mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-02-11 13:50:39 +08:00
Code Issues Packages Projects Releases Wiki Activity
3,028 Commits 38 Branches 307 Tags 76 MiB
9369b9daad
Commit Graph

1199 Commits

Author SHA1 Message Date
Kurt Zeilenga
9fec129997 Second round of schema changes 
Revert normalization to matching rule per discussions with Julio.
May need separate normalization routines for stored value and asserted
value. Currently rely on passed in syntax/mr to allow "special" behavior.
Reworked filters to pass struct berval * instead of char *. (needs work)
Validation, normalization and matching needed.
 2000-01-25 21:13:31 +00:00
Kurt Zeilenga
4bdd788c68 Move uppercase comment to be next to uppercasing code. 2000-01-25 00:49:14 +00:00
Kurt Zeilenga
7f63755d5d Start putting old code behind the currently defined SLAPD_SCHEMA_COMPAT. 2000-01-25 00:38:48 +00:00
Kurt Zeilenga
a412a0529d Have compare use get_ava(). 
Well help when we split assertion options out from the description.
 2000-01-25 00:05:36 +00:00
Kurt Zeilenga
117a37272d Modify slapd syntax struct to have both a validation and normalization 
routine.  Could be combined into one routine.
Modify slapd matching rule struct to only have match function.
Modify old attribute such that 'bin' implies octetString, not 'binary'.
Add compatibility for IA5 strings.  Only directoryStrings were handled
before.
Treat attribute types without syntax as incomplete, not default.
Add OctetStringValidate (always returns okay).
Add {UTF8,IA5}StringValidate/Normalize  (IA5 based loosely on
case_exact_normalize).  Need case{Exact,Ignore}UTFMatch, using IA5 versions
for now.
Removed default of syntax/mr handlders, should just skip
registration of syntax/mr's without handlers.
Added comments to slap.h about types versus descriptions.
 2000-01-24 23:31:26 +00:00
Kurt Zeilenga
fdcd8465c3 s/case_ignore_normalize/caseIgnoreIA5Normalize/ 
s/case_ignore_compare/caseIgnoreIA5Match/
s/case_exact_normalize/caseExactIA5Normalize/
s/case_exact_compare/caseExactIA5Match/

to make room for UTF-8 and T.61 varients.
 2000-01-23 20:53:12 +00:00
Kurt Zeilenga
2f22b6bf0c Add comment: old schema is OC less category (abstract, struct, aux). 2000-01-23 20:49:17 +00:00
Howard Chu
0b15c19cdf Fix bug in group spec parsing, was failing to set attributeType if a 
nondefault objectclass was given
 2000-01-15 03:48:37 +00:00
Kurt Zeilenga
a16943d645 Per ITS#419, don't require SLAPD_RLOOKUPS when HAVE_TCPD 2000-01-11 01:12:08 +00:00
Kurt Zeilenga
6437785a82 Initial implementation of Kerberos password verification for 
simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.
 2000-01-08 18:42:11 +00:00
Luke Howard
a1ccf169da Filled in Cyrus SASL authz/storage callbacks for all backends 
(callbacks not yet implemented though).
 2000-01-02 05:42:14 +00:00
Luke Howard
9b4e3b2234 Merged in preliminary support for Cyrus SASL library; 
support for DCE slash-delimited, left-to-right DNs;
support for a domain socket transport (enable with
--enable-ldapi); and extensions to URL parsing to
support the latter transport.
 2000-01-02 01:21:25 +00:00
Kurt Zeilenga
6fb04da524 Install schema/*.{at,oc}.conf files. 2000-01-01 20:11:50 +00:00
Kurt Zeilenga
8dc0fac3ad Remove 'mail' as it 'standard', not 'laser' 2000-01-01 20:10:41 +00:00
Kurt Zeilenga
13f72e9dde Add missing \n 2000-01-01 19:40:06 +00:00
Kurt Zeilenga
da93ca8c5e Remove DNS_DN experimental code. 1999-12-18 19:54:22 +00:00
Kurt Zeilenga
79b31f63c2 don't treat undefined oc as extensibleObject 1999-12-18 03:10:22 +00:00
Howard Chu
0fa6f1df1e Tentative fix for ITS #402. (Not tested yet.) If successful, this patch 
should also be applied to back-bdb2/idl.c.
 1999-12-17 10:04:31 +00:00
Kurt Zeilenga
30411f8402 Add slappasswd to generate rootpw. 1999-12-16 02:18:50 +00:00
Kurt Zeilenga
6253e7c278 Updated sasl response to support returning of referrals. 
Updates to extended operation framework to support arbitrary
referrals and extended results without OIDs.
Updated passwd extended operation to support returning update_refs
as needed.  Needs replog support.
 1999-12-15 23:22:47 +00:00
Kurt Zeilenga
b1639dadd6 Remove lint 
Add copyrights
 1999-12-13 04:53:59 +00:00
Kurt Zeilenga
4dfc7fc674 Fix server unavailable handling bug introduced by the ldap_open to 
ldap_init change.   Fix suggested by Jay D. Allen <jay@fork.com>.
 1999-12-12 20:12:39 +00:00
Kurt Zeilenga
3eef87beeb Stop reducing number of substring candiadates when there is only two or 
less left.  Based upon suggestion made by bert hubert <ahu@casema.net>
 1999-12-12 19:59:05 +00:00
Kurt Zeilenga
7c28aa058c Add password check and generation check. 
Modify tests to use -h "ldap://localhost:port/" instead of -p port.
 1999-12-12 18:45:06 +00:00
Kurt Zeilenga
fe5608c4d5 Wrap request/response bervals in a sequence. 1999-12-11 19:33:45 +00:00
Mark Valence
a76c9f18a9 Start TLS extension: check that TLS was inited successfully, return default referral on failure as appropriate. 1999-12-10 19:18:33 +00:00
Kurt Zeilenga
01ab716e8a ITS#394: index presence bug fix 1999-12-10 18:07:24 +00:00
Kurt Zeilenga
431dad371c Fix slapd SASL/ExternalOps encoding 
Add controls to extended ops API signatures, need impl.
Update password to support optional server side generation of
new password, verification of old password, and changing of
non-bound user's passwords.
 1999-12-10 04:52:32 +00:00
Howard Chu
ffca59fc51 Add some mutex symbols, delete unused *_values symbols 1999-12-10 03:42:39 +00:00
Kurt Zeilenga
0c8fdd5b20 Return protocol error if reqdata was provided. 1999-12-09 23:21:48 +00:00
Kurt Zeilenga
1b787171fc Place passwd extended op into builtin list. 1999-12-09 23:05:15 +00:00
Mark Valence
1fadca5419 Start TLS extended op routine. 1999-12-09 22:41:45 +00:00
Mark Valence
454284f1ea Adds for Start TLS functionality on slapd and LDAP C API. 1999-12-09 22:33:22 +00:00
Mark Valence
31eea5f43c On Windows, WSAENOTSOCK is treated the same as EBADF. This is needed because of a race condition (sock is selected just after another thread closes it), which needs a proper fix. 1999-12-09 22:05:00 +00:00
Kurt Zeilenga
354d0d5b50 Modify password code such that backend end routine calls into 
frontend to complete parsing of extended op reqdata.
Modify password extended operation to allow optional id (DN)
entry to change (not tested).  Also, provide room to allow
server side password generation (not implemented).  Added optional old
password field to support proxying (not implemented).
Need to implement replog() support.
 1999-12-09 21:30:32 +00:00
Mark Valence
bb693fd1b5 Bug fix: re-used Connection have TLS value for previous conn. 1999-12-09 21:06:42 +00:00
Kurt Zeilenga
5e12c84a6f Add simple password test program. 
Rework lutil_passwd routines to use struct berval instead of strings.
 1999-12-09 01:11:16 +00:00
Howard Chu
2ee9c196d2 Fix the 1.71 fix - only offset the length if the last character of the 
referral URL is not a '/'. Also in send_search_reference, corrected the
comparison for the pre-V3 case. Previously, referrals were being dropped
completely for V2 subtree searches. More work is still needed, V2 onelevel
referral handling is wrong.
 1999-12-08 23:31:11 +00:00
Kurt Zeilenga
26c7d69e8c Update for new password codes for MSVC5 1999-12-08 06:44:22 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set 
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
 1999-12-08 04:37:59 +00:00
Gary Williams
552c86de98 release build needs advapi32.lib added to link 1999-12-07 20:08:05 +00:00
Kurt Zeilenga
831bfa760e reduce slap_passwd_check to simple form 1999-12-06 21:42:10 +00:00
Kurt Zeilenga
6a0dbb229b Modify slapd.conf to match example provided in Quick Start Guide 1999-12-04 18:35:33 +00:00
Kurt Zeilenga
5d5588836f Fix ldap_rename parameter order (ITS#387) 1999-12-04 17:19:11 +00:00
Howard Chu
ed05ed8025 Fix memory losses, ITS#379 1999-12-03 00:21:32 +00:00
Howard Chu
cbc5c8494e Fix off-by-one in v2ref 1999-12-02 05:19:24 +00:00
Howard Chu
d1841b5c1f Fix WAKE_LISTENER hang in single-threaded server 1999-12-02 03:45:54 +00:00
Howard Chu
7eec31c8f6 Don't call FD_SET for an fd if it is already set. This causes major problems 
on NT due to their fd_set implementation.
 1999-12-02 03:21:06 +00:00
Mark Valence
9c88ec691d Removed unnecessary #include "back-ldbm.h". 1999-12-01 01:45:23 +00:00
Kurt Zeilenga
a9fb92467e Add send_ldap_sasl() to facility implementation of SASL bind. 1999-11-29 17:44:14 +00:00
Howard Chu
e63364baac Read a full buffer from wake_sds whenever we wake up from select(). 1999-11-28 04:05:59 +00:00
Howard Chu
eaaea51b53 Fixes for NT dynamic linking. 1999-11-27 23:40:08 +00:00
Kurt Zeilenga
3978748e35 Fix prototypes to use ber_int_t consistently. 1999-11-25 17:52:47 +00:00
Howard Chu
e9a246744e load_extension was referenced unconditionally, but is only defined 
in extended.c if SLAPD_EXTERNAL_EXTENSIONS is defined. Add #ifdef here.
 1999-11-25 10:07:14 +00:00
Kurt Zeilenga
10649f5601 adjust to kerberos/passwd rearrangements. 1999-11-24 00:49:02 +00:00
Kurt Zeilenga
3c586012e3 Switch userpasswd from 'ces' to 'bin'. 1999-11-23 19:03:40 +00:00
Kurt Zeilenga
42bb3e2e85 Move userPassord and krbName authentication routines to the frontend. 1999-11-23 19:00:09 +00:00
Mark Valence
6b23a78ac1 Add supportedACIMechanisms to root DSE (when compiling with ACIs enabled). 1999-11-22 18:44:07 +00:00
Mark Valence
d93ef01ac7 Add get_supported_acimech() for use by root_dse, check aci OIDs against supported list. 1999-11-22 18:42:46 +00:00
Mark Valence
0b9f7c8240 Added get_supported_acimech() 1999-11-22 18:40:05 +00:00
Mark Valence
72fff129d2 Add supportedACIMechanisms to operation attributes list. 1999-11-22 18:38:42 +00:00
Mark Valence
0cebfef468 Add supportedACIMechanisms and aCIMechanism attributetypes. 1999-11-22 18:24:08 +00:00
Kurt Zeilenga
45a6876db1 Add OID for LDAPsubentry... this item likely to change 1999-11-22 01:28:24 +00:00
Kurt Zeilenga
a1a5f9752c Add some simple DESC... every item should have a DESC 1999-11-22 00:57:26 +00:00
Kurt Zeilenga
bc0d17ba1e Shift a few more "core" items from pilot to core. 1999-11-22 00:01:44 +00:00
Kurt Zeilenga
1113769e54 Move dcObject uidObject to core.schema 1999-11-21 23:40:03 +00:00
Kurt Zeilenga
faf7f146b2 Remove Netscape (draft) TTL schema 1999-11-21 23:39:14 +00:00
Kurt Zeilenga
adc617ca16 Add RFC2589 Dynamic Directory schema 1999-11-21 23:38:14 +00:00
Kurt Zeilenga
c7dc3e235c Add OpenLDAP RCSid 1999-11-21 23:26:12 +00:00
Kurt Zeilenga
c49ee66b78 Plug memory leak. 1999-11-21 23:20:25 +00:00
Mark Valence
de24d31499 schema definitions from Active Directory. 1999-11-21 19:50:35 +00:00
Kurt Zeilenga
3d0dd02b17 Advertise LDAP_CONTROL_X_CHANGE_PASSWD. 
Implementation coming soon.
 1999-11-17 23:43:25 +00:00
Mark Valence
bd922dcd3b Use get_supported_extension() accessor instead of supportedextensions[] extern. 1999-11-17 23:29:30 +00:00
Kurt Zeilenga
bbeec83869 ITS#357 (cont): Don't crash on at_cn == NULL. 1999-11-17 22:53:54 +00:00
Mark Valence
43a6e2e878 Added "ntdom" backend info. 1999-11-17 22:52:34 +00:00
Kurt Zeilenga
8032f5885d ITS#357: at_cn == NULL causes crash 1999-11-17 22:43:07 +00:00
Kurt Zeilenga
a995aef4a5 Install schema. 1999-11-17 21:14:22 +00:00
Mark Valence
883f9de61d Added get_supported_extension(), removed extern supportedExtensions[]. 1999-11-17 19:17:31 +00:00
Mark Valence
fbe44c195d Use get_supported_extension() accessor instead of supportedextensions[] extern. 1999-11-17 18:59:41 +00:00
Mark Valence
e1d1259191 Added get_supported_extension(int) accessor (replaces supportedExtensions extern). 1999-11-17 18:55:01 +00:00
Kurt Zeilenga
0de4adaf09 Use objectclass LDAProotDSE for root DSE instead of LDAPsubentry. 
Still need object classes for both of these.  Suspect we'll need
to assign "experimental" ones from our arc.
 1999-11-17 01:47:49 +00:00
John Quillan
c6744aea36 fixed problem in which we didn't statically link in the dynamic 
loader, there for not allowing any modules with shared libraries
to be loaded.
 1999-11-11 06:14:41 +00:00
Howard Chu
9f7b1160dd Move str2access and access2str outside #ifdef LDAP_DEBUG clause 1999-11-10 20:28:42 +00:00
Mark Valence
951b275ed6 Added support for external extensions (based on moduleload). All new code is conditional on SLAPD_EXTERNAL_EXTENSIONS. 1999-11-09 21:42:45 +00:00
Mark Valence
be9c0c2467 Rewrite to better support external modules hooking into slapd. Added module_init() and module_kill() routines for startup and (clean) shutdown. 1999-11-09 21:32:19 +00:00
Mark Valence
a432217976 Added calls to new module_init() and module_kill() routines. 1999-11-09 21:22:12 +00:00
Mark Valence
47d4d7fbb0 Added new module_* routines, changed def. of load_extension. 1999-11-09 21:20:23 +00:00
Mark Valence
249313f75a Removed previous changes for extensions -- extensions now use moduleload. 1999-11-09 21:18:37 +00:00
Mark Valence
4903dbcd76 Bug fixes to do_extended(). 1999-11-09 04:14:38 +00:00
Mark Valence
c8aa051571 Load extension library on "extension" keyword in configs (actual load routine is in extended.c). Protected by #ifdef SLAPD_EXTERNAL_EXTENSIONS. 1999-11-09 03:37:05 +00:00
Mark Valence
90c4709eb7 In preparation for extensions improvements, added send_ldap_extended. 1999-11-09 03:29:50 +00:00
Mark Valence
edc7062f34 In preparation for extensions improvements -- added send_ldap_extended and load_extension. 1999-11-09 03:28:17 +00:00
Mark Valence
23cb3a0555 Added a "dnattr" case for ACIs (still need to check the ACI OID). 1999-11-08 18:50:51 +00:00
Kurt Zeilenga
f4856214fb *** empty log message *** 1999-11-08 15:38:59 +00:00
Kurt Zeilenga
58eb1534f9 Needs <ldap.h> due to stubs. 1999-11-08 15:30:51 +00:00
Mark Valence
af855ec94b Updated ACI code to work with new ACL changes. All changes are within the SLAPD_ACI_ENABLED #ifdef's. 1999-11-06 05:05:50 +00:00
Howard Chu
fe79f5d12a Fix - v2ref returned a pointer that it did not allocate, and send_ldap_result 
would try to free it. Also, send_search_result was not freeing the pointer,
but it should have been.
 1999-11-05 22:50:58 +00:00
Howard Chu
f0916150f3 Delete unnecessary exports 1999-11-05 22:49:45 +00:00
Howard Chu
e8182f97c4 Relocated the stubs function to avoid being dependent on 
HAVE_NT_SERVICE_MANAGER - when threads are disabled, HAVE_NT_SERVICE_MANAGER
is not defined, but the stubs still must remain defined.
 1999-11-05 22:49:26 +00:00
Howard Chu
25323de5cb Fix to prevent freeing the same pointer twice on mod errors 1999-11-05 22:46:45 +00:00