4 Copyright (C) Simo Sorce 2005
6 ** NOTE! The following LGPL license applies to the ldb
7 ** library. This does NOT imply that all of Samba is released
10 This library is free software; you can redistribute it and/or
11 modify it under the terms of the GNU Lesser General Public
12 License as published by the Free Software Foundation; either
13 version 2 of the License, or (at your option) any later version.
15 This library is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public
21 License along with this library; if not, write to the Free Software
22 Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
28 * Component: ldb dn explode and utility functions
30 * Description: - explode a dn into it's own basic elements
31 * and put them in a structure
32 * - manipulate ldb_dn structures
38 #include "ldb/include/ldb.h"
39 #include "ldb/include/ldb_private.h"
42 #define LDB_DN_NULL_FAILED(x) if (!(x)) goto failed
44 #define LDB_SPECIAL "@SPECIAL"
46 int ldb_dn_is_special(const struct ldb_dn *dn)
48 if (dn == NULL || dn->comp_num != 1) return 0;
50 return ! strcmp(dn->components[0].name, LDB_SPECIAL);
53 int ldb_dn_check_special(const struct ldb_dn *dn, const char *check)
55 if (dn == NULL || dn->comp_num != 1) return 0;
57 return ! strcmp((char *)dn->components[0].value.data, check);
60 static int ldb_dn_is_valid_attribute_name(const char *name)
62 if (name == NULL) return 0;
65 if (! isascii(*name)) {
68 if (! (isalnum((unsigned char)*name) || *name == '-')) {
77 char *ldb_dn_escape_value(void *mem_ctx, struct ldb_val value)
79 const char *p, *s, *src;
86 p = s = src = (const char *)value.data;
89 /* allocate destination string, it will be at most 3 times the source */
90 dst = d = talloc_array(mem_ctx, char, len * 3 + 1);
91 LDB_DN_NULL_FAILED(dst);
93 while (p - src < len) {
95 p += strcspn(p, ",=\n+<>#;\\\"");
97 if (p - src == len) /* found no escapable chars */
100 memcpy(d, s, p - s); /* copy the part of the string before the stop */
101 d += (p - s); /* move to current position */
103 if (*p) { /* it is a normal escapable character */
106 } else { /* we have a zero byte in the string */
107 strncpy(d, "\00", 3); /* escape the zero */
109 p++; /* skip the zero */
111 s = p; /* move forward */
114 /* copy the last part (with zero) and return */
115 memcpy(d, s, &src[len] - s + 1);
124 static struct ldb_val ldb_dn_unescape_value(void *mem_ctx, const char *src)
126 struct ldb_val value;
128 char *p, *dst = NULL, *end;
130 memset(&value, 0, sizeof(value));
132 LDB_DN_NULL_FAILED(src);
134 dst = p = talloc_memdup(mem_ctx, src, strlen(src) + 1);
135 LDB_DN_NULL_FAILED(dst);
137 end = &dst[strlen(dst)];
140 p += strcspn(p, ",=\n+<>#;\\\"");
143 if (strchr(",=\n+<>#;\\\"", p[1])) {
144 memmove(p, p + 1, end - (p + 1) + 1);
150 if (sscanf(p + 1, "%02x", &x) == 1) {
151 *p = (unsigned char)x;
152 memmove(p + 1, p + 3, end - (p + 3) + 1);
159 /* a string with not escaped specials is invalid (tested) */
165 value.length = end - dst;
166 value.data = (uint8_t *)dst;
174 /* check if the string contains quotes
175 * skips leading and trailing spaces
176 * - returns 0 if no quotes found
177 * - returns 1 if quotes are found and put their position
178 * in *quote_start and *quote_end parameters
179 * - return -1 if there are open quotes
182 static int get_quotes_position(const char *source, int *quote_start, int *quote_end)
186 if (source == NULL || quote_start == NULL || quote_end == NULL) return -1;
190 /* check if there are quotes surrounding the value */
191 p += strspn(p, " \n"); /* skip white spaces */
194 *quote_start = p - source;
199 LDB_DN_NULL_FAILED(p);
201 if (*(p - 1) == '\\')
205 *quote_end = p - source;
215 static char *seek_to_separator(char *string, const char *separators)
218 int ret, qs, qe, escaped;
220 if (string == NULL || separators == NULL) return NULL;
222 p = strchr(string, '=');
223 LDB_DN_NULL_FAILED(p);
227 /* check if there are quotes surrounding the value */
229 ret = get_quotes_position(p, &qs, &qe);
233 if (ret == 1) { /* quotes found */
235 p += qe; /* positioning after quotes */
236 p += strspn(p, " \n"); /* skip white spaces after the quote */
238 if (strcspn(p, separators) != 0) /* if there are characters between quotes */
239 return NULL; /* and separators, the dn is invalid */
241 return p; /* return on the separator */
244 /* no quotes found seek to separators */
248 ret = strcspn(q, separators);
250 if (q[ret - 1] == '\\') {
256 if (ret == 0 && p == q) /* no separators ?! bail out */
265 static char *ldb_dn_trim_string(char *string, const char *edge)
269 /* seek out edge from start of string */
270 s = string + strspn(string, edge);
272 /* backwards skip from end of string */
273 p = &s[strlen(s) - 1];
274 while (p > s && strchr(edge, *p)) {
282 /* we choosed to not support multpile valued components */
283 static struct ldb_dn_component ldb_dn_explode_component(void *mem_ctx, char *raw_component)
285 struct ldb_dn_component dc;
289 memset(&dc, 0, sizeof(dc));
291 if (raw_component == NULL) {
295 /* find attribute type/value separator */
296 p = strchr(raw_component, '=');
297 LDB_DN_NULL_FAILED(p);
299 *p++ = '\0'; /* terminate name and point to value */
301 /* copy and trim name in the component */
302 dc.name = talloc_strdup(mem_ctx, ldb_dn_trim_string(raw_component, " \n"));
306 if (! ldb_dn_is_valid_attribute_name(dc.name)) {
310 ret = get_quotes_position(p, &qs, &qe);
313 case 0: /* no quotes trim the string */
314 p = ldb_dn_trim_string(p, " \n");
315 dc.value = ldb_dn_unescape_value(mem_ctx, p);
318 case 1: /* quotes found get the unquoted string */
321 dc.value.length = strlen(p);
322 dc.value.data = talloc_memdup(mem_ctx, p, dc.value.length + 1);
325 default: /* mismatched quotes ot other error, bail out */
329 if (dc.value.length == 0) {
336 talloc_free(dc.name);
341 struct ldb_dn *ldb_dn_new(void *mem_ctx)
345 edn = talloc(mem_ctx, struct ldb_dn);
346 LDB_DN_NULL_FAILED(edn);
348 /* Initially there are no components */
350 edn->components = NULL;
358 struct ldb_dn *ldb_dn_explode(void *mem_ctx, const char *dn)
360 struct ldb_dn *edn; /* the exploded dn */
363 if (dn == NULL) return NULL;
365 /* Allocate a structure to hold the exploded DN */
366 edn = ldb_dn_new(mem_ctx);
374 /* Special DNs case */
377 edn->components = talloc(edn, struct ldb_dn_component);
378 if (edn->components == NULL) goto failed;
379 edn->components[0].name = talloc_strdup(edn->components, LDB_SPECIAL);
380 if (edn->components[0].name == NULL) goto failed;
381 edn->components[0].value.data = (uint8_t *)talloc_strdup(edn->components, dn);
382 if (edn->components[0].value.data== NULL) goto failed;
383 edn->components[0].value.length = strlen(dn);
387 pdn = p = talloc_strdup(edn, dn);
388 LDB_DN_NULL_FAILED(pdn);
390 /* get the components */
394 /* terminate the current component and return pointer to the next one */
395 t = seek_to_separator(p, ",;");
396 LDB_DN_NULL_FAILED(t);
398 if (*t) { /* here there is a separator */
399 *t = '\0'; /*terminate */
400 t++; /* a separtor means another component follows */
403 /* allocate space to hold the dn component */
404 edn->components = talloc_realloc(edn, edn->components,
405 struct ldb_dn_component,
407 if (edn->components == NULL)
410 /* store the exploded component in the main structure */
411 edn->components[edn->comp_num] = ldb_dn_explode_component(edn, p);
412 LDB_DN_NULL_FAILED(edn->components[edn->comp_num].name);
416 /* jump to the next component if any */
430 struct ldb_dn *ldb_dn_explode_or_special(void *mem_ctx, const char *dn)
432 struct ldb_dn *edn; /* the exploded dn */
434 if (dn == NULL) return NULL;
436 if (strncasecmp(dn, "<GUID=", 6) == 0) {
437 /* this is special DN returned when the
438 * exploded_dn control is used
441 /* Allocate a structure to hold the exploded DN */
442 edn = ldb_dn_new(mem_ctx);
445 edn->components = talloc(edn, struct ldb_dn_component);
446 if (edn->components == NULL) goto failed;
447 edn->components[0].name = talloc_strdup(edn->components, LDB_SPECIAL);
448 if (edn->components[0].name == NULL) goto failed;
449 edn->components[0].value.data = (uint8_t *)talloc_strdup(edn->components, dn);
450 if (edn->components[0].value.data== NULL) goto failed;
451 edn->components[0].value.length = strlen(dn);
456 return ldb_dn_explode(mem_ctx, dn);
463 char *ldb_dn_linearize(void *mem_ctx, const struct ldb_dn *edn)
468 if (edn == NULL) return NULL;
471 if (ldb_dn_is_special(edn)) {
472 dn = talloc_strdup(mem_ctx, (char *)edn->components[0].value.data);
476 dn = talloc_strdup(mem_ctx, "");
477 LDB_DN_NULL_FAILED(dn);
479 for (i = 0; i < edn->comp_num; i++) {
480 value = ldb_dn_escape_value(dn, edn->components[i].value);
481 LDB_DN_NULL_FAILED(value);
484 dn = talloc_asprintf_append(dn, "%s=%s", edn->components[i].name, value);
486 dn = talloc_asprintf_append(dn, ",%s=%s", edn->components[i].name, value);
488 LDB_DN_NULL_FAILED(dn);
500 /* compare DNs using casefolding compare functions */
502 int ldb_dn_compare_base(struct ldb_context *ldb,
503 const struct ldb_dn *base,
504 const struct ldb_dn *dn)
509 if (base->comp_num > dn->comp_num) {
510 return (dn->comp_num - base->comp_num);
513 if (base == NULL || base->comp_num == 0) return 0;
514 if (dn == NULL || dn->comp_num == 0) return -1;
515 if (base->comp_num > dn->comp_num) return -1;
517 /* if the number of components doesn't match they differ */
518 n0 = base->comp_num - 1;
519 n1 = dn->comp_num - 1;
520 while (n0 >= 0 && n1 >= 0) {
521 const struct ldb_attrib_handler *h;
523 /* compare names (attribute names are guaranteed to be ASCII only) */
524 ret = ldb_caseless_cmp(base->components[n0].name,
525 dn->components[n1].name);
530 /* names match, compare values */
531 h = ldb_attrib_handler(ldb, base->components[n0].name);
532 ret = h->comparison_fn(ldb, ldb, &(base->components[n0].value),
533 &(dn->components[n1].value));
544 int ldb_dn_compare(struct ldb_context *ldb,
545 const struct ldb_dn *edn0,
546 const struct ldb_dn *edn1)
548 if (edn0 == NULL || edn1 == NULL) return edn1 - edn0;
550 if (edn0->comp_num != edn1->comp_num)
551 return (edn1->comp_num - edn0->comp_num);
553 return ldb_dn_compare_base(ldb, edn0, edn1);
556 int ldb_dn_cmp(struct ldb_context *ldb, const char *dn0, const char *dn1)
562 if (dn0 == NULL || dn1 == NULL) return dn1 - dn0;
564 edn0 = ldb_dn_explode_casefold(ldb, dn0);
565 if (edn0 == NULL) return 1;
567 edn1 = ldb_dn_explode_casefold(ldb, dn1);
573 ret = ldb_dn_compare(ldb, edn0, edn1);
582 casefold a dn. We need to casefold the attribute names, and canonicalize
583 attribute values of case insensitive attributes.
585 struct ldb_dn *ldb_dn_casefold(struct ldb_context *ldb, const struct ldb_dn *edn)
590 if (edn == NULL) return NULL;
592 cedn = ldb_dn_new(ldb);
593 LDB_DN_NULL_FAILED(cedn);
595 cedn->comp_num = edn->comp_num;
596 cedn->components = talloc_array(cedn, struct ldb_dn_component, edn->comp_num);
597 LDB_DN_NULL_FAILED(cedn->components);
599 for (i = 0; i < edn->comp_num; i++) {
600 struct ldb_dn_component dc;
601 const struct ldb_attrib_handler *h;
603 dc.name = ldb_casefold(cedn, edn->components[i].name);
604 LDB_DN_NULL_FAILED(dc.name);
606 h = ldb_attrib_handler(ldb, dc.name);
607 if (h->canonicalise_fn(ldb, cedn, &(edn->components[i].value), &(dc.value)) != 0) {
611 cedn->components[i] = dc;
621 struct ldb_dn *ldb_dn_explode_casefold(struct ldb_context *ldb, const char *dn)
623 struct ldb_dn *edn, *cdn;
625 if (dn == NULL) return NULL;
627 edn = ldb_dn_explode(ldb, dn);
628 if (edn == NULL) return NULL;
630 cdn = ldb_dn_casefold(ldb, edn);
636 char *ldb_dn_linearize_casefold(struct ldb_context *ldb, const struct ldb_dn *edn)
641 if (edn == NULL) return NULL;
644 if (ldb_dn_is_special(edn)) {
645 dn = talloc_strdup(ldb, (char *)edn->components[0].value.data);
649 cdn = ldb_dn_casefold(ldb, edn);
650 if (cdn == NULL) return NULL;
652 dn = ldb_dn_linearize(ldb, cdn);
662 static struct ldb_dn_component ldb_dn_copy_component(void *mem_ctx, struct ldb_dn_component *src)
664 struct ldb_dn_component dst;
666 memset(&dst, 0, sizeof(dst));
672 dst.value = ldb_val_dup(mem_ctx, &(src->value));
673 if (dst.value.data == NULL) {
677 dst.name = talloc_strdup(mem_ctx, src->name);
678 if (dst.name == NULL) {
679 talloc_free(dst.value.data);
685 /* copy specified number of elements of a dn into a new one
686 element are copied from top level up to the unique rdn
687 num_el may be greater then dn->comp_num (see ldb_dn_make_child)
689 struct ldb_dn *ldb_dn_copy_partial(void *mem_ctx, const struct ldb_dn *dn, int num_el)
694 if (dn == NULL) return NULL;
695 if (num_el <= 0) return NULL;
697 new = ldb_dn_new(mem_ctx);
698 LDB_DN_NULL_FAILED(new);
700 new->comp_num = num_el;
701 n = new->comp_num - 1;
702 new->components = talloc_array(new, struct ldb_dn_component, new->comp_num);
704 if (dn->comp_num == 0) return new;
705 e = dn->comp_num - 1;
707 for (i = 0; i < new->comp_num; i++) {
708 new->components[n - i] = ldb_dn_copy_component(new->components,
709 &(dn->components[e - i]));
722 struct ldb_dn *ldb_dn_copy(void *mem_ctx, const struct ldb_dn *dn)
724 if (dn == NULL) return NULL;
725 return ldb_dn_copy_partial(mem_ctx, dn, dn->comp_num);
728 struct ldb_dn *ldb_dn_get_parent(void *mem_ctx, const struct ldb_dn *dn)
730 if (dn == NULL) return NULL;
731 return ldb_dn_copy_partial(mem_ctx, dn, dn->comp_num - 1);
734 struct ldb_dn_component *ldb_dn_build_component(void *mem_ctx, const char *attr,
737 struct ldb_dn_component *dc;
739 if (attr == NULL || val == NULL) return NULL;
741 dc = talloc(mem_ctx, struct ldb_dn_component);
742 if (dc == NULL) return NULL;
744 dc->name = talloc_strdup(dc, attr);
745 if (dc->name == NULL) {
750 dc->value.data = (uint8_t *)talloc_strdup(dc, val);
751 if (dc->value.data == NULL) {
756 dc->value.length = strlen(val);
761 struct ldb_dn *ldb_dn_build_child(void *mem_ctx, const char *attr,
763 const struct ldb_dn *base)
766 if (! ldb_dn_is_valid_attribute_name(attr)) return NULL;
767 if (value == NULL || value == '\0') return NULL;
770 new = ldb_dn_copy_partial(mem_ctx, base, base->comp_num + 1);
771 LDB_DN_NULL_FAILED(new);
773 new = ldb_dn_new(mem_ctx);
774 LDB_DN_NULL_FAILED(new);
777 new->components = talloc_array(new, struct ldb_dn_component, new->comp_num);
780 new->components[0].name = talloc_strdup(new->components, attr);
781 LDB_DN_NULL_FAILED(new->components[0].name);
783 new->components[0].value.data = (uint8_t *)talloc_strdup(new->components, value);
784 LDB_DN_NULL_FAILED(new->components[0].value.data);
785 new->components[0].value.length = strlen((char *)new->components[0].value.data);
795 struct ldb_dn *ldb_dn_make_child(void *mem_ctx, const struct ldb_dn_component *component,
796 const struct ldb_dn *base)
798 if (component == NULL) return NULL;
800 return ldb_dn_build_child(mem_ctx, component->name,
801 (char *)component->value.data, base);
804 struct ldb_dn *ldb_dn_compose(void *mem_ctx, const struct ldb_dn *dn1, const struct ldb_dn *dn2)
809 if (dn2 == NULL && dn1 == NULL) {
814 new = ldb_dn_new(mem_ctx);
815 LDB_DN_NULL_FAILED(new);
817 new->comp_num = dn1->comp_num;
818 new->components = talloc_array(new, struct ldb_dn_component, new->comp_num);
820 int comp_num = dn2->comp_num;
821 if (dn1 != NULL) comp_num += dn1->comp_num;
822 new = ldb_dn_copy_partial(mem_ctx, dn2, comp_num);
829 for (i = 0; i < dn1->comp_num; i++) {
830 new->components[i] = ldb_dn_copy_component(new->components,
831 &(dn1->components[i]));
841 struct ldb_dn *ldb_dn_string_compose(void *mem_ctx, const struct ldb_dn *base, const char *child_fmt, ...)
848 if (child_fmt == NULL) return NULL;
850 va_start(ap, child_fmt);
851 ret = vasprintf(&child_str, child_fmt, ap);
854 if (ret <= 0) return NULL;
856 dn = ldb_dn_compose(mem_ctx, ldb_dn_explode(mem_ctx, child_str), base);
863 struct ldb_dn_component *ldb_dn_get_rdn(void *mem_ctx, const struct ldb_dn *dn)
865 struct ldb_dn_component *rdn;
867 if (dn == NULL) return NULL;
869 if (dn->comp_num < 1) {
873 rdn = talloc(mem_ctx, struct ldb_dn_component);
874 if (rdn == NULL) return NULL;
876 *rdn = ldb_dn_copy_component(mem_ctx, &dn->components[0]);
877 if (rdn->name == NULL) {
885 /* Create a 'canonical name' string from a DN:
887 ie dc=samba,dc=org -> samba.org/
888 uid=administrator,ou=users,dc=samba,dc=org = samba.org/users/administrator
890 There are two formats, the EX format has the last / replaced with a newline (\n).
893 static char *ldb_dn_canonical(void *mem_ctx, const struct ldb_dn *dn, int ex_format) {
895 char *cracked = NULL;
897 /* Walk backwards down the DN, grabbing 'dc' components at first */
898 for (i = dn->comp_num - 1 ; i >= 0; i--) {
899 if (ldb_attr_cmp(dn->components[i].name, "dc") != 0) {
903 cracked = talloc_asprintf(mem_ctx, "%s.%s",
904 ldb_dn_escape_value(mem_ctx, dn->components[i].value),
907 cracked = ldb_dn_escape_value(mem_ctx, dn->components[i].value);
914 /* Only domain components? Finish here */
917 cracked = talloc_asprintf(mem_ctx, "%s\n", cracked);
919 cracked = talloc_asprintf(mem_ctx, "%s/", cracked);
924 /* Now walk backwards appending remaining components */
926 cracked = talloc_asprintf(mem_ctx, "%s/%s", cracked,
927 ldb_dn_escape_value(mem_ctx, dn->components[i].value));
933 /* Last one, possibly a newline for the 'ex' format */
935 cracked = talloc_asprintf(mem_ctx, "%s\n%s", cracked,
936 ldb_dn_escape_value(mem_ctx, dn->components[i].value));
938 cracked = talloc_asprintf(mem_ctx, "%s/%s", cracked,
939 ldb_dn_escape_value(mem_ctx, dn->components[i].value));
944 /* Wrapper functions for the above, for the two different string formats */
945 char *ldb_dn_canonical_string(void *mem_ctx, const struct ldb_dn *dn) {
946 return ldb_dn_canonical(mem_ctx, dn, 0);
950 char *ldb_dn_canonical_ex_string(void *mem_ctx, const struct ldb_dn *dn) {
951 return ldb_dn_canonical(mem_ctx, dn, 1);