1998-08-09 08:43:13 +08:00
|
|
|
/* result.c - routines to send ldap results, errors, and referrals */
|
1999-09-09 03:06:24 +08:00
|
|
|
/* $OpenLDAP$ */
|
1998-08-09 08:43:13 +08:00
|
|
|
|
|
|
|
#include "portable.h"
|
1998-10-25 09:41:42 +08:00
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
1999-05-06 22:46:48 +08:00
|
|
|
#include <ac/socket.h>
|
1998-10-25 09:41:42 +08:00
|
|
|
#include <ac/errno.h>
|
|
|
|
#include <ac/signal.h>
|
|
|
|
#include <ac/string.h>
|
1999-08-07 13:36:48 +08:00
|
|
|
#include <ac/ctype.h>
|
1998-10-25 09:41:42 +08:00
|
|
|
#include <ac/time.h>
|
1999-07-16 10:45:46 +08:00
|
|
|
#include <ac/unistd.h>
|
1998-10-25 09:41:42 +08:00
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
#include "slap.h"
|
|
|
|
|
1999-05-19 09:12:33 +08:00
|
|
|
/* we need LBER internals */
|
|
|
|
#include "../../libraries/liblber/lber-int.h"
|
|
|
|
|
1999-10-27 12:36:10 +08:00
|
|
|
static char *v2ref( struct berval **ref, const char *text )
|
1998-08-09 08:43:13 +08:00
|
|
|
{
|
1999-10-27 12:36:10 +08:00
|
|
|
size_t len = 0, i = 0;
|
1999-07-16 10:45:46 +08:00
|
|
|
char *v2;
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-11-06 06:50:58 +08:00
|
|
|
if(ref == NULL)
|
|
|
|
{
|
|
|
|
if (text)
|
|
|
|
return ch_strdup(text);
|
|
|
|
else
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
1999-10-27 12:36:10 +08:00
|
|
|
if (text) {
|
|
|
|
len = strlen( text );
|
|
|
|
if (text[len-1] != '\n')
|
|
|
|
i = 1;
|
|
|
|
}
|
|
|
|
v2 = ch_malloc( len+i+sizeof("Referral:") );
|
|
|
|
if (text) {
|
|
|
|
strcpy(v2, text);
|
|
|
|
if (i)
|
|
|
|
v2[len++] = '\n';
|
|
|
|
}
|
|
|
|
strcpy( v2+len, "Referral:" );
|
1999-11-02 07:23:41 +08:00
|
|
|
len += sizeof("Referral:");
|
1998-10-24 06:20:45 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
for( i=0; ref[i] != NULL; i++ ) {
|
|
|
|
v2 = ch_realloc( v2, len + ref[i]->bv_len + 1 );
|
|
|
|
v2[len-1] = '\n';
|
|
|
|
memcpy(&v2[len], ref[i]->bv_val, ref[i]->bv_len );
|
1999-12-09 07:31:11 +08:00
|
|
|
len += ref[i]->bv_len;
|
|
|
|
if (ref[i]->bv_val[ref[i]->bv_len-1] != '/')
|
|
|
|
++len;
|
1999-07-16 10:45:46 +08:00
|
|
|
}
|
1999-07-08 02:51:39 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
v2[len-1] = '\0';
|
|
|
|
return v2;
|
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
static ber_tag_t req2res( ber_tag_t tag )
|
|
|
|
{
|
|
|
|
switch( tag ) {
|
|
|
|
case LDAP_REQ_ADD:
|
|
|
|
case LDAP_REQ_BIND:
|
|
|
|
case LDAP_REQ_COMPARE:
|
|
|
|
case LDAP_REQ_EXTENDED:
|
|
|
|
case LDAP_REQ_MODIFY:
|
|
|
|
case LDAP_REQ_MODRDN:
|
|
|
|
tag++;
|
|
|
|
break;
|
|
|
|
|
|
|
|
case LDAP_REQ_DELETE:
|
|
|
|
tag = LDAP_RES_DELETE;
|
|
|
|
break;
|
|
|
|
|
|
|
|
case LDAP_REQ_ABANDON:
|
|
|
|
case LDAP_REQ_UNBIND:
|
|
|
|
tag = LBER_SEQUENCE;
|
|
|
|
break;
|
|
|
|
|
|
|
|
case LDAP_REQ_SEARCH:
|
|
|
|
tag = LDAP_RES_SEARCH_RESULT;
|
|
|
|
break;
|
|
|
|
|
|
|
|
default:
|
|
|
|
assert( 0 );
|
|
|
|
tag = LBER_ERROR;
|
|
|
|
}
|
|
|
|
return tag;
|
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
static void trim_refs_urls(
|
|
|
|
struct berval **refs )
|
|
|
|
{
|
|
|
|
unsigned i;
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if( refs == NULL ) return;
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
for( i=0; refs[i] != NULL; i++ ) {
|
1999-09-06 06:32:01 +08:00
|
|
|
if( refs[i]->bv_len > sizeof("ldap://")-1 &&
|
1999-07-16 10:45:46 +08:00
|
|
|
strncasecmp( refs[i]->bv_val, "ldap://",
|
|
|
|
sizeof("ldap://")-1 ) == 0 )
|
|
|
|
{
|
|
|
|
unsigned j;
|
1999-09-06 06:32:01 +08:00
|
|
|
for( j=sizeof("ldap://")-1; j<refs[i]->bv_len ; j++ ) {
|
1999-09-06 06:13:22 +08:00
|
|
|
if( refs[i]->bv_val[j] == '/' ) {
|
1999-07-16 10:45:46 +08:00
|
|
|
refs[i]->bv_val[j] = '\0';
|
|
|
|
refs[i]->bv_len = j;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
1999-07-08 02:51:39 +08:00
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
1999-07-16 10:45:46 +08:00
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
struct berval **get_entry_referrals(
|
|
|
|
Backend *be,
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
Entry *e )
|
|
|
|
{
|
|
|
|
Attribute *attr;
|
|
|
|
struct berval **refs;
|
|
|
|
unsigned i, j;
|
1999-03-22 15:14:54 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
attr = attr_find( e->e_attrs, "ref" );
|
1999-06-29 08:03:34 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if( attr == NULL ) return NULL;
|
|
|
|
|
|
|
|
for( i=0; attr->a_vals[i] != NULL; i++ ) {
|
|
|
|
/* count references */
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if( i < 1 ) return NULL;
|
1999-07-08 02:51:39 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
refs = ch_malloc( i + 1 );
|
|
|
|
|
|
|
|
for( i=0, j=0; attr->a_vals[i] != NULL; i++ ) {
|
|
|
|
unsigned k;
|
|
|
|
struct berval *ref = ber_bvdup( attr->a_vals[i] );
|
|
|
|
|
|
|
|
/* trim the label */
|
|
|
|
for( k=0; k<ref->bv_len; k++ ) {
|
|
|
|
if( isspace(ref->bv_val[k]) ) {
|
|
|
|
ref->bv_val[k] = '\0';
|
|
|
|
ref->bv_len = k;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if( ref->bv_len > 0 ) {
|
|
|
|
refs[j++] = ref;
|
|
|
|
|
|
|
|
} else {
|
|
|
|
ber_bvfree( ref );
|
|
|
|
}
|
1999-06-29 08:03:34 +08:00
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
refs[j] = NULL;
|
|
|
|
|
|
|
|
if( j == 0 ) {
|
|
|
|
ber_bvecfree( refs );
|
|
|
|
refs = NULL;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
/* we should check that a referral value exists... */
|
|
|
|
|
|
|
|
return refs;
|
|
|
|
}
|
|
|
|
|
|
|
|
static long send_ldap_ber(
|
|
|
|
Connection *conn,
|
|
|
|
BerElement *ber )
|
|
|
|
{
|
1999-11-08 23:38:59 +08:00
|
|
|
ber_len_t bytes;
|
|
|
|
|
|
|
|
ber_get_option( ber, LBER_OPT_BER_BYTES_TO_WRITE, &bytes );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
/* write only one pdu at a time - wait til it's our turn */
|
1999-03-22 15:14:54 +08:00
|
|
|
ldap_pvt_thread_mutex_lock( &conn->c_write_mutex );
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
/* lock the connection */
|
1999-03-22 15:14:54 +08:00
|
|
|
ldap_pvt_thread_mutex_lock( &conn->c_mutex );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
|
|
|
/* write the pdu */
|
1999-07-16 10:45:46 +08:00
|
|
|
while( 1 ) {
|
1999-04-24 04:22:18 +08:00
|
|
|
int err;
|
|
|
|
|
|
|
|
if ( connection_state_closing( conn ) ) {
|
|
|
|
ldap_pvt_thread_mutex_unlock( &conn->c_mutex );
|
|
|
|
ldap_pvt_thread_mutex_unlock( &conn->c_write_mutex );
|
1999-08-27 13:45:53 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
return 0;
|
1999-04-24 04:22:18 +08:00
|
|
|
}
|
|
|
|
|
1999-08-27 13:45:53 +08:00
|
|
|
if ( ber_flush( conn->c_sb, ber, 0 ) == 0 ) {
|
1999-04-24 04:22:18 +08:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
err = errno;
|
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
/*
|
|
|
|
* we got an error. if it's ewouldblock, we need to
|
|
|
|
* wait on the socket being writable. otherwise, figure
|
|
|
|
* it's a hard error and return.
|
|
|
|
*/
|
|
|
|
|
1999-08-19 08:40:18 +08:00
|
|
|
Debug( LDAP_DEBUG_CONNS, "ber_flush failed errno=%d reason=\"%s\"\n",
|
1999-08-30 04:13:33 +08:00
|
|
|
err, STRERROR(err), 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-04-08 11:57:25 +08:00
|
|
|
if ( err != EWOULDBLOCK && err != EAGAIN ) {
|
1999-03-23 08:38:57 +08:00
|
|
|
connection_closing( conn );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-03-22 15:14:54 +08:00
|
|
|
ldap_pvt_thread_mutex_unlock( &conn->c_mutex );
|
|
|
|
ldap_pvt_thread_mutex_unlock( &conn->c_write_mutex );
|
1999-08-27 13:45:53 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
return( -1 );
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
/* wait for socket to be write-ready */
|
|
|
|
conn->c_writewaiter = 1;
|
1999-05-19 09:12:33 +08:00
|
|
|
slapd_set_write( ber_pvt_sb_get_desc( conn->c_sb ), 1 );
|
1998-08-21 14:33:42 +08:00
|
|
|
|
1999-03-22 15:14:54 +08:00
|
|
|
ldap_pvt_thread_cond_wait( &conn->c_write_cv, &conn->c_mutex );
|
|
|
|
conn->c_writewaiter = 0;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-03-23 03:46:44 +08:00
|
|
|
ldap_pvt_thread_mutex_unlock( &conn->c_mutex );
|
1999-03-22 15:14:54 +08:00
|
|
|
ldap_pvt_thread_mutex_unlock( &conn->c_write_mutex );
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
return bytes;
|
|
|
|
}
|
|
|
|
|
|
|
|
static void
|
|
|
|
send_ldap_response(
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
ber_tag_t tag,
|
|
|
|
ber_int_t msgid,
|
|
|
|
ber_int_t err,
|
1999-08-21 03:50:11 +08:00
|
|
|
const char *matched,
|
|
|
|
const char *text,
|
1999-07-16 10:45:46 +08:00
|
|
|
struct berval **ref,
|
1999-08-21 03:50:11 +08:00
|
|
|
const char *resoid,
|
1999-12-10 12:52:32 +08:00
|
|
|
struct berval *resdata,
|
|
|
|
struct berval *sasldata,
|
1999-07-16 10:45:46 +08:00
|
|
|
LDAPControl **ctrls
|
|
|
|
)
|
|
|
|
{
|
|
|
|
BerElement *ber;
|
|
|
|
int rc;
|
|
|
|
long bytes;
|
|
|
|
|
|
|
|
assert( ctrls == NULL ); /* ctrls not implemented */
|
|
|
|
|
|
|
|
ber = ber_alloc_t( LBER_USE_DER );
|
|
|
|
|
1999-08-04 04:28:16 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "send_ldap_response: msgid=%ld tag=%ld err=%ld\n",
|
|
|
|
(long) msgid, (long) tag, (long) err );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
if ( ber == NULL ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_alloc failed\n", 0, 0, 0 );
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
#ifdef LDAP_CONNECTIONLESS
|
|
|
|
if ( op->o_cldap ) {
|
|
|
|
rc = ber_printf( ber, "{is{t{ess}}}", msgid, "", tag,
|
|
|
|
err, matched ? matched : "", text ? text : "" );
|
|
|
|
} else
|
|
|
|
#endif
|
|
|
|
{
|
|
|
|
rc = ber_printf( ber, "{it{ess",
|
|
|
|
msgid, tag, err,
|
|
|
|
matched == NULL ? "" : matched,
|
|
|
|
text == NULL ? "" : text );
|
|
|
|
|
|
|
|
if( rc != -1 && ref != NULL ) {
|
|
|
|
rc = ber_printf( ber, "{V}", ref );
|
|
|
|
}
|
|
|
|
|
1999-12-10 12:52:32 +08:00
|
|
|
if( rc != -1 && sasldata != NULL ) {
|
|
|
|
rc = ber_printf( ber, "tO",
|
|
|
|
LDAP_TAG_SASL_RES_CREDS, sasldata );
|
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if( rc != -1 && resoid != NULL ) {
|
1999-12-10 12:52:32 +08:00
|
|
|
rc = ber_printf( ber, "ts",
|
|
|
|
LDAP_TAG_EXOP_RES_OID, resoid );
|
1999-07-16 10:45:46 +08:00
|
|
|
}
|
|
|
|
|
1999-12-10 12:52:32 +08:00
|
|
|
if( rc != -1 && resdata != NULL ) {
|
|
|
|
rc = ber_printf( ber, "tO",
|
|
|
|
LDAP_TAG_EXOP_RES_VALUE, resdata );
|
1999-07-16 10:45:46 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
if( rc != -1 ) {
|
|
|
|
rc = ber_printf( ber, "}}" );
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if ( rc == -1 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
1999-08-27 13:45:53 +08:00
|
|
|
ber_free( ber, 1 );
|
1999-07-16 10:45:46 +08:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* send BER */
|
|
|
|
bytes = send_ldap_ber( conn, ber );
|
1999-08-27 13:45:53 +08:00
|
|
|
ber_free( ber, 1 );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
if ( bytes < 0 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"send_ldap_response: ber write failed\n",
|
|
|
|
0, 0, 0 );
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
1999-01-28 12:34:55 +08:00
|
|
|
ldap_pvt_thread_mutex_lock( &num_sent_mutex );
|
1998-08-09 08:43:13 +08:00
|
|
|
num_bytes_sent += bytes;
|
1999-07-16 10:45:46 +08:00
|
|
|
num_pdu_sent++;
|
1999-01-28 12:34:55 +08:00
|
|
|
ldap_pvt_thread_mutex_unlock( &num_sent_mutex );
|
1998-08-09 08:43:13 +08:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
void
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_disconnect(
|
1998-08-09 08:43:13 +08:00
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
1999-06-19 07:53:05 +08:00
|
|
|
ber_int_t err,
|
1999-08-21 03:00:44 +08:00
|
|
|
const char *text
|
1998-08-09 08:43:13 +08:00
|
|
|
)
|
|
|
|
{
|
1999-07-16 10:45:46 +08:00
|
|
|
ber_tag_t tag;
|
|
|
|
ber_int_t msgid;
|
|
|
|
char *reqoid;
|
1999-07-02 05:20:45 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
#define LDAP_UNSOLICITED_ERROR(e) \
|
|
|
|
( (e) == LDAP_PROTOCOL_ERROR \
|
|
|
|
|| (e) == LDAP_STRONG_AUTH_REQUIRED \
|
|
|
|
|| (e) == LDAP_UNAVAILABLE )
|
|
|
|
|
|
|
|
assert( LDAP_UNSOLICITED_ERROR( err ) );
|
|
|
|
|
|
|
|
Debug( LDAP_DEBUG_TRACE,
|
|
|
|
"send_ldap_disconnect %d:%s\n",
|
|
|
|
err, text ? text : "", NULL );
|
|
|
|
|
|
|
|
if ( op->o_protocol < LDAP_VERSION3 ) {
|
|
|
|
reqoid = NULL;
|
|
|
|
tag = req2res( op->o_tag );
|
|
|
|
msgid = (tag != LBER_SEQUENCE) ? op->o_msgid : 0;
|
|
|
|
|
|
|
|
} else {
|
|
|
|
reqoid = LDAP_NOTICE_DISCONNECT;
|
|
|
|
tag = LDAP_RES_EXTENDED;
|
|
|
|
msgid = 0;
|
|
|
|
}
|
1999-07-08 02:51:39 +08:00
|
|
|
|
1998-10-25 09:41:42 +08:00
|
|
|
#ifdef LDAP_CONNECTIONLESS
|
1998-08-09 08:43:13 +08:00
|
|
|
if ( op->o_cldap ) {
|
1999-07-13 14:39:55 +08:00
|
|
|
ber_pvt_sb_udp_set_dst( conn->c_sb, &op->o_clientaddr );
|
1998-08-09 08:43:13 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "UDP response to %s port %d\n",
|
|
|
|
inet_ntoa(((struct sockaddr_in *)
|
1999-03-03 04:23:14 +08:00
|
|
|
&op->o_clientaddr)->sin_addr ),
|
|
|
|
((struct sockaddr_in *) &op->o_clientaddr)->sin_port,
|
1998-08-09 08:43:13 +08:00
|
|
|
0 );
|
|
|
|
}
|
|
|
|
#endif
|
1999-12-10 12:52:32 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_response( conn, op, tag, msgid,
|
|
|
|
err, NULL, text, NULL,
|
1999-12-10 12:52:32 +08:00
|
|
|
reqoid, NULL, NULL, NULL );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
Statslog( LDAP_DEBUG_STATS,
|
|
|
|
"conn=%ld op=%ld DISCONNECT err=%ld tag=%lu text=%s\n",
|
1999-07-17 06:24:32 +08:00
|
|
|
(long) op->o_connid, (long) op->o_opid,
|
1999-08-16 14:28:33 +08:00
|
|
|
(long) tag, (long) err, text ? text : "" );
|
1999-07-08 02:51:39 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
void
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_result(
|
1999-07-08 02:51:39 +08:00
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
ber_int_t err,
|
1999-08-21 03:00:44 +08:00
|
|
|
const char *matched,
|
|
|
|
const char *text,
|
1999-07-16 10:45:46 +08:00
|
|
|
struct berval **ref,
|
|
|
|
LDAPControl **ctrls
|
1999-07-08 02:51:39 +08:00
|
|
|
)
|
|
|
|
{
|
1999-07-16 10:45:46 +08:00
|
|
|
ber_tag_t tag;
|
|
|
|
ber_int_t msgid;
|
|
|
|
char *tmp = NULL;
|
|
|
|
|
1999-07-08 02:51:39 +08:00
|
|
|
assert( !LDAP_API_ERROR( err ) );
|
|
|
|
|
1999-07-17 06:24:32 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "send_ldap_result: conn=%ld op=%ld p=%d\n",
|
|
|
|
(long) op->o_connid, (long) op->o_opid, op->o_protocol );
|
|
|
|
Debug( LDAP_DEBUG_ARGS, "send_ldap_result: %d:%s:%s\n",
|
1999-07-16 10:45:46 +08:00
|
|
|
err, matched ? matched : "", text ? text : "" );
|
|
|
|
|
|
|
|
assert( err != LDAP_PARTIAL_RESULTS );
|
|
|
|
|
|
|
|
if( op->o_tag != LDAP_REQ_SEARCH ) {
|
|
|
|
trim_refs_urls( ref );
|
|
|
|
}
|
|
|
|
|
|
|
|
if ( err == LDAP_REFERRAL ) {
|
|
|
|
if( ref == NULL ) {
|
|
|
|
err = LDAP_NO_SUCH_OBJECT;
|
|
|
|
} else if ( op->o_protocol < LDAP_VERSION3 ) {
|
|
|
|
err = LDAP_PARTIAL_RESULTS;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
1999-10-27 12:36:10 +08:00
|
|
|
if ( op->o_protocol < LDAP_VERSION3 ) {
|
|
|
|
tmp = v2ref( ref, text );
|
|
|
|
text = tmp;
|
|
|
|
ref = NULL;
|
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
tag = req2res( op->o_tag );
|
|
|
|
msgid = (tag != LBER_SEQUENCE) ? op->o_msgid : 0;
|
1999-07-08 02:51:39 +08:00
|
|
|
|
|
|
|
#ifdef LDAP_CONNECTIONLESS
|
|
|
|
if ( op->o_cldap ) {
|
1999-07-13 14:39:55 +08:00
|
|
|
ber_pvt_sb_udp_set_dst( conn->c_sb, &op->o_clientaddr );
|
1999-07-08 02:51:39 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "UDP response to %s port %d\n",
|
|
|
|
inet_ntoa(((struct sockaddr_in *)
|
|
|
|
&op->o_clientaddr)->sin_addr ),
|
|
|
|
((struct sockaddr_in *) &op->o_clientaddr)->sin_port,
|
|
|
|
0 );
|
|
|
|
}
|
|
|
|
#endif
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
send_ldap_response( conn, op, tag, msgid,
|
|
|
|
err, matched, text, ref,
|
1999-12-10 12:52:32 +08:00
|
|
|
NULL, NULL, NULL, ctrls );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
Statslog( LDAP_DEBUG_STATS,
|
1999-08-04 04:28:16 +08:00
|
|
|
"conn=%ld op=%ld RESULT tag=%lu err=%ld text=%s\n",
|
1999-07-17 06:24:32 +08:00
|
|
|
(long) op->o_connid, (long) op->o_opid,
|
1999-08-16 14:28:33 +08:00
|
|
|
(long) tag, (long) err, text ? text : "" );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
if( tmp != NULL ) {
|
1999-11-06 06:50:58 +08:00
|
|
|
ch_free(tmp);
|
1999-07-16 10:45:46 +08:00
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-11-30 01:44:14 +08:00
|
|
|
void
|
|
|
|
send_ldap_sasl(
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
ber_int_t err,
|
|
|
|
const char *matched,
|
|
|
|
const char *text,
|
1999-12-16 07:22:47 +08:00
|
|
|
struct berval **ref,
|
1999-12-10 12:52:32 +08:00
|
|
|
LDAPControl **ctrls,
|
1999-11-30 01:44:14 +08:00
|
|
|
struct berval *cred
|
|
|
|
)
|
|
|
|
{
|
|
|
|
ber_tag_t tag;
|
|
|
|
ber_int_t msgid;
|
|
|
|
|
|
|
|
Debug( LDAP_DEBUG_TRACE, "send_ldap_sasl %ld\n",
|
|
|
|
(long) err, NULL, NULL );
|
|
|
|
|
|
|
|
tag = req2res( op->o_tag );
|
|
|
|
msgid = (tag != LBER_SEQUENCE) ? op->o_msgid : 0;
|
|
|
|
|
|
|
|
#ifdef LDAP_CONNECTIONLESS
|
|
|
|
if ( op->o_cldap ) {
|
|
|
|
ber_pvt_sb_udp_set_dst( conn->c_sb, &op->o_clientaddr );
|
|
|
|
Debug( LDAP_DEBUG_TRACE, "UDP response to %s port %d\n",
|
|
|
|
inet_ntoa(((struct sockaddr_in *)
|
|
|
|
&op->o_clientaddr)->sin_addr ),
|
|
|
|
((struct sockaddr_in *) &op->o_clientaddr)->sin_port,
|
|
|
|
0 );
|
|
|
|
}
|
|
|
|
#endif
|
|
|
|
|
|
|
|
send_ldap_response( conn, op, tag, msgid,
|
1999-12-16 07:22:47 +08:00
|
|
|
err, matched, text, ref,
|
1999-12-10 12:52:32 +08:00
|
|
|
NULL, NULL, cred, ctrls );
|
1999-11-30 01:44:14 +08:00
|
|
|
}
|
|
|
|
|
1999-11-09 11:29:50 +08:00
|
|
|
void
|
|
|
|
send_ldap_extended(
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
ber_int_t err,
|
|
|
|
const char *matched,
|
|
|
|
const char *text,
|
1999-12-11 03:18:33 +08:00
|
|
|
struct berval **refs,
|
1999-11-09 11:29:50 +08:00
|
|
|
char *rspoid,
|
1999-12-10 12:52:32 +08:00
|
|
|
struct berval *rspdata,
|
|
|
|
LDAPControl **ctrls
|
1999-11-09 11:29:50 +08:00
|
|
|
)
|
|
|
|
{
|
|
|
|
ber_tag_t tag;
|
|
|
|
ber_int_t msgid;
|
|
|
|
|
|
|
|
Debug( LDAP_DEBUG_TRACE,
|
1999-12-10 12:52:32 +08:00
|
|
|
"send_ldap_extended %ld:%s (%ld)\n",
|
|
|
|
(long) err,
|
|
|
|
rspoid ? rspoid : "",
|
|
|
|
rspdata != NULL ? (long) rspdata->bv_len : (long) 0 );
|
1999-11-09 11:29:50 +08:00
|
|
|
|
|
|
|
tag = req2res( op->o_tag );
|
|
|
|
msgid = (tag != LBER_SEQUENCE) ? op->o_msgid : 0;
|
|
|
|
|
|
|
|
#ifdef LDAP_CONNECTIONLESS
|
|
|
|
if ( op->o_cldap ) {
|
|
|
|
ber_pvt_sb_udp_set_dst( conn->c_sb, &op->o_clientaddr );
|
|
|
|
Debug( LDAP_DEBUG_TRACE, "UDP response to %s port %d\n",
|
|
|
|
inet_ntoa(((struct sockaddr_in *)
|
|
|
|
&op->o_clientaddr)->sin_addr ),
|
|
|
|
((struct sockaddr_in *) &op->o_clientaddr)->sin_port,
|
|
|
|
0 );
|
|
|
|
}
|
|
|
|
#endif
|
1999-12-10 12:52:32 +08:00
|
|
|
|
1999-11-09 11:29:50 +08:00
|
|
|
send_ldap_response( conn, op, tag, msgid,
|
1999-12-11 03:18:33 +08:00
|
|
|
err, matched, text, refs,
|
1999-12-10 12:52:32 +08:00
|
|
|
rspoid, rspdata, NULL, ctrls );
|
1999-11-09 11:29:50 +08:00
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
void
|
1999-07-16 10:45:46 +08:00
|
|
|
send_search_result(
|
1998-08-09 08:43:13 +08:00
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
1999-06-19 07:53:05 +08:00
|
|
|
ber_int_t err,
|
1999-08-21 03:00:44 +08:00
|
|
|
const char *matched,
|
|
|
|
const char *text,
|
1999-07-16 10:45:46 +08:00
|
|
|
struct berval **refs,
|
|
|
|
LDAPControl **ctrls,
|
1998-08-09 08:43:13 +08:00
|
|
|
int nentries
|
|
|
|
)
|
|
|
|
{
|
1999-07-16 10:45:46 +08:00
|
|
|
ber_tag_t tag;
|
|
|
|
ber_int_t msgid;
|
|
|
|
char *tmp = NULL;
|
|
|
|
assert( !LDAP_API_ERROR( err ) );
|
|
|
|
|
1999-07-08 02:51:39 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "send_ldap_search_result %d:%s:%s\n",
|
|
|
|
err, matched ? matched : "", text ? text : "" );
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
assert( err != LDAP_PARTIAL_RESULTS );
|
|
|
|
|
|
|
|
trim_refs_urls( refs );
|
|
|
|
|
|
|
|
if( op->o_protocol < LDAP_VERSION3 ) {
|
|
|
|
/* send references in search results */
|
|
|
|
if( err == LDAP_REFERRAL ) {
|
|
|
|
err = LDAP_PARTIAL_RESULTS;
|
|
|
|
}
|
|
|
|
|
1999-10-27 12:36:10 +08:00
|
|
|
tmp = v2ref( refs, text );
|
|
|
|
text = tmp;
|
1999-07-20 03:40:33 +08:00
|
|
|
refs = NULL;
|
1999-07-16 10:45:46 +08:00
|
|
|
} else {
|
|
|
|
/* don't send references in search results */
|
1999-07-20 03:40:33 +08:00
|
|
|
assert( refs == NULL );
|
|
|
|
refs = NULL;
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if( err == LDAP_REFERRAL ) {
|
|
|
|
err = LDAP_SUCCESS;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
tag = req2res( op->o_tag );
|
|
|
|
msgid = (tag != LBER_SEQUENCE) ? op->o_msgid : 0;
|
|
|
|
|
|
|
|
#ifdef LDAP_CONNECTIONLESS
|
|
|
|
if ( op->o_cldap ) {
|
1999-09-02 15:41:58 +08:00
|
|
|
ber_pvt_sb_udp_set_dst( conn->c_sb, &op->o_clientaddr );
|
1999-07-16 10:45:46 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "UDP response to %s port %d\n",
|
|
|
|
inet_ntoa(((struct sockaddr_in *)
|
|
|
|
&op->o_clientaddr)->sin_addr ),
|
|
|
|
((struct sockaddr_in *) &op->o_clientaddr)->sin_port,
|
|
|
|
0 );
|
|
|
|
}
|
|
|
|
#endif
|
|
|
|
|
|
|
|
send_ldap_response( conn, op, tag, msgid,
|
|
|
|
err, matched, text, refs,
|
1999-12-10 12:52:32 +08:00
|
|
|
NULL, NULL, NULL, ctrls );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
|
|
|
Statslog( LDAP_DEBUG_STATS,
|
1999-08-04 04:28:16 +08:00
|
|
|
"conn=%ld op=%ld SEARCH RESULT tag=%lu err=%ld text=%s\n",
|
1999-07-17 06:24:32 +08:00
|
|
|
(long) op->o_connid, (long) op->o_opid,
|
1999-08-16 14:28:33 +08:00
|
|
|
(long) tag, (long) err, text ? text : "" );
|
1999-07-16 10:45:46 +08:00
|
|
|
|
1999-11-06 06:50:58 +08:00
|
|
|
if (tmp != NULL)
|
|
|
|
ch_free(tmp);
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
int
|
|
|
|
send_search_entry(
|
|
|
|
Backend *be,
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
Entry *e,
|
|
|
|
char **attrs,
|
1999-07-08 02:51:39 +08:00
|
|
|
int attrsonly,
|
1999-07-16 10:45:46 +08:00
|
|
|
LDAPControl **ctrls
|
1998-08-09 08:43:13 +08:00
|
|
|
)
|
|
|
|
{
|
|
|
|
BerElement *ber;
|
2000-02-05 13:01:41 +08:00
|
|
|
Attribute *a, *aa;
|
1999-03-22 15:14:54 +08:00
|
|
|
int i, rc=-1, bytes;
|
1998-08-21 14:33:42 +08:00
|
|
|
char *edn;
|
1999-07-24 11:39:23 +08:00
|
|
|
int userattrs;
|
|
|
|
int opattrs;
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-24 08:45:25 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "=> send_search_entry: \"%s\"\n", e->e_dn, 0, 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-01-19 13:10:50 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e,
|
|
|
|
"entry", NULL, ACL_READ ) )
|
|
|
|
{
|
1998-08-09 08:43:13 +08:00
|
|
|
Debug( LDAP_DEBUG_ACL, "acl: access to entry not allowed\n",
|
|
|
|
0, 0, 0 );
|
|
|
|
return( 1 );
|
|
|
|
}
|
|
|
|
|
1999-01-19 13:10:50 +08:00
|
|
|
edn = e->e_ndn;
|
1998-08-21 14:33:42 +08:00
|
|
|
|
1999-06-29 08:03:34 +08:00
|
|
|
ber = ber_alloc_t( LBER_USE_DER );
|
1999-06-19 07:53:05 +08:00
|
|
|
|
|
|
|
if ( ber == NULL ) {
|
1998-08-09 08:43:13 +08:00
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_alloc failed\n", 0, 0, 0 );
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "allocating BER error", NULL, NULL );
|
1998-09-21 04:22:46 +08:00
|
|
|
goto error_return;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-06-29 08:03:34 +08:00
|
|
|
rc = ber_printf( ber, "{it{s{", op->o_msgid,
|
|
|
|
LDAP_RES_SEARCH_ENTRY, e->e_dn );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
|
|
|
if ( rc == -1 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encoding dn error", NULL, NULL );
|
1998-09-21 04:22:46 +08:00
|
|
|
goto error_return;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-07-24 11:39:23 +08:00
|
|
|
/* check for special all user attributes ("*") type */
|
|
|
|
userattrs = ( attrs == NULL ) ? 1
|
1999-07-16 10:45:46 +08:00
|
|
|
: charray_inlist( attrs, LDAP_ALL_USER_ATTRIBUTES );
|
|
|
|
|
1999-07-24 11:39:23 +08:00
|
|
|
/* check for special all operational attributes ("+") type */
|
|
|
|
opattrs = ( attrs == NULL ) ? 0
|
|
|
|
: charray_inlist( attrs, LDAP_ALL_OPERATIONAL_ATTRIBUTES );
|
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
for ( a = e->e_attrs; a != NULL; a = a->a_next ) {
|
2000-02-05 13:01:41 +08:00
|
|
|
char *desc;
|
|
|
|
#ifdef SLAPD_SCHEMA_NOT_COMPAT
|
|
|
|
desc = a->a_desc.ad_type->sat_cname;
|
|
|
|
#else
|
|
|
|
desc = a->a_type;
|
|
|
|
#endif
|
|
|
|
|
1999-06-29 12:52:55 +08:00
|
|
|
if ( attrs == NULL ) {
|
|
|
|
/* all addrs request, skip operational attributes */
|
2000-02-05 13:01:41 +08:00
|
|
|
if( !opattrs && oc_check_op_attr( desc ) ) {
|
1999-06-29 12:52:55 +08:00
|
|
|
continue;
|
|
|
|
}
|
1999-07-08 02:51:39 +08:00
|
|
|
|
1998-08-21 14:33:42 +08:00
|
|
|
} else {
|
1999-06-29 12:52:55 +08:00
|
|
|
/* specific addrs requested */
|
2000-02-05 13:01:41 +08:00
|
|
|
if ( oc_check_op_attr( desc ) )
|
|
|
|
{
|
|
|
|
if( !opattrs && !charray_inlist( attrs, desc ) ) {
|
1999-07-24 11:39:23 +08:00
|
|
|
continue;
|
|
|
|
}
|
|
|
|
} else {
|
2000-02-05 13:01:41 +08:00
|
|
|
if (!userattrs && !charray_inlist( attrs, desc ) ) {
|
1999-07-23 04:19:18 +08:00
|
|
|
continue;
|
|
|
|
}
|
1999-06-29 12:52:55 +08:00
|
|
|
}
|
1998-08-21 14:33:42 +08:00
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
2000-02-05 13:01:41 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e, desc, NULL, ACL_READ ) ) {
|
1999-10-22 01:53:56 +08:00
|
|
|
Debug( LDAP_DEBUG_ACL, "acl: access to attribute %s not allowed\n",
|
2000-02-05 13:01:41 +08:00
|
|
|
desc, 0, 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
2000-02-05 13:01:41 +08:00
|
|
|
if (( rc = ber_printf( ber, "{s[" /*]}*/ , desc )) == -1 ) {
|
1998-08-09 08:43:13 +08:00
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
1999-07-16 10:45:46 +08:00
|
|
|
NULL, "encoding type error", NULL, NULL );
|
1998-09-21 04:22:46 +08:00
|
|
|
goto error_return;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
if ( ! attrsonly ) {
|
|
|
|
for ( i = 0; a->a_vals[i] != NULL; i++ ) {
|
1999-10-22 01:53:56 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e,
|
2000-02-05 13:01:41 +08:00
|
|
|
desc, a->a_vals[i], ACL_READ ) )
|
1998-08-09 08:43:13 +08:00
|
|
|
{
|
1999-10-22 01:53:56 +08:00
|
|
|
Debug( LDAP_DEBUG_ACL,
|
|
|
|
"acl: access to attribute %s, value %d not allowed\n",
|
2000-02-05 13:01:41 +08:00
|
|
|
desc, i, 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
1999-06-19 07:53:05 +08:00
|
|
|
if (( rc = ber_printf( ber, "O", a->a_vals[i] )) == -1 ) {
|
1998-08-09 08:43:13 +08:00
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encoding value error", NULL, NULL );
|
1998-09-21 04:22:46 +08:00
|
|
|
goto error_return;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
1999-06-19 07:53:05 +08:00
|
|
|
if (( rc = ber_printf( ber, /*{[*/ "]}" )) == -1 ) {
|
1998-08-09 08:43:13 +08:00
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
1999-07-16 10:45:46 +08:00
|
|
|
NULL, "encode end error", NULL, NULL );
|
1998-09-21 04:22:46 +08:00
|
|
|
goto error_return;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
1999-07-24 11:39:23 +08:00
|
|
|
/* eventually will loop through generated operational attributes */
|
|
|
|
/* only have subschemaSubentry implemented */
|
2000-02-05 13:01:41 +08:00
|
|
|
aa = backend_operational( be, e );
|
1999-07-24 09:27:32 +08:00
|
|
|
|
2000-02-05 13:01:41 +08:00
|
|
|
for (a = aa ; a == NULL; a = a->a_next ) {
|
|
|
|
char *desc;
|
|
|
|
#ifdef SLAPD_SCHEMA_NOT_COMPAT
|
|
|
|
desc = a->a_desc.ad_type->sat_cname;
|
|
|
|
#else
|
|
|
|
desc = a->a_type;
|
|
|
|
#endif
|
|
|
|
|
1999-07-24 09:27:32 +08:00
|
|
|
if ( attrs == NULL ) {
|
|
|
|
/* all addrs request, skip operational attributes */
|
2000-02-05 13:01:41 +08:00
|
|
|
if( !opattrs && oc_check_op_attr( desc ) ) {
|
1999-07-24 09:27:32 +08:00
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
/* specific addrs requested */
|
2000-02-05 13:01:41 +08:00
|
|
|
if ( oc_check_op_attr( desc ) ) {
|
|
|
|
if( !opattrs && !charray_inlist( attrs, desc ) )
|
1999-07-24 11:39:23 +08:00
|
|
|
{
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
} else {
|
2000-02-05 13:01:41 +08:00
|
|
|
if (!userattrs && !charray_inlist( attrs, desc ) )
|
1999-07-24 09:27:32 +08:00
|
|
|
{
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2000-02-05 13:01:41 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e, desc, NULL, ACL_READ ) ) {
|
1999-10-22 01:53:56 +08:00
|
|
|
Debug( LDAP_DEBUG_ACL, "acl: access to attribute %s not allowed\n",
|
2000-02-05 13:01:41 +08:00
|
|
|
desc, 0, 0 );
|
1999-07-24 09:27:32 +08:00
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
2000-02-05 13:01:41 +08:00
|
|
|
if (( rc = ber_printf( ber, "{s[" /*]}*/ , desc )) == -1 ) {
|
1999-07-24 09:27:32 +08:00
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encoding type error", NULL, NULL );
|
|
|
|
goto error_return;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ( ! attrsonly ) {
|
|
|
|
for ( i = 0; a->a_vals[i] != NULL; i++ ) {
|
1999-10-22 01:53:56 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e,
|
2000-02-05 13:01:41 +08:00
|
|
|
desc, a->a_vals[i], ACL_READ ) )
|
1999-07-24 09:27:32 +08:00
|
|
|
{
|
1999-10-22 01:53:56 +08:00
|
|
|
Debug( LDAP_DEBUG_ACL,
|
|
|
|
"acl: access to attribute %s, value %d not allowed\n",
|
2000-02-05 13:01:41 +08:00
|
|
|
desc, i, 0 );
|
1999-07-24 09:27:32 +08:00
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
1999-10-22 01:53:56 +08:00
|
|
|
|
1999-07-24 09:27:32 +08:00
|
|
|
if (( rc = ber_printf( ber, "O", a->a_vals[i] )) == -1 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encoding value error", NULL, NULL );
|
|
|
|
goto error_return;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (( rc = ber_printf( ber, /*{[*/ "]}" )) == -1 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encode end error", NULL, NULL );
|
|
|
|
goto error_return;
|
|
|
|
}
|
2000-02-05 13:01:41 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
attrs_free( aa );
|
1999-07-24 09:27:32 +08:00
|
|
|
|
1999-06-29 08:03:34 +08:00
|
|
|
rc = ber_printf( ber, /*{{{*/ "}}}" );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
|
|
|
if ( rc == -1 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
1999-07-16 10:45:46 +08:00
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encode entry end error", NULL, NULL );
|
1998-08-09 08:43:13 +08:00
|
|
|
return( 1 );
|
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
bytes = send_ldap_ber( conn, ber );
|
1999-08-27 13:45:53 +08:00
|
|
|
ber_free( ber, 1 );
|
1999-03-22 15:14:54 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if ( bytes < 0 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"send_ldap_response: ber write failed\n",
|
|
|
|
0, 0, 0 );
|
|
|
|
return -1;
|
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
ldap_pvt_thread_mutex_lock( &num_sent_mutex );
|
|
|
|
num_bytes_sent += bytes;
|
|
|
|
num_entries_sent++;
|
|
|
|
num_pdu_sent++;
|
|
|
|
ldap_pvt_thread_mutex_unlock( &num_sent_mutex );
|
1999-03-22 15:14:54 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
Statslog( LDAP_DEBUG_STATS2, "conn=%ld op=%ld ENTRY dn=\"%s\"\n",
|
|
|
|
(long) conn->c_connid, (long) op->o_opid, e->e_dn, 0, 0 );
|
1999-04-24 04:22:18 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "<= send_search_entry\n", 0, 0, 0 );
|
1999-04-24 04:22:18 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
rc = 0;
|
1999-04-24 04:22:18 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
error_return:;
|
|
|
|
return( rc );
|
|
|
|
}
|
1999-04-24 04:22:18 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
int
|
|
|
|
send_search_reference(
|
|
|
|
Backend *be,
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
Entry *e,
|
|
|
|
struct berval **refs,
|
|
|
|
int scope,
|
|
|
|
LDAPControl **ctrls,
|
|
|
|
struct berval ***v2refs
|
|
|
|
)
|
|
|
|
{
|
|
|
|
BerElement *ber;
|
|
|
|
int rc;
|
|
|
|
int bytes;
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-24 11:39:23 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "=> send_search_reference (%s)\n", e->e_dn, 0, 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e,
|
|
|
|
"entry", NULL, ACL_READ ) )
|
|
|
|
{
|
|
|
|
Debug( LDAP_DEBUG_ACL,
|
|
|
|
"send_search_reference: access to entry not allowed\n",
|
|
|
|
0, 0, 0 );
|
|
|
|
return( 1 );
|
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if ( ! access_allowed( be, conn, op, e,
|
|
|
|
"ref", NULL, ACL_READ ) )
|
|
|
|
{
|
|
|
|
Debug( LDAP_DEBUG_ACL,
|
|
|
|
"send_search_reference: access to reference not allowed\n",
|
|
|
|
0, 0, 0 );
|
|
|
|
return( 1 );
|
|
|
|
}
|
|
|
|
|
|
|
|
if( refs == NULL ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"send_search_reference: null ref in (%s)\n",
|
|
|
|
e->e_dn, 0, 0 );
|
|
|
|
return( 1 );
|
|
|
|
}
|
|
|
|
|
|
|
|
if( op->o_protocol < LDAP_VERSION3 ) {
|
|
|
|
/* save the references for the result */
|
1999-12-09 07:31:11 +08:00
|
|
|
if( *refs != NULL ) {
|
1999-07-16 10:45:46 +08:00
|
|
|
value_add( v2refs, refs );
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
1999-07-16 10:45:46 +08:00
|
|
|
return 0;
|
|
|
|
}
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
ber = ber_alloc_t( LBER_USE_DER );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
if ( ber == NULL ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"send_search_reference: ber_alloc failed\n", 0, 0, 0 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "alloc BER error", NULL, NULL );
|
|
|
|
return -1;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
rc = ber_printf( ber, "{it{V}}", op->o_msgid,
|
|
|
|
LDAP_RES_SEARCH_REFERENCE, refs );
|
|
|
|
|
|
|
|
if ( rc == -1 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY,
|
|
|
|
"send_search_reference: ber_printf failed\n", 0, 0, 0 );
|
|
|
|
ber_free( ber, 1 );
|
|
|
|
send_ldap_result( conn, op, LDAP_OPERATIONS_ERROR,
|
|
|
|
NULL, "encode dn error", NULL, NULL );
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
bytes = send_ldap_ber( conn, ber );
|
1999-08-27 13:45:53 +08:00
|
|
|
ber_free( ber, 1 );
|
1999-03-22 15:14:54 +08:00
|
|
|
|
1999-01-28 12:34:55 +08:00
|
|
|
ldap_pvt_thread_mutex_lock( &num_sent_mutex );
|
1998-08-09 08:43:13 +08:00
|
|
|
num_bytes_sent += bytes;
|
1999-07-16 10:45:46 +08:00
|
|
|
num_refs_sent++;
|
|
|
|
num_pdu_sent++;
|
1999-01-28 12:34:55 +08:00
|
|
|
ldap_pvt_thread_mutex_unlock( &num_sent_mutex );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-06-19 07:53:05 +08:00
|
|
|
Statslog( LDAP_DEBUG_STATS2, "conn=%ld op=%ld ENTRY dn=\"%s\"\n",
|
|
|
|
(long) conn->c_connid, (long) op->o_opid, e->e_dn, 0, 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-24 11:39:23 +08:00
|
|
|
Debug( LDAP_DEBUG_TRACE, "<= send_search_reference\n", 0, 0, 0 );
|
1998-08-09 08:43:13 +08:00
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
return 0;
|
1998-08-09 08:43:13 +08:00
|
|
|
}
|
|
|
|
|
1999-07-16 10:45:46 +08:00
|
|
|
|
1998-08-09 08:43:13 +08:00
|
|
|
int
|
|
|
|
str2result(
|
|
|
|
char *s,
|
|
|
|
int *code,
|
|
|
|
char **matched,
|
|
|
|
char **info
|
|
|
|
)
|
|
|
|
{
|
|
|
|
int rc;
|
|
|
|
char *c;
|
|
|
|
|
|
|
|
*code = LDAP_SUCCESS;
|
|
|
|
*matched = NULL;
|
|
|
|
*info = NULL;
|
|
|
|
|
|
|
|
if ( strncasecmp( s, "RESULT", 6 ) != 0 ) {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "str2result (%s) expecting \"RESULT\"\n",
|
|
|
|
s, 0, 0 );
|
|
|
|
|
|
|
|
return( -1 );
|
|
|
|
}
|
|
|
|
|
|
|
|
rc = 0;
|
|
|
|
while ( (s = strchr( s, '\n' )) != NULL ) {
|
|
|
|
*s++ = '\0';
|
|
|
|
if ( *s == '\0' ) {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
if ( (c = strchr( s, ':' )) != NULL ) {
|
|
|
|
c++;
|
|
|
|
}
|
|
|
|
|
|
|
|
if ( strncasecmp( s, "code", 4 ) == 0 ) {
|
|
|
|
if ( c != NULL ) {
|
|
|
|
*code = atoi( c );
|
|
|
|
}
|
|
|
|
} else if ( strncasecmp( s, "matched", 7 ) == 0 ) {
|
|
|
|
if ( c != NULL ) {
|
|
|
|
*matched = c;
|
|
|
|
}
|
|
|
|
} else if ( strncasecmp( s, "info", 4 ) == 0 ) {
|
|
|
|
if ( c != NULL ) {
|
|
|
|
*info = c;
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
Debug( LDAP_DEBUG_ANY, "str2result (%s) unknown\n",
|
|
|
|
s, 0, 0 );
|
|
|
|
rc = -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return( rc );
|
|
|
|
}
|