X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fsyncrepl.c;h=cb0a461adc4c00126cde391ee670cdeafcdf9b6e;hb=c59f0869ec670a8b2f58cb69a5c92202fd33f0c3;hp=178845cb6aef20a5fd9e32045c7f7d7bd8453a91;hpb=771df8f75bf5020388b64bbf02a3c1815f8c939e;p=openldap diff --git a/servers/slapd/syncrepl.c b/servers/slapd/syncrepl.c index 178845cb6a..cb0a461adc 100644 --- a/servers/slapd/syncrepl.c +++ b/servers/slapd/syncrepl.c @@ -1,23 +1,19 @@ +/* syncrepl.c -- Replication Engine which uses the LDAP Sync protocol */ /* $OpenLDAP$ */ -/* - * Replication Engine which uses the LDAP Sync protocol - */ -/* Copyright (c) 2003 by International Business Machines, Inc. +/* This work is part of OpenLDAP Software . + * + * Copyright 2003-2004 The OpenLDAP Foundation. + * Portions Copyright 2003 by IBM Corporation. + * Portions Copyright 2003 by Howard Chu, Symas Corporation. + * All rights reserved. * - * International Business Machines, Inc. (hereinafter called IBM) grants - * permission under its copyrights to use, copy, modify, and distribute this - * Software with or without fee, provided that the above copyright notice and - * all paragraphs of this notice appear in all copies, and that the name of IBM - * not be used in connection with the marketing of any product incorporating - * the Software or modifications thereof, without specific, written prior - * permission. + * Redistribution and use in source and binary forms, with or without + * modification, are permitted only as authorized by the OpenLDAP + * Public License. * - * THE SOFTWARE IS PROVIDED "AS IS", AND IBM DISCLAIMS ALL WARRANTIES, - * INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A - * PARTICULAR PURPOSE. IN NO EVENT SHALL IBM BE LIABLE FOR ANY SPECIAL, - * DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER ARISING - * OUT OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE, EVEN - * IF IBM IS APPRISED OF THE POSSIBILITY OF SUCH DAMAGES. + * A copy of this license is available in the file LICENSE in the + * top-level directory of the distribution or, alternatively, at + * . */ #include "portable.h" @@ -26,588 +22,696 @@ #include #include -#include #include "ldap_pvt.h" #include "lutil.h" #include "slap.h" #include "lutil_ldap.h" -#ifdef LDAP_SYNCREPL - #include "ldap_rq.h" -static Entry* -syncrepl_message_to_entry ( LDAP *, Operation *, LDAPMessage *, - Modifications **, int*, struct berval *, struct berval * ); - -static int -syncrepl_entry( LDAP *, Operation*, Entry*, Modifications*, - int, struct berval*, struct berval*, int ); - -static int -syncrepl_del_nonpresent( LDAP *, Operation * ); - -static void -syncrepl_add_glue( LDAP *, Operation*, Entry*, Modifications*, int, - struct berval*, struct berval* ); - -static void -syncrepl_updateCookie( LDAP *, Operation *, struct berval *, struct berval * ); - -static int -slap_mods_check_syncrepl( Operation *, Modifications **, - const char **, char *, size_t, void *ctx ); +#define SYNCREPL_STR "syncreplxxx" +#define CN_STR "cn=" -static int -slap_mods_opattrs_syncrepl( Operation *, Modifications *, Modifications **, - const char **, char *, size_t ); +static const struct berval slap_syncrepl_bvc = BER_BVC(SYNCREPL_STR); +static const struct berval slap_syncrepl_cn_bvc = BER_BVC(CN_STR SYNCREPL_STR); -static int -slap_mods2entry_syncrepl( Modifications *, Entry **, int, - const char **, char *, size_t ); +static int syncuuid_cmp( const void *, const void * ); +static void avl_ber_bvfree( void * ); +static void syncrepl_del_nonpresent( Operation *, syncinfo_t * ); /* callback functions */ -static int cookie_callback( struct slap_op *, struct slap_rep * ); static int dn_callback( struct slap_op *, struct slap_rep * ); static int nonpresent_callback( struct slap_op *, struct slap_rep * ); static int null_callback( struct slap_op *, struct slap_rep * ); -static AttributeDescription **add_descs; -static AttributeDescription **add_descs_lastmod; -static AttributeDescription **del_descs; -static AttributeDescription **del_descs_lastmod; +static AttributeDescription *sync_descs[4]; struct runqueue_s syncrepl_rq; void -init_syncrepl() -{ - add_descs = ch_malloc( 2 * sizeof( AttributeDescription * )); - add_descs[0] = slap_schema.si_ad_objectClass; - add_descs[1] = NULL; - - add_descs_lastmod = ch_malloc( 7 * sizeof( AttributeDescription * )); - add_descs_lastmod[0] = slap_schema.si_ad_objectClass; - add_descs_lastmod[1] = slap_schema.si_ad_creatorsName; - add_descs_lastmod[2] = slap_schema.si_ad_modifiersName; - add_descs_lastmod[3] = slap_schema.si_ad_createTimestamp; - add_descs_lastmod[4] = slap_schema.si_ad_modifyTimestamp; - add_descs_lastmod[5] = slap_schema.si_ad_entryCSN; - add_descs_lastmod[6] = NULL; - - del_descs = ch_malloc( 9 * sizeof( AttributeDescription * )); - del_descs[0] = slap_schema.si_ad_structuralObjectClass; - del_descs[1] = slap_schema.si_ad_subschemaSubentry; - del_descs[2] = slap_schema.si_ad_hasSubordinates; - del_descs[3] = slap_schema.si_ad_creatorsName; - del_descs[4] = slap_schema.si_ad_modifiersName; - del_descs[5] = slap_schema.si_ad_createTimestamp; - del_descs[6] = slap_schema.si_ad_modifyTimestamp; - del_descs[7] = slap_schema.si_ad_entryCSN; - del_descs[8] = NULL; - - del_descs_lastmod = ch_malloc( 4 * sizeof( AttributeDescription * )); - del_descs_lastmod[0] = slap_schema.si_ad_structuralObjectClass; - del_descs_lastmod[1] = slap_schema.si_ad_subschemaSubentry; - del_descs_lastmod[2] = slap_schema.si_ad_hasSubordinates; - del_descs_lastmod[3] = NULL; -} - -void * -do_syncrepl( - void *ctx, - void *arg ) +init_syncrepl(syncinfo_t *si) { - struct re_s* rtask = arg; - Backend *be = rtask->arg; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; + int i, j, k, n; + char **tmp; - SlapReply rs = {REP_RESULT}; + if ( !sync_descs[0] ) { + sync_descs[0] = slap_schema.si_ad_objectClass; + sync_descs[1] = slap_schema.si_ad_structuralObjectClass; + sync_descs[2] = slap_schema.si_ad_entryCSN; + sync_descs[3] = NULL; + } - LDAPControl c[2]; - LDAPControl **sctrls = NULL; - LDAPControl **rctrls = NULL; - LDAPControl *rctrlp = NULL; - BerElement *sync_ber = NULL; - struct berval *sync_bvalp = NULL; + for ( n = 0; si->si_attrs[ n ] != NULL; n++ ) /* empty */; + + if ( n ) { + /* Delete Attributes */ + for ( i = 0; sync_descs[i] != NULL; i++ ) { + for ( j = 0; si->si_attrs[j] != NULL; j++ ) { + if ( strcmp( si->si_attrs[j], sync_descs[i]->ad_cname.bv_val ) + == 0 ) + { + ch_free( si->si_attrs[j] ); + for ( k = j; si->si_attrs[k] != NULL; k++ ) { + si->si_attrs[k] = si->si_attrs[k+1]; + } + } + } + } + for ( n = 0; si->si_attrs[ n ] != NULL; n++ ) /* empty */; + tmp = ( char ** ) ch_realloc( si->si_attrs, (n + 4)*sizeof( char * )); + if ( tmp == NULL ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 ); +#else + Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 ); +#endif + } + } else { + tmp = ( char ** ) ch_realloc( si->si_attrs, 5 * sizeof( char * )); + if ( tmp == NULL ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 ); +#else + Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 ); +#endif + } + tmp[ n++ ] = ch_strdup( "*" ); + } + + si->si_attrs = tmp; - BerElement *ctrl_ber = NULL; - BerElement *res_ber = NULL; + /* Add Attributes */ - LDAP *ld = NULL; - LDAPMessage *res = NULL; - LDAPMessage *msg = NULL; + for ( i = 0; sync_descs[ i ] != NULL; i++ ) { + si->si_attrs[ n++ ] = ch_strdup ( sync_descs[i]->ad_cname.bv_val ); + si->si_attrs[ n ] = NULL; + } +} +static int +ldap_sync_search( + syncinfo_t *si, + void *ctx +) +{ + BerElementBuffer berbuf; + BerElement *ber = (BerElement *)&berbuf; + LDAPControl c[2], *ctrls[3]; + struct timeval timeout; ber_int_t msgid; + int rc; - int nresponses, nreferences, nextended, npartial; - int nresponses_psearch; + /* setup LDAP SYNC control */ + ber_init2( ber, NULL, LBER_USE_DER ); + ber_set_option( ber, LBER_OPT_BER_MEMCTX, &ctx ); - int cancel_msgid = -1; - char *retoid = NULL; - struct berval *retdata = NULL; + if ( si->si_syncCookie.octet_str && + si->si_syncCookie.octet_str[0].bv_val ) { + ber_printf( ber, "{eO}", abs(si->si_type), + &si->si_syncCookie.octet_str[0] ); + } else { + ber_printf( ber, "{e}", abs(si->si_type) ); + } - int sync_info_arrived = 0; - Entry *entry = NULL; + if ( (rc = ber_flatten2( ber, &c[0].ldctl_value, 0 )) == LBER_ERROR ) { + ber_free_buf( ber ); + return rc; + } - int syncstate; - struct berval syncUUID = { 0, NULL }; - struct berval syncCookie = { 0, NULL }; + c[0].ldctl_oid = LDAP_CONTROL_SYNC; + c[0].ldctl_iscritical = si->si_type < 0; + ctrls[0] = &c[0]; - int rc; - int err; - ber_len_t len; - int syncinfo_arrived = 0; - int cancel_response = 0; + if ( si->si_authzId ) { + c[1].ldctl_oid = LDAP_CONTROL_PROXY_AUTHZ; + ber_str2bv( si->si_authzId, 0, 0, &c[1].ldctl_value ); + c[1].ldctl_iscritical = 1; + ctrls[1] = &c[1]; + ctrls[2] = NULL; + } else { + ctrls[1] = NULL; + } - char **tmp = NULL; - AttributeDescription** descs = NULL; + timeout.tv_sec = si->si_tlimit > 0 ? si->si_tlimit : 1; + timeout.tv_usec = 0; - Connection conn; - Operation op = {0}; - slap_callback cb; + rc = ldap_search_ext( si->si_ld, si->si_base.bv_val, si->si_scope, + si->si_filterstr.bv_val, si->si_attrs, si->si_attrsonly, + ctrls, NULL, si->si_tlimit < 0 ? NULL : &timeout, + si->si_slimit, &msgid ); + ber_free_buf( ber ); - void *memctx = NULL; - ber_len_t memsiz; - - int i, j, k, n; - int rc_efree; - - struct berval base_bv = { 0, NULL }; - struct berval pbase = { 0, NULL }; - struct berval nbase = { 0, NULL }; - struct berval sub_bv = { 0, NULL }; - struct berval psubrdn = { 0, NULL }; - struct berval nsubrdn = { 0, NULL }; - struct berval psub = { 0, NULL }; - struct berval nsub = { 0, NULL }; - char substr[64]; - Modifications *modlist = NULL; - Modifications *ml, *mlnext; - char *def_filter_str = NULL; + return rc; +} -#ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, DETAIL1, "do_syncrepl\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_TRACE, "=>do_syncrepl\n", 0, 0, 0 ); -#endif +static int +do_syncrep1( + Operation *op, + syncinfo_t *si ) +{ + int rc; + int cmdline_cookie_found = 0; - if ( si == NULL ) - return NULL; + char syncrepl_cbuf[sizeof(CN_STR SYNCREPL_STR)]; + struct berval syncrepl_cn_bv; + struct sync_cookie *sc = NULL; + struct sync_cookie syncCookie = { NULL, -1, NULL }; + struct berval *psub; - if ( abs(si->type) != LDAP_SYNC_REFRESH_ONLY && - abs(si->type) != LDAP_SYNC_REFRESH_AND_PERSIST ) { - return NULL; - } + psub = &si->si_be->be_nsuffix[0]; /* Init connection to master */ - if ( ldap_is_ldap_url( si->masteruri )) { - rc = ldap_initialize( &ld, si->masteruri ); - if ( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "do_syncrepl: " - "ldap_initialize failed (%s)\n", - si->masteruri, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " - "ldap_initialize failed (%s)\n", - si->masteruri, 0, 0 ); -#endif - } - } else { - ld = ldap_init( si->mastername, si->masterport ); - if ( ld == NULL ) { + rc = ldap_initialize( &si->si_ld, si->si_provideruri ); + if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "do_syncrepl: " - "ldap_init failed (%s:%d)\n", - si->mastername, si->masterport, 0 ); + LDAP_LOG( OPERATION, ERR, + "do_syncrep1: ldap_initialize failed (%s)\n", + si->si_provideruri, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " - "ldap_init failed (%s:%d)\n", - si->mastername, si->masterport, 0 ); + Debug( LDAP_DEBUG_ANY, + "do_syncrep1: ldap_initialize failed (%s)\n", + si->si_provideruri, 0, 0 ); #endif - } + return rc; } - op.o_protocol = LDAP_VERSION3; - ldap_set_option( ld, LDAP_OPT_PROTOCOL_VERSION, &op.o_protocol ); + op->o_protocol = LDAP_VERSION3; + ldap_set_option( si->si_ld, LDAP_OPT_PROTOCOL_VERSION, &op->o_protocol ); /* Bind to master */ - if ( si->tls ) { - rc = ldap_start_tls_s( ld, NULL, NULL ); + if ( si->si_tls ) { + rc = ldap_start_tls_s( si->si_ld, NULL, NULL ); if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, ERR, "do_syncrepl: " + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " "%s: ldap_start_tls failed (%d)\n", - si->tls == TLS_CRITICAL ? "Error" : "Warning", + si->si_tls == SYNCINFO_TLS_CRITICAL ? "Error" : "Warning", rc, 0 ); #else Debug( LDAP_DEBUG_ANY, "%s: ldap_start_tls failed (%d)\n", - si->tls == TLS_CRITICAL ? "Error" : "Warning", + si->si_tls == SYNCINFO_TLS_CRITICAL ? "Error" : "Warning", rc, 0 ); #endif - if( si->tls == TLS_CRITICAL ) - return NULL; + if( si->si_tls == SYNCINFO_TLS_CRITICAL ) goto done; } } - if ( si->bindmethod == LDAP_AUTH_SASL ) { + if ( si->si_bindmethod == LDAP_AUTH_SASL ) { #ifdef HAVE_CYRUS_SASL void *defaults; - if ( si->secprops != NULL ) { - int err = ldap_set_option( ld, - LDAP_OPT_X_SASL_SECPROPS, si->secprops); + if ( si->si_secprops != NULL ) { + rc = ldap_set_option( si->si_ld, + LDAP_OPT_X_SASL_SECPROPS, si->si_secprops); - if( err != LDAP_OPT_SUCCESS ) { + if( rc != LDAP_OPT_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG ( OPERATION, ERR, "do_bind: Error: " "ldap_set_option(%s,SECPROPS,\"%s\") failed!\n", - si->mastername, si->secprops, 0 ); + si->si_provideruri, si->si_secprops, 0 ); #else Debug( LDAP_DEBUG_ANY, "Error: ldap_set_option " "(%s,SECPROPS,\"%s\") failed!\n", - si->mastername, si->secprops, NULL ); + si->si_provideruri, si->si_secprops, 0 ); #endif - return NULL; + goto done; } } - defaults = lutil_sasl_defaults( ld, - si->saslmech, - si->realm, - si->authcId, - si->passwd, - si->authzId ); + defaults = lutil_sasl_defaults( si->si_ld, + si->si_saslmech, si->si_realm, + si->si_authcId, si->si_passwd, si->si_authzId ); - rc = ldap_sasl_interactive_bind_s( ld, - si->binddn, - si->saslmech, + rc = ldap_sasl_interactive_bind_s( si->si_ld, + si->si_binddn, + si->si_saslmech, NULL, NULL, - LDAP_SASL_AUTOMATIC, + LDAP_SASL_QUIET, lutil_sasl_interact, defaults ); + lutil_sasl_freedefs( defaults ); + + /* FIXME : different error behaviors according to + * 1) return code + * 2) on err policy : exit, retry, backoff ... + */ if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, ERR, "do_syncrepl: " + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " "ldap_sasl_interactive_bind_s failed (%d)\n", rc, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " + Debug( LDAP_DEBUG_ANY, "do_syncrep1: " "ldap_sasl_interactive_bind_s failed (%d)\n", rc, 0, 0 ); #endif - return NULL; + goto done; } #else /* HAVE_CYRUS_SASL */ + /* Should never get here, we trapped this at config time */ fprintf( stderr, "not compiled with SASL support\n" ); - return NULL; + rc = LDAP_OTHER; + goto done; #endif } else { - rc = ldap_bind_s( ld, si->binddn, si->passwd, si->bindmethod ); + rc = ldap_bind_s( si->si_ld, si->si_binddn, si->si_passwd, si->si_bindmethod ); if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING - LDAP_LOG ( OPERATION, ERR, "do_syncrepl: " + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " "ldap_bind_s failed (%d)\n", rc, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl: " + Debug( LDAP_DEBUG_ANY, "do_syncrep1: " "ldap_bind_s failed (%d)\n", rc, 0, 0 ); #endif - return NULL; + goto done; } } - si->ctx = ctx; - - op.o_tmpmemctx = NULL; /* FIXME : to use per-thread mem context */ - op.o_tmpmfuncs = &ch_mfuncs; - op.o_tag = LDAP_REQ_SEARCH; - op.o_dn = si->updatedn; - op.o_ndn = si->updatedn; - op.o_callback = &cb; - op.o_time = slap_get_time(); - op.o_managedsait = 1; - op.o_threadctx = si->ctx; - op.o_bd = be; - op.o_conn = &conn; - op.o_connid = op.o_conn->c_connid; - op.ors_scope = LDAP_SCOPE_BASE; - op.ors_deref = LDAP_DEREF_NEVER; - op.ors_slimit = -1; - op.ors_tlimit = -1; - op.ors_attrsonly = 0; - op.ors_attrs = NULL; - op.ors_filter = str2filter( def_filter_str = "(objectClass=*)" ); - ber_str2bv( def_filter_str, strlen( def_filter_str ), 1, - &op.ors_filterstr ); - - si->conn = &conn; - conn.c_send_ldap_result = slap_send_ldap_result; - conn.c_send_search_entry = slap_send_search_entry; - conn.c_send_search_reference = slap_send_search_reference; - /* get syncrepl cookie of shadow replica from subentry */ - ber_str2bv( si->base, strlen(si->base), 1, &base_bv ); - dnPrettyNormal( 0, &base_bv, &pbase, &nbase, op.o_tmpmemctx ); - sprintf( substr, "cn=syncrepl%d", si->id ); - ber_str2bv( substr, strlen(substr), 1, &sub_bv ); - dnPrettyNormal( 0, &sub_bv, &psubrdn, &nsubrdn, op.o_tmpmemctx ); + assert( si->si_rid < 1000 ); + syncrepl_cn_bv.bv_val = syncrepl_cbuf; + syncrepl_cn_bv.bv_len = snprintf(syncrepl_cbuf, sizeof(syncrepl_cbuf), + CN_STR "syncrepl%ld", si->si_rid ); + build_new_dn( &op->o_req_ndn, psub, &syncrepl_cn_bv, op->o_tmpmemctx ); + op->o_req_dn = op->o_req_ndn; + + LDAP_STAILQ_FOREACH( sc, &slap_sync_cookie, sc_next ) { + if ( si->si_rid == sc->rid ) { + cmdline_cookie_found = 1; + break; + } + } - build_new_dn( &op.o_req_dn, &pbase, &psubrdn ); - build_new_dn( &op.o_req_ndn, &nbase, &nsubrdn ); + if ( cmdline_cookie_found ) { + /* cookie is supplied in the command line */ + BerVarray cookie = NULL; + struct berval cookie_bv; + + LDAP_STAILQ_REMOVE( &slap_sync_cookie, sc, sync_cookie, sc_next ); + slap_sync_cookie_free( &si->si_syncCookie, 0 ); + + /* read stored cookie if it exists */ + backend_attribute( op, NULL, &op->o_req_ndn, + slap_schema.si_ad_syncreplCookie, &cookie ); + + if ( !cookie ) { + /* no stored cookie */ + if ( sc->ctxcsn == NULL || + sc->ctxcsn->bv_val == NULL ) { + /* if cmdline cookie does not have ctxcsn */ + /* component, set it to an initial value */ + slap_init_sync_cookie_ctxcsn( sc ); + } + slap_dup_sync_cookie( &si->si_syncCookie, sc ); + slap_sync_cookie_free( sc, 1 ); + sc = NULL; + } else { + /* stored cookie */ + struct berval newcookie = { 0, NULL }; + ber_dupbv( &cookie_bv, &cookie[0] ); + ber_bvarray_add( &si->si_syncCookie.octet_str, &cookie_bv ); + slap_parse_sync_cookie( &si->si_syncCookie ); + ber_bvarray_free( si->si_syncCookie.octet_str ); + si->si_syncCookie.octet_str = NULL; + ber_bvarray_free_x( cookie, op->o_tmpmemctx ); + if ( sc->sid != -1 ) { + /* command line cookie wins */ + si->si_syncCookie.sid = sc->sid; + } + if ( sc->ctxcsn != NULL ) { + /* command line cookie wins */ + if ( si->si_syncCookie.ctxcsn ) { + ber_bvarray_free( si->si_syncCookie.ctxcsn ); + si->si_syncCookie.ctxcsn = NULL; + } + ber_dupbv( &cookie_bv, &sc->ctxcsn[0] ); + ber_bvarray_add( &si->si_syncCookie.ctxcsn, &cookie_bv ); + } + if ( sc->rid != -1 ) { + /* command line cookie wins */ + si->si_syncCookie.rid = sc->rid; + } + slap_sync_cookie_free( sc, 1 ); + sc = NULL; + slap_compose_sync_cookie( NULL, &newcookie, + &si->si_syncCookie.ctxcsn[0], + si->si_syncCookie.sid, si->si_syncCookie.rid ); + ber_bvarray_add( &si->si_syncCookie.octet_str, &newcookie ); + } + } else { + /* no command line cookie is specified */ + if ( si->si_syncCookie.octet_str == NULL ) { + BerVarray cookie = NULL; + struct berval cookie_bv; + /* try to read stored cookie */ + backend_attribute( op, NULL, &op->o_req_ndn, + slap_schema.si_ad_syncreplCookie, &cookie ); + if ( cookie ) { + ber_dupbv( &cookie_bv, &cookie[0] ); + ber_bvarray_add( &si->si_syncCookie.octet_str, &cookie_bv ); + slap_parse_sync_cookie( &si->si_syncCookie ); + ber_bvarray_free_x( cookie, op->o_tmpmemctx ); + } + } + } - ch_free( base_bv.bv_val ); - ch_free( pbase.bv_val ); - ch_free( nbase.bv_val ); - ch_free( sub_bv.bv_val ); - ch_free( psubrdn.bv_val ); - ch_free( nsubrdn.bv_val ); + rc = ldap_sync_search( si, op->o_tmpmemctx ); - /* set callback function */ - cb.sc_response = cookie_callback; - cb.sc_private = si; + if( rc != LDAP_SUCCESS ) { +#ifdef NEW_LOGGING + LDAP_LOG ( OPERATION, ERR, "do_syncrep1: " + "ldap_search_ext: %s (%d)\n", ldap_err2string( rc ), rc, 0 ); +#else + Debug( LDAP_DEBUG_ANY, "do_syncrep1: " + "ldap_search_ext: %s (%d)\n", ldap_err2string( rc ), rc, 0 ); +#endif + } - /* search subentry to retrieve cookie */ - si->syncCookie = NULL; - be->be_search( &op, &rs ); +done: + if ( rc ) { + if ( si->si_ld ) { + ldap_unbind( si->si_ld ); + si->si_ld = NULL; + } + } - ch_free( op.o_req_dn.bv_val ); - ch_free( op.o_req_ndn.bv_val ); - filter_free( op.ors_filter ); - ch_free( op.ors_filterstr.bv_val ); + return rc; +} - psub = be->be_nsuffix[0]; +static int +do_syncrep2( + Operation *op, + syncinfo_t *si ) +{ + LDAPControl **rctrls = NULL; + LDAPControl *rctrlp; - /* setup LDAP SYNC control */ - sync_ber = ber_alloc_t( LBER_USE_DER ); - ber_set_option( sync_ber, LBER_OPT_BER_MEMCTX, &op.o_tmpmemctx ); + BerElementBuffer berbuf; + BerElement *ber = (BerElement *)&berbuf; - if ( si->syncCookie ) { - ber_printf( sync_ber, "{eO}", abs(si->type), si->syncCookie ); - } else { - ber_printf( sync_ber, "{e}", abs(si->type) ); - } + LDAPMessage *res = NULL; + LDAPMessage *msg = NULL; - if ( ber_flatten( sync_ber, &sync_bvalp ) == LBER_ERROR ) { - ber_free( sync_ber, 1 ); - return NULL; - } - ber_free( sync_ber, 1 ); + char *retoid = NULL; + struct berval *retdata = NULL; - sctrls = (LDAPControl**) sl_calloc( 3, sizeof(LDAPControl*), op.o_tmpmemctx ); + Entry *entry = NULL; - c[0].ldctl_oid = LDAP_CONTROL_SYNC; - c[0].ldctl_value = (*sync_bvalp); - c[0].ldctl_iscritical = si->type < 0; - sctrls[0] = &c[0]; + int syncstate; + struct berval syncUUID = { 0, NULL }; + struct sync_cookie syncCookie = { NULL, -1, NULL }; + struct sync_cookie syncCookie_req = { NULL, -1, NULL }; + struct berval cookie = { 0, NULL }; - if ( si->authzId ) { - c[1].ldctl_oid = LDAP_CONTROL_PROXY_AUTHZ; - c[1].ldctl_value.bv_val = si->authzId; - c[1].ldctl_value.bv_len = strlen( si->authzId ); - c[1].ldctl_iscritical = 1; - sctrls[1] = &c[1]; - } else { - sctrls[1] = NULL; - } + int rc, err, i; + ber_len_t len; - sctrls[2] = NULL; + int rc_efree = 1; - err = ldap_set_option( ld, LDAP_OPT_SERVER_CONTROLS, sctrls ); + struct berval *psub; + Modifications *modlist = NULL; - ber_bvfree( sync_bvalp ); - ch_free( sctrls ); + const char *text; + int match; - if ( err != LDAP_OPT_SUCCESS ) - fprintf( stderr, "Could not set controls : %d\n", err ); + struct timeval *tout_p = NULL; + struct timeval tout = { 0, 0 }; - /* Delete Attributes */ - if ( si->lastmod == LASTMOD_REQ ) { - descs = del_descs_lastmod; - } else { - descs = del_descs; - } + int refreshDeletes = 0; + int refreshDone = 1; + BerVarray syncUUIDs = NULL; + ber_tag_t si_tag; - for ( i = 0; descs[i] != NULL; i++ ) { - for ( j = 0; si->attrs[j] != NULL; j++ ) { - if ( !strcmp( si->attrs[j], descs[i]->ad_cname.bv_val )) { - ch_free( si->attrs[j] ); - for ( k = j; si->attrs[k] != NULL; k++ ) { - si->attrs[k] = si->attrs[k+1]; - } - } - } + if ( slapd_shutdown ) { + rc = -2; + goto done; } - /* Add Attributes */ - - for ( n = 0; si->attrs[ n ] != NULL; n++ ) ; - - if ( si->lastmod == LASTMOD_REQ ) { - descs = add_descs_lastmod; - } else { - descs = add_descs; - } + ber_init2( ber, NULL, LBER_USE_DER ); + ber_set_option( ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx ); - for ( i = 0; descs[i] != NULL; i++ ) { - tmp = ( char ** ) ch_realloc( si->attrs, - ( n + 2 ) * sizeof( char * )); - if ( tmp == NULL ) { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "out of memory\n", 0,0,0 ); + LDAP_LOG ( OPERATION, DETAIL1, "do_syncrep2\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "out of memory\n", 0,0,0 ); + Debug( LDAP_DEBUG_TRACE, "=>do_syncrep2\n", 0, 0, 0 ); #endif - } - si->attrs = tmp; - si->attrs[ n++ ] = ch_strdup ( descs[i]->ad_cname.bv_val ); - si->attrs[ n ] = NULL; - } - /* Send LDAP SYNC search */ + psub = &si->si_be->be_nsuffix[0]; - rc = ldap_search_ext( ld, si->base, si->scope, si->filterstr, - si->attrs, si->attrsonly, NULL, NULL, - NULL, -1, &msgid ); + slap_dup_sync_cookie( &syncCookie_req, &si->si_syncCookie ); - if( rc != LDAP_SUCCESS ) { - fprintf( stderr, "syncrepl: ldap_search_ext: %s (%d)\n", - ldap_err2string( rc ), rc ); - return NULL; + if ( abs(si->si_type) == LDAP_SYNC_REFRESH_AND_PERSIST ){ + tout_p = &tout; + } else { + tout_p = NULL; } - while (( rc = ldap_result( ld, LDAP_RES_ANY, LDAP_MSG_ONE, NULL, &res )) > 0 ) { - - for ( msg = ldap_first_message( ld, res ); - msg != NULL; - msg = ldap_next_message( ld, msg ) ) + while (( rc = ldap_result( si->si_ld, LDAP_RES_ANY, LDAP_MSG_ONE, tout_p, &res )) + > 0 ) + { + if ( slapd_shutdown ) { + rc = -2; + goto done; + } + for( msg = ldap_first_message( si->si_ld, res ); + msg != NULL; + msg = ldap_next_message( si->si_ld, msg ) ) { switch( ldap_msgtype( msg ) ) { case LDAP_RES_SEARCH_ENTRY: - entry = syncrepl_message_to_entry( ld, &op, msg, - &modlist, &syncstate, &syncUUID, &syncCookie ); - rc_efree = syncrepl_entry( ld, &op, entry, modlist, - syncstate, &syncUUID, &syncCookie, !syncinfo_arrived ); - if ( syncCookie.bv_len ) { - syncrepl_updateCookie( ld, &op, &psub, &syncCookie ); + ldap_get_entry_controls( si->si_ld, msg, &rctrls ); + /* we can't work without the control */ + if ( !rctrls ) { + rc = -1; + goto done; + } + rctrlp = *rctrls; + ber_init2( ber, &rctrlp->ldctl_value, LBER_USE_DER ); + ber_scanf( ber, "{em", &syncstate, &syncUUID ); + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) { + ber_scanf( ber, "m}", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, &tmp_bv ); + } + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); + } + if ( syncrepl_message_to_entry( si, op, msg, + &modlist, &entry, syncstate ) == LDAP_SUCCESS ) { + rc_efree = syncrepl_entry( si, op, entry, modlist, + syncstate, &syncUUID, &syncCookie_req ); + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) { + syncrepl_updateCookie( si, op, psub, &syncCookie ); + } + } + ldap_controls_free( rctrls ); + if ( modlist ) { + slap_mods_free( modlist ); } - if ( rc_efree ) + if ( rc_efree && entry ) { entry_free( entry ); - for ( ml = modlist; ml != NULL; ml = mlnext ) { - mlnext = ml->sml_next; - ber_memfree( ml ); + entry = NULL; } break; case LDAP_RES_SEARCH_REFERENCE: #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "do_syncrepl : reference received\n", 0, 0, 0 ); + "do_syncrep2 : reference received\n", 0, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "do_syncrepl : reference received\n", 0, 0, 0 ); + "do_syncrep2 : reference received\n", 0, 0, 0 ); #endif break; case LDAP_RES_SEARCH_RESULT: - ldap_parse_result( ld, msg, &err, NULL, NULL, NULL, &rctrls, 0 ); + ldap_parse_result( si->si_ld, msg, &err, NULL, NULL, NULL, + &rctrls, 0 ); if ( rctrls ) { rctrlp = *rctrls; - ctrl_ber = ber_alloc_t( LBER_USE_DER ); - ber_set_option( ctrl_ber, LBER_OPT_BER_MEMCTX, &op.o_tmpmemctx ); - ber_write( ctrl_ber, rctrlp->ldctl_value.bv_val, rctrlp->ldctl_value.bv_len, 0 ); - ber_reset( ctrl_ber, 1 ); - - ber_scanf( ctrl_ber, "{" ); - if ( ber_peek_tag( ctrl_ber, &len ) - == LDAP_SYNC_TAG_COOKIE ) { - ber_scanf( ctrl_ber, "o", &syncCookie ); - } - } - if (si->type == LDAP_SYNC_REFRESH_AND_PERSIST) { - if ( cancel_response ) { - if ( syncCookie.bv_len ) { - ber_bvfree( si->syncCookie ); - si->syncCookie = ber_dupbv( NULL, &syncCookie ); + ber_init2( ber, &rctrlp->ldctl_value, LBER_USE_DER ); + + ber_scanf( ber, "{" /*"}"*/); + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) + { + ber_scanf( ber, "m", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, &tmp_bv); } - if ( ctrl_ber ) - ber_free( ctrl_ber, 1 ); - goto done; + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); } - else { - if ( ctrl_ber ) - ber_free( ctrl_ber, 1 ); - break; + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_REFRESHDELETES ) + { + ber_scanf( ber, "b", &refreshDeletes ); } + ber_scanf( ber, "}" ); + } + if ( syncCookie_req.ctxcsn == NULL ) { + match = -1; + } else if ( syncCookie.ctxcsn == NULL ) { + match = 1; } else { - if ( syncCookie.bv_len ) { - syncrepl_updateCookie( ld, &op, &psub, &syncCookie ); + value_match( &match, slap_schema.si_ad_entryCSN, + slap_schema.si_ad_entryCSN->ad_type->sat_ordering, + SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX, + &syncCookie_req.ctxcsn[0], &syncCookie.ctxcsn[0], &text ); + } + if ( syncCookie.octet_str && syncCookie.octet_str->bv_val + && match < 0 && err == LDAP_SUCCESS ) { + syncrepl_updateCookie( si, op, psub, &syncCookie ); + } + if ( rctrls ) { + ldap_controls_free( rctrls ); + } + if (si->si_type != LDAP_SYNC_REFRESH_AND_PERSIST) { + /* FIXME : different error behaviors according to + * 1) err code : LDAP_BUSY ... + * 2) on err policy : stop service, stop sync, retry + */ + if ( refreshDeletes == 0 && match < 0 && + err == LDAP_SUCCESS ) { + syncrepl_del_nonpresent( op, si ); + } else { + avl_free( si->si_presentlist, avl_ber_bvfree ); + si->si_presentlist = NULL; } - syncrepl_del_nonpresent( ld, &op ); - if ( ctrl_ber ) - ber_free( ctrl_ber, 1 ); - goto done; } + rc = -2; + goto done; break; - case LDAP_RES_INTERMEDIATE_RESP: - ldap_parse_intermediate_resp_result( ld, msg, - &retoid, &retdata, 0 ); - if ( !strcmp( retoid, LDAP_SYNC_INFO ) ) { - sync_info_arrived = 1; - res_ber = ber_init( retdata ); - ber_scanf( res_ber, "{e", &syncstate ); - - if ( syncstate == LDAP_SYNC_REFRESH_DONE ) { - syncrepl_del_nonpresent( ld, &op ); - } else if ( syncstate != LDAP_SYNC_NEW_COOKIE ) { + case LDAP_RES_INTERMEDIATE: + rc = ldap_parse_intermediate( si->si_ld, msg, + &retoid, &retdata, NULL, 0 ); + if ( !rc && !strcmp( retoid, LDAP_SYNC_INFO ) ) { + int si_refreshDelete = 0; + int si_refreshPresent = 0; + ber_init2( ber, retdata, LBER_USE_DER ); + + switch ( si_tag = ber_peek_tag( ber, &len )) { + ber_tag_t tag; + case LDAP_TAG_SYNC_NEW_COOKIE: + ber_scanf( ber, "tm", &tag, &cookie ); + break; + case LDAP_TAG_SYNC_REFRESH_DELETE: + si_refreshDelete = 1; + case LDAP_TAG_SYNC_REFRESH_PRESENT: + si_refreshPresent = 1; + ber_scanf( ber, "t{", &tag ); + if ( ber_peek_tag( ber, &len ) == LDAP_TAG_SYNC_COOKIE ) + { + ber_scanf( ber, "m", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, &tmp_bv); + } + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); + } + if ( ber_peek_tag( ber, &len ) == + LDAP_TAG_REFRESHDONE ) + { + ber_scanf( ber, "b", &refreshDone ); + } + ber_scanf( ber, "}" ); + break; + case LDAP_TAG_SYNC_ID_SET: + ber_scanf( ber, "t{", &tag ); + if ( ber_peek_tag( ber, &len ) == + LDAP_TAG_SYNC_COOKIE ) { + ber_scanf( ber, "m", &cookie ); + if ( cookie.bv_val ) { + struct berval tmp_bv; + ber_dupbv( &tmp_bv, &cookie ); + ber_bvarray_add( &syncCookie.octet_str, + &tmp_bv ); + } + if ( syncCookie.octet_str && + syncCookie.octet_str[0].bv_val ) + slap_parse_sync_cookie( &syncCookie ); + } + if ( ber_peek_tag( ber, &len ) == + LDAP_TAG_REFRESHDELETES ) + { + ber_scanf( ber, "b", &refreshDeletes ); + } + ber_scanf( ber, "[W]", &syncUUIDs ); + ber_scanf( ber, "}" ); + for ( i = 0; syncUUIDs[i].bv_val; i++ ) { + struct berval *syncuuid_bv; + syncuuid_bv = ber_dupbv( NULL, &syncUUIDs[i] ); + avl_insert( &si->si_presentlist, + (caddr_t) syncuuid_bv, + syncuuid_cmp, avl_dup_error ); + } + ber_memfree_x( syncUUIDs, op->o_tmpmemctx ); + break; + default: #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "do_syncrepl : unknown sync info\n", 0, 0, 0 ); + LDAP_LOG( OPERATION, ERR, + "do_syncrep2 : unknown syncinfo tag (%ld)\n", + (long) si_tag, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, - "do_syncrepl : unknown sync info\n", 0, 0, 0 ); + Debug( LDAP_DEBUG_ANY, + "do_syncrep2 : unknown syncinfo tag (%ld)\n", + (long) si_tag, 0, 0 ); #endif + ldap_memfree( retoid ); + ber_bvfree( retdata ); + continue; } - if ( ber_peek_tag( res_ber, &len ) - == LDAP_SYNC_TAG_COOKIE ) { - ber_scanf( res_ber, "o}", &syncCookie ); - if ( syncCookie.bv_len ) { - ber_bvfree( si->syncCookie ); - si->syncCookie = ber_dupbv( NULL, &syncCookie ); - } + if ( syncCookie_req.ctxcsn == NULL ) { + match = -1; + } else if ( syncCookie.ctxcsn == NULL ) { + match = 1; } else { - if ( syncstate == LDAP_SYNC_NEW_COOKIE ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "do_syncrepl : cookie required\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, - "do_syncrepl : cookie required\n", 0, 0, 0 ); -#endif - } + value_match( &match, slap_schema.si_ad_entryCSN, + slap_schema.si_ad_entryCSN->ad_type->sat_ordering, + SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX, + &syncCookie_req.ctxcsn[0], + &syncCookie.ctxcsn[0], &text ); } + if ( syncCookie.ctxcsn && syncCookie.ctxcsn[0].bv_val + && match < 0 ) { + syncrepl_updateCookie( si, op, psub, &syncCookie); + } + + if ( si_refreshPresent == 1 ) { + if ( match < 0 ) { + syncrepl_del_nonpresent( op, si ); + } + } + ldap_memfree( retoid ); ber_bvfree( retdata ); - ber_free( res_ber, 1 ); break; } else { #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR,"do_syncrepl :" + LDAP_LOG( OPERATION, ERR,"do_syncrep2 :" " unknown intermediate " "response\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl : " - "unknown intermediate " - "response\n", 0, 0, 0 ); + Debug( LDAP_DEBUG_ANY, "do_syncrep2 : " + "unknown intermediate response (%d)\n", + rc, 0, 0 ); #endif ldap_memfree( retoid ); ber_bvfree( retdata ); @@ -616,91 +720,191 @@ do_syncrepl( break; default: #ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, "do_syncrepl : " + LDAP_LOG( OPERATION, ERR, "do_syncrep2 : " "unknown message\n", 0, 0, 0 ); #else - Debug( LDAP_DEBUG_ANY, "do_syncrepl : " + Debug( LDAP_DEBUG_ANY, "do_syncrep2 : " "unknown message\n", 0, 0, 0 ); #endif break; } + if ( syncCookie.octet_str ) { + slap_sync_cookie_free( &syncCookie_req, 0 ); + slap_dup_sync_cookie( &syncCookie_req, &syncCookie ); + slap_sync_cookie_free( &syncCookie, 0 ); + } } ldap_msgfree( res ); + res = NULL; } if ( rc == -1 ) { + const char *errstr; + + ldap_get_option( si->si_ld, LDAP_OPT_ERROR_NUMBER, &rc ); + errstr = ldap_err2string( rc ); + #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "do_syncrepl : unknown result\n", 0, 0, 0 ); + "do_syncrep2 : %s\n", errstr, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "do_syncrepl : unknown result\n", 0, 0, 0 ); + "do_syncrep2 : %s\n", errstr, 0, 0 ); #endif } done: - if ( syncCookie.bv_val ) - ch_free( syncCookie.bv_val ); - if ( syncUUID.bv_val ) - ch_free( syncUUID.bv_val ); + slap_sync_cookie_free( &syncCookie, 0 ); + slap_sync_cookie_free( &syncCookie_req, 0 ); - if ( res ) - ldap_msgfree( res ); - ldap_unbind( ld ); + if ( res ) ldap_msgfree( res ); - ldap_pvt_thread_mutex_lock( &syncrepl_rq.rq_mutex ); - ldap_pvt_runqueue_stoptask( &syncrepl_rq, rtask ); - if ( si->type == LDAP_SYNC_REFRESH_ONLY ) { - ldap_pvt_runqueue_resched( &syncrepl_rq, rtask ); - } else { - ldap_pvt_runqueue_remove( &syncrepl_rq, rtask ); + if ( rc && si->si_ld ) { + ldap_unbind( si->si_ld ); + si->si_ld = NULL; } - ldap_pvt_thread_mutex_unlock( &syncrepl_rq.rq_mutex ); - return NULL; + return rc; } -static Entry* -syncrepl_message_to_entry( - LDAP *ld, - Operation *op, - LDAPMessage *msg, - Modifications **modlist, - int *syncstate, - struct berval *syncUUID, - struct berval *syncCookie -) +void * +do_syncrepl( + void *ctx, + void *arg ) { - Entry *e; - BerElement *ber = NULL; - BerElement *tmpber; - struct berval bv = {0, NULL}; - Modifications tmp; - Modifications *mod; - Modifications **modtail = modlist; - Backend *be = op->o_bd; + struct re_s* rtask = arg; + syncinfo_t *si = ( syncinfo_t * ) rtask->arg; + Connection conn = {0}; + Operation op = {0}; + int rc = LDAP_SUCCESS; + int first = 0; + int dostop = 0; + ber_socket_t s; - const char *text; - char txtbuf[SLAP_TEXT_BUFLEN]; - size_t textlen = sizeof txtbuf; +#ifdef NEW_LOGGING + LDAP_LOG ( OPERATION, DETAIL1, "do_syncrepl\n", 0, 0, 0 ); +#else + Debug( LDAP_DEBUG_TRACE, "=>do_syncrepl\n", 0, 0, 0 ); +#endif - struct berval **bvals = NULL; - char *dn; - struct berval bdn = {0, NULL}; - Attribute *attr; - struct berval empty_bv = { 0, NULL }; - int rc; - char *a; + if ( si == NULL ) + return NULL; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; + switch( abs( si->si_type )) { + case LDAP_SYNC_REFRESH_ONLY: + case LDAP_SYNC_REFRESH_AND_PERSIST: + break; + default: + return NULL; + } - ber_len_t len; - LDAPControl* rctrlp; - LDAPControl** rctrls = NULL; - BerElement* ctrl_ber; + if ( slapd_shutdown && si->si_ld ) { + ldap_get_option( si->si_ld, LDAP_OPT_DESC, &s ); + connection_client_stop( s ); + ldap_unbind( si->si_ld ); + si->si_ld = NULL; + return NULL; + } + + connection_fake_init( &conn, &op, ctx ); + + op.o_dn = si->si_updatedn; + op.o_ndn = si->si_updatedn; + op.o_managedsait = 1; + op.o_bd = si->si_be; + + op.o_sync_state.ctxcsn = NULL; + op.o_sync_state.sid = -1; + op.o_sync_state.octet_str = NULL; + op.o_sync_slog_size = -1; + LDAP_STAILQ_FIRST( &op.o_sync_slog_list ) = NULL; + op.o_sync_slog_list.stqh_last = &LDAP_STAILQ_FIRST(&op.o_sync_slog_list); + + /* Establish session, do search */ + if ( !si->si_ld ) { + first = 1; + rc = do_syncrep1( &op, si ); + } + + /* Process results */ + if ( rc == LDAP_SUCCESS ) { + ldap_get_option( si->si_ld, LDAP_OPT_DESC, &s ); + + rc = do_syncrep2( &op, si ); + + if ( abs(si->si_type) == LDAP_SYNC_REFRESH_AND_PERSIST ) { + /* If we succeeded, enable the connection for further listening. + * If we failed, tear down the connection and reschedule. + */ + if ( rc == LDAP_SUCCESS ) { + if ( first ) { + rc = connection_client_setup( s, do_syncrepl, + arg ); + } else { + connection_client_enable( s ); + } + } else if ( !first ) { + dostop = 1; + } + } else { + if ( rc == -2 ) rc = 0; + } + } + + /* At this point, we have 4 cases: + * 1) for any hard failure, give up and remove this task + * 2) for ServerDown, reschedule this task to run + * 3) for Refresh and Success, reschedule to run + * 4) for Persist and Success, reschedule to defer + */ + ldap_pvt_thread_mutex_lock( &syncrepl_rq.rq_mutex ); + if ( ldap_pvt_runqueue_isrunning( &syncrepl_rq, rtask )) { + ldap_pvt_runqueue_stoptask( &syncrepl_rq, rtask ); + } + + if ( dostop ) { + connection_client_stop( s ); + } + + if ( rc && rc != LDAP_SERVER_DOWN ) { + ldap_pvt_runqueue_remove( &syncrepl_rq, rtask ); + } else { + if ( rc == LDAP_SERVER_DOWN || + si->si_type == LDAP_SYNC_REFRESH_ONLY ) { + rc = 0; + } else { + rc = 1; + } + ldap_pvt_runqueue_resched( &syncrepl_rq, rtask, rc ); + } + ldap_pvt_thread_mutex_unlock( &syncrepl_rq.rq_mutex ); + + return NULL; +} + +int +syncrepl_message_to_entry( + syncinfo_t *si, + Operation *op, + LDAPMessage *msg, + Modifications **modlist, + Entry **entry, + int syncstate +) +{ + Entry *e = NULL; + BerElement *ber = NULL; + Modifications tmp; + Modifications *mod; + Modifications **modtail = modlist; + + const char *text; + char txtbuf[SLAP_TEXT_BUFLEN]; + size_t textlen = sizeof txtbuf; - ber_tag_t tag; + struct berval bdn = {0, NULL}, dn, ndn; + int rc; *modlist = NULL; @@ -712,12 +916,12 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "Message type should be entry (%d)", ldap_msgtype( msg ), 0, 0 ); #endif - return NULL; + return -1; } op->o_tag = LDAP_REQ_ADD; - rc = ldap_get_dn_ber( ld, msg, &ber, &bdn ); + rc = ldap_get_dn_ber( si->si_ld, msg, &ber, &bdn ); if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING @@ -727,19 +931,35 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry : dn get failed (%d)", rc, 0, 0 ); #endif - return NULL; + return rc; } - e = ( Entry * ) ch_calloc( 1, sizeof( Entry )); - dnPrettyNormal( NULL, &bdn, &e->e_name, &e->e_nname, op->o_tmpmemctx ); + dnPrettyNormal( NULL, &bdn, &dn, &ndn, op->o_tmpmemctx ); + ber_dupbv( &op->o_req_dn, &dn ); + ber_dupbv( &op->o_req_ndn, &ndn ); + sl_free( ndn.bv_val, op->o_tmpmemctx ); + sl_free( dn.bv_val, op->o_tmpmemctx ); - e->e_attrs = NULL; + if ( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_DELETE ) + { + return LDAP_SUCCESS; + } - while ( ber_remaining( ber ) ) { - tag = ber_scanf( ber, "{mW}", &tmp.sml_type, &tmp.sml_values ); + if ( entry == NULL ) { + return -1; + } + + e = ( Entry * ) ch_calloc( 1, sizeof( Entry ) ); + *entry = e; + e->e_name = op->o_req_dn; + e->e_nname = op->o_req_ndn; - if ( tag == LBER_ERROR ) break; - if ( tmp.sml_type.bv_val == NULL ) break; + while ( ber_remaining( ber ) ) { + if ( (ber_scanf( ber, "{mW}", &tmp.sml_type, &tmp.sml_values ) == + LBER_ERROR ) || ( tmp.sml_type.bv_val == NULL )) + { + break; + } mod = (Modifications *) ch_malloc( sizeof( Modifications )); @@ -748,70 +968,12 @@ syncrepl_message_to_entry( mod->sml_desc = NULL; mod->sml_type = tmp.sml_type; mod->sml_bvalues = tmp.sml_bvalues; - mod->sml_nvalues = tmp.sml_bvalues; + mod->sml_nvalues = NULL; *modtail = mod; modtail = &mod->sml_next; } - if ( ber_scanf( ber, "}") == LBER_ERROR ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_message_to_entry: ber_scanf failed\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: ber_scanf failed\n", - 0, 0, 0 ); -#endif - return NULL; - } - - ber_free( ber, 0 ); - tmpber = ldap_get_message_ber( msg ); - ber = ber_dup( tmpber ); - - ber_scanf( ber, "{xx" ); - - rc = ldap_int_get_controls( ber, &rctrls ); - - if ( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_message_to_entry : control get failed (%d)", rc, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, - "syncrepl_message_to_entry : control get failed (%d)", rc, 0, 0 ); -#endif - return NULL; - } - - if ( rctrls ) { - rctrlp = *rctrls; - ctrl_ber = ber_alloc_t( LBER_USE_DER ); - ber_set_option( ctrl_ber, LBER_OPT_BER_MEMCTX, &op->o_tmpmemctx ); - ber_write( ctrl_ber, rctrlp->ldctl_value.bv_val, rctrlp->ldctl_value.bv_len, 0 ); - ber_reset( ctrl_ber, 1 ); - ber_scanf( ctrl_ber, "{eo", syncstate, syncUUID ); - if ( ber_peek_tag( ctrl_ber, &len ) == LDAP_SYNC_TAG_COOKIE ) { - ber_scanf( ctrl_ber, "o}", syncCookie ); - } - ber_free( ctrl_ber, 1 ); - } else { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR,"syncrepl_message_to_entry : " - " rctrls absent\n", 0, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry :" - " rctrls absent\n", 0, 0, 0 ); -#endif - } - - if ( *syncstate == LDAP_SYNC_PRESENT ) { - e = NULL; - goto done; - } else if ( *syncstate == LDAP_SYNC_DELETE ) { - goto done; - } - if ( *modlist == NULL ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, @@ -822,7 +984,7 @@ syncrepl_message_to_entry( #endif } - rc = slap_mods_check_syncrepl( op, modlist, &text, txtbuf, textlen, NULL ); + rc = slap_mods_check( *modlist, 1, &text, txtbuf, textlen, NULL ); if ( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING @@ -832,24 +994,10 @@ syncrepl_message_to_entry( Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods check (%s)\n", text, 0, 0 ); #endif - return NULL; + goto done; } - rc = slap_mods_opattrs_syncrepl( op, *modlist, modtail, - &text,txtbuf, textlen ); - - if( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_message_to_entry: mods opattrs (%s)\n", text, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_message_to_entry: mods opattrs (%s)\n", - text, 0, 0 ); -#endif - return NULL; - } - - rc = slap_mods2entry_syncrepl( *modlist, &e, 1, &text, txtbuf, textlen ); + rc = slap_mods2entry( *modlist, &e, 1, 1, &text, txtbuf, textlen); if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, @@ -861,119 +1009,167 @@ syncrepl_message_to_entry( } done: - ber_free ( ber, 0 ); + if ( rc != LDAP_SUCCESS ) { + entry_free( e ); + e = NULL; + } - return e; + return rc; } -int -syncuuid_cmp( const void* v_uuid1, const void* v_uuid2 ) -{ - const struct berval *uuid1 = v_uuid1; - const struct berval *uuid2 = v_uuid2; - int rc = uuid1->bv_len - uuid2->bv_len; - if ( rc ) return rc; - return ( strcmp( uuid1->bv_val, uuid2->bv_val ) ); -} +static struct berval uuidbva[] = { + BER_BVNULL, + BER_BVNULL +}; -static int +int syncrepl_entry( - LDAP *ld, + syncinfo_t* si, Operation *op, Entry* e, Modifications* modlist, int syncstate, struct berval* syncUUID, - struct berval* syncCookie, - int refresh + struct sync_cookie* syncCookie_req ) { Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - slap_callback cb; - struct berval csn_bv = {0, NULL}; + slap_callback cb = { NULL }; struct berval *syncuuid_bv = NULL; - char csnbuf[ LDAP_LUTIL_CSNSTR_BUFSIZE ]; + struct berval syncUUID_strrep = { 0, NULL }; SlapReply rs = {REP_RESULT}; + Filter f = {0}; + AttributeAssertion ava = {0}; int rc = LDAP_SUCCESS; + int ret = LDAP_SUCCESS; + const char *text; - struct berval base_bv = {0, NULL}; - - char *filterstr; - Filter *filter; - - Attribute *a; + struct berval pdn = { 0, NULL }; + struct berval org_req_dn = { 0, NULL }; + struct berval org_req_ndn = { 0, NULL }; + struct berval org_dn = { 0, NULL }; + struct berval org_ndn = { 0, NULL }; + int org_managedsait; - if ( refresh && - ( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_ADD )) { + if (( syncstate == LDAP_SYNC_PRESENT || syncstate == LDAP_SYNC_ADD )) + { syncuuid_bv = ber_dupbv( NULL, syncUUID ); - avl_insert( &si->presentlist, (caddr_t) syncuuid_bv, - syncuuid_cmp, avl_dup_error ); + avl_insert( &si->si_presentlist, (caddr_t) syncuuid_bv, + syncuuid_cmp, avl_dup_error ); } if ( syncstate == LDAP_SYNC_PRESENT ) { - if ( e ) - return 1; - else - return 0; + return e ? 1 : 0; } - filterstr = (char *) sl_malloc( strlen("entryUUID=") + syncUUID->bv_len + 1, - op->o_tmpmemctx ); - strcpy( filterstr, "entryUUID=" ); - strcat( filterstr, syncUUID->bv_val ); + f.f_choice = LDAP_FILTER_EQUALITY; + f.f_ava = &ava; + ava.aa_desc = slap_schema.si_ad_entryUUID; + slap_uuidstr_from_normalized( &syncUUID_strrep, syncUUID, op->o_tmpmemctx ); + ava.aa_value = *syncUUID; + op->ors_filter = &f; + + op->ors_filterstr.bv_len = (sizeof("entryUUID=")-1) + syncUUID->bv_len; + op->ors_filterstr.bv_val = (char *) sl_malloc( + op->ors_filterstr.bv_len + 1, op->o_tmpmemctx ); + AC_MEMCPY( op->ors_filterstr.bv_val, "entryUUID=", sizeof("entryUUID=")-1 ); + AC_MEMCPY( &op->ors_filterstr.bv_val[sizeof("entryUUID=")-1], + syncUUID->bv_val, syncUUID->bv_len ); + op->ors_filterstr.bv_val[op->ors_filterstr.bv_len] = '\0'; - si->e = e; - si->syncUUID = syncUUID; - si->syncUUID_ndn = NULL; - - filter = str2filter( filterstr ); - ber_str2bv( filterstr, strlen(filterstr), 1, &op->ors_filterstr ); - ch_free( filterstr ); - op->ors_filter = filter; + op->o_tag = LDAP_REQ_SEARCH; op->ors_scope = LDAP_SCOPE_SUBTREE; /* get syncrepl cookie of shadow replica from subentry */ - ber_str2bv( si->base, strlen(si->base), 1, &base_bv ); - dnPrettyNormal( 0, &base_bv, &op->o_req_dn, &op->o_req_ndn, op->o_tmpmemctx ); - ch_free( base_bv.bv_val ); + op->o_req_dn = si->si_base; + op->o_req_ndn = si->si_base; /* set callback function */ op->o_callback = &cb; cb.sc_response = dn_callback; cb.sc_private = si; - be->be_search( op, &rs ); + si->si_syncUUID_ndn.bv_val = NULL; - ch_free( op->o_req_dn.bv_val ); - ch_free( op->o_req_ndn.bv_val ); - filter_free( op->ors_filter ); - ch_free( op->ors_filterstr.bv_val ); + if ( limits_check( op, &rs ) == 0 ) { + rc = be->be_search( op, &rs ); + } + + if ( op->ors_filterstr.bv_val ) { + sl_free( op->ors_filterstr.bv_val, op->o_tmpmemctx ); + } cb.sc_response = null_callback; + cb.sc_private = si; - rc = LDAP_SUCCESS; + if ( rc == LDAP_SUCCESS && si->si_syncUUID_ndn.bv_val ) + { + char *subseq_ptr; + + if ( syncstate != LDAP_SYNC_DELETE ) { + op->o_no_psearch = 1; + } - if ( si->syncUUID_ndn ) { - op->o_req_dn = *si->syncUUID_ndn; - op->o_req_ndn = *si->syncUUID_ndn; + ber_dupbv( &op->o_sync_csn, syncCookie_req->ctxcsn ); + if ( op->o_sync_csn.bv_val ) { + subseq_ptr = strstr( op->o_sync_csn.bv_val, "#0000" ); + subseq_ptr += 4; + *subseq_ptr = '1'; + } + + op->o_req_dn = si->si_syncUUID_ndn; + op->o_req_ndn = si->si_syncUUID_ndn; op->o_tag = LDAP_REQ_DELETE; rc = be->be_delete( op, &rs ); + + org_req_dn = op->o_req_dn; + org_req_ndn = op->o_req_ndn; + org_dn = op->o_dn; + org_ndn = op->o_ndn; + org_managedsait = get_manageDSAit( op ); + op->o_dn = op->o_bd->be_rootdn; + op->o_ndn = op->o_bd->be_rootndn; + op->o_managedsait = 1; + + while ( rs.sr_err == LDAP_SUCCESS && + op->o_delete_glue_parent ) { + op->o_delete_glue_parent = 0; + if ( !be_issuffix( op->o_bd, &op->o_req_ndn )) { + slap_callback cb = { NULL }; + cb.sc_response = slap_null_cb; + dnParent( &op->o_req_ndn, &pdn ); + op->o_req_dn = pdn; + op->o_req_ndn = pdn; + op->o_callback = &cb; + op->o_bd->be_delete( op, &rs ); + } else { + break; + } + } + + op->o_managedsait = org_managedsait; + op->o_dn = org_dn; + op->o_ndn = org_ndn; + op->o_req_dn = org_req_dn; + op->o_req_ndn = org_req_ndn; + op->o_delete_glue_parent = 0; + + op->o_no_psearch = 0; } switch ( syncstate ) { - case LDAP_SYNC_ADD : - case LDAP_SYNC_MODIFY : - + case LDAP_SYNC_ADD: + case LDAP_SYNC_MODIFY: if ( rc == LDAP_SUCCESS || rc == LDAP_REFERRAL || - rc == LDAP_NO_SUCH_OBJECT ) { - - if ( !attr_find( e->e_attrs, slap_schema.si_ad_entryUUID )) { - attr_merge_one( e, slap_schema.si_ad_entryUUID, syncUUID, syncUUID ); - } + rc == LDAP_NO_SUCH_OBJECT || + rc == LDAP_NOT_ALLOWED_ON_NONLEAF ) + { + attr_delete( &e->e_attrs, slap_schema.si_ad_entryUUID ); + attr_merge_one( e, slap_schema.si_ad_entryUUID, + syncUUID, &ava.aa_value ); op->o_tag = LDAP_REQ_ADD; op->ora_e = e; @@ -982,362 +1178,486 @@ syncrepl_entry( rc = be->be_add( op, &rs ); if ( rc != LDAP_SUCCESS ) { - if ( rc == LDAP_ALREADY_EXISTS ) { + if ( rc == LDAP_ALREADY_EXISTS ) { + Modifications *mod; + Modifications *modtail; + + for ( mod = modlist; mod != NULL; mod = mod->sml_next ) { + modtail = mod; + } + + mod = (Modifications *)ch_calloc(1, sizeof(Modifications)); + ber_dupbv( &uuidbva[0], syncUUID ); + mod->sml_op = LDAP_MOD_REPLACE; + mod->sml_desc = slap_schema.si_ad_entryUUID; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_bvalues = uuidbva; + modtail->sml_next = mod; + op->o_tag = LDAP_REQ_MODIFY; op->orm_modlist = modlist; op->o_req_dn = e->e_name; op->o_req_ndn = e->e_nname; + rc = be->be_modify( op, &rs ); - } else if ( rc == LDAP_REFERRAL || - rc == LDAP_NO_SUCH_OBJECT ) { - syncrepl_add_glue(ld, op, e, - modlist, syncstate, - syncUUID, syncCookie); + if ( rc != LDAP_SUCCESS ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, + "syncrepl_entry : be_modify failed (%d)\n", + rc, 0, 0 ); +#else + Debug( LDAP_DEBUG_ANY, + "syncrepl_entry : be_modify failed (%d)\n", + rc, 0, 0 ); +#endif + } + ret = 1; + goto done; + } else if ( rc == LDAP_REFERRAL || rc == LDAP_NO_SUCH_OBJECT ) { + syncrepl_add_glue( op, e ); + ret = 0; + goto done; } else { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "be_modify failed (%d)\n", + "syncrepl_entry : be_add failed (%d)\n", rc, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "be_modify failed (%d)\n", + "syncrepl_entry : be_add failed (%d)\n", rc, 0, 0 ); #endif + ret = 1; + goto done; } } else { - return 0; + be_entry_release_w( op, e ); + ret = 0; + goto done; } } else { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "be_modify/be_delete failed (%d)\n", rc, 0, 0 ); + "syncrepl_entry : be_search failed (%d)\n", rc, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "be_modify/be_delete failed (%d)\n", rc, 0, 0 ); + "syncrepl_entry : be_search failed (%d)\n", rc, 0, 0 ); #endif + ret = 1; + goto done; } - si->e = NULL; - return 1; - case LDAP_SYNC_DELETE : /* Already deleted */ - return 1; + ret = 0; + goto done; default : #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "unknown syncstate\n", 0, 0, 0 ); + "syncrepl_entry : unknown syncstate\n", 0, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, - "unknown syncstate\n", 0, 0, 0 ); + "syncrepl_entry : unknown syncstate\n", 0, 0, 0 ); #endif - return 1; + ret = 1; + goto done; + } + +done : + + if ( syncUUID_strrep.bv_val ) { + ber_memfree_x( syncUUID_strrep.bv_val, op->o_tmpmemctx ); } + if ( si->si_syncUUID_ndn.bv_val ) { + ber_memfree_x( si->si_syncUUID_ndn.bv_val, op->o_tmpmemctx ); + } + return ret; } -static int +static struct berval gcbva[] = { + BER_BVC("top"), + BER_BVC("glue"), + BER_BVNULL +}; + +static void syncrepl_del_nonpresent( - LDAP *ld, - Operation *op + Operation *op, + syncinfo_t *si ) { Backend* be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - slap_callback cb; - struct berval base_bv = {0, NULL}; - Filter *filter; + slap_callback cb = { NULL }; SlapReply rs = {REP_RESULT}; - struct berval filterstr_bv = {0, NULL}; struct nonpresent_entry *np_list, *np_prev; + int rc; + Modifications *ml; + Modifications *mlnext; + Modifications *mod; + Modifications *modlist = NULL; + Modifications **modtail = &modlist; + Attribute *attr; - ber_str2bv( si->base, strlen(si->base), 1, &base_bv ); - dnPrettyNormal(0, &base_bv, &op->o_req_dn, &op->o_req_ndn, op->o_tmpmemctx ); - ch_free( base_bv.bv_val ); + struct berval pdn = { 0, NULL }; + struct berval org_req_dn = { 0, NULL }; + struct berval org_req_ndn = { 0, NULL }; + struct berval org_dn = { 0, NULL }; + struct berval org_ndn = { 0, NULL }; + int org_managedsait; - filter = str2filter( si->filterstr ); + op->o_req_dn = si->si_base; + op->o_req_ndn = si->si_base; cb.sc_response = nonpresent_callback; cb.sc_private = si; op->o_callback = &cb; op->o_tag = LDAP_REQ_SEARCH; - op->ors_scope = si->scope; + op->ors_scope = si->si_scope; op->ors_deref = LDAP_DEREF_NEVER; - op->ors_slimit = -1; - op->ors_tlimit = -1; + op->ors_slimit = 0; + op->ors_tlimit = 0; op->ors_attrsonly = 0; op->ors_attrs = NULL; - op->ors_filter = filter; - ber_str2bv( si->filterstr, strlen( si->filterstr ), 1, &op->ors_filterstr ); + op->ors_filter = str2filter_x( op, si->si_filterstr.bv_val ); + op->ors_filterstr = si->si_filterstr; + + op->o_nocaching = 1; + op->o_managedsait = 0; - be->be_search( op, &rs ); + if ( limits_check( op, &rs ) == 0 ) { + be->be_search( op, &rs ); + } + + op->o_managedsait = 1; + op->o_nocaching = 0; - if ( !LDAP_LIST_EMPTY( &si->nonpresentlist ) ) { - np_list = LDAP_LIST_FIRST( &si->nonpresentlist ); + if ( op->ors_filter ) filter_free_x( op, op->ors_filter ); + + if ( !LDAP_LIST_EMPTY( &si->si_nonpresentlist ) ) { + np_list = LDAP_LIST_FIRST( &si->si_nonpresentlist ); while ( np_list != NULL ) { - LDAP_LIST_REMOVE( np_list, np_link ); + LDAP_LIST_REMOVE( np_list, npe_link ); np_prev = np_list; - np_list = LDAP_LIST_NEXT( np_list, np_link ); + np_list = LDAP_LIST_NEXT( np_list, npe_link ); op->o_tag = LDAP_REQ_DELETE; op->o_callback = &cb; cb.sc_response = null_callback; cb.sc_private = si; - op->o_req_dn = *np_prev->dn; - op->o_req_ndn = *np_prev->ndn; - op->o_bd->be_delete( op, &rs ); - ber_bvfree( np_prev->dn ); - ber_bvfree( np_prev->ndn ); + op->o_req_dn = *np_prev->npe_name; + op->o_req_ndn = *np_prev->npe_nname; + rc = op->o_bd->be_delete( op, &rs ); + + if ( rc == LDAP_NOT_ALLOWED_ON_NONLEAF ) { + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); + mod->sml_op = LDAP_MOD_REPLACE; + mod->sml_desc = slap_schema.si_ad_objectClass; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_bvalues = &gcbva[0]; + *modtail = mod; + modtail = &mod->sml_next; + + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); + mod->sml_op = LDAP_MOD_REPLACE; + mod->sml_desc = slap_schema.si_ad_structuralObjectClass; + mod->sml_type = mod->sml_desc->ad_cname; + mod->sml_bvalues = &gcbva[1]; + *modtail = mod; + modtail = &mod->sml_next; + + op->o_tag = LDAP_REQ_MODIFY; + op->orm_modlist = modlist; + + rc = be->be_modify( op, &rs ); + + for ( ml = modlist; ml != NULL; ml = mlnext ) { + mlnext = ml->sml_next; + free( ml ); + } + } + + org_req_dn = op->o_req_dn; + org_req_ndn = op->o_req_ndn; + org_dn = op->o_dn; + org_ndn = op->o_ndn; + org_managedsait = get_manageDSAit( op ); + op->o_dn = op->o_bd->be_rootdn; + op->o_ndn = op->o_bd->be_rootndn; + op->o_managedsait = 1; + + while ( rs.sr_err == LDAP_SUCCESS && + op->o_delete_glue_parent ) { + op->o_delete_glue_parent = 0; + if ( !be_issuffix( op->o_bd, &op->o_req_ndn )) { + slap_callback cb = { NULL }; + cb.sc_response = slap_null_cb; + dnParent( &op->o_req_ndn, &pdn ); + op->o_req_dn = pdn; + op->o_req_ndn = pdn; + op->o_callback = &cb; + /* give it a root privil ? */ + op->o_bd->be_delete( op, &rs ); + } else { + break; + } + } + + op->o_managedsait = org_managedsait; + op->o_dn = org_dn; + op->o_ndn = org_ndn; + op->o_req_dn = org_req_dn; + op->o_req_ndn = org_req_ndn; + op->o_delete_glue_parent = 0; + + ber_bvfree( np_prev->npe_name ); + ber_bvfree( np_prev->npe_nname ); op->o_req_dn.bv_val = NULL; op->o_req_ndn.bv_val = NULL; ch_free( np_prev ); } } - if ( op->o_req_dn.bv_val ) - ch_free( op->o_req_dn.bv_val ); - if ( op->o_req_ndn.bv_val ) - ch_free( op->o_req_ndn.bv_val ); - filter_free( op->ors_filter ); - ch_free( op->ors_filterstr.bv_val ); + return; } -static void +void syncrepl_add_glue( - LDAP *ld, Operation* op, - Entry *e, - Modifications* modlist, - int syncstate, - struct berval* syncUUID, - struct berval* syncCookie + Entry *e ) { Backend *be = op->o_bd; - syncinfo_t *si = op->o_callback->sc_private; - struct berval uuid_bv = {0, NULL}; - slap_callback cb; + slap_callback cb = { NULL }; Attribute *a; int rc; - char uuidbuf[ LDAP_LUTIL_UUIDSTR_BUFSIZE ]; - int levels = 0; - int i, j, k; + int suffrdns; + int i; struct berval dn = {0, NULL}; - struct berval pdn = {0, NULL}; struct berval ndn = {0, NULL}; - struct berval rdn = {0, NULL}; Entry *glue; SlapReply rs = {REP_RESULT}; - Connection *conn = op->o_conn; + char *ptr, *comma; op->o_tag = LDAP_REQ_ADD; op->o_callback = &cb; cb.sc_response = null_callback; - cb.sc_private = si; + cb.sc_private = NULL; + + dn = e->e_name; + ndn = e->e_nname; - ber_dupbv( &dn, &e->e_nname ); - ber_dupbv( &pdn, &e->e_nname ); - - while ( !be_issuffix ( be, &pdn )) { - dnParent( &dn, &pdn ); - ch_free( dn.bv_val ); - ber_dupbv( &dn, &pdn ); - levels++; - } - - for ( i = 0; i <= levels; i++ ) { - glue = (Entry*) ch_calloc( 1, sizeof(Entry) ); - ch_free( dn.bv_val ); - ch_free( pdn.bv_val ); - ber_dupbv( &dn, &e->e_nname ); - ber_dupbv( &pdn, &e->e_nname ); - j = levels - i; - for ( k = 0; k < j; k++ ) { - dnParent( &dn, &pdn ); - ch_free( dn.bv_val ); - ber_dupbv( &dn, &pdn ); + /* count RDNs in suffix */ + if ( be->be_nsuffix[0].bv_len ) { + for (i=0, ptr=be->be_nsuffix[0].bv_val; ptr; ptr=strchr( ptr, ',' )) { + ptr++; + i++; } + suffrdns = i; + } else { + /* suffix is "" */ + suffrdns = 0; + } + + /* Start with BE suffix */ + for ( i = 0, ptr = NULL; i < suffrdns; i++ ) { + comma = strrchr(dn.bv_val, ','); + if ( ptr ) *ptr = ','; + if ( comma ) *comma = '\0'; + ptr = comma; + } + if ( ptr ) { + *ptr++ = ','; + dn.bv_len -= ptr - dn.bv_val; + dn.bv_val = ptr; + } + /* the normalizedDNs are always the same length, no counting + * required. + */ + if ( ndn.bv_len > be->be_nsuffix[0].bv_len ) { + ndn.bv_val += ndn.bv_len - be->be_nsuffix[0].bv_len; + ndn.bv_len = be->be_nsuffix[0].bv_len; + } - dnPrettyNormal( 0, &dn, &pdn, &ndn, op->o_tmpmemctx ); - ber_dupbv( &glue->e_name, &pdn ); + while ( ndn.bv_val > e->e_nname.bv_val ) { + glue = (Entry *) ch_calloc( 1, sizeof(Entry) ); + ber_dupbv( &glue->e_name, &dn ); ber_dupbv( &glue->e_nname, &ndn ); - ch_free( dn.bv_val ); - ch_free( pdn.bv_val ); - ch_free( ndn.bv_val ); a = ch_calloc( 1, sizeof( Attribute )); a->a_desc = slap_schema.si_ad_objectClass; + a->a_vals = ch_calloc( 3, sizeof( struct berval )); - ber_str2bv( "top", strlen("top"), 1, &a->a_vals[0] ); - ber_str2bv( "glue", strlen("glue"), 1, &a->a_vals[1] ); - a->a_vals[2].bv_len = 0; - a->a_vals[2].bv_val = NULL; + ber_dupbv( &a->a_vals[0], &gcbva[0] ); + ber_dupbv( &a->a_vals[1], &gcbva[1] ); + ber_dupbv( &a->a_vals[2], &gcbva[2] ); + + a->a_nvals = a->a_vals; + a->a_next = glue->e_attrs; glue->e_attrs = a; a = ch_calloc( 1, sizeof( Attribute )); a->a_desc = slap_schema.si_ad_structuralObjectClass; + a->a_vals = ch_calloc( 2, sizeof( struct berval )); - ber_str2bv( "glue", strlen("glue"), 1, &a->a_vals[0] ); - a->a_vals[1].bv_len = 0; - a->a_vals[1].bv_val = NULL; + ber_dupbv( &a->a_vals[0], &gcbva[1] ); + ber_dupbv( &a->a_vals[1], &gcbva[2] ); + + a->a_nvals = a->a_vals; + a->a_next = glue->e_attrs; glue->e_attrs = a; - if ( !strcmp( e->e_nname.bv_val, glue->e_nname.bv_val )) { - op->o_req_dn = e->e_name; - op->o_req_ndn = e->e_nname; - op->ora_e = e; - rc = be->be_add ( op, &rs ); - if ( rc == LDAP_SUCCESS ) - be_entry_release_w( op, e ); - else - entry_free( e ); - entry_free( glue ); + op->o_req_dn = glue->e_name; + op->o_req_ndn = glue->e_nname; + op->ora_e = glue; + rc = be->be_add ( op, &rs ); + if ( rc == LDAP_SUCCESS ) { + be_entry_release_w( op, glue ); } else { - op->o_req_dn = glue->e_name; - op->o_req_ndn = glue->e_nname; - op->ora_e = glue; - rc = be->be_add ( op, &rs ); - if ( rc == LDAP_SUCCESS ) { - be_entry_release_w( op, glue ); - } else { - /* incl. ALREADY EXIST */ - entry_free( glue ); - } + /* incl. ALREADY EXIST */ + entry_free( glue ); + } + + /* Move to next child */ + for (ptr = dn.bv_val-2; ptr > e->e_name.bv_val && *ptr != ','; ptr--) { + /* empty */ + } + if ( ptr == e->e_name.bv_val ) break; + dn.bv_val = ++ptr; + dn.bv_len = e->e_name.bv_len - (ptr-e->e_name.bv_val); + for( ptr = ndn.bv_val-2; + ptr > e->e_nname.bv_val && *ptr != ','; + ptr--) + { + /* empty */ } + ndn.bv_val = ++ptr; + ndn.bv_len = e->e_nname.bv_len - (ptr-e->e_nname.bv_val); + } + + op->o_req_dn = e->e_name; + op->o_req_ndn = e->e_nname; + op->ora_e = e; + rc = be->be_add ( op, &rs ); + if ( rc == LDAP_SUCCESS ) { + be_entry_release_w( op, e ); + } else { + entry_free( e ); } return; } -static void +static struct berval ocbva[] = { + BER_BVC("top"), + BER_BVC("subentry"), + BER_BVC("syncConsumerSubentry"), + BER_BVNULL +}; + +static struct berval cnbva[] = { + BER_BVNULL, + BER_BVNULL +}; + +static struct berval ssbva[] = { + BER_BVC("{}"), + BER_BVNULL +}; + +static struct berval scbva[] = { + BER_BVNULL, + BER_BVNULL +}; + +void syncrepl_updateCookie( - LDAP *ld, + syncinfo_t *si, Operation *op, struct berval *pdn, - struct berval *syncCookie + struct sync_cookie *syncCookie ) { Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; Modifications *ml; Modifications *mlnext; Modifications *mod; - Modifications *modlist; + Modifications *modlist = NULL; Modifications **modtail = &modlist; - struct berval* ocbva = NULL; - struct berval* cnbva = NULL; - struct berval* ssbva = NULL; - struct berval* scbva = NULL; - - char substr[64]; - char rdnstr[67]; const char *text; char txtbuf[SLAP_TEXT_BUFLEN]; size_t textlen = sizeof txtbuf; - Entry* e; + Entry* e = NULL; int rc; - struct berval sub_bv = { 0, NULL }; - struct berval psubrdn = { 0, NULL }; + char syncrepl_cbuf[sizeof(CN_STR SYNCREPL_STR)]; + struct berval slap_syncrepl_dn_bv = BER_BVNULL; + struct berval slap_syncrepl_cn_bv = BER_BVNULL; - slap_callback cb; + slap_callback cb = { NULL }; SlapReply rs = {REP_RESULT}; - ocbva = ( struct berval * ) ch_calloc( 4, sizeof( struct berval )); - cnbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval )); - ssbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval )); - scbva = ( struct berval * ) ch_calloc( 2, sizeof( struct berval )); - - /* update in memory cookie */ - if ( si->syncCookie != NULL ) { - ber_bvfree( si->syncCookie ); - } - si->syncCookie = ber_dupbv( NULL, syncCookie ); - ber_str2bv( "top", strlen("top"), 1, &ocbva[0] ); - ber_str2bv( "subentry", strlen("subentry"), 1, &ocbva[1] ); - ber_str2bv( "syncConsumerSubentry", - strlen("syncConsumerSubentry"), 1, &ocbva[2] ); - ocbva[3].bv_len = 0; - ocbva[3].bv_val = NULL; + slap_sync_cookie_free( &si->si_syncCookie, 0 ); + slap_dup_sync_cookie( &si->si_syncCookie, syncCookie ); - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "objectClass", strlen("objectClass"), 1, &mod->sml_type ); + mod->sml_desc = slap_schema.si_ad_objectClass; + mod->sml_type = mod->sml_desc->ad_cname; mod->sml_bvalues = ocbva; - mod->sml_nvalues = ocbva; *modtail = mod; modtail = &mod->sml_next; - sprintf( substr, "syncrepl%d", si->id ); - sprintf( rdnstr, "cn=%s", substr ); - ber_str2bv( substr, strlen( substr ), 1, &cnbva[0] ); - ber_str2bv( rdnstr, strlen( rdnstr ), 1, &psubrdn ); - cnbva[1].bv_len = 0; - cnbva[1].bv_val = NULL; - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + ber_dupbv( &cnbva[0], (struct berval *) &slap_syncrepl_bvc ); + assert( si->si_rid < 1000 ); + cnbva[0].bv_len = snprintf( cnbva[0].bv_val, + slap_syncrepl_bvc.bv_len, + "syncrepl%ld", si->si_rid ); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "cn", strlen("cn"), 1, &mod->sml_type ); + mod->sml_desc = slap_schema.si_ad_cn; + mod->sml_type = mod->sml_desc->ad_cname; mod->sml_bvalues = cnbva; - mod->sml_nvalues = cnbva; *modtail = mod; modtail = &mod->sml_next; - ber_dupbv( &scbva[0], si->syncCookie ); - scbva[1].bv_len = 0; - scbva[1].bv_val = NULL; - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + if ( scbva[0].bv_val ) ch_free( scbva[0].bv_val ); + ber_dupbv( &scbva[0], &si->si_syncCookie.octet_str[0] ); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "syncreplCookie", strlen("syncreplCookie"), - 1, &mod->sml_type ); + mod->sml_desc = slap_schema.si_ad_syncreplCookie; + mod->sml_type = mod->sml_desc->ad_cname; mod->sml_bvalues = scbva; - mod->sml_nvalues = scbva; *modtail = mod; modtail = &mod->sml_next; - ber_str2bv( "{}", strlen("{}"), 1, &ssbva[0] ); - ssbva[1].bv_len = 0; - ssbva[1].bv_val = NULL; - mod = (Modifications *) ch_malloc( sizeof( Modifications )); + mod = (Modifications *) ch_calloc( 1, sizeof( Modifications )); mod->sml_op = LDAP_MOD_REPLACE; - mod->sml_next = NULL; - mod->sml_desc = NULL; - ber_str2bv( "subtreeSpecification", - strlen("subtreeSpecification"), 1, &mod->sml_type ); + mod->sml_desc = slap_schema.si_ad_subtreeSpecification; + mod->sml_type = mod->sml_desc->ad_cname; mod->sml_bvalues = ssbva; - mod->sml_nvalues = ssbva; *modtail = mod; modtail = &mod->sml_next; - rc = slap_mods_check_syncrepl( op, &modlist, &text, txtbuf, textlen, NULL ); - - if ( rc != LDAP_SUCCESS ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, ERR, - "syncrepl_updateCookie: mods check (%s)\n", text, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods check (%s)\n", - text, 0, 0 ); -#endif - } + mlnext = mod; op->o_tag = LDAP_REQ_ADD; - rc = slap_mods_opattrs_syncrepl( op, modlist, modtail, &text,txtbuf, textlen ); + rc = slap_mods_opattrs( op, modlist, modtail, + &text,txtbuf, textlen ); + + for ( ml = modlist; ml != NULL; ml = ml->sml_next ) { + ml->sml_op = LDAP_MOD_REPLACE; + } if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 ); + "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods opattrs (%s)\n", text, 0, 0 ); @@ -1346,19 +1666,29 @@ syncrepl_updateCookie( e = ( Entry * ) ch_calloc( 1, sizeof( Entry )); - build_new_dn( &sub_bv, pdn, &psubrdn ); - dnPrettyNormal( NULL, &sub_bv, &e->e_name, &e->e_nname, op->o_tmpmemctx ); - ch_free( sub_bv.bv_val ); - ch_free( psubrdn.bv_val ); + slap_syncrepl_cn_bv.bv_val = syncrepl_cbuf; + assert( si->si_rid < 1000 ); + slap_syncrepl_cn_bv.bv_len = snprintf( slap_syncrepl_cn_bv.bv_val, + slap_syncrepl_cn_bvc.bv_len, + "cn=syncrepl%ld", si->si_rid ); + + build_new_dn( &slap_syncrepl_dn_bv, pdn, &slap_syncrepl_cn_bv, + op->o_tmpmemctx ); + ber_dupbv( &e->e_name, &slap_syncrepl_dn_bv ); + ber_dupbv( &e->e_nname, &slap_syncrepl_dn_bv ); + + if ( slap_syncrepl_dn_bv.bv_val ) { + sl_free( slap_syncrepl_dn_bv.bv_val, op->o_tmpmemctx ); + } e->e_attrs = NULL; - rc = slap_mods2entry_syncrepl( modlist, &e, 1, &text, txtbuf, textlen ); + rc = slap_mods2entry( modlist, &e, 1, 1, &text, txtbuf, textlen ); if( rc != LDAP_SUCCESS ) { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, - "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 ); + "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 ); #else Debug( LDAP_DEBUG_ANY, "syncrepl_updateCookie: mods2entry (%s)\n", text, 0, 0 ); @@ -1377,6 +1707,7 @@ update_cookie_retry: op->o_tag = LDAP_REQ_MODIFY; op->orm_modlist = modlist; rc = be->be_modify( op, &rs ); + if ( rc != LDAP_SUCCESS ) { if ( rc == LDAP_REFERRAL || rc == LDAP_NO_SUCH_OBJECT ) { @@ -1409,6 +1740,7 @@ update_cookie_retry: #endif } } else { + be_entry_release_w( op, e ); goto done; } } else { @@ -1422,524 +1754,32 @@ update_cookie_retry: } } - if ( e != NULL ) + if ( e != NULL ) { entry_free( e ); - -done : - - for ( ml = modlist; ml != NULL; ml = mlnext ) { - mlnext = ml->sml_next; - free( ml ); - } - - return; -} - - -static -int slap_mods_check_syncrepl( - Operation *op, - Modifications **mlp, - const char **text, - char *textbuf, - size_t textlen, - void *ctx ) -{ - int rc; - Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - AttributeDescription** descs; - int i; - Modifications *prevml = NULL; - Modifications *nextml = NULL; - Modifications *ml = *mlp; - - while ( ml != NULL ) { - AttributeDescription *ad = NULL; - - /* convert to attribute description */ - rc = slap_bv2ad( &ml->sml_type, &ml->sml_desc, text ); - - if( rc != LDAP_SUCCESS ) { - snprintf( textbuf, textlen, "%s: %s", - ml->sml_type.bv_val, *text ); - *text = textbuf; - return rc; - } - - ad = ml->sml_desc; - - if ( si->lastmod == LASTMOD_REQ ) { - descs = del_descs_lastmod; - } else { - descs = del_descs; - } - - for ( i = 0; descs[i] != NULL; i++ ) { - if ( ad == descs[i] ) { - if ( prevml == NULL ) { - mlp = &ml->sml_next; - prevml = NULL; - } else { - prevml->sml_next = ml->sml_next; - } - slap_mod_free( &ml->sml_mod, 0 ); - nextml = ml->sml_next; - free( ml ); - ml = nextml; - continue; - } - } - - if( slap_syntax_is_binary( ad->ad_type->sat_syntax ) - && !slap_ad_is_binary( ad )) { - /* attribute requires binary transfer */ - snprintf( textbuf, textlen, - "%s: requires ;binary transfer", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_UNDEFINED_TYPE; - } - - if( !slap_syntax_is_binary( ad->ad_type->sat_syntax ) - && slap_ad_is_binary( ad )) { - /* attribute requires binary transfer */ - snprintf( textbuf, textlen, - "%s: disallows ;binary transfer", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_UNDEFINED_TYPE; - } - - if( slap_ad_is_tag_range( ad )) { - /* attribute requires binary transfer */ - snprintf( textbuf, textlen, - "%s: inappropriate use of tag range option", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_UNDEFINED_TYPE; - } - - if ( is_at_obsolete( ad->ad_type ) && - ( ml->sml_op == LDAP_MOD_ADD || ml->sml_values != NULL ) ) { - /* - * attribute is obsolete, - * only allow replace/delete with no values - */ - snprintf( textbuf, textlen, - "%s: attribute is obsolete", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_CONSTRAINT_VIOLATION; - } - - /* - * check values - */ - if( ml->sml_values != NULL ) { - ber_len_t nvals; - slap_syntax_validate_func *validate = - ad->ad_type->sat_syntax->ssyn_validate; - slap_syntax_transform_func *pretty = - ad->ad_type->sat_syntax->ssyn_pretty; - - if( !pretty && !validate ) { - *text = "no validator for syntax"; - snprintf( textbuf, textlen, - "%s: no validator for syntax %s", - ml->sml_type.bv_val, - ad->ad_type->sat_syntax->ssyn_oid ); - *text = textbuf; - return LDAP_INVALID_SYNTAX; - } - - /* - * check that each value is valid per syntax - * and pretty if appropriate - */ - for( nvals = 0; ml->sml_values[nvals].bv_val; nvals++ ) { - struct berval pval = {0, NULL}; - if( pretty ) { - rc = pretty( ad->ad_type->sat_syntax, - &ml->sml_values[nvals], &pval, ctx ); - } else { - rc = validate( ad->ad_type->sat_syntax, - &ml->sml_values[nvals] ); - } - - if( rc != 0 ) { - snprintf( textbuf, textlen, - "%s: value #%ld invalid per syntax", - ml->sml_type.bv_val, (long) nvals ); - *text = textbuf; - return LDAP_INVALID_SYNTAX; - } - - if( pretty ) { - ber_memfree( ml->sml_values[nvals].bv_val ); - ml->sml_values[nvals] = pval; - } - } - - /* - * a rough single value check... an additional check is needed - * to catch add of single value to existing single valued attribute - */ - if ((ml->sml_op == LDAP_MOD_ADD || ml->sml_op == LDAP_MOD_REPLACE) - && nvals > 1 && is_at_single_value( ad->ad_type )) { - snprintf( textbuf, textlen, - "%s: multiple values provided", - ml->sml_type.bv_val ); - *text = textbuf; - return LDAP_CONSTRAINT_VIOLATION; - } - - if( nvals && ad->ad_type->sat_equality && - ad->ad_type->sat_equality->smr_normalize ) { - ml->sml_nvalues = ch_malloc( (nvals+1)*sizeof(struct berval) ); - for( nvals = 0; ml->sml_values[nvals].bv_val; nvals++ ) { - rc = ad->ad_type->sat_equality->smr_normalize( 0, - ad->ad_type->sat_syntax, ad->ad_type->sat_equality, - &ml->sml_values[nvals], &ml->sml_nvalues[nvals], ctx ); - if( rc ) { -#ifdef NEW_LOGGING - LDAP_LOG( OPERATION, DETAIL1, - "str2entry: NULL (ssyn_normalize %d)\n", rc, 0, 0 ); -#else - Debug( LDAP_DEBUG_ANY, - "<= str2entry NULL (ssyn_normalize %d)\n", rc, 0, 0 ); -#endif - snprintf( textbuf, textlen, - "%s: value #%ld normalization failed", - ml->sml_type.bv_val, (long) nvals ); - *text = textbuf; - return rc; - } - } - ml->sml_nvalues[nvals].bv_val = NULL; - ml->sml_nvalues[nvals].bv_len = 0; - } - } - prevml = ml; - ml = ml->sml_next; } - return LDAP_SUCCESS; -} - -static -int slap_mods_opattrs_syncrepl( - Operation *op, - Modifications *mods, - Modifications **modtail, - const char **text, - char *textbuf, size_t textlen ) -{ - struct berval name = {0, NULL}; - struct berval timestamp = {0, NULL}; - struct berval csn = {0, NULL}; - struct berval nname = {0, NULL}; - char timebuf[ LDAP_LUTIL_GENTIME_BUFSIZE ]; - char csnbuf[ LDAP_LUTIL_CSNSTR_BUFSIZE ]; - Modifications *mod; - Backend *be = op->o_bd; - syncinfo_t *si = ( syncinfo_t * ) be->syncinfo; - - int mop = LDAP_MOD_REPLACE; - - assert( modtail != NULL ); - assert( *modtail == NULL ); - - if( si->lastmod == LASTMOD_GEN ) { - struct tm *ltm; - time_t now = slap_get_time(); - - ldap_pvt_thread_mutex_lock( &gmtime_mutex ); - ltm = gmtime( &now ); - lutil_gentime( timebuf, sizeof(timebuf), ltm ); - - csn.bv_len = lutil_csnstr( csnbuf, sizeof( csnbuf ), 0, 0 ); - ldap_pvt_thread_mutex_unlock( &gmtime_mutex ); - csn.bv_val = csnbuf; - - timestamp.bv_val = timebuf; - timestamp.bv_len = strlen(timebuf); +done : - if( op->o_dn.bv_len == 0 ) { - name.bv_val = SLAPD_ANONYMOUS; - name.bv_len = sizeof(SLAPD_ANONYMOUS)-1; - nname = name; - } else { - name = op->o_dn; - nname = op->o_ndn; - } + if ( cnbva[0].bv_val ) { + ch_free( cnbva[0].bv_val ); + cnbva[0].bv_val = NULL; } - - if( op->o_tag == LDAP_REQ_ADD ) { - struct berval tmpval = {0, NULL}; - - if( global_schemacheck ) { - int rc = mods_structural_class( mods, &tmpval, - text, textbuf, textlen ); - if( rc != LDAP_SUCCESS ) { - return rc; - } - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_structuralObjectClass; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &tmpval ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_nvalues[0], &tmpval ); - mod->sml_nvalues[1].bv_len = 0; - mod->sml_nvalues[1].bv_val = NULL; - assert( mod->sml_nvalues[0].bv_val ); - *modtail = mod; - modtail = &mod->sml_next; - } - - if( si->lastmod == LASTMOD_GEN ) { - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_creatorsName; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &name ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_nvalues[0], &nname ); - mod->sml_nvalues[1].bv_len = 0; - mod->sml_nvalues[1].bv_val = NULL; - assert( mod->sml_nvalues[0].bv_val ); - *modtail = mod; - modtail = &mod->sml_next; - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_createTimestamp; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], ×tamp ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = NULL; - *modtail = mod; - modtail = &mod->sml_next; - } + if ( scbva[0].bv_val ) { + ch_free( scbva[0].bv_val ); + scbva[0].bv_val = NULL; } - if( si->lastmod == LASTMOD_GEN ) { - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_entryCSN; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &csn ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = NULL; - *modtail = mod; - modtail = &mod->sml_next; - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_modifiersName; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], &name ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_nvalues[0], &nname ); - mod->sml_nvalues[1].bv_len = 0; - mod->sml_nvalues[1].bv_val = NULL; - assert( mod->sml_nvalues[0].bv_val ); - *modtail = mod; - modtail = &mod->sml_next; - - mod = (Modifications *) ch_malloc( sizeof( Modifications ) ); - mod->sml_op = mop; - mod->sml_type.bv_val = NULL; - mod->sml_desc = slap_schema.si_ad_modifyTimestamp; - mod->sml_values = (BerVarray) ch_malloc( 2 * sizeof( struct berval ) ); - ber_dupbv( &mod->sml_values[0], ×tamp ); - mod->sml_values[1].bv_len = 0; - mod->sml_values[1].bv_val = NULL; - assert( mod->sml_values[0].bv_val ); - mod->sml_nvalues = NULL; - *modtail = mod; - modtail = &mod->sml_next; + if ( mlnext->sml_next ) { + slap_mods_free( mlnext->sml_next ); + mlnext->sml_next = NULL; } - *modtail = NULL; - return LDAP_SUCCESS; -} - - -static -int slap_mods2entry_syncrepl( - Modifications *mods, - Entry **e, - int repl_user, - const char **text, - char *textbuf, size_t textlen ) -{ - Attribute **tail = &(*e)->e_attrs; - assert( *tail == NULL ); - - *text = textbuf; - - for( ; mods != NULL; mods = mods->sml_next ) { - Attribute *attr; - - assert( mods->sml_desc != NULL ); - - attr = attr_find( (*e)->e_attrs, mods->sml_desc ); - - if( attr != NULL ) { -#define SLURPD_FRIENDLY -#ifdef SLURPD_FRIENDLY - ber_len_t i,j; - - if( !repl_user ) { - snprintf( textbuf, textlen, - "attribute '%s' provided more than once", - mods->sml_desc->ad_cname.bv_val ); - return LDAP_TYPE_OR_VALUE_EXISTS; - } - - for( i=0; attr->a_vals[i].bv_val; i++ ) { - /* count them */ - } - for( j=0; mods->sml_values[j].bv_val; j++ ) { - /* count them */ - } - j++; /* NULL */ - - attr->a_vals = ch_realloc( attr->a_vals, - sizeof( struct berval ) * (i+j) ); - - /* should check for duplicates */ - - AC_MEMCPY( &attr->a_vals[i], mods->sml_values, - sizeof( struct berval ) * j ); - - if( attr->a_nvals ) { - attr->a_nvals = ch_realloc( attr->a_nvals, - sizeof( struct berval ) * (i+j) ); - - AC_MEMCPY( &attr->a_nvals[i], mods->sml_nvalues, - sizeof( struct berval ) * j ); - - /* trim the mods array */ - ch_free( mods->sml_nvalues ); - mods->sml_nvalues = NULL; - } - - continue; -#else - snprintf( textbuf, textlen, - "attribute '%s' provided more than once", - mods->sml_desc->ad_cname.bv_val ); - return LDAP_TYPE_OR_VALUE_EXISTS; -#endif - } - - if( mods->sml_values[1].bv_val != NULL ) { - /* check for duplicates */ - int i, j; - MatchingRule *mr = mods->sml_desc->ad_type->sat_equality; - - /* check if the values we're adding already exist */ - if( mr == NULL || !mr->smr_match ) { - for ( i = 0; mods->sml_bvalues[i].bv_val != NULL; i++ ) { - /* test asserted values against themselves */ - for( j = 0; j < i; j++ ) { - if ( bvmatch( &mods->sml_bvalues[i], - &mods->sml_bvalues[j] ) ) { - /* value exists already */ - snprintf( textbuf, textlen, - "%s: value #%d provided more than once", - mods->sml_desc->ad_cname.bv_val, j ); - return LDAP_TYPE_OR_VALUE_EXISTS; - } - } - } - - } else { - int rc; - const char *text = NULL; - char textbuf[ SLAP_TEXT_BUFLEN ] = { '\0' }; - - rc = modify_check_duplicates( mods->sml_desc, mr, - NULL, mods->sml_bvalues, 0, - &text, textbuf, sizeof( textbuf ) ); - - if ( rc != LDAP_SUCCESS ) { - return rc; - } - } - } - - attr = ch_calloc( 1, sizeof(Attribute) ); - - /* move ad to attr structure */ - attr->a_desc = mods->sml_desc; - - /* move values to attr structure */ - /* should check for duplicates */ - attr->a_vals = mods->sml_values; - - attr->a_nvals = mods->sml_nvalues; - - *tail = attr; - tail = &attr->a_next; - } - - return LDAP_SUCCESS; -} - -void -avl_ber_bvfree( void *bv ) -{ - if( bv == NULL ) { - return; - } - if ( ((struct berval *)bv)->bv_val != NULL ) { - ber_memfree ( ((struct berval *)bv)->bv_val ); + for (ml = modlist ; ml != NULL; ml = mlnext ) { + mlnext = ml->sml_next; + free( ml ); } - ber_memfree ( (char *) bv ); -} - -static int -cookie_callback( - Operation* op, - SlapReply* rs -) -{ - syncinfo_t *si = op->o_callback->sc_private; - Attribute *a; - - if ( rs->sr_type != REP_SEARCH ) return LDAP_SUCCESS; - - a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_syncreplCookie ); - if ( a == NULL ) { - si->syncCookie = NULL; - } else { - si->syncCookie = ber_dupbv( NULL, &a->a_vals[0] ); - } - return LDAP_SUCCESS; + return; } static int @@ -1949,9 +1789,19 @@ dn_callback( ) { syncinfo_t *si = op->o_callback->sc_private; - + if ( rs->sr_type == REP_SEARCH ) { - si->syncUUID_ndn = &rs->sr_entry->e_nname; + if ( si->si_syncUUID_ndn.bv_val != NULL ) { +#ifdef NEW_LOGGING + LDAP_LOG( OPERATION, ERR, + "dn_callback : multiple entries match dn\n", 0, 0, 0 ); +#else + Debug( LDAP_DEBUG_ANY, + "dn_callback : multiple entries match dn\n", 0, 0, 0 ); +#endif + } else { + ber_dupbv_x( &si->si_syncUUID_ndn, &rs->sr_entry->e_nname, op->o_tmpmemctx ); + } } return LDAP_SUCCESS; @@ -1967,48 +1817,48 @@ nonpresent_callback( Attribute *a; int count = 0; struct berval* present_uuid = NULL; - slap_callback cb; - SlapReply rs_cb = {REP_RESULT}; struct nonpresent_entry *np_entry; if ( rs->sr_type == REP_RESULT ) { - count = avl_free( si->presentlist, avl_ber_bvfree ); - return LDAP_SUCCESS; + count = avl_free( si->si_presentlist, avl_ber_bvfree ); + si->si_presentlist = NULL; + } else if ( rs->sr_type == REP_SEARCH ) { a = attr_find( rs->sr_entry->e_attrs, slap_schema.si_ad_entryUUID ); - if ( a == NULL ) - return 0; + if ( a == NULL ) return 0; - present_uuid = avl_find( si->presentlist, &a->a_vals[0], syncuuid_cmp ); + present_uuid = avl_find( si->si_presentlist, &a->a_vals[0], + syncuuid_cmp ); if ( present_uuid == NULL ) { np_entry = (struct nonpresent_entry *) - ch_calloc( 1, sizeof( struct nonpresent_entry )); - np_entry->dn = ber_dupbv( NULL, &rs->sr_entry->e_name ); - np_entry->ndn = ber_dupbv( NULL, &rs->sr_entry->e_nname ); - LDAP_LIST_INSERT_HEAD( &si->nonpresentlist, np_entry, np_link ); + ch_calloc( 1, sizeof( struct nonpresent_entry )); + np_entry->npe_name = ber_dupbv( NULL, &rs->sr_entry->e_name ); + np_entry->npe_nname = ber_dupbv( NULL, &rs->sr_entry->e_nname ); + LDAP_LIST_INSERT_HEAD( &si->si_nonpresentlist, np_entry, npe_link ); + } else { - avl_delete( &si->presentlist, + avl_delete( &si->si_presentlist, &a->a_vals[0], syncuuid_cmp ); + ch_free( present_uuid->bv_val ); + ch_free( present_uuid ); } - return LDAP_SUCCESS; - } else { - return LDAP_SUCCESS; } - + return LDAP_SUCCESS; } static int null_callback( Operation* op, - SlapReply* rs -) + SlapReply* rs ) { if ( rs->sr_err != LDAP_SUCCESS && - rs->sr_err != LDAP_REFERRAL && - rs->sr_err != LDAP_ALREADY_EXISTS && - rs->sr_err != LDAP_NO_SUCH_OBJECT ) { + rs->sr_err != LDAP_REFERRAL && + rs->sr_err != LDAP_ALREADY_EXISTS && + rs->sr_err != LDAP_NO_SUCH_OBJECT && + rs->sr_err != LDAP_NOT_ALLOWED_ON_NONLEAF ) + { #ifdef NEW_LOGGING LDAP_LOG( OPERATION, ERR, "null_callback : error code 0x%x\n", @@ -2022,44 +1872,117 @@ null_callback( return LDAP_SUCCESS; } +Entry * +slap_create_syncrepl_entry( + Backend *be, + struct berval *context_csn, + struct berval *rdn, + struct berval *cn ) +{ + Entry* e; + + struct berval bv; + + e = ( Entry * ) ch_calloc( 1, sizeof( Entry )); + + attr_merge( e, slap_schema.si_ad_objectClass, ocbva, NULL ); + + attr_merge_one( e, slap_schema.si_ad_structuralObjectClass, + &ocbva[1], NULL ); + + attr_merge_one( e, slap_schema.si_ad_cn, cn, NULL ); + + if ( context_csn ) { + attr_merge_one( e, slap_schema.si_ad_syncreplCookie, + context_csn, NULL ); + } + + bv.bv_val = "{}"; + bv.bv_len = sizeof("{}")-1; + attr_merge_one( e, slap_schema.si_ad_subtreeSpecification, &bv, NULL ); + + build_new_dn( &e->e_name, &be->be_nsuffix[0], rdn, NULL ); + ber_dupbv( &e->e_nname, &e->e_name ); -char ** -str2clist( char **out, char *in, const char *brkstr ) + return e; +} + +struct berval * +slap_uuidstr_from_normalized( + struct berval* uuidstr, + struct berval* normalized, + void *ctx ) { - char *str; - char *s; - char *lasts; - int i, j; - const char *text; - char **new; + struct berval *new; + unsigned char nibble; + int i, d = 0; - /* find last element in list */ - for (i = 0; out && out[i]; i++); - - /* protect the input string from strtok */ - str = ch_strdup( in ); - - /* Count words in string */ - j=1; - for ( s = str; *s; s++ ) { - if ( strchr( brkstr, *s ) != NULL ) { - j++; - } + if ( normalized == NULL ) + return NULL; + + if ( normalized->bv_len != 16 ) { + return NULL; } - out = ch_realloc( out, ( i + j + 1 ) * sizeof( char * ) ); - new = out + i; - for ( s = ldap_pvt_strtok( str, brkstr, &lasts ); - s != NULL; - s = ldap_pvt_strtok( NULL, brkstr, &lasts ) ) - { - *new = ch_strdup( s ); - new++; + if ( uuidstr ) { + new = uuidstr; + } else { + new = (struct berval *)sl_malloc( sizeof(struct berval), ctx ); + } + + new->bv_len = 36; + + if (( new->bv_val = sl_malloc( new->bv_len + 1, ctx )) == NULL) { + if ( !uuidstr ) + sl_free( new, ctx ); + return NULL; } - *new = NULL; - free( str ); - return( out ); + for ( i = 0; i < 16; i++ ) { + if ( i == 4 || i == 6 || i == 8 || i == 10 ) { + new->bv_val[(i<<1)+d] = '-'; + d += 1; + } + + nibble = (normalized->bv_val[i] >> 4) & 0xF; + if ( nibble < 10 ) { + new->bv_val[(i<<1)+d] = nibble + '0'; + } else { + new->bv_val[(i<<1)+d] = nibble - 10 + 'a'; + } + + nibble = (normalized->bv_val[i]) & 0xF; + if ( nibble < 10 ) { + new->bv_val[(i<<1)+d+1] = nibble + '0'; + } else { + new->bv_val[(i<<1)+d+1] = nibble - 10 + 'a'; + } + } + + new->bv_val[new->bv_len] = '\0'; + + return new; +} + +static int +syncuuid_cmp( const void* v_uuid1, const void* v_uuid2 ) +{ + const struct berval *uuid1 = v_uuid1; + const struct berval *uuid2 = v_uuid2; + int rc = uuid1->bv_len - uuid2->bv_len; + if ( rc ) return rc; + return ( strcmp( uuid1->bv_val, uuid2->bv_val ) ); +} + +static void +avl_ber_bvfree( void *bv ) +{ + if( bv == NULL ) { + return; + } + if ( ((struct berval *)bv)->bv_val != NULL ) { + ch_free ( ((struct berval *)bv)->bv_val ); + } + ch_free ( (char *) bv ); } -#endif