1 /* modify.c - monitor backend modify routine */
2 /* $OpenLDAP$ */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
4 *
5 * Copyright 2001-2021 The OpenLDAP Foundation.
6 * Portions Copyright 2001-2003 Pierangelo Masarati.
7 * All rights reserved.
8 *
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted only as authorized by the OpenLDAP
11 * Public License.
12 *
13 * A copy of this license is available in file LICENSE in the
14 * top-level directory of the distribution or, alternatively, at
15 * <http://www.OpenLDAP.org/license.html>.
16 */
17 /* ACKNOWLEDGEMENTS:
18 * This work was initially developed by Pierangelo Masarati for inclusion
19 * in OpenLDAP Software.
20 */
21
22 #include "portable.h"
23
24 #include <stdio.h>
25
26 #include <ac/string.h>
27 #include <ac/socket.h>
28
29 #include "slap.h"
30 #include "back-monitor.h"
31 #include "proto-back-monitor.h"
32
33 int
monitor_back_modify(Operation * op,SlapReply * rs)34 monitor_back_modify( Operation *op, SlapReply *rs )
35 {
36 int rc = 0;
37 monitor_info_t *mi = ( monitor_info_t * )op->o_bd->be_private;
38 Entry *matched;
39 Entry *e;
40
41 Debug(LDAP_DEBUG_ARGS, "monitor_back_modify:\n" );
42
43 /* acquire and lock entry */
44 monitor_cache_dn2entry( op, rs, &op->o_req_ndn, &e, &matched );
45 if ( e == NULL ) {
46 rs->sr_err = LDAP_NO_SUCH_OBJECT;
47 if ( matched ) {
48 if ( !access_allowed_mask( op, matched,
49 slap_schema.si_ad_entry,
50 NULL, ACL_DISCLOSE, NULL, NULL ) )
51 {
52 /* do nothing */ ;
53 } else {
54 rs->sr_matched = matched->e_dn;
55 }
56 }
57 send_ldap_result( op, rs );
58 if ( matched != NULL ) {
59 rs->sr_matched = NULL;
60 monitor_cache_release( mi, matched );
61 }
62 return rs->sr_err;
63 }
64
65 if ( !acl_check_modlist( op, e, op->orm_modlist )) {
66 rc = LDAP_INSUFFICIENT_ACCESS;
67
68 } else {
69 assert( !SLAP_SHADOW( op->o_bd ) );
70 slap_mods_opattrs( op, &op->orm_modlist, 0 );
71
72 rc = monitor_entry_modify( op, rs, e );
73 }
74
75 if ( rc != LDAP_SUCCESS ) {
76 if ( !access_allowed_mask( op, e, slap_schema.si_ad_entry,
77 NULL, ACL_DISCLOSE, NULL, NULL ) )
78 {
79 rc = LDAP_NO_SUCH_OBJECT;
80 }
81 }
82
83 rs->sr_err = rc;
84 send_ldap_result( op, rs );
85
86 monitor_cache_release( mi, e );
87
88 return rs->sr_err;
89 }
90
91