1 /* modify.c - monitor backend modify routine */
2 /* $OpenLDAP$ */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
4  *
5  * Copyright 2001-2021 The OpenLDAP Foundation.
6  * Portions Copyright 2001-2003 Pierangelo Masarati.
7  * All rights reserved.
8  *
9  * Redistribution and use in source and binary forms, with or without
10  * modification, are permitted only as authorized by the OpenLDAP
11  * Public License.
12  *
13  * A copy of this license is available in file LICENSE in the
14  * top-level directory of the distribution or, alternatively, at
15  * <http://www.OpenLDAP.org/license.html>.
16  */
17 /* ACKNOWLEDGEMENTS:
18  * This work was initially developed by Pierangelo Masarati for inclusion
19  * in OpenLDAP Software.
20  */
21 
22 #include "portable.h"
23 
24 #include <stdio.h>
25 
26 #include <ac/string.h>
27 #include <ac/socket.h>
28 
29 #include "slap.h"
30 #include "back-monitor.h"
31 #include "proto-back-monitor.h"
32 
33 int
monitor_back_modify(Operation * op,SlapReply * rs)34 monitor_back_modify( Operation *op, SlapReply *rs )
35 {
36 	int 		rc = 0;
37 	monitor_info_t	*mi = ( monitor_info_t * )op->o_bd->be_private;
38 	Entry		*matched;
39 	Entry		*e;
40 
41 	Debug(LDAP_DEBUG_ARGS, "monitor_back_modify:\n" );
42 
43 	/* acquire and lock entry */
44 	monitor_cache_dn2entry( op, rs, &op->o_req_ndn, &e, &matched );
45 	if ( e == NULL ) {
46 		rs->sr_err = LDAP_NO_SUCH_OBJECT;
47 		if ( matched ) {
48 			if ( !access_allowed_mask( op, matched,
49 					slap_schema.si_ad_entry,
50 					NULL, ACL_DISCLOSE, NULL, NULL ) )
51 			{
52 				/* do nothing */ ;
53 			} else {
54 				rs->sr_matched = matched->e_dn;
55 			}
56 		}
57 		send_ldap_result( op, rs );
58 		if ( matched != NULL ) {
59 			rs->sr_matched = NULL;
60 			monitor_cache_release( mi, matched );
61 		}
62 		return rs->sr_err;
63 	}
64 
65 	if ( !acl_check_modlist( op, e, op->orm_modlist )) {
66 		rc = LDAP_INSUFFICIENT_ACCESS;
67 
68 	} else {
69 		assert( !SLAP_SHADOW( op->o_bd ) );
70 		slap_mods_opattrs( op, &op->orm_modlist, 0 );
71 
72 		rc = monitor_entry_modify( op, rs, e );
73 	}
74 
75 	if ( rc != LDAP_SUCCESS ) {
76 		if ( !access_allowed_mask( op, e, slap_schema.si_ad_entry,
77 				NULL, ACL_DISCLOSE, NULL, NULL ) )
78 		{
79 			rc = LDAP_NO_SUCH_OBJECT;
80 		}
81 	}
82 
83 	rs->sr_err = rc;
84 	send_ldap_result( op, rs );
85 
86 	monitor_cache_release( mi, e );
87 
88 	return rs->sr_err;
89 }
90 
91