Commit Graph

1059 Commits

Author SHA1 Message Date
Kurt Zeilenga
34647dd8d7 Force to LDAPv3 until BIND 1999-08-13 06:09:48 +00:00
Kurt Zeilenga
7015167974 Add DN_INDICES search filter and has_children support. Move id2children
behind -UDN_INDICES.
1999-08-13 00:55:08 +00:00
Kurt Zeilenga
c4dedab0da Add LDAPsubentry to allow some structure to be added to subentries 1999-08-12 19:00:20 +00:00
Kurt Zeilenga
693229dfdd Add "objectclass: LDAPsubentry" to provide structure to subentries 1999-08-12 18:58:51 +00:00
Kurt Zeilenga
397294fc40 Add dn_subtree() (used for subtree index generation) 1999-08-12 04:20:32 +00:00
Kurt Zeilenga
00ba798bd4 Left DN_INDICES defines by mistake... it's not ready for prime time yet.
Change prefixes to make eyeballing .dbb files easier
1999-08-12 01:05:33 +00:00
Kurt Zeilenga
1ffe5122b7 Implement DN_PARENT_PREFIX and framework for DN_SUBTREE_PREFIX. 1999-08-11 20:59:28 +00:00
Kurt Zeilenga
49207930cf Modify replace_values not to merge in new values when no value is
was provided.
1999-08-11 19:05:40 +00:00
Kurt Zeilenga
740f1b422e Add LDAPsubentry (without OID). 1999-08-11 19:01:05 +00:00
Kurt Zeilenga
82ac9547c9 Removed redundant dn_normalization(strdup(ndn)) from dn2id codes.
Added initial DN_INDICES code behind #ifdef DN_INDICES.
  Generates only equality index.  Will add parent and subtree indices next.
1999-08-11 02:57:07 +00:00
Howard Chu
b2647a713a Fix build dependencies. Last try was not parallel-safe. 1999-08-09 23:01:31 +00:00
Kurt Zeilenga
65ed23a120 limit maxindirect to 9
ifdef CONT_POSTFIX, swap index and old key in new key.  Not defined as
it would cause more grief than good (but should be enabled on next major
index change).
1999-08-09 18:51:02 +00:00
Kurt Zeilenga
db6e9af351 Remove lint. 1999-08-09 18:48:23 +00:00
Howard Chu
638f37743b Fix explicit backend dependencies. Wildcard was unreliable. 1999-08-09 01:29:27 +00:00
Hallvard Furuseth
bbd3d9e77c ldap_op.c: Get LDAP->ld_lberoptions from libldap/ldap-int.h.
slurp.h:   #undef ldap_debug before a #define which conflicts with ldap-int.h.
1999-08-08 15:18:38 +00:00
Hallvard Furuseth
9f67a2e6c9 Separate put_nextid() out from next_id_write() in back-ldbm/nextid.c.
Use it in tools/ldif2id2entry.c instead of making the NEXTID file "by hand".
1999-08-08 07:28:44 +00:00
Kurt Zeilenga
5a0a5c7841 Remove bogus free. 1999-08-08 04:30:51 +00:00
Kurt Zeilenga
d01f571e7c Fix typo in previous commit as well as integrate bubble move
replacement.
1999-08-08 00:54:27 +00:00
Kurt Zeilenga
120534222c Replace bubble move with SAFEMEMCPY 1999-08-08 00:02:05 +00:00
Kurt Zeilenga
5ecf77c034 Eliminate a bubble move. 1999-08-07 23:25:48 +00:00
Kurt Zeilenga
136bb9c231 Use a cursor to step through ID_BLOCKS. 1999-08-07 21:14:24 +00:00
Howard Chu
366e8fd5ad Final round of module changes 1999-08-07 11:37:43 +00:00
Howard Chu
0743e963ca Modified to use libtool's ltdl instead of gmodule 1999-08-07 07:58:11 +00:00
Howard Chu
00ac49a1fd Modified for use with libtool's ltdl instead of gmodule 1999-08-07 07:54:45 +00:00
Hallvard Furuseth
6054463eeb Minor cleanup:
Fix Statlog() formats, remove an implicit int, include <ctype.h> for isspace().
1999-08-07 05:36:48 +00:00
Hallvard Furuseth
8e03d254b8 Plug memory leaks (parallell to back-ldbm/idl.c version 1.26) 1999-08-07 03:38:24 +00:00
Hallvard Furuseth
64f2d924d7 Fix typo in error message: idl_fetch -> bdb2i_idl_fetch 1999-08-07 03:31:46 +00:00
Kurt Zeilenga
9c3ed0310b Add copyright notices. 1999-08-06 23:07:46 +00:00
Howard Chu
b78a4a34f9 Preliminary Make rules to allow building backends as modules. 1999-08-06 16:15:05 +00:00
Howard Chu
03b58cc9cf For dynamic modules, must explicitly zero BackendInfo structure in
init_module. Since it's a local var, you have no idea what kind of
garbage is sitting in important function pointers...
1999-08-06 13:16:26 +00:00
Hallvard Furuseth
496f9b1476 Factor out ldif entry parsing so all ldif2* tools will read the same format.
Valid LDIF files are parsed the same way as before.
1999-08-06 03:01:23 +00:00
Hallvard Furuseth
71fa2027a7 Typo: s/elineno, elineno/elineno, lineno/ in error message 1999-08-06 02:02:34 +00:00
Kurt Zeilenga
352354bcbb Add missing "\n" in usage statement 1999-08-05 20:50:40 +00:00
Kurt Zeilenga
e0691dfbc0 create SASL_LIBS to hold -lsasl
create SECURITY_LIBS (top.mk) to order $SASL_LIBS $KRB_LIBS $TLS_LIBS
use $SECURITY_LIBS in Makefile.in's instead of $KRB_LIBS $TLS_LIBS
1999-08-05 02:25:19 +00:00
Kurt Zeilenga
7b6a923937 Add basic configure support of --enable-quipu 1999-08-05 01:23:04 +00:00
Kurt Zeilenga
bc73fffe12 Update projects to use ldif2common.*
Remove lint
1999-08-05 00:08:26 +00:00
Kurt Zeilenga
c73106936b Add copyright notice. 1999-08-04 23:59:53 +00:00
Kurt Zeilenga
9ea7a42b99 Add copyright notice and a few comments here and there 1999-08-04 23:59:13 +00:00
Gary Williams
a1c9d88e49 don't force debug to 65535 1999-08-04 18:13:46 +00:00
Hallvard Furuseth
023e18fb4a s/return 0/return EXIT_SUCCESS/ in main(), #include <ac/stdlib.h> to get EXIT_* 1999-08-04 06:05:05 +00:00
Hallvard Furuseth
c0a0028c43 Align somewhat with ldif2ldbm: Obey HAVE_SYS_PARAM_H, cast strcasecmp to AVL_CMP 1999-08-04 05:53:50 +00:00
Hallvard Furuseth
48b63d4f16 Factor out ldif2* intialization to ldif2common.c 1999-08-04 05:49:36 +00:00
Kurt Zeilenga
1fe5f59027 Add sasl.c 1999-08-04 00:44:02 +00:00
Kurt Zeilenga
b67eb8e2be Don't have time to finish SASL right now... this is a work in progress
but is safely tucked away behind --with-cyrus-sasl.
1999-08-04 00:11:22 +00:00
Kurt Zeilenga
354d49fb9a List supportedSASLmechanisms based upon what sasl_listmech() returns. 1999-08-03 23:23:05 +00:00
Kurt Zeilenga
ecb9c3b3fb Add multimaster replication support (ITS#170) based upon
updated patch submitted Philipp Klaus <ldapml@internet.access.ch>
Can be enabled using --enable-multimaster.  TODO:
Replication test likely should be adjusted to test multimaster environment.
1999-08-03 22:15:19 +00:00
Kurt Zeilenga
10591cb47d Update default access usage comment. 1999-08-03 21:35:53 +00:00
Kurt Zeilenga
643091f1f7 change order of tag and err in logging (only). Does not effect encoding. 1999-08-03 20:28:16 +00:00
Kurt Zeilenga
2b79ff2c48 Initial inet_aton() detection. 1999-08-03 20:02:44 +00:00
Kurt Zeilenga
59c8a88c2f Needs <ac/stdlib.h> for EXIT_* 1999-08-03 18:41:55 +00:00
Kurt Zeilenga
df8f7cbb9b s/exit(1)/exit(EXIT_FAILURE)/
s/exit(0)/exit(EXIT_SUCCESS)/
add <ac/stdlib.h> where needed and other minor header adjustments
1999-08-03 18:14:24 +00:00
Kurt Zeilenga
f90ed5aef8 Add a little SASL framework and remove old X-DIGEST-MD5 hardcode.
This code is not called (yet).
1999-08-03 02:37:42 +00:00
Hallvard Furuseth
79fb44b129 Replace NULLBER with NULL
Replace `lber_int_debug = ...' with `ber_set_option( ... )'
1999-08-03 02:31:29 +00:00
Hallvard Furuseth
0310b8b048 Remove obsolete 7th arg (opatts) from send_search_entry() calls.
Add missing arg (refs or ctrls) to send_ldap_result() calls.
NOTE: Did not implement referral/ldapcontrol support in back-tcl.
1999-08-03 01:38:43 +00:00
Kurt Zeilenga
538048dac2 Disable connectionless support until someone implements
a UDP listener.
1999-08-02 07:40:15 +00:00
Hallvard Furuseth
8743c05359 Change 'unsigned long len' to ber_len_t in get_filter() 1999-08-02 05:29:35 +00:00
Hallvard Furuseth
576956ceb0 Finish s/lber_bprint/ber_bprint/ renaming 1999-08-02 01:20:48 +00:00
Hallvard Furuseth
d716086a2d Delete spurious 7th arg (of 8) to send_search_entry() 1999-08-01 20:31:03 +00:00
Hallvard Furuseth
a49590eab7 Missed an instance of s/struct attrinfo/AttrInfo/ 1999-08-01 20:25:15 +00:00
Hallvard Furuseth
c34a8d8f5e Kill lber_debug 1999-08-01 20:23:35 +00:00
Hallvard Furuseth
5d42c1d022 Align with ldif2id2children.c: s/int vlen;/ber_len_t vlen;/ 1999-08-01 17:54:09 +00:00
Hallvard Furuseth
79cb528e7e s/getopt() != -1/getopt() != EOF/ 1999-08-01 15:35:53 +00:00
Kurt Zeilenga
6fb50094d8 Experimental fix to ITS#179 fix. 1999-07-31 03:37:40 +00:00
Kurt Zeilenga
48d5465ab7 Add support for "foo:< http://localhost/path.
Requires FreeBSD's -lfetch...
Implementations to other URL APIs encouraged.
Probably should be moved to -llutil.
1999-07-31 03:23:26 +00:00
Kurt Zeilenga
b73b0c6158 Enhance LDIF handling
ldapsearch:
    use draft guidelines for determining when to use
    -t only writes binary attributes to files
    -tt writes all attributes to files
    output now lists URL instead of path to such files
    -T dir can be used to specify directory to create temp files in
    -V urlprefix can be used to change the URL prefix
    LDIF is now commented (can be disabled using -LL)
    LDIF now contains version attribute (can be disabled with -LLL)
LDIF:
    put interface changed to allow caller to specify how to encode
    put interface uses draft guidelines for determine when to base64 encode
    wrapping kludged to match old off by one bug
Tests:
    removed trailing space from some attributes (to avoid base64 encoding)
    enabled -LLL in defines.sh (should sed output to remove
        wrapping/comments/redundant separators)
Misc:
    updated codes outputting LDIF to use new put interface
TODO:
    handling of version attribute on input
    handling of URLs on input (ie: fetch URL)
1999-07-30 23:00:02 +00:00
Julio Sánchez Fernández
18393e882c When recreating a database from an ldif file created by ldbmcat,
NEXTID would not be set to one higher than the highest number
used, but to one higher than the last entry in the ldif file.
1999-07-30 18:53:23 +00:00
Julio Sánchez Fernández
3a1aab088d IDs in the LDIF input were not being used in id2children creation. 1999-07-30 18:37:00 +00:00
Kurt Zeilenga
17a975b6fb Very crude LDIF changes:
add MODRDN newSuperior support
	add '#' support to ldapmodify (but not slurpd and ldbm tools)
1999-07-29 21:25:39 +00:00
Kurt Zeilenga
79e28bda6f Fix modlist bug in last commit 1999-07-29 18:19:06 +00:00
Kurt Zeilenga
51d16c18a9 Save attributes until we've completed schema check and
modified indices.
1999-07-29 04:41:49 +00:00
Kurt Zeilenga
4bf65c0d0a Add suffixalias.c 1999-07-29 02:32:40 +00:00
Kurt Zeilenga
de8a1d518a Slightly better ITS#238 fix than last commit... has Debug
message, doesn't bother to open/close index files...
1999-07-28 23:19:16 +00:00
Kurt Zeilenga
0e4e5c7a13 Fix index_change_vals NULL vals bug (ITS#238) 1999-07-28 22:57:52 +00:00
Kurt Zeilenga
5456f4ed18 Default lastmod to ON. 1999-07-27 20:05:37 +00:00
Kurt Zeilenga
9c61bc561f Return LDAP_CONSTRAINT_VIOLATION if user attempts to modify
a non-user-mod attribute (such as timeStamps).
Move generation of add_modify_attrs to frontend.
update of add_modify_attrs on modrdn needs work (currently
not updated to maintain consistency with replicas).
1999-07-27 20:00:31 +00:00
Kurt Zeilenga
008bbf56db Fix -USLAPD_RLOOKUPS 1999-07-27 18:49:32 +00:00
Kurt Zeilenga
c12547cf3b Resurrect suffix aliasing... 1999-07-27 18:43:30 +00:00
Kurt Zeilenga
44e15153e7 Fix "dn" index. Only "sub" was being generated instead of "eq,sub". 1999-07-27 00:51:19 +00:00
Kurt Zeilenga
f374c39ab0 move wsa error to -llutil 1999-07-27 00:38:29 +00:00
Kurt Zeilenga
4d72e20bae Relocate to -llutil 1999-07-27 00:37:48 +00:00
Howard Chu
04c5711506 Moved unbind processing into connection_destroy. unbind handler is not needed. 1999-07-25 22:16:01 +00:00
Howard Chu
f491c89387 Fix unportable code. Thanks, Hallvard. 1999-07-25 22:13:52 +00:00
Kurt Zeilenga
b9764fff76 Back out paralyzing changes. 1999-07-24 21:40:58 +00:00
Howard Chu
5692be1fe4 Minor changes to support parallel make. 1999-07-24 09:21:34 +00:00
Kurt Zeilenga
a39cf6f93d Add support for LDAP_ALL_OPERATIONAL_ATTRIBUTES ("+") (based on
LDAPext discussions).
Add attrs and attrsonly support to monitor/config info.
Add rdn attributes to schema/monitor/config.
Add extensibleObject objectclass to schema/monitor/config.
Add top objectclass to rootdse/monitor/config.
Remove opattrs option from send_search_entry().
1999-07-24 03:39:23 +00:00
Kurt Zeilenga
06b667b8c6 Move subschemasubentry from "no-user-mod operational" to "operational"
as it's not stored the directory.
1999-07-24 02:22:14 +00:00
Kurt Zeilenga
6ba2272321 Adhere to "servers will not return operational attributes" in
all cases (including root dse).
1999-07-24 02:12:42 +00:00
Kurt Zeilenga
cabe6ebe16 Really fix subschemasubentry... 1999-07-24 01:27:32 +00:00
Kurt Zeilenga
7ee088518c Fix subschemasubentry operational attribute. 1999-07-24 00:45:25 +00:00
Julio Sánchez Fernández
44e371d45c Add missing semicolon. 1999-07-23 09:45:34 +00:00
Randy Kunkee
820ac76ceb Include sys/param.h on OSF4.0e to define MAXPATHLEN. 1999-07-23 00:59:27 +00:00
Kurt Zeilenga
d147e609d2 Implement TCP_NODELAY on both client and server side. 1999-07-22 21:49:35 +00:00
Kurt Zeilenga
f0c1fc37f5 Fix IP: typo in peername 1999-07-22 20:37:56 +00:00
Kurt Zeilenga
983f43785b Fix "*" op-attr search 1999-07-22 20:19:18 +00:00
Kurt Zeilenga
766b78765f Typo made all missed all aliasedobjectname values. 1999-07-22 19:17:16 +00:00
Kurt Zeilenga
c9778dd116 Implement better DN checking... make sure attribute type is
an OID or a proper type string (letter followed by 0 or more
alnum/-).
1999-07-22 19:06:56 +00:00
Kurt Zeilenga
68d561a97b Add limited LDAP_INVALID_DN_SYNTAX support. dn_normalize{,_case}() now returns
NULL does not meet basic syntax rules.
1999-07-22 17:14:42 +00:00
Kurt Zeilenga
3f91cffa15 Fix unknown critical extensions. 1999-07-22 05:06:41 +00:00
Kurt Zeilenga
42304b7ada Fix control parsing and controls free routine. 1999-07-22 04:47:58 +00:00
Kurt Zeilenga
0ed1a76d27 Release writer lock on new parent. 1999-07-22 03:42:02 +00:00
Kurt Zeilenga
5600097ae1 Update ACL field names and usage statement to match -devel post 1999-07-22 00:50:11 +00:00
Kurt Zeilenga
a11630f9b8 Fix maxDeref directive 1999-07-22 00:49:25 +00:00
Kurt Zeilenga
d5b1892ccc Fix acl parse bug 1999-07-21 21:08:05 +00:00
Kurt Zeilenga
933908f72f ACL CHANGES:
by <who> <access> changed to by <who>+ <access> (joined with AND)
  added peername=<regex> sockname=<regex> url=<regex>
  removed addr=<regex> (use peername instead).
replace dn_upcase with str2upper and str2lower.  Use where needed.
1999-07-21 20:54:23 +00:00
Gary Williams
b8b68f0668 set tls_port to zero if !defined(HAVE_TLS) to satisfy assert in slapd_daemon_init 1999-07-21 15:08:50 +00:00
Julio Sánchez Fernández
f0f29cd82e Backout the input exhaustion change, it loops. Still looking for
the right way.
1999-07-21 13:22:35 +00:00
Gary Williams
f4eb2feba5 use rd instead of i looking for listeners (line 848) 1999-07-20 21:55:06 +00:00
Julio Sánchez Fernández
288a28a762 Add support for TLSVerifyClient. 1999-07-20 18:05:50 +00:00
Julio Sánchez Fernández
504038ffac Move the input data exhaustion loop to connection.c from daemon.c 1999-07-20 18:03:29 +00:00
Julio Sánchez Fernández
76227acb1f Move the input data exhaustion loop to connection.c from daemon.c
Let transport (TLS or somesuch) force reading or writing on
sockets even if the higher layers think otherwise.
1999-07-20 18:02:44 +00:00
Julio Sánchez Fernández
535cc34421 If we did gethostbyname, we need no further address manipulation. 1999-07-20 11:26:44 +00:00
Kurt Zeilenga
cb94e155ae Don't call Debug inside a signal handler 1999-07-20 07:11:56 +00:00
Kurt Zeilenga
b2937bee5b s/struct entry/Entry/ 1999-07-19 21:08:59 +00:00
Kurt Zeilenga
598c472bf9 s/backend_db/slap_backend_db/ 1999-07-19 21:01:07 +00:00
Kurt Zeilenga
6847e329bc Fix new URL startup code. 1999-07-19 20:48:19 +00:00
Kurt Zeilenga
170836751a Namespace changes
added slap_ and ldbm_ to many structures
  added typedefs to many structures
  used typedefs
New main.c argument parsing with ldap url support (replacing -a address).
New sockaddr_in handling and support for multiple listeners.
1999-07-19 19:40:33 +00:00
Hallvard Furuseth
30b3958f94 Introduce got_<gid,uid> (the r1.4 change misbehaved with -user <root>).
Also free <user> in !HAVE_GETPWUID case.
1999-07-18 01:04:49 +00:00
Kurt Zeilenga
12f481d657 Import patches mistakenly applied to OPENLDAP_DEVEL_REFERRALS.
ldap_modify: delete of last attribute value should delete attribute (ITS#229)
thr_nt: use sleep to yield
1999-07-18 00:33:30 +00:00
Kurt Zeilenga
f92d01c2bb fix substring_comp_candidates logic if intersection of candidates
is ever empty.  See ITS#228.
1999-07-16 22:26:57 +00:00
Kurt Zeilenga
059ee8c86d (re)introduce o_connid such that STATS doesn't need c_mutex (which it
didn't bother to acquire)...
1999-07-16 22:24:32 +00:00
Hallvard Furuseth
425bab2c47 Add comment thatPass socklen_t* instead of int* to getsockopt, accept, getpeername, recvfrom 1999-07-16 18:57:11 +00:00
Julio Sánchez Fernández
0053b27ce0 Look on connection_read() if it returns positive so it has a chance
to exhaust all protocol units received from the transport layer.
I think this is the necessary fix for the TLS-data-ready/
socket-not-ready issue, but I have not experimented that problem
yet, so I am unsure about its effectiveness.
Now, do we need something like that for connection_write?  How would
we go about implementing it?
1999-07-16 18:53:30 +00:00
Julio Sánchez Fernández
ea8669c37d Clear c_needs_tls_acccept on ldap_pvt_tls_accept errors 1999-07-16 18:48:13 +00:00
Hallvard Furuseth
5ab862aee7 Pass socklen_t* instead of int* to getsockopt, accept, getpeername, recvfrom 1999-07-16 18:43:10 +00:00
Julio Sánchez Fernández
68b508d2f0 Move calls to ldap_pvt_tls_accept to connection_read instead of
connection_init so that we get into the select() logic.
Make use of new flags in the connection.
BTW, and before I forget, it sort of works.  I have connected with
a Netscape client using a secure connection and did a failed
search (my test database is empty), but the trace looked correct.
Make sure you have your CA certificate in your Netscape preinstalled.
Otherwise, the connection fails with error 0xFFFFFFFF that is rather
uninformative.
1999-07-16 15:52:17 +00:00
Julio Sánchez Fernández
a4a675f987 Two new flags in Connection. One to indicate that it is a raw TLS
section (that is, not SASL).  The second to indicate that we need to
do SSL_accept on this connection.
1999-07-16 15:43:47 +00:00
Julio Sánchez Fernández
8af470a543 Fix syntax oid for type 2.16.840.1.113730.3.1.34 (ref) 1999-07-16 10:51:31 +00:00
Julio Sánchez Fernández
ac49f25f75 Definitely, 'dn' and 'distinguishedName' are different things. The
former is a pseudo attribute type used internally by slapd to represent
the distinguished name of an entry and its existance should not be
visible.  The latter is an "abstract" attribute type that is not meant
to exist in practice except as supertype of other dn-valued types.
So, the definition of attribute type 2.5.4.49 has been changed to be
just distinguishedName.  Work on the OPENLDAP_DEVEL_SCHEMA branch will
treat pseudo attributes especially and will not be visible to the
clients.
1999-07-16 10:39:40 +00:00
Julio Sánchez Fernández
fd8b582aa9 We should stop using SSL to refer to TLS. This is a first step. 1999-07-16 10:28:51 +00:00
Kurt Zeilenga
73276e84ae Import experimental referral implementation from OPENLDAP_DEVEL_REFERRALS.
Includes support for update referral for each replicated backend.
	Reworked replication test to use update referral.
Includes major rewrite of response encoding codes (result.c).
Includes reworked alias support and eliminates old suffix alias codes
(can be emulated using named alias).
Includes (untested) support for the Manage DSA IT control.
Works in LDAPv2 world.  Still testing in LDAPv3 world.
Added default referral (test009) test.
1999-07-16 02:45:46 +00:00
Kurt Zeilenga
9568a013a8 Backend lock wasn't being released properly. 1999-07-16 00:16:54 +00:00
Julio Sánchez Fernández
edb1d671f8 Initialize the TLS environment *after* reading the config files. 1999-07-15 21:07:01 +00:00
Julio Sánchez Fernández
fd49eacc4b Parse more TLS options in slapd.conf 1999-07-15 21:05:08 +00:00
Julio Sánchez Fernández
d92c7c1c7d A couple of options for TLS configuration. Still a conflict here,
the default context is initialized before the config file is read,
so the locations are not know at context initialization.
1999-07-15 15:04:02 +00:00
Julio Sánchez Fernández
1df71e1814 Get rid of two compilation warnings. One is thought to be properly
taken care of.  The second, however, on remove_old_locks is unclear.
1999-07-14 19:51:35 +00:00
Julio Sánchez Fernández
e74ff638ba Parsing of flag -T was falling through to the default case.
Init the TLS environment if necessary.  Lots of things needed here,
in particular, preparing properly the default context.
1999-07-14 19:49:39 +00:00
Julio Sánchez Fernández
6d75d0f8fb connection_init now takes one more argument that indicates whether to
use TLS right away or not on that connection.
1999-07-14 19:44:18 +00:00
Julio Sánchez Fernández
c18d6e7ecf Only bind on TLS port if explicitly requested with -T, otherwise all
kind of conflicts happen when running tests.
1999-07-14 13:39:30 +00:00
Julio Sánchez Fernández
5b7babdee4 Bind and listen on TLS port too 1999-07-14 13:16:13 +00:00
Julio Sánchez Fernández
8542e45380 Extend slapd_args with TLS info 1999-07-14 13:14:54 +00:00
Julio Sánchez Fernández
0dac59ca26 Include $(TLS_LIBS) 1999-07-13 19:15:14 +00:00
Kurt Zeilenga
12b87ceebc Fix debug message. 1999-07-13 08:24:26 +00:00
Hallvard Furuseth
fb3b8e5ef1 Fix LDAP_CONNECTIONLESS code rot 1999-07-13 06:39:55 +00:00
Hallvard Furuseth
c4a13efbea Fix NULLxxx -> NULL 1999-07-13 06:37:19 +00:00
Hallvard Furuseth
4e80e9b9f2 Add opattrs=0 arg to send_search_entry() call 1999-07-13 05:05:59 +00:00
Hallvard Furuseth
b5455b8e47 Erase bad space from blank Makefile line 1999-07-13 04:13:21 +00:00
Hallvard Furuseth
55fa595f56 Add missing newline at EOF 1999-07-13 04:11:49 +00:00
Hallvard Furuseth
7e3ede2e01 Erase bad space from blank Makefile line 1999-07-13 04:01:25 +00:00
Kurt Zeilenga
5e14b911e6 Mirror <ac/time.h> inclusion made in re12 1999-07-09 21:10:19 +00:00
Kurt Zeilenga
469baeb3c0 Forgot the most important part of unsolicited notifications... exop! 1999-07-07 18:53:51 +00:00
Kurt Zeilenga
e9c2895472 Add support for unsolicited notifications. 1999-07-07 18:51:39 +00:00
Kurt Zeilenga
b8edef2b2c Copy LDBM bind "ACL_AUTH" and SASL framework to bdb2. 1999-07-07 18:47:51 +00:00
Kurt Zeilenga
7541ccbe10 Fix CRITICIAL typo. 1999-07-07 18:32:41 +00:00
Kurt Zeilenga
6c1758ae33 Add matching rule assertion structure to filter union. 1999-07-07 18:02:32 +00:00
Kurt Zeilenga
fb593fc5b9 Add controls.c to pick up get_ctrls(). 1999-07-05 23:08:43 +00:00
Kurt Zeilenga
32cefa43a0 Add controls.c: initial version of get_ctrls() 1999-07-05 23:04:35 +00:00
Kurt Zeilenga
00086db3f6 Add get_ctrls()... 1999-07-05 23:01:17 +00:00
Kurt Zeilenga
51d1c90887 unifdef -DSLAPD_ACLGROUPS -DSLAPD_ACLAUTH 1999-07-05 06:26:26 +00:00
Kurt Zeilenga
549c89f817 Regarding previous commit:
Fix broken ACL macros.
	Fix o_dn/o_ndn == NULL vs "".
1999-07-04 19:53:00 +00:00
Kurt Zeilenga
49f39bc4cf o_dn/o_ndn must not be NULL. Set to "" upon receiving bind request. 1999-07-04 19:37:25 +00:00
Kurt Zeilenga
106eef41d8 HEADS UP: connections are forced to "anonymous" status upon receiving
of a bind request and, upon failure, are left "anonymous."

Rework ACL code to hide access testing within macros to facilate additions
and eventual redesign.

Addition of #ifdef SLAPD_ACLAUTH to conditional include EXPERIMENTAL
"auth" access controls.  Adds ACL_AUTH "auth" access level (above none,
below "compare").  bind requires anonymous access at this level or above access
to "entry"/"userPassword"/"krbName".  This allows administrators to restrict
which entries can be bound to.  (This will likely become default behavior
after testing has completed).
1999-07-04 18:46:24 +00:00
Kurt Zeilenga
daf40a51c1 Abandon all operations upon receiving a BindRequest. 1999-07-02 21:42:53 +00:00
Kurt Zeilenga
b7bbc7504d More bind changes to support SASL/DIGEST.
Added configuration support for "digest-realm <realm>" configure directive.
Added connection state and bind_in_progress fields to cn=monitor connection
attribute.
1999-07-02 19:48:07 +00:00
Kurt Zeilenga
175ace59c8 Send LDAP_SASL_BIND_IN_PROGRESS if o_bind_in_progress is true. 1999-07-02 00:46:28 +00:00
Kurt Zeilenga
6f8fad20f2 Add conn/op bind_in_progress flags such that operations can detect
if multiple step SASL binds are in progress.
1999-07-02 00:04:47 +00:00
Kurt Zeilenga
97bc107537 Add macros to support testing of error categories to ldap.h
Modify ldap_result to assert returned error is not an one reserved
for API use.
Modify frontend LDAP operation routines to return an error code.
The returned value will be used to determine if an unsolicited notification
should be sent to the client.
Need to review returned error codes.  Namely some LDAP_PROTOCOL_ERROR
will like need to be changed (as they will cause unsolicited notifications).
1999-07-01 21:20:45 +00:00
Kurt Zeilenga
d7b311c6e1 s/LDAP_NOT_SUPPORTED/LDAP_UNWILLING_TO_PERFORM/ 1999-07-01 04:43:48 +00:00
Kurt Zeilenga
ddd0559284 Fairly complete slapd SASL bind parsing... and centralized cleanup code.
Update error strings and cldap misuse of server error.
1999-07-01 04:42:01 +00:00
Kurt Zeilenga
129ee42f37 NO-OP SASL parsing... DIGEST-MD5 coming soon. 1999-07-01 03:18:00 +00:00
Kurt Zeilenga
f9db1ea889 Rework BER decoding with lieu of LDAPv3 controls (coming soon).
Add place holder for handling LDAPv3 extended operations (coming soon).
1999-06-30 22:43:27 +00:00
Kurt Zeilenga
14820afdd9 Reimplement connection counters. Format of "connection" attribute
changed significantly.
1999-06-30 02:50:40 +00:00
Kurt Zeilenga
9225707a06 Modify lutil_passwd to accept a third argument char** methods to
specific which methods may be used.  This will facilate development
of a slapd config directive "passwordMethod ..." to specify which
methods should be allowed.
1999-06-29 22:24:53 +00:00
Kurt Zeilenga
fe00263875 expose oc_check_operational from schema.c
Use everywhere.
Apply search ACLs to operational attributes.
Only provide operational attributes when explicitly requested.
1999-06-29 04:52:55 +00:00
Kurt Zeilenga
a7dfc2aada Add sasl "mech" argument to backend bind routines. 1999-06-29 03:29:26 +00:00
Kurt Zeilenga
1ee85df297 Add framework for sasl and controls. 1999-06-29 03:17:22 +00:00
Kurt Zeilenga
c0af81253a remove obsolete file. 1999-06-29 03:01:02 +00:00
Kurt Zeilenga
dcc5bdfe7e Log out to stderr, add LDAP_VERSION3 support to bind.c and modrdn.c 1999-06-29 01:02:48 +00:00
Kurt Zeilenga
2660d0b42f Remove old U-Mich v3.0 and OLD_LDAP_* crud.
Leave only LDAPv2+ and LDAPv3.
1999-06-29 00:03:34 +00:00
Kurt Zeilenga
cf89dd83cd don't set unsigned variables to -1 and expect them to be negative.
verify uid/gid are positive, not non-negative.
1999-06-27 03:58:06 +00:00
Bastiaan Bakker
5a470f8959 Merged dynamic module support patch (see ITS #196). To enable, run ./configure w
ith --enable-modules. GLib v1.2 or higher is required.
1999-06-24 17:06:34 +00:00
Bastiaan Bakker
e2b5b21155 Added connection initialisation and destruction notification. Now backends can register functions in backend_info.bi_connection_init and backend_info.bi_connection_destroy that will be called when a connection is initialized or destroyed. 1999-06-23 12:31:35 +00:00
Kurt Zeilenga
0b924192e7 Move nt_debug to -llutil and generalize for all platforms. 1999-06-21 22:52:28 +00:00
Kurt Zeilenga
2fda53f375 Add missing arguments to Debug() calls... and adapt nt_debug for general
use.
1999-06-21 22:36:13 +00:00
Kurt Zeilenga
6bd26a6aed remove lint. 1999-06-21 22:35:02 +00:00
Kurt Zeilenga
52e69dfc14 All "o=foo" add to suffix "" if bound as root. 1999-06-19 05:11:18 +00:00
Kurt Zeilenga
c57e5952f9 Use ber_mem* and friends 1999-06-19 05:08:13 +00:00
Kurt Zeilenga
f9a560114a Allow adding of dn: o=foo if suffix is "" and rootdn. 1999-06-19 04:26:17 +00:00
Kurt Zeilenga
13ac82621b Limit the check to a 4 tries every timeout. 1999-06-19 03:23:49 +00:00
Kurt Zeilenga
2d720643be experimental connections_timeout_idle() implementation. 1999-06-19 03:20:01 +00:00
Kurt Zeilenga
669b8f4047 ber_int_t, ber_tag_t, ber_socket_t, ber_len_t
added lber_types.h.nt, lber_types.h.in
removal of NULLxxx internal macros (in favor of NULL).
ch_free added to slapd,slurpd/ch_malloc.c
#define free ch_free (should be removed after s/free/ch_free/g) in proto-slap.h
ch_malloc and friends use ber_memalloc and friends
1999-06-18 23:53:05 +00:00
Kurt Zeilenga
7e4b3bc2e7 initial commit of idletimeout code... everything but the actual timeout. 1999-06-18 22:54:19 +00:00
Gary Williams
07e5656797 allow service name to be passed in for install/remove 1999-06-18 21:35:18 +00:00
Gary Williams
f0ea6f2ee4 add define of service name (shared in main and nt_svc, that's why it's here) 1999-06-18 21:34:24 +00:00
Gary Williams
49d9c99d58 fix comment format, allow service name to be passed in (-v option) 1999-06-18 21:33:39 +00:00
Gary Williams
1971837778 fix comments (remove // style), free(ptr) in slapd_daemon_task was causing heap failure 1999-06-18 21:31:53 +00:00
Gary Williams
e2a1216bda change DIRSEP to LDAP_DIRSEP 1999-06-18 21:21:32 +00:00
Kurt Zeilenga
8e10bd5f81 Fix up NT slapd.dsp and nt_svc.c so that slapd builds under MSVC5. 1999-06-17 19:03:41 +00:00
Kurt Zeilenga
b0aea66d1d Recommit NT service changes (untested) with changes to resolve
compiling errors on other platforms.  Will need to update NT projects.
1999-06-17 18:46:02 +00:00
Julio Sánchez Fernández
5d8b65deb1 Have the normalize routines process white space in the required way.
Code untested, but it is not used yet.
1999-06-17 16:10:38 +00:00
Julio Sánchez Fernández
10eb260e9c Some sample routines for implementing matching rules.
Some matching rule definitions modified to use said routines.
Default appropriately all other matching rules.
1999-06-17 15:07:35 +00:00
Julio Sánchez Fernández
45679394e0 If we are inheriting the syntax from a superior, we'd rather inherit
the length too.
1999-06-17 15:05:02 +00:00
Julio Sánchez Fernández
9ec2849a6d Fix handling of SYNTAX_CES by making use of some matching rules in
X.520 that were not inherited by RFC2252.
Fill in properly the matching rule oids when converting an attribute
type definition in the old format.
1999-06-17 13:11:30 +00:00
Julio Sánchez Fernández
66279c696c Defined 3 new matching rules taken from X.520 that were necessary to
do properly SYNTAX_CES.  Documented all other matching rules from
X.520 that we do not use.
1999-06-17 13:08:40 +00:00
Kurt Zeilenga
bbc568b21f ldapconfig.h vs ldap_config.h changes
backout previous nt changes (actually, just don't include nt_svc.c)
1999-06-17 04:43:24 +00:00
Kurt Zeilenga
21e081dc5b Separate autoconf generated values from "defaults".
ldap_defaults.h incorporates non-generated ldapconfig.h values.
	ldap_config.h.in is new template for autoconf generated defaults
		(namely directories and paths)
	ldap_config.h.nt, NT template (must be manually copied)
	s/<ldapconfig.h>/<ldap_defaults.h>/
	s/DIRSEP/LDAP_DIRSEP/ & s/DEFAULT_/LDAP_/
1999-06-17 03:54:25 +00:00
Kurt Zeilenga
23c4b81819 Backout NT Service changes.... breaks Unix builds... 1999-06-17 00:51:12 +00:00
Kurt Zeilenga
36cb034611 Add test for resched state change in connection_get 1999-06-17 00:48:51 +00:00
Gary Williams
bfa86bcf57 new module to support slapd as NT service 1999-06-16 19:16:34 +00:00
Gary Williams
4d13d4071a add code to support slapd as NT service 1999-06-16 19:15:35 +00:00
Gary Williams
2ffc4b19ea check addr for NULL before copying 1999-06-16 19:15:03 +00:00
Gary Williams
17c9a5798a NT service code for slapd 1999-06-16 19:14:29 +00:00
Julio Sánchez Fernández
f5d28c6df5 Fixed bogus handling of objectclass in oc_schema_check. 1999-06-16 12:11:47 +00:00
Juan Gomez
4a683c204d Replaced add/delete_value() by change_value() and index_add/delete_value()
by index_change_values(). The functions were exactly the same but for
one call.
1999-06-15 23:56:28 +00:00
Kurt Zeilenga
8f8cf6d3b1 Fix a couple of nits. ldbmtest still needs to be ported to NT. 1999-06-15 21:17:26 +00:00
Kurt Zeilenga
6fc999e214 Remove meantion of ldapd from main README, add README in servers/ldapd
stating ldapd is not supported nor actively maintained, and the code
may suffer from bitrot.  Update configure warnings.
1999-06-15 21:09:46 +00:00
Juan Gomez
5b0e434d93 Enabled deletion of stale index entries. (EXPERIMENTAL) 1999-06-15 20:06:16 +00:00
Juan Gomez
e1819eaff9 Added function delete_value() to remove entries from the index files
when necessary.
1999-06-15 19:50:20 +00:00
Julio Sánchez Fernández
74ff331014 Initial RFC2252-compliant version. 1999-06-15 12:40:46 +00:00
Julio Sánchez Fernández
c5060e655f We don't have a definition for caseIgnoreListSubstringsMatch, disable
references to it for now.
Fix some broken definitions.
We don't have a definition for caseIgnoreIA5SubstringsMatch either,
delete for now.
Define buildingName, it was being referenced.
1999-06-15 12:39:35 +00:00
Julio Sánchez Fernández
7ef4ec98b7 We don't have a definition for caseIgnoreListSubstringsMatch, disable
references to it for now.
1999-06-15 12:37:06 +00:00
Julio Sánchez Fernández
759bfa0c51 Activate checking of matching rules and syntaxes.
Make matching rules link to their syntaxes.
Many more matching rules and syntaxes.
Protect schema_init from multiple invocations.
1999-06-15 12:35:29 +00:00
Julio Sánchez Fernández
4cfb0be242 Activate support of matching rules and syntaxes, inherit them from superiors. 1999-06-15 12:32:21 +00:00
Julio Sánchez Fernández
fc44e7ddef New error code, fixed definition of smr_syntax. 1999-06-15 12:30:51 +00:00
Julio Sánchez Fernández
5adb15f681 More error codes. 1999-06-15 12:28:54 +00:00
Julio Sánchez Fernández
803d6d1204 Moved call of schema_init from main to read_config. 1999-06-15 12:26:07 +00:00
Kurt Zeilenga
61eaffeed2 connection_get forgot to unlock c_mutex in not used case! 1999-06-14 20:33:21 +00:00
Kurt Zeilenga
e2e1cb76cb Remove check for inactive streams before connection_read/_write
calls.  Such checks are ineffective it protecting connection_read/_write
from being called inactive streams.  connection_read/_write have their
own protection against such (in connection_get()).
1999-06-14 20:28:30 +00:00
Julio Sánchez Fernández
87b86a52e4 Matching rules and syntaxes, initial step.
schema_init, seeding of standard syntaxes and matching rules.
1999-06-14 19:10:07 +00:00
Juan Gomez
499b8fdc04 Added index_delete_values() in preparation for changes that will keep
index files clean.
1999-06-14 18:16:05 +00:00
Juan Gomez
24ec5ded59 official -> canonical 1999-06-14 16:37:46 +00:00
Juan Gomez
bf49544833 s/official/canonical/ & s/at_on/at_cn/ 1999-06-14 16:36:00 +00:00
Julio Sánchez Fernández
a3f63029f4 Some changes to be more inline with the constification done on the library. 1999-06-14 14:34:07 +00:00
Julio Sánchez Fernández
53ae3dc5c0 Initial definitions for syntaxes and matching rules. 1999-06-14 14:32:40 +00:00
Kurt Zeilenga
cb68aab469 s/ldap_open/ldap_init/ calls... ldap_open is deprecated. 1999-06-13 21:49:35 +00:00
Kurt Zeilenga
6950e8e403 Change referral comment to point to root.openldap.org instead of umich.edu.
Both do not return anything useful.
1999-06-12 21:02:11 +00:00
Kurt Zeilenga
18e5e729ac Resched changes struct state without lock to avoid deadlock.
Hence connection_get must recheck struct state after obtaining
c_mutex to detect close.
1999-06-12 00:29:41 +00:00
Kurt Zeilenga
35e91be482 connection_get:
Connection could be closed before acquiring connections_mutex.
	if c->c_struct_state == SLAP_C_UNUSED, return NULL.
1999-06-12 00:03:39 +00:00
Kurt Zeilenga
0dda34c9e4 Add additional assert in connection get for race debugging. 1999-06-11 23:19:31 +00:00
Juan Gomez
f3b3c68792 Added at_official_name() to enable uniform naming of index files. 1999-06-11 20:49:41 +00:00
Juan Gomez
7d8330fd40 Added code for uniform naming of index files. 1999-06-11 20:42:48 +00:00
Juan Gomez
c8fac1864c Added at_ooficial_type() for uniform naming of index files. 1999-06-11 20:41:07 +00:00
Kurt Zeilenga
3cfd58eed8 EXPERIMENTAL: move slapd_remove to connections_read/_write as they
acquire c_mutex.
1999-06-11 19:10:45 +00:00
Kurt Zeilenga
35eff96dad Add Debug to help sort out race condition. 1999-06-10 22:21:51 +00:00
Kurt Zeilenga
368628e9d5 Close inactive streams instead of asserting condition. 1999-06-10 22:06:05 +00:00
Kurt Zeilenga
571e8c098d Add cheap EBADF loop protection. 1999-06-10 21:11:21 +00:00
Kurt Zeilenga
9c793f15f4 Fix typo in last commit. 1999-06-10 15:55:00 +00:00
Kurt Zeilenga
446ef413f6 Don't shutdown when select() returns EBADF. 1999-06-10 03:11:22 +00:00
Kurt Zeilenga
64bb1a99f4 Fix unprotected (and bad) FD_SET asserts. 1999-06-10 02:52:51 +00:00
Kurt Zeilenga
5555cc26b9 disable referral directive. 1999-06-09 23:43:22 +00:00
Julio Sánchez Fernández
63498d1a21 Removed unnecessary definition that is already in core.schema. 1999-06-09 11:08:10 +00:00