schema_prep.c revision 1.1.1.5
1 1.1.1.3 lukem /* $NetBSD: schema_prep.c,v 1.1.1.5 2014/05/28 09:58:47 tron Exp $ */ 2 1.1.1.3 lukem 3 1.1 lukem /* schema_prep.c - load builtin schema */ 4 1.1.1.5 tron /* $OpenLDAP$ */ 5 1.1 lukem /* This work is part of OpenLDAP Software <http://www.openldap.org/>. 6 1.1 lukem * 7 1.1.1.5 tron * Copyright 1998-2014 The OpenLDAP Foundation. 8 1.1 lukem * All rights reserved. 9 1.1 lukem * 10 1.1 lukem * Redistribution and use in source and binary forms, with or without 11 1.1 lukem * modification, are permitted only as authorized by the OpenLDAP 12 1.1 lukem * Public License. 13 1.1 lukem * 14 1.1 lukem * A copy of this license is available in the file LICENSE in the 15 1.1 lukem * top-level directory of the distribution or, alternatively, at 16 1.1 lukem * <http://www.OpenLDAP.org/license.html>. 17 1.1 lukem */ 18 1.1 lukem 19 1.1 lukem #include "portable.h" 20 1.1 lukem 21 1.1 lukem #include <stdio.h> 22 1.1 lukem 23 1.1 lukem #include <ac/ctype.h> 24 1.1 lukem #include <ac/string.h> 25 1.1 lukem #include <ac/socket.h> 26 1.1 lukem 27 1.1 lukem #include "slap.h" 28 1.1 lukem 29 1.1 lukem #define OCDEBUG 0 30 1.1 lukem 31 1.1 lukem int schema_init_done = 0; 32 1.1 lukem 33 1.1 lukem struct slap_internal_schema slap_schema; 34 1.1 lukem 35 1.1 lukem static int 36 1.1 lukem oidValidate( 37 1.1 lukem Syntax *syntax, 38 1.1 lukem struct berval *in ) 39 1.1 lukem { 40 1.1 lukem struct berval val = *in; 41 1.1 lukem 42 1.1 lukem if( val.bv_len == 0 ) { 43 1.1 lukem /* disallow empty strings */ 44 1.1 lukem return LDAP_INVALID_SYNTAX; 45 1.1 lukem } 46 1.1 lukem 47 1.1 lukem if( DESC_LEADCHAR( val.bv_val[0] ) ) { 48 1.1 lukem val.bv_val++; 49 1.1 lukem val.bv_len--; 50 1.1 lukem if ( val.bv_len == 0 ) return LDAP_SUCCESS; 51 1.1 lukem 52 1.1 lukem while( DESC_CHAR( val.bv_val[0] ) ) { 53 1.1 lukem val.bv_val++; 54 1.1 lukem val.bv_len--; 55 1.1 lukem 56 1.1 lukem if ( val.bv_len == 0 ) return LDAP_SUCCESS; 57 1.1 lukem } 58 1.1 lukem 59 1.1 lukem } else { 60 1.1 lukem int sep = 0; 61 1.1 lukem while( OID_LEADCHAR( val.bv_val[0] ) ) { 62 1.1 lukem val.bv_val++; 63 1.1 lukem val.bv_len--; 64 1.1 lukem 65 1.1 lukem if ( val.bv_val[-1] != '0' ) { 66 1.1 lukem while ( OID_LEADCHAR( val.bv_val[0] )) { 67 1.1 lukem val.bv_val++; 68 1.1 lukem val.bv_len--; 69 1.1 lukem } 70 1.1 lukem } 71 1.1 lukem 72 1.1 lukem if( val.bv_len == 0 ) { 73 1.1 lukem if( sep == 0 ) break; 74 1.1 lukem return LDAP_SUCCESS; 75 1.1 lukem } 76 1.1 lukem 77 1.1 lukem if( !OID_SEPARATOR( val.bv_val[0] )) break; 78 1.1 lukem 79 1.1 lukem sep++; 80 1.1 lukem val.bv_val++; 81 1.1 lukem val.bv_len--; 82 1.1 lukem } 83 1.1 lukem } 84 1.1 lukem 85 1.1 lukem return LDAP_INVALID_SYNTAX; 86 1.1 lukem } 87 1.1 lukem 88 1.1 lukem 89 1.1 lukem static int objectClassPretty( 90 1.1 lukem Syntax *syntax, 91 1.1 lukem struct berval *in, 92 1.1 lukem struct berval *out, 93 1.1 lukem void *ctx ) 94 1.1 lukem { 95 1.1 lukem ObjectClass *oc; 96 1.1 lukem 97 1.1 lukem if( oidValidate( NULL, in )) return LDAP_INVALID_SYNTAX; 98 1.1 lukem 99 1.1 lukem oc = oc_bvfind( in ); 100 1.1 lukem if( oc == NULL ) return LDAP_INVALID_SYNTAX; 101 1.1 lukem 102 1.1 lukem ber_dupbv_x( out, &oc->soc_cname, ctx ); 103 1.1 lukem return LDAP_SUCCESS; 104 1.1 lukem } 105 1.1 lukem 106 1.1 lukem static int 107 1.1 lukem attributeTypeMatch( 108 1.1 lukem int *matchp, 109 1.1 lukem slap_mask_t flags, 110 1.1 lukem Syntax *syntax, 111 1.1 lukem MatchingRule *mr, 112 1.1 lukem struct berval *value, 113 1.1 lukem void *assertedValue ) 114 1.1 lukem { 115 1.1 lukem struct berval *a = (struct berval *) assertedValue; 116 1.1 lukem AttributeType *at = at_bvfind( value ); 117 1.1 lukem AttributeType *asserted = at_bvfind( a ); 118 1.1 lukem 119 1.1 lukem if( asserted == NULL ) { 120 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 121 1.1 lukem /* OID form, return FALSE */ 122 1.1 lukem *matchp = 1; 123 1.1 lukem return LDAP_SUCCESS; 124 1.1 lukem } 125 1.1 lukem 126 1.1 lukem /* desc form, return undefined */ 127 1.1 lukem return LDAP_INVALID_SYNTAX; 128 1.1 lukem } 129 1.1 lukem 130 1.1 lukem if ( at == NULL ) { 131 1.1 lukem /* unrecognized stored value */ 132 1.1 lukem return LDAP_INVALID_SYNTAX; 133 1.1 lukem } 134 1.1 lukem 135 1.1 lukem *matchp = ( asserted != at ); 136 1.1 lukem return LDAP_SUCCESS; 137 1.1 lukem } 138 1.1 lukem 139 1.1 lukem static int 140 1.1 lukem matchingRuleMatch( 141 1.1 lukem int *matchp, 142 1.1 lukem slap_mask_t flags, 143 1.1 lukem Syntax *syntax, 144 1.1 lukem MatchingRule *mr, 145 1.1 lukem struct berval *value, 146 1.1 lukem void *assertedValue ) 147 1.1 lukem { 148 1.1 lukem struct berval *a = (struct berval *) assertedValue; 149 1.1 lukem MatchingRule *mrv = mr_bvfind( value ); 150 1.1 lukem MatchingRule *asserted = mr_bvfind( a ); 151 1.1 lukem 152 1.1 lukem if( asserted == NULL ) { 153 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 154 1.1 lukem /* OID form, return FALSE */ 155 1.1 lukem *matchp = 1; 156 1.1 lukem return LDAP_SUCCESS; 157 1.1 lukem } 158 1.1 lukem 159 1.1 lukem /* desc form, return undefined */ 160 1.1 lukem return LDAP_INVALID_SYNTAX; 161 1.1 lukem } 162 1.1 lukem 163 1.1 lukem if ( mrv == NULL ) { 164 1.1 lukem /* unrecognized stored value */ 165 1.1 lukem return LDAP_INVALID_SYNTAX; 166 1.1 lukem } 167 1.1 lukem 168 1.1 lukem *matchp = ( asserted != mrv ); 169 1.1 lukem return LDAP_SUCCESS; 170 1.1 lukem } 171 1.1 lukem 172 1.1 lukem static int 173 1.1 lukem objectClassMatch( 174 1.1 lukem int *matchp, 175 1.1 lukem slap_mask_t flags, 176 1.1 lukem Syntax *syntax, 177 1.1 lukem MatchingRule *mr, 178 1.1 lukem struct berval *value, 179 1.1 lukem void *assertedValue ) 180 1.1 lukem { 181 1.1 lukem struct berval *a = (struct berval *) assertedValue; 182 1.1 lukem ObjectClass *oc = oc_bvfind( value ); 183 1.1 lukem ObjectClass *asserted = oc_bvfind( a ); 184 1.1 lukem 185 1.1 lukem if( asserted == NULL ) { 186 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 187 1.1 lukem /* OID form, return FALSE */ 188 1.1 lukem *matchp = 1; 189 1.1 lukem return LDAP_SUCCESS; 190 1.1 lukem } 191 1.1 lukem 192 1.1 lukem /* desc form, return undefined */ 193 1.1 lukem return LDAP_INVALID_SYNTAX; 194 1.1 lukem } 195 1.1 lukem 196 1.1 lukem if ( oc == NULL ) { 197 1.1 lukem /* unrecognized stored value */ 198 1.1 lukem return LDAP_INVALID_SYNTAX; 199 1.1 lukem } 200 1.1 lukem 201 1.1 lukem *matchp = ( asserted != oc ); 202 1.1 lukem return LDAP_SUCCESS; 203 1.1 lukem } 204 1.1 lukem 205 1.1 lukem static int 206 1.1 lukem objectSubClassMatch( 207 1.1 lukem int *matchp, 208 1.1 lukem slap_mask_t flags, 209 1.1 lukem Syntax *syntax, 210 1.1 lukem MatchingRule *mr, 211 1.1 lukem struct berval *value, 212 1.1 lukem void *assertedValue ) 213 1.1 lukem { 214 1.1 lukem struct berval *a = (struct berval *) assertedValue; 215 1.1 lukem ObjectClass *oc = oc_bvfind( value ); 216 1.1 lukem ObjectClass *asserted = oc_bvfind( a ); 217 1.1 lukem 218 1.1 lukem if( asserted == NULL ) { 219 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 220 1.1 lukem /* OID form, return FALSE */ 221 1.1 lukem *matchp = 1; 222 1.1 lukem return LDAP_SUCCESS; 223 1.1 lukem } 224 1.1 lukem 225 1.1 lukem /* desc form, return undefined */ 226 1.1 lukem return LDAP_INVALID_SYNTAX; 227 1.1 lukem } 228 1.1 lukem 229 1.1 lukem if ( oc == NULL ) { 230 1.1 lukem /* unrecognized stored value */ 231 1.1 lukem return LDAP_INVALID_SYNTAX; 232 1.1 lukem } 233 1.1 lukem 234 1.1 lukem if( SLAP_MR_IS_VALUE_OF_ATTRIBUTE_SYNTAX( flags ) ) { 235 1.1 lukem *matchp = ( asserted != oc ); 236 1.1 lukem } else { 237 1.1 lukem *matchp = !is_object_subclass( asserted, oc ); 238 1.1 lukem } 239 1.1 lukem 240 1.1 lukem return LDAP_SUCCESS; 241 1.1 lukem } 242 1.1 lukem 243 1.1 lukem static int objectSubClassIndexer( 244 1.1 lukem slap_mask_t use, 245 1.1 lukem slap_mask_t mask, 246 1.1 lukem Syntax *syntax, 247 1.1 lukem MatchingRule *mr, 248 1.1 lukem struct berval *prefix, 249 1.1 lukem BerVarray values, 250 1.1 lukem BerVarray *keysp, 251 1.1 lukem void *ctx ) 252 1.1 lukem { 253 1.1 lukem int rc, noc, i; 254 1.1 lukem BerVarray ocvalues; 255 1.1 lukem ObjectClass **socs; 256 1.1 lukem 257 1.1 lukem for( noc=0; values[noc].bv_val != NULL; noc++ ) { 258 1.1 lukem /* just count em */; 259 1.1 lukem } 260 1.1 lukem 261 1.1 lukem /* over allocate */ 262 1.1 lukem socs = slap_sl_malloc( (noc+16) * sizeof( ObjectClass * ), ctx ); 263 1.1 lukem 264 1.1 lukem /* initialize */ 265 1.1 lukem for( i=0; i<noc; i++ ) { 266 1.1 lukem socs[i] = oc_bvfind( &values[i] ); 267 1.1 lukem } 268 1.1 lukem 269 1.1 lukem /* expand values */ 270 1.1 lukem for( i=0; i<noc; i++ ) { 271 1.1 lukem int j; 272 1.1 lukem ObjectClass *oc = socs[i]; 273 1.1 lukem if( oc == NULL || oc->soc_sups == NULL ) continue; 274 1.1 lukem 275 1.1 lukem for( j=0; oc->soc_sups[j] != NULL; j++ ) { 276 1.1 lukem int found = 0; 277 1.1 lukem ObjectClass *sup = oc->soc_sups[j]; 278 1.1 lukem int k; 279 1.1 lukem 280 1.1 lukem for( k=0; k<noc; k++ ) { 281 1.1 lukem if( sup == socs[k] ) { 282 1.1 lukem found++; 283 1.1 lukem break; 284 1.1 lukem } 285 1.1 lukem } 286 1.1 lukem 287 1.1 lukem if( !found ) { 288 1.1 lukem socs = slap_sl_realloc( socs, 289 1.1 lukem sizeof( ObjectClass * ) * (noc+2), ctx ); 290 1.1 lukem 291 1.1 lukem assert( k == noc ); 292 1.1 lukem socs[noc++] = sup; 293 1.1 lukem } 294 1.1 lukem } 295 1.1 lukem } 296 1.1 lukem 297 1.1 lukem ocvalues = slap_sl_malloc( sizeof( struct berval ) * (noc+1), ctx ); 298 1.1 lukem /* copy values */ 299 1.1 lukem for( i=0; i<noc; i++ ) { 300 1.1 lukem if ( socs[i] ) 301 1.1 lukem ocvalues[i] = socs[i]->soc_cname; 302 1.1 lukem else 303 1.1 lukem ocvalues[i] = values[i]; 304 1.1 lukem } 305 1.1 lukem BER_BVZERO( &ocvalues[i] ); 306 1.1 lukem 307 1.1 lukem rc = octetStringIndexer( use, mask, syntax, mr, 308 1.1 lukem prefix, ocvalues, keysp, ctx ); 309 1.1 lukem 310 1.1 lukem slap_sl_free( ocvalues, ctx ); 311 1.1 lukem slap_sl_free( socs, ctx ); 312 1.1 lukem return rc; 313 1.1 lukem } 314 1.1 lukem 315 1.1 lukem #define objectSubClassFilter octetStringFilter 316 1.1 lukem 317 1.1 lukem static ObjectClassSchemaCheckFN rootDseObjectClass; 318 1.1 lukem static ObjectClassSchemaCheckFN aliasObjectClass; 319 1.1 lukem static ObjectClassSchemaCheckFN referralObjectClass; 320 1.1 lukem static ObjectClassSchemaCheckFN subentryObjectClass; 321 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 322 1.1 lukem static ObjectClassSchemaCheckFN dynamicObjectClass; 323 1.1 lukem #endif 324 1.1 lukem 325 1.1 lukem static struct slap_schema_oc_map { 326 1.1 lukem char *ssom_name; 327 1.1 lukem char *ssom_defn; 328 1.1 lukem ObjectClassSchemaCheckFN *ssom_check; 329 1.1 lukem slap_mask_t ssom_flags; 330 1.1 lukem size_t ssom_offset; 331 1.1 lukem } oc_map[] = { 332 1.1 lukem { "top", "( 2.5.6.0 NAME 'top' " 333 1.1 lukem "DESC 'top of the superclass chain' " 334 1.1 lukem "ABSTRACT MUST objectClass )", 335 1.1 lukem 0, 0, offsetof(struct slap_internal_schema, si_oc_top) }, 336 1.1 lukem { "extensibleObject", "( 1.3.6.1.4.1.1466.101.120.111 " 337 1.1 lukem "NAME 'extensibleObject' " 338 1.1 lukem "DESC 'RFC4512: extensible object' " 339 1.1 lukem "SUP top AUXILIARY )", 340 1.1 lukem 0, SLAP_OC_OPERATIONAL, 341 1.1 lukem offsetof(struct slap_internal_schema, si_oc_extensibleObject) }, 342 1.1 lukem { "alias", "( 2.5.6.1 NAME 'alias' " 343 1.1 lukem "DESC 'RFC4512: an alias' " 344 1.1 lukem "SUP top STRUCTURAL " 345 1.1 lukem "MUST aliasedObjectName )", 346 1.1 lukem aliasObjectClass, SLAP_OC_ALIAS|SLAP_OC_OPERATIONAL, 347 1.1 lukem offsetof(struct slap_internal_schema, si_oc_alias) }, 348 1.1 lukem { "referral", "( 2.16.840.1.113730.3.2.6 NAME 'referral' " 349 1.1 lukem "DESC 'namedref: named subordinate referral' " 350 1.1 lukem "SUP top STRUCTURAL MUST ref )", 351 1.1 lukem referralObjectClass, SLAP_OC_REFERRAL|SLAP_OC_OPERATIONAL, 352 1.1 lukem offsetof(struct slap_internal_schema, si_oc_referral) }, 353 1.1 lukem { "LDAProotDSE", "( 1.3.6.1.4.1.4203.1.4.1 " 354 1.1 lukem "NAME ( 'OpenLDAProotDSE' 'LDAProotDSE' ) " 355 1.1 lukem "DESC 'OpenLDAP Root DSE object' " 356 1.1 lukem "SUP top STRUCTURAL MAY cn )", 357 1.1 lukem rootDseObjectClass, SLAP_OC_OPERATIONAL, 358 1.1 lukem offsetof(struct slap_internal_schema, si_oc_rootdse) }, 359 1.1 lukem { "subentry", "( 2.5.17.0 NAME 'subentry' " 360 1.1 lukem "DESC 'RFC3672: subentry' " 361 1.1 lukem "SUP top STRUCTURAL " 362 1.1 lukem "MUST ( cn $ subtreeSpecification ) )", 363 1.1 lukem subentryObjectClass, SLAP_OC_SUBENTRY|SLAP_OC_OPERATIONAL, 364 1.1 lukem offsetof(struct slap_internal_schema, si_oc_subentry) }, 365 1.1 lukem { "subschema", "( 2.5.20.1 NAME 'subschema' " 366 1.1 lukem "DESC 'RFC4512: controlling subschema (sub)entry' " 367 1.1 lukem "AUXILIARY " 368 1.1 lukem "MAY ( dITStructureRules $ nameForms $ dITContentRules $ " 369 1.1 lukem "objectClasses $ attributeTypes $ matchingRules $ " 370 1.1 lukem "matchingRuleUse ) )", 371 1.1 lukem subentryObjectClass, SLAP_OC_OPERATIONAL, 372 1.1 lukem offsetof(struct slap_internal_schema, si_oc_subschema) }, 373 1.1 lukem #ifdef LDAP_COLLECTIVE_ATTRIBUTES 374 1.1 lukem { "collectiveAttributeSubentry", "( 2.5.17.2 " 375 1.1 lukem "NAME 'collectiveAttributeSubentry' " 376 1.1 lukem "DESC 'RFC3671: collective attribute subentry' " 377 1.1 lukem "AUXILIARY )", 378 1.1 lukem subentryObjectClass, 379 1.1 lukem SLAP_OC_COLLECTIVEATTRIBUTESUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 380 1.1 lukem offsetof( struct slap_internal_schema, 381 1.1 lukem si_oc_collectiveAttributeSubentry) }, 382 1.1 lukem #endif 383 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 384 1.1 lukem { "dynamicObject", "( 1.3.6.1.4.1.1466.101.119.2 " 385 1.1 lukem "NAME 'dynamicObject' " 386 1.1 lukem "DESC 'RFC2589: Dynamic Object' " 387 1.1 lukem "SUP top AUXILIARY )", 388 1.1 lukem dynamicObjectClass, SLAP_OC_DYNAMICOBJECT, 389 1.1 lukem offsetof(struct slap_internal_schema, si_oc_dynamicObject) }, 390 1.1 lukem #endif 391 1.1 lukem { "glue", "( 1.3.6.1.4.1.4203.666.3.4 " 392 1.1 lukem "NAME 'glue' " 393 1.1 lukem "DESC 'Glue Entry' " 394 1.1 lukem "SUP top STRUCTURAL )", 395 1.1 lukem 0, SLAP_OC_GLUE|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 396 1.1 lukem offsetof(struct slap_internal_schema, si_oc_glue) }, 397 1.1 lukem { "syncConsumerSubentry", "( 1.3.6.1.4.1.4203.666.3.5 " 398 1.1 lukem "NAME 'syncConsumerSubentry' " 399 1.1 lukem "DESC 'Persistent Info for SyncRepl Consumer' " 400 1.1 lukem "AUXILIARY " 401 1.1 lukem "MAY syncreplCookie )", 402 1.1 lukem 0, SLAP_OC_SYNCCONSUMERSUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 403 1.1 lukem offsetof(struct slap_internal_schema, si_oc_syncConsumerSubentry) }, 404 1.1 lukem { "syncProviderSubentry", "( 1.3.6.1.4.1.4203.666.3.6 " 405 1.1 lukem "NAME 'syncProviderSubentry' " 406 1.1 lukem "DESC 'Persistent Info for SyncRepl Producer' " 407 1.1 lukem "AUXILIARY " 408 1.1 lukem "MAY contextCSN )", 409 1.1 lukem 0, SLAP_OC_SYNCPROVIDERSUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 410 1.1 lukem offsetof(struct slap_internal_schema, si_oc_syncProviderSubentry) }, 411 1.1 lukem 412 1.1 lukem { NULL, NULL, NULL, 0, 0 } 413 1.1 lukem }; 414 1.1 lukem 415 1.1 lukem static AttributeTypeSchemaCheckFN rootDseAttribute; 416 1.1 lukem static AttributeTypeSchemaCheckFN aliasAttribute; 417 1.1 lukem static AttributeTypeSchemaCheckFN referralAttribute; 418 1.1 lukem static AttributeTypeSchemaCheckFN subentryAttribute; 419 1.1 lukem static AttributeTypeSchemaCheckFN administrativeRoleAttribute; 420 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 421 1.1 lukem static AttributeTypeSchemaCheckFN dynamicAttribute; 422 1.1 lukem #endif 423 1.1 lukem 424 1.1 lukem static struct slap_schema_ad_map { 425 1.1 lukem char *ssam_name; 426 1.1 lukem char *ssam_defn; 427 1.1 lukem AttributeTypeSchemaCheckFN *ssam_check; 428 1.1 lukem slap_mask_t ssam_flags; 429 1.1 lukem slap_syntax_validate_func *ssam_syn_validate; 430 1.1 lukem slap_syntax_transform_func *ssam_syn_pretty; 431 1.1 lukem slap_mr_convert_func *ssam_mr_convert; 432 1.1 lukem slap_mr_normalize_func *ssam_mr_normalize; 433 1.1 lukem slap_mr_match_func *ssam_mr_match; 434 1.1 lukem slap_mr_indexer_func *ssam_mr_indexer; 435 1.1 lukem slap_mr_filter_func *ssam_mr_filter; 436 1.1 lukem size_t ssam_offset; 437 1.1 lukem } ad_map[] = { 438 1.1 lukem { "objectClass", "( 2.5.4.0 NAME 'objectClass' " 439 1.1 lukem "DESC 'RFC4512: object classes of the entity' " 440 1.1 lukem "EQUALITY objectIdentifierMatch " 441 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", 442 1.1 lukem NULL, SLAP_AT_FINAL, 443 1.1 lukem oidValidate, objectClassPretty, 444 1.1 lukem NULL, NULL, objectSubClassMatch, 445 1.1 lukem objectSubClassIndexer, objectSubClassFilter, 446 1.1 lukem offsetof(struct slap_internal_schema, si_ad_objectClass) }, 447 1.1 lukem 448 1.1 lukem /* user entry operational attributes */ 449 1.1 lukem { "structuralObjectClass", "( 2.5.21.9 NAME 'structuralObjectClass' " 450 1.1 lukem "DESC 'RFC4512: structural object class of entry' " 451 1.1 lukem "EQUALITY objectIdentifierMatch " 452 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 453 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 454 1.1.1.3 lukem NULL, 0, 455 1.1 lukem oidValidate, objectClassPretty, 456 1.1 lukem NULL, NULL, objectSubClassMatch, 457 1.1 lukem objectSubClassIndexer, objectSubClassFilter, 458 1.1 lukem offsetof(struct slap_internal_schema, si_ad_structuralObjectClass) }, 459 1.1 lukem { "createTimestamp", "( 2.5.18.1 NAME 'createTimestamp' " 460 1.1 lukem "DESC 'RFC4512: time which object was created' " 461 1.1 lukem "EQUALITY generalizedTimeMatch " 462 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 463 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 464 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 465 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 466 1.1 lukem NULL, NULL, 467 1.1 lukem NULL, NULL, NULL, NULL, NULL, 468 1.1 lukem offsetof(struct slap_internal_schema, si_ad_createTimestamp) }, 469 1.1 lukem { "modifyTimestamp", "( 2.5.18.2 NAME 'modifyTimestamp' " 470 1.1 lukem "DESC 'RFC4512: time which object was last modified' " 471 1.1 lukem "EQUALITY generalizedTimeMatch " 472 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 473 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 474 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 475 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 476 1.1 lukem NULL, NULL, 477 1.1 lukem NULL, NULL, NULL, NULL, NULL, 478 1.1 lukem offsetof(struct slap_internal_schema, si_ad_modifyTimestamp) }, 479 1.1 lukem { "creatorsName", "( 2.5.18.3 NAME 'creatorsName' " 480 1.1 lukem "DESC 'RFC4512: name of creator' " 481 1.1 lukem "EQUALITY distinguishedNameMatch " 482 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 483 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 484 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 485 1.1 lukem NULL, NULL, 486 1.1 lukem NULL, NULL, NULL, NULL, NULL, 487 1.1 lukem offsetof(struct slap_internal_schema, si_ad_creatorsName) }, 488 1.1 lukem { "modifiersName", "( 2.5.18.4 NAME 'modifiersName' " 489 1.1 lukem "DESC 'RFC4512: name of last modifier' " 490 1.1 lukem "EQUALITY distinguishedNameMatch " 491 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 492 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 493 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 494 1.1 lukem NULL, NULL, 495 1.1 lukem NULL, NULL, NULL, NULL, NULL, 496 1.1 lukem offsetof(struct slap_internal_schema, si_ad_modifiersName) }, 497 1.1 lukem { "hasSubordinates", "( 2.5.18.9 NAME 'hasSubordinates' " 498 1.1 lukem "DESC 'X.501: entry has children' " 499 1.1 lukem "EQUALITY booleanMatch " 500 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 " 501 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 502 1.1 lukem NULL, SLAP_AT_DYNAMIC, 503 1.1 lukem NULL, NULL, 504 1.1 lukem NULL, NULL, NULL, NULL, NULL, 505 1.1 lukem offsetof(struct slap_internal_schema, si_ad_hasSubordinates) }, 506 1.1 lukem { "subschemaSubentry", "( 2.5.18.10 NAME 'subschemaSubentry' " 507 1.1 lukem "DESC 'RFC4512: name of controlling subschema entry' " 508 1.1 lukem "EQUALITY distinguishedNameMatch " 509 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE " 510 1.1 lukem "NO-USER-MODIFICATION USAGE directoryOperation )", 511 1.1 lukem NULL, SLAP_AT_DYNAMIC, 512 1.1 lukem NULL, NULL, 513 1.1 lukem NULL, NULL, NULL, NULL, NULL, 514 1.1 lukem offsetof(struct slap_internal_schema, si_ad_subschemaSubentry) }, 515 1.1 lukem #ifdef LDAP_COLLECTIVE_ATTRIBUTES 516 1.1 lukem { "collectiveAttributeSubentries", "( 2.5.18.12 " 517 1.1 lukem "NAME 'collectiveAttributeSubentries' " 518 1.1 lukem "DESC 'RFC3671: collective attribute subentries' " 519 1.1 lukem "EQUALITY distinguishedNameMatch " 520 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 521 1.1 lukem "NO-USER-MODIFICATION USAGE directoryOperation )", 522 1.1 lukem NULL, SLAP_AT_HIDE, 523 1.1 lukem NULL, NULL, 524 1.1 lukem NULL, NULL, NULL, NULL, NULL, 525 1.1 lukem offsetof(struct slap_internal_schema, si_ad_collectiveSubentries) }, 526 1.1 lukem { "collectiveExclusions", "( 2.5.18.7 NAME 'collectiveExclusions' " 527 1.1 lukem "DESC 'RFC3671: collective attribute exclusions' " 528 1.1 lukem "EQUALITY objectIdentifierMatch " 529 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 530 1.1 lukem "USAGE directoryOperation )", 531 1.1 lukem NULL, SLAP_AT_HIDE, 532 1.1 lukem NULL, NULL, 533 1.1 lukem NULL, NULL, NULL, NULL, NULL, 534 1.1 lukem offsetof(struct slap_internal_schema, si_ad_collectiveExclusions) }, 535 1.1 lukem #endif 536 1.1 lukem 537 1.1 lukem { "entryDN", "( 1.3.6.1.1.20 NAME 'entryDN' " 538 1.1 lukem "DESC 'DN of the entry' " 539 1.1 lukem "EQUALITY distinguishedNameMatch " 540 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 541 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 542 1.1 lukem NULL, SLAP_AT_DYNAMIC, 543 1.1 lukem NULL, NULL, 544 1.1 lukem NULL, NULL, NULL, NULL, NULL, 545 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryDN) }, 546 1.1 lukem { "entryUUID", "( 1.3.6.1.1.16.4 NAME 'entryUUID' " 547 1.1 lukem "DESC 'UUID of the entry' " 548 1.1 lukem "EQUALITY UUIDMatch " 549 1.1 lukem "ORDERING UUIDOrderingMatch " 550 1.1 lukem "SYNTAX 1.3.6.1.1.16.1 " 551 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 552 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 553 1.1 lukem NULL, NULL, 554 1.1 lukem NULL, NULL, NULL, NULL, NULL, 555 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryUUID) }, 556 1.1 lukem { "entryCSN", "( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' " 557 1.1 lukem "DESC 'change sequence number of the entry content' " 558 1.1 lukem "EQUALITY CSNMatch " 559 1.1 lukem "ORDERING CSNOrderingMatch " 560 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 561 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 562 1.1 lukem NULL, SLAP_AT_HIDE, 563 1.1 lukem NULL, NULL, 564 1.1 lukem NULL, NULL, NULL, NULL, NULL, 565 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryCSN) }, 566 1.1 lukem { "namingCSN", "( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' " 567 1.1 lukem "DESC 'change sequence number of the entry naming (RDN)' " 568 1.1 lukem "EQUALITY CSNMatch " 569 1.1 lukem "ORDERING CSNOrderingMatch " 570 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 571 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 572 1.1 lukem NULL, SLAP_AT_HIDE, 573 1.1 lukem NULL, NULL, 574 1.1 lukem NULL, NULL, NULL, NULL, NULL, 575 1.1 lukem offsetof(struct slap_internal_schema, si_ad_namingCSN) }, 576 1.1 lukem 577 1.1 lukem #ifdef LDAP_SUPERIOR_UUID 578 1.1 lukem { "superiorUUID", "( 1.3.6.1.4.1.4203.666.1.11 NAME 'superiorUUID' " 579 1.1 lukem "DESC 'UUID of the superior entry' " 580 1.1 lukem "EQUALITY UUIDMatch " 581 1.1 lukem "ORDERING UUIDOrderingMatch " 582 1.1 lukem "SYNTAX 1.3.6.1.1.16.1 " 583 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 584 1.1 lukem NULL, SLAP_AT_HIDE, 585 1.1 lukem NULL, NULL, 586 1.1 lukem NULL, NULL, NULL, NULL, NULL, 587 1.1 lukem offsetof(struct slap_internal_schema, si_ad_superiorUUID) }, 588 1.1 lukem #endif 589 1.1 lukem 590 1.1 lukem { "syncreplCookie", "( 1.3.6.1.4.1.4203.666.1.23 " 591 1.1 lukem "NAME 'syncreplCookie' " 592 1.1 lukem "DESC 'syncrepl Cookie for shadow copy' " 593 1.1 lukem "EQUALITY octetStringMatch " 594 1.1 lukem "ORDERING octetStringOrderingMatch " 595 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 " 596 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 597 1.1 lukem NULL, SLAP_AT_HIDE, 598 1.1 lukem NULL, NULL, 599 1.1 lukem NULL, NULL, NULL, NULL, NULL, 600 1.1 lukem offsetof(struct slap_internal_schema, si_ad_syncreplCookie) }, 601 1.1 lukem 602 1.1 lukem { "contextCSN", "( 1.3.6.1.4.1.4203.666.1.25 " 603 1.1 lukem "NAME 'contextCSN' " 604 1.1 lukem "DESC 'the largest committed CSN of a context' " 605 1.1 lukem "EQUALITY CSNMatch " 606 1.1 lukem "ORDERING CSNOrderingMatch " 607 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 608 1.1 lukem "NO-USER-MODIFICATION USAGE dSAOperation )", 609 1.1 lukem NULL, SLAP_AT_HIDE, 610 1.1 lukem NULL, NULL, 611 1.1 lukem NULL, NULL, NULL, NULL, NULL, 612 1.1 lukem offsetof(struct slap_internal_schema, si_ad_contextCSN) }, 613 1.1 lukem 614 1.1 lukem #ifdef LDAP_SYNC_TIMESTAMP 615 1.1 lukem { "syncTimestamp", "( 1.3.6.1.4.1.4203.666.1.26 NAME 'syncTimestamp' " 616 1.1 lukem "DESC 'Time which object was replicated' " 617 1.1 lukem "EQUALITY generalizedTimeMatch " 618 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 619 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 620 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 621 1.1 lukem NULL, 0, 622 1.1 lukem NULL, NULL, 623 1.1 lukem NULL, NULL, NULL, NULL, NULL, 624 1.1 lukem offsetof(struct slap_internal_schema, si_ad_syncTimestamp) }, 625 1.1 lukem #endif 626 1.1 lukem 627 1.1 lukem /* root DSE attributes */ 628 1.1 lukem { "altServer", "( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' " 629 1.1 lukem "DESC 'RFC4512: alternative servers' " 630 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperation )", 631 1.1 lukem rootDseAttribute, 0, 632 1.1 lukem NULL, NULL, 633 1.1 lukem NULL, NULL, NULL, NULL, NULL, 634 1.1 lukem offsetof(struct slap_internal_schema, si_ad_altServer) }, 635 1.1 lukem { "namingContexts", "( 1.3.6.1.4.1.1466.101.120.5 " 636 1.1 lukem "NAME 'namingContexts' " 637 1.1 lukem "DESC 'RFC4512: naming contexts' " 638 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperation )", 639 1.1 lukem rootDseAttribute, 0, 640 1.1 lukem NULL, NULL, 641 1.1 lukem NULL, NULL, NULL, NULL, NULL, 642 1.1 lukem offsetof(struct slap_internal_schema, si_ad_namingContexts) }, 643 1.1 lukem { "supportedControl", "( 1.3.6.1.4.1.1466.101.120.13 " 644 1.1 lukem "NAME 'supportedControl' " 645 1.1 lukem "DESC 'RFC4512: supported controls' " 646 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", 647 1.1 lukem rootDseAttribute, 0, 648 1.1 lukem NULL, NULL, 649 1.1 lukem NULL, NULL, NULL, NULL, NULL, 650 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedControl) }, 651 1.1 lukem { "supportedExtension", "( 1.3.6.1.4.1.1466.101.120.7 " 652 1.1 lukem "NAME 'supportedExtension' " 653 1.1 lukem "DESC 'RFC4512: supported extended operations' " 654 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", 655 1.1 lukem rootDseAttribute, 0, 656 1.1 lukem NULL, NULL, 657 1.1 lukem NULL, NULL, NULL, NULL, NULL, 658 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedExtension) }, 659 1.1 lukem { "supportedLDAPVersion", "( 1.3.6.1.4.1.1466.101.120.15 " 660 1.1 lukem "NAME 'supportedLDAPVersion' " 661 1.1 lukem "DESC 'RFC4512: supported LDAP versions' " 662 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 USAGE dSAOperation )", 663 1.1 lukem rootDseAttribute, 0, 664 1.1 lukem NULL, NULL, 665 1.1 lukem NULL, NULL, NULL, NULL, NULL, 666 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedLDAPVersion) }, 667 1.1 lukem { "supportedSASLMechanisms", "( 1.3.6.1.4.1.1466.101.120.14 " 668 1.1 lukem "NAME 'supportedSASLMechanisms' " 669 1.1 lukem "DESC 'RFC4512: supported SASL mechanisms'" 670 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE dSAOperation )", 671 1.1 lukem rootDseAttribute, 0, 672 1.1 lukem NULL, NULL, 673 1.1 lukem NULL, NULL, NULL, NULL, NULL, 674 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedSASLMechanisms) }, 675 1.1 lukem { "supportedFeatures", "( 1.3.6.1.4.1.4203.1.3.5 " 676 1.1 lukem "NAME 'supportedFeatures' " 677 1.1 lukem "DESC 'RFC4512: features supported by the server' " 678 1.1 lukem "EQUALITY objectIdentifierMatch " 679 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 680 1.1 lukem "USAGE dSAOperation )", 681 1.1 lukem rootDseAttribute, 0, 682 1.1 lukem NULL, NULL, 683 1.1 lukem NULL, NULL, NULL, NULL, NULL, 684 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedFeatures) }, 685 1.1 lukem { "monitorContext", "( 1.3.6.1.4.1.4203.666.1.10 " 686 1.1 lukem "NAME 'monitorContext' " 687 1.1 lukem "DESC 'monitor context' " 688 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 689 1.1.1.3 lukem "EQUALITY distinguishedNameMatch " 690 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 691 1.1 lukem "USAGE dSAOperation )", 692 1.1 lukem rootDseAttribute, SLAP_AT_HIDE, 693 1.1 lukem NULL, NULL, 694 1.1 lukem NULL, NULL, NULL, NULL, NULL, 695 1.1 lukem offsetof(struct slap_internal_schema, si_ad_monitorContext) }, 696 1.1.1.2 lukem { "configContext", "( 1.3.6.1.4.1.4203.1.12.2.1 " 697 1.1 lukem "NAME 'configContext' " 698 1.1 lukem "DESC 'config context' " 699 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 700 1.1.1.3 lukem "EQUALITY distinguishedNameMatch " 701 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 702 1.1 lukem "USAGE dSAOperation )", 703 1.1 lukem rootDseAttribute, SLAP_AT_HIDE, 704 1.1 lukem NULL, NULL, 705 1.1 lukem NULL, NULL, NULL, NULL, NULL, 706 1.1 lukem offsetof(struct slap_internal_schema, si_ad_configContext) }, 707 1.1 lukem { "vendorName", "( 1.3.6.1.1.4 NAME 'vendorName' " 708 1.1 lukem "DESC 'RFC3045: name of implementation vendor' " 709 1.1 lukem "EQUALITY caseExactMatch " 710 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 711 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 712 1.1 lukem "USAGE dSAOperation )", 713 1.1 lukem rootDseAttribute, 0, 714 1.1 lukem NULL, NULL, 715 1.1 lukem NULL, NULL, NULL, NULL, NULL, 716 1.1 lukem offsetof(struct slap_internal_schema, si_ad_vendorName) }, 717 1.1 lukem { "vendorVersion", "( 1.3.6.1.1.5 NAME 'vendorVersion' " 718 1.1 lukem "DESC 'RFC3045: version of implementation' " 719 1.1 lukem "EQUALITY caseExactMatch " 720 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 721 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 722 1.1 lukem "USAGE dSAOperation )", 723 1.1 lukem rootDseAttribute, 0, 724 1.1 lukem NULL, NULL, 725 1.1 lukem NULL, NULL, NULL, NULL, NULL, 726 1.1 lukem offsetof(struct slap_internal_schema, si_ad_vendorVersion) }, 727 1.1 lukem 728 1.1 lukem /* subentry attributes */ 729 1.1 lukem { "administrativeRole", "( 2.5.18.5 NAME 'administrativeRole' " 730 1.1 lukem "DESC 'RFC3672: administrative role' " 731 1.1 lukem "EQUALITY objectIdentifierMatch " 732 1.1 lukem "USAGE directoryOperation " 733 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", 734 1.1 lukem administrativeRoleAttribute, SLAP_AT_HIDE, 735 1.1 lukem NULL, NULL, 736 1.1 lukem NULL, NULL, NULL, NULL, NULL, 737 1.1 lukem offsetof(struct slap_internal_schema, si_ad_administrativeRole) }, 738 1.1 lukem { "subtreeSpecification", "( 2.5.18.6 NAME 'subtreeSpecification' " 739 1.1 lukem "DESC 'RFC3672: subtree specification' " 740 1.1 lukem "SINGLE-VALUE " 741 1.1 lukem "USAGE directoryOperation " 742 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 )", 743 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 744 1.1 lukem NULL, NULL, 745 1.1 lukem NULL, NULL, NULL, NULL, NULL, 746 1.1 lukem offsetof(struct slap_internal_schema, si_ad_subtreeSpecification) }, 747 1.1 lukem 748 1.1 lukem /* subschema subentry attributes */ 749 1.1 lukem { "dITStructureRules", "( 2.5.21.1 NAME 'dITStructureRules' " 750 1.1 lukem "DESC 'RFC4512: DIT structure rules' " 751 1.1 lukem "EQUALITY integerFirstComponentMatch " 752 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.17 " 753 1.1 lukem "USAGE directoryOperation ) ", 754 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 755 1.1 lukem NULL, NULL, 756 1.1 lukem NULL, NULL, NULL, NULL, NULL, 757 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ditStructureRules) }, 758 1.1 lukem { "dITContentRules", "( 2.5.21.2 NAME 'dITContentRules' " 759 1.1 lukem "DESC 'RFC4512: DIT content rules' " 760 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 761 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.16 USAGE directoryOperation )", 762 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 763 1.1 lukem oidValidate, NULL, 764 1.1 lukem NULL, NULL, objectClassMatch, NULL, NULL, 765 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ditContentRules) }, 766 1.1 lukem { "matchingRules", "( 2.5.21.4 NAME 'matchingRules' " 767 1.1 lukem "DESC 'RFC4512: matching rules' " 768 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 769 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.30 USAGE directoryOperation )", 770 1.1 lukem subentryAttribute, 0, 771 1.1 lukem oidValidate, NULL, 772 1.1 lukem NULL, NULL, matchingRuleMatch, NULL, NULL, 773 1.1 lukem offsetof(struct slap_internal_schema, si_ad_matchingRules) }, 774 1.1 lukem { "attributeTypes", "( 2.5.21.5 NAME 'attributeTypes' " 775 1.1 lukem "DESC 'RFC4512: attribute types' " 776 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 777 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.3 USAGE directoryOperation )", 778 1.1 lukem subentryAttribute, 0, 779 1.1 lukem oidValidate, NULL, 780 1.1 lukem NULL, NULL, attributeTypeMatch, NULL, NULL, 781 1.1 lukem offsetof(struct slap_internal_schema, si_ad_attributeTypes) }, 782 1.1 lukem { "objectClasses", "( 2.5.21.6 NAME 'objectClasses' " 783 1.1 lukem "DESC 'RFC4512: object classes' " 784 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 785 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.37 USAGE directoryOperation )", 786 1.1 lukem subentryAttribute, 0, 787 1.1 lukem oidValidate, NULL, 788 1.1 lukem NULL, NULL, objectClassMatch, NULL, NULL, 789 1.1 lukem offsetof(struct slap_internal_schema, si_ad_objectClasses) }, 790 1.1 lukem { "nameForms", "( 2.5.21.7 NAME 'nameForms' " 791 1.1 lukem "DESC 'RFC4512: name forms ' " 792 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 793 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.35 USAGE directoryOperation )", 794 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 795 1.1 lukem NULL, NULL, 796 1.1 lukem NULL, NULL, NULL, NULL, NULL, 797 1.1 lukem offsetof(struct slap_internal_schema, si_ad_nameForms) }, 798 1.1 lukem { "matchingRuleUse", "( 2.5.21.8 NAME 'matchingRuleUse' " 799 1.1 lukem "DESC 'RFC4512: matching rule uses' " 800 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 801 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.31 USAGE directoryOperation )", 802 1.1 lukem subentryAttribute, 0, 803 1.1 lukem oidValidate, NULL, 804 1.1 lukem NULL, NULL, matchingRuleMatch, NULL, NULL, 805 1.1 lukem offsetof(struct slap_internal_schema, si_ad_matchingRuleUse) }, 806 1.1 lukem 807 1.1 lukem { "ldapSyntaxes", "( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' " 808 1.1 lukem "DESC 'RFC4512: LDAP syntaxes' " 809 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 810 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )", 811 1.1 lukem subentryAttribute, 0, 812 1.1 lukem NULL, NULL, 813 1.1 lukem NULL, NULL, NULL, NULL, NULL, 814 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ldapSyntaxes) }, 815 1.1 lukem 816 1.1 lukem /* knowledge information */ 817 1.1 lukem { "aliasedObjectName", "( 2.5.4.1 " 818 1.1 lukem "NAME ( 'aliasedObjectName' 'aliasedEntryName' ) " 819 1.1 lukem "DESC 'RFC4512: name of aliased object' " 820 1.1 lukem "EQUALITY distinguishedNameMatch " 821 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )", 822 1.1 lukem aliasAttribute, SLAP_AT_FINAL, 823 1.1 lukem NULL, NULL, 824 1.1 lukem NULL, NULL, NULL, NULL, NULL, 825 1.1 lukem offsetof(struct slap_internal_schema, si_ad_aliasedObjectName) }, 826 1.1 lukem { "ref", "( 2.16.840.1.113730.3.1.34 NAME 'ref' " 827 1.1 lukem "DESC 'RFC3296: subordinate referral URL' " 828 1.1 lukem "EQUALITY caseExactMatch " 829 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 830 1.1 lukem "USAGE distributedOperation )", 831 1.1 lukem referralAttribute, 0, 832 1.1 lukem NULL, NULL, 833 1.1 lukem NULL, NULL, NULL, NULL, NULL, 834 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ref) }, 835 1.1 lukem 836 1.1 lukem /* access control internals */ 837 1.1 lukem { "entry", "( 1.3.6.1.4.1.4203.1.3.1 " 838 1.1 lukem "NAME 'entry' " 839 1.1 lukem "DESC 'OpenLDAP ACL entry pseudo-attribute' " 840 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.1 " 841 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 842 1.1 lukem NULL, SLAP_AT_HIDE, 843 1.1 lukem NULL, NULL, 844 1.1 lukem NULL, NULL, NULL, NULL, NULL, 845 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entry) }, 846 1.1 lukem { "children", "( 1.3.6.1.4.1.4203.1.3.2 " 847 1.1 lukem "NAME 'children' " 848 1.1 lukem "DESC 'OpenLDAP ACL children pseudo-attribute' " 849 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.1 " 850 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 851 1.1 lukem NULL, SLAP_AT_HIDE, 852 1.1 lukem NULL, NULL, 853 1.1 lukem NULL, NULL, NULL, NULL, NULL, 854 1.1 lukem offsetof(struct slap_internal_schema, si_ad_children) }, 855 1.1 lukem 856 1.1 lukem /* access control externals */ 857 1.1 lukem { "authzTo", "( 1.3.6.1.4.1.4203.666.1.8 " 858 1.1 lukem "NAME ( 'authzTo' 'saslAuthzTo' ) " 859 1.1 lukem "DESC 'proxy authorization targets' " 860 1.1 lukem "EQUALITY authzMatch " 861 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " 862 1.1 lukem "X-ORDERED 'VALUES' " 863 1.1 lukem "USAGE distributedOperation )", 864 1.1 lukem NULL, SLAP_AT_HIDE, 865 1.1 lukem NULL, NULL, 866 1.1 lukem NULL, NULL, NULL, NULL, NULL, 867 1.1 lukem offsetof(struct slap_internal_schema, si_ad_saslAuthzTo) }, 868 1.1 lukem { "authzFrom", "( 1.3.6.1.4.1.4203.666.1.9 " 869 1.1 lukem "NAME ( 'authzFrom' 'saslAuthzFrom' ) " 870 1.1 lukem "DESC 'proxy authorization sources' " 871 1.1 lukem "EQUALITY authzMatch " 872 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " 873 1.1 lukem "X-ORDERED 'VALUES' " 874 1.1 lukem "USAGE distributedOperation )", 875 1.1 lukem NULL, SLAP_AT_HIDE, 876 1.1 lukem NULL, NULL, 877 1.1 lukem NULL, NULL, NULL, NULL, NULL, 878 1.1 lukem offsetof(struct slap_internal_schema, si_ad_saslAuthzFrom) }, 879 1.1 lukem 880 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 881 1.1 lukem { "entryTtl", "( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' " 882 1.1 lukem "DESC 'RFC2589: entry time-to-live' " 883 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE " 884 1.1 lukem "NO-USER-MODIFICATION USAGE dSAOperation )", 885 1.1 lukem dynamicAttribute, SLAP_AT_MANAGEABLE, 886 1.1 lukem NULL, NULL, 887 1.1 lukem NULL, NULL, NULL, NULL, NULL, 888 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryTtl) }, 889 1.1 lukem { "dynamicSubtrees", "( 1.3.6.1.4.1.1466.101.119.4 " 890 1.1 lukem "NAME 'dynamicSubtrees' " 891 1.1 lukem "DESC 'RFC2589: dynamic subtrees' " 892 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFICATION " 893 1.1 lukem "USAGE dSAOperation )", 894 1.1 lukem rootDseAttribute, 0, 895 1.1 lukem NULL, NULL, 896 1.1 lukem NULL, NULL, NULL, NULL, NULL, 897 1.1 lukem offsetof(struct slap_internal_schema, si_ad_dynamicSubtrees) }, 898 1.1 lukem #endif 899 1.1 lukem 900 1.1 lukem /* userApplication attributes (which system schema depends upon) */ 901 1.1 lukem { "distinguishedName", "( 2.5.4.49 NAME 'distinguishedName' " 902 1.1 lukem "DESC 'RFC4519: common supertype of DN attributes' " 903 1.1 lukem "EQUALITY distinguishedNameMatch " 904 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )", 905 1.1 lukem NULL, SLAP_AT_ABSTRACT, 906 1.1 lukem NULL, NULL, 907 1.1 lukem NULL, NULL, NULL, NULL, NULL, 908 1.1 lukem offsetof(struct slap_internal_schema, si_ad_distinguishedName) }, 909 1.1 lukem { "name", "( 2.5.4.41 NAME 'name' " 910 1.1 lukem "DESC 'RFC4519: common supertype of name attributes' " 911 1.1 lukem "EQUALITY caseIgnoreMatch " 912 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 913 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )", 914 1.1 lukem NULL, SLAP_AT_ABSTRACT, 915 1.1 lukem NULL, NULL, 916 1.1 lukem NULL, NULL, NULL, NULL, NULL, 917 1.1 lukem offsetof(struct slap_internal_schema, si_ad_name) }, 918 1.1 lukem { "cn", "( 2.5.4.3 NAME ( 'cn' 'commonName' ) " 919 1.1 lukem "DESC 'RFC4519: common name(s) for which the entity is known by' " 920 1.1 lukem "SUP name )", 921 1.1 lukem NULL, 0, 922 1.1 lukem NULL, NULL, 923 1.1 lukem NULL, NULL, NULL, NULL, NULL, 924 1.1 lukem offsetof(struct slap_internal_schema, si_ad_cn) }, 925 1.1 lukem { "uid", "( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) " 926 1.1 lukem "DESC 'RFC4519: user identifier' " 927 1.1 lukem "EQUALITY caseIgnoreMatch " 928 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 929 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", 930 1.1 lukem NULL, 0, 931 1.1 lukem NULL, NULL, 932 1.1 lukem NULL, NULL, NULL, NULL, NULL, 933 1.1 lukem offsetof(struct slap_internal_schema, si_ad_uid) }, 934 1.1 lukem { "uidNumber", /* for ldapi:// */ 935 1.1 lukem "( 1.3.6.1.1.1.1.0 NAME 'uidNumber' " 936 1.1 lukem "DESC 'RFC2307: An integer uniquely identifying a user " 937 1.1 lukem "in an administrative domain' " 938 1.1 lukem "EQUALITY integerMatch " 939 1.1.1.5 tron "ORDERING integerOrderingMatch " 940 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", 941 1.1 lukem NULL, 0, 942 1.1 lukem NULL, NULL, 943 1.1 lukem NULL, NULL, NULL, NULL, NULL, 944 1.1 lukem offsetof(struct slap_internal_schema, si_ad_uidNumber) }, 945 1.1 lukem { "gidNumber", /* for ldapi:// */ 946 1.1 lukem "( 1.3.6.1.1.1.1.1 NAME 'gidNumber' " 947 1.1 lukem "DESC 'RFC2307: An integer uniquely identifying a group " 948 1.1 lukem "in an administrative domain' " 949 1.1 lukem "EQUALITY integerMatch " 950 1.1.1.5 tron "ORDERING integerOrderingMatch " 951 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", 952 1.1 lukem NULL, 0, 953 1.1 lukem NULL, NULL, 954 1.1 lukem NULL, NULL, NULL, NULL, NULL, 955 1.1 lukem offsetof(struct slap_internal_schema, si_ad_gidNumber) }, 956 1.1 lukem { "userPassword", "( 2.5.4.35 NAME 'userPassword' " 957 1.1 lukem "DESC 'RFC4519/2307: password of user' " 958 1.1 lukem "EQUALITY octetStringMatch " 959 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )", 960 1.1 lukem NULL, 0, 961 1.1 lukem NULL, NULL, 962 1.1 lukem NULL, NULL, NULL, NULL, NULL, 963 1.1 lukem offsetof(struct slap_internal_schema, si_ad_userPassword) }, 964 1.1 lukem 965 1.1 lukem { "labeledURI", "( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' " 966 1.1 lukem "DESC 'RFC2079: Uniform Resource Identifier with optional label' " 967 1.1 lukem "EQUALITY caseExactMatch " 968 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", 969 1.1 lukem NULL, 0, 970 1.1 lukem NULL, NULL, 971 1.1 lukem NULL, NULL, NULL, NULL, NULL, 972 1.1 lukem offsetof(struct slap_internal_schema, si_ad_labeledURI) }, 973 1.1 lukem 974 1.1 lukem #ifdef SLAPD_AUTHPASSWD 975 1.1 lukem { "authPassword", "( 1.3.6.1.4.1.4203.1.3.4 " 976 1.1 lukem "NAME 'authPassword' " 977 1.1 lukem "DESC 'RFC3112: authentication password attribute' " 978 1.1 lukem "EQUALITY 1.3.6.1.4.1.4203.1.2.2 " 979 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.2 )", 980 1.1 lukem NULL, 0, 981 1.1 lukem NULL, NULL, 982 1.1 lukem NULL, NULL, NULL, NULL, NULL, 983 1.1 lukem offsetof(struct slap_internal_schema, si_ad_authPassword) }, 984 1.1 lukem { "supportedAuthPasswordSchemes", "( 1.3.6.1.4.1.4203.1.3.3 " 985 1.1 lukem "NAME 'supportedAuthPasswordSchemes' " 986 1.1 lukem "DESC 'RFC3112: supported authPassword schemes' " 987 1.1 lukem "EQUALITY caseExactIA5Match " 988 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} " 989 1.1 lukem "USAGE dSAOperation )", 990 1.1 lukem subschemaAttribute, 0, 991 1.1 lukem NULL, NULL, 992 1.1 lukem NULL, NULL, NULL, NULL, NULL, 993 1.1 lukem offsetof(struct slap_internal_schema, si_ad_authPasswordSchemes) }, 994 1.1 lukem #endif 995 1.1 lukem 996 1.1 lukem { "description", "( 2.5.4.13 NAME 'description' " 997 1.1 lukem "DESC 'RFC4519: descriptive information' " 998 1.1 lukem "EQUALITY caseIgnoreMatch " 999 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 1000 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )", 1001 1.1 lukem NULL, 0, 1002 1.1 lukem NULL, NULL, 1003 1.1 lukem NULL, NULL, NULL, NULL, NULL, 1004 1.1 lukem offsetof(struct slap_internal_schema, si_ad_description) }, 1005 1.1 lukem 1006 1.1 lukem { "seeAlso", "( 2.5.4.34 NAME 'seeAlso' " 1007 1.1 lukem "DESC 'RFC4519: DN of related object' " 1008 1.1 lukem "SUP distinguishedName )", 1009 1.1 lukem NULL, 0, 1010 1.1 lukem NULL, NULL, 1011 1.1 lukem NULL, NULL, NULL, NULL, NULL, 1012 1.1 lukem offsetof(struct slap_internal_schema, si_ad_seeAlso) }, 1013 1.1 lukem 1014 1.1 lukem { NULL, NULL, NULL, 0, NULL, NULL, NULL, NULL, NULL, NULL, NULL, 0 } 1015 1.1 lukem }; 1016 1.1 lukem 1017 1.1 lukem static AttributeType slap_at_undefined = { 1018 1.1 lukem { "1.1.1", NULL, "Catchall for undefined attribute types", 1, NULL, 1019 1.1 lukem NULL, NULL, NULL, NULL, 1020 1.1 lukem 0, 0, 0, 1, LDAP_SCHEMA_DSA_OPERATION, NULL }, /* LDAPAttributeType */ 1021 1.1 lukem BER_BVC("UNDEFINED"), /* cname */ 1022 1.1 lukem NULL, /* sup */ 1023 1.1 lukem NULL, /* subtypes */ 1024 1.1 lukem NULL, NULL, NULL, NULL, /* matching rules routines */ 1025 1.1 lukem NULL, /* syntax (will be set later to "octetString") */ 1026 1.1 lukem NULL, /* schema check function */ 1027 1.1 lukem NULL, /* oidmacro */ 1028 1.1.1.2 lukem NULL, /* soidmacro */ 1029 1.1 lukem SLAP_AT_ABSTRACT|SLAP_AT_FINAL, /* mask */ 1030 1.1 lukem { NULL }, /* next */ 1031 1.1 lukem NULL /* attribute description */ 1032 1.1 lukem /* mutex (don't know how to initialize it :) */ 1033 1.1 lukem }; 1034 1.1 lukem 1035 1.1 lukem static AttributeType slap_at_proxied = { 1036 1.1 lukem { "1.1.1", NULL, "Catchall for undefined proxied attribute types", 1, NULL, 1037 1.1 lukem NULL, NULL, NULL, NULL, 1038 1.1 lukem 0, 0, 0, 0, LDAP_SCHEMA_USER_APPLICATIONS, NULL }, /* LDAPAttributeType */ 1039 1.1 lukem BER_BVC("PROXIED"), /* cname */ 1040 1.1 lukem NULL, /* sup */ 1041 1.1 lukem NULL, /* subtypes */ 1042 1.1 lukem NULL, NULL, NULL, NULL, /* matching rules routines (will be set later) */ 1043 1.1 lukem NULL, /* syntax (will be set later to "octetString") */ 1044 1.1 lukem NULL, /* schema check function */ 1045 1.1 lukem NULL, /* oidmacro */ 1046 1.1.1.2 lukem NULL, /* soidmacro */ 1047 1.1 lukem SLAP_AT_ABSTRACT|SLAP_AT_FINAL, /* mask */ 1048 1.1 lukem { NULL }, /* next */ 1049 1.1 lukem NULL /* attribute description */ 1050 1.1 lukem /* mutex (don't know how to initialize it :) */ 1051 1.1 lukem }; 1052 1.1 lukem 1053 1.1 lukem static struct slap_schema_mr_map { 1054 1.1 lukem char *ssmm_name; 1055 1.1 lukem size_t ssmm_offset; 1056 1.1 lukem } mr_map[] = { 1057 1.1 lukem { "caseExactIA5Match", 1058 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactIA5Match) }, 1059 1.1 lukem { "caseExactMatch", 1060 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactMatch) }, 1061 1.1 lukem { "caseExactSubstringsMatch", 1062 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactSubstringsMatch) }, 1063 1.1 lukem { "distinguishedNameMatch", 1064 1.1 lukem offsetof(struct slap_internal_schema, si_mr_distinguishedNameMatch) }, 1065 1.1 lukem { "dnSubtreeMatch", 1066 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSubtreeMatch) }, 1067 1.1 lukem { "dnOneLevelMatch", 1068 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnOneLevelMatch) }, 1069 1.1 lukem { "dnSubordinateMatch", 1070 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSubordinateMatch) }, 1071 1.1 lukem { "dnSuperiorMatch", 1072 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSuperiorMatch) }, 1073 1.1 lukem { "integerMatch", 1074 1.1 lukem offsetof(struct slap_internal_schema, si_mr_integerMatch) }, 1075 1.1 lukem { "integerFirstComponentMatch", 1076 1.1 lukem offsetof(struct slap_internal_schema, 1077 1.1 lukem si_mr_integerFirstComponentMatch) }, 1078 1.1 lukem { "objectIdentifierFirstComponentMatch", 1079 1.1 lukem offsetof(struct slap_internal_schema, 1080 1.1 lukem si_mr_objectIdentifierFirstComponentMatch) }, 1081 1.1.1.3 lukem { "caseIgnoreMatch", 1082 1.1.1.3 lukem offsetof(struct slap_internal_schema, si_mr_caseIgnoreMatch) }, 1083 1.1.1.3 lukem { "caseIgnoreListMatch", 1084 1.1.1.3 lukem offsetof(struct slap_internal_schema, si_mr_caseIgnoreListMatch) }, 1085 1.1 lukem { NULL, 0 } 1086 1.1 lukem }; 1087 1.1 lukem 1088 1.1 lukem static struct slap_schema_syn_map { 1089 1.1 lukem char *sssm_name; 1090 1.1 lukem size_t sssm_offset; 1091 1.1 lukem } syn_map[] = { 1092 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.15", 1093 1.1 lukem offsetof(struct slap_internal_schema, si_syn_directoryString) }, 1094 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.12", 1095 1.1 lukem offsetof(struct slap_internal_schema, si_syn_distinguishedName) }, 1096 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.27", 1097 1.1 lukem offsetof(struct slap_internal_schema, si_syn_integer) }, 1098 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.40", 1099 1.1 lukem offsetof(struct slap_internal_schema, si_syn_octetString) }, 1100 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.3", 1101 1.1 lukem offsetof(struct slap_internal_schema, si_syn_attributeTypeDesc) }, 1102 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.16", 1103 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ditContentRuleDesc) }, 1104 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.54", 1105 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ldapSyntaxDesc) }, 1106 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.30", 1107 1.1 lukem offsetof(struct slap_internal_schema, si_syn_matchingRuleDesc) }, 1108 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.31", 1109 1.1 lukem offsetof(struct slap_internal_schema, si_syn_matchingRuleUseDesc) }, 1110 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.35", 1111 1.1 lukem offsetof(struct slap_internal_schema, si_syn_nameFormDesc) }, 1112 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.37", 1113 1.1 lukem offsetof(struct slap_internal_schema, si_syn_objectClassDesc) }, 1114 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.17", 1115 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ditStructureRuleDesc) }, 1116 1.1 lukem { NULL, 0 } 1117 1.1 lukem }; 1118 1.1 lukem 1119 1.1 lukem int 1120 1.1 lukem slap_schema_load( void ) 1121 1.1 lukem { 1122 1.1 lukem int i; 1123 1.1 lukem 1124 1.1 lukem for( i=0; syn_map[i].sssm_name; i++ ) { 1125 1.1 lukem Syntax ** synp = (Syntax **) 1126 1.1 lukem &(((char *) &slap_schema)[syn_map[i].sssm_offset]); 1127 1.1 lukem 1128 1.1 lukem assert( *synp == NULL ); 1129 1.1 lukem 1130 1.1 lukem *synp = syn_find( syn_map[i].sssm_name ); 1131 1.1 lukem 1132 1.1 lukem if( *synp == NULL ) { 1133 1.1 lukem fprintf( stderr, "slap_schema_load: Syntax: " 1134 1.1 lukem "No syntax \"%s\" defined in schema\n", 1135 1.1 lukem syn_map[i].sssm_name ); 1136 1.1 lukem return LDAP_INVALID_SYNTAX; 1137 1.1 lukem } 1138 1.1 lukem } 1139 1.1 lukem 1140 1.1 lukem for( i=0; mr_map[i].ssmm_name; i++ ) { 1141 1.1 lukem MatchingRule ** mrp = (MatchingRule **) 1142 1.1 lukem &(((char *) &slap_schema)[mr_map[i].ssmm_offset]); 1143 1.1 lukem 1144 1.1 lukem assert( *mrp == NULL ); 1145 1.1 lukem 1146 1.1 lukem *mrp = mr_find( mr_map[i].ssmm_name ); 1147 1.1 lukem 1148 1.1 lukem if( *mrp == NULL ) { 1149 1.1 lukem fprintf( stderr, "slap_schema_load: MatchingRule: " 1150 1.1 lukem "No matching rule \"%s\" defined in schema\n", 1151 1.1 lukem mr_map[i].ssmm_name ); 1152 1.1 lukem return LDAP_INAPPROPRIATE_MATCHING; 1153 1.1 lukem } 1154 1.1 lukem } 1155 1.1 lukem 1156 1.1 lukem slap_at_undefined.sat_syntax = slap_schema.si_syn_octetString; 1157 1.1 lukem slap_schema.si_at_undefined = &slap_at_undefined; 1158 1.1 lukem 1159 1.1 lukem slap_at_proxied.sat_equality = mr_find( "octetStringMatch" ); 1160 1.1 lukem slap_at_proxied.sat_approx = mr_find( "octetStringMatch" ); 1161 1.1 lukem slap_at_proxied.sat_ordering = mr_find( "octetStringOrderingMatch" ); 1162 1.1 lukem slap_at_proxied.sat_substr = mr_find( "octetStringSubstringsMatch" ); 1163 1.1 lukem slap_at_proxied.sat_syntax = slap_schema.si_syn_octetString; 1164 1.1 lukem slap_schema.si_at_proxied = &slap_at_proxied; 1165 1.1 lukem 1166 1.1.1.5 tron ldap_pvt_thread_mutex_init( &ad_index_mutex ); 1167 1.1 lukem ldap_pvt_thread_mutex_init( &ad_undef_mutex ); 1168 1.1 lukem ldap_pvt_thread_mutex_init( &oc_undef_mutex ); 1169 1.1 lukem 1170 1.1 lukem for( i=0; ad_map[i].ssam_name; i++ ) { 1171 1.1 lukem assert( ad_map[i].ssam_defn != NULL ); 1172 1.1 lukem { 1173 1.1 lukem LDAPAttributeType *at; 1174 1.1 lukem int code; 1175 1.1 lukem const char *err; 1176 1.1 lukem 1177 1.1 lukem at = ldap_str2attributetype( ad_map[i].ssam_defn, 1178 1.1 lukem &code, &err, LDAP_SCHEMA_ALLOW_ALL ); 1179 1.1 lukem if ( !at ) { 1180 1.1 lukem fprintf( stderr, 1181 1.1 lukem "slap_schema_load: AttributeType \"%s\": %s before %s\n", 1182 1.1 lukem ad_map[i].ssam_name, ldap_scherr2str(code), err ); 1183 1.1 lukem return code; 1184 1.1 lukem } 1185 1.1 lukem 1186 1.1 lukem if ( at->at_oid == NULL ) { 1187 1.1 lukem fprintf( stderr, "slap_schema_load: " 1188 1.1 lukem "AttributeType \"%s\": no OID\n", 1189 1.1 lukem ad_map[i].ssam_name ); 1190 1.1 lukem ldap_attributetype_free( at ); 1191 1.1 lukem return LDAP_OTHER; 1192 1.1 lukem } 1193 1.1 lukem 1194 1.1 lukem code = at_add( at, 0, NULL, NULL, &err ); 1195 1.1 lukem if ( code ) { 1196 1.1 lukem ldap_attributetype_free( at ); 1197 1.1 lukem fprintf( stderr, "slap_schema_load: AttributeType " 1198 1.1 lukem "\"%s\": %s: \"%s\"\n", 1199 1.1 lukem ad_map[i].ssam_name, scherr2str(code), err ); 1200 1.1 lukem return code; 1201 1.1 lukem } 1202 1.1 lukem ldap_memfree( at ); 1203 1.1 lukem } 1204 1.1 lukem { 1205 1.1 lukem int rc; 1206 1.1 lukem const char *text; 1207 1.1 lukem Syntax *syntax = NULL; 1208 1.1 lukem 1209 1.1 lukem AttributeDescription ** adp = (AttributeDescription **) 1210 1.1 lukem &(((char *) &slap_schema)[ad_map[i].ssam_offset]); 1211 1.1 lukem 1212 1.1 lukem assert( *adp == NULL ); 1213 1.1 lukem 1214 1.1 lukem rc = slap_str2ad( ad_map[i].ssam_name, adp, &text ); 1215 1.1 lukem if( rc != LDAP_SUCCESS ) { 1216 1.1 lukem fprintf( stderr, "slap_schema_load: AttributeType \"%s\": " 1217 1.1 lukem "not defined in schema\n", 1218 1.1 lukem ad_map[i].ssam_name ); 1219 1.1 lukem return rc; 1220 1.1 lukem } 1221 1.1 lukem 1222 1.1 lukem if( ad_map[i].ssam_check ) { 1223 1.1 lukem /* install check routine */ 1224 1.1 lukem (*adp)->ad_type->sat_check = ad_map[i].ssam_check; 1225 1.1 lukem } 1226 1.1 lukem /* install flags */ 1227 1.1 lukem (*adp)->ad_type->sat_flags |= ad_map[i].ssam_flags; 1228 1.1 lukem 1229 1.1 lukem /* install custom syntax routines */ 1230 1.1 lukem if( ad_map[i].ssam_syn_validate || 1231 1.1 lukem ad_map[i].ssam_syn_pretty ) 1232 1.1 lukem { 1233 1.1 lukem Syntax *syn; 1234 1.1 lukem 1235 1.1 lukem syntax = (*adp)->ad_type->sat_syntax; 1236 1.1 lukem 1237 1.1 lukem syn = ch_malloc( sizeof( Syntax ) ); 1238 1.1 lukem *syn = *syntax; 1239 1.1 lukem 1240 1.1 lukem if( ad_map[i].ssam_syn_validate ) { 1241 1.1 lukem syn->ssyn_validate = ad_map[i].ssam_syn_validate; 1242 1.1 lukem } 1243 1.1 lukem if( ad_map[i].ssam_syn_pretty ) { 1244 1.1 lukem syn->ssyn_pretty = ad_map[i].ssam_syn_pretty; 1245 1.1 lukem } 1246 1.1 lukem 1247 1.1 lukem (*adp)->ad_type->sat_syntax = syn; 1248 1.1 lukem } 1249 1.1 lukem 1250 1.1 lukem /* install custom rule routines */ 1251 1.1 lukem if( syntax != NULL || 1252 1.1 lukem ad_map[i].ssam_mr_convert || 1253 1.1 lukem ad_map[i].ssam_mr_normalize || 1254 1.1 lukem ad_map[i].ssam_mr_match || 1255 1.1 lukem ad_map[i].ssam_mr_indexer || 1256 1.1 lukem ad_map[i].ssam_mr_filter ) 1257 1.1 lukem { 1258 1.1 lukem MatchingRule *mr = ch_malloc( sizeof( MatchingRule ) ); 1259 1.1 lukem *mr = *(*adp)->ad_type->sat_equality; 1260 1.1 lukem 1261 1.1 lukem if ( syntax != NULL ) { 1262 1.1 lukem mr->smr_syntax = (*adp)->ad_type->sat_syntax; 1263 1.1 lukem } 1264 1.1 lukem if ( ad_map[i].ssam_mr_convert ) { 1265 1.1 lukem mr->smr_convert = ad_map[i].ssam_mr_convert; 1266 1.1 lukem } 1267 1.1 lukem if ( ad_map[i].ssam_mr_normalize ) { 1268 1.1 lukem mr->smr_normalize = ad_map[i].ssam_mr_normalize; 1269 1.1 lukem } 1270 1.1 lukem if ( ad_map[i].ssam_mr_match ) { 1271 1.1 lukem mr->smr_match = ad_map[i].ssam_mr_match; 1272 1.1 lukem } 1273 1.1 lukem if ( ad_map[i].ssam_mr_indexer ) { 1274 1.1 lukem mr->smr_indexer = ad_map[i].ssam_mr_indexer; 1275 1.1 lukem } 1276 1.1 lukem if ( ad_map[i].ssam_mr_filter ) { 1277 1.1 lukem mr->smr_filter = ad_map[i].ssam_mr_filter; 1278 1.1 lukem } 1279 1.1 lukem 1280 1.1 lukem (*adp)->ad_type->sat_equality = mr; 1281 1.1 lukem } 1282 1.1 lukem } 1283 1.1 lukem } 1284 1.1 lukem 1285 1.1 lukem for( i=0; oc_map[i].ssom_name; i++ ) { 1286 1.1 lukem assert( oc_map[i].ssom_defn != NULL ); 1287 1.1 lukem { 1288 1.1 lukem LDAPObjectClass *oc; 1289 1.1 lukem int code; 1290 1.1 lukem const char *err; 1291 1.1 lukem 1292 1.1 lukem oc = ldap_str2objectclass( oc_map[i].ssom_defn, &code, &err, 1293 1.1 lukem LDAP_SCHEMA_ALLOW_ALL ); 1294 1.1 lukem if ( !oc ) { 1295 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1296 1.1 lukem "\"%s\": %s before %s\n", 1297 1.1 lukem oc_map[i].ssom_name, ldap_scherr2str(code), err ); 1298 1.1 lukem return code; 1299 1.1 lukem } 1300 1.1 lukem 1301 1.1 lukem if ( oc->oc_oid == NULL ) { 1302 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1303 1.1 lukem "\"%s\": no OID\n", 1304 1.1 lukem oc_map[i].ssom_name ); 1305 1.1 lukem ldap_objectclass_free( oc ); 1306 1.1 lukem return LDAP_OTHER; 1307 1.1 lukem } 1308 1.1 lukem 1309 1.1 lukem code = oc_add(oc,0,NULL,NULL,&err); 1310 1.1 lukem if ( code ) { 1311 1.1 lukem ldap_objectclass_free( oc ); 1312 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1313 1.1 lukem "\"%s\": %s: \"%s\"\n", 1314 1.1 lukem oc_map[i].ssom_name, scherr2str(code), err); 1315 1.1 lukem return code; 1316 1.1 lukem } 1317 1.1 lukem ldap_memfree(oc); 1318 1.1 lukem 1319 1.1 lukem } 1320 1.1 lukem { 1321 1.1 lukem ObjectClass ** ocp = (ObjectClass **) 1322 1.1 lukem &(((char *) &slap_schema)[oc_map[i].ssom_offset]); 1323 1.1 lukem 1324 1.1 lukem assert( *ocp == NULL ); 1325 1.1 lukem 1326 1.1 lukem *ocp = oc_find( oc_map[i].ssom_name ); 1327 1.1 lukem if( *ocp == NULL ) { 1328 1.1 lukem fprintf( stderr, "slap_schema_load: " 1329 1.1 lukem "ObjectClass \"%s\": not defined in schema\n", 1330 1.1 lukem oc_map[i].ssom_name ); 1331 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1332 1.1 lukem } 1333 1.1 lukem 1334 1.1 lukem if( oc_map[i].ssom_check ) { 1335 1.1 lukem /* install check routine */ 1336 1.1 lukem (*ocp)->soc_check = oc_map[i].ssom_check; 1337 1.1 lukem } 1338 1.1 lukem /* install flags */ 1339 1.1 lukem (*ocp)->soc_flags |= oc_map[i].ssom_flags; 1340 1.1 lukem } 1341 1.1 lukem } 1342 1.1 lukem 1343 1.1 lukem return LDAP_SUCCESS; 1344 1.1 lukem } 1345 1.1 lukem 1346 1.1 lukem int 1347 1.1 lukem slap_schema_check( void ) 1348 1.1 lukem { 1349 1.1 lukem /* we should only be called once after schema_init() was called */ 1350 1.1 lukem assert( schema_init_done == 1 ); 1351 1.1 lukem 1352 1.1 lukem /* 1353 1.1 lukem * cycle thru attributeTypes to build matchingRuleUse 1354 1.1 lukem */ 1355 1.1 lukem if ( matching_rule_use_init() ) { 1356 1.1 lukem return LDAP_OTHER; 1357 1.1 lukem } 1358 1.1 lukem 1359 1.1 lukem ++schema_init_done; 1360 1.1 lukem return LDAP_SUCCESS; 1361 1.1 lukem } 1362 1.1 lukem 1363 1.1 lukem static int rootDseObjectClass ( 1364 1.1 lukem Backend *be, 1365 1.1 lukem Entry *e, 1366 1.1 lukem ObjectClass *oc, 1367 1.1 lukem const char** text, 1368 1.1 lukem char *textbuf, size_t textlen ) 1369 1.1 lukem { 1370 1.1 lukem *text = textbuf; 1371 1.1 lukem 1372 1.1 lukem if( e->e_nname.bv_len ) { 1373 1.1 lukem snprintf( textbuf, textlen, 1374 1.1 lukem "objectClass \"%s\" only allowed in the root DSE", 1375 1.1 lukem oc->soc_oid ); 1376 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1377 1.1 lukem } 1378 1.1 lukem 1379 1.1 lukem /* we should not be called for the root DSE */ 1380 1.1 lukem assert( 0 ); 1381 1.1 lukem return LDAP_SUCCESS; 1382 1.1 lukem } 1383 1.1 lukem 1384 1.1 lukem static int aliasObjectClass ( 1385 1.1 lukem Backend *be, 1386 1.1 lukem Entry *e, 1387 1.1 lukem ObjectClass *oc, 1388 1.1 lukem const char** text, 1389 1.1 lukem char *textbuf, size_t textlen ) 1390 1.1 lukem { 1391 1.1 lukem *text = textbuf; 1392 1.1 lukem 1393 1.1 lukem if( !SLAP_ALIASES(be) ) { 1394 1.1 lukem snprintf( textbuf, textlen, 1395 1.1 lukem "objectClass \"%s\" not supported in context", 1396 1.1 lukem oc->soc_oid ); 1397 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1398 1.1 lukem } 1399 1.1 lukem 1400 1.1 lukem return LDAP_SUCCESS; 1401 1.1 lukem } 1402 1.1 lukem 1403 1.1 lukem static int referralObjectClass ( 1404 1.1 lukem Backend *be, 1405 1.1 lukem Entry *e, 1406 1.1 lukem ObjectClass *oc, 1407 1.1 lukem const char** text, 1408 1.1 lukem char *textbuf, size_t textlen ) 1409 1.1 lukem { 1410 1.1 lukem *text = textbuf; 1411 1.1 lukem 1412 1.1 lukem if( !SLAP_REFERRALS(be) ) { 1413 1.1 lukem snprintf( textbuf, textlen, 1414 1.1 lukem "objectClass \"%s\" not supported in context", 1415 1.1 lukem oc->soc_oid ); 1416 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1417 1.1 lukem } 1418 1.1 lukem 1419 1.1 lukem return LDAP_SUCCESS; 1420 1.1 lukem } 1421 1.1 lukem 1422 1.1 lukem static int subentryObjectClass ( 1423 1.1 lukem Backend *be, 1424 1.1 lukem Entry *e, 1425 1.1 lukem ObjectClass *oc, 1426 1.1 lukem const char** text, 1427 1.1 lukem char *textbuf, size_t textlen ) 1428 1.1 lukem { 1429 1.1 lukem *text = textbuf; 1430 1.1 lukem 1431 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1432 1.1 lukem snprintf( textbuf, textlen, 1433 1.1 lukem "objectClass \"%s\" not supported in context", 1434 1.1 lukem oc->soc_oid ); 1435 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1436 1.1 lukem } 1437 1.1 lukem 1438 1.1 lukem if( oc != slap_schema.si_oc_subentry && !is_entry_subentry( e ) ) { 1439 1.1 lukem snprintf( textbuf, textlen, 1440 1.1 lukem "objectClass \"%s\" only allowed in subentries", 1441 1.1 lukem oc->soc_oid ); 1442 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1443 1.1 lukem } 1444 1.1 lukem 1445 1.1 lukem return LDAP_SUCCESS; 1446 1.1 lukem } 1447 1.1 lukem 1448 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 1449 1.1 lukem static int dynamicObjectClass ( 1450 1.1 lukem Backend *be, 1451 1.1 lukem Entry *e, 1452 1.1 lukem ObjectClass *oc, 1453 1.1 lukem const char** text, 1454 1.1 lukem char *textbuf, size_t textlen ) 1455 1.1 lukem { 1456 1.1 lukem *text = textbuf; 1457 1.1 lukem 1458 1.1 lukem if( !SLAP_DYNAMIC(be) ) { 1459 1.1 lukem snprintf( textbuf, textlen, 1460 1.1 lukem "objectClass \"%s\" not supported in context", 1461 1.1 lukem oc->soc_oid ); 1462 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1463 1.1 lukem } 1464 1.1 lukem 1465 1.1 lukem return LDAP_SUCCESS; 1466 1.1 lukem } 1467 1.1 lukem #endif /* LDAP_DYNAMIC_OBJECTS */ 1468 1.1 lukem 1469 1.1 lukem static int rootDseAttribute ( 1470 1.1 lukem Backend *be, 1471 1.1 lukem Entry *e, 1472 1.1 lukem Attribute *attr, 1473 1.1 lukem const char** text, 1474 1.1 lukem char *textbuf, size_t textlen ) 1475 1.1 lukem { 1476 1.1 lukem *text = textbuf; 1477 1.1 lukem 1478 1.1 lukem if( e->e_nname.bv_len ) { 1479 1.1 lukem snprintf( textbuf, textlen, 1480 1.1 lukem "attribute \"%s\" only allowed in the root DSE", 1481 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1482 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1483 1.1 lukem } 1484 1.1 lukem 1485 1.1 lukem /* we should not be called for the root DSE */ 1486 1.1 lukem assert( 0 ); 1487 1.1 lukem return LDAP_SUCCESS; 1488 1.1 lukem } 1489 1.1 lukem 1490 1.1 lukem static int aliasAttribute ( 1491 1.1 lukem Backend *be, 1492 1.1 lukem Entry *e, 1493 1.1 lukem Attribute *attr, 1494 1.1 lukem const char** text, 1495 1.1 lukem char *textbuf, size_t textlen ) 1496 1.1 lukem { 1497 1.1 lukem *text = textbuf; 1498 1.1 lukem 1499 1.1 lukem if( !SLAP_ALIASES(be) ) { 1500 1.1 lukem snprintf( textbuf, textlen, 1501 1.1 lukem "attribute \"%s\" not supported in context", 1502 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1503 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1504 1.1 lukem } 1505 1.1 lukem 1506 1.1 lukem if( !is_entry_alias( e ) ) { 1507 1.1 lukem snprintf( textbuf, textlen, 1508 1.1 lukem "attribute \"%s\" only allowed in the alias", 1509 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1510 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1511 1.1 lukem } 1512 1.1 lukem 1513 1.1 lukem return LDAP_SUCCESS; 1514 1.1 lukem } 1515 1.1 lukem 1516 1.1 lukem static int referralAttribute ( 1517 1.1 lukem Backend *be, 1518 1.1 lukem Entry *e, 1519 1.1 lukem Attribute *attr, 1520 1.1 lukem const char** text, 1521 1.1 lukem char *textbuf, size_t textlen ) 1522 1.1 lukem { 1523 1.1 lukem *text = textbuf; 1524 1.1 lukem 1525 1.1 lukem if( !SLAP_REFERRALS(be) ) { 1526 1.1 lukem snprintf( textbuf, textlen, 1527 1.1 lukem "attribute \"%s\" not supported in context", 1528 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1529 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1530 1.1 lukem } 1531 1.1 lukem 1532 1.1 lukem if( !is_entry_referral( e ) ) { 1533 1.1 lukem snprintf( textbuf, textlen, 1534 1.1 lukem "attribute \"%s\" only allowed in the referral", 1535 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1536 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1537 1.1 lukem } 1538 1.1 lukem 1539 1.1 lukem return LDAP_SUCCESS; 1540 1.1 lukem } 1541 1.1 lukem 1542 1.1 lukem static int subentryAttribute ( 1543 1.1 lukem Backend *be, 1544 1.1 lukem Entry *e, 1545 1.1 lukem Attribute *attr, 1546 1.1 lukem const char** text, 1547 1.1 lukem char *textbuf, size_t textlen ) 1548 1.1 lukem { 1549 1.1 lukem *text = textbuf; 1550 1.1 lukem 1551 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1552 1.1 lukem snprintf( textbuf, textlen, 1553 1.1 lukem "attribute \"%s\" not supported in context", 1554 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1555 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1556 1.1 lukem } 1557 1.1 lukem 1558 1.1 lukem if( !is_entry_subentry( e ) ) { 1559 1.1 lukem snprintf( textbuf, textlen, 1560 1.1 lukem "attribute \"%s\" only allowed in the subentry", 1561 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1562 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1563 1.1 lukem } 1564 1.1 lukem 1565 1.1 lukem return LDAP_SUCCESS; 1566 1.1 lukem } 1567 1.1 lukem 1568 1.1 lukem static int administrativeRoleAttribute ( 1569 1.1 lukem Backend *be, 1570 1.1 lukem Entry *e, 1571 1.1 lukem Attribute *attr, 1572 1.1 lukem const char** text, 1573 1.1 lukem char *textbuf, size_t textlen ) 1574 1.1 lukem { 1575 1.1 lukem *text = textbuf; 1576 1.1 lukem 1577 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1578 1.1 lukem snprintf( textbuf, textlen, 1579 1.1 lukem "attribute \"%s\" not supported in context", 1580 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1581 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1582 1.1 lukem } 1583 1.1 lukem 1584 1.1 lukem snprintf( textbuf, textlen, 1585 1.1 lukem "attribute \"%s\" not supported!", 1586 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1587 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1588 1.1 lukem } 1589 1.1 lukem 1590 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 1591 1.1 lukem static int dynamicAttribute ( 1592 1.1 lukem Backend *be, 1593 1.1 lukem Entry *e, 1594 1.1 lukem Attribute *attr, 1595 1.1 lukem const char** text, 1596 1.1 lukem char *textbuf, size_t textlen ) 1597 1.1 lukem { 1598 1.1 lukem *text = textbuf; 1599 1.1 lukem 1600 1.1 lukem if( !SLAP_DYNAMIC(be) ) { 1601 1.1 lukem snprintf( textbuf, textlen, 1602 1.1 lukem "attribute \"%s\" not supported in context", 1603 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1604 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1605 1.1 lukem } 1606 1.1 lukem 1607 1.1 lukem if( !is_entry_dynamicObject( e ) ) { 1608 1.1 lukem snprintf( textbuf, textlen, 1609 1.1 lukem "attribute \"%s\" only allowed in dynamic object", 1610 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1611 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1612 1.1 lukem } 1613 1.1 lukem 1614 1.1 lukem return LDAP_SUCCESS; 1615 1.1 lukem } 1616 1.1 lukem #endif /* LDAP_DYNAMIC_OBJECTS */ 1617
Indexes created Sun Apr 19 00:22:55 UTC 2026