X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fadd.c;h=0c5ea86c52f4c7d65ee3bbe2fc8508772c0cce04;hb=6f26183f204f95821740dd188ca90efa4fda6134;hp=458cdbaa08438f5ea564932f026ed591d7475df8;hpb=3336619c800cb12b9553f68b58179ea1def802ff;p=openldap diff --git a/servers/slapd/add.c b/servers/slapd/add.c index 458cdbaa08..0c5ea86c52 100644 --- a/servers/slapd/add.c +++ b/servers/slapd/add.c @@ -1,6 +1,6 @@ /* $OpenLDAP$ */ /* - * Copyright 1998-2000 The OpenLDAP Foundation, All Rights Reserved. + * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved. * COPYING RESTRICTIONS APPLY, see COPYRIGHT file */ /* @@ -16,6 +16,7 @@ */ #include "portable.h" +#include "slapi_common.h" #include #include @@ -24,11 +25,7 @@ #include "ldap_pvt.h" #include "slap.h" - -static int slap_mods2entry( - Modifications *mods, - Entry **e, - const char **text ); +#include "slapi.h" int do_add( Connection *conn, Operation *op ) @@ -40,16 +37,17 @@ do_add( Connection *conn, Operation *op ) ber_tag_t tag; Entry *e; Backend *be; - LDAPModList *modlist = NULL; - LDAPModList **modtail = &modlist; - Modifications *mods = NULL; + Modifications *modlist = NULL; + Modifications **modtail = &modlist; + Modifications tmp; const char *text; int rc = LDAP_SUCCESS; int manageDSAit; + Slapi_PBlock *pb = op->o_pb; + #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ENTRY, - "do_add: conn %d enter\n", conn->c_connid )); + LDAP_LOG( OPERATION, ENTRY, "do_add: conn %d enter\n", conn->c_connid,0,0 ); #else Debug( LDAP_DEBUG_TRACE, "do_add\n", 0, 0, 0 ); #endif @@ -66,10 +64,10 @@ do_add( Connection *conn, Operation *op ) */ /* get the name */ - if ( ber_scanf( ber, "{o", /*}*/ &dn ) == LBER_ERROR ) { + if ( ber_scanf( ber, "{m", /*}*/ &dn ) == LBER_ERROR ) { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ERR, - "do_add: conn %d ber_scanf failed\n", conn->c_connid )); + LDAP_LOG( OPERATION, ERR, + "do_add: conn %d ber_scanf failed\n", conn->c_connid,0,0 ); #else Debug( LDAP_DEBUG_ANY, "do_add: ber_scanf failed\n", 0, 0, 0 ); #endif @@ -79,58 +77,24 @@ do_add( Connection *conn, Operation *op ) } e = (Entry *) ch_calloc( 1, sizeof(Entry) ); - e->e_name.bv_val = NULL; - e->e_name.bv_len = 0; - e->e_nname.bv_val = NULL; - e->e_nname.bv_len = 0; - e->e_attrs = NULL; - e->e_private = NULL; - { - struct berval *pdn = NULL; - rc = dnPretty( NULL, &dn, &pdn ); + rc = dnPrettyNormal( NULL, &dn, &e->e_name, &e->e_nname ); - if( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ERR, - "do_add: conn %d invalid dn (%s)\n", conn->c_connid, - dn.bv_val )); -#else - Debug( LDAP_DEBUG_ANY, "do_add: invalid dn (%s)\n", dn.bv_val, 0, 0 ); -#endif - send_ldap_result( conn, op, rc = LDAP_INVALID_DN_SYNTAX, NULL, - "invalid DN", NULL, NULL ); - goto done; - } - - e->e_name = *pdn; - free( pdn ); - } - - { - struct berval *ndn = NULL; - rc = dnNormalize( NULL, &dn, &ndn ); - - if( rc != LDAP_SUCCESS ) { + if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ERR, - "do_add: conn %d invalid dn (%s)\n", conn->c_connid, - dn.bv_val )); + LDAP_LOG( OPERATION, ERR, + "do_add: conn %d invalid dn (%s)\n", conn->c_connid, dn.bv_val, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_add: invalid dn (%s)\n", dn.bv_val, 0, 0 ); + Debug( LDAP_DEBUG_ANY, "do_add: invalid dn (%s)\n", dn.bv_val, 0, 0 ); #endif - send_ldap_result( conn, op, rc = LDAP_INVALID_DN_SYNTAX, NULL, + send_ldap_result( conn, op, rc = LDAP_INVALID_DN_SYNTAX, NULL, "invalid DN", NULL, NULL ); - goto done; - } - - e->e_nname = *ndn; - free( ndn ); + goto done; } #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ARGS, - "do_add: conn %d dn (%s)\n", conn->c_connid, e->e_dn )); + LDAP_LOG( OPERATION, ARGS, + "do_add: conn %d dn (%s)\n", conn->c_connid, e->e_dn, 0 ); #else Debug( LDAP_DEBUG_ARGS, "do_add: dn (%s)\n", e->e_dn, 0, 0 ); #endif @@ -139,50 +103,53 @@ do_add( Connection *conn, Operation *op ) for ( tag = ber_first_element( ber, &len, &last ); tag != LBER_DEFAULT; tag = ber_next_element( ber, &len, last ) ) { - LDAPModList *mod = (LDAPModList *) ch_malloc( sizeof(LDAPModList) ); - mod->ml_op = LDAP_MOD_ADD; - mod->ml_next = NULL; + Modifications *mod; + ber_tag_t rtag; - rc = ber_scanf( ber, "{a{V}}", &mod->ml_type, &mod->ml_bvalues ); + rtag = ber_scanf( ber, "{m{W}}", &tmp.sml_type, &tmp.sml_bvalues ); - if ( rc == LBER_ERROR ) { + if ( rtag == LBER_ERROR ) { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ERR, - "do_add: conn %d decoding error \n", conn->c_connid )); + LDAP_LOG( OPERATION, ERR, + "do_add: conn %d decoding error \n", conn->c_connid, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "do_add: decoding error\n", 0, 0, 0 ); #endif send_ldap_disconnect( conn, op, LDAP_PROTOCOL_ERROR, "decoding error" ); rc = -1; - free( mod ); goto done; } - if ( mod->ml_bvalues == NULL ) { + if ( tmp.sml_bvalues == NULL ) { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_INFO, + LDAP_LOG( OPERATION, INFO, "do_add: conn %d no values for type %s\n", - conn->c_connid, mod->ml_type )); + conn->c_connid, tmp.sml_type.bv_val, 0 ); #else Debug( LDAP_DEBUG_ANY, "no values for type %s\n", - mod->ml_type, 0, 0 ); + tmp.sml_type.bv_val, 0, 0 ); #endif send_ldap_result( conn, op, rc = LDAP_PROTOCOL_ERROR, NULL, "no values for attribute type", NULL, NULL ); - free( mod->ml_type ); - free( mod ); goto done; } + mod = (Modifications *) ch_malloc( sizeof(Modifications) ); + + mod->sml_op = LDAP_MOD_ADD; + mod->sml_next = NULL; + mod->sml_desc = NULL; + mod->sml_type = tmp.sml_type; + mod->sml_bvalues = tmp.sml_bvalues; *modtail = mod; - modtail = &mod->ml_next; + modtail = &mod->sml_next; } if ( ber_scanf( ber, /*{*/ "}") == LBER_ERROR ) { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_ERR, - "do_add: conn %d ber_scanf failed\n", conn->c_connid )); + LDAP_LOG( OPERATION, ERR, + "do_add: conn %d ber_scanf failed\n", conn->c_connid, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "do_add: ber_scanf failed\n", 0, 0, 0 ); #endif @@ -194,8 +161,8 @@ do_add( Connection *conn, Operation *op ) if( (rc = get_ctrls( conn, op, 1 )) != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_INFO, - "do_add: conn %d get_ctrls failed\n", conn->c_connid )); + LDAP_LOG( OPERATION, INFO, + "do_add: conn %d get_ctrls failed\n", conn->c_connid, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "do_add: get_ctrls failed\n", 0, 0, 0 ); #endif @@ -208,23 +175,21 @@ do_add( Connection *conn, Operation *op ) goto done; } - Statslog( LDAP_DEBUG_STATS, "conn=%ld op=%d ADD dn=\"%s\"\n", + Statslog( LDAP_DEBUG_STATS, "conn=%lu op=%lu ADD dn=\"%s\"\n", op->o_connid, op->o_opid, e->e_dn, 0, 0 ); - if( e->e_ndn == NULL || *e->e_ndn == '\0' ) { + if( e->e_nname.bv_len == 0 ) { /* protocolError may be a more appropriate error */ send_ldap_result( conn, op, rc = LDAP_ALREADY_EXISTS, NULL, "root DSE already exists", NULL, NULL ); goto done; -#if defined( SLAPD_SCHEMA_DN ) - } else if ( strcasecmp( e->e_ndn, SLAPD_SCHEMA_DN ) == 0 ) { + } else if ( bvmatch( &e->e_nname, &global_schemandn ) ) { send_ldap_result( conn, op, rc = LDAP_ALREADY_EXISTS, NULL, "subschema subentry already exists", NULL, NULL ); goto done; -#endif } manageDSAit = get_manageDSAit( op ); @@ -236,13 +201,13 @@ do_add( Connection *conn, Operation *op ) */ be = select_backend( &e->e_nname, manageDSAit, 0 ); if ( be == NULL ) { - struct berval **ref = referral_rewrite( default_referral, - NULL, e->e_dn, LDAP_SCOPE_DEFAULT ); + BerVarray ref = referral_rewrite( default_referral, + NULL, &e->e_name, LDAP_SCOPE_DEFAULT ); send_ldap_result( conn, op, rc = LDAP_REFERRAL, NULL, NULL, ref ? ref : default_referral, NULL ); - ber_bvecfree( ref ); + if ( ref ) ber_bvarray_free( ref ); goto done; } @@ -255,11 +220,38 @@ do_add( Connection *conn, Operation *op ) } /* check for referrals */ - rc = backend_check_referrals( be, conn, op, e->e_dn, e->e_ndn ); + rc = backend_check_referrals( be, conn, op, &e->e_name, &e->e_nname ); if ( rc != LDAP_SUCCESS ) { goto done; } +#if defined( LDAP_SLAPI ) + slapi_x_backend_set_pb( pb, be ); + slapi_x_connection_set_pb( pb, conn ); + slapi_x_operation_set_pb( pb, op ); + slapi_pblock_set( pb, SLAPI_ADD_ENTRY, (void *)e ); + slapi_pblock_set( pb, SLAPI_ADD_TARGET, (void *)dn.bv_val ); + slapi_pblock_set( pb, SLAPI_MANAGEDSAIT, (void *)(1) ); + + rc = doPluginFNs( be, SLAPI_PLUGIN_PRE_ADD_FN, pb ); + if ( rc != 0 ) { + /* + * A preoperation plugin failure will abort the + * entire operation. + */ +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, INFO, "do_add: add preoperation plugin failed\n", + 0, 0, 0); +#else + Debug(LDAP_DEBUG_TRACE, "do_add: add preoperation plugin failed.\n", + 0, 0, 0); + if ( slapi_pblock_get( pb, SLAPI_RESULT_CODE, (void *)&rc ) != 0 ) + rc = LDAP_OTHER; + goto done; +#endif + } +#endif /* defined( LDAP_SLAPI ) */ + /* * do the add if 1 && (2 || 3) * 1) there is an add function implemented in this backend; @@ -277,7 +269,7 @@ do_add( Connection *conn, Operation *op ) char textbuf[SLAP_TEXT_BUFLEN]; size_t textlen = sizeof textbuf; - rc = slap_modlist2mods( modlist, update, &mods, &text, + rc = slap_mods_check( modlist, update, &text, textbuf, textlen ); if( rc != LDAP_SUCCESS ) { @@ -286,18 +278,15 @@ do_add( Connection *conn, Operation *op ) goto done; } - if ( (be->be_lastmod == ON || (be->be_lastmod == UNDEFINED && - global_lastmod == ON)) && !repl_user ) - { - Modifications **modstail; - for( modstail = &mods; - *modstail != NULL; - modstail = &(*modstail)->sml_next ) + if ( !repl_user ) { + for( modtail = &modlist; + *modtail != NULL; + modtail = &(*modtail)->sml_next ) { - assert( (*modstail)->sml_op == LDAP_MOD_ADD ); - assert( (*modstail)->sml_desc != NULL ); + assert( (*modtail)->sml_op == LDAP_MOD_ADD ); + assert( (*modtail)->sml_desc != NULL ); } - rc = slap_mods_opattrs( op, mods, modstail, &text, + rc = slap_mods_opattrs( be, op, modlist, modtail, &text, textbuf, textlen ); if( rc != LDAP_SUCCESS ) { send_ldap_result( conn, op, rc, @@ -306,7 +295,8 @@ do_add( Connection *conn, Operation *op ) } } - rc = slap_mods2entry( mods, &e, &text ); + rc = slap_mods2entry( modlist, &e, repl_user, &text, + textbuf, textlen ); if( rc != LDAP_SUCCESS ) { send_ldap_result( conn, op, rc, NULL, text, NULL, NULL ); @@ -318,7 +308,7 @@ do_add( Connection *conn, Operation *op ) if ( !repl_user ) #endif { - replog( be, op, e->e_dn, e->e_ndn, e ); + replog( be, op, &e->e_name, &e->e_nname, e ); } be_entry_release_w( be, conn, op, e ); e = NULL; @@ -326,21 +316,21 @@ do_add( Connection *conn, Operation *op ) #ifndef SLAPD_MULTIMASTER } else { - struct berval **defref = be->be_update_refs + BerVarray defref = be->be_update_refs ? be->be_update_refs : default_referral; - struct berval **ref = referral_rewrite( defref, - NULL, e->e_dn, LDAP_SCOPE_DEFAULT ); + BerVarray ref = referral_rewrite( defref, + NULL, &e->e_name, LDAP_SCOPE_DEFAULT ); send_ldap_result( conn, op, rc = LDAP_REFERRAL, NULL, NULL, ref ? ref : defref, NULL ); - ber_bvecfree( ref ); + if ( ref ) ber_bvarray_free( ref ); #endif } } else { #ifdef NEW_LOGGING - LDAP_LOG(( "operation", LDAP_LEVEL_INFO, - "do_add: conn %d no backend support\n", conn->c_connid )); + LDAP_LOG( OPERATION, INFO, + "do_add: conn %d no backend support\n", conn->c_connid, 0, 0 ); #else Debug( LDAP_DEBUG_ARGS, " do_add: no backend support\n", 0, 0, 0 ); #endif @@ -348,14 +338,25 @@ do_add( Connection *conn, Operation *op ) NULL, "operation not supported within namingContext", NULL, NULL ); } -done: - free( dn.bv_val ); +#if defined( LDAP_SLAPI ) + /* + * Postoperation errors are silently ignored; the work has + * been done. + */ + if ( doPluginFNs( be, SLAPI_PLUGIN_POST_ADD_FN, pb ) != 0) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, INFO, "do_add: Add postoperation plugins failed\n", + 0, 0, 0); +#else + Debug(LDAP_DEBUG_TRACE, "do_add: Add postoperation plugins failed.\n", + 0, 0, 0); +#endif + } +#endif /* defined( LDAP_SLAPI ) */ +done: if( modlist != NULL ) { - slap_modlist_free( modlist ); - } - if( mods != NULL ) { - slap_mods_free( mods ); + slap_mods_free( modlist ); } if( e != NULL ) { entry_free( e ); @@ -364,14 +365,19 @@ done: return rc; } -static int slap_mods2entry( +int +slap_mods2entry( Modifications *mods, Entry **e, - const char **text ) + int repl_user, + const char **text, + char *textbuf, size_t textlen ) { Attribute **tail = &(*e)->e_attrs; assert( *tail == NULL ); + *text = textbuf; + for( ; mods != NULL; mods = mods->sml_next ) { Attribute *attr; @@ -385,20 +391,28 @@ static int slap_mods2entry( #ifdef SLURPD_FRIENDLY ber_len_t i,j; - for( i=0; attr->a_vals[i]; i++ ) { + if( !repl_user ) { + snprintf( textbuf, textlen, + "attribute '%s' provided more than once", + mods->sml_desc->ad_cname.bv_val ); + return LDAP_TYPE_OR_VALUE_EXISTS; + } + + for( i=0; attr->a_vals[i].bv_val; i++ ) { /* count them */ } - for( j=0; mods->sml_bvalues[j]; j++ ) { + for( j=0; mods->sml_bvalues[j].bv_val; j++ ) { /* count them */ } j++; /* NULL */ attr->a_vals = ch_realloc( attr->a_vals, - sizeof( struct berval * ) * (i+j) ); + sizeof( struct berval ) * (i+j) ); /* should check for duplicates */ + AC_MEMCPY( &attr->a_vals[i], mods->sml_bvalues, - sizeof( struct berval * ) * j ); + sizeof( struct berval ) * j ); /* trim the mods array */ ch_free( mods->sml_bvalues ); @@ -406,11 +420,49 @@ static int slap_mods2entry( continue; #else - *text = "attribute provided more than once"; + snprintf( textbuf, textlen, + "attribute '%s' provided more than once", + mods->sml_desc->ad_cname.bv_val ); return LDAP_TYPE_OR_VALUE_EXISTS; #endif } + if( mods->sml_bvalues[1].bv_val != NULL ) { + /* check for duplicates */ + int i, j; + MatchingRule *mr = mods->sml_desc->ad_type->sat_equality; + + /* check if the values we're adding already exist */ + if( mr == NULL || !mr->smr_match ) { + for ( i = 0; mods->sml_bvalues[i].bv_val != NULL; i++ ) { + /* test asserted values against themselves */ + for( j = 0; j < i; j++ ) { + if ( bvmatch( &mods->sml_bvalues[i], + &mods->sml_bvalues[j] ) ) { + /* value exists already */ + snprintf( textbuf, textlen, + "%s: value #%d provided more than once", + mods->sml_desc->ad_cname.bv_val, j ); + return LDAP_TYPE_OR_VALUE_EXISTS; + } + } + } + + } else { + int rc; + const char *text = NULL; + char textbuf[ SLAP_TEXT_BUFLEN ] = { '\0' }; + + rc = modify_check_duplicates( mods->sml_desc, mr, + NULL, mods->sml_bvalues, + &text, textbuf, sizeof( textbuf ) ); + + if ( rc != LDAP_SUCCESS ) { + return rc; + } + } + } + attr = ch_calloc( 1, sizeof(Attribute) ); /* move ad to attr structure */