archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Commits
1 Branch
0 Tags
2.0 GiB
Tree: daad8a087a
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'daad8a087a'
${ noResults }
windows-xp/Source/XPSP1/NT/net/diagnostics/netdiag/ldaptest.c

723 lines
20 KiB
Raw Normal View History

Add source files
4 years ago
  1. //++
  2. //
  3. // Copyright (C) Microsoft Corporation, 1987 - 1999
  4. //
  5. // Module Name:
  6. //
  7. // ldaptest.c
  8. //
  9. // Abstract:
  10. //
  11. // Queries into network drivers
  12. //
  13. // Author:
  14. //
  15. // Anilth - 4-20-1998
  16. //
  17. // Environment:
  18. //
  19. // User mode only.
  20. // Contains NT-specific code.
  21. //
  22. // Revision History:
  23. //
  24. //--
  26. #include "precomp.h"
  27. #include "malloc.h"
  29. BOOL TestLdapOnDc(IN PTESTED_DC TestedDc, NETDIAG_PARAMS* pParams, NETDIAG_RESULT* pResults);
  30. DWORD TestSpnOnDC(IN PTESTED_DC pDcInfo, NETDIAG_RESULT* pResults);
  32. HRESULT LDAPTest( NETDIAG_PARAMS* pParams, NETDIAG_RESULT* pResults)
  33. {
  34. HRESULT hr = S_OK;
  36. BOOL RetVal = TRUE;
  37. PTESTED_DOMAIN TestedDomain = pParams->pDomain;
  38. PTESTED_DC TestedDc = NULL;
  39. PLIST_ENTRY ListEntry;
  40. BOOLEAN OneLdapFailed = FALSE;
  41. BOOLEAN OneLdapWorked = FALSE;
  42. BOOL fSpnTested = FALSE;
  43. BOOL fSpnPassed = FALSE;
  45. NET_API_STATUS NetStatus;
  47. //if the machine is a member machine or DC, LDAP Test will get called.
  48. //Otherwise, the test will be skipped
  49. pResults->LDAP.fPerformed = TRUE;
  51. // assume link entry is initialized to 0000
  52. if(pResults->LDAP.lmsgOutput.Flink == NULL)
  53. InitializeListHead(&pResults->LDAP.lmsgOutput);
  55. PrintStatusMessage(pParams, 4, IDS_LDAP_STATUS_MSG, TestedDomain->PrintableDomainName);
  57. //
  58. // If a DC hasn't been discovered yet,
  59. // find one.
  60. //
  62. if ( TestedDomain->DcInfo == NULL )
  63. {
  64. LPTSTR pszDcType;
  66. if ( TestedDomain->fTriedToFindDcInfo )
  67. {
  68. CHK_HR_CONTEXT(pResults->LDAP, S_FALSE, IDS_LDAP_NODC);
  69. }
  71. pszDcType = LoadAndAllocString(IDS_DCTYPE_DC);
  72. NetStatus = DoDsGetDcName( pParams,
  73. pResults,
  74. &pResults->LDAP.lmsgOutput,
  75. TestedDomain,
  76. DS_DIRECTORY_SERVICE_PREFERRED,
  77. "DC",
  78. FALSE,
  79. &TestedDomain->DcInfo );
  80. Free(pszDcType);
  82. TestedDomain->fTriedToFindDcInfo = TRUE;
  84. if ( NetStatus != NO_ERROR )
  85. {
  86. CHK_HR_CONTEXT(pResults->LDAP, hr = HRESULT_FROM_WIN32(NetStatus), IDS_LDAP_NODC);
  87. }
  88. }
  92. //
  93. // Ensure the DC is running the Ds.
  94. //
  96. if ( (TestedDomain->DcInfo->Flags & DS_DS_FLAG) == 0 )
  97. {
  98. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0, IDS_LDAP_NOTRUNNINGDS,
  99. TestedDomain->DcInfo->DomainControllerName);
  100. }
  102. //
  103. // Test ldap on all of the found DCs in the domain.
  104. //
  106. for ( ListEntry = TestedDomain->TestedDcs.Flink ;
  107. ListEntry != &TestedDomain->TestedDcs ;
  108. ListEntry = ListEntry->Flink ) {
  111. //
  112. // Loop through the list of DCs in this domain
  113. //
  115. TestedDc = CONTAINING_RECORD( ListEntry, TESTED_DC, Next );
  117. //
  118. // Only run test on DCs that might support LDAP.
  119. //
  121. if ( TestedDc->Flags & DC_IS_NT5 )
  122. {
  123. if ( !TestLdapOnDc( TestedDc, pParams, pResults ) )
  124. OneLdapFailed = TRUE;
  125. else
  126. OneLdapWorked = TRUE;
  128. //test the SPN registration if this is a DC on the primary domain
  129. if (TestedDomain->fPrimaryDomain)
  130. {
  131. fSpnTested = TRUE;
  132. if (TestSpnOnDC(TestedDc, pResults))
  133. fSpnPassed = TRUE;
  134. }
  135. }
  136. else
  137. {
  138. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  139. IDS_LDAP_NOTRUNNINGDS_SKIP, TestedDc->ComputerName);
  140. }
  142. }
  144. //
  145. // If one of the DCs failed,
  146. // and none worked.
  147. // Don't do any more tests.
  148. //
  149. if ( OneLdapFailed && !OneLdapWorked )
  150. {
  151. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  152. IDS_LDAP_NOLDAPSERVERSWORK, TestedDomain->PrintableDomainName);
  154. CHK_HR_CONTEXT(pResults->LDAP, hr = E_FAIL, 0);
  155. }
  157. if ( fSpnTested && !fSpnPassed )
  158. {
  159. //IDS_LDAP_NO_SPN " [FATAL] The default SPNs are not properly registered on and DCs.\n"
  160. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  161. IDS_LDAP_NO_SPN);
  162. CHK_HR_CONTEXT(pResults->LDAP, hr = E_FAIL, 0);
  163. }
  165. L_ERR:
  167. //$REVIEW (nsun) we should return S_FALSE or S_OK
  168. //so that we can go on with other tests
  169. if (!FHrOK(hr))
  170. hr = S_FALSE;
  171. return hr;
  172. }
  174. DWORD TestSpnOnDC(IN PTESTED_DC pDcInfo, NETDIAG_RESULT* pResults)
  175. {
  176. WCHAR FlatName[ MAX_PATH + 1 ];
  177. PWSTR Dot ;
  178. HANDLE hDs = NULL;
  179. ULONG NetStatus ;
  180. PDS_NAME_RESULTW Result ;
  181. LPWSTR Flat = FlatName;
  182. LDAP *ld = NULL;
  183. int rc;
  184. LDAPMessage *e, *res;
  185. WCHAR *base_dn;
  186. WCHAR *search_dn, search_ava[ MAX_PATH + 30 ];
  187. WCHAR Domain[ MAX_PATH + 1 ];
  188. CHAR szDefaultFqdnSpn[MAX_PATH + 10];
  189. CHAR szDefaultShortSpn[MAX_PATH + 10];
  190. BOOL fFqdnSpnFound = FALSE;
  191. BOOL fShortSpnFound = FALSE;
  192. BOOL fFailQuerySpn = FALSE;
  194. USES_CONVERSION;
  196. //construct the default SPN's
  197. lstrcpy(szDefaultFqdnSpn, _T("HOST/"));
  198. lstrcat(szDefaultFqdnSpn, pResults->Global.szDnsHostName);
  199. lstrcpy(szDefaultShortSpn, _T("HOST/"));
  200. lstrcat(szDefaultShortSpn, W2T(pResults->Global.swzNetBiosName));
  202. wcscpy(Domain, GetSafeStringW(pDcInfo->TestedDomain->DnsDomainName ?
  203. pDcInfo->TestedDomain->DnsDomainName :
  204. pDcInfo->TestedDomain->NetbiosDomainName));
  206. ld = ldap_open(W2A(pDcInfo->ComputerName), LDAP_PORT);
  207. if (ld == NULL) {
  208. DebugMessage2("ldap_init failed = %x", LdapGetLastError());
  209. fFailQuerySpn = TRUE;
  210. goto L_ERROR;
  211. }
  213. rc = ldap_bind_s(ld, NULL, NULL, LDAP_AUTH_NEGOTIATE);
  214. if (rc != LDAP_SUCCESS) {
  215. DebugMessage2("ldap_bind failed = %x", LdapGetLastError());
  216. fFailQuerySpn = TRUE;
  217. goto L_ERROR;
  219. }
  221. NetStatus = DsBindW( NULL, Domain, &hDs );
  222. if ( NetStatus != 0 )
  223. {
  224. DebugMessage3("Failed to bind to DC of domain %ws, %#x\n",
  225. Domain, NetStatus );
  226. fFailQuerySpn = TRUE;
  227. goto L_ERROR;
  228. }
  230. Dot = wcschr( Domain, L'.' );
  232. if ( Dot )
  233. {
  234. *Dot = L'\0';
  235. }
  237. wcscpy( FlatName, Domain );
  239. if ( Dot )
  240. {
  241. *Dot = L'.' ;
  242. }
  244. wcscat( FlatName, L"\\" );
  245. wcscat( FlatName, pResults->Global.swzNetBiosName );
  246. wcscat( FlatName, L"$" );
  248. NetStatus = DsCrackNamesW(
  249. hDs,
  250. 0,
  251. DS_NT4_ACCOUNT_NAME,
  252. DS_FQDN_1779_NAME,
  253. 1,
  254. &Flat,
  255. &Result );
  257. if ( NetStatus != 0)
  258. {
  259. DebugMessage3("Failed to crack name %ws into the FQDN, %#x\n",
  260. FlatName, NetStatus );
  262. DsUnBind( &hDs );
  264. fFailQuerySpn = TRUE;
  265. goto L_ERROR;
  266. }
  268. search_dn = pResults->Global.swzNetBiosName;
  270. if (0 == Result->cItems)
  271. {
  272. DsUnBind( &hDs );
  274. fFailQuerySpn = TRUE;
  275. goto L_ERROR;
  276. }
  278. if (DS_NAME_NO_ERROR != Result->rItems[0].status || NULL == Result->rItems[0].pName)
  279. {
  280. DsUnBind( &hDs );
  282. fFailQuerySpn = TRUE;
  283. goto L_ERROR;
  284. }
  286. base_dn = wcschr(Result->rItems[0].pName, L',');
  288. if (!base_dn)
  289. base_dn = Result->rItems[0].pName;
  290. else
  291. base_dn++;
  293. DsUnBind( &hDs );
  295. swprintf(search_ava, L"(sAMAccountName=%s$)", search_dn);
  297. rc = ldap_search_s(ld, W2A(base_dn), LDAP_SCOPE_SUBTREE,
  298. W2A(search_ava), NULL, 0, &res);
  300. //base_dn can no longer be used because base_dn refers to that buffer
  301. DsFreeNameResultW( Result );
  303. if (rc != LDAP_SUCCESS) {
  304. DebugMessage2("ldap_search_s failed: %s", ldap_err2string(rc));
  305. fFailQuerySpn = TRUE;
  306. goto L_ERROR;
  307. }
  309. for (e = ldap_first_entry(ld, res);
  310. e;
  311. e = ldap_next_entry(ld, e))
  312. {
  313. BerElement *b;
  314. CHAR *attr;
  316. //IDS_LDAP_REG_SPN "Registered Service Principal Names:\n"
  317. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  318. IDS_LDAP_REG_SPN);
  320. for (attr = ldap_first_attribute(ld, e, &b);
  321. attr;
  322. attr = ldap_next_attribute(ld, e, b))
  323. {
  324. CHAR **values, **p;
  325. values = ldap_get_values(ld, e, attr);
  326. for (p = values; *p; p++)
  327. {
  328. if (strcmp(attr, "servicePrincipalName") == 0)
  329. {
  330. // IDS_LDAP_SPN_NAME " %s\n"
  331. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  332. IDS_LDAP_SPN_NAME, *p);
  334. if (0 == _stricmp(*p, szDefaultFqdnSpn))
  335. fFqdnSpnFound = TRUE;
  336. else if (0 == _stricmp(*p, szDefaultShortSpn))
  337. fShortSpnFound = TRUE;
  338. }
  339. }
  340. ldap_value_free(values);
  341. ldap_memfree(attr);
  342. }
  344. }
  346. ldap_msgfree(res);
  348. L_ERROR:
  349. if (ld)
  350. {
  351. ldap_unbind(ld);
  352. }
  354. //Only report fatal error when we successfully query SPN registration
  355. //and all DCs doesn't have the default SPN's
  356. if (fFailQuerySpn)
  357. {
  358. //IDS_LDAP_SPN_FAILURE "Failed to query SPN registration from DC %ws.\n"
  359. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  360. IDS_LDAP_SPN_FAILURE, pDcInfo->ComputerName);
  361. return TRUE;
  362. }
  363. else if (!fFqdnSpnFound || !fShortSpnFound)
  364. {
  365. //IDS_LDAP_SPN_MISSING " [WARNING] The default SPN registration for '%s' is missing on DC '%ws'.\n"
  366. if (!fFqdnSpnFound)
  367. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  368. IDS_LDAP_SPN_MISSING, szDefaultFqdnSpn, pDcInfo->ComputerName);
  370. if (!fShortSpnFound)
  371. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  372. IDS_LDAP_SPN_MISSING, szDefaultShortSpn, pDcInfo->ComputerName);
  374. return FALSE;
  375. }
  376. else
  377. return TRUE;
  378. }
  380. void LDAPGlobalPrint(IN NETDIAG_PARAMS *pParams, IN OUT NETDIAG_RESULT *pResults)
  381. {
  382. if (pParams->fVerbose || !FHrOK(pResults->LDAP.hr))
  383. {
  384. PrintNewLine(pParams, 2);
  385. PrintTestTitleResult(pParams, IDS_LDAP_LONG, IDS_LDAP_SHORT, pResults->LDAP.fPerformed,
  386. pResults->LDAP.hr, 0);
  388. if (!FHrOK(pResults->LDAP.hr))
  389. {
  390. if(pResults->LDAP.idsContext)
  391. PrintError(pParams, pResults->LDAP.idsContext, pResults->LDAP.hr);
  392. }
  394. PrintMessageList(pParams, &pResults->LDAP.lmsgOutput);
  395. }
  397. }
  399. void LDAPPerInterfacePrint(IN NETDIAG_PARAMS *pParams,
  400. IN OUT NETDIAG_RESULT *pResults,
  401. IN INTERFACE_RESULT *pIfResult)
  402. {
  403. // no perinterface information
  404. }
  406. void LDAPCleanup(IN NETDIAG_PARAMS *pParams,
  407. IN OUT NETDIAG_RESULT *pResults)
  408. {
  409. MessageListCleanUp(&pResults->LDAP.lmsgOutput);
  410. pResults->LDAP.lmsgOutput.Flink = NULL;
  411. }
  414. BOOL
  415. TestLdapOnDc(
  416. IN PTESTED_DC TestedDc,NETDIAG_PARAMS* pParams, NETDIAG_RESULT* pResults
  417. )
  418. /*++
  420. Routine Description:
  423. Ensure we can use LDAP focused at the specified DC
  425. Arguments:
  427. TestedDc - Description of DC to test
  429. Return Value:
  431. TRUE: Test suceeded.
  432. FALSE: Test failed
  434. --*/
  435. {
  436. NET_API_STATUS NetStatus;
  437. NTSTATUS Status;
  438. BOOL RetVal = TRUE;
  439. int LdapMessageId;
  440. PLDAPMessage LdapMessage = NULL;
  441. PLDAPMessage CurrentEntry;
  442. int LdapError;
  443. ULONG AuthType;
  444. LPSTR AuthTypeName;
  445. LPWSTR DcIpAddress;
  447. LDAP *LdapHandle = NULL;
  449. //
  450. // Avoid this test if the DC is already known to be down.
  451. //
  453. if ( TestedDc->Flags & DC_IS_DOWN ) {
  454. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  455. IDS_LDAP_DCDOWN, TestedDc->ComputerName);
  457. goto Cleanup;
  458. }
  460. //
  461. // If there is no IP Address,
  462. // get it.
  463. //
  465. if ( !GetIpAddressForDc( TestedDc ) ) {
  466. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  467. IDS_LDAP_NOIPADDR, TestedDc->ComputerName);
  468. RetVal = FALSE;
  469. goto Cleanup;
  470. }
  472. DcIpAddress = TestedDc->DcIpAddress;
  474. //
  475. // Loop trying each type of authentication.
  476. //
  478. for ( AuthType = 0; AuthType < 3; AuthType++ ) {
  479. int AuthMethod;
  480. SEC_WINNT_AUTH_IDENTITY_W NtAuthIdentity;
  481. LPSTR AuthGuru;
  483. //
  484. // Bind as appropropriate
  485. //
  487. RtlZeroMemory( &NtAuthIdentity, sizeof(NtAuthIdentity));
  488. NtAuthIdentity.Flags = SEC_WINNT_AUTH_IDENTITY_UNICODE;
  489. switch ( AuthType ) {
  490. case 0:
  491. AuthTypeName = "un-";
  492. break;
  493. case 1:
  494. AuthTypeName = "NTLM ";
  495. AuthMethod = LDAP_AUTH_NTLM;
  496. AuthGuru = NTLM_GURU;
  497. break;
  498. case 2:
  499. AuthTypeName = "Negotiate ";
  500. AuthMethod = LDAP_AUTH_NEGOTIATE;
  501. AuthGuru = KERBEROS_GURU;
  502. break;
  504. }
  506. //
  507. // Only Members and Domain controllers can use authenticated RPC.
  508. //
  510. if ( AuthType != 0 ) {
  511. if ( pResults->Global.pPrimaryDomainInfo->MachineRole == DsRole_RoleMemberWorkstation ||
  512. pResults->Global.pPrimaryDomainInfo->MachineRole == DsRole_RoleMemberServer ||
  513. pResults->Global.pPrimaryDomainInfo->MachineRole == DsRole_RoleBackupDomainController ||
  514. pResults->Global.pPrimaryDomainInfo->MachineRole == DsRole_RolePrimaryDomainController ) {
  516. //
  517. // If we're logged onto a local account,
  518. // we can't test authenticated RPC.
  519. //
  521. if ( pResults->Global.pLogonDomain == NULL ) {
  522. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  523. IDS_LDAP_LOGONASLOCALUSER,
  524. pResults->Global.pLogonDomainName,
  525. pResults->Global.pLogonUser,
  526. AuthTypeName, TestedDc->ComputerName);
  527. goto Cleanup;
  528. }
  530. } else {
  531. goto Cleanup;
  532. }
  533. }
  535. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  536. IDS_LDAP_DOAUTHEN,
  537. AuthTypeName, TestedDc->ComputerName);
  539. //
  540. // Cleanup from a previous iteration.
  541. //
  543. if ( LdapMessage != NULL )
  544. {
  545. ldap_msgfree( LdapMessage );
  546. LdapMessage = NULL;
  547. }
  549. if ( LdapHandle != NULL )
  550. {
  551. ldap_unbind( LdapHandle );
  552. LdapHandle = NULL;
  553. }
  555. //
  556. // Connect to the DC.
  557. //
  559. LdapHandle = ldap_openW( DcIpAddress, LDAP_PORT );
  561. if ( LdapHandle == NULL )
  562. {
  564. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  565. IDS_LDAP_CANNOTOPEN,
  566. TestedDc->ComputerName, DcIpAddress );
  567. goto Cleanup;
  568. }
  570. //
  571. // Bind to the DC.
  572. //
  574. if ( AuthType != 0 ) {
  575. LdapError = ldap_bind_s( LdapHandle, NULL, (char *)&NtAuthIdentity, AuthMethod );
  577. if ( LdapError != LDAP_SUCCESS ) {
  578. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  579. IDS_LDAP_CANNOTBIND,
  580. AuthTypeName, TestedDc->ComputerName, ldap_err2stringA(LdapError) );
  582. //
  583. // Try other authentication methods.
  584. //
  585. RetVal = FALSE;
  586. continue;
  587. }
  590. }
  593. //
  594. // Do a trivial search to isolate LDAP problems from authentication
  595. // problems
  596. //
  598. LdapError = ldap_search_sA(
  599. LdapHandle,
  600. NULL, // DN
  601. LDAP_SCOPE_BASE,
  602. "(objectClass=*)", // filter
  603. NULL,
  604. FALSE,
  605. &LdapMessage );
  607. if ( LdapError != LDAP_SUCCESS ) {
  608. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  609. IDS_LDAP_CANNOTSEARCH,
  610. AuthTypeName, TestedDc->ComputerName, ldap_err2stringA(LdapError) );
  611. goto Cleanup;
  612. }
  614. //
  615. // How many entries were returned.
  616. //
  617. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  618. IDS_LDAP_ENTRIES,
  619. ldap_count_entries( LdapHandle, LdapMessage ) );
  622. //
  623. // Print the entries.
  624. //
  626. CurrentEntry = ldap_first_entry( LdapHandle, LdapMessage );
  628. while ( CurrentEntry != NULL )
  629. {
  630. PVOID Context;
  631. char *AttrName;
  633. //
  634. // Test for error
  635. //
  636. if ( LdapHandle->ld_errno != 0 )
  637. {
  638. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  639. IDS_LDAP_CANNOTFIRSTENTRY,
  640. TestedDc->ComputerName, ldap_err2stringA(LdapHandle->ld_errno) );
  641. goto Cleanup;
  642. }
  644. //
  645. // Walk through the list of returned attributes.
  646. //
  648. AttrName = ldap_first_attributeA( LdapHandle, CurrentEntry, (PVOID)&Context );
  649. while ( AttrName != NULL )
  650. {
  651. PLDAP_BERVAL *Berval;
  654. //
  655. // Test for error
  656. //
  658. if ( LdapHandle->ld_errno != 0 ) {
  659. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  660. IDS_LDAP_CANNOTFIRSTATTR,
  661. TestedDc->ComputerName, ldap_err2stringA(LdapHandle->ld_errno) );
  662. goto Cleanup;
  663. }
  665. //
  666. // Grab the attribute and it's value
  667. //
  669. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  670. IDS_LDAP_ATTR, AttrName );
  672. Berval = ldap_get_values_lenA( LdapHandle, CurrentEntry, AttrName );
  674. if ( Berval == NULL )
  675. {
  676. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_Quiet, 0,
  677. IDS_LDAP_CANNOTLEN,
  678. TestedDc->ComputerName, ldap_err2stringA(LdapHandle->ld_errno) );
  679. goto Cleanup;
  680. }
  681. else
  682. {
  683. int i;
  684. for ( i=0; Berval[i] != NULL; i++ ) {
  685. AddIMessageToList(&pResults->LDAP.lmsgOutput, Nd_ReallyVerbose, 0,
  686. IDS_LDAP_VAL,
  687. Berval[i]->bv_len, Berval[i]->bv_val );
  688. }
  689. ldap_value_free_len( Berval );
  690. }
  693. //
  694. // Get the next entry
  695. //
  697. AttrName = ldap_next_attributeA( LdapHandle, CurrentEntry, (PVOID)Context );
  698. }
  701. //
  702. // Get the next entry
  703. //
  705. CurrentEntry = ldap_next_entry( LdapHandle, CurrentEntry );
  707. }
  709. }
  713. Cleanup:
  716. if ( LdapMessage != NULL ) {
  717. ldap_msgfree( LdapMessage );
  718. }
  720. return RetVal;
  721. }