mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
18,023 Commits 38 Branches 307 Tags 74 MiB
8e5ebf4dfb
Commit Graph

772 Commits

Author SHA1 Message Date
Luke Howard
2ff5c27f63 Check for NULL in be_match() 
Use be_match() in backend.c operational processing
 2005-08-18 04:34:04 +00:00
Luke Howard
6cf14a777a Add be_match() macro: one cannot always compare BackendDB pointer 
values in order to test equivalence, because the overlay engine
may have reset the backend pointer to a temporary copy on the stack.

So, we test pointer equivalence of the BackendDB itself, then of
be_nsuffix -- this macro can be updated if necessary.
 2005-08-18 04:12:04 +00:00
Pierangelo Masarati
ec49990d51 ACIs almost entirely factored out of slapd 
Added OpenLDAPaciSyntax based on ITS#3877 by Nikita Shulga
aci_mask() doesn't exploit the normalized value yet (next step)
The case #define SLAPD_ACI_ENABLED / #undef SLAP_DYNACL should
be removed
 2005-08-17 17:14:57 +00:00
Hallvard Furuseth
9873eb7ab0 Add missing Statslog() statements (loglevel stats/stats2): 
"ABANDON", "STARTTLS", "CANCEL", "WHOAMI", "PASSMOD", "EXT", "INTERM",
  "TLS established", SASL and Extended Response "RESULT".
In Statslog output "conn=xx fd=yy closed", append the reason in
  "()" unless client or server closed the connection after Unbind.
Still missing Statslog output from a number of failed requests.
 2005-08-14 00:14:58 +00:00
Pierangelo Masarati
d10250d9f6 add authzSyntax for authzTo/authzFrom attributes; add X-ORDERED 'VALUES' if support for ordered_value_{validate,pretty,normalize} is present; exploit normalization in slap_parseURI (only #ifdef LDAP_DEVEL) 2005-08-11 23:52:17 +00:00
Pierangelo Masarati
2b93e9b376 wrap validate/pretty/normalize for ordered values (only #ifdef LDAP_DEVEL) 2005-08-11 23:35:15 +00:00
Pierangelo Masarati
cccf35c749 allow textual log levels in command line 2005-08-08 14:01:40 +00:00
Howard Chu
9365649dad ITS#3922 fix syncrepl ctxcsn leak 2005-08-08 12:38:19 +00:00
Pierangelo Masarati
e549e4463a free replica info as appropriate 2005-08-07 15:01:13 +00:00
Luke Howard
12d006d17d Add o_no_schema_check to operation structure 
entry_schema_check() nows takes Operation instead of Backend as first
argument, allows it to check o_no_schema_check
 2005-08-01 15:26:13 +00:00
Luke Howard
71d76fbeba slap_mods2entry() should not zero pointers into the modifications 
list because checking is performed on these, rather than the entry.

slap_mods_free() now takes an extra argument indicating whether to
free the values or not.
 2005-08-01 02:16:02 +00:00
Luke Howard
6f0edd6c22 Call slap_mods2entry() in do_add(), so that global overlays (including 
global SLAPI plugins) have access to op->ora_e.

Note that slap_mods2entry() is still called in fe_op_add() in order to
add any operational attributes.
 2005-07-31 04:56:27 +00:00
Pierangelo Masarati
0de20c028f destroy limits at exit 2005-07-25 20:50:03 +00:00
Pierangelo Masarati
4c1339cf22 add infrastructure to register verbmasks; allow to register loglevels programmatically; cleanup glue protos 2005-07-23 11:32:10 +00:00
Luke Howard
9e4ea429e5 Add fe_access_allowed(), should allow global ACL overlays to work 2005-07-23 04:18:48 +00:00
Luke Howard
6da978d5a0 Support for global ACL overlays, corresponding SLAPI support 2005-07-22 05:01:09 +00:00
Luke Howard
6ae5ce5b66 Cleaner version of previous patch (keep operational attr code in backend.c) 2005-07-22 03:44:04 +00:00
Howard Chu
ddf6c7b298 Plug more memleaks 2005-07-21 23:26:40 +00:00
Luke Howard
857543c1f8 add prototype for overlay_op_walk() 2005-07-21 13:35:59 +00:00
Pierangelo Masarati
a27a32ccc4 fix arbitrary precision number display when no big number library is available 2005-07-19 21:56:15 +00:00
Pierangelo Masarati
499906f464 use appropriate format when no arbitrary precision library is available 2005-07-19 19:31:24 +00:00
Luke Howard
2007c4b8b9 Add slap_parse_ctrl() API for parsing already decoded controls; needed 
for SLAPI internal operations to use controls
 2005-07-19 08:38:46 +00:00
Hallvard Furuseth
62b653fa85 Declare component matching functions 2005-07-11 19:06:10 +00:00
Hallvard Furuseth
a1e27aae40 Format fix: Make style_strings[] global for debug output in dynacl_aci_parse() 2005-07-04 06:25:02 +00:00
Howard Chu
f84fc983fd ITS#3774 delete backend/overlay structures after a failed add 2005-06-13 22:49:01 +00:00
Howard Chu
cd15432de6 More accesslog updates 2005-06-10 11:41:57 +00:00
Howard Chu
21b8be393a Add slap_timestamp(), use mutex in slap_get_csn() 2005-06-07 04:12:14 +00:00
Pierangelo Masarati
00c6709896 expose macro(s) to produce string representations of arbitrary precision counters 2005-05-28 14:30:43 +00:00
Pierangelo Masarati
672c39024e further fixing of back-ldap config; added enum_to_verb call to ease mapping enumerations to strings... 2005-05-23 14:14:34 +00:00
Kurt Zeilenga
18c3f9e093 Add manage obsolete attributes capability. 2005-05-13 23:51:43 +00:00
Kurt Zeilenga
feeeabcd68 manageDIT framework and obsolete objectclasses/DIT-content-rule override 2005-05-13 19:07:31 +00:00
Kurt Zeilenga
002f7ca062 finish global_schemacheck removal 2005-05-13 17:35:36 +00:00
Kurt Zeilenga
c83f7539ae Mostly remove global_schemacheck. More cleanup needed in 
bconfig.c and back-sql.
 2005-05-11 22:24:18 +00:00
Howard Chu
f82e2cbf39 Make entry_encode/decode independent of slapd structure sizes 2005-05-06 21:24:49 +00:00
Pierangelo Masarati
f0122ce3fc move discover function to frontend 2005-05-05 00:22:43 +00:00
Howard Chu
8f78d064ee Isolate syncrepl stuff in syncrepl.c 2005-04-22 14:38:35 +00:00
Howard Chu
3f542e1868 Fixes for ordered deletes 2005-04-19 18:37:39 +00:00
Howard Chu
b5ef8ea6f4 More modify support. ACL editing works. 2005-04-19 16:39:48 +00:00
Howard Chu
d882ce511d Generic ordered value support 2005-04-14 10:31:51 +00:00
Pierangelo Masarati
a85603c10b more on ITS#3652 2005-04-12 22:38:54 +00:00
Pierangelo Masarati
d2dd3a616c hide changes behind specific #ifdef, conditioned by LDAP_DEBUG; always allow access on back-dnssrv 2005-04-12 01:07:30 +00:00
Howard Chu
119cbcaba4 Schema unparsing support 2005-03-21 08:31:48 +00:00
Howard Chu
fba9235d0f Add HARDCODE schema flags 2005-03-21 00:22:54 +00:00
Howard Chu
2da2336ac6 Reorganiza SLAPD_CRYPT and SLAPD_SPASSWD support for better reentrancy 2005-03-18 06:06:38 +00:00
Howard Chu
bc4564cac4 More back-config / back-ldif integration, added config_generic_wrapper, 
added -F option to specify config directory
 2005-03-15 08:57:34 +00:00
Howard Chu
74e38c0ad4 More verbmasks cleanup, added index unparsing 2005-03-02 16:35:59 +00:00
Howard Chu
530e93f96e Cleanup verb/mask processing 2005-03-02 14:49:54 +00:00
Howard Chu
58865ccb38 Added general limits retrieval 2005-03-01 23:01:47 +00:00
Howard Chu
58939adc36 Added limits_unparse_one 2005-03-01 21:25:32 +00:00
Howard Chu
5acd0c574b Added authz-regexp, slapi plugin retrieval 2005-03-01 20:08:36 +00:00
Howard Chu
21aa0d0f9f Added oidm retrieval 2005-03-01 18:05:23 +00:00
Howard Chu
89210b7100 Added ldap_pvt_sasl_secprops_unparse, slap_sasl_secprops_unparse 2005-03-01 11:42:31 +00:00
Howard Chu
c54cd8b7f1 Added replica retrieval 2005-02-23 12:03:14 +00:00
Howard Chu
e0ca6e386e Added acl_unparse, slap_sasl_getpolicy 2005-02-22 12:02:34 +00:00
Howard Chu
dfb6f870f6 Rearrange, merge sasl config back into main config 2005-02-20 06:47:54 +00:00
Pierangelo Masarati
7cd731ec56 "ultimate" fix of glued databases controls checking; other minor fixes 2005-01-30 22:02:37 +00:00
Pierangelo Masarati
cd797f8089 avoid cycling twice in the control list 2005-01-29 18:16:38 +00:00
Kurt Zeilenga
e826914a88 Less kludgy willing-to-perform check for recognized and appropriate 
global controls
 2005-01-27 06:45:20 +00:00
Pierangelo Masarati
2c801d9c2a move compare to frontend (disabled by default, only invoked if backend doesn't provide hook); honor ITS#3472 (disclose access check); fix ITS#3521 as well (check access to hasSubordinates); fix a problem in backend_attribute() with operational attrs; add backend_access() helper 2005-01-26 23:30:57 +00:00
Pierangelo Masarati
5b193c218f fix dynamically registered controls check; NOTE: controls registered by global overlays don't work yet; better leave Kurt's kludge in place right now 2005-01-25 19:39:56 +00:00
Howard Chu
fcf787dc0f Rewritten str2entry, added str2entry2 2005-01-24 03:41:51 +00:00
Howard Chu
47e7948007 Schema caching for slaptools 2005-01-22 20:18:38 +00:00
Howard Chu
93c56951ed Use a single sessionlog per context, delete sid 2005-01-13 19:51:01 +00:00
Howard Chu
bf27ba977b Deleted syncrepl updatedn 2005-01-13 18:51:29 +00:00
Kurt Zeilenga
7dc0b02fc9 Replace backend.h with backends.c, generated by config.status. 2005-01-09 08:42:44 +00:00
Pierangelo Masarati
6f2ffa30ed fix ACL value checking for bind (ITS#3446) 2005-01-07 13:50:38 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Sang Seok Lim
28a967584d Component Indexing support for BDB 
- only for equality matching
- only components of ASN.1 types used in an X.509 certificate can be indexed
(composite types except for RDN and DN are not supported yet)
- how to use
index [attribute name].[component reference] eq
Ex)
index userCertificate eq
index userCertificate.toBeSigned.issuer.rdnSequence eq
index userCertificate.toBeSigned.serialNumber eq
index userCertificate.toBeSigned.version eq
 2004-12-20 03:31:44 +00:00
Jong Hyuk Choi
5162c4477b adaptive caching code 2004-12-14 17:25:35 +00:00
Sang Seok Lim
3492452a5b 1) <select> and <content> type component reference support 
2) attribute aliasing support
- x509CertificateIssuer
- x509CertificateSerial
- x509CertificateIssuerAndIssuer
3) AuthorityKeyIdentifier support(one of certificate extension)
4) Misc. improvement
- integrate OID and its decoder mapping table
- normalize and validate the values of both component asserions and
  extracted components
5) Misc. bug fix
 2004-12-13 16:26:58 +00:00
Pierangelo Masarati
2f5e17d056 improve usability of global ovrlays for write operations; may need to anticipate SLAPI accordingly. More work needed for add (overlays need to understand they're global and call slap_mods2entry() explicitly) 2004-12-11 17:48:15 +00:00
Howard Chu
423c53d267 Add fe_op_abandon, call it in connection_abandon() 2004-12-09 21:17:29 +00:00
Pierangelo Masarati
af7079d32b declare oc_bvfind_undef() 2004-12-08 19:06:10 +00:00
Howard Chu
99f2d0b49b Let slap_get_commit_csn return the current CSN as well 2004-12-08 00:46:14 +00:00
Kurt Zeilenga
d616bd4ff8 cleanup 2004-12-07 18:40:47 +00:00
Howard Chu
dfb8c86dc3 Deleted subordinate keyword in favor of glue overlay 2004-12-04 20:08:56 +00:00
Howard Chu
5c8fd8bf11 Rename syncrepl_rq to slapd_rq, move to daemon.c 2004-12-03 16:49:23 +00:00
Sang Seok Lim
decfd7217f 1) <all> type component reference support 
2) nibble type memory support when decoding
3) description type object identifier support
4) OPTIONAL, DEFAULT support in certificate decoder/extractor/matching
5) Misc bug fix
 2004-11-29 20:21:38 +00:00
Howard Chu
a88c78d64e Remove syncinfo si_UUID_dn, make consumer use modify/modrdn instead of 
just deleting and adding modified entries.
 2004-11-29 05:56:51 +00:00
Howard Chu
b4eceddb52 Add slap_find_control_id 2004-11-27 11:45:07 +00:00
Howard Chu
5f99f7c991 More migration of syncrepl from frontend to syncprov overlay 
define OPERATION_BUFFER_SIZE for dummy Operations
 2004-11-27 00:57:37 +00:00
Howard Chu
c2b339d456 More syncprov fixes. test019 now passes. 2004-11-26 09:40:22 +00:00
Pierangelo Masarati
e891dbcdc4 fix dynacl compile 2004-11-26 00:34:48 +00:00
Howard Chu
90cc409325 Split Operation into Opheader and op 2004-11-25 22:59:00 +00:00
Jong Hyuk Choi
83fd442ded Omitted from the original buddy allocator commit 2004-11-24 17:27:25 +00:00
Howard Chu
50ed4465fb slap_known_controls is now an array. (control.c r1.117) 2004-11-23 14:45:36 +00:00
Howard Chu
47dd8d8732 Dynamic control management 2004-11-23 13:08:45 +00:00
Howard Chu
c8f49d0337 Add SLAP_EXOP_WRITES flag, expose flags in Operation, 
add exop_is_write() macro for detecting exops that modify a target entry
 2004-11-19 22:19:13 +00:00
Pierangelo Masarati
db4f223c66 improve overlay helpers 2004-11-13 17:20:24 +00:00
Howard Chu
1d35c8f8ec ITS#3376 Fix prev commit, handling of replogfile 2004-11-05 07:10:44 +00:00
Sang Seok Lim
71e78dd7f9 Component Matching module 
See "contrib/slapd-modules/comp_match/README" to understand
what's the purpose of  this patch is and how to use it.
 2004-10-27 19:37:02 +00:00
Jong Hyuk Choi
4efd705cc3 syncrepl consistency patch 2004-10-09 09:26:16 +00:00
Howard Chu
7e87f54716 Revert ITS#3353 patch, it needs to be reworked. 2004-10-06 05:51:38 +00:00
Howard Chu
fda3d6260e ITS#3353 consolidate slapd globals into a single struct 2004-10-01 07:33:16 +00:00
Howard Chu
bf7c7a22d6 ITS#2661: configurable substring index lengths 
ITS#2588: use subany to help long subinitial/subfinal matches
 2004-09-28 02:51:00 +00:00
Jong Hyuk Choi
5c0581b184 Modified @oc supprot code to the share anlist routines; Revised anlist routines 2004-09-23 02:48:14 +00:00
Luke Howard
eb9720c802 Add register_certificate_map_function() native plugin API for registering 
alternate X.509 peer normalization function
 2004-09-20 03:52:39 +00:00
Jong Hyuk Choi
ffbb5d4ed2 *oc support in attr list 2004-09-18 02:07:41 +00:00
Pierangelo Masarati
a637926bf2 use GMP for multiple precision in counters 2004-09-11 16:15:53 +00:00
Pierangelo Masarati
7dc5a0bb83 fix negative counters; prepare for imrpved count of sent data 2004-09-11 11:05:41 +00:00
Jong Hyuk Choi
98dc97bcb9 memory leak fixes 2004-09-11 02:02:09 +00:00
Kurt Zeilenga
3869e3b84d Add localSSF slapd.conf(5) directive to set SSF associated 
with ldapi:// sessions.
 2004-09-10 22:35:24 +00:00
Kurt Zeilenga
741f9ea383 Add initial dnSubtreeMatch. 
Should reuse other DN routines.
Need to add various other DN matching rule functions.
This commit, combined with entryDN and slapcat -a, should
fully address ITS#3112.
 2004-09-09 02:07:27 +00:00
Kurt Zeilenga
094bc99b83 Initial entryDN implementation. 
Need to implement filter support (for entryDN and subschemaSubentry).
Fixed hasSubordinate assert() bug in entry filters
 2004-09-07 05:00:33 +00:00
Sang Seok Lim
2af6457771 This patch is for a component filter. please refer ITS#3260 for detail 
and "implementing GSER and Component Matching" in ODD 2004.
All codes are #ifdef'd with LDAP_COMP_MATCH.
test031-component-filter works correctly only when the LDAP_COMP_MATCH macro is set.
To disable it, set AC_WITH_COMP_MATCH "no" in "openldap_src/tests/run.in".
 2004-08-26 00:06:39 +00:00
Luke Howard
ea6f5bad65 This patch fixes some subtle interactions between SLAPI and syncrepl. Due to 
SLAPI always assigning connection and operation IDs of zero for internal
operations, such operations would cause a stale contextCSN to be returned from
slap_get_commit_csn(). As a result, SLAPI internal updates would be invisible
to replicas until an external update was made. Also, SLAPI internal operations
never called slap_graduate_commit_csn() which leaked pending CSNs.

Also included in this patch is a general cleanup of some of the SLAPI code.

Note that we need to use a separate mutex on conn_nextid to avoid a deadlock
where a post-operation plugin tries to acquire connections_mutex, having locked
the per-connection mutex, while the listener thread tries to acquire the
per-connection mutex (having locked connections_mutex). connection.c needs to
be fixed to acquire mutexes in the same order.
 2004-08-25 11:52:55 +00:00
Pierangelo Masarati
00f1c085cf move call to frontend API 2004-08-24 09:29:11 +00:00
Pierangelo Masarati
6b8fd66364 split entry_free in entry_clean ... 2004-08-20 12:01:15 +00:00
Howard Chu
91033d6552 Reworked fix for ITS#3140 - add access parameter to backend_attribute 2004-08-18 17:14:22 +00:00
Pierangelo Masarati
05b81e623d cleanup attr flags; provide a helper 2004-08-06 17:29:59 +00:00
Pierangelo Masarati
cd9a9c628d frontend stuff moved into a database structure, essentially to allow overlays to be processed before database selection; passes all tests (ITS#3080) 2004-07-26 21:26:34 +00:00
Pierangelo Masarati
9f6f5491fe slightly rework user/operational attributes handling (including fixing a bug in the logic of the previous change to backend_operational()); cleanup; more improvements to slapo-rwm and back-relay 2004-07-25 23:16:40 +00:00
Pierangelo Masarati
b94d5e17e2 rework op/rs structures to deal with opeartional attributes 2004-07-18 21:44:29 +00:00
Pierangelo Masarati
d02a8cab65 revert previous change; anticipate backend_operational before overlays callbacks (thanks, Howard); rework overlays cycle to allow callbacks to free themselves (thanks Howard) 2004-07-14 00:42:23 +00:00
Howard Chu
2954a90483 Add backend_startup_one() 2004-07-12 20:27:33 +00:00
Sang Seok Lim
ad19032bf2 This patch provides support for rdnMatch matching rule and RDN syntax in 
RFC 3687. For now, both the attribute and assertion values are considered
as RDNs. Refer to ITS#3207 to find related discussion.
 2004-06-29 23:36:58 +00:00
Jong Hyuk Choi
a1308f8dfa syncrepl retry code fix for correct timing 2004-06-21 07:03:49 +00:00
Kurt Zeilenga
6e17b60648 add command line option (-S) to enable SLP registration (ITS#3132) 
off by default.  Option assignment is temporary, should be replaced
with "-o slp=<ON|off>".
Based upon patch submitted by Ralf Haferkamp (SuSE).
 2004-05-24 23:28:52 +00:00
Pierangelo Masarati
3eebd5bb21 expose slap_sasl_matches() to allow external matching of authz* stuff; fix backwards compatibility bug for "dn:<pat>" as a shortcut to "dn.exact:<pat>" 2004-05-13 20:22:27 +00:00
Kurt Zeilenga
05463503e8 ITS#3118: fix objectIdentifierFirstComponentMatch for schema elements 2004-04-28 20:10:21 +00:00
Howard Chu
9b38cd2572 ITS#3109 - added slap_tls_ctx 2004-04-26 01:10:49 +00:00
Pierangelo Masarati
b9dcdbb2d8 rename macro accordingly to new authz naming 2004-04-20 19:12:56 +00:00
Kurt Zeilenga
1372965d89 ITS#3092: Rename sl_free() and friends to slap_sl_free() 2004-04-20 03:44:57 +00:00
Pierangelo Masarati
7b65d46b1b add slapacl tool 2004-04-20 00:08:44 +00:00
Kurt Zeilenga
69eeb79662 Additional invalid objectClass changes (ITS#3097) 
catch error in validation/pretty functions
 2004-04-19 20:45:26 +00:00
Pierangelo Masarati
d7884b5853 rename macro 2004-04-14 23:23:46 +00:00
Pierangelo Masarati
629cd41f58 use librewrite for sasl-regexp (need to #define SLAP_X_SASL_REWRITE; ITS#2886); lots of cleanup 2004-04-13 16:51:25 +00:00
Pierangelo Masarati
c846d75b8b lots of cleanup 2004-04-13 16:47:23 +00:00
Pierangelo Masarati
755210c960 use librewrite for sasl-regexp (need to #define SLAP_X_SASL_REWRITE; ITS#2886); lots of cleanup 2004-04-13 16:47:04 +00:00
Pierangelo Masarati
c0c24cfec5 first round of SHADOW flags/isupdate test unification 2004-04-10 10:00:58 +00:00
Kurt Zeilenga
b217659088 ITS#3066: properly detect duplicates 2004-04-08 06:44:50 +00:00
Jong Hyuk Choi
1c1b2bb6ee updatedn fix for syncrepl 2004-04-07 17:32:37 +00:00
Pierangelo Masarati
a11dc61e05 rework be_isupdate accordingly to be_isroot 2004-04-06 09:42:40 +00:00
Kurt Zeilenga
c7e89d57be swap be_isroot and be_isroot_dn symbols 2004-04-06 01:06:20 +00:00
Pierangelo Masarati
f3ee96399e move API 2 protocol error mapping to frontend; add new isroot_dn helper 2004-04-05 17:30:08 +00:00
Howard Chu
2821d0bdd6 Add connection_fake_init() 2004-03-17 19:33:13 +00:00
Pierangelo Masarati
16d820ad84 add iterator on overlays 2004-03-16 21:56:40 +00:00
Howard Chu
db52f51943 Preserve old slap_passwd_hash() signature, add slap_passwd_hash_type() 2004-03-15 20:58:41 +00:00
Pierangelo Masarati
f145457d0c move limits check and preparation in a helper function 2004-03-09 14:32:00 +00:00
Howard Chu
4504b48c6b default_passwd_hash now takes a list of schemes 
passwordModify exop will generate all the configured hashes
 2004-03-02 22:12:23 +00:00
Jong Hyuk Choi
53d191e14d syncrepl update: 1) improve error handling 2) glueing support for non-leaf deletion (TODO : deletion of leaf glue entries in the delete / modrdn code) 2004-02-22 20:44:44 +00:00
Pierangelo Masarati
4e57108991 allow search limits based on groups (ITS#2967) 2004-02-18 16:40:36 +00:00
Howard Chu
c9d033ae30 Fix syncrepl slapd_shutdown detection, would not stop on a gentlehup. 2004-01-15 21:35:05 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Kurt Zeilenga
c7f1759e80 Misc cleanup 2003-12-30 01:26:38 +00:00
Kurt Zeilenga
fcad25da47 Misc code cleanup 2003-12-29 22:25:43 +00:00
Howard Chu
d8f9f4ee22 Revert prev commit, unnecessary 2003-12-25 14:57:26 +00:00
Howard Chu
329bd66d6a Use a separate mutex for the replication timestamp 2003-12-24 14:32:33 +00:00
Howard Chu
d31230f859 Fix replog sequencing - assign sequence numbers at beginning of operation, 
instead of getting a timestamp at the end. This makes it possible for
slurpd to sort the log later.
 2003-12-23 18:48:36 +00:00
Pierangelo Masarati
42d7d6d743 propagate flags to sasl-regexp functions (will need it later) 2003-12-18 18:32:45 +00:00
Kurt Zeilenga
9647ccd945 Completely untested built-in EXTERNAL implementation 
Needs identity mapping and proxy authorization support
 2003-12-18 06:52:39 +00:00
Pierangelo Masarati
4602c935f7 saslAuthzTo/From stuff 
when comparing IDs to saslAuthzTo/From values, the saslAuthzTo
saslAuthzFrom values can take different forms:

dn[.<style>]:<pattern>

<style> ::= 	exact		; exact match
		children	; children of <pattern> match
		subtree		; <pattern> or children of <pattern> match
		regex		; <pattern> is regcomp() & regexec()
if no <style>, then exact is assumed

u[.<mech>][/<realm>]:<user>

when parsing a proxyAuthz value, only exact DN is allowed,
and no <mech> can be specified.  <user> cannot contain ':'
and <mech> cannot contain '/'.
 2003-12-13 23:02:59 +00:00
Pierangelo Masarati
9c5fe98a79 declare overlays_init() 2003-12-13 10:57:13 +00:00
Howard Chu
864aea13f7 ITS#2864 removed sl_mark/sl_release code 2003-12-07 04:00:47 +00:00
Luke Howard
399b57eada Use gmtime_r() if HAVE_GMTIME_R is defined (need to add autoconf check) 2003-12-06 05:37:00 +00:00
Jong Hyuk Choi
2bb75d5469 misc cleanup 2003-12-01 17:56:36 +00:00
Howard Chu
42d8c0a39d Added slap_null_cb 2003-12-01 12:03:20 +00:00
Kurt Zeilenga
4e15a84452 Updated notices 2003-11-27 01:17:14 +00:00
Jong Hyuk Choi
1fdda703e6 Support multiple sync replication at the consumer : 
1) simultaneous operation of multiple active sync replication threads
2) cookie management for individual sync replication thread
   (include rid=%3d to the slapd cookie command line option (-c))
 2003-11-26 19:49:47 +00:00
Jong Hyuk Choi
f97dc983ac Collective entryUUID transmission of PRESENT messages in a single PDU 
(refer to draft-zeilenga-ldup-sync-04.txt)
 2003-11-20 02:14:47 +00:00
Jong Hyuk Choi
91e69fc335 add slap_uuidstr_from_normalized() 2003-11-19 00:45:59 +00:00
Jong Hyuk Choi
f3586499d0 update ldapsync/syncrepl code according to the new version of 
the protocol (draft-zeilenga-ldup-sync-04)
 2003-11-11 20:25:19 +00:00
Jong Hyuk Choi
279760a467 1. Session history support 
- memory based session history to minimize sync traffic
	- when client is covered by a session history, then
      [add+delete] mode is used
	- when client cookie is not covered by the history because
      the cookie is too outdated and/or the history is truncated,
	  [add+present] mode is used
2. Sync cookie syntax : comma separated name=value pairs
	- csn=yyyymmddhh:mm:ssZ#0xSSSS#r#ssssr,sid=nnn
 2003-11-10 02:44:25 +00:00
Howard Chu
782d1be0ad Fix prev commit, don't timeout outbound connections 2003-10-25 21:14:07 +00:00
Howard Chu
08676eb49d Add support for outbound connections in main listener. 
Restructure syncrepl/persist to use outbound connection manager.
 2003-10-24 12:57:24 +00:00
Howard Chu
645c2bcb02 Drop unused arguments from syncrepl_add_glue 2003-10-24 08:10:16 +00:00
Howard Chu
01f7a7466b SLAPI fix - no-op when slapi_plugins_used == 0 2003-10-24 05:58:42 +00:00
Howard Chu
b6835be962 ITS#2747, Reorganize syncrepl, fix some memleaks. More remain. 2003-10-18 14:13:37 +00:00
Jong Hyuk Choi
9d59b5a41c ITS #2766 (remove slap_syncrepl_bvc & slap_syncrepl_cn_bvc from proto-slap.h) 2003-10-14 20:40:44 +00:00
Luke Howard
7a1c94acd3 Add entry_dup(); make slapi_entry_dup() use it 2003-10-08 00:48:33 +00:00
Jong Hyuk Choi
a8574a450f slaptools update : replica promotion / demotion 
new slapadd options
-p       : promote : If the ldif file contains syncConsumerSubentries, convert
                     them to a single syncProviderSubentry. Its contextCSN
                     attribute has the largest value of the syncreplCookie
                     attributes of the syncConsumerSubentries.
                     syncProviderSubentry in the ldif file is retained.
-p -w    : promote : Recalculate contextCSN based on entryCSN of each entry.
           create    Existing syncConsumerSubentries and syncProviderSubentry
                     are ignored and not added to the directory.
-r       : demote  : If the ldif file contains syncProviderSubentry, convert it
                     to a syncConsumerSubentry having the default syncrepl id
                     of 0. syncConsumerSubentries in the ldif file are retained.
-r -w    : demote  : Recalculate syncreplCookie based on entryCSN of each entry.
           create    Existing syncConsumerSubentries and syncProviderSubentry
                     are ignored and not added to the directory. The default
                     syncrepl id of 0 will be used for the new
                     syncConsumerSubentry.
-r -w -i %d[,%d]*  : Using the comma separated list followed by the -i option,
                     it is possible to create multiple syncConsumerSubentries
                     having the syncrepl ids specified in the list.
                     syncreplCookie values of these sycnConsumerSubentries
                     will have the same value, either from the maximum
                     entryCSN value or from the contextCSN value of the
                     syncProviderSubentry.
 2003-10-07 20:01:37 +00:00
Howard Chu
c58ac9d8f1 Add memctx param to build_new_dn(). cleanup DN leaks. 2003-09-24 04:30:41 +00:00
Howard Chu
0b23dff298 ITS#2735 - plug memory leaks, cleanup 2003-09-23 22:52:35 +00:00
Jong Hyuk Choi
537ccc3f5f fix for persistent search termination (ITS#2724) 
- the consumer slapd did not terminate when the provider is alive
 - use a timeout in ldap_result() of syncrepl.c
 2003-09-17 10:34:10 +00:00
Kurt Zeilenga
99f968b597 Initial support for pre/post read controls. 
TODO:
	Fix transactional consistency
	Add client response control handling
 2003-09-16 18:56:04 +00:00
Howard Chu
72adc38cdf Construct ctxcsn entries directly, plug memory leaks, remove 
dependency on slap_mods_check and slap_mods2entry
 2003-09-12 18:52:34 +00:00
Jong Hyuk Choi
c25a892e62 misc cleanup 2003-09-04 19:48:53 +00:00
Jong Hyuk Choi
c36f32a9e4 slaptool update for LDAP Sync replication 2003-08-30 15:19:35 +00:00
Jong Hyuk Choi
090ac0a772 unifdef LDAP_SYNC and LDAP_SYNCREPL 2003-08-27 22:16:04 +00:00
Jong Hyuk Choi
3be0b77c88 Context CSN Patch (2) 
- BDB context csn codes moved to a separate function in back-bdb/ctxcsn.c
 2003-08-25 19:15:04 +00:00
Jong Hyuk Choi
660617ae66 Context CSN patch (1) 
- currenty works for refreshOnly mode of LDAP Sync
- Context CSN for add / modify is implemented
- code for delete / modrdn / refreshAndPersist will be soon committed
 2003-08-23 02:51:33 +00:00
Kurt Zeilenga
b54780f940 Add initial support for modify/increment. No over/under flow detection. 
Currently discovered via a "feature", but should use a control.
Start of a control made, but needs to be better integrated (with
auto use in ldapmodify(1)).
 2003-08-07 16:42:40 +00:00
Jong Hyuk Choi
2b803b0459 SyncRepl is changed to share the following routnines : 
slap_mods_opattrs(), slap_mods_check(), slap_mods2entry()
 2003-07-11 01:01:27 +00:00
Jong Hyuk Choi
b231c33efa export glueing code 2003-07-08 20:07:07 +00:00
Jong Hyuk Choi
cc6f31782d - partial attribute replication tested ok 
- conf file processing udpate
- misc updates
 2003-07-02 14:51:23 +00:00
Jong Hyuk Choi
fd13d4d50f misc cleanup 2003-07-01 15:43:25 +00:00
Jong Hyuk Choi
5bc1e1a3c9 Berkeley DB congestion avoidance 2003-07-01 11:55:18 +00:00
Jong Hyuk Choi
5d203d0cc5 not returning glue entries unless manageDSAit is set 2003-06-25 16:22:08 +00:00
Jong Hyuk Choi
f07179ca61 syncrepl changes 
- can handle multiple syncinfo
- ldap_sync_search() added
 2003-06-11 17:03:57 +00:00
Howard Chu
62da6969dc Preliminary backend overlay support, based on backglue, not tested... 2003-06-11 02:27:51 +00:00
Kurt Zeilenga
2fcbaf29d9 read get_extop func 2003-06-01 00:09:32 +00:00
Kurt Zeilenga
16af7fdd4c Hide experimental controls and extended operations 2003-05-31 20:19:02 +00:00
Kurt Zeilenga
12304f64e5 Merge partial and intermediate responses 2003-05-31 05:01:49 +00:00
Howard Chu
676984e8d3 Fix slap_EXOP declarations 2003-05-29 07:18:58 +00:00
Howard Chu
9dace23dec Change slap_sasl_authorized to take an Operation instead of a Connection, 
for compatibility with proxyAuthz control
 2003-05-24 02:44:46 +00:00
Jong Hyuk Choi
7e7429267e persistent search updates with recent changes 2003-05-20 20:21:39 +00:00
Jong Hyuk Choi
986bcd52a9 -syncUUID search in syncrepl 
-test017-syncreplication
 2003-05-09 06:50:44 +00:00
Jong Hyuk Choi
45776bff04 a runqueue for periodic thread execution (for syncrepl) 2003-05-07 02:06:01 +00:00
Howard Chu
46e2b97757 ITS#2424 use two SASL contexts per session to conform to RFC 2222 2003-05-01 04:11:57 +00:00
Howard Chu
7e2273b30e Added errmsg arg to lutil_passwd_{check,hash} functions 2003-04-30 07:52:05 +00:00