X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fsyncrepl.c;h=24e31fab1895178deb42af00b2c9b8fdc5a4f40f;hb=e1080c86943a49135566b19e094f084d85b31671;hp=b7cdfa1101ce5992a7ebf0d7cba2d58b0bac0f6f;hpb=9543844d39253311ac978ec2cd90f71a8ca94fc1;p=openldap diff --git a/servers/slapd/syncrepl.c b/servers/slapd/syncrepl.c index b7cdfa1101..24e31fab18 100644 --- a/servers/slapd/syncrepl.c +++ b/servers/slapd/syncrepl.c @@ -1,23 +1,19 @@ +/* syncrepl.c -- Replication Engine which uses the LDAP Sync protocol */ /* $OpenLDAP$ */ -/* - * Replication Engine which uses the LDAP Sync protocol - */ -/* Copyright (c) 2003 by International Business Machines, Inc. +/* This work is part of OpenLDAP Software . + * + * Copyright 2003-2004 The OpenLDAP Foundation. + * Portions Copyright 2003 by IBM Corporation. + * Portions Copyright 2003 by Howard Chu, Symas Corporation. + * All rights reserved. * - * International Business Machines, Inc. (hereinafter called IBM) grants - * permission under its copyrights to use, copy, modify, and distribute this - * Software with or without fee, provided that the above copyright notice and - * all paragraphs of this notice appear in all copies, and that the name of IBM - * not be used in connection with the marketing of any product incorporating - * the Software or modifications thereof, without specific, written prior - * permission. + * Redistribution and use in source and binary forms, with or without + * modification, are permitted only as authorized by the OpenLDAP + * Public License. * - * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES, - * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A - * PARTICULAR PURPOSE. IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL, - * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING - * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN - * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES. + * A copy of this license is available in the file LICENSE in the + * top-level directory of the distribution or, alternatively, at + * . */ #include "portable.h" @@ -26,581 +22,748 @@ #include #include -#include #include "ldap_pvt.h" #include "lutil.h" #include "slap.h" #include "lutil_ldap.h" -#ifdef LDAP_SYNCREPL - -static Entry* -syncrepl_message_to_entry ( LDAP *, Operation *, LDAPMessage *, - Modifications **, int*, struct berval *, struct berval * ); - -static int -syncrepl_entry( LDAP *, Operation*, Entry*, Modifications*, - int, struct berval*, struct berval*, int ); - -static int -syncrepl_del_nonpresent( LDAP *, Operation * ); - -static void -syncrepl_add_glue( LDAP *, Operation*, Entry*, Modifications*, int, - struct berval*, struct berval* ); - -static void -syncrepl_updateCookie( LDAP *, Operation *, struct berval *, struct berval * ); +#include "ldap_rq.h" -static int -slap_mods_check_syncrepl( Operation *, Modifications **, - const char **, char *, size_t, void *ctx ); +#define SYNCREPL_STR "syncreplxxx" +#define CN_STR "cn=" -static int -slap_mods_opattrs_syncrepl( Operation *, Modifications *, Modifications **, - const char **, char *, size_t ); +static const struct berval slap_syncrepl_bvc = BER_BVC(SYNCREPL_STR); +static const struct berval slap_syncrepl_cn_bvc = BER_BVC(CN_STR SYNCREPL_STR); -static int -slap_mods2entry_syncrepl( Modifications *, Entry **, int, - const char **, char *, size_t ); +static int syncuuid_cmp( const void *, const void * ); +static void avl_ber_bvfree( void * ); +static void syncrepl_del_nonpresent( Operation *, syncinfo_t * ); /* callback functions */ -static int cookie_callback( struct slap_op *, struct slap_rep * ); +static int dn_callback( struct slap_op *, struct slap_rep * ); static int nonpresent_callback( struct slap_op *, struct slap_rep * ); static int null_callback( struct slap_op *, struct slap_rep * ); -static AttributeDescription **add_descs; -static AttributeDescription **add_descs_lastmod; -static AttributeDescription **del_descs; -static AttributeDescription **del_descs_lastmod; +static int si_refreshDelete = 0; +static int si_refreshPresent = 0; -void -init_syncrepl() -{ - add_descs = ch_malloc( 2 * sizeof( AttributeDescription * )); - add_descs[0] = slap_schema.si_ad_objectClass; - add_descs[1] = NULL; - - add_descs_lastmod = ch_malloc( 7 * sizeof( AttributeDescription * )); - add_descs_lastmod[0] = slap_schema.si_ad_objectClass; - add_descs_lastmod[1] = slap_schema.si_ad_creatorsName; - add_descs_lastmod[2] = slap_schema.si_ad_modifiersName; - add_descs_lastmod[3] = slap_schema.si_ad_createTimestamp; - add_descs_lastmod[4] = slap_schema.si_ad_modifyTimestamp; - add_descs_lastmod[5] = slap_schema.si_ad_entryCSN; - add_descs_lastmod[6] = NULL; - - del_descs = ch_malloc( 9 * sizeof( AttributeDescription * )); - del_descs[0] = slap_schema.si_ad_structuralObjectClass; - del_descs[1] = slap_schema.si_ad_subschemaSubentry; - del_descs[2] = slap_schema.si_ad_hasSubordinates; - del_descs[3] = slap_schema.si_ad_creatorsName; - del_descs[4] = slap_schema.si_ad_modifiersName; - del_descs[5] = slap_schema.si_ad_createTimestamp; - del_descs[6] = slap_schema.si_ad_modifyTimestamp; - del_descs[7] = slap_schema.si_ad_entryCSN; - del_descs[8] = NULL; - - del_descs_lastmod = ch_malloc( 4 * sizeof( AttributeDescription * )); - del_descs_lastmod[0] = slap_schema.si_ad_structuralObjectClass; - del_descs_lastmod[1] = slap_schema.si_ad_subschemaSubentry; - del_descs_lastmod[2] = slap_schema.si_ad_hasSubordinates; - del_descs_lastmod[3] = NULL; -} +static AttributeDescription *sync_descs[4]; -void * -do_syncrepl( - void *ctx, - void *arg ) +struct runqueue_s syncrepl_rq; + +void +init_syncrepl(syncinfo_t *si) { - Backend *be = arg; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; + int i, j, k, n; + char **tmp; - SlapReply rs = {REP_RESULT}; + if ( !sync_descs[0] ) { + sync_descs[0] = slap_schema.si_ad_objectClass; + sync_descs[1] = slap_schema.si_ad_structuralObjectClass; + sync_descs[2] = slap_schema.si_ad_entryCSN; + sync_descs[3] = NULL; + } - LDAPControl c[2]; - LDAPControl **sctrls = NULL; - LDAPControl **rctrls = NULL; - LDAPControl *rctrlp = NULL; - BerElement *sync_ber = NULL; - struct berval *sync_bvalp = NULL; + for ( n = 0; si->si_attrs[ n ] != NULL; n++ ) /* empty */; + + if ( n ) { + /* Delete Attributes */ + for ( i = 0; sync_descs[i] != NULL; i++ ) { + for ( j = 0; si->si_attrs[j] != NULL; j++ ) { + if ( strcmp( si->si_attrs[j], sync_descs[i]->ad_cname.bv_val ) + == 0 ) + { + ch_free( si->si_attrs[j] ); + for ( k = j; si->si_attrs[k] != NULL; k++ ) { + si->si_attrs[k] = si->si_attrs[k+1]; + } + } + } + } + for ( n = 0; si->si_attrs[ n ] != NULL; n++ ) /* empty */; + tmp = ( char ** ) ch_realloc( si->si_attrs, (n + 4)*sizeof( char * )); + if ( tmp == NULL ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 ); +#else + Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 ); +#endif + } - BerElement *ctrl_ber = NULL; - BerElement *res_ber = NULL; + /* Add Attributes */ + for ( i = 0; sync_descs[ i ] != NULL; i++ ) { + tmp[ n++ ] = ch_strdup ( sync_descs[i]->ad_cname.bv_val ); + tmp[ n ] = NULL; + } - LDAP *ld = NULL; - LDAPMessage *res = NULL; - LDAPMessage *msg = NULL; + } else { + tmp = ( char ** ) ch_realloc( si->si_attrs, 3 * sizeof( char * )); + if ( tmp == NULL ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 ); +#else + Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 ); +#endif + } + tmp[ n++ ] = ch_strdup( "*" ); + tmp[ n++ ] = ch_strdup( "+" ); + tmp[ n ] = NULL; + } + + si->si_attrs = tmp; + + for ( n = 0; si->si_exattrs[ n ] != NULL; n++ ) /* empty */; + if ( n ) { + /* Delete Attributes from exattrs list */ + for ( i = 0; sync_descs[i] != NULL; i++ ) { + for ( j = 0; si->si_exattrs[j] != NULL; j++ ) { + if ( strcmp( si->si_exattrs[j], sync_descs[i]->ad_cname.bv_val ) + == 0 ) + { + ch_free( si->si_exattrs[j] ); + for ( k = j; si->si_exattrs[k] != NULL; k++ ) { + si->si_exattrs[k] = si->si_exattrs[k+1]; + } + } + } + } + } +} +static int +ldap_sync_search( + syncinfo_t *si, + void *ctx +) +{ + BerElementBuffer berbuf; + BerElement *ber = (BerElement *)&berbuf; + LDAPControl c[2], *ctrls[3]; + struct timeval timeout; ber_int_t msgid; + int rc; - int nresponses, nreferences, nextended, npartial; - int nresponses_psearch; + /* setup LDAP SYNC control */ + ber_init2( ber, NULL, LBER_USE_DER ); + ber_set_option( ber, LBER_OPT_BER_MEMCTX, &ctx ); - int cancel_msgid = -1; - char *retoid = NULL; - struct berval *retdata = NULL; + if ( si->si_syncCookie.octet_str && + si->si_syncCookie.octet_str[0].bv_val ) { + ber_printf( ber, "{eO}", abs(si->si_type), + &si->si_syncCookie.octet_str[0] ); + } else { + ber_printf( ber, "{e}", abs(si->si_type) ); + } - int sync_info_arrived = 0; - Entry *entry = NULL; + if ( (rc = ber_flatten2( ber, &c[0].ldctl_value, 0 )) == LBER_ERROR ) { + ber_free_buf( ber ); + return rc; + } - int syncstate; - struct berval syncUUID = { 0, NULL }; - struct berval syncCookie = { 0, NULL }; + c[0].ldctl_oid = LDAP_CONTROL_SYNC; + c[0].ldctl_iscritical = si->si_type < 0; + ctrls[0] = &c[0]; - int rc; - int err; - ber_len_t len; - int syncinfo_arrived = 0; - int cancel_response = 0; + if ( si->si_authzId ) { + c[1].ldctl_oid = LDAP_CONTROL_PROXY_AUTHZ; + ber_str2bv( si->si_authzId, 0, 0, &c[1].ldctl_value ); + c[1].ldctl_iscritical = 1; + ctrls[1] = &c[1]; + ctrls[2] = NULL; + } else { + ctrls[1] = NULL; + } - char **tmp = NULL; - AttributeDescription** descs = NULL; + timeout.tv_sec = si->si_tlimit; + timeout.tv_usec = 0; - Connection conn; - Operation op = {0}; - slap_callback cb; + rc = ldap_search_ext( si->si_ld, si->si_base.bv_val, si->si_scope, + si->si_filterstr.bv_val, si->si_attrs, si->si_attrsonly, + ctrls, NULL, si->si_tlimit > 0 ? &timeout : NULL, + si->si_slimit, &msgid ); + ber_free_buf( ber ); - void *memctx = NULL; - ber_len_t memsiz; - - int i, j, k, n; - int rc_efree; - - struct berval base_bv = { 0, NULL }; - struct berval pbase = { 0, NULL }; - struct berval nbase = { 0, NULL }; - struct berval sub_bv = { 0, NULL }; - struct berval psubrdn = { 0, NULL }; - struct berval nsubrdn = { 0, NULL }; - struct berval psub = { 0, NULL }; - struct berval nsub = { 0, NULL }; - char substr[64]; - Modifications *modlist = NULL; - Modifications *ml, *mlnext; - char *def_filter_str = NULL; + return rc; +} -#ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, DETAIL1, "do_syncrepl\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_TRACE, "=>do_syncrepl\n", 0, 0, 0 ); +static int +do_syncrep1( + Operation *op, + syncinfo_t *si ) +{ + int rc; + int cmdline_cookie_found = 0; + + char syncrepl_cbuf[sizeof(CN_STR SYNCREPL_STR)]; + struct berval syncrepl_cn_bv; + struct sync_cookie *sc = NULL; + struct sync_cookie syncCookie = { NULL, -1, NULL }; + struct berval *psub; +#ifdef HAVE_TLS + void *ssl; #endif - if ( si == NULL ) - return NULL; - - if ( abs(si->type) != LDAP_SYNC_REFRESH_ONLY && - abs(si->type) != LDAP_SYNC_REFRESH_AND_PERSIST ) { - return NULL; - } + psub = &si->si_be->be_nsuffix[0]; /* Init connection to master */ - if ( ldap_is_ldap_url( si->masteruri )) { - rc = ldap_initialize( &ld, si->masteruri ); - if ( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "do_syncrepl: " - "ldap_initialize failed (%s)\n", - si->masteruri, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " - "ldap_initialize failed (%s)\n", - si->masteruri, 0, 0 ); -#endif - } - } else { - ld = ldap_init( si->mastername, si->masterport ); - if ( ld == NULL ) { + rc = ldap_initialize( &si->si_ld, si->si_provideruri ); + if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "do_syncrepl: " - "ldap_init failed (%s:%s)\n", - si->mastername, si->masterport, 0 ); + LDAP_LOG( OPERATION, ERR, + "do_syncrep1: ldap_initialize failed (%s)\n", + si->si_provideruri, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " - "ldap_init failed (%s:%s)\n", - si->mastername, si->masterport, 0 ); + Debug( LDAP_DEBUG_ANY, + "do_syncrep1: ldap_initialize failed (%s)\n", + si->si_provideruri, 0, 0 ); #endif - } + return rc; } - op.o_protocol = LDAP_VERSION3; - ldap_set_option( ld, LDAP_OPT_PROTOCOL_VERSION, &op.o_protocol ); + op->o_protocol = LDAP_VERSION3; + ldap_set_option( si->si_ld, LDAP_OPT_PROTOCOL_VERSION, &op->o_protocol ); /* Bind to master */ - if ( si->tls ) { - rc = ldap_start_tls_s( ld, NULL, NULL ); + if ( si->si_tls ) { + rc = ldap_start_tls_s( si->si_ld, NULL, NULL ); if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, ERR, "do_syncrepl: " + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " "%s: ldap_start_tls failed (%d)\n", - si->tls == TLS_CRITICAL ? "Error" : "Warning", + si->si_tls == SYNCINFO_TLS_CRITICAL ? "Error" : "Warning", rc, 0 ); #else Debug( LDAP_DEBUG_ANY, "%s: ldap_start_tls failed (%d)\n", - si->tls == TLS_CRITICAL ? "Error" : "Warning", + si->si_tls == SYNCINFO_TLS_CRITICAL ? "Error" : "Warning", rc, 0 ); #endif - if( si->tls == TLS_CRITICAL ) - return NULL; + if( si->si_tls == SYNCINFO_TLS_CRITICAL ) goto done; } } - if ( si->bindmethod == LDAP_AUTH_SASL ) { + if ( si->si_bindmethod == LDAP_AUTH_SASL ) { #ifdef HAVE_CYRUS_SASL void *defaults; - if ( si->secprops != NULL ) { - int err = ldap_set_option( ld, - LDAP_OPT_X_SASL_SECPROPS, si->secprops); + if ( si->si_secprops != NULL ) { + rc = ldap_set_option( si->si_ld, + LDAP_OPT_X_SASL_SECPROPS, si->si_secprops); - if( err != LDAP_OPT_SUCCESS ) { + if( rc != LDAP_OPT_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG ( OPERATION, ERR, "do_bind: Error: " "ldap_set_option(%s,SECPROPS,\"%s\") failed!\n", - si->mastername, si->secprops, 0 ); + si->si_provideruri, si->si_secprops, 0 ); #else Debug( LDAP_DEBUG_ANY, "Error: ldap_set_option " "(%s,SECPROPS,\"%s\") failed!\n", - si->mastername, si->secprops, NULL ); + si->si_provideruri, si->si_secprops, 0 ); #endif - return NULL; + goto done; } } - defaults = lutil_sasl_defaults( ld, - si->saslmech, - si->realm, - si->authcId, - si->passwd, - si->authzId ); + defaults = lutil_sasl_defaults( si->si_ld, + si->si_saslmech, si->si_realm, + si->si_authcId, si->si_passwd, si->si_authzId ); - rc = ldap_sasl_interactive_bind_s( ld, - si->binddn, - si->saslmech, + rc = ldap_sasl_interactive_bind_s( si->si_ld, + si->si_binddn, + si->si_saslmech, NULL, NULL, - LDAP_SASL_AUTOMATIC, + LDAP_SASL_QUIET, lutil_sasl_interact, defaults ); + lutil_sasl_freedefs( defaults ); + + /* FIXME: different error behaviors according to + * 1) return code + * 2) on err policy : exit, retry, backoff ... + */ if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, ERR, "do_syncrepl: " + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " "ldap_sasl_interactive_bind_s failed (%d)\n", rc, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " + Debug( LDAP_DEBUG_ANY, "do_syncrep1: " "ldap_sasl_interactive_bind_s failed (%d)\n", rc, 0, 0 ); #endif - return NULL; + + /* FIXME (see above comment) */ + /* if Kerberos credentials cache is not active, retry */ + if ( strcmp( si->si_saslmech, "GSSAPI" ) == 0 && + rc == LDAP_LOCAL_ERROR ) + { + rc = LDAP_SERVER_DOWN; + } + + goto done; } #else /* HAVE_CYRUS_SASL */ + /* Should never get here, we trapped this at config time */ fprintf( stderr, "not compiled with SASL support\n" ); - return NULL; + rc = LDAP_OTHER; + goto done; #endif } else { - rc = ldap_bind_s( ld, si->binddn, si->passwd, si->bindmethod ); + rc = ldap_bind_s( si->si_ld, + si->si_binddn, si->si_passwd, si->si_bindmethod ); if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, ERR, "do_syncrepl: " + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " "ldap_bind_s failed (%d)\n", rc, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " + Debug( LDAP_DEBUG_ANY, "do_syncrep1: " "ldap_bind_s failed (%d)\n", rc, 0, 0 ); #endif - return NULL; + goto done; } } - si->ctx = ctx; - - op.o_tmpmemctx = NULL; /* FIXME : to use per-thread mem context */ - op.o_tag = LDAP_REQ_SEARCH; - op.o_dn = si->updatedn; - op.o_ndn = si->updatedn; - op.o_callback = &cb; - op.o_time = slap_get_time(); - op.o_managedsait = 1; - op.o_threadctx = si->ctx; - op.o_bd = be; - op.o_conn = &conn; - op.o_connid = op.o_conn->c_connid; - op.ors_scope = LDAP_SCOPE_BASE; - op.ors_deref = LDAP_DEREF_NEVER; - op.ors_slimit = -1; - op.ors_tlimit = -1; - op.ors_attrsonly = 0; - op.ors_attrs = NULL; - op.ors_filter = str2filter( def_filter_str = "(objectClass=*)" ); - ber_str2bv( def_filter_str, strlen( def_filter_str ), 1, - &op.ors_filterstr ); - - si->conn = &conn; - conn.c_send_ldap_result = slap_send_ldap_result; - conn.c_send_search_entry = slap_send_search_entry; - conn.c_send_search_reference = slap_send_search_reference; + /* Set SSF to strongest of TLS, SASL SSFs */ + op->o_sasl_ssf = 0; + op->o_tls_ssf = 0; + op->o_transport_ssf = 0; +#ifdef HAVE_TLS + if ( ldap_get_option( si->si_ld, LDAP_OPT_X_TLS_SSL_CTX, &ssl ) + == LDAP_SUCCESS && ssl != NULL ) + { + op->o_tls_ssf = ldap_pvt_tls_get_strength( ssl ); + } +#endif /* HAVE_TLS */ + ldap_get_option( si->si_ld, LDAP_OPT_X_SASL_SSF, &op->o_sasl_ssf ); + op->o_ssf = ( op->o_sasl_ssf > op->o_tls_ssf ) + ? op->o_sasl_ssf : op->o_tls_ssf; /* get syncrepl cookie of shadow replica from subentry */ - ber_str2bv( si->base, strlen(si->base), 1, &base_bv ); - dnPrettyNormal( 0, &base_bv, &pbase, &nbase, op.o_tmpmemctx ); - - sprintf( substr, "cn=syncrepl%d", si->id ); - ber_str2bv( substr, strlen(substr), 1, &sub_bv ); - dnPrettyNormal( 0, &sub_bv, &psubrdn, &nsubrdn, op.o_tmpmemctx ); - build_new_dn( &op.o_req_dn, &pbase, &psubrdn ); - build_new_dn( &op.o_req_ndn, &nbase, &nsubrdn ); + assert( si->si_rid < 1000 ); + syncrepl_cn_bv.bv_val = syncrepl_cbuf; + syncrepl_cn_bv.bv_len = snprintf(syncrepl_cbuf, sizeof(syncrepl_cbuf), + CN_STR "syncrepl%ld", si->si_rid ); + build_new_dn( &op->o_req_ndn, psub, &syncrepl_cn_bv, op->o_tmpmemctx ); + op->o_req_dn = op->o_req_ndn; + + LDAP_STAILQ_FOREACH( sc, &slap_sync_cookie, sc_next ) { + if ( si->si_rid == sc->rid ) { + cmdline_cookie_found = 1; + break; + } + } - ch_free( base_bv.bv_val ); - ch_free( pbase.bv_val ); - ch_free( nbase.bv_val ); - ch_free( sub_bv.bv_val ); - ch_free( psubrdn.bv_val ); - ch_free( nsubrdn.bv_val ); + if ( cmdline_cookie_found ) { + /* cookie is supplied in the command line */ + BerVarray cookie = NULL; + struct berval cookie_bv; + + LDAP_STAILQ_REMOVE( &slap_sync_cookie, sc, sync_cookie, sc_next ); + slap_sync_cookie_free( &si->si_syncCookie, 0 ); + + /* read stored cookie if it exists */ + backend_attribute( op, NULL, &op->o_req_ndn, + slap_schema.si_ad_syncreplCookie, &cookie, ACL_READ ); + + if ( !cookie ) { + /* no stored cookie */ + if ( sc->ctxcsn == NULL || + sc->ctxcsn->bv_val == NULL ) { + /* if cmdline cookie does not have ctxcsn */ + /* component, set it to an initial value */ + slap_init_sync_cookie_ctxcsn( sc ); + } + slap_dup_sync_cookie( &si->si_syncCookie, sc ); + slap_sync_cookie_free( sc, 1 ); + sc = NULL; + } else { + /* stored cookie */ + struct berval newcookie = BER_BVNULL; + ber_dupbv( &cookie_bv, &cookie[0] ); + ber_bvarray_add( &si->si_syncCookie.octet_str, &cookie_bv ); + slap_parse_sync_cookie( &si->si_syncCookie ); + ber_bvarray_free( si->si_syncCookie.octet_str ); + si->si_syncCookie.octet_str = NULL; + ber_bvarray_free_x( cookie, op->o_tmpmemctx ); + if ( sc->sid != -1 ) { + /* command line cookie wins */ + si->si_syncCookie.sid = sc->sid; + } + if ( sc->ctxcsn != NULL ) { + /* command line cookie wins */ + if ( si->si_syncCookie.ctxcsn ) { + ber_bvarray_free( si->si_syncCookie.ctxcsn ); + si->si_syncCookie.ctxcsn = NULL; + } + ber_dupbv( &cookie_bv, &sc->ctxcsn[0] ); + ber_bvarray_add( &si->si_syncCookie.ctxcsn, &cookie_bv ); + } + if ( sc->rid != -1 ) { + /* command line cookie wins */ + si->si_syncCookie.rid = sc->rid; + } + slap_sync_cookie_free( sc, 1 ); + sc = NULL; + slap_compose_sync_cookie( NULL, &newcookie, + &si->si_syncCookie.ctxcsn[0], + si->si_syncCookie.sid, si->si_syncCookie.rid ); + ber_bvarray_add( &si->si_syncCookie.octet_str, &newcookie ); + } + } else { + /* no command line cookie is specified */ + if ( si->si_syncCookie.octet_str == NULL ) { + BerVarray cookie = NULL; + struct berval cookie_bv; + /* try to read stored cookie */ + backend_attribute( op, NULL, &op->o_req_ndn, + slap_schema.si_ad_syncreplCookie, &cookie, ACL_READ ); + if ( cookie ) { + ber_dupbv( &cookie_bv, &cookie[0] ); + ber_bvarray_add( &si->si_syncCookie.octet_str, &cookie_bv ); + slap_parse_sync_cookie( &si->si_syncCookie ); + ber_bvarray_free_x( cookie, op->o_tmpmemctx ); + } + } + } - /* set callback function */ - cb.sc_response = cookie_callback; - cb.sc_private = si; + rc = ldap_sync_search( si, op->o_tmpmemctx ); - /* search subentry to retrieve cookie */ - si->syncCookie = NULL; - be->be_search( &op, &rs ); + if( rc != LDAP_SUCCESS ) { +#ifdef NEW_LOGGING + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " + "ldap_search_ext: %s (%d)\n", ldap_err2string( rc ), rc, 0 ); +#else + Debug( LDAP_DEBUG_ANY, "do_syncrep1: " + "ldap_search_ext: %s (%d)\n", ldap_err2string( rc ), rc, 0 ); +#endif + } - ch_free( op.o_req_dn.bv_val ); - ch_free( op.o_req_ndn.bv_val ); - filter_free( op.ors_filter ); - ch_free( op.ors_filterstr.bv_val ); +done: + if ( rc ) { + if ( si->si_ld ) { + ldap_unbind( si->si_ld ); + si->si_ld = NULL; + } + } - psub = be->be_nsuffix[0]; + slap_sl_free( op->o_req_ndn.bv_val, op->o_tmpmemctx ); - /* setup LDAP SYNC control */ - sync_ber = ber_alloc_t( LBER_USE_DER ); - ber_set_option( sync_ber, LBER_OPT_BER_MEMCTX, op.o_tmpmemctx ); + return rc; +} - if ( si->syncCookie ) { - ber_printf( sync_ber, "{eO}", abs(si->type), si->syncCookie ); - } else { - ber_printf( sync_ber, "{e}", abs(si->type) ); - } +static int +do_syncrep2( + Operation *op, + syncinfo_t *si ) +{ + LDAPControl **rctrls = NULL; + LDAPControl *rctrlp; - if ( ber_flatten( sync_ber, &sync_bvalp ) == LBER_ERROR ) { - ber_free( sync_ber, 1 ); - return NULL; - } - ber_free( sync_ber, 1 ); + BerElementBuffer berbuf; + BerElement *ber = (BerElement *)&berbuf; - sctrls = (LDAPControl**) sl_calloc( 3, sizeof(LDAPControl*), op.o_tmpmemctx ); + LDAPMessage *res = NULL; + LDAPMessage *msg = NULL; - c[0].ldctl_oid = LDAP_CONTROL_SYNC; - c[0].ldctl_value = (*sync_bvalp); - c[0].ldctl_iscritical = si->type < 0; - sctrls[0] = &c[0]; + char *retoid = NULL; + struct berval *retdata = NULL; - if ( si->authzId ) { - c[1].ldctl_oid = LDAP_CONTROL_PROXY_AUTHZ; - c[1].ldctl_value.bv_val = si->authzId; - c[1].ldctl_value.bv_len = strlen( si->authzId ); - c[1].ldctl_iscritical = 1; - sctrls[1] = &c[1]; - } else { - sctrls[1] = NULL; - } + Entry *entry = NULL; - sctrls[2] = NULL; + int syncstate; + struct berval syncUUID = BER_BVNULL; + struct sync_cookie syncCookie = { NULL, -1, NULL }; + struct sync_cookie syncCookie_req = { NULL, -1, NULL }; + struct berval cookie = BER_BVNULL; - err = ldap_set_option( ld, LDAP_OPT_SERVER_CONTROLS, sctrls ); + int rc, err, i; + ber_len_t len; - ber_bvfree( sync_bvalp ); - ch_free( sctrls ); + int rc_efree = 1; - if ( err != LDAP_OPT_SUCCESS ) - fprintf( stderr, "Could not set controls : %d\n", err ); + struct berval *psub; + Modifications *modlist = NULL; - /* Delete Attributes */ - if ( si->lastmod == LASTMOD_REQ ) { - descs = del_descs_lastmod; - } else { - descs = del_descs; - } + const char *text; + int match; - for ( i = 0; descs[i] != NULL; i++ ) { - for ( j = 0; si->attrs[j] != NULL; j++ ) { - if ( !strcmp( si->attrs[j], descs[i]->ad_cname.bv_val )) { - ch_free( si->attrs[j] ); - for ( k = j; si->attrs[k] != NULL; k++ ) { - si->attrs[k] = si->attrs[k+1]; - } - } - } - } + struct timeval *tout_p = NULL; + struct timeval tout = { 0, 0 }; - /* Add Attributes */ + int refreshDeletes = 0; + int refreshDone = 1; + BerVarray syncUUIDs = NULL; + ber_tag_t si_tag; - for ( n = 0; si->attrs[ n ] != NULL; n++ ) ; - - if ( si->lastmod == LASTMOD_REQ ) { - descs = add_descs_lastmod; - } else { - descs = add_descs; + if ( slapd_shutdown ) { + rc = -2; + goto done; } - for ( i = 0; descs[i] != NULL; i++ ) { - tmp = ( char ** ) ch_realloc( si->attrs, - ( n + 2 ) * sizeof( char * )); - if ( tmp == NULL ) { + ber_init2( ber, NULL, LBER_USE_DER ); + ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx ); + #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 ); + LDAP_LOG ( OPERATION, DETAIL1, "do_syncrep2\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 ); + Debug( LDAP_DEBUG_TRACE, "=>do_syncrep2\n", 0, 0, 0 ); #endif - } - si->attrs = tmp; - si->attrs[ n++ ] = ch_strdup ( descs[i]->ad_cname.bv_val ); - si->attrs[ n ] = NULL; - } - /* Send LDAP SYNC search */ + psub = &si->si_be->be_nsuffix[0]; - rc = ldap_search_ext( ld, si->base, si->scope, si->filterstr, - si->attrs, si->attrsonly, NULL, NULL, - NULL, -1, &msgid ); + slap_dup_sync_cookie( &syncCookie_req, &si->si_syncCookie ); - if( rc != LDAP_SUCCESS ) { - fprintf( stderr, "syncrepl: ldap_search_ext: %s (%d)\n", - ldap_err2string( rc ), rc ); - return NULL; + if ( abs(si->si_type) == LDAP_SYNC_REFRESH_AND_PERSIST ){ + tout_p = &tout; + } else { + tout_p = NULL; } - while (( rc = ldap_result( ld, LDAP_RES_ANY, LDAP_MSG_ONE, NULL, &res )) > 0 ) { - - for ( msg = ldap_first_message( ld, res ); - msg != NULL; - msg = ldap_next_message( ld, msg ) ) + while (( rc = ldap_result( si->si_ld, LDAP_RES_ANY, LDAP_MSG_ONE, tout_p, &res )) + > 0 ) + { + if ( slapd_shutdown ) { + rc = -2; + goto done; + } + for( msg = ldap_first_message( si->si_ld, res ); + msg != NULL; + msg = ldap_next_message( si->si_ld, msg ) ) { switch( ldap_msgtype( msg ) ) { case LDAP_RES_SEARCH_ENTRY: - entry = syncrepl_message_to_entry( ld, &op, msg, - &modlist, &syncstate, &syncUUID, &syncCookie ); - rc_efree = syncrepl_entry( ld, &op, entry, modlist, - syncstate, &syncUUID, &syncCookie, !syncinfo_arrived ); - if ( syncCookie.bv_len ) { - syncrepl_updateCookie( ld, &op, &psub, &syncCookie ); + ldap_get_entry_controls( si->si_ld, msg, &rctrls ); + /* we can't work without the control */ + if ( !rctrls ) { + rc = -1; + goto done; + } + rctrlp = *rctrls; + ber_init2( ber, &rctrlp->ldctl_value, LBER_USE_DER ); + ber_scanf( ber, "{em", &syncstate, &syncUUID ); + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) { + ber_scanf( ber, "m}", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, &tmp_bv ); + } + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); } - if ( rc_efree ) + if ( syncrepl_message_to_entry( si, op, msg, + &modlist, &entry, syncstate ) == LDAP_SUCCESS ) { + rc_efree = syncrepl_entry( si, op, entry, modlist, + syncstate, &syncUUID, &syncCookie_req ); + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) { + syncrepl_updateCookie( si, op, psub, &syncCookie ); + } + } + ldap_controls_free( rctrls ); + if ( modlist ) { + slap_mods_free( modlist ); + } + if ( rc_efree && entry ) { entry_free( entry ); - for ( ml = modlist; ml != NULL; ml = mlnext ) { - mlnext = ml->sml_next; - free( ml ); } + entry = NULL; break; case LDAP_RES_SEARCH_REFERENCE: #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "do_syncrepl : reference received\n", 0, 0, 0 ); + "do_syncrep2: reference received error\n", 0, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "do_syncrepl : reference received\n", 0, 0, 0 ); + "do_syncrep2: reference received error\n", 0, 0, 0 ); #endif break; case LDAP_RES_SEARCH_RESULT: - ldap_parse_result( ld, msg, &err, NULL, NULL, NULL, &rctrls, 0 ); + ldap_parse_result( si->si_ld, msg, &err, NULL, NULL, NULL, + &rctrls, 0 ); if ( rctrls ) { rctrlp = *rctrls; - ctrl_ber = ber_alloc_t( LBER_USE_DER ); - ber_set_option( ctrl_ber, LBER_OPT_BER_MEMCTX, op.o_tmpmemctx ); - ber_write( ctrl_ber, rctrlp->ldctl_value.bv_val, rctrlp->ldctl_value.bv_len, 0 ); - ber_reset( ctrl_ber, 1 ); - - ber_scanf( ctrl_ber, "{" ); - if ( ber_peek_tag( ctrl_ber, &len ) - == LDAP_SYNC_TAG_COOKIE ) { - ber_scanf( ctrl_ber, "o", &syncCookie ); - } - } - if (si->type == LDAP_SYNC_REFRESH_AND_PERSIST) { - if ( cancel_response ) { - if ( syncCookie.bv_len ) { - ber_bvfree( si->syncCookie ); - si->syncCookie = ber_dupbv( NULL, &syncCookie ); + ber_init2( ber, &rctrlp->ldctl_value, LBER_USE_DER ); + + ber_scanf( ber, "{" /*"}"*/); + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) + { + ber_scanf( ber, "m", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, &tmp_bv); } - if ( ctrl_ber ) - ber_free( ctrl_ber, 1 ); - goto done; + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); } - else { - if ( ctrl_ber ) - ber_free( ctrl_ber, 1 ); - break; + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_REFRESHDELETES ) + { + ber_scanf( ber, "b", &refreshDeletes ); } + ber_scanf( ber, "}" ); + } + if ( syncCookie_req.ctxcsn == NULL ) { + match = -1; + } else if ( syncCookie.ctxcsn == NULL ) { + match = 1; } else { - if ( syncCookie.bv_len ) { - syncrepl_updateCookie( ld, &op, &psub, &syncCookie ); + value_match( &match, slap_schema.si_ad_entryCSN, + slap_schema.si_ad_entryCSN->ad_type->sat_ordering, + SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX, + &syncCookie_req.ctxcsn[0], &syncCookie.ctxcsn[0], &text ); + } + if ( syncCookie.octet_str && syncCookie.octet_str->bv_val + && match < 0 && err == LDAP_SUCCESS ) { + syncrepl_updateCookie( si, op, psub, &syncCookie ); + } + if ( rctrls ) { + ldap_controls_free( rctrls ); + } + if (si->si_type != LDAP_SYNC_REFRESH_AND_PERSIST) { + /* FIXME : different error behaviors according to + * 1) err code : LDAP_BUSY ... + * 2) on err policy : stop service, stop sync, retry + */ + if ( refreshDeletes == 0 && match < 0 && + err == LDAP_SUCCESS ) { + syncrepl_del_nonpresent( op, si ); + } else { + avl_free( si->si_presentlist, avl_ber_bvfree ); + si->si_presentlist = NULL; } - syncrepl_del_nonpresent( ld, &op ); - if ( ctrl_ber ) - ber_free( ctrl_ber, 1 ); - goto done; } + rc = -2; + goto done; break; - case LDAP_RES_INTERMEDIATE_RESP: - ldap_parse_intermediate_resp_result( ld, msg, - &retoid, &retdata, 0 ); - if ( !strcmp( retoid, LDAP_SYNC_INFO ) ) { - sync_info_arrived = 1; - res_ber = ber_init( retdata ); - ber_scanf( res_ber, "{e", &syncstate ); - - if ( syncstate == LDAP_SYNC_REFRESH_DONE ) { - syncrepl_del_nonpresent( ld, &op ); - } else if ( syncstate != LDAP_SYNC_NEW_COOKIE ) { + case LDAP_RES_INTERMEDIATE: + rc = ldap_parse_intermediate( si->si_ld, msg, + &retoid, &retdata, NULL, 0 ); + if ( !rc && !strcmp( retoid, LDAP_SYNC_INFO ) ) { + ber_init2( ber, retdata, LBER_USE_DER ); + + switch ( si_tag = ber_peek_tag( ber, &len )) { + ber_tag_t tag; + case LDAP_TAG_SYNC_NEW_COOKIE: + ber_scanf( ber, "tm", &tag, &cookie ); + break; + case LDAP_TAG_SYNC_REFRESH_DELETE: + si_refreshDelete = 1; + case LDAP_TAG_SYNC_REFRESH_PRESENT: + si_refreshPresent = 1; + si_refreshPresent = 1; + ber_scanf( ber, "t{", &tag ); + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) + { + ber_scanf( ber, "m", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, &tmp_bv); + } + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); + } + if ( ber_peek_tag( ber, &len ) == + LDAP_TAG_REFRESHDONE ) + { + ber_scanf( ber, "b", &refreshDone ); + } + ber_scanf( ber, "}" ); + break; + case LDAP_TAG_SYNC_ID_SET: + ber_scanf( ber, "t{", &tag ); + if ( ber_peek_tag( ber, &len ) == + LDAP_TAG_SYNC_COOKIE ) { + ber_scanf( ber, "m", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, + &tmp_bv ); + } + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); + } + if ( ber_peek_tag( ber, &len ) == + LDAP_TAG_REFRESHDELETES ) + { + ber_scanf( ber, "b", &refreshDeletes ); + } + ber_scanf( ber, "[W]", &syncUUIDs ); + ber_scanf( ber, "}" ); + for ( i = 0; syncUUIDs[i].bv_val; i++ ) { + struct berval *syncuuid_bv; + syncuuid_bv = ber_dupbv( NULL, &syncUUIDs[i] ); + slap_sl_free( syncUUIDs[i].bv_val,op->o_tmpmemctx ); + avl_insert( &si->si_presentlist, + (caddr_t) syncuuid_bv, + syncuuid_cmp, avl_dup_error ); + } + slap_sl_free( syncUUIDs, op->o_tmpmemctx ); + break; + default: #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "do_syncrepl : unknown sync info\n", 0, 0, 0 ); + LDAP_LOG( OPERATION, ERR, + "do_syncrep2 : unknown syncinfo tag (%ld)\n", + (long) si_tag, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, - "do_syncrepl : unknown sync info\n", 0, 0, 0 ); + Debug( LDAP_DEBUG_ANY, + "do_syncrep2 : unknown syncinfo tag (%ld)\n", + (long) si_tag, 0, 0 ); #endif + ldap_memfree( retoid ); + ber_bvfree( retdata ); + continue; } - if ( ber_peek_tag( res_ber, &len ) - == LDAP_SYNC_TAG_COOKIE ) { - ber_scanf( res_ber, "o}", &syncCookie ); - if ( syncCookie.bv_len ) { - ber_bvfree( si->syncCookie ); - si->syncCookie = ber_dupbv( NULL, &syncCookie ); - } + if ( syncCookie_req.ctxcsn == NULL ) { + match = -1; + } else if ( syncCookie.ctxcsn == NULL ) { + match = 1; } else { - if ( syncstate == LDAP_SYNC_NEW_COOKIE ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "do_syncrepl : cookie required\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, - "do_syncrepl : cookie required\n", 0, 0, 0 ); -#endif - } + value_match( &match, slap_schema.si_ad_entryCSN, + slap_schema.si_ad_entryCSN->ad_type->sat_ordering, + SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX, + &syncCookie_req.ctxcsn[0], + &syncCookie.ctxcsn[0], &text ); + } + + if ( syncCookie.ctxcsn && syncCookie.ctxcsn[0].bv_val + && match < 0 ) { + syncrepl_updateCookie( si, op, psub, &syncCookie); } + if ( si_refreshPresent == 1 ) { + if ( match < 0 ) { + syncrepl_del_nonpresent( op, si ); + } + } + ldap_memfree( retoid ); ber_bvfree( retdata ); - ber_free( res_ber, 1 ); break; } else { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR,"do_syncrepl :" + LDAP_LOG( OPERATION, ERR,"do_syncrep2 :" " unknown intermediate " "response\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl : " - "unknown intermediate " - "response\n", 0, 0, 0 ); + Debug( LDAP_DEBUG_ANY, "do_syncrep2 : " + "unknown intermediate response (%d)\n", + rc, 0, 0 ); #endif ldap_memfree( retoid ); ber_bvfree( retdata ); @@ -609,80 +772,219 @@ do_syncrepl( break; default: #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "do_syncrepl : " + LDAP_LOG( OPERATION, ERR, "do_syncrep2 : " "unknown message\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl : " + Debug( LDAP_DEBUG_ANY, "do_syncrep2 : " "unknown message\n", 0, 0, 0 ); #endif break; } + if ( syncCookie.octet_str ) { + slap_sync_cookie_free( &syncCookie_req, 0 ); + slap_dup_sync_cookie( &syncCookie_req, &syncCookie ); + slap_sync_cookie_free( &syncCookie, 0 ); + } } ldap_msgfree( res ); + res = NULL; } if ( rc == -1 ) { + const char *errstr; + + ldap_get_option( si->si_ld, LDAP_OPT_ERROR_NUMBER, &rc ); + errstr = ldap_err2string( rc ); + #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "do_syncrepl : unknown result\n", 0, 0, 0 ); + "do_syncrep2 : %s\n", errstr, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "do_syncrepl : unknown result\n", 0, 0, 0 ); + "do_syncrep2 : %s\n", errstr, 0, 0 ); #endif - return NULL; } done: - if ( syncCookie.bv_val ) - ch_free( syncCookie.bv_val ); - if ( syncUUID.bv_val ) - ch_free( syncUUID.bv_val ); + slap_sync_cookie_free( &syncCookie, 0 ); + slap_sync_cookie_free( &syncCookie_req, 0 ); - if ( res ) - ldap_msgfree( res ); - ldap_unbind( ld ); - return NULL; + if ( res ) ldap_msgfree( res ); + + if ( rc && si->si_ld ) { + ldap_unbind( si->si_ld ); + si->si_ld = NULL; + } + + return rc; } -static Entry* -syncrepl_message_to_entry( - LDAP *ld, - Operation *op, - LDAPMessage *msg, - Modifications **modlist, - int *syncstate, - struct berval *syncUUID, - struct berval *syncCookie -) +void * +do_syncrepl( + void *ctx, + void *arg ) { - Entry *e; - BerElement *ber = NULL; - BerElement *tmpber; - struct berval bv = {0, NULL}; - Modifications tmp; - Modifications *mod; - Modifications **modtail = modlist; - Backend *be = op->o_bd; + struct re_s* rtask = arg; + syncinfo_t *si = ( syncinfo_t * ) rtask->arg; + Connection conn = {0}; + Operation op = {0}; + int rc = LDAP_SUCCESS; + int first = 0; + int dostop = 0; + ber_socket_t s; + int i, defer = 1; + Backend *be; - const char *text; - char txtbuf[SLAP_TEXT_BUFLEN]; - size_t textlen = sizeof txtbuf; +#ifdef NEW_LOGGING + LDAP_LOG ( OPERATION, DETAIL1, "do_syncrepl\n", 0, 0, 0 ); +#else + Debug( LDAP_DEBUG_TRACE, "=>do_syncrepl\n", 0, 0, 0 ); +#endif - struct berval **bvals = NULL; - char *dn; - struct berval bdn = {0, NULL}; - Attribute *attr; - struct berval empty_bv = { 0, NULL }; - int rc; - char *a; + if ( si == NULL ) + return NULL; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; + switch( abs( si->si_type )) { + case LDAP_SYNC_REFRESH_ONLY: + case LDAP_SYNC_REFRESH_AND_PERSIST: + break; + default: + return NULL; + } - ber_len_t len; - LDAPControl* rctrlp; - LDAPControl** rctrls = NULL; - BerElement* ctrl_ber; + if ( slapd_shutdown && si->si_ld ) { + ldap_get_option( si->si_ld, LDAP_OPT_DESC, &s ); + connection_client_stop( s ); + ldap_unbind( si->si_ld ); + si->si_ld = NULL; + return NULL; + } + + connection_fake_init( &conn, &op, ctx ); + + /* use global malloc for now */ + op.o_tmpmemctx = NULL; + op.o_tmpmfuncs = &ch_mfuncs; + + op.o_dn = si->si_updatedn; + op.o_ndn = si->si_updatedn; + op.o_managedsait = 1; + op.o_bd = be = si->si_be; + + op.o_sync_state.ctxcsn = NULL; + op.o_sync_state.sid = -1; + op.o_sync_state.octet_str = NULL; + op.o_sync_slog_size = -1; + LDAP_STAILQ_FIRST( &op.o_sync_slog_list ) = NULL; + op.o_sync_slog_list.stqh_last = &LDAP_STAILQ_FIRST(&op.o_sync_slog_list); + + /* Establish session, do search */ + if ( !si->si_ld ) { + first = 1; + si_refreshDelete = 0; + si_refreshPresent = 0; + rc = do_syncrep1( &op, si ); + } + + /* Process results */ + if ( rc == LDAP_SUCCESS ) { + ldap_get_option( si->si_ld, LDAP_OPT_DESC, &s ); + + rc = do_syncrep2( &op, si ); + + if ( abs(si->si_type) == LDAP_SYNC_REFRESH_AND_PERSIST ) { + /* If we succeeded, enable the connection for further listening. + * If we failed, tear down the connection and reschedule. + */ + if ( rc == LDAP_SUCCESS ) { + if ( first ) { + rc = connection_client_setup( s, do_syncrepl, arg ); + } else { + connection_client_enable( s ); + } + } else if ( !first ) { + dostop = 1; + } + } else { + if ( rc == -2 ) rc = 0; + } + } + + /* At this point, we have 4 cases: + * 1) for any hard failure, give up and remove this task + * 2) for ServerDown, reschedule this task to run + * 3) for Refresh and Success, reschedule to run + * 4) for Persist and Success, reschedule to defer + */ + ldap_pvt_thread_mutex_lock( &syncrepl_rq.rq_mutex ); + + if ( ldap_pvt_runqueue_isrunning( &syncrepl_rq, rtask )) { + ldap_pvt_runqueue_stoptask( &syncrepl_rq, rtask ); + } + + if ( dostop ) { + connection_client_stop( s ); + } + + if ( rc == LDAP_SUCCESS ) { + if ( si->si_type == LDAP_SYNC_REFRESH_ONLY ) { + defer = 0; + } + rtask->interval.tv_sec = si->si_interval; + ldap_pvt_runqueue_resched( &syncrepl_rq, rtask, defer ); + if ( si->si_retrynum ) { + for ( i = 0; si->si_retrynum_init[i] != -2; i++ ) { + si->si_retrynum[i] = si->si_retrynum_init[i]; + } + si->si_retrynum[i] = -2; + } + } else { + for ( i = 0; si->si_retrynum && si->si_retrynum[i] <= 0; i++ ) { + if ( si->si_retrynum[i] == -1 || si->si_retrynum[i] == -2 ) + break; + } + + if ( !si->si_retrynum || si->si_retrynum[i] == -2 ) { + ldap_pvt_runqueue_remove( &syncrepl_rq, rtask ); + LDAP_STAILQ_REMOVE( &be->be_syncinfo, si, syncinfo_s, si_next ); + syncinfo_free( si ); + } else if ( si->si_retrynum[i] >= -1 ) { + if ( si->si_retrynum[i] > 0 ) + si->si_retrynum[i]--; + rtask->interval.tv_sec = si->si_retryinterval[i]; + ldap_pvt_runqueue_resched( &syncrepl_rq, rtask, 0 ); + slap_wake_listener(); + } + } + + ldap_pvt_thread_mutex_unlock( &syncrepl_rq.rq_mutex ); + + return NULL; +} + +int +syncrepl_message_to_entry( + syncinfo_t *si, + Operation *op, + LDAPMessage *msg, + Modifications **modlist, + Entry **entry, + int syncstate +) +{ + Entry *e = NULL; + BerElement *ber = NULL; + Modifications tmp; + Modifications *mod; + Modifications **modtail = modlist; + + const char *text; + char txtbuf[SLAP_TEXT_BUFLEN]; + size_t textlen = sizeof txtbuf; + + struct berval bdn = {0, NULL}, dn, ndn; + int rc; *modlist = NULL; @@ -694,12 +996,12 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "Message type should be entry (%d)", ldap_msgtype( msg ), 0, 0 ); #endif - return NULL; + return -1; } op->o_tag = LDAP_REQ_ADD; - rc = ldap_get_dn_ber( ld, msg, &ber, &bdn ); + rc = ldap_get_dn_ber( si->si_ld, msg, &ber, &bdn ); if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING @@ -709,19 +1011,36 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry : dn get failed (%d)", rc, 0, 0 ); #endif - return NULL; + return rc; } - e = ( Entry * ) ch_calloc( 1, sizeof( Entry )); - dnPrettyNormal( NULL, &bdn, &e->e_name, &e->e_nname, op->o_tmpmemctx ); + dnPrettyNormal( NULL, &bdn, &dn, &ndn, op->o_tmpmemctx ); + ber_dupbv( &op->o_req_dn, &dn ); + ber_dupbv( &op->o_req_ndn, &ndn ); + sl_free( ndn.bv_val, op->o_tmpmemctx ); + sl_free( dn.bv_val, op->o_tmpmemctx ); - e->e_attrs = NULL; + if ( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_DELETE ) { + if ( entry ) + *entry = NULL; + return LDAP_SUCCESS; + } - for ( rc = ldap_get_attribute_ber( ld, msg, ber, &tmp.sml_type, &tmp.sml_bvalues); - rc == LDAP_SUCCESS; - rc = ldap_get_attribute_ber( ld, msg, ber, &tmp.sml_type, &tmp.sml_bvalues)) - { - if ( tmp.sml_type.bv_val == NULL ) break; + if ( entry == NULL ) { + return -1; + } + + e = ( Entry * ) ch_calloc( 1, sizeof( Entry ) ); + *entry = e; + e->e_name = op->o_req_dn; + e->e_nname = op->o_req_ndn; + + while ( ber_remaining( ber ) ) { + if ( (ber_scanf( ber, "{mW}", &tmp.sml_type, &tmp.sml_values ) == + LBER_ERROR ) || ( tmp.sml_type.bv_val == NULL )) + { + break; + } mod = (Modifications *) ch_malloc( sizeof( Modifications )); @@ -729,69 +1048,13 @@ syncrepl_message_to_entry( mod->sml_next = NULL; mod->sml_desc = NULL; mod->sml_type = tmp.sml_type; - mod->sml_bvalues = tmp.sml_bvalues; - mod->sml_nvalues = tmp.sml_bvalues; + mod->sml_values = tmp.sml_values; + mod->sml_nvalues = NULL; *modtail = mod; modtail = &mod->sml_next; } - if ( ber_scanf( ber, "}") == LBER_ERROR ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_message_to_entry: ber_scanf failed\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: ber_scanf failed\n", - 0, 0, 0 ); -#endif - return NULL; - } - - ber_free( ber, 0 ); - tmpber = ldap_get_message_ber( msg ); - ber = ber_dup( tmpber ); - - ber_scanf( ber, "{xx" ); - - rc = ldap_int_get_controls( ber, &rctrls ); - - if ( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_message_to_entry : control get failed (%d)", rc, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, - "syncrepl_message_to_entry : control get failed (%d)", rc, 0, 0 ); -#endif - return NULL; - } - - if ( rctrls ) { - rctrlp = *rctrls; - ctrl_ber = ber_alloc_t( LBER_USE_DER ); - ber_set_option( ctrl_ber, LBER_OPT_BER_MEMCTX, op->o_tmpmemctx ); - ber_write( ctrl_ber, rctrlp->ldctl_value.bv_val, rctrlp->ldctl_value.bv_len, 0 ); - ber_reset( ctrl_ber, 1 ); - ber_scanf( ctrl_ber, "{eo", syncstate, syncUUID ); - if ( ber_peek_tag( ctrl_ber, &len ) == LDAP_SYNC_TAG_COOKIE ) { - ber_scanf( ctrl_ber, "o}", syncCookie ); - } - ber_free( ctrl_ber, 1 ); - } else { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR,"syncrepl_message_to_entry : " - " rctrls absent\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry :" - " rctrls absent\n", 0, 0, 0 ); -#endif - } - - if ( *syncstate == LDAP_SYNC_PRESENT ) { - e = NULL; - goto done; - } - if ( *modlist == NULL ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, @@ -800,9 +1063,11 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: no attributes\n", 0, 0, 0 ); #endif + rc = -1; + goto done; } - rc = slap_mods_check_syncrepl( op, modlist, &text, txtbuf, textlen, NULL ); + rc = slap_mods_check( *modlist, 1, &text, txtbuf, textlen, NULL ); if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING @@ -812,24 +1077,35 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods check (%s)\n", text, 0, 0 ); #endif - return NULL; + goto done; } - - rc = slap_mods_opattrs_syncrepl( op, *modlist, modtail, - &text,txtbuf, textlen ); - - if( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_message_to_entry: mods opattrs (%s)\n", text, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods opattrs (%s)\n", - text, 0, 0 ); -#endif - return NULL; + + /* Strip out dynamically generated attrs */ + for ( modtail = modlist; *modtail ; ) { + mod = *modtail; + if ( mod->sml_desc->ad_type->sat_flags & SLAP_AT_DYNAMIC ) { + *modtail = mod->sml_next; + slap_mod_free( &mod->sml_mod, 0 ); + ch_free( mod ); + } else { + modtail = &mod->sml_next; + } } - rc = slap_mods2entry_syncrepl( *modlist, &e, 1, &text, txtbuf, textlen ); + /* Strip out attrs in exattrs list */ + for ( modtail = modlist; *modtail ; ) { + mod = *modtail; + if ( ldap_charray_inlist( si->si_exattrs, + mod->sml_desc->ad_type->sat_cname.bv_val )) { + *modtail = mod->sml_next; + slap_mod_free( &mod->sml_mod, 0 ); + ch_free( mod ); + } else { + modtail = &mod->sml_next; + } + } + + rc = slap_mods2entry( *modlist, &e, 1, 1, &text, txtbuf, textlen); if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, @@ -841,461 +1117,680 @@ syncrepl_message_to_entry( } done: - ber_free ( ber, 0 ); + if ( rc != LDAP_SUCCESS ) { + if ( e ) { + entry_free( e ); + *entry = e = NULL; + } + } - return e; -} - -int -syncuuid_cmp( const void* v_uuid1, const void* v_uuid2 ) -{ - const struct berval *uuid1 = v_uuid1; - const struct berval *uuid2 = v_uuid2; - int rc = uuid1->bv_len - uuid2->bv_len; - if ( rc ) return rc; - return ( strcmp( uuid1->bv_val, uuid2->bv_val ) ); + return rc; } -static int +int syncrepl_entry( - LDAP *ld, + syncinfo_t* si, Operation *op, - Entry* e, + Entry* entry, Modifications* modlist, int syncstate, struct berval* syncUUID, - struct berval* syncCookie, - int refresh + struct sync_cookie* syncCookie_req ) { Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - slap_callback cb; - struct berval csn_bv = {0, NULL}; + slap_callback cb = { NULL }; struct berval *syncuuid_bv = NULL; - char csnbuf[ LDAP_LUTIL_CSNSTR_BUFSIZE ]; - - SlapReply rs = {REP_RESULT}; - int rc; - -#if 0 /* FIXME : UUID search required first */ - char *filterstr; - struct berval filterstr_bv; - Filter *filter; -#endif - - Attribute *a; - - if ( refresh && - ( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_ADD )) { - syncuuid_bv = ber_dupbv( NULL, syncUUID ); - avl_insert( &si->presentlist, (caddr_t) syncuuid_bv, - syncuuid_cmp, avl_dup_error ); + struct berval syncUUID_strrep = BER_BVNULL; + struct berval uuid_bv = BER_BVNULL; + + SlapReply rs_search = {REP_RESULT}; + SlapReply rs_delete = {REP_RESULT}; + SlapReply rs_add = {REP_RESULT}; + SlapReply rs_modify = {REP_RESULT}; + Filter f = {0}; + AttributeAssertion ava = {0}; + int rc = LDAP_SUCCESS; + int ret = LDAP_SUCCESS; + const char *text; + + struct berval pdn = BER_BVNULL; + struct berval org_req_dn = BER_BVNULL; + struct berval org_req_ndn = BER_BVNULL; + struct berval org_dn = BER_BVNULL; + struct berval org_ndn = BER_BVNULL; + int org_managedsait; + + if (( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_ADD )) + { + if (!si_refreshPresent) { + syncuuid_bv = ber_dupbv( NULL, syncUUID ); + avl_insert( &si->si_presentlist, (caddr_t) syncuuid_bv, + syncuuid_cmp, avl_dup_error ); + } } if ( syncstate == LDAP_SYNC_PRESENT ) { - if ( e ) - return 1; - else + return 0; + } else if ( syncstate != LDAP_SYNC_DELETE ) { + if ( entry == NULL ) { return 0; + } } - if ( !attr_find( e->e_attrs, slap_schema.si_ad_entryUUID )) { - attr_merge_one( e, slap_schema.si_ad_entryUUID, syncUUID, syncUUID ); - } - -#if 0 /* FIXME : UUID search required first */ - filterstr = (char *) sl_malloc( strlen("entryUUID=") + syncUUID->bv_len + 1, op->o_tmpmemctx ); - strcpy( filterstr, "entryUUID=" ); - strcat( filterstr, syncUUID->bv_val ); -#endif + f.f_choice = LDAP_FILTER_EQUALITY; + f.f_ava = &ava; + ava.aa_desc = slap_schema.si_ad_entryUUID; + slap_uuidstr_from_normalized( &syncUUID_strrep, syncUUID, op->o_tmpmemctx ); + ava.aa_value = *syncUUID; + op->ors_filter = &f; + + op->ors_filterstr.bv_len = (sizeof("entryUUID=")-1) + syncUUID->bv_len; + op->ors_filterstr.bv_val = (char *) sl_malloc( + op->ors_filterstr.bv_len + 1, op->o_tmpmemctx ); + AC_MEMCPY( op->ors_filterstr.bv_val, "entryUUID=", sizeof("entryUUID=")-1 ); + AC_MEMCPY( &op->ors_filterstr.bv_val[sizeof("entryUUID=")-1], + syncUUID->bv_val, syncUUID->bv_len ); + op->ors_filterstr.bv_val[op->ors_filterstr.bv_len] = '\0'; - si->e = e; - si->syncUUID = syncUUID; + op->o_tag = LDAP_REQ_SEARCH; + op->ors_scope = LDAP_SCOPE_SUBTREE; -#if 0 /* FIXME : UUID search required first */ - filter = str2filter( filterstr ); - ber_str2bv( filterstr, strlen(filterstr), 1, &filterstr_bv ); - ch_free( filterstr ); -#endif + /* get syncrepl cookie of shadow replica from subentry */ + op->o_req_dn = si->si_base; + op->o_req_ndn = si->si_base; - op->o_req_dn = e->e_name; - op->o_req_ndn = e->e_nname; + op->o_time = slap_get_time(); + op->ors_tlimit = SLAP_NO_LIMIT; + op->ors_slimit = 1; + /* set callback function */ op->o_callback = &cb; + cb.sc_response = dn_callback; + cb.sc_private = si; + + si->si_syncUUID_ndn.bv_val = NULL; + + if ( limits_check( op, &rs_search ) == 0 ) { + rc = be->be_search( op, &rs_search ); + } + + if ( op->ors_filterstr.bv_val ) { + sl_free( op->ors_filterstr.bv_val, op->o_tmpmemctx ); + } + cb.sc_response = null_callback; cb.sc_private = si; + if ( rs_search.sr_err == LDAP_SUCCESS && si->si_syncUUID_ndn.bv_val ) { + char *subseq_ptr; + + if ( syncstate != LDAP_SYNC_DELETE ) { + op->o_no_psearch = 1; + } + + ber_dupbv( &op->o_sync_csn, syncCookie_req->ctxcsn ); + if ( op->o_sync_csn.bv_val ) { + subseq_ptr = strstr( op->o_sync_csn.bv_val, "#0000" ); + subseq_ptr += 4; + *subseq_ptr = '1'; + } + + op->o_req_dn = si->si_syncUUID_ndn; + op->o_req_ndn = si->si_syncUUID_ndn; + op->o_tag = LDAP_REQ_DELETE; + rc = be->be_delete( op, &rs_delete ); + + org_req_dn = op->o_req_dn; + org_req_ndn = op->o_req_ndn; + org_dn = op->o_dn; + org_ndn = op->o_ndn; + org_managedsait = get_manageDSAit( op ); + op->o_dn = op->o_bd->be_rootdn; + op->o_ndn = op->o_bd->be_rootndn; + op->o_managedsait = 1; + + while ( rs_delete.sr_err == LDAP_SUCCESS && op->o_delete_glue_parent ) { + op->o_delete_glue_parent = 0; + if ( !be_issuffix( op->o_bd, &op->o_req_ndn )) { + slap_callback cb = { NULL }; + cb.sc_response = slap_null_cb; + dnParent( &op->o_req_ndn, &pdn ); + op->o_req_dn = pdn; + op->o_req_ndn = pdn; + op->o_callback = &cb; + op->o_bd->be_delete( op, &rs_delete ); + } else { + break; + } + } + + op->o_managedsait = org_managedsait; + op->o_dn = org_dn; + op->o_ndn = org_ndn; + op->o_req_dn = org_req_dn; + op->o_req_ndn = org_req_ndn; + op->o_delete_glue_parent = 0; + + op->o_no_psearch = 0; + } + switch ( syncstate ) { - case LDAP_SYNC_ADD : - case LDAP_SYNC_MODIFY : -sync_add_retry: - op->o_tag = LDAP_REQ_MODIFY; - op->orm_modlist = modlist; - rc = be->be_modify( op, &rs ); - if ( rc != LDAP_SUCCESS ) { - if ( rc == LDAP_REFERRAL || - rc == LDAP_NO_SUCH_OBJECT || - rc == DB_NOTFOUND ) { - op->o_tag = LDAP_REQ_ADD; - op->ora_e = e; - rc = be->be_add( op, &rs ); - if ( rc != LDAP_SUCCESS ) { - if ( rc == LDAP_ALREADY_EXISTS ) { - goto sync_add_retry; - } else if ( rc == LDAP_REFERRAL || - rc == LDAP_NO_SUCH_OBJECT || - rc == DB_NOTFOUND ) { - syncrepl_add_glue(ld, op, e, - modlist, syncstate, - syncUUID, syncCookie); - } else { + case LDAP_SYNC_ADD: + case LDAP_SYNC_MODIFY: + if ( rs_search.sr_err == LDAP_SUCCESS || + rs_search.sr_err == LDAP_REFERRAL || + rs_search.sr_err == LDAP_NO_SUCH_OBJECT || + rs_search.sr_err == LDAP_NOT_ALLOWED_ON_NONLEAF ) + { + attr_delete( &entry->e_attrs, slap_schema.si_ad_entryUUID ); + attr_merge_one( entry, slap_schema.si_ad_entryUUID, + &syncUUID_strrep, syncUUID ); + + op->o_tag = LDAP_REQ_ADD; + op->ora_e = entry; + op->o_req_dn = entry->e_name; + op->o_req_ndn = entry->e_nname; + + rc = be->be_add( op, &rs_add ); + + if ( rs_add.sr_err != LDAP_SUCCESS ) { + if ( rs_add.sr_err == LDAP_ALREADY_EXISTS && + rs_search.sr_err != LDAP_NO_SUCH_OBJECT ) { + Modifications *mod; + Modifications *modtail = modlist; + + assert( modlist ); + + for ( mod = modlist; mod != NULL; mod = mod->sml_next ) { + modtail = mod; + } + + mod = (Modifications *)ch_calloc(1, sizeof(Modifications)); + ber_dupbv( &uuid_bv, syncUUID ); + mod->sml_op = LDAP_MOD_REPLACE; + mod->sml_desc = slap_schema.si_ad_entryUUID; + mod->sml_type = mod->sml_desc->ad_cname; + ber_bvarray_add( &mod->sml_values, &uuid_bv ); + modtail->sml_next = mod; + + op->o_tag = LDAP_REQ_MODIFY; + op->orm_modlist = modlist; + op->o_req_dn = entry->e_name; + op->o_req_ndn = entry->e_nname; + + rc = be->be_modify( op, &rs_modify ); + if ( rs_modify.sr_err != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "be_add failed (%d)\n", - rc, 0, 0 ); + "syncrepl_entry : be_modify failed (%d)\n", + rs_modify.sr_err, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "be_add failed (%d)\n", - rc, 0, 0 ); + "syncrepl_entry : be_modify failed (%d)\n", + rs_modify.sr_err, 0, 0 ); #endif } + ret = 1; + goto done; + } else if ( rs_modify.sr_err == LDAP_REFERRAL || + rs_modify.sr_err == LDAP_NO_SUCH_OBJECT ) { + syncrepl_add_glue( op, entry ); + ret = 0; + goto done; } else { - return 0; +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, + "syncrepl_entry : be_add failed (%d)\n", + rs_add.sr_err, 0, 0 ); +#else + Debug( LDAP_DEBUG_ANY, + "syncrepl_entry : be_add failed (%d)\n", + rs_add.sr_err, 0, 0 ); +#endif + ret = 1; + goto done; } } else { + be_entry_release_w( op, entry ); + ret = 0; + goto done; + } + } else { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "be_modify failed (%d)\n", rc, 0, 0 ); + LDAP_LOG( OPERATION, ERR, + "syncrepl_entry : be_search failed (%d)\n", + rs_search.sr_err, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, - "be_modify failed (%d)\n", rc, 0, 0 ); + Debug( LDAP_DEBUG_ANY, + "syncrepl_entry : be_search failed (%d)\n", + rs_search.sr_err, 0, 0 ); #endif - } + ret = 1; + goto done; } - si->e = NULL; - return 1; case LDAP_SYNC_DELETE : - op->o_tag = LDAP_REQ_DELETE; - be->be_delete( op, &rs ); - si->e = NULL; - return 1; + /* Already deleted */ + ret = 0; + goto done; + default : #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "unknown syncstate\n", 0, 0, 0 ); + "syncrepl_entry : unknown syncstate\n", 0, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "unknown syncstate\n", 0, 0, 0 ); + "syncrepl_entry : unknown syncstate\n", 0, 0, 0 ); #endif - return 1; + ret = 1; + goto done; + } + +done : + + if ( syncUUID_strrep.bv_val ) { + slap_sl_free( syncUUID_strrep.bv_val, op->o_tmpmemctx ); } + if ( si->si_syncUUID_ndn.bv_val ) { + ch_free( si->si_syncUUID_ndn.bv_val ); + si->si_syncUUID_ndn.bv_val = NULL; + } + return ret; } -static int +static struct berval gcbva[] = { + BER_BVC("top"), + BER_BVC("glue"), + BER_BVNULL +}; + +static void syncrepl_del_nonpresent( - LDAP *ld, - Operation *op + Operation *op, + syncinfo_t *si ) { Backend* be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - slap_callback cb; - struct berval base_bv = {0, NULL}; - Filter *filter; - SlapReply rs = {REP_RESULT}; - struct berval filterstr_bv = {0, NULL}; + slap_callback cb = { NULL }; + SlapReply rs_search = {REP_RESULT}; + SlapReply rs_delete = {REP_RESULT}; + SlapReply rs_modify = {REP_RESULT}; struct nonpresent_entry *np_list, *np_prev; + int rc; + Modifications *ml; + Modifications *mlnext; + Modifications *mod; + Modifications *modlist = NULL; + Modifications **modtail; + Attribute *attr; - ber_str2bv( si->base, strlen(si->base), 1, &base_bv ); - dnPrettyNormal(0, &base_bv, &op->o_req_dn, &op->o_req_ndn, op->o_tmpmemctx ); - ch_free( base_bv.bv_val ); + struct berval pdn = BER_BVNULL; + struct berval org_req_dn = BER_BVNULL; + struct berval org_req_ndn = BER_BVNULL; + struct berval org_dn = BER_BVNULL; + struct berval org_ndn = BER_BVNULL; + int org_managedsait; - filter = str2filter( si->filterstr ); + op->o_req_dn = si->si_base; + op->o_req_ndn = si->si_base; cb.sc_response = nonpresent_callback; cb.sc_private = si; op->o_callback = &cb; op->o_tag = LDAP_REQ_SEARCH; - op->ors_scope = si->scope; + op->ors_scope = si->si_scope; op->ors_deref = LDAP_DEREF_NEVER; - op->ors_slimit = -1; - op->ors_tlimit = -1; + op->o_time = slap_get_time(); + op->ors_tlimit = SLAP_NO_LIMIT; + op->ors_slimit = SLAP_NO_LIMIT; op->ors_attrsonly = 0; op->ors_attrs = NULL; - op->ors_filter = filter; - ber_str2bv( si->filterstr, strlen( si->filterstr ), 1, &op->ors_filterstr ); + op->ors_filter = str2filter_x( op, si->si_filterstr.bv_val ); + op->ors_filterstr = si->si_filterstr; + + op->o_nocaching = 1; + op->o_managedsait = 0; + + if ( limits_check( op, &rs_search ) == 0 ) { + rc = be->be_search( op, &rs_search ); + } + + op->o_managedsait = 1; + op->o_nocaching = 0; - be->be_search( op, &rs ); + if ( op->ors_filter ) filter_free_x( op, op->ors_filter ); - if ( !LDAP_LIST_EMPTY( &si->nonpresentlist ) ) { - np_list = LDAP_LIST_FIRST( &si->nonpresentlist ); + if ( !LDAP_LIST_EMPTY( &si->si_nonpresentlist ) ) { + np_list = LDAP_LIST_FIRST( &si->si_nonpresentlist ); while ( np_list != NULL ) { - LDAP_LIST_REMOVE( np_list, np_link ); + LDAP_LIST_REMOVE( np_list, npe_link ); np_prev = np_list; - np_list = LDAP_LIST_NEXT( np_list, np_link ); + np_list = LDAP_LIST_NEXT( np_list, npe_link ); op->o_tag = LDAP_REQ_DELETE; op->o_callback = &cb; cb.sc_response = null_callback; cb.sc_private = si; - op->o_req_dn = *np_prev->dn; - op->o_req_ndn = *np_prev->ndn; - op->o_bd->be_delete( op, &rs ); - ber_bvfree( np_prev->dn ); - ber_bvfree( np_prev->ndn ); + op->o_req_dn = *np_prev->npe_name; + op->o_req_ndn = *np_prev->npe_nname; + rc = op->o_bd->be_delete( op, &rs_delete ); + + if ( rs_delete.sr_err == LDAP_NOT_ALLOWED_ON_NONLEAF ) { + modtail = &modlist; + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); + mod->sml_op = LDAP_MOD_REPLACE; + mod->sml_desc = slap_schema.si_ad_objectClass; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_values = &gcbva[0]; + *modtail = mod; + modtail = &mod->sml_next; + + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); + mod->sml_op = LDAP_MOD_REPLACE; + mod->sml_desc = slap_schema.si_ad_structuralObjectClass; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_values = &gcbva[1]; + *modtail = mod; + modtail = &mod->sml_next; + + op->o_tag = LDAP_REQ_MODIFY; + op->orm_modlist = modlist; + + rc = be->be_modify( op, &rs_modify ); + + for ( ml = modlist; ml != NULL; ml = mlnext ) { + mlnext = ml->sml_next; + free( ml ); + } + } + + org_req_dn = op->o_req_dn; + org_req_ndn = op->o_req_ndn; + org_dn = op->o_dn; + org_ndn = op->o_ndn; + org_managedsait = get_manageDSAit( op ); + op->o_dn = op->o_bd->be_rootdn; + op->o_ndn = op->o_bd->be_rootndn; + op->o_managedsait = 1; + + while ( rs_delete.sr_err == LDAP_SUCCESS && + op->o_delete_glue_parent ) { + op->o_delete_glue_parent = 0; + if ( !be_issuffix( op->o_bd, &op->o_req_ndn )) { + slap_callback cb = { NULL }; + cb.sc_response = slap_null_cb; + dnParent( &op->o_req_ndn, &pdn ); + op->o_req_dn = pdn; + op->o_req_ndn = pdn; + op->o_callback = &cb; + /* give it a root privil ? */ + op->o_bd->be_delete( op, &rs_delete ); + } else { + break; + } + } + + op->o_managedsait = org_managedsait; + op->o_dn = org_dn; + op->o_ndn = org_ndn; + op->o_req_dn = org_req_dn; + op->o_req_ndn = org_req_ndn; + op->o_delete_glue_parent = 0; + + ber_bvfree( np_prev->npe_name ); + ber_bvfree( np_prev->npe_nname ); op->o_req_dn.bv_val = NULL; op->o_req_ndn.bv_val = NULL; ch_free( np_prev ); } } - if ( op->o_req_dn.bv_val ) - ch_free( op->o_req_dn.bv_val ); - if ( op->o_req_ndn.bv_val ) - ch_free( op->o_req_ndn.bv_val ); - filter_free( op->ors_filter ); - ch_free( op->ors_filterstr.bv_val ); + return; } -static void +void syncrepl_add_glue( - LDAP *ld, Operation* op, - Entry *e, - Modifications* modlist, - int syncstate, - struct berval* syncUUID, - struct berval* syncCookie + Entry *e ) { Backend *be = op->o_bd; - syncinfo_t *si = op->o_callback->sc_private; - struct berval uuid_bv = {0, NULL}; - slap_callback cb; + slap_callback cb = { NULL }; Attribute *a; int rc; - char uuidbuf[ LDAP_LUTIL_UUIDSTR_BUFSIZE ]; - int levels = 0; - int i, j, k; + int suffrdns; + int i; struct berval dn = {0, NULL}; - struct berval pdn = {0, NULL}; struct berval ndn = {0, NULL}; - struct berval rdn = {0, NULL}; Entry *glue; - SlapReply rs = {REP_RESULT}; - Connection *conn = op->o_conn; + SlapReply rs_add = {REP_RESULT}; + char *ptr, *comma; op->o_tag = LDAP_REQ_ADD; op->o_callback = &cb; cb.sc_response = null_callback; - cb.sc_private = si; + cb.sc_private = NULL; + + dn = e->e_name; + ndn = e->e_nname; - ber_dupbv( &dn, &e->e_nname ); - ber_dupbv( &pdn, &e->e_nname ); - - while ( !be_issuffix ( be, &pdn )) { - dnParent( &dn, &pdn ); - ch_free( dn.bv_val ); - ber_dupbv( &dn, &pdn ); - levels++; - } - - for ( i = 0; i <= levels; i++ ) { - glue = (Entry*) ch_calloc( 1, sizeof(Entry) ); - ch_free( dn.bv_val ); - ch_free( pdn.bv_val ); - ber_dupbv( &dn, &e->e_nname ); - ber_dupbv( &pdn, &e->e_nname ); - j = levels - i; - for ( k = 0; k < j; k++ ) { - dnParent( &dn, &pdn ); - ch_free( dn.bv_val ); - ber_dupbv( &dn, &pdn ); + /* count RDNs in suffix */ + if ( be->be_nsuffix[0].bv_len ) { + for (i=0, ptr=be->be_nsuffix[0].bv_val; ptr; ptr=strchr( ptr, ',' )) { + ptr++; + i++; } + suffrdns = i; + } else { + /* suffix is "" */ + suffrdns = 0; + } - dnPrettyNormal( 0, &dn, &pdn, &ndn, op->o_tmpmemctx ); - ber_dupbv( &glue->e_name, &pdn ); + /* Start with BE suffix */ + for ( i = 0, ptr = NULL; i < suffrdns; i++ ) { + comma = strrchr(dn.bv_val, ','); + if ( ptr ) *ptr = ','; + if ( comma ) *comma = '\0'; + ptr = comma; + } + if ( ptr ) { + *ptr++ = ','; + dn.bv_len -= ptr - dn.bv_val; + dn.bv_val = ptr; + } + /* the normalizedDNs are always the same length, no counting + * required. + */ + if ( ndn.bv_len > be->be_nsuffix[0].bv_len ) { + ndn.bv_val += ndn.bv_len - be->be_nsuffix[0].bv_len; + ndn.bv_len = be->be_nsuffix[0].bv_len; + } + + while ( ndn.bv_val > e->e_nname.bv_val ) { + glue = (Entry *) ch_calloc( 1, sizeof(Entry) ); + ber_dupbv( &glue->e_name, &dn ); ber_dupbv( &glue->e_nname, &ndn ); - ch_free( dn.bv_val ); - ch_free( pdn.bv_val ); - ch_free( ndn.bv_val ); a = ch_calloc( 1, sizeof( Attribute )); a->a_desc = slap_schema.si_ad_objectClass; + a->a_vals = ch_calloc( 3, sizeof( struct berval )); - ber_str2bv( "top", strlen("top"), 1, &a->a_vals[0] ); - ber_str2bv( "glue", strlen("glue"), 1, &a->a_vals[1] ); - a->a_vals[2].bv_len = 0; - a->a_vals[2].bv_val = NULL; + ber_dupbv( &a->a_vals[0], &gcbva[0] ); + ber_dupbv( &a->a_vals[1], &gcbva[1] ); + ber_dupbv( &a->a_vals[2], &gcbva[2] ); + + a->a_nvals = a->a_vals; + a->a_next = glue->e_attrs; glue->e_attrs = a; a = ch_calloc( 1, sizeof( Attribute )); a->a_desc = slap_schema.si_ad_structuralObjectClass; + a->a_vals = ch_calloc( 2, sizeof( struct berval )); - ber_str2bv( "glue", strlen("glue"), 1, &a->a_vals[0] ); - a->a_vals[1].bv_len = 0; - a->a_vals[1].bv_val = NULL; + ber_dupbv( &a->a_vals[0], &gcbva[1] ); + ber_dupbv( &a->a_vals[1], &gcbva[2] ); + + a->a_nvals = a->a_vals; + a->a_next = glue->e_attrs; glue->e_attrs = a; - if ( !strcmp( e->e_nname.bv_val, glue->e_nname.bv_val )) { - op->o_req_dn = e->e_name; - op->o_req_ndn = e->e_nname; - op->ora_e = e; - rc = be->be_add ( op, &rs ); - if ( rc == LDAP_SUCCESS ) - be_entry_release_w( op, e ); - else - entry_free( e ); - entry_free( glue ); + op->o_req_dn = glue->e_name; + op->o_req_ndn = glue->e_nname; + op->ora_e = glue; + rc = be->be_add ( op, &rs_add ); + if ( rs_add.sr_err == LDAP_SUCCESS ) { + be_entry_release_w( op, glue ); } else { - op->o_req_dn = glue->e_name; - op->o_req_ndn = glue->e_nname; - op->ora_e = glue; - rc = be->be_add ( op, &rs ); - if ( rc == LDAP_SUCCESS ) { - be_entry_release_w( op, glue ); - } else { - /* incl. ALREADY EXIST */ - entry_free( glue ); - } + /* incl. ALREADY EXIST */ + entry_free( glue ); } + + /* Move to next child */ + for (ptr = dn.bv_val-2; ptr > e->e_name.bv_val && *ptr != ','; ptr--) { + /* empty */ + } + if ( ptr == e->e_name.bv_val ) break; + dn.bv_val = ++ptr; + dn.bv_len = e->e_name.bv_len - (ptr-e->e_name.bv_val); + for( ptr = ndn.bv_val-2; + ptr > e->e_nname.bv_val && *ptr != ','; + ptr--) + { + /* empty */ + } + ndn.bv_val = ++ptr; + ndn.bv_len = e->e_nname.bv_len - (ptr-e->e_nname.bv_val); + } + + op->o_req_dn = e->e_name; + op->o_req_ndn = e->e_nname; + op->ora_e = e; + rc = be->be_add ( op, &rs_add ); + if ( rs_add.sr_err == LDAP_SUCCESS ) { + be_entry_release_w( op, e ); + } else { + entry_free( e ); } return; } -static void +static struct berval ocbva[] = { + BER_BVC("top"), + BER_BVC("subentry"), + BER_BVC("syncConsumerSubentry"), + BER_BVNULL +}; + +static struct berval cnbva[] = { + BER_BVNULL, + BER_BVNULL +}; + +static struct berval ssbva[] = { + BER_BVC("{}"), + BER_BVNULL +}; + +static struct berval scbva[] = { + BER_BVNULL, + BER_BVNULL +}; + +void syncrepl_updateCookie( - LDAP *ld, + syncinfo_t *si, Operation *op, struct berval *pdn, - struct berval *syncCookie + struct sync_cookie *syncCookie ) { Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; Modifications *ml; Modifications *mlnext; Modifications *mod; - Modifications *modlist; + Modifications *modlist = NULL; Modifications **modtail = &modlist; - struct berval* ocbva = NULL; - struct berval* cnbva = NULL; - struct berval* ssbva = NULL; - struct berval* scbva = NULL; - - char substr[64]; - char rdnstr[67]; const char *text; char txtbuf[SLAP_TEXT_BUFLEN]; size_t textlen = sizeof txtbuf; - Entry* e; + Entry* e = NULL; int rc; - struct berval sub_bv = { 0, NULL }; - struct berval psubrdn = { 0, NULL }; + char syncrepl_cbuf[sizeof(CN_STR SYNCREPL_STR)]; + struct berval slap_syncrepl_dn_bv = BER_BVNULL; + struct berval slap_syncrepl_cn_bv = BER_BVNULL; - slap_callback cb; - SlapReply rs = {REP_RESULT}; - - ocbva = ( struct berval * ) ch_calloc( 4, sizeof( struct berval )); - cnbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval )); - ssbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval )); - scbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval )); - - /* update in memory cookie */ - if ( si->syncCookie != NULL ) { - ber_bvfree( si->syncCookie ); - } - si->syncCookie = ber_dupbv( NULL, syncCookie ); - ber_str2bv( "top", strlen("top"), 1, &ocbva[0] ); - ber_str2bv( "subentry", strlen("subentry"), 1, &ocbva[1] ); - ber_str2bv( "syncConsumerSubentry", - strlen("syncConsumerSubentry"), 1, &ocbva[2] ); - ocbva[3].bv_len = 0; - ocbva[3].bv_val = NULL; - - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + slap_callback cb = { NULL }; + SlapReply rs_add = {REP_RESULT}; + SlapReply rs_modify = {REP_RESULT}; + + slap_sync_cookie_free( &si->si_syncCookie, 0 ); + slap_dup_sync_cookie( &si->si_syncCookie, syncCookie ); + + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "objectClass", strlen("objectClass"), 1, &mod->sml_type ); - mod->sml_bvalues = ocbva; - mod->sml_nvalues = ocbva; + mod->sml_desc = slap_schema.si_ad_objectClass; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_values = ocbva; *modtail = mod; modtail = &mod->sml_next; - sprintf( substr, "syncrepl%d", si->id ); - sprintf( rdnstr, "cn=%s", substr ); - ber_str2bv( substr, strlen( substr ), 1, &cnbva[0] ); - ber_str2bv( rdnstr, strlen( rdnstr ), 1, &psubrdn ); - cnbva[1].bv_len = 0; - cnbva[1].bv_val = NULL; - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + ber_dupbv( &cnbva[0], (struct berval *) &slap_syncrepl_bvc ); + assert( si->si_rid < 1000 ); + cnbva[0].bv_len = snprintf( cnbva[0].bv_val, + slap_syncrepl_bvc.bv_len + 1, + "syncrepl%ld", si->si_rid ); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "cn", strlen("cn"), 1, &mod->sml_type ); - mod->sml_bvalues = cnbva; - mod->sml_nvalues = cnbva; + mod->sml_desc = slap_schema.si_ad_cn; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_values = cnbva; *modtail = mod; modtail = &mod->sml_next; - ber_dupbv( &scbva[0], si->syncCookie ); - scbva[1].bv_len = 0; - scbva[1].bv_val = NULL; - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "syncreplCookie", strlen("syncreplCookie"), - 1, &mod->sml_type ); - mod->sml_bvalues = scbva; - mod->sml_nvalues = scbva; + mod->sml_desc = slap_schema.si_ad_subtreeSpecification; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_values = ssbva; *modtail = mod; modtail = &mod->sml_next; - ber_str2bv( "{}", strlen("{}"), 1, &ssbva[0] ); - ssbva[1].bv_len = 0; - ssbva[1].bv_val = NULL; - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + /* Keep this last, so we can avoid touching the previous + * attributes unnecessarily. + */ + if ( scbva[0].bv_val ) ch_free( scbva[0].bv_val ); + ber_dupbv( &scbva[0], &si->si_syncCookie.octet_str[0] ); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "subtreeSpecification", - strlen("subtreeSpecification"), 1, &mod->sml_type ); - mod->sml_bvalues = ssbva; - mod->sml_nvalues = ssbva; + mod->sml_desc = slap_schema.si_ad_syncreplCookie; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_values = scbva; *modtail = mod; modtail = &mod->sml_next; - rc = slap_mods_check_syncrepl( op, &modlist, &text, txtbuf, textlen, NULL ); - - if ( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_updateCookie: mods check (%s)\n", text, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods check (%s)\n", - text, 0, 0 ); -#endif - } + mlnext = mod; op->o_tag = LDAP_REQ_ADD; - rc = slap_mods_opattrs_syncrepl( op, modlist, modtail, &text,txtbuf, textlen ); + rc = slap_mods_opattrs( op, modlist, modtail, + &text, txtbuf, textlen, 0 ); + + for ( ml = modlist; ml != NULL; ml = ml->sml_next ) { + ml->sml_op = LDAP_MOD_REPLACE; + } if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 ); + "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 ); @@ -1304,19 +1799,29 @@ syncrepl_updateCookie( e = ( Entry * ) ch_calloc( 1, sizeof( Entry )); - build_new_dn( &sub_bv, pdn, &psubrdn ); - dnPrettyNormal( NULL, &sub_bv, &e->e_name, &e->e_nname, op->o_tmpmemctx ); - ch_free( sub_bv.bv_val ); - ch_free( psubrdn.bv_val ); + slap_syncrepl_cn_bv.bv_val = syncrepl_cbuf; + assert( si->si_rid < 1000 ); + slap_syncrepl_cn_bv.bv_len = snprintf( slap_syncrepl_cn_bv.bv_val, + slap_syncrepl_cn_bvc.bv_len + 1, + "cn=syncrepl%ld", si->si_rid ); + + build_new_dn( &slap_syncrepl_dn_bv, pdn, &slap_syncrepl_cn_bv, + op->o_tmpmemctx ); + ber_dupbv( &e->e_name, &slap_syncrepl_dn_bv ); + ber_dupbv( &e->e_nname, &slap_syncrepl_dn_bv ); + + if ( slap_syncrepl_dn_bv.bv_val ) { + sl_free( slap_syncrepl_dn_bv.bv_val, op->o_tmpmemctx ); + } e->e_attrs = NULL; - rc = slap_mods2entry_syncrepl( modlist, &e, 1, &text, txtbuf, textlen ); + rc = slap_mods2entry( modlist, &e, 1, 1, &text, txtbuf, textlen ); if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 ); + "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 ); @@ -1333,21 +1838,21 @@ syncrepl_updateCookie( /* update persistent cookie */ update_cookie_retry: op->o_tag = LDAP_REQ_MODIFY; - op->orm_modlist = modlist; - rc = be->be_modify( op, &rs ); - if ( rc != LDAP_SUCCESS ) { - if ( rc == LDAP_REFERRAL || - rc == LDAP_NO_SUCH_OBJECT || - rc == DB_NOTFOUND ) { + /* Just modify the cookie value, not the entire entry */ + op->orm_modlist = mod; + rc = be->be_modify( op, &rs_modify ); + + if ( rs_modify.sr_err != LDAP_SUCCESS ) { + if ( rs_modify.sr_err == LDAP_REFERRAL || + rs_modify.sr_err == LDAP_NO_SUCH_OBJECT ) { op->o_tag = LDAP_REQ_ADD; op->ora_e = e; - rc = be->be_add( op, &rs ); - if ( rc != LDAP_SUCCESS ) { - if ( rc == LDAP_ALREADY_EXISTS ) { + rc = be->be_add( op, &rs_add ); + if ( rs_add.sr_err != LDAP_SUCCESS ) { + if ( rs_add.sr_err == LDAP_ALREADY_EXISTS ) { goto update_cookie_retry; - } else if ( rc == LDAP_REFERRAL || - rc == LDAP_NO_SUCH_OBJECT || - rc == DB_NOTFOUND ) { + } else if ( rs_add.sr_err == LDAP_REFERRAL || + rs_add.sr_err == LDAP_NO_SUCH_OBJECT ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, "cookie will be non-persistent\n", @@ -1360,34 +1865,48 @@ update_cookie_retry: } else { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "be_add failed (%d)\n", - rc, 0, 0 ); + "be_add failed (%d)\n", rs_add.sr_err, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "be_add failed (%d)\n", - rc, 0, 0 ); + "be_add failed (%d)\n", rs_add.sr_err, 0, 0 ); #endif } } else { + be_entry_release_w( op, e ); goto done; } } else { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "be_modify failed (%d)\n", rc, 0, 0 ); + "be_modify failed (%d)\n", rs_modify.sr_err, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "be_modify failed (%d)\n", rc, 0, 0 ); + "be_modify failed (%d)\n", rs_modify.sr_err, 0, 0 ); #endif } } - if ( e != NULL ) + if ( e != NULL ) { entry_free( e ); + } done : - for ( ml = modlist; ml != NULL; ml = mlnext ) { + if ( cnbva[0].bv_val ) { + ch_free( cnbva[0].bv_val ); + cnbva[0].bv_val = NULL; + } + if ( scbva[0].bv_val ) { + ch_free( scbva[0].bv_val ); + scbva[0].bv_val = NULL; + } + + if ( mlnext->sml_next ) { + slap_mods_free( mlnext->sml_next ); + mlnext->sml_next = NULL; + } + + for (ml = modlist ; ml != NULL; ml = mlnext ) { mlnext = ml->sml_next; free( ml ); } @@ -1395,577 +1914,336 @@ done : return; } - -static -int slap_mods_check_syncrepl( - Operation *op, - Modifications **mlp, - const char **text, - char *textbuf, - size_t textlen, - void *ctx ) +int +syncrepl_isupdate( Operation *op ) { - int rc; - Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - AttributeDescription** descs; - int i; - Modifications *prevml = NULL; - Modifications *nextml = NULL; - Modifications *ml = *mlp; - - while ( ml != NULL ) { - AttributeDescription *ad = NULL; - - /* convert to attribute description */ - rc = slap_bv2ad( &ml->sml_type, &ml->sml_desc, text ); - - if( rc != LDAP_SUCCESS ) { - snprintf( textbuf, textlen, "%s: %s", - ml->sml_type.bv_val, *text ); - *text = textbuf; - return rc; - } - - ad = ml->sml_desc; + return ( syncrepl_isupdate_dn( op->o_bd, &op->o_ndn )); +} - if ( si->lastmod == LASTMOD_REQ ) { - descs = del_descs_lastmod; - } else { - descs = del_descs; - } +int +syncrepl_isupdate_dn( + Backend* be, + struct berval* ndn +) +{ + syncinfo_t* si; + int ret = 0; - for ( i = 0; descs[i] != NULL; i++ ) { - if ( ad == descs[i] ) { - if ( prevml == NULL ) { - mlp = &ml->sml_next; - prevml = NULL; - } else { - prevml->sml_next = ml->sml_next; - } - slap_mod_free( &ml->sml_mod, 0 ); - nextml = ml->sml_next; - free( ml ); - ml = nextml; - continue; + if ( !LDAP_STAILQ_EMPTY( &be->be_syncinfo )) { + LDAP_STAILQ_FOREACH( si, &be->be_syncinfo, si_next ) { + if ( ( ret = dn_match( &si->si_updatedn, ndn ) ) ) { + return ret; } } + } + return 0; +} - if( slap_syntax_is_binary( ad->ad_type->sat_syntax ) - && !slap_ad_is_binary( ad )) { - /* attribute requires binary transfer */ - snprintf( textbuf, textlen, - "%s: requires ;binary transfer", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_UNDEFINED_TYPE; - } - - if( !slap_syntax_is_binary( ad->ad_type->sat_syntax ) - && slap_ad_is_binary( ad )) { - /* attribute requires binary transfer */ - snprintf( textbuf, textlen, - "%s: disallows ;binary transfer", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_UNDEFINED_TYPE; - } - - if( slap_ad_is_tag_range( ad )) { - /* attribute requires binary transfer */ - snprintf( textbuf, textlen, - "%s: inappropriate use of tag range option", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_UNDEFINED_TYPE; - } +static int +dn_callback( + Operation* op, + SlapReply* rs +) +{ + syncinfo_t *si = op->o_callback->sc_private; - if ( is_at_obsolete( ad->ad_type ) && - ( ml->sml_op == LDAP_MOD_ADD || ml->sml_values != NULL ) ) { - /* - * attribute is obsolete, - * only allow replace/delete with no values - */ - snprintf( textbuf, textlen, - "%s: attribute is obsolete", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_CONSTRAINT_VIOLATION; + if ( rs->sr_type == REP_SEARCH ) { + if ( si->si_syncUUID_ndn.bv_val != NULL ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, + "dn_callback : consistency error - entryUUID is not unique\n", 0, 0, 0 ); +#else + Debug( LDAP_DEBUG_ANY, + "dn_callback : consistency error - entryUUID is not unique\n", 0, 0, 0 ); +#endif + } else { + ber_dupbv_x( &si->si_syncUUID_ndn, &rs->sr_entry->e_nname, NULL ); } - - /* - * check values - */ - if( ml->sml_values != NULL ) { - ber_len_t nvals; - slap_syntax_validate_func *validate = - ad->ad_type->sat_syntax->ssyn_validate; - slap_syntax_transform_func *pretty = - ad->ad_type->sat_syntax->ssyn_pretty; - - if( !pretty && !validate ) { - *text = "no validator for syntax"; - snprintf( textbuf, textlen, - "%s: no validator for syntax %s", - ml->sml_type.bv_val, - ad->ad_type->sat_syntax->ssyn_oid ); - *text = textbuf; - return LDAP_INVALID_SYNTAX; - } - - /* - * check that each value is valid per syntax - * and pretty if appropriate - */ - for( nvals = 0; ml->sml_values[nvals].bv_val; nvals++ ) { - struct berval pval = {0, NULL}; - if( pretty ) { - rc = pretty( ad->ad_type->sat_syntax, - &ml->sml_values[nvals], &pval, ctx ); - } else { - rc = validate( ad->ad_type->sat_syntax, - &ml->sml_values[nvals] ); - } - - if( rc != 0 ) { - snprintf( textbuf, textlen, - "%s: value #%ld invalid per syntax", - ml->sml_type.bv_val, (long) nvals ); - *text = textbuf; - return LDAP_INVALID_SYNTAX; - } - - if( pretty ) { - ber_memfree( ml->sml_values[nvals].bv_val ); - ml->sml_values[nvals] = pval; - } - } - - /* - * a rough single value check... an additional check is needed - * to catch add of single value to existing single valued attribute - */ - if ((ml->sml_op == LDAP_MOD_ADD || ml->sml_op == LDAP_MOD_REPLACE) - && nvals > 1 && is_at_single_value( ad->ad_type )) { - snprintf( textbuf, textlen, - "%s: multiple values provided", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_CONSTRAINT_VIOLATION; - } - - if( nvals && ad->ad_type->sat_equality && - ad->ad_type->sat_equality->smr_normalize ) { - ml->sml_nvalues = ch_malloc( (nvals+1)*sizeof(struct berval) ); - for( nvals = 0; ml->sml_values[nvals].bv_val; nvals++ ) { - rc = ad->ad_type->sat_equality->smr_normalize( 0, - ad->ad_type->sat_syntax, ad->ad_type->sat_equality, - &ml->sml_values[nvals], &ml->sml_nvalues[nvals], ctx ); - if( rc ) { + } else if ( rs->sr_type == REP_RESULT ) { + if ( rs->sr_err == LDAP_SIZELIMIT_EXCEEDED ) { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, DETAIL1, - "str2entry: NULL (ssyn_normalize %d)\n", rc, 0, 0 ); + LDAP_LOG( OPERATION, ERR, + "dn_callback : consistency error - entryUUID is not unique\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, - "<= str2entry NULL (ssyn_normalize %d)\n", rc, 0, 0 ); + Debug( LDAP_DEBUG_ANY, + "dn_callback : consistency error - entryUUID is not unique\n", 0, 0, 0 ); #endif - snprintf( textbuf, textlen, - "%s: value #%ld normalization failed", - ml->sml_type.bv_val, (long) nvals ); - *text = textbuf; - return rc; - } - } - ml->sml_nvalues[nvals].bv_val = NULL; - ml->sml_nvalues[nvals].bv_len = 0; - } } - prevml = ml; - ml = ml->sml_next; } return LDAP_SUCCESS; } -static -int slap_mods_opattrs_syncrepl( - Operation *op, - Modifications *mods, - Modifications **modtail, - const char **text, - char *textbuf, size_t textlen ) +static int +nonpresent_callback( + Operation* op, + SlapReply* rs +) { - struct berval name = {0, NULL}; - struct berval timestamp = {0, NULL}; - struct berval csn = {0, NULL}; - struct berval nname = {0, NULL}; - char timebuf[ LDAP_LUTIL_GENTIME_BUFSIZE ]; - char csnbuf[ LDAP_LUTIL_CSNSTR_BUFSIZE ]; - Modifications *mod; - Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - - int mop = LDAP_MOD_REPLACE; + syncinfo_t *si = op->o_callback->sc_private; + Attribute *a; + int count = 0; + struct berval* present_uuid = NULL; + struct nonpresent_entry *np_entry; - assert( modtail != NULL ); - assert( *modtail == NULL ); + if ( rs->sr_type == REP_RESULT ) { + count = avl_free( si->si_presentlist, avl_ber_bvfree ); + si->si_presentlist = NULL; - if( si->lastmod == LASTMOD_GEN ) { - struct tm *ltm; - time_t now = slap_get_time(); + } else if ( rs->sr_type == REP_SEARCH ) { + a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryUUID ); - ldap_pvt_thread_mutex_lock( &gmtime_mutex ); - ltm = gmtime( &now ); - lutil_gentime( timebuf, sizeof(timebuf), ltm ); + if ( a == NULL ) return 0; - csn.bv_len = lutil_csnstr( csnbuf, sizeof( csnbuf ), 0, 0 ); - ldap_pvt_thread_mutex_unlock( &gmtime_mutex ); - csn.bv_val = csnbuf; + present_uuid = avl_find( si->si_presentlist, &a->a_nvals[0], + syncuuid_cmp ); - timestamp.bv_val = timebuf; - timestamp.bv_len = strlen(timebuf); + if ( present_uuid == NULL ) { + np_entry = (struct nonpresent_entry *) + ch_calloc( 1, sizeof( struct nonpresent_entry )); + np_entry->npe_name = ber_dupbv( NULL, &rs->sr_entry->e_name ); + np_entry->npe_nname = ber_dupbv( NULL, &rs->sr_entry->e_nname ); + LDAP_LIST_INSERT_HEAD( &si->si_nonpresentlist, np_entry, npe_link ); - if( op->o_dn.bv_len == 0 ) { - name.bv_val = SLAPD_ANONYMOUS; - name.bv_len = sizeof(SLAPD_ANONYMOUS)-1; - nname = name; } else { - name = op->o_dn; - nname = op->o_ndn; + avl_delete( &si->si_presentlist, + &a->a_nvals[0], syncuuid_cmp ); + ch_free( present_uuid->bv_val ); + ch_free( present_uuid ); } } + return LDAP_SUCCESS; +} - if( op->o_tag == LDAP_REQ_ADD ) { - struct berval tmpval = {0, NULL}; - - if( global_schemacheck ) { - int rc = mods_structural_class( mods, &tmpval, - text, textbuf, textlen ); - if( rc != LDAP_SUCCESS ) { - return rc; - } - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_structuralObjectClass; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &tmpval ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_nvalues[0], &tmpval ); - mod->sml_nvalues[1].bv_len = 0; - mod->sml_nvalues[1].bv_val = NULL; - assert( mod->sml_nvalues[0].bv_val ); - *modtail = mod; - modtail = &mod->sml_next; - } - - if( si->lastmod == LASTMOD_GEN ) { - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_creatorsName; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &name ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_nvalues[0], &nname ); - mod->sml_nvalues[1].bv_len = 0; - mod->sml_nvalues[1].bv_val = NULL; - assert( mod->sml_nvalues[0].bv_val ); - *modtail = mod; - modtail = &mod->sml_next; - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_createTimestamp; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], ×tamp ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = NULL; - *modtail = mod; - modtail = &mod->sml_next; - } - } - - if( si->lastmod == LASTMOD_GEN ) { - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_entryCSN; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &csn ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = NULL; - *modtail = mod; - modtail = &mod->sml_next; - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_modifiersName; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &name ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_nvalues[0], &nname ); - mod->sml_nvalues[1].bv_len = 0; - mod->sml_nvalues[1].bv_val = NULL; - assert( mod->sml_nvalues[0].bv_val ); - *modtail = mod; - modtail = &mod->sml_next; - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_modifyTimestamp; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], ×tamp ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = NULL; - *modtail = mod; - modtail = &mod->sml_next; +static int +null_callback( + Operation* op, + SlapReply* rs ) +{ + if ( rs->sr_err != LDAP_SUCCESS && + rs->sr_err != LDAP_REFERRAL && + rs->sr_err != LDAP_ALREADY_EXISTS && + rs->sr_err != LDAP_NO_SUCH_OBJECT && + rs->sr_err != LDAP_NOT_ALLOWED_ON_NONLEAF ) + { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, + "null_callback : error code 0x%x\n", + rs->sr_err, 0, 0 ); +#else + Debug( LDAP_DEBUG_ANY, + "null_callback : error code 0x%x\n", + rs->sr_err, 0, 0 ); +#endif } - - *modtail = NULL; return LDAP_SUCCESS; } - -static -int slap_mods2entry_syncrepl( - Modifications *mods, - Entry **e, - int repl_user, - const char **text, - char *textbuf, size_t textlen ) +Entry * +slap_create_syncrepl_entry( + Backend *be, + struct berval *context_csn, + struct berval *rdn, + struct berval *cn ) { - Attribute **tail = &(*e)->e_attrs; - assert( *tail == NULL ); + Entry* e; - *text = textbuf; + struct berval bv; - for( ; mods != NULL; mods = mods->sml_next ) { - Attribute *attr; + e = ( Entry * ) ch_calloc( 1, sizeof( Entry )); - assert( mods->sml_desc != NULL ); + attr_merge( e, slap_schema.si_ad_objectClass, ocbva, NULL ); - attr = attr_find( (*e)->e_attrs, mods->sml_desc ); + attr_merge_one( e, slap_schema.si_ad_structuralObjectClass, + &ocbva[1], NULL ); - if( attr != NULL ) { -#define SLURPD_FRIENDLY -#ifdef SLURPD_FRIENDLY - ber_len_t i,j; + attr_merge_one( e, slap_schema.si_ad_cn, cn, NULL ); - if( !repl_user ) { - snprintf( textbuf, textlen, - "attribute '%s' provided more than once", - mods->sml_desc->ad_cname.bv_val ); - return LDAP_TYPE_OR_VALUE_EXISTS; - } + if ( context_csn ) { + attr_merge_one( e, slap_schema.si_ad_syncreplCookie, + context_csn, NULL ); + } - for( i=0; attr->a_vals[i].bv_val; i++ ) { - /* count them */ - } - for( j=0; mods->sml_values[j].bv_val; j++ ) { - /* count them */ - } - j++; /* NULL */ - - attr->a_vals = ch_realloc( attr->a_vals, - sizeof( struct berval ) * (i+j) ); + bv.bv_val = "{}"; + bv.bv_len = sizeof("{}")-1; + attr_merge_one( e, slap_schema.si_ad_subtreeSpecification, &bv, NULL ); - /* should check for duplicates */ + build_new_dn( &e->e_name, &be->be_nsuffix[0], rdn, NULL ); + ber_dupbv( &e->e_nname, &e->e_name ); - AC_MEMCPY( &attr->a_vals[i], mods->sml_values, - sizeof( struct berval ) * j ); + return e; +} - if( attr->a_nvals ) { - attr->a_nvals = ch_realloc( attr->a_nvals, - sizeof( struct berval ) * (i+j) ); +struct berval * +slap_uuidstr_from_normalized( + struct berval* uuidstr, + struct berval* normalized, + void *ctx ) +{ + struct berval *new; + unsigned char nibble; + int i, d = 0; - AC_MEMCPY( &attr->a_nvals[i], mods->sml_nvalues, - sizeof( struct berval ) * j ); + if ( normalized == NULL ) + return NULL; - /* trim the mods array */ - ch_free( mods->sml_nvalues ); - mods->sml_nvalues = NULL; - } + if ( normalized->bv_len != 16 ) { + return NULL; + } - continue; -#else - snprintf( textbuf, textlen, - "attribute '%s' provided more than once", - mods->sml_desc->ad_cname.bv_val ); - return LDAP_TYPE_OR_VALUE_EXISTS; -#endif - } + if ( uuidstr ) { + new = uuidstr; + } else { + new = (struct berval *)sl_malloc( sizeof(struct berval), ctx ); + } - if( mods->sml_values[1].bv_val != NULL ) { - /* check for duplicates */ - int i, j; - MatchingRule *mr = mods->sml_desc->ad_type->sat_equality; - - /* check if the values we're adding already exist */ - if( mr == NULL || !mr->smr_match ) { - for ( i = 0; mods->sml_bvalues[i].bv_val != NULL; i++ ) { - /* test asserted values against themselves */ - for( j = 0; j < i; j++ ) { - if ( bvmatch( &mods->sml_bvalues[i], - &mods->sml_bvalues[j] ) ) { - /* value exists already */ - snprintf( textbuf, textlen, - "%s: value #%d provided more than once", - mods->sml_desc->ad_cname.bv_val, j ); - return LDAP_TYPE_OR_VALUE_EXISTS; - } - } - } + new->bv_len = 36; - } else { - int rc; - const char *text = NULL; - char textbuf[ SLAP_TEXT_BUFLEN ] = { '\0' }; - - rc = modify_check_duplicates( mods->sml_desc, mr, - NULL, mods->sml_bvalues, 0, - &text, textbuf, sizeof( textbuf ) ); - - if ( rc != LDAP_SUCCESS ) { - return rc; - } - } - } + if (( new->bv_val = sl_malloc( new->bv_len + 1, ctx )) == NULL) { + if ( !uuidstr ) + sl_free( new, ctx ); + return NULL; + } - attr = ch_calloc( 1, sizeof(Attribute) ); + for ( i = 0; i < 16; i++ ) { + if ( i == 4 || i == 6 || i == 8 || i == 10 ) { + new->bv_val[(i<<1)+d] = '-'; + d += 1; + } - /* move ad to attr structure */ - attr->a_desc = mods->sml_desc; + nibble = (normalized->bv_val[i] >> 4) & 0xF; + if ( nibble < 10 ) { + new->bv_val[(i<<1)+d] = nibble + '0'; + } else { + new->bv_val[(i<<1)+d] = nibble - 10 + 'a'; + } - /* move values to attr structure */ - /* should check for duplicates */ - attr->a_vals = mods->sml_values; + nibble = (normalized->bv_val[i]) & 0xF; + if ( nibble < 10 ) { + new->bv_val[(i<<1)+d+1] = nibble + '0'; + } else { + new->bv_val[(i<<1)+d+1] = nibble - 10 + 'a'; + } + } - attr->a_nvals = mods->sml_nvalues; + new->bv_val[new->bv_len] = '\0'; - *tail = attr; - tail = &attr->a_next; - } + return new; +} - return LDAP_SUCCESS; +static int +syncuuid_cmp( const void* v_uuid1, const void* v_uuid2 ) +{ + const struct berval *uuid1 = v_uuid1; + const struct berval *uuid2 = v_uuid2; + int rc = uuid1->bv_len - uuid2->bv_len; + if ( rc ) return rc; + return ( memcmp( uuid1->bv_val, uuid2->bv_val, uuid1->bv_len ) ); } -void +static void avl_ber_bvfree( void *bv ) { if( bv == NULL ) { return; } if ( ((struct berval *)bv)->bv_val != NULL ) { - ber_memfree ( ((struct berval *)bv)->bv_val ); + ch_free ( ((struct berval *)bv)->bv_val ); } - ber_memfree ( (char *) bv ); + ch_free ( (char *) bv ); } -static int -cookie_callback( - Operation* op, - SlapReply* rs -) +void +syncinfo_free( syncinfo_t *sie ) { - syncinfo_t *si = op->o_callback->sc_private; - Attribute *a; - - if ( rs->sr_type != REP_SEARCH ) return LDAP_SUCCESS; - - a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_syncreplCookie ); - - if ( a == NULL ) { - si->syncCookie = NULL; - } else { - si->syncCookie = ber_dupbv( NULL, &a->a_vals[0] ); + if ( sie->si_provideruri ) { + ch_free( sie->si_provideruri ); } - return LDAP_SUCCESS; -} - -static int -nonpresent_callback( - Operation* op, - SlapReply* rs -) -{ - syncinfo_t *si = op->o_callback->sc_private; - Attribute *a; - int count = 0; - struct berval* present_uuid = NULL; - slap_callback cb; - SlapReply rs_cb = {REP_RESULT}; - struct nonpresent_entry *np_entry; - - if ( rs->sr_type == REP_RESULT ) { - count = avl_free( si->presentlist, avl_ber_bvfree ); - return LDAP_SUCCESS; - } else if ( rs->sr_type == REP_SEARCH ) { - a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryUUID ); - - if ( a == NULL ) - return 0; - - present_uuid = avl_find( si->presentlist, &a->a_vals[0], syncuuid_cmp ); - - if ( present_uuid == NULL ) { - np_entry = (struct nonpresent_entry *) - ch_calloc( 1, sizeof( struct nonpresent_entry )); - np_entry->dn = ber_dupbv( NULL, &rs->sr_entry->e_name ); - np_entry->ndn = ber_dupbv( NULL, &rs->sr_entry->e_nname ); - LDAP_LIST_INSERT_HEAD( &si->nonpresentlist, np_entry, np_link ); - } else { - avl_delete( &si->presentlist, - &a->a_vals[0], syncuuid_cmp ); + if ( sie->si_provideruri_bv ) { + ber_bvarray_free( sie->si_provideruri_bv ); + } + if ( sie->si_updatedn.bv_val ) { + ch_free( sie->si_updatedn.bv_val ); + } + if ( sie->si_binddn ) { + ch_free( sie->si_binddn ); + } + if ( sie->si_passwd ) { + ch_free( sie->si_passwd ); + } + if ( sie->si_saslmech ) { + ch_free( sie->si_saslmech ); + } + if ( sie->si_secprops ) { + ch_free( sie->si_secprops ); + } + if ( sie->si_realm ) { + ch_free( sie->si_realm ); + } + if ( sie->si_authcId ) { + ch_free( sie->si_authcId ); + } + if ( sie->si_authzId ) { + ch_free( sie->si_authzId ); + } + if ( sie->si_filterstr.bv_val ) { + ch_free( sie->si_filterstr.bv_val ); + } + if ( sie->si_base.bv_val ) { + ch_free( sie->si_base.bv_val ); + } + if ( sie->si_attrs ) { + int i = 0; + while ( sie->si_attrs[i] != NULL ) { + ch_free( sie->si_attrs[i] ); + i++; } - return LDAP_SUCCESS; - } else { - return LDAP_SUCCESS; + ch_free( sie->si_attrs ); } - -} - -static int -null_callback( - Operation* op, - SlapReply* rs -) -{ - if ( rs->sr_err != LDAP_SUCCESS && - rs->sr_err != LDAP_REFERRAL && - rs->sr_err != LDAP_ALREADY_EXISTS && - rs->sr_err != LDAP_NO_SUCH_OBJECT && - rs->sr_err != DB_NOTFOUND ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "null_callback : error code 0x%x\n", - rs->sr_err, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, - "null_callback : error code 0x%x\n", - rs->sr_err, 0, 0 ); -#endif + if ( sie->si_exattrs ) { + int i = 0; + while ( sie->si_exattrs[i] != NULL ) { + ch_free( sie->si_exattrs[i] ); + i++; + } + ch_free( sie->si_exattrs ); } - return LDAP_SUCCESS; + if ( sie->si_retryinterval ) { + ch_free( sie->si_retryinterval ); + } + if ( sie->si_retrynum ) { + ch_free( sie->si_retrynum ); + } + if ( sie->si_retrynum_init ) { + ch_free( sie->si_retrynum_init ); + } + slap_sync_cookie_free( &sie->si_syncCookie, 0 ); + if ( sie->si_syncUUID_ndn.bv_val ) { + ch_free( sie->si_syncUUID_ndn.bv_val ); + } + if ( sie->si_presentlist ) { + avl_free( sie->si_presentlist, avl_ber_bvfree ); + } + if ( sie->si_ld ) { + ldap_ld_free( sie->si_ld, 1, NULL, NULL ); + } + while ( !LDAP_LIST_EMPTY( &sie->si_nonpresentlist )) { + struct nonpresent_entry* npe; + npe = LDAP_LIST_FIRST( &sie->si_nonpresentlist ); + LDAP_LIST_REMOVE( npe, npe_link ); + if ( npe->npe_name ) { + if ( npe->npe_name->bv_val ) { + ch_free( npe->npe_name->bv_val ); + } + ch_free( npe->npe_name ); + } + if ( npe->npe_nname ) { + if ( npe->npe_nname->bv_val ) { + ch_free( npe->npe_nname->bv_val ); + } + ch_free( npe->npe_nname ); + } + ch_free( npe ); + } + ch_free( sie ); } - -#endif