int
LDAP_CALL
ldap_simple_bind( LDAP *ld, const char *dn, const char *passwd )
{
int rc;
LDAPDebug( LDAP_DEBUG_TRACE, "ldap_simple_bind\n", 0, 0, 0 );
if ( !NSLDAPI_VALID_LDAP_POINTER( ld )) {
return( -1 );
}
rc = simple_bind_nolock( ld, dn, passwd, 1 );
return( rc );
}
int
LDAP_CALL
ldap_simple_bind( LDAP *ld, const char *dn, const char *passwd )
{
int rc;
LDAPDebug( LDAP_DEBUG_TRACE, "ldap_simple_bind\n", 0, 0, 0 );
if ( !NSLDAPI_VALID_LDAP_POINTER( ld )) {
return( LDAP_PARAM_ERROR );
}
if ( ( ld->ld_options & LDAP_BITOPT_RECONNECT ) != 0 ) {
nsldapi_handle_reconnect( ld );
}
rc = simple_bind_nolock( ld, dn, passwd, 1 );
return( rc );
}
/*
* simple_bindifnot_s() is like ldap_simple_bind_s() except that it only does
* a bind if the default connection is not currently bound.
* If a successful bind using the same DN has already taken place we just
* return LDAP_SUCCESS without conversing with the server at all.
*/
static int
simple_bindifnot_s( LDAP *ld, const char *dn, const char *passwd )
{
int msgid, rc;
LDAPMessage *result;
char *binddn;
LDAPDebug( LDAP_DEBUG_TRACE, "simple_bindifnot_s\n", 0, 0, 0 );
if ( !NSLDAPI_VALID_LDAP_POINTER( ld )) {
return( LDAP_PARAM_ERROR );
}
if ( dn == NULL ) {
dn = ""; /* to make comparisons simpler */
}
/*
* if we are already bound using the same DN, just return LDAP_SUCCESS.
*/
if ( NULL != ( binddn = nsldapi_get_binddn( ld ))
&& 0 == strcmp( dn, binddn )) {
rc = LDAP_SUCCESS;
LDAP_SET_LDERRNO( ld, rc, NULL, NULL );
return rc;
}
/*
* if the default connection has been lost and is now marked dead,
* dispose of the default connection so it will get re-established.
*
* if not, clear the bind DN and status to ensure that we don't
* report the wrong bind DN to a different thread while waiting
* for our bind result to return from the server.
*/
LDAP_MUTEX_LOCK( ld, LDAP_CONN_LOCK );
if ( NULL != ld->ld_defconn ) {
if ( LDAP_CONNST_DEAD == ld->ld_defconn->lconn_status ) {
nsldapi_free_connection( ld, ld->ld_defconn, NULL, NULL, 1, 0 );
ld->ld_defconn = NULL;
} else if ( ld->ld_defconn->lconn_binddn != NULL ) {
NSLDAPI_FREE( ld->ld_defconn->lconn_binddn );
ld->ld_defconn->lconn_binddn = NULL;
ld->ld_defconn->lconn_bound = 0;
}
}
LDAP_MUTEX_UNLOCK( ld, LDAP_CONN_LOCK );
/*
* finally, bind (this will open a new connection if necessary)
*
* do everything under the protection of the result lock to
* ensure that only one thread will be in this code at a time.
* XXXmcs: we should use a condition variable instead?
*/
LDAP_MUTEX_LOCK( ld, LDAP_RESULT_LOCK );
if ( (msgid = simple_bind_nolock( ld, dn, passwd, 0 )) == -1 ) {
rc = LDAP_GET_LDERRNO( ld, NULL, NULL );
goto unlock_and_return;
}
/*
* Note that at this point the bind request is on its way to the
* server and at any time now we will either be bound as the new
* DN (if the bind succeeded) or we will be bound as anonymous (if
* the bind failed).
*/
/*
* Wait for the bind result. Code inside result.c:read1msg()
* takes care of setting the connection's bind DN and status.
*/
if ( nsldapi_result_nolock( ld, msgid, 1, 0, (struct timeval *) 0,
&result ) == -1 ) {
rc = LDAP_GET_LDERRNO( ld, NULL, NULL );
goto unlock_and_return;
}
rc = ldap_result2error( ld, result, 1 );
unlock_and_return:
LDAP_MUTEX_UNLOCK( ld, LDAP_RESULT_LOCK );
return( rc );
}