X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fslap.h;h=9ebe047e77c619e80cb42e009966cd3062dd1bb7;hb=0f30fb0d8f0adbbb7b41fd455c57aa56d64c9853;hp=2e7d74a8d9773ccc3ab501d4ae8e4898e44dee6c;hpb=647b5f84eee3a910c99518080e5fe562d4f7a32c;p=openldap

diff --git a/servers/slapd/slap.h b/servers/slapd/slap.h
index 2e7d74a8d9..9ebe047e77 100644
--- a/servers/slapd/slap.h
+++ b/servers/slapd/slap.h
@@ -345,6 +345,8 @@ typedef struct slap_matching_rule {
 
 /* this is used to kludge objectClass testing */
 #define SLAP_MR_MODIFY_MATCHING 0x0001U
+/* are we matching from a mr asserted value or a real value */
+#define SLAP_MR_VALUE_IS_IN_MR_SYNTAX	0x0002U
 
 	Syntax					*smr_syntax;
 	slap_mr_convert_func	*smr_convert;
@@ -364,9 +366,11 @@ typedef struct slap_matching_rule {
 #define smr_extensions		smr_mrule.mr_extensions
 } MatchingRule;
 
+struct slap_attr_desc;
+
 typedef struct slap_attribute_type {
-	char					*sat_cname;
 	LDAPAttributeType		sat_atype;
+	struct berval			sat_cname;
 	struct slap_attribute_type	*sat_sup;
 	struct slap_attribute_type	**sat_subtypes;
 	MatchingRule			*sat_equality;
@@ -374,7 +378,9 @@ typedef struct slap_attribute_type {
 	MatchingRule			*sat_ordering;
 	MatchingRule			*sat_substr;
 	Syntax				*sat_syntax;
+	struct slap_attr_desc		*sat_ad;
 	struct slap_attribute_type	*sat_next;
+	ldap_pvt_thread_mutex_t		sat_ad_mutex;
 #define sat_oid			sat_atype.at_oid
 #define sat_names		sat_atype.at_names
 #define sat_desc		sat_atype.at_desc
@@ -419,15 +425,16 @@ typedef struct slap_object_class {
  * represents a recognized attribute description ( type + options )
  */
 typedef struct slap_attr_desc {
-	struct berval *ad_cname;	/* canonical name, must be specified */
+	struct slap_attr_desc *ad_next;
 	AttributeType *ad_type;		/* attribute type, must be specified */
-	char *ad_lang;				/* NULL if no language tags */
+	struct berval ad_cname;		/* canonical name, must be specified */
+	struct berval ad_lang;		/* empty if no language tags */
 	unsigned ad_flags;
 #define SLAP_DESC_NONE		0x0U
 #define SLAP_DESC_BINARY	0x1U
 } AttributeDescription;
 
-#define slap_ad_is_lang(ad)		( (ad)->ad_lang != NULL )
+#define slap_ad_is_lang(ad)		( (ad)->ad_lang.bv_len != 0 )
 #define slap_ad_is_binary(ad)	( (int)((ad)->ad_flags & SLAP_DESC_BINARY) ? 1 : 0 )
 
 /*
@@ -489,6 +496,14 @@ struct slap_internal_schema {
 
 	/* Undefined Attribute Type */
 	AttributeType	*si_at_undefined;
+
+	/* Matching Rules */
+	MatchingRule	*si_mr_distinguishedNameMatch;
+	MatchingRule	*si_mr_integerMatch;
+
+	/* Syntaxes */
+	Syntax		*si_syn_distinguishedName;
+	Syntax		*si_syn_integer;
 };
 
 typedef struct slap_attr_assertion {
@@ -1164,6 +1179,19 @@ typedef struct slap_op {
 	void	*o_private;	/* anything the backend needs	  */
 } Operation;
 
+/*
+ * Caches the result of a backend_group check for ACL evaluation
+ */
+typedef struct slap_gacl {
+	struct slap_gacl *next;
+	Backend *be;
+	ObjectClass *oc;
+	AttributeDescription *at;
+	int res;
+	int len;
+	char ndn[1];
+} GroupAssertion;
+
 /*
  * represents a connection from an ldap client
  */
@@ -1196,6 +1224,7 @@ typedef struct slap_conn {
 	Backend *c_authz_backend;
 
 	AuthorizationInformation c_authz;
+	GroupAssertion *c_groups;
 
 	ber_int_t	c_protocol;	/* version of the LDAP protocol used by client */