]> git.sur5r.net Git - openldap/log
openldap
22 years agooptimize subschema attribute merge
Pierangelo Masarati [Thu, 29 Aug 2002 10:49:11 +0000 (10:49 +0000)]
optimize subschema attribute merge

22 years agouse appropriate attr list when matching value of operational attrs
Pierangelo Masarati [Thu, 29 Aug 2002 10:45:48 +0000 (10:45 +0000)]
use appropriate attr list when matching value of operational attrs

22 years agofix match result bug
Pierangelo Masarati [Thu, 29 Aug 2002 10:45:24 +0000 (10:45 +0000)]
fix match result bug

22 years agocleanup error check logic; don't deref be->controls when it's NULL
Pierangelo Masarati [Thu, 29 Aug 2002 10:43:39 +0000 (10:43 +0000)]
cleanup error check logic; don't deref be->controls when it's NULL

22 years agocleanup logging
Pierangelo Masarati [Thu, 29 Aug 2002 10:42:42 +0000 (10:42 +0000)]
cleanup logging

22 years agoadd null berval initializer (should replace tons of { 0, NULL})
Pierangelo Masarati [Thu, 29 Aug 2002 10:42:13 +0000 (10:42 +0000)]
add null berval initializer (should replace tons of { 0, NULL})

22 years agoimprove control support thru -E switch
Pierangelo Masarati [Thu, 29 Aug 2002 10:41:10 +0000 (10:41 +0000)]
improve control support thru -E switch

22 years agofix backend initialization (including ITS#2048)
Pierangelo Masarati [Thu, 29 Aug 2002 10:32:48 +0000 (10:32 +0000)]
fix backend initialization (including ITS#2048)

22 years agoFix ITS#1983, in sb_sasl_write, set errno = EAGAIN to tell upper layers to
Howard Chu [Thu, 29 Aug 2002 10:12:35 +0000 (10:12 +0000)]
Fix ITS#1983, in sb_sasl_write, set errno = EAGAIN to tell upper layers to
retry partial writes

22 years agoFor ITS#1983, in ber_pvt_sb_do_write, partial writes are not failures
Howard Chu [Thu, 29 Aug 2002 09:46:19 +0000 (09:46 +0000)]
For ITS#1983, in ber_pvt_sb_do_write, partial writes are not failures

22 years agoTwo more bervals instead of strings...
Howard Chu [Thu, 29 Aug 2002 08:47:53 +0000 (08:47 +0000)]
Two more bervals instead of strings...

22 years agoFix ITS#1991 - referrals with sarch base == target (wasn't sure at first,
Howard Chu [Thu, 29 Aug 2002 08:43:23 +0000 (08:43 +0000)]
Fix ITS#1991 - referrals with sarch base == target (wasn't sure at first,
but see diff -r1.6 -r1.7 and it's obvious.)

22 years agoMisc updates...
Kurt Zeilenga [Thu, 29 Aug 2002 04:56:05 +0000 (04:56 +0000)]
Misc updates...

22 years agoadd userid case
Kurt Zeilenga [Thu, 29 Aug 2002 03:03:51 +0000 (03:03 +0000)]
add userid case

22 years agoAdd case to 009
Kurt Zeilenga [Thu, 29 Aug 2002 02:55:39 +0000 (02:55 +0000)]
Add case to 009

22 years agosearch on 'userid' not 'uid'
Kurt Zeilenga [Thu, 29 Aug 2002 02:48:12 +0000 (02:48 +0000)]
search on 'userid' not 'uid'

22 years agoback out last commit
Kurt Zeilenga [Thu, 29 Aug 2002 02:32:58 +0000 (02:32 +0000)]
back out last commit

22 years agoFinish adding subclassing indexing support
Kurt Zeilenga [Thu, 29 Aug 2002 02:27:15 +0000 (02:27 +0000)]
Finish adding subclassing indexing support

22 years agoRound one of subclass indexing for objectClass and structualObjectClasss.
Kurt Zeilenga [Thu, 29 Aug 2002 01:12:59 +0000 (01:12 +0000)]
Round one of subclass indexing for objectClass and structualObjectClasss.
add soc_cname to ObjectClass structure

22 years agoAdd check for sockaddr_storage before enabling IPv6
Kurt Zeilenga [Wed, 28 Aug 2002 19:26:12 +0000 (19:26 +0000)]
Add check for sockaddr_storage before enabling IPv6

22 years agoInclude lber_pvt.h
Kurt Zeilenga [Wed, 28 Aug 2002 16:47:04 +0000 (16:47 +0000)]
Include lber_pvt.h

22 years agoAdded no-op for SASL_VERSION_MAJOR < 2
Howard Chu [Wed, 28 Aug 2002 08:35:38 +0000 (08:35 +0000)]
Added no-op for SASL_VERSION_MAJOR < 2

22 years agoAdded no-op sasl_client_auth if SASL_VERSION_MAJOR < 2.
Howard Chu [Wed, 28 Aug 2002 08:33:24 +0000 (08:33 +0000)]
Added no-op sasl_client_auth if SASL_VERSION_MAJOR < 2.

22 years agoregenerate for sasl version checks
Kurt Zeilenga [Wed, 28 Aug 2002 07:32:00 +0000 (07:32 +0000)]
regenerate for sasl version checks

22 years agocleanup
Kurt Zeilenga [Wed, 28 Aug 2002 07:30:57 +0000 (07:30 +0000)]
cleanup

22 years agoAdded check for Cyrus SASL sasl_version()
Howard Chu [Wed, 28 Aug 2002 07:12:22 +0000 (07:12 +0000)]
Added check for Cyrus SASL sasl_version()

22 years agoMore clarifications
Kurt Zeilenga [Wed, 28 Aug 2002 04:22:12 +0000 (04:22 +0000)]
More clarifications

22 years agoFix typo
Kurt Zeilenga [Wed, 28 Aug 2002 04:08:02 +0000 (04:08 +0000)]
Fix typo

22 years agoFix tables numbering. Add note able system schema extensions.
Kurt Zeilenga [Wed, 28 Aug 2002 04:05:07 +0000 (04:05 +0000)]
Fix tables numbering.  Add note able system schema extensions.

22 years agoDelete unused LDBM_LIB macro. (Not to be confused with LDBM_LIBS...)
Howard Chu [Wed, 28 Aug 2002 02:58:04 +0000 (02:58 +0000)]
Delete unused LDBM_LIB macro. (Not to be confused with LDBM_LIBS...)

22 years agoFix ITS#2047 - link ldbm.lo directly when building back-ldbm as a module
Howard Chu [Wed, 28 Aug 2002 02:50:30 +0000 (02:50 +0000)]
Fix ITS#2047 - link ldbm.lo directly when building back-ldbm as a module

22 years agoClarify that manageDsaIT is not to specified when managing
Kurt Zeilenga [Wed, 28 Aug 2002 01:20:03 +0000 (01:20 +0000)]
Clarify that manageDsaIT is not to specified when managing
entry DSEs.

22 years agoClean up filters
Kurt Zeilenga [Wed, 28 Aug 2002 01:16:25 +0000 (01:16 +0000)]
Clean up filters

22 years agoFix some formatting issues
Kurt Zeilenga [Wed, 28 Aug 2002 01:11:47 +0000 (01:11 +0000)]
Fix some formatting issues

22 years agoclarify "authorization" feature as "proxy authorization".
Kurt Zeilenga [Tue, 27 Aug 2002 23:24:43 +0000 (23:24 +0000)]
clarify "authorization" feature as "proxy authorization".

22 years agoTrim subordinate classes from input (and expected output).
Kurt Zeilenga [Tue, 27 Aug 2002 21:41:37 +0000 (21:41 +0000)]
Trim subordinate classes from input (and expected output).

22 years agoMore OID clarifications.
Kurt Zeilenga [Tue, 27 Aug 2002 20:20:52 +0000 (20:20 +0000)]
More OID clarifications.

22 years agoFix typos
Kurt Zeilenga [Tue, 27 Aug 2002 19:20:29 +0000 (19:20 +0000)]
Fix typos

22 years agoWarn about hijacking.
Kurt Zeilenga [Tue, 27 Aug 2002 18:17:09 +0000 (18:17 +0000)]
Warn about hijacking.

22 years agoAdd another safety check
Kurt Zeilenga [Tue, 27 Aug 2002 17:51:35 +0000 (17:51 +0000)]
Add another safety check

22 years agoITS#2040 - in bdb_idl_fetch_key() use a large enough buffer to get the
Howard Chu [Tue, 27 Aug 2002 15:11:04 +0000 (15:11 +0000)]
ITS#2040 - in bdb_idl_fetch_key() use a large enough buffer to get the
entire IDL at once, to avoid triggering BDB resource leaks.

22 years agoReturn other.
Kurt Zeilenga [Tue, 27 Aug 2002 05:51:35 +0000 (05:51 +0000)]
Return other.

22 years agoFix bug in last commit
Kurt Zeilenga [Tue, 27 Aug 2002 02:43:00 +0000 (02:43 +0000)]
Fix bug in last commit

22 years agono structuralObjectClass is not a schema violation, but an
Kurt Zeilenga [Tue, 27 Aug 2002 02:28:15 +0000 (02:28 +0000)]
no structuralObjectClass is not a schema violation, but an
internal error.  It *should* have been added.

22 years agoClean up some structuralObject checks to improve readability.
Kurt Zeilenga [Tue, 27 Aug 2002 01:55:09 +0000 (01:55 +0000)]
Clean up some structuralObject checks to improve readability.
Functionality not changed (excepting one error message).

22 years agoFix comment
Kurt Zeilenga [Tue, 27 Aug 2002 01:35:43 +0000 (01:35 +0000)]
Fix comment

22 years agoOnly add LASTMOD attributes if they don't exist in input.
Kurt Zeilenga [Tue, 27 Aug 2002 01:27:42 +0000 (01:27 +0000)]
Only add LASTMOD attributes if they don't exist in input.

22 years agoRemove c_sasl_bindmutex, Binds are already serialized.
Howard Chu [Mon, 26 Aug 2002 22:20:30 +0000 (22:20 +0000)]
Remove c_sasl_bindmutex, Binds are already serialized.

22 years agoAdd note regard StartTLS over 389.
Kurt Zeilenga [Mon, 26 Aug 2002 22:10:32 +0000 (22:10 +0000)]
Add note regard StartTLS over 389.

22 years agoremove lint
Kurt Zeilenga [Mon, 26 Aug 2002 20:11:19 +0000 (20:11 +0000)]
remove lint

22 years agoPrevent buffer overflow
Kurt Zeilenga [Mon, 26 Aug 2002 20:10:45 +0000 (20:10 +0000)]
Prevent buffer overflow

22 years agoAdd a Connection pointer to the Operation.
Kurt Zeilenga [Mon, 26 Aug 2002 19:29:34 +0000 (19:29 +0000)]
Add a Connection pointer to the Operation.

22 years agoFix compile error when --without-threads configure option is set. Function
Julius Enarusai [Mon, 26 Aug 2002 19:26:09 +0000 (19:26 +0000)]
Fix compile error when --without-threads configure option is set. Function
headers differ from prototypes in ldap_pvt_threads.h

22 years agocleanup
Kurt Zeilenga [Mon, 26 Aug 2002 19:13:44 +0000 (19:13 +0000)]
cleanup

22 years agoFix last commit.
Kurt Zeilenga [Mon, 26 Aug 2002 18:07:58 +0000 (18:07 +0000)]
Fix last commit.

22 years agoPrevent unlocking unlocked sasl_bindmutex...
Kurt Zeilenga [Mon, 26 Aug 2002 18:06:55 +0000 (18:06 +0000)]
Prevent unlocking unlocked sasl_bindmutex...

22 years agosilence annoying warning (BTW: who initializes be?)
Pierangelo Masarati [Mon, 26 Aug 2002 17:37:33 +0000 (17:37 +0000)]
silence annoying warning (BTW: who initializes be?)

22 years agoFix oc_filter, it could exit early before counting the full depth of the
Howard Chu [Mon, 26 Aug 2002 12:04:53 +0000 (12:04 +0000)]
Fix oc_filter, it could exit early before counting the full depth of the
filter tree. Also, only give special treatment to objectclass=*.

22 years agozap charray
Kurt Zeilenga [Sun, 25 Aug 2002 16:53:20 +0000 (16:53 +0000)]
zap charray

22 years agoFix previous commit, BDB_REUSE_LOCKERS was inside a BDB version #ifdef
Howard Chu [Sun, 25 Aug 2002 11:06:35 +0000 (11:06 +0000)]
Fix previous commit, BDB_REUSE_LOCKERS was inside a BDB version #ifdef
but is not version-dependent.

22 years agoFix ITS#2044 duplicate search results due to broken bdb_idl_union
Howard Chu [Sun, 25 Aug 2002 10:18:01 +0000 (10:18 +0000)]
Fix ITS#2044 duplicate search results due to broken bdb_idl_union

22 years agoAdd link to SDF tools at CPAN.
Kurt Zeilenga [Sat, 24 Aug 2002 23:37:59 +0000 (23:37 +0000)]
Add link to SDF tools at CPAN.

22 years agoAdd debug if bdb_cache_entry_db_lock fails to get a lock
Howard Chu [Sat, 24 Aug 2002 19:23:30 +0000 (19:23 +0000)]
Add debug if bdb_cache_entry_db_lock fails to get a lock
to assist in diagnosing ITS#1986

22 years agoIncrease res_query buffers to 64k
Kurt Zeilenga [Sat, 24 Aug 2002 17:03:24 +0000 (17:03 +0000)]
Increase res_query buffers to 64k

22 years agoExperimental code that uses one locker ID per thread. Seems to work OK,
Howard Chu [Sat, 24 Aug 2002 08:11:08 +0000 (08:11 +0000)]
Experimental code that uses one locker ID per thread. Seems to work OK,
is enabled by default. #undef BDB_REUSE_LOCKERS in back-bdb.h to disable.
Probably needs to be disabled when built with NO_THREADS.

22 years agoExperimental cruft to propagate valid Operation to SASL callbacks.
Howard Chu [Sat, 24 Aug 2002 07:34:50 +0000 (07:34 +0000)]
Experimental cruft to propagate valid Operation to SASL callbacks.
If you have a better way, jupm on in...

22 years agoPass Operation to backend_attribute - should have been doing this all along.
Howard Chu [Sat, 24 Aug 2002 07:31:14 +0000 (07:31 +0000)]
Pass Operation to backend_attribute - should have been doing this all along.

22 years agoRemove cruft
Kurt Zeilenga [Sat, 24 Aug 2002 06:29:06 +0000 (06:29 +0000)]
Remove cruft

22 years agoAdd ldapwhoami(1)
Kurt Zeilenga [Sat, 24 Aug 2002 06:28:10 +0000 (06:28 +0000)]
Add ldapwhoami(1)

22 years agoAdd -y.
Kurt Zeilenga [Sat, 24 Aug 2002 06:19:39 +0000 (06:19 +0000)]
Add -y.

22 years agoPatch: 'ldapmodify -y file' reads password from file (ITS#2031)
Kurt Zeilenga [Sat, 24 Aug 2002 05:47:17 +0000 (05:47 +0000)]
Patch: 'ldapmodify -y file' reads password from file  (ITS#2031)

            ================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
            ================
Adapted by Kurt Zeilenga for inclusion in OpenLDAP.  My comments are
marked with enclosed with square brackets (e.g. [Kurt's comment] below.
            ================

If I run ldapmodify & co from a script, I don't want to use '-W password'
because the password shows up in the output of 'ps' for everyone,
and I can't pipe the password to 'ldapmodify -w' because -w uses
getpassphrase() which reads from the tty instead of stdin.
So I added '-y file' which reads the password from file.  The programs
exit if the file cannot be read.

[Complete contents of file is used as password.  Use:
echo -n "secret" > password
to create a file with "secret" as the password.  The -n avoids
adding a newline (which would invalidate the password).  Note
that echo is a builtin and hence its arguments are not visible
to 'ps'.]

I changed ldapmodify, ldapmodrdn, ldapdelete, ldapsearch, ldapcompare.
I did not bother to change ldappasswd and ldapwhoami, because they
prompt for many passwords.  [I fixed up ldapwhoami.]

Rerun autoconf after applying this patch. [Done.]

Note:  I do not know if Windows NT has fstat(), so I set HAVE_FSTAT to
undef in portable.nt.  (fstat() is used to warn if the file is publicly
readable or writeable.)  [I used fstat() to set the buffer size to
read.]

[Note: using the contents of a file extends the tools to support
passwords which could not normally be provided using getpassphrase()
or via the command line.]

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, Aug 2002.
[Kurt D. Zeilenga <kurt@openldap.org>, Aug 2002.]

22 years agoAdded thread-pool getkey/setkey functions
Howard Chu [Sat, 24 Aug 2002 05:39:43 +0000 (05:39 +0000)]
Added thread-pool getkey/setkey functions

22 years agoZap
Kurt Zeilenga [Sat, 24 Aug 2002 00:55:56 +0000 (00:55 +0000)]
Zap

22 years agouse ldap_charray_*() instead of charray_*()
Kurt Zeilenga [Sat, 24 Aug 2002 00:55:24 +0000 (00:55 +0000)]
use ldap_charray_*() instead of charray_*()

22 years agouse ldap_charray_free() instead of slapd's charray_free()
Kurt Zeilenga [Sat, 24 Aug 2002 00:40:25 +0000 (00:40 +0000)]
use ldap_charray_free() instead of slapd's charray_free()

22 years agoNT port fixes
Kurt Zeilenga [Sat, 24 Aug 2002 00:37:59 +0000 (00:37 +0000)]
NT port fixes

22 years agoFix typo in previous commit. (Benign, code was #if'd out anyway.)
Howard Chu [Fri, 23 Aug 2002 22:29:08 +0000 (22:29 +0000)]
Fix typo in previous commit. (Benign, code was #if'd out anyway.)

22 years agoFinal run of changes to back-sql; IBM db2 support has been tested.
Pierangelo Masarati [Fri, 23 Aug 2002 08:54:08 +0000 (08:54 +0000)]
Final run of changes to back-sql; IBM db2 support has been tested.
Now related ITSes need be audited and possibly closed.

Enhancements:
  - re-styled code for better readability
  - upgraded backend API to reflect recent changes
  - LDAP schema is checked when loading SQL/LDAP mapping
  - AttributeDescription/ObjectClass pointers used for more efficient
    mapping lookup
  - bervals used where string length is required often
  - atomized write operations by committing at the end of each operation
    and defaulting connection closure to rollback
  - added LDAP access control to write operations
  - fully implemented modrdn (with rdn attrs change, deleteoldrdn,
    access check, parent/children check and more)
  - added parent access control, children control to delete operation
  - added structuralObjectClass operational attribute check and
    value return on search
  - added hasSubordinate operational attribute on demand
  - search limits are appropriately enforced
  - function backsql_strcat() has been made more efficient
  - concat function has been made configurable by means of a pattern
  - added config switches:
      - fail_if_no_mapping write operations fail if there is no mapping
      - has_ldapinfo_dn_ru overrides autodetect
      - concat_pattern a string containing two '?' is used
(note that "?||?" should be more portable
than builtin function "CONCAT(?,?)")
      - strcast_func cast of string constants in "SELECT DISTINCT statements (needed by PostgreSQL)
      - upper_needs_cast cast the argument of upper when required
(basically when building dn substring queries)

Todo:
  - add security checks for SQL statements that can be injected (?)
  - re-test with previously supported RDBMs
  - replace dn_ru and so with normalized dn (no need for upper() and so
    in dn match)
  - implement a backsql_normalize() function to replace the upper()
    conversion routines
  - note that subtree deletion, subtree renaming and so could be easily
    implemented (rollback and consistency checks are available :)
  - implement "lastmod" and other operational stuff (ldap_entries table ?)

22 years agofixed bug in reading size/time limits without style, in the form 'size=number', ...
Pierangelo Masarati [Fri, 23 Aug 2002 08:50:34 +0000 (08:50 +0000)]
fixed bug in reading size/time limits without style, in the form 'size=number', 'time=number'

22 years agoadded attr_merge/value_add functions that dela with single attribute; bervals for...
Pierangelo Masarati [Fri, 23 Aug 2002 08:49:19 +0000 (08:49 +0000)]
added attr_merge/value_add functions that dela with single attribute; bervals for '*', '+' and '1.1' made available

22 years agoadded assertions to catch helper function misuse
Pierangelo Masarati [Fri, 23 Aug 2002 08:46:45 +0000 (08:46 +0000)]
added assertions to catch helper function misuse

22 years agoadd upper/lower funcs that also compute the length of the string (not used yet)
Pierangelo Masarati [Fri, 23 Aug 2002 08:45:17 +0000 (08:45 +0000)]
add upper/lower funcs that also compute the length of the string (not used yet)

22 years agoFix indexing bug in splitting indirect blocks
Howard Chu [Fri, 23 Aug 2002 03:07:33 +0000 (03:07 +0000)]
Fix indexing bug in splitting indirect blocks

22 years agoFix errors in replica directive
Howard Chu [Thu, 22 Aug 2002 20:32:09 +0000 (20:32 +0000)]
Fix errors in replica directive

22 years agoinclude actual ucdata.h, not the symlink. liblutil/passwd.c needs this
Howard Chu [Thu, 22 Aug 2002 11:44:27 +0000 (11:44 +0000)]
include actual ucdata.h, not the symlink. liblutil/passwd.c needs this
header file, and we now build liblutil before liblunicode.

22 years agoOS/390 EBCDIC support
Howard Chu [Thu, 22 Aug 2002 04:39:59 +0000 (04:39 +0000)]
OS/390 EBCDIC support

22 years agoAdded support for BDB 4.1.17
Howard Chu [Thu, 22 Aug 2002 04:00:06 +0000 (04:00 +0000)]
Added support for BDB 4.1.17

22 years agoFix abstract schema check
Kurt Zeilenga [Thu, 22 Aug 2002 02:27:42 +0000 (02:27 +0000)]
Fix abstract schema check

22 years agoAdd dumpasn1 logging to TODO.
Kurt Zeilenga [Wed, 21 Aug 2002 18:45:08 +0000 (18:45 +0000)]
Add dumpasn1 logging to TODO.

22 years agofix previous commit
Pierangelo Masarati [Wed, 21 Aug 2002 18:11:30 +0000 (18:11 +0000)]
fix previous commit

22 years agoSlapadd is changed to include Operational Attributes (entryUUID, entryCSN,
Jong Hyuk Choi [Wed, 21 Aug 2002 00:11:32 +0000 (00:11 +0000)]
Slapadd is changed to include Operational Attributes (entryUUID, entryCSN,
creatorsName, modifiersName, createTimestamp, modifyTimestamp) when it adds
from ldif file. Month field in time format in entryCSN is changed to 1~12.

22 years agoITS#2004 AD lang bug fix
Kurt Zeilenga [Tue, 20 Aug 2002 19:08:18 +0000 (19:08 +0000)]
ITS#2004 AD lang bug fix

22 years agoUse search callbacks in slap_sasl_checkpass and slap_auxprop_lookup,
Howard Chu [Tue, 20 Aug 2002 05:32:54 +0000 (05:32 +0000)]
Use search callbacks in slap_sasl_checkpass and slap_auxprop_lookup,
use ACL_AUTH for acl checks.

22 years agoQuick check of LOCK_ID() return. Likely should retry... but not forever.
Kurt Zeilenga [Tue, 20 Aug 2002 03:10:08 +0000 (03:10 +0000)]
Quick check of LOCK_ID() return.  Likely should retry... but not forever.

22 years agoMore places where LOCK_ID() calls need to be checked.
Kurt Zeilenga [Tue, 20 Aug 2002 02:57:06 +0000 (02:57 +0000)]
More places where LOCK_ID() calls need to be checked.

22 years agofix typo in last commit
Kurt Zeilenga [Mon, 19 Aug 2002 07:08:59 +0000 (07:08 +0000)]
fix typo in last commit

22 years agoNormalized form should be pretty.
Kurt Zeilenga [Mon, 19 Aug 2002 07:07:25 +0000 (07:07 +0000)]
Normalized form should be pretty.

22 years agomake dc const
Kurt Zeilenga [Sat, 17 Aug 2002 19:59:35 +0000 (19:59 +0000)]
make dc const

22 years agoUpdate dn2domain() to use str2dn() instead of explode_dn()
Kurt Zeilenga [Sat, 17 Aug 2002 19:42:59 +0000 (19:42 +0000)]
Update dn2domain() to use str2dn() instead of explode_dn()

22 years agocleanup
Kurt Zeilenga [Sat, 17 Aug 2002 02:52:39 +0000 (02:52 +0000)]
cleanup