4 Copyright (C) Andrew Tridgell 2004
5 Copyright (C) Stefan Metzmacher 2004
6 Copyright (C) Simo Sorce 2006-2008
7 Copyright (C) Matthias Dieter Wallnöfer 2009
9 ** NOTE! The following LGPL license applies to the ldb
10 ** library. This does NOT imply that all of Samba is released
13 This library is free software; you can redistribute it and/or
14 modify it under the terms of the GNU Lesser General Public
15 License as published by the Free Software Foundation; either
16 version 3 of the License, or (at your option) any later version.
18 This library is distributed in the hope that it will be useful,
19 but WITHOUT ANY WARRANTY; without even the implied warranty of
20 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
21 Lesser General Public License for more details.
23 You should have received a copy of the GNU Lesser General Public
24 License along with this library; if not, see <http://www.gnu.org/licenses/>.
30 * Component: ldb tdb backend
32 * Description: core functions for tdb backend
34 * Author: Andrew Tridgell
35 * Author: Stefan Metzmacher
39 * - description: make the module use asynchronous calls
43 * - description: make it possible to use event contexts
47 * - description: fix up memory leaks and small bugs
49 * Author: Matthias Dieter Wallnöfer
56 map a tdb error code to a ldb error code
58 int ltdb_err_map(enum TDB_ERROR tdb_code)
66 return LDB_ERR_OPERATIONS_ERROR;
68 return LDB_ERR_PROTOCOL_ERROR;
72 case TDB_ERR_LOCK_TIMEOUT:
73 return LDB_ERR_TIME_LIMIT_EXCEEDED;
75 return LDB_ERR_ENTRY_ALREADY_EXISTS;
77 return LDB_ERR_NO_SUCH_OBJECT;
79 return LDB_ERR_INSUFFICIENT_ACCESS_RIGHTS;
85 lock the database for read - use by ltdb_search and ltdb_sequence_number
87 int ltdb_lock_read(struct ldb_module *module)
89 void *data = ldb_module_get_private(module);
90 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
93 if (ltdb->in_transaction == 0 &&
94 ltdb->read_lock_count == 0) {
95 ret = tdb_lockall_read(ltdb->tdb);
98 ltdb->read_lock_count++;
104 unlock the database after a ltdb_lock_read()
106 int ltdb_unlock_read(struct ldb_module *module)
108 void *data = ldb_module_get_private(module);
109 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
110 if (ltdb->in_transaction == 0 && ltdb->read_lock_count == 1) {
111 return tdb_unlockall_read(ltdb->tdb);
113 ltdb->read_lock_count--;
119 form a TDB_DATA for a record key
122 note that the key for a record can depend on whether the
123 dn refers to a case sensitive index record or not
125 struct TDB_DATA ltdb_key(struct ldb_module *module, struct ldb_dn *dn)
127 struct ldb_context *ldb = ldb_module_get_ctx(module);
129 char *key_str = NULL;
130 const char *dn_folded = NULL;
133 most DNs are case insensitive. The exception is index DNs for
134 case sensitive attributes
136 there are 3 cases dealt with in this code:
138 1) if the dn doesn't start with @ then uppercase the attribute
139 names and the attributes values of case insensitive attributes
140 2) if the dn starts with @ then leave it alone -
141 the indexing code handles the rest
144 dn_folded = ldb_dn_get_casefold(dn);
149 key_str = talloc_strdup(ldb, "DN=");
154 key_str = talloc_strdup_append_buffer(key_str, dn_folded);
159 key.dptr = (uint8_t *)key_str;
160 key.dsize = strlen(key_str) + 1;
172 check special dn's have valid attributes
173 currently only @ATTRIBUTES is checked
175 static int ltdb_check_special_dn(struct ldb_module *module,
176 const struct ldb_message *msg)
178 struct ldb_context *ldb = ldb_module_get_ctx(module);
181 if (! ldb_dn_is_special(msg->dn) ||
182 ! ldb_dn_check_special(msg->dn, LTDB_ATTRIBUTES)) {
186 /* we have @ATTRIBUTES, let's check attributes are fine */
187 /* should we check that we deny multivalued attributes ? */
188 for (i = 0; i < msg->num_elements; i++) {
189 if (ldb_attr_cmp(msg->elements[i].name, "distinguishedName") == 0) continue;
191 for (j = 0; j < msg->elements[i].num_values; j++) {
192 if (ltdb_check_at_attributes_values(&msg->elements[i].values[j]) != 0) {
193 ldb_set_errstring(ldb, "Invalid attribute value in an @ATTRIBUTES entry");
194 return LDB_ERR_INVALID_ATTRIBUTE_SYNTAX;
204 we've made a modification to a dn - possibly reindex and
205 update sequence number
207 static int ltdb_modified(struct ldb_module *module, struct ldb_dn *dn)
209 int ret = LDB_SUCCESS;
210 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
212 /* only allow modifies inside a transaction, otherwise the
214 if (ltdb->in_transaction == 0) {
215 ldb_set_errstring(ldb_module_get_ctx(module), "ltdb modify without transaction");
216 return LDB_ERR_OPERATIONS_ERROR;
219 if (ldb_dn_is_special(dn) &&
220 (ldb_dn_check_special(dn, LTDB_INDEXLIST) ||
221 ldb_dn_check_special(dn, LTDB_ATTRIBUTES)) ) {
222 ret = ltdb_reindex(module);
225 /* If the modify was to a normal record, or any special except @BASEINFO, update the seq number */
226 if (ret == LDB_SUCCESS &&
227 !(ldb_dn_is_special(dn) &&
228 ldb_dn_check_special(dn, LTDB_BASEINFO)) ) {
229 ret = ltdb_increase_sequence_number(module);
232 /* If the modify was to @OPTIONS, reload the cache */
233 if (ret == LDB_SUCCESS &&
234 ldb_dn_is_special(dn) &&
235 (ldb_dn_check_special(dn, LTDB_OPTIONS)) ) {
236 ret = ltdb_cache_reload(module);
243 store a record into the db
245 int ltdb_store(struct ldb_module *module, const struct ldb_message *msg, int flgs)
247 void *data = ldb_module_get_private(module);
248 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
249 TDB_DATA tdb_key, tdb_data;
250 int ret = LDB_SUCCESS;
252 tdb_key = ltdb_key(module, msg->dn);
253 if (tdb_key.dptr == NULL) {
254 return LDB_ERR_OTHER;
257 ret = ltdb_pack_data(module, msg, &tdb_data);
259 talloc_free(tdb_key.dptr);
260 return LDB_ERR_OTHER;
263 ret = tdb_store(ltdb->tdb, tdb_key, tdb_data, flgs);
265 ret = ltdb_err_map(tdb_error(ltdb->tdb));
270 talloc_free(tdb_key.dptr);
271 talloc_free(tdb_data.dptr);
277 static int ltdb_add_internal(struct ldb_module *module,
278 const struct ldb_message *msg)
280 struct ldb_context *ldb = ldb_module_get_ctx(module);
281 int ret = LDB_SUCCESS;
284 ret = ltdb_check_special_dn(module, msg);
285 if (ret != LDB_SUCCESS) {
289 if (ltdb_cache_load(module) != 0) {
290 return LDB_ERR_OPERATIONS_ERROR;
293 for (i=0;i<msg->num_elements;i++) {
294 struct ldb_message_element *el = &msg->elements[i];
295 const struct ldb_schema_attribute *a = ldb_schema_attribute_by_name(ldb, el->name);
297 if (el->num_values == 0) {
298 ldb_asprintf_errstring(ldb, "attribute %s on %s specified, but with 0 values (illegal)",
299 el->name, ldb_dn_get_linearized(msg->dn));
300 return LDB_ERR_CONSTRAINT_VIOLATION;
302 if (a && a->flags & LDB_ATTR_FLAG_SINGLE_VALUE) {
303 if (el->num_values > 1) {
304 ldb_asprintf_errstring(ldb, "SINGLE-VALUE attribute %s on %s specified more than once",
305 el->name, ldb_dn_get_linearized(msg->dn));
306 return LDB_ERR_CONSTRAINT_VIOLATION;
311 ret = ltdb_store(module, msg, TDB_INSERT);
312 if (ret != LDB_SUCCESS) {
313 if (ret == LDB_ERR_ENTRY_ALREADY_EXISTS) {
314 ldb_asprintf_errstring(ldb,
315 "Entry %s already exists",
316 ldb_dn_get_linearized(msg->dn));
321 ret = ltdb_index_add_new(module, msg);
322 if (ret != LDB_SUCCESS) {
326 ret = ltdb_modified(module, msg->dn);
332 add a record to the database
334 static int ltdb_add(struct ltdb_context *ctx)
336 struct ldb_module *module = ctx->module;
337 struct ldb_request *req = ctx->req;
338 int ret = LDB_SUCCESS;
340 ldb_request_set_state(req, LDB_ASYNC_PENDING);
342 if (ltdb_cache_load(module) != 0) {
343 return LDB_ERR_OPERATIONS_ERROR;
346 ret = ltdb_add_internal(module, req->op.add.message);
352 delete a record from the database, not updating indexes (used for deleting
355 int ltdb_delete_noindex(struct ldb_module *module, struct ldb_dn *dn)
357 void *data = ldb_module_get_private(module);
358 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
362 tdb_key = ltdb_key(module, dn);
364 return LDB_ERR_OTHER;
367 ret = tdb_delete(ltdb->tdb, tdb_key);
368 talloc_free(tdb_key.dptr);
371 ret = ltdb_err_map(tdb_error(ltdb->tdb));
377 static int ltdb_delete_internal(struct ldb_module *module, struct ldb_dn *dn)
379 struct ldb_message *msg;
380 int ret = LDB_SUCCESS;
382 msg = talloc(module, struct ldb_message);
384 return LDB_ERR_OPERATIONS_ERROR;
387 /* in case any attribute of the message was indexed, we need
388 to fetch the old record */
389 ret = ltdb_search_dn1(module, dn, msg);
390 if (ret != LDB_SUCCESS) {
391 /* not finding the old record is an error */
395 ret = ltdb_delete_noindex(module, dn);
396 if (ret != LDB_SUCCESS) {
400 /* remove any indexed attributes */
401 ret = ltdb_index_delete(module, msg);
402 if (ret != LDB_SUCCESS) {
406 ret = ltdb_modified(module, dn);
407 if (ret != LDB_SUCCESS) {
417 delete a record from the database
419 static int ltdb_delete(struct ltdb_context *ctx)
421 struct ldb_module *module = ctx->module;
422 struct ldb_request *req = ctx->req;
423 int ret = LDB_SUCCESS;
425 ldb_request_set_state(req, LDB_ASYNC_PENDING);
427 if (ltdb_cache_load(module) != 0) {
428 return LDB_ERR_OPERATIONS_ERROR;
431 ret = ltdb_delete_internal(module, req->op.del.dn);
437 find an element by attribute name. At the moment this does a linear search,
438 it should be re-coded to use a binary search once all places that modify
439 records guarantee sorted order
441 return the index of the first matching element if found, otherwise -1
443 static int find_element(const struct ldb_message *msg, const char *name)
446 for (i=0;i<msg->num_elements;i++) {
447 if (ldb_attr_cmp(msg->elements[i].name, name) == 0) {
456 add an element to an existing record. Assumes a elements array that we
457 can call re-alloc on, and assumed that we can re-use the data pointers from
458 the passed in additional values. Use with care!
460 returns 0 on success, -1 on failure (and sets errno)
462 static int ltdb_msg_add_element(struct ldb_context *ldb,
463 struct ldb_message *msg,
464 struct ldb_message_element *el)
466 struct ldb_message_element *e2;
469 if (el->num_values == 0) {
470 /* nothing to do here - we don't add empty elements */
474 e2 = talloc_realloc(msg, msg->elements, struct ldb_message_element,
475 msg->num_elements+1);
483 e2 = &msg->elements[msg->num_elements];
486 e2->flags = el->flags;
487 e2->values = talloc_array(msg->elements,
488 struct ldb_val, el->num_values);
493 for (i=0;i<el->num_values;i++) {
494 e2->values[i] = el->values[i];
496 e2->num_values = el->num_values;
504 delete all elements having a specified attribute name
506 static int msg_delete_attribute(struct ldb_module *module,
507 struct ldb_context *ldb,
508 struct ldb_message *msg, const char *name)
512 struct ldb_message_element *el;
514 el = ldb_msg_find_element(msg, name);
516 return LDB_ERR_NO_SUCH_ATTRIBUTE;
518 i = el - msg->elements;
520 ret = ltdb_index_del_element(module, msg->dn, el);
521 if (ret != LDB_SUCCESS) {
525 talloc_free(el->values);
526 if (msg->num_elements > (i+1)) {
527 memmove(el, el+1, sizeof(*el) * (msg->num_elements - (i+1)));
530 msg->elements = talloc_realloc(msg, msg->elements,
531 struct ldb_message_element,
537 delete all elements matching an attribute name/value
539 return LDB Error on failure
541 static int msg_delete_element(struct ldb_module *module,
542 struct ldb_message *msg,
544 const struct ldb_val *val)
546 struct ldb_context *ldb = ldb_module_get_ctx(module);
549 struct ldb_message_element *el;
550 const struct ldb_schema_attribute *a;
552 found = find_element(msg, name);
554 return LDB_ERR_NO_SUCH_ATTRIBUTE;
557 el = &msg->elements[found];
559 a = ldb_schema_attribute_by_name(ldb, el->name);
561 for (i=0;i<el->num_values;i++) {
562 if (a->syntax->comparison_fn(ldb, ldb,
563 &el->values[i], val) == 0) {
564 if (el->num_values == 1) {
565 return msg_delete_attribute(module, ldb, msg, name);
568 ret = ltdb_index_del_value(module, msg->dn, el, i);
569 if (ret != LDB_SUCCESS) {
573 if (i<el->num_values-1) {
574 memmove(&el->values[i], &el->values[i+1],
575 sizeof(el->values[i])*
576 (el->num_values-(i+1)));
580 /* per definition we find in a canonicalised message an
581 attribute value only once. So we are finished here */
587 return LDB_ERR_NO_SUCH_ATTRIBUTE;
592 modify a record - internal interface
594 yuck - this is O(n^2). Luckily n is usually small so we probably
595 get away with it, but if we ever have really large attribute lists
596 then we'll need to look at this again
598 'req' is optional, and is used to specify controls if supplied
600 int ltdb_modify_internal(struct ldb_module *module,
601 const struct ldb_message *msg,
602 struct ldb_request *req)
604 struct ldb_context *ldb = ldb_module_get_ctx(module);
605 void *data = ldb_module_get_private(module);
606 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
607 TDB_DATA tdb_key, tdb_data;
608 struct ldb_message *msg2;
610 int ret = LDB_SUCCESS, idx;
611 struct ldb_control *control_permissive = NULL;
614 control_permissive = ldb_request_get_control(req,
615 LDB_CONTROL_PERMISSIVE_MODIFY_OID);
618 tdb_key = ltdb_key(module, msg->dn);
620 return LDB_ERR_OTHER;
623 tdb_data = tdb_fetch(ltdb->tdb, tdb_key);
624 if (!tdb_data.dptr) {
625 talloc_free(tdb_key.dptr);
626 return ltdb_err_map(tdb_error(ltdb->tdb));
629 msg2 = talloc(tdb_key.dptr, struct ldb_message);
636 ret = ltdb_unpack_data(module, &tdb_data, msg2);
647 for (i=0; i<msg->num_elements; i++) {
648 struct ldb_message_element *el = &msg->elements[i], *el2;
649 struct ldb_val *vals;
650 const struct ldb_schema_attribute *a = ldb_schema_attribute_by_name(ldb, el->name);
653 if (ldb_attr_cmp(el->name, "distinguishedName") == 0) {
654 ldb_asprintf_errstring(ldb, "it is not permitted to perform a modify on 'distinguishedName' (use rename instead): %s",
655 ldb_dn_get_linearized(msg2->dn));
656 ret = LDB_ERR_CONSTRAINT_VIOLATION;
660 switch (msg->elements[i].flags & LDB_FLAG_MOD_MASK) {
661 case LDB_FLAG_MOD_ADD:
663 if (el->num_values == 0) {
664 ldb_asprintf_errstring(ldb, "attribute %s on %s specified, but with 0 values (illigal)",
665 el->name, ldb_dn_get_linearized(msg2->dn));
666 ret = LDB_ERR_CONSTRAINT_VIOLATION;
670 /* make a copy of the array so that a permissive
671 * control can remove duplicates without changing the
672 * original values, but do not copy data as we do not
673 * need to keep it around once the operation is
675 if (control_permissive) {
676 el = talloc(msg2, struct ldb_message_element);
681 el->name = msg->elements[i].name;
682 el->num_values = msg->elements[i].num_values;
683 el->values = talloc_array(el, struct ldb_val, el->num_values);
684 if (el->values == NULL) {
688 for (j = 0; j < el->num_values; j++) {
689 el->values[j] = msg->elements[i].values[j];
693 if (a && a->flags & LDB_ATTR_FLAG_SINGLE_VALUE) {
694 if (el->num_values > 1) {
695 ldb_asprintf_errstring(ldb, "SINGLE-VALUE attribute %s on %s specified more than once",
696 el->name, ldb_dn_get_linearized(msg2->dn));
697 ret = LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
702 /* Checks if element already exists */
703 idx = find_element(msg2, el->name);
705 if (ltdb_msg_add_element(ldb, msg2, el) != 0) {
709 ret = ltdb_index_add_element(module, msg2->dn, el);
710 if (ret != LDB_SUCCESS) {
714 /* We cannot add another value on a existing one
715 if the attribute is single-valued */
716 if (a && a->flags & LDB_ATTR_FLAG_SINGLE_VALUE) {
717 ldb_asprintf_errstring(ldb, "SINGLE-VALUE attribute %s on %s specified more than once",
718 el->name, ldb_dn_get_linearized(msg2->dn));
719 ret = LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
723 el2 = &(msg2->elements[idx]);
725 /* Check that values don't exist yet on multi-
726 valued attributes or aren't provided twice */
727 for (j = 0; j < el->num_values; j++) {
728 if (ldb_msg_find_val(el2, &el->values[j]) != NULL) {
729 if (control_permissive) {
730 /* remove this one as if it was never added */
732 for (k = j; k < el->num_values; k++) {
733 el->values[k] = el->values[k + 1];
740 ldb_asprintf_errstring(ldb, "%s: value #%d already exists", el->name, j);
741 ret = LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
744 if (ldb_msg_find_val(el, &el->values[j]) != &el->values[j]) {
745 ldb_asprintf_errstring(ldb, "%s: value #%d provided more than once", el->name, j);
746 ret = LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
751 /* Now combine existing and new values to a new
753 vals = talloc_realloc(msg2->elements,
754 el2->values, struct ldb_val,
755 el2->num_values + el->num_values);
762 for (j=0; j<el->num_values; j++) {
763 vals[el2->num_values + j] =
764 ldb_val_dup(vals, &el->values[j]);
768 el2->num_values += el->num_values;
770 ret = ltdb_index_add_element(module, msg2->dn, el);
771 if (ret != LDB_SUCCESS) {
778 case LDB_FLAG_MOD_REPLACE:
780 if (a && a->flags & LDB_ATTR_FLAG_SINGLE_VALUE) {
781 /* the RELAX control overrides this
782 check for replace. This is needed as
783 DRS replication can produce multiple
784 values here for a single valued
785 attribute when the values are deleted
788 if (el->num_values > 1 &&
789 (!req || !ldb_request_get_control(req, LDB_CONTROL_RELAX_OID))) {
790 ldb_asprintf_errstring(ldb, "SINGLE-VALUE attribute %s on %s specified more than once",
791 el->name, ldb_dn_get_linearized(msg2->dn));
792 ret = LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
797 /* TODO: This is O(n^2) - replace with more efficient check */
798 for (j=0; j<el->num_values; j++) {
799 if (ldb_msg_find_val(el, &el->values[j]) != &el->values[j]) {
800 ldb_asprintf_errstring(ldb, "%s: value #%d provided more than once", el->name, j);
801 ret = LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS;
806 idx = find_element(msg2, el->name);
808 el2 = &(msg2->elements[idx]);
809 if (ldb_msg_element_compare(el, el2) == 0) {
810 /* we are replacing with the same values */
814 /* Delete the attribute if it exists in the DB */
815 if (msg_delete_attribute(module, ldb, msg2, el->name) != 0) {
821 /* Recreate it with the new values */
822 if (ltdb_msg_add_element(ldb, msg2, el) != 0) {
827 ret = ltdb_index_add_element(module, msg2->dn, el);
828 if (ret != LDB_SUCCESS) {
834 case LDB_FLAG_MOD_DELETE:
835 dn = ldb_dn_get_linearized(msg2->dn);
841 if (msg->elements[i].num_values == 0) {
842 /* Delete the whole attribute */
843 ret = msg_delete_attribute(module, ldb, msg2,
844 msg->elements[i].name);
845 if (ret == LDB_ERR_NO_SUCH_ATTRIBUTE &&
846 control_permissive) {
849 ldb_asprintf_errstring(ldb, "No such attribute: %s for delete on %s",
850 msg->elements[i].name, dn);
852 if (ret != LDB_SUCCESS) {
856 /* Delete specified values from an attribute */
857 for (j=0; j < msg->elements[i].num_values; j++) {
858 ret = msg_delete_element(module,
860 msg->elements[i].name,
861 &msg->elements[i].values[j]);
862 if (ret == LDB_ERR_NO_SUCH_ATTRIBUTE &&
863 control_permissive) {
866 ldb_asprintf_errstring(ldb, "No matching attribute value when deleting attribute: %s on %s",
867 msg->elements[i].name, dn);
869 if (ret != LDB_SUCCESS) {
876 ldb_asprintf_errstring(ldb,
877 "Invalid ldb_modify flags on %s: 0x%x",
878 msg->elements[i].name,
879 msg->elements[i].flags & LDB_FLAG_MOD_MASK);
880 ret = LDB_ERR_PROTOCOL_ERROR;
885 ret = ltdb_store(module, msg2, TDB_MODIFY);
886 if (ret != LDB_SUCCESS) {
890 ret = ltdb_modified(module, msg2->dn);
891 if (ret != LDB_SUCCESS) {
896 talloc_free(tdb_key.dptr);
903 static int ltdb_modify(struct ltdb_context *ctx)
905 struct ldb_module *module = ctx->module;
906 struct ldb_request *req = ctx->req;
907 int ret = LDB_SUCCESS;
909 ret = ltdb_check_special_dn(module, req->op.mod.message);
910 if (ret != LDB_SUCCESS) {
914 ldb_request_set_state(req, LDB_ASYNC_PENDING);
916 if (ltdb_cache_load(module) != 0) {
917 return LDB_ERR_OPERATIONS_ERROR;
920 ret = ltdb_modify_internal(module, req->op.mod.message, req);
928 static int ltdb_rename(struct ltdb_context *ctx)
930 struct ldb_module *module = ctx->module;
931 struct ldb_request *req = ctx->req;
932 struct ldb_message *msg;
933 int ret = LDB_SUCCESS;
935 ldb_request_set_state(req, LDB_ASYNC_PENDING);
937 if (ltdb_cache_load(ctx->module) != 0) {
938 return LDB_ERR_OPERATIONS_ERROR;
941 msg = talloc(ctx, struct ldb_message);
943 return LDB_ERR_OPERATIONS_ERROR;
946 /* in case any attribute of the message was indexed, we need
947 to fetch the old record */
948 ret = ltdb_search_dn1(module, req->op.rename.olddn, msg);
949 if (ret != LDB_SUCCESS) {
950 /* not finding the old record is an error */
954 /* Always delete first then add, to avoid conflicts with
955 * unique indexes. We rely on the transaction to make this
958 ret = ltdb_delete_internal(module, msg->dn);
959 if (ret != LDB_SUCCESS) {
963 msg->dn = ldb_dn_copy(msg, req->op.rename.newdn);
964 if (msg->dn == NULL) {
965 return LDB_ERR_OPERATIONS_ERROR;
968 ret = ltdb_add_internal(module, msg);
973 static int ltdb_start_trans(struct ldb_module *module)
975 void *data = ldb_module_get_private(module);
976 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
978 if (tdb_transaction_start(ltdb->tdb) != 0) {
979 return ltdb_err_map(tdb_error(ltdb->tdb));
982 ltdb->in_transaction++;
984 ltdb_index_transaction_start(module);
989 static int ltdb_prepare_commit(struct ldb_module *module)
991 void *data = ldb_module_get_private(module);
992 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
994 if (ltdb->in_transaction != 1) {
998 if (ltdb_index_transaction_commit(module) != 0) {
999 tdb_transaction_cancel(ltdb->tdb);
1000 ltdb->in_transaction--;
1001 return ltdb_err_map(tdb_error(ltdb->tdb));
1004 if (tdb_transaction_prepare_commit(ltdb->tdb) != 0) {
1005 ltdb->in_transaction--;
1006 return ltdb_err_map(tdb_error(ltdb->tdb));
1009 ltdb->prepared_commit = true;
1014 static int ltdb_end_trans(struct ldb_module *module)
1016 void *data = ldb_module_get_private(module);
1017 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
1019 if (!ltdb->prepared_commit) {
1020 int ret = ltdb_prepare_commit(module);
1021 if (ret != LDB_SUCCESS) {
1026 ltdb->in_transaction--;
1027 ltdb->prepared_commit = false;
1029 if (tdb_transaction_commit(ltdb->tdb) != 0) {
1030 return ltdb_err_map(tdb_error(ltdb->tdb));
1036 static int ltdb_del_trans(struct ldb_module *module)
1038 void *data = ldb_module_get_private(module);
1039 struct ltdb_private *ltdb = talloc_get_type(data, struct ltdb_private);
1041 ltdb->in_transaction--;
1043 if (ltdb_index_transaction_cancel(module) != 0) {
1044 tdb_transaction_cancel(ltdb->tdb);
1045 return ltdb_err_map(tdb_error(ltdb->tdb));
1048 if (tdb_transaction_cancel(ltdb->tdb) != 0) {
1049 return ltdb_err_map(tdb_error(ltdb->tdb));
1056 return sequenceNumber from @BASEINFO
1058 static int ltdb_sequence_number(struct ltdb_context *ctx,
1059 struct ldb_extended **ext)
1061 struct ldb_context *ldb;
1062 struct ldb_module *module = ctx->module;
1063 struct ldb_request *req = ctx->req;
1064 TALLOC_CTX *tmp_ctx;
1065 struct ldb_seqnum_request *seq;
1066 struct ldb_seqnum_result *res;
1067 struct ldb_message *msg = NULL;
1070 int ret = LDB_SUCCESS;
1072 ldb = ldb_module_get_ctx(module);
1074 seq = talloc_get_type(req->op.extended.data,
1075 struct ldb_seqnum_request);
1077 return LDB_ERR_OPERATIONS_ERROR;
1080 ldb_request_set_state(req, LDB_ASYNC_PENDING);
1082 if (ltdb_lock_read(module) != 0) {
1083 return LDB_ERR_OPERATIONS_ERROR;
1086 res = talloc_zero(req, struct ldb_seqnum_result);
1088 ret = LDB_ERR_OPERATIONS_ERROR;
1091 tmp_ctx = talloc_new(req);
1092 if (tmp_ctx == NULL) {
1093 ret = LDB_ERR_OPERATIONS_ERROR;
1097 dn = ldb_dn_new(tmp_ctx, ldb, LTDB_BASEINFO);
1099 msg = talloc(tmp_ctx, struct ldb_message);
1101 ret = LDB_ERR_OPERATIONS_ERROR;
1105 ret = ltdb_search_dn1(module, dn, msg);
1106 if (ret != LDB_SUCCESS) {
1110 switch (seq->type) {
1111 case LDB_SEQ_HIGHEST_SEQ:
1112 res->seq_num = ldb_msg_find_attr_as_uint64(msg, LTDB_SEQUENCE_NUMBER, 0);
1115 res->seq_num = ldb_msg_find_attr_as_uint64(msg, LTDB_SEQUENCE_NUMBER, 0);
1118 case LDB_SEQ_HIGHEST_TIMESTAMP:
1119 date = ldb_msg_find_attr_as_string(msg, LTDB_MOD_TIMESTAMP, NULL);
1121 res->seq_num = ldb_string_to_time(date);
1124 /* zero is as good as anything when we don't know */
1129 *ext = talloc_zero(req, struct ldb_extended);
1131 ret = LDB_ERR_OPERATIONS_ERROR;
1134 (*ext)->oid = LDB_EXTENDED_SEQUENCE_NUMBER;
1135 (*ext)->data = talloc_steal(*ext, res);
1138 talloc_free(tmp_ctx);
1139 ltdb_unlock_read(module);
1143 static void ltdb_request_done(struct ltdb_context *ctx, int error)
1145 struct ldb_context *ldb;
1146 struct ldb_request *req;
1147 struct ldb_reply *ares;
1149 ldb = ldb_module_get_ctx(ctx->module);
1152 /* if we already returned an error just return */
1153 if (ldb_request_get_status(req) != LDB_SUCCESS) {
1157 ares = talloc_zero(req, struct ldb_reply);
1160 req->callback(req, NULL);
1163 ares->type = LDB_REPLY_DONE;
1164 ares->error = error;
1166 req->callback(req, ares);
1169 static void ltdb_timeout(struct tevent_context *ev,
1170 struct tevent_timer *te,
1174 struct ltdb_context *ctx;
1175 ctx = talloc_get_type(private_data, struct ltdb_context);
1177 if (!ctx->request_terminated) {
1178 /* request is done now */
1179 ltdb_request_done(ctx, LDB_ERR_TIME_LIMIT_EXCEEDED);
1182 if (!ctx->request_terminated) {
1183 /* neutralize the spy */
1184 ctx->spy->ctx = NULL;
1189 static void ltdb_request_extended_done(struct ltdb_context *ctx,
1190 struct ldb_extended *ext,
1193 struct ldb_context *ldb;
1194 struct ldb_request *req;
1195 struct ldb_reply *ares;
1197 ldb = ldb_module_get_ctx(ctx->module);
1200 /* if we already returned an error just return */
1201 if (ldb_request_get_status(req) != LDB_SUCCESS) {
1205 ares = talloc_zero(req, struct ldb_reply);
1208 req->callback(req, NULL);
1211 ares->type = LDB_REPLY_DONE;
1212 ares->response = ext;
1213 ares->error = error;
1215 req->callback(req, ares);
1218 static void ltdb_handle_extended(struct ltdb_context *ctx)
1220 struct ldb_extended *ext = NULL;
1223 if (strcmp(ctx->req->op.extended.oid,
1224 LDB_EXTENDED_SEQUENCE_NUMBER) == 0) {
1225 /* get sequence number */
1226 ret = ltdb_sequence_number(ctx, &ext);
1228 /* not recognized */
1229 ret = LDB_ERR_UNSUPPORTED_CRITICAL_EXTENSION;
1232 ltdb_request_extended_done(ctx, ext, ret);
1235 static void ltdb_callback(struct tevent_context *ev,
1236 struct tevent_timer *te,
1240 struct ltdb_context *ctx;
1243 ctx = talloc_get_type(private_data, struct ltdb_context);
1245 if (ctx->request_terminated) {
1249 switch (ctx->req->operation) {
1251 ret = ltdb_search(ctx);
1254 ret = ltdb_add(ctx);
1257 ret = ltdb_modify(ctx);
1260 ret = ltdb_delete(ctx);
1263 ret = ltdb_rename(ctx);
1266 ltdb_handle_extended(ctx);
1269 /* no other op supported */
1270 ret = LDB_ERR_UNWILLING_TO_PERFORM;
1273 if (!ctx->request_terminated) {
1274 /* request is done now */
1275 ltdb_request_done(ctx, ret);
1279 if (!ctx->request_terminated) {
1280 /* neutralize the spy */
1281 ctx->spy->ctx = NULL;
1286 static int ltdb_request_destructor(void *ptr)
1288 struct ltdb_req_spy *spy = talloc_get_type(ptr, struct ltdb_req_spy);
1290 if (spy->ctx != NULL) {
1291 spy->ctx->request_terminated = true;
1297 static int ltdb_handle_request(struct ldb_module *module,
1298 struct ldb_request *req)
1300 struct ldb_control *control_permissive;
1301 struct ldb_context *ldb;
1302 struct tevent_context *ev;
1303 struct ltdb_context *ac;
1304 struct tevent_timer *te;
1308 ldb = ldb_module_get_ctx(module);
1310 control_permissive = ldb_request_get_control(req,
1311 LDB_CONTROL_PERMISSIVE_MODIFY_OID);
1313 for (i = 0; req->controls && req->controls[i]; i++) {
1314 if (req->controls[i]->critical &&
1315 req->controls[i] != control_permissive) {
1316 ldb_asprintf_errstring(ldb, "Unsupported critical extension %s",
1317 req->controls[i]->oid);
1318 return LDB_ERR_UNSUPPORTED_CRITICAL_EXTENSION;
1322 if (req->starttime == 0 || req->timeout == 0) {
1323 ldb_set_errstring(ldb, "Invalid timeout settings");
1324 return LDB_ERR_TIME_LIMIT_EXCEEDED;
1327 ev = ldb_get_event_context(ldb);
1329 ac = talloc_zero(ldb, struct ltdb_context);
1332 return LDB_ERR_OPERATIONS_ERROR;
1335 ac->module = module;
1340 te = tevent_add_timer(ev, ac, tv, ltdb_callback, ac);
1343 return LDB_ERR_OPERATIONS_ERROR;
1346 tv.tv_sec = req->starttime + req->timeout;
1347 ac->timeout_event = tevent_add_timer(ev, ac, tv, ltdb_timeout, ac);
1348 if (NULL == ac->timeout_event) {
1350 return LDB_ERR_OPERATIONS_ERROR;
1353 /* set a spy so that we do not try to use the request context
1354 * if it is freed before ltdb_callback fires */
1355 ac->spy = talloc(req, struct ltdb_req_spy);
1356 if (NULL == ac->spy) {
1358 return LDB_ERR_OPERATIONS_ERROR;
1362 talloc_set_destructor((TALLOC_CTX *)ac->spy, ltdb_request_destructor);
1367 static int ltdb_init_rootdse(struct ldb_module *module)
1369 struct ldb_context *ldb;
1372 ldb = ldb_module_get_ctx(module);
1374 ret = ldb_mod_register_control(module,
1375 LDB_CONTROL_PERMISSIVE_MODIFY_OID);
1376 if (ret != LDB_SUCCESS) {
1377 ldb_debug(ldb, LDB_DEBUG_TRACE, "ldb_tdb: "
1378 "Unable to register control with rootdse!");
1381 /* there can be no module beyond the backend, just return */
1385 static const struct ldb_module_ops ltdb_ops = {
1387 .init_context = ltdb_init_rootdse,
1388 .search = ltdb_handle_request,
1389 .add = ltdb_handle_request,
1390 .modify = ltdb_handle_request,
1391 .del = ltdb_handle_request,
1392 .rename = ltdb_handle_request,
1393 .extended = ltdb_handle_request,
1394 .start_transaction = ltdb_start_trans,
1395 .end_transaction = ltdb_end_trans,
1396 .prepare_commit = ltdb_prepare_commit,
1397 .del_transaction = ltdb_del_trans,
1401 connect to the database
1403 static int ltdb_connect(struct ldb_context *ldb, const char *url,
1404 unsigned int flags, const char *options[],
1405 struct ldb_module **_module)
1407 struct ldb_module *module;
1409 int tdb_flags, open_flags;
1410 struct ltdb_private *ltdb;
1413 if (strchr(url, ':')) {
1414 if (strncmp(url, "tdb://", 6) != 0) {
1415 ldb_debug(ldb, LDB_DEBUG_ERROR,
1416 "Invalid tdb URL '%s'", url);
1417 return LDB_ERR_OPERATIONS_ERROR;
1424 tdb_flags = TDB_DEFAULT | TDB_SEQNUM;
1426 /* check for the 'nosync' option */
1427 if (flags & LDB_FLG_NOSYNC) {
1428 tdb_flags |= TDB_NOSYNC;
1431 /* and nommap option */
1432 if (flags & LDB_FLG_NOMMAP) {
1433 tdb_flags |= TDB_NOMMAP;
1436 if (flags & LDB_FLG_RDONLY) {
1437 open_flags = O_RDONLY;
1439 open_flags = O_CREAT | O_RDWR;
1442 ltdb = talloc_zero(ldb, struct ltdb_private);
1445 return LDB_ERR_OPERATIONS_ERROR;
1448 /* note that we use quite a large default hash size */
1449 ltdb->tdb = ltdb_wrap_open(ltdb, path, 10000,
1450 tdb_flags, open_flags,
1451 ldb_get_create_perms(ldb), ldb);
1453 ldb_debug(ldb, LDB_DEBUG_ERROR,
1454 "Unable to open tdb '%s'", path);
1456 return LDB_ERR_OPERATIONS_ERROR;
1459 ltdb->sequence_number = 0;
1461 module = ldb_module_new(ldb, ldb, "ldb_tdb backend", <db_ops);
1464 return LDB_ERR_OPERATIONS_ERROR;
1466 ldb_module_set_private(module, ltdb);
1467 talloc_steal(module, ltdb);
1469 if (ltdb_cache_load(module) != 0) {
1470 talloc_free(module);
1472 return LDB_ERR_OPERATIONS_ERROR;
1479 const struct ldb_backend_ops ldb_tdb_backend_ops = {
1481 .connect_fn = ltdb_connect,
git.samba.org / ira / wip.git / blob