Kurt Zeilenga [Tue, 16 May 2000 16:22:52 +0000 (16:22 +0000)]
Rework root dse and other info entry codes to produce entry
to caller (do_search) such that info can be used by other
operations (ie: do_compare).
SLAPD_SCHEMA_NOT_COMPAT: Add additional code to support filters (needs work)
Kurt Zeilenga [Mon, 15 May 2000 20:04:36 +0000 (20:04 +0000)]
Relocate schema_init() call to main()
Add schema_prep() call to main()
Similiar changes to slapcommon.c
Add schema_prep() impl to schema_init.c
Add slap_ad_entry and slap_ad_children globals.
Add "entry" and "children" to openldap.schema (this likely should
be added to schema via code, not configuration)
Kurt Zeilenga [Sat, 13 May 2000 01:44:58 +0000 (01:44 +0000)]
Update LBER man pages to latest API.
Need to add lber-types(3) to document BER types, allocation, and deallocation.
May need to add additional pages to document other new features.
Howard Chu [Thu, 11 May 2000 20:50:20 +0000 (20:50 +0000)]
More fixes for NT support:
liblutil/ntservice.c change registry key path used for non-default
service names.
slapd/Makefile.in change to generate slapd.syms dynamically
slapd/daemon.c fix to make NT service ignore SIGBREAK
slapd/main.c fix to allow NT to retrieve listening url from registry
slapd/nt_svc.c fix for exported symbols
slapd/result.c change use of strerror to sock_errstr
slapd/slapd.syms no longer needed
Kurt Zeilenga [Thu, 11 May 2000 20:16:26 +0000 (20:16 +0000)]
Change negotiated mechanism:
If application provide one, use it. If application doesn't
provide one, use best of server advertised.
Fix SASL/ANONYMOUS (not normally used, but should work)
PLAIN is not currently working... might be local to me as my
Cyrus installation is a bit hosted.
Howard Chu [Thu, 11 May 2000 10:10:53 +0000 (10:10 +0000)]
Added support for AIX security database:
configure.in: check for AIX security library, set in AUTH_LIBS macro
top.mk: add AUTH_LIBS macro to SECURITY_LIBS
portable.h.in: added HAVE_AIX_SECURITY macro (via autoheader)
passwd.c: use AIX getuserpw in chk_unix. Also fix logic in chk_unix:
getpwnam must always succeed for the given user. It is not a
fatal error if getspnam returns no result for the user: On
systems that support /etc/shadow, its usage is optional. The
same logic applies for AIX, SCO/HP SecureWare, etc.
Howard Chu [Thu, 11 May 2000 09:35:29 +0000 (09:35 +0000)]
LDAP_F macro is obsolete. Redeclare perl_ack_xs_init static, since it
is, and declare boot_DynaLoader as EXT since it actually comes from
perl, not from this module.
Howard Chu [Wed, 10 May 2000 22:57:13 +0000 (22:57 +0000)]
Added new support for NT and AIX dynamic linking - generate export tables
for executable files, not just libraries/modules. Also, the AIX linker
hardcodes -L paths by default; override this to prevent build paths from
appearing in distributed binaries.
mkdep.aix - a wrapper for AIX cc that sends dependency info to stdout so
that the standard mkdep script can operate.
Howard Chu [Wed, 10 May 2000 17:07:09 +0000 (17:07 +0000)]
libldap/tls.c: change tls_verify_cb to no longer ignore verification errors.
This means a ldaps connection may drop before any LDAP protocol exchange
occurs (due to expired cert, unrecognized CAs, etc.).
Change ldap_pvt_tls_connect to copy any TLS error string to ld_error upon
connection failure, otherwise client just sees "can't contact LDAP server."
slapd/connection.c: add flush/delay when SSL_accept fails, to allow any
TLS alerts we generated to propagate back to the client. (Which will then
be picked up by ldap_pvt_tls_connect on the client...)
Howard Chu [Wed, 10 May 2000 16:36:46 +0000 (16:36 +0000)]
Undo slapd/add.c rev 1.54; back-bdb2 and back-ldbm were the only backends
that called entry_free() on failure. This change would cause a memory leak
from all the other backends. Instead, remove the entry_free calls in these
two backends and let the frontend take care of it for everyone.