Skip to content
GitLab
Menu
Projects
Groups
Snippets
/
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Sign in / Register
Toggle navigation
Menu
Open sidebar
Lukas However
OpenLDAP
Commits
ba6ac023
Commit
ba6ac023
authored
Dec 30, 2004
by
Pierangelo Masarati
Browse files
works now
parent
48187a6b
Changes
6
Hide whitespace changes
Inline
Side-by-side
servers/slapd/back-meta/back-meta.h
View file @
ba6ac023
...
...
@@ -144,6 +144,7 @@ extern int suffix_massage_config( struct rewrite_info *info,
struct
berval
*
pvnc
,
struct
berval
*
nvnc
,
struct
berval
*
prnc
,
struct
berval
*
nrnc
);
#endif
/* ENABLE_REWRITE */
extern
int
ldap_back_referral_result_rewrite
(
dncookie
*
dc
,
BerVarray
a_vals
);
extern
int
ldap_dnattr_rewrite
(
dncookie
*
dc
,
BerVarray
a_vals
);
extern
int
ldap_dnattr_result_rewrite
(
dncookie
*
dc
,
BerVarray
a_vals
);
...
...
servers/slapd/back-meta/compare.c
View file @
ba6ac023
...
...
@@ -114,6 +114,21 @@ meta_back_compare( Operation *op, SlapReply *rs )
if
(
mapped_attr
.
bv_val
==
NULL
||
mapped_attr
.
bv_val
[
0
]
==
'\0'
)
{
continue
;
}
if
(
op
->
oq_compare
.
rs_ava
->
aa_desc
->
ad_type
->
sat_syntax
==
slap_schema
.
si_syn_distinguishedName
)
{
dc
.
ctx
=
"compareAttrDN"
;
switch
(
ldap_back_dn_massage
(
&
dc
,
&
op
->
oq_compare
.
rs_ava
->
aa_value
,
&
mapped_value
)
)
{
case
LDAP_UNWILLING_TO_PERFORM
:
rc
=
1
;
goto
finish
;
default:
break
;
}
}
}
/*
...
...
@@ -123,13 +138,16 @@ meta_back_compare( Operation *op, SlapReply *rs )
*/
msgid
[
i
]
=
ldap_compare
(
lc
->
conns
[
i
].
ld
,
mdn
.
bv_val
,
mapped_attr
.
bv_val
,
mapped_value
.
bv_val
);
if
(
mdn
.
bv_val
!=
op
->
o_req_dn
.
bv_val
)
{
free
(
mdn
.
bv_val
);
mdn
.
bv_val
=
NULL
;
}
if
(
mapped_attr
.
bv_val
!=
op
->
oq_compare
.
rs_ava
->
aa_desc
->
ad_cname
.
bv_val
)
{
free
(
mapped_attr
.
bv_val
);
}
if
(
mapped_value
.
bv_val
!=
op
->
oq_compare
.
rs_ava
->
aa_value
.
bv_val
)
{
free
(
mapped_value
.
bv_val
);
}
...
...
servers/slapd/back-meta/config.c
View file @
ba6ac023
...
...
@@ -771,10 +771,10 @@ suffix_massage_config(
ch_free
(
rargv
[
2
]
);
rargv
[
0
]
=
"rewriteContext"
;
rargv
[
1
]
=
"search
Result
"
;
rargv
[
1
]
=
"search
EntryDN
"
;
rargv
[
2
]
=
NULL
;
rewrite_parse
(
info
,
"<suffix massage>"
,
++
line
,
2
,
rargv
);
rargv
[
0
]
=
"rewriteRule"
;
rargv
[
1
]
=
suffix_massage_regexize
(
prnc
->
bv_val
);
rargv
[
2
]
=
suffix_massage_patternize
(
pvnc
->
bv_val
);
...
...
@@ -784,20 +784,40 @@ suffix_massage_config(
ch_free
(
rargv
[
1
]
);
ch_free
(
rargv
[
2
]
);
/* backward compatibility */
rargv
[
0
]
=
"rewriteContext"
;
rargv
[
1
]
=
"searchResult"
;
rargv
[
2
]
=
"alias"
;
rargv
[
3
]
=
"searchEntryDN"
;
rargv
[
4
]
=
NULL
;
rewrite_parse
(
info
,
"<suffix massage>"
,
++
line
,
4
,
rargv
);
rargv
[
0
]
=
"rewriteContext"
;
rargv
[
1
]
=
"matchedDN"
;
rargv
[
2
]
=
"alias"
;
rargv
[
3
]
=
"search
Result
"
;
rargv
[
3
]
=
"search
EntryDN
"
;
rargv
[
4
]
=
NULL
;
rewrite_parse
(
info
,
"<suffix massage>"
,
++
line
,
4
,
rargv
);
rargv
[
0
]
=
"rewriteContext"
;
rargv
[
1
]
=
"searchAttrDN"
;
rargv
[
2
]
=
"alias"
;
rargv
[
3
]
=
"search
Result
"
;
rargv
[
3
]
=
"search
EntryDN
"
;
rargv
[
4
]
=
NULL
;
rewrite_parse
(
info
,
"<suffix massage>"
,
++
line
,
4
,
rargv
);
/* NOTE: this corresponds to #undef'ining RWM_REFERRAL_REWRITE;
* see servers/slapd/overlays/rwm.h for details */
rargv
[
0
]
=
"rewriteContext"
;
rargv
[
1
]
=
"referralAttrDN"
;
rargv
[
2
]
=
NULL
;
rewrite_parse
(
info
,
"<suffix massage>"
,
++
line
,
2
,
rargv
);
rargv
[
0
]
=
"rewriteContext"
;
rargv
[
1
]
=
"referralDN"
;
rargv
[
2
]
=
NULL
;
rewrite_parse
(
info
,
"<suffix massage>"
,
++
line
,
2
,
rargv
);
return
0
;
}
#endif
/* ENABLE_REWRITE */
...
...
servers/slapd/back-meta/map.c
View file @
ba6ac023
...
...
@@ -209,7 +209,7 @@ map_attr_value(
dncookie
fdc
=
*
dc
;
#ifdef ENABLE_REWRITE
fdc
.
ctx
=
"searchFilter"
;
fdc
.
ctx
=
"searchFilter
AttrDN
"
;
#endif
switch
(
ldap_back_dn_massage
(
&
fdc
,
value
,
&
vtmp
)
)
{
...
...
@@ -245,8 +245,8 @@ map_attr_value(
return
0
;
}
int
ldap_back_filter_map_rewrite
(
static
int
ldap_back_
int_
filter_map_rewrite
(
dncookie
*
dc
,
Filter
*
f
,
struct
berval
*
fstr
,
...
...
@@ -421,7 +421,7 @@ ldap_back_filter_map_rewrite(
for
(
p
=
f
->
f_list
;
p
!=
NULL
;
p
=
p
->
f_next
)
{
len
=
fstr
->
bv_len
;
if
(
ldap_back_filter_map_rewrite
(
dc
,
p
,
&
vtmp
,
remap
)
)
if
(
ldap_back_
int_
filter_map_rewrite
(
dc
,
p
,
&
vtmp
,
remap
)
)
{
return
-
1
;
}
...
...
@@ -469,26 +469,163 @@ ldap_back_filter_map_rewrite(
}
break
;
case
SLAPD_FILTER_COMPUTED
:
ber_str2bv
(
f
->
f_result
==
LDAP_COMPARE_FALSE
?
"(?=false)"
:
f
->
f_result
==
LDAP_COMPARE_TRUE
?
"(?=true)"
:
f
->
f_result
==
SLAPD_COMPARE_UNDEFINED
?
"(?=undefined)"
:
"(?=error)"
,
f
->
f_result
==
LDAP_COMPARE_FALSE
?
sizeof
(
"(?=false)"
)
-
1
:
f
->
f_result
==
LDAP_COMPARE_TRUE
?
sizeof
(
"(?=true)"
)
-
1
:
f
->
f_result
==
SLAPD_COMPARE_UNDEFINED
?
sizeof
(
"(?=undefined)"
)
-
1
:
sizeof
(
"(?=error)"
)
-
1
,
1
,
fstr
);
switch
(
f
->
f_result
)
{
case
LDAP_COMPARE_FALSE
:
ber_str2bv
(
"(?=false)"
,
STRLENOF
(
"(?=false)"
),
1
,
fstr
);
break
;
case
LDAP_COMPARE_TRUE
:
ber_str2bv
(
"(?=true)"
,
STRLENOF
(
"(?=true)"
),
1
,
fstr
);
break
;
case
SLAPD_COMPARE_UNDEFINED
:
ber_str2bv
(
"(?=undefined)"
,
STRLENOF
(
"(?=undefined)"
),
1
,
fstr
);
break
;
default:
ber_str2bv
(
"(?=error)"
,
STRLENOF
(
"(?=error)"
),
1
,
fstr
);
break
;
}
break
;
default:
ber_str2bv
(
"(?=unknown)"
,
sizeof
(
"(?=unknown)"
)
-
1
,
1
,
fstr
);
ber_str2bv
(
"(?=unknown)"
,
STRLENOF
(
"(?=unknown)"
),
1
,
fstr
);
break
;
}
return
0
;
}
int
ldap_back_filter_map_rewrite
(
dncookie
*
dc
,
Filter
*
f
,
struct
berval
*
fstr
,
int
remap
)
{
int
rc
;
dncookie
fdc
;
struct
berval
ftmp
;
rc
=
ldap_back_int_filter_map_rewrite
(
dc
,
f
,
fstr
,
remap
);
#ifdef ENABLE_REWRITE
if
(
rc
!=
LDAP_SUCCESS
)
{
return
rc
;
}
fdc
=
*
dc
;
ftmp
=
*
fstr
;
fdc
.
ctx
=
"searchFilter"
;
switch
(
rewrite_session
(
fdc
.
rwmap
->
rwm_rw
,
fdc
.
ctx
,
(
!
BER_BVISEMPTY
(
&
ftmp
)
?
ftmp
.
bv_val
:
""
),
fdc
.
conn
,
&
fstr
->
bv_val
)
)
{
case
REWRITE_REGEXEC_OK
:
if
(
!
BER_BVISNULL
(
fstr
)
)
{
fstr
->
bv_len
=
strlen
(
fstr
->
bv_val
);
}
else
{
*
fstr
=
ftmp
;
}
Debug
(
LDAP_DEBUG_ARGS
,
"[rw] %s:
\"
%s
\"
->
\"
%s
\"\n
"
,
fdc
.
ctx
,
ftmp
.
bv_val
,
fstr
->
bv_val
);
rc
=
LDAP_SUCCESS
;
break
;
case
REWRITE_REGEXEC_UNWILLING
:
if
(
fdc
.
rs
)
{
fdc
.
rs
->
sr_err
=
LDAP_UNWILLING_TO_PERFORM
;
fdc
.
rs
->
sr_text
=
"Operation not allowed"
;
}
rc
=
LDAP_UNWILLING_TO_PERFORM
;
break
;
case
REWRITE_REGEXEC_ERR
:
if
(
fdc
.
rs
)
{
fdc
.
rs
->
sr_err
=
LDAP_OTHER
;
fdc
.
rs
->
sr_text
=
"Rewrite error"
;
}
rc
=
LDAP_OTHER
;
break
;
}
#endif
/* ENABLE_REWRITE */
return
rc
;
}
int
ldap_back_referral_result_rewrite
(
dncookie
*
dc
,
BerVarray
a_vals
)
{
int
i
,
last
;
assert
(
dc
);
assert
(
a_vals
);
for
(
last
=
0
;
!
BER_BVISNULL
(
&
a_vals
[
last
]
);
last
++
)
;
last
--
;
for
(
i
=
0
;
!
BER_BVISNULL
(
&
a_vals
[
i
]
);
i
++
)
{
struct
berval
dn
,
olddn
;
int
rc
;
LDAPURLDesc
*
ludp
;
rc
=
ldap_url_parse
(
a_vals
[
i
].
bv_val
,
&
ludp
);
if
(
rc
!=
LDAP_URL_SUCCESS
)
{
/* leave attr untouched if massage failed */
continue
;
}
ber_str2bv
(
ludp
->
lud_dn
,
0
,
0
,
&
olddn
);
rc
=
ldap_back_dn_massage
(
dc
,
&
olddn
,
&
dn
);
switch
(
rc
)
{
case
LDAP_UNWILLING_TO_PERFORM
:
/*
* FIXME: need to check if it may be considered
* legal to trim values when adding/modifying;
* it should be when searching (e.g. ACLs).
*/
LBER_FREE
(
a_vals
[
i
].
bv_val
);
if
(
last
>
i
)
{
a_vals
[
i
]
=
a_vals
[
last
];
}
BER_BVZERO
(
&
a_vals
[
last
]
);
last
--
;
i
--
;
break
;
default:
/* leave attr untouched if massage failed */
if
(
!
BER_BVISNULL
(
&
dn
)
&&
olddn
.
bv_val
!=
dn
.
bv_val
)
{
char
*
newurl
;
ludp
->
lud_dn
=
dn
.
bv_val
;
newurl
=
ldap_url_desc2str
(
ludp
);
if
(
newurl
==
NULL
)
{
/* FIXME: leave attr untouched
* even if ldap_url_desc2str failed... */
break
;
}
LBER_FREE
(
a_vals
[
i
].
bv_val
);
ber_str2bv
(
newurl
,
0
,
1
,
&
a_vals
[
i
]
);
LDAP_FREE
(
newurl
);
ludp
->
lud_dn
=
olddn
.
bv_val
;
}
break
;
}
ldap_free_urldesc
(
ludp
);
}
return
0
;
}
/*
* I don't like this much, but we need two different
* functions because different heap managers may be
...
...
@@ -558,12 +695,11 @@ ldap_dnattr_result_rewrite(
* legal to trim values when adding/modifying;
* it should be when searching (e.g. ACLs).
*/
LBER_FREE
(
&
a_vals
[
i
].
bv_val
);
LBER_FREE
(
a_vals
[
i
].
bv_val
);
if
(
last
>
i
)
{
a_vals
[
i
]
=
a_vals
[
last
];
}
a_vals
[
last
].
bv_val
=
NULL
;
a_vals
[
last
].
bv_len
=
0
;
BER_BVZERO
(
&
a_vals
[
last
]
);
last
--
;
break
;
...
...
servers/slapd/back-meta/search.c
View file @
ba6ac023
...
...
@@ -380,11 +380,6 @@ new_candidate:;
char
**
references
=
NULL
;
int
cnt
;
/*
* FIXME: should we collect references
* and send them alltogether at the end?
*/
rc
=
ldap_parse_reference
(
lsc
->
ld
,
res
,
&
references
,
&
rs
->
sr_ctrls
,
1
);
res
=
NULL
;
...
...
@@ -397,24 +392,35 @@ new_candidate:;
continue
;
}
#ifdef ENABLE_REWRITE
dc
.
ctx
=
"referralDN"
;
#else
/* ! ENABLE_REWRITE */
dc
.
tofrom
=
0
;
dc
.
normalized
=
0
;
#endif
/* ! ENABLE_REWRITE */
for
(
cnt
=
0
;
references
[
cnt
];
cnt
++
)
/* NO OP */
;
rs
->
sr_ref
=
ch_calloc
(
cnt
+
1
,
sizeof
(
struct
berval
)
);
;
rs
->
sr_ref
=
ch_calloc
(
sizeof
(
struct
berval
)
,
cnt
+
1
);
for
(
cnt
=
0
;
references
[
cnt
];
cnt
++
)
{
rs
->
sr_ref
[
cnt
].
bv_val
=
references
[
cnt
];
rs
->
sr_ref
[
cnt
].
bv_len
=
strlen
(
references
[
cnt
]
);
ber_str2bv
(
references
[
cnt
],
0
,
1
,
&
rs
->
sr_ref
[
cnt
]
);
}
BER_BVZERO
(
&
rs
->
sr_ref
[
cnt
]
);
(
void
)
ldap_back_referral_result_rewrite
(
&
dc
,
rs
->
sr_ref
);
/* ignore return value by now */
(
void
)
send_search_reference
(
op
,
rs
);
if
(
rs
->
sr_ref
!=
NULL
&&
!
BER_BVISNULL
(
&
rs
->
sr_ref
[
0
]
)
)
{
/* ignore return value by now */
(
void
)
send_search_reference
(
op
,
rs
);
ber_bvarray_free
(
rs
->
sr_ref
);
rs
->
sr_ref
=
NULL
;
}
/* cleanup */
if
(
references
)
{
ldap_value_free
(
references
);
ch_free
(
rs
->
sr_ref
);
rs
->
sr_ref
=
NULL
;
}
if
(
rs
->
sr_ctrls
)
{
...
...
@@ -677,6 +683,9 @@ meta_send_entry(
}
else
if
(
attr
->
a_desc
->
ad_type
->
sat_syntax
==
slap_schema
.
si_syn_distinguishedName
)
{
ldap_dnattr_result_rewrite
(
&
dc
,
attr
->
a_vals
);
}
else
if
(
attr
->
a_desc
==
slap_schema
.
si_ad_ref
)
{
ldap_back_referral_result_rewrite
(
&
dc
,
attr
->
a_vals
);
}
if
(
last
&&
attr
->
a_desc
->
ad_type
->
sat_equality
&&
...
...
tests/scripts/test030-relay
View file @
ba6ac023
...
...
@@ -38,13 +38,11 @@ else
RELAYS
=
"
$RELAYS
ldap"
fi
# back-meta
- disable by now, needs work to line up with rwm
# back-meta
if
test
$BACKMETA
=
metano
;
then
echo
"meta backend not available, test skipped"
else
# RELAYS="$RELAYS meta"
echo
"==> back-meta disabled by now, needs work"
echo
""
RELAYS
=
"
$RELAYS
meta"
fi
first
=
1
...
...
Write
Preview
Supports
Markdown
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
