mirror of
https://git.openldap.org/openldap/openldap.git
synced 2024-12-15 03:01:09 +08:00
dc07e765f2
This commit includes many changes. All changes compile under NT but
have not been tested under UNIX.
A Summary of changes (likely incomplete):
NT changes:
Removed lint.
Clean up configuration support for "Debug", "Release", "SDebug",
and "SRelease" configurations.
Share output directories for clients, libraries,
and slapd. (maybe they should be combined further
and moved to build/{,S}{Debug,Release}).
Enable threading when _MT is defined.
Enable debuging when _DEBUG is defined.
Disable setting of NDEBUG under Release/SRelease. Asserts
are disabled in <ac/assert.h> when LDAP_DEBUG is not
defined.
Added 'build/main.dsp' Master project.
Removed non-slapd projects from slapd.dsp (see main.dsp).
Removed replaced many uses of _WIN32 macro with feature based
macros.
ldap_cdefs.h changes
#define LDAP_CONST const
(see below)
#define LDAP_F(type) LDAP_F_PRE type LDAP_F_POST
To allow specifiers to be added before and after
the type declaration. (For DLL handling)
LBER/LDAP changes
Namespace changes:
s/lber_/ber_/ for here and there.
s/NAME_ERROR/LDAP_NAME_ERROR/g
Deleted NULLMSG and other NULL* macros for namespace reasons.
"const" libraries. Installed headers (ie: lber.h, ldap.h)
use LDAP_CONST macro. Normally set to 'const' when
__STDC__. Can be set externally to enable/disable
'constification' of external interface. Internal
interface always uses 'const'. Did not fix warnings
in -lldif (in lieu of new LDIF parser).
Added _ext API implementations (excepting search and bind).
Need to implement ldap_int_get_controls() for reponses
with controls.
Added numberous assert() checks.
LDAP_R
_MT defines HAVE_NT_THREADS
Added numberous assert() checks.
Changed ldap_pthread_t back to unsigned long. Used cast
to HANDLE in _join().
LDBM
Replaced _WIN32 with HAVE_SYSLOG
ud
Added version string if MKVERSION is not defined. (MKVERSION
needs to be set under UNIX).
slapd
Made connection sockbuf field a pointer to a sockbuf. This
removed slap.h dependency on lber-int.h. lber-int.h now only
included by those files needing to mess with the sockbuf.
Used ber_* functions/macros to access sockbuf internals whenever
possible.
Added version string if MKVERSION is not defined. (MKVERSION
needs to be set under UNIX).
Removed FD_SET unsigned lint
slapd/tools
Used EXEEXT to added ".exe" to routines. Need to define EXEEXT
under UNIX.
ldappasswd
Added ldappasswd.dsp. Ported to NT. Used getpid() to seed rand().
nt_debug
Minor cleanup. Added "portable.h" include and used <ac/*.h> where
appropriate. Added const to char* format argument.
390 lines
8.4 KiB
C
390 lines
8.4 KiB
C
/*
|
|
* Copyright 1998-1999 The OpenLDAP Foundation, All Rights Reserved.
|
|
* COPYING RESTRICTIONS APPLY, see COPYRIGHT file
|
|
*/
|
|
/* Portions
|
|
* Copyright (c) 1996 Regents of the University of Michigan.
|
|
* All rights reserved.
|
|
*
|
|
* LIBLDAP url.c -- LDAP URL related routines
|
|
*
|
|
* LDAP URLs look like this:
|
|
* l d a p : / / hostport / dn [ ? attributes [ ? scope [ ? filter ] ] ]
|
|
*
|
|
* where:
|
|
* attributes is a comma separated list
|
|
* scope is one of these three strings: base one sub (default=base)
|
|
* filter is an string-represented filter as in RFC 1558
|
|
*
|
|
* e.g., ldap://ldap.itd.umich.edu/c=US?o,description?one?o=umich
|
|
*
|
|
* We also tolerate URLs that look like: <ldapurl> and <URL:ldapurl>
|
|
*/
|
|
|
|
#include "portable.h"
|
|
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
|
|
#include <ac/ctype.h>
|
|
#include <ac/socket.h>
|
|
#include <ac/string.h>
|
|
#include <ac/time.h>
|
|
|
|
#include "ldap-int.h"
|
|
|
|
|
|
/* local functions */
|
|
static const char* skip_url_prefix LDAP_P(( const char *url, int *enclosedp ));
|
|
static void hex_unescape LDAP_P(( char *s ));
|
|
static int unhex( char c );
|
|
|
|
|
|
int
|
|
ldap_is_ldap_url( LDAP_CONST char *url )
|
|
{
|
|
int enclosed;
|
|
|
|
return( url != NULL && skip_url_prefix( url, &enclosed ) != NULL );
|
|
}
|
|
|
|
|
|
static const char*
|
|
skip_url_prefix( const char *url, int *enclosedp )
|
|
{
|
|
/*
|
|
* return non-zero if this looks like a LDAP URL; zero if not
|
|
* if non-zero returned, *urlp will be moved past "ldap://" part of URL
|
|
*/
|
|
char* p;
|
|
|
|
if ( url == NULL ) {
|
|
return( NULL );
|
|
}
|
|
|
|
p = (char *) url;
|
|
|
|
/* skip leading '<' (if any) */
|
|
if ( *p == '<' ) {
|
|
*enclosedp = 1;
|
|
++p;
|
|
} else {
|
|
*enclosedp = 0;
|
|
}
|
|
|
|
/* skip leading "URL:" (if any) */
|
|
if ( strlen( p ) >= LDAP_URL_URLCOLON_LEN
|
|
&& strncasecmp( p, LDAP_URL_URLCOLON, LDAP_URL_URLCOLON_LEN ) == 0 )
|
|
{
|
|
p += LDAP_URL_URLCOLON_LEN;
|
|
}
|
|
|
|
/* check for missing "ldap://" prefix */
|
|
if ( strlen( p ) < LDAP_URL_PREFIX_LEN ||
|
|
strncasecmp( p, LDAP_URL_PREFIX, LDAP_URL_PREFIX_LEN ) != 0 ) {
|
|
return( NULL );
|
|
}
|
|
|
|
/* skip over "ldap://" prefix and return success */
|
|
p += LDAP_URL_PREFIX_LEN;
|
|
return( p );
|
|
}
|
|
|
|
|
|
|
|
int
|
|
ldap_url_parse( LDAP_CONST char *url_in, LDAPURLDesc **ludpp )
|
|
{
|
|
/*
|
|
* Pick apart the pieces of an LDAP URL.
|
|
*/
|
|
|
|
LDAPURLDesc *ludp;
|
|
char *attrs, *p, *q;
|
|
int enclosed, i, nattrs;
|
|
const char *url_tmp;
|
|
char *url;
|
|
|
|
Debug( LDAP_DEBUG_TRACE, "ldap_url_parse(%s)\n", url, 0, 0 );
|
|
|
|
*ludpp = NULL; /* pessimistic */
|
|
|
|
url_tmp = skip_url_prefix( url_in, &enclosed );
|
|
|
|
if ( url_tmp == NULL ) {
|
|
return( LDAP_URL_ERR_NOTLDAP );
|
|
}
|
|
|
|
/* make working copy of the remainder of the URL */
|
|
if (( url = strdup( url_tmp )) == NULL ) {
|
|
return( LDAP_URL_ERR_MEM );
|
|
}
|
|
|
|
/* allocate return struct */
|
|
if (( ludp = (LDAPURLDesc *)calloc( 1, sizeof( LDAPURLDesc )))
|
|
== NULLLDAPURLDESC )
|
|
{
|
|
free( url );
|
|
return( LDAP_URL_ERR_MEM );
|
|
}
|
|
|
|
|
|
if ( enclosed && *((p = url + strlen( url ) - 1)) == '>' ) {
|
|
*p = '\0';
|
|
}
|
|
|
|
/* set defaults */
|
|
ludp->lud_scope = LDAP_SCOPE_BASE;
|
|
ludp->lud_filter = "(objectClass=*)";
|
|
|
|
/* lud_string is the only malloc'd string space we use */
|
|
ludp->lud_string = url;
|
|
|
|
/* scan forward for '/' that marks end of hostport and begin. of dn */
|
|
if (( ludp->lud_dn = strchr( url, '/' )) == NULL ) {
|
|
ldap_free_urldesc( ludp );
|
|
return( LDAP_URL_ERR_NODN );
|
|
}
|
|
|
|
/* terminate hostport; point to start of dn */
|
|
*ludp->lud_dn++ = '\0';
|
|
|
|
if (( p = strchr( url, ':' )) != NULL ) {
|
|
*p++ = '\0';
|
|
ludp->lud_port = atoi( p );
|
|
}
|
|
|
|
if ( *url == '\0' ) {
|
|
ludp->lud_host = NULL;
|
|
} else {
|
|
ludp->lud_host = url;
|
|
hex_unescape( ludp->lud_host );
|
|
}
|
|
|
|
/* scan for '?' that marks end of dn and beginning of attributes */
|
|
if (( attrs = strchr( ludp->lud_dn, '?' )) != NULL ) {
|
|
/* terminate dn; point to start of attrs. */
|
|
*attrs++ = '\0';
|
|
|
|
/* scan for '?' that marks end of attrs and begin. of scope */
|
|
if (( p = strchr( attrs, '?' )) != NULL ) {
|
|
/*
|
|
* terminate attrs; point to start of scope and scan for
|
|
* '?' that marks end of scope and begin. of filter
|
|
*/
|
|
*p++ = '\0';
|
|
|
|
if (( q = strchr( p, '?' )) != NULL ) {
|
|
/* terminate scope; point to start of filter */
|
|
*q++ = '\0';
|
|
if ( *q != '\0' ) {
|
|
ludp->lud_filter = q;
|
|
hex_unescape( ludp->lud_filter );
|
|
}
|
|
}
|
|
|
|
if ( strcasecmp( p, "one" ) == 0 ) {
|
|
ludp->lud_scope = LDAP_SCOPE_ONELEVEL;
|
|
} else if ( strcasecmp( p, "base" ) == 0 ) {
|
|
ludp->lud_scope = LDAP_SCOPE_BASE;
|
|
} else if ( strcasecmp( p, "sub" ) == 0 ) {
|
|
ludp->lud_scope = LDAP_SCOPE_SUBTREE;
|
|
} else if ( *p != '\0' ) {
|
|
ldap_free_urldesc( ludp );
|
|
return( LDAP_URL_ERR_BADSCOPE );
|
|
}
|
|
}
|
|
}
|
|
|
|
if ( *ludp->lud_dn == '\0' ) {
|
|
ludp->lud_dn = NULL;
|
|
} else {
|
|
hex_unescape( ludp->lud_dn );
|
|
}
|
|
|
|
/*
|
|
* if attrs list was included, turn it into a null-terminated array
|
|
*/
|
|
if ( attrs != NULL && *attrs != '\0' ) {
|
|
for ( nattrs = 1, p = attrs; *p != '\0'; ++p ) {
|
|
if ( *p == ',' ) {
|
|
++nattrs;
|
|
}
|
|
}
|
|
|
|
if (( ludp->lud_attrs = (char **)calloc( nattrs + 1,
|
|
sizeof( char * ))) == NULL ) {
|
|
ldap_free_urldesc( ludp );
|
|
return( LDAP_URL_ERR_MEM );
|
|
}
|
|
|
|
for ( i = 0, p = attrs; i < nattrs; ++i ) {
|
|
ludp->lud_attrs[ i ] = p;
|
|
if (( p = strchr( p, ',' )) != NULL ) {
|
|
*p++ ='\0';
|
|
}
|
|
hex_unescape( ludp->lud_attrs[ i ] );
|
|
}
|
|
}
|
|
|
|
*ludpp = ludp;
|
|
|
|
return( 0 );
|
|
}
|
|
|
|
|
|
void
|
|
ldap_free_urldesc( LDAPURLDesc *ludp )
|
|
{
|
|
if ( ludp != NULLLDAPURLDESC ) {
|
|
if ( ludp->lud_string != NULL ) {
|
|
free( ludp->lud_string );
|
|
}
|
|
if ( ludp->lud_attrs != NULL ) {
|
|
free( ludp->lud_attrs );
|
|
}
|
|
free( ludp );
|
|
}
|
|
}
|
|
|
|
|
|
|
|
int
|
|
ldap_url_search( LDAP *ld, LDAP_CONST char *url, int attrsonly )
|
|
{
|
|
int err;
|
|
LDAPURLDesc *ludp;
|
|
BerElement *ber;
|
|
#ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS
|
|
LDAPServer *srv = NULL;
|
|
#endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS */
|
|
|
|
if ( ldap_url_parse( url, &ludp ) != 0 ) {
|
|
ld->ld_errno = LDAP_PARAM_ERROR;
|
|
return( -1 );
|
|
}
|
|
|
|
if (( ber = ldap_build_search_req( ld, ludp->lud_dn, ludp->lud_scope,
|
|
ludp->lud_filter, ludp->lud_attrs, attrsonly, NULL, NULL )) == NULLBER ) {
|
|
return( -1 );
|
|
}
|
|
|
|
err = 0;
|
|
|
|
if ( ludp->lud_host != NULL || ludp->lud_port != 0 ) {
|
|
#ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS
|
|
if (( srv = (LDAPServer *)calloc( 1, sizeof( LDAPServer )))
|
|
== NULL || ( srv->lsrv_host = strdup( ludp->lud_host ==
|
|
NULL ? ld->ld_defhost : ludp->lud_host )) == NULL ) {
|
|
if ( srv != NULL ) {
|
|
free( srv );
|
|
}
|
|
ld->ld_errno = LDAP_NO_MEMORY;
|
|
err = -1;
|
|
} else {
|
|
if ( ludp->lud_port == 0 ) {
|
|
srv->lsrv_port = openldap_ldap_global_options.ldo_defport;
|
|
} else {
|
|
srv->lsrv_port = ludp->lud_port;
|
|
}
|
|
}
|
|
#else /* LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS */
|
|
ld->ld_errno = LDAP_LOCAL_ERROR;
|
|
err = -1;
|
|
#endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS */
|
|
}
|
|
|
|
if ( err != 0 ) {
|
|
ber_free( ber, 1 );
|
|
} else {
|
|
#ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS
|
|
err = ldap_send_server_request( ld, ber, ld->ld_msgid, NULL, srv,
|
|
NULL, 1 );
|
|
#else /* LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS */
|
|
err = ldap_send_initial_request( ld, LDAP_REQ_SEARCH,
|
|
ludp->lud_dn, ber );
|
|
#endif /* LDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS */
|
|
}
|
|
|
|
ldap_free_urldesc( ludp );
|
|
|
|
return( err );
|
|
}
|
|
|
|
|
|
int
|
|
ldap_url_search_st( LDAP *ld, LDAP_CONST char *url, int attrsonly,
|
|
struct timeval *timeout, LDAPMessage **res )
|
|
{
|
|
int msgid;
|
|
|
|
if (( msgid = ldap_url_search( ld, url, attrsonly )) == -1 ) {
|
|
return( ld->ld_errno );
|
|
}
|
|
|
|
if ( ldap_result( ld, msgid, 1, timeout, res ) == -1 ) {
|
|
return( ld->ld_errno );
|
|
}
|
|
|
|
if ( ld->ld_errno == LDAP_TIMEOUT ) {
|
|
(void) ldap_abandon( ld, msgid );
|
|
ld->ld_errno = LDAP_TIMEOUT;
|
|
return( ld->ld_errno );
|
|
}
|
|
|
|
return( ldap_result2error( ld, *res, 0 ));
|
|
}
|
|
|
|
|
|
int
|
|
ldap_url_search_s(
|
|
LDAP *ld, LDAP_CONST char *url, int attrsonly, LDAPMessage **res )
|
|
{
|
|
int msgid;
|
|
|
|
if (( msgid = ldap_url_search( ld, url, attrsonly )) == -1 ) {
|
|
return( ld->ld_errno );
|
|
}
|
|
|
|
if ( ldap_result( ld, msgid, 1, (struct timeval *)NULL, res ) == -1 ) {
|
|
return( ld->ld_errno );
|
|
}
|
|
|
|
return( ldap_result2error( ld, *res, 0 ));
|
|
}
|
|
|
|
|
|
static void
|
|
hex_unescape( char *s )
|
|
{
|
|
/*
|
|
* Remove URL hex escapes from s... done in place. The basic concept for
|
|
* this routine is borrowed from the WWW library HTUnEscape() routine.
|
|
*/
|
|
char *p;
|
|
|
|
for ( p = s; *s != '\0'; ++s ) {
|
|
if ( *s == '%' ) {
|
|
if ( *++s != '\0' ) {
|
|
*p = unhex( *s ) << 4;
|
|
}
|
|
if ( *++s != '\0' ) {
|
|
*p++ += unhex( *s );
|
|
}
|
|
} else {
|
|
*p++ = *s;
|
|
}
|
|
}
|
|
|
|
*p = '\0';
|
|
}
|
|
|
|
|
|
static int
|
|
unhex( char c )
|
|
{
|
|
return( c >= '0' && c <= '9' ? c - '0'
|
|
: c >= 'A' && c <= 'F' ? c - 'A' + 10
|
|
: c - 'a' + 10 );
|
|
}
|