Hallvard Furuseth
486eaa69b6
Rename "lang(uage)" to "tag(s)". (Cleanup after attribute options patch.)
2002-12-13 19:15:20 +00:00
Hallvard Furuseth
54728f367e
Implement user-defined tagging attribute options and ranges
2002-12-12 13:56:05 +00:00
Hallvard Furuseth
fbbbdd8b94
ITS#2215: Let Statslog() work if only one of LDAP_DEBUG/LDAP_SYSLOG is #defined
2002-12-09 18:18:14 +00:00
Pierangelo Masarati
1b70e16448
SLAPI - Netscape plugin API for slapd - based on patch contributed by Steve Omrani <somrani@us.ibm.com> as ITS#2073
2002-12-07 17:19:29 +00:00
Pierangelo Masarati
8e74ed4dfc
fix initialization size and silence warning
2002-12-05 11:47:44 +00:00
Howard Chu
09679eb715
Added SLAP_MR_VALUE_NORMALIZED_MATCH, avoid redundant normalize when
...
calling value_find with already-normalized DNs
2002-12-04 18:19:46 +00:00
Howard Chu
827ea96e16
ITS#1523 enhanced ACL caching
2002-12-04 02:35:00 +00:00
Kurt Zeilenga
da76c1951e
First-cut proxy authorization support.
2002-12-03 06:11:32 +00:00
Kurt Zeilenga
8754c8f2a3
#unifdef paged results, remove lint
2002-11-28 04:38:41 +00:00
Pierangelo Masarati
415a8d325f
add limits to entries count for paged results
2002-11-21 20:49:02 +00:00
Pierangelo Masarati
c354bb23bf
Support for RFC 2696:
...
LDAP Control Extension for Simple Paged Results Manipulation
contributed by Lynn Moss <lynnmoss@us.ibm.com> (ITS#2189)
applied with changes.
2002-11-21 02:16:53 +00:00
Pierangelo Masarati
76bf91f553
remove #ifdef SLAP_FILTER_HASSUBORDINATES
2002-11-10 19:48:36 +00:00
Kurt Zeilenga
6f59ca0e5b
Add superiorUUID to system schema
2002-10-28 20:01:55 +00:00
Pierangelo Masarati
f07cabad0f
need to move #define here; on by default
2002-10-26 16:32:11 +00:00
Pierangelo Masarati
7b3f889ec1
fix hasSubordinate filtering; now it can be safely turned on
2002-10-26 16:18:31 +00:00
Kurt Zeilenga
36569048ff
Add "allow update_anon"
...
Fix -USLAP_X_LISTENER_MOD builds
2002-10-25 18:47:24 +00:00
Jong Hyuk Choi
8074294f1d
LCUP persistent search code drop
2002-10-25 17:51:30 +00:00
Pierangelo Masarati
97e526cb2d
add restrictions related to listeners in form of file permissions
...
(see in slapd(8) the description on how to enforce file permissions
on sockets in ldapi schema); at present, only user permissions are
used as follows: the url extension x-mod=-rwxrwxrwx is used; only
the user permisisons are considered, e.g. the first set of rwx;
"r" means read is allowed from that listener
"w" means write is allowed on that listener
"x" means bind is not required on that listener
these restrictions ADD to those already present, and are actually
checked AFTER the other restrictions, but BEFORE ACLs, so they can
be used to apply gross restrictions but should not be viewed as
a replacement of ACLs. To compile this, #define SLAP_X_LISTENER_MOD
2002-10-25 16:43:44 +00:00
Pierangelo Masarati
956f1d16aa
listener:
...
- use bervals for url and sockname
- pass connection_init() the listener struct pointer instead of each value
- don't copy them in the Connection struct 'cause they're not going to change
- define macros for legacy usage of c_listener_url and c_sockname
2002-10-24 10:03:52 +00:00
Kurt Zeilenga
1aa829922f
Implement content rule checks
...
w/ implicit default rules allowing any auxiliary class to be mixed in
2002-10-09 23:02:01 +00:00
Kurt Zeilenga
acc32b9d9e
Basic framework for DIT Content Rules (not yet enforced)
2002-10-09 07:11:50 +00:00
Kurt Zeilenga
023d0e2a5c
Rework unprotected simple bind checks
2002-10-08 19:03:18 +00:00
Kurt Zeilenga
f5e6d1db41
#unifdef -DSCHEMA_DN
2002-09-29 04:30:38 +00:00
Jong Hyuk Choi
1509e321de
LCUP Response Control Code
2002-09-14 00:29:06 +00:00
Kurt Zeilenga
37d9880495
Some LCUP clean up
2002-09-06 00:29:20 +00:00
Jong Hyuk Choi
4b48c05a8e
LDAP Client Update Protocol - non-persistent update (TODO: response control ...)
2002-09-04 02:00:42 +00:00
Kurt Zeilenga
8a5b200c44
Add appropriate matching rule checks.
...
Clean up syntax error reporting.
2002-09-03 07:01:09 +00:00
Kurt Zeilenga
e9a71156cc
Add matching rule use support where assertion syntax != value syntax
2002-08-31 20:42:25 +00:00
Pierangelo Masarati
e2ec62f09f
add matchingRuleUse to schema; use a berval instead of _oidlen in syntax and matching rule
2002-08-31 10:45:22 +00:00
Pierangelo Masarati
fbc11bd16a
- added the capability to filter based on hasSubordinate attribute
...
to back-bdb, back-ldbm and back-sql (the latter with limitations);
- added handling of ":dn" attributes to extended rfc2254 filters
and to matched value filter
- altered the behavior of get_mra() when a matching rule is given:
now it checks whether it is compatible with the attribute syntax
and, in case it is, the given mr is used. In case of no type,
the check is delayed when filtering
2002-08-29 10:55:48 +00:00
Kurt Zeilenga
1086ffb438
Round one of subclass indexing for objectClass and structualObjectClasss.
...
add soc_cname to ObjectClass structure
2002-08-29 01:12:59 +00:00
Howard Chu
9f5b28baf3
Remove c_sasl_bindmutex, Binds are already serialized.
2002-08-26 22:20:30 +00:00
Kurt Zeilenga
1c5725010e
Add a Connection pointer to the Operation.
2002-08-26 19:29:34 +00:00
Howard Chu
925714ceef
Experimental cruft to propagate valid Operation to SASL callbacks.
...
If you have a better way, jupm on in...
2002-08-24 07:34:50 +00:00
Howard Chu
8c30114d84
Added thread-pool getkey/setkey functions
2002-08-24 05:39:43 +00:00
Howard Chu
e5091f5926
Updated register_syntax, register_matching_rule for more convenient
...
calling from other modules
2002-08-17 01:29:18 +00:00
Howard Chu
07ebdca237
ITS#1893, use "schemadn" to configure subschemasubentry DN. (diff was
...
inaccessible, this is original code, not contributed.)
2002-08-10 03:10:52 +00:00
Kurt Zeilenga
eb581e43e7
Fix for:
...
SASL regex segmentation faults with group based acls (ITS#1978)
based, in part, by patch submitted by Simon Wilkinson <simon@sxw.org.uk>.
2002-07-28 07:27:55 +00:00
Kurt Zeilenga
0371c61073
Add monitorContext rootDSE attribute
2002-06-19 06:44:16 +00:00
Kurt Zeilenga
9a38d98d37
Add option to disallow unprotected simple authentication.
...
Add protected simple authentication as a "strong" mechanism.
2002-06-17 22:18:27 +00:00
Kurt Zeilenga
27fdd04153
Add -4/-6 flags to slapd to force use of IPv4 or IPv6
2002-06-15 22:01:39 +00:00
Howard Chu
07a34489c6
Added saslAuthzTo and saslAuthzFrom to system schema.
...
Added sasl-authz-policy config keyword to control proxy authorization.
Moved sasl-related config processing to sasl.c:slap_sasl_config().
Moved other global defs used only in saslauthz.c into saslauthz.c.
2002-06-14 08:10:14 +00:00
Howard Chu
c5c1ddb1ca
Deleted Connection->c_cdn. Use conn->c_dn instead...
2002-06-12 08:38:59 +00:00
Howard Chu
6d1a322f73
Finished slap_sasl_setpass for Cyrus 1.5; Cyrus 2.1 is incomplete.
...
Added conn->c_sasl_dn, streamlined slap_sasl_bind.
2002-06-12 04:05:48 +00:00
Kurt Zeilenga
55e925abe6
Add abstract/final system attribute types.
...
clean up error code macros
2002-05-31 20:24:26 +00:00
Kurt Zeilenga
bdad40c696
Disallow addition of system schema via config files.
2002-05-30 05:23:37 +00:00
Kurt Zeilenga
aecf4033f6
Hide some yet-to-be-implemented schema
2002-05-29 06:14:55 +00:00
Howard Chu
a067d64c3a
Fixes for slap_sasl_regexp parsing and normalization
2002-05-07 18:46:32 +00:00
Kurt Zeilenga
8c152396b9
Matched Values implementation (ITS#1776) based upon submission
...
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
add testxxx-matchedvalues
rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.
Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
2002-05-02 18:56:56 +00:00
Howard Chu
7fae7fe155
Changed be_[n]suffix, be_[n]suffixAlias to BerVarray. No more bvec's anywhere.
2002-05-01 18:50:14 +00:00
Pierangelo Masarati
6b8828ed28
handle trivial cases
2002-04-29 19:14:42 +00:00
Howard Chu
efecf4e121
ITS#1733 eliminate o_abandonmutex
2002-04-11 08:03:40 +00:00
Howard Chu
5c4a924f81
ITS#1735 unused conn.c_uthc_backend, include ldap_pvt.h
2002-04-11 07:42:57 +00:00
Pierangelo Masarati
c22f10f4ca
don't count operations per request if back-monitor is not built
2002-04-08 19:13:13 +00:00
Pierangelo Masarati
51e33154b3
count initiated/completed operations divided per request
2002-04-08 18:41:15 +00:00
Pierangelo Masarati
440637dde7
various acl improvements/cleanups/speedups (need to be documented, though)
2002-04-03 15:42:19 +00:00
Pierangelo Masarati
9bf3ccd0bf
allow attribute exclusion list in selective replica
2002-03-30 08:52:20 +00:00
Kurt Zeilenga
e7523b1496
add si_syn_octetString to keep syntax load checks in one place.
2002-03-30 01:07:20 +00:00
Kurt Zeilenga
0be4d842bc
Update control framework
...
Misc cleanup
NT updates
2002-03-24 02:17:21 +00:00
Pierangelo Masarati
49f324a1fa
fix ITS#1671 and more
2002-03-23 16:53:44 +00:00
Kurt Zeilenga
33516fa9eb
#ifdef ACI/authpasswd schema
2002-02-18 20:06:50 +00:00
Kurt Zeilenga
32fb8b0bff
Add ACL state recording to avoid multiple evaluation of
...
value-independent access controls.
2002-02-09 05:14:17 +00:00
Howard Chu
f50b75f0c2
Added replica attr=<attribute list> support to filter replog content
2002-02-08 06:44:33 +00:00
Kurt Zeilenga
41e8195c2e
Fix binary v lang_range typo
2002-01-31 15:09:55 +00:00
Kurt Zeilenga
057dda50d3
remove deadwood, e.g. slap_index2prefix()
2002-01-31 00:11:44 +00:00
Kurt Zeilenga
0a31400d63
Some misc cleanup
2002-01-29 06:06:20 +00:00
Kurt Zeilenga
14662be692
Add whoami extended operation.
...
Add no-op control (needs backend implementation)
Updated modify password extended option API
Kludged control infrastructure to support frontend only controls
2002-01-28 20:25:30 +00:00
Howard Chu
5e522ca882
Changed Access.a_sockurl_pat, Connection.c_listener_url etc.
...
to struct bervals
2002-01-28 11:41:07 +00:00
Kurt Zeilenga
8057b1a0a8
Language Tag and Range Support <draft-zeilenga-ldap-rfc2596-xx.txt>
...
Based upon code submitted by Steve Omrani <somrani@us.ibm.com> (ITS#1525)
2002-01-26 23:14:51 +00:00
Howard Chu
4191f39037
Changed slap_authz_info.sai_mech to struct berval.
...
Changed sasl_* to use struct bervals.
2002-01-26 13:57:41 +00:00
Howard Chu
1226d620e0
Added Entry->e_bv for entry_decode
2002-01-25 07:11:52 +00:00
Kurt Zeilenga
3d8c269f2e
Update collective attribute schema
2002-01-19 22:33:07 +00:00
Howard Chu
44f0efb44f
Defined some ObjectClass->soc_flags values, changed is_entry_*objectclass
...
macros to use flags
2002-01-19 02:58:00 +00:00
Kurt Zeilenga
7f0289a390
Move most of the new ber_*cmp routines to lber_pvt.h to keep them private,
...
rework them slightly to avoid computations which might result in underflow.
Rename them for consistency with other berval routines.
Remove some utf8 lint.
2002-01-16 18:16:15 +00:00
Kurt Zeilenga
20af643fc4
more cleanup
2002-01-16 04:40:41 +00:00
Kurt Zeilenga
13af7fb073
Misc. cleanup, remove lint, remove unused deprecated functions, etc.
2002-01-15 07:29:15 +00:00
Howard Chu
d70498f0f2
Revert previous commit again. autosubtypes are gone for good.
2002-01-15 01:49:53 +00:00
Howard Chu
1180279104
Revert previous commit
2002-01-14 20:13:25 +00:00
Howard Chu
2e8a98e3a1
Fix subtype indexing. Really really made it the default.
2002-01-14 10:37:08 +00:00
Howard Chu
ac1332cdb8
Renamed BVarray to BerVarray. Moved slapd:bvarray_{add,free} to
...
liblber:ber_bvarray_{add,free}.
2002-01-14 01:43:17 +00:00
Howard Chu
92481f7057
Modify performance patch from Gertjan van Wingerde <gwingerde@home.nl>
2002-01-13 23:23:23 +00:00
Kurt Zeilenga
ff23cd0f7f
Clean up last patch
2002-01-13 20:06:53 +00:00
Kurt Zeilenga
64619bed94
Install system schema checks
2002-01-13 19:38:12 +00:00
Howard Chu
af862f8c6b
Reworked callback layout, added send_search_entry callback
2002-01-13 16:40:37 +00:00
Kurt Zeilenga
ce2d8ebc7e
Misc cleanup, lint removal, and minor optimizations
2002-01-13 05:00:59 +00:00
Pierangelo Masarati
f8fb4aca76
error message from be_entry_put tool backend function
2002-01-12 16:00:51 +00:00
Pierangelo Masarati
ea86a19460
monitor objectclass definition
2002-01-12 11:36:23 +00:00
Kurt Zeilenga
19f2925ab1
Add some basic system schema checks.
2002-01-11 18:56:01 +00:00
Kurt Zeilenga
f57057ee01
Add system schema flags to backends supporting system schema.
2002-01-11 18:26:17 +00:00
Kurt Zeilenga
f402762f9a
Remove lint.
2002-01-11 18:03:28 +00:00
Kurt Zeilenga
20dd3c1273
Add Backend to system schema check routines
2002-01-11 18:00:22 +00:00
Pierangelo Masarati
5dfbf93687
need this outside for back monitor ...
2002-01-11 10:46:58 +00:00
Kurt Zeilenga
504404725a
Flip some bits in the backend flags mask
2002-01-11 02:31:47 +00:00
Kurt Zeilenga
c3b62aae91
Fix the bits
2002-01-10 22:54:24 +00:00
Kurt Zeilenga
55501e886f
Rework backend (lastmod + glue + system schema) flags
2002-01-10 22:34:11 +00:00
Howard Chu
8067107ed2
Added an_oc to AttributeName for caching ObjectClass lookups.
...
Added error checking to str2anlist; if the attr name doesn't match
any attribute or objectclass the offending attr name is displayed.
2002-01-10 09:54:14 +00:00
Kurt Zeilenga
bf5b4405fe
More clean up of system schema changes
2002-01-10 06:58:57 +00:00
Kurt Zeilenga
cadecfaae1
Finish building in operational attributes
2002-01-10 04:10:54 +00:00
Kurt Zeilenga
f4336c8953
More builtin operational attributes
2002-01-10 03:31:11 +00:00
Kurt Zeilenga
6ed15e3350
Another round of operational attribute changes... more to follow.
2002-01-10 01:46:08 +00:00
Kurt Zeilenga
91644affd9
Minor cleanup
2002-01-10 00:54:31 +00:00
Kurt Zeilenga
c80d93f2bb
Start of new operational attribute framework
2002-01-10 00:17:21 +00:00
Kurt Zeilenga
9b0585f393
Add very basic subentry search support.
2002-01-09 19:21:07 +00:00
Kurt Zeilenga
bc1cd95149
Rework control infrastructure a bit. Add subentries visibility control.
2002-01-09 06:29:54 +00:00
Kurt Zeilenga
645ae7a22f
Hide select matching rules from published schema
2002-01-06 05:29:04 +00:00
Howard Chu
ce7d8d26f2
Changed conn->c_cdn to struct berval.
2002-01-06 03:26:09 +00:00
Kurt Zeilenga
d218a5ed5c
Add SLAP_MALLOC() and friends.
...
Intended to be used instead of ch_malloc() and friends.
See comment.
2002-01-06 01:34:53 +00:00
Pierangelo Masarati
d0261ee534
leftover ber_bvdup eliminated; rewritten ber_bvdup in terms of ber_dupbv; eliminated wrapper macro; other ber_* improvements
2002-01-05 17:49:59 +00:00
Kurt Zeilenga
0e2af54a3f
Update copyright statements
2002-01-04 21:17:25 +00:00
Howard Chu
bcdfdb968f
Changed AttributeName back into an array instead of a linked list.
...
Fixed bug in do_search eating up controls.
2002-01-03 05:38:26 +00:00
Howard Chu
029306a5be
Use ldap_queue.h instead of <ac/queue.h>
2002-01-03 00:12:46 +00:00
Howard Chu
f52cc9bab5
Change struct berval ** to BVarray
2002-01-02 11:00:36 +00:00
Howard Chu
743c402265
Changed search attrs from struct berval ** to AttributeName *
2001-12-31 11:35:52 +00:00
Howard Chu
10961151ef
Use queue-compat for Connection->c_ops,c_pending_ops
2001-12-31 04:08:29 +00:00
Howard Chu
185ff129b5
Change struct berval * to struct berval in various structures
2001-12-29 15:01:10 +00:00
Howard Chu
975a5e9a24
Added dnPretty2/dnNormalize2 using preallocated destination berval
2001-12-29 04:48:00 +00:00
Kurt Zeilenga
cddf7e0e00
More struct berval DN changes
...
decrease dependency on dn_validate/dn_normalize
2001-12-27 07:13:13 +00:00
Kurt Zeilenga
a553a03586
More struct berval DNs changes
2001-12-26 23:43:28 +00:00
Howard Chu
e8fa25a215
Changed Filter.f_dn to struct berval*
2001-12-26 23:37:59 +00:00
Kurt Zeilenga
bd0135ccb4
Move search, modify, and modrdn APIs to struct berval DNs.
...
Much clean up is needed.
2001-12-26 19:50:40 +00:00
Kurt Zeilenga
24a4d888dc
move compare and delete to struct berval DNs
2001-12-26 19:05:26 +00:00
Kurt Zeilenga
d64ec6ee0d
modify be_referral to use struct berval DNs.
2001-12-26 17:40:34 +00:00
Howard Chu
3da3be8128
Precompute syn_oidlen and mr_oidlen
2001-12-26 14:36:02 +00:00
Howard Chu
15f630545a
Changed ma_rule_text to struct berval.
...
Changed get_filter to struct bervals
2001-12-26 13:47:10 +00:00
Howard Chu
d474789d0d
First pass at converting bind to struct bervals
2001-12-26 11:41:38 +00:00
Howard Chu
68b1bbb89d
Changed search attrs to struct berval **.
...
Use typedefs for all backend functions, to minimize work in future API
updates. (back-*/external.h will never need updating in the future.)
2001-12-26 08:17:44 +00:00
Howard Chu
b96645af7d
More struct berval changes, dnNormalize migration...
2001-12-26 04:17:49 +00:00
Kurt Zeilenga
2dd27b0786
More struct berval DNs
2001-12-25 19:48:26 +00:00
Kurt Zeilenga
3336619c80
More "char *" to struct berval DN changes
2001-12-25 02:30:01 +00:00
Kurt Zeilenga
5ee89d6167
Use struct berval DNs for root DN and update DN
2001-12-25 00:05:26 +00:00
Howard Chu
3df5c17881
Fix typo in e_ndn macro
2001-12-24 20:03:54 +00:00
Kurt Zeilenga
f6085d3f82
Every quick mod to use a struct berval for e_dn/e_ndn. No bv_len yet.
2001-12-24 16:53:47 +00:00
Howard Chu
9e0ab3da36
Changed Access->a_set_pat and acl->acl_dn_pat to struct berval to eliminate
...
strlen() from acl processing.
2001-12-24 15:43:27 +00:00
Howard Chu
2f3399265c
Changed sai_dn, sai_ndn to struct berval. (Affects op->o_dn,o_ndn,
...
conn->c_dn,c_ndn, Access->a_dn_pat)
2001-12-24 15:11:01 +00:00
Kurt Zeilenga
0c28b66a75
use dnPretty instead of dn_pretty
2001-12-23 00:43:57 +00:00
Pierangelo Masarati
e36bde9180
added backend-side support for on-the-fly operational attributes; added hasSubordinates to schema and back-ldbm
2001-12-22 11:50:16 +00:00
Kurt Zeilenga
d23313a068
LDAPv2 disallow and other flag changes
...
Fix compile errors
2001-12-21 04:44:34 +00:00
Howard Chu
ef0b308bea
Changed backglue configuration. Added noSubordinates arg to select_backend
...
to deal with glued subordinates.
2001-12-10 12:09:40 +00:00
Howard Chu
fd7e23c188
Converted suffixAlias to struct bervals.
2001-12-09 14:57:42 +00:00
Howard Chu
45aadbbbba
Eliminate unnecessary per-operation dn_normalize(o_ndn); it's already
...
done in do_bind() and there's space in the connection structure for c_ndn
already, just copy it.
2001-12-09 14:46:29 +00:00
Howard Chu
b0169858d1
Don't include glued databases in namingContexts
2001-12-09 02:01:58 +00:00
Howard Chu
584d58e8d1
Added callbacks for send_ldap_response and send_search_result.
2001-12-08 15:21:20 +00:00
Howard Chu
55a217d9ae
Changed be_nsuffix from char ** to struct berval ** to eliminate strlen's
2001-12-08 05:15:58 +00:00
Howard Chu
0552b1c53f
NT updates from jon@symas.com.
2001-12-07 04:03:25 +00:00
Kurt Zeilenga
575c9469d9
Rework dnNormalize/dnPretty to share LDAP_rewrite
...
Add flag to matching rules to indicate if DN folding is needed.
Don't specify dnPretty as pretty function for DN attribute types as
this works too well (it breaks tests).
2001-12-06 03:24:31 +00:00
Kurt Zeilenga
86f79b85d8
Add experimental UUID/CSN support (needed for LCUP).
2001-12-05 07:25:25 +00:00
Kurt Zeilenga
493b415255
Rework indexing code, removing "autolang" and making
...
"subtypes" and "lang" default behavior.
2001-12-05 00:06:03 +00:00
Pierangelo Masarati
0f64b72a00
paranoid check for escaped dn separators when naively checking for rdn boundary
2001-12-01 16:28:21 +00:00
Pierangelo Masarati
bdb3edefd5
added pattern="anonymous","users","dn.{base|one|subtree|children}" to limit enforcement
2001-12-01 14:17:14 +00:00
Kurt Zeilenga
2ac7c91cae
Replace existing SLAP_MR_ matching flags with:
...
SLAP_MR_ASSERTION_SYNTAX_MATCH
SLAP_MR_VALUE_SYNTAX_MATCH
SLAP_MR_VALUE_SYNTAX_CONVERTED_MATCH,
add supporting evaluation macros, and update code as needed.
Misc other code cleanup included.
2001-11-27 21:59:56 +00:00
Mark Adamson
bd091ce276
Allow size and time limits in slapd.conf for anonymous bound search operations
2001-11-21 20:28:15 +00:00
Pierangelo Masarati
d262aae706
fix misinitialized UNDEFINED attribute type; reordered members of AttributeType because I don't know a portable way to statically initialize a mutex :)
2001-11-17 14:09:38 +00:00
Howard Chu
0bfaa8b4ae
Changed AttributeType.sat_cname from char * to struct berval.
...
(will fix up back-bdb next.)
2001-11-16 07:45:37 +00:00
Howard Chu
cc4a51f23c
Changed global ad_mutex into per-attributeType mutex. Added
...
ad_find_lang() to search an AttributeType for a given language variant.
(Will be used in back-bdb/back-ldbm index code...)
2001-11-16 07:39:14 +00:00
Howard Chu
48623df1a8
Added backend_group result caching.
2001-11-12 19:37:48 +00:00
Howard Chu
5f8058f957
Added schema_destroy() et al to free schema structures on shutdown
2001-11-07 01:03:49 +00:00
Julio Sánchez Fernández
5dbf4bddae
Add a flag to help the value_* functions know whether they are seeing
...
a full value (in attribute type syntax) or a value in the syntax of
the matching rule (as happens in filters).
2001-10-22 19:57:23 +00:00
Howard Chu
0e16f6acf9
Moved AttributeDescription caching into main code:
...
Changed AttributeDescription.{ad_cname,ad_lang} to struct berval everywhere
Deleted ad_free() everywhere
Added ad_mutex to init.c
The AttributeDescriptions are in a linked list hanging off of the
corresponding AttributeType.
2001-10-22 13:23:05 +00:00
Julio Sánchez Fernández
4d0ab0215b
First cut at certificateExactMatch, completely untested and without
...
indexing.
2001-10-20 10:15:09 +00:00
Howard Chu
647b5f84ee
Resurrection/rewrite of CLDAP (RFC1798 Connectionless LDAP).
...
Compile with -DLDAP_CONNECTIONLESS to use this code.
For slapd, use "-h cldap://" to listen on UDP.
For ldapsearch, use "-H cldap://" to query on UDP.
Client-side support is very minimal:
no automatic timeout/retries
no basedn wildcard expansion on results
no support for specifying multiple servers at once.
2001-09-28 00:18:40 +00:00
Kurt Zeilenga
61de99937f
ldif.h include cleanup
2001-09-25 00:03:24 +00:00
Kurt Zeilenga
0a155934ab
Add root DSE supportedFeatures support.
2001-09-09 04:01:07 +00:00
Pierangelo Masarati
8471ef7ed0
add global, per backend and per op_ndn time/size soft, hard and to-be-checked limits (exploited by back-ldbm); see slapd.conf(5) for details
2001-08-01 10:09:04 +00:00
Pierangelo Masarati
4051547dfa
handle regex-based per op_ndn time/size limits
2001-07-28 11:24:22 +00:00
Kurt Zeilenga
5cb6b1ce02
Back out DN changes, needs more work
2001-07-21 22:44:55 +00:00
Pierangelo Masarati
ece9bdb0eb
Added the suffix=<dn> parameter to replica config directive
...
to allow selective replication of subtrees of a single database.
Multiple occurrences allow the same replica to handle different
subtrees
2001-07-21 14:15:23 +00:00
Pierangelo Masarati
a453d7eacf
dn_validate/dn_normalize has been rewritten by
...
David A. Cooper <david.cooper@nist.gov> (ITS#1232)
according to draft-ietf-ldapbis-dn-05.txt
A copyright statement follows:
The functions normalize_unicode(), get_hexpair(), write_hex_pair(),
get_next_byte(), get_next_char(), get_ber_length(),
ber_parse_primitive_string(), ber_parse_string(), String_normalize(),
DirectoryString_normalize(), PrintableString_normalize(),
IA5String_normalize(), ber_parse_primitive_bitstring(),
ber_parse_bitstring(), getNext8bits(), bitString_normalize(), match_oid(),
match_key(), get_validated_av_in_dn(), get_validated_rdn_in_dn(),
and get_validated_dn() in this file were developed at the National Institute
of Standards and Technology by employees of the Federal Government in the
course of their official duties. Pursuant to title 17 Section 105 of the
United States Code the code in these functions is not subject to copyright
protection and is in the public domain. The copyright for all other code in
this file is as specified below.
2001-07-13 08:21:14 +00:00
Pierangelo Masarati
bff5608926
protos and declarations for charray and rdn stuff
2001-07-06 12:23:22 +00:00
Randy Kunkee
a9097044ea
Remove global_backendsyncfreq code (code has been pushed down into back-ldbm).
2001-06-28 18:02:46 +00:00
Randy Kunkee
d492880870
Add sync_daemon to daemon.c, enabled by global configuration
...
backendsyncfreq <seconds>. Setting this automatically enables
dbnosync (because the synchronizer takes care of it).
2001-06-22 08:38:58 +00:00
Kurt Zeilenga
67cf14466e
Check schema NAMEs
2001-06-07 22:47:02 +00:00
Kurt Zeilenga
cc6fab319e
Add support for separate max incoming for anonymous and authenticated
...
sessions (defaults: 256K and 16M respectively).
2001-05-29 20:00:55 +00:00
Kurt Zeilenga
0aef7722e6
Add support for obsolete attributes.
...
We don't support collective attributes (yet).
Remove exit() calls from scheme parsers. Need to do same for acl parser.
2001-05-17 07:31:59 +00:00
Kurt Zeilenga
1669cd4d7b
Add '=' to printableString to be consistent with ASN.1 description
...
of syntax. RFC 1778/2252 are wrong and will need to be updated.
2001-05-16 19:20:29 +00:00
Kurt Zeilenga
4baa7c47da
Add better modlist2mod error reporting (to client)
2001-05-10 03:41:17 +00:00
Kurt Zeilenga
24ea49810f
Clean up some #ifdefs
2001-05-09 23:42:49 +00:00
Kurt Zeilenga
abce5abf34
Quick sb_max_incoming hack, should be configurable (likely
...
with differing anonymous vs authenticated values).
2001-05-04 21:55:07 +00:00
Kurt Zeilenga
1eb0170482
s/<anonymous>/cn=anonymous/ to avoid syntax issues
2001-04-19 19:29:38 +00:00
Kurt Zeilenga
10730ca226
Add objectClass kind checking
...
Kludge NADF schema to conform
2001-01-22 08:09:25 +00:00
Kurt Zeilenga
79d9ab38ba
Add more restrictive numeric string validate.
...
Need to rework IA5 matching to support empty strings as they should
be allowed for most string types (excepting directoryString).
2001-01-17 21:02:11 +00:00
Mark Adamson
2231d5e64e
Make SASL authorization work for NULL, "u:", and "dn:" authz strings.
2000-11-30 22:00:15 +00:00
Kurt Zeilenga
451146f795
Update validation of printable-like syntaxes
2000-11-04 21:09:23 +00:00
Kurt Zeilenga
17bcb2b3bb
Update printableString to restrict characters per RFC1778 not isprint()
2000-11-04 20:31:50 +00:00
Julio Sánchez Fernández
5b52ae5109
Extend MRA. It now has a pointer to a MatchingRule, but a char
...
pointer is kept for messages and to tell a filter without rule
from one with an unknown rule. It matters.
2000-10-15 19:10:43 +00:00
Julio Sánchez Fernández
6777a3a41a
Permit access defined by uniqueMember and not only DN-valued
...
attributes. This allows using groupOfUniqueNames for
access control.
Fix small typo in MRA definition.
2000-10-09 19:09:22 +00:00
Kurt Zeilenga
7c96f629ee
Add connection and operation arguments to backend callbacks.
...
Needed for transactions.
2000-09-29 05:25:44 +00:00
Kurt Zeilenga
ce382475f0
misc cleanup
2000-09-29 02:50:34 +00:00
Mark Adamson
bf1ee530ea
Implementation of SASL authorization.
2000-09-21 17:32:54 +00:00
Kurt Zeilenga
3342ea3b49
Add more bind allow/disallow flags
2000-09-11 18:24:24 +00:00
Kurt Zeilenga
2e13824d0d
Add "allow tls_2_anon" to allow StartTLS to force session to anonymous.
...
Add "disallow tls_authc" to disallow StartTLS when session is authenticated.
Create and use connection2anonymous routine for consistency.
2000-09-08 22:59:01 +00:00
Kurt Zeilenga
cee040a321
Bring UCdata infrastructure.
2000-09-03 23:48:35 +00:00
Kurt Zeilenga
bf3df2f7a6
restrictops, requires, disallow knobs; ssf acls; and misc other changes
...
man pages to follow...
2000-08-28 18:38:48 +00:00
Kurt Zeilenga
1c328aa9c7
Minor typedef and other clean ups
2000-08-26 01:14:05 +00:00
Kurt Zeilenga
a7ec3506cf
change "substr" to imply initial, any, final indexing.
2000-08-22 21:33:09 +00:00
Kurt Zeilenga
02f888c563
First cut of LDBM substrings indexing. Needs testing.
2000-08-22 21:26:25 +00:00
Kurt Zeilenga
32c7186b9c
Add frontend support for "any" substrings assertions.
...
Needs to be tied into index mask and backend search code.
2000-08-22 02:23:52 +00:00
Kurt Zeilenga
7800d2d41e
Remove cldap cruft
2000-08-18 03:35:19 +00:00
Kurt Zeilenga
a50f391bb3
Working SASL security layers!
2000-07-28 00:04:07 +00:00
Kurt Zeilenga
6c41d272cf
Update framework to support registration of approximate matching
...
rules.
2000-07-24 21:29:30 +00:00
Kurt Zeilenga
3a73af57c1
conform schema routines to ldap naming conventions
2000-07-22 17:30:44 +00:00
Kurt Zeilenga
ce63e21f00
New slapindex framework (no meat)
2000-07-19 02:24:08 +00:00
Kurt Zeilenga
9c5ad6291b
Add experimental caseExact/Ignore substrings indexer/filter routines.
2000-07-18 17:46:34 +00:00
Kurt Zeilenga
d2b05a3858
Rework SASL command line arguments. Default is now to authenticate
...
using best available mechanism. (authzid prompting to be disabled)
To use simple bind, -x is required (implied if -P 2) with -D/-[Ww]
To use simple "anonymous" bind, just -x will do.
2000-07-15 23:25:46 +00:00
Kurt Zeilenga
5bca08d716
Store sasl callbacks in session handle so that they can properly freed.
2000-07-15 00:01:09 +00:00
Kurt Zeilenga
5fc22599e2
Update SASL code to reuse context through life of session.
...
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
2000-07-13 22:54:38 +00:00
Mark Valence
d4d03e36e5
Added "threads" config to slapd.conf.
2000-07-04 19:24:13 +00:00
Kurt Zeilenga
2eb664f481
Add octetString syntax to undefined attribute type
2000-07-02 17:50:18 +00:00
Kurt Zeilenga
b1172dc5ac
Add experimental support for undefined attribute types.
2000-07-02 17:16:18 +00:00
Kurt Zeilenga
b21ba52482
Clarify ad_type usage
2000-07-02 08:06:55 +00:00
Kurt Zeilenga
1566454e6e
Add sets to NT build, remove LINT
2000-07-01 04:58:23 +00:00
Mark Valence
4b1ff75bdd
Prepare for Set ACLs and ACIs.
2000-06-29 21:41:54 +00:00
Kurt Zeilenga
3112f21612
Add attribute type/matching rule support for structuralObjectClass attribute
...
type. Add type to core.schema. Not yet populated on add nor checked on modify.
2000-06-26 05:13:41 +00:00
Kurt Zeilenga
317d04a5d9
Modify backend_attribute to return bervals and adjust ACLs
...
(actually, ACL here might be dangerous)
2000-06-26 01:22:32 +00:00
Mark Valence
295f3ba0aa
New backend routine: back_attribute
2000-06-21 17:23:24 +00:00
Kurt Zeilenga
d19419392c
Use ASCII_*() macros and friends. Should be combined with similiar LDAP_*()
...
macros in ldap_pvt.h.
2000-06-20 17:05:15 +00:00
Kurt Zeilenga
01f7e78cbb
Add experimental objectIdentifierFirstComponentMatch routine
2000-06-20 03:55:40 +00:00
Kurt Zeilenga
665272dca1
Minor adjustments to substrings searching
2000-06-19 20:39:11 +00:00
Kurt Zeilenga
7fec5877a3
Add SLAPD_TOP_OID macro for oc.c
2000-06-19 16:15:33 +00:00
Kurt Zeilenga
9ef1a740c2
Round one of LDAP_F() macro changes. In this round we rename
...
macros into our namespace and limit use to headers. A subsequent
round will add macros to separately handle forward declarations
of variables from declaration of function prototypes. The last
round will add additional macros for declaring actual variables and
functions.
2000-06-18 19:48:07 +00:00
Kurt Zeilenga
79ebfbc4fe
Rework referral entry point with DNS SRV implementation (needs testing).
2000-06-16 03:50:02 +00:00
Kurt Zeilenga
6f378341a2
Add backend_check_referrals() framework.
2000-06-16 01:19:30 +00:00
Mark Valence
1bfcb4b039
Added .regex, .base, .one, .subtree, and .children "style" modifiers.
2000-06-12 01:35:15 +00:00
Kurt Zeilenga
a56c161bdb
Misc code cleanup.
2000-06-10 22:39:30 +00:00
Kurt Zeilenga
dc1e5a9392
remove IA64 lint
2000-06-09 06:24:10 +00:00
Kurt Zeilenga
693fb9424a
unifdef -DSLAPD_SCHEMA_NOT_COMPAT -USLAPD_SCHEMA_COMPAT
2000-06-06 19:43:18 +00:00
Kurt Zeilenga
ea069cb7c2
New indexer/filter codes (test suite works) with cheats
...
Updated NT Project files (with Cyrus SASL library depend)
2000-06-04 22:59:38 +00:00
Kurt Zeilenga
7c7fab11d4
Add extensibleObject support
2000-05-31 18:46:13 +00:00
Kurt Zeilenga
eb70b602ee
Rework ACI codes to use OpenLDAPaci. Add needed schema elements.
...
Needs work. Volunteers welcomed.
2000-05-30 21:34:55 +00:00
Kurt Zeilenga
3350957674
SLAPD_SCHEMA_NOT_COMPAT: ACI cleanup
2000-05-28 22:17:34 +00:00
Kurt Zeilenga
c98f0ea02c
SLAPD_SCHEMA_NOT_COMPAT:
...
Don't depend acl parsing upon slap_schema, it's filled in post-conf
2000-05-28 18:58:09 +00:00
Kurt Zeilenga
439c0c796d
SLAPD_SCHEMA_NOT_COMPAT: Mostly work modify
2000-05-28 16:36:34 +00:00
Kurt Zeilenga
1a8f509f9a
s/substring/substrings/
2000-05-27 22:46:37 +00:00
Kurt Zeilenga
2273ae0cb7
SLAPD_SCHEMA_NOT_COMPAT: add f_sub_desc -> f_sub_type for compat
2000-05-27 21:45:52 +00:00
Kurt Zeilenga
b813a5ba30
SLAPD_SCHEMA_NOT_COMPAT: prelim ACL work
2000-05-27 19:33:08 +00:00
Kurt Zeilenga
bd243c07a3
Add hooks for syntax normalizer (used by value_match)
...
and prettier (to be used by update operations).
2000-05-24 20:21:46 +00:00
Julio Sánchez Fernández
106ff98af0
Revert last change,
2000-05-24 20:11:21 +00:00
Kurt Zeilenga
c1da50a426
SLAPD_SCHEMA_NOT_COMPAT: equality filters
...
(2.5.4.0=2.5.6.0) works! ie: (objectclass=top)
2000-05-24 18:49:30 +00:00
Julio Sánchez Fernández
2e0c16b56b
Get a couple of extensions into fields easy to use at runtime.
2000-05-24 15:54:21 +00:00
Kurt Zeilenga
bf3a229423
SLAPD_SCHEMA_NOT_COMPAT: cleanup
2000-05-23 17:00:46 +00:00
Julio Sánchez Fernández
34c05b5149
Extend slapd schema structure definitions to reflect the new
...
extensions field in the contained structures.
2000-05-23 13:56:26 +00:00
Kurt Zeilenga
60802201e3
Const'ification
...
SASL mech removed from backend bind callback (as SASL is managed by frontend)
Changes to some backends are untested (as I don't have all dependent
software install)
2000-05-22 03:46:57 +00:00
Kurt Zeilenga
b2f56a7318
SLAPD_SCHEMA_NOT_COMPAT: framework for value_match() and value_find()
2000-05-21 22:46:51 +00:00
Kurt Zeilenga
074be5fb5a
SLAPD_SCHEMA_NOT_COMPAT: numerous changes to syntax flags, mostly minor
...
added new value_normalize() code
need LDAPsyntaxes X- field support
2000-05-18 17:21:42 +00:00
Kurt Zeilenga
fa9f7a7d8e
SLAPD_SCHEMA_NOT_COMPAT: add framework for substr value normalization
...
Calls value_normalize per substr component (like old code),
likely should have/call substr_normalize which takes all components
at once (to allow more sophisticated normalization)
2000-05-17 20:29:26 +00:00
Kurt Zeilenga
40ab90fa9c
SLAPD_SCHEMA_NOT_COMPAT: Rework caching of internal schema
2000-05-15 21:05:25 +00:00
Kurt Zeilenga
dc68e41ee9
cleanup old TOOLID macro
2000-05-15 16:33:07 +00:00
Kurt Zeilenga
ae7d89fa1e
SLAPD_SCHEMA_NOT_COMPAT addl. filter changes (a work in progress).
2000-05-15 00:41:29 +00:00
Kurt Zeilenga
4bc786f34b
Y2k copyright update
2000-05-13 02:47:56 +00:00
Howard Chu
df7ca2c3f3
Remove #undef LDAP_MOD_BVALUES - backends like back-ldap that are also
...
LDAP clients themselves still need this definition.
2000-05-10 21:22:07 +00:00
Kurt Zeilenga
55ae3cffd8
SASL code without backend support. Should work with
...
external store, but not yet tested. [Intent is to support
both in same server... may not be doable]
2000-04-25 16:03:17 +00:00