Commit Graph

428 Commits

Author SHA1 Message Date
Kurt Zeilenga
43f3e1e9b2 Remove not to be implemented control. 2000-06-06 04:50:24 +00:00
Kurt Zeilenga
bf3c642e68 Complete group ACL impl. under new schema code 2000-06-06 02:11:27 +00:00
Kurt Zeilenga
5278e67b28 Remove lint 2000-06-06 02:11:01 +00:00
Kurt Zeilenga
4a1f646682 Move experimental Back-BDB2 to Attic 2000-06-06 01:23:17 +00:00
Mark Valence
08f8cecddc Fix broken non-schema build (var not defined). 2000-06-05 06:00:15 +00:00
Mark Valence
7401eddb02 Keep from ldbm_sync'ing a DBCache unless it has been changed. 2000-06-05 05:10:30 +00:00
Kurt Zeilenga
ea069cb7c2 New indexer/filter codes (test suite works) with cheats
Updated NT Project files (with Cyrus SASL library depend)
2000-06-04 22:59:38 +00:00
Kurt Zeilenga
4b352c57ed Raise MAXDBCACHE to 128. 2000-06-03 03:37:02 +00:00
Kurt Zeilenga
287de3517d SLAPD_SCHEMA_NOT_COMPAT: working tests 1-4! 2000-05-29 01:08:09 +00:00
Kurt Zeilenga
30c43c307c SLAPD_SCHEMA_NOT_COMPAT: working modify? need additional match
routines, such as distinguishedNameMatch, to be sure.
2000-05-28 23:51:39 +00:00
Kurt Zeilenga
13daacdbda Fix error text handling 2000-05-28 22:38:21 +00:00
Kurt Zeilenga
4d835c0532 modify ldbm_modify_internal to return error text 2000-05-28 20:44:08 +00:00
Kurt Zeilenga
7a97873274 SLAPD_SCHEMA_NOT_COMPAT: working test005-modrdn! 2000-05-28 19:54:07 +00:00
Kurt Zeilenga
9e9be9c283 SLAPD_SCHEMA_NOT_COMPAT: Mostly working modrdn 2000-05-28 17:26:30 +00:00
Kurt Zeilenga
439c0c796d SLAPD_SCHEMA_NOT_COMPAT: Mostly work modify 2000-05-28 16:36:34 +00:00
Kurt Zeilenga
5904e0013f SLAPD_SCHEMA_NOT_COMPAT: add missing AttributeDescriptions 2000-05-28 01:36:03 +00:00
Kurt Zeilenga
3d26427c02 SLAPD_SCHEMA_NOT_COMPAT: fix bind acls 2000-05-27 23:16:30 +00:00
Kurt Zeilenga
b813a5ba30 SLAPD_SCHEMA_NOT_COMPAT: prelim ACL work 2000-05-27 19:33:08 +00:00
Kurt Zeilenga
dab0793d0c Working test001 and test002. 2000-05-27 19:21:28 +00:00
Kurt Zeilenga
8dbd32687e SLAPD_SCHEMA_NOT_COMPAT: disable indexing 2000-05-27 06:23:25 +00:00
Kurt Zeilenga
5b13d847e1 Unneeded 2000-05-26 05:48:23 +00:00
Kurt Zeilenga
e0fc97bfa7 DB3 fixes 2000-05-26 05:47:02 +00:00
Kurt Zeilenga
522761dc17 SLAPD_SCHEMA_NOT_COMPAT: Fix misuse of attrs_find 2000-05-24 18:00:30 +00:00
Kurt Zeilenga
35a2912388 SLAPD_SCHEMA_NOT_COMPAT: fix add bug 2000-05-23 18:20:38 +00:00
Kurt Zeilenga
bf3a229423 SLAPD_SCHEMA_NOT_COMPAT: cleanup 2000-05-23 17:00:46 +00:00
Kurt Zeilenga
60802201e3 Const'ification
SASL mech removed from backend bind callback (as SASL is managed by frontend)
Changes to some backends are untested (as I don't have all dependent
  software install)
2000-05-22 03:46:57 +00:00
Kurt Zeilenga
b2f56a7318 SLAPD_SCHEMA_NOT_COMPAT: framework for value_match() and value_find() 2000-05-21 22:46:51 +00:00
Kurt Zeilenga
074be5fb5a SLAPD_SCHEMA_NOT_COMPAT: numerous changes to syntax flags, mostly minor
added new value_normalize() code
	need LDAPsyntaxes X- field support
2000-05-18 17:21:42 +00:00
Kurt Zeilenga
ae7d89fa1e SLAPD_SCHEMA_NOT_COMPAT addl. filter changes (a work in progress). 2000-05-15 00:41:29 +00:00
Kurt Zeilenga
4bc786f34b Y2k copyright update 2000-05-13 02:47:56 +00:00
Howard Chu
3d5553abc2 Removed XLDFLAGS, unnecessary for modules. 2000-05-11 09:33:34 +00:00
Howard Chu
dcad3d9569 Undo slapd/add.c rev 1.54; back-bdb2 and back-ldbm were the only backends
that called entry_free() on failure. This change would cause a memory leak
from all the other backends. Instead, remove the entry_free calls in these
two backends and let the frontend take care of it for everyone.
2000-05-10 16:36:46 +00:00
Kurt Zeilenga
dcc943e528 move default "directory" 2000-05-03 19:01:29 +00:00
Kurt Zeilenga
16937cb91d remove SASL bind call. Frontend code coming. 2000-04-25 13:10:31 +00:00
Kurt Zeilenga
3bad06d52b entry_schema_check() rename 2000-04-25 13:07:14 +00:00
Kurt Zeilenga
2dc6185a92 LDAP_OPERATIONS_ERROR -> LDAP_OTHER
and other misc changes
2000-04-25 13:06:22 +00:00
Kurt Zeilenga
ebfb0b8261 Move presence index change outside of values for loop. 2000-03-20 23:38:38 +00:00
Kurt Zeilenga
abbd5ec2fa fix up comment 2000-03-17 22:57:49 +00:00
Kurt Zeilenga
3e5c381d3a Need SOFTADD fix for previous fix 2000-03-17 18:31:40 +00:00
Kurt Zeilenga
d1803fce0a Fix multivalued indices. Need to add indices of remaining
values after delete of any value.
2000-03-17 18:22:16 +00:00
Kurt Zeilenga
28c6217a12 s/userPassword/password/ (variable name) 2000-03-17 02:06:50 +00:00
Kurt Zeilenga
4710c74605 Rework error handling. Add error descriptions.
Don't use LDAP_OPERATIONS_ERROR for internal errors.  Use LDAP_OTHER
instead.  (more changes needed in this area)
2000-03-03 22:37:06 +00:00
Kurt Zeilenga
5681a79d96 StartTLS now grabs conn->c_mutex before mucking with connection.
Add comment concerning sequencing issues which need to be resolved
by reworking of connection state machine.  Add note that a race
condition exists until this rework is complete.
Rework extended operations to return pointer to static error text.
2000-03-02 20:36:53 +00:00
Kurt Zeilenga
ac7f6c2e37 Replace do_*() return -1 with return SLAPD_DISCONNECT.
Only return SLAPD_DISCONNECT with a send_ldap_disconnect()
was called.
Add initial code for support predetermined filter results
when filter is undefined (or known to be true or false).
2000-02-29 23:48:01 +00:00
Kurt Zeilenga
4091381660 Yet another round of SLAPD_SCHEMA_NOT_COMPAT changes, including:
limited subtype support, modlist handling, filter updates,
lastmod attribute handling.
2000-02-28 21:16:05 +00:00
Kurt Zeilenga
ceb6412e62 More -DSLAPD_SCHEMA_NOT_COMPAT changes
Not hidden: "<anonymous>" modifiersname
2000-02-15 18:57:07 +00:00
Kurt Zeilenga
0dbaf87730 Another round of changes behind -DSLAPD_SCHEMA_NOT_COMPAT
plus these changes unhidden changes:
	remove now meaning --enable-discreteaci configure option
	fix ITS#451, slapd filters
	Add ber_bvecadd() to support above
	constify ldap_pvt_find_wildcard() and misc slapd routines
	renamed some slap.h macros
	likely broken something
2000-02-14 20:57:34 +00:00
Kurt Zeilenga
36b0423311 Add Modification/Modifications structures for -DSLAPD_SCHEMA_NOT_COMPAT 2000-02-07 20:37:10 +00:00
Kurt Zeilenga
bc51bd5180 Yet another round of SLAPD_SCHEMA_NOT_COMPAT changes...
Changes outside of #ifdef include three value filter processing.
2000-02-06 21:09:44 +00:00
Kurt Zeilenga
f9195f9b6f Another round of SLAPD_SCHEMA_NOT_COMPAT changes including
basic structures for handing language tags and binary option
(but less actual code to actually support them).  Provided
for reference only.  Will not even compile.
2000-02-05 05:01:41 +00:00
Kurt Zeilenga
86cedc6ac7 ITS#439: Fix logic error 2000-02-04 17:49:32 +00:00
Kurt Zeilenga
3a6e906194 Replace -DSLAPD_SCHEMA_COMPAT with -USLAPD_SCHEMA_NOT_COMPAT 2000-01-31 22:14:16 +00:00
Kurt Zeilenga
d298e35514 Add SLAP_SYNTAX_BINARY flag to indicate binary storage is used for
attributes of the syntax.  Such attribute values be transferred
using binary syntax unless ber2str/str2ber routines are provided.
Used in conjunction with ";binary" attribute description option
and/or the Binary syntax.
2000-01-31 01:49:44 +00:00
Kurt Zeilenga
ad262b3ac6 Fix minor problems with proceeding commit which broken old schema compat 2000-01-28 21:20:28 +00:00
Kurt Zeilenga
ce56fbcba8 Remove ai_syntaxinfo (syntax) from AttrInfo. Call attr_syntax() directly. 2000-01-28 21:10:34 +00:00
Kurt Zeilenga
cca2bdcb40 Move INDEX_ macros from back-ldbm.h to slap.h and prefix with SLAP_
Move AttrInfo from back-ldbm.h to attr.c
2000-01-28 20:38:00 +00:00
Kurt Zeilenga
17f1024ad5 Fix -DSLAPD_SCHEMA_NOT_COMPAT syntax error in last commit 2000-01-28 20:10:25 +00:00
Kurt Zeilenga
c5da0c76ce Additional changes to migrate to new schema codes
Still not usable.
2000-01-28 20:01:00 +00:00
Kurt Zeilenga
51190984ee place old schema codes behind -DSLAPD_SCHEMA_COMPAT 2000-01-28 01:17:58 +00:00
Kurt Zeilenga
9fec129997 Second round of schema changes
Revert normalization to matching rule per discussions with Julio.
May need separate normalization routines for stored value and asserted
value. Currently rely on passed in syntax/mr to allow "special" behavior.
Reworked filters to pass struct berval * instead of char *. (needs work)
Validation, normalization and matching needed.
2000-01-25 21:13:31 +00:00
Kurt Zeilenga
6437785a82 Initial implementation of Kerberos password verification for
simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.
2000-01-08 18:42:11 +00:00
Luke Howard
a1ccf169da Filled in Cyrus SASL authz/storage callbacks for all backends
(callbacks not yet implemented though).
2000-01-02 05:42:14 +00:00
Luke Howard
9b4e3b2234 Merged in preliminary support for Cyrus SASL library;
support for DCE slash-delimited, left-to-right DNs;
support for a domain socket transport (enable with
--enable-ldapi); and extensions to URL parsing to
support the latter transport.
2000-01-02 01:21:25 +00:00
Kurt Zeilenga
da93ca8c5e Remove DNS_DN experimental code. 1999-12-18 19:54:22 +00:00
Howard Chu
0fa6f1df1e Tentative fix for ITS #402. (Not tested yet.) If successful, this patch
should also be applied to back-bdb2/idl.c.
1999-12-17 10:04:31 +00:00
Kurt Zeilenga
6253e7c278 Updated sasl response to support returning of referrals.
Updates to extended operation framework to support arbitrary
referrals and extended results without OIDs.
Updated passwd extended operation to support returning update_refs
as needed.  Needs replog support.
1999-12-15 23:22:47 +00:00
Kurt Zeilenga
b1639dadd6 Remove lint
Add copyrights
1999-12-13 04:53:59 +00:00
Kurt Zeilenga
3eef87beeb Stop reducing number of substring candiadates when there is only two or
less left.  Based upon suggestion made by bert hubert <ahu@casema.net>
1999-12-12 19:59:05 +00:00
Kurt Zeilenga
01ab716e8a ITS#394: index presence bug fix 1999-12-10 18:07:24 +00:00
Kurt Zeilenga
431dad371c Fix slapd SASL/ExternalOps encoding
Add controls to extended ops API signatures, need impl.
Update password to support optional server side generation of
new password, verification of old password, and changing of
non-bound user's passwords.
1999-12-10 04:52:32 +00:00
Kurt Zeilenga
354d0d5b50 Modify password code such that backend end routine calls into
frontend to complete parsing of extended op reqdata.
Modify password extended operation to allow optional id (DN)
entry to change (not tested).  Also, provide room to allow
server side password generation (not implemented).  Added optional old
password field to support proxying (not implemented).
Need to implement replog() support.
1999-12-09 21:30:32 +00:00
Kurt Zeilenga
26c7d69e8c Update for new password codes for MSVC5 1999-12-08 06:44:22 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
1999-12-08 04:37:59 +00:00
Kurt Zeilenga
831bfa760e reduce slap_passwd_check to simple form 1999-12-06 21:42:10 +00:00
Kurt Zeilenga
10649f5601 adjust to kerberos/passwd rearrangements. 1999-11-24 00:49:02 +00:00
Kurt Zeilenga
42bb3e2e85 Move userPassord and krbName authentication routines to the frontend. 1999-11-23 19:00:09 +00:00
Kurt Zeilenga
c49ee66b78 Plug memory leak. 1999-11-21 23:20:25 +00:00
Kurt Zeilenga
bbeec83869 ITS#357 (cont): Don't crash on at_cn == NULL. 1999-11-17 22:53:54 +00:00
Kurt Zeilenga
8032f5885d ITS#357: at_cn == NULL causes crash 1999-11-17 22:43:07 +00:00
Kurt Zeilenga
6f497089f5 Do not maintain a presence search on 'objectclass' as all entries
*should* have an 'objectclass' attribute present.
1999-11-02 23:13:40 +00:00
Howard Chu
bacc581531 Removed explicit include of <ac/param.h> because it must be included
after <stdlib.h>, but <stdlib.h> is included in slap.h. Moved <ac/param.h>
include into slap.h.
1999-11-02 19:39:56 +00:00
Kurt Zeilenga
14f107e9ed Changes to support NT single debug 1999-11-01 22:17:06 +00:00
Kurt Zeilenga
b7af076fee Use centralized output directories.
Update single debug/release not to use service manager nor event manager.
Likely breaks MINGW32 port.
1999-11-01 21:25:22 +00:00
Howard Chu
0db4dcecb0 Specifies the symbols that slapd must export, for Mingw32 support
See README 1.27 log
1999-10-28 07:20:07 +00:00
Howard Chu
8efb675f3e Added numsubordinates operational attribute 1999-10-28 07:09:30 +00:00
Kurt Zeilenga
3fbee54fa5 Remove lint 1999-10-27 04:40:56 +00:00
Kurt Zeilenga
f6829ee903 Initial commit of new ACL engine. Engine supports descrete access
privs, additive/substractive rules, and rule continuation.  Existing
rules that use 'defaultaccess none' should be 100% compatible.  Rules
that rely other defaultaccess settings will require addition of
explicit clauses granting the access.
Needs additional testing and tuning of logs
1999-10-21 17:53:56 +00:00
Kurt Zeilenga
5c876f85e6 bind should not return noSuchObject 1999-09-24 02:19:31 +00:00
Kurt Zeilenga
7a0b0b2bbf In preparation for adding dn_rewrite()...
s/dn_normalize/dn_validate/
s/dn_normalize_case/dn_normalize/
1999-09-24 01:46:37 +00:00
Kurt Zeilenga
35655c056f Reimplement LDBM_SYNC/LDBM_NOSYNC code (dbnosync).
Old code applied sync flags to store(), however supported DBMs
require such flags to be specified during open().  The new
code now applies flags in ldbm_cache_open (which calls ldbm_open).
ldbm_cache_close() now calls ldbm_sync().  This will force
a updating of on-disk contents after each LDAP operation.
The old code either failed to sync the on-disk contents until
close or synced on every store.   Per LDBM operation syncing
*should* be safe enough... real data safety requires transactions.
Removed nosync option from BDB2 as it is not compatible with
txn support.
Also added code to disable DBM level locking as slapd is only
process acessing the databases (dbnolocking).
1999-09-23 19:49:20 +00:00
Kurt Zeilenga
6b0ccd4a5d Add experimental detection of BerkeleyDB2 DB_THREAD.
If not available, LDBM uses big mutex and BDB2 is disabled.
Should add BerkeleyDB version detection...
1999-09-20 20:55:54 +00:00
Howard Chu
f991ef04e6 Added mixed-case as well as up-cased DN argument. The behavior of back-bdb2
and back-ldbm are preserved, they only use the up-cased DNs. back-passwd
uses the mixed-case DN. All others are using mixed-case DN, may need more
fixing.
1999-09-18 23:40:03 +00:00
Kurt Zeilenga
e642a1b9cd Add OpenLDAP RCSid 1999-09-08 22:52:19 +00:00
Kurt Zeilenga
403f4479bc Add OpenLDAP RCSid to *.[ch] in clients, libraries, and servers.
Replace old Id as needed (back-tcl).
Leave updating of contribWare to contributors (for now).
1999-09-08 19:06:24 +00:00
Kurt Zeilenga
1cfeeaade0 db2 flags should be u_int32_t, not int. 1999-09-08 17:28:02 +00:00
Kurt Zeilenga
2e86c0516b Remove #if 0 used to hide dn subtree index problem. Fixed
by Hallvard's IDL changes!
1999-09-04 01:19:58 +00:00
Hallvard Furuseth
1cde481298 Move `#include "ldap_defaults.h"' into slap.h, which #ifdefs on it. 1999-09-03 23:10:05 +00:00
Hallvard Furuseth
dc6754c781 Remove incorrect use of <matched> entry 1999-09-03 20:25:58 +00:00
Hallvard Furuseth
5b6c6b5855 Fix SAFEMEMCPY bug from revision 1.32 in idl_insert() 1999-09-03 11:01:18 +00:00
Kurt Zeilenga
5bb08cba85 Backout rev 1.37 change which was committed by mistake. 1999-09-03 05:31:43 +00:00