search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
dmake: do not set MAKEFLAGS=k
[unleashed/tickless.git] / usr / src / lib / libldap5 / sources / ldap / common / url.c
blobce9a71cc4620b02abecb5bf5b670760b71984452
1 /*
2 * Copyright 2001-2003 Sun Microsystems, Inc. All rights reserved.
3 * Use is subject to license terms.
4 */
5
6 #pragma ident "%Z%%M% %I% %E% SMI"
7
8
9 /*
10 * The contents of this file are subject to the Netscape Public
11 * License Version 1.1 (the "License"); you may not use this file
12 * except in compliance with the License. You may obtain a copy of
13 * the License at http://www.mozilla.org/NPL/
14 *
15 * Software distributed under the License is distributed on an "AS
16 * IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
17 * implied. See the License for the specific language governing
18 * rights and limitations under the License.
19 *
20 * The Original Code is Mozilla Communicator client code, released
21 * March 31, 1998.
22 *
23 * The Initial Developer of the Original Code is Netscape
24 * Communications Corporation. Portions created by Netscape are
25 * Copyright (C) 1998-1999 Netscape Communications Corporation. All
26 * Rights Reserved.
27 *
28 * Contributor(s):
29 */
30 /*
31 * Copyright (c) 1996 Regents of the University of Michigan.
32 * All rights reserved.
33 *
34 */
35 /* LIBLDAP url.c -- LDAP URL related routines
36 *
37 * LDAP URLs look like this:
38 * l d a p : / / hostport / dn [ ? attributes [ ? scope [ ? filter ] ] ]
39 *
40 * where:
41 * attributes is a comma separated list
42 * scope is one of these three strings: base one sub (default=base)
43 * filter is an string-represented filter as in RFC 1558
44 *
45 * e.g., ldap://ldap.itd.umich.edu/c=US?o,description?one?o=umich
46 *
47 * We also tolerate URLs that look like: <ldapurl> and <URL:ldapurl>
48 */
49
50 #if 0
51 static char copyright[] = "@(#) Copyright (c) 1996 Regents of the University of Michigan.\nAll rights reserved.\n";
52 #endif
53
54 #include "ldap-int.h"
55
56
57 static int skip_url_prefix( const char **urlp, int *enclosedp, int *securep );
58
59
60 int
61 LDAP_CALL
62 ldap_is_ldap_url( const char *url )
63 {
64 int enclosed, secure;
65
66 return( url != NULL
67 && skip_url_prefix( &url, &enclosed, &secure ));
68 }
69
70
71 static int
72 skip_url_prefix( const char **urlp, int *enclosedp, int *securep )
73 {
74 /*
75 * return non-zero if this looks like a LDAP URL; zero if not
76 * if non-zero returned, *urlp will be moved past "ldap://" part of URL
77 * The data that *urlp points to is not changed by this function.
78 */
79 if ( *urlp == NULL ) {
80 return( 0 );
81 }
82
83 /* skip leading '<' (if any) */
84 if ( **urlp == '<' ) {
85 *enclosedp = 1;
86 ++*urlp;
87 } else {
88 *enclosedp = 0;
89 }
90
91 /* skip leading "URL:" (if any) */
92 if ( strlen( *urlp ) >= LDAP_URL_URLCOLON_LEN && strncasecmp(
93 *urlp, LDAP_URL_URLCOLON, LDAP_URL_URLCOLON_LEN ) == 0 ) {
94 *urlp += LDAP_URL_URLCOLON_LEN;
95 }
96
97 /* check for an "ldap://" prefix */
98 if ( strlen( *urlp ) >= LDAP_URL_PREFIX_LEN && strncasecmp( *urlp,
99 LDAP_URL_PREFIX, LDAP_URL_PREFIX_LEN ) == 0 ) {
100 /* skip over URL prefix and return success */
101 *urlp += LDAP_URL_PREFIX_LEN;
102 *securep = 0;
103 return( 1 );
104 }
105
106 /* check for an "ldaps://" prefix */
107 if ( strlen( *urlp ) >= LDAPS_URL_PREFIX_LEN && strncasecmp( *urlp,
108 LDAPS_URL_PREFIX, LDAPS_URL_PREFIX_LEN ) == 0 ) {
109 /* skip over URL prefix and return success */
110 *urlp += LDAPS_URL_PREFIX_LEN;
111 *securep = 1;
112 return( 1 );
113 }
114
115 return( 0 ); /* not an LDAP URL */
116 }
117
118
119 int
120 LDAP_CALL
121 ldap_url_parse( const char *url, LDAPURLDesc **ludpp )
122 {
123 /*
124 * Pick apart the pieces of an LDAP URL.
125 */
126 int rc;
127
128 if (( rc = nsldapi_url_parse( url, ludpp, 1 )) == 0 ) {
129 if ( (*ludpp)->lud_scope == -1 ) {
130 (*ludpp)->lud_scope = LDAP_SCOPE_BASE;
131 }
132 if ( (*ludpp)->lud_filter == NULL ) {
133 (*ludpp)->lud_filter = "(objectclass=*)";
134 }
135 if ( *((*ludpp)->lud_dn) == '\0' ) {
136 (*ludpp)->lud_dn = NULL;
137 }
138 }
139
140 return( rc );
141 }
142
143 /* same as ldap_url_parse(), but dn is not require */
144 int
145 LDAP_CALL
146 ldap_url_parse_nodn(const char *url, LDAPURLDesc **ludpp)
147 {
148 /*
149 * Pick apart the pieces of an LDAP URL.
150 */
151 int rc;
152
153 if ((rc = nsldapi_url_parse(url, ludpp, 0)) == 0) {
154 if ((*ludpp)->lud_scope == -1) {
155 (*ludpp)->lud_scope = LDAP_SCOPE_BASE;
156 }
157 if ((*ludpp)->lud_filter == NULL) {
158 (*ludpp)->lud_filter = "(objectclass=*)";
159 }
160 if ((*ludpp)->lud_dn && *((*ludpp)->lud_dn) == '\0') {
161 (*ludpp)->lud_dn = NULL;
162 }
163 }
164
165 return (rc);
166 }
167
168
169 /*
170 * like ldap_url_parse() with a few exceptions:
171 * 1) if dn_required is zero, a missing DN does not generate an error
172 * (we just leave the lud_dn field NULL)
173 * 2) no defaults are set for lud_scope and lud_filter (they are set to -1
174 * and NULL respectively if no SCOPE or FILTER are present in the URL).
175 * 3) when there is a zero-length DN in a URL we do not set lud_dn to NULL.
176 * 4) if an LDAPv3 URL extensions are included,
177 */
178 int
179 nsldapi_url_parse( const char *url, LDAPURLDesc **ludpp, int dn_required )
180 {
181
182 LDAPURLDesc *ludp;
183 char *urlcopy, *attrs, *scope, *extensions = NULL, *p, *q;
184 int enclosed, secure, i, nattrs, at_start;
185
186 LDAPDebug( LDAP_DEBUG_TRACE, "nsldapi_url_parse(%s)\n", url, 0, 0 );
187
188 if ( url == NULL || ludpp == NULL ) {
189 return( LDAP_URL_ERR_PARAM );
190 }
191
192 *ludpp = NULL; /* pessimistic */
193
194 if ( !skip_url_prefix( &url, &enclosed, &secure )) {
195 return( LDAP_URL_ERR_NOTLDAP );
196 }
197
198 /* allocate return struct */
199 if (( ludp = (LDAPURLDesc *)NSLDAPI_CALLOC( 1, sizeof( LDAPURLDesc )))
200 == NULLLDAPURLDESC ) {
201 return( LDAP_URL_ERR_MEM );
202 }
203
204 if ( secure ) {
205 ludp->lud_options |= LDAP_URL_OPT_SECURE;
206 }
207
208 /* make working copy of the remainder of the URL */
209 if (( urlcopy = nsldapi_strdup( url )) == NULL ) {
210 ldap_free_urldesc( ludp );
211 return( LDAP_URL_ERR_MEM );
212 }
213
214 if ( enclosed && *((p = urlcopy + strlen( urlcopy ) - 1)) == '>' ) {
215 *p = '\0';
216 }
217
218 /* initialize scope and filter */
219 ludp->lud_scope = -1;
220 ludp->lud_filter = NULL;
221
222 /* lud_string is the only malloc'd string space we use */
223 ludp->lud_string = urlcopy;
224
225 /* scan forward for '/' that marks end of hostport and begin. of dn */
226 if (( ludp->lud_dn = strchr( urlcopy, '/' )) == NULL ) {
227 if ( dn_required ) {
228 ldap_free_urldesc( ludp );
229 return( LDAP_URL_ERR_NODN );
230 }
231 } else {
232 /* terminate hostport; point to start of dn */
233 *ludp->lud_dn++ = '\0';
234 }
235
236
237 if ( *urlcopy == '\0' ) {
238 ludp->lud_host = NULL;
239 } else {
240 ludp->lud_host = urlcopy;
241 nsldapi_hex_unescape( ludp->lud_host );
242
243 /*
244 * Locate and strip off optional port number (:#) in host
245 * portion of URL.
246 *
247 * If more than one space-separated host is listed, we only
248 * look for a port number within the right-most one since
249 * ldap_init() will handle host parameters that look like
250 * host:port anyway.
251 */
252 if (( p = strrchr( ludp->lud_host, ' ' )) == NULL ) {
253 p = ludp->lud_host;
254 } else {
255 ++p;
256 }
257 if ( *p == '[' && ( q = strchr( p, ']' )) != NULL ) {
258 /* square brackets present -- skip past them */
259 p = q++;
260 }
261 if (( p = strchr( p, ':' )) != NULL ) {
262 *p++ = '\0';
263 ludp->lud_port = atoi( p );
264 if ( *ludp->lud_host == '\0' ) {
265 /*
266 * no hostname and a port: invalid hostcode
267 * according to RFC 1738
268 */
269 ldap_free_urldesc(ludp);
270 return (LDAP_URL_ERR_HOSTPORT);
271 }
272 }
273 }
274
275 /* scan for '?' that marks end of dn and beginning of attributes */
276 attrs = NULL;
277 if ( ludp->lud_dn != NULL &&
278 ( attrs = strchr( ludp->lud_dn, '?' )) != NULL ) {
279 /* terminate dn; point to start of attrs. */
280 *attrs++ = '\0';
281
282 /* scan for '?' that marks end of attrs and begin. of scope */
283 if (( p = strchr( attrs, '?' )) != NULL ) {
284 /*
285 * terminate attrs; point to start of scope and scan for
286 * '?' that marks end of scope and begin. of filter
287 */
288 *p++ = '\0';
289 scope = p;
290
291 if (( p = strchr( scope, '?' )) != NULL ) {
292 /* terminate scope; point to start of filter */
293 *p++ = '\0';
294 if ( *p != '\0' ) {
295 ludp->lud_filter = p;
296 /*
297 * scan for the '?' that marks the end
298 * of the filter and the start of any
299 * extensions
300 */
301 if (( p = strchr( ludp->lud_filter, '?' ))
302 != NULL ) {
303 *p++ = '\0'; /* term. filter */
304 extensions = p;
305 }
306 if ( *ludp->lud_filter == '\0' ) {
307 ludp->lud_filter = NULL;
308 } else {
309 nsldapi_hex_unescape( ludp->lud_filter );
310 }
311 }
312 }
313
314
315 if ( strcasecmp( scope, "one" ) == 0 ) {
316 ludp->lud_scope = LDAP_SCOPE_ONELEVEL;
317 } else if ( strcasecmp( scope, "base" ) == 0 ) {
318 ludp->lud_scope = LDAP_SCOPE_BASE;
319 } else if ( strcasecmp( scope, "sub" ) == 0 ) {
320 ludp->lud_scope = LDAP_SCOPE_SUBTREE;
321 } else if ( *scope != '\0' ) {
322 ldap_free_urldesc( ludp );
323 return( LDAP_URL_ERR_BADSCOPE );
324 }
325 }
326 }
327
328 if ( ludp->lud_dn != NULL ) {
329 nsldapi_hex_unescape( ludp->lud_dn );
330 }
331
332 /*
333 * if attrs list was included, turn it into a null-terminated array
334 */
335 if ( attrs != NULL && *attrs != '\0' ) {
336 nsldapi_hex_unescape( attrs );
337 for ( nattrs = 1, p = attrs; *p != '\0'; ++p ) {
338 if ( *p == ',' ) {
339 ++nattrs;
340 }
341 }
342
343 if (( ludp->lud_attrs = (char **)NSLDAPI_CALLOC( nattrs + 1,
344 sizeof( char * ))) == NULL ) {
345 ldap_free_urldesc( ludp );
346 return( LDAP_URL_ERR_MEM );
347 }
348
349 for ( i = 0, p = attrs; i < nattrs; ++i ) {
350 ludp->lud_attrs[ i ] = p;
351 if (( p = strchr( p, ',' )) != NULL ) {
352 *p++ ='\0';
353 }
354 nsldapi_hex_unescape( ludp->lud_attrs[ i ] );
355 }
356 }
357
358 /* if extensions list was included, check for critical ones */
359 if ( extensions != NULL && *extensions != '\0' ) {
360 /* Note: at present, we do not recognize ANY extensions */
361 at_start = 1;
362 for ( p = extensions; *p != '\0'; ++p ) {
363 if ( at_start ) {
364 if ( *p == '!' ) { /* critical extension */
365 ldap_free_urldesc( ludp );
366 /* this is what iplanet did *
367 return( LDAP_URL_UNRECOGNIZED_CRITICAL_EXTENSION );
368 * and this is what we do */
369 return( LDAP_URL_ERR_PARAM );
370 }
371 at_start = 0;
372 } else if ( *p == ',' ) {
373 at_start = 1;
374 }
375 }
376 }
377
378
379 *ludpp = ludp;
380
381 return( 0 );
382 }
383
384
385 void
386 LDAP_CALL
387 ldap_free_urldesc( LDAPURLDesc *ludp )
388 {
389 if ( ludp != NULLLDAPURLDESC ) {
390 if ( ludp->lud_string != NULL ) {
391 NSLDAPI_FREE( ludp->lud_string );
392 }
393 if ( ludp->lud_attrs != NULL ) {
394 NSLDAPI_FREE( ludp->lud_attrs );
395 }
396 NSLDAPI_FREE( ludp );
397 }
398 }
399
400
401 int
402 LDAP_CALL
403 ldap_url_search( LDAP *ld, const char *url, int attrsonly )
404 {
405 int err, msgid;
406 LDAPURLDesc *ludp;
407 BerElement *ber;
408 LDAPServer *srv;
409 char *host;
410
411 if ( !NSLDAPI_VALID_LDAP_POINTER( ld )) {
412 return( -1 ); /* punt */
413 }
414
415 if ( ldap_url_parse( url, &ludp ) != 0 ) {
416 LDAP_SET_LDERRNO( ld, LDAP_PARAM_ERROR, NULL, NULL );
417 return( -1 );
418 }
419
420 LDAP_MUTEX_LOCK( ld, LDAP_MSGID_LOCK );
421 msgid = ++ld->ld_msgid;
422 LDAP_MUTEX_UNLOCK( ld, LDAP_MSGID_LOCK );
423
424 if ( nsldapi_build_search_req( ld, ludp->lud_dn, ludp->lud_scope,
425 ludp->lud_filter, ludp->lud_attrs, attrsonly, NULL, NULL,
426 -1, -1, msgid, &ber ) != LDAP_SUCCESS ) {
427 return( -1 );
428 }
429
430 err = 0;
431
432 if ( ludp->lud_host == NULL ) {
433 host = ld->ld_defhost;
434 } else {
435 host = ludp->lud_host;
436 }
437
438 if (( srv = (LDAPServer *)NSLDAPI_CALLOC( 1, sizeof( LDAPServer )))
439 == NULL || ( host != NULL &&
440 ( srv->lsrv_host = nsldapi_strdup( host )) == NULL )) {
441 if ( srv != NULL ) {
442 NSLDAPI_FREE( srv );
443 }
444 LDAP_SET_LDERRNO( ld, LDAP_NO_MEMORY, NULL, NULL );
445 err = -1;
446 } else {
447 if ( ludp->lud_port != 0 ) {
448 /* URL includes a port - use it */
449 srv->lsrv_port = ludp->lud_port;
450 } else if ( ludp->lud_host == NULL ) {
451 /* URL has no port or host - use port from ld */
452 srv->lsrv_port = ld->ld_defport;
453 } else if (( ludp->lud_options & LDAP_URL_OPT_SECURE ) == 0 ) {
454 /* ldap URL has a host but no port - use std. port */
455 srv->lsrv_port = LDAP_PORT;
456 } else {
457 /* ldaps URL has a host but no port - use std. port */
458 srv->lsrv_port = LDAPS_PORT;
459 }
460 }
461
462 if (( ludp->lud_options & LDAP_URL_OPT_SECURE ) != 0 ) {
463 srv->lsrv_options |= LDAP_SRV_OPT_SECURE;
464 }
465
466 if ( err != 0 ) {
467 ber_free( ber, 1 );
468 } else {
469 err = nsldapi_send_server_request( ld, ber, msgid, NULL, srv,
470 NULL, NULL, 1 );
471 }
472
473 ldap_free_urldesc( ludp );
474 return( err );
475 }
476
477
478 int
479 LDAP_CALL
480 ldap_url_search_st( LDAP *ld, const char *url, int attrsonly,
481 struct timeval *timeout, LDAPMessage **res )
482 {
483 int msgid;
484
485 /*
486 * It is an error to pass in a zero'd timeval.
487 */
488 if ( timeout != NULL && timeout->tv_sec == 0 &&
489 timeout->tv_usec == 0 ) {
490 if ( ld != NULL ) {
491 LDAP_SET_LDERRNO( ld, LDAP_PARAM_ERROR, NULL, NULL );
492 }
493 if ( res != NULL ) {
494 *res = NULL;
495 }
496 return( LDAP_PARAM_ERROR );
497 }
498
499 if (( msgid = ldap_url_search( ld, url, attrsonly )) == -1 ) {
500 return( LDAP_GET_LDERRNO( ld, NULL, NULL ) );
501 }
502
503 if ( ldap_result( ld, msgid, 1, timeout, res ) == -1 ) {
504 return( LDAP_GET_LDERRNO( ld, NULL, NULL ) );
505 }
506
507 if ( LDAP_GET_LDERRNO( ld, NULL, NULL ) == LDAP_TIMEOUT ) {
508 (void) ldap_abandon( ld, msgid );
509 LDAP_SET_LDERRNO( ld, LDAP_TIMEOUT, NULL, NULL );
510 return( LDAP_TIMEOUT );
511 }
512
513 return( ldap_result2error( ld, *res, 0 ));
514 }
515
516
517 int
518 LDAP_CALL
519 ldap_url_search_s( LDAP *ld, const char *url, int attrsonly, LDAPMessage **res )
520 {
521 int msgid;
522
523 if (( msgid = ldap_url_search( ld, url, attrsonly )) == -1 ) {
524 return( LDAP_GET_LDERRNO( ld, NULL, NULL ) );
525 }
526
527 if ( ldap_result( ld, msgid, 1, NULL, res ) == -1 ) {
528 return( LDAP_GET_LDERRNO( ld, NULL, NULL ) );
529 }
530
531 return( ldap_result2error( ld, *res, 0 ));
532 }
533
534 #ifdef _SOLARIS_SDK
535 /*
536 * Locate the LDAP URL associated with a DNS domain name.
537 *
538 * The supplied DNS domain name is converted into a distinguished
539 * name. The directory entry specified by that distinguished name
540 * is searched for a labeledURI attribute. If successful then the
541 * LDAP URL is returned. If unsuccessful then that entry's parent
542 * is searched and so on until the target distinguished name is
543 * reduced to only two nameparts.
544 *
545 * For example, if 'ny.eng.wiz.com' is the DNS domain then the
546 * following entries are searched until one succeeds:
547 * dc=ny,dc=eng,dc=wiz,dc=com
548 * dc=eng,dc=wiz,dc=com
549 * dc=wiz,dc=com
550 *
551 * If dns_name is NULL then the environment variable LOCALDOMAIN is used.
552 * If attrs is not NULL then it is appended to the URL's attribute list.
553 * If scope is not NULL then it overrides the URL's scope.
554 * If filter is not NULL then it is merged with the URL's filter.
555 *
556 * If an error is encountered then zero is returned, otherwise a string
557 * URL is returned. The caller should free the returned string if it is
558 * non-zero.
559 */
560
561 char *
562 ldap_dns_to_url(
563 LDAP *ld,
564 char *dns_name,
565 char *attrs,
566 char *scope,
567 char *filter
568 )
569 {
570 char *dn;
571 char *url = 0;
572 char *url2 = 0;
573 LDAPURLDesc *urldesc;
574 char *cp;
575 char *cp2;
576 size_t attrs_len = 0;
577 size_t scope_len = 0;
578 size_t filter_len = 0;
579 int nameparts;
580 int no_attrs = 0;
581 int no_scope = 0;
582
583 if (dns_name == 0) {
584 dns_name = (char *)getenv("LOCALDOMAIN");
585 }
586
587 if ((ld == NULL) || ((dn = ldap_dns_to_dn(dns_name, &nameparts)) ==
588 NULL))
589 return (0);
590
591 if ((url = ldap_dn_to_url(ld, dn, nameparts)) == NULL) {
592 free(dn);
593 return (0);
594 }
595 free(dn);
596
597 /* merge filter and/or scope and/or attributes with URL */
598 if (attrs || scope || filter) {
599
600 if (attrs)
601 attrs_len = strlen(attrs) + 2; /* for comma and NULL */
602
603 if (scope)
604 scope_len = strlen(scope) + 1; /* for NULL */
605
606 if (filter)
607 filter_len = strlen(filter) + 4;
608 /* for ampersand, parentheses and NULL */
609
610 if (ldap_is_ldap_url(url)) {
611
612 if ((url2 = (char *)malloc(attrs_len + scope_len +
613 filter_len + strlen(url) + 1)) == NULL) {
614 return (0);
615 }
616 cp = url;
617 cp2 = url2;
618
619 /* copy URL scheme, hostname, port number and DN */
620 while (*cp && (*cp != '?')) {
621 *cp2++ = *cp++;
622 }
623
624 /* handle URL attributes */
625
626 if (*cp == '?') { /* test first '?' */
627 *cp2++ = *cp++; /* copy first '?' */
628
629 if (*cp == '?') { /* test second '?' */
630
631 /* insert supplied attributes */
632 if (attrs) {
633 while (*attrs) {
634 *cp2++ = *attrs++;
635 }
636 } else {
637 no_attrs = 1;
638 }
639
640 } else {
641
642 /* copy URL attributes */
643 while (*cp && (*cp != '?')) {
644 *cp2++ = *cp++;
645 }
646
647 /* append supplied attributes */
648 if (attrs) {
649 *cp2++ = ',';
650 while (*attrs) {
651 *cp2++ = *attrs++;
652 }
653 }
654 }
655
656 } else {
657 /* append supplied attributes */
658 if (attrs) {
659 *cp2++ = '?';
660 while (*attrs) {
661 *cp2++ = *attrs++;
662 }
663 } else {
664 no_attrs = 1;
665 }
666 }
667
668 /* handle URL scope */
669
670 if (*cp == '?') { /* test second '?' */
671 *cp2++ = *cp++; /* copy second '?' */
672
673 if (*cp == '?') { /* test third '?' */
674
675 /* insert supplied scope */
676 if (scope) {
677 while (*scope) {
678 *cp2++ = *scope++;
679 }
680 } else {
681 no_scope = 1;
682 }
683
684 } else {
685
686 if (scope) {
687 /* skip over URL scope */
688 while (*cp && (*cp != '?')) {
689 *cp++;
690 }
691 /* insert supplied scope */
692 while (*scope) {
693 *cp2++ = *scope++;
694 }
695 } else {
696
697 /* copy URL scope */
698 while (*cp && (*cp != '?')) {
699 *cp2++ = *cp++;
700 }
701 }
702 }
703
704 } else {
705 /* append supplied scope */
706 if (scope) {
707 if (no_attrs) {
708 *cp2++ = '?';
709 }
710 *cp2++ = '?';
711 while (*scope) {
712 *cp2++ = *scope++;
713 }
714 } else {
715 no_scope = 1;
716 }
717 }
718
719 /* handle URL filter */
720
721 if (*cp == '?') { /* test third '?' */
722 *cp2++ = *cp++; /* copy third '?' */
723
724 if (filter) {
725
726 /* merge URL and supplied filters */
727
728 *cp2++ = '(';
729 *cp2++ = '&';
730 /* copy URL filter */
731 while (*cp) {
732 *cp2++ = *cp++;
733 }
734 /* append supplied filter */
735 while (*filter) {
736 *cp2++ = *filter++;
737 }
738 *cp2++ = ')';
739 } else {
740
741 /* copy URL filter */
742 while (*cp) {
743 *cp2++ = *cp++;
744 }
745 }
746
747 } else {
748 /* append supplied filter */
749 if (filter) {
750 if (no_scope) {
751 if (no_attrs) {
752 *cp2++ = '?';
753 }
754 *cp2++ = '?';
755 }
756 *cp2++ = '?';
757 while (*filter) {
758 *cp2++ = *filter++;
759 }
760 }
761 }
762
763 *cp2++ = '\0';
764 free (url);
765 url = url2;
766
767 } else {
768 return (0); /* not an LDAP URL */
769 }
770 }
771 return (url);
772 }
773
774 /*
775 * Locate the LDAP URL associated with a distinguished name.
776 *
777 * The number of nameparts in the supplied distinguished name must be
778 * provided. The specified directory entry is searched for a labeledURI
779 * attribute. If successful then the LDAP URL is returned. If unsuccessful
780 * then that entry's parent is searched and so on until the target
781 * distinguished name is reduced to only two nameparts.
782 *
783 * For example, if 'l=ny,ou=eng,o=wiz,c=us' is the distinguished name
784 * then the following entries are searched until one succeeds:
785 * l=ny,ou=eng,o=wiz,c=us
786 * ou=eng,o=wiz,c=us
787 * o=wiz,c=us
788 *
789 * If an error is encountered then zero is returned, otherwise a string
790 * URL is returned. The caller should free the returned string if it is
791 * non-zero.
792 */
793
794 char *
795 ldap_dn_to_url(
796 LDAP *ld,
797 char *dn,
798 int nameparts
799 )
800 {
801 char *next_dn = dn;
802 char *url = 0;
803 char *attrs[2] = {"labeledURI", 0};
804 LDAPMessage *res, *e;
805 char **vals;
806
807 /*
808 * Search for a URL in the named entry or its parent entry.
809 * Continue until only 2 nameparts remain.
810 */
811 while (dn && (nameparts > 1) && (! url)) {
812
813 /* search for the labeledURI attribute */
814 if (ldap_search_s(ld, dn, LDAP_SCOPE_BASE,
815 "(objectClass=*)", attrs, 0, &res) == LDAP_SUCCESS) {
816
817 /* locate the first entry returned */
818 if ((e = ldap_first_entry(ld, res)) != NULL) {
819
820 /* locate the labeledURI attribute */
821 if ((vals =
822 ldap_get_values(ld, e, "labeledURI")) !=
823 NULL) {
824
825 /* copy the attribute value */
826 if ((url = strdup((char *)vals[0])) !=
827 NULL) {
828 ldap_value_free(vals);
829 }
830 }
831 }
832 /* free the search results */
833 if (res != NULL) {
834 ldap_msgfree(res);
835 }
836 }
837
838 if (! url) {
839 /* advance along the DN by one namepart */
840 if (next_dn = strchr(dn, ',')) {
841 next_dn++;
842 dn = next_dn;
843 nameparts--;
844 }
845 }
846 }
847
848 return (url);
849 }
850
851 #endif /* _SOLARIS_SDK */
unleashed repo fork