callback;
390 /* search subentry to retrieve cookie */
391 si->syncCookie = NULL;
392 be->be_search( &op, &rs );
394 ber_dupbv( &syncCookie_req, si->syncCookie );
396 psub = be->be_nsuffix[0];
398 for ( n = 0; si->attrs[ n ] != NULL; n++ ) ;
401 /* Delete Attributes */
403 for ( i = 0; descs[i] != NULL; i++ ) {
404 for ( j = 0; si->attrs[j] != NULL; j++ ) {
405 if ( !strcmp( si->attrs[j], descs[i]->ad_cname.bv_val )) {
406 ch_free( si->attrs[j] );
407 for ( k = j; si->attrs[k] != NULL; k++ ) {
408 si->attrs[k] = si->attrs[k+1];
413 for ( n = 0; si->attrs[ n ] != NULL; n++ );
414 tmp = ( char ** ) ch_realloc( si->attrs, ( n + 4 ) * sizeof( char * ));
417 LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 );
419 Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 );
423 tmp = ( char ** ) ch_realloc( si->attrs, 5 * sizeof( char * ));
426 LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 );
428 Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 );
431 tmp[ n++ ] = ch_strdup( "*" );
439 for ( i = 0; descs[ i ] != NULL; i++ ) {
440 si->attrs[ n++ ] = ch_strdup ( descs[i]->ad_cname.bv_val );
441 si->attrs[ n ] = NULL;
444 rc = ldap_sync_search( si, ld, NULL, NULL, &msgid );
445 if( rc != LDAP_SUCCESS ) {
446 fprintf( stderr, "syncrepl: ldap_search_ext: %s (%d)\n",
447 ldap_err2string( rc ), rc );
451 if ( abs(si->type) == LDAP_SYNC_REFRESH_AND_PERSIST ){
457 while (( rc = ldap_result( ld, LDAP_RES_ANY, LDAP_MSG_ONE, tout_p, &res )) >= 0 ) {
460 if ( slapd_abrupt_shutdown ) {
467 for ( msg = ldap_first_message( ld, res );
469 msg = ldap_next_message( ld, msg ) )
471 syncCookie.bv_len = 0; syncCookie.bv_val = NULL;
472 switch( ldap_msgtype( msg ) ) {
473 case LDAP_RES_SEARCH_ENTRY:
474 entry = syncrepl_message_to_entry( si, ld, &op, msg,
475 &modlist, &syncstate, &syncUUID, &syncCookie );
476 rc_efree = syncrepl_entry( si, ld, &op, entry, modlist,
477 syncstate, &syncUUID, &syncCookie, !syncinfo_arrived );
478 if ( syncCookie.bv_len ) {
479 syncrepl_updateCookie( si, ld, &op, &psub, &syncCookie );
482 slap_mods_free( modlist );
489 case LDAP_RES_SEARCH_REFERENCE:
491 LDAP_LOG( OPERATION, ERR,
492 "do_syncrepl : reference received\n", 0, 0, 0 );
494 Debug( LDAP_DEBUG_ANY,
495 "do_syncrepl : reference received\n", 0, 0, 0 );
499 case LDAP_RES_SEARCH_RESULT:
500 ldap_parse_result( ld, msg, &err, NULL, NULL, NULL, &rctrls, 0 );
503 ctrl_ber = ber_alloc_t( LBER_USE_DER );
504 ber_set_option( ctrl_ber, LBER_OPT_BER_MEMCTX, &op.o_tmpmemctx );
505 ber_write( ctrl_ber, rctrlp->ldctl_value.bv_val, rctrlp->ldctl_value.bv_len, 0 );
506 ber_reset( ctrl_ber, 1 );
508 ber_scanf( ctrl_ber, "{" /*"}"*/);
509 if ( ber_peek_tag( ctrl_ber, &len )
510 == LDAP_SYNC_TAG_COOKIE ) {
511 ber_scanf( ctrl_ber, "o", &syncCookie );
514 value_match( &match, slap_schema.si_ad_entryCSN,
515 slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
516 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
517 &syncCookie_req, &syncCookie, &text );
518 if (si->type == LDAP_SYNC_REFRESH_AND_PERSIST) {
519 /* FIXME : different error behaviors according to
520 1) err code : LDAP_BUSY ...
521 2) on err policy : stop service, stop sync, retry
523 if ( syncCookie.bv_len && match < 0) {
524 syncrepl_updateCookie( si, ld, &op, &psub, &syncCookie );
527 ber_free( ctrl_ber, 1 );
530 /* FIXME : different error behaviors according to
531 1) err code : LDAP_BUSY ...
532 2) on err policy : stop service, stop sync, retry
534 if ( syncCookie.bv_len && match < 0 ) {
535 syncrepl_updateCookie( si, ld, &op, &psub, &syncCookie);
537 if ( si->sync_mode == LDAP_SYNC_STATE_MODE && match < 0 ) {
538 syncrepl_del_nonpresent( ld, &op );
541 ber_free( ctrl_ber, 1 );
546 case LDAP_RES_INTERMEDIATE:
547 rc = ldap_parse_intermediate( ld, msg,
548 &retoid, &retdata, NULL, 0 );
549 if ( !rc && !strcmp( retoid, LDAP_SYNC_INFO ) ) {
550 sync_info_arrived = 1;
551 res_ber = ber_init( retdata );
552 ber_scanf( res_ber, "{e" /*"}"*/, &syncstate );
554 if ( ber_peek_tag( res_ber, &len )
555 == LDAP_SYNC_TAG_COOKIE ) {
556 ber_scanf( res_ber, /*"{"*/ "o}", &syncCookie );
558 if ( syncstate == LDAP_SYNC_NEW_COOKIE ) {
560 LDAP_LOG( OPERATION, ERR,
561 "do_syncrepl : cookie required\n", 0, 0, 0 );
563 Debug( LDAP_DEBUG_ANY,
564 "do_syncrepl : cookie required\n", 0, 0, 0 );
569 value_match( &match, slap_schema.si_ad_entryCSN,
570 slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
571 SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
572 &syncCookie_req, &syncCookie, &text );
574 if ( syncCookie.bv_len && match < 0 ) {
575 syncrepl_updateCookie( si, ld, &op, &psub, &syncCookie);
578 if ( syncstate == LDAP_SYNC_STATE_MODE_DONE ) {
580 syncrepl_del_nonpresent( ld, &op );
582 si->sync_mode = LDAP_SYNC_LOG_MODE;
583 } else if ( syncstate == LDAP_SYNC_LOG_MODE_DONE ) {
584 si->sync_mode = LDAP_SYNC_PERSIST_MODE;
585 } else if ( syncstate == LDAP_SYNC_REFRESH_DONE ) {
586 si->sync_mode = LDAP_SYNC_PERSIST_MODE;
587 } else if ( syncstate != LDAP_SYNC_NEW_COOKIE ||
588 syncstate != LDAP_SYNC_LOG_MODE_DONE ) {
590 LDAP_LOG( OPERATION, ERR,
591 "do_syncrepl : unknown sync info\n", 0, 0, 0 );
593 Debug( LDAP_DEBUG_ANY,
594 "do_syncrepl : unknown sync info\n", 0, 0, 0 );
598 ldap_memfree( retoid );
599 ber_bvfree( retdata );
600 ber_free( res_ber, 1 );
604 LDAP_LOG( OPERATION, ERR,"do_syncrepl :"
605 " unknown intermediate "
606 "response\n", 0, 0, 0 );
608 Debug( LDAP_DEBUG_ANY, "do_syncrepl : "
609 "unknown intermediate response (%d)\n",
612 ldap_memfree( retoid );
613 ber_bvfree( retdata );
619 LDAP_LOG( OPERATION, ERR, "do_syncrepl : "
620 "unknown message\n", 0, 0, 0 );
622 Debug( LDAP_DEBUG_ANY, "do_syncrepl : "
623 "unknown message\n", 0, 0, 0 );
628 if ( syncCookie.bv_val )
629 ch_free( syncCookie.bv_val );
630 if ( syncUUID.bv_val )
631 ch_free( syncUUID.bv_val );
640 ldap_get_option( ld, LDAP_OPT_ERROR_NUMBER, &errno );
641 errstr = ldap_err2string( errno );
644 LDAP_LOG( OPERATION, ERR,
645 "do_syncrepl : %s\n", errstr, 0, 0 );
647 Debug( LDAP_DEBUG_ANY,
648 "do_syncrepl : %s\n", errstr, 0, 0 );
653 if ( syncCookie.bv_val )
654 ch_free( syncCookie.bv_val );
655 if ( syncCookie_req.bv_val )
656 ch_free( syncCookie_req.bv_val );
657 if ( syncUUID.bv_val )
658 ch_free( syncUUID.bv_val );
665 ldap_pvt_thread_mutex_lock( &syncrepl_rq.rq_mutex );
666 ldap_pvt_runqueue_stoptask( &syncrepl_rq, rtask );
667 if ( si->type == LDAP_SYNC_REFRESH_ONLY ) {
668 ldap_pvt_runqueue_resched( &syncrepl_rq, rtask );
670 ldap_pvt_runqueue_remove( &syncrepl_rq, rtask );
672 ldap_pvt_thread_mutex_unlock( &syncrepl_rq.rq_mutex );
678 syncrepl_message_to_entry(
683 Modifications **modlist,
685 struct berval *syncUUID,
686 struct berval *syncCookie
690 BerElement *ber = NULL;
692 struct berval bv = {0, NULL};
695 Modifications **modtail = modlist;
696 Backend *be = op->o_bd;
699 char txtbuf[SLAP_TEXT_BUFLEN];
700 size_t textlen = sizeof txtbuf;
702 struct berval **bvals = NULL;
704 struct berval bdn = {0, NULL};
706 struct berval empty_bv = { 0, NULL };
712 LDAPControl** rctrls = NULL;
713 BerElement* ctrl_ber;
717 Modifications *ml = NULL;
718 AttributeDescription** descs;
723 if ( ldap_msgtype( msg ) != LDAP_RES_SEARCH_ENTRY ) {
725 LDAP_LOG( OPERATION, ERR,
726 "Message type should be entry (%d)", ldap_msgtype( msg ), 0, 0 );
728 Debug( LDAP_DEBUG_ANY,
729 "Message type should be entry (%d)", ldap_msgtype( msg ), 0, 0 );
734 op->o_tag = LDAP_REQ_ADD;
736 rc = ldap_get_dn_ber( ld, msg, &ber, &bdn );
738 if ( rc != LDAP_SUCCESS ) {
740 LDAP_LOG( OPERATION, ERR,
741 "syncrepl_message_to_entry : dn get failed (%d)", rc, 0, 0 );
743 Debug( LDAP_DEBUG_ANY,
744 "syncrepl_message_to_entry : dn get failed (%d)", rc, 0, 0 );
749 e = ( Entry * ) ch_calloc( 1, sizeof( Entry ));
750 dnPrettyNormal( NULL, &bdn, &e->e_name, &e->e_nname, NULL );
754 while ( ber_remaining( ber ) ) {
755 tag = ber_scanf( ber, "{mW}", &tmp.sml_type, &tmp.sml_values );
757 if ( tag == LBER_ERROR ) break;
758 if ( tmp.sml_type.bv_val == NULL ) break;
760 mod = (Modifications *) ch_malloc( sizeof( Modifications ));
762 mod->sml_op = LDAP_MOD_REPLACE;
763 mod->sml_next = NULL;
764 mod->sml_desc = NULL;
765 mod->sml_type = tmp.sml_type;
766 mod->sml_bvalues = tmp.sml_bvalues;
767 mod->sml_nvalues = NULL;
770 modtail = &mod->sml_next;
773 if ( ber_scanf( ber, "}") == LBER_ERROR ) {
775 LDAP_LOG( OPERATION, ERR,
776 "syncrepl_message_to_entry: ber_scanf failed\n", 0, 0, 0 );
778 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: ber_scanf failed\n",
785 tmpber = ldap_get_message_ber( msg );
786 ber = ber_dup( tmpber );
788 ber_scanf( ber, "{xx" );
790 rc = ldap_int_get_controls( ber, &rctrls );
792 if ( rc != LDAP_SUCCESS ) {
794 LDAP_LOG( OPERATION, ERR,
795 "syncrepl_message_to_entry : control get failed (%d)", rc, 0, 0 );
797 Debug( LDAP_DEBUG_ANY,
798 "syncrepl_message_to_entry : control get failed (%d)", rc, 0, 0 );
805 ctrl_ber = ber_alloc_t( LBER_USE_DER );
806 ber_set_option( ctrl_ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx );
807 ber_write( ctrl_ber, rctrlp->ldctl_value.bv_val, rctrlp->ldctl_value.bv_len, 0 );
808 ber_reset( ctrl_ber, 1 );
809 ber_scanf( ctrl_ber, "{eo", syncstate, syncUUID );
810 if ( ber_peek_tag( ctrl_ber, &len ) == LDAP_SYNC_TAG_COOKIE ) {
811 ber_scanf( ctrl_ber, "o}", syncCookie );
813 ber_free( ctrl_ber, 1 );
814 ldap_controls_free( rctrls );
817 LDAP_LOG( OPERATION, ERR,"syncrepl_message_to_entry : "
818 " rctrls absent\n", 0, 0, 0 );
820 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry :"
821 " rctrls absent\n", 0, 0, 0 );
825 if ( *syncstate == LDAP_SYNC_PRESENT || *syncstate == LDAP_SYNC_DELETE ) {
829 if ( *modlist == NULL ) {
831 LDAP_LOG( OPERATION, ERR,
832 "syncrepl_message_to_entry: no attributes\n", 0, 0, 0 );
834 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: no attributes\n",
840 while ( ml != NULL ) {
841 AttributeDescription *ad = NULL;
842 rc = slap_bv2ad( &ml->sml_type, &ml->sml_desc, &text );
844 if( rc != LDAP_SUCCESS ) {
854 rc = slap_mods_check( *modlist, 1, &text, txtbuf, textlen, NULL );
856 if ( rc != LDAP_SUCCESS ) {
858 LDAP_LOG( OPERATION, ERR,
859 "syncrepl_message_to_entry: mods check (%s)\n", text, 0, 0 );
861 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods check (%s)\n",
867 rc = slap_mods2entry( *modlist, &e, 1, 1, &text, txtbuf, textlen);
868 if( rc != LDAP_SUCCESS ) {
870 LDAP_LOG( OPERATION, ERR,
871 "syncrepl_message_to_entry: mods2entry (%s)\n", text, 0, 0 );
873 Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods2entry (%s)\n",
886 syncuuid_cmp( const void* v_uuid1, const void* v_uuid2 )
888 const struct berval *uuid1 = v_uuid1;
889 const struct berval *uuid2 = v_uuid2;
890 int rc = uuid1->bv_len - uuid2->bv_len;
892 return ( strcmp( uuid1->bv_val, uuid2->bv_val ) );
901 Modifications* modlist,
903 struct berval* syncUUID,
904 struct berval* syncCookie,
908 Backend *be = op->o_bd;
910 struct berval csn_bv = {0, NULL};
911 struct berval *syncuuid_bv = NULL;
912 char csnbuf[ LDAP_LUTIL_CSNSTR_BUFSIZE ];
914 SlapReply rs = {REP_RESULT};
915 int rc = LDAP_SUCCESS;
917 struct berval base_bv = {0, NULL};
925 ( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_ADD )) {
926 syncuuid_bv = ber_dupbv( NULL, syncUUID );
927 avl_insert( &si->presentlist, (caddr_t) syncuuid_bv,
928 syncuuid_cmp, avl_dup_error );
931 if ( syncstate == LDAP_SYNC_PRESENT ) {
939 filterstr = (char *) sl_malloc( strlen("entryUUID=") + syncUUID->bv_len + 1,
941 strcpy( filterstr, "entryUUID=" );
942 strcat( filterstr, syncUUID->bv_val );
945 si->syncUUID_ndn = NULL;
947 filter = str2filter( filterstr );
948 ber_str2bv( filterstr, strlen(filterstr), 1, &op->ors_filterstr );
949 ch_free( filterstr );
950 op->ors_filter = filter;
951 op->ors_scope = LDAP_SCOPE_SUBTREE;
953 /* get syncrepl cookie of shadow replica from subentry */
954 ber_str2bv( si->base, strlen(si->base), 1, &base_bv );
955 dnPrettyNormal( 0, &base_bv, &op->o_req_dn, &op->o_req_ndn, op->o_tmpmemctx );
956 ch_free( base_bv.bv_val );
958 /* set callback function */
959 op->o_callback = &cb;
960 cb.sc_response = dn_callback;
963 si->syncUUID_ndn = NULL;
965 rc = be->be_search( op, &rs );
967 ch_free( op->o_req_dn.bv_val );
968 ch_free( op->o_req_ndn.bv_val );
969 filter_free( op->ors_filter );
970 ch_free( op->ors_filterstr.bv_val );
972 cb.sc_response = null_callback;
975 if ( rc == LDAP_SUCCESS && si->syncUUID_ndn && si->sync_mode != LDAP_SYNC_LOG_MODE ) {
976 op->o_req_dn = *si->syncUUID_ndn;
977 op->o_req_ndn = *si->syncUUID_ndn;
978 op->o_tag = LDAP_REQ_DELETE;
979 rc = be->be_delete( op, &rs );
982 if ( si->syncUUID_ndn ) {
983 ber_bvfree( si->syncUUID_ndn );
986 switch ( syncstate ) {
988 case LDAP_SYNC_MODIFY :
990 if ( rc == LDAP_SUCCESS ||
991 rc == LDAP_REFERRAL ||
992 rc == LDAP_NO_SUCH_OBJECT ) {
994 attr_delete( &e->e_attrs, slap_schema.si_ad_entryUUID );
995 attr_merge_normalize_one( e, slap_schema.si_ad_entryUUID, syncUUID, op->o_tmpmemctx );
997 op->o_tag = LDAP_REQ_ADD;
999 op->o_req_dn = e->e_name;
1000 op->o_req_ndn = e->e_nname;
1001 rc = be->be_add( op, &rs );
1003 if ( rc != LDAP_SUCCESS ) {
1004 if ( rc == LDAP_ALREADY_EXISTS ) {
1005 op->o_tag = LDAP_REQ_MODIFY;
1006 op->orm_modlist = modlist;
1007 op->o_req_dn = e->e_name;
1008 op->o_req_ndn = e->e_nname;
1009 rc = be->be_modify( op, &rs );
1011 if ( rc != LDAP_SUCCESS ) {
1013 LDAP_LOG( OPERATION, ERR,
1014 "syncrepl_entry : be_modify failed (%d)\n",
1017 Debug( LDAP_DEBUG_ANY,
1018 "syncrepl_entry : be_modify failed (%d)\n",
1023 } else if ( rc == LDAP_REFERRAL ||
1024 rc == LDAP_NO_SUCH_OBJECT ) {
1025 syncrepl_add_glue( si, ld, op, e,
1027 syncUUID, syncCookie);
1032 LDAP_LOG( OPERATION, ERR,
1033 "syncrepl_entry : be_add failed (%d)\n",
1036 Debug( LDAP_DEBUG_ANY,
1037 "syncrepl_entry : be_add failed (%d)\n",
1045 be_entry_release_w( op, e );
1050 LDAP_LOG( OPERATION, ERR,
1051 "syncrepl_entry : be_search failed (%d)\n", rc, 0, 0 );
1053 Debug( LDAP_DEBUG_ANY,
1054 "syncrepl_entry : be_search failed (%d)\n", rc, 0, 0 );
1060 case LDAP_SYNC_DELETE :
1061 if ( si->sync_mode == LDAP_SYNC_LOG_MODE ) {
1062 op->o_req_dn = *si->syncUUID_ndn;
1063 op->o_req_ndn = *si->syncUUID_ndn;
1064 op->o_tag = LDAP_REQ_DELETE;
1065 rc = be->be_delete( op, &rs );
1067 /* Already deleted otherwise */
1072 LDAP_LOG( OPERATION, ERR,
1073 "syncrepl_entry : unknown syncstate\n", 0, 0, 0 );
1075 Debug( LDAP_DEBUG_ANY,
1076 "syncrepl_entry : unknown syncstate\n", 0, 0, 0 );
1083 syncrepl_del_nonpresent(
1088 Backend* be = op->o_bd;
1089 syncinfo_t *si = op->o_si;
1091 struct berval base_bv = {0, NULL};
1093 SlapReply rs = {REP_RESULT};
1094 struct berval filterstr_bv = {0, NULL};
1095 struct nonpresent_entry *np_list, *np_prev;
1097 ber_str2bv( si->base, strlen(si->base), 1, &base_bv );
1098 dnPrettyNormal(0, &base_bv, &op->o_req_dn, &op->o_req_ndn, op->o_tmpmemctx );
1099 ch_free( base_bv.bv_val );
1101 filter = str2filter( si->filterstr );
1103 cb.sc_response = nonpresent_callback;
1106 op->o_callback = &cb;
1107 op->o_tag = LDAP_REQ_SEARCH;
1108 op->ors_scope = si->scope;
1109 op->ors_deref = LDAP_DEREF_NEVER;
1112 op->ors_attrsonly = 0;
1113 op->ors_attrs = NULL;
1114 op->ors_filter = filter;
1115 ber_str2bv( si->filterstr, strlen( si->filterstr ), 1, &op->ors_filterstr );
1117 op->o_nocaching = 1;
1118 be->be_search( op, &rs );
1119 op->o_nocaching = 0;
1121 if ( !LDAP_LIST_EMPTY( &si->nonpresentlist ) ) {
1122 np_list = LDAP_LIST_FIRST( &si->nonpresentlist );
1123 while ( np_list != NULL ) {
1124 LDAP_LIST_REMOVE( np_list, np_link );
1126 np_list = LDAP_LIST_NEXT( np_list, np_link );
1127 op->o_tag = LDAP_REQ_DELETE;
1128 op->o_callback = &cb;
1129 cb.sc_response = null_callback;
1131 op->o_req_dn = *np_prev->dn;
1132 op->o_req_ndn = *np_prev->ndn;
1133 op->o_bd->be_delete( op, &rs );
1134 ber_bvfree( np_prev->dn );
1135 ber_bvfree( np_prev->ndn );
1136 op->o_req_dn.bv_val = NULL;
1137 op->o_req_ndn.bv_val = NULL;
1142 if ( op->o_req_dn.bv_val )
1143 ch_free( op->o_req_dn.bv_val );
1144 if ( op->o_req_ndn.bv_val )
1145 ch_free( op->o_req_ndn.bv_val );
1146 filter_free( op->ors_filter );
1147 ch_free( op->ors_filterstr.bv_val );
1159 Modifications* modlist,
1161 struct berval* syncUUID,
1162 struct berval* syncCookie
1165 Backend *be = op->o_bd;
1166 struct berval uuid_bv = {0, NULL};
1170 char uuidbuf[ LDAP_LUTIL_UUIDSTR_BUFSIZE ];
1173 struct berval dn = {0, NULL};
1174 struct berval pdn = {0, NULL};
1175 struct berval ndn = {0, NULL};
1176 struct berval rdn = {0, NULL};
1178 SlapReply rs = {REP_RESULT};
1179 Connection *conn = op->o_conn;
1182 op->o_tag = LDAP_REQ_ADD;
1183 op->o_callback = &cb;
1184 cb.sc_response = null_callback;
1187 ber_dupbv( &dn, &e->e_nname );
1188 ber_dupbv( &pdn, &e->e_nname );
1191 while ( !be_issuffix ( be, &pdn )) {
1192 dnParent( &dn, &pdn );
1193 dn.bv_val = pdn.bv_val;
1194 dn.bv_len = pdn.bv_len;
1199 for ( i = 0; i <= levels; i++ ) {
1200 glue = (Entry*) ch_calloc( 1, sizeof(Entry) );
1201 ber_dupbv( &dn, &e->e_nname );
1205 for ( k = 0; k < j; k++ ) {
1206 dnParent( &dn, &pdn );
1207 dn.bv_val = pdn.bv_val;
1208 dn.bv_len = pdn.bv_len;
1211 dnPrettyNormal( 0, &dn, &pdn, &ndn, op->o_tmpmemctx );
1212 ber_dupbv( &glue->e_name, &pdn );
1213 ber_dupbv( &glue->e_nname, &ndn );
1215 ch_free( pdn.bv_val );
1216 ch_free( ndn.bv_val );
1218 a = ch_calloc( 1, sizeof( Attribute ));
1219 a->a_desc = slap_schema.si_ad_objectClass;
1221 a->a_vals = ch_calloc( 3, sizeof( struct berval ));
1222 ber_str2bv( "top", strlen("top"), 1, &a->a_vals[0] );
1223 ber_str2bv( "glue", strlen("glue"), 1, &a->a_vals[1] );
1224 a->a_vals[2].bv_len = 0;
1225 a->a_vals[2].bv_val = NULL;
1227 a->a_nvals = ch_calloc( 3, sizeof( struct berval ));
1228 ber_str2bv( "top", strlen("top"), 1, &a->a_nvals[0] );
1229 ber_str2bv( "glue", strlen("glue"), 1, &a->a_nvals[1] );
1230 a->a_nvals[2].bv_len = 0;
1231 a->a_nvals[2].bv_val = NULL;
1233 a->a_next = glue->e_attrs;
1236 a = ch_calloc( 1, sizeof( Attribute ));
1237 a->a_desc = slap_schema.si_ad_structuralObjectClass;
1239 a->a_vals = ch_calloc( 2, sizeof( struct berval ));
1240 ber_str2bv( "glue", strlen("glue"), 1, &a->a_vals[0] );
1241 a->a_vals[1].bv_len = 0;
1242 a->a_vals[1].bv_val = NULL;
1244 a->a_nvals = ch_calloc( 2, sizeof( struct berval ));
1245 ber_str2bv( "glue", strlen("glue"), 1, &a->a_nvals[0] );
1246 a->a_nvals[1].bv_len = 0;
1247 a->a_nvals[1].bv_val = NULL;
1249 a->a_next = glue->e_attrs;
1252 if ( !strcmp( e->e_nname.bv_val, glue->e_nname.bv_val )) {
1253 op->o_req_dn = e->e_name;
1254 op->o_req_ndn = e->e_nname;
1256 rc = be->be_add ( op, &rs );
1257 if ( rc == LDAP_SUCCESS )
1258 be_entry_release_w( op, e );
1263 op->o_req_dn = glue->e_name;
1264 op->o_req_ndn = glue->e_nname;
1266 rc = be->be_add ( op, &rs );
1267 if ( rc == LDAP_SUCCESS ) {
1268 be_entry_release_w( op, glue );
1270 /* incl. ALREADY EXIST */
1280 syncrepl_updateCookie(
1285 struct berval *syncCookie
1288 Backend *be = op->o_bd;
1290 Modifications *mlnext;
1292 Modifications *modlist = NULL;
1293 Modifications **modtail = &modlist;
1295 struct berval* ocbva = NULL;
1296 struct berval* cnbva = NULL;
1297 struct berval* ssbva = NULL;
1298 struct berval* scbva = NULL;
1303 char txtbuf[SLAP_TEXT_BUFLEN];
1304 size_t textlen = sizeof txtbuf;
1309 struct berval sub_bv = { 0, NULL };
1310 struct berval psubrdn = { 0, NULL };
1313 SlapReply rs = {REP_RESULT};
1315 ocbva = ( struct berval * ) ch_calloc( 4, sizeof( struct berval ));
1316 cnbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval ));
1317 ssbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval ));
1318 scbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval ));
1320 /* update in memory cookie */
1321 if ( si->syncCookie != NULL ) {
1322 ber_bvfree( si->syncCookie );
1324 si->syncCookie = ber_dupbv( NULL, syncCookie );
1325 ber_str2bv( "top", strlen("top"), 1, &ocbva[0] );
1326 ber_str2bv( "subentry", strlen("subentry"), 1, &ocbva[1] );
1327 ber_str2bv( "syncConsumerSubentry",
1328 strlen("syncConsumerSubentry"), 1, &ocbva[2] );
1329 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1330 mod->sml_op = LDAP_MOD_REPLACE;
1331 ber_str2bv( "objectClass", strlen("objectClass"), 1, &mod->sml_type );
1332 mod->sml_bvalues = ocbva;
1334 modtail = &mod->sml_next;
1336 sprintf( substr, "syncrepl%d", si->id );
1337 sprintf( rdnstr, "cn=%s", substr );
1338 ber_str2bv( substr, strlen( substr ), 1, &cnbva[0] );
1339 ber_str2bv( rdnstr, strlen( rdnstr ), 1, &psubrdn );
1340 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1341 mod->sml_op = LDAP_MOD_REPLACE;
1342 ber_str2bv( "cn", strlen("cn"), 1, &mod->sml_type );
1343 mod->sml_bvalues = cnbva;
1345 modtail = &mod->sml_next;
1347 ber_dupbv( &scbva[0], si->syncCookie );
1348 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1349 mod->sml_op = LDAP_MOD_REPLACE;
1350 ber_str2bv( "syncreplCookie", strlen("syncreplCookie"),
1351 1, &mod->sml_type );
1352 mod->sml_bvalues = scbva;
1354 modtail = &mod->sml_next;
1356 ber_str2bv( "{}", strlen("{}"), 1, &ssbva[0] );
1357 mod = (Modifications *) ch_calloc( 1, sizeof( Modifications ));
1358 mod->sml_op = LDAP_MOD_REPLACE;
1359 ber_str2bv( "subtreeSpecification",
1360 strlen("subtreeSpecification"), 1, &mod->sml_type );
1361 mod->sml_bvalues = ssbva;
1363 modtail = &mod->sml_next;
1365 rc = slap_mods_check( modlist, 1, &text, txtbuf, textlen, NULL );
1367 if ( rc != LDAP_SUCCESS ) {
1369 LDAP_LOG( OPERATION, ERR,
1370 "syncrepl_updateCookie: mods check (%s)\n", text, 0, 0 );
1372 Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods check (%s)\n",
1377 op->o_tag = LDAP_REQ_ADD;
1378 rc = slap_mods_opattrs( op, modlist, modtail,
1379 &text,txtbuf, textlen );
1381 for ( ml = modlist; ml != NULL; ml = mlnext ) {
1382 mlnext = ml->sml_next;
1383 ml->sml_op = LDAP_MOD_REPLACE;
1386 if( rc != LDAP_SUCCESS ) {
1388 LDAP_LOG( OPERATION, ERR,
1389 "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 );
1391 Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods opattrs (%s)\n",
1396 e = ( Entry * ) ch_calloc( 1, sizeof( Entry ));
1398 build_new_dn( &sub_bv, pdn, &psubrdn, NULL );
1399 dnPrettyNormal( NULL, &sub_bv, &e->e_name, &e->e_nname, NULL );
1400 ch_free( sub_bv.bv_val );
1401 ch_free( psubrdn.bv_val );
1405 rc = slap_mods2entry( modlist, &e, 1, 1, &text, txtbuf, textlen );
1407 if( rc != LDAP_SUCCESS ) {
1409 LDAP_LOG( OPERATION, ERR,
1410 "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 );
1412 Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods2entry (%s)\n",
1417 cb.sc_response = null_callback;
1420 op->o_callback = &cb;
1421 op->o_req_dn = e->e_name;
1422 op->o_req_ndn = e->e_nname;
1424 /* update persistent cookie */
1425 update_cookie_retry:
1426 op->o_tag = LDAP_REQ_MODIFY;
1427 op->orm_modlist = modlist;
1428 rc = be->be_modify( op, &rs );
1430 if ( rc != LDAP_SUCCESS ) {
1431 if ( rc == LDAP_REFERRAL ||
1432 rc == LDAP_NO_SUCH_OBJECT ) {
1433 op->o_tag = LDAP_REQ_ADD;
1435 rc = be->be_add( op, &rs );
1436 if ( rc != LDAP_SUCCESS ) {
1437 if ( rc == LDAP_ALREADY_EXISTS ) {
1438 goto update_cookie_retry;
1439 } else if ( rc == LDAP_REFERRAL ||
1440 rc == LDAP_NO_SUCH_OBJECT ) {
1442 LDAP_LOG( OPERATION, ERR,
1443 "cookie will be non-persistent\n",
1446 Debug( LDAP_DEBUG_ANY,
1447 "cookie will be non-persistent\n",
1452 LDAP_LOG( OPERATION, ERR,
1453 "be_add failed (%d)\n",
1456 Debug( LDAP_DEBUG_ANY,
1457 "be_add failed (%d)\n",
1462 be_entry_release_w( op, e );
1467 LDAP_LOG( OPERATION, ERR,
1468 "be_modify failed (%d)\n", rc, 0, 0 );
1470 Debug( LDAP_DEBUG_ANY,
1471 "be_modify failed (%d)\n", rc, 0, 0 );
1483 slap_mods_free( modlist );
1490 avl_ber_bvfree( void *bv )
1495 if ( ((struct berval *)bv)->bv_val != NULL ) {
1496 ch_free ( ((struct berval *)bv)->bv_val );
1498 ch_free ( (char *) bv );
1507 syncinfo_t *si = op->o_callback->sc_private;
1510 if ( rs->sr_type != REP_SEARCH ) return LDAP_SUCCESS;
1512 a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_syncreplCookie );
1515 si->syncCookie = NULL;
1517 si->syncCookie = ber_dupbv( NULL, &a->a_vals[0] );
1519 return LDAP_SUCCESS;
1528 syncinfo_t *si = op->o_callback->sc_private;
1530 if ( rs->sr_type == REP_SEARCH ) {
1531 if ( si->syncUUID_ndn != NULL ) {
1533 LDAP_LOG( OPERATION, ERR,
1534 "dn_callback : multiple entries match dn\n", 0, 0, 0 );
1536 Debug( LDAP_DEBUG_ANY,
1537 "dn_callback : multiple entries match dn\n", 0, 0, 0 );
1540 if ( rs->sr_entry == NULL ) {
1541 si->syncUUID_ndn = NULL;
1543 si->syncUUID_ndn = ber_dupbv( NULL, &rs->sr_entry->e_nname );
1548 return LDAP_SUCCESS;
1552 nonpresent_callback(
1557 syncinfo_t *si = op->o_callback->sc_private;
1560 struct berval* present_uuid = NULL;
1562 SlapReply rs_cb = {REP_RESULT};
1563 struct nonpresent_entry *np_entry;
1565 if ( rs->sr_type == REP_RESULT ) {
1566 count = avl_free( si->presentlist, avl_ber_bvfree );
1567 si->presentlist = NULL;
1568 return LDAP_SUCCESS;
1569 } else if ( rs->sr_type == REP_SEARCH ) {
1570 a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryUUID );
1575 present_uuid = avl_find( si->presentlist, &a->a_vals[0], syncuuid_cmp );
1577 if ( present_uuid == NULL ) {
1578 np_entry = (struct nonpresent_entry *)
1579 ch_calloc( 1, sizeof( struct nonpresent_entry ));
1580 np_entry->dn = ber_dupbv( NULL, &rs->sr_entry->e_name );
1581 np_entry->ndn = ber_dupbv( NULL, &rs->sr_entry->e_nname );
1582 LDAP_LIST_INSERT_HEAD( &si->nonpresentlist, np_entry, np_link );
1584 avl_delete( &si->presentlist,
1585 &a->a_vals[0], syncuuid_cmp );
1586 ch_free( present_uuid->bv_val );
1587 ch_free( present_uuid );
1589 return LDAP_SUCCESS;
1591 return LDAP_SUCCESS;
1602 syncinfo_t *si = op->o_callback->sc_private;
1604 if ( rs->sr_err != LDAP_SUCCESS &&
1605 rs->sr_err != LDAP_REFERRAL &&
1606 rs->sr_err != LDAP_ALREADY_EXISTS &&
1607 rs->sr_err != LDAP_NO_SUCH_OBJECT ) {
1609 LDAP_LOG( OPERATION, ERR,
1610 "null_callback : error code 0x%x\n",
1613 Debug( LDAP_DEBUG_ANY,
1614 "null_callback : error code 0x%x\n",
1618 return LDAP_SUCCESS;
1623 str2clist( char ***out, char *in, const char *brkstr )
1632 /* find last element in list */
1633 for (i = 0; *out && *out[i]; i++);
1635 /* protect the input string from strtok */
1636 str = ch_strdup( in );
1638 if ( *str == '\0' ) {
1643 /* Count words in string */
1645 for ( s = str; *s; s++ ) {
1646 if ( strchr( brkstr, *s ) != NULL ) {
1651 *out = ch_realloc( *out, ( i + j + 1 ) * sizeof( char * ) );
1653 for ( s = ldap_pvt_strtok( str, brkstr, &lasts );
1655 s = ldap_pvt_strtok( NULL, brkstr, &lasts ) )
1657 *new = ch_strdup( s );
projects / openldap / blob