tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-27 07:44:04 +02:00
Code Issues Packages Projects Releases Wiki Activity

LdapConnection: Fix ldap return type issues

Browse Source 
ldap_connect() in php >= 8.1 returns `LDAP\Connection` instead of `resource` and all ldap_*() methods expects the returned type. But function defined return type and $ds type confuses phpstan, so i removed the hardcoded type hint.
This commit is contained in:
Sukhwinder Dhillon 2024-01-23 16:51:17 +01:00 committed by Johannes Meyer
parent b270161455
commit 31e3455c79
1 changed files with 32 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

42
library/Icinga/Protocol/Ldap/LdapConnection.php
View File

@ -89,8 +89,6 @@ class LdapConnection implements Selectable, Inspectable
/** /**
* The LDAP link identifier being used * The LDAP link identifier being used
*
* @var resource
*/ */
protected $ds; protected $ds;
@ -248,7 +246,7 @@ class LdapConnection implements Selectable, Inspectable
* *
* Establishes a connection if necessary. * Establishes a connection if necessary.
* *
* @return resource * @throws LdapException
*/ */
public function getConnection() public function getConnection()
{ {
@ -617,9 +615,11 @@ class LdapConnection implements Selectable, Inspectable
/** /**
* Return whether an entry identified by the given distinguished name exists * Return whether an entry identified by the given distinguished name exists
* *
* @param string $dn * @param string $dn
* *
* @return bool * @return bool
*
* @throws LdapException
*/ */
public function hasDn($dn) public function hasDn($dn)
{ {
@ -627,6 +627,10 @@ class LdapConnection implements Selectable, Inspectable
$this->bind(); $this->bind();
$result = ldap_read($ds, $dn, '(objectClass=*)', array('objectClass')); $result = ldap_read($ds, $dn, '(objectClass=*)', array('objectClass'));
if ($result === false) {
return false;
}
return ldap_count_entries($ds, $result) > 0; return ldap_count_entries($ds, $result) > 0;
} }
@ -654,6 +658,10 @@ class LdapConnection implements Selectable, Inspectable
} }
$children = ldap_get_entries($ds, $result); $children = ldap_get_entries($ds, $result);
if ($children === false) {
return false;
}
for ($i = 0; $i < $children['count']; $i++) { for ($i = 0; $i < $children['count']; $i++) {
$result = $this->deleteRecursively($children[$i]['dn']); $result = $this->deleteRecursively($children[$i]['dn']);
if (! $result) { if (! $result) {
@ -785,6 +793,10 @@ class LdapConnection implements Selectable, Inspectable
$count = 0; $count = 0;
$entries = array(); $entries = array();
$entry = ldap_first_entry($ds, $results); $entry = ldap_first_entry($ds, $results);
if ($entry === false) {
return [];
}
do { do {
if ($unfoldAttribute) { if ($unfoldAttribute) {
$rows = $this->cleanupAttributes(ldap_get_attributes($ds, $entry), $fields, $unfoldAttribute); $rows = $this->cleanupAttributes(ldap_get_attributes($ds, $entry), $fields, $unfoldAttribute);
@ -952,6 +964,10 @@ class LdapConnection implements Selectable, Inspectable
} }
$entry = ldap_first_entry($ds, $results); $entry = ldap_first_entry($ds, $results);
if ($entry === false) {
return [];
}
do { do {
if ($unfoldAttribute) { if ($unfoldAttribute) {
$rows = $this->cleanupAttributes(ldap_get_attributes($ds, $entry), $fields, $unfoldAttribute); $rows = $this->cleanupAttributes(ldap_get_attributes($ds, $entry), $fields, $unfoldAttribute);
@ -1184,9 +1200,7 @@ class LdapConnection implements Selectable, Inspectable
/** /**
* Prepare and establish a connection with the LDAP server * Prepare and establish a connection with the LDAP server
* *
* @param Inspection $info Optional inspection to fill with diagnostic info * @param ?Inspection $info Optional inspection to fill with diagnostic info
*
* @return resource A LDAP link identifier
* *
* @throws LdapException In case the connection is not possible * @throws LdapException In case the connection is not possible
*/ */
@ -1199,6 +1213,9 @@ class LdapConnection implements Selectable, Inspectable
$hostname = $this->normalizeHostname($this->hostname); $hostname = $this->normalizeHostname($this->hostname);
$ds = ldap_connect($hostname); $ds = ldap_connect($hostname);
if ($ds === false) {
throw new LdapException('Failed to connect to LDAP');
}
// Set a proper timeout for each connection // Set a proper timeout for each connection
ldap_set_option($ds, LDAP_OPT_NETWORK_TIMEOUT, $this->timeout); ldap_set_option($ds, LDAP_OPT_NETWORK_TIMEOUT, $this->timeout);
@ -1228,7 +1245,7 @@ class LdapConnection implements Selectable, Inspectable
} }
/** /**
* Perform a LDAP search and return the result * Perform a LDAP search and return the result or false on error
* *
* @param LdapQuery $query * @param LdapQuery $query
* @param array $attributes An array of the required attributes * @param array $attributes An array of the required attributes
@ -1238,8 +1255,6 @@ class LdapConnection implements Selectable, Inspectable
* @param int $deref * @param int $deref
* @param array $controls LDAP Controls to send with the request (Only supported with PHP v7.3+) * @param array $controls LDAP Controls to send with the request (Only supported with PHP v7.3+)
* *
* @return resource|bool A search result identifier or false on error
*
* @throws LogicException If the LDAP query search scope is unsupported * @throws LogicException If the LDAP query search scope is unsupported
*/ */
public function ldapSearch( public function ldapSearch(
@ -1553,6 +1568,13 @@ class LdapConnection implements Selectable, Inspectable
return $insp; return $insp;
} }
/**
* Normalize all given hostnames to a valid LDAP URL
*
* @param string $hostname
*
* @return string
*/
protected function normalizeHostname($hostname) protected function normalizeHostname($hostname)
{ {
$scheme = $this->encryption === static::LDAPS ? 'ldaps://' : 'ldap://'; $scheme = $this->encryption === static::LDAPS ? 'ldaps://' : 'ldap://';