Commit Graph

1454 Commits

Author SHA1 Message Date
Kurt Zeilenga
349bec7c0e Fix desc not NULL bugs 2000-05-16 21:44:54 +00:00
Kurt Zeilenga
8d407bc2a6 Modify ava code to return error text
Filter code needs to be updated to properly handle soft errors.
2000-05-16 21:03:18 +00:00
Kurt Zeilenga
c689e1cb74 bv2ad expects desc pointer to be NULL if unallocated 2000-05-16 20:50:49 +00:00
Kurt Zeilenga
dfe11c105d s/LDAProotDSE/OpenLDAProotDSE/ (until we have a standard track class) 2000-05-16 18:13:08 +00:00
Kurt Zeilenga
318a116910 Misc. schema updates. 2000-05-16 18:11:50 +00:00
Kurt Zeilenga
75841ac6c7 Apply filter to info entry 2000-05-16 17:00:42 +00:00
Kurt Zeilenga
53709873dd Rework root dse and other info entry codes to produce entry
to caller (do_search) such that info can be used by other
operations (ie: do_compare).
2000-05-16 16:42:01 +00:00
Kurt Zeilenga
a1430fdfdb Rework root dse and other info entry codes to produce entry
to caller (do_search) such that info can be used by other
operations (ie: do_compare).
SLAPD_SCHEMA_NOT_COMPAT: Add additional code to support filters (needs work)
2000-05-16 16:22:52 +00:00
Kurt Zeilenga
4e5992c190 Fix unsigned * vs unsigned long * bugs 2000-05-16 04:52:37 +00:00
Kurt Zeilenga
deac70a6de Fix typo in last commit 2000-05-16 02:17:59 +00:00
Kurt Zeilenga
6af8b86a7e SLAPD_SCHEMA_NOT_COMPAT: need to set desc to NULL 2000-05-15 23:47:51 +00:00
Kurt Zeilenga
37235b71c0 SLAPD_SCHEMA_NOT_COMPAT: working cn=schema 2000-05-15 23:36:37 +00:00
Kurt Zeilenga
aa08287e29 SLAPD_SCHEMA_NOT_COMPAT: simple Root DSE search WORKS! 2000-05-15 22:07:10 +00:00
Kurt Zeilenga
19becc614f SLAPD_SCHEMA_NOT_COMPAT: implement attr_merge() 2000-05-15 21:47:58 +00:00
Kurt Zeilenga
73b48936a7 Should have #ifdef'ed in last commit 2000-05-15 21:22:57 +00:00
Kurt Zeilenga
40ab90fa9c SLAPD_SCHEMA_NOT_COMPAT: Rework caching of internal schema 2000-05-15 21:05:25 +00:00
Kurt Zeilenga
7b14e1304a Relocate schema_init() call to main()
Add schema_prep() call to main()
Similiar changes to slapcommon.c
Add schema_prep() impl to schema_init.c
Add slap_ad_entry and slap_ad_children globals.
Add "entry" and "children" to openldap.schema (this likely should
  be added to schema via code, not configuration)
2000-05-15 20:04:36 +00:00
Kurt Zeilenga
ef6ee899cb Fix -USLAPD_SCHEMA_NOT_COMPAT bugs introduced in last commit 2000-05-15 19:28:26 +00:00
Kurt Zeilenga
59aba7711b SLAPD_SCHEMA_NOT_COMPAT: basic filter parsing 2000-05-15 18:46:03 +00:00
Kurt Zeilenga
ff3e396bb9 Port to SLAPD_SCHEMA_NOT_COMPAT 2000-05-15 16:53:28 +00:00
Kurt Zeilenga
7c88b6f191 Fix typo in last commit 2000-05-15 16:53:05 +00:00
Kurt Zeilenga
e0eba07244 Add copyright notices 2000-05-15 16:35:48 +00:00
Kurt Zeilenga
dc68e41ee9 cleanup old TOOLID macro 2000-05-15 16:33:07 +00:00
Kurt Zeilenga
1e65293aa2 Minor updates to shell backend configuration/examples.
Replace U-Mich DN with OpenLDAP DN
Remove default referral
Add copyright notice
s/#!/bin/sh/#! /bin/sh/
2000-05-15 16:31:59 +00:00
Kurt Zeilenga
ae7d89fa1e SLAPD_SCHEMA_NOT_COMPAT addl. filter changes (a work in progress). 2000-05-15 00:41:29 +00:00
Kurt Zeilenga
4bc786f34b Y2k copyright update 2000-05-13 02:47:56 +00:00
Howard Chu
72d53b60e0 Silence some warnings from parameter type mismatches 2000-05-13 01:18:57 +00:00
Howard Chu
9a79d03e13 Fix previous change to getRegParam, SERVICE_NAME is only known in slapd. 2000-05-12 21:26:30 +00:00
Howard Chu
55f4896cb9 Fix typo with dnattr parsing 2000-05-12 09:10:45 +00:00
Howard Chu
43e97bfb7a Removed XLDFLAGS, unnecessary 2000-05-11 20:50:50 +00:00
Howard Chu
2e5e4c3f20 More fixes for NT support:
liblutil/ntservice.c change registry key path used for non-default
  	service names.
  slapd/Makefile.in change to generate slapd.syms dynamically
  slapd/daemon.c fix to make NT service ignore SIGBREAK
  slapd/main.c fix to allow NT to retrieve listening url from registry
  slapd/nt_svc.c fix for exported symbols
  slapd/result.c change use of strerror to sock_errstr
  slapd/slapd.syms no longer needed
2000-05-11 20:50:20 +00:00
Kurt Zeilenga
643864c569 Change negotiated mechanism:
If application provide one, use it.  If application doesn't
	provide one, use best of server advertised.
Fix SASL/ANONYMOUS (not normally used, but should work)
PLAIN is not currently working... might be local to me as my
Cyrus installation is a bit hosted.
2000-05-11 20:16:26 +00:00
Howard Chu
2d9a7620b5 LDAP_F macro is obsolete. Redeclare perl_ack_xs_init static, since it
is, and declare boot_DynaLoader as EXT since it actually comes from
perl, not from this module.
2000-05-11 09:35:29 +00:00
Howard Chu
3d5553abc2 Removed XLDFLAGS, unnecessary for modules. 2000-05-11 09:33:34 +00:00
Kurt Zeilenga
4fad202b44 hostname needs to be static 2000-05-11 02:41:34 +00:00
Kurt Zeilenga
f9411ca154 Fix another bug... seems to be working... ldap://root.openldap.org/ 2000-05-11 01:12:48 +00:00
Kurt Zeilenga
59305df8bb Fix debug level typo 2000-05-11 00:44:03 +00:00
Kurt Zeilenga
cb8d9e16e9 Add bind handler which returns unwillingToPerform with
nasty message if password was provided.
2000-05-10 23:54:57 +00:00
Kurt Zeilenga
1dc3e3c408 Add basic and EXPERIMENTAL chroot() support. 2000-05-10 23:30:52 +00:00
Kurt Zeilenga
18f31148be Working (but likely not robust) DNS SRV backend! 2000-05-10 22:43:08 +00:00
Kurt Zeilenga
fbb58dec53 Fix minor bugs... 2000-05-10 22:21:57 +00:00
Kurt Zeilenga
e87e01b9c5 DNS SRV meat (a work in progress) 2000-05-10 21:48:18 +00:00
Howard Chu
df7ca2c3f3 Remove #undef LDAP_MOD_BVALUES - backends like back-ldap that are also
LDAP clients themselves still need this definition.
2000-05-10 21:22:07 +00:00
Howard Chu
3af3014763 Remove bogus use of PERL_LDFLAGS, it's correctly inserted in SLAPD_LIBS
by top.mk
2000-05-10 21:18:12 +00:00
Kurt Zeilenga
dbde2604d7 Additional DNS SRV framework (a work in progress)
add common request handler
	remove bind handler (not needed)
2000-05-10 20:11:58 +00:00
Kurt Zeilenga
2c2a54d6d7 Add DNS SRV backend framework (a work in progress). 2000-05-10 18:17:38 +00:00
Howard Chu
f0c4f83ea2 libldap/tls.c: change tls_verify_cb to no longer ignore verification errors.
This means a ldaps connection may drop before any LDAP protocol exchange
occurs (due to expired cert, unrecognized CAs, etc.).
  Change ldap_pvt_tls_connect to copy any TLS error string to ld_error upon
connection failure, otherwise client just sees "can't contact LDAP server."

slapd/connection.c: add flush/delay when SSL_accept fails, to allow any
TLS alerts we generated to propagate back to the client. (Which will then
be picked up by ldap_pvt_tls_connect on the client...)
2000-05-10 17:07:09 +00:00
Howard Chu
dcad3d9569 Undo slapd/add.c rev 1.54; back-bdb2 and back-ldbm were the only backends
that called entry_free() on failure. This change would cause a memory leak
from all the other backends. Instead, remove the entry_free calls in these
two backends and let the frontend take care of it for everyone.
2000-05-10 16:36:46 +00:00
Kurt Zeilenga
f224e69558 Add experimental code to check simple bind passwords
against Cyrus SASLdb.  Like other cleartext mechanisms,
should be protected from eavesdropping.
2000-05-10 04:29:51 +00:00
Kurt Zeilenga
dcc943e528 move default "directory" 2000-05-03 19:01:29 +00:00
Kurt Zeilenga
d0555fffe6 Error handling changes including separation of client v. server
SASL to LDAP translation.  plus comments and other minor changes
2000-05-03 18:59:58 +00:00
Kurt Zeilenga
8c386888fa Move default LDBM directory from /usr/tmp to $(localstatedir) 2000-05-03 10:07:21 +00:00
Bastiaan Bakker
14418bdff3 Avoid C++ keyword 'new' in header files. 2000-04-30 15:26:51 +00:00
Bastiaan Bakker
873c36f788 Added example 'moduleload' lines to slapd.conf 2000-04-30 15:01:32 +00:00
Randy Kunkee
e5de6c5b0c Change count test for non-zero reference counts to check for ... non-zero. 2000-04-26 09:24:58 +00:00
Randy Kunkee
75467fb340 Rework order of things to allow restart in oneshot mode. 2000-04-26 09:24:12 +00:00
Kurt Zeilenga
92e2453467 A NULL (empty) SASL mechanism should not result in a protocol error. 2000-04-26 09:20:25 +00:00
Kurt Zeilenga
b872bf3a91 fix -UHAVE_CYRUS_SASL 2000-04-25 19:28:00 +00:00
Kurt Zeilenga
20351a05cc SASL: me thinks I got the states okay... now to test. 2000-04-25 18:02:50 +00:00
Kurt Zeilenga
42a20681cc SASL closer to working from frontend only, need to work through
states.
2000-04-25 17:23:54 +00:00
Kurt Zeilenga
55ae3cffd8 SASL code without backend support. Should work with
external store, but not yet tested.  [Intent is to support
both in same server... may not be doable]
2000-04-25 16:03:17 +00:00
Kurt Zeilenga
2e22c55a6c Fix typo in prev commit 2000-04-25 13:25:55 +00:00
Kurt Zeilenga
6f2a817d9d bind/sasl cleanup PRIOR TO moving call from backend to frontend 2000-04-25 13:21:42 +00:00
Kurt Zeilenga
0c134a72d6 SCHEMA_NOT_COMPAT changes 2000-04-25 13:21:06 +00:00
Kurt Zeilenga
12e253fc66 entry_schema_check rename 2000-04-25 13:20:05 +00:00
Kurt Zeilenga
01c4e0f03c LDAP_OPERATIONS_ERROR -> LDAP_OTHER
and other error handling changes
2000-04-25 13:18:59 +00:00
Kurt Zeilenga
365d17ca68 entry_schema_check() rename and more (error handling) 2000-04-25 13:15:55 +00:00
Kurt Zeilenga
8b09742e5c (slightly) better comments 2000-04-25 13:13:42 +00:00
Kurt Zeilenga
f5ab390e08 Update 2000-04-25 13:12:40 +00:00
Kurt Zeilenga
56ebee78fb return more descriptive error text 2000-04-25 13:12:20 +00:00
Kurt Zeilenga
16937cb91d remove SASL bind call. Frontend code coming. 2000-04-25 13:10:31 +00:00
Kurt Zeilenga
3bad06d52b entry_schema_check() rename 2000-04-25 13:07:14 +00:00
Kurt Zeilenga
2dc6185a92 LDAP_OPERATIONS_ERROR -> LDAP_OTHER
and other misc changes
2000-04-25 13:06:22 +00:00
Kurt Zeilenga
27a29fddbb Fix comment 2000-04-25 13:02:42 +00:00
Ben Collins
32bdecbb5f for slurpd's replica directory (slurpd.status, and rej file) use a subdir of what the user specifies (add replica/ to it) to avoid /tmp races. A lot of the files that slurpd uses cannot be opened with O_EXCL, nor can we safely determine if there are any hardlinks from another file to it, so we create our own subdirectory so we can control the perms, even in /tmp 2000-04-24 17:03:45 +00:00
Ben Collins
a44adcfb43 filecheck(), we should strcpy the file passed (f arg) and not always slapd_replogfile, else this function is of little real use 2000-04-24 16:47:41 +00:00
Ben Collins
4319e67736 use strcpy instead of sprintf when all we have is two args (source and dest) 2000-04-24 16:44:16 +00:00
Ben Collins
50a41f3ee2 when opening files in /tmp use O_CREAT|O_EXCL to overcome race conditions 2000-04-24 16:42:16 +00:00
Kurt Zeilenga
28d7d099be LDAP_OPERATIONS -> LDAP_OTHER 2000-04-19 13:42:08 +00:00
Kurt Zeilenga
01de012e1c Fix realloc bug and remove use of LDAP_MOD_BVALUES 2000-04-19 08:43:37 +00:00
Kurt Zeilenga
2d4fb1e6e1 Fix c_mutex unlock bug 2000-04-12 01:40:06 +00:00
Kurt Zeilenga
065af58fb7 Fix debug messages 2000-04-12 01:39:52 +00:00
Kurt Zeilenga
4854c6173b Fix debug message 2000-04-12 01:35:53 +00:00
Kurt Zeilenga
2f0ec52df9 Fix improperly terminated comment 2000-04-12 01:10:50 +00:00
Kurt Zeilenga
360c56a78a fix uninitialized ndn bug 2000-04-12 01:09:36 +00:00
Kurt Zeilenga
870dbca576 objectclass=* -> NULL 2000-04-12 01:00:48 +00:00
Julio Sánchez Fernández
976ac15785 The add routine in the backend already frees the entry in error, so
avoid trying to free it again.
2000-03-30 13:14:42 +00:00
Julio Sánchez Fernández
7a7855508c We need to inherit syntax_compat from superior. Problem manifests
itself in that cn suddenly becomes case-sensitive.
2000-03-24 13:44:37 +00:00
Kurt Zeilenga
ebfb0b8261 Move presence index change outside of values for loop. 2000-03-20 23:38:38 +00:00
Kurt Zeilenga
94d3673dbe wrap sql *.c files with #ifdef SLAPD_SQL to facilate NT builds
without -DSLAPD_SQL
2000-03-19 06:18:27 +00:00
Kurt Zeilenga
abbd5ec2fa fix up comment 2000-03-17 22:57:49 +00:00
Kurt Zeilenga
3e5c381d3a Need SOFTADD fix for previous fix 2000-03-17 18:31:40 +00:00
Kurt Zeilenga
d1803fce0a Fix multivalued indices. Need to add indices of remaining
values after delete of any value.
2000-03-17 18:22:16 +00:00
Kurt Zeilenga
28c6217a12 s/userPassword/password/ (variable name) 2000-03-17 02:06:50 +00:00
Kurt Zeilenga
d2893546cd Don't add subentries of the RootDSE to namingContexts 2000-03-17 02:06:10 +00:00
Kurt Zeilenga
c66605890d MUST -> MAY ( cn ) 2000-03-17 02:05:21 +00:00
Kurt Zeilenga
cfbeac4576 Missing entry causes slapd to segfault (ITS#482)
Fix provided by pturgyan@umich.edu
2000-03-17 01:47:40 +00:00
Dmitry Kovalev
f28e0c1967 update Win32 build environment to support back-sql 2000-03-16 19:58:36 +00:00
Dmitry Kovalev
a16a87a412 even more back-sql files 2000-03-16 19:46:21 +00:00
Dmitry Kovalev
4e703c5261 more back-sql files + rdbms_dependent samples 2000-03-16 19:34:46 +00:00
Dmitry Kovalev
d63b3dc2fd added back-sql files 2000-03-16 19:08:22 +00:00
Dmitry Kovalev
8dc136ddd6 update Unix build environment to support back-sql
2 more steps left: add back-sql directory itself, and update Win32 build environment.
2000-03-16 18:54:11 +00:00
Kurt Zeilenga
ad6882acac Add additional be_isroot() checks to protect against empty
root and client ndns.  (the existing backend protections
*should* be good enough, but one cannot be too safe)
2000-03-15 19:42:03 +00:00
Kurt Zeilenga
db662b516f Fix NT builds and remove lint 2000-03-13 19:30:14 +00:00
Kurt Zeilenga
000c1ca40b Fix calloc typo 2000-03-09 19:15:48 +00:00
Kurt Zeilenga
9369b9daad Fix malloc of referral pointer array. 2000-03-08 17:37:49 +00:00
Kurt Zeilenga
4710c74605 Rework error handling. Add error descriptions.
Don't use LDAP_OPERATIONS_ERROR for internal errors.  Use LDAP_OTHER
instead.  (more changes needed in this area)
2000-03-03 22:37:06 +00:00
Kurt Zeilenga
5681a79d96 StartTLS now grabs conn->c_mutex before mucking with connection.
Add comment concerning sequencing issues which need to be resolved
by reworking of connection state machine.  Add note that a race
condition exists until this rework is complete.
Rework extended operations to return pointer to static error text.
2000-03-02 20:36:53 +00:00
Kurt Zeilenga
10588da3c5 Print tag with SASL in progress operations error. 2000-03-02 01:20:00 +00:00
Kurt Zeilenga
ddb9755ba7 Move handling of operations errors due to submission of
non-bind requests while a multi-step SASL bind process
is under to connection.c.  Return LDAP_OPERATIONS_ERROR,
not LDAP_SASL_BIND_IN_PROGRESS.
2000-03-02 00:59:10 +00:00
Kurt Zeilenga
e96865c1a8 Reorder error detection based upon precedence 2000-03-01 22:59:34 +00:00
Kurt Zeilenga
add0d847fb Need to strdup subschemasubentry a_type 2000-03-01 19:38:15 +00:00
Kurt Zeilenga
ac7f6c2e37 Replace do_*() return -1 with return SLAPD_DISCONNECT.
Only return SLAPD_DISCONNECT with a send_ldap_disconnect()
was called.
Add initial code for support predetermined filter results
when filter is undefined (or known to be true or false).
2000-02-29 23:48:01 +00:00
Kurt Zeilenga
4091381660 Yet another round of SLAPD_SCHEMA_NOT_COMPAT changes, including:
limited subtype support, modlist handling, filter updates,
lastmod attribute handling.
2000-02-28 21:16:05 +00:00
Kurt Zeilenga
76553ea53f More -DSLAPD_SCHEMA_NOT_COMPAT changes, including initial
impl of slap_modlist2mods() and is_at_subtype().
2000-02-25 19:36:07 +00:00
Kurt Zeilenga
2c16d08b7c noschemacheck should not disable validation of DNs 2000-02-25 19:31:54 +00:00
Kurt Zeilenga
34197ca974 ITS#464: Fix multiple password support 2000-02-24 17:59:10 +00:00
Kurt Zeilenga
ecb915357c Correct comment concerning entry LDIF. 2000-02-22 20:25:54 +00:00
Kurt Zeilenga
550542e020 Use common entry cleanup code. 2000-02-22 19:43:02 +00:00
Kurt Zeilenga
86bd13846f Additional -DSLAPD_SCHEMA_NOT_COMPAT changes
Not hidden "NULLDN" to "<anonymous>" in modify stats
2000-02-22 19:26:15 +00:00
Kurt Zeilenga
ceb6412e62 More -DSLAPD_SCHEMA_NOT_COMPAT changes
Not hidden: "<anonymous>" modifiersname
2000-02-15 18:57:07 +00:00
Kurt Zeilenga
0dbaf87730 Another round of changes behind -DSLAPD_SCHEMA_NOT_COMPAT
plus these changes unhidden changes:
	remove now meaning --enable-discreteaci configure option
	fix ITS#451, slapd filters
	Add ber_bvecadd() to support above
	constify ldap_pvt_find_wildcard() and misc slapd routines
	renamed some slap.h macros
	likely broken something
2000-02-14 20:57:34 +00:00
Kurt Zeilenga
4e4b8204ab ITS#454: fix VPATH support 2000-02-12 20:04:45 +00:00
Kurt Zeilenga
36b0423311 Add Modification/Modifications structures for -DSLAPD_SCHEMA_NOT_COMPAT 2000-02-07 20:37:10 +00:00
Kurt Zeilenga
79e92663e8 Fix -DSLAPD_SCHEMA_NOT_COMPAT -DLDAP_DEBUG builds (still won't run) 2000-02-07 17:50:42 +00:00
Kurt Zeilenga
bc51bd5180 Yet another round of SLAPD_SCHEMA_NOT_COMPAT changes...
Changes outside of #ifdef include three value filter processing.
2000-02-06 21:09:44 +00:00
Kurt Zeilenga
f9195f9b6f Another round of SLAPD_SCHEMA_NOT_COMPAT changes including
basic structures for handing language tags and binary option
(but less actual code to actually support them).  Provided
for reference only.  Will not even compile.
2000-02-05 05:01:41 +00:00
Kurt Zeilenga
86cedc6ac7 ITS#439: Fix logic error 2000-02-04 17:49:32 +00:00
Kurt Zeilenga
2e3d9d7737 Use experimental OID for ACI syntax. Likely need to add
additional schema items.
2000-02-01 18:05:49 +00:00
Kurt Zeilenga
9316c4eace ACI attributes should be of ACI syntax. Need to assign
OID for experimental syntax.
2000-02-01 17:53:07 +00:00
Kurt Zeilenga
3708530620 Didn't return after returning unknown critical control.
Noticed that abandon and unbind don't have control support... something for
another day.
2000-02-01 01:22:06 +00:00
Kurt Zeilenga
3a6e906194 Replace -DSLAPD_SCHEMA_COMPAT with -USLAPD_SCHEMA_NOT_COMPAT 2000-01-31 22:14:16 +00:00
Kurt Zeilenga
08e3b010d5 Move oc_check_allowed() next to oc_check_required() in preparation for
rewrite.
2000-01-31 18:21:07 +00:00
Kurt Zeilenga
10fdd7ff7c Put type;option trimming codes behind SLAPD_SCHEMA_COMPAT.
Attribute subtyping, especially that using attribute description
options, will have to reengineered.
2000-01-31 17:59:10 +00:00
Kurt Zeilenga
d298e35514 Add SLAP_SYNTAX_BINARY flag to indicate binary storage is used for
attributes of the syntax.  Such attribute values be transferred
using binary syntax unless ber2str/str2ber routines are provided.
Used in conjunction with ";binary" attribute description option
and/or the Binary syntax.
2000-01-31 01:49:44 +00:00
Kurt Zeilenga
e0f7614a11 Add matching rule function pointers for index generation and use with
filters.
2000-01-29 23:36:42 +00:00
Kurt Zeilenga
916a63d819 Add schema_init to MSVC5 project 2000-01-29 22:54:11 +00:00
Kurt Zeilenga
49976b5bc1 Constify a few attr_*() routines 2000-01-29 22:03:34 +00:00
Kurt Zeilenga
d4c814ecd9 Move extern to proto header 2000-01-29 20:06:46 +00:00
Kurt Zeilenga
4c52827d28 Split out schema initialization of builtin syntax/matching rule
routines to separate file to keep schema.c of managable size.
2000-01-29 19:43:19 +00:00
Kurt Zeilenga
d8d19d4ff9 Resolve syntax errors created by previous -DSLAPD_SCHEMA_COMPAT work. 2000-01-29 07:00:39 +00:00
Kurt Zeilenga
ad262b3ac6 Fix minor problems with proceeding commit which broken old schema compat 2000-01-28 21:20:28 +00:00
Kurt Zeilenga
ce56fbcba8 Remove ai_syntaxinfo (syntax) from AttrInfo. Call attr_syntax() directly. 2000-01-28 21:10:34 +00:00
Kurt Zeilenga
cca2bdcb40 Move INDEX_ macros from back-ldbm.h to slap.h and prefix with SLAP_
Move AttrInfo from back-ldbm.h to attr.c
2000-01-28 20:38:00 +00:00
Kurt Zeilenga
17f1024ad5 Fix -DSLAPD_SCHEMA_NOT_COMPAT syntax error in last commit 2000-01-28 20:10:25 +00:00
Kurt Zeilenga
c5da0c76ce Additional changes to migrate to new schema codes
Still not usable.
2000-01-28 20:01:00 +00:00
Kurt Zeilenga
51190984ee place old schema codes behind -DSLAPD_SCHEMA_COMPAT 2000-01-28 01:17:58 +00:00
Kurt Zeilenga
e9b1012fb1 Put more old schema code behind SLAPD_SCHEMA_COMPAT (which still
MUST be defined).
2000-01-28 00:33:29 +00:00
Kurt Zeilenga
434e7229ac Add code to handle operational attributes via new schema codes
behind -USLAPD_SCHEMA_COMPAT.
2000-01-27 19:02:24 +00:00
Kurt Zeilenga
df712b8597 Don't exclude no-user-modification attributes from ACL checks
unless access requested is WRITE.  This allows you to apply
an ACL to limit search/reading of no-user-modification attributes.
Writes, of course, are always prohibited (by do_add, do_modify).
2000-01-27 18:35:36 +00:00
Kurt Zeilenga
9dde98577d Move ldap_unicode_t to ldap_pvt.h, typedef to ldap_ucs2_t for now.
ldap_ucs2_t is a short.  The unicode routines may break if
sizeof(short) != 2...
2000-01-27 05:27:36 +00:00
Kurt Zeilenga
cdcb0390ba Last commit was a bit premature. This fixes up compiler
bugs and adds temporary code to glue things until we sort
out unicode UTF-8 vs UCS-4 vs UCS-2 issues.
2000-01-27 01:43:12 +00:00
Kurt Zeilenga
4ec79023bd Add IA5StringConvert (to UCS-2/4). May not be needed if we use
UTF-8 internally.
2000-01-27 01:02:51 +00:00
Kurt Zeilenga
96ba43c591 Add in hooks for mr conversion routines 2000-01-26 00:12:51 +00:00
Kurt Zeilenga
4be3e66aaf Use UTF8Normalize, not IA5Normalize for matching rules for directoryString
syntax.
2000-01-25 23:59:50 +00:00
Kurt Zeilenga
9fec129997 Second round of schema changes
Revert normalization to matching rule per discussions with Julio.
May need separate normalization routines for stored value and asserted
value. Currently rely on passed in syntax/mr to allow "special" behavior.
Reworked filters to pass struct berval * instead of char *. (needs work)
Validation, normalization and matching needed.
2000-01-25 21:13:31 +00:00
Kurt Zeilenga
4bdd788c68 Move uppercase comment to be next to uppercasing code. 2000-01-25 00:49:14 +00:00
Kurt Zeilenga
7f63755d5d Start putting old code behind the currently defined SLAPD_SCHEMA_COMPAT. 2000-01-25 00:38:48 +00:00
Kurt Zeilenga
a412a0529d Have compare use get_ava().
Well help when we split assertion options out from the description.
2000-01-25 00:05:36 +00:00
Kurt Zeilenga
117a37272d Modify slapd syntax struct to have both a validation and normalization
routine.  Could be combined into one routine.
Modify slapd matching rule struct to only have match function.
Modify old attribute such that 'bin' implies octetString, not 'binary'.
Add compatibility for IA5 strings.  Only directoryStrings were handled
before.
Treat attribute types without syntax as incomplete, not default.
Add OctetStringValidate (always returns okay).
Add {UTF8,IA5}StringValidate/Normalize  (IA5 based loosely on
case_exact_normalize).  Need case{Exact,Ignore}UTFMatch, using IA5 versions
for now.
Removed default of syntax/mr handlders, should just skip
registration of syntax/mr's without handlers.
Added comments to slap.h about types versus descriptions.
2000-01-24 23:31:26 +00:00
Kurt Zeilenga
fdcd8465c3 s/case_ignore_normalize/caseIgnoreIA5Normalize/
s/case_ignore_compare/caseIgnoreIA5Match/
s/case_exact_normalize/caseExactIA5Normalize/
s/case_exact_compare/caseExactIA5Match/

to make room for UTF-8 and T.61 varients.
2000-01-23 20:53:12 +00:00
Kurt Zeilenga
2f22b6bf0c Add comment: old schema is OC less category (abstract, struct, aux). 2000-01-23 20:49:17 +00:00
Howard Chu
0b15c19cdf Fix bug in group spec parsing, was failing to set attributeType if a
nondefault objectclass was given
2000-01-15 03:48:37 +00:00
Kurt Zeilenga
a16943d645 Per ITS#419, don't require SLAPD_RLOOKUPS when HAVE_TCPD 2000-01-11 01:12:08 +00:00
Kurt Zeilenga
6437785a82 Initial implementation of Kerberos password verification for
simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.
2000-01-08 18:42:11 +00:00
Luke Howard
a1ccf169da Filled in Cyrus SASL authz/storage callbacks for all backends
(callbacks not yet implemented though).
2000-01-02 05:42:14 +00:00
Luke Howard
9b4e3b2234 Merged in preliminary support for Cyrus SASL library;
support for DCE slash-delimited, left-to-right DNs;
support for a domain socket transport (enable with
--enable-ldapi); and extensions to URL parsing to
support the latter transport.
2000-01-02 01:21:25 +00:00
Kurt Zeilenga
6fb04da524 Install schema/*.{at,oc}.conf files. 2000-01-01 20:11:50 +00:00
Kurt Zeilenga
8dc0fac3ad Remove 'mail' as it 'standard', not 'laser' 2000-01-01 20:10:41 +00:00
Kurt Zeilenga
13f72e9dde Add missing \n 2000-01-01 19:40:06 +00:00
Kurt Zeilenga
da93ca8c5e Remove DNS_DN experimental code. 1999-12-18 19:54:22 +00:00
Kurt Zeilenga
79b31f63c2 don't treat undefined oc as extensibleObject 1999-12-18 03:10:22 +00:00
Howard Chu
0fa6f1df1e Tentative fix for ITS #402. (Not tested yet.) If successful, this patch
should also be applied to back-bdb2/idl.c.
1999-12-17 10:04:31 +00:00
Kurt Zeilenga
30411f8402 Add slappasswd to generate rootpw. 1999-12-16 02:18:50 +00:00
Kurt Zeilenga
6253e7c278 Updated sasl response to support returning of referrals.
Updates to extended operation framework to support arbitrary
referrals and extended results without OIDs.
Updated passwd extended operation to support returning update_refs
as needed.  Needs replog support.
1999-12-15 23:22:47 +00:00
Kurt Zeilenga
b1639dadd6 Remove lint
Add copyrights
1999-12-13 04:53:59 +00:00
Kurt Zeilenga
4dfc7fc674 Fix server unavailable handling bug introduced by the ldap_open to
ldap_init change.   Fix suggested by Jay D. Allen <jay@fork.com>.
1999-12-12 20:12:39 +00:00
Kurt Zeilenga
3eef87beeb Stop reducing number of substring candiadates when there is only two or
less left.  Based upon suggestion made by bert hubert <ahu@casema.net>
1999-12-12 19:59:05 +00:00
Kurt Zeilenga
7c28aa058c Add password check and generation check.
Modify tests to use -h "ldap://localhost:port/" instead of -p port.
1999-12-12 18:45:06 +00:00
Kurt Zeilenga
fe5608c4d5 Wrap request/response bervals in a sequence. 1999-12-11 19:33:45 +00:00
Mark Valence
a76c9f18a9 Start TLS extension: check that TLS was inited successfully, return default referral on failure as appropriate. 1999-12-10 19:18:33 +00:00
Kurt Zeilenga
01ab716e8a ITS#394: index presence bug fix 1999-12-10 18:07:24 +00:00
Kurt Zeilenga
431dad371c Fix slapd SASL/ExternalOps encoding
Add controls to extended ops API signatures, need impl.
Update password to support optional server side generation of
new password, verification of old password, and changing of
non-bound user's passwords.
1999-12-10 04:52:32 +00:00
Howard Chu
ffca59fc51 Add some mutex symbols, delete unused *_values symbols 1999-12-10 03:42:39 +00:00
Kurt Zeilenga
0c8fdd5b20 Return protocol error if reqdata was provided. 1999-12-09 23:21:48 +00:00
Kurt Zeilenga
1b787171fc Place passwd extended op into builtin list. 1999-12-09 23:05:15 +00:00
Mark Valence
1fadca5419 Start TLS extended op routine. 1999-12-09 22:41:45 +00:00
Mark Valence
454284f1ea Adds for Start TLS functionality on slapd and LDAP C API. 1999-12-09 22:33:22 +00:00
Mark Valence
31eea5f43c On Windows, WSAENOTSOCK is treated the same as EBADF. This is needed because of a race condition (sock is selected just after another thread closes it), which needs a proper fix. 1999-12-09 22:05:00 +00:00
Kurt Zeilenga
354d0d5b50 Modify password code such that backend end routine calls into
frontend to complete parsing of extended op reqdata.
Modify password extended operation to allow optional id (DN)
entry to change (not tested).  Also, provide room to allow
server side password generation (not implemented).  Added optional old
password field to support proxying (not implemented).
Need to implement replog() support.
1999-12-09 21:30:32 +00:00
Mark Valence
bb693fd1b5 Bug fix: re-used Connection have TLS value for previous conn. 1999-12-09 21:06:42 +00:00
Kurt Zeilenga
5e12c84a6f Add simple password test program.
Rework lutil_passwd routines to use struct berval instead of strings.
1999-12-09 01:11:16 +00:00
Howard Chu
2ee9c196d2 Fix the 1.71 fix - only offset the length if the last character of the
referral URL is not a '/'. Also in send_search_reference, corrected the
comparison for the pre-V3 case. Previously, referrals were being dropped
completely for V2 subtree searches. More work is still needed, V2 onelevel
referral handling is wrong.
1999-12-08 23:31:11 +00:00
Kurt Zeilenga
26c7d69e8c Update for new password codes for MSVC5 1999-12-08 06:44:22 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
1999-12-08 04:37:59 +00:00
Gary Williams
552c86de98 release build needs advapi32.lib added to link 1999-12-07 20:08:05 +00:00
Kurt Zeilenga
831bfa760e reduce slap_passwd_check to simple form 1999-12-06 21:42:10 +00:00
Kurt Zeilenga
6a0dbb229b Modify slapd.conf to match example provided in Quick Start Guide 1999-12-04 18:35:33 +00:00
Kurt Zeilenga
5d5588836f Fix ldap_rename parameter order (ITS#387) 1999-12-04 17:19:11 +00:00
Howard Chu
ed05ed8025 Fix memory losses, ITS#379 1999-12-03 00:21:32 +00:00