Commit Graph

5138 Commits

Author SHA1 Message Date
Pierangelo Masarati
18360d1eb2 fix previous commit 2003-12-20 17:41:08 +00:00
Pierangelo Masarati
79bc396ed8 in the <what> clause of ACLs, only 'attr=' or 'attrs=' are allowed; the former for backwards compatibility, while slapd.access(5) correctly uses only the latter form 2003-12-20 15:31:54 +00:00
Pierangelo Masarati
39574bcb5f for consistency, always allow 'onelevel' as an alias for 'one' in dnstyle 2003-12-20 15:18:21 +00:00
Howard Chu
2b44c72d84 Fix handling of an_oc_exclude 2003-12-20 14:35:13 +00:00
Howard Chu
1586a68219 ITS#2888 don't return LDAP_SIZELIMIT_EXCEEDED prematurely 2003-12-20 10:10:59 +00:00
Howard Chu
c3bb9e42a6 More cleanup 2003-12-20 09:55:17 +00:00
Howard Chu
59f76d543c Clean up prev commit 2003-12-20 09:19:19 +00:00
Howard Chu
d27b734770 ITS#2889 - fix explicit objectClass inclusion/exclusion 2003-12-20 06:28:05 +00:00
Luke Howard
120adb6b1b Fix slapi_modify_internal() to deal with just the modification type of
a mod operation
2003-12-19 10:10:59 +00:00
Kurt Zeilenga
aabcce3e58 Document +0 2003-12-19 05:06:51 +00:00
Kurt Zeilenga
5481755c0e Move ldapi to /var/run 2003-12-19 02:28:06 +00:00
Kurt Zeilenga
fdbd8705ae Move pid/args files into $(RUNDIR)/run
Move ldapi into $(RUNDIR)/run/openldap
2003-12-19 02:18:29 +00:00
Howard Chu
3b0b66de10 Fix install rule 2003-12-18 20:26:05 +00:00
Kurt Zeilenga
e9133952fb Move experimental built-in SASL behind SLAP_BUILTIN_SASL macro 2003-12-18 20:01:47 +00:00
Pierangelo Masarati
42d7d6d743 propagate flags to sasl-regexp functions (will need it later) 2003-12-18 18:32:45 +00:00
Pierangelo Masarati
113727ba53 allow 'all' vs. 'any' sasl-authz-policy 2003-12-18 18:28:43 +00:00
Kurt Zeilenga
babc993ef7 clarify default access control policy 2003-12-18 17:32:30 +00:00
Kurt Zeilenga
9647ccd945 Completely untested built-in EXTERNAL implementation
Needs identity mapping and proxy authorization support
2003-12-18 06:52:39 +00:00
Howard Chu
e4b899df95 ITS#2884 silence warning. We don't dereference this pointer, we just use
it's value as a unique key.
2003-12-18 03:54:48 +00:00
Howard Chu
9777dc2114 ITS#2883 initialize rc before running callbacks 2003-12-18 03:50:09 +00:00
Kurt Zeilenga
3eb5337020 Make modify/increment conditional 2003-12-17 21:42:48 +00:00
Pierangelo Masarati
f2a9089e4d cleanup most of the -pedantic warnings (ITS#2884) and other small fixes 2003-12-17 20:55:46 +00:00
Kurt Zeilenga
271fff13de Sync with HEAD 2003-12-17 17:55:27 +00:00
Luke Howard
516fd0ff50 First round of SLAPI cleanups - use slapi_int_XXX for internal functions
(slapi_x_XXX is still reserved for exported functions that are not part
of the SLAPI specification)
2003-12-16 15:49:31 +00:00
Pierangelo Masarati
2d948c7106 fix a couple of (too optimistic) comments... 2003-12-16 14:25:36 +00:00
Luke Howard
c8f62b12d3 Honour any controls that are sent by a SLAPI plugin 2003-12-16 11:17:54 +00:00
Pierangelo Masarati
8fa476a5c6 line up comments and code 2003-12-16 11:05:52 +00:00
Pierangelo Masarati
4e83a282d0 improve error handling for attr val ACL syntax 2003-12-16 10:56:21 +00:00
Luke Howard
0bcddbc908 Don't leak SLAPI_RESCONTROLS when free'ing parameter block - these
are allocated by the plugin
2003-12-16 05:59:50 +00:00
Kurt Zeilenga
a736f237f8 Deprecate +objectClass in favor of @objectClass per IETF discussions 2003-12-16 05:55:52 +00:00
Kurt Zeilenga
e3ffc1b165 Revert last commit 2003-12-16 01:55:56 +00:00
Pierangelo Masarati
e2483d8a9b honor '!' (objectClass negation) when checking attribute presence in list 2003-12-16 01:10:33 +00:00
Pierangelo Masarati
ee34f3fb64 add to 'val[.<style>=<value>' ACLs special match styles for DN-valued attributes; add negated objectClass to attribute name lists for ACLs and partial replication 2003-12-16 00:49:10 +00:00
Howard Chu
6e6bef8f56 Fix - need to initialize lutil_passwd. 2003-12-16 00:39:29 +00:00
Pierangelo Masarati
bc972e0656 allow 'AUTHZ' mech in proxyAuthz control to allow also the <mech> part of the 'u:' user 2003-12-15 18:19:14 +00:00
Pierangelo Masarati
3a5c53a8b1 typo 2003-12-14 15:36:46 +00:00
Pierangelo Masarati
b4629f1e79 fix previous commits 2003-12-14 14:08:15 +00:00
Pierangelo Masarati
588f1f6185 resolve naming conflicts when compiling rwm overlay as static (will disappear as soon as rwm stuff is removed from back-ldap/back-meta) 2003-12-14 11:13:25 +00:00
Kurt Zeilenga
4d29df5bd1 Add LDAP_DEPRECATED macro
Need to remove use of deprecated functions.
2003-12-14 02:47:42 +00:00
Kurt Zeilenga
5b0236f4ae Add u: comment 2003-12-13 23:41:44 +00:00
Kurt Zeilenga
1fadacaa31 Forward parse the uauthzid. A realm cannot be specified unless
a mechanism is specified.  (Few mechanisms (DIGEST-MD5 only) support
separate realms.)
2003-12-13 23:38:05 +00:00
Pierangelo Masarati
4602c935f7 saslAuthzTo/From stuff
when comparing IDs to saslAuthzTo/From values, the saslAuthzTo
saslAuthzFrom values can take different forms:

dn[.<style>]:<pattern>

<style> ::= 	exact		; exact match
		children	; children of <pattern> match
		subtree		; <pattern> or children of <pattern> match
		regex		; <pattern> is regcomp() & regexec()
if no <style>, then exact is assumed

u[.<mech>][/<realm>]:<user>

when parsing a proxyAuthz value, only exact DN is allowed,
and no <mech> can be specified.  <user> cannot contain ':'
and <mech> cannot contain '/'.
2003-12-13 23:02:59 +00:00
Howard Chu
0d8613c274 Use c_authmech when c_sasl_bind_mech is empty 2003-12-13 22:43:01 +00:00
Howard Chu
e85cd1e154 Fix prev commit, use c_authtype 2003-12-13 22:16:03 +00:00
Howard Chu
d9aec4ef28 Always set c_authmech 2003-12-13 21:39:51 +00:00
Kurt Zeilenga
4bedf015f0 cleanup 2003-12-13 18:57:00 +00:00
Kurt Zeilenga
dbc37977f2 Look for the '@' in userid@realm in reverse so that a@b@c results
in userid of a@b and realm of c.
2003-12-13 17:25:59 +00:00
Pierangelo Masarati
6e5ddd6420 note a potential problem 2003-12-13 17:21:17 +00:00
Pierangelo Masarati
5a00f25542 conn must be non-null 2003-12-13 15:29:49 +00:00
Pierangelo Masarati
d6bc071dd9 add subtree/children styles to saslAuthzTo/From; 'dn:' now defaults to exact 2003-12-13 12:23:56 +00:00
Pierangelo Masarati
43db7cf4bf cleanup saslauthz code 2003-12-13 10:58:31 +00:00
Pierangelo Masarati
529a03df53 use dedicated admin identity to proxyAuthz 2003-12-13 10:57:42 +00:00
Pierangelo Masarati
9c5fe98a79 declare overlays_init() 2003-12-13 10:57:13 +00:00
Howard Chu
b011c51390 Clean up entry initialization 2003-12-13 02:00:07 +00:00
Kurt Zeilenga
552a51ca50 Tweak the codes 2003-12-11 07:28:01 +00:00
Jong Hyuk Choi
fa2aa5bb25 fix for concurrent persistent searches 2003-12-11 00:04:52 +00:00
Howard Chu
2aca8de6b3 Whitespace 2003-12-10 08:52:19 +00:00
Howard Chu
e28d089a93 Fixup overlay build environment 2003-12-10 08:45:53 +00:00
Pierangelo Masarati
409003a731 make names unique, since back-ldap/back-meta still have/use suffix_massage* routines 2003-12-10 00:15:02 +00:00
Pierangelo Masarati
b5bba83a31 add rwm overlay configure and make stuff (need autoconf/autoheader ...) 2003-12-09 23:50:10 +00:00
Pierangelo Masarati
0176e02398 cleanup handling of unknown directives ... 2003-12-09 23:49:13 +00:00
Howard Chu
cc743d2c1f ITS#2865 don't try to calloc 0 bytes, log an error and return instead.
Don't crash in slapcat when NULL entry is returned.
2003-12-09 20:10:44 +00:00
Howard Chu
67ee75ccd8 ITS#2868 check result from slap_startup 2003-12-09 19:26:14 +00:00
Howard Chu
313bb1dcae Minor cleanup. Still need to address ITS#2866 point 2 2003-12-09 19:09:58 +00:00
Kurt Zeilenga
38ccdaf7a3 unifdef -DLDAP_CONTROL_PAGEDRESULTS (as it is always defined) 2003-12-08 18:16:07 +00:00
Kurt Zeilenga
fbba83b20f notices and acknowledgements 2003-12-08 17:41:40 +00:00
Kurt Zeilenga
fd5ded3afb notices and acknowledgements 2003-12-07 19:19:18 +00:00
Howard Chu
be1a728c5b Added sc_next and sc_cleanup to slap_callback 2003-12-07 08:51:23 +00:00
Howard Chu
0690f79a5a Cleanup unknown config directive handling. 2003-12-07 07:07:00 +00:00
Howard Chu
864aea13f7 ITS#2864 removed sl_mark/sl_release code 2003-12-07 04:00:47 +00:00
Howard Chu
b5052153c2 Minor cleanup 2003-12-07 03:59:54 +00:00
Howard Chu
b0b3eff457 ITS#2864 don't use sl_mark/release. 2003-12-07 03:41:10 +00:00
Howard Chu
9d3c808428 Fix bogus free 2003-12-06 23:54:22 +00:00
Howard Chu
44fc00b4c0 Remove trailing whitespace 2003-12-06 23:53:46 +00:00
Howard Chu
11a4b3eb57 Use runqueue for consistency checker 2003-12-06 23:32:56 +00:00
Howard Chu
74db966ebb Move SLAB_SIZE def to slap.h 2003-12-06 22:30:45 +00:00
Howard Chu
0cef026e98 More memory cleanup 2003-12-06 21:55:47 +00:00
Kurt Zeilenga
c425a7ce1d Move back-tcl to the Attic 2003-12-06 21:37:44 +00:00
Kurt Zeilenga
da6d557cdc Notices 2003-12-06 19:25:01 +00:00
Howard Chu
c59e89de2f Clear ocflags 2003-12-06 14:39:07 +00:00
Pierangelo Masarati
4ccd44af8b improvements 2003-12-06 14:35:45 +00:00
Howard Chu
1a9064794a Fix add invocation 2003-12-06 13:48:06 +00:00
Howard Chu
7751af3f74 Perform database updates as root 2003-12-06 11:25:37 +00:00
Howard Chu
066a80bbbb Moved proxy caching to overlay 2003-12-06 11:12:53 +00:00
Howard Chu
1762b5b71d Overlay build environment, remove internal proxycache support 2003-12-06 11:04:39 +00:00
Howard Chu
64e337eacf Overlay build environment 2003-12-06 10:59:27 +00:00
Pierangelo Masarati
723bc044e0 changes required to use rwm overlay 2003-12-06 10:54:10 +00:00
Pierangelo Masarati
f02b6cfba7 first cut at dn rewrite/attr mapping overlay 2003-12-06 09:53:41 +00:00
Howard Chu
485f478707 Don't free default_referral 2003-12-06 06:12:45 +00:00
Luke Howard
e114ecbad5 Use gmtime_r()/localtime_r if HAVE_GMTIME_R/HAVE_LOCALTIME_R is defined (need to add autoconf check) 2003-12-06 05:50:47 +00:00
Luke Howard
399b57eada Use gmtime_r() if HAVE_GMTIME_R is defined (need to add autoconf check) 2003-12-06 05:37:00 +00:00
Luke Howard
369b1515db Ensure exact DNs are normalized in slap_parseURI. 2003-12-06 02:16:39 +00:00
Kurt Zeilenga
fc11d8312c ITS#2861 fix: don't try to dup a NULL reqdata... 2003-12-05 19:54:42 +00:00
Howard Chu
58355c5bc2 Proxy-cache rewritten as an overlay 2003-12-05 15:49:38 +00:00
Howard Chu
3152932e96 Moved ldbm into back-ldbm. No more libldbm. 2003-12-04 22:38:54 +00:00
Kurt Zeilenga
20c8ea8a44 Update Mark's notice (with permission) 2003-12-04 21:12:17 +00:00
Howard Chu
2d07fc4f3b ITS#2740 - link librewrite statically into back-ldap when it's built
as a module. Since back-meta also depends on back-ldap, this fixes
both at once.
2003-12-04 10:50:36 +00:00
Howard Chu
8c357efd28 ITS#2521 log names of unrecognized attributeTypes in search filters 2003-12-04 01:10:02 +00:00
Howard Chu
32752fb396 ITS#2836 add SLAPI_ADD_RESCONTROL support, fix SLAPI_RES_CONTROLS def 2003-12-04 00:52:03 +00:00
Howard Chu
841e865910 Reorganize, attempt some fault tolerance... 2003-12-03 12:30:28 +00:00
Howard Chu
8ba2296dc8 ITS#2795 fix double-free on failure, reset dn2id database 2003-12-03 11:31:43 +00:00
Howard Chu
e325a3a923 ITS#2795 fix hang. failure still leaves corrupt database though. 2003-12-03 11:06:00 +00:00
Pierangelo Masarati
93d0c25c45 syntax improvement (ITS#2852) 2003-12-03 00:29:29 +00:00
Kurt Zeilenga
4898913fb6 ITS#2807: version option support (-V[V]) based on patch submitted
by <luca.scamoni@sys-net.it>.
2003-12-02 16:57:34 +00:00
Howard Chu
7fd21ada07 ITS#2764, #2781 revert backend.c patch, just catch the NULL referral
case in extended_op
2003-12-02 03:01:49 +00:00
Howard Chu
49b0985c88 Fix prev commit, return generated passwd 2003-12-02 00:49:26 +00:00
Kurt Zeilenga
ed369e02af Don't search for proxy authz control unnecessarily.
Add note regarding control use with the Bind operation.
2003-12-01 21:49:52 +00:00
Jong Hyuk Choi
da38356d16 fix prev commit 2003-12-01 18:09:48 +00:00
Jong Hyuk Choi
2bb75d5469 misc cleanup 2003-12-01 17:56:36 +00:00
Howard Chu
59e129158c Removed passwd.c 2003-12-01 12:55:05 +00:00
Howard Chu
b552cdb5c7 Let the backend have a crack at the op (for back-ldap etc.), then do it
in the frontend if the backend doesn't.
2003-12-01 12:51:54 +00:00
Howard Chu
94f7141dda Consolidate passwd extop in frontend 2003-12-01 12:38:11 +00:00
Howard Chu
77f8a2d72f Added slap_null_cb 2003-12-01 12:20:51 +00:00
Howard Chu
7b423b20b0 Fix slapi include path 2003-12-01 12:14:39 +00:00
Howard Chu
42d8c0a39d Added slap_null_cb 2003-12-01 12:03:20 +00:00
Pierangelo Masarati
bd134e22e5 ITS#2851 2003-12-01 11:12:04 +00:00
Pierangelo Masarati
cdb11fc5eb add administrative bind and proxyAuthz control to enable bound operations in distributed directories (need to manually #define LDAP_BACK_PROXY_AUTHZ and patches from ITS#2851 and ITS#2852) 2003-12-01 08:04:51 +00:00
Pierangelo Masarati
2c68cb41f6 this memory will be freed by free() 2003-12-01 08:01:31 +00:00
Pierangelo Masarati
a4c5f54601 detect problems in saslauthz 2003-12-01 07:59:30 +00:00
Pierangelo Masarati
ff919168fb if rule is an URI, must have a filter field 2003-12-01 07:50:27 +00:00
Kurt Zeilenga
0398bad8f0 Cleanup 2003-12-01 01:54:11 +00:00
Hallvard Furuseth
e491e9e522 Cleanup: Remove unused label 'no_co_op_free:' in connection_operation(). 2003-11-30 16:14:40 +00:00
Jong Hyuk Choi
fb91d430f2 it seems more appropriate to return LDAP_SUCCESS. 2003-11-30 05:45:13 +00:00
Jong Hyuk Choi
0675a320d7 Fix copy & paste error. (ITS#2850) 2003-11-30 05:29:19 +00:00
Kurt Zeilenga
9f149d70f6 ITS#2847: fix syncCookie value_match 2003-11-30 03:30:39 +00:00
Kurt Zeilenga
041c8dacc2 Misc cleanup 2003-11-30 01:19:40 +00:00
Kurt Zeilenga
12d5c6bba2 Move global to ldapsync 2003-11-30 01:09:12 +00:00
Howard Chu
0a5f1e8516 #ifdef for slap_auxprop_store 2003-11-29 23:01:56 +00:00
Kurt Zeilenga
bd1543ce44 notices 2003-11-29 22:38:48 +00:00
Kurt Zeilenga
f0cd57eb9b cleanup 2003-11-29 22:37:07 +00:00
Kurt Zeilenga
62e6779e4c Cleanup rcsid comments 2003-11-29 18:03:43 +00:00
Pierangelo Masarati
3aa27601e1 fix 'control reaches end of non-void function' 2003-11-29 18:00:07 +00:00
Pierangelo Masarati
99a3164972 fix uninitialized buffer (ITS#2849) 2003-11-29 17:58:49 +00:00
Pierangelo Masarati
43f7494a5d remove /* in comments 2003-11-29 17:52:05 +00:00
Pierangelo Masarati
e30a736354 clarify auxprop_store member type 2003-11-29 17:50:50 +00:00
Hallvard Furuseth
51f1b8ccd7 Avoid /* inside comments. 2003-11-29 17:29:44 +00:00
Hallvard Furuseth
d0a0687a26 Avoid 'suggest parentheses' warnings. 2003-11-29 17:27:44 +00:00
Hallvard Furuseth
3d522a0c9f Format %d -> %ld. 2003-11-29 17:26:23 +00:00
Pierangelo Masarati
71d488c28f fix uninitialized var 2003-11-29 17:24:34 +00:00
Howard Chu
65c26598d5 ITS#2846 - make veryclean 2003-11-29 12:01:10 +00:00
Howard Chu
ddd056158e Add auxprop_store support for Cyrus SASL 2.1.16+ 2003-11-29 07:02:16 +00:00
Hallvard Furuseth
1fc24a3a82 Fix format errors: %d -> %ld, and add (long) casts as appropriate. 2003-11-28 22:06:54 +00:00
Hallvard Furuseth
2448725f9a #include lber-int.h, to get ber_strndup().
The right fix may be for slap.h to #include it instead, since
ber_strndup() is used via SLAP_STRNDUP() which is #defined in slap.h.
2003-11-28 22:05:38 +00:00
Hallvard Furuseth
546e074be0 Kill '//'-style comment. 2003-11-28 22:03:13 +00:00
Hallvard Furuseth
d45a47d40f Delete $(LDIF_LIBS). The library has been merged into -llutil. 2003-11-28 22:01:44 +00:00
Kurt Zeilenga
9d811eb1fa Notices 2003-11-28 21:08:20 +00:00
Kurt Zeilenga
410d514461 Notices and acknowledgements 2003-11-28 21:07:50 +00:00
Kurt Zeilenga
7000d76879 notices 2003-11-28 20:24:54 +00:00
Kurt Zeilenga
0bc23d571e Fix last commit 2003-11-27 06:45:08 +00:00
Kurt Zeilenga
3e5875d7e7 notices and acknowledgements 2003-11-27 06:35:49 +00:00