Ondrej Kuznik [Tue, 28 Feb 2012 14:02:51 +0000 (15:02 +0100)]
ITS#7182 Expose the connection flags.
The flags are exposed using a multivalued parameter so that other
connection flags (like back-meta's) could be exported without needing
additional code.
Ondrej Kuznik [Wed, 8 Feb 2012 15:33:34 +0000 (16:33 +0100)]
ITS#7182 Rework monitor registration.
Letting back-monitor create the subsystem entries is much more readable
than doing this manually.
Only the database is registered if needed (chain overlay has to be
updated to cope with this), the cn=Connection entry is removed in this
patch to be reinstated in the following one as part of the correct
subsystem.
The owner (overlay mostly) should already know the target subtree DN,
therefore the filter machinery can go away too.
Ondrej Kuznik [Wed, 8 Feb 2012 13:18:29 +0000 (14:18 +0100)]
ITS#7182 Maintain the operation counts.
Currently ldap_back_default_rebind cannot access the ldapinfo structure.
Being a configurable callback, not letting it monitor when a change
might be disruptive feels safer.
Ondrej Kuznik [Tue, 7 Feb 2012 15:09:44 +0000 (16:09 +0100)]
ITS#7182 Add mss_private for monitor subsystem.
During initialization (and elsewhere), the subsystems have no way of
storing local data. While embedding them inside a larger strusture and
breaking out when needed (like the current back-ldap monitoring code
currently does) works, it certainly does not add to readability.
Notice that there is still no way to unregister an active subsystem.
This patch does not attempt to include such functionality while it might
actually be needed with the advent of SLAP_CONFIG_DELETE.
Ondrej Kuznik [Fri, 9 Mar 2012 13:37:59 +0000 (14:37 +0100)]
(ITS#6987) Consider only same attribute siblings for Cft_misc.
For all other ce_types it holds that each is represented by one
attribute, making ce_type matching for X-ORDERED siblings equivalent to
how back-ldif handles them. Cft_misc is means "all other types", however
no overlay/backend so far has used different attributes as siblings,
triggering the difference in handling between bconfig.c and back-ldif.
Howard Chu [Wed, 11 Jul 2012 23:53:33 +0000 (16:53 -0700)]
ITS#6262 fix gettime() regression
Add a mutex in ldap_pvt_gettime(), delete the mutex comment
since it's no longer relevant (and was ignored anyway). This
could only ever affect multi-processor machines.
Howard Chu [Fri, 13 Jul 2012 00:04:05 +0000 (17:04 -0700)]
Don't use env-private copy of DB root nodes.
Just lookup the DB roots as needed. When many DBs are in use,
most of the copies won't be referenced in a given txn, and
there's a bad race condition in the copy routine.
Howard Chu [Fri, 6 Jul 2012 01:11:18 +0000 (18:11 -0700)]
Add MDB_NOMETASYNC env option.
Just a trial. This may not make sense if we decide to split the
meta pages into their own separate file, to allow meta traffic to
reside on a separate spindle.
Jan Vcelak [Mon, 5 Mar 2012 16:04:51 +0000 (17:04 +0100)]
ITS#7313 MozNSS: store certificate object instead of nickname in in ctx
PEM certificates should not be referenced by nicknames, because the
nicknames are derived from basename of the cerificate file and in
general are not easy-predictable.
The code of Mozilla NSS backend depends on some aspects of PEM module
and tries to guess the nicknames correctly. In some cases the guessing
is wrong.
Jan Vcelak [Wed, 6 Jun 2012 12:44:53 +0000 (14:44 +0200)]
ITS#7291 MozNSS: read pin from file file can cause infinite loop
The buffer allocated for reading password file has to be initialized
with zeros, or we need to append zero at the end of the file. Otherwise
we might read unitialized memory and consider it to be a password.