X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fback-sql%2Fcompare.c;h=7d9a55bc7883869c3a5e1846c9e7b0300f2ae56e;hb=5fcc9285fb8c549a5264921a2b61cfc40803d720;hp=3526389a429f6103b123bfc459a6f2f7210aa8c8;hpb=b703cfb008d2d38502ebd8ec306aaaf4ccc1cf06;p=openldap

diff --git a/servers/slapd/back-sql/compare.c b/servers/slapd/back-sql/compare.c
index 3526389a42..7d9a55bc78 100644
--- a/servers/slapd/back-sql/compare.c
+++ b/servers/slapd/back-sql/compare.c
@@ -1,8 +1,9 @@
 /* $OpenLDAP$ */
 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
  *
- * Copyright 1999-2004 The OpenLDAP Foundation.
+ * Copyright 1999-2012 The OpenLDAP Foundation.
  * Portions Copyright 1999 Dmitry Kovalev.
+ * Portions Copyright 2002 Pierangelo Masarati.
  * All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -15,13 +16,12 @@
  */
 /* ACKNOWLEDGEMENTS:
  * This work was initially developed by Dmitry Kovalev for inclusion
- * by OpenLDAP Software.
+ * by OpenLDAP Software.  Additional significant contributors include
+ * Pierangelo Masarati.
  */
 
 #include "portable.h"
 
-#ifdef SLAPD_SQL
-
 #include <stdio.h>
 #include <sys/types.h>
 
@@ -31,26 +31,18 @@
 int
 backsql_compare( Operation *op, SlapReply *rs )
 {
-	backsql_info		*bi = (backsql_info*)op->o_bd->be_private;
-	backsql_entryID		user_id = BACKSQL_ENTRYID_INIT;
-	SQLHDBC			dbh;
-	Entry			*e = NULL, user_entry;
-	Attribute		*a = NULL, *a_op = NULL;
-	backsql_srch_info	bsi;
+	SQLHDBC			dbh = SQL_NULL_HDBC;
+	Entry			e = { 0 };
+	Attribute		*a = NULL;
+	backsql_srch_info	bsi = { 0 };
 	int			rc;
+	int			manageDSAit = get_manageDSAit( op );
 	AttributeName		anlist[2];
-	struct berval		dn;
 
-	user_entry.e_name.bv_val = NULL;
-	user_entry.e_name.bv_len = 0;
-	user_entry.e_nname.bv_val = NULL;
-	user_entry.e_nname.bv_len = 0;
-	user_entry.e_attrs = NULL;
- 
  	Debug( LDAP_DEBUG_TRACE, "==>backsql_compare()\n", 0, 0, 0 );
 
 	rs->sr_err = backsql_get_db_conn( op, &dbh );
-	if (!dbh) {
+	if ( rs->sr_err != LDAP_SUCCESS ) {
      		Debug( LDAP_DEBUG_TRACE, "backsql_compare(): "
 			"could not get connection handle - exiting\n",
 			0, 0, 0 );
@@ -60,93 +52,89 @@ backsql_compare( Operation *op, SlapReply *rs )
 		goto return_results;
 	}
 
-	dn = op->o_req_dn;
-	if ( backsql_api_dn2odbc( op, rs, &dn ) ) {
-		Debug( LDAP_DEBUG_TRACE, "backsql_search(): "
-			"backsql_api_dn2odbc failed\n", 
-			0, 0, 0 );
-		rs->sr_err = LDAP_OTHER;
-		rs->sr_text = "SQL-backend error";
-		goto return_results;
-	}
+	anlist[ 0 ].an_name = op->oq_compare.rs_ava->aa_desc->ad_cname;
+	anlist[ 0 ].an_desc = op->oq_compare.rs_ava->aa_desc;
+	BER_BVZERO( &anlist[ 1 ].an_name );
+
+	/*
+	 * Get the entry
+	 */
+	bsi.bsi_e = &e;
+	rc = backsql_init_search( &bsi, &op->o_req_ndn, LDAP_SCOPE_BASE,
+			(time_t)(-1), NULL, dbh, op, rs, anlist,
+			( BACKSQL_ISF_MATCHED | BACKSQL_ISF_GET_ENTRY ) );
+	switch ( rc ) {
+	case LDAP_SUCCESS:
+		break;
+
+	case LDAP_REFERRAL:
+		if ( manageDSAit && !BER_BVISNULL( &bsi.bsi_e->e_nname ) &&
+				dn_match( &op->o_req_ndn, &bsi.bsi_e->e_nname ) )
+		{
+			rs->sr_err = LDAP_SUCCESS;
+			rs->sr_text = NULL;
+			rs->sr_matched = NULL;
+			if ( rs->sr_ref ) {
+				ber_bvarray_free( rs->sr_ref );
+				rs->sr_ref = NULL;
+			}
+			break;
+		}
+		/* fallthru */
 
-	rc = backsql_dn2id( bi, &user_id, dbh, &dn );
-	if ( rc != LDAP_SUCCESS ) {
+	default:
 		Debug( LDAP_DEBUG_TRACE, "backsql_compare(): "
-			"could not retrieve compare dn id - no such entry\n", 
+			"could not retrieve compareDN ID - no such entry\n", 
 			0, 0, 0 );
-		rs->sr_err = LDAP_NO_SUCH_OBJECT;
 		goto return_results;
 	}
 
-	anlist[0].an_name = op->oq_compare.rs_ava->aa_desc->ad_cname;
-	anlist[0].an_desc = op->oq_compare.rs_ava->aa_desc;
-	anlist[1].an_name.bv_val = NULL;
+	if ( get_assert( op ) &&
+			( test_filter( op, &e, get_assertion( op ) )
+			  != LDAP_COMPARE_TRUE ) )
+	{
+		rs->sr_err = LDAP_ASSERTION_FAILED;
+		goto return_results;
+	}
 
-	/*
-	 * Try to get attr as dynamic operational
-	 */
 	if ( is_at_operational( op->oq_compare.rs_ava->aa_desc->ad_type ) ) {
-		AttributeName	*an_old;
-		Entry		*e_old;
-
-		user_entry.e_attrs = NULL;
-		user_entry.e_name = op->o_req_dn;
-		user_entry.e_nname = op->o_req_ndn;
+		SlapReply	nrs = { REP_SEARCH };
+		Attribute	**ap;
 
-		an_old = rs->sr_attrs;
-		e_old = rs->sr_entry;
+		for ( ap = &e.e_attrs; *ap; ap = &(*ap)->a_next )
+			;
 
-		rs->sr_attrs = anlist;
-		rs->sr_entry = &user_entry;
-		rs->sr_err = backsql_operational( op, rs, 0, &a_op );
-		rs->sr_attrs = an_old;
-		rs->sr_entry = e_old;
+		nrs.sr_attrs = anlist;
+		nrs.sr_entry = &e;
+		nrs.sr_attr_flags = SLAP_OPATTRS_NO;
+		nrs.sr_operational_attrs = NULL;
 
+		rs->sr_err = backsql_operational( op, &nrs );
 		if ( rs->sr_err != LDAP_SUCCESS ) {
 			goto return_results;
 		}
 		
+		*ap = nrs.sr_operational_attrs;
 	}
 
-	/*
-	 * attr was dynamic operational
-	 */
-	if ( a_op != NULL ) {
-		user_entry.e_attrs = a_op;
-		e = &user_entry;
-
-	} else {
-		backsql_init_search( &bsi, &dn, LDAP_SCOPE_BASE, 
-				-1, -1, -1, NULL, dbh, op, rs, anlist );
-		e = backsql_id2entry( &bsi, &user_entry, &user_id );
-		if ( e == NULL ) {
-			Debug( LDAP_DEBUG_TRACE, "backsql_compare(): "
-				"error in backsql_id2entry() "
-				"- compare failed\n", 0, 0, 0 );
-			rs->sr_err = LDAP_OTHER;
-			goto return_results;
-		}
-	}
-
-	if ( ! access_allowed( op, e, op->oq_compare.rs_ava->aa_desc, 
+	if ( ! access_allowed( op, &e, op->oq_compare.rs_ava->aa_desc,
 				&op->oq_compare.rs_ava->aa_value,
-				ACL_COMPARE, NULL ) ) {
+				ACL_COMPARE, NULL ) )
+	{
 		rs->sr_err = LDAP_INSUFFICIENT_ACCESS;
 		goto return_results;
 	}
 
 	rs->sr_err = LDAP_NO_SUCH_ATTRIBUTE;
-	for ( a = attrs_find( e->e_attrs, op->oq_compare.rs_ava->aa_desc );
+	for ( a = attrs_find( e.e_attrs, op->oq_compare.rs_ava->aa_desc );
 			a != NULL;
-			a = attrs_find( a->a_next, op->oq_compare.rs_ava->aa_desc ))
+			a = attrs_find( a->a_next, op->oq_compare.rs_ava->aa_desc ) )
 	{
 		rs->sr_err = LDAP_COMPARE_FALSE;
-		if ( value_find_ex( op->oq_compare.rs_ava->aa_desc,
+		if ( attr_valfind( a,
 					SLAP_MR_ATTRIBUTE_VALUE_NORMALIZED_MATCH |
 					SLAP_MR_ASSERTED_VALUE_NORMALIZED_MATCH,
-					a->a_nvals,
-					&op->oq_compare.rs_ava->aa_value,
+					&op->oq_compare.rs_ava->aa_value, NULL,
 					op->o_tmpmemctx ) == 0 )
 		{
 			rs->sr_err = LDAP_COMPARE_TRUE;
@@ -155,36 +143,54 @@ backsql_compare( Operation *op, SlapReply *rs )
 	}
 
 return_results:;
+	switch ( rs->sr_err ) {
+	case LDAP_COMPARE_TRUE:
+	case LDAP_COMPARE_FALSE:
+		break;
+
+	default:
+		if ( !BER_BVISNULL( &e.e_nname ) &&
+				! access_allowed( op, &e,
+					slap_schema.si_ad_entry, NULL,
+					ACL_DISCLOSE, NULL ) )
+		{
+			rs->sr_err = LDAP_NO_SUCH_OBJECT;
+			rs->sr_text = NULL;
+		}
+		break;
+	}
+
 	send_ldap_result( op, rs );
 
-	if ( dn.bv_val != op->o_req_dn.bv_val ) {
-		ch_free( dn.bv_val );
+	if ( rs->sr_matched ) {
+		rs->sr_matched = NULL;
 	}
 
-	if ( e != NULL ) {
-		if ( e->e_name.bv_val != NULL ) {
-			free( e->e_name.bv_val );
-		}
+	if ( rs->sr_ref ) {
+		ber_bvarray_free( rs->sr_ref );
+		rs->sr_ref = NULL;
+	}
 
-		if ( e->e_nname.bv_val != NULL ) {
-			free( e->e_nname.bv_val );
-		}
+	if ( !BER_BVISNULL( &bsi.bsi_base_id.eid_ndn ) ) {
+		(void)backsql_free_entryID( &bsi.bsi_base_id, 0, op->o_tmpmemctx );
+	}
 
-		if ( e->e_attrs != NULL ) {
-			attrs_free( e->e_attrs );
-		}
+	if ( !BER_BVISNULL( &e.e_nname ) ) {
+		backsql_entry_clean( op, &e );
+	}
+
+	if ( bsi.bsi_attrs != NULL ) {
+		op->o_tmpfree( bsi.bsi_attrs, op->o_tmpmemctx );
 	}
 
 	Debug(LDAP_DEBUG_TRACE,"<==backsql_compare()\n",0,0,0);
 	switch ( rs->sr_err ) {
 	case LDAP_COMPARE_TRUE:
 	case LDAP_COMPARE_FALSE:
-		return 0;
+		return LDAP_SUCCESS;
 
 	default:
-		return 1;
+		return rs->sr_err;
 	}
 }
  
-#endif /* SLAPD_SQL */
-