| blob | 52e37b253f9c8120ff17ad522104b29c46f3dd0d |
1 /* Licensed to the Apache Software Foundation (ASF) under one or more
2 * contributor license agreements. See the NOTICE file distributed with
3 * this work for additional information regarding copyright ownership.
4 * The ASF licenses this file to You under the Apache License, Version 2.0
5 * (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
17 /* Portions Copyright 1998-2002 The OpenLDAP Foundation
18 * All rights reserved.
19 *
20 * Redistribution and use in source and binary forms, with or without
21 * modification, are permitted only as authorized by the OpenLDAP
22 * Public License. A copy of this license is available at
23 * http://www.OpenLDAP.org/license.html or in file LICENSE in the
24 * top-level directory of the distribution.
25 *
26 * OpenLDAP is a registered trademark of the OpenLDAP Foundation.
27 *
28 * Individual files and/or contributed packages may be copyright by
29 * other parties and subject to additional restrictions.
30 *
31 * This work is derived from the University of Michigan LDAP v3.3
32 * distribution. Information concerning this software is available
33 * at: http://www.umich.edu/~dirsvcs/ldap/
34 *
35 * This work also contains materials derived from public sources.
36 *
37 * Additional information about OpenLDAP can be obtained at:
38 * http://www.openldap.org/
39 */
41 /*
42 * Portions Copyright (c) 1992-1996 Regents of the University of Michigan.
43 * All rights reserved.
44 *
45 * Redistribution and use in source and binary forms are permitted
46 * provided that this notice is preserved and that due credit is given
47 * to the University of Michigan at Ann Arbor. The name of the University
48 * may not be used to endorse or promote products derived from this
49 * software without specific prior written permission. This software
50 * is provided ``as is'' without express or implied warranty.
51 */
53 /* apr_ldap_url.c -- LDAP URL (RFC 2255) related routines
54 *
55 * Win32 and perhaps other non-OpenLDAP based ldap libraries may be
56 * missing ldap_url_* APIs. We focus here on the one significant
57 * aspect, which is parsing. We have [for the time being] omitted
58 * the ldap_url_search APIs.
59 *
60 * LDAP URLs look like this:
61 * ldap[is]://host:port[/[dn[?[attributes][?[scope][?[filter][?exts]]]]]]
62 *
63 * where:
64 * attributes is a comma separated list
65 * scope is one of these three strings: base one sub (default=base)
66 * filter is an string-represented filter as in RFC 2254
67 *
68 * e.g., ldap://host:port/dc=com?o,cn?base?o=openldap?extension
69 *
70 * Tolerates URLs that look like: <ldapurl> and <URL:ldapurl>
71 */
79 #if APR_HAS_LDAP
81 #if APR_HAVE_STDLIB_H
82 #include <stdlib.h>
83 #endif
85 #ifndef LDAPS_PORT
87 #endif
90 #define APR_LDAP_URL_PREFIX_LEN (sizeof(APR_LDAP_URL_PREFIX)-1)
92 #define APR_LDAPS_URL_PREFIX_LEN (sizeof(APR_LDAPS_URL_PREFIX)-1)
94 #define APR_LDAPI_URL_PREFIX_LEN (sizeof(APR_LDAPI_URL_PREFIX)-1)
96 #define APR_LDAP_URL_URLCOLON_LEN (sizeof(APR_LDAP_URL_URLCOLON)-1)
99 /* local functions */
113 /**
114 * Is this URL an ldap url?
115 *
116 */
118 {
124 }
128 }
131 }
133 /**
134 * Is this URL a secure ldap url?
135 *
136 */
138 {
144 }
148 }
151 }
153 /**
154 * Is this URL an ldap socket url?
155 *
156 */
158 {
164 }
168 }
171 }
176 {
177 /*
178 * return non-zero if this looks like a LDAP URL; zero if not
179 * if non-zero returned, *urlp will be moved past "ldap://" part of URL
180 */
185 }
189 /* skip leading '<' (if any) */
195 }
197 /* skip leading "URL:" (if any) */
200 }
202 /* check for "ldap://" prefix */
204 /* skip over "ldap://" prefix and return success */
208 }
210 /* check for "ldaps://" prefix */
212 /* skip over "ldaps://" prefix and return success */
216 }
218 /* check for "ldapi://" prefix */
220 /* skip over "ldapi://" prefix and return success */
224 }
227 }
231 {
246 }
249 }
252 /**
253 * Parse the URL provided into an apr_ldap_url_desc_t object.
254 *
255 * APR_SUCCESS is returned on success, APR_EGENERAL on failure.
256 * The LDAP result code and reason string is returned in the
257 * apr_ldap_err_t structure.
258 */
263 {
274 /* sanity check our parameters */
279 }
288 }
290 /* make working copy of the remainder of the URL */
296 }
305 }
308 }
310 /* allocate return struct */
316 }
333 }
337 }
339 /* scan forward for '/' that marks end of hostport and begin. of dn */
343 /* terminate hostport; point to start of dn */
345 }
347 /* IPv6 syntax with [ip address]:port */
354 }
359 }
368 }
371 }
375 /* If [ip address]:port syntax, url is [ip and we skip the [ */
381 }
383 /*
384 * Kludge. ldap://111.222.333.444:389??cn=abc,o=company
385 *
386 * On early Novell releases, search references/referrals were returned
387 * in this format, i.e., the dn was kind of in the scope position,
388 * but the required slash is missing. The whole thing is illegal syntax,
389 * but we need to account for it. Fortunately it can't be confused with
390 * anything real.
391 */
393 q++;
394 /* ? immediately followed by question */
396 q++;
398 /* parse dn part */
403 }
409 }
410 }
411 }
416 }
418 /* scan forward for '?' that may marks end of dn */
422 /* terminate dn part */
424 }
427 /* parse dn part */
432 }
438 }
441 /* no more */
444 }
446 /* scan forward for '?' that may marks end of attributes */
451 /* terminate attributes part */
453 }
456 /* parse attributes */
464 }
465 }
468 /* no more */
471 }
473 /* scan forward for '?' that may marks end of scope */
478 /* terminate the scope part */
480 }
483 /* parse the scope */
491 }
492 }
495 /* no more */
498 }
500 /* scan forward for '?' that may marks end of filter */
505 /* terminate the filter part */
507 }
510 /* parse the filter */
514 /* missing filter */
518 }
525 }
526 }
529 /* no more */
532 }
534 /* scan forward for '?' that may marks end of extensions */
539 /* extra '?' */
543 }
545 /* parse the extensions */
551 }
557 /* count the number of critical extensions */
559 }
560 }
563 /* must have 1 or more */
567 }
569 /* no more */
572 }
575 /**
576 * Parse the URL provided into an apr_ldap_url_desc_t object.
577 *
578 * APR_SUCCESS is returned on success, APR_EGENERAL on failure.
579 * The LDAP result code and reason string is returned in the
580 * apr_ldap_err_t structure.
581 */
586 {
591 }
595 }
599 }
603 }
607 {
608 /*
609 * Remove URL hex escapes from s... done in place. The basic concept for
610 * this routine is borrowed from the WWW library HTUnEscape() routine.
611 */
618 }
622 }
626 }
627 }
630 }
634 {
638 }
641 /**
642 * Convert a string to a character array
643 */
647 {
653 /* protect the input string from strtok */
657 }
661 /* Warning: this strchr was previously ldap_utf8_strchr(), check
662 * whether this particular code has any charset issues.
663 */
665 i++;
666 }
667 }
672 }
683 }
685 i++;
686 }
692 }