1 /* schema_init.c - init builtin schema */
4 * Copyright 1998-2002 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
13 #include <ac/string.h>
14 #include <ac/socket.h>
18 #include "ldap_pvt_uc.h"
20 int schema_init_done = 0;
22 struct slap_internal_schema slap_schema;
33 struct berval *a = (struct berval *) assertedValue;
34 ObjectClass *oc = oc_bvfind( value );
35 ObjectClass *asserted = oc_bvfind( a );
37 if( asserted == NULL ) {
38 if( OID_LEADCHAR( *a->bv_val ) ) {
39 /* OID form, return FALSE */
44 /* desc form, return undefined */
45 return SLAPD_COMPARE_UNDEFINED;
49 /* unrecognized stored value */
50 return SLAPD_COMPARE_UNDEFINED;
53 if( SLAP_IS_MR_VALUE_SYNTAX_MATCH( flags ) ) {
54 *matchp = ( asserted != oc );
56 *matchp = !is_object_subclass( asserted, oc );
61 LDAP_LOG(( "schema", LDAP_LEVEL_ENTRY,
62 "objectClassMatch(%s, %s) = %d\n",
63 value->bv_val, a->bv_val, *matchp ));
65 Debug( LDAP_DEBUG_TRACE, "objectClassMatch(%s,%s) = %d\n",
66 value->bv_val, a->bv_val, *matchp );
74 structuralObjectClassMatch(
82 struct berval *a = (struct berval *) assertedValue;
83 ObjectClass *oc = oc_bvfind( value );
84 ObjectClass *asserted = oc_bvfind( a );
86 if( asserted == NULL ) {
87 if( OID_LEADCHAR( *a->bv_val ) ) {
88 /* OID form, return FALSE */
93 /* desc form, return undefined */
94 return SLAPD_COMPARE_UNDEFINED;
98 /* unrecognized stored value */
99 return SLAPD_COMPARE_UNDEFINED;
102 *matchp = ( asserted != oc );
106 LDAP_LOG(( "schema", LDAP_LEVEL_ENTRY,
107 "structuralObjectClassMatch( %s, %s ) = %d\n",
108 value->bv_val, a->bv_val, *matchp ));
110 Debug( LDAP_DEBUG_TRACE, "structuralObjectClassMatch(%s,%s) = %d\n",
111 value->bv_val, a->bv_val, *matchp );
118 static struct slap_schema_oc_map {
121 ObjectClassSchemaCheckFN *ssom_check;
125 offsetof(struct slap_internal_schema, si_oc_top) },
126 { "extensibleObject", NULL, 0,
127 offsetof(struct slap_internal_schema, si_oc_extensibleObject) },
129 offsetof(struct slap_internal_schema, si_oc_alias) },
130 { "referral", NULL, 0,
131 offsetof(struct slap_internal_schema, si_oc_referral) },
132 { "LDAProotDSE", NULL, 0,
133 offsetof(struct slap_internal_schema, si_oc_rootdse) },
134 { "subentry", NULL, 0,
135 offsetof(struct slap_internal_schema, si_oc_subentry) },
136 { "subschema", NULL, 0,
137 offsetof(struct slap_internal_schema, si_oc_subschema) },
141 static struct slap_schema_ad_map {
144 AttributeTypeSchemaCheckFN *ssam_check;
145 slap_mr_match_func *ssam_match;
146 slap_mr_indexer_func *ssam_indexer;
147 slap_mr_filter_func *ssam_filter;
150 { "objectClass", "( 2.5.4.0 NAME 'objectClass' "
151 "DESC 'RFC2256: object classes of the entity' "
152 "EQUALITY objectIdentifierMatch "
153 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )",
155 objectClassMatch, NULL, NULL,
156 offsetof(struct slap_internal_schema, si_ad_objectClass) },
157 { "structuralObjectClass", "( 2.5.21.9 NAME 'structuralObjectClass' "
158 "DESC 'X.500(93): structural object class of entry' "
159 "EQUALITY objectIdentifierMatch "
160 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 "
161 "NO-USER-MODIFICATION SINGLE-VALUE USAGE directoryOperation )",
163 structuralObjectClassMatch, NULL, NULL,
164 offsetof(struct slap_internal_schema, si_ad_structuralObjectClass) },
166 /* user entry operational attributes */
167 { "createTimestamp", "( 2.5.18.1 NAME 'createTimestamp' "
168 "DESC 'RFC2252: time which object was created' "
169 "EQUALITY generalizedTimeMatch "
170 "ORDERING generalizedTimeOrderingMatch "
171 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 "
172 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
173 NULL, NULL, NULL, NULL,
174 offsetof(struct slap_internal_schema, si_ad_createTimestamp) },
175 { "modifyTimestamp", "( 2.5.18.2 NAME 'modifyTimestamp' "
176 "DESC 'RFC2252: time which object was last modified' "
177 "EQUALITY generalizedTimeMatch "
178 "ORDERING generalizedTimeOrderingMatch "
179 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 "
180 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
181 NULL, NULL, NULL, NULL,
182 offsetof(struct slap_internal_schema, si_ad_modifyTimestamp) },
183 { "creatorsName", "( 2.5.18.3 NAME 'creatorsName' "
184 "DESC 'RFC2252: name of creator' "
185 "EQUALITY distinguishedNameMatch "
186 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 "
187 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
188 NULL, NULL, NULL, NULL,
189 offsetof(struct slap_internal_schema, si_ad_creatorsName) },
190 { "modifiersName", "( 2.5.18.4 NAME 'modifiersName' "
191 "DESC 'RFC2252: name of last modifier' "
192 "EQUALITY distinguishedNameMatch "
193 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 "
194 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
195 NULL, NULL, NULL, NULL,
196 offsetof(struct slap_internal_schema, si_ad_modifiersName) },
197 { "hasSubordinates", "( 2.5.18.9 NAME 'hasSubordinates' "
198 "DESC 'X.501: entry has children' "
199 "EQUALITY booleanMatch "
200 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 "
201 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
202 NULL, NULL, NULL, NULL,
203 offsetof(struct slap_internal_schema, si_ad_hasSubordinates) },
204 { "subschemaSubentry", "( 2.5.18.10 NAME 'subschemaSubentry' "
205 "DESC 'RFC2252: name of controlling subschema entry' "
206 "EQUALITY distinguishedNameMatch "
207 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFICATION "
208 "SINGLE-VALUE USAGE directoryOperation )",
209 NULL, NULL, NULL, NULL,
210 offsetof(struct slap_internal_schema, si_ad_subschemaSubentry) },
212 { "entryUUID", "( 1.3.6.1.4.1.4203.666.1.6 NAME 'entryUUID' "
213 "DESC 'LCUP/LDUP: universally unique identifier' "
214 "EQUALITY octetStringMatch "
215 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{64} "
216 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
217 NULL, NULL, NULL, NULL,
218 offsetof(struct slap_internal_schema, si_ad_entryUUID) },
219 { "entryCSN", "( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' "
220 "DESC 'LCUP/LDUP: change sequence number' "
221 "EQUALITY octetStringMatch "
222 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{64} "
223 "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )",
224 NULL, NULL, NULL, NULL,
225 offsetof(struct slap_internal_schema, si_ad_entryCSN) },
227 /* root DSE attributes */
228 { "namingContexts", "( 1.3.6.1.4.1.1466.101.120.5 "
229 "NAME 'namingContexts' "
230 "DESC 'RFC2252: naming contexts' "
231 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperation )",
232 NULL, NULL, NULL, NULL,
233 offsetof(struct slap_internal_schema, si_ad_namingContexts) },
234 { "supportedControl", "( 1.3.6.1.4.1.1466.101.120.13 "
235 "NAME 'supportedControl' "
236 "DESC 'RFC2252: supported controls' "
237 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )",
238 NULL, NULL, NULL, NULL,
239 offsetof(struct slap_internal_schema, si_ad_supportedControl) },
240 { "supportedExtension", "( 1.3.6.1.4.1.1466.101.120.7 "
241 "NAME 'supportedExtension' "
242 "DESC 'RFC2252: supported extended operations' "
243 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )",
244 NULL, NULL, NULL, NULL,
245 offsetof(struct slap_internal_schema, si_ad_supportedExtension) },
246 { "supportedLDAPVersion", "( 1.3.6.1.4.1.1466.101.120.15 "
247 "NAME 'supportedLDAPVersion' "
248 "DESC 'RFC2252: supported LDAP versions' "
249 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 USAGE dSAOperation )",
250 NULL, NULL, NULL, NULL,
251 offsetof(struct slap_internal_schema, si_ad_supportedLDAPVersion) },
252 { "supportedSASLMechanisms", "( 1.3.6.1.4.1.1466.101.120.14 "
253 "NAME 'supportedSASLMechanisms' "
254 "DESC 'RFC2252: supported SASL mechanisms'"
255 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE dSAOperation )",
256 NULL, NULL, NULL, NULL,
257 offsetof(struct slap_internal_schema, si_ad_supportedSASLMechanisms) },
258 { "supportedFeatures", "( 1.3.6.1.4.1.4203.1.3.5 "
259 "NAME 'supportedFeatures' "
260 "DESC 'features supported by the server' "
261 "EQUALITY objectIdentifierMatch "
262 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 "
263 "USAGE dSAOperation )",
264 NULL, NULL, NULL, NULL,
265 offsetof(struct slap_internal_schema, si_ad_supportedFeatures) },
267 /* subschema subentry attributes */
268 { "matchingRules", "( 2.5.21.4 NAME 'matchingRules' "
269 "DESC 'RFC2252: matching rules' "
270 "EQUALITY objectIdentifierFirstComponentMatch "
271 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.30 USAGE directoryOperation )",
272 NULL, NULL, NULL, NULL,
273 offsetof(struct slap_internal_schema, si_ad_matchingRules) },
274 { "attributeTypes", "( 2.5.21.5 NAME 'attributeTypes' "
275 "DESC 'RFC2252: attribute types' "
276 "EQUALITY objectIdentifierFirstComponentMatch "
277 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.3 USAGE directoryOperation )",
278 NULL, NULL, NULL, NULL,
279 offsetof(struct slap_internal_schema, si_ad_attributeTypes) },
280 { "objectClasses", "( 2.5.21.6 NAME 'objectClasses' "
281 "DESC 'RFC2252: object classes' "
282 "EQUALITY objectIdentifierFirstComponentMatch "
283 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.37 USAGE directoryOperation )",
284 NULL, NULL, NULL, NULL,
285 offsetof(struct slap_internal_schema, si_ad_objectClasses) },
287 { "ldapSyntaxes", "( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' "
288 "DESC 'RFC2252: LDAP syntaxes' "
289 "EQUALITY objectIdentifierFirstComponentMatch "
290 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )",
291 NULL, NULL, NULL, NULL,
292 offsetof(struct slap_internal_schema, si_ad_ldapSyntaxes) },
294 /* knowledge information */
295 { "aliasedObjectName", "( 2.5.4.1 "
296 "NAME ( 'aliasedObjectName' 'aliasedEntryName' ) "
297 "DESC 'RFC2256: name of aliased object' "
298 "EQUALITY distinguishedNameMatch "
299 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )",
300 NULL, NULL, NULL, NULL,
301 offsetof(struct slap_internal_schema, si_ad_aliasedObjectName) },
302 { "ref", "( 2.16.840.1.113730.3.1.34 NAME 'ref' "
303 "DESC 'namedref: subordinate referral URL' "
304 "EQUALITY caseExactMatch "
305 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 "
306 "USAGE distributedOperation )",
307 NULL, NULL, NULL, NULL,
308 offsetof(struct slap_internal_schema, si_ad_ref) },
310 /* access control internals */
311 { "entry", "( 1.3.6.1.4.1.4203.1.3.1 "
313 "DESC 'OpenLDAP ACL entry pseudo-attribute' "
314 "SYNTAX 1.3.6.1.4.1.4203.1.1.1 "
315 "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )",
316 NULL, NULL, NULL, NULL,
317 offsetof(struct slap_internal_schema, si_ad_entry) },
318 { "children", "( 1.3.6.1.4.1.4203.1.3.2 "
320 "DESC 'OpenLDAP ACL children pseudo-attribute' "
321 "SYNTAX 1.3.6.1.4.1.4203.1.1.1 "
322 "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )",
323 NULL, NULL, NULL, NULL,
324 offsetof(struct slap_internal_schema, si_ad_children) },
325 #ifdef SLAPD_ACI_ENABLED
326 { "OpenLDAPaci", "( 1.3.6.1.4.1.4203.666.1.5 "
327 "NAME 'OpenLDAPaci' "
328 "DESC 'OpenLDAP access control information (experimental)' "
329 "EQUALITY OpenLDAPaciMatch "
330 "SYNTAX 1.3.6.1.4.1.4203.666.2.1 "
331 "USAGE directoryOperation )",
332 NULL, NULL, NULL, NULL,
333 offsetof(struct slap_internal_schema, si_ad_aci) },
336 /* userApplication attributes */
337 { "name", "( 2.5.4.41 NAME 'name' "
338 "DESC 'RFC2256: common supertype of name attributes' "
339 "EQUALITY caseIgnoreMatch "
340 "SUBSTR caseIgnoreSubstringsMatch "
341 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )",
342 NULL, NULL, NULL, NULL,
343 offsetof(struct slap_internal_schema, si_ad_name) },
344 { "cn", "( 2.5.4.3 NAME ( 'cn' 'commonName' ) "
345 "DESC 'RFC2256: common name(s) for which the entity is known by' "
347 NULL, NULL, NULL, NULL,
348 offsetof(struct slap_internal_schema, si_ad_cn) },
350 { "userPassword", "( 2.5.4.35 NAME 'userPassword' "
351 "DESC 'RFC2256/2307: password of user' "
352 "EQUALITY octetStringMatch "
353 "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )",
354 NULL, NULL, NULL, NULL,
355 offsetof(struct slap_internal_schema, si_ad_userPassword) },
357 #ifdef SLAPD_AUTHPASSWD
358 { "authPassword", NULL,
359 NULL, NULL, NULL, NULL,
360 offsetof(struct slap_internal_schema, si_ad_authPassword) },
362 #ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
364 NULL, NULL, NULL, NULL,
365 offsetof(struct slap_internal_schema, si_ad_krbName) },
368 { NULL, NULL, NULL, NULL, NULL, NULL, 0 }
371 static AttributeType slap_at_undefined = {
372 { "1.1.1", NULL, NULL, 1, NULL,
373 NULL, NULL, NULL, NULL,
374 0, 0, 0, 1, 3 }, /* LDAPAttributeType */
375 { sizeof("UNDEFINED")-1, "UNDEFINED" }, /* cname */
378 NULL, NULL, NULL, NULL, /* matching rules */
379 NULL, /* syntax (this may need to be defined) */
380 (AttributeTypeSchemaCheckFN *) 0, /* schema check function */
381 NULL, /* attribute description */
383 /* mutex (don't know how to initialize it :) */
386 static struct slap_schema_mr_map {
390 { "distinguishedNameMatch",
391 offsetof(struct slap_internal_schema, si_mr_distinguishedNameMatch) },
393 offsetof(struct slap_internal_schema, si_mr_integerMatch) },
397 static struct slap_schema_syn_map {
401 { "1.3.6.1.4.1.1466.115.121.1.12",
402 offsetof(struct slap_internal_schema, si_syn_distinguishedName) },
403 { "1.3.6.1.4.1.1466.115.121.1.27",
404 offsetof(struct slap_internal_schema, si_syn_integer) },
409 slap_schema_load( void )
415 slap_schema_check( void )
418 /* we should only be called once after schema_init() was called */
419 assert( schema_init_done == 1 );
421 for( i=0; syn_map[i].sssm_name; i++ ) {
422 Syntax ** synp = (Syntax **)
423 &(((char *) &slap_schema)[syn_map[i].sssm_offset]);
425 *synp = syn_find( syn_map[i].sssm_name );
427 if( *synp == NULL ) {
428 fprintf( stderr, "slap_schema_check: "
429 "No syntax \"%s\" defined in schema\n",
430 syn_map[i].sssm_name );
431 return LDAP_INVALID_SYNTAX;
435 for( i=0; mr_map[i].ssmm_name; i++ ) {
436 MatchingRule ** mrp = (MatchingRule **)
437 &(((char *) &slap_schema)[mr_map[i].ssmm_offset]);
439 *mrp = mr_find( mr_map[i].ssmm_name );
442 fprintf( stderr, "slap_schema_check: "
443 "No matching rule \"%s\" defined in schema\n",
444 mr_map[i].ssmm_name );
445 return LDAP_INAPPROPRIATE_MATCHING;
449 slap_at_undefined.sat_syntax = syn_find( SLAPD_OCTETSTRING_SYNTAX );
450 if( slap_at_undefined.sat_syntax == NULL ) {
451 fprintf( stderr, "slap_schema_check: "
452 "No octetString syntax \"" SLAPD_OCTETSTRING_SYNTAX "\"\n" );
453 return LDAP_INVALID_SYNTAX;
455 slap_schema.si_at_undefined = &slap_at_undefined;
457 for( i=0; ad_map[i].ssam_name; i++ ) {
461 AttributeDescription ** adp = (AttributeDescription **)
462 &(((char *) &slap_schema)[ad_map[i].ssam_offset]);
466 rc = slap_str2ad( ad_map[i].ssam_name, adp, &text );
468 if( rc != LDAP_SUCCESS ) {
469 fprintf( stderr, "slap_schema_check: "
470 "No attribute \"%s\" defined in schema\n",
471 ad_map[i].ssam_name );
475 if( ad_map[i].ssam_match ) {
476 /* install custom matching routine */
477 (*adp)->ad_type->sat_equality->smr_match = ad_map[i].ssam_match;
481 for( i=0; oc_map[i].ssom_name; i++ ) {
482 ObjectClass ** ocp = (ObjectClass **)
483 &(((char *) &slap_schema)[oc_map[i].ssom_offset]);
485 *ocp = oc_find( oc_map[i].ssom_name );
488 fprintf( stderr, "slap_schema_check: "
489 "No objectClass \"%s\" defined in schema\n",
490 oc_map[i].ssom_name );
491 return LDAP_OBJECT_CLASS_VIOLATION;
projects / openldap / blob