1998-12-29 04:53:15 +08:00
|
|
|
/*
|
|
|
|
* Copyright 1998-1999 The OpenLDAP Foundation, All Rights Reserved.
|
|
|
|
* COPYING RESTRICTIONS APPLY, see COPYRIGHT file
|
|
|
|
*/
|
1999-06-04 03:22:33 +08:00
|
|
|
|
|
|
|
/* LDAPv3 Controls (RFC2251)
|
|
|
|
*
|
|
|
|
* Controls ::= SEQUENCE OF Control
|
|
|
|
*
|
|
|
|
* Control ::= SEQUENCE {
|
|
|
|
* controlType LDAPOID,
|
|
|
|
* criticality BOOLEAN DEFAULT FALSE,
|
|
|
|
* controlValue OCTET STRING OPTIONAL
|
|
|
|
* }
|
1998-12-23 10:31:35 +08:00
|
|
|
*/
|
|
|
|
|
|
|
|
#include "portable.h"
|
|
|
|
|
1999-06-03 08:37:44 +08:00
|
|
|
#include <ac/stdlib.h>
|
1999-02-12 05:16:03 +08:00
|
|
|
|
1998-12-23 10:31:35 +08:00
|
|
|
#include <ac/time.h>
|
|
|
|
#include <ac/string.h>
|
|
|
|
|
|
|
|
#include "ldap-int.h"
|
|
|
|
|
1999-05-19 09:12:33 +08:00
|
|
|
|
|
|
|
/*
|
|
|
|
* ldap_int_put_controls
|
|
|
|
*/
|
|
|
|
|
1999-07-13 13:13:33 +08:00
|
|
|
int
|
|
|
|
ldap_int_put_controls(
|
1999-05-19 09:12:33 +08:00
|
|
|
LDAP *ld,
|
1999-07-13 13:13:33 +08:00
|
|
|
LDAPControl *const *ctrls,
|
1999-05-19 09:12:33 +08:00
|
|
|
BerElement *ber )
|
|
|
|
{
|
1999-07-13 13:13:33 +08:00
|
|
|
LDAPControl *const *c;
|
1999-05-19 09:12:33 +08:00
|
|
|
|
|
|
|
assert( ld != NULL );
|
|
|
|
assert( ber != NULL );
|
|
|
|
|
|
|
|
if( ctrls == NULL ) {
|
|
|
|
/* use default server controls */
|
|
|
|
ctrls = ld->ld_sctrls;
|
|
|
|
}
|
|
|
|
|
|
|
|
if( ctrls == NULL || *ctrls == NULL ) {
|
|
|
|
return LDAP_SUCCESS;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ( ld->ld_version < LDAP_VERSION3 ) {
|
|
|
|
/* LDAPv2 doesn't support controls,
|
|
|
|
* error if any control is critical
|
|
|
|
*/
|
|
|
|
for( c = ctrls ; *c != NULL; c++ ) {
|
|
|
|
if( (*c)->ldctl_iscritical ) {
|
|
|
|
ld->ld_errno = LDAP_NOT_SUPPORTED;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return LDAP_SUCCESS;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* Controls are encoded as a sequence of sequences */
|
1999-06-19 07:53:05 +08:00
|
|
|
if( ber_printf( ber, "t{"/*}*/, LDAP_TAG_CONTROLS ) == -1 ) {
|
1999-05-19 09:12:33 +08:00
|
|
|
ld->ld_errno = LDAP_ENCODING_ERROR;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
|
|
|
|
for( c = ctrls ; *c != NULL; c++ ) {
|
1999-06-19 07:53:05 +08:00
|
|
|
if ( ber_printf( ber, "{s" /*}*/,
|
1999-05-19 09:12:33 +08:00
|
|
|
(*c)->ldctl_oid ) == -1 )
|
|
|
|
{
|
|
|
|
ld->ld_errno = LDAP_ENCODING_ERROR;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
|
|
|
|
if( (*c)->ldctl_iscritical /* only if true */
|
|
|
|
&& ( ber_printf( ber, "b",
|
1999-06-19 07:53:05 +08:00
|
|
|
(ber_int_t) (*c)->ldctl_iscritical ) == -1 ) )
|
1999-05-19 09:12:33 +08:00
|
|
|
{
|
|
|
|
ld->ld_errno = LDAP_ENCODING_ERROR;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
|
|
|
|
if( (*c)->ldctl_value.bv_val != NULL /* only if we have a value */
|
|
|
|
&& ( ber_printf( ber, "O",
|
|
|
|
&((*c)->ldctl_value) ) == -1 ) )
|
|
|
|
{
|
|
|
|
ld->ld_errno = LDAP_ENCODING_ERROR;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
1999-06-19 07:53:05 +08:00
|
|
|
if( ber_printf( ber, /*{*/"}" ) == -1 ) {
|
1999-05-19 09:12:33 +08:00
|
|
|
ld->ld_errno = LDAP_ENCODING_ERROR;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
|
1999-06-19 07:53:05 +08:00
|
|
|
if( ber_printf( ber, /*{*/"}" ) == -1 ) {
|
1999-05-19 09:12:33 +08:00
|
|
|
ld->ld_errno = LDAP_ENCODING_ERROR;
|
|
|
|
return ld->ld_errno;
|
|
|
|
}
|
|
|
|
|
|
|
|
return LDAP_SUCCESS;
|
|
|
|
}
|
|
|
|
|
1999-06-17 01:11:14 +08:00
|
|
|
int ldap_int_get_controls(
|
1999-05-28 10:15:57 +08:00
|
|
|
BerElement *ber,
|
1999-06-17 01:11:14 +08:00
|
|
|
LDAPControl ***ctrls )
|
1999-05-19 09:12:33 +08:00
|
|
|
{
|
1999-05-28 10:15:57 +08:00
|
|
|
int nctrls;
|
1999-06-19 07:53:05 +08:00
|
|
|
ber_tag_t tag;
|
|
|
|
ber_len_t len;
|
1999-05-28 10:15:57 +08:00
|
|
|
char *opaque;
|
|
|
|
|
|
|
|
assert( ber != NULL );
|
1999-05-19 09:12:33 +08:00
|
|
|
|
1999-06-29 06:47:20 +08:00
|
|
|
if( ctrls == NULL ) {
|
|
|
|
return LDAP_SUCCESS;
|
|
|
|
}
|
1999-05-28 10:15:57 +08:00
|
|
|
*ctrls = NULL;
|
|
|
|
|
1999-05-29 03:33:05 +08:00
|
|
|
len = ber_pvt_ber_remaining(ber);
|
1999-05-28 10:15:57 +08:00
|
|
|
|
|
|
|
if( len == 0) {
|
|
|
|
/* no controls */
|
|
|
|
return LDAP_SUCCESS;
|
|
|
|
}
|
|
|
|
|
1999-06-29 06:47:20 +08:00
|
|
|
|
1999-05-28 10:15:57 +08:00
|
|
|
if(( tag = ber_peek_tag( ber, &len )) != LDAP_TAG_CONTROLS ) {
|
|
|
|
if( tag == LBER_ERROR ) {
|
|
|
|
/* decoding error */
|
|
|
|
return LDAP_DECODING_ERROR;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* ignore unexpected input */
|
|
|
|
return LDAP_SUCCESS;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* set through each element */
|
|
|
|
nctrls = 0;
|
1999-05-29 09:19:14 +08:00
|
|
|
*ctrls = LDAP_MALLOC( 1 * sizeof(LDAPControl *) );
|
1999-05-28 10:15:57 +08:00
|
|
|
|
|
|
|
if( *ctrls == NULL ) {
|
|
|
|
return LDAP_NO_MEMORY;
|
|
|
|
}
|
|
|
|
|
|
|
|
ctrls[nctrls] = NULL;
|
|
|
|
|
|
|
|
for( tag = ber_first_element( ber, &len, &opaque );
|
1999-05-28 11:24:41 +08:00
|
|
|
tag != LBER_ERROR;
|
1999-05-28 10:15:57 +08:00
|
|
|
tag = ber_next_element( ber, &len, opaque ) )
|
|
|
|
{
|
|
|
|
LDAPControl *tctrl;
|
|
|
|
LDAPControl **tctrls;
|
|
|
|
|
1999-05-29 09:19:14 +08:00
|
|
|
tctrl = LDAP_CALLOC( 1, sizeof(LDAPControl) );
|
1999-05-28 10:15:57 +08:00
|
|
|
|
|
|
|
/* allocate pointer space for current controls (nctrls)
|
|
|
|
* + this control + extra NULL
|
|
|
|
*/
|
|
|
|
tctrls = (tctrl == NULL) ? NULL :
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_REALLOC(*ctrls, (nctrls+2) * sizeof(LDAPControl *));
|
1999-05-28 10:15:57 +08:00
|
|
|
|
|
|
|
if( tctrls == NULL ) {
|
|
|
|
/* one of the above allocation failed */
|
|
|
|
|
|
|
|
if( tctrl != NULL ) {
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( tctrl );
|
1999-05-28 10:15:57 +08:00
|
|
|
}
|
1999-05-19 09:12:33 +08:00
|
|
|
|
1999-05-28 10:15:57 +08:00
|
|
|
ldap_controls_free(*ctrls);
|
|
|
|
*ctrls = NULL;
|
|
|
|
|
|
|
|
return LDAP_NO_MEMORY;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
tctrls[nctrls++] = tctrl;
|
|
|
|
tctrls[nctrls] = NULL;
|
|
|
|
|
1999-06-19 07:53:05 +08:00
|
|
|
tag = ber_scanf( ber, "{a" /*}*/, &tctrl->ldctl_oid );
|
1999-05-28 10:15:57 +08:00
|
|
|
|
|
|
|
if( tag != LBER_ERROR ) {
|
|
|
|
tag = ber_peek_tag( ber, &len );
|
|
|
|
}
|
|
|
|
|
|
|
|
if( tag == LBER_BOOLEAN ) {
|
1999-06-19 07:53:05 +08:00
|
|
|
ber_int_t crit;
|
|
|
|
tag = ber_scanf( ber, "b", &crit );
|
|
|
|
tctrl->ldctl_iscritical = crit ? (char) 0 : (char) ~0;
|
1999-05-28 10:15:57 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
if( tag != LBER_ERROR ) {
|
|
|
|
tag = ber_peek_tag( ber, &len );
|
|
|
|
}
|
|
|
|
|
|
|
|
if( tag == LBER_OCTETSTRING ) {
|
|
|
|
tag = ber_scanf( ber, "o", &tctrl->ldctl_value );
|
|
|
|
|
|
|
|
} else {
|
|
|
|
tctrl->ldctl_value.bv_val = NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
if( tag == LBER_ERROR ) {
|
|
|
|
*ctrls = NULL;
|
|
|
|
ldap_controls_free( tctrls );
|
|
|
|
return LDAP_DECODING_ERROR;
|
|
|
|
}
|
|
|
|
|
|
|
|
*ctrls = tctrls;
|
|
|
|
}
|
|
|
|
|
|
|
|
return LDAP_SUCCESS;
|
1999-05-19 09:12:33 +08:00
|
|
|
}
|
|
|
|
|
1998-12-23 10:31:35 +08:00
|
|
|
/*
|
|
|
|
* Free a LDAPControl
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
ldap_control_free( LDAPControl *c )
|
|
|
|
{
|
1999-06-06 04:18:32 +08:00
|
|
|
assert( c != NULL );
|
|
|
|
|
1998-12-23 10:31:35 +08:00
|
|
|
if ( c != NULL ) {
|
|
|
|
if( c->ldctl_oid != NULL) {
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( c->ldctl_oid );
|
1998-12-23 10:31:35 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
if( c->ldctl_value.bv_val != NULL ) {
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( c->ldctl_value.bv_val );
|
1998-12-23 10:31:35 +08:00
|
|
|
}
|
|
|
|
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( c );
|
1998-12-23 10:31:35 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Free an array of LDAPControl's
|
|
|
|
*/
|
|
|
|
void
|
|
|
|
ldap_controls_free( LDAPControl **controls )
|
|
|
|
{
|
1999-06-06 04:18:32 +08:00
|
|
|
assert( controls != NULL );
|
|
|
|
|
1998-12-23 10:31:35 +08:00
|
|
|
if ( controls != NULL ) {
|
|
|
|
LDAPControl *c;
|
|
|
|
|
|
|
|
for(c = *controls; c != NULL; c++) {
|
|
|
|
ldap_control_free( c );
|
|
|
|
}
|
|
|
|
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( controls );
|
1998-12-23 10:31:35 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Duplicate an array of LDAPControl
|
|
|
|
*/
|
1999-07-13 13:13:33 +08:00
|
|
|
LDAPControl **
|
|
|
|
ldap_controls_dup( LDAPControl *const *controls )
|
1998-12-23 10:31:35 +08:00
|
|
|
{
|
|
|
|
LDAPControl **new;
|
|
|
|
int i;
|
|
|
|
|
|
|
|
if ( controls == NULL ) {
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* count the controls */
|
|
|
|
for(i=0; controls[i] != NULL; i++) /* empty */ ;
|
|
|
|
|
|
|
|
if( i < 1 ) {
|
|
|
|
/* no controls to duplicate */
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
1999-05-29 09:19:14 +08:00
|
|
|
new = (LDAPControl **) LDAP_MALLOC( i * sizeof(LDAPControl *) );
|
1998-12-23 10:31:35 +08:00
|
|
|
|
|
|
|
if( new == NULL ) {
|
|
|
|
/* memory allocation failure */
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* duplicate the controls */
|
|
|
|
for(i=0; controls[i] != NULL; i++) {
|
|
|
|
new[i] = ldap_control_dup( controls[i] );
|
|
|
|
|
|
|
|
if( new[i] == NULL ) {
|
|
|
|
ldap_controls_free( new );
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
new[i] = NULL;
|
|
|
|
|
|
|
|
return new;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Duplicate a LDAPControl
|
|
|
|
*/
|
1999-07-13 13:13:33 +08:00
|
|
|
LDAPControl *
|
|
|
|
ldap_control_dup( const LDAPControl *c )
|
1998-12-23 10:31:35 +08:00
|
|
|
{
|
|
|
|
LDAPControl *new;
|
|
|
|
|
|
|
|
if ( c == NULL ) {
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
1999-05-29 09:19:14 +08:00
|
|
|
new = (LDAPControl *) LDAP_MALLOC( sizeof(LDAPControl) );
|
1998-12-23 10:31:35 +08:00
|
|
|
|
|
|
|
if( new == NULL ) {
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
if( c->ldctl_oid != NULL ) {
|
1999-06-03 06:28:22 +08:00
|
|
|
new->ldctl_oid = LDAP_STRDUP( c->ldctl_oid );
|
1998-12-23 10:31:35 +08:00
|
|
|
|
|
|
|
if(new->ldctl_oid == NULL) {
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( new );
|
1998-12-23 10:31:35 +08:00
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
new->ldctl_oid = NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
if( c->ldctl_value.bv_len > 0 ) {
|
1999-05-29 09:19:14 +08:00
|
|
|
new->ldctl_value.bv_val = (char *) LDAP_MALLOC( c->ldctl_value.bv_len );
|
1998-12-23 10:31:35 +08:00
|
|
|
|
|
|
|
if(new->ldctl_value.bv_val == NULL) {
|
|
|
|
if(new->ldctl_oid != NULL) {
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( new->ldctl_oid );
|
1998-12-23 10:31:35 +08:00
|
|
|
}
|
1999-05-29 09:19:14 +08:00
|
|
|
LDAP_FREE( new );
|
1998-12-23 10:31:35 +08:00
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
SAFEMEMCPY( new->ldctl_value.bv_val, c->ldctl_value.bv_val,
|
|
|
|
c->ldctl_value.bv_len );
|
|
|
|
|
|
|
|
new->ldctl_value.bv_len = c->ldctl_value.bv_len;
|
|
|
|
|
|
|
|
} else {
|
|
|
|
new->ldctl_value.bv_len = 0;
|
|
|
|
new->ldctl_value.bv_val = NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
new->ldctl_iscritical = c->ldctl_iscritical;
|
|
|
|
return new;
|
1999-05-28 10:15:57 +08:00
|
|
|
}
|