php-src/ext/ldap/ldap.c
2001-02-26 06:11:02 +00:00

2137 lines
54 KiB
C

/*
+----------------------------------------------------------------------+
| PHP version 4.0 |
+----------------------------------------------------------------------+
| Copyright (c) 1997-2001 The PHP Group |
+----------------------------------------------------------------------+
| This source file is subject to version 2.02 of the PHP license, |
| that is bundled with this package in the file LICENSE, and is |
| available at through the world-wide-web at |
| http://www.php.net/license/2_02.txt. |
| If you did not receive a copy of the PHP license and are unable to |
| obtain it through the world-wide-web, please send a note to |
| license@php.net so we can mail you a copy immediately. |
+----------------------------------------------------------------------+
| Authors: Amitay Isaacs <amitay@w-o-i.com> |
| Eric Warnke <ericw@albany.edu> |
| Rasmus Lerdorf <rasmus@lerdorf.on.ca> |
| Gerrit Thomson <334647@swin.edu.au> |
| Jani Taskinen <sniper@iki.fi> |
| Stig Venaas <venaas@uninett.no> |
| PHP 4.0 updates: Zeev Suraski <zeev@zend.com> |
+----------------------------------------------------------------------+
*/
/* $Id$ */
#define IS_EXT_MODULE
#include "php.h"
#include "php_ini.h"
#include "ext/standard/dl.h"
#include "php_ldap.h"
#ifdef PHP_WIN32
#include <string.h>
#if HAVE_NSLDAP
#include <winsock.h>
#endif
#define strdup _strdup
#undef WINDOWS
#undef strcasecmp
#undef strncasecmp
#define WINSOCK 1
#define __STDC__ 1
#endif
#include "ext/standard/php_string.h"
#include "ext/standard/info.h"
ZEND_DECLARE_MODULE_GLOBALS(ldap)
static unsigned char third_argument_force_ref[] = { 3, BYREF_NONE, BYREF_NONE, BYREF_FORCE };
static unsigned char arg3to6of6_force_ref[] = { 6, BYREF_NONE, BYREF_NONE, BYREF_FORCE, BYREF_FORCE, BYREF_FORCE, BYREF_FORCE };
static int le_result, le_result_entry, le_ber_entry;
static int le_link;
/*
This is just a small subset of the functionality provided by the LDAP library. All the
operations are synchronous. Referrals are not handled automatically.
*/
function_entry ldap_functions[] = {
PHP_FE(ldap_connect, NULL)
PHP_FALIAS(ldap_close, ldap_unbind, NULL)
PHP_FE(ldap_bind, NULL)
PHP_FE(ldap_unbind, NULL)
PHP_FE(ldap_read, NULL)
PHP_FE(ldap_list, NULL)
PHP_FE(ldap_search, NULL)
PHP_FE(ldap_free_result, NULL)
PHP_FE(ldap_count_entries, NULL)
PHP_FE(ldap_first_entry, NULL)
PHP_FE(ldap_next_entry, NULL)
PHP_FE(ldap_get_entries, NULL)
PHP_FE(ldap_first_attribute,third_argument_force_ref)
PHP_FE(ldap_next_attribute, third_argument_force_ref)
PHP_FE(ldap_get_attributes, NULL)
PHP_FE(ldap_get_values, NULL)
PHP_FE(ldap_get_values_len, NULL)
PHP_FE(ldap_get_dn, NULL)
PHP_FE(ldap_explode_dn, NULL)
PHP_FE(ldap_dn2ufn, NULL)
PHP_FE(ldap_add, NULL)
PHP_FE(ldap_delete, NULL)
PHP_FE(ldap_modify, NULL)
/* additional functions for attribute based modifications, Gerrit Thomson */
PHP_FE(ldap_mod_add, NULL)
PHP_FE(ldap_mod_replace, NULL)
PHP_FE(ldap_mod_del, NULL)
/* end gjt mod */
PHP_FE(ldap_errno, NULL)
PHP_FE(ldap_err2str, NULL)
PHP_FE(ldap_error, NULL)
PHP_FE(ldap_compare, NULL)
#if ( LDAP_API_VERSION > 2000 ) || HAVE_NSLDAP
PHP_FE(ldap_get_option, third_argument_force_ref)
PHP_FE(ldap_set_option, NULL)
PHP_FE(ldap_parse_result, arg3to6of6_force_ref)
PHP_FE(ldap_first_reference, NULL)
PHP_FE(ldap_next_reference, NULL)
PHP_FE(ldap_parse_reference, third_argument_force_ref)
PHP_FE(ldap_rename, NULL)
#endif
#ifdef STR_TRANSLATION
PHP_FE(ldap_t61_to_8859, NULL)
PHP_FE(ldap_8859_to_t61, NULL)
#endif
{NULL, NULL, NULL}
};
zend_module_entry ldap_module_entry = {
"ldap", ldap_functions, PHP_MINIT(ldap), PHP_MSHUTDOWN(ldap), NULL, NULL,
PHP_MINFO(ldap), STANDARD_MODULE_PROPERTIES
};
#ifdef COMPILE_DL_LDAP
ZEND_GET_MODULE(ldap)
#endif
static void _close_ldap_link(zend_rsrc_list_entry *rsrc)
{
LDAP *ld = (LDAP *)rsrc->ptr;
LDAPLS_FETCH();
ldap_unbind_s(ld);
/* php_printf("Freeing ldap connection");*/
LDAPG(num_links)--;
}
static void _free_ldap_result(zend_rsrc_list_entry *rsrc)
{
LDAPMessage *result = (LDAPMessage *)rsrc->ptr;
ldap_msgfree(result);
}
PHP_INI_BEGIN()
STD_PHP_INI_ENTRY_EX("ldap.max_links", "-1", PHP_INI_SYSTEM, OnUpdateInt, max_links, zend_ldap_globals, ldap_globals, display_link_numbers)
STD_PHP_INI_ENTRY("ldap.base_dn", NULL, PHP_INI_ALL, OnUpdateString, base_dn, zend_ldap_globals, ldap_globals)
PHP_INI_END()
static void php_ldap_init_globals(zend_ldap_globals *ldap_globals)
{
ldap_globals->num_links = 0;
}
PHP_MINIT_FUNCTION(ldap)
{
ZEND_INIT_MODULE_GLOBALS(ldap, php_ldap_init_globals, NULL);
REGISTER_INI_ENTRIES();
/* Constants to be used with deref-parameter in php_ldap_do_search() */
REGISTER_MAIN_LONG_CONSTANT("LDAP_DEREF_NEVER", LDAP_DEREF_NEVER, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_DEREF_SEARCHING", LDAP_DEREF_SEARCHING, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_DEREF_FINDING", LDAP_DEREF_FINDING, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_DEREF_ALWAYS", LDAP_DEREF_ALWAYS, CONST_PERSISTENT | CONST_CS);
#if ( LDAP_API_VERSION > 2000 ) || HAVE_NSLDAP
/* LDAP options */
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_DEREF", LDAP_OPT_DEREF, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_SIZELIMIT", LDAP_OPT_SIZELIMIT, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_TIMELIMIT", LDAP_OPT_TIMELIMIT, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_PROTOCOL_VERSION", LDAP_OPT_PROTOCOL_VERSION, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_ERROR_NUMBER", LDAP_OPT_ERROR_NUMBER, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_REFERRALS", LDAP_OPT_REFERRALS, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_RESTART", LDAP_OPT_RESTART, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_HOST_NAME", LDAP_OPT_HOST_NAME, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_ERROR_STRING", LDAP_OPT_ERROR_STRING, CONST_PERSISTENT | CONST_CS);
#ifdef LDAP_OPT_MATCHED_DN
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_MATCHED_DN", LDAP_OPT_MATCHED_DN, CONST_PERSISTENT | CONST_CS);
#endif
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_SERVER_CONTROLS", LDAP_OPT_SERVER_CONTROLS, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("LDAP_OPT_CLIENT_CONTROLS", LDAP_OPT_CLIENT_CONTROLS, CONST_PERSISTENT | CONST_CS);
#endif
#ifdef ORALDAP
REGISTER_MAIN_LONG_CONSTANT("GSLC_SSL_NO_AUTH", GSLC_SSL_NO_AUTH, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("GSLC_SSL_ONEWAY_AUTH", GSLC_SSL_ONEWAY_AUTH, CONST_PERSISTENT | CONST_CS);
REGISTER_MAIN_LONG_CONSTANT("GSLC_SSL_TWOWAY_AUTH", GSLC_SSL_TWOWAY_AUTH, CONST_PERSISTENT | CONST_CS);
#endif
le_result = zend_register_list_destructors_ex(_free_ldap_result, NULL, "ldap result", module_number);
le_link = zend_register_list_destructors_ex(_close_ldap_link, NULL, "ldap link", module_number);
ldap_module_entry.type = type;
return SUCCESS;
}
PHP_MSHUTDOWN_FUNCTION(ldap)
{
return SUCCESS;
}
PHP_MINFO_FUNCTION(ldap)
{
char maxl[32];
#ifdef LDAP_API_VERSION
char ldapapiversion[32];
#endif
#if HAVE_NSLDAP
char tmp[32];
LDAPVersion ver;
double SDKVersion;
#endif
LDAPLS_FETCH();
#if HAVE_NSLDAP
/* Print version information */
SDKVersion = ldap_version( &ver );
#endif
if (LDAPG(max_links) == -1) {
snprintf(maxl, 31, "%ld/unlimited", LDAPG(num_links) );
} else {
snprintf(maxl, 31, "%ld/%ld", LDAPG(num_links), LDAPG(max_links));
}
maxl[31] = 0;
php_info_print_table_start();
php_info_print_table_row(2, "LDAP Support", "enabled" );
php_info_print_table_row(2, "RCS Version", "$Id$" );
php_info_print_table_row(2, "Total Links", maxl );
#ifdef LDAP_API_VERSION
snprintf(ldapapiversion, 31, "%d", LDAP_API_VERSION);
php_info_print_table_row(2, "API Version", ldapapiversion);
#endif
#if HAVE_NSLDAP
snprintf(tmp, 31, "%f", SDKVersion/100.0 );
tmp[31]=0;
php_info_print_table_row(2, "SDK Version", tmp );
snprintf(tmp, 31, "%f", ver.protocol_version/100.0 );
tmp[31]=0;
php_info_print_table_row(2, "Highest LDAP Protocol Supported", tmp );
snprintf(tmp, 31, "%f", ver.SSL_version/100.0 );
tmp[31]=0;
php_info_print_table_row(2, "SSL Level Supported", tmp );
if ( ver.security_level != LDAP_SECURITY_NONE ) {
snprintf(tmp, 31, "%d", ver.security_level );
tmp[31]=0;
} else {
strcpy(tmp, "SSL not enabled" );
}
php_info_print_table_row(2, "Level of Encryption", tmp );
#endif
php_info_print_table_end();
}
/* {{{ proto int ldap_connect([string host [, int port]])
Connect to an LDAP server */
PHP_FUNCTION(ldap_connect)
{
char *host;
int port;
#ifdef HAVE_ORALDAP
char *wallet, *walletpasswd;
int authmode;
int ssl=0;
#endif
/* char *hashed_details;
int hashed_details_length;*/
LDAP *ldap;
LDAPLS_FETCH();
switch(ZEND_NUM_ARGS()) {
case 0:
host = NULL;
port = 0;
/* hashed_details = estrndup("ldap_", 5);
hashed_details_length = 4+1; */
break;
case 1: {
pval **yyhost;
if (zend_get_parameters_ex(1, &yyhost) == FAILURE) {
RETURN_FALSE;
}
convert_to_string_ex(yyhost);
host = (*yyhost)->value.str.val;
port = 389; /* Default port */
/* hashed_details_length = yyhost->value.str.len+4+1;
hashed_details = emalloc(hashed_details_length+1);
sprintf(hashed_details, "ldap_%s", yyhost->value.str.val);*/
}
break;
case 2: {
pval **yyhost, **yyport;
if (zend_get_parameters_ex(2, &yyhost,&yyport) == FAILURE) {
RETURN_FALSE;
}
convert_to_string_ex(yyhost);
host = (*yyhost)->value.str.val;
convert_to_long_ex(yyport);
port = (*yyport)->value.lval;
/* Do we need to take care of hosts running multiple LDAP servers ? */
/* hashed_details_length = yyhost->value.str.len+4+1;
hashed_details = emalloc(hashed_details_length+1);
sprintf(hashed_details, "ldap_%s", yyhost->value.str.val);*/
}
break;
#ifdef HAVE_ORALDAP
case 5: {
pval **yyhost, **yyport, **yywallet,
**yywalletpasswd, **yyauthmode;
if (zend_get_parameters_ex(5, &yyhost, &yyport,
&yywallet,
&yywalletpasswd,
&yyauthmode)
== FAILURE) {
RETURN_FALSE;
}
convert_to_string_ex(yyhost);
host = (*yyhost)->value.str.val;
convert_to_long_ex(yyport);
port = (*yyport)->value.lval;
convert_to_string_ex(yywallet);
wallet = (*yywallet)->value.str.val;
convert_to_string_ex(yywalletpasswd);
walletpasswd = (*yywalletpasswd)->value.str.val;
convert_to_long_ex(yyauthmode);
authmode = (*yyauthmode)->value.lval;
ssl = 1;
}
break;
#endif
default:
WRONG_PARAM_COUNT;
break;
}
if (LDAPG(max_links)!=-1 && LDAPG(num_links)>=LDAPG(max_links)) {
php_error(E_WARNING, "LDAP: Too many open links (%d)", LDAPG(num_links));
RETURN_FALSE;
}
#ifdef LDAP_API_FEATURE_X_OPENLDAP
if (strchr(host, '/')) {
int rc;
rc = ldap_initialize(&ldap, host);
if (rc != LDAP_SUCCESS) {
php_error(E_WARNING, "Could not create LDAP session handle (%d): %s\n", rc, ldap_err2string(rc));
RETURN_FALSE;
}
} else
#endif
{
ldap = ldap_open(host,port);
}
if ( ldap == NULL ) {
RETURN_FALSE;
} else {
#ifdef HAVE_ORALDAP
if (ssl) {
if (ldap_init_SSL(&ldap->ld_sb, wallet, walletpasswd,
authmode)) {
php_error(E_WARNING, "LDAP: SSL init failed");
RETURN_FALSE;
}
}
#endif
RETURN_LONG(zend_list_insert((void*)ldap,le_link));
}
}
/* }}} */
static LDAP * _get_ldap_link(pval **link)
{
LDAP *ldap;
int type;
LDAPLS_FETCH();
convert_to_long_ex(link);
ldap = (LDAP *) zend_list_find((*link)->value.lval, &type);
if (!ldap || !(type == le_link)) {
php_error(E_WARNING, "%d is not a LDAP link index",(*link)->value.lval);
return NULL;
}
return ldap;
}
static LDAPMessage * _get_ldap_result(pval **result)
{
LDAPMessage *ldap_result;
int type;
LDAPLS_FETCH();
convert_to_long_ex(result);
ldap_result = (LDAPMessage *)zend_list_find((*result)->value.lval, &type);
if (!ldap_result || type != le_result) {
php_error(E_WARNING, "%d is not a LDAP result index",(*result)->value.lval);
return NULL;
}
return ldap_result;
}
static LDAPMessage * _get_ldap_result_entry(pval **result)
{
LDAPMessage *ldap_result_entry;
int type;
LDAPLS_FETCH();
convert_to_long_ex(result);
ldap_result_entry = (LDAPMessage *)zend_list_find((*result)->value.lval, &type);
if (!ldap_result_entry || type != le_result_entry) {
php_error(E_WARNING, "%d is not a LDAP result entry index", (*result)->value.lval);
return NULL;
}
return ldap_result_entry;
}
static BerElement * _get_ber_entry(pval **berp)
{
BerElement *ber;
int type;
LDAPLS_FETCH();
convert_to_long_ex(berp);
ber = (BerElement *) zend_list_find((*berp)->value.lval, &type);
if ( type != le_ber_entry) {
php_error(E_WARNING, "%d is not a BerElement index",(*berp)->value.lval);
return NULL;
}
return ber;
}
static int _get_lderrno(LDAP *ldap)
{
#if !HAVE_NSLDAP
#if LDAP_API_VERSION > 2000
int lderr;
/* New versions of OpenLDAP do it this way */
ldap_get_option(ldap, LDAP_OPT_ERROR_NUMBER, &lderr);
return lderr;
#else
return ldap->ld_errno;
#endif
#else
return ldap_get_lderrno(ldap,NULL,NULL);
#endif
}
#if 0
PHP_FUNCTION(ber_free)
{
pval **berp;
if ( zend_get_parameters_ex(1,&berp) == FAILURE ) {
WRONG_PARAM_COUNT;
}
zend_list_delete((*berp)->value.lval);
RETURN_TRUE;
}
#endif
/* {{{ proto int ldap_bind(int link [, string dn, string password])
Bind to LDAP directory */
PHP_FUNCTION(ldap_bind)
{
pval **link, **bind_rdn, **bind_pw;
char *ldap_bind_rdn, *ldap_bind_pw;
LDAP *ldap;
switch(ZEND_NUM_ARGS()) {
case 1: /* Anonymous Bind */
if (zend_get_parameters_ex(1, &link) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap_bind_rdn = NULL;
ldap_bind_pw = NULL;
break;
case 3 :
if (zend_get_parameters_ex(3, &link, &bind_rdn,&bind_pw) == FAILURE) {
WRONG_PARAM_COUNT;
}
convert_to_string_ex(bind_rdn);
convert_to_string_ex(bind_pw);
ldap_bind_rdn = (*bind_rdn)->value.str.val;
ldap_bind_pw = (*bind_pw)->value.str.val;
break;
default:
WRONG_PARAM_COUNT;
break;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
if (ldap_bind_s(ldap, ldap_bind_rdn, ldap_bind_pw, LDAP_AUTH_SIMPLE) != LDAP_SUCCESS) {
php_error(E_WARNING,"LDAP: Unable to bind to server: %s",ldap_err2string(_get_lderrno(ldap)));
RETURN_FALSE;
} else {
RETURN_TRUE;
}
}
/* }}} */
/* {{{ proto int ldap_unbind(int link)
Unbind from LDAP directory */
PHP_FUNCTION(ldap_unbind)
{
pval **link;
LDAP *ldap;
if (ZEND_NUM_ARGS() != 1 || zend_get_parameters_ex(1, &link) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
zend_list_delete((*link)->value.lval);
RETURN_TRUE;
}
/* }}} */
static void php_set_opts(LDAP *ldap, int sizelimit, int timelimit, int deref)
{
/* sizelimit */
if (sizelimit > -1) {
#if ( LDAP_API_VERSION >= 2004 ) || HAVE_NSLDAP
ldap_set_option(ldap, LDAP_OPT_SIZELIMIT, &sizelimit);
#else
ldap->ld_sizelimit = sizelimit;
#endif
}
/* timelimit */
if (timelimit > -1) {
#if ( LDAP_API_VERSION >= 2004 ) || HAVE_NSLDAP
ldap_set_option(ldap, LDAP_OPT_TIMELIMIT, &timelimit);
#else
ldap->ld_timelimit = timelimit;
#endif
}
/* deref */
if (deref > -1) {
#if ( LDAP_API_VERSION >= 2004 ) || HAVE_NSLDAP
ldap_set_option(ldap, LDAP_OPT_DEREF, &deref);
#else
ldap->ld_deref = deref;
#endif
}
}
static void php_ldap_do_search(INTERNAL_FUNCTION_PARAMETERS, int scope)
{
pval **link, **base_dn, **filter, **attrs, **attr, **attrsonly, **sizelimit, **timelimit, **deref;
char *ldap_base_dn, *ldap_filter;
LDAP *ldap;
char **ldap_attrs = NULL;
int ldap_attrsonly = 0;
int ldap_sizelimit = -1;
int ldap_timelimit = -1;
int ldap_deref = -1;
LDAPMessage *ldap_res;
int num_attribs = 0;
int i, errno;
int myargcount = ZEND_NUM_ARGS();
LDAPLS_FETCH();
if (myargcount < 3 || myargcount > 8 || zend_get_parameters_ex(myargcount, &link, &base_dn, &filter, &attrs, &attrsonly, &sizelimit, &timelimit, &deref) == FAILURE) {
WRONG_PARAM_COUNT;
}
/* Reverse -> fall through */
switch(myargcount) {
case 8 :
convert_to_long_ex(deref);
ldap_deref = (*deref)->value.lval;
case 7 :
convert_to_long_ex(timelimit);
ldap_timelimit = (*timelimit)->value.lval;
case 6 :
convert_to_long_ex(sizelimit);
ldap_sizelimit = (*sizelimit)->value.lval;
case 5 :
convert_to_long_ex(attrsonly);
ldap_attrsonly = (*attrsonly)->value.lval;
case 4 :
if ((*attrs)->type != IS_ARRAY) {
php_error(E_WARNING, "LDAP: Expected Array as last element");
RETURN_FALSE;
}
num_attribs = zend_hash_num_elements((*attrs)->value.ht);
if ((ldap_attrs = emalloc((num_attribs+1) * sizeof(char *))) == NULL) {
php_error(E_WARNING, "LDAP: Could not allocate memory");
RETURN_FALSE;
}
for(i=0; i<num_attribs; i++) {
if(zend_hash_index_find((*attrs)->value.ht, i, (void **) &attr) == FAILURE) {
php_error(E_WARNING, "LDAP: Array initialization wrong");
efree(ldap_attrs);
RETURN_FALSE;
}
SEPARATE_ZVAL(attr);
convert_to_string_ex(attr);
ldap_attrs[i] = (*attr)->value.str.val;
}
ldap_attrs[num_attribs] = NULL;
case 3 :
/* parallel search? */
if (Z_TYPE_PP(link) != IS_ARRAY) {
convert_to_string_ex(filter);
ldap_filter = Z_STRVAL_PP(filter);
convert_to_string_ex(base_dn);
ldap_base_dn = Z_STRVAL_PP(base_dn);
}
break;
default:
WRONG_PARAM_COUNT;
break;
}
/* parallel search? */
if (Z_TYPE_PP(link) == IS_ARRAY) {
int i, nlinks, nbases, nfilters, *rcs;
LDAP **links;
zval **entry;
nlinks = zend_hash_num_elements(Z_ARRVAL_PP(link));
if (nlinks == 0) {
php_error(E_WARNING, "LDAP: No links in link array");
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
RETURN_FALSE;
}
if (Z_TYPE_PP(base_dn) == IS_ARRAY) {
nbases = zend_hash_num_elements(Z_ARRVAL_PP(base_dn));
if (nbases != nlinks) {
php_error(E_WARNING, "LDAP: Base must either be a string, or an array with the same number of elements as the links array");
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
RETURN_FALSE;
}
zend_hash_internal_pointer_reset(Z_ARRVAL_PP(base_dn));
} else {
nbases = 0; /* this means string, not array */
convert_to_string_ex(base_dn);
ldap_base_dn = Z_STRLEN_PP(base_dn) < 1 ? NULL : Z_STRVAL_PP(base_dn);
}
if (Z_TYPE_PP(filter) == IS_ARRAY) {
nfilters = zend_hash_num_elements(Z_ARRVAL_PP(filter));
if (nfilters != nlinks) {
php_error(E_WARNING, "LDAP: Filter must either be a string, or an array with the same number of elements as the links array");
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
RETURN_FALSE;
}
zend_hash_internal_pointer_reset(Z_ARRVAL_PP(filter));
} else {
nfilters = 0; /* this means string, not array */
convert_to_string_ex(filter);
ldap_filter = Z_STRVAL_PP(filter);
}
links = emalloc(nlinks * sizeof(*links));
rcs = emalloc(nlinks * sizeof(*rcs));
zend_hash_internal_pointer_reset(Z_ARRVAL_PP(link));
for (i=0; i<nlinks; i++) {
zend_hash_get_current_data(Z_ARRVAL_PP(link), (void **)&entry);
ldap = _get_ldap_link(entry);
if (ldap == NULL) {
efree(links);
efree(rcs);
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
RETURN_FALSE;
}
if (nbases != 0) { /* base_dn an array? */
zend_hash_get_current_data(Z_ARRVAL_PP(base_dn), (void **)&entry);
zend_hash_move_forward(Z_ARRVAL_PP(base_dn));
convert_to_string_ex(entry);
ldap_base_dn = Z_STRLEN_PP(entry) < 1 ? NULL : Z_STRVAL_PP(entry);
}
if (nfilters != 0) { /* filter an array? */
zend_hash_get_current_data(Z_ARRVAL_PP(filter), (void **)&entry);
zend_hash_move_forward(Z_ARRVAL_PP(filter));
convert_to_string_ex(entry);
ldap_filter = Z_STRVAL_PP(entry);
}
php_set_opts(ldap, ldap_sizelimit, ldap_timelimit, ldap_deref);
/* Run the actual search */
rcs[i] = ldap_search(ldap, ldap_base_dn, scope, ldap_filter, ldap_attrs, ldap_attrsonly);
links[i] = ldap;
zend_hash_move_forward(Z_ARRVAL_PP(link));
}
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
if (array_init(return_value) == FAILURE) {
efree(links);
efree(rcs);
RETURN_FALSE;
}
/* Collect results from the searches */
for (i=0; i<nlinks; i++) {
if (rcs[i] != -1) {
rcs[i] = ldap_result(links[i], LDAP_RES_ANY, 1 /* LDAP_MSG_ALL */, NULL, &ldap_res);
}
if (rcs[i] != -1) {
add_next_index_long(return_value, zend_list_insert(ldap_res, le_result));
} else {
add_next_index_bool(return_value, 0);
}
};
efree(links);
efree(rcs);
return;
}
/* fix to make null base_dn's work */
if ( strlen(ldap_base_dn) < 1 ) {
ldap_base_dn = NULL;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) {
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
RETURN_FALSE;
}
php_set_opts(ldap, ldap_sizelimit, ldap_timelimit, ldap_deref);
/* Run the actual search */
errno = ldap_search_s(ldap, ldap_base_dn, scope, ldap_filter, ldap_attrs, ldap_attrsonly, &ldap_res);
if (ldap_attrs != NULL) {
efree(ldap_attrs);
}
if (errno != LDAP_SUCCESS
&& errno != LDAP_SIZELIMIT_EXCEEDED
#ifdef LDAP_ADMINLIMIT_EXCEEDED
&& errno != LDAP_ADMINLIMIT_EXCEEDED
#endif
#ifdef LDAP_REFERRAL
&& errno != LDAP_REFERRAL
#endif
) {
php_error(E_WARNING,"LDAP: Unable to perform the search: %s",ldap_err2string(_get_lderrno(ldap)));
RETVAL_FALSE;
} else {
if (errno == LDAP_SIZELIMIT_EXCEEDED) {
php_error(E_WARNING,"LDAP: Partial search results returned: Sizelimit exceeded.");
}
#ifdef LDAP_ADMINLIMIT_EXCEEDED
else if (errno == LDAP_ADMINLIMIT_EXCEEDED) {
php_error(E_WARNING,"LDAP: Partial search results returned: Adminlimit exceeded.");
}
#endif
RETVAL_LONG(zend_list_insert(ldap_res, le_result));
}
}
/* {{{ proto int ldap_read(int link, string base_dn, string filter [, array attrs [, int attrsonly [, int sizelimit [, int timelimit [, int deref]]]]])
Read an entry */
PHP_FUNCTION(ldap_read)
{
php_ldap_do_search(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_SCOPE_BASE);
}
/* }}} */
/* {{{ proto int ldap_list(int link, string base_dn, string filter [, array attrs [, int attrsonly [, int sizelimit [, int timelimit [, int deref]]]]])
Single-level search */
PHP_FUNCTION(ldap_list)
{
php_ldap_do_search(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_SCOPE_ONELEVEL);
}
/* }}} */
/* {{{ proto int ldap_search(int link, string base_dn, string filter [, array attrs [, int attrsonly [, int sizelimit [, int timelimit [, int deref]]]]])
Search LDAP tree under base_dn */
PHP_FUNCTION(ldap_search)
{
php_ldap_do_search(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_SCOPE_SUBTREE);
}
/* }}} */
/* {{{ proto int ldap_free_result(int result)
Free result memory */
PHP_FUNCTION(ldap_free_result)
{
pval **result;
LDAPMessage *ldap_result;
if (ZEND_NUM_ARGS() != 1 || zend_get_parameters_ex(1, &result) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap_result = _get_ldap_result(result);
if (ldap_result == NULL) {
RETVAL_FALSE;
} else {
zend_list_delete((*result)->value.lval); /* Delete list entry and call registered destructor function */
RETVAL_TRUE;
}
return;
}
/* }}} */
/* {{{ proto int ldap_count_entries(int link, int result)
Count the number of entries in a search result */
PHP_FUNCTION(ldap_count_entries)
{
pval **result, **link;
LDAP *ldap;
LDAPMessage *ldap_result;
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result = _get_ldap_result(result);
if (ldap_result == NULL) RETURN_FALSE;
RETURN_LONG(ldap_count_entries(ldap, ldap_result));
}
/* }}} */
/* {{{ proto int ldap_first_entry(int link, int result)
Return first result id */
PHP_FUNCTION(ldap_first_entry)
{
pval **result, **link;
LDAP *ldap;
LDAPMessage *ldap_result;
LDAPMessage *ldap_result_entry;
LDAPLS_FETCH();
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result = _get_ldap_result(result);
if (ldap_result == NULL) RETURN_FALSE;
if ((ldap_result_entry = ldap_first_entry(ldap, ldap_result)) == NULL) {
RETURN_FALSE;
} else {
RETURN_LONG(zend_list_insert(ldap_result_entry, le_result_entry));
}
}
/* }}} */
/* {{{ proto int ldap_next_entry(int link, int entry)
Get next result entry */
PHP_FUNCTION(ldap_next_entry)
{
pval **result_entry, **link;
LDAP *ldap;
LDAPMessage *ldap_result_entry, *ldap_result_entry_next;
LDAPLS_FETCH();
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link,&result_entry) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result_entry);
if (ldap_result_entry == NULL) RETURN_FALSE;
if ((ldap_result_entry_next = ldap_next_entry(ldap, ldap_result_entry)) == NULL) {
RETURN_FALSE;
} else {
RETURN_LONG(zend_list_insert(ldap_result_entry_next, le_result_entry));
}
}
/* }}} */
/* {{{ proto array ldap_get_entries(int link, int result)
Get all result entries */
PHP_FUNCTION(ldap_get_entries)
{
pval **link, **result;
LDAPMessage *ldap_result, *ldap_result_entry;
pval *tmp1, *tmp2;
LDAP *ldap;
int num_entries, num_attrib, num_values, i;
BerElement *ber;
char *attribute;
size_t attr_len;
char **ldap_value;
char *dn;
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result = _get_ldap_result(result);
if (ldap_result == NULL) RETURN_FALSE;
num_entries = ldap_count_entries(ldap, ldap_result);
array_init(return_value);
add_assoc_long(return_value, "count", num_entries);
if (num_entries == 0) return;
num_entries = 0;
ldap_result_entry = ldap_first_entry(ldap, ldap_result);
if (ldap_result_entry == NULL) RETURN_FALSE;
while(ldap_result_entry != NULL) {
MAKE_STD_ZVAL(tmp1);
array_init(tmp1);
num_attrib = 0;
attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber);
while (attribute != NULL) {
ldap_value = ldap_get_values(ldap, ldap_result_entry, attribute);
num_values = ldap_count_values(ldap_value);
MAKE_STD_ZVAL(tmp2);
array_init(tmp2);
add_assoc_long(tmp2, "count", num_values);
for(i=0; i < num_values; i++) {
add_index_string(tmp2, i, ldap_value[i], 1);
}
ldap_value_free(ldap_value);
attr_len = strlen(attribute);
zend_hash_update(tmp1->value.ht, php_strtolower(attribute, attr_len), attr_len+1, (void *) &tmp2, sizeof(pval *), NULL);
add_index_string(tmp1, num_attrib, attribute, 1);
num_attrib++;
attribute = ldap_next_attribute(ldap, ldap_result_entry, ber);
}
add_assoc_long(tmp1, "count", num_attrib);
dn = ldap_get_dn(ldap, ldap_result_entry);
add_assoc_string(tmp1, "dn", dn, 1);
zend_hash_index_update(return_value->value.ht, num_entries, (void *) &tmp1, sizeof(pval *), NULL);
num_entries++;
ldap_result_entry = ldap_next_entry(ldap, ldap_result_entry);
}
add_assoc_long(return_value, "count", num_entries);
}
/* }}} */
/* {{{ proto string ldap_first_attribute(int link, int result, int ber)
Return first attribute */
PHP_FUNCTION(ldap_first_attribute)
{
pval **result,**link,**berp;
LDAP *ldap;
LDAPMessage *ldap_result_entry;
BerElement *ber;
char *attribute;
LDAPLS_FETCH();
if (ZEND_NUM_ARGS() != 3 || zend_get_parameters_ex(3, &link,&result,&berp) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result);
if (ldap_result_entry == NULL) RETURN_FALSE;
if ((attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber)) == NULL) {
RETURN_FALSE;
} else {
/* brep is passed by ref so we do not have to account for memory */
(*berp)->type=IS_LONG;
(*berp)->value.lval=zend_list_insert(ber,le_ber_entry);
RETVAL_STRING(attribute,1);
#ifdef WINDOWS
ldap_memfree(attribute);
#endif
}
}
/* }}} */
/* {{{ proto string ldap_next_attribute(int link, int result, int ber)
Get the next attribute in result */
PHP_FUNCTION(ldap_next_attribute)
{
pval **result,**link,**berp;
LDAP *ldap;
LDAPMessage *ldap_result_entry;
BerElement *ber;
char *attribute;
if (ZEND_NUM_ARGS() != 3 || zend_get_parameters_ex(3, &link,&result,&berp) == FAILURE ) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result);
if (ldap_result_entry == NULL) RETURN_FALSE;
if((ber = _get_ber_entry(berp)) == NULL) {
RETURN_FALSE;
}
if ((attribute = ldap_next_attribute(ldap, ldap_result_entry, ber)) == NULL) {
RETURN_FALSE;
} else {
/* brep is passed by ref so we do not have to account for memory */
(*berp)->type=IS_LONG;
(*berp)->value.lval=zend_list_insert(ber,le_ber_entry);
RETVAL_STRING(attribute,1);
#ifdef WINDOWS
ldap_memfree(attribute);
#endif
}
}
/* }}} */
/* {{{ proto array ldap_get_attributes(int link, int result)
Get attributes from a search result entry */
PHP_FUNCTION(ldap_get_attributes)
{
pval **link, **result_entry;
pval *tmp;
LDAP *ldap;
LDAPMessage *ldap_result_entry;
char *attribute;
char **ldap_value;
int i, num_values, num_attrib;
BerElement *ber;
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &result_entry) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result_entry);
if (ldap_result_entry == NULL) RETURN_FALSE;
array_init(return_value);
num_attrib = 0;
attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber);
while (attribute != NULL) {
ldap_value = ldap_get_values(ldap, ldap_result_entry, attribute);
num_values = ldap_count_values(ldap_value);
MAKE_STD_ZVAL(tmp);
array_init(tmp);
add_assoc_long(tmp, "count", num_values);
for(i=0; i<num_values; i++) {
add_index_string(tmp, i, ldap_value[i], 1);
}
ldap_value_free(ldap_value);
zend_hash_update(return_value->value.ht, attribute, strlen(attribute)+1, (void *) &tmp, sizeof(pval *), NULL);
add_index_string(return_value, num_attrib, attribute, 1);
num_attrib++;
attribute = ldap_next_attribute(ldap, ldap_result_entry, ber);
}
add_assoc_long(return_value, "count", num_attrib);
}
/* }}} */
/* {{{ proto array ldap_get_values(int link, int result, string attribute)
Get all values from a result entry */
PHP_FUNCTION(ldap_get_values)
{
pval **link, **result_entry, **attr;
LDAP *ldap;
LDAPMessage *ldap_result_entry;
char *attribute;
char **ldap_value;
int i, num_values;
if (ZEND_NUM_ARGS() != 3 || zend_get_parameters_ex(3, &link,&result_entry, &attr) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result_entry);
if (ldap_result_entry == NULL) RETURN_FALSE;
convert_to_string_ex(attr);
attribute = (*attr)->value.str.val;
if ((ldap_value = ldap_get_values(ldap, ldap_result_entry, attribute)) == NULL) {
php_error(E_WARNING, "LDAP: Cannot get the value(s) of attribute %s", ldap_err2string(_get_lderrno(ldap)));
RETURN_FALSE;
}
num_values = ldap_count_values(ldap_value);
if (array_init(return_value) == FAILURE) {
RETURN_FALSE;
}
for(i=0; i<num_values; i++) {
add_next_index_string(return_value, ldap_value[i], 1);
}
add_assoc_long(return_value, "count", num_values);
ldap_value_free(ldap_value);
}
/* }}} */
/* {{{ proto array ldap_get_values_len(int link, int result, string attribute)
Get all values with lengths from a result entry */
PHP_FUNCTION(ldap_get_values_len)
{
pval **link, **result_entry, **attr;
LDAP* ldap;
LDAPMessage* ldap_result_entry;
char* attribute;
struct berval **ldap_value_len;
int i, num_values;
if (ZEND_NUM_ARGS() != 3 || zend_get_parameters_ex(3, &link, &result_entry, &attr) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result_entry);
if (ldap_result_entry == NULL) RETURN_FALSE;
convert_to_string_ex(attr);
attribute = (*attr)->value.str.val;
if ((ldap_value_len = ldap_get_values_len(ldap, ldap_result_entry, attribute)) == NULL) {
php_error(E_WARNING, "LDAP: Cannot get the value(s) of attribute %s", ldap_err2string(_get_lderrno(ldap)));
RETURN_FALSE;
}
num_values = ldap_count_values_len(ldap_value_len);
if (array_init(return_value) == FAILURE) {
php_error(E_ERROR, "Cannot initialize return value");
RETURN_FALSE;
}
for (i=0; i<num_values; i++) {
add_next_index_stringl(return_value, ldap_value_len[i]->bv_val, ldap_value_len[i]->bv_len, 1);
}
add_assoc_long(return_value, "count", num_values);
ldap_value_free_len(ldap_value_len);
}
/* }}} */
/* {{{ proto string ldap_get_dn(int link, int result)
Get the DN of a result entry */
PHP_FUNCTION(ldap_get_dn)
{
pval **link,**entryp;
LDAP *ld;
LDAPMessage *entry;
char *text;
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &entryp) == FAILURE) {
WRONG_PARAM_COUNT;
}
ld = _get_ldap_link(link);
if (ld == NULL) RETURN_FALSE;
entry = _get_ldap_result_entry(entryp);
if (entry == NULL) RETURN_FALSE;
text = ldap_get_dn(ld, entry);
if ( text != NULL ) {
RETVAL_STRING(text,1);
#ifdef WINDOWS
ldap_memfree(text);
#endif
} else {
RETURN_FALSE;
}
}
/* }}} */
/* {{{ proto array ldap_explode_dn(string dn, int with_attrib)
Splits DN into its component parts */
PHP_FUNCTION(ldap_explode_dn)
{
pval **dn, **with_attrib;
char **ldap_value;
int i, count;
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &dn,&with_attrib) == FAILURE) {
WRONG_PARAM_COUNT;
}
convert_to_string_ex(dn);
convert_to_long_ex(with_attrib);
ldap_value = ldap_explode_dn((*dn)->value.str.val,(*with_attrib)->value.lval);
i=0;
while(ldap_value[i] != NULL) i++;
count = i;
if (array_init(return_value) == FAILURE) {
RETURN_FALSE;
}
add_assoc_long(return_value, "count", count);
for(i=0; i<count; i++) {
add_index_string(return_value, i, ldap_value[i], 1);
}
ldap_value_free(ldap_value);
}
/* }}} */
/* {{{ proto string ldap_dn2ufn(string dn)
Convert DN to User Friendly Naming format */
PHP_FUNCTION(ldap_dn2ufn)
{
pval **dn;
char *ufn;
if (ZEND_NUM_ARGS() !=1 || zend_get_parameters_ex(1,&dn)==FAILURE) {
WRONG_PARAM_COUNT;
}
convert_to_string_ex(dn);
ufn = ldap_dn2ufn((*dn)->value.str.val);
if (ufn !=NULL) {
RETVAL_STRING(ufn,1);
#ifdef WINDOWS
ldap_memfree(ufn);
#endif
} else {
RETURN_FALSE;
}
}
/* }}} */
/* added to fix use of ldap_modify_add for doing an ldap_add, gerrit thomson. */
#define PHP_LD_FULL_ADD 0xff
static void php_ldap_do_modify(INTERNAL_FUNCTION_PARAMETERS, int oper)
{
pval **link, **dn, **entry, **value, **ivalue;
LDAP *ldap;
char *ldap_dn;
LDAPMod **ldap_mods;
int i, j, num_attribs, num_values;
int *num_berval;
char *attribute;
ulong index;
int is_full_add=0; /* flag for full add operation so ldap_mod_add can be put back into oper, gerrit THomson */
if (ZEND_NUM_ARGS() != 3 || zend_get_parameters_ex(3, &link, &dn,&entry) == FAILURE) {
WRONG_PARAM_COUNT;
}
if ((*entry)->type != IS_ARRAY) {
php_error(E_WARNING, "LDAP: Expected Array as the last element");
RETURN_FALSE;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
convert_to_string_ex(dn);
ldap_dn = (*dn)->value.str.val;
num_attribs = zend_hash_num_elements((*entry)->value.ht);
ldap_mods = emalloc((num_attribs+1) * sizeof(LDAPMod *));
num_berval = emalloc(num_attribs * sizeof(int));
zend_hash_internal_pointer_reset((*entry)->value.ht);
/* added by gerrit thomson to fix ldap_add using ldap_mod_add */
if ( oper == PHP_LD_FULL_ADD ) {
oper = LDAP_MOD_ADD;
is_full_add = 1;
}
/* end additional , gerrit thomson */
for(i=0; i<num_attribs; i++) {
ldap_mods[i] = emalloc(sizeof(LDAPMod));
ldap_mods[i]->mod_op = oper | LDAP_MOD_BVALUES;
if (zend_hash_get_current_key((*entry)->value.ht, &attribute, &index, 0) == HASH_KEY_IS_STRING) {
ldap_mods[i]->mod_type = estrdup(attribute);
} else {
php_error(E_ERROR, "LDAP: Unknown Attribute in the data");
/* Free allocated memory */
while (i >= 0) {
efree(ldap_mods[i--]);
}
efree(num_berval);
efree(ldap_mods);
RETURN_FALSE;
}
zend_hash_get_current_data((*entry)->value.ht, (void **)&value);
if ((*value)->type != IS_ARRAY) {
num_values = 1;
} else {
num_values = zend_hash_num_elements((*value)->value.ht);
}
num_berval[i] = num_values;
ldap_mods[i]->mod_bvalues = emalloc((num_values + 1) * sizeof(struct berval *));
/* allow for arrays with one element, no allowance for arrays with none but probably not required, gerrit thomson. */
/* if (num_values == 1) {*/
if ((num_values == 1) && ((*value)->type != IS_ARRAY)) {
convert_to_string_ex(value);
ldap_mods[i]->mod_bvalues[0] = (struct berval *) emalloc (sizeof(struct berval));
ldap_mods[i]->mod_bvalues[0]->bv_len = (*value)->value.str.len;
ldap_mods[i]->mod_bvalues[0]->bv_val = (*value)->value.str.val;
} else {
for(j=0; j < num_values; j++) {
zend_hash_index_find((*value)->value.ht,j, (void **) &ivalue);
convert_to_string_ex(ivalue);
ldap_mods[i]->mod_bvalues[j] = (struct berval *) emalloc (sizeof(struct berval));
ldap_mods[i]->mod_bvalues[j]->bv_len = (*ivalue)->value.str.len;
ldap_mods[i]->mod_bvalues[j]->bv_val = (*ivalue)->value.str.val;
}
}
ldap_mods[i]->mod_bvalues[num_values] = NULL;
zend_hash_move_forward((*entry)->value.ht);
}
ldap_mods[num_attribs] = NULL;
/* check flag to see if do_mod was called to perform full add , gerrit thomson */
/* if (oper == LDAP_MOD_ADD) { */
if (is_full_add == 1) {
if (ldap_add_s(ldap, ldap_dn, ldap_mods) != LDAP_SUCCESS) {
ldap_perror(ldap, "LDAP");
php_error(E_WARNING, "LDAP: add operation could not be completed.");
RETVAL_FALSE;
} else RETVAL_TRUE;
} else {
if (ldap_modify_s(ldap, ldap_dn, ldap_mods) != LDAP_SUCCESS) {
php_error(E_WARNING, "LDAP: modify operation could not be completed.");
RETVAL_FALSE;
} else RETVAL_TRUE;
}
for(i=0; i < num_attribs; i++) {
efree(ldap_mods[i]->mod_type);
for(j=0; j<num_berval[i]; j++) {
efree(ldap_mods[i]->mod_bvalues[j]);
}
efree(ldap_mods[i]->mod_bvalues);
efree(ldap_mods[i]);
}
efree(num_berval);
efree(ldap_mods);
return;
}
/* {{{ proto int ldap_add(int link, string dn, array entry)
Add entries to LDAP directory */
PHP_FUNCTION(ldap_add)
{
/* use a newly define parameter into the do_modify so ldap_mod_add can be used the way it is supposed to be used , Gerrit THomson */
/* php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_ADD);*/
php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, PHP_LD_FULL_ADD);
}
/* }}} */
/* {{{ proto int ldap_modify(int link, string dn, array entry)
Modify an LDAP entry */
PHP_FUNCTION(ldap_modify)
{
php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_REPLACE);
}
/* }}} */
/* three functions for attribute base modifications, gerrit Thomson */
/* {{{ proto int ldap_mod_replace(int link, string dn, array entry)
Replace attribute values with new ones */
PHP_FUNCTION(ldap_mod_replace)
{
php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_REPLACE);}
/* }}} */
/* {{{ proto int ldap_mod_add(int link, string dn, array entry)
Add attribute values to current */
PHP_FUNCTION(ldap_mod_add)
{
php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_ADD);
}
/* }}} */
/* {{{ proto int ldap_mod_del(int link, string dn, array entry)
Delete attribute values */
PHP_FUNCTION(ldap_mod_del)
{
php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_DELETE);
}
/* }}} */
/* end of attribute based functions , gerrit thomson */
/* {{{ proto int ldap_delete(int link, string dn)
Delete an entry from a directory */
PHP_FUNCTION(ldap_delete)
{
pval **link, **dn;
LDAP *ldap;
char *ldap_dn;
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &dn) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
convert_to_string_ex(dn);
ldap_dn = (*dn)->value.str.val;
if (ldap_delete_s(ldap, ldap_dn) != LDAP_SUCCESS) {
ldap_perror(ldap, "LDAP");
RETURN_FALSE;
}
RETURN_TRUE;
}
/* }}} */
/* {{{ proto int ldap_errno(int link)
Get the current ldap error number */
PHP_FUNCTION(ldap_errno) {
LDAP* ldap;
pval** ldap_link;
if (ZEND_NUM_ARGS() != 1 || zend_get_parameters_ex(ht, &ldap_link) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(ldap_link);
if (ldap == NULL) {
RETURN_LONG(0);
}
RETURN_LONG( _get_lderrno(ldap) );
}
/* }}} */
/* {{{ proto string ldap_err2str(int errno)
Convert error number to error string */
PHP_FUNCTION(ldap_err2str) {
zval** perrno;
if ( ZEND_NUM_ARGS() != 1 || zend_get_parameters_ex(ht, &perrno) == FAILURE) {
WRONG_PARAM_COUNT;
}
convert_to_long_ex(perrno);
RETURN_STRING(ldap_err2string((*perrno)->value.lval), 1);
}
/* }}} */
/* {{{ proto string ldap_error(int link)
Get the current ldap error string */
PHP_FUNCTION(ldap_error) {
LDAP* ldap;
pval** link;
int ld_errno;
if (ZEND_NUM_ARGS() != 1 || zend_get_parameters_ex(ht, &link) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) {
RETURN_FALSE;
}
ld_errno = _get_lderrno(ldap);
RETURN_STRING(ldap_err2string(ld_errno), 1);
}
/* }}} */
/* {{{ proto int ldap_compare(int link, string dn, string attr, string value)
Determine if an entry has a specific value for one of its attributes */
PHP_FUNCTION(ldap_compare) {
pval **link, **dn, **attr, **value;
char *ldap_dn, *ldap_attr, *ldap_value;
LDAP *ldap;
int errno;
if (ZEND_NUM_ARGS() != 4 || zend_get_parameters_ex(4, &link, &dn, &attr, &value) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_LONG(-1);
convert_to_string_ex(dn);
convert_to_string_ex(attr);
convert_to_string_ex(value);
ldap_dn = (*dn)->value.str.val;
ldap_attr = (*attr)->value.str.val;
ldap_value = (*value)->value.str.val;
errno = ldap_compare_s(ldap, ldap_dn, ldap_attr, ldap_value);
switch(errno) {
case LDAP_COMPARE_TRUE :
RETURN_TRUE;
break;
case LDAP_COMPARE_FALSE :
RETURN_FALSE;
break;
}
php_error(E_WARNING, "LDAP: Compare operation could not be completed: %s", ldap_err2string(errno));
RETURN_LONG(-1);
}
/* }}} */
#if ( LDAP_API_VERSION > 2000 ) || HAVE_NSLDAP
/* {{{ proto boolean ldap_get_option(int link, int option, mixed retval)
Get the current value of various session-wide parameters */
PHP_FUNCTION(ldap_get_option) {
LDAP *ldap;
pval **link, **option, **retval;
int opt;
if (ZEND_NUM_ARGS() != 3 ||
zend_get_parameters_ex(3, &link, &option, &retval) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) {
RETURN_FALSE;
}
convert_to_long_ex(option);
opt = (*option)->value.lval;
switch(opt) {
/* options with int value */
case LDAP_OPT_DEREF:
case LDAP_OPT_SIZELIMIT:
case LDAP_OPT_TIMELIMIT:
case LDAP_OPT_PROTOCOL_VERSION:
case LDAP_OPT_ERROR_NUMBER:
case LDAP_OPT_REFERRALS:
case LDAP_OPT_RESTART:
{
int val;
if (ldap_get_option(ldap, opt, &val)) {
RETURN_FALSE;
}
zval_dtor(*retval);
ZVAL_LONG(*retval, val);
} break;
/* options with string value */
case LDAP_OPT_HOST_NAME:
case LDAP_OPT_ERROR_STRING:
#ifdef LDAP_OPT_MATCHED_DN
case LDAP_OPT_MATCHED_DN:
#endif
{
char *val;
if (ldap_get_option(ldap, opt, &val)) {
RETURN_FALSE;
}
zval_dtor(*retval);
ZVAL_STRING(*retval, val, 1);
ldap_memfree(val);
} break;
/* options not implemented
case LDAP_OPT_SERVER_CONTROLS:
case LDAP_OPT_CLIENT_CONTROLS:
case LDAP_OPT_API_INFO:
case LDAP_OPT_API_FEATURE_INFO:
*/
default:
RETURN_FALSE;
}
RETURN_TRUE;
}
/* }}} */
/* {{{ proto boolean ldap_set_option(int link, int option, mixed newval)
Set the value of various session-wide parameters */
PHP_FUNCTION(ldap_set_option) {
LDAP *ldap;
pval **link, **option, **newval;
int opt;
if (ZEND_NUM_ARGS() != 3 ||
zend_get_parameters_ex(3, &link, &option, &newval) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) {
RETURN_FALSE;
}
convert_to_long_ex(option);
opt = (*option)->value.lval;
switch(opt) {
/* options with int value */
case LDAP_OPT_DEREF:
case LDAP_OPT_SIZELIMIT:
case LDAP_OPT_TIMELIMIT:
case LDAP_OPT_PROTOCOL_VERSION:
case LDAP_OPT_ERROR_NUMBER:
{
int val;
convert_to_long_ex(newval);
val = (*newval)->value.lval;
if (ldap_set_option(ldap, opt, &val)) {
RETURN_FALSE;
}
} break;
/* options with string value */
case LDAP_OPT_HOST_NAME:
case LDAP_OPT_ERROR_STRING:
#ifdef LDAP_OPT_MATCHED_DN
case LDAP_OPT_MATCHED_DN:
#endif
{
char *val;
convert_to_string_ex(newval);
val = (*newval)->value.str.val;
if (ldap_set_option(ldap, opt, val)) {
RETURN_FALSE;
}
} break;
/* options with boolean value */
case LDAP_OPT_REFERRALS:
case LDAP_OPT_RESTART:
{
void *val;
convert_to_boolean_ex(newval);
val = (*newval)->value.lval
? LDAP_OPT_ON : LDAP_OPT_OFF;
if (ldap_set_option(ldap, opt, val)) {
RETURN_FALSE;
}
} break;
/* options with control list value */
case LDAP_OPT_SERVER_CONTROLS:
case LDAP_OPT_CLIENT_CONTROLS:
{
LDAPControl *ctrl, **ctrls, **ctrlp;
zval **ctrlval, **val;
int ncontrols;
char error=0;
if ((Z_TYPE_PP(newval) != IS_ARRAY) || !(ncontrols = zend_hash_num_elements(Z_ARRVAL_PP(newval)))) {
php_error(E_WARNING, "Expected non-empty array value for this option");
RETURN_FALSE;
}
ctrls = emalloc((1 + ncontrols) * sizeof(*ctrls));
*ctrls = NULL;
ctrlp = ctrls;
zend_hash_internal_pointer_reset(Z_ARRVAL_PP(newval));
while (zend_hash_get_current_data(Z_ARRVAL_PP(newval), (void**)&ctrlval) == SUCCESS) {
if (Z_TYPE_PP(ctrlval) != IS_ARRAY) {
php_error(E_WARNING, "The array value must contain only arrays, where each array is a control");
error = 1;
break;
}
if (zend_hash_find(Z_ARRVAL_PP(ctrlval), "oid", sizeof("oid"), (void **) &val) == FAILURE) {
php_error(E_WARNING, "Control must have an oid key");
error = 1;
break;
}
ctrl = *ctrlp = emalloc(sizeof(**ctrlp));
convert_to_string_ex(val);
ctrl->ldctl_oid = Z_STRVAL_PP(val);
if (zend_hash_find(Z_ARRVAL_PP(ctrlval), "value", sizeof("value"), (void **) &val) == SUCCESS) {
convert_to_string_ex(val);
ctrl->ldctl_value.bv_val = Z_STRVAL_PP(val);
ctrl->ldctl_value.bv_len = Z_STRLEN_PP(val);
} else {
ctrl->ldctl_value.bv_val = NULL;
ctrl->ldctl_value.bv_len = 0;
}
if (zend_hash_find(Z_ARRVAL_PP(ctrlval), "iscritical", sizeof("iscritical"), (void **) &val) == SUCCESS) {
convert_to_boolean_ex(val);
ctrl->ldctl_iscritical = Z_BVAL_PP(val);
} else {
ctrl->ldctl_iscritical = 0;
}
++ctrlp;
*ctrlp = NULL;
zend_hash_move_forward(Z_ARRVAL_PP(newval));
}
if (!error) {
error = ldap_set_option(ldap, opt, ctrls);
}
ctrlp = ctrls;
while ( *ctrlp ) {
efree(*ctrlp);
ctrlp++;
}
efree(ctrls);
if (error) {
RETURN_FALSE;
}
} break;
default:
RETURN_FALSE;
}
RETURN_TRUE;
}
/* }}} */
/* {{{ proto boolean ldap_parse_result(int link, int result, int errcode, string matcheddn, string errmsg, array referrals)
Extract information from result */
PHP_FUNCTION(ldap_parse_result) {
LDAP *ldap;
LDAPMessage *ldap_result;
int rc, lerrcode;
char **lreferrals, **refp;
char *lmatcheddn, *lerrmsg;
pval **link, **result, **errcode, **matcheddn, **errmsg, **referrals;
int myargcount = ZEND_NUM_ARGS();
if (myargcount < 3 || myargcount > 6 || zend_get_parameters_ex(myargcount, &link, &result, &errcode, &matcheddn, &errmsg, &referrals) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) {
RETURN_FALSE;
}
ldap_result = _get_ldap_result(result);
if (ldap_result == NULL) {
RETURN_FALSE;
}
rc = ldap_parse_result( ldap, ldap_result, &lerrcode,
myargcount > 3 ? &lmatcheddn : NULL,
myargcount > 4 ? &lerrmsg : NULL,
myargcount > 5 ? &lreferrals : NULL,
NULL /* &serverctrls */,
0 );
if (rc != LDAP_SUCCESS ) {
php_error(E_WARNING,"LDAP: Unable to parse result: %s", ldap_err2string(_get_lderrno(ldap)));
RETURN_FALSE;
}
zval_dtor(*errcode);
ZVAL_LONG(*errcode, lerrcode);
/* Reverse -> fall through */
switch(myargcount) {
case 6 :
zval_dtor(*referrals);
if (array_init(*referrals) == FAILURE) {
php_error(E_ERROR, "Cannot initialize return value");
ldap_value_free(lreferrals);
ldap_memfree(lerrmsg);
ldap_memfree(lmatcheddn);
RETURN_FALSE;
}
if (lreferrals != NULL) {
refp = lreferrals;
while (*refp) {
add_next_index_string(*referrals, *refp, 1);
refp++;
}
ldap_value_free(lreferrals);
}
case 5 :
zval_dtor(*errmsg);
if (lerrmsg == NULL) {
ZVAL_EMPTY_STRING(*errmsg);
} else {
ZVAL_STRING(*errmsg, lerrmsg, 1);
ldap_memfree(lerrmsg);
}
case 4 :
zval_dtor(*matcheddn);
if (lmatcheddn == NULL) {
ZVAL_EMPTY_STRING(*matcheddn);
} else {
ZVAL_STRING(*matcheddn, lmatcheddn, 1);
ldap_memfree(lmatcheddn);
}
}
RETURN_TRUE;
}
/* }}} */
/* {{{ proto int ldap_first_reference(int link, int result)
Return first reference */
PHP_FUNCTION(ldap_first_reference)
{
pval **result, **link;
LDAP *ldap;
LDAPMessage *ldap_result;
LDAPMessage *ldap_result_entry;
LDAPLS_FETCH();
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result = _get_ldap_result(result);
if (ldap_result == NULL) RETURN_FALSE;
if ((ldap_result_entry = ldap_first_reference(ldap, ldap_result)) == NULL) {
RETURN_FALSE;
} else {
RETURN_LONG(zend_list_insert(ldap_result_entry, le_result_entry));
}
}
/* }}} */
/* {{{ proto int ldap_next_reference(int link, int entry)
Get next reference */
PHP_FUNCTION(ldap_next_reference)
{
pval **result_entry, **link;
LDAP *ldap;
LDAPMessage *ldap_result_entry, *ldap_result_entry_next;
LDAPLS_FETCH();
if (ZEND_NUM_ARGS() != 2 || zend_get_parameters_ex(2, &link,&result_entry) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result_entry);
if (ldap_result_entry == NULL) RETURN_FALSE;
if ((ldap_result_entry_next = ldap_next_reference(ldap, ldap_result_entry)) == NULL) {
RETURN_FALSE;
} else {
RETURN_LONG(zend_list_insert(ldap_result_entry_next, le_result_entry));
}
}
/* }}} */
/* {{{ proto boolean ldap_parse_reference(int link, int entry, array referrals)
Extract information from reference entry */
PHP_FUNCTION(ldap_parse_reference)
{
pval **link, **result_entry, **referrals;
LDAP *ldap;
LDAPMessage *ldap_result_entry;
char **lreferrals, **refp;
if (ZEND_NUM_ARGS() != 3 || zend_get_parameters_ex(3, &link, &result_entry, &referrals) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
ldap_result_entry = _get_ldap_result_entry(result_entry);
if (ldap_result_entry == NULL) RETURN_FALSE;
if (ldap_parse_reference(ldap, ldap_result_entry, &lreferrals,
NULL /* &serverctrls */,
0) != LDAP_SUCCESS) {
RETURN_FALSE;
}
zval_dtor(*referrals);
if (array_init(*referrals) == FAILURE) {
php_error(E_ERROR, "Cannot initialize return value");
ldap_value_free(lreferrals);
RETURN_FALSE;
}
if (lreferrals != NULL) {
refp = lreferrals;
while (*refp) {
add_next_index_string(*referrals, *refp, 1);
refp++;
}
ldap_value_free(lreferrals);
}
RETURN_TRUE;
}
/* }}} */
/* {{{ proto boolean ldap_rename(int link, string dn, string newrdn, string newparent, boolean deleteoldrdn);
Modify the name of an entry */
PHP_FUNCTION(ldap_rename)
{
pval **link, **dn, **newrdn, **newparent, **deleteoldrdn;
LDAP *ldap;
int rc;
if (ZEND_NUM_ARGS() != 5 || zend_get_parameters_ex(5, &link, &dn, &newrdn, &newparent, &deleteoldrdn) == FAILURE) {
WRONG_PARAM_COUNT;
}
ldap = _get_ldap_link(link);
if (ldap == NULL) RETURN_FALSE;
convert_to_string_ex(dn);
convert_to_string_ex(newrdn);
convert_to_string_ex(newparent);
convert_to_boolean_ex(deleteoldrdn);
#if ( LDAP_API_VERSION > 2000 ) || HAVE_NSLDAP
rc = ldap_rename_s(ldap, Z_STRVAL_PP(dn), Z_STRVAL_PP(newrdn), Z_STRVAL_PP(newparent), Z_BVAL_PP(deleteoldrdn), NULL, NULL);
#else
if (Z_STRLEN_PP(newparent) != 0) {
php_error(E_WARNING, "You are using old LDAP API, newparent must be the empty string, can only modify RDN");
RETURN_FALSE;
}
/* could support old APIs but need check for ldap_modrdn2()/ldap_modrdn() */
rc = ldap_modrdn2_s(ldap, Z_STRVAL_PP(dn), Z_STRVAL_PP(newrdn), Z_BVAL_PP(deleteoldrdn));
#endif
if (rc == LDAP_SUCCESS) {
RETURN_TRUE;
}
RETURN_FALSE;
}
/* }}} */
#endif
#ifdef STR_TRANSLATION
static void php_ldap_do_translate(INTERNAL_FUNCTION_PARAMETERS, int way) {
zval **value;
char *ldap_buf;
unsigned long ldap_len;
int result;
if (ZEND_NUM_ARGS() != 1 || zend_get_parameters_ex(1, &value) == FAILURE) {
WRONG_PARAM_COUNT;
}
convert_to_string_ex(value);
ldap_buf = (*value)->value.str.val;
ldap_len = (*value)->value.str.len;
if(ldap_len == 0) {
RETURN_FALSE;
}
if(way == 1) {
result = ldap_8859_to_t61(&ldap_buf, &ldap_len, 0);
} else {
result = ldap_t61_to_8859(&ldap_buf, &ldap_len, 0);
}
if (result == LDAP_SUCCESS) {
RETVAL_STRINGL(ldap_buf,ldap_len,1);
free(ldap_buf);
} else {
php_error(E_ERROR, "LDAP: Conversion from iso-8859-1 to t61 failed.");
RETVAL_FALSE;
}
return;
}
/* {{{ proto string ldap_t61_to_8859(string value)
Translate t61 characters to 8859 characters */
PHP_FUNCTION(ldap_t61_to_8859) {
php_ldap_do_translate(INTERNAL_FUNCTION_PARAM_PASSTHRU, 0);
}
/* }}} */
/* {{{ proto string ldap_8859_to_t61(string value)
Translate 8859 characters to t61 characters */
PHP_FUNCTION(ldap_8859_to_t61) {
php_ldap_do_translate(INTERNAL_FUNCTION_PARAM_PASSTHRU, 1);
}
/* }}} */
#endif