4 Copyright (C) Andrew Tridgell 2004-2009
6 ** NOTE! The following LGPL license applies to the ldb
7 ** library. This does NOT imply that all of Samba is released
10 This library is free software; you can redistribute it and/or
11 modify it under the terms of the GNU Lesser General Public
12 License as published by the Free Software Foundation; either
13 version 3 of the License, or (at your option) any later version.
15 This library is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public
21 License along with this library; if not, see <http://www.gnu.org/licenses/>.
27 * Component: ldb tdb backend - indexing
29 * Description: indexing routines for ldb tdb backend
31 * Author: Andrew Tridgell
42 struct tdb_context *itdb;
46 /* we put a @IDXVERSION attribute on index entries. This
47 allows us to tell if it was written by an older version
49 #define LTDB_INDEXING_VERSION 2
51 /* enable the idxptr mode when transactions start */
52 int ltdb_index_transaction_start(struct ldb_module *module)
54 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
55 ltdb->idxptr = talloc_zero(ltdb, struct ltdb_idxptr);
59 /* compare two DN entries in a dn_list. Take account of possible
60 * differences in string termination */
61 static int dn_list_cmp(const struct ldb_val *v1, const struct ldb_val *v2)
63 if (v1->length > v2->length && v1->data[v2->length] != 0) {
66 if (v1->length < v2->length && v2->data[v1->length] != 0) {
69 return strncmp((char *)v1->data, (char *)v2->data, v1->length);
74 find a entry in a dn_list, using a ldb_val. Uses a case sensitive
75 comparison with the dn returns -1 if not found
77 static int ltdb_dn_list_find_val(const struct dn_list *list, const struct ldb_val *v)
80 for (i=0; i<list->count; i++) {
81 if (dn_list_cmp(&list->dn[i], v) == 0) return i;
87 find a entry in a dn_list. Uses a case sensitive comparison with the dn
88 returns -1 if not found
90 static int ltdb_dn_list_find_str(struct dn_list *list, const char *dn)
93 v.data = discard_const_p(unsigned char, dn);
94 v.length = strlen(dn);
95 return ltdb_dn_list_find_val(list, &v);
99 this is effectively a cast function, but with lots of paranoia
100 checks and also copes with CPUs that are fussy about pointer
103 static struct dn_list *ltdb_index_idxptr(struct ldb_module *module, TDB_DATA rec, bool check_parent)
105 struct dn_list *list;
106 if (rec.dsize != sizeof(void *)) {
107 ldb_asprintf_errstring(ldb_module_get_ctx(module),
108 "Bad data size for idxptr %u", (unsigned)rec.dsize);
111 /* note that we can't just use a cast here, as rec.dptr may
112 not be aligned sufficiently for a pointer. A cast would cause
113 platforms like some ARM CPUs to crash */
114 memcpy(&list, rec.dptr, sizeof(void *));
115 list = talloc_get_type(list, struct dn_list);
117 ldb_asprintf_errstring(ldb_module_get_ctx(module),
118 "Bad type '%s' for idxptr",
119 talloc_get_name(list));
122 if (check_parent && list->dn && talloc_parent(list->dn) != list) {
123 ldb_asprintf_errstring(ldb_module_get_ctx(module),
124 "Bad parent '%s' for idxptr",
125 talloc_get_name(talloc_parent(list->dn)));
132 return the @IDX list in an index entry for a dn as a
135 static int ltdb_dn_list_load(struct ldb_module *module,
136 struct ldb_dn *dn, struct dn_list *list)
138 struct ldb_message *msg;
140 struct ldb_message_element *el;
141 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
143 struct dn_list *list2;
149 /* see if we have any in-memory index entries */
150 if (ltdb->idxptr == NULL ||
151 ltdb->idxptr->itdb == NULL) {
155 key.dptr = discard_const_p(unsigned char, ldb_dn_get_linearized(dn));
156 key.dsize = strlen((char *)key.dptr);
158 rec = tdb_fetch_compat(ltdb->idxptr->itdb, key);
159 if (rec.dptr == NULL) {
163 /* we've found an in-memory index entry */
164 list2 = ltdb_index_idxptr(module, rec, true);
167 return LDB_ERR_OPERATIONS_ERROR;
175 msg = ldb_msg_new(list);
177 return LDB_ERR_OPERATIONS_ERROR;
180 ret = ltdb_search_dn1(module, dn, msg);
181 if (ret != LDB_SUCCESS) {
186 /* TODO: check indexing version number */
188 el = ldb_msg_find_element(msg, LTDB_IDX);
194 /* we avoid copying the strings by stealing the list */
195 list->dn = talloc_steal(list, el->values);
196 list->count = el->num_values;
203 save a dn_list into a full @IDX style record
205 static int ltdb_dn_list_store_full(struct ldb_module *module, struct ldb_dn *dn,
206 struct dn_list *list)
208 struct ldb_message *msg;
211 if (list->count == 0) {
212 ret = ltdb_delete_noindex(module, dn);
213 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
219 msg = ldb_msg_new(module);
221 return ldb_module_oom(module);
224 ret = ldb_msg_add_fmt(msg, LTDB_IDXVERSION, "%u", LTDB_INDEXING_VERSION);
225 if (ret != LDB_SUCCESS) {
227 return ldb_module_oom(module);
231 if (list->count > 0) {
232 struct ldb_message_element *el;
234 ret = ldb_msg_add_empty(msg, LTDB_IDX, LDB_FLAG_MOD_ADD, &el);
235 if (ret != LDB_SUCCESS) {
237 return ldb_module_oom(module);
239 el->values = list->dn;
240 el->num_values = list->count;
243 ret = ltdb_store(module, msg, TDB_REPLACE);
249 save a dn_list into the database, in either @IDX or internal format
251 static int ltdb_dn_list_store(struct ldb_module *module, struct ldb_dn *dn,
252 struct dn_list *list)
254 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
257 struct dn_list *list2;
259 if (ltdb->idxptr == NULL) {
260 return ltdb_dn_list_store_full(module, dn, list);
263 if (ltdb->idxptr->itdb == NULL) {
264 ltdb->idxptr->itdb = tdb_open_compat(NULL, 1000, TDB_INTERNAL, O_RDWR, 0, NULL, NULL);
265 if (ltdb->idxptr->itdb == NULL) {
266 return LDB_ERR_OPERATIONS_ERROR;
270 key.dptr = discard_const_p(unsigned char, ldb_dn_get_linearized(dn));
271 key.dsize = strlen((char *)key.dptr);
273 rec = tdb_fetch_compat(ltdb->idxptr->itdb, key);
274 if (rec.dptr != NULL) {
275 list2 = ltdb_index_idxptr(module, rec, false);
278 return LDB_ERR_OPERATIONS_ERROR;
281 list2->dn = talloc_steal(list2, list->dn);
282 list2->count = list->count;
286 list2 = talloc(ltdb->idxptr, struct dn_list);
288 return LDB_ERR_OPERATIONS_ERROR;
290 list2->dn = talloc_steal(list2, list->dn);
291 list2->count = list->count;
293 rec.dptr = (uint8_t *)&list2;
294 rec.dsize = sizeof(void *);
296 ret = tdb_store(ltdb->idxptr->itdb, key, rec, TDB_INSERT);
298 return ltdb_err_map(tdb_error(ltdb->idxptr->itdb));
304 traverse function for storing the in-memory index entries on disk
306 static int ltdb_index_traverse_store(struct tdb_context *tdb, TDB_DATA key, TDB_DATA data, void *state)
308 struct ldb_module *module = state;
309 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
311 struct ldb_context *ldb = ldb_module_get_ctx(module);
313 struct dn_list *list;
315 list = ltdb_index_idxptr(module, data, true);
317 ltdb->idxptr->error = LDB_ERR_OPERATIONS_ERROR;
322 v.length = strnlen((char *)key.dptr, key.dsize);
324 dn = ldb_dn_from_ldb_val(module, ldb, &v);
326 ldb_asprintf_errstring(ldb, "Failed to parse index key %*.*s as an LDB DN", (int)v.length, (int)v.length, (const char *)v.data);
327 ltdb->idxptr->error = LDB_ERR_OPERATIONS_ERROR;
331 ltdb->idxptr->error = ltdb_dn_list_store_full(module, dn, list);
333 if (ltdb->idxptr->error != 0) {
339 /* cleanup the idxptr mode when transaction commits */
340 int ltdb_index_transaction_commit(struct ldb_module *module)
342 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
345 struct ldb_context *ldb = ldb_module_get_ctx(module);
347 ldb_reset_err_string(ldb);
349 if (ltdb->idxptr->itdb) {
350 tdb_traverse(ltdb->idxptr->itdb, ltdb_index_traverse_store, module);
351 tdb_close(ltdb->idxptr->itdb);
354 ret = ltdb->idxptr->error;
355 if (ret != LDB_SUCCESS) {
356 if (!ldb_errstring(ldb)) {
357 ldb_set_errstring(ldb, ldb_strerror(ret));
359 ldb_asprintf_errstring(ldb, "Failed to store index records in transaction commit: %s", ldb_errstring(ldb));
362 talloc_free(ltdb->idxptr);
367 /* cleanup the idxptr mode when transaction cancels */
368 int ltdb_index_transaction_cancel(struct ldb_module *module)
370 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
371 if (ltdb->idxptr && ltdb->idxptr->itdb) {
372 tdb_close(ltdb->idxptr->itdb);
374 talloc_free(ltdb->idxptr);
381 return the dn key to be used for an index
382 the caller is responsible for freeing
384 static struct ldb_dn *ltdb_index_key(struct ldb_context *ldb,
385 const char *attr, const struct ldb_val *value,
386 const struct ldb_schema_attribute **ap)
390 const struct ldb_schema_attribute *a;
394 attr_folded = ldb_attr_casefold(ldb, attr);
399 a = ldb_schema_attribute_by_name(ldb, attr);
403 r = a->syntax->canonicalise_fn(ldb, ldb, value, &v);
404 if (r != LDB_SUCCESS) {
405 const char *errstr = ldb_errstring(ldb);
406 /* canonicalisation can be refused. For example,
407 a attribute that takes wildcards will refuse to canonicalise
408 if the value contains a wildcard */
409 ldb_asprintf_errstring(ldb, "Failed to create index key for attribute '%s':%s%s%s",
410 attr, ldb_strerror(r), (errstr?":":""), (errstr?errstr:""));
411 talloc_free(attr_folded);
414 if (ldb_should_b64_encode(ldb, &v)) {
415 char *vstr = ldb_base64_encode(ldb, (char *)v.data, v.length);
417 talloc_free(attr_folded);
420 ret = ldb_dn_new_fmt(ldb, ldb, "%s:%s::%s", LTDB_INDEX, attr_folded, vstr);
423 ret = ldb_dn_new_fmt(ldb, ldb, "%s:%s:%.*s", LTDB_INDEX, attr_folded, (int)v.length, (char *)v.data);
426 if (v.data != value->data) {
429 talloc_free(attr_folded);
435 see if a attribute value is in the list of indexed attributes
437 static bool ltdb_is_indexed(const struct ldb_message *index_list, const char *attr)
440 struct ldb_message_element *el;
442 el = ldb_msg_find_element(index_list, LTDB_IDXATTR);
447 /* TODO: this is too expensive! At least use a binary search */
448 for (i=0; i<el->num_values; i++) {
449 if (ldb_attr_cmp((char *)el->values[i].data, attr) == 0) {
457 in the following logic functions, the return value is treated as
460 LDB_SUCCESS: we found some matching index values
462 LDB_ERR_NO_SUCH_OBJECT: we know for sure that no object matches
464 LDB_ERR_OPERATIONS_ERROR: indexing could not answer the call,
465 we'll need a full search
469 return a list of dn's that might match a simple indexed search (an
470 equality search only)
472 static int ltdb_index_dn_simple(struct ldb_module *module,
473 const struct ldb_parse_tree *tree,
474 const struct ldb_message *index_list,
475 struct dn_list *list)
477 struct ldb_context *ldb;
481 ldb = ldb_module_get_ctx(module);
486 /* if the attribute isn't in the list of indexed attributes then
487 this node needs a full search */
488 if (!ltdb_is_indexed(index_list, tree->u.equality.attr)) {
489 return LDB_ERR_OPERATIONS_ERROR;
492 /* the attribute is indexed. Pull the list of DNs that match the
494 dn = ltdb_index_key(ldb, tree->u.equality.attr, &tree->u.equality.value, NULL);
495 if (!dn) return LDB_ERR_OPERATIONS_ERROR;
497 ret = ltdb_dn_list_load(module, dn, list);
503 static bool list_union(struct ldb_context *, struct dn_list *, const struct dn_list *);
506 return a list of dn's that might match a leaf indexed search
508 static int ltdb_index_dn_leaf(struct ldb_module *module,
509 const struct ldb_parse_tree *tree,
510 const struct ldb_message *index_list,
511 struct dn_list *list)
513 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module),
514 struct ltdb_private);
515 if (ltdb->disallow_dn_filter &&
516 (ldb_attr_cmp(tree->u.equality.attr, "dn") == 0)) {
517 /* in AD mode we do not support "(dn=...)" search filters */
522 if (ldb_attr_dn(tree->u.equality.attr) == 0) {
523 list->dn = talloc_array(list, struct ldb_val, 1);
524 if (list->dn == NULL) {
525 ldb_module_oom(module);
526 return LDB_ERR_OPERATIONS_ERROR;
528 list->dn[0] = tree->u.equality.value;
532 return ltdb_index_dn_simple(module, tree, index_list, list);
540 static bool list_intersect(struct ldb_context *ldb,
541 struct dn_list *list, const struct dn_list *list2)
543 struct dn_list *list3;
546 if (list->count == 0) {
550 if (list2->count == 0) {
557 /* the indexing code is allowed to return a longer list than
558 what really matches, as all results are filtered by the
559 full expression at the end - this shortcut avoids a lot of
560 work in some cases */
561 if (list->count < 2 && list2->count > 10) {
564 if (list2->count < 2 && list->count > 10) {
565 list->count = list2->count;
566 list->dn = list2->dn;
567 /* note that list2 may not be the parent of list2->dn,
568 as list2->dn may be owned by ltdb->idxptr. In that
569 case we expect this reparent call to fail, which is
571 talloc_reparent(list2, list, list2->dn);
575 list3 = talloc_zero(list, struct dn_list);
580 list3->dn = talloc_array(list3, struct ldb_val, list->count);
587 for (i=0;i<list->count;i++) {
588 if (ltdb_dn_list_find_val(list2, &list->dn[i]) != -1) {
589 list3->dn[list3->count] = list->dn[i];
594 list->dn = talloc_steal(list, list3->dn);
595 list->count = list3->count;
606 static bool list_union(struct ldb_context *ldb,
607 struct dn_list *list, const struct dn_list *list2)
611 if (list2->count == 0) {
616 if (list->count == 0) {
618 list->count = list2->count;
619 list->dn = list2->dn;
620 /* note that list2 may not be the parent of list2->dn,
621 as list2->dn may be owned by ltdb->idxptr. In that
622 case we expect this reparent call to fail, which is
624 talloc_reparent(list2, list, list2->dn);
628 dn3 = talloc_array(list, struct ldb_val, list->count + list2->count);
634 /* we allow for duplicates here, and get rid of them later */
635 memcpy(dn3, list->dn, sizeof(list->dn[0])*list->count);
636 memcpy(dn3+list->count, list2->dn, sizeof(list2->dn[0])*list2->count);
639 list->count += list2->count;
644 static int ltdb_index_dn(struct ldb_module *module,
645 const struct ldb_parse_tree *tree,
646 const struct ldb_message *index_list,
647 struct dn_list *list);
651 process an OR list (a union)
653 static int ltdb_index_dn_or(struct ldb_module *module,
654 const struct ldb_parse_tree *tree,
655 const struct ldb_message *index_list,
656 struct dn_list *list)
658 struct ldb_context *ldb;
661 ldb = ldb_module_get_ctx(module);
666 for (i=0; i<tree->u.list.num_elements; i++) {
667 struct dn_list *list2;
670 list2 = talloc_zero(list, struct dn_list);
672 return LDB_ERR_OPERATIONS_ERROR;
675 ret = ltdb_index_dn(module, tree->u.list.elements[i], index_list, list2);
677 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
683 if (ret != LDB_SUCCESS) {
689 if (!list_union(ldb, list, list2)) {
691 return LDB_ERR_OPERATIONS_ERROR;
695 if (list->count == 0) {
696 return LDB_ERR_NO_SUCH_OBJECT;
706 static int ltdb_index_dn_not(struct ldb_module *module,
707 const struct ldb_parse_tree *tree,
708 const struct ldb_message *index_list,
709 struct dn_list *list)
711 /* the only way to do an indexed not would be if we could
712 negate the not via another not or if we knew the total
713 number of database elements so we could know that the
714 existing expression covered the whole database.
716 instead, we just give up, and rely on a full index scan
717 (unless an outer & manages to reduce the list)
719 return LDB_ERR_OPERATIONS_ERROR;
723 static bool ltdb_index_unique(struct ldb_context *ldb,
726 const struct ldb_schema_attribute *a;
727 a = ldb_schema_attribute_by_name(ldb, attr);
728 if (a->flags & LDB_ATTR_FLAG_UNIQUE_INDEX) {
735 process an AND expression (intersection)
737 static int ltdb_index_dn_and(struct ldb_module *module,
738 const struct ldb_parse_tree *tree,
739 const struct ldb_message *index_list,
740 struct dn_list *list)
742 struct ldb_context *ldb;
746 ldb = ldb_module_get_ctx(module);
751 /* in the first pass we only look for unique simple
752 equality tests, in the hope of avoiding having to look
754 for (i=0; i<tree->u.list.num_elements; i++) {
755 const struct ldb_parse_tree *subtree = tree->u.list.elements[i];
758 if (subtree->operation != LDB_OP_EQUALITY ||
759 !ltdb_index_unique(ldb, subtree->u.equality.attr)) {
763 ret = ltdb_index_dn(module, subtree, index_list, list);
764 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
766 return LDB_ERR_NO_SUCH_OBJECT;
768 if (ret == LDB_SUCCESS) {
769 /* a unique index match means we can
770 * stop. Note that we don't care if we return
771 * a few too many objects, due to later
777 /* now do a full intersection */
780 for (i=0; i<tree->u.list.num_elements; i++) {
781 const struct ldb_parse_tree *subtree = tree->u.list.elements[i];
782 struct dn_list *list2;
785 list2 = talloc_zero(list, struct dn_list);
787 return ldb_module_oom(module);
790 ret = ltdb_index_dn(module, subtree, index_list, list2);
792 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
797 return LDB_ERR_NO_SUCH_OBJECT;
800 if (ret != LDB_SUCCESS) {
801 /* this didn't adding anything */
807 talloc_reparent(list2, list, list->dn);
808 list->dn = list2->dn;
809 list->count = list2->count;
811 } else if (!list_intersect(ldb, list, list2)) {
813 return LDB_ERR_OPERATIONS_ERROR;
816 if (list->count == 0) {
818 return LDB_ERR_NO_SUCH_OBJECT;
821 if (list->count < 2) {
822 /* it isn't worth loading the next part of the tree */
828 /* none of the attributes were indexed */
829 return LDB_ERR_OPERATIONS_ERROR;
836 return a list of matching objects using a one-level index
838 static int ltdb_index_dn_one(struct ldb_module *module,
839 struct ldb_dn *parent_dn,
840 struct dn_list *list)
842 struct ldb_context *ldb;
847 ldb = ldb_module_get_ctx(module);
849 /* work out the index key from the parent DN */
850 val.data = (uint8_t *)((uintptr_t)ldb_dn_get_casefold(parent_dn));
851 val.length = strlen((char *)val.data);
852 key = ltdb_index_key(ldb, LTDB_IDXONE, &val, NULL);
855 return LDB_ERR_OPERATIONS_ERROR;
858 ret = ltdb_dn_list_load(module, key, list);
860 if (ret != LDB_SUCCESS) {
864 if (list->count == 0) {
865 return LDB_ERR_NO_SUCH_OBJECT;
872 return a list of dn's that might match a indexed search or
873 an error. return LDB_ERR_NO_SUCH_OBJECT for no matches, or LDB_SUCCESS for matches
875 static int ltdb_index_dn(struct ldb_module *module,
876 const struct ldb_parse_tree *tree,
877 const struct ldb_message *index_list,
878 struct dn_list *list)
880 int ret = LDB_ERR_OPERATIONS_ERROR;
882 switch (tree->operation) {
884 ret = ltdb_index_dn_and(module, tree, index_list, list);
888 ret = ltdb_index_dn_or(module, tree, index_list, list);
892 ret = ltdb_index_dn_not(module, tree, index_list, list);
895 case LDB_OP_EQUALITY:
896 ret = ltdb_index_dn_leaf(module, tree, index_list, list);
899 case LDB_OP_SUBSTRING:
904 case LDB_OP_EXTENDED:
905 /* we can't index with fancy bitops yet */
906 ret = LDB_ERR_OPERATIONS_ERROR;
914 filter a candidate dn_list from an indexed search into a set of results
915 extracting just the given attributes
917 static int ltdb_index_filter(const struct dn_list *dn_list,
918 struct ltdb_context *ac,
919 uint32_t *match_count)
921 struct ldb_context *ldb;
922 struct ldb_message *msg;
925 ldb = ldb_module_get_ctx(ac->module);
927 for (i = 0; i < dn_list->count; i++) {
932 msg = ldb_msg_new(ac);
934 return LDB_ERR_OPERATIONS_ERROR;
937 dn = ldb_dn_from_ldb_val(msg, ldb, &dn_list->dn[i]);
940 return LDB_ERR_OPERATIONS_ERROR;
943 ret = ltdb_search_dn1(ac->module, dn, msg);
945 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
946 /* the record has disappeared? yes, this can happen */
951 if (ret != LDB_SUCCESS && ret != LDB_ERR_NO_SUCH_OBJECT) {
952 /* an internal error */
954 return LDB_ERR_OPERATIONS_ERROR;
957 ret = ldb_match_msg_error(ldb, msg,
958 ac->tree, ac->base, ac->scope, &matched);
959 if (ret != LDB_SUCCESS) {
968 /* filter the attributes that the user wants */
969 ret = ltdb_filter_attrs(msg, ac->attrs);
973 return LDB_ERR_OPERATIONS_ERROR;
976 ret = ldb_module_send_entry(ac->req, msg, NULL);
977 if (ret != LDB_SUCCESS) {
978 /* Regardless of success or failure, the msg
979 * is the callbacks responsiblity, and should
980 * not be talloc_free()'ed */
981 ac->request_terminated = true;
992 remove any duplicated entries in a indexed result
994 static void ltdb_dn_list_remove_duplicates(struct dn_list *list)
996 unsigned int i, new_count;
998 if (list->count < 2) {
1002 TYPESAFE_QSORT(list->dn, list->count, dn_list_cmp);
1005 for (i=1; i<list->count; i++) {
1006 if (dn_list_cmp(&list->dn[i], &list->dn[new_count-1]) != 0) {
1007 if (new_count != i) {
1008 list->dn[new_count] = list->dn[i];
1014 list->count = new_count;
1018 search the database with a LDAP-like expression using indexes
1019 returns -1 if an indexed search is not possible, in which
1020 case the caller should call ltdb_search_full()
1022 int ltdb_search_indexed(struct ltdb_context *ac, uint32_t *match_count)
1024 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(ac->module), struct ltdb_private);
1025 struct dn_list *dn_list;
1028 /* see if indexing is enabled */
1029 if (!ltdb->cache->attribute_indexes &&
1030 !ltdb->cache->one_level_indexes &&
1031 ac->scope != LDB_SCOPE_BASE) {
1032 /* fallback to a full search */
1033 return LDB_ERR_OPERATIONS_ERROR;
1036 dn_list = talloc_zero(ac, struct dn_list);
1037 if (dn_list == NULL) {
1038 return ldb_module_oom(ac->module);
1041 switch (ac->scope) {
1042 case LDB_SCOPE_BASE:
1043 dn_list->dn = talloc_array(dn_list, struct ldb_val, 1);
1044 if (dn_list->dn == NULL) {
1045 talloc_free(dn_list);
1046 return ldb_module_oom(ac->module);
1048 dn_list->dn[0].data = discard_const_p(unsigned char, ldb_dn_get_linearized(ac->base));
1049 if (dn_list->dn[0].data == NULL) {
1050 talloc_free(dn_list);
1051 return ldb_module_oom(ac->module);
1053 dn_list->dn[0].length = strlen((char *)dn_list->dn[0].data);
1057 case LDB_SCOPE_ONELEVEL:
1058 if (!ltdb->cache->one_level_indexes) {
1059 talloc_free(dn_list);
1060 return LDB_ERR_OPERATIONS_ERROR;
1062 ret = ltdb_index_dn_one(ac->module, ac->base, dn_list);
1063 if (ret != LDB_SUCCESS) {
1064 talloc_free(dn_list);
1069 case LDB_SCOPE_SUBTREE:
1070 case LDB_SCOPE_DEFAULT:
1071 if (!ltdb->cache->attribute_indexes) {
1072 talloc_free(dn_list);
1073 return LDB_ERR_OPERATIONS_ERROR;
1075 ret = ltdb_index_dn(ac->module, ac->tree, ltdb->cache->indexlist, dn_list);
1076 if (ret != LDB_SUCCESS) {
1077 talloc_free(dn_list);
1080 ltdb_dn_list_remove_duplicates(dn_list);
1084 ret = ltdb_index_filter(dn_list, ac, match_count);
1085 talloc_free(dn_list);
1090 add an index entry for one message element
1092 static int ltdb_index_add1(struct ldb_module *module, const char *dn,
1093 struct ldb_message_element *el, int v_idx)
1095 struct ldb_context *ldb;
1096 struct ldb_dn *dn_key;
1098 const struct ldb_schema_attribute *a;
1099 struct dn_list *list;
1102 ldb = ldb_module_get_ctx(module);
1104 list = talloc_zero(module, struct dn_list);
1106 return LDB_ERR_OPERATIONS_ERROR;
1109 dn_key = ltdb_index_key(ldb, el->name, &el->values[v_idx], &a);
1112 return LDB_ERR_OPERATIONS_ERROR;
1114 talloc_steal(list, dn_key);
1116 ret = ltdb_dn_list_load(module, dn_key, list);
1117 if (ret != LDB_SUCCESS && ret != LDB_ERR_NO_SUCH_OBJECT) {
1122 if (ltdb_dn_list_find_str(list, dn) != -1) {
1127 if (list->count > 0 &&
1128 a->flags & LDB_ATTR_FLAG_UNIQUE_INDEX) {
1130 ldb_asprintf_errstring(ldb, __location__ ": unique index violation on %s in %s",
1132 return LDB_ERR_ENTRY_ALREADY_EXISTS;
1135 /* overallocate the list a bit, to reduce the number of
1136 * realloc trigered copies */
1137 alloc_len = ((list->count+1)+7) & ~7;
1138 list->dn = talloc_realloc(list, list->dn, struct ldb_val, alloc_len);
1139 if (list->dn == NULL) {
1141 return LDB_ERR_OPERATIONS_ERROR;
1143 list->dn[list->count].data = (uint8_t *)talloc_strdup(list->dn, dn);
1144 list->dn[list->count].length = strlen(dn);
1147 ret = ltdb_dn_list_store(module, dn_key, list);
1155 add index entries for one elements in a message
1157 static int ltdb_index_add_el(struct ldb_module *module, const char *dn,
1158 struct ldb_message_element *el)
1161 for (i = 0; i < el->num_values; i++) {
1162 int ret = ltdb_index_add1(module, dn, el, i);
1163 if (ret != LDB_SUCCESS) {
1172 add index entries for all elements in a message
1174 static int ltdb_index_add_all(struct ldb_module *module, const char *dn,
1175 struct ldb_message_element *elements, int num_el)
1177 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1184 if (ltdb->cache->indexlist->num_elements == 0) {
1185 /* no indexed fields */
1189 for (i = 0; i < num_el; i++) {
1191 if (!ltdb_is_indexed(ltdb->cache->indexlist, elements[i].name)) {
1194 ret = ltdb_index_add_el(module, dn, &elements[i]);
1195 if (ret != LDB_SUCCESS) {
1196 struct ldb_context *ldb = ldb_module_get_ctx(module);
1197 ldb_asprintf_errstring(ldb,
1198 __location__ ": Failed to re-index %s in %s - %s",
1199 elements[i].name, dn, ldb_errstring(ldb));
1209 insert a one level index for a message
1211 static int ltdb_index_onelevel(struct ldb_module *module, const struct ldb_message *msg, int add)
1213 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1214 struct ldb_message_element el;
1220 /* We index for ONE Level only if requested */
1221 if (!ltdb->cache->one_level_indexes) {
1225 pdn = ldb_dn_get_parent(module, msg->dn);
1227 return LDB_ERR_OPERATIONS_ERROR;
1230 dn = ldb_dn_get_linearized(msg->dn);
1233 return LDB_ERR_OPERATIONS_ERROR;
1236 val.data = (uint8_t *)((uintptr_t)ldb_dn_get_casefold(pdn));
1237 if (val.data == NULL) {
1239 return LDB_ERR_OPERATIONS_ERROR;
1242 val.length = strlen((char *)val.data);
1243 el.name = LTDB_IDXONE;
1248 ret = ltdb_index_add1(module, dn, &el, 0);
1249 } else { /* delete */
1250 ret = ltdb_index_del_value(module, msg->dn, &el, 0);
1259 add the index entries for a new element in a record
1260 The caller guarantees that these element values are not yet indexed
1262 int ltdb_index_add_element(struct ldb_module *module, struct ldb_dn *dn,
1263 struct ldb_message_element *el)
1265 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1266 if (ldb_dn_is_special(dn)) {
1269 if (!ltdb_is_indexed(ltdb->cache->indexlist, el->name)) {
1272 return ltdb_index_add_el(module, ldb_dn_get_linearized(dn), el);
1276 add the index entries for a new record
1278 int ltdb_index_add_new(struct ldb_module *module, const struct ldb_message *msg)
1283 if (ldb_dn_is_special(msg->dn)) {
1287 dn = ldb_dn_get_linearized(msg->dn);
1289 return LDB_ERR_OPERATIONS_ERROR;
1292 ret = ltdb_index_add_all(module, dn, msg->elements, msg->num_elements);
1293 if (ret != LDB_SUCCESS) {
1297 return ltdb_index_onelevel(module, msg, 1);
1302 delete an index entry for one message element
1304 int ltdb_index_del_value(struct ldb_module *module, struct ldb_dn *dn,
1305 struct ldb_message_element *el, unsigned int v_idx)
1307 struct ldb_context *ldb;
1308 struct ldb_dn *dn_key;
1312 struct dn_list *list;
1314 ldb = ldb_module_get_ctx(module);
1316 dn_str = ldb_dn_get_linearized(dn);
1317 if (dn_str == NULL) {
1318 return LDB_ERR_OPERATIONS_ERROR;
1321 if (dn_str[0] == '@') {
1325 dn_key = ltdb_index_key(ldb, el->name, &el->values[v_idx], NULL);
1327 return LDB_ERR_OPERATIONS_ERROR;
1330 list = talloc_zero(dn_key, struct dn_list);
1332 talloc_free(dn_key);
1333 return LDB_ERR_OPERATIONS_ERROR;
1336 ret = ltdb_dn_list_load(module, dn_key, list);
1337 if (ret == LDB_ERR_NO_SUCH_OBJECT) {
1338 /* it wasn't indexed. Did we have an earlier error? If we did then
1340 talloc_free(dn_key);
1344 if (ret != LDB_SUCCESS) {
1345 talloc_free(dn_key);
1349 i = ltdb_dn_list_find_str(list, dn_str);
1351 /* nothing to delete */
1352 talloc_free(dn_key);
1356 j = (unsigned int) i;
1357 if (j != list->count - 1) {
1358 memmove(&list->dn[j], &list->dn[j+1], sizeof(list->dn[0])*(list->count - (j+1)));
1361 list->dn = talloc_realloc(list, list->dn, struct ldb_val, list->count);
1363 ret = ltdb_dn_list_store(module, dn_key, list);
1365 talloc_free(dn_key);
1371 delete the index entries for a element
1372 return -1 on failure
1374 int ltdb_index_del_element(struct ldb_module *module, struct ldb_dn *dn,
1375 struct ldb_message_element *el)
1377 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1382 if (!ltdb->cache->attribute_indexes) {
1383 /* no indexed fields */
1387 dn_str = ldb_dn_get_linearized(dn);
1388 if (dn_str == NULL) {
1389 return LDB_ERR_OPERATIONS_ERROR;
1392 if (dn_str[0] == '@') {
1396 if (!ltdb_is_indexed(ltdb->cache->indexlist, el->name)) {
1399 for (i = 0; i < el->num_values; i++) {
1400 ret = ltdb_index_del_value(module, dn, el, i);
1401 if (ret != LDB_SUCCESS) {
1410 delete the index entries for a record
1411 return -1 on failure
1413 int ltdb_index_delete(struct ldb_module *module, const struct ldb_message *msg)
1415 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1419 if (ldb_dn_is_special(msg->dn)) {
1423 ret = ltdb_index_onelevel(module, msg, 0);
1424 if (ret != LDB_SUCCESS) {
1428 if (!ltdb->cache->attribute_indexes) {
1429 /* no indexed fields */
1433 for (i = 0; i < msg->num_elements; i++) {
1434 ret = ltdb_index_del_element(module, msg->dn, &msg->elements[i]);
1435 if (ret != LDB_SUCCESS) {
1445 traversal function that deletes all @INDEX records
1447 static int delete_index(struct tdb_context *tdb, TDB_DATA key, TDB_DATA data, void *state)
1449 struct ldb_module *module = state;
1450 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1451 const char *dnstr = "DN=" LTDB_INDEX ":";
1452 struct dn_list list;
1457 if (strncmp((char *)key.dptr, dnstr, strlen(dnstr)) != 0) {
1460 /* we need to put a empty list in the internal tdb for this
1465 /* the offset of 3 is to remove the DN= prefix. */
1466 v.data = key.dptr + 3;
1467 v.length = strnlen((char *)key.dptr, key.dsize) - 3;
1469 dn = ldb_dn_from_ldb_val(ltdb, ldb_module_get_ctx(module), &v);
1470 ret = ltdb_dn_list_store(module, dn, &list);
1471 if (ret != LDB_SUCCESS) {
1472 ldb_asprintf_errstring(ldb_module_get_ctx(module),
1473 "Unable to store null index for %s\n",
1474 ldb_dn_get_linearized(dn));
1482 struct ltdb_reindex_context {
1483 struct ldb_module *module;
1488 traversal function that adds @INDEX records during a re index
1490 static int re_index(struct tdb_context *tdb, TDB_DATA key, TDB_DATA data, void *state)
1492 struct ldb_context *ldb;
1493 struct ltdb_reindex_context *ctx = (struct ltdb_reindex_context *)state;
1494 struct ldb_module *module = ctx->module;
1495 struct ldb_message *msg;
1496 const char *dn = NULL;
1500 ldb = ldb_module_get_ctx(module);
1502 if (strncmp((char *)key.dptr, "DN=@", 4) == 0 ||
1503 strncmp((char *)key.dptr, "DN=", 3) != 0) {
1507 msg = ldb_msg_new(module);
1512 ret = ltdb_unpack_data(module, &data, msg);
1514 ldb_debug(ldb, LDB_DEBUG_ERROR, "Invalid data for index %s\n",
1515 ldb_dn_get_linearized(msg->dn));
1520 /* check if the DN key has changed, perhaps due to the
1521 case insensitivity of an element changing */
1522 key2 = ltdb_key(module, msg->dn);
1523 if (key2.dptr == NULL) {
1524 /* probably a corrupt record ... darn */
1525 ldb_debug(ldb, LDB_DEBUG_ERROR, "Invalid DN in re_index: %s",
1526 ldb_dn_get_linearized(msg->dn));
1530 if (strcmp((char *)key2.dptr, (char *)key.dptr) != 0) {
1531 tdb_delete(tdb, key);
1532 tdb_store(tdb, key2, data, 0);
1534 talloc_free(key2.dptr);
1536 if (msg->dn == NULL) {
1537 dn = (char *)key.dptr + 3;
1539 dn = ldb_dn_get_linearized(msg->dn);
1542 ret = ltdb_index_onelevel(module, msg, 1);
1543 if (ret != LDB_SUCCESS) {
1544 ldb_debug(ldb, LDB_DEBUG_ERROR,
1545 "Adding special ONE LEVEL index failed (%s)!",
1546 ldb_dn_get_linearized(msg->dn));
1551 ret = ltdb_index_add_all(module, dn, msg->elements, msg->num_elements);
1553 if (ret != LDB_SUCCESS) {
1565 force a complete reindex of the database
1567 int ltdb_reindex(struct ldb_module *module)
1569 struct ltdb_private *ltdb = talloc_get_type(ldb_module_get_private(module), struct ltdb_private);
1571 struct ltdb_reindex_context ctx;
1573 if (ltdb_cache_reload(module) != 0) {
1574 return LDB_ERR_OPERATIONS_ERROR;
1577 /* first traverse the database deleting any @INDEX records by
1578 * putting NULL entries in the in-memory tdb
1580 ret = tdb_traverse(ltdb->tdb, delete_index, module);
1582 return LDB_ERR_OPERATIONS_ERROR;
1585 /* if we don't have indexes we have nothing todo */
1586 if (ltdb->cache->indexlist->num_elements == 0) {
1590 ctx.module = module;
1593 /* now traverse adding any indexes for normal LDB records */
1594 ret = tdb_traverse(ltdb->tdb, re_index, &ctx);
1596 struct ldb_context *ldb = ldb_module_get_ctx(module);
1597 ldb_asprintf_errstring(ldb, "reindexing traverse failed: %s", ldb_errstring(ldb));
1598 return LDB_ERR_OPERATIONS_ERROR;
1601 if (ctx.error != LDB_SUCCESS) {
1602 struct ldb_context *ldb = ldb_module_get_ctx(module);
1603 ldb_asprintf_errstring(ldb, "reindexing failed: %s", ldb_errstring(ldb));
git.samba.org / ddiss / samba.git / blob