Kurt Zeilenga
da76c1951e
First-cut proxy authorization support.
2002-12-03 06:11:32 +00:00
Pierangelo Masarati
76bf91f553
remove #ifdef SLAP_FILTER_HASSUBORDINATES
2002-11-10 19:48:36 +00:00
Jong Hyuk Choi
3a9229a3e9
Use of slap_schema.si_ad_entryUUID in bdb_psearch()
2002-10-28 23:57:54 +00:00
Pierangelo Masarati
f07cabad0f
need to move #define here; on by default
2002-10-26 16:32:11 +00:00
Pierangelo Masarati
7b3f889ec1
fix hasSubordinate filtering; now it can be safely turned on
2002-10-26 16:18:31 +00:00
Jong Hyuk Choi
15c5943edd
Addition of servers/slapd/lcup.c and servers/slapd/back-bdb/lcup.c for persistent search
2002-10-25 17:57:03 +00:00
Jong Hyuk Choi
8074294f1d
LCUP persistent search code drop
2002-10-25 17:51:30 +00:00
Pierangelo Masarati
956f1d16aa
listener:
...
- use bervals for url and sockname
- pass connection_init() the listener struct pointer instead of each value
- don't copy them in the Connection struct 'cause they're not going to change
- define macros for legacy usage of c_listener_url and c_sockname
2002-10-24 10:03:52 +00:00
Kurt Zeilenga
acc32b9d9e
Basic framework for DIT Content Rules (not yet enforced)
2002-10-09 07:11:50 +00:00
Kurt Zeilenga
f5e6d1db41
#unifdef -DSCHEMA_DN
2002-09-29 04:30:38 +00:00
Pierangelo Masarati
8758a30bf2
#undef SLAP_X_FILTER_HASSUBORDINATES while I fix the entry lock problem ...
2002-09-10 10:10:11 +00:00
Pierangelo Masarati
d3ca441ae8
/*
...
* The original code performs ( n ) normalizations
* and ( n * ( n - 1 ) / 2 ) matches, which hide
* the same number of normalizations. The new code
* performs the same number of normalizations ( n )
* and ( n * ( n - 1 ) / 2 ) mem compares, far less
* expensive than an entire match, if a match is
* equivalent to a normalization and a mem compare ...
*
* This is far more memory expensive than the previous,
* but it can heavily improve performances when big
* chunks of data are added (typical example is a group
* with thousands of DN-syntax members; on my system:
* for members of 5-RDN DNs,
members orig bvmatch (dirty) new
1000 0m38.456s 0m0.553s 0m0.608s
2000 2m33.341s 0m0.851s 0m1.003s
* Moreover, 100 groups with 10000 members each were
* added in 37m27.933s (an analogous LDIF file was
* loaded into Active Directory in 38m28.682s, BTW).
*
* Maybe we could switch to the new algorithm when
* the number of values overcomes a given threshold?
*/
2002-09-02 19:41:03 +00:00
Kurt Zeilenga
af183089b8
unifdef -DSLAP_X_MRA_MATCH_DNATTRS
2002-09-01 00:33:20 +00:00
Kurt Zeilenga
c6052ac8b0
Add mr_usable_with_at() routine. Use both in generation
...
of rule uses, but also in test_filter_mra()
2002-08-31 21:23:45 +00:00
Pierangelo Masarati
e2ec62f09f
add matchingRuleUse to schema; use a berval instead of _oidlen in syntax and matching rule
2002-08-31 10:45:22 +00:00
Pierangelo Masarati
7e2317c842
add server side controls to back-ldap and back-meta
2002-08-29 14:39:31 +00:00
Pierangelo Masarati
fbc11bd16a
- added the capability to filter based on hasSubordinate attribute
...
to back-bdb, back-ldbm and back-sql (the latter with limitations);
- added handling of ":dn" attributes to extended rfc2254 filters
and to matched value filter
- altered the behavior of get_mra() when a matching rule is given:
now it checks whether it is compatible with the attribute syntax
and, in case it is, the given mr is used. In case of no type,
the check is delayed when filtering
2002-08-29 10:55:48 +00:00
Kurt Zeilenga
1086ffb438
Round one of subclass indexing for objectClass and structualObjectClasss.
...
add soc_cname to ObjectClass structure
2002-08-29 01:12:59 +00:00
Kurt Zeilenga
23efa07a99
use ldap_charray_*() instead of charray_*()
2002-08-24 00:55:24 +00:00
Pierangelo Masarati
a038ef68e6
added attr_merge/value_add functions that dela with single attribute; bervals for '*', '+' and '1.1' made available
2002-08-23 08:49:19 +00:00
Howard Chu
505a141c75
Use search callbacks in slap_sasl_checkpass and slap_auxprop_lookup,
...
use ACL_AUTH for acl checks.
2002-08-20 05:32:54 +00:00
Howard Chu
e5091f5926
Updated register_syntax, register_matching_rule for more convenient
...
calling from other modules
2002-08-17 01:29:18 +00:00
Pierangelo Masarati
b95ab4ac64
add function slap_modrdn2mods that prepares modifications list for delete/add old/new rdn values
2002-08-16 16:35:16 +00:00
Kurt Zeilenga
1c75a7f25c
Fix inverted bvmatch logic in modrdn
2002-08-12 08:45:20 +00:00
Howard Chu
07ebdca237
ITS#1893, use "schemadn" to configure subschemasubentry DN. (diff was
...
inaccessible, this is original code, not contributed.)
2002-08-10 03:10:52 +00:00
Howard Chu
554311a4c8
Fix cargv leak in recursive read_config()
2002-08-07 08:22:43 +00:00
Kurt Zeilenga
eb581e43e7
Fix for:
...
SASL regex segmentation faults with group based acls (ITS#1978)
based, in part, by patch submitted by Simon Wilkinson <simon@sxw.org.uk>.
2002-07-28 07:27:55 +00:00
Howard Chu
5a01db28e3
Moved slap_strcopy, slap_strncopy to lutil_strcopy, lutil_strncopy
2002-07-27 00:24:02 +00:00
Kurt Zeilenga
0a2a381d07
Fix for "no structuralObjectClass" when lastmod is off (ITS#1904)
2002-06-25 01:04:54 +00:00
Howard Chu
07a34489c6
Added saslAuthzTo and saslAuthzFrom to system schema.
...
Added sasl-authz-policy config keyword to control proxy authorization.
Moved sasl-related config processing to sasl.c:slap_sasl_config().
Moved other global defs used only in saslauthz.c into saslauthz.c.
2002-06-14 08:10:14 +00:00
Kurt Zeilenga
1410b3e7d9
An almost complete slap_sasl_setpass()
2002-06-12 00:13:29 +00:00
Kurt Zeilenga
19eca33ca3
Gentile HUP shutdown from Hallvard
2002-06-03 16:47:43 +00:00
Kurt Zeilenga
5c5b5455fb
VLV updates
2002-06-03 16:45:09 +00:00
Kurt Zeilenga
bdad40c696
Disallow addition of system schema via config files.
2002-05-30 05:23:37 +00:00
Howard Chu
6f47e13147
Cyrus 2 support now requires Cyrus 2.1.3. Adds support for in-directory
...
SASL secrets. (Only works with plaintext userpassword tho.)
2002-05-07 23:08:23 +00:00
Kurt Zeilenga
8c152396b9
Matched Values implementation (ITS#1776) based upon submission
...
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
add testxxx-matchedvalues
rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.
Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
2002-05-02 18:56:56 +00:00
Kurt Zeilenga
af02eee0d5
Reworking backend_check_restrictions for extensions
...
Should resolve ITS#1781.
2002-05-01 01:04:57 +00:00
Howard Chu
0f966d2fdb
Changed ldap_pvt_tls_get_my_dn and ldap_pvt_tls_get_peer_dn to store result
...
in dn parameter and return a result code.
Changed dnX509peerNormalize as above. Added debug message on failure to
retrieve client DN.
2002-04-30 13:52:49 +00:00
Howard Chu
8a5423ea8d
deleted sasl_external_x509dn_convert; X509 DNs are always converted to
...
normalized LDAP DNs now.
Changed dnDCEnormalize to dnX509normalize, added dnX509peerNormalize,
based on new ldap_X509dn2bv() etc.
2002-04-18 12:26:36 +00:00
Howard Chu
1bbd51da77
ITS#1712, rewritten dn_openssl2ldap(). Added dnDCEnormalize(), used by
...
dn_openssl2ldap() and sasl_external_x509dn_convert. Fixed realm handling
for foreign Kerberos realms embedded in usernames.
2002-04-16 08:46:25 +00:00
Pierangelo Masarati
c22f10f4ca
don't count operations per request if back-monitor is not built
2002-04-08 19:13:13 +00:00
Pierangelo Masarati
51e33154b3
count initiated/completed operations divided per request
2002-04-08 18:41:15 +00:00
Pierangelo Masarati
f4dba925ff
add a switch that enables/disables reverse lookups if configured with rlookups
2002-04-03 15:40:49 +00:00
Pierangelo Masarati
9bf3ccd0bf
allow attribute exclusion list in selective replica
2002-03-30 08:52:20 +00:00
Kurt Zeilenga
0be4d842bc
Update control framework
...
Misc cleanup
NT updates
2002-03-24 02:17:21 +00:00
Kurt Zeilenga
b56f7c7222
Add no-op mru_schema_info()...
...
Not sure how best to populate matchingRuleUses...
2002-03-11 03:06:34 +00:00
Kurt Zeilenga
c9c3a68496
Deprecate filter_print in favor of filter2bv.
2002-03-10 17:41:14 +00:00
Kurt Zeilenga
1880c23029
Replace get_filter generation of fstr with filter2bv().
2002-03-07 03:13:11 +00:00
Kurt Zeilenga
a71cd15182
Add normalize_validate_normalize() to be use instead of value_normalize()
...
where value has not yet been validated.
2002-03-01 18:05:47 +00:00
Kurt Zeilenga
c0fdb1aaca
Add a value_validate() function to be used by prior to value_normalize
...
calls as needed (compare/filters).
2002-03-01 17:36:22 +00:00
Howard Chu
81c3c311a8
Changed reqoid to struct berval
2002-02-15 16:27:31 +00:00
Kurt Zeilenga
2b71d70f2f
Reverse arguments of is_object_subclass and reverse backwards calls
2002-02-09 23:55:37 +00:00
Kurt Zeilenga
32fb8b0bff
Add ACL state recording to avoid multiple evaluation of
...
value-independent access controls.
2002-02-09 05:14:17 +00:00
Howard Chu
f50b75f0c2
Added replica attr=<attribute list> support to filter replog content
2002-02-08 06:44:33 +00:00
Kurt Zeilenga
057dda50d3
remove deadwood, e.g. slap_index2prefix()
2002-01-31 00:11:44 +00:00
Kurt Zeilenga
b6de12f552
revert constification of slap_init_user()
2002-01-29 19:01:15 +00:00
Kurt Zeilenga
0a31400d63
Some misc cleanup
2002-01-29 06:06:20 +00:00
Howard Chu
d937237987
Eliminated dn_normalize. No more migration.
2002-01-26 14:51:45 +00:00
Howard Chu
4191f39037
Changed slap_authz_info.sai_mech to struct berval.
...
Changed sasl_* to use struct bervals.
2002-01-26 13:57:41 +00:00
Howard Chu
6bac96b0bd
Changed dnParent to void instead of int. (It always returned success...)
2002-01-26 08:44:59 +00:00
Kurt Zeilenga
309870fa9c
Remove deprecated routines and a little lint.
2002-01-26 07:32:13 +00:00
Howard Chu
07d0f4e411
Changed be_issuffix and dnParent to take struct bervals.
...
Changed dn_rdnlen, assumes an already pretty/normalized DN.
Added slap_empty_bv, a zero-length non-NULL berval.
2002-01-26 05:27:28 +00:00
Kurt Zeilenga
3d8c269f2e
Update collective attribute schema
2002-01-19 22:33:07 +00:00
Kurt Zeilenga
8eaaa67db0
Move {add,replace,delete}_value() routines to frontend and share.
...
Add error detail reporting.
2002-01-19 19:54:48 +00:00
Pierangelo Masarati
48d40fb6c3
fix ad_cmp
2002-01-19 15:42:59 +00:00
Kurt Zeilenga
2c94c7915a
Modify ad_cmp() macro to support use as an ordering function.
2002-01-19 06:42:59 +00:00
Kurt Zeilenga
b713f42650
Cleanup prototypes
2002-01-19 05:13:14 +00:00
Howard Chu
e040c2dee0
Fix previous commit
2002-01-19 04:32:43 +00:00
Howard Chu
44f0efb44f
Defined some ObjectClass->soc_flags values, changed is_entry_*objectclass
...
macros to use flags
2002-01-19 02:58:00 +00:00
Pierangelo Masarati
1ea0d20e82
publish dnParent()
2002-01-17 17:04:11 +00:00
Kurt Zeilenga
7f0289a390
Move most of the new ber_*cmp routines to lber_pvt.h to keep them private,
...
rework them slightly to avoid computations which might result in underflow.
Rename them for consistency with other berval routines.
Remove some utf8 lint.
2002-01-16 18:16:15 +00:00
Pierangelo Masarati
af54eed042
added ber_[mem|case]cmp() macros for fast berval comparison; extensively used in acl and in dn_match macro at present
2002-01-16 11:36:47 +00:00
Kurt Zeilenga
21c8846e64
Fix last commit
2002-01-16 05:44:21 +00:00
Kurt Zeilenga
20af643fc4
more cleanup
2002-01-16 04:40:41 +00:00
Kurt Zeilenga
d2f5d75885
Remove unused deprecated DN routines.
...
Only dn_validate, dn_normalize, and dn_parent remain (for now).
2002-01-16 00:16:51 +00:00
Kurt Zeilenga
13af7fb073
Misc. cleanup, remove lint, remove unused deprecated functions, etc.
2002-01-15 07:29:15 +00:00
Howard Chu
ac1332cdb8
Renamed BVarray to BerVarray. Moved slapd:bvarray_{add,free} to
...
liblber:ber_bvarray_{add,free}.
2002-01-14 01:43:17 +00:00
Kurt Zeilenga
9a3dcc376c
Zap connection_internal_*
2002-01-13 18:05:16 +00:00
Pierangelo Masarati
3bddc61a2a
clarify macro name: dn_match = 1 if match, 0 otherwise
2002-01-12 17:42:44 +00:00
Pierangelo Masarati
e89d7b1280
some memory handling cleanup: check that memory is freed by who allocated it, or at least put a FIXME where not
2002-01-12 17:35:01 +00:00
Pierangelo Masarati
725e13dade
slap_strncopy function
2002-01-12 16:02:51 +00:00
Kurt Zeilenga
2d09d18de5
Add collective attribute system schema support.
2002-01-11 20:28:05 +00:00
Pierangelo Masarati
619f772459
listener monitor
2002-01-11 11:43:35 +00:00
Pierangelo Masarati
5dfbf93687
need this outside for back monitor ...
2002-01-11 10:46:58 +00:00
Kurt Zeilenga
c3b62aae91
Fix the bits
2002-01-10 22:54:24 +00:00
Kurt Zeilenga
55501e886f
Rework backend (lastmod + glue + system schema) flags
2002-01-10 22:34:11 +00:00
Howard Chu
54dae3d3d3
Fix str2anlist declaration, str is not const. (gets overwritten if
...
there is an error.)
2002-01-10 20:25:23 +00:00
Kurt Zeilenga
c816ebc225
Add Backend argument to entry_schema_check() to support system schema
...
checks (in addition to user application schema checks).
2002-01-10 19:37:03 +00:00
Kurt Zeilenga
6ed15e3350
Another round of operational attribute changes... more to follow.
2002-01-10 01:46:08 +00:00
Kurt Zeilenga
c80d93f2bb
Start of new operational attribute framework
2002-01-10 00:17:21 +00:00
Kurt Zeilenga
74421a28ec
Round 2 of subentry changes
2002-01-09 19:43:15 +00:00
Kurt Zeilenga
9b0585f393
Add very basic subentry search support.
2002-01-09 19:21:07 +00:00
Kurt Zeilenga
bc1cd95149
Rework control infrastructure a bit. Add subentries visibility control.
2002-01-09 06:29:54 +00:00
Kurt Zeilenga
2958cb4dd0
A subentries control framework
2002-01-09 00:05:49 +00:00
Kurt Zeilenga
e9342bc7a9
Don't use 'void *' unnecessarily.
2002-01-07 20:28:02 +00:00
Kurt Zeilenga
eaf3264184
Add some critical control checks.
2002-01-06 00:36:55 +00:00
Kurt Zeilenga
0e2af54a3f
Update copyright statements
2002-01-04 21:17:25 +00:00
Howard Chu
013b3a9f3d
Minor cleanup
2002-01-02 23:26:20 +00:00
Howard Chu
b15eebf50b
Minor cleanup. bvarray_add should return success/fail, like
...
ber_bvecadd does.
2002-01-02 13:03:46 +00:00
Howard Chu
f52cc9bab5
Change struct berval ** to BVarray
2002-01-02 11:00:36 +00:00
Howard Chu
743c402265
Changed search attrs from struct berval ** to AttributeName *
2001-12-31 11:35:52 +00:00
Howard Chu
e6d4c7dbcc
Added oidm_destroy
2001-12-31 04:35:02 +00:00
Howard Chu
185ff129b5
Change struct berval * to struct berval in various structures
2001-12-29 15:01:10 +00:00
Howard Chu
975a5e9a24
Added dnPretty2/dnNormalize2 using preallocated destination berval
2001-12-29 04:48:00 +00:00
Howard Chu
92c6c9c25d
Misc berval stuff.
2001-12-28 11:45:25 +00:00
Howard Chu
65636e0855
Changed dnExtractRdn to use a provided berval instead of allocating one.
...
Use ldap_dn2bv and ldap_rdn2bv instead of the *2str versions.
2001-12-28 10:04:53 +00:00
Howard Chu
d6a37432bd
Changed dn_rdn/dn_rdnlen to struct berval
2001-12-28 08:38:24 +00:00
Howard Chu
292c575c1f
Added dnPrettyNormal, do both Pretty and Normalize at once to save
...
some ldap_str2dn overhead.
2001-12-28 07:27:15 +00:00
Kurt Zeilenga
cefce9c965
dnExtractRDN should take a struct berval DN.
2001-12-27 17:17:01 +00:00
Pierangelo Masarati
70e7d58c7d
small improvement and prototyping
2001-12-27 15:15:30 +00:00
Kurt Zeilenga
cddf7e0e00
More struct berval DN changes
...
decrease dependency on dn_validate/dn_normalize
2001-12-27 07:13:13 +00:00
Kurt Zeilenga
f9c2dc3701
Clean up a few globals
2001-12-27 02:03:57 +00:00
Howard Chu
3e826ae1c7
More struct berval fixes for modrdn
2001-12-27 00:58:14 +00:00
Kurt Zeilenga
ef7a99ff99
Additional struct berval DN changes...
2001-12-26 23:26:55 +00:00
Kurt Zeilenga
21cecb3831
Update referral handling to use struct berval DNs.
2001-12-26 20:59:24 +00:00
Kurt Zeilenga
139e78e35c
Remove lint.
2001-12-26 16:52:26 +00:00
Kurt Zeilenga
21288fbb21
Misc cleanup and dn_normalize() zapping
...
Fix nameAndOptionalIdentifer syntax.
2001-12-26 16:42:35 +00:00
Howard Chu
2a3dc7ab8f
Moved bdb_strcopy to slap_strcopy
2001-12-26 15:52:46 +00:00
Howard Chu
d0add35348
Changed get_limits to struct berval*
2001-12-26 15:28:01 +00:00
Howard Chu
15f630545a
Changed ma_rule_text to struct berval.
...
Changed get_filter to struct bervals
2001-12-26 13:47:10 +00:00
Howard Chu
d474789d0d
First pass at converting bind to struct bervals
2001-12-26 11:41:38 +00:00
Howard Chu
68b1bbb89d
Changed search attrs to struct berval **.
...
Use typedefs for all backend functions, to minimize work in future API
updates. (back-*/external.h will never need updating in the future.)
2001-12-26 08:17:44 +00:00
Howard Chu
b96645af7d
More struct berval changes, dnNormalize migration...
2001-12-26 04:17:49 +00:00
Kurt Zeilenga
2dd27b0786
More struct berval DNs
2001-12-25 19:48:26 +00:00
Kurt Zeilenga
e08a10b853
Have replog() use struct berval DNs
2001-12-25 04:09:09 +00:00
Kurt Zeilenga
3336619c80
More "char *" to struct berval DN changes
2001-12-25 02:30:01 +00:00
Kurt Zeilenga
5ee89d6167
Use struct berval DNs for root DN and update DN
2001-12-25 00:05:26 +00:00
Kurt Zeilenga
f6085d3f82
Every quick mod to use a struct berval for e_dn/e_ndn. No bv_len yet.
2001-12-24 16:53:47 +00:00
Howard Chu
70194f9ad6
Changed suffix_alias() to use struct berval * in-place.
2001-12-24 16:29:18 +00:00
Kurt Zeilenga
883196d348
Clean up some symbol scoping
2001-12-24 06:36:44 +00:00
Kurt Zeilenga
d0abe6f59f
Misc DN cleanup, no functional changes
2001-12-24 06:00:02 +00:00
Kurt Zeilenga
e701812f27
Make note of deprecated DN routines. Need to write
...
"struct berval" versions
2001-12-24 04:39:15 +00:00
Kurt Zeilenga
7a6e80cdcd
Zap dn_match(), cleanup up prototype header
2001-12-23 20:23:15 +00:00
Kurt Zeilenga
0c28b66a75
use dnPretty instead of dn_pretty
2001-12-23 00:43:57 +00:00
Pierangelo Masarati
328d38713a
better handling of on-the-fly operational attrs by means of helpers
2001-12-22 14:24:13 +00:00
Pierangelo Masarati
e36bde9180
added backend-side support for on-the-fly operational attributes; added hasSubordinates to schema and back-ldbm
2001-12-22 11:50:16 +00:00
Kurt Zeilenga
5c0a8848cf
Add abstract object class checks and a bit of structuralObjectClass
...
optimization.
2001-12-20 01:41:44 +00:00
Kurt Zeilenga
1d6c8d8157
Add better error reporting.
...
Handle multiple SUP objectClasses.
2001-12-20 00:34:36 +00:00
Kurt Zeilenga
49d16c4dce
Add structuralObjectClass support and a bit of const'ification
2001-12-19 22:08:24 +00:00
Howard Chu
0b22897f37
Minor cleanup
2001-12-18 00:29:43 +00:00
Howard Chu
3bd8946ca0
from jon@symas.com - minor cleanup
2001-12-17 22:48:29 +00:00
Howard Chu
ff682be26e
Added acl_destroy, acl_free.
2001-12-15 12:41:53 +00:00
Howard Chu
ef0b308bea
Changed backglue configuration. Added noSubordinates arg to select_backend
...
to deal with glued subordinates.
2001-12-10 12:09:40 +00:00
Pierangelo Masarati
95f1740aa6
improvements to monitor backend: added a log entry that lists the current log level and can be modified via protocol at runtime, to change the log level; minor improvements; fixed a problem in dealing with dn normalization
2001-12-10 09:50:06 +00:00
Howard Chu
ebadb3737f
Added dn_issuffixbv() like dn_issuffix, but with bervals.
2001-12-09 03:02:29 +00:00
Howard Chu
acc2500114
Added ndn to replog args, eliminate unnecessary dn_normalize in replog.
2001-12-09 02:47:39 +00:00
Howard Chu
3a8075e9b0
Added new backglue pseudo-backend. Uses callbacks to glue different backends
...
together into a single searchable hierarchy.
2001-12-08 15:58:47 +00:00
Howard Chu
ad9d17d537
Added dn_rdnlen. Fixed rdn leak in limits.c.
2001-12-08 11:08:26 +00:00
Howard Chu
e2c2de11c3
Converted all use of dn_parent to the in-place version. (Fixed a pdn leak
...
in back-sql along the way.)
2001-12-08 10:37:42 +00:00
Howard Chu
3fce8e0e80
Turned dn_parent into dn_parent1, returning in-place pointer. Made
...
dn_parent return ch_strdup of dn_parent1 for compatibility.
2001-12-08 08:41:39 +00:00