upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2026-01-28 01:29:18 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
5697 commits 38 branches 310 tags 80 MiB
Commit graph

2546 commits

Author SHA1 Message Date
Kurt Zeilenga
c46014e27e Fix typo in disallow logging 2001-07-15 17:25:00 +00:00
Stig Venaas
886a7575d0 Fixed segfault in caseIgnoreFilter when assertion value has bad UTF8 coding 2001-07-15 16:21:36 +00:00
Pierangelo Masarati
e864abf685 reworked slapd_mods_free into mimic to avoid extra obj linking into tools 2001-07-14 17:48:12 +00:00
Pierangelo Masarati
5fdba27288 This is the skeleton of back-monitor, the slapd monitoring backend. 
The old monitoring stuff has been removed; the new backend is
enabled by using --enable-monitor at configure time and requires

	database monitor

in slapd.conf to be activated.  At present it implements a subset
of the old monitoring options, and it should be extendable to
a number of different subsystems.  The search operation has been
implementd; it does not honor abandon or size/time limits, though.
The compare and the abandon operations are planned.

Copyright Pierangelo Masarati <ando@sys-net.it>; the code is provided
AS IS with NO GUARANTEE.  It can be used and distributed under the
conditions stated by the OpenLDAP Public License.
 2001-07-14 17:34:24 +00:00
Kurt Zeilenga
ca43453b95 Quick and dirty hack to add password modify replication. 2001-07-14 01:26:02 +00:00
Pierangelo Masarati
a453d7eacf dn_validate/dn_normalize has been rewritten by 
David A. Cooper <david.cooper@nist.gov> (ITS#1232)
according to draft-ietf-ldapbis-dn-05.txt

A copyright statement follows:

  The functions normalize_unicode(), get_hexpair(), write_hex_pair(),
  get_next_byte(), get_next_char(), get_ber_length(),
  ber_parse_primitive_string(), ber_parse_string(), String_normalize(),
  DirectoryString_normalize(), PrintableString_normalize(),
  IA5String_normalize(), ber_parse_primitive_bitstring(),
  ber_parse_bitstring(), getNext8bits(), bitString_normalize(), match_oid(),
  match_key(), get_validated_av_in_dn(), get_validated_rdn_in_dn(),
  and get_validated_dn() in this file were developed at the National Institute
  of Standards and Technology by employees of the Federal Government in the
  course of their official duties. Pursuant to title 17 Section 105 of the
  United States Code the code in these functions is not subject to copyright
  protection and is in the public domain. The copyright for all other code in
  this file is as specified below.
 2001-07-13 08:21:14 +00:00
Pierangelo Masarati
b0a60a5d3d added function cache_find_entry_ndn2id that avoids an unnecessary call to dn_normalize; now dn2id calls this function, while the original function has been left as a wrapper 2001-07-11 08:41:42 +00:00
Pierangelo Masarati
27e5c484e6 reworked rdn_attrs to use ldap_explode_rdn; maybe we should remove escapes "\" from parts directly in ldap_explode_rdn 2001-07-10 18:19:22 +00:00
Gary Williams
453e69d636 fix bad debug message 2001-07-10 16:42:26 +00:00
Pierangelo Masarati
005823e032 Forbid empty ("") dn! (followup 5 to ITS#1173) 2001-07-09 10:35:43 +00:00
Pierangelo Masarati
2baa2f0f24 If add to "" is allowed, also modrdn should 2001-07-07 15:40:25 +00:00
Pierangelo Masarati
04c29fb3ea dn2idl API changed for consistency with other dn2id* funcs 2001-07-07 14:49:42 +00:00
Pierangelo Masarati
a4dc886f02 moved some slap_mods_* functions into mods.c, so mods.o can be included 
by slapd/tools/*; slap_mods_free is needed by ldbm_back_modrdn after
fixing ITS#1184 (at present -DMULTIATTRVAL_RDN is needed when compiling
back-ldbm/modrdn.c to trigger the compilation of new code).
 2001-07-07 09:13:05 +00:00
Pierangelo Masarati
da9ea54700 fixed test on "" (empty) parent dn 2001-07-06 14:40:27 +00:00
Pierangelo Masarati
f4acf94c83 honors '+' rdn separator in adding/deleting attributes; needs -DMULTIATTRVAL_RDN. Please test 2001-07-06 12:24:34 +00:00
Pierangelo Masarati
bff5608926 protos and declarations for charray and rdn stuff 2001-07-06 12:23:22 +00:00
Pierangelo Masarati
38ce12a6f6 added rdn_attrs: parses a rdn and returns types and values in two arrays (honors '+' separator according to RFC 2253) 2001-07-06 12:22:01 +00:00
Pierangelo Masarati
016328a1da added misc charray utilities 2001-07-06 12:20:26 +00:00
Kurt Zeilenga
38e8fefe17 Fix root dse checks 2001-07-06 02:14:47 +00:00
Kurt Zeilenga
9d6852d584 Correct X.500 reference 2001-07-06 02:11:17 +00:00
Pierangelo Masarati
901ce99dde added a comment to rdn_validate: needs to be rewritten according to dn_validate 2001-07-05 20:33:15 +00:00
Pierangelo Masarati
cd74b62fd2 rdn check to prevent illegal rdns in modrdn (copied from dn_rdn) fixes ITS#1102 2001-07-05 08:40:40 +00:00
Pierangelo Masarati
5c0502add9 make slurpd honor include files in slapd.conf (note: the problem was signalled in ITS#131 :) 2001-07-04 20:03:49 +00:00
Pierangelo Masarati
5ad8efbb47 Used API signature from back-bdb; compiles and passes make test 2001-07-03 11:23:18 +00:00
Pierangelo Masarati
fdd45144ca separate ID return value form return status in dn2id (back-ldbm/dn2id.c) 2001-07-02 19:42:27 +00:00
Randy Kunkee
a9097044ea Remove global_backendsyncfreq code (code has been pushed down into back-ldbm). 2001-06-28 18:02:46 +00:00
Randy Kunkee
6a6fd6059d Change to _TRACE instead of _ANY for sync daemon internals. 2001-06-28 09:27:01 +00:00
Randy Kunkee
0ef87764d7 Move backend_syncfreq code down into back-ldbm. Creates new configuration 
for LDBM backends called "dbsync", which takes minimum of one argument up
to 3 args which are sync frequency, # of delays, and delay periods.  See
man page update for "dbsync" configuration for more details.
 2001-06-28 09:20:33 +00:00
Kurt Zeilenga
77f776dfd1 Another round of TLS updates to support secure referral chasing 2001-06-25 19:17:42 +00:00
Kurt Zeilenga
c4f5497ac6 move TLS ctx to lconn struct in prep for supporting TLS with referrals 
need to rework cert check to use per lconn host name
 2001-06-25 07:33:42 +00:00
Pierangelo Masarati
6364cea1d3 catch up with bi_db_sync stuff 2001-06-23 15:43:21 +00:00
Kurt Zeilenga
6dd25ba1e6 Plug idl leakage 2001-06-23 05:05:08 +00:00
Kurt Zeilenga
5aefca3be1 Add comments to three-value logic 2001-06-23 02:42:39 +00:00
Kurt Zeilenga
323a03aa90 Fix three value logic 2001-06-23 02:26:09 +00:00
Kurt Zeilenga
1229cfcc3f Backout directory config option 2001-06-22 21:00:24 +00:00
Kurt Zeilenga
60f4554c76 plug substrings filter memory leak 2001-06-22 18:09:19 +00:00
Kurt Zeilenga
f98a1bab88 TLS initialization fix 2001-06-22 18:08:44 +00:00
Randy Kunkee
d492880870 Add sync_daemon to daemon.c, enabled by global configuration 
backendsyncfreq <seconds>.  Setting this automatically enables
dbnosync (because the synchronizer takes care of it).
 2001-06-22 08:38:58 +00:00
Randy Kunkee
1656f2c774 Patches from Mark Whitehouse (with changes from myself) to make the 
dbcachesize setting actually work for db-3.2.9.
 2001-06-21 18:54:56 +00:00
Kurt Zeilenga
733d6296a6 Fix undefined filter parsing 2001-06-16 02:20:48 +00:00
Kurt Zeilenga
bee0650d9c Work in progress codes. !UNTESTED! 2001-06-15 07:08:37 +00:00
Kurt Zeilenga
11b6d1f284 Misc updates for NT4 2001-06-15 04:16:55 +00:00
Kurt Zeilenga
e2edf459cb Remove extraneous variable 2001-06-15 00:00:52 +00:00
Kurt Zeilenga
ff993c7ddb Misc updates to password codes / docs 2001-06-13 05:40:24 +00:00
Kurt Zeilenga
8d4c20cd6d Adding crypt(3) salt format (ITS#1202) from Jeff Costlow <j.costlow@f5.com> 
with minor changes by committer
---
Copyright 2001, F5 Networks, Inc, All rights reserved.
This software is not subject to any license of F5 Networks.

This is free software; you can redistribute and use it
under the same terms as OpenLDAP itself.
 2001-06-13 03:47:17 +00:00
Kurt Zeilenga
67cf14466e Check schema NAMEs 2001-06-07 22:47:02 +00:00
Kurt Zeilenga
cda7d4b2fc Check for children 2001-06-07 00:19:23 +00:00
Kurt Zeilenga
6a647d917f Check for duplicate entries 2001-06-06 22:17:57 +00:00
Kurt Zeilenga
adae86a7db Add more detailed reporting of schema violations to client. 2001-06-06 00:23:56 +00:00
Kurt Zeilenga
891079fb09 Fix undefined attribute type error text usage 2001-06-04 16:46:33 +00:00
Pierangelo Masarati
970abe2637 semicolon after colon in goto labels; no C++ style comments; unused vars removed or #ifdef'd 2001-06-03 08:55:17 +00:00
Pierangelo Masarati
5a2014b863 semicolon after colon in goto labels 2001-06-03 08:53:13 +00:00
Kurt Zeilenga
9a0b6e92d7 Default ACL clause should be "by * none stop" not "by * stop". 
That is, default rule should set permissions to none.
 2001-06-01 20:09:03 +00:00
Kurt Zeilenga
5f0473d127 Fix typo in last commit 2001-05-30 06:28:32 +00:00
Kurt Zeilenga
e4653bde68 Allow empty numericString matching 2001-05-30 06:06:14 +00:00
Kurt Zeilenga
cc6fab319e Add support for separate max incoming for anonymous and authenticated 
sessions (defaults: 256K and 16M respectively).
 2001-05-29 20:00:55 +00:00
Kurt Zeilenga
351e436dcf Add an LDBM backend "directory" directive (in addition to 
the existing database "directory" directive) to allow setting
of a DB_ENV directory.  Should likely be database specific.
 2001-05-29 01:51:37 +00:00
Kurt Zeilenga
7d89fb5446 Fix empty suffix separator test. 2001-05-28 19:40:42 +00:00
Kurt Zeilenga
b56b9859c7 Fix typo (no functional change) 2001-05-28 19:40:15 +00:00
Kurt Zeilenga
820042d013 Add some additional filter checks 2001-05-24 01:07:00 +00:00
Kurt Zeilenga
2433719316 add missing return bug 2001-05-24 00:42:08 +00:00
Kurt Zeilenga
8360b4396f Take rc out from #ifdef 2001-05-20 17:39:32 +00:00
Pierangelo Masarati
c5a9ffa62e pseudo-root dn bind; a couple of minor fixes 2001-05-19 17:02:39 +00:00
Kurt Zeilenga
b8788e8a75 minor cleanup 2001-05-18 17:10:03 +00:00
Kurt Zeilenga
0aef7722e6 Add support for obsolete attributes. 
We don't support collective attributes (yet).
Remove exit() calls from scheme parsers.  Need to do same for acl parser.
 2001-05-17 07:31:59 +00:00
Pierangelo Masarati
90766f4d4f minor cleanup; some error handling and log fixes 2001-05-16 23:06:15 +00:00
Pierangelo Masarati
395cc1d7bb added new log; minor cleanup of rewrite stuff 2001-05-16 22:55:44 +00:00
Kurt Zeilenga
a76935fe00 Note that schema submissions should come with a reference 
to a stable specification.
 2001-05-16 20:42:20 +00:00
Kurt Zeilenga
1669cd4d7b Add '=' to printableString to be consistent with ASN.1 description 
of syntax.  RFC 1778/2252 are wrong and will need to be updated.
 2001-05-16 19:20:29 +00:00
Kurt Zeilenga
ce8fcda8c4 Improve error message when parent is referral or not present 2001-05-16 19:19:16 +00:00
Pierangelo Masarati
0b4c7e0181 added new logging to back-meta 2001-05-13 23:44:22 +00:00
Pierangelo Masarati
00dfed1d0e cleanup of the tests in back-meta/data; after build, run "setup.sh" 
in back-meta/data and follow instructions.
minor update of "Changes" and "TODO".
 2001-05-13 17:58:03 +00:00
Kurt Zeilenga
0445405299 if continuation line starts with a tab, rewrite it to a space 2001-05-12 18:43:06 +00:00
Pierangelo Masarati
74fa239a20 This is the commit of: 
- librewrite, for string rewriting; it may be used in back-ldap
    by configuring with '--enable-rewrite'. It must be used in
    back-meta. There's a text file, 'libraries/librewrite/RATIONALE',
    that explains the usage and the features. More comprehensive
    documentation will follow.
  - enhancements of back-ldap (ITS#989,ITS#998,ITS#1002,ITS#1054 and ITS#1137)
    including dn rewriting, a fix to group acl matching and so
  - back-meta: a new backend that proxies a set of remote servers
    by spawning queries. It uses portions of back-ldap and the rewrite
    capabilities of librewrite. It can be compiled by configuring
    with `--enable-ldap --enable-rewrite --enable-meta'.
    There's a text file, 'servers/slapd/back-meta/Documentation', that
    describes the main features and config statements.

Note: someone (Kurt?) should run 'autoconf' and commit 'configure' as
my autoconf version must be different: my configures contain a number
of differences and I didn't feel comfortable in adding them :)
 2001-05-12 00:51:28 +00:00
Gary Williams
cabeec26d4 fix debug line (ITS 1145) 2001-05-11 20:19:16 +00:00
Kurt Zeilenga
cf2cb85fab Clean up logging 2001-05-10 17:40:12 +00:00
Kurt Zeilenga
af2ab5f0a5 Make sure we yield() on a failed accept() 2001-05-10 17:39:10 +00:00
Kurt Zeilenga
4baa7c47da Add better modlist2mod error reporting (to client) 2001-05-10 03:41:17 +00:00
Kurt Zeilenga
f48cb50f12 Zap presentation address match define 2001-05-09 23:43:06 +00:00
Kurt Zeilenga
24ea49810f Clean up some #ifdefs 2001-05-09 23:42:49 +00:00
Kurt Zeilenga
d523048634 Fix have inet_ntop bug 2001-05-09 23:41:16 +00:00
Kurt Zeilenga
b57bc8b35b Note that misc is experimental 2001-05-09 04:17:55 +00:00
Kurt Zeilenga
5f7bf65deb Add ITS#876 nisSchema 2001-05-09 04:16:47 +00:00
Kurt Zeilenga
a8e3501a11 Update copyright 2001-05-08 02:06:33 +00:00
Kurt Zeilenga
9617b89374 Add DESC to various schema elements 2001-05-08 02:03:44 +00:00
Kurt Zeilenga
60c5e77cd6 Fix disconnect bug 2001-05-06 20:01:18 +00:00
Kurt Zeilenga
4055077607 Add simple configure support for sockbuf max incoming 2001-05-05 07:29:21 +00:00
Kurt Zeilenga
be26f1a9f7 Fix typos 2001-05-04 22:50:51 +00:00
Kurt Zeilenga
abce5abf34 Quick sb_max_incoming hack, should be configurable (likely 
with differing anonymous vs authenticated values).
 2001-05-04 21:55:07 +00:00
Kurt Zeilenga
aa983f343e Clean up entry_free() 
assert of e_private was not freed by caller
 2001-05-04 01:02:36 +00:00
Kurt Zeilenga
383391b460 detect and use fcntl (for BSD/OS) 
detect inet_ntop (for MacOSX)
 2001-05-03 05:53:34 +00:00
Kurt Zeilenga
508890e75b Add telephone number indexing support (reuse only) 2001-05-03 00:59:47 +00:00
Kurt Zeilenga
87dc3e2091 Use SMD5 is SHA1 is not available 2001-05-02 19:46:30 +00:00
Kurt Zeilenga
3310663d02 RANDFILE directives 2001-05-02 19:46:01 +00:00
Kurt Zeilenga
3fdbff6923 SLP updates 2001-05-02 19:44:21 +00:00
Kurt Zeilenga
66aa425d92 Be a bit more liberal 2001-05-02 19:43:38 +00:00
Kurt Zeilenga
2133318df7 Fix LDIF bug 2001-05-02 19:41:57 +00:00
Kurt Zeilenga
f8b4ed8afb Fix secprops mimic'ing 2001-05-02 19:41:27 +00:00
Kurt Zeilenga
a045117bf2 fix typo in comment 2001-04-21 01:32:03 +00:00
Kurt Zeilenga
1eb0170482 s/<anonymous>/cn=anonymous/ to avoid syntax issues 2001-04-19 19:29:38 +00:00
Kurt Zeilenga
da0e6d3d98 Previously added modrdn restriction to restrictive. Need to 
check newSuperior.
 2001-04-19 19:29:00 +00:00
Kurt Zeilenga
c2c7ccc228 Disallow anonymous modification. 2001-04-19 19:28:15 +00:00
Kurt Zeilenga
7537abfb06 Fix referral handling bug 2001-04-12 23:02:20 +00:00
Gary Williams
a26612bc00 fix for select_backend suggested G. Gombas (ITS 1090) 2001-03-27 15:04:06 +00:00
Kurt Zeilenga
20690a532e Fix typo 2001-03-17 17:43:36 +00:00
Kurt Zeilenga
a5ea7aefd6 Add name and uid support to dnaddr 2001-03-15 04:48:29 +00:00
Kurt Zeilenga
fd41a199c0 Make sure we have a separator when doing suffix matching 2001-03-15 03:05:33 +00:00
Kurt Zeilenga
9f8a0e7d1b Normalize DN 2001-03-15 03:04:51 +00:00
Kurt Zeilenga
efaab64b69 Normalized user DN 2001-03-15 03:03:01 +00:00
Kurt Zeilenga
5eaa8fc85f Fix error text bugs 2001-03-15 03:02:23 +00:00
Kurt Zeilenga
e0e0b255f7 Fix typo in $SRCS 2001-03-15 03:01:54 +00:00
Kurt Zeilenga
339a1504d6 Fix syntax/matching-rules for ref and labeledURI 2001-03-15 03:00:52 +00:00
Mark Valence
4b87d9c7d2 Fixed bug (my own, rather old too) that causes a crash on exit when ru 
n as a service on NT.
 2001-03-11 05:13:57 +00:00
Gary Williams
80ab3d6a6e fix logging line 2001-03-02 14:17:01 +00:00
Mark Valence
2c677743ad bug fix 2001-02-20 16:08:14 +00:00
Mark Valence
95bc47ce79 fix mistype. 2001-02-20 16:07:05 +00:00
Mark Valence
6e6118c6cc attribute & objectclass mapping rules 2001-02-19 19:14:12 +00:00
Mark Valence
efcb4533be Fixed aci syntax validation to use UTF (aci attrs can have dn's) 2001-02-19 19:06:21 +00:00
Gary Williams
9cf6ee8ccd fix acl log line 2001-02-08 13:21:20 +00:00
Gary Williams
8ac7efd02d Add some logging for bad attributes 2001-02-06 16:06:38 +00:00
Kurt Zeilenga
0fc62be316 Rework security restrictions for SASL bind 2001-02-03 03:17:22 +00:00
Kurt Zeilenga
f9a302b1f6 Revamp last commit 2001-02-03 02:32:14 +00:00
Kurt Zeilenga
8091aedc76 Add security checks to root DSE searches. 
Fix checking of require statements.
 2001-02-03 02:21:37 +00:00
Gary Williams
7c53c9ba1c fix windows-specific logging line 2001-02-02 14:49:35 +00:00
Gary Williams
7cf56432be small changes to logging 2001-02-02 13:50:16 +00:00
Gary Williams
e565505f21 fix logging macros (thanks Mei) 2001-02-02 13:49:26 +00:00
Stig Venaas
ac95c255a8 Using UTF8normcmp() from lunicode, removing our own UTF8casecmp() 2001-01-31 15:58:00 +00:00
Stig Venaas
a8b77998f5 Made caseIgnoreIndexer(), caseIgnoreFilter(), 
caseIgnoreSubstringsIndexer(), caseIgnoreSubstringsFilter(),
caseExactIndexer(), caseExactFilter(), caseExactSubstringsIndexer() and
caseExactSubstringsFilter() use UTF8normalize
 2001-01-26 15:56:29 +00:00
Stig Venaas
b92bceed2a Now loading all UCDATA files 2001-01-26 14:33:09 +00:00
Stig Venaas
b371357c13 Made dnNormalize() do Unicode normalization and case folding. 
dn_normalize() now uses dnNormalize() and fails if normalized string is
longer than original string.
 2001-01-25 16:51:59 +00:00
Kurt Zeilenga
d717d9c897 Add DNS SRV to error text 2001-01-24 17:25:30 +00:00
Stig Venaas
13e628bcf4 Load UCDATA composition data 2001-01-24 15:31:53 +00:00
Kurt Zeilenga
fa21f7fe86 Fix IP= port numbers 2001-01-24 00:08:15 +00:00
Mark Adamson
68ab73a0f5 Make sure the variable used for SASL REALM is initialized, in case of no REALM. 2001-01-23 19:18:03 +00:00
Kurt Zeilenga
65cdfa68f0 Fix more typos 2001-01-22 22:03:44 +00:00
Kurt Zeilenga
a4f37d6303 Fix typo 2001-01-22 21:10:54 +00:00
Kurt Zeilenga
10730ca226 Add objectClass kind checking 
Kludge NADF schema to conform
 2001-01-22 08:09:25 +00:00
Kurt Zeilenga
a93a15d9fc Add copyright notices 2001-01-20 17:49:05 +00:00
Kurt Zeilenga
b849a6ec78 Add default to default option 2001-01-20 01:15:44 +00:00
Howard Chu
4703fe82b2 Pierangelo Masarati's bugfixes and enhancements for suffix-massaging. 
See the Changes file for detailed description.
 2001-01-19 21:27:20 +00:00
Kurt Zeilenga
28d1dbd8ac Add "sasl-external-x509dn-convert" configuration option aimed 
at providing authid TLS/X.509 to LDAP DN mapping.  Experimental.
 2001-01-19 00:47:32 +00:00
Kurt Zeilenga
1302713f09 Fix SASL_REALM bug 
Minor cleanup of logging code, variable scope
 2001-01-19 00:01:25 +00:00
Mark Adamson
6b4ec38178 Change the SASL DN's from cn=authzid to cn=auth 2001-01-18 20:05:15 +00:00
Gary Williams
84658f8a11 add new logging 2001-01-17 21:12:54 +00:00
Kurt Zeilenga
79d9ab38ba Add more restrictive numeric string validate. 
Need to rework IA5 matching to support empty strings as they should
be allowed for most string types (excepting directoryString).
 2001-01-17 21:02:11 +00:00
Gary Williams
3281138bcf fix format for new logging 2001-01-17 17:01:19 +00:00
Gary Williams
f49fd8a98e fix format 2001-01-17 16:35:53 +00:00
Kurt Zeilenga
c55a82baa2 Mark as "altered version" 2001-01-17 07:09:22 +00:00
Kurt Zeilenga
06d63200e4 ITS#919: fix str2ad initialization bug 2001-01-17 06:32:26 +00:00
Kurt Zeilenga
a5377f6c5e Use consistent spelling of objectClass 2001-01-17 02:51:05 +00:00
Kurt Zeilenga
abb0797358 Move optimistic ret setting 2001-01-17 02:48:55 +00:00
Kurt Zeilenga
8a22a0e0d0 SLP extension derived from patch provided by Caldera Systems. 
Copyright 2000, Caldera Systems, Inc All rights reserved.
This software is not subject to any license of Caldera Systems, Inc

This is free software; you can redistribute and use it
under the same terms as OpenLDAP itself
 2001-01-16 22:18:33 +00:00
Kurt Zeilenga
2a7036e5b0 ITS#963: Multimaster patch 2001-01-16 06:49:49 +00:00
Gary Williams
ffcdc6d11d More new logging (Behind NEW_LOGGING) 2001-01-15 19:17:29 +00:00
Gary Williams
d531a20f52 more new logging (finally), behind NEW_LOGGING 2001-01-11 17:11:23 +00:00
Kurt Zeilenga
2ae02fc19b Treat unrecognized object classes as an objecdt class violation (per X.511) 2001-01-10 19:00:47 +00:00
Kurt Zeilenga
6d0479b2a6 ITS#955: update cosine schema based upon X.500 recommendations 2001-01-10 18:59:54 +00:00
Stig Venaas
43015fc862 Allow changing rdn only, locked parent twice when old and new parent were 
the same.
 2001-01-09 15:49:44 +00:00
Kurt Zeilenga
778e5e9bb6 ITS#941: back-passwd levels fix from nick@debian.org 2000-12-28 02:27:13 +00:00
Mark Adamson
466ff113e1 ITS#897, internal connections need to free their single operation struct. 2000-12-08 22:34:22 +00:00
Mark Adamson
2231d5e64e Make SASL authorization work for NULL, "u:", and "dn:" authz strings. 2000-11-30 22:00:15 +00:00
Kurt Zeilenga
fc630ea1f8 Unbind should not return a result 2000-11-30 20:27:27 +00:00
Kurt Zeilenga
04e2da58ed ITS#895: gai_strerror fix 2000-11-24 05:30:52 +00:00
Kurt Zeilenga
8befe70f3f ITS#900: Fix waitpid == 0 bug 2000-11-21 21:59:35 +00:00
Howard Chu
e2ff92c6fc Set outbound connection to use the same protocol version as the inbound. 2000-11-11 03:01:00 +00:00
Kurt Zeilenga
fcd432ffbd empty OID values are invalid 2000-11-10 23:07:20 +00:00
Stig Venaas
b44cc963c2 Improved ucdata loading error handling 2000-11-09 12:39:18 +00:00
Kurt Zeilenga
ba37cbc233 Fix passwd clearing bug 2000-11-06 15:53:02 +00:00
Kurt Zeilenga
00b77ca088 Postal Address should be treated like directoryString 2000-11-04 21:11:52 +00:00
Kurt Zeilenga
451146f795 Update validation of printable-like syntaxes 2000-11-04 21:09:23 +00:00
Kurt Zeilenga
064abee2c8 highlite ;binary comments with SMIME attributes 2000-11-04 20:32:19 +00:00
Kurt Zeilenga
17bcb2b3bb Update printableString to restrict characters per RFC1778 not isprint() 2000-11-04 20:31:50 +00:00
Dmitry Kovalev
a9b601290b Add 'distinct' to sql search query to prevent duplicate entries in results (suggested by Mathieu Guillaume) 2000-11-04 12:52:06 +00:00
Mark Adamson
caf384a37c Improve handling of initials in approximate search strings. 2000-11-03 16:16:27 +00:00
Kurt Zeilenga
e138a74d48 subtype should inherit approximate matching rule 2000-11-02 21:49:03 +00:00
Dmitry Kovalev
c77bd543bc fix even more stupid thing with the same issue ;) 2000-11-02 16:29:57 +00:00
Dmitry Kovalev
46a10706f5 fix _stupid_ thing with toupper -> ldap_pvt_str2upper 2000-11-02 13:18:45 +00:00
Stig Venaas
87e58fb031 Changed ucdata loading, all is done in config.c. Tried to make ucdata load 
when found in config file, or before first call to dn_normalize/dn_validate
 2000-11-02 10:10:36 +00:00
Dmitry Kovalev
6d94ecd1b0 fix ITS #855 (back-sql crashes with malformed filters), 
also extend bind() to something less trivial (to support SIMPLE_AUTH mode)
 2000-10-30 20:36:29 +00:00
Kurt Zeilenga
5935a11c8e Set UTF8DN by default 2000-10-30 20:05:41 +00:00
Stig Venaas
a8985a440b Use the macro UTF8DN to set whether new UTF8 dn_normalize() code should 
be used.
 2000-10-30 20:00:56 +00:00
Stig Venaas
fdbd1ded93 Short term dn_normalize() fix. Uppercases all UTF8 characters as long 
as the character byte length is preserved. Change #if 1 to use.
 2000-10-28 23:38:14 +00:00
Dmitry Kovalev
4411e0aa17 fix case-insensitive matching 
+
documentation cleanup & update
 2000-10-25 21:23:04 +00:00
Gary Williams
a0b93ce648 initialize new logging routines (behind NEW_LOGGING) 2000-10-25 16:50:45 +00:00
Gary Williams
d65bf04894 add logfile directive to config (behind NEW_LOGGING) 2000-10-25 16:49:23 +00:00
Kurt Zeilenga
9117cbd488 Fix another #if 0 v UTF8MATCH bug 2000-10-25 01:32:35 +00:00
Kurt Zeilenga
b065d8e01b Missed on #if 0 to #if UTF8MATCH is last commit 
Also, enable UTF8MATCH... this is devel!
 2000-10-24 22:25:41 +00:00
Kurt Zeilenga
7d2d2d6583 UTF8 aware caseIgnore matching 
---
Copyright 2000 Stig Venaas, UNINETT
All rights reserved.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice is
preserved. The name of UNINETT may not be used to endorse or promote
products derived from this software without specific prior written
permission. This software is provided ``as is'' without express or
implied warranty.
 2000-10-24 22:23:30 +00:00
Mark Adamson
c165d93ecd Implement 2 approximate matching algorithms. 2000-10-24 20:25:37 +00:00
Kurt Zeilenga
52402fa752 Fix register_syntax argument names 2000-10-23 18:02:48 +00:00
Howard Chu
99c88eace1 Fix: remap API error codes into protocol error codes before sending 
back to client.
 2000-10-23 13:32:14 +00:00
Kurt Zeilenga
dbdba34972 First-cut at manageDSAit-aware backend selection. 2000-10-21 03:29:02 +00:00
Kurt Zeilenga
38cf4a1d82 Add better space compression 2000-10-21 03:27:41 +00:00
Gary Williams
696de70df4 fix lutil_set_debug_level call 2000-10-20 14:46:33 +00:00
Kurt Zeilenga
9e7accb034 This patch replaces gai_strerror with AC_GAI_STRERROR in daemon.c and also 
uses AC_GAI_STRERROR to report getaddrinfo failures in os-ip.c
-- Stig Venass
 2000-10-19 18:05:11 +00:00
Kurt Zeilenga
5630665e27 quick hack to support holding of the root naming context 2000-10-18 19:29:40 +00:00
Kurt Zeilenga
2dbd6c6d0e remove lint 2000-10-18 00:35:09 +00:00
Gary Williams
aacd6e78f4 convert text level to int 2000-10-17 19:42:24 +00:00
Kurt Zeilenga
a865220fd8 Bump listeners to 10 2000-10-17 06:36:22 +00:00
Kurt Zeilenga
d30264a2a1 Trim unimplemented syntaxes and matching rules from subschema subentry 2000-10-16 23:47:46 +00:00
Kurt Zeilenga
1fb923e6e2 Replace last commit with Stig's improved version 2000-10-16 21:45:35 +00:00
Kurt Zeilenga
820965a412 ITS#839: getaddrinfo portability fix from Gabar Gombas 2000-10-16 20:32:39 +00:00
Kurt Zeilenga
fc227a8816 Remove cpp lint 2000-10-16 20:04:42 +00:00
Kurt Zeilenga
e414303e10 Make sure openldap-slurp is created 700 2000-10-16 16:43:42 +00:00
Julio Sánchez Fernández
336f054d05 Extend MRA. It now has a pointer to a MatchingRule, but a char 
pointer is kept for messages and to tell a filter without rule
from one with an unknown rule.  It matters.

Fix a couple of bugs in debug output.
 2000-10-15 19:12:21 +00:00
Julio Sánchez Fernández
5b52ae5109 Extend MRA. It now has a pointer to a MatchingRule, but a char 
pointer is kept for messages and to tell a filter without rule
from one with an unknown rule.  It matters.
 2000-10-15 19:10:43 +00:00
Julio Sánchez Fernández
18b6b866e2 Better parsing. 2000-10-14 18:36:13 +00:00
Kurt Zeilenga
62a588bd05 Correct SMIME comment 
move pilot.schema to the Attic
 2000-10-14 01:42:49 +00:00
Kurt Zeilenga
e30826ea36 Per IETF LDAPext discussions, ;binary transfer of binary syntax 
makes little sense.  Implementations should not require or by
default return ;binary for attributes of this syntax.  This means
inetOrgPerson needs updating.  This means Netscape roaming doesn't.
 2000-10-14 01:37:48 +00:00
Kurt Zeilenga
82e7b2e049 label io as "ldap_" 2000-10-14 00:12:39 +00:00
Julio Sánchez Fernández
7444e727c9 Add mra.o to linked objects 2000-10-13 20:43:32 +00:00
Julio Sánchez Fernández
ff72b73fe3 Protos for extensible matching rules 2000-10-13 20:41:23 +00:00
Julio Sánchez Fernández
d4b63dd3e3 The beginning of extensible matches. Do not use. 2000-10-13 20:39:36 +00:00
Julio Sánchez Fernández
c317a093c4 Let slapd at least start and do things. Someone should really have 
a look at this.  Do we need to add something to every program so
that levelArray is at least initialized?
 2000-10-13 20:24:49 +00:00
Kurt Zeilenga
2b2ee1ccbd Return authMethodNotSupported not authUnknown for unknown 
bind authentication method
 2000-10-13 05:28:23 +00:00
Kurt Zeilenga
f7e9842160 Remove "defaultaccess" option. No longer needed as without 
ACLs, the only sane and useful option is "read".
 2000-10-13 04:45:24 +00:00
Howard Chu
004f4f3260 Fix TLSVerifyClient. Applied in wrong branch before. 2000-10-13 00:54:05 +00:00
Kurt Zeilenga
16fcdec8df Import Stig reorganized daemon.c + style changes 2000-10-12 21:59:08 +00:00
Gary Williams
b9837286db example of new logging use 2000-10-12 20:12:28 +00:00
Gary Williams
bbc0ac00b2 get new debug configuration 2000-10-12 20:11:49 +00:00
Kurt Zeilenga
b285814f8e Fix layer installation 2000-10-12 19:02:31 +00:00
Kurt Zeilenga
5a32ff0603 Add missing 'static'... (ITS#823,825,828) 
as reported by Jeff Earickson <jaearick@colby.edu>
other suggestions to be separately reviewed
 2000-10-11 23:42:53 +00:00
Kurt Zeilenga
468664c443 Adjust result code when entry is not found to noSuchObject 2000-10-11 18:19:26 +00:00
Mark Valence
7e1d4023b8 Removed testing mods accidentally committed with previous fix. 2000-10-11 16:41:15 +00:00
Mark Valence
8130d0e883 Added conn and op arguments to group backend callback. 2000-10-11 16:35:14 +00:00
Mark Valence
d8d9bec087 Added conn and op arguments to backend_group. 2000-10-11 16:25:28 +00:00
Kurt Zeilenga
e6dc9d1889 Update ldappasswd binddn bug, man page and error reporting 2000-10-11 04:56:08 +00:00
Kurt Zeilenga
1ba91c7fc7 Fix up logging 2000-10-10 06:34:58 +00:00
Kurt Zeilenga
a67546e640 Add more detail to "configured to hold" message 2000-10-10 01:37:07 +00:00
Kurt Zeilenga
2b643c7d0b Don't allow authPassword (yet) 2000-10-10 01:07:39 +00:00
Kurt Zeilenga
ef51582b6e slight change to chdir/chroot commit to clean up perror args 2000-10-09 23:38:30 +00:00
Kurt Zeilenga
0189c35b6a Do a chdir() to the sandbox dir to ensure CWD is within sandbox. 2000-10-09 23:35:57 +00:00
Julio Sánchez Fernández
8a8429a972 Fix misleading text in debug output. 2000-10-09 19:14:44 +00:00
Julio Sánchez Fernández
bdf3ec2fb3 Remove lint. 2000-10-09 19:11:46 +00:00
Kurt Zeilenga
c42c2847cf Fix SLAPD_SPASSWD typo which caused passwd_mutex not to be used 
consistently.
 2000-10-09 19:09:28 +00:00
Julio Sánchez Fernández
6777a3a41a Permit access defined by uniqueMember and not only DN-valued 
attributes.  This allows using groupOfUniqueNames for
access control.
Fix small typo in MRA definition.
 2000-10-09 19:09:22 +00:00
Kurt Zeilenga
27b30275a6 We need to set sasl_layers prior to returning result... 2000-10-07 02:00:54 +00:00
Kurt Zeilenga
a912e6eea0 Make sure authzid form produces a valid subject DN. Support 
both u: and dn: forms.
Rework sasl-regex DN be of the form
	uid=user,cn=realm,cn=mech,cn=authz
Fix up slapd.conf(5)
 2000-10-06 23:50:38 +00:00
Kurt Zeilenga
1b635156ab s/saslregex/sasl-regex/ 
Other minor updates
 2000-10-06 21:16:36 +00:00
Kurt Zeilenga
f3d9dd0fab ITS#806: Fix DISTDIR typo 2000-10-05 17:57:41 +00:00
Kurt Zeilenga
68f1e3a55c Fix install of schema when $(INSTALL) is build/install.sh 
use test, not [ ] in expressions
 2000-10-04 17:00:03 +00:00
Kurt Zeilenga
cdf17386ac Fix mode of schema.default installed files 2000-10-04 12:45:55 +00:00
Kurt Zeilenga
4dadd52ce7 allow numericString match indexing 2000-10-04 02:23:42 +00:00
Kurt Zeilenga
49d9f7f1b2 Don't excite folks with index_param fails 2000-10-03 20:50:08 +00:00
Kurt Zeilenga
cdc0a66558 ITS#798: don't block on empty replog log in one-shot mode 2000-10-03 18:50:42 +00:00
Kurt Zeilenga
5c66902abb Fix typo 2000-10-02 14:10:51 +00:00
Kurt Zeilenga
492bb0263f Fix thread handling and error printing 2000-10-01 19:21:07 +00:00
Kurt Zeilenga
fcc86b2456 Check for shutdown after successful select() 2000-09-30 05:34:34 +00:00
Kurt Zeilenga
8a8ed19a44 fix typo in comment 2000-09-30 05:34:02 +00:00
Kurt Zeilenga
890a3cc3bb Update entry release to new prototype 2000-09-30 04:13:30 +00:00
Kurt Zeilenga
8f9980d5f6 Logging changes 2000-09-30 01:04:54 +00:00
Kurt Zeilenga
bd9e1b772c Fix no_threads build 2000-09-30 01:04:43 +00:00
Kurt Zeilenga
7c96f629ee Add connection and operation arguments to backend callbacks. 
Needed for transactions.
 2000-09-29 05:25:44 +00:00
Kurt Zeilenga
ce382475f0 misc cleanup 2000-09-29 02:50:34 +00:00
Kurt Zeilenga
cd9b8b1fe9 ITS#786: fix IA5 string indexing to use appropriate routines 2000-09-29 00:24:43 +00:00
Kurt Zeilenga
283a8f1b4f Add dead lock detection thread. 2000-09-29 00:18:29 +00:00
Kurt Zeilenga
6b80b349fa remove cruft 2000-09-28 22:25:34 +00:00
Kurt Zeilenga
160bf00975 Disable debugging 2000-09-28 22:25:19 +00:00
Kurt Zeilenga
11ba8fcf8f report retries 2000-09-28 18:29:50 +00:00
Kurt Zeilenga
819b5303da Add txn_checkpoint()'ing 
disable moddn/newSuperior (needs re'IDing)
 2000-09-28 04:09:13 +00:00
Kurt Zeilenga
f106722ebf working modrdn... 
(need to fix leaks on transaction retries)
 2000-09-28 02:42:20 +00:00
Kurt Zeilenga
67a595b328 fix up bdb_entry_return() calls 2000-09-28 02:27:49 +00:00
Kurt Zeilenga
fe23e0b875 Fix idl_insert... add/modify/delete now working w/ binary IDL search! 
Leave debugging in place until post indexing work.
 2000-09-28 01:27:01 +00:00
Kurt Zeilenga
75ee0afb30 Add idl_dump for testing purposes 2000-09-28 01:02:59 +00:00
Kurt Zeilenga
b64782a7c0 Clean up logging... need to hand run idl_delete to find bug 2000-09-28 00:24:28 +00:00
Kurt Zeilenga
ce01b5d755 Don't complain about non-existance IDL "range" candidates 2000-09-28 00:10:41 +00:00
Kurt Zeilenga
373479e5b8 Mostly working modify 2000-09-28 00:02:47 +00:00
Kurt Zeilenga
371f8efb9c Fix entry encode/decode logging 2000-09-27 23:37:10 +00:00
Kurt Zeilenga
45b0ae2e7d Fix referrals no-referrals case 2000-09-27 23:25:15 +00:00
Kurt Zeilenga
ddb1124e42 Rough in extended ops, modify, and modrdn. 
General code cleanup.
 2000-09-27 22:28:59 +00:00
Kurt Zeilenga
cb2734eef0 Fix cursor logic 2000-09-26 22:28:12 +00:00
Kurt Zeilenga
077c47c2a6 replace ALLIDS with RANGE IDLs 2000-09-26 22:22:42 +00:00
Kurt Zeilenga
21cc085854 Add reindex 2000-09-26 20:41:54 +00:00
Kurt Zeilenga
fdeffe84e1 Add kludge to get working tests add/populate. 2000-09-26 20:31:34 +00:00
Kurt Zeilenga
dccdd30497 Got base entry... 2000-09-26 19:26:08 +00:00
Kurt Zeilenga
fcb3ccc526 Fix ber_scanf and init bugs 2000-09-26 17:47:24 +00:00
Kurt Zeilenga
63df7da68e include external.h 2000-09-26 05:33:37 +00:00
Kurt Zeilenga
3c600e3a8c Fix logging 2000-09-26 04:28:52 +00:00
Kurt Zeilenga
e2c2ff8deb Apparently working slapadd! 2000-09-26 04:28:17 +00:00
Kurt Zeilenga
ebae2e5c62 Rough in passwd and referral routines 
add diag and fix a few idl bugs
 2000-09-26 03:47:56 +00:00
Kurt Zeilenga
5a30d0a9dd Add more diagnostics including linear search version of idl_search() 2000-09-26 01:36:35 +00:00
Kurt Zeilenga
7b97ddabeb Add diagnostics 2000-09-26 01:18:00 +00:00
Kurt Zeilenga
922cd5f41e Fix nextid 2000-09-26 00:56:33 +00:00
Kurt Zeilenga
b6d63b8e17 Add additional diagnostics 2000-09-26 00:43:00 +00:00
Kurt Zeilenga
11797cdbeb Fix initialization, add additional diagnostics 2000-09-26 00:12:31 +00:00
Kurt Zeilenga
0518820376 Add bind() 2000-09-25 23:46:54 +00:00
Kurt Zeilenga
c182511f91 Add bdb_bind, clean up init, s/Backend/BackendDB/ 2000-09-25 23:41:16 +00:00
Kurt Zeilenga
6a74325e5d Clean up debug messages 2000-09-25 21:58:41 +00:00
Kurt Zeilenga
61f5f03a23 Disable sub directory support for now 2000-09-25 21:30:15 +00:00
Kurt Zeilenga
e50c9b1588 Add minimal config support 2000-09-25 21:10:21 +00:00
Kurt Zeilenga
c3ab074c00 Update build environment for back-bdb 2000-09-25 20:16:19 +00:00
Kurt Zeilenga
ec1f989c79 Finish search rough in (w/o alias nor indexing support) 2000-09-25 19:59:45 +00:00
Kurt Zeilenga
61a15be30a Rough in search routine 2000-09-25 18:59:15 +00:00
Kurt Zeilenga
708db94416 Clean up logging and fix ITS#771 typo 2000-09-25 06:49:27 +00:00
Kurt Zeilenga
3874e8571d Add dn2entry.c 2000-09-24 22:48:13 +00:00
Kurt Zeilenga
64c521085b Add compare routine 2000-09-24 06:04:58 +00:00
Kurt Zeilenga
68a5db572c rough in an add/delete and deadlock avoidance 2000-09-23 23:15:40 +00:00
Kurt Zeilenga
b7b075ba75 Remove unneeded getpeername call (use accept() from). 
cleanup #ifdef, localize variables, and misc changes.
 2000-09-23 20:39:52 +00:00
Kurt Zeilenga
aa5b7d4d52 Restrict keepalive/nodelay setsockopt to IP streams 2000-09-23 19:14:40 +00:00
Kurt Zeilenga
318d11e9db Fix ri initialization bug (ITS#768) 2000-09-22 22:24:30 +00:00
Kurt Zeilenga
6949ab9d15 Replace indexing hash with 32-bit FNV-1... should be much faster than MD5 2000-09-22 22:19:46 +00:00
Kurt Zeilenga
adf7955160 Add indirection to hash routines to allow for easier replacement 
(MD5 should be replaced with something faster)
 2000-09-22 20:47:46 +00:00
Kurt Zeilenga
048cb81a0f Use LUTIL_MD5_BYTES constant 2000-09-22 20:36:27 +00:00
Kurt Zeilenga
641845f4c1 Rework schema install to work with VPATH support 2000-09-22 19:16:53 +00:00
Kurt Zeilenga
f164e69baa Don't recursive lock connections_mutex in idle timeout routine 2000-09-22 18:18:39 +00:00
Kurt Zeilenga
de61693cdb Add depend information 2000-09-22 08:53:51 +00:00
Kurt Zeilenga
aaab54e142 Add bdb_add() and supporting routines 2000-09-22 06:46:32 +00:00
Kurt Zeilenga
2b82d4f486 remove lint 
update bdb codes
 2000-09-22 01:40:57 +00:00
Kurt Zeilenga
d78a515860 Fix build issues 2000-09-21 23:00:51 +00:00
Kurt Zeilenga
2aebaba70e Patch req2rst not to abort on unknown tags 2000-09-21 22:29:53 +00:00
Kurt Zeilenga
342ad23c4c sasl_secprops: needs to return "" 2000-09-21 21:32:13 +00:00
Kurt Zeilenga
d5860fb05c check return of ldap_pvt_tls_init() (which doesn't fail yet) 2000-09-21 21:30:02 +00:00
Kurt Zeilenga
8730b78ad3 Remove assert in sasl_secprops 2000-09-21 21:28:32 +00:00
Kurt Zeilenga
cf17c168c5 Fix portability issue. 
Move prototypes to proto-slap.h
 2000-09-21 19:12:41 +00:00
Kurt Zeilenga
bbae507a8f Set TCP_NODELAY and SO_KEEPALIVE after every accept() as some accept() 
implementations do not create new socket with all properties of
listening socket.
 2000-09-21 19:08:17 +00:00
Mark Adamson
bf1ee530ea Implementation of SASL authorization. 2000-09-21 17:32:54 +00:00
Kurt Zeilenga
c9de004a86 Fix logging bug 2000-09-21 16:53:45 +00:00
Kurt Zeilenga
101ec9c57f modify idl_search to use binary search algorithm 2000-09-21 01:56:10 +00:00
Kurt Zeilenga
4830b23b9d Add idl_delete routines 2000-09-20 23:29:41 +00:00
Kurt Zeilenga
6543336245 Fix typo in comment 2000-09-20 23:29:14 +00:00
Kurt Zeilenga
4617f2e946 Fix SPASSWD merge for real 2000-09-20 17:34:06 +00:00
Kurt Zeilenga
31dd2fb5eb Fix merge of SPASSWD changes 2000-09-20 17:13:36 +00:00
Kurt Zeilenga
95627d674a Add dn2id code 
Add idl_insert
 2000-09-20 07:21:09 +00:00
Kurt Zeilenga
7ab0916488 Reply on DB_CONFIG for tuning... 2000-09-20 02:01:05 +00:00
Kurt Zeilenga
50714d2d48 merge changes from authPassword work which should fix SPASSWD code... 2000-09-20 00:28:57 +00:00
Kurt Zeilenga
67e3f97097 Add new nextid code. 2000-09-19 20:13:41 +00:00
Kurt Zeilenga
22e739b736 Add rough implementation of tool callbacks. 2000-09-19 18:08:04 +00:00
Kurt Zeilenga
fe186a9c8f Add BDB errcall 2000-09-19 01:59:08 +00:00
Kurt Zeilenga
b0f3bcb552 Don't set DB_PRIVATE yet. 2000-09-18 21:51:19 +00:00
Kurt Zeilenga
c1fdf4587c Add errpfx and errcall 2000-09-18 21:35:08 +00:00
Kurt Zeilenga
da5da64ef8 Add set_*_dir calls 2000-09-18 21:19:19 +00:00
Kurt Zeilenga
4077211117 Fix up back-bdb framework 2000-09-18 20:03:41 +00:00
Kurt Zeilenga
c3b0c9bd0a Initial autoconf support for back-bdb 2000-09-18 19:02:03 +00:00
Kurt Zeilenga
434b0738dd Don't check fd_sets until after we check fd < dtblsize 2000-09-18 19:01:21 +00:00
Kurt Zeilenga
583cbc8c25 Framework for back-bdb 2000-09-18 18:51:07 +00:00
Kurt Zeilenga
ad08ff008e Remove -s (noschemacheck in favor of using global_schemacheck) 2000-09-17 20:40:43 +00:00
Kurt Zeilenga
9a8006a6c2 Validate values in tool mode 2000-09-16 22:47:29 +00:00
Kurt Zeilenga
b6674a90b0 Cleanup 2000-09-16 22:46:52 +00:00
Kurt Zeilenga
b2e776cfe7 Reorder DN check 2000-09-16 06:23:53 +00:00
Kurt Zeilenga
5cfb3f24a5 Fix modrdn handling 2000-09-16 00:26:24 +00:00
Kurt Zeilenga
34f8561467 Update slurpd with StartTLS and additional SASL parameters 2000-09-15 23:41:07 +00:00
Kurt Zeilenga
b1770ee098 Remove cruft (-h) 2000-09-15 22:49:14 +00:00
Kurt Zeilenga
45cf7e1dfe Add additional error checking... need to better handle 
garbage input from slapadd or pre-existing database.
 2000-09-15 03:26:22 +00:00
Kurt Zeilenga
825c3c4c5c Fix handling of optional cred 2000-09-15 00:09:44 +00:00
Kurt Zeilenga
f2b1d423c1 Cleanup 2000-09-14 07:10:15 +00:00
Kurt Zeilenga
435bdf24b0 Fix ;binary subtyping 2000-09-14 06:07:23 +00:00
Ben Collins
09a2e74d5a dereference 'char **text' when passing it as an arg to Debug() 2000-09-13 21:52:50 +00:00
Ben Collins
d216e32d63 declare return value of index_mask() to be slap_mask_t, also get rid of extraneous code in for() loop 2000-09-13 21:51:14 +00:00
Kurt Zeilenga
16cdbd9c74 Update handling of binary syntax to require ";binary" transfer 2000-09-13 21:50:24 +00:00
Ben Collins
810d3ce224 specifically check for NULL return from acl_get() 2000-09-13 21:49:56 +00:00
Kurt Zeilenga
13262aca41 Fix java schema 2000-09-13 19:58:56 +00:00
Kurt Zeilenga
2a8176cd62 Add Standard Track PKI schema (RFC2587) 2000-09-13 06:09:50 +00:00
Kurt Zeilenga
6c3e915ceb Fix reversed assert logic 2000-09-13 01:23:39 +00:00
Kurt Zeilenga
93074d7e43 Add EOL at EOF 2000-09-13 00:05:45 +00:00
Kurt Zeilenga
16101ba8c9 Remove extranous characters (^M) and other minor clean up 2000-09-12 21:43:42 +00:00
Kurt Zeilenga
f7ba5a68c4 Catch nextid failures. 2000-09-12 21:16:03 +00:00
Kurt Zeilenga
d6a56aaf25 Fix typo in last commit 2000-09-12 19:35:19 +00:00
Kurt Zeilenga
bd9de9d90d Clean up defaultSearchBase code 2000-09-12 18:21:09 +00:00
Kurt Zeilenga
6629093571 Add entry_encode() 2000-09-12 04:57:56 +00:00
Kurt Zeilenga
5864dfdb7b remove lint 2000-09-12 00:38:47 +00:00
Kurt Zeilenga
0549d647de Fix bad merge 2000-09-12 00:37:03 +00:00
Kurt Zeilenga
99ca5d4b91 Update projects for DB31 (Sleepcat changed library names, ugh) 2000-09-12 00:33:02 +00:00
Kurt Zeilenga
5170fc3a98 Add BitString syntax/matching rule handlers 
Add NameAndOptionalUID/UniqueMemberMatch handlers
 2000-09-12 00:32:08 +00:00
Kurt Zeilenga
fdc16c2f94 Add initial entry_encode() routine for back-sleepy (behind #if) 
Need to add entry_decode().
 2000-09-12 00:28:08 +00:00
Kurt Zeilenga
a3ae90ac8a Rework integer syntax to support signed values. 
Validation is quite rigid allowing use of simple normalization
and caseExactIA5 matching (and indexing).
 2000-09-12 00:00:25 +00:00
Kurt Zeilenga
5852f7188b Add 'defaultSearchBase' configuration directive to help support 
brain-damaged LDAPv2 clients.
 2000-09-11 21:57:14 +00:00
Kurt Zeilenga
344b91e257 Add Java (RFC2713) and Corba (RFC2714) schema 2000-09-11 20:27:35 +00:00
Kurt Zeilenga
6a3b8e281b ITS#722: disallow argument buffer overflow 2000-09-11 19:05:24 +00:00
Kurt Zeilenga
d8c4df6f39 -lldbm now sets DB_USE_ENVIRON and support input of a DB home path. 
back-ldbm needs modification to support db home directory as backend
(as oppose to database) option.
 2000-09-11 18:46:34 +00:00
Julio Sánchez Fernández
95eacae431 Integer (not numericString, that are different) matches. 
Good for nss_ldap (equality indexing of uidNumber and the
like now work).
 2000-09-11 18:34:14 +00:00
Kurt Zeilenga
3342ea3b49 Add more bind allow/disallow flags 2000-09-11 18:24:24 +00:00
Kurt Zeilenga
2e13824d0d Add "allow tls_2_anon" to allow StartTLS to force session to anonymous. 
Add "disallow tls_authc" to disallow StartTLS when session is authenticated.
Create and use connection2anonymous routine for consistency.
 2000-09-08 22:59:01 +00:00
Kurt Zeilenga
2c342e894c Minor change to connection error handling 2000-09-08 18:46:18 +00:00
Kurt Zeilenga
85fc1af755 disallow more root dse operations 2000-09-08 16:59:15 +00:00
Kurt Zeilenga
1e26e165fe Disallow inappropriate operations upon the root dse. 2000-09-08 05:20:46 +00:00
Kurt Zeilenga
a20800a964 backout ucdata change as being a little too experimental 2000-09-07 23:46:07 +00:00
Kurt Zeilenga
a4fac87687 Use ucdata (very experimental) 2000-09-07 23:19:10 +00:00
Kurt Zeilenga
f9690a37bb ITS#717 slapd kbind patch 2000-09-07 22:03:32 +00:00
Kurt Zeilenga
d463b3cab1 Add missing "disallow bind_anon" directive (ITS#721) 2000-09-07 17:53:05 +00:00
Kurt Zeilenga
89766f131e ITS#713 check_time_syntax suggested by klasen@zdv.uni-tuebingen.de 
Portions Copyright 2000, Norbert Klasen, All rights reserved.
      This software is not subject to any license of
      Universitaet Tuebingen.

      This is free software; you can redistribute and use it
      under the same terms as OpenLDAP itself.
 2000-09-06 19:17:33 +00:00
Kurt Zeilenga
d4a89d30f8 Minor IPv6 changes (ITS#716) suggested by Stig Venass <venaas@uninett.no> 2000-09-06 19:03:33 +00:00
Kurt Zeilenga
5a4f5e5c50 reuse dnMatch as uniqueMemberMatch 2000-09-05 22:07:08 +00:00
Kurt Zeilenga
a75a024fd3 Consistently don't require "entry" access (except on search) 2000-09-05 21:48:12 +00:00
Kurt Zeilenga
7e71a7f63b Add krb5-kdc to list 2000-09-05 20:24:44 +00:00
Kurt Zeilenga
99f4a10c3e Add hdb.schema from Luke Howard <lukeh@padl.com>, file renamed. 2000-09-05 20:23:12 +00:00
Kurt Zeilenga
f2bcf33e23 Use DN syntax routines for Name and Optional OID syntax. 
This is quite bogus but meets most users needs.
Should be replaced with real Name and Optional OID routines.
 2000-09-05 20:10:39 +00:00
Kurt Zeilenga
f97482e10f Fix authz bug introduced by last change 2000-09-05 19:45:06 +00:00
Kurt Zeilenga
7778304b16 Fix typo 2000-09-05 19:38:26 +00:00
Kurt Zeilenga
c8c969a184 Rework connection lock code to avoid unnecessary lock reaquire 2000-09-05 19:11:27 +00:00
Kurt Zeilenga
488189aed2 Fix SSF ACLs 2000-09-05 18:48:09 +00:00
Kurt Zeilenga
63ae1d22e5 Fix ACL SSF reporting 2000-09-05 18:24:24 +00:00
Dmitry Kovalev
04939b7aca documentation update. this reflects recent changes (redesign, referral and multiple objectclasses support, and other), and provides new (hopefully more clear ;) description of concept 2000-09-05 18:16:58 +00:00
Kurt Zeilenga
cee040a321 Bring UCdata infrastructure. 2000-09-03 23:48:35 +00:00
Kurt Zeilenga
91bdd84b96 Duplicate IA5 matching rule routines as needed to implement UTF-8 varients. 2000-09-03 18:04:08 +00:00
Kurt Zeilenga
179cd46266 ITS#705: nisNetgroupTripleValidate 
ITS#706: bootParameterValidate
Submitted by Stig Venass <venaas@uninett.no>
Modified by Kurt Zeilenga <kurt@openldap.org> for stricter
	adherence to specification (RFC 2307).

Portions
Copyright 2000 Stig Venaas
All rights reserved.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice is
preserved. This software is provided ``as is'' without express or
implied warranty.
 2000-09-03 17:35:39 +00:00
Kurt Zeilenga
309c458ed4 Experimental fix for deadlock 2000-09-02 00:19:06 +00:00
Randy Kunkee
58bb439d08 Raise MAXARGS to 200, since the schema syntax burns more. 2000-08-31 22:16:16 +00:00
Kurt Zeilenga
3058b0515d Don't publish version 2 if disallowed 2000-08-31 18:51:15 +00:00
Kurt Zeilenga
563fd083e9 reorder tests 2000-08-30 22:24:21 +00:00
Kurt Zeilenga
553a78e2ee Don't drain after TLS failure.... causes busy forever loop 2000-08-30 22:08:19 +00:00
Kurt Zeilenga
a60438c1ce Add sasl-host option and treat sasl-realm as global only 
(ie: not backend specific).
 2000-08-30 01:44:39 +00:00
Kurt Zeilenga
4e8973e6cb Rework bind restrictions 2000-08-28 23:37:44 +00:00
Kurt Zeilenga
102f12a71a Restrict bind 2000-08-28 23:29:29 +00:00
Kurt Zeilenga
90f0d9c85e Remove lint 2000-08-28 22:20:19 +00:00
Kurt Zeilenga
3e91d48127 Move authzid_backend to after restrictions checks 2000-08-28 21:28:22 +00:00
Kurt Zeilenga
4520cd4ec2 Align with man page 2000-08-28 19:19:47 +00:00
Kurt Zeilenga
9715e7f008 Add disallow and requires to man page. Fix sasl ssf handling bug. 2000-08-28 18:58:13 +00:00
Kurt Zeilenga
bf3df2f7a6 restrictops, requires, disallow knobs; ssf acls; and misc other changes 
man pages to follow...
 2000-08-28 18:38:48 +00:00
Kurt Zeilenga
08b52f80bb Fix alias deref success v. NoSuchObject bug 2000-08-27 17:53:01 +00:00
Kurt Zeilenga
b10a60c34a Provide a little information regarding contents of this directory 2000-08-26 20:25:36 +00:00
Kurt Zeilenga
8ef285f854 Misc schema clarifications 2000-08-26 20:24:52 +00:00
Kurt Zeilenga
4739a3015b Align with re20 2000-08-26 19:55:08 +00:00
Kurt Zeilenga
537704b540 Update void syntax and entry/children pseudo-attribute types 
to have publishable OIDs.
 2000-08-26 19:52:21 +00:00
Kurt Zeilenga
511e26641e Assign publishable OID for caseExactIA5SubstringsMatch 2000-08-26 18:49:50 +00:00
Kurt Zeilenga
2d3e998c3c Remove extended op callback function... doesn't provide necessary locking 2000-08-26 02:13:52 +00:00
Kurt Zeilenga
1c328aa9c7 Minor typedef and other clean ups 2000-08-26 01:14:05 +00:00
Kurt Zeilenga
a54b9cde6e Rework last commit for better forward compatibility 2000-08-25 07:55:08 +00:00
Kurt Zeilenga
be654e45f1 Remove meantion of authPassword from slappasswd(8) for 2.0. 
Use -u scheme (in line with future code).
Need to trim authPassword from release schema code/confs.
 2000-08-25 07:42:11 +00:00
Kurt Zeilenga
4b126ead58 Add "index objectClass eq" 
Add additional comments.
Trim modules
 2000-08-25 01:16:32 +00:00
Kurt Zeilenga
e8339f677c Add additional comments to note incomplete validation of syntaxes 2000-08-24 20:00:44 +00:00
Kurt Zeilenga
4a3b51e0da Add fake validators for nisNetgroupTriple and bootParameter syntaxes. 
Note that real validators would likely break common usage as 'keystring'
is too limiting.
 2000-08-24 19:54:16 +00:00
Kurt Zeilenga
60c474a4a0 ITS#681: Fix for problems with IPv6 and ACLs 
from Stig Venaas <venaas@uninett.no>
---
Copyright 2000 Stig Venaas, UNINETT
All rights reserved.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice is
preserved. The name of UNINETT may not be used to endorse or promote
products derived from this software without specific prior written
permission. This software is provided ``as is'' without express or
implied warranty.
 2000-08-24 18:34:48 +00:00
Kurt Zeilenga
7b548b4a91 Make settings match manual page. 2000-08-24 01:12:54 +00:00
Kurt Zeilenga
67ddc87e68 Fix substring any filters 2000-08-22 22:34:37 +00:00
Kurt Zeilenga
a7ec3506cf change "substr" to imply initial, any, final indexing. 2000-08-22 21:33:09 +00:00
Kurt Zeilenga
02f888c563 First cut of LDBM substrings indexing. Needs testing. 2000-08-22 21:26:25 +00:00
Kurt Zeilenga
32c7186b9c Add frontend support for "any" substrings assertions. 
Needs to be tied into index mask and backend search code.
 2000-08-22 02:23:52 +00:00
Kurt Zeilenga
4f43f8262e Remove extraneous ber_bvfree() 2000-08-22 02:07:32 +00:00
Kurt Zeilenga
f207bd9dd2 Fix uninitialized value ptr bug 2000-08-21 23:20:26 +00:00
Kurt Zeilenga
9de590cf26 Assign perm OID 2000-08-21 21:51:38 +00:00
Kurt Zeilenga
50643e5e73 Assign perm OIDs 2000-08-21 21:50:30 +00:00
Kurt Zeilenga
52223bd699 Use example.com in examples 2000-08-21 03:09:53 +00:00
Kurt Zeilenga
160ecea6b1 Fix callback check logic 2000-08-21 03:08:01 +00:00
Kurt Zeilenga
c9910bc19f Use SASL quiet mode 2000-08-21 03:06:55 +00:00
Kurt Zeilenga
a1cc95d558 Hide SASL behind HAVE_CYRUS_SASL 2000-08-19 18:47:32 +00:00
Mark Adamson
c7abc6310d Fix the logic for checking if backend DB has all necessary functions. 2000-08-18 16:58:46 +00:00
Kurt Zeilenga
5425a5e4c8 remove bdb2 cruft 2000-08-18 04:24:08 +00:00
Kurt Zeilenga
7800d2d41e Remove cldap cruft 2000-08-18 03:35:19 +00:00
Kurt Zeilenga
b1aed76e35 clarify error messages 2000-08-18 00:58:00 +00:00
Kurt Zeilenga
3c1f76d568 jpeg syntax should be using blobValidator. 2000-08-17 17:55:33 +00:00
Mark Adamson
4a5498351e Added SASL authentication to slurpd for connecting to slave LDAP servers. 2000-08-17 16:30:37 +00:00
Kurt Zeilenga
f286380c82 Check for IP using != AF_LOCAL instead of = AF_INET 2000-08-17 04:22:36 +00:00
Kurt Zeilenga
66bad2ad21 Add HAVE_CHROOT ifdef 2000-08-17 04:21:20 +00:00
Kurt Zeilenga
20a67a2dbc needs ldap_pvt.h 2000-08-17 04:20:12 +00:00
Howard Chu
0f8047b95e Implemented ldap_pvt_tls_get_peer() for use with SASL/EXTERNAL. 
Added ldap_pvt_tls_get_strength() - return encryption strength, for
use as a SASL session security factor.
 2000-08-16 23:27:41 +00:00
Kurt Zeilenga
df8c837c80 Fix typos 2000-08-15 23:42:44 +00:00
Kurt Zeilenga
146f9d7ddf Split a = b = c statement to remove warnings (errors) from picking compilers 2000-08-15 21:59:18 +00:00
Kurt Zeilenga
85b3f80869 Plug leaks. 2000-08-15 21:57:40 +00:00
Kurt Zeilenga
20248e7430 Move delete of last value check out of inner loop. 2000-08-15 21:57:28 +00:00
Dmitry Kovalev
f48f00f995 added missing SQL script to samples 2000-08-15 17:05:53 +00:00
Kurt Zeilenga
3b03b64b77 Add char* ldap_pvt_get_fqdn(char*) which returns the FQDN of the 
input.  In input==NULL, returns FQDN of local host.
Fixed copy_hostent() uninitialized pointer bug.
Replaced gethostname calls with ldap_pvt_get_fqdn( NULL ) calls.
 2000-08-15 01:55:43 +00:00
Kurt Zeilenga
a2804649a5 Fix reversed assertion logic 2000-08-11 19:25:09 +00:00
Kurt Zeilenga
27ebe8534a Move default slurpd directory to $(LOCALSTATEDIR)/openldap-slurp. 2000-08-10 02:52:01 +00:00
Kurt Zeilenga
6be4f4fdb2 remove assert(0) 2000-08-07 17:19:55 +00:00
Kurt Zeilenga
5b856458a2 s/SAFEMEMCPY/AC_MEMCPY/ 
Use AC_FMEMCPY where appropriate (-llber)
 2000-07-28 01:07:07 +00:00
Kurt Zeilenga
a50f391bb3 Working SASL security layers! 2000-07-28 00:04:07 +00:00
Kurt Zeilenga
9a0964174e Update named referrals to draft-zeilenga-ldap-namedref.txt 
(IETF namedref draft is now defunct)
 2000-07-27 20:18:05 +00:00
Kurt Zeilenga
5a546c93a3 Add ''work in progress'' comment 2000-07-27 20:17:26 +00:00
Kurt Zeilenga
b213ce3a69 Remove cruft 2000-07-27 20:12:16 +00:00
Kurt Zeilenga
7ba63f5ea7 Fix up schema per ITS#642 2000-07-27 20:11:41 +00:00
Kurt Zeilenga
c86a1aaac2 Remove dead comment 2000-07-27 18:40:50 +00:00
Kurt Zeilenga
9e37451421 Fix typo 2000-07-27 01:10:51 +00:00
Kurt Zeilenga
948f31cd85 s/METAPHONE/SLAPD_METAPHONE/ 2000-07-27 00:14:39 +00:00
Kurt Zeilenga
f1d0813562 Clean up at_find 2000-07-26 23:18:49 +00:00
Kurt Zeilenga
57deefc94f Working slapindex! 2000-07-26 19:48:02 +00:00
Kurt Zeilenga
3a1ff6f9c7 Remove old kruft. 2000-07-26 17:23:07 +00:00
Kurt Zeilenga
efb7672dde Do not log attribute value 2000-07-25 20:54:11 +00:00
Kurt Zeilenga
3ad45a0662 Clean up WSAENOTSOCK code (no functional change) 2000-07-25 20:04:23 +00:00
Mark Valence
45fdcb7163 Bug fix submitted by Anthony Brock (ITS#637) 2000-07-25 02:16:59 +00:00
Kurt Zeilenga
b0a01cfbc2 ITS#636, keys == NULL bug 
plus plug leak when keys != NULL
 2000-07-25 01:24:47 +00:00
Kurt Zeilenga
a71a7cdd98 Rework authorization handling such that authzid u:user gets mapped to 
authzdn uid=user.  Disallow authzid in DN form until we have a
validator.
 2000-07-24 23:05:45 +00:00
Kurt Zeilenga
f80127f097 Ignore missing associated matching rule for now 2000-07-24 21:40:58 +00:00
Kurt Zeilenga
6c41d272cf Update framework to support registration of approximate matching 
rules.
 2000-07-24 21:29:30 +00:00
Kurt Zeilenga
e0e314db88 Update based upon latest AuthPassword I-D 2000-07-24 21:28:52 +00:00
Randy Kunkee
af0ec07692 Prevent always overwriting slapd.conf in install-conf rule. 2000-07-24 20:48:53 +00:00
Kurt Zeilenga
e7e7bca4c0 Fix typo 2000-07-23 21:22:19 +00:00
Kurt Zeilenga
3a73af57c1 conform schema routines to ldap naming conventions 2000-07-22 17:30:44 +00:00
Kurt Zeilenga
cd5aed0bbe Use sigaction to set SA_RESTART (if appropriate). 
Portability of this code needs to tested.
 2000-07-22 00:37:51 +00:00
Kurt Zeilenga
5b4fd50db6 No need to include <ac/signal.h> twice 2000-07-21 23:34:13 +00:00
Kurt Zeilenga
33cb84f57c Add experimental reindexer. 2000-07-21 23:24:24 +00:00
Kurt Zeilenga
27f674a926 Share function declarations between varients 2000-07-21 22:47:46 +00:00
Kurt Zeilenga
19324c4292 Remove lint 2000-07-21 21:56:33 +00:00
Kurt Zeilenga
3cada60a1b Plug a couple of minor memory leaks 2000-07-21 17:25:41 +00:00
Kurt Zeilenga
7cb1176502 Plug memory leak of normalized value in value_find() 2000-07-20 23:56:12 +00:00
Kurt Zeilenga
2890bc5b6d Fix entry/children always allowed bug! 2000-07-20 22:52:44 +00:00
Kurt Zeilenga
804100b431 Fix sasl end game processing. 2000-07-20 18:39:40 +00:00
Kurt Zeilenga
a8521d3034 Fix mech==NULL bug 2000-07-20 01:04:34 +00:00
Randy Kunkee
1228f6defc Move indented #defines to lh-column -- OSF4.0e does not allow the '#' to 
be indented.  Use "#<tab>define" instead.
 2000-07-19 10:04:09 +00:00
Kurt Zeilenga
ce63e21f00 New slapindex framework (no meat) 2000-07-19 02:24:08 +00:00
Randy Kunkee
46ca9103b6 Fix MAXARGS boundary condition problem: slapd crashed if number of tokens 
parsed == MAXARGS (only applicable if you have really large objectclasses).
 2000-07-19 01:40:05 +00:00
Kurt Zeilenga
c0bbb090b7 Fix substring indices and enable in tests. 2000-07-18 22:59:34 +00:00
Kurt Zeilenga
9c5ad6291b Add experimental caseExact/Ignore substrings indexer/filter routines. 2000-07-18 17:46:34 +00:00
Kurt Zeilenga
3c91b7e05a Clarify message logged upon host_access() failure 2000-07-18 03:12:55 +00:00
Kurt Zeilenga
95eea5accc First cut SASL "interactive" and "quiet" modes (default is "automatic") 2000-07-17 00:56:29 +00:00
Kurt Zeilenga
d2b05a3858 Rework SASL command line arguments. Default is now to authenticate 
using best available mechanism.  (authzid prompting to be disabled)
To use simple bind, -x is required (implied if -P 2) with -D/-[Ww]
To use simple "anonymous" bind, just -x will do.
 2000-07-15 23:25:46 +00:00
Kurt Zeilenga
a6154d03f2 Misc cleanup 2000-07-15 00:45:31 +00:00
Kurt Zeilenga
5bca08d716 Store sasl callbacks in session handle so that they can properly freed. 2000-07-15 00:01:09 +00:00
Kurt Zeilenga
c8ca70f3ae Fix callbacks. 2000-07-14 22:00:16 +00:00
Kurt Zeilenga
1e3aa01b7b Fix SSF reporting. 2000-07-14 20:57:52 +00:00
Kurt Zeilenga
36fb2d9d78 rework SASL callbacks 2000-07-14 20:56:30 +00:00