2009-06-06 14:32:46 +04:00
/*
Unix SMB / CIFS implementation .
Infrastructure for async ldap client requests
Copyright ( C ) Volker Lendecke 2009
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 3 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program . If not , see < http : //www.gnu.org/licenses/>.
*/
# include "includes.h"
2010-05-18 02:39:43 +04:00
# include "tldap.h"
# include "tldap_util.h"
2010-10-12 08:27:50 +04:00
# include "../libcli/security/security.h"
2011-02-24 14:27:29 +03:00
# include "../lib/util/asn1.h"
2009-06-06 14:32:46 +04:00
bool tldap_entry_values ( struct tldap_message * msg , const char * attribute ,
2011-02-12 19:00:30 +03:00
DATA_BLOB * * values , int * num_values )
2009-06-06 14:32:46 +04:00
{
struct tldap_attribute * attributes ;
int i , num_attributes ;
2011-03-14 23:16:23 +03:00
if ( ! tldap_entry_attributes ( msg , & attributes , & num_attributes ) ) {
2009-06-06 14:32:46 +04:00
return false ;
}
for ( i = 0 ; i < num_attributes ; i + + ) {
if ( strequal ( attribute , attributes [ i ] . name ) ) {
break ;
}
}
if ( i = = num_attributes ) {
return false ;
}
* num_values = attributes [ i ] . num_values ;
* values = attributes [ i ] . values ;
return true ;
}
bool tldap_get_single_valueblob ( struct tldap_message * msg ,
const char * attribute , DATA_BLOB * blob )
{
int num_values ;
DATA_BLOB * values ;
if ( attribute = = NULL ) {
return NULL ;
}
2011-02-12 19:00:30 +03:00
if ( ! tldap_entry_values ( msg , attribute , & values , & num_values ) ) {
2009-06-06 14:32:46 +04:00
return NULL ;
}
if ( num_values ! = 1 ) {
return NULL ;
}
* blob = values [ 0 ] ;
return true ;
}
char * tldap_talloc_single_attribute ( struct tldap_message * msg ,
const char * attribute ,
TALLOC_CTX * mem_ctx )
{
DATA_BLOB val ;
char * result ;
size_t len ;
if ( ! tldap_get_single_valueblob ( msg , attribute , & val ) ) {
2011-12-20 13:25:05 +04:00
return NULL ;
2009-06-06 14:32:46 +04:00
}
if ( ! convert_string_talloc ( mem_ctx , CH_UTF8 , CH_UNIX ,
val . data , val . length ,
2011-03-24 02:59:41 +03:00
& result , & len ) ) {
2009-06-06 14:32:46 +04:00
return NULL ;
}
return result ;
}
bool tldap_pull_binsid ( struct tldap_message * msg , const char * attribute ,
struct dom_sid * sid )
{
DATA_BLOB val ;
if ( ! tldap_get_single_valueblob ( msg , attribute , & val ) ) {
return false ;
}
2015-08-24 13:33:28 +03:00
return sid_parse ( val . data , val . length , sid ) ;
2009-06-06 14:32:46 +04:00
}
2009-06-30 00:11:23 +04:00
bool tldap_pull_guid ( struct tldap_message * msg , const char * attribute ,
struct GUID * guid )
{
DATA_BLOB val ;
if ( ! tldap_get_single_valueblob ( msg , attribute , & val ) ) {
return false ;
}
return NT_STATUS_IS_OK ( GUID_from_data_blob ( & val , guid ) ) ;
}
2009-06-06 14:32:46 +04:00
static bool tldap_add_blob_vals ( TALLOC_CTX * mem_ctx , struct tldap_mod * mod ,
2011-02-12 18:37:02 +03:00
DATA_BLOB * newvals , int num_newvals )
2009-06-06 14:32:46 +04:00
{
int num_values = talloc_array_length ( mod - > values ) ;
int i ;
DATA_BLOB * tmp ;
tmp = talloc_realloc ( mem_ctx , mod - > values , DATA_BLOB ,
num_values + num_newvals ) ;
if ( tmp = = NULL ) {
return false ;
}
mod - > values = tmp ;
for ( i = 0 ; i < num_newvals ; i + + ) {
mod - > values [ i + num_values ] . data = ( uint8_t * ) talloc_memdup (
mod - > values , newvals [ i ] . data , newvals [ i ] . length ) ;
if ( mod - > values [ i + num_values ] . data = = NULL ) {
return false ;
}
mod - > values [ i + num_values ] . length = newvals [ i ] . length ;
}
mod - > num_values = num_values + num_newvals ;
return true ;
}
2011-02-12 18:33:26 +03:00
bool tldap_add_mod_blobs ( TALLOC_CTX * mem_ctx ,
2011-02-12 18:58:10 +03:00
struct tldap_mod * * pmods , int * pnum_mods ,
2009-06-06 14:32:46 +04:00
int mod_op , const char * attrib ,
2011-02-12 18:33:26 +03:00
DATA_BLOB * newvals , int num_newvals )
2009-06-06 14:32:46 +04:00
{
struct tldap_mod new_mod ;
struct tldap_mod * mods = * pmods ;
struct tldap_mod * mod = NULL ;
int i , num_mods ;
if ( mods = = NULL ) {
mods = talloc_array ( mem_ctx , struct tldap_mod , 0 ) ;
}
if ( mods = = NULL ) {
return false ;
}
2011-02-12 18:58:10 +03:00
num_mods = * pnum_mods ;
2009-06-06 14:32:46 +04:00
for ( i = 0 ; i < num_mods ; i + + ) {
if ( ( mods [ i ] . mod_op = = mod_op )
& & strequal ( mods [ i ] . attribute , attrib ) ) {
mod = & mods [ i ] ;
break ;
}
}
if ( mod = = NULL ) {
new_mod . mod_op = mod_op ;
new_mod . attribute = talloc_strdup ( mods , attrib ) ;
if ( new_mod . attribute = = NULL ) {
return false ;
}
new_mod . num_values = 0 ;
new_mod . values = NULL ;
mod = & new_mod ;
}
if ( ( num_newvals ! = 0 )
2011-02-12 18:37:02 +03:00
& & ! tldap_add_blob_vals ( mods , mod , newvals , num_newvals ) ) {
2009-06-06 14:32:46 +04:00
return false ;
}
2011-02-12 18:58:10 +03:00
if ( ( i = = num_mods ) & & ( talloc_array_length ( mods ) < num_mods + 1 ) ) {
2009-06-06 14:32:46 +04:00
mods = talloc_realloc ( talloc_tos ( ) , mods , struct tldap_mod ,
num_mods + 1 ) ;
if ( mods = = NULL ) {
return false ;
}
mods [ num_mods ] = * mod ;
}
* pmods = mods ;
2011-02-12 18:58:10 +03:00
* pnum_mods + = 1 ;
2009-06-06 14:32:46 +04:00
return true ;
}
2011-02-12 18:58:10 +03:00
bool tldap_add_mod_str ( TALLOC_CTX * mem_ctx ,
struct tldap_mod * * pmods , int * pnum_mods ,
2009-06-08 22:36:49 +04:00
int mod_op , const char * attrib , const char * str )
{
DATA_BLOB utf8 ;
bool ret ;
if ( ! convert_string_talloc ( talloc_tos ( ) , CH_UNIX , CH_UTF8 , str ,
2011-03-24 02:59:41 +03:00
strlen ( str ) , & utf8 . data , & utf8 . length ) ) {
2009-06-08 22:36:49 +04:00
return false ;
}
2011-02-12 18:58:10 +03:00
ret = tldap_add_mod_blobs ( mem_ctx , pmods , pnum_mods , mod_op , attrib ,
& utf8 , 1 ) ;
2009-06-08 22:36:49 +04:00
TALLOC_FREE ( utf8 . data ) ;
return ret ;
}
2009-06-06 14:32:46 +04:00
static bool tldap_make_mod_blob_int ( struct tldap_message * existing ,
TALLOC_CTX * mem_ctx ,
2011-02-12 18:42:37 +03:00
struct tldap_mod * * pmods , int * pnum_mods ,
2009-06-06 14:32:46 +04:00
const char * attrib , DATA_BLOB newval ,
int ( * comparison ) ( const DATA_BLOB * d1 ,
const DATA_BLOB * d2 ) )
{
int num_values = 0 ;
DATA_BLOB * values = NULL ;
DATA_BLOB oldval = data_blob_null ;
if ( ( existing ! = NULL )
2011-02-12 19:00:30 +03:00
& & tldap_entry_values ( existing , attrib , & values , & num_values ) ) {
2009-06-06 14:32:46 +04:00
if ( num_values > 1 ) {
/* can't change multivalue attributes atm */
return false ;
}
if ( num_values = = 1 ) {
oldval = values [ 0 ] ;
}
}
if ( ( oldval . data ! = NULL ) & & ( newval . data ! = NULL )
& & ( comparison ( & oldval , & newval ) = = 0 ) ) {
/* Believe it or not, but LDAP will deny a delete and
an add at the same time if the values are the
same . . . */
2011-04-04 15:46:18 +04:00
DEBUG ( 10 , ( " tldap_make_mod_blob_int: attribute |%s| not "
2009-06-06 14:32:46 +04:00
" changed. \n " , attrib ) ) ;
return true ;
}
if ( oldval . data ! = NULL ) {
/* By deleting exactly the value we found in the entry this
* should be race - free in the sense that the LDAP - Server will
* deny the complete operation if somebody changed the
* attribute behind our back . */
/* This will also allow modifying single valued attributes in
* Novell NDS . In NDS you have to first remove attribute and
* then you could add new value */
2011-04-04 15:46:18 +04:00
DEBUG ( 10 , ( " tldap_make_mod_blob_int: deleting attribute |%s| \n " ,
2009-06-06 14:32:46 +04:00
attrib ) ) ;
2011-02-12 18:58:10 +03:00
if ( ! tldap_add_mod_blobs ( mem_ctx , pmods , pnum_mods ,
TLDAP_MOD_DELETE ,
2011-02-12 18:33:26 +03:00
attrib , & oldval , 1 ) ) {
2009-06-06 14:32:46 +04:00
return false ;
}
}
/* Regardless of the real operation (add or modify)
we add the new value here . We rely on deleting
the old value , should it exist . */
if ( newval . data ! = NULL ) {
2011-04-04 15:46:18 +04:00
DEBUG ( 10 , ( " tldap_make_mod_blob_int: adding attribute |%s| value len "
2009-06-06 14:32:46 +04:00
" %d \n " , attrib , ( int ) newval . length ) ) ;
2011-02-12 18:58:10 +03:00
if ( ! tldap_add_mod_blobs ( mem_ctx , pmods , pnum_mods ,
TLDAP_MOD_ADD ,
2011-02-12 18:33:26 +03:00
attrib , & newval , 1 ) ) {
2009-06-06 14:32:46 +04:00
return false ;
}
}
return true ;
}
bool tldap_make_mod_blob ( struct tldap_message * existing , TALLOC_CTX * mem_ctx ,
2011-02-12 18:46:59 +03:00
struct tldap_mod * * pmods , int * pnum_mods ,
2009-06-06 14:32:46 +04:00
const char * attrib , DATA_BLOB newval )
{
2011-02-12 18:42:37 +03:00
return tldap_make_mod_blob_int ( existing , mem_ctx , pmods , pnum_mods ,
2009-06-06 14:32:46 +04:00
attrib , newval , data_blob_cmp ) ;
}
static int compare_utf8_blobs ( const DATA_BLOB * d1 , const DATA_BLOB * d2 )
{
char * s1 , * s2 ;
size_t s1len , s2len ;
int ret ;
if ( ! convert_string_talloc ( talloc_tos ( ) , CH_UTF8 , CH_UNIX , d1 - > data ,
2011-03-24 02:59:41 +03:00
d1 - > length , & s1 , & s1len ) ) {
2009-06-06 14:32:46 +04:00
/* can't do much here */
return 0 ;
}
if ( ! convert_string_talloc ( talloc_tos ( ) , CH_UTF8 , CH_UNIX , d2 - > data ,
2011-03-24 02:59:41 +03:00
d2 - > length , & s2 , & s2len ) ) {
2009-06-06 14:32:46 +04:00
/* can't do much here */
TALLOC_FREE ( s1 ) ;
return 0 ;
}
2011-05-13 22:21:30 +04:00
ret = strcasecmp_m ( s1 , s2 ) ;
2009-06-06 14:32:46 +04:00
TALLOC_FREE ( s2 ) ;
TALLOC_FREE ( s1 ) ;
return ret ;
}
bool tldap_make_mod_fmt ( struct tldap_message * existing , TALLOC_CTX * mem_ctx ,
2011-02-12 18:51:08 +03:00
struct tldap_mod * * pmods , int * pnum_mods ,
2009-06-06 14:32:46 +04:00
const char * attrib , const char * fmt , . . . )
{
va_list ap ;
char * newval ;
bool ret ;
DATA_BLOB blob = data_blob_null ;
va_start ( ap , fmt ) ;
newval = talloc_vasprintf ( talloc_tos ( ) , fmt , ap ) ;
va_end ( ap ) ;
if ( newval = = NULL ) {
return false ;
}
blob . length = strlen ( newval ) ;
if ( blob . length ! = 0 ) {
2011-05-06 03:19:49 +04:00
blob . data = discard_const_p ( uint8_t , newval ) ;
2009-06-06 14:32:46 +04:00
}
2011-02-12 18:42:37 +03:00
ret = tldap_make_mod_blob_int ( existing , mem_ctx , pmods , pnum_mods ,
2009-06-06 14:32:46 +04:00
attrib , blob , compare_utf8_blobs ) ;
TALLOC_FREE ( newval ) ;
return ret ;
}
2016-01-24 13:53:48 +03:00
const char * tldap_errstr ( TALLOC_CTX * mem_ctx , struct tldap_context * ld ,
TLDAPRC rc )
2009-06-06 14:32:46 +04:00
{
const char * ld_error = NULL ;
char * res ;
2011-02-20 17:08:41 +03:00
if ( ld ! = NULL ) {
ld_error = tldap_msg_diagnosticmessage ( tldap_ctx_lastmsg ( ld ) ) ;
}
2016-01-24 13:53:48 +03:00
res = talloc_asprintf ( mem_ctx , " LDAP error %d (%s), %s " ,
( int ) TLDAP_RC_V ( rc ) , tldap_rc2string ( rc ) ,
2009-06-06 14:32:46 +04:00
ld_error ? ld_error : " unknown " ) ;
return res ;
}
2016-01-24 13:53:48 +03:00
TLDAPRC tldap_search_va ( struct tldap_context * ld , const char * base , int scope ,
const char * attrs [ ] , int num_attrs , int attrsonly ,
TALLOC_CTX * mem_ctx , struct tldap_message * * * res ,
const char * fmt , va_list ap )
2009-06-06 14:32:46 +04:00
{
char * filter ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc ;
2009-06-06 14:32:46 +04:00
filter = talloc_vasprintf ( talloc_tos ( ) , fmt , ap ) ;
if ( filter = = NULL ) {
return TLDAP_NO_MEMORY ;
}
2009-06-28 16:41:11 +04:00
2016-01-24 13:53:48 +03:00
rc = tldap_search ( ld , base , scope , filter ,
attrs , num_attrs , attrsonly ,
NULL /*sctrls*/ , 0 , NULL /*cctrls*/ , 0 ,
0 /*timelimit*/ , 0 /*sizelimit*/ , 0 /*deref*/ ,
2016-01-31 17:29:29 +03:00
mem_ctx , res ) ;
2009-06-06 14:32:46 +04:00
TALLOC_FREE ( filter ) ;
2016-01-24 13:53:48 +03:00
return rc ;
2009-06-06 14:32:46 +04:00
}
2016-01-24 13:53:48 +03:00
TLDAPRC tldap_search_fmt ( struct tldap_context * ld , const char * base , int scope ,
const char * attrs [ ] , int num_attrs , int attrsonly ,
TALLOC_CTX * mem_ctx , struct tldap_message * * * res ,
const char * fmt , . . . )
2009-06-28 16:41:11 +04:00
{
va_list ap ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc ;
2009-06-28 16:41:11 +04:00
va_start ( ap , fmt ) ;
2016-01-24 13:53:48 +03:00
rc = tldap_search_va ( ld , base , scope , attrs , num_attrs , attrsonly ,
mem_ctx , res , fmt , ap ) ;
2009-06-28 16:41:11 +04:00
va_end ( ap ) ;
2016-01-24 13:53:48 +03:00
return rc ;
2009-06-28 16:41:11 +04:00
}
2009-06-06 14:32:46 +04:00
bool tldap_pull_uint64 ( struct tldap_message * msg , const char * attr ,
uint64_t * presult )
{
char * str ;
uint64_t result ;
2019-01-28 14:54:07 +03:00
int error = 0 ;
2009-06-06 14:32:46 +04:00
str = tldap_talloc_single_attribute ( msg , attr , talloc_tos ( ) ) ;
if ( str = = NULL ) {
DEBUG ( 10 , ( " Could not find attribute %s \n " , attr ) ) ;
return false ;
}
2019-01-28 14:54:07 +03:00
result = strtoull_err ( str , NULL , 10 , & error ) ;
if ( error ! = 0 ) {
DBG_DEBUG ( " Attribute conversion failed (%s) \n " ,
strerror ( error ) ) ;
TALLOC_FREE ( str ) ;
return false ;
}
2009-06-06 14:32:46 +04:00
TALLOC_FREE ( str ) ;
* presult = result ;
return true ;
}
2009-06-07 21:08:52 +04:00
bool tldap_pull_uint32 ( struct tldap_message * msg , const char * attr ,
uint32_t * presult )
{
uint64_t result ;
if ( ! tldap_pull_uint64 ( msg , attr , & result ) ) {
return false ;
}
* presult = ( uint32_t ) result ;
return true ;
}
2009-06-13 13:59:39 +04:00
struct tldap_fetch_rootdse_state {
struct tldap_context * ld ;
struct tldap_message * rootdse ;
} ;
static void tldap_fetch_rootdse_done ( struct tevent_req * subreq ) ;
struct tevent_req * tldap_fetch_rootdse_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct tldap_context * ld )
{
struct tevent_req * req , * subreq ;
struct tldap_fetch_rootdse_state * state ;
static const char * attrs [ 2 ] = { " * " , " + " } ;
req = tevent_req_create ( mem_ctx , & state ,
struct tldap_fetch_rootdse_state ) ;
if ( req = = NULL ) {
return NULL ;
}
state - > ld = ld ;
state - > rootdse = NULL ;
subreq = tldap_search_send (
mem_ctx , ev , ld , " " , TLDAP_SCOPE_BASE , " (objectclass=*) " ,
2009-06-06 23:06:33 +04:00
attrs , ARRAY_SIZE ( attrs ) , 0 , NULL , 0 , NULL , 0 , 0 , 0 , 0 ) ;
2009-06-13 13:59:39 +04:00
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
tevent_req_set_callback ( subreq , tldap_fetch_rootdse_done , req ) ;
return req ;
}
static void tldap_fetch_rootdse_done ( struct tevent_req * subreq )
{
struct tevent_req * req = tevent_req_callback_data (
subreq , struct tevent_req ) ;
struct tldap_fetch_rootdse_state * state = tevent_req_data (
req , struct tldap_fetch_rootdse_state ) ;
struct tldap_message * msg ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc ;
2009-06-13 13:59:39 +04:00
rc = tldap_search_recv ( subreq , state , & msg ) ;
2016-01-24 13:53:48 +03:00
if ( tevent_req_ldap_error ( req , rc ) ) {
2009-06-13 13:59:39 +04:00
return ;
}
switch ( tldap_msg_type ( msg ) ) {
case TLDAP_RES_SEARCH_ENTRY :
if ( state - > rootdse ! = NULL ) {
goto protocol_error ;
}
state - > rootdse = msg ;
break ;
case TLDAP_RES_SEARCH_RESULT :
TALLOC_FREE ( subreq ) ;
if ( state - > rootdse = = NULL ) {
goto protocol_error ;
}
tevent_req_done ( req ) ;
break ;
default :
goto protocol_error ;
}
return ;
protocol_error :
2016-01-24 13:53:48 +03:00
tevent_req_ldap_error ( req , TLDAP_PROTOCOL_ERROR ) ;
2009-06-13 13:59:39 +04:00
return ;
}
2016-01-24 13:53:48 +03:00
TLDAPRC tldap_fetch_rootdse_recv ( struct tevent_req * req )
2009-06-13 13:59:39 +04:00
{
struct tldap_fetch_rootdse_state * state = tevent_req_data (
req , struct tldap_fetch_rootdse_state ) ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc ;
2009-06-13 13:59:39 +04:00
char * dn ;
2016-01-24 13:53:48 +03:00
if ( tevent_req_is_ldap_error ( req , & rc ) ) {
return rc ;
2009-06-13 13:59:39 +04:00
}
/* Trigger parsing the dn, just to make sure it's ok */
if ( ! tldap_entry_dn ( state - > rootdse , & dn ) ) {
return TLDAP_DECODING_ERROR ;
}
if ( ! tldap_context_setattr ( state - > ld , " tldap:rootdse " ,
& state - > rootdse ) ) {
return TLDAP_NO_MEMORY ;
}
2016-01-24 13:53:48 +03:00
return TLDAP_SUCCESS ;
2009-06-13 13:59:39 +04:00
}
2016-01-24 13:53:48 +03:00
TLDAPRC tldap_fetch_rootdse ( struct tldap_context * ld )
2009-06-13 13:59:39 +04:00
{
TALLOC_CTX * frame = talloc_stackframe ( ) ;
struct tevent_context * ev ;
struct tevent_req * req ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc = TLDAP_NO_MEMORY ;
2009-06-13 13:59:39 +04:00
2013-02-18 12:10:34 +04:00
ev = samba_tevent_context_init ( frame ) ;
2009-06-13 13:59:39 +04:00
if ( ev = = NULL ) {
goto fail ;
}
req = tldap_fetch_rootdse_send ( frame , ev , ld ) ;
if ( req = = NULL ) {
goto fail ;
}
if ( ! tevent_req_poll ( req , ev ) ) {
2016-01-24 13:53:48 +03:00
rc = TLDAP_OPERATIONS_ERROR ;
2009-06-13 13:59:39 +04:00
goto fail ;
}
2016-01-24 13:53:48 +03:00
rc = tldap_fetch_rootdse_recv ( req ) ;
2009-06-13 13:59:39 +04:00
fail :
TALLOC_FREE ( frame ) ;
2016-01-24 13:53:48 +03:00
return rc ;
2009-06-13 13:59:39 +04:00
}
struct tldap_message * tldap_rootdse ( struct tldap_context * ld )
{
return talloc_get_type ( tldap_context_getattr ( ld , " tldap:rootdse " ) ,
struct tldap_message ) ;
}
2009-06-19 16:00:31 +04:00
bool tldap_entry_has_attrvalue ( struct tldap_message * msg ,
const char * attribute ,
const DATA_BLOB blob )
{
int i , num_values ;
DATA_BLOB * values ;
2011-02-12 19:00:30 +03:00
if ( ! tldap_entry_values ( msg , attribute , & values , & num_values ) ) {
2009-06-19 16:00:31 +04:00
return false ;
}
for ( i = 0 ; i < num_values ; i + + ) {
if ( data_blob_cmp ( & values [ i ] , & blob ) = = 0 ) {
return true ;
}
}
return false ;
}
2009-06-19 16:01:10 +04:00
bool tldap_supports_control ( struct tldap_context * ld , const char * oid )
{
struct tldap_message * rootdse = tldap_rootdse ( ld ) ;
if ( rootdse = = NULL ) {
return false ;
}
return tldap_entry_has_attrvalue ( rootdse , " supportedControl " ,
data_blob_const ( oid , strlen ( oid ) ) ) ;
}
2009-06-20 20:43:58 +04:00
struct tldap_control * tldap_add_control ( TALLOC_CTX * mem_ctx ,
struct tldap_control * ctrls ,
int num_ctrls ,
struct tldap_control * ctrl )
{
struct tldap_control * result ;
result = talloc_array ( mem_ctx , struct tldap_control , num_ctrls + 1 ) ;
if ( result = = NULL ) {
return NULL ;
}
memcpy ( result , ctrls , sizeof ( struct tldap_control ) * num_ctrls ) ;
result [ num_ctrls ] = * ctrl ;
return result ;
}
/*
* Find a control returned by the server
*/
struct tldap_control * tldap_msg_findcontrol ( struct tldap_message * msg ,
const char * oid )
{
struct tldap_control * controls ;
int i , num_controls ;
tldap_msg_sctrls ( msg , & num_controls , & controls ) ;
for ( i = 0 ; i < num_controls ; i + + ) {
if ( strcmp ( controls [ i ] . oid , oid ) = = 0 ) {
return & controls [ i ] ;
}
}
return NULL ;
}
struct tldap_search_paged_state {
struct tevent_context * ev ;
struct tldap_context * ld ;
const char * base ;
const char * filter ;
int scope ;
const char * * attrs ;
int num_attrs ;
int attrsonly ;
struct tldap_control * sctrls ;
int num_sctrls ;
struct tldap_control * cctrls ;
int num_cctrls ;
int timelimit ;
int sizelimit ;
int deref ;
int page_size ;
struct asn1_data * asn1 ;
DATA_BLOB cookie ;
struct tldap_message * result ;
} ;
static struct tevent_req * tldap_ship_paged_search (
TALLOC_CTX * mem_ctx ,
struct tldap_search_paged_state * state )
{
struct tldap_control * pgctrl ;
2014-09-20 02:21:06 +04:00
struct asn1_data * asn1 = NULL ;
2009-06-20 20:43:58 +04:00
asn1 = asn1_init ( state ) ;
if ( asn1 = = NULL ) {
return NULL ;
}
2014-09-20 02:21:06 +04:00
if ( ! asn1_push_tag ( asn1 , ASN1_SEQUENCE ( 0 ) ) ) goto err ;
if ( ! asn1_write_Integer ( asn1 , state - > page_size ) ) goto err ;
if ( ! asn1_write_OctetString ( asn1 , state - > cookie . data , state - > cookie . length ) ) goto err ;
if ( ! asn1_pop_tag ( asn1 ) ) goto err ;
2009-06-20 20:43:58 +04:00
state - > asn1 = asn1 ;
pgctrl = & state - > sctrls [ state - > num_sctrls - 1 ] ;
pgctrl - > oid = TLDAP_CONTROL_PAGEDRESULTS ;
pgctrl - > critical = true ;
if ( ! asn1_blob ( state - > asn1 , & pgctrl - > value ) ) {
2014-09-20 02:21:06 +04:00
goto err ;
2009-06-20 20:43:58 +04:00
}
return tldap_search_send ( mem_ctx , state - > ev , state - > ld , state - > base ,
state - > scope , state - > filter , state - > attrs ,
state - > num_attrs , state - > attrsonly ,
state - > sctrls , state - > num_sctrls ,
state - > cctrls , state - > num_cctrls ,
state - > timelimit , state - > sizelimit ,
state - > deref ) ;
2014-09-20 02:21:06 +04:00
err :
TALLOC_FREE ( asn1 ) ;
return NULL ;
2009-06-20 20:43:58 +04:00
}
static void tldap_search_paged_done ( struct tevent_req * subreq ) ;
struct tevent_req * tldap_search_paged_send ( TALLOC_CTX * mem_ctx ,
struct tevent_context * ev ,
struct tldap_context * ld ,
const char * base , int scope ,
const char * filter ,
const char * * attrs ,
int num_attrs ,
int attrsonly ,
struct tldap_control * sctrls ,
int num_sctrls ,
struct tldap_control * cctrls ,
int num_cctrls ,
int timelimit ,
int sizelimit ,
int deref ,
int page_size )
{
struct tevent_req * req , * subreq ;
struct tldap_search_paged_state * state ;
struct tldap_control empty_control ;
req = tevent_req_create ( mem_ctx , & state ,
struct tldap_search_paged_state ) ;
if ( req = = NULL ) {
return NULL ;
}
state - > ev = ev ;
state - > ld = ld ;
state - > base = base ;
state - > filter = filter ;
state - > scope = scope ;
state - > attrs = attrs ;
state - > num_attrs = num_attrs ;
state - > attrsonly = attrsonly ;
state - > cctrls = cctrls ;
state - > num_cctrls = num_cctrls ;
state - > timelimit = timelimit ;
state - > sizelimit = sizelimit ;
state - > deref = deref ;
state - > page_size = page_size ;
state - > asn1 = NULL ;
state - > cookie = data_blob_null ;
ZERO_STRUCT ( empty_control ) ;
state - > sctrls = tldap_add_control ( state , sctrls , num_sctrls ,
& empty_control ) ;
if ( tevent_req_nomem ( state - > sctrls , req ) ) {
return tevent_req_post ( req , ev ) ;
}
state - > num_sctrls = num_sctrls + 1 ;
subreq = tldap_ship_paged_search ( state , state ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return tevent_req_post ( req , ev ) ;
}
tevent_req_set_callback ( subreq , tldap_search_paged_done , req ) ;
return req ;
}
static void tldap_search_paged_done ( struct tevent_req * subreq )
{
struct tevent_req * req = tevent_req_callback_data (
subreq , struct tevent_req ) ;
struct tldap_search_paged_state * state = tevent_req_data (
req , struct tldap_search_paged_state ) ;
2014-09-20 02:21:06 +04:00
struct asn1_data * asn1 = NULL ;
2009-06-20 20:43:58 +04:00
struct tldap_control * pgctrl ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc ;
int size ;
2009-06-20 20:43:58 +04:00
rc = tldap_search_recv ( subreq , state , & state - > result ) ;
2016-01-24 13:53:48 +03:00
if ( tevent_req_ldap_error ( req , rc ) ) {
2009-06-20 20:43:58 +04:00
return ;
}
TALLOC_FREE ( state - > asn1 ) ;
switch ( tldap_msg_type ( state - > result ) ) {
case TLDAP_RES_SEARCH_ENTRY :
case TLDAP_RES_SEARCH_REFERENCE :
tevent_req_notify_callback ( req ) ;
return ;
case TLDAP_RES_SEARCH_RESULT :
break ;
default :
TALLOC_FREE ( subreq ) ;
2016-01-24 13:53:48 +03:00
tevent_req_ldap_error ( req , TLDAP_PROTOCOL_ERROR ) ;
2009-06-20 20:43:58 +04:00
return ;
}
TALLOC_FREE ( subreq ) ;
/* We've finished one paged search, fire the next */
pgctrl = tldap_msg_findcontrol ( state - > result ,
TLDAP_CONTROL_PAGEDRESULTS ) ;
if ( pgctrl = = NULL ) {
/* RFC2696 requires the server to return the control */
2016-01-24 13:53:48 +03:00
tevent_req_ldap_error ( req , TLDAP_PROTOCOL_ERROR ) ;
2009-06-20 20:43:58 +04:00
return ;
}
TALLOC_FREE ( state - > cookie . data ) ;
asn1 = asn1_init ( talloc_tos ( ) ) ;
2016-01-24 13:53:48 +03:00
if ( tevent_req_nomem ( asn1 , req ) ) {
2009-06-20 20:43:58 +04:00
return ;
}
asn1_load_nocopy ( asn1 , pgctrl - > value . data , pgctrl - > value . length ) ;
2014-09-20 02:21:06 +04:00
if ( ! asn1_start_tag ( asn1 , ASN1_SEQUENCE ( 0 ) ) ) goto err ;
if ( ! asn1_read_Integer ( asn1 , & size ) ) goto err ;
if ( ! asn1_read_OctetString ( asn1 , state , & state - > cookie ) ) goto err ;
if ( ! asn1_end_tag ( asn1 ) ) goto err ;
2009-06-20 20:43:58 +04:00
TALLOC_FREE ( asn1 ) ;
if ( state - > cookie . length = = 0 ) {
/* We're done, no cookie anymore */
tevent_req_done ( req ) ;
return ;
}
TALLOC_FREE ( state - > result ) ;
subreq = tldap_ship_paged_search ( state , state ) ;
if ( tevent_req_nomem ( subreq , req ) ) {
return ;
}
tevent_req_set_callback ( subreq , tldap_search_paged_done , req ) ;
2014-09-20 02:21:06 +04:00
err :
TALLOC_FREE ( asn1 ) ;
2016-01-24 13:53:48 +03:00
tevent_req_ldap_error ( req , TLDAP_DECODING_ERROR ) ;
2009-06-20 20:43:58 +04:00
}
2016-01-24 13:53:48 +03:00
TLDAPRC tldap_search_paged_recv ( struct tevent_req * req , TALLOC_CTX * mem_ctx ,
struct tldap_message * * pmsg )
2009-06-20 20:43:58 +04:00
{
struct tldap_search_paged_state * state = tevent_req_data (
req , struct tldap_search_paged_state ) ;
2016-01-24 13:53:48 +03:00
TLDAPRC rc ;
2009-06-20 20:43:58 +04:00
if ( ! tevent_req_is_in_progress ( req )
2016-01-24 13:53:48 +03:00
& & tevent_req_is_ldap_error ( req , & rc ) ) {
return rc ;
2009-06-20 20:43:58 +04:00
}
if ( tevent_req_is_in_progress ( req ) ) {
switch ( tldap_msg_type ( state - > result ) ) {
case TLDAP_RES_SEARCH_ENTRY :
case TLDAP_RES_SEARCH_REFERENCE :
break ;
default :
return TLDAP_PROTOCOL_ERROR ;
}
}
* pmsg = talloc_move ( mem_ctx , & state - > result ) ;
return TLDAP_SUCCESS ;
}