schema_prep.c revision 1.1.1.3
1 1.1.1.3 lukem /* $NetBSD: schema_prep.c,v 1.1.1.3 2010/03/08 02:14:20 lukem Exp $ */ 2 1.1.1.3 lukem 3 1.1 lukem /* schema_prep.c - load builtin schema */ 4 1.1.1.3 lukem /* OpenLDAP: pkg/ldap/servers/slapd/schema_prep.c,v 1.169.2.13 2009/04/27 22:50:10 quanah Exp */ 5 1.1 lukem /* This work is part of OpenLDAP Software <http://www.openldap.org/>. 6 1.1 lukem * 7 1.1.1.3 lukem * Copyright 1998-2009 The OpenLDAP Foundation. 8 1.1 lukem * All rights reserved. 9 1.1 lukem * 10 1.1 lukem * Redistribution and use in source and binary forms, with or without 11 1.1 lukem * modification, are permitted only as authorized by the OpenLDAP 12 1.1 lukem * Public License. 13 1.1 lukem * 14 1.1 lukem * A copy of this license is available in the file LICENSE in the 15 1.1 lukem * top-level directory of the distribution or, alternatively, at 16 1.1 lukem * <http://www.OpenLDAP.org/license.html>. 17 1.1 lukem */ 18 1.1 lukem 19 1.1 lukem #include "portable.h" 20 1.1 lukem 21 1.1 lukem #include <stdio.h> 22 1.1 lukem 23 1.1 lukem #include <ac/ctype.h> 24 1.1 lukem #include <ac/string.h> 25 1.1 lukem #include <ac/socket.h> 26 1.1 lukem 27 1.1 lukem #include "slap.h" 28 1.1 lukem 29 1.1 lukem #define OCDEBUG 0 30 1.1 lukem 31 1.1 lukem int schema_init_done = 0; 32 1.1 lukem 33 1.1 lukem struct slap_internal_schema slap_schema; 34 1.1 lukem 35 1.1 lukem static int 36 1.1 lukem oidValidate( 37 1.1 lukem Syntax *syntax, 38 1.1 lukem struct berval *in ) 39 1.1 lukem { 40 1.1 lukem struct berval val = *in; 41 1.1 lukem 42 1.1 lukem if( val.bv_len == 0 ) { 43 1.1 lukem /* disallow empty strings */ 44 1.1 lukem return LDAP_INVALID_SYNTAX; 45 1.1 lukem } 46 1.1 lukem 47 1.1 lukem if( DESC_LEADCHAR( val.bv_val[0] ) ) { 48 1.1 lukem val.bv_val++; 49 1.1 lukem val.bv_len--; 50 1.1 lukem if ( val.bv_len == 0 ) return LDAP_SUCCESS; 51 1.1 lukem 52 1.1 lukem while( DESC_CHAR( val.bv_val[0] ) ) { 53 1.1 lukem val.bv_val++; 54 1.1 lukem val.bv_len--; 55 1.1 lukem 56 1.1 lukem if ( val.bv_len == 0 ) return LDAP_SUCCESS; 57 1.1 lukem } 58 1.1 lukem 59 1.1 lukem } else { 60 1.1 lukem int sep = 0; 61 1.1 lukem while( OID_LEADCHAR( val.bv_val[0] ) ) { 62 1.1 lukem val.bv_val++; 63 1.1 lukem val.bv_len--; 64 1.1 lukem 65 1.1 lukem if ( val.bv_val[-1] != '0' ) { 66 1.1 lukem while ( OID_LEADCHAR( val.bv_val[0] )) { 67 1.1 lukem val.bv_val++; 68 1.1 lukem val.bv_len--; 69 1.1 lukem } 70 1.1 lukem } 71 1.1 lukem 72 1.1 lukem if( val.bv_len == 0 ) { 73 1.1 lukem if( sep == 0 ) break; 74 1.1 lukem return LDAP_SUCCESS; 75 1.1 lukem } 76 1.1 lukem 77 1.1 lukem if( !OID_SEPARATOR( val.bv_val[0] )) break; 78 1.1 lukem 79 1.1 lukem sep++; 80 1.1 lukem val.bv_val++; 81 1.1 lukem val.bv_len--; 82 1.1 lukem } 83 1.1 lukem } 84 1.1 lukem 85 1.1 lukem return LDAP_INVALID_SYNTAX; 86 1.1 lukem } 87 1.1 lukem 88 1.1 lukem 89 1.1 lukem static int objectClassPretty( 90 1.1 lukem Syntax *syntax, 91 1.1 lukem struct berval *in, 92 1.1 lukem struct berval *out, 93 1.1 lukem void *ctx ) 94 1.1 lukem { 95 1.1 lukem ObjectClass *oc; 96 1.1 lukem 97 1.1 lukem if( oidValidate( NULL, in )) return LDAP_INVALID_SYNTAX; 98 1.1 lukem 99 1.1 lukem oc = oc_bvfind( in ); 100 1.1 lukem if( oc == NULL ) return LDAP_INVALID_SYNTAX; 101 1.1 lukem 102 1.1 lukem ber_dupbv_x( out, &oc->soc_cname, ctx ); 103 1.1 lukem return LDAP_SUCCESS; 104 1.1 lukem } 105 1.1 lukem 106 1.1 lukem static int 107 1.1 lukem attributeTypeMatch( 108 1.1 lukem int *matchp, 109 1.1 lukem slap_mask_t flags, 110 1.1 lukem Syntax *syntax, 111 1.1 lukem MatchingRule *mr, 112 1.1 lukem struct berval *value, 113 1.1 lukem void *assertedValue ) 114 1.1 lukem { 115 1.1 lukem struct berval *a = (struct berval *) assertedValue; 116 1.1 lukem AttributeType *at = at_bvfind( value ); 117 1.1 lukem AttributeType *asserted = at_bvfind( a ); 118 1.1 lukem 119 1.1 lukem if( asserted == NULL ) { 120 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 121 1.1 lukem /* OID form, return FALSE */ 122 1.1 lukem *matchp = 1; 123 1.1 lukem return LDAP_SUCCESS; 124 1.1 lukem } 125 1.1 lukem 126 1.1 lukem /* desc form, return undefined */ 127 1.1 lukem return LDAP_INVALID_SYNTAX; 128 1.1 lukem } 129 1.1 lukem 130 1.1 lukem if ( at == NULL ) { 131 1.1 lukem /* unrecognized stored value */ 132 1.1 lukem return LDAP_INVALID_SYNTAX; 133 1.1 lukem } 134 1.1 lukem 135 1.1 lukem *matchp = ( asserted != at ); 136 1.1 lukem return LDAP_SUCCESS; 137 1.1 lukem } 138 1.1 lukem 139 1.1 lukem static int 140 1.1 lukem matchingRuleMatch( 141 1.1 lukem int *matchp, 142 1.1 lukem slap_mask_t flags, 143 1.1 lukem Syntax *syntax, 144 1.1 lukem MatchingRule *mr, 145 1.1 lukem struct berval *value, 146 1.1 lukem void *assertedValue ) 147 1.1 lukem { 148 1.1 lukem struct berval *a = (struct berval *) assertedValue; 149 1.1 lukem MatchingRule *mrv = mr_bvfind( value ); 150 1.1 lukem MatchingRule *asserted = mr_bvfind( a ); 151 1.1 lukem 152 1.1 lukem if( asserted == NULL ) { 153 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 154 1.1 lukem /* OID form, return FALSE */ 155 1.1 lukem *matchp = 1; 156 1.1 lukem return LDAP_SUCCESS; 157 1.1 lukem } 158 1.1 lukem 159 1.1 lukem /* desc form, return undefined */ 160 1.1 lukem return LDAP_INVALID_SYNTAX; 161 1.1 lukem } 162 1.1 lukem 163 1.1 lukem if ( mrv == NULL ) { 164 1.1 lukem /* unrecognized stored value */ 165 1.1 lukem return LDAP_INVALID_SYNTAX; 166 1.1 lukem } 167 1.1 lukem 168 1.1 lukem *matchp = ( asserted != mrv ); 169 1.1 lukem return LDAP_SUCCESS; 170 1.1 lukem } 171 1.1 lukem 172 1.1 lukem static int 173 1.1 lukem objectClassMatch( 174 1.1 lukem int *matchp, 175 1.1 lukem slap_mask_t flags, 176 1.1 lukem Syntax *syntax, 177 1.1 lukem MatchingRule *mr, 178 1.1 lukem struct berval *value, 179 1.1 lukem void *assertedValue ) 180 1.1 lukem { 181 1.1 lukem struct berval *a = (struct berval *) assertedValue; 182 1.1 lukem ObjectClass *oc = oc_bvfind( value ); 183 1.1 lukem ObjectClass *asserted = oc_bvfind( a ); 184 1.1 lukem 185 1.1 lukem if( asserted == NULL ) { 186 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 187 1.1 lukem /* OID form, return FALSE */ 188 1.1 lukem *matchp = 1; 189 1.1 lukem return LDAP_SUCCESS; 190 1.1 lukem } 191 1.1 lukem 192 1.1 lukem /* desc form, return undefined */ 193 1.1 lukem return LDAP_INVALID_SYNTAX; 194 1.1 lukem } 195 1.1 lukem 196 1.1 lukem if ( oc == NULL ) { 197 1.1 lukem /* unrecognized stored value */ 198 1.1 lukem return LDAP_INVALID_SYNTAX; 199 1.1 lukem } 200 1.1 lukem 201 1.1 lukem *matchp = ( asserted != oc ); 202 1.1 lukem return LDAP_SUCCESS; 203 1.1 lukem } 204 1.1 lukem 205 1.1 lukem static int 206 1.1 lukem objectSubClassMatch( 207 1.1 lukem int *matchp, 208 1.1 lukem slap_mask_t flags, 209 1.1 lukem Syntax *syntax, 210 1.1 lukem MatchingRule *mr, 211 1.1 lukem struct berval *value, 212 1.1 lukem void *assertedValue ) 213 1.1 lukem { 214 1.1 lukem struct berval *a = (struct berval *) assertedValue; 215 1.1 lukem ObjectClass *oc = oc_bvfind( value ); 216 1.1 lukem ObjectClass *asserted = oc_bvfind( a ); 217 1.1 lukem 218 1.1 lukem if( asserted == NULL ) { 219 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 220 1.1 lukem /* OID form, return FALSE */ 221 1.1 lukem *matchp = 1; 222 1.1 lukem return LDAP_SUCCESS; 223 1.1 lukem } 224 1.1 lukem 225 1.1 lukem /* desc form, return undefined */ 226 1.1 lukem return LDAP_INVALID_SYNTAX; 227 1.1 lukem } 228 1.1 lukem 229 1.1 lukem if ( oc == NULL ) { 230 1.1 lukem /* unrecognized stored value */ 231 1.1 lukem return LDAP_INVALID_SYNTAX; 232 1.1 lukem } 233 1.1 lukem 234 1.1 lukem if( SLAP_MR_IS_VALUE_OF_ATTRIBUTE_SYNTAX( flags ) ) { 235 1.1 lukem *matchp = ( asserted != oc ); 236 1.1 lukem } else { 237 1.1 lukem *matchp = !is_object_subclass( asserted, oc ); 238 1.1 lukem } 239 1.1 lukem 240 1.1 lukem return LDAP_SUCCESS; 241 1.1 lukem } 242 1.1 lukem 243 1.1 lukem static int objectSubClassIndexer( 244 1.1 lukem slap_mask_t use, 245 1.1 lukem slap_mask_t mask, 246 1.1 lukem Syntax *syntax, 247 1.1 lukem MatchingRule *mr, 248 1.1 lukem struct berval *prefix, 249 1.1 lukem BerVarray values, 250 1.1 lukem BerVarray *keysp, 251 1.1 lukem void *ctx ) 252 1.1 lukem { 253 1.1 lukem int rc, noc, i; 254 1.1 lukem BerVarray ocvalues; 255 1.1 lukem ObjectClass **socs; 256 1.1 lukem 257 1.1 lukem for( noc=0; values[noc].bv_val != NULL; noc++ ) { 258 1.1 lukem /* just count em */; 259 1.1 lukem } 260 1.1 lukem 261 1.1 lukem /* over allocate */ 262 1.1 lukem socs = slap_sl_malloc( (noc+16) * sizeof( ObjectClass * ), ctx ); 263 1.1 lukem 264 1.1 lukem /* initialize */ 265 1.1 lukem for( i=0; i<noc; i++ ) { 266 1.1 lukem socs[i] = oc_bvfind( &values[i] ); 267 1.1 lukem } 268 1.1 lukem 269 1.1 lukem /* expand values */ 270 1.1 lukem for( i=0; i<noc; i++ ) { 271 1.1 lukem int j; 272 1.1 lukem ObjectClass *oc = socs[i]; 273 1.1 lukem if( oc == NULL || oc->soc_sups == NULL ) continue; 274 1.1 lukem 275 1.1 lukem for( j=0; oc->soc_sups[j] != NULL; j++ ) { 276 1.1 lukem int found = 0; 277 1.1 lukem ObjectClass *sup = oc->soc_sups[j]; 278 1.1 lukem int k; 279 1.1 lukem 280 1.1 lukem for( k=0; k<noc; k++ ) { 281 1.1 lukem if( sup == socs[k] ) { 282 1.1 lukem found++; 283 1.1 lukem break; 284 1.1 lukem } 285 1.1 lukem } 286 1.1 lukem 287 1.1 lukem if( !found ) { 288 1.1 lukem socs = slap_sl_realloc( socs, 289 1.1 lukem sizeof( ObjectClass * ) * (noc+2), ctx ); 290 1.1 lukem 291 1.1 lukem assert( k == noc ); 292 1.1 lukem socs[noc++] = sup; 293 1.1 lukem } 294 1.1 lukem } 295 1.1 lukem } 296 1.1 lukem 297 1.1 lukem ocvalues = slap_sl_malloc( sizeof( struct berval ) * (noc+1), ctx ); 298 1.1 lukem /* copy values */ 299 1.1 lukem for( i=0; i<noc; i++ ) { 300 1.1 lukem if ( socs[i] ) 301 1.1 lukem ocvalues[i] = socs[i]->soc_cname; 302 1.1 lukem else 303 1.1 lukem ocvalues[i] = values[i]; 304 1.1 lukem } 305 1.1 lukem BER_BVZERO( &ocvalues[i] ); 306 1.1 lukem 307 1.1 lukem rc = octetStringIndexer( use, mask, syntax, mr, 308 1.1 lukem prefix, ocvalues, keysp, ctx ); 309 1.1 lukem 310 1.1 lukem slap_sl_free( ocvalues, ctx ); 311 1.1 lukem slap_sl_free( socs, ctx ); 312 1.1 lukem return rc; 313 1.1 lukem } 314 1.1 lukem 315 1.1 lukem #define objectSubClassFilter octetStringFilter 316 1.1 lukem 317 1.1 lukem static ObjectClassSchemaCheckFN rootDseObjectClass; 318 1.1 lukem static ObjectClassSchemaCheckFN aliasObjectClass; 319 1.1 lukem static ObjectClassSchemaCheckFN referralObjectClass; 320 1.1 lukem static ObjectClassSchemaCheckFN subentryObjectClass; 321 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 322 1.1 lukem static ObjectClassSchemaCheckFN dynamicObjectClass; 323 1.1 lukem #endif 324 1.1 lukem 325 1.1 lukem static struct slap_schema_oc_map { 326 1.1 lukem char *ssom_name; 327 1.1 lukem char *ssom_defn; 328 1.1 lukem ObjectClassSchemaCheckFN *ssom_check; 329 1.1 lukem slap_mask_t ssom_flags; 330 1.1 lukem size_t ssom_offset; 331 1.1 lukem } oc_map[] = { 332 1.1 lukem { "top", "( 2.5.6.0 NAME 'top' " 333 1.1 lukem "DESC 'top of the superclass chain' " 334 1.1 lukem "ABSTRACT MUST objectClass )", 335 1.1 lukem 0, 0, offsetof(struct slap_internal_schema, si_oc_top) }, 336 1.1 lukem { "extensibleObject", "( 1.3.6.1.4.1.1466.101.120.111 " 337 1.1 lukem "NAME 'extensibleObject' " 338 1.1 lukem "DESC 'RFC4512: extensible object' " 339 1.1 lukem "SUP top AUXILIARY )", 340 1.1 lukem 0, SLAP_OC_OPERATIONAL, 341 1.1 lukem offsetof(struct slap_internal_schema, si_oc_extensibleObject) }, 342 1.1 lukem { "alias", "( 2.5.6.1 NAME 'alias' " 343 1.1 lukem "DESC 'RFC4512: an alias' " 344 1.1 lukem "SUP top STRUCTURAL " 345 1.1 lukem "MUST aliasedObjectName )", 346 1.1 lukem aliasObjectClass, SLAP_OC_ALIAS|SLAP_OC_OPERATIONAL, 347 1.1 lukem offsetof(struct slap_internal_schema, si_oc_alias) }, 348 1.1 lukem { "referral", "( 2.16.840.1.113730.3.2.6 NAME 'referral' " 349 1.1 lukem "DESC 'namedref: named subordinate referral' " 350 1.1 lukem "SUP top STRUCTURAL MUST ref )", 351 1.1 lukem referralObjectClass, SLAP_OC_REFERRAL|SLAP_OC_OPERATIONAL, 352 1.1 lukem offsetof(struct slap_internal_schema, si_oc_referral) }, 353 1.1 lukem { "LDAProotDSE", "( 1.3.6.1.4.1.4203.1.4.1 " 354 1.1 lukem "NAME ( 'OpenLDAProotDSE' 'LDAProotDSE' ) " 355 1.1 lukem "DESC 'OpenLDAP Root DSE object' " 356 1.1 lukem "SUP top STRUCTURAL MAY cn )", 357 1.1 lukem rootDseObjectClass, SLAP_OC_OPERATIONAL, 358 1.1 lukem offsetof(struct slap_internal_schema, si_oc_rootdse) }, 359 1.1 lukem { "subentry", "( 2.5.17.0 NAME 'subentry' " 360 1.1 lukem "DESC 'RFC3672: subentry' " 361 1.1 lukem "SUP top STRUCTURAL " 362 1.1 lukem "MUST ( cn $ subtreeSpecification ) )", 363 1.1 lukem subentryObjectClass, SLAP_OC_SUBENTRY|SLAP_OC_OPERATIONAL, 364 1.1 lukem offsetof(struct slap_internal_schema, si_oc_subentry) }, 365 1.1 lukem { "subschema", "( 2.5.20.1 NAME 'subschema' " 366 1.1 lukem "DESC 'RFC4512: controlling subschema (sub)entry' " 367 1.1 lukem "AUXILIARY " 368 1.1 lukem "MAY ( dITStructureRules $ nameForms $ dITContentRules $ " 369 1.1 lukem "objectClasses $ attributeTypes $ matchingRules $ " 370 1.1 lukem "matchingRuleUse ) )", 371 1.1 lukem subentryObjectClass, SLAP_OC_OPERATIONAL, 372 1.1 lukem offsetof(struct slap_internal_schema, si_oc_subschema) }, 373 1.1 lukem #ifdef LDAP_COLLECTIVE_ATTRIBUTES 374 1.1 lukem { "collectiveAttributeSubentry", "( 2.5.17.2 " 375 1.1 lukem "NAME 'collectiveAttributeSubentry' " 376 1.1 lukem "DESC 'RFC3671: collective attribute subentry' " 377 1.1 lukem "AUXILIARY )", 378 1.1 lukem subentryObjectClass, 379 1.1 lukem SLAP_OC_COLLECTIVEATTRIBUTESUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 380 1.1 lukem offsetof( struct slap_internal_schema, 381 1.1 lukem si_oc_collectiveAttributeSubentry) }, 382 1.1 lukem #endif 383 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 384 1.1 lukem { "dynamicObject", "( 1.3.6.1.4.1.1466.101.119.2 " 385 1.1 lukem "NAME 'dynamicObject' " 386 1.1 lukem "DESC 'RFC2589: Dynamic Object' " 387 1.1 lukem "SUP top AUXILIARY )", 388 1.1 lukem dynamicObjectClass, SLAP_OC_DYNAMICOBJECT, 389 1.1 lukem offsetof(struct slap_internal_schema, si_oc_dynamicObject) }, 390 1.1 lukem #endif 391 1.1 lukem { "glue", "( 1.3.6.1.4.1.4203.666.3.4 " 392 1.1 lukem "NAME 'glue' " 393 1.1 lukem "DESC 'Glue Entry' " 394 1.1 lukem "SUP top STRUCTURAL )", 395 1.1 lukem 0, SLAP_OC_GLUE|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 396 1.1 lukem offsetof(struct slap_internal_schema, si_oc_glue) }, 397 1.1 lukem { "syncConsumerSubentry", "( 1.3.6.1.4.1.4203.666.3.5 " 398 1.1 lukem "NAME 'syncConsumerSubentry' " 399 1.1 lukem "DESC 'Persistent Info for SyncRepl Consumer' " 400 1.1 lukem "AUXILIARY " 401 1.1 lukem "MAY syncreplCookie )", 402 1.1 lukem 0, SLAP_OC_SYNCCONSUMERSUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 403 1.1 lukem offsetof(struct slap_internal_schema, si_oc_syncConsumerSubentry) }, 404 1.1 lukem { "syncProviderSubentry", "( 1.3.6.1.4.1.4203.666.3.6 " 405 1.1 lukem "NAME 'syncProviderSubentry' " 406 1.1 lukem "DESC 'Persistent Info for SyncRepl Producer' " 407 1.1 lukem "AUXILIARY " 408 1.1 lukem "MAY contextCSN )", 409 1.1 lukem 0, SLAP_OC_SYNCPROVIDERSUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 410 1.1 lukem offsetof(struct slap_internal_schema, si_oc_syncProviderSubentry) }, 411 1.1 lukem 412 1.1 lukem { NULL, NULL, NULL, 0, 0 } 413 1.1 lukem }; 414 1.1 lukem 415 1.1 lukem static AttributeTypeSchemaCheckFN rootDseAttribute; 416 1.1 lukem static AttributeTypeSchemaCheckFN aliasAttribute; 417 1.1 lukem static AttributeTypeSchemaCheckFN referralAttribute; 418 1.1 lukem static AttributeTypeSchemaCheckFN subentryAttribute; 419 1.1 lukem static AttributeTypeSchemaCheckFN administrativeRoleAttribute; 420 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 421 1.1 lukem static AttributeTypeSchemaCheckFN dynamicAttribute; 422 1.1 lukem #endif 423 1.1 lukem 424 1.1 lukem static struct slap_schema_ad_map { 425 1.1 lukem char *ssam_name; 426 1.1 lukem char *ssam_defn; 427 1.1 lukem AttributeTypeSchemaCheckFN *ssam_check; 428 1.1 lukem slap_mask_t ssam_flags; 429 1.1 lukem slap_syntax_validate_func *ssam_syn_validate; 430 1.1 lukem slap_syntax_transform_func *ssam_syn_pretty; 431 1.1 lukem slap_mr_convert_func *ssam_mr_convert; 432 1.1 lukem slap_mr_normalize_func *ssam_mr_normalize; 433 1.1 lukem slap_mr_match_func *ssam_mr_match; 434 1.1 lukem slap_mr_indexer_func *ssam_mr_indexer; 435 1.1 lukem slap_mr_filter_func *ssam_mr_filter; 436 1.1 lukem size_t ssam_offset; 437 1.1 lukem } ad_map[] = { 438 1.1 lukem { "objectClass", "( 2.5.4.0 NAME 'objectClass' " 439 1.1 lukem "DESC 'RFC4512: object classes of the entity' " 440 1.1 lukem "EQUALITY objectIdentifierMatch " 441 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", 442 1.1 lukem NULL, SLAP_AT_FINAL, 443 1.1 lukem oidValidate, objectClassPretty, 444 1.1 lukem NULL, NULL, objectSubClassMatch, 445 1.1 lukem objectSubClassIndexer, objectSubClassFilter, 446 1.1 lukem offsetof(struct slap_internal_schema, si_ad_objectClass) }, 447 1.1 lukem 448 1.1 lukem /* user entry operational attributes */ 449 1.1 lukem { "structuralObjectClass", "( 2.5.21.9 NAME 'structuralObjectClass' " 450 1.1 lukem "DESC 'RFC4512: structural object class of entry' " 451 1.1 lukem "EQUALITY objectIdentifierMatch " 452 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 453 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 454 1.1.1.3 lukem NULL, 0, 455 1.1 lukem oidValidate, objectClassPretty, 456 1.1 lukem NULL, NULL, objectSubClassMatch, 457 1.1 lukem objectSubClassIndexer, objectSubClassFilter, 458 1.1 lukem offsetof(struct slap_internal_schema, si_ad_structuralObjectClass) }, 459 1.1 lukem { "createTimestamp", "( 2.5.18.1 NAME 'createTimestamp' " 460 1.1 lukem "DESC 'RFC4512: time which object was created' " 461 1.1 lukem "EQUALITY generalizedTimeMatch " 462 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 463 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 464 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 465 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 466 1.1 lukem NULL, NULL, 467 1.1 lukem NULL, NULL, NULL, NULL, NULL, 468 1.1 lukem offsetof(struct slap_internal_schema, si_ad_createTimestamp) }, 469 1.1 lukem { "modifyTimestamp", "( 2.5.18.2 NAME 'modifyTimestamp' " 470 1.1 lukem "DESC 'RFC4512: time which object was last modified' " 471 1.1 lukem "EQUALITY generalizedTimeMatch " 472 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 473 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 474 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 475 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 476 1.1 lukem NULL, NULL, 477 1.1 lukem NULL, NULL, NULL, NULL, NULL, 478 1.1 lukem offsetof(struct slap_internal_schema, si_ad_modifyTimestamp) }, 479 1.1 lukem { "creatorsName", "( 2.5.18.3 NAME 'creatorsName' " 480 1.1 lukem "DESC 'RFC4512: name of creator' " 481 1.1 lukem "EQUALITY distinguishedNameMatch " 482 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 483 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 484 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 485 1.1 lukem NULL, NULL, 486 1.1 lukem NULL, NULL, NULL, NULL, NULL, 487 1.1 lukem offsetof(struct slap_internal_schema, si_ad_creatorsName) }, 488 1.1 lukem { "modifiersName", "( 2.5.18.4 NAME 'modifiersName' " 489 1.1 lukem "DESC 'RFC4512: name of last modifier' " 490 1.1 lukem "EQUALITY distinguishedNameMatch " 491 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 492 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 493 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 494 1.1 lukem NULL, NULL, 495 1.1 lukem NULL, NULL, NULL, NULL, NULL, 496 1.1 lukem offsetof(struct slap_internal_schema, si_ad_modifiersName) }, 497 1.1 lukem { "hasSubordinates", "( 2.5.18.9 NAME 'hasSubordinates' " 498 1.1 lukem "DESC 'X.501: entry has children' " 499 1.1 lukem "EQUALITY booleanMatch " 500 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 " 501 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 502 1.1 lukem NULL, SLAP_AT_DYNAMIC, 503 1.1 lukem NULL, NULL, 504 1.1 lukem NULL, NULL, NULL, NULL, NULL, 505 1.1 lukem offsetof(struct slap_internal_schema, si_ad_hasSubordinates) }, 506 1.1 lukem { "subschemaSubentry", "( 2.5.18.10 NAME 'subschemaSubentry' " 507 1.1 lukem "DESC 'RFC4512: name of controlling subschema entry' " 508 1.1 lukem "EQUALITY distinguishedNameMatch " 509 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE " 510 1.1 lukem "NO-USER-MODIFICATION USAGE directoryOperation )", 511 1.1 lukem NULL, SLAP_AT_DYNAMIC, 512 1.1 lukem NULL, NULL, 513 1.1 lukem NULL, NULL, NULL, NULL, NULL, 514 1.1 lukem offsetof(struct slap_internal_schema, si_ad_subschemaSubentry) }, 515 1.1 lukem #ifdef LDAP_COLLECTIVE_ATTRIBUTES 516 1.1 lukem { "collectiveAttributeSubentries", "( 2.5.18.12 " 517 1.1 lukem "NAME 'collectiveAttributeSubentries' " 518 1.1 lukem "DESC 'RFC3671: collective attribute subentries' " 519 1.1 lukem "EQUALITY distinguishedNameMatch " 520 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 521 1.1 lukem "NO-USER-MODIFICATION USAGE directoryOperation )", 522 1.1 lukem NULL, SLAP_AT_HIDE, 523 1.1 lukem NULL, NULL, 524 1.1 lukem NULL, NULL, NULL, NULL, NULL, 525 1.1 lukem offsetof(struct slap_internal_schema, si_ad_collectiveSubentries) }, 526 1.1 lukem { "collectiveExclusions", "( 2.5.18.7 NAME 'collectiveExclusions' " 527 1.1 lukem "DESC 'RFC3671: collective attribute exclusions' " 528 1.1 lukem "EQUALITY objectIdentifierMatch " 529 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 530 1.1 lukem "USAGE directoryOperation )", 531 1.1 lukem NULL, SLAP_AT_HIDE, 532 1.1 lukem NULL, NULL, 533 1.1 lukem NULL, NULL, NULL, NULL, NULL, 534 1.1 lukem offsetof(struct slap_internal_schema, si_ad_collectiveExclusions) }, 535 1.1 lukem #endif 536 1.1 lukem 537 1.1 lukem { "entryDN", "( 1.3.6.1.1.20 NAME 'entryDN' " 538 1.1 lukem "DESC 'DN of the entry' " 539 1.1 lukem "EQUALITY distinguishedNameMatch " 540 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 541 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 542 1.1 lukem NULL, SLAP_AT_DYNAMIC, 543 1.1 lukem NULL, NULL, 544 1.1 lukem NULL, NULL, NULL, NULL, NULL, 545 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryDN) }, 546 1.1 lukem { "entryUUID", "( 1.3.6.1.1.16.4 NAME 'entryUUID' " 547 1.1 lukem "DESC 'UUID of the entry' " 548 1.1 lukem "EQUALITY UUIDMatch " 549 1.1 lukem "ORDERING UUIDOrderingMatch " 550 1.1 lukem "SYNTAX 1.3.6.1.1.16.1 " 551 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 552 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 553 1.1 lukem NULL, NULL, 554 1.1 lukem NULL, NULL, NULL, NULL, NULL, 555 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryUUID) }, 556 1.1 lukem { "entryCSN", "( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' " 557 1.1 lukem "DESC 'change sequence number of the entry content' " 558 1.1 lukem "EQUALITY CSNMatch " 559 1.1 lukem "ORDERING CSNOrderingMatch " 560 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 561 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 562 1.1 lukem NULL, SLAP_AT_HIDE, 563 1.1 lukem NULL, NULL, 564 1.1 lukem NULL, NULL, NULL, NULL, NULL, 565 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryCSN) }, 566 1.1 lukem { "namingCSN", "( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' " 567 1.1 lukem "DESC 'change sequence number of the entry naming (RDN)' " 568 1.1 lukem "EQUALITY CSNMatch " 569 1.1 lukem "ORDERING CSNOrderingMatch " 570 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 571 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 572 1.1 lukem NULL, SLAP_AT_HIDE, 573 1.1 lukem NULL, NULL, 574 1.1 lukem NULL, NULL, NULL, NULL, NULL, 575 1.1 lukem offsetof(struct slap_internal_schema, si_ad_namingCSN) }, 576 1.1 lukem 577 1.1 lukem #ifdef LDAP_SUPERIOR_UUID 578 1.1 lukem { "superiorUUID", "( 1.3.6.1.4.1.4203.666.1.11 NAME 'superiorUUID' " 579 1.1 lukem "DESC 'UUID of the superior entry' " 580 1.1 lukem "EQUALITY UUIDMatch " 581 1.1 lukem "ORDERING UUIDOrderingMatch " 582 1.1 lukem "SYNTAX 1.3.6.1.1.16.1 " 583 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 584 1.1 lukem NULL, SLAP_AT_HIDE, 585 1.1 lukem NULL, NULL, 586 1.1 lukem NULL, NULL, NULL, NULL, NULL, 587 1.1 lukem offsetof(struct slap_internal_schema, si_ad_superiorUUID) }, 588 1.1 lukem #endif 589 1.1 lukem 590 1.1 lukem { "syncreplCookie", "( 1.3.6.1.4.1.4203.666.1.23 " 591 1.1 lukem "NAME 'syncreplCookie' " 592 1.1 lukem "DESC 'syncrepl Cookie for shadow copy' " 593 1.1 lukem "EQUALITY octetStringMatch " 594 1.1 lukem "ORDERING octetStringOrderingMatch " 595 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 " 596 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 597 1.1 lukem NULL, SLAP_AT_HIDE, 598 1.1 lukem NULL, NULL, 599 1.1 lukem NULL, NULL, NULL, NULL, NULL, 600 1.1 lukem offsetof(struct slap_internal_schema, si_ad_syncreplCookie) }, 601 1.1 lukem 602 1.1 lukem { "contextCSN", "( 1.3.6.1.4.1.4203.666.1.25 " 603 1.1 lukem "NAME 'contextCSN' " 604 1.1 lukem "DESC 'the largest committed CSN of a context' " 605 1.1 lukem "EQUALITY CSNMatch " 606 1.1 lukem "ORDERING CSNOrderingMatch " 607 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 608 1.1 lukem "NO-USER-MODIFICATION USAGE dSAOperation )", 609 1.1 lukem NULL, SLAP_AT_HIDE, 610 1.1 lukem NULL, NULL, 611 1.1 lukem NULL, NULL, NULL, NULL, NULL, 612 1.1 lukem offsetof(struct slap_internal_schema, si_ad_contextCSN) }, 613 1.1 lukem 614 1.1 lukem #ifdef LDAP_SYNC_TIMESTAMP 615 1.1 lukem { "syncTimestamp", "( 1.3.6.1.4.1.4203.666.1.26 NAME 'syncTimestamp' " 616 1.1 lukem "DESC 'Time which object was replicated' " 617 1.1 lukem "EQUALITY generalizedTimeMatch " 618 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 619 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 620 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 621 1.1 lukem NULL, 0, 622 1.1 lukem NULL, NULL, 623 1.1 lukem NULL, NULL, NULL, NULL, NULL, 624 1.1 lukem offsetof(struct slap_internal_schema, si_ad_syncTimestamp) }, 625 1.1 lukem #endif 626 1.1 lukem 627 1.1 lukem /* root DSE attributes */ 628 1.1 lukem { "altServer", "( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' " 629 1.1 lukem "DESC 'RFC4512: alternative servers' " 630 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperation )", 631 1.1 lukem rootDseAttribute, 0, 632 1.1 lukem NULL, NULL, 633 1.1 lukem NULL, NULL, NULL, NULL, NULL, 634 1.1 lukem offsetof(struct slap_internal_schema, si_ad_altServer) }, 635 1.1 lukem { "namingContexts", "( 1.3.6.1.4.1.1466.101.120.5 " 636 1.1 lukem "NAME 'namingContexts' " 637 1.1 lukem "DESC 'RFC4512: naming contexts' " 638 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperation )", 639 1.1 lukem rootDseAttribute, 0, 640 1.1 lukem NULL, NULL, 641 1.1 lukem NULL, NULL, NULL, NULL, NULL, 642 1.1 lukem offsetof(struct slap_internal_schema, si_ad_namingContexts) }, 643 1.1 lukem { "supportedControl", "( 1.3.6.1.4.1.1466.101.120.13 " 644 1.1 lukem "NAME 'supportedControl' " 645 1.1 lukem "DESC 'RFC4512: supported controls' " 646 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", 647 1.1 lukem rootDseAttribute, 0, 648 1.1 lukem NULL, NULL, 649 1.1 lukem NULL, NULL, NULL, NULL, NULL, 650 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedControl) }, 651 1.1 lukem { "supportedExtension", "( 1.3.6.1.4.1.1466.101.120.7 " 652 1.1 lukem "NAME 'supportedExtension' " 653 1.1 lukem "DESC 'RFC4512: supported extended operations' " 654 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", 655 1.1 lukem rootDseAttribute, 0, 656 1.1 lukem NULL, NULL, 657 1.1 lukem NULL, NULL, NULL, NULL, NULL, 658 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedExtension) }, 659 1.1 lukem { "supportedLDAPVersion", "( 1.3.6.1.4.1.1466.101.120.15 " 660 1.1 lukem "NAME 'supportedLDAPVersion' " 661 1.1 lukem "DESC 'RFC4512: supported LDAP versions' " 662 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 USAGE dSAOperation )", 663 1.1 lukem rootDseAttribute, 0, 664 1.1 lukem NULL, NULL, 665 1.1 lukem NULL, NULL, NULL, NULL, NULL, 666 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedLDAPVersion) }, 667 1.1 lukem { "supportedSASLMechanisms", "( 1.3.6.1.4.1.1466.101.120.14 " 668 1.1 lukem "NAME 'supportedSASLMechanisms' " 669 1.1 lukem "DESC 'RFC4512: supported SASL mechanisms'" 670 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE dSAOperation )", 671 1.1 lukem rootDseAttribute, 0, 672 1.1 lukem NULL, NULL, 673 1.1 lukem NULL, NULL, NULL, NULL, NULL, 674 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedSASLMechanisms) }, 675 1.1 lukem { "supportedFeatures", "( 1.3.6.1.4.1.4203.1.3.5 " 676 1.1 lukem "NAME 'supportedFeatures' " 677 1.1 lukem "DESC 'RFC4512: features supported by the server' " 678 1.1 lukem "EQUALITY objectIdentifierMatch " 679 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 680 1.1 lukem "USAGE dSAOperation )", 681 1.1 lukem rootDseAttribute, 0, 682 1.1 lukem NULL, NULL, 683 1.1 lukem NULL, NULL, NULL, NULL, NULL, 684 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedFeatures) }, 685 1.1 lukem { "monitorContext", "( 1.3.6.1.4.1.4203.666.1.10 " 686 1.1 lukem "NAME 'monitorContext' " 687 1.1 lukem "DESC 'monitor context' " 688 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 689 1.1.1.3 lukem "EQUALITY distinguishedNameMatch " 690 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 691 1.1 lukem "USAGE dSAOperation )", 692 1.1 lukem rootDseAttribute, SLAP_AT_HIDE, 693 1.1 lukem NULL, NULL, 694 1.1 lukem NULL, NULL, NULL, NULL, NULL, 695 1.1 lukem offsetof(struct slap_internal_schema, si_ad_monitorContext) }, 696 1.1.1.2 lukem { "configContext", "( 1.3.6.1.4.1.4203.1.12.2.1 " 697 1.1 lukem "NAME 'configContext' " 698 1.1 lukem "DESC 'config context' " 699 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 700 1.1.1.3 lukem "EQUALITY distinguishedNameMatch " 701 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 702 1.1 lukem "USAGE dSAOperation )", 703 1.1 lukem rootDseAttribute, SLAP_AT_HIDE, 704 1.1 lukem NULL, NULL, 705 1.1 lukem NULL, NULL, NULL, NULL, NULL, 706 1.1 lukem offsetof(struct slap_internal_schema, si_ad_configContext) }, 707 1.1 lukem { "vendorName", "( 1.3.6.1.1.4 NAME 'vendorName' " 708 1.1 lukem "DESC 'RFC3045: name of implementation vendor' " 709 1.1 lukem "EQUALITY caseExactMatch " 710 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 711 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 712 1.1 lukem "USAGE dSAOperation )", 713 1.1 lukem rootDseAttribute, 0, 714 1.1 lukem NULL, NULL, 715 1.1 lukem NULL, NULL, NULL, NULL, NULL, 716 1.1 lukem offsetof(struct slap_internal_schema, si_ad_vendorName) }, 717 1.1 lukem { "vendorVersion", "( 1.3.6.1.1.5 NAME 'vendorVersion' " 718 1.1 lukem "DESC 'RFC3045: version of implementation' " 719 1.1 lukem "EQUALITY caseExactMatch " 720 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 721 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 722 1.1 lukem "USAGE dSAOperation )", 723 1.1 lukem rootDseAttribute, 0, 724 1.1 lukem NULL, NULL, 725 1.1 lukem NULL, NULL, NULL, NULL, NULL, 726 1.1 lukem offsetof(struct slap_internal_schema, si_ad_vendorVersion) }, 727 1.1 lukem 728 1.1 lukem /* subentry attributes */ 729 1.1 lukem { "administrativeRole", "( 2.5.18.5 NAME 'administrativeRole' " 730 1.1 lukem "DESC 'RFC3672: administrative role' " 731 1.1 lukem "EQUALITY objectIdentifierMatch " 732 1.1 lukem "USAGE directoryOperation " 733 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", 734 1.1 lukem administrativeRoleAttribute, SLAP_AT_HIDE, 735 1.1 lukem NULL, NULL, 736 1.1 lukem NULL, NULL, NULL, NULL, NULL, 737 1.1 lukem offsetof(struct slap_internal_schema, si_ad_administrativeRole) }, 738 1.1 lukem { "subtreeSpecification", "( 2.5.18.6 NAME 'subtreeSpecification' " 739 1.1 lukem "DESC 'RFC3672: subtree specification' " 740 1.1 lukem "SINGLE-VALUE " 741 1.1 lukem "USAGE directoryOperation " 742 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 )", 743 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 744 1.1 lukem NULL, NULL, 745 1.1 lukem NULL, NULL, NULL, NULL, NULL, 746 1.1 lukem offsetof(struct slap_internal_schema, si_ad_subtreeSpecification) }, 747 1.1 lukem 748 1.1 lukem /* subschema subentry attributes */ 749 1.1 lukem { "dITStructureRules", "( 2.5.21.1 NAME 'dITStructureRules' " 750 1.1 lukem "DESC 'RFC4512: DIT structure rules' " 751 1.1 lukem "EQUALITY integerFirstComponentMatch " 752 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.17 " 753 1.1 lukem "USAGE directoryOperation ) ", 754 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 755 1.1 lukem NULL, NULL, 756 1.1 lukem NULL, NULL, NULL, NULL, NULL, 757 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ditStructureRules) }, 758 1.1 lukem { "dITContentRules", "( 2.5.21.2 NAME 'dITContentRules' " 759 1.1 lukem "DESC 'RFC4512: DIT content rules' " 760 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 761 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.16 USAGE directoryOperation )", 762 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 763 1.1 lukem oidValidate, NULL, 764 1.1 lukem NULL, NULL, objectClassMatch, NULL, NULL, 765 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ditContentRules) }, 766 1.1 lukem { "matchingRules", "( 2.5.21.4 NAME 'matchingRules' " 767 1.1 lukem "DESC 'RFC4512: matching rules' " 768 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 769 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.30 USAGE directoryOperation )", 770 1.1 lukem subentryAttribute, 0, 771 1.1 lukem oidValidate, NULL, 772 1.1 lukem NULL, NULL, matchingRuleMatch, NULL, NULL, 773 1.1 lukem offsetof(struct slap_internal_schema, si_ad_matchingRules) }, 774 1.1 lukem { "attributeTypes", "( 2.5.21.5 NAME 'attributeTypes' " 775 1.1 lukem "DESC 'RFC4512: attribute types' " 776 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 777 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.3 USAGE directoryOperation )", 778 1.1 lukem subentryAttribute, 0, 779 1.1 lukem oidValidate, NULL, 780 1.1 lukem NULL, NULL, attributeTypeMatch, NULL, NULL, 781 1.1 lukem offsetof(struct slap_internal_schema, si_ad_attributeTypes) }, 782 1.1 lukem { "objectClasses", "( 2.5.21.6 NAME 'objectClasses' " 783 1.1 lukem "DESC 'RFC4512: object classes' " 784 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 785 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.37 USAGE directoryOperation )", 786 1.1 lukem subentryAttribute, 0, 787 1.1 lukem oidValidate, NULL, 788 1.1 lukem NULL, NULL, objectClassMatch, NULL, NULL, 789 1.1 lukem offsetof(struct slap_internal_schema, si_ad_objectClasses) }, 790 1.1 lukem { "nameForms", "( 2.5.21.7 NAME 'nameForms' " 791 1.1 lukem "DESC 'RFC4512: name forms ' " 792 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 793 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.35 USAGE directoryOperation )", 794 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 795 1.1 lukem NULL, NULL, 796 1.1 lukem NULL, NULL, NULL, NULL, NULL, 797 1.1 lukem offsetof(struct slap_internal_schema, si_ad_nameForms) }, 798 1.1 lukem { "matchingRuleUse", "( 2.5.21.8 NAME 'matchingRuleUse' " 799 1.1 lukem "DESC 'RFC4512: matching rule uses' " 800 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 801 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.31 USAGE directoryOperation )", 802 1.1 lukem subentryAttribute, 0, 803 1.1 lukem oidValidate, NULL, 804 1.1 lukem NULL, NULL, matchingRuleMatch, NULL, NULL, 805 1.1 lukem offsetof(struct slap_internal_schema, si_ad_matchingRuleUse) }, 806 1.1 lukem 807 1.1 lukem { "ldapSyntaxes", "( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' " 808 1.1 lukem "DESC 'RFC4512: LDAP syntaxes' " 809 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 810 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )", 811 1.1 lukem subentryAttribute, 0, 812 1.1 lukem NULL, NULL, 813 1.1 lukem NULL, NULL, NULL, NULL, NULL, 814 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ldapSyntaxes) }, 815 1.1 lukem 816 1.1 lukem /* knowledge information */ 817 1.1 lukem { "aliasedObjectName", "( 2.5.4.1 " 818 1.1 lukem "NAME ( 'aliasedObjectName' 'aliasedEntryName' ) " 819 1.1 lukem "DESC 'RFC4512: name of aliased object' " 820 1.1 lukem "EQUALITY distinguishedNameMatch " 821 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )", 822 1.1 lukem aliasAttribute, SLAP_AT_FINAL, 823 1.1 lukem NULL, NULL, 824 1.1 lukem NULL, NULL, NULL, NULL, NULL, 825 1.1 lukem offsetof(struct slap_internal_schema, si_ad_aliasedObjectName) }, 826 1.1 lukem { "ref", "( 2.16.840.1.113730.3.1.34 NAME 'ref' " 827 1.1 lukem "DESC 'RFC3296: subordinate referral URL' " 828 1.1 lukem "EQUALITY caseExactMatch " 829 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 830 1.1 lukem "USAGE distributedOperation )", 831 1.1 lukem referralAttribute, 0, 832 1.1 lukem NULL, NULL, 833 1.1 lukem NULL, NULL, NULL, NULL, NULL, 834 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ref) }, 835 1.1 lukem 836 1.1 lukem /* access control internals */ 837 1.1 lukem { "entry", "( 1.3.6.1.4.1.4203.1.3.1 " 838 1.1 lukem "NAME 'entry' " 839 1.1 lukem "DESC 'OpenLDAP ACL entry pseudo-attribute' " 840 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.1 " 841 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 842 1.1 lukem NULL, SLAP_AT_HIDE, 843 1.1 lukem NULL, NULL, 844 1.1 lukem NULL, NULL, NULL, NULL, NULL, 845 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entry) }, 846 1.1 lukem { "children", "( 1.3.6.1.4.1.4203.1.3.2 " 847 1.1 lukem "NAME 'children' " 848 1.1 lukem "DESC 'OpenLDAP ACL children pseudo-attribute' " 849 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.1 " 850 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 851 1.1 lukem NULL, SLAP_AT_HIDE, 852 1.1 lukem NULL, NULL, 853 1.1 lukem NULL, NULL, NULL, NULL, NULL, 854 1.1 lukem offsetof(struct slap_internal_schema, si_ad_children) }, 855 1.1 lukem 856 1.1 lukem /* access control externals */ 857 1.1 lukem { "authzTo", "( 1.3.6.1.4.1.4203.666.1.8 " 858 1.1 lukem "NAME ( 'authzTo' 'saslAuthzTo' ) " 859 1.1 lukem "DESC 'proxy authorization targets' " 860 1.1 lukem "EQUALITY authzMatch " 861 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " 862 1.1 lukem "X-ORDERED 'VALUES' " 863 1.1 lukem "USAGE distributedOperation )", 864 1.1 lukem NULL, SLAP_AT_HIDE, 865 1.1 lukem NULL, NULL, 866 1.1 lukem NULL, NULL, NULL, NULL, NULL, 867 1.1 lukem offsetof(struct slap_internal_schema, si_ad_saslAuthzTo) }, 868 1.1 lukem { "authzFrom", "( 1.3.6.1.4.1.4203.666.1.9 " 869 1.1 lukem "NAME ( 'authzFrom' 'saslAuthzFrom' ) " 870 1.1 lukem "DESC 'proxy authorization sources' " 871 1.1 lukem "EQUALITY authzMatch " 872 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " 873 1.1 lukem "X-ORDERED 'VALUES' " 874 1.1 lukem "USAGE distributedOperation )", 875 1.1 lukem NULL, SLAP_AT_HIDE, 876 1.1 lukem NULL, NULL, 877 1.1 lukem NULL, NULL, NULL, NULL, NULL, 878 1.1 lukem offsetof(struct slap_internal_schema, si_ad_saslAuthzFrom) }, 879 1.1 lukem 880 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 881 1.1 lukem { "entryTtl", "( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' " 882 1.1 lukem "DESC 'RFC2589: entry time-to-live' " 883 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE " 884 1.1 lukem "NO-USER-MODIFICATION USAGE dSAOperation )", 885 1.1 lukem dynamicAttribute, SLAP_AT_MANAGEABLE, 886 1.1 lukem NULL, NULL, 887 1.1 lukem NULL, NULL, NULL, NULL, NULL, 888 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryTtl) }, 889 1.1 lukem { "dynamicSubtrees", "( 1.3.6.1.4.1.1466.101.119.4 " 890 1.1 lukem "NAME 'dynamicSubtrees' " 891 1.1 lukem "DESC 'RFC2589: dynamic subtrees' " 892 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFICATION " 893 1.1 lukem "USAGE dSAOperation )", 894 1.1 lukem rootDseAttribute, 0, 895 1.1 lukem NULL, NULL, 896 1.1 lukem NULL, NULL, NULL, NULL, NULL, 897 1.1 lukem offsetof(struct slap_internal_schema, si_ad_dynamicSubtrees) }, 898 1.1 lukem #endif 899 1.1 lukem 900 1.1 lukem /* userApplication attributes (which system schema depends upon) */ 901 1.1 lukem { "distinguishedName", "( 2.5.4.49 NAME 'distinguishedName' " 902 1.1 lukem "DESC 'RFC4519: common supertype of DN attributes' " 903 1.1 lukem "EQUALITY distinguishedNameMatch " 904 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )", 905 1.1 lukem NULL, SLAP_AT_ABSTRACT, 906 1.1 lukem NULL, NULL, 907 1.1 lukem NULL, NULL, NULL, NULL, NULL, 908 1.1 lukem offsetof(struct slap_internal_schema, si_ad_distinguishedName) }, 909 1.1 lukem { "name", "( 2.5.4.41 NAME 'name' " 910 1.1 lukem "DESC 'RFC4519: common supertype of name attributes' " 911 1.1 lukem "EQUALITY caseIgnoreMatch " 912 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 913 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )", 914 1.1 lukem NULL, SLAP_AT_ABSTRACT, 915 1.1 lukem NULL, NULL, 916 1.1 lukem NULL, NULL, NULL, NULL, NULL, 917 1.1 lukem offsetof(struct slap_internal_schema, si_ad_name) }, 918 1.1 lukem { "cn", "( 2.5.4.3 NAME ( 'cn' 'commonName' ) " 919 1.1 lukem "DESC 'RFC4519: common name(s) for which the entity is known by' " 920 1.1 lukem "SUP name )", 921 1.1 lukem NULL, 0, 922 1.1 lukem NULL, NULL, 923 1.1 lukem NULL, NULL, NULL, NULL, NULL, 924 1.1 lukem offsetof(struct slap_internal_schema, si_ad_cn) }, 925 1.1 lukem { "uid", "( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) " 926 1.1 lukem "DESC 'RFC4519: user identifier' " 927 1.1 lukem "EQUALITY caseIgnoreMatch " 928 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 929 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", 930 1.1 lukem NULL, 0, 931 1.1 lukem NULL, NULL, 932 1.1 lukem NULL, NULL, NULL, NULL, NULL, 933 1.1 lukem offsetof(struct slap_internal_schema, si_ad_uid) }, 934 1.1 lukem { "uidNumber", /* for ldapi:// */ 935 1.1 lukem "( 1.3.6.1.1.1.1.0 NAME 'uidNumber' " 936 1.1 lukem "DESC 'RFC2307: An integer uniquely identifying a user " 937 1.1 lukem "in an administrative domain' " 938 1.1 lukem "EQUALITY integerMatch " 939 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", 940 1.1 lukem NULL, 0, 941 1.1 lukem NULL, NULL, 942 1.1 lukem NULL, NULL, NULL, NULL, NULL, 943 1.1 lukem offsetof(struct slap_internal_schema, si_ad_uidNumber) }, 944 1.1 lukem { "gidNumber", /* for ldapi:// */ 945 1.1 lukem "( 1.3.6.1.1.1.1.1 NAME 'gidNumber' " 946 1.1 lukem "DESC 'RFC2307: An integer uniquely identifying a group " 947 1.1 lukem "in an administrative domain' " 948 1.1 lukem "EQUALITY integerMatch " 949 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", 950 1.1 lukem NULL, 0, 951 1.1 lukem NULL, NULL, 952 1.1 lukem NULL, NULL, NULL, NULL, NULL, 953 1.1 lukem offsetof(struct slap_internal_schema, si_ad_gidNumber) }, 954 1.1 lukem { "userPassword", "( 2.5.4.35 NAME 'userPassword' " 955 1.1 lukem "DESC 'RFC4519/2307: password of user' " 956 1.1 lukem "EQUALITY octetStringMatch " 957 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )", 958 1.1 lukem NULL, 0, 959 1.1 lukem NULL, NULL, 960 1.1 lukem NULL, NULL, NULL, NULL, NULL, 961 1.1 lukem offsetof(struct slap_internal_schema, si_ad_userPassword) }, 962 1.1 lukem 963 1.1 lukem { "labeledURI", "( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' " 964 1.1 lukem "DESC 'RFC2079: Uniform Resource Identifier with optional label' " 965 1.1 lukem "EQUALITY caseExactMatch " 966 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", 967 1.1 lukem NULL, 0, 968 1.1 lukem NULL, NULL, 969 1.1 lukem NULL, NULL, NULL, NULL, NULL, 970 1.1 lukem offsetof(struct slap_internal_schema, si_ad_labeledURI) }, 971 1.1 lukem 972 1.1 lukem #ifdef SLAPD_AUTHPASSWD 973 1.1 lukem { "authPassword", "( 1.3.6.1.4.1.4203.1.3.4 " 974 1.1 lukem "NAME 'authPassword' " 975 1.1 lukem "DESC 'RFC3112: authentication password attribute' " 976 1.1 lukem "EQUALITY 1.3.6.1.4.1.4203.1.2.2 " 977 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.2 )", 978 1.1 lukem NULL, 0, 979 1.1 lukem NULL, NULL, 980 1.1 lukem NULL, NULL, NULL, NULL, NULL, 981 1.1 lukem offsetof(struct slap_internal_schema, si_ad_authPassword) }, 982 1.1 lukem { "supportedAuthPasswordSchemes", "( 1.3.6.1.4.1.4203.1.3.3 " 983 1.1 lukem "NAME 'supportedAuthPasswordSchemes' " 984 1.1 lukem "DESC 'RFC3112: supported authPassword schemes' " 985 1.1 lukem "EQUALITY caseExactIA5Match " 986 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} " 987 1.1 lukem "USAGE dSAOperation )", 988 1.1 lukem subschemaAttribute, 0, 989 1.1 lukem NULL, NULL, 990 1.1 lukem NULL, NULL, NULL, NULL, NULL, 991 1.1 lukem offsetof(struct slap_internal_schema, si_ad_authPasswordSchemes) }, 992 1.1 lukem #endif 993 1.1 lukem 994 1.1 lukem { "description", "( 2.5.4.13 NAME 'description' " 995 1.1 lukem "DESC 'RFC4519: descriptive information' " 996 1.1 lukem "EQUALITY caseIgnoreMatch " 997 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 998 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )", 999 1.1 lukem NULL, 0, 1000 1.1 lukem NULL, NULL, 1001 1.1 lukem NULL, NULL, NULL, NULL, NULL, 1002 1.1 lukem offsetof(struct slap_internal_schema, si_ad_description) }, 1003 1.1 lukem 1004 1.1 lukem { "seeAlso", "( 2.5.4.34 NAME 'seeAlso' " 1005 1.1 lukem "DESC 'RFC4519: DN of related object' " 1006 1.1 lukem "SUP distinguishedName )", 1007 1.1 lukem NULL, 0, 1008 1.1 lukem NULL, NULL, 1009 1.1 lukem NULL, NULL, NULL, NULL, NULL, 1010 1.1 lukem offsetof(struct slap_internal_schema, si_ad_seeAlso) }, 1011 1.1 lukem 1012 1.1 lukem { NULL, NULL, NULL, 0, NULL, NULL, NULL, NULL, NULL, NULL, NULL, 0 } 1013 1.1 lukem }; 1014 1.1 lukem 1015 1.1 lukem static AttributeType slap_at_undefined = { 1016 1.1 lukem { "1.1.1", NULL, "Catchall for undefined attribute types", 1, NULL, 1017 1.1 lukem NULL, NULL, NULL, NULL, 1018 1.1 lukem 0, 0, 0, 1, LDAP_SCHEMA_DSA_OPERATION, NULL }, /* LDAPAttributeType */ 1019 1.1 lukem BER_BVC("UNDEFINED"), /* cname */ 1020 1.1 lukem NULL, /* sup */ 1021 1.1 lukem NULL, /* subtypes */ 1022 1.1 lukem NULL, NULL, NULL, NULL, /* matching rules routines */ 1023 1.1 lukem NULL, /* syntax (will be set later to "octetString") */ 1024 1.1 lukem NULL, /* schema check function */ 1025 1.1 lukem NULL, /* oidmacro */ 1026 1.1.1.2 lukem NULL, /* soidmacro */ 1027 1.1 lukem SLAP_AT_ABSTRACT|SLAP_AT_FINAL, /* mask */ 1028 1.1 lukem { NULL }, /* next */ 1029 1.1 lukem NULL /* attribute description */ 1030 1.1 lukem /* mutex (don't know how to initialize it :) */ 1031 1.1 lukem }; 1032 1.1 lukem 1033 1.1 lukem static AttributeType slap_at_proxied = { 1034 1.1 lukem { "1.1.1", NULL, "Catchall for undefined proxied attribute types", 1, NULL, 1035 1.1 lukem NULL, NULL, NULL, NULL, 1036 1.1 lukem 0, 0, 0, 0, LDAP_SCHEMA_USER_APPLICATIONS, NULL }, /* LDAPAttributeType */ 1037 1.1 lukem BER_BVC("PROXIED"), /* cname */ 1038 1.1 lukem NULL, /* sup */ 1039 1.1 lukem NULL, /* subtypes */ 1040 1.1 lukem NULL, NULL, NULL, NULL, /* matching rules routines (will be set later) */ 1041 1.1 lukem NULL, /* syntax (will be set later to "octetString") */ 1042 1.1 lukem NULL, /* schema check function */ 1043 1.1 lukem NULL, /* oidmacro */ 1044 1.1.1.2 lukem NULL, /* soidmacro */ 1045 1.1 lukem SLAP_AT_ABSTRACT|SLAP_AT_FINAL, /* mask */ 1046 1.1 lukem { NULL }, /* next */ 1047 1.1 lukem NULL /* attribute description */ 1048 1.1 lukem /* mutex (don't know how to initialize it :) */ 1049 1.1 lukem }; 1050 1.1 lukem 1051 1.1 lukem static struct slap_schema_mr_map { 1052 1.1 lukem char *ssmm_name; 1053 1.1 lukem size_t ssmm_offset; 1054 1.1 lukem } mr_map[] = { 1055 1.1 lukem { "caseExactIA5Match", 1056 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactIA5Match) }, 1057 1.1 lukem { "caseExactMatch", 1058 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactMatch) }, 1059 1.1 lukem { "caseExactSubstringsMatch", 1060 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactSubstringsMatch) }, 1061 1.1 lukem { "distinguishedNameMatch", 1062 1.1 lukem offsetof(struct slap_internal_schema, si_mr_distinguishedNameMatch) }, 1063 1.1 lukem { "dnSubtreeMatch", 1064 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSubtreeMatch) }, 1065 1.1 lukem { "dnOneLevelMatch", 1066 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnOneLevelMatch) }, 1067 1.1 lukem { "dnSubordinateMatch", 1068 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSubordinateMatch) }, 1069 1.1 lukem { "dnSuperiorMatch", 1070 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSuperiorMatch) }, 1071 1.1 lukem { "integerMatch", 1072 1.1 lukem offsetof(struct slap_internal_schema, si_mr_integerMatch) }, 1073 1.1 lukem { "integerFirstComponentMatch", 1074 1.1 lukem offsetof(struct slap_internal_schema, 1075 1.1 lukem si_mr_integerFirstComponentMatch) }, 1076 1.1 lukem { "objectIdentifierFirstComponentMatch", 1077 1.1 lukem offsetof(struct slap_internal_schema, 1078 1.1 lukem si_mr_objectIdentifierFirstComponentMatch) }, 1079 1.1.1.3 lukem { "caseIgnoreMatch", 1080 1.1.1.3 lukem offsetof(struct slap_internal_schema, si_mr_caseIgnoreMatch) }, 1081 1.1.1.3 lukem { "caseIgnoreListMatch", 1082 1.1.1.3 lukem offsetof(struct slap_internal_schema, si_mr_caseIgnoreListMatch) }, 1083 1.1 lukem { NULL, 0 } 1084 1.1 lukem }; 1085 1.1 lukem 1086 1.1 lukem static struct slap_schema_syn_map { 1087 1.1 lukem char *sssm_name; 1088 1.1 lukem size_t sssm_offset; 1089 1.1 lukem } syn_map[] = { 1090 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.15", 1091 1.1 lukem offsetof(struct slap_internal_schema, si_syn_directoryString) }, 1092 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.12", 1093 1.1 lukem offsetof(struct slap_internal_schema, si_syn_distinguishedName) }, 1094 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.27", 1095 1.1 lukem offsetof(struct slap_internal_schema, si_syn_integer) }, 1096 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.40", 1097 1.1 lukem offsetof(struct slap_internal_schema, si_syn_octetString) }, 1098 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.3", 1099 1.1 lukem offsetof(struct slap_internal_schema, si_syn_attributeTypeDesc) }, 1100 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.16", 1101 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ditContentRuleDesc) }, 1102 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.54", 1103 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ldapSyntaxDesc) }, 1104 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.30", 1105 1.1 lukem offsetof(struct slap_internal_schema, si_syn_matchingRuleDesc) }, 1106 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.31", 1107 1.1 lukem offsetof(struct slap_internal_schema, si_syn_matchingRuleUseDesc) }, 1108 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.35", 1109 1.1 lukem offsetof(struct slap_internal_schema, si_syn_nameFormDesc) }, 1110 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.37", 1111 1.1 lukem offsetof(struct slap_internal_schema, si_syn_objectClassDesc) }, 1112 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.17", 1113 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ditStructureRuleDesc) }, 1114 1.1 lukem { NULL, 0 } 1115 1.1 lukem }; 1116 1.1 lukem 1117 1.1 lukem int 1118 1.1 lukem slap_schema_load( void ) 1119 1.1 lukem { 1120 1.1 lukem int i; 1121 1.1 lukem 1122 1.1 lukem for( i=0; syn_map[i].sssm_name; i++ ) { 1123 1.1 lukem Syntax ** synp = (Syntax **) 1124 1.1 lukem &(((char *) &slap_schema)[syn_map[i].sssm_offset]); 1125 1.1 lukem 1126 1.1 lukem assert( *synp == NULL ); 1127 1.1 lukem 1128 1.1 lukem *synp = syn_find( syn_map[i].sssm_name ); 1129 1.1 lukem 1130 1.1 lukem if( *synp == NULL ) { 1131 1.1 lukem fprintf( stderr, "slap_schema_load: Syntax: " 1132 1.1 lukem "No syntax \"%s\" defined in schema\n", 1133 1.1 lukem syn_map[i].sssm_name ); 1134 1.1 lukem return LDAP_INVALID_SYNTAX; 1135 1.1 lukem } 1136 1.1 lukem } 1137 1.1 lukem 1138 1.1 lukem for( i=0; mr_map[i].ssmm_name; i++ ) { 1139 1.1 lukem MatchingRule ** mrp = (MatchingRule **) 1140 1.1 lukem &(((char *) &slap_schema)[mr_map[i].ssmm_offset]); 1141 1.1 lukem 1142 1.1 lukem assert( *mrp == NULL ); 1143 1.1 lukem 1144 1.1 lukem *mrp = mr_find( mr_map[i].ssmm_name ); 1145 1.1 lukem 1146 1.1 lukem if( *mrp == NULL ) { 1147 1.1 lukem fprintf( stderr, "slap_schema_load: MatchingRule: " 1148 1.1 lukem "No matching rule \"%s\" defined in schema\n", 1149 1.1 lukem mr_map[i].ssmm_name ); 1150 1.1 lukem return LDAP_INAPPROPRIATE_MATCHING; 1151 1.1 lukem } 1152 1.1 lukem } 1153 1.1 lukem 1154 1.1 lukem slap_at_undefined.sat_syntax = slap_schema.si_syn_octetString; 1155 1.1 lukem slap_schema.si_at_undefined = &slap_at_undefined; 1156 1.1 lukem 1157 1.1 lukem slap_at_proxied.sat_equality = mr_find( "octetStringMatch" ); 1158 1.1 lukem slap_at_proxied.sat_approx = mr_find( "octetStringMatch" ); 1159 1.1 lukem slap_at_proxied.sat_ordering = mr_find( "octetStringOrderingMatch" ); 1160 1.1 lukem slap_at_proxied.sat_substr = mr_find( "octetStringSubstringsMatch" ); 1161 1.1 lukem slap_at_proxied.sat_syntax = slap_schema.si_syn_octetString; 1162 1.1 lukem slap_schema.si_at_proxied = &slap_at_proxied; 1163 1.1 lukem 1164 1.1 lukem ldap_pvt_thread_mutex_init( &ad_undef_mutex ); 1165 1.1 lukem ldap_pvt_thread_mutex_init( &oc_undef_mutex ); 1166 1.1 lukem 1167 1.1 lukem for( i=0; ad_map[i].ssam_name; i++ ) { 1168 1.1 lukem assert( ad_map[i].ssam_defn != NULL ); 1169 1.1 lukem { 1170 1.1 lukem LDAPAttributeType *at; 1171 1.1 lukem int code; 1172 1.1 lukem const char *err; 1173 1.1 lukem 1174 1.1 lukem at = ldap_str2attributetype( ad_map[i].ssam_defn, 1175 1.1 lukem &code, &err, LDAP_SCHEMA_ALLOW_ALL ); 1176 1.1 lukem if ( !at ) { 1177 1.1 lukem fprintf( stderr, 1178 1.1 lukem "slap_schema_load: AttributeType \"%s\": %s before %s\n", 1179 1.1 lukem ad_map[i].ssam_name, ldap_scherr2str(code), err ); 1180 1.1 lukem return code; 1181 1.1 lukem } 1182 1.1 lukem 1183 1.1 lukem if ( at->at_oid == NULL ) { 1184 1.1 lukem fprintf( stderr, "slap_schema_load: " 1185 1.1 lukem "AttributeType \"%s\": no OID\n", 1186 1.1 lukem ad_map[i].ssam_name ); 1187 1.1 lukem ldap_attributetype_free( at ); 1188 1.1 lukem return LDAP_OTHER; 1189 1.1 lukem } 1190 1.1 lukem 1191 1.1 lukem code = at_add( at, 0, NULL, NULL, &err ); 1192 1.1 lukem if ( code ) { 1193 1.1 lukem ldap_attributetype_free( at ); 1194 1.1 lukem fprintf( stderr, "slap_schema_load: AttributeType " 1195 1.1 lukem "\"%s\": %s: \"%s\"\n", 1196 1.1 lukem ad_map[i].ssam_name, scherr2str(code), err ); 1197 1.1 lukem return code; 1198 1.1 lukem } 1199 1.1 lukem ldap_memfree( at ); 1200 1.1 lukem } 1201 1.1 lukem { 1202 1.1 lukem int rc; 1203 1.1 lukem const char *text; 1204 1.1 lukem Syntax *syntax = NULL; 1205 1.1 lukem 1206 1.1 lukem AttributeDescription ** adp = (AttributeDescription **) 1207 1.1 lukem &(((char *) &slap_schema)[ad_map[i].ssam_offset]); 1208 1.1 lukem 1209 1.1 lukem assert( *adp == NULL ); 1210 1.1 lukem 1211 1.1 lukem rc = slap_str2ad( ad_map[i].ssam_name, adp, &text ); 1212 1.1 lukem if( rc != LDAP_SUCCESS ) { 1213 1.1 lukem fprintf( stderr, "slap_schema_load: AttributeType \"%s\": " 1214 1.1 lukem "not defined in schema\n", 1215 1.1 lukem ad_map[i].ssam_name ); 1216 1.1 lukem return rc; 1217 1.1 lukem } 1218 1.1 lukem 1219 1.1 lukem if( ad_map[i].ssam_check ) { 1220 1.1 lukem /* install check routine */ 1221 1.1 lukem (*adp)->ad_type->sat_check = ad_map[i].ssam_check; 1222 1.1 lukem } 1223 1.1 lukem /* install flags */ 1224 1.1 lukem (*adp)->ad_type->sat_flags |= ad_map[i].ssam_flags; 1225 1.1 lukem 1226 1.1 lukem /* install custom syntax routines */ 1227 1.1 lukem if( ad_map[i].ssam_syn_validate || 1228 1.1 lukem ad_map[i].ssam_syn_pretty ) 1229 1.1 lukem { 1230 1.1 lukem Syntax *syn; 1231 1.1 lukem 1232 1.1 lukem syntax = (*adp)->ad_type->sat_syntax; 1233 1.1 lukem 1234 1.1 lukem syn = ch_malloc( sizeof( Syntax ) ); 1235 1.1 lukem *syn = *syntax; 1236 1.1 lukem 1237 1.1 lukem if( ad_map[i].ssam_syn_validate ) { 1238 1.1 lukem syn->ssyn_validate = ad_map[i].ssam_syn_validate; 1239 1.1 lukem } 1240 1.1 lukem if( ad_map[i].ssam_syn_pretty ) { 1241 1.1 lukem syn->ssyn_pretty = ad_map[i].ssam_syn_pretty; 1242 1.1 lukem } 1243 1.1 lukem 1244 1.1 lukem (*adp)->ad_type->sat_syntax = syn; 1245 1.1 lukem } 1246 1.1 lukem 1247 1.1 lukem /* install custom rule routines */ 1248 1.1 lukem if( syntax != NULL || 1249 1.1 lukem ad_map[i].ssam_mr_convert || 1250 1.1 lukem ad_map[i].ssam_mr_normalize || 1251 1.1 lukem ad_map[i].ssam_mr_match || 1252 1.1 lukem ad_map[i].ssam_mr_indexer || 1253 1.1 lukem ad_map[i].ssam_mr_filter ) 1254 1.1 lukem { 1255 1.1 lukem MatchingRule *mr = ch_malloc( sizeof( MatchingRule ) ); 1256 1.1 lukem *mr = *(*adp)->ad_type->sat_equality; 1257 1.1 lukem 1258 1.1 lukem if ( syntax != NULL ) { 1259 1.1 lukem mr->smr_syntax = (*adp)->ad_type->sat_syntax; 1260 1.1 lukem } 1261 1.1 lukem if ( ad_map[i].ssam_mr_convert ) { 1262 1.1 lukem mr->smr_convert = ad_map[i].ssam_mr_convert; 1263 1.1 lukem } 1264 1.1 lukem if ( ad_map[i].ssam_mr_normalize ) { 1265 1.1 lukem mr->smr_normalize = ad_map[i].ssam_mr_normalize; 1266 1.1 lukem } 1267 1.1 lukem if ( ad_map[i].ssam_mr_match ) { 1268 1.1 lukem mr->smr_match = ad_map[i].ssam_mr_match; 1269 1.1 lukem } 1270 1.1 lukem if ( ad_map[i].ssam_mr_indexer ) { 1271 1.1 lukem mr->smr_indexer = ad_map[i].ssam_mr_indexer; 1272 1.1 lukem } 1273 1.1 lukem if ( ad_map[i].ssam_mr_filter ) { 1274 1.1 lukem mr->smr_filter = ad_map[i].ssam_mr_filter; 1275 1.1 lukem } 1276 1.1 lukem 1277 1.1 lukem (*adp)->ad_type->sat_equality = mr; 1278 1.1 lukem } 1279 1.1 lukem } 1280 1.1 lukem } 1281 1.1 lukem 1282 1.1 lukem for( i=0; oc_map[i].ssom_name; i++ ) { 1283 1.1 lukem assert( oc_map[i].ssom_defn != NULL ); 1284 1.1 lukem { 1285 1.1 lukem LDAPObjectClass *oc; 1286 1.1 lukem int code; 1287 1.1 lukem const char *err; 1288 1.1 lukem 1289 1.1 lukem oc = ldap_str2objectclass( oc_map[i].ssom_defn, &code, &err, 1290 1.1 lukem LDAP_SCHEMA_ALLOW_ALL ); 1291 1.1 lukem if ( !oc ) { 1292 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1293 1.1 lukem "\"%s\": %s before %s\n", 1294 1.1 lukem oc_map[i].ssom_name, ldap_scherr2str(code), err ); 1295 1.1 lukem return code; 1296 1.1 lukem } 1297 1.1 lukem 1298 1.1 lukem if ( oc->oc_oid == NULL ) { 1299 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1300 1.1 lukem "\"%s\": no OID\n", 1301 1.1 lukem oc_map[i].ssom_name ); 1302 1.1 lukem ldap_objectclass_free( oc ); 1303 1.1 lukem return LDAP_OTHER; 1304 1.1 lukem } 1305 1.1 lukem 1306 1.1 lukem code = oc_add(oc,0,NULL,NULL,&err); 1307 1.1 lukem if ( code ) { 1308 1.1 lukem ldap_objectclass_free( oc ); 1309 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1310 1.1 lukem "\"%s\": %s: \"%s\"\n", 1311 1.1 lukem oc_map[i].ssom_name, scherr2str(code), err); 1312 1.1 lukem return code; 1313 1.1 lukem } 1314 1.1 lukem ldap_memfree(oc); 1315 1.1 lukem 1316 1.1 lukem } 1317 1.1 lukem { 1318 1.1 lukem ObjectClass ** ocp = (ObjectClass **) 1319 1.1 lukem &(((char *) &slap_schema)[oc_map[i].ssom_offset]); 1320 1.1 lukem 1321 1.1 lukem assert( *ocp == NULL ); 1322 1.1 lukem 1323 1.1 lukem *ocp = oc_find( oc_map[i].ssom_name ); 1324 1.1 lukem if( *ocp == NULL ) { 1325 1.1 lukem fprintf( stderr, "slap_schema_load: " 1326 1.1 lukem "ObjectClass \"%s\": not defined in schema\n", 1327 1.1 lukem oc_map[i].ssom_name ); 1328 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1329 1.1 lukem } 1330 1.1 lukem 1331 1.1 lukem if( oc_map[i].ssom_check ) { 1332 1.1 lukem /* install check routine */ 1333 1.1 lukem (*ocp)->soc_check = oc_map[i].ssom_check; 1334 1.1 lukem } 1335 1.1 lukem /* install flags */ 1336 1.1 lukem (*ocp)->soc_flags |= oc_map[i].ssom_flags; 1337 1.1 lukem } 1338 1.1 lukem } 1339 1.1 lukem 1340 1.1 lukem return LDAP_SUCCESS; 1341 1.1 lukem } 1342 1.1 lukem 1343 1.1 lukem int 1344 1.1 lukem slap_schema_check( void ) 1345 1.1 lukem { 1346 1.1 lukem /* we should only be called once after schema_init() was called */ 1347 1.1 lukem assert( schema_init_done == 1 ); 1348 1.1 lukem 1349 1.1 lukem /* 1350 1.1 lukem * cycle thru attributeTypes to build matchingRuleUse 1351 1.1 lukem */ 1352 1.1 lukem if ( matching_rule_use_init() ) { 1353 1.1 lukem return LDAP_OTHER; 1354 1.1 lukem } 1355 1.1 lukem 1356 1.1 lukem ++schema_init_done; 1357 1.1 lukem return LDAP_SUCCESS; 1358 1.1 lukem } 1359 1.1 lukem 1360 1.1 lukem static int rootDseObjectClass ( 1361 1.1 lukem Backend *be, 1362 1.1 lukem Entry *e, 1363 1.1 lukem ObjectClass *oc, 1364 1.1 lukem const char** text, 1365 1.1 lukem char *textbuf, size_t textlen ) 1366 1.1 lukem { 1367 1.1 lukem *text = textbuf; 1368 1.1 lukem 1369 1.1 lukem if( e->e_nname.bv_len ) { 1370 1.1 lukem snprintf( textbuf, textlen, 1371 1.1 lukem "objectClass \"%s\" only allowed in the root DSE", 1372 1.1 lukem oc->soc_oid ); 1373 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1374 1.1 lukem } 1375 1.1 lukem 1376 1.1 lukem /* we should not be called for the root DSE */ 1377 1.1 lukem assert( 0 ); 1378 1.1 lukem return LDAP_SUCCESS; 1379 1.1 lukem } 1380 1.1 lukem 1381 1.1 lukem static int aliasObjectClass ( 1382 1.1 lukem Backend *be, 1383 1.1 lukem Entry *e, 1384 1.1 lukem ObjectClass *oc, 1385 1.1 lukem const char** text, 1386 1.1 lukem char *textbuf, size_t textlen ) 1387 1.1 lukem { 1388 1.1 lukem *text = textbuf; 1389 1.1 lukem 1390 1.1 lukem if( !SLAP_ALIASES(be) ) { 1391 1.1 lukem snprintf( textbuf, textlen, 1392 1.1 lukem "objectClass \"%s\" not supported in context", 1393 1.1 lukem oc->soc_oid ); 1394 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1395 1.1 lukem } 1396 1.1 lukem 1397 1.1 lukem return LDAP_SUCCESS; 1398 1.1 lukem } 1399 1.1 lukem 1400 1.1 lukem static int referralObjectClass ( 1401 1.1 lukem Backend *be, 1402 1.1 lukem Entry *e, 1403 1.1 lukem ObjectClass *oc, 1404 1.1 lukem const char** text, 1405 1.1 lukem char *textbuf, size_t textlen ) 1406 1.1 lukem { 1407 1.1 lukem *text = textbuf; 1408 1.1 lukem 1409 1.1 lukem if( !SLAP_REFERRALS(be) ) { 1410 1.1 lukem snprintf( textbuf, textlen, 1411 1.1 lukem "objectClass \"%s\" not supported in context", 1412 1.1 lukem oc->soc_oid ); 1413 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1414 1.1 lukem } 1415 1.1 lukem 1416 1.1 lukem return LDAP_SUCCESS; 1417 1.1 lukem } 1418 1.1 lukem 1419 1.1 lukem static int subentryObjectClass ( 1420 1.1 lukem Backend *be, 1421 1.1 lukem Entry *e, 1422 1.1 lukem ObjectClass *oc, 1423 1.1 lukem const char** text, 1424 1.1 lukem char *textbuf, size_t textlen ) 1425 1.1 lukem { 1426 1.1 lukem *text = textbuf; 1427 1.1 lukem 1428 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1429 1.1 lukem snprintf( textbuf, textlen, 1430 1.1 lukem "objectClass \"%s\" not supported in context", 1431 1.1 lukem oc->soc_oid ); 1432 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1433 1.1 lukem } 1434 1.1 lukem 1435 1.1 lukem if( oc != slap_schema.si_oc_subentry && !is_entry_subentry( e ) ) { 1436 1.1 lukem snprintf( textbuf, textlen, 1437 1.1 lukem "objectClass \"%s\" only allowed in subentries", 1438 1.1 lukem oc->soc_oid ); 1439 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1440 1.1 lukem } 1441 1.1 lukem 1442 1.1 lukem return LDAP_SUCCESS; 1443 1.1 lukem } 1444 1.1 lukem 1445 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 1446 1.1 lukem static int dynamicObjectClass ( 1447 1.1 lukem Backend *be, 1448 1.1 lukem Entry *e, 1449 1.1 lukem ObjectClass *oc, 1450 1.1 lukem const char** text, 1451 1.1 lukem char *textbuf, size_t textlen ) 1452 1.1 lukem { 1453 1.1 lukem *text = textbuf; 1454 1.1 lukem 1455 1.1 lukem if( !SLAP_DYNAMIC(be) ) { 1456 1.1 lukem snprintf( textbuf, textlen, 1457 1.1 lukem "objectClass \"%s\" not supported in context", 1458 1.1 lukem oc->soc_oid ); 1459 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1460 1.1 lukem } 1461 1.1 lukem 1462 1.1 lukem return LDAP_SUCCESS; 1463 1.1 lukem } 1464 1.1 lukem #endif /* LDAP_DYNAMIC_OBJECTS */ 1465 1.1 lukem 1466 1.1 lukem static int rootDseAttribute ( 1467 1.1 lukem Backend *be, 1468 1.1 lukem Entry *e, 1469 1.1 lukem Attribute *attr, 1470 1.1 lukem const char** text, 1471 1.1 lukem char *textbuf, size_t textlen ) 1472 1.1 lukem { 1473 1.1 lukem *text = textbuf; 1474 1.1 lukem 1475 1.1 lukem if( e->e_nname.bv_len ) { 1476 1.1 lukem snprintf( textbuf, textlen, 1477 1.1 lukem "attribute \"%s\" only allowed in the root DSE", 1478 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1479 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1480 1.1 lukem } 1481 1.1 lukem 1482 1.1 lukem /* we should not be called for the root DSE */ 1483 1.1 lukem assert( 0 ); 1484 1.1 lukem return LDAP_SUCCESS; 1485 1.1 lukem } 1486 1.1 lukem 1487 1.1 lukem static int aliasAttribute ( 1488 1.1 lukem Backend *be, 1489 1.1 lukem Entry *e, 1490 1.1 lukem Attribute *attr, 1491 1.1 lukem const char** text, 1492 1.1 lukem char *textbuf, size_t textlen ) 1493 1.1 lukem { 1494 1.1 lukem *text = textbuf; 1495 1.1 lukem 1496 1.1 lukem if( !SLAP_ALIASES(be) ) { 1497 1.1 lukem snprintf( textbuf, textlen, 1498 1.1 lukem "attribute \"%s\" not supported in context", 1499 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1500 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1501 1.1 lukem } 1502 1.1 lukem 1503 1.1 lukem if( !is_entry_alias( e ) ) { 1504 1.1 lukem snprintf( textbuf, textlen, 1505 1.1 lukem "attribute \"%s\" only allowed in the alias", 1506 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1507 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1508 1.1 lukem } 1509 1.1 lukem 1510 1.1 lukem return LDAP_SUCCESS; 1511 1.1 lukem } 1512 1.1 lukem 1513 1.1 lukem static int referralAttribute ( 1514 1.1 lukem Backend *be, 1515 1.1 lukem Entry *e, 1516 1.1 lukem Attribute *attr, 1517 1.1 lukem const char** text, 1518 1.1 lukem char *textbuf, size_t textlen ) 1519 1.1 lukem { 1520 1.1 lukem *text = textbuf; 1521 1.1 lukem 1522 1.1 lukem if( !SLAP_REFERRALS(be) ) { 1523 1.1 lukem snprintf( textbuf, textlen, 1524 1.1 lukem "attribute \"%s\" not supported in context", 1525 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1526 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1527 1.1 lukem } 1528 1.1 lukem 1529 1.1 lukem if( !is_entry_referral( e ) ) { 1530 1.1 lukem snprintf( textbuf, textlen, 1531 1.1 lukem "attribute \"%s\" only allowed in the referral", 1532 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1533 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1534 1.1 lukem } 1535 1.1 lukem 1536 1.1 lukem return LDAP_SUCCESS; 1537 1.1 lukem } 1538 1.1 lukem 1539 1.1 lukem static int subentryAttribute ( 1540 1.1 lukem Backend *be, 1541 1.1 lukem Entry *e, 1542 1.1 lukem Attribute *attr, 1543 1.1 lukem const char** text, 1544 1.1 lukem char *textbuf, size_t textlen ) 1545 1.1 lukem { 1546 1.1 lukem *text = textbuf; 1547 1.1 lukem 1548 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1549 1.1 lukem snprintf( textbuf, textlen, 1550 1.1 lukem "attribute \"%s\" not supported in context", 1551 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1552 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1553 1.1 lukem } 1554 1.1 lukem 1555 1.1 lukem if( !is_entry_subentry( e ) ) { 1556 1.1 lukem snprintf( textbuf, textlen, 1557 1.1 lukem "attribute \"%s\" only allowed in the subentry", 1558 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1559 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1560 1.1 lukem } 1561 1.1 lukem 1562 1.1 lukem return LDAP_SUCCESS; 1563 1.1 lukem } 1564 1.1 lukem 1565 1.1 lukem static int administrativeRoleAttribute ( 1566 1.1 lukem Backend *be, 1567 1.1 lukem Entry *e, 1568 1.1 lukem Attribute *attr, 1569 1.1 lukem const char** text, 1570 1.1 lukem char *textbuf, size_t textlen ) 1571 1.1 lukem { 1572 1.1 lukem *text = textbuf; 1573 1.1 lukem 1574 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1575 1.1 lukem snprintf( textbuf, textlen, 1576 1.1 lukem "attribute \"%s\" not supported in context", 1577 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1578 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1579 1.1 lukem } 1580 1.1 lukem 1581 1.1 lukem snprintf( textbuf, textlen, 1582 1.1 lukem "attribute \"%s\" not supported!", 1583 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1584 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1585 1.1 lukem } 1586 1.1 lukem 1587 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 1588 1.1 lukem static int dynamicAttribute ( 1589 1.1 lukem Backend *be, 1590 1.1 lukem Entry *e, 1591 1.1 lukem Attribute *attr, 1592 1.1 lukem const char** text, 1593 1.1 lukem char *textbuf, size_t textlen ) 1594 1.1 lukem { 1595 1.1 lukem *text = textbuf; 1596 1.1 lukem 1597 1.1 lukem if( !SLAP_DYNAMIC(be) ) { 1598 1.1 lukem snprintf( textbuf, textlen, 1599 1.1 lukem "attribute \"%s\" not supported in context", 1600 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1601 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1602 1.1 lukem } 1603 1.1 lukem 1604 1.1 lukem if( !is_entry_dynamicObject( e ) ) { 1605 1.1 lukem snprintf( textbuf, textlen, 1606 1.1 lukem "attribute \"%s\" only allowed in dynamic object", 1607 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1608 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1609 1.1 lukem } 1610 1.1 lukem 1611 1.1 lukem return LDAP_SUCCESS; 1612 1.1 lukem } 1613 1.1 lukem #endif /* LDAP_DYNAMIC_OBJECTS */ 1614
Indexes created Mon Apr 20 00:23:12 UTC 2026