/* $OpenLDAP$ */
/* This work is part of OpenLDAP Software .
*
* Copyright 1998-2010 The OpenLDAP Foundation.
* Portions Copyright 1998-2003 Kurt D. Zeilenga.
* Portions Copyright 2003 IBM Corporation.
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted only as authorized by the OpenLDAP
* Public License.
*
* A copy of this license is available in file LICENSE in the
* top-level directory of the distribution or, alternatively, at
* .
*/
/* ACKNOWLEDGEMENTS:
* This work was initially developed by Pierangelo Masarati for inclusion
* in OpenLDAP Software.
*/
#include "portable.h"
#include
#include "ac/stdlib.h"
#include "ac/ctype.h"
#include "ac/string.h"
#include "ac/socket.h"
#include "ac/unistd.h"
#include "lber.h"
#include "ldif.h"
#include "lutil.h"
#include "lutil_meter.h"
#include
#include "slapcommon.h"
static char csnbuf[ LDAP_PVT_CSNSTR_BUFSIZE ];
static char maxcsnbuf[ LDAP_PVT_CSNSTR_BUFSIZE * ( SLAP_SYNC_SID_MAX + 1 ) ];
int
slapmodify( int argc, char **argv )
{
char *buf = NULL;
const char *text;
char textbuf[SLAP_TEXT_BUFLEN] = { '\0' };
size_t textlen = sizeof textbuf;
const char *progname = "slapmodify";
struct berval csn;
struct berval maxcsn[ SLAP_SYNC_SID_MAX + 1 ];
unsigned long sid;
struct berval bvtext;
Entry *ctxcsn_e;
ID ctxcsn_id, id;
OperationBuffer opbuf;
Operation *op;
int match;
int checkvals;
int lineno, nextline, ldifrc;
int lmax;
int rc = EXIT_SUCCESS;
int manage = 0;
int enable_meter = 0;
lutil_meter_t meter;
struct stat stat_buf;
/* default "000" */
csnsid = 0;
if ( isatty (2) ) enable_meter = 1;
slap_tool_init( progname, SLAPMODIFY, argc, argv );
memset( &opbuf, 0, sizeof(opbuf) );
op = &opbuf.ob_op;
op->o_hdr = &opbuf.ob_hdr;
if ( !be->be_entry_open ||
!be->be_entry_close ||
!be->be_entry_put ||
!be->be_dn2id_get ||
!be->be_entry_get ||
!be->be_entry_modify )
{
fprintf( stderr, "%s: database doesn't support necessary operations.\n",
progname );
if ( dryrun ) {
fprintf( stderr, "\t(dry) continuing...\n" );
} else {
exit( EXIT_FAILURE );
}
}
checkvals = (slapMode & SLAP_TOOL_QUICK) ? 0 : 1;
lmax = 0;
nextline = 0;
/* enforce schema checking unless not disabled */
if ( (slapMode & SLAP_TOOL_NO_SCHEMA_CHECK) == 0) {
SLAP_DBFLAGS(be) &= ~(SLAP_DBFLAG_NO_SCHEMA_CHECK);
}
if( !dryrun && be->be_entry_open( be, 1 ) != 0 ) {
fprintf( stderr, "%s: could not open database.\n",
progname );
exit( EXIT_FAILURE );
}
if ( enable_meter
#ifdef LDAP_DEBUG
/* tools default to "none" */
&& slap_debug == LDAP_DEBUG_NONE
#endif
&& !fstat ( fileno ( ldiffp->fp ), &stat_buf )
&& S_ISREG(stat_buf.st_mode) ) {
enable_meter = !lutil_meter_open(
&meter,
&lutil_meter_text_display,
&lutil_meter_linear_estimator,
stat_buf.st_size);
} else {
enable_meter = 0;
}
/* nextline is the line number of the end of the current entry */
for( lineno=1; ( ldifrc = ldif_read_record( ldiffp, &nextline, &buf, &lmax )) > 0;
lineno=nextline+1 )
{
BackendDB *bd;
Entry *e;
struct berval rbuf;
LDIFRecord lr;
struct berval ndn;
int n;
int is_oc = 0;
int local_rc;
int mod_err = 0;
char *request = "(unknown)";
ber_str2bv( buf, 0, 0, &rbuf );
if ( lineno < jumpline )
continue;
if ( enable_meter )
lutil_meter_update( &meter,
ftell( ldiffp->fp ),
0);
/*
* Initialize text buffer
*/
bvtext.bv_len = textlen;
bvtext.bv_val = textbuf;
bvtext.bv_val[0] = '\0';
local_rc = ldap_parse_ldif_record( &rbuf, lineno, &lr,
"slapmodify", LDIF_NO_CONTROLS );
if ( local_rc != LDAP_SUCCESS ) {
fprintf( stderr, "%s: could not parse entry (line=%d)\n",
progname, lineno );
rc = EXIT_FAILURE;
if( continuemode ) continue;
break;
}
switch ( lr.lr_op ) {
case LDAP_REQ_ADD:
request = "add";
break;
case LDAP_REQ_MODIFY:
request = "modify";
break;
case LDAP_REQ_MODRDN:
case LDAP_REQ_DELETE:
fprintf( stderr, "%s: request 0x%lx not supported (line=%d)\n",
progname, (unsigned long)lr.lr_op, lineno );
rc = EXIT_FAILURE;
if( continuemode ) continue;
goto done;
default:
fprintf( stderr, "%s: unknown request 0x%lx (line=%d)\n",
progname, (unsigned long)lr.lr_op, lineno );
rc = EXIT_FAILURE;
if( continuemode ) continue;
goto done;
}
local_rc = dnNormalize( 0, NULL, NULL, &lr.lr_dn, &ndn, NULL );
if ( local_rc != LDAP_SUCCESS ) {
fprintf( stderr, "%s: DN=\"%s\" normalization failed (line=%d)\n",
progname, lr.lr_dn.bv_val, lineno );
rc = EXIT_FAILURE;
if( continuemode ) continue;
break;
}
/* make sure the DN is not empty */
if( BER_BVISEMPTY( &ndn ) &&
!BER_BVISEMPTY( be->be_nsuffix ))
{
fprintf( stderr, "%s: line %d: "
"%s entry with empty dn=\"\"",
progname, lineno, request );
bd = select_backend( &ndn, nosubordinates );
if ( bd ) {
BackendDB *bdtmp;
int dbidx = 0;
LDAP_STAILQ_FOREACH( bdtmp, &backendDB, be_next ) {
if ( bdtmp == bd ) break;
dbidx++;
}
assert( bdtmp != NULL );
fprintf( stderr, "; did you mean to use database #%d (%s)?",
dbidx,
bd->be_suffix[0].bv_val );
}
fprintf( stderr, "\n" );
rc = EXIT_FAILURE;
SLAP_FREE( ndn.bv_val );
ldap_ldif_record_done( &lr );
if( continuemode ) continue;
break;
}
/* check backend */
bd = select_backend( &ndn, nosubordinates );
if ( bd != be ) {
fprintf( stderr, "%s: line %d: "
"database #%d (%s) not configured to hold \"%s\"",
progname, lineno,
dbnum,
be->be_suffix[0].bv_val,
lr.lr_dn.bv_val );
if ( bd ) {
BackendDB *bdtmp;
int dbidx = 0;
LDAP_STAILQ_FOREACH( bdtmp, &backendDB, be_next ) {
if ( bdtmp == bd ) break;
dbidx++;
}
assert( bdtmp != NULL );
fprintf( stderr, "; did you mean to use database #%d (%s)?",
dbidx,
bd->be_suffix[0].bv_val );
} else {
fprintf( stderr, "; no database configured for that naming context" );
}
fprintf( stderr, "\n" );
rc = EXIT_FAILURE;
SLAP_FREE( ndn.bv_val );
ldap_ldif_record_done( &lr );
if( continuemode ) continue;
break;
}
/* get entry */
id = be->be_dn2id_get( be, &ndn );
e = be->be_entry_get( be, id );
if ( e != NULL ) {
Entry *e_tmp = entry_dup( e );
/* FIXME: release? */
e = e_tmp;
}
for ( n = 0; lr.lrop_mods[ n ] != NULL; n++ ) {
LDAPMod *mod = lr.lrop_mods[ n ];
Modification mods = { 0 };
unsigned i = 0;
int bin = (mod->mod_op & LDAP_MOD_BVALUES);
int pretty = 0;
int normalize = 0;
local_rc = slap_str2ad( mod->mod_type, &mods.sm_desc, &text );
if ( local_rc != LDAP_SUCCESS ) {
fprintf( stderr, "%s: slap_str2ad(\"%s\") failed for entry \"%s\" (%d: %s, lineno=%d)\n",
progname, mod->mod_type, lr.lr_dn.bv_val, local_rc, text, lineno );
rc = EXIT_FAILURE;
mod_err = 1;
if( continuemode ) continue;
SLAP_FREE( ndn.bv_val );
ldap_ldif_record_done( &lr );
entry_free( e );
goto done;
}
mods.sm_type = mods.sm_desc->ad_cname;
if ( mods.sm_desc->ad_type->sat_syntax->ssyn_pretty ) {
pretty = 1;
} else {
assert( mods.sm_desc->ad_type->sat_syntax->ssyn_validate != NULL );
}
if ( mods.sm_desc->ad_type->sat_equality &&
mods.sm_desc->ad_type->sat_equality->smr_normalize )
{
normalize = 1;
}
if ( bin && mod->mod_bvalues ) {
for ( i = 0; mod->mod_bvalues[ i ] != NULL; i++ )
;
} else if ( !bin && mod->mod_values ) {
for ( i = 0; mod->mod_values[ i ] != NULL; i++ )
;
}
mods.sm_values = SLAP_CALLOC( sizeof( struct berval ), i + 1 );
if ( normalize ) {
mods.sm_nvalues = SLAP_CALLOC( sizeof( struct berval ), i + 1 );
} else {
mods.sm_nvalues = NULL;
}
mods.sm_numvals = i;
for ( i = 0; i < mods.sm_numvals; i++ ) {
struct berval bv;
if ( bin ) {
bv = *mod->mod_bvalues[ i ];
} else {
ber_str2bv( mod->mod_values[ i ], 0, 0, &bv );
}
if ( pretty ) {
local_rc = ordered_value_pretty( mods.sm_desc,
&bv, &mods.sm_values[i], NULL );
} else {
local_rc = ordered_value_validate( mods.sm_desc,
&bv, 0 );
}
if ( local_rc != LDAP_SUCCESS ) {
fprintf( stderr, "%s: DN=\"%s\": unable to %s attr=%s value #%d\n",
progname, e->e_dn, pretty ? "prettify" : "validate",
mods.sm_desc->ad_cname.bv_val, i );
/* handle error */
mod_err = 1;
rc = EXIT_FAILURE;
ber_bvarray_free( mods.sm_values );
ber_bvarray_free( mods.sm_nvalues );
if( continuemode ) continue;
SLAP_FREE( ndn.bv_val );
ldap_ldif_record_done( &lr );
entry_free( e );
goto done;
}
if ( !pretty ) {
ber_dupbv( &mods.sm_values[i], &bv );
}
if ( normalize ) {
local_rc = ordered_value_normalize(
SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
mods.sm_desc,
mods.sm_desc->ad_type->sat_equality,
&mods.sm_values[i], &mods.sm_nvalues[i],
NULL );
if ( local_rc != LDAP_SUCCESS ) {
fprintf( stderr, "%s: DN=\"%s\": unable to normalize attr=%s value #%d\n",
progname, e->e_dn, mods.sm_desc->ad_cname.bv_val, i );
/* handle error */
mod_err = 1;
rc = EXIT_FAILURE;
ber_bvarray_free( mods.sm_values );
ber_bvarray_free( mods.sm_nvalues );
if( continuemode ) continue;
SLAP_FREE( ndn.bv_val );
ldap_ldif_record_done( &lr );
entry_free( e );
goto done;
}
}
}
mods.sm_op = (mod->mod_op & ~LDAP_MOD_BVALUES);
mods.sm_flags = 0;
if ( mods.sm_desc == slap_schema.si_ad_objectClass ) {
is_oc = 1;
}
switch ( mods.sm_op ) {
case LDAP_MOD_ADD:
local_rc = modify_add_values( e, &mods,
0, &text, textbuf, textlen );
break;
case LDAP_MOD_DELETE:
local_rc = modify_delete_values( e, &mods,
0, &text, textbuf, textlen );
break;
case LDAP_MOD_REPLACE:
local_rc = modify_replace_values( e, &mods,
0, &text, textbuf, textlen );
break;
case LDAP_MOD_INCREMENT:
local_rc = modify_increment_values( e, &mods,
0, &text, textbuf, textlen );
break;
}
if ( local_rc != LDAP_SUCCESS ) {
fprintf( stderr, "%s: DN=\"%s\": unable to modify attr=%s\n",
progname, e->e_dn, mods.sm_desc->ad_cname.bv_val );
rc = EXIT_FAILURE;
ber_bvarray_free( mods.sm_values );
ber_bvarray_free( mods.sm_nvalues );
if( continuemode ) continue;
SLAP_FREE( ndn.bv_val );
ldap_ldif_record_done( &lr );
entry_free( e );
goto done;
}
}
if ( SLAP_LASTMOD(be) ) {
time_t now = slap_get_time();
char uuidbuf[ LDAP_LUTIL_UUIDSTR_BUFSIZE ];
struct berval vals[ 2 ];
struct berval name, timestamp;
struct berval nvals[ 2 ];
struct berval nname;
char timebuf[ LDAP_LUTIL_GENTIME_BUFSIZE ];
Attribute *a;
vals[1].bv_len = 0;
vals[1].bv_val = NULL;
nvals[1].bv_len = 0;
nvals[1].bv_val = NULL;
csn.bv_len = ldap_pvt_csnstr( csnbuf, sizeof( csnbuf ), csnsid, 0 );
csn.bv_val = csnbuf;
timestamp.bv_val = timebuf;
timestamp.bv_len = sizeof(timebuf);
slap_timestamp( &now, ×tamp );
if ( BER_BVISEMPTY( &be->be_rootndn ) ) {
BER_BVSTR( &name, SLAPD_ANONYMOUS );
nname = name;
} else {
name = be->be_rootdn;
nname = be->be_rootndn;
}
a = attr_find( e->e_attrs, slap_schema.si_ad_entryUUID );
if ( a != NULL ) {
vals[0].bv_len = lutil_uuidstr( uuidbuf, sizeof( uuidbuf ) );
vals[0].bv_val = uuidbuf;
if ( a->a_vals != a->a_nvals ) {
SLAP_FREE( a->a_nvals[0].bv_val );
SLAP_FREE( a->a_nvals );
}
SLAP_FREE( a->a_vals[0].bv_val );
SLAP_FREE( a->a_vals );
a->a_vals = NULL;
a->a_nvals = NULL;
a->a_numvals = 0;
}
attr_merge_normalize_one( e, slap_schema.si_ad_entryUUID, vals, NULL );
a = attr_find( e->e_attrs, slap_schema.si_ad_creatorsName );
if ( a == NULL ) {
vals[0] = name;
nvals[0] = nname;
attr_merge( e, slap_schema.si_ad_creatorsName, vals, nvals );
} else {
ber_bvreplace( &a->a_vals[0], &name );
ber_bvreplace( &a->a_nvals[0], &nname );
}
a = attr_find( e->e_attrs, slap_schema.si_ad_createTimestamp );
if ( a == NULL ) {
vals[0] = timestamp;
attr_merge( e, slap_schema.si_ad_createTimestamp, vals, NULL );
} else {
ber_bvreplace( &a->a_vals[0], ×tamp );
}
a = attr_find( e->e_attrs, slap_schema.si_ad_entryCSN );
if ( a == NULL ) {
vals[0] = csn;
attr_merge( e, slap_schema.si_ad_entryCSN, vals, NULL );
} else {
ber_bvreplace( &a->a_vals[0], &csn );
}
a = attr_find( e->e_attrs, slap_schema.si_ad_modifiersName );
if ( a == NULL ) {
vals[0] = name;
nvals[0] = nname;
attr_merge( e, slap_schema.si_ad_modifiersName, vals, nvals );
} else {
ber_bvreplace( &a->a_vals[0], &name );
ber_bvreplace( &a->a_nvals[0], &nname );
}
a = attr_find( e->e_attrs, slap_schema.si_ad_modifyTimestamp );
if ( a == NULL ) {
vals[0] = timestamp;
attr_merge( e, slap_schema.si_ad_modifyTimestamp, vals, NULL );
} else {
ber_bvreplace( &a->a_vals[0], ×tamp );
}
}
if ( mod_err ) break;
/* check schema, objectClass etc */
if ( !dryrun ) {
switch ( lr.lr_op ) {
case LDAP_REQ_ADD:
id = be->be_entry_put( be, e, &bvtext );
break;
case LDAP_REQ_MODIFY:
id = be->be_entry_modify( be, e, &bvtext );
break;
}
if( id == NOID ) {
fprintf( stderr, "%s: could not %s entry dn=\"%s\" "
"(line=%d): %s\n", progname, request, e->e_dn,
lineno, bvtext.bv_val );
rc = EXIT_FAILURE;
entry_free( e );
if( continuemode ) continue;
break;
}
if ( verbose )
fprintf( stderr, "%s: \"%s\" (%08lx)\n",
request, e->e_dn, (long) id );
} else {
if ( verbose )
fprintf( stderr, "%s: \"%s\"\n",
request, e->e_dn );
}
entry_free( e );
}
done:;
if ( ldifrc < 0 )
rc = EXIT_FAILURE;
bvtext.bv_len = textlen;
bvtext.bv_val = textbuf;
bvtext.bv_val[0] = '\0';
if ( enable_meter ) {
lutil_meter_update( &meter, ftell( ldiffp->fp ), 1);
lutil_meter_close( &meter );
}
if ( rc == EXIT_SUCCESS && update_ctxcsn && !dryrun && sid != SLAP_SYNC_SID_MAX + 1 ) {
struct berval ctxdn;
if ( SLAP_SYNC_SUBENTRY( be )) {
build_new_dn( &ctxdn, &be->be_nsuffix[0],
(struct berval *)&slap_ldapsync_cn_bv, NULL );
} else {
ctxdn = be->be_nsuffix[0];
}
ctxcsn_id = be->be_dn2id_get( be, &ctxdn );
if ( ctxcsn_id == NOID ) {
if ( SLAP_SYNC_SUBENTRY( be )) {
ctxcsn_e = slap_create_context_csn_entry( be, NULL );
for ( sid = 0; sid <= SLAP_SYNC_SID_MAX; sid++ ) {
if ( maxcsn[ sid ].bv_len ) {
attr_merge_one( ctxcsn_e, slap_schema.si_ad_contextCSN,
&maxcsn[ sid ], NULL );
}
}
ctxcsn_id = be->be_entry_put( be, ctxcsn_e, &bvtext );
if ( ctxcsn_id == NOID ) {
fprintf( stderr, "%s: couldn't create context entry\n", progname );
rc = EXIT_FAILURE;
}
} else {
fprintf( stderr, "%s: context entry is missing\n", progname );
rc = EXIT_FAILURE;
}
} else {
ctxcsn_e = be->be_entry_get( be, ctxcsn_id );
if ( ctxcsn_e != NULL ) {
Entry *e = entry_dup( ctxcsn_e );
int change;
Attribute *attr = attr_find( e->e_attrs, slap_schema.si_ad_contextCSN );
if ( attr ) {
int i;
change = 0;
for ( i = 0; !BER_BVISNULL( &attr->a_nvals[ i ] ); i++ ) {
int rc_sid;
rc_sid = slap_parse_csn_sid( &attr->a_nvals[ i ] );
if ( rc_sid < 0 ) {
Debug( LDAP_DEBUG_ANY,
"%s: unable to extract SID "
"from #%d contextCSN=%s\n",
progname, i,
attr->a_nvals[ i ].bv_val );
continue;
}
assert( rc_sid <= SLAP_SYNC_SID_MAX );
sid = (unsigned)rc_sid;
if ( maxcsn[ sid ].bv_len == 0 ) {
match = -1;
} else {
value_match( &match, slap_schema.si_ad_entryCSN,
slap_schema.si_ad_entryCSN->ad_type->sat_ordering,
SLAP_MR_VALUE_OF_ATTRIBUTE_SYNTAX,
&maxcsn[ sid ], &attr->a_nvals[i], &text );
}
if ( match > 0 ) {
change = 1;
} else {
AC_MEMCPY( maxcsn[ sid ].bv_val,
attr->a_nvals[ i ].bv_val,
attr->a_nvals[ i ].bv_len );
maxcsn[ sid ].bv_val[ attr->a_nvals[ i ].bv_len ] = '\0';
maxcsn[ sid ].bv_len = attr->a_nvals[ i ].bv_len;
}
}
if ( change ) {
if ( attr->a_nvals != attr->a_vals ) {
ber_bvarray_free( attr->a_nvals );
}
attr->a_nvals = NULL;
ber_bvarray_free( attr->a_vals );
attr->a_vals = NULL;
attr->a_numvals = 0;
}
} else {
change = 1;
}
if ( change ) {
for ( sid = 0; sid <= SLAP_SYNC_SID_MAX; sid++ ) {
if ( maxcsn[ sid ].bv_len ) {
attr_merge_one( e, slap_schema.si_ad_contextCSN,
&maxcsn[ sid], NULL );
}
}
ctxcsn_id = be->be_entry_modify( be, e, &bvtext );
if( ctxcsn_id == NOID ) {
fprintf( stderr, "%s: could not modify ctxcsn\n",
progname);
rc = EXIT_FAILURE;
} else if ( verbose ) {
fprintf( stderr, "modified: \"%s\" (%08lx)\n",
e->e_dn, (long) ctxcsn_id );
}
}
entry_free( e );
}
}
}
ch_free( buf );
if ( !dryrun ) {
if ( enable_meter ) {
fprintf( stderr, "Closing DB..." );
}
if( be->be_entry_close( be ) ) {
rc = EXIT_FAILURE;
}
if( be->be_sync ) {
be->be_sync( be );
}
if ( enable_meter ) {
fprintf( stderr, "\n" );
}
}
if ( slap_tool_destroy())
rc = EXIT_FAILURE;
return rc;
}