4 Copyright (C) Simo Sorce 2005
6 ** NOTE! The following LGPL license applies to the ldb
7 ** library. This does NOT imply that all of Samba is released
10 This library is free software; you can redistribute it and/or
11 modify it under the terms of the GNU Lesser General Public
12 License as published by the Free Software Foundation; either
13 version 3 of the License, or (at your option) any later version.
15 This library is distributed in the hope that it will be useful,
16 but WITHOUT ANY WARRANTY; without even the implied warranty of
17 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 Lesser General Public License for more details.
20 You should have received a copy of the GNU Lesser General Public
21 License along with this library; if not, see <http://www.gnu.org/licenses/>.
25 * Name: ldb_controls.c
27 * Component: ldb controls utility functions
29 * Description: helper functions for control modules
34 #include "ldb_private.h"
36 /* check if a control with the specified "oid" exist and return it */
37 /* returns NULL if not found */
38 struct ldb_control
*ldb_request_get_control(struct ldb_request
*req
, const char *oid
)
42 if (req
->controls
!= NULL
) {
43 for (i
= 0; req
->controls
[i
]; i
++) {
44 if (req
->controls
[i
]->oid
&& strcmp(oid
, req
->controls
[i
]->oid
) == 0) {
49 return req
->controls
[i
];
55 /* check if a control with the specified "oid" exist and return it */
56 /* returns NULL if not found */
57 struct ldb_control
*ldb_reply_get_control(struct ldb_reply
*rep
, const char *oid
)
61 if (rep
->controls
!= NULL
) {
62 for (i
= 0; rep
->controls
[i
]; i
++) {
63 if (rep
->controls
[i
]->oid
&& strcmp(oid
, rep
->controls
[i
]->oid
) == 0) {
68 return rep
->controls
[i
];
74 /* saves the current controls list into the "saver" and replace the one in req with a new one excluding
75 the "exclude" control */
76 /* returns 0 on error */
77 int ldb_save_controls(struct ldb_control
*exclude
, struct ldb_request
*req
, struct ldb_control
***saver
)
79 struct ldb_control
**lcs
;
82 *saver
= req
->controls
;
83 for (i
= 0; req
->controls
[i
]; i
++);
89 lcs
= talloc_array(req
, struct ldb_control
*, i
);
94 for (i
= 0, j
= 0; (*saver
)[i
]; i
++) {
95 if (exclude
== (*saver
)[i
]) continue;
105 /* Returns a list of controls, except the one specified. Included
106 * controls become a child of returned list if they were children of
108 struct ldb_control
**ldb_controls_except_specified(struct ldb_control
**controls_in
,
110 struct ldb_control
*exclude
)
112 struct ldb_control
**lcs
= NULL
;
115 for (i
= 0; controls_in
&& controls_in
[i
]; i
++);
121 for (i
= 0, j
= 0; controls_in
&& controls_in
[i
]; i
++) {
122 if (exclude
== controls_in
[i
]) continue;
125 /* Allocate here so if we remove the only
126 * control, or there were no controls, we
127 * don't allocate at all, and just return
129 lcs
= talloc_array(mem_ctx
, struct ldb_control
*, i
);
135 lcs
[j
] = controls_in
[i
];
136 talloc_reparent(controls_in
, lcs
, lcs
[j
]);
146 /* check if there's any control marked as critical in the list */
147 /* return True if any, False if none */
148 int ldb_check_critical_controls(struct ldb_control
**controls
)
152 if (controls
== NULL
) {
156 for (i
= 0; controls
[i
]; i
++) {
157 if (controls
[i
]->critical
) {
165 int ldb_request_add_control(struct ldb_request
*req
, const char *oid
, bool critical
, void *data
)
168 struct ldb_control
**ctrls
;
169 struct ldb_control
*ctrl
;
171 for (n
=0; req
->controls
&& req
->controls
[n
];n
++) {
172 /* having two controls of the same OID makes no sense */
173 if (req
->controls
[n
]->oid
&& strcmp(oid
, req
->controls
[n
]->oid
) == 0) {
174 return LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS
;
178 ctrls
= talloc_array(req
,
179 struct ldb_control
*,
181 if (!ctrls
) return LDB_ERR_OPERATIONS_ERROR
;
183 for (i
=0; i
<n
; i
++) {
184 ctrls
[i
] = req
->controls
[i
];
187 req
->controls
= ctrls
;
191 ctrl
= talloc(ctrls
, struct ldb_control
);
192 if (!ctrl
) return LDB_ERR_OPERATIONS_ERROR
;
194 ctrl
->oid
= talloc_strdup(ctrl
, oid
);
195 if (!ctrl
->oid
) return LDB_ERR_OPERATIONS_ERROR
;
196 ctrl
->critical
= critical
;
203 int ldb_reply_add_control(struct ldb_reply
*ares
, const char *oid
, bool critical
, void *data
)
206 struct ldb_control
**ctrls
;
207 struct ldb_control
*ctrl
;
209 for (n
=0; ares
->controls
&& ares
->controls
[n
];) {
210 /* having two controls of the same OID makes no sense */
211 if (ares
->controls
[n
]->oid
&& strcmp(oid
, ares
->controls
[n
]->oid
) == 0) {
212 return LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS
;
217 ctrls
= talloc_realloc(ares
, ares
->controls
,
218 struct ldb_control
*,
220 if (!ctrls
) return LDB_ERR_OPERATIONS_ERROR
;
221 ares
->controls
= ctrls
;
225 ctrl
= talloc(ctrls
, struct ldb_control
);
226 if (!ctrl
) return LDB_ERR_OPERATIONS_ERROR
;
228 ctrl
->oid
= talloc_strdup(ctrl
, oid
);
229 if (!ctrl
->oid
) return LDB_ERR_OPERATIONS_ERROR
;
230 ctrl
->critical
= critical
;
237 /* Add a control to the request, replacing the old one if it is already in the request */
238 int ldb_request_replace_control(struct ldb_request
*req
, const char *oid
, bool critical
, void *data
)
243 ret
= ldb_request_add_control(req
, oid
, critical
, data
);
244 if (ret
!= LDB_ERR_ATTRIBUTE_OR_VALUE_EXISTS
) {
248 for (n
=0; req
->controls
[n
];n
++) {
249 if (req
->controls
[n
]->oid
&& strcmp(oid
, req
->controls
[n
]->oid
) == 0) {
250 req
->controls
[n
]->critical
= critical
;
251 req
->controls
[n
]->data
= data
;
256 return LDB_ERR_OPERATIONS_ERROR
;
259 /* Parse controls from the format used on the command line and in ejs */
261 struct ldb_control
**ldb_parse_control_strings(struct ldb_context
*ldb
, TALLOC_CTX
*mem_ctx
, const char **control_strings
)
264 struct ldb_control
**ctrl
;
266 char *error_string
= NULL
;
268 if (control_strings
== NULL
|| control_strings
[0] == NULL
)
271 for (i
= 0; control_strings
[i
]; i
++);
273 ctrl
= talloc_array(mem_ctx
, struct ldb_control
*, i
+ 1);
275 for (i
= 0; control_strings
[i
]; i
++) {
276 if (strncmp(control_strings
[i
], "vlv:", 4) == 0) {
277 struct ldb_vlv_req_control
*control
;
281 int crit
, bc
, ac
, os
, cc
, ret
;
285 p
= &(control_strings
[i
][4]);
286 ret
= sscanf(p
, "%d:%d:%d:%d:%d:%1023[^$]", &crit
, &bc
, &ac
, &os
, &cc
, ctxid
);
288 ret
= sscanf(p
, "%d:%d:%d:%1023[^:]:%1023[^$]", &crit
, &bc
, &ac
, attr
, ctxid
);
291 if ((ret
< 4) || (crit
< 0) || (crit
> 1)) {
292 error_string
= talloc_asprintf(mem_ctx
, "invalid server_sort control syntax\n");
293 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):bc(n):ac(n):<os(n):cc(n)|attr(s)>[:ctxid(o)]\n");
294 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, n = number, s = string, o = b64 binary blob");
295 ldb_set_errstring(ldb
, error_string
);
296 talloc_free(error_string
);
299 if (!(ctrl
[i
] = talloc(ctrl
, struct ldb_control
))) {
303 ctrl
[i
]->oid
= LDB_CONTROL_VLV_REQ_OID
;
304 ctrl
[i
]->critical
= crit
;
305 if (!(control
= talloc(ctrl
[i
],
306 struct ldb_vlv_req_control
))) {
310 control
->beforeCount
= bc
;
311 control
->afterCount
= ac
;
314 control
->match
.gtOrEq
.value
= talloc_strdup(control
, attr
);
315 control
->match
.gtOrEq
.value_len
= strlen(attr
);
318 control
->match
.byOffset
.offset
= os
;
319 control
->match
.byOffset
.contentCount
= cc
;
322 control
->ctxid_len
= ldb_base64_decode(ctxid
);
323 control
->contextId
= (char *)talloc_memdup(control
, ctxid
, control
->ctxid_len
);
325 control
->ctxid_len
= 0;
326 control
->contextId
= NULL
;
328 ctrl
[i
]->data
= control
;
333 if (strncmp(control_strings
[i
], "dirsync:", 8) == 0) {
334 struct ldb_dirsync_control
*control
;
337 int crit
, flags
, max_attrs
, ret
;
340 p
= &(control_strings
[i
][8]);
341 ret
= sscanf(p
, "%d:%d:%d:%1023[^$]", &crit
, &flags
, &max_attrs
, cookie
);
343 if ((ret
< 3) || (crit
< 0) || (crit
> 1) || (flags
< 0) || (max_attrs
< 0)) {
344 error_string
= talloc_asprintf(mem_ctx
, "invalid dirsync control syntax\n");
345 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):flags(n):max_attrs(n)[:cookie(o)]\n");
346 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, n = number, o = b64 binary blob");
347 ldb_set_errstring(ldb
, error_string
);
348 talloc_free(error_string
);
352 /* w2k3 seems to ignore the parameter,
353 * but w2k sends a wrong cookie when this value is to small
354 * this would cause looping forever, while getting
355 * the same data and same cookie forever
357 if (max_attrs
== 0) max_attrs
= 0x0FFFFFFF;
359 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
360 ctrl
[i
]->oid
= LDB_CONTROL_DIRSYNC_OID
;
361 ctrl
[i
]->critical
= crit
;
362 control
= talloc(ctrl
[i
], struct ldb_dirsync_control
);
363 control
->flags
= flags
;
364 control
->max_attributes
= max_attrs
;
366 control
->cookie_len
= ldb_base64_decode(cookie
);
367 control
->cookie
= (char *)talloc_memdup(control
, cookie
, control
->cookie_len
);
369 control
->cookie
= NULL
;
370 control
->cookie_len
= 0;
372 ctrl
[i
]->data
= control
;
377 if (strncmp(control_strings
[i
], "asq:", 4) == 0) {
378 struct ldb_asq_control
*control
;
384 p
= &(control_strings
[i
][4]);
385 ret
= sscanf(p
, "%d:%255[^$]", &crit
, attr
);
386 if ((ret
!= 2) || (crit
< 0) || (crit
> 1) || (attr
[0] == '\0')) {
387 error_string
= talloc_asprintf(mem_ctx
, "invalid asq control syntax\n");
388 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):attr(s)\n");
389 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, s = string");
390 ldb_set_errstring(ldb
, error_string
);
391 talloc_free(error_string
);
395 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
400 ctrl
[i
]->oid
= LDB_CONTROL_ASQ_OID
;
401 ctrl
[i
]->critical
= crit
;
402 control
= talloc(ctrl
[i
], struct ldb_asq_control
);
403 control
->request
= 1;
404 control
->source_attribute
= talloc_strdup(control
, attr
);
405 control
->src_attr_len
= strlen(attr
);
406 ctrl
[i
]->data
= control
;
411 if (strncmp(control_strings
[i
], "extended_dn:", 12) == 0) {
412 struct ldb_extended_dn_control
*control
;
416 p
= &(control_strings
[i
][12]);
417 ret
= sscanf(p
, "%d:%d", &crit
, &type
);
418 if ((ret
!= 2) || (crit
< 0) || (crit
> 1) || (type
< 0) || (type
> 1)) {
419 ret
= sscanf(p
, "%d", &crit
);
420 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
421 error_string
= talloc_asprintf(mem_ctx
, "invalid extended_dn control syntax\n");
422 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)[:type(i)]\n");
423 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean\n");
424 error_string
= talloc_asprintf_append(error_string
, " i = integer\n");
425 error_string
= talloc_asprintf_append(error_string
, " valid values are: 0 - hexadecimal representation\n");
426 error_string
= talloc_asprintf_append(error_string
, " 1 - normal string representation");
427 ldb_set_errstring(ldb
, error_string
);
428 talloc_free(error_string
);
433 control
= talloc(ctrl
, struct ldb_extended_dn_control
);
434 control
->type
= type
;
437 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
442 ctrl
[i
]->oid
= LDB_CONTROL_EXTENDED_DN_OID
;
443 ctrl
[i
]->critical
= crit
;
444 ctrl
[i
]->data
= talloc_steal(ctrl
[i
], control
);
449 if (strncmp(control_strings
[i
], "sd_flags:", 9) == 0) {
450 struct ldb_sd_flags_control
*control
;
453 unsigned secinfo_flags
;
455 p
= &(control_strings
[i
][9]);
456 ret
= sscanf(p
, "%d:%u", &crit
, &secinfo_flags
);
457 if ((ret
!= 2) || (crit
< 0) || (crit
> 1) || (secinfo_flags
< 0) || (secinfo_flags
> 0xF)) {
458 error_string
= talloc_asprintf(mem_ctx
, "invalid sd_flags control syntax\n");
459 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):secinfo_flags(n)\n");
460 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, n = number");
461 ldb_set_errstring(ldb
, error_string
);
462 talloc_free(error_string
);
466 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
471 ctrl
[i
]->oid
= LDB_CONTROL_SD_FLAGS_OID
;
472 ctrl
[i
]->critical
= crit
;
473 control
= talloc(ctrl
[i
], struct ldb_sd_flags_control
);
474 control
->secinfo_flags
= secinfo_flags
;
475 ctrl
[i
]->data
= control
;
480 if (strncmp(control_strings
[i
], "search_options:", 15) == 0) {
481 struct ldb_search_options_control
*control
;
484 unsigned search_options
;
486 p
= &(control_strings
[i
][15]);
487 ret
= sscanf(p
, "%d:%u", &crit
, &search_options
);
488 if ((ret
!= 2) || (crit
< 0) || (crit
> 1) || (search_options
< 0) || (search_options
> 0xF)) {
489 error_string
= talloc_asprintf(mem_ctx
, "invalid search_options control syntax\n");
490 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):search_options(n)\n");
491 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, n = number");
492 ldb_set_errstring(ldb
, error_string
);
493 talloc_free(error_string
);
497 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
502 ctrl
[i
]->oid
= LDB_CONTROL_SEARCH_OPTIONS_OID
;
503 ctrl
[i
]->critical
= crit
;
504 control
= talloc(ctrl
[i
], struct ldb_search_options_control
);
505 control
->search_options
= search_options
;
506 ctrl
[i
]->data
= control
;
511 if (strncmp(control_strings
[i
], "bypassoperational:", 18) == 0) {
515 p
= &(control_strings
[i
][18]);
516 ret
= sscanf(p
, "%d", &crit
);
517 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
518 error_string
= talloc_asprintf(mem_ctx
, "invalid bypassopreational control syntax\n");
519 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
520 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
521 ldb_set_errstring(ldb
, error_string
);
522 talloc_free(error_string
);
526 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
531 ctrl
[i
]->oid
= LDB_CONTROL_BYPASS_OPERATIONAL_OID
;
532 ctrl
[i
]->critical
= crit
;
533 ctrl
[i
]->data
= NULL
;
538 if (strncmp(control_strings
[i
], "relax:", 6) == 0) {
542 p
= &(control_strings
[i
][6]);
543 ret
= sscanf(p
, "%d", &crit
);
544 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
545 error_string
= talloc_asprintf(mem_ctx
, "invalid relax control syntax\n");
546 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
547 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
548 ldb_set_errstring(ldb
, error_string
);
549 talloc_free(error_string
);
553 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
558 ctrl
[i
]->oid
= LDB_CONTROL_RELAX_OID
;
559 ctrl
[i
]->critical
= crit
;
560 ctrl
[i
]->data
= NULL
;
565 if (strncmp(control_strings
[i
], "recalculate_sd:", 15) == 0) {
569 p
= &(control_strings
[i
][15]);
570 ret
= sscanf(p
, "%d", &crit
);
571 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
572 error_string
= talloc_asprintf(mem_ctx
, "invalid recalculate_sd control syntax\n");
573 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
574 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
575 ldb_set_errstring(ldb
, error_string
);
576 talloc_free(error_string
);
580 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
585 ctrl
[i
]->oid
= LDB_CONTROL_RECALCULATE_SD_OID
;
586 ctrl
[i
]->critical
= crit
;
587 ctrl
[i
]->data
= NULL
;
592 if (strncmp(control_strings
[i
], "domain_scope:", 13) == 0) {
596 p
= &(control_strings
[i
][13]);
597 ret
= sscanf(p
, "%d", &crit
);
598 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
599 error_string
= talloc_asprintf(mem_ctx
, "invalid domain_scope control syntax\n");
600 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
601 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
602 ldb_set_errstring(ldb
, error_string
);
603 talloc_free(error_string
);
607 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
612 ctrl
[i
]->oid
= LDB_CONTROL_DOMAIN_SCOPE_OID
;
613 ctrl
[i
]->critical
= crit
;
614 ctrl
[i
]->data
= NULL
;
619 if (strncmp(control_strings
[i
], "paged_results:", 14) == 0) {
620 struct ldb_paged_control
*control
;
624 p
= &(control_strings
[i
][14]);
625 ret
= sscanf(p
, "%d:%d", &crit
, &size
);
627 if ((ret
!= 2) || (crit
< 0) || (crit
> 1) || (size
< 0)) {
628 error_string
= talloc_asprintf(mem_ctx
, "invalid paged_results control syntax\n");
629 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):size(n)\n");
630 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, n = number");
631 ldb_set_errstring(ldb
, error_string
);
632 talloc_free(error_string
);
636 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
641 ctrl
[i
]->oid
= LDB_CONTROL_PAGED_RESULTS_OID
;
642 ctrl
[i
]->critical
= crit
;
643 control
= talloc(ctrl
[i
], struct ldb_paged_control
);
644 control
->size
= size
;
645 control
->cookie
= NULL
;
646 control
->cookie_len
= 0;
647 ctrl
[i
]->data
= control
;
652 if (strncmp(control_strings
[i
], "server_sort:", 12) == 0) {
653 struct ldb_server_sort_control
**control
;
661 p
= &(control_strings
[i
][12]);
662 ret
= sscanf(p
, "%d:%d:%255[^:]:%127[^:]", &crit
, &rev
, attr
, rule
);
663 if ((ret
< 3) || (crit
< 0) || (crit
> 1) || (rev
< 0 ) || (rev
> 1) ||attr
[0] == '\0') {
664 error_string
= talloc_asprintf(mem_ctx
, "invalid server_sort control syntax\n");
665 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b):rev(b):attr(s)[:rule(s)]\n");
666 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, s = string");
667 ldb_set_errstring(ldb
, error_string
);
668 talloc_free(error_string
);
671 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
676 ctrl
[i
]->oid
= LDB_CONTROL_SERVER_SORT_OID
;
677 ctrl
[i
]->critical
= crit
;
678 control
= talloc_array(ctrl
[i
], struct ldb_server_sort_control
*, 2);
679 control
[0] = talloc(control
, struct ldb_server_sort_control
);
680 control
[0]->attributeName
= talloc_strdup(control
, attr
);
682 control
[0]->orderingRule
= talloc_strdup(control
, rule
);
684 control
[0]->orderingRule
= NULL
;
685 control
[0]->reverse
= rev
;
687 ctrl
[i
]->data
= control
;
692 if (strncmp(control_strings
[i
], "notification:", 13) == 0) {
696 p
= &(control_strings
[i
][13]);
697 ret
= sscanf(p
, "%d", &crit
);
698 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
699 error_string
= talloc_asprintf(mem_ctx
, "invalid notification control syntax\n");
700 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
701 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
702 ldb_set_errstring(ldb
, error_string
);
703 talloc_free(error_string
);
707 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
712 ctrl
[i
]->oid
= LDB_CONTROL_NOTIFICATION_OID
;
713 ctrl
[i
]->critical
= crit
;
714 ctrl
[i
]->data
= NULL
;
719 if (strncmp(control_strings
[i
], "tree_delete:", 12) == 0) {
723 p
= &(control_strings
[i
][12]);
724 ret
= sscanf(p
, "%d", &crit
);
725 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
726 error_string
= talloc_asprintf(mem_ctx
, "invalid tree_delete control syntax\n");
727 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
728 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
729 ldb_set_errstring(ldb
, error_string
);
730 talloc_free(error_string
);
734 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
739 ctrl
[i
]->oid
= LDB_CONTROL_TREE_DELETE_OID
;
740 ctrl
[i
]->critical
= crit
;
741 ctrl
[i
]->data
= NULL
;
746 if (strncmp(control_strings
[i
], "show_deleted:", 13) == 0) {
750 p
= &(control_strings
[i
][13]);
751 ret
= sscanf(p
, "%d", &crit
);
752 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
753 error_string
= talloc_asprintf(mem_ctx
, "invalid show_deleted control syntax\n");
754 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
755 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
756 ldb_set_errstring(ldb
, error_string
);
757 talloc_free(error_string
);
761 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
766 ctrl
[i
]->oid
= LDB_CONTROL_SHOW_DELETED_OID
;
767 ctrl
[i
]->critical
= crit
;
768 ctrl
[i
]->data
= NULL
;
773 if (strncmp(control_strings
[i
], "show_deactivated_link:", 22) == 0) {
777 p
= &(control_strings
[i
][22]);
778 ret
= sscanf(p
, "%d", &crit
);
779 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
780 error_string
= talloc_asprintf(mem_ctx
, "invalid show_deactivated_link control syntax\n");
781 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
782 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
783 ldb_set_errstring(ldb
, error_string
);
784 talloc_free(error_string
);
788 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
793 ctrl
[i
]->oid
= LDB_CONTROL_SHOW_DEACTIVATED_LINK_OID
;
794 ctrl
[i
]->critical
= crit
;
795 ctrl
[i
]->data
= NULL
;
800 if (strncmp(control_strings
[i
], "show_recycled:", 14) == 0) {
804 p
= &(control_strings
[i
][14]);
805 ret
= sscanf(p
, "%d", &crit
);
806 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
807 error_string
= talloc_asprintf(mem_ctx
, "invalid show_recycled control syntax\n");
808 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
809 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
810 ldb_set_errstring(ldb
, error_string
);
811 talloc_free(error_string
);
815 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
820 ctrl
[i
]->oid
= LDB_CONTROL_SHOW_RECYCLED_OID
;
821 ctrl
[i
]->critical
= crit
;
822 ctrl
[i
]->data
= NULL
;
827 if (strncmp(control_strings
[i
], "permissive_modify:", 18) == 0) {
831 p
= &(control_strings
[i
][18]);
832 ret
= sscanf(p
, "%d", &crit
);
833 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
834 error_string
= talloc_asprintf(mem_ctx
, "invalid permissive_modify control syntax\n");
835 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
836 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
837 ldb_set_errstring(ldb
, error_string
);
838 talloc_free(error_string
);
842 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
847 ctrl
[i
]->oid
= LDB_CONTROL_PERMISSIVE_MODIFY_OID
;
848 ctrl
[i
]->critical
= crit
;
849 ctrl
[i
]->data
= NULL
;
854 if (strncmp(control_strings
[i
], "reveal_internals:", 17) == 0) {
858 p
= &(control_strings
[i
][17]);
859 ret
= sscanf(p
, "%d", &crit
);
860 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
861 error_string
= talloc_asprintf(mem_ctx
, "invalid reveal_internals control syntax\n");
862 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
863 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
864 ldb_set_errstring(ldb
, error_string
);
865 talloc_free(error_string
);
869 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
874 ctrl
[i
]->oid
= LDB_CONTROL_REVEAL_INTERNALS
;
875 ctrl
[i
]->critical
= crit
;
876 ctrl
[i
]->data
= NULL
;
881 if (strncmp(control_strings
[i
], "local_oid:", 10) == 0) {
883 int crit
= 0, ret
= 0;
887 p
= &(control_strings
[i
][10]);
888 ret
= sscanf(p
, "%64[^:]:%d", oid
, &crit
);
890 if ((ret
!= 2) || strlen(oid
) == 0 || (crit
< 0) || (crit
> 1)) {
891 error_string
= talloc_asprintf(mem_ctx
, "invalid local_oid control syntax\n");
892 error_string
= talloc_asprintf_append(error_string
, " syntax: oid(s):crit(b)\n");
893 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean, s = string");
894 ldb_set_errstring(ldb
, error_string
);
895 talloc_free(error_string
);
899 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
904 ctrl
[i
]->oid
= talloc_strdup(ctrl
[i
], oid
);
909 ctrl
[i
]->critical
= crit
;
910 ctrl
[i
]->data
= NULL
;
915 if (strncmp(control_strings
[i
], "rodc_join:", 10) == 0) {
919 p
= &(control_strings
[i
][10]);
920 ret
= sscanf(p
, "%d", &crit
);
921 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
922 error_string
= talloc_asprintf(mem_ctx
, "invalid rodc_join control syntax\n");
923 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
924 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
925 ldb_set_errstring(ldb
, error_string
);
926 talloc_free(error_string
);
930 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
935 ctrl
[i
]->oid
= LDB_CONTROL_RODC_DCPROMO_OID
;
936 ctrl
[i
]->critical
= crit
;
937 ctrl
[i
]->data
= NULL
;
942 if (strncmp(control_strings
[i
], "provision:", 10) == 0) {
946 p
= &(control_strings
[i
][10]);
947 ret
= sscanf(p
, "%d", &crit
);
948 if ((ret
!= 1) || (crit
< 0) || (crit
> 1)) {
949 error_string
= talloc_asprintf(mem_ctx
, "invalid provision control syntax\n");
950 error_string
= talloc_asprintf_append(error_string
, " syntax: crit(b)\n");
951 error_string
= talloc_asprintf_append(error_string
, " note: b = boolean");
952 ldb_set_errstring(ldb
, error_string
);
953 talloc_free(error_string
);
957 ctrl
[i
] = talloc(ctrl
, struct ldb_control
);
962 ctrl
[i
]->oid
= LDB_CONTROL_PROVISION_OID
;
963 ctrl
[i
]->critical
= crit
;
964 ctrl
[i
]->data
= NULL
;
969 /* no controls matched, throw an error */
970 ldb_asprintf_errstring(ldb
, "Invalid control name: '%s'", control_strings
[i
]);