schema_prep.c revision 1.1.1.7
1 1.1.1.7 christos /* $NetBSD: schema_prep.c,v 1.1.1.7 2018/02/06 01:53:15 christos Exp $ */ 2 1.1.1.3 lukem 3 1.1 lukem /* schema_prep.c - load builtin schema */ 4 1.1.1.5 tron /* $OpenLDAP$ */ 5 1.1 lukem /* This work is part of OpenLDAP Software <http://www.openldap.org/>. 6 1.1 lukem * 7 1.1.1.7 christos * Copyright 1998-2017 The OpenLDAP Foundation. 8 1.1 lukem * All rights reserved. 9 1.1 lukem * 10 1.1 lukem * Redistribution and use in source and binary forms, with or without 11 1.1 lukem * modification, are permitted only as authorized by the OpenLDAP 12 1.1 lukem * Public License. 13 1.1 lukem * 14 1.1 lukem * A copy of this license is available in the file LICENSE in the 15 1.1 lukem * top-level directory of the distribution or, alternatively, at 16 1.1 lukem * <http://www.OpenLDAP.org/license.html>. 17 1.1 lukem */ 18 1.1 lukem 19 1.1.1.6 christos #include <sys/cdefs.h> 20 1.1.1.7 christos __RCSID("$NetBSD: schema_prep.c,v 1.1.1.7 2018/02/06 01:53:15 christos Exp $"); 21 1.1.1.6 christos 22 1.1 lukem #include "portable.h" 23 1.1 lukem 24 1.1 lukem #include <stdio.h> 25 1.1 lukem 26 1.1 lukem #include <ac/ctype.h> 27 1.1 lukem #include <ac/string.h> 28 1.1 lukem #include <ac/socket.h> 29 1.1 lukem 30 1.1 lukem #include "slap.h" 31 1.1 lukem 32 1.1 lukem #define OCDEBUG 0 33 1.1 lukem 34 1.1 lukem int schema_init_done = 0; 35 1.1 lukem 36 1.1 lukem struct slap_internal_schema slap_schema; 37 1.1 lukem 38 1.1 lukem static int 39 1.1 lukem oidValidate( 40 1.1 lukem Syntax *syntax, 41 1.1 lukem struct berval *in ) 42 1.1 lukem { 43 1.1 lukem struct berval val = *in; 44 1.1 lukem 45 1.1 lukem if( val.bv_len == 0 ) { 46 1.1 lukem /* disallow empty strings */ 47 1.1 lukem return LDAP_INVALID_SYNTAX; 48 1.1 lukem } 49 1.1 lukem 50 1.1 lukem if( DESC_LEADCHAR( val.bv_val[0] ) ) { 51 1.1 lukem val.bv_val++; 52 1.1 lukem val.bv_len--; 53 1.1 lukem if ( val.bv_len == 0 ) return LDAP_SUCCESS; 54 1.1 lukem 55 1.1 lukem while( DESC_CHAR( val.bv_val[0] ) ) { 56 1.1 lukem val.bv_val++; 57 1.1 lukem val.bv_len--; 58 1.1 lukem 59 1.1 lukem if ( val.bv_len == 0 ) return LDAP_SUCCESS; 60 1.1 lukem } 61 1.1 lukem 62 1.1 lukem } else { 63 1.1 lukem int sep = 0; 64 1.1 lukem while( OID_LEADCHAR( val.bv_val[0] ) ) { 65 1.1 lukem val.bv_val++; 66 1.1 lukem val.bv_len--; 67 1.1 lukem 68 1.1 lukem if ( val.bv_val[-1] != '0' ) { 69 1.1 lukem while ( OID_LEADCHAR( val.bv_val[0] )) { 70 1.1 lukem val.bv_val++; 71 1.1 lukem val.bv_len--; 72 1.1 lukem } 73 1.1 lukem } 74 1.1 lukem 75 1.1 lukem if( val.bv_len == 0 ) { 76 1.1 lukem if( sep == 0 ) break; 77 1.1 lukem return LDAP_SUCCESS; 78 1.1 lukem } 79 1.1 lukem 80 1.1 lukem if( !OID_SEPARATOR( val.bv_val[0] )) break; 81 1.1 lukem 82 1.1 lukem sep++; 83 1.1 lukem val.bv_val++; 84 1.1 lukem val.bv_len--; 85 1.1 lukem } 86 1.1 lukem } 87 1.1 lukem 88 1.1 lukem return LDAP_INVALID_SYNTAX; 89 1.1 lukem } 90 1.1 lukem 91 1.1 lukem 92 1.1 lukem static int objectClassPretty( 93 1.1 lukem Syntax *syntax, 94 1.1 lukem struct berval *in, 95 1.1 lukem struct berval *out, 96 1.1 lukem void *ctx ) 97 1.1 lukem { 98 1.1 lukem ObjectClass *oc; 99 1.1 lukem 100 1.1 lukem if( oidValidate( NULL, in )) return LDAP_INVALID_SYNTAX; 101 1.1 lukem 102 1.1 lukem oc = oc_bvfind( in ); 103 1.1 lukem if( oc == NULL ) return LDAP_INVALID_SYNTAX; 104 1.1 lukem 105 1.1 lukem ber_dupbv_x( out, &oc->soc_cname, ctx ); 106 1.1 lukem return LDAP_SUCCESS; 107 1.1 lukem } 108 1.1 lukem 109 1.1 lukem static int 110 1.1 lukem attributeTypeMatch( 111 1.1 lukem int *matchp, 112 1.1 lukem slap_mask_t flags, 113 1.1 lukem Syntax *syntax, 114 1.1 lukem MatchingRule *mr, 115 1.1 lukem struct berval *value, 116 1.1 lukem void *assertedValue ) 117 1.1 lukem { 118 1.1 lukem struct berval *a = (struct berval *) assertedValue; 119 1.1 lukem AttributeType *at = at_bvfind( value ); 120 1.1 lukem AttributeType *asserted = at_bvfind( a ); 121 1.1 lukem 122 1.1 lukem if( asserted == NULL ) { 123 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 124 1.1 lukem /* OID form, return FALSE */ 125 1.1 lukem *matchp = 1; 126 1.1 lukem return LDAP_SUCCESS; 127 1.1 lukem } 128 1.1 lukem 129 1.1 lukem /* desc form, return undefined */ 130 1.1 lukem return LDAP_INVALID_SYNTAX; 131 1.1 lukem } 132 1.1 lukem 133 1.1 lukem if ( at == NULL ) { 134 1.1 lukem /* unrecognized stored value */ 135 1.1 lukem return LDAP_INVALID_SYNTAX; 136 1.1 lukem } 137 1.1 lukem 138 1.1 lukem *matchp = ( asserted != at ); 139 1.1 lukem return LDAP_SUCCESS; 140 1.1 lukem } 141 1.1 lukem 142 1.1 lukem static int 143 1.1 lukem matchingRuleMatch( 144 1.1 lukem int *matchp, 145 1.1 lukem slap_mask_t flags, 146 1.1 lukem Syntax *syntax, 147 1.1 lukem MatchingRule *mr, 148 1.1 lukem struct berval *value, 149 1.1 lukem void *assertedValue ) 150 1.1 lukem { 151 1.1 lukem struct berval *a = (struct berval *) assertedValue; 152 1.1 lukem MatchingRule *mrv = mr_bvfind( value ); 153 1.1 lukem MatchingRule *asserted = mr_bvfind( a ); 154 1.1 lukem 155 1.1 lukem if( asserted == NULL ) { 156 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 157 1.1 lukem /* OID form, return FALSE */ 158 1.1 lukem *matchp = 1; 159 1.1 lukem return LDAP_SUCCESS; 160 1.1 lukem } 161 1.1 lukem 162 1.1 lukem /* desc form, return undefined */ 163 1.1 lukem return LDAP_INVALID_SYNTAX; 164 1.1 lukem } 165 1.1 lukem 166 1.1 lukem if ( mrv == NULL ) { 167 1.1 lukem /* unrecognized stored value */ 168 1.1 lukem return LDAP_INVALID_SYNTAX; 169 1.1 lukem } 170 1.1 lukem 171 1.1 lukem *matchp = ( asserted != mrv ); 172 1.1 lukem return LDAP_SUCCESS; 173 1.1 lukem } 174 1.1 lukem 175 1.1 lukem static int 176 1.1 lukem objectClassMatch( 177 1.1 lukem int *matchp, 178 1.1 lukem slap_mask_t flags, 179 1.1 lukem Syntax *syntax, 180 1.1 lukem MatchingRule *mr, 181 1.1 lukem struct berval *value, 182 1.1 lukem void *assertedValue ) 183 1.1 lukem { 184 1.1 lukem struct berval *a = (struct berval *) assertedValue; 185 1.1 lukem ObjectClass *oc = oc_bvfind( value ); 186 1.1 lukem ObjectClass *asserted = oc_bvfind( a ); 187 1.1 lukem 188 1.1 lukem if( asserted == NULL ) { 189 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 190 1.1 lukem /* OID form, return FALSE */ 191 1.1 lukem *matchp = 1; 192 1.1 lukem return LDAP_SUCCESS; 193 1.1 lukem } 194 1.1 lukem 195 1.1 lukem /* desc form, return undefined */ 196 1.1 lukem return LDAP_INVALID_SYNTAX; 197 1.1 lukem } 198 1.1 lukem 199 1.1 lukem if ( oc == NULL ) { 200 1.1 lukem /* unrecognized stored value */ 201 1.1 lukem return LDAP_INVALID_SYNTAX; 202 1.1 lukem } 203 1.1 lukem 204 1.1 lukem *matchp = ( asserted != oc ); 205 1.1 lukem return LDAP_SUCCESS; 206 1.1 lukem } 207 1.1 lukem 208 1.1 lukem static int 209 1.1 lukem objectSubClassMatch( 210 1.1 lukem int *matchp, 211 1.1 lukem slap_mask_t flags, 212 1.1 lukem Syntax *syntax, 213 1.1 lukem MatchingRule *mr, 214 1.1 lukem struct berval *value, 215 1.1 lukem void *assertedValue ) 216 1.1 lukem { 217 1.1 lukem struct berval *a = (struct berval *) assertedValue; 218 1.1 lukem ObjectClass *oc = oc_bvfind( value ); 219 1.1 lukem ObjectClass *asserted = oc_bvfind( a ); 220 1.1 lukem 221 1.1 lukem if( asserted == NULL ) { 222 1.1 lukem if( OID_LEADCHAR( *a->bv_val ) ) { 223 1.1 lukem /* OID form, return FALSE */ 224 1.1 lukem *matchp = 1; 225 1.1 lukem return LDAP_SUCCESS; 226 1.1 lukem } 227 1.1 lukem 228 1.1 lukem /* desc form, return undefined */ 229 1.1 lukem return LDAP_INVALID_SYNTAX; 230 1.1 lukem } 231 1.1 lukem 232 1.1 lukem if ( oc == NULL ) { 233 1.1 lukem /* unrecognized stored value */ 234 1.1 lukem return LDAP_INVALID_SYNTAX; 235 1.1 lukem } 236 1.1 lukem 237 1.1 lukem if( SLAP_MR_IS_VALUE_OF_ATTRIBUTE_SYNTAX( flags ) ) { 238 1.1 lukem *matchp = ( asserted != oc ); 239 1.1 lukem } else { 240 1.1 lukem *matchp = !is_object_subclass( asserted, oc ); 241 1.1 lukem } 242 1.1 lukem 243 1.1 lukem return LDAP_SUCCESS; 244 1.1 lukem } 245 1.1 lukem 246 1.1 lukem static int objectSubClassIndexer( 247 1.1 lukem slap_mask_t use, 248 1.1 lukem slap_mask_t mask, 249 1.1 lukem Syntax *syntax, 250 1.1 lukem MatchingRule *mr, 251 1.1 lukem struct berval *prefix, 252 1.1 lukem BerVarray values, 253 1.1 lukem BerVarray *keysp, 254 1.1 lukem void *ctx ) 255 1.1 lukem { 256 1.1 lukem int rc, noc, i; 257 1.1 lukem BerVarray ocvalues; 258 1.1 lukem ObjectClass **socs; 259 1.1 lukem 260 1.1 lukem for( noc=0; values[noc].bv_val != NULL; noc++ ) { 261 1.1 lukem /* just count em */; 262 1.1 lukem } 263 1.1 lukem 264 1.1 lukem /* over allocate */ 265 1.1 lukem socs = slap_sl_malloc( (noc+16) * sizeof( ObjectClass * ), ctx ); 266 1.1 lukem 267 1.1 lukem /* initialize */ 268 1.1 lukem for( i=0; i<noc; i++ ) { 269 1.1 lukem socs[i] = oc_bvfind( &values[i] ); 270 1.1 lukem } 271 1.1 lukem 272 1.1 lukem /* expand values */ 273 1.1 lukem for( i=0; i<noc; i++ ) { 274 1.1 lukem int j; 275 1.1 lukem ObjectClass *oc = socs[i]; 276 1.1 lukem if( oc == NULL || oc->soc_sups == NULL ) continue; 277 1.1 lukem 278 1.1 lukem for( j=0; oc->soc_sups[j] != NULL; j++ ) { 279 1.1 lukem int found = 0; 280 1.1 lukem ObjectClass *sup = oc->soc_sups[j]; 281 1.1 lukem int k; 282 1.1 lukem 283 1.1 lukem for( k=0; k<noc; k++ ) { 284 1.1 lukem if( sup == socs[k] ) { 285 1.1 lukem found++; 286 1.1 lukem break; 287 1.1 lukem } 288 1.1 lukem } 289 1.1 lukem 290 1.1 lukem if( !found ) { 291 1.1 lukem socs = slap_sl_realloc( socs, 292 1.1 lukem sizeof( ObjectClass * ) * (noc+2), ctx ); 293 1.1 lukem 294 1.1 lukem assert( k == noc ); 295 1.1 lukem socs[noc++] = sup; 296 1.1 lukem } 297 1.1 lukem } 298 1.1 lukem } 299 1.1 lukem 300 1.1 lukem ocvalues = slap_sl_malloc( sizeof( struct berval ) * (noc+1), ctx ); 301 1.1 lukem /* copy values */ 302 1.1 lukem for( i=0; i<noc; i++ ) { 303 1.1 lukem if ( socs[i] ) 304 1.1 lukem ocvalues[i] = socs[i]->soc_cname; 305 1.1 lukem else 306 1.1 lukem ocvalues[i] = values[i]; 307 1.1 lukem } 308 1.1 lukem BER_BVZERO( &ocvalues[i] ); 309 1.1 lukem 310 1.1 lukem rc = octetStringIndexer( use, mask, syntax, mr, 311 1.1 lukem prefix, ocvalues, keysp, ctx ); 312 1.1 lukem 313 1.1 lukem slap_sl_free( ocvalues, ctx ); 314 1.1 lukem slap_sl_free( socs, ctx ); 315 1.1 lukem return rc; 316 1.1 lukem } 317 1.1 lukem 318 1.1 lukem #define objectSubClassFilter octetStringFilter 319 1.1 lukem 320 1.1 lukem static ObjectClassSchemaCheckFN rootDseObjectClass; 321 1.1 lukem static ObjectClassSchemaCheckFN aliasObjectClass; 322 1.1 lukem static ObjectClassSchemaCheckFN referralObjectClass; 323 1.1 lukem static ObjectClassSchemaCheckFN subentryObjectClass; 324 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 325 1.1 lukem static ObjectClassSchemaCheckFN dynamicObjectClass; 326 1.1 lukem #endif 327 1.1 lukem 328 1.1 lukem static struct slap_schema_oc_map { 329 1.1 lukem char *ssom_name; 330 1.1 lukem char *ssom_defn; 331 1.1 lukem ObjectClassSchemaCheckFN *ssom_check; 332 1.1 lukem slap_mask_t ssom_flags; 333 1.1 lukem size_t ssom_offset; 334 1.1 lukem } oc_map[] = { 335 1.1 lukem { "top", "( 2.5.6.0 NAME 'top' " 336 1.1 lukem "DESC 'top of the superclass chain' " 337 1.1 lukem "ABSTRACT MUST objectClass )", 338 1.1 lukem 0, 0, offsetof(struct slap_internal_schema, si_oc_top) }, 339 1.1 lukem { "extensibleObject", "( 1.3.6.1.4.1.1466.101.120.111 " 340 1.1 lukem "NAME 'extensibleObject' " 341 1.1 lukem "DESC 'RFC4512: extensible object' " 342 1.1 lukem "SUP top AUXILIARY )", 343 1.1 lukem 0, SLAP_OC_OPERATIONAL, 344 1.1 lukem offsetof(struct slap_internal_schema, si_oc_extensibleObject) }, 345 1.1 lukem { "alias", "( 2.5.6.1 NAME 'alias' " 346 1.1 lukem "DESC 'RFC4512: an alias' " 347 1.1 lukem "SUP top STRUCTURAL " 348 1.1 lukem "MUST aliasedObjectName )", 349 1.1 lukem aliasObjectClass, SLAP_OC_ALIAS|SLAP_OC_OPERATIONAL, 350 1.1 lukem offsetof(struct slap_internal_schema, si_oc_alias) }, 351 1.1 lukem { "referral", "( 2.16.840.1.113730.3.2.6 NAME 'referral' " 352 1.1 lukem "DESC 'namedref: named subordinate referral' " 353 1.1 lukem "SUP top STRUCTURAL MUST ref )", 354 1.1 lukem referralObjectClass, SLAP_OC_REFERRAL|SLAP_OC_OPERATIONAL, 355 1.1 lukem offsetof(struct slap_internal_schema, si_oc_referral) }, 356 1.1 lukem { "LDAProotDSE", "( 1.3.6.1.4.1.4203.1.4.1 " 357 1.1 lukem "NAME ( 'OpenLDAProotDSE' 'LDAProotDSE' ) " 358 1.1 lukem "DESC 'OpenLDAP Root DSE object' " 359 1.1 lukem "SUP top STRUCTURAL MAY cn )", 360 1.1 lukem rootDseObjectClass, SLAP_OC_OPERATIONAL, 361 1.1 lukem offsetof(struct slap_internal_schema, si_oc_rootdse) }, 362 1.1 lukem { "subentry", "( 2.5.17.0 NAME 'subentry' " 363 1.1 lukem "DESC 'RFC3672: subentry' " 364 1.1 lukem "SUP top STRUCTURAL " 365 1.1 lukem "MUST ( cn $ subtreeSpecification ) )", 366 1.1 lukem subentryObjectClass, SLAP_OC_SUBENTRY|SLAP_OC_OPERATIONAL, 367 1.1 lukem offsetof(struct slap_internal_schema, si_oc_subentry) }, 368 1.1 lukem { "subschema", "( 2.5.20.1 NAME 'subschema' " 369 1.1 lukem "DESC 'RFC4512: controlling subschema (sub)entry' " 370 1.1 lukem "AUXILIARY " 371 1.1 lukem "MAY ( dITStructureRules $ nameForms $ dITContentRules $ " 372 1.1 lukem "objectClasses $ attributeTypes $ matchingRules $ " 373 1.1 lukem "matchingRuleUse ) )", 374 1.1 lukem subentryObjectClass, SLAP_OC_OPERATIONAL, 375 1.1 lukem offsetof(struct slap_internal_schema, si_oc_subschema) }, 376 1.1 lukem #ifdef LDAP_COLLECTIVE_ATTRIBUTES 377 1.1 lukem { "collectiveAttributeSubentry", "( 2.5.17.2 " 378 1.1 lukem "NAME 'collectiveAttributeSubentry' " 379 1.1 lukem "DESC 'RFC3671: collective attribute subentry' " 380 1.1 lukem "AUXILIARY )", 381 1.1 lukem subentryObjectClass, 382 1.1 lukem SLAP_OC_COLLECTIVEATTRIBUTESUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 383 1.1 lukem offsetof( struct slap_internal_schema, 384 1.1 lukem si_oc_collectiveAttributeSubentry) }, 385 1.1 lukem #endif 386 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 387 1.1 lukem { "dynamicObject", "( 1.3.6.1.4.1.1466.101.119.2 " 388 1.1 lukem "NAME 'dynamicObject' " 389 1.1 lukem "DESC 'RFC2589: Dynamic Object' " 390 1.1 lukem "SUP top AUXILIARY )", 391 1.1 lukem dynamicObjectClass, SLAP_OC_DYNAMICOBJECT, 392 1.1 lukem offsetof(struct slap_internal_schema, si_oc_dynamicObject) }, 393 1.1 lukem #endif 394 1.1 lukem { "glue", "( 1.3.6.1.4.1.4203.666.3.4 " 395 1.1 lukem "NAME 'glue' " 396 1.1 lukem "DESC 'Glue Entry' " 397 1.1 lukem "SUP top STRUCTURAL )", 398 1.1 lukem 0, SLAP_OC_GLUE|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 399 1.1 lukem offsetof(struct slap_internal_schema, si_oc_glue) }, 400 1.1 lukem { "syncConsumerSubentry", "( 1.3.6.1.4.1.4203.666.3.5 " 401 1.1 lukem "NAME 'syncConsumerSubentry' " 402 1.1 lukem "DESC 'Persistent Info for SyncRepl Consumer' " 403 1.1 lukem "AUXILIARY " 404 1.1 lukem "MAY syncreplCookie )", 405 1.1 lukem 0, SLAP_OC_SYNCCONSUMERSUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 406 1.1 lukem offsetof(struct slap_internal_schema, si_oc_syncConsumerSubentry) }, 407 1.1 lukem { "syncProviderSubentry", "( 1.3.6.1.4.1.4203.666.3.6 " 408 1.1 lukem "NAME 'syncProviderSubentry' " 409 1.1 lukem "DESC 'Persistent Info for SyncRepl Producer' " 410 1.1 lukem "AUXILIARY " 411 1.1 lukem "MAY contextCSN )", 412 1.1 lukem 0, SLAP_OC_SYNCPROVIDERSUBENTRY|SLAP_OC_OPERATIONAL|SLAP_OC_HIDE, 413 1.1 lukem offsetof(struct slap_internal_schema, si_oc_syncProviderSubentry) }, 414 1.1 lukem 415 1.1 lukem { NULL, NULL, NULL, 0, 0 } 416 1.1 lukem }; 417 1.1 lukem 418 1.1 lukem static AttributeTypeSchemaCheckFN rootDseAttribute; 419 1.1 lukem static AttributeTypeSchemaCheckFN aliasAttribute; 420 1.1 lukem static AttributeTypeSchemaCheckFN referralAttribute; 421 1.1 lukem static AttributeTypeSchemaCheckFN subentryAttribute; 422 1.1 lukem static AttributeTypeSchemaCheckFN administrativeRoleAttribute; 423 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 424 1.1 lukem static AttributeTypeSchemaCheckFN dynamicAttribute; 425 1.1 lukem #endif 426 1.1 lukem 427 1.1 lukem static struct slap_schema_ad_map { 428 1.1 lukem char *ssam_name; 429 1.1 lukem char *ssam_defn; 430 1.1 lukem AttributeTypeSchemaCheckFN *ssam_check; 431 1.1 lukem slap_mask_t ssam_flags; 432 1.1 lukem slap_syntax_validate_func *ssam_syn_validate; 433 1.1 lukem slap_syntax_transform_func *ssam_syn_pretty; 434 1.1 lukem slap_mr_convert_func *ssam_mr_convert; 435 1.1 lukem slap_mr_normalize_func *ssam_mr_normalize; 436 1.1 lukem slap_mr_match_func *ssam_mr_match; 437 1.1 lukem slap_mr_indexer_func *ssam_mr_indexer; 438 1.1 lukem slap_mr_filter_func *ssam_mr_filter; 439 1.1 lukem size_t ssam_offset; 440 1.1 lukem } ad_map[] = { 441 1.1 lukem { "objectClass", "( 2.5.4.0 NAME 'objectClass' " 442 1.1 lukem "DESC 'RFC4512: object classes of the entity' " 443 1.1 lukem "EQUALITY objectIdentifierMatch " 444 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", 445 1.1 lukem NULL, SLAP_AT_FINAL, 446 1.1 lukem oidValidate, objectClassPretty, 447 1.1 lukem NULL, NULL, objectSubClassMatch, 448 1.1 lukem objectSubClassIndexer, objectSubClassFilter, 449 1.1 lukem offsetof(struct slap_internal_schema, si_ad_objectClass) }, 450 1.1 lukem 451 1.1 lukem /* user entry operational attributes */ 452 1.1 lukem { "structuralObjectClass", "( 2.5.21.9 NAME 'structuralObjectClass' " 453 1.1 lukem "DESC 'RFC4512: structural object class of entry' " 454 1.1 lukem "EQUALITY objectIdentifierMatch " 455 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 456 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 457 1.1.1.3 lukem NULL, 0, 458 1.1 lukem oidValidate, objectClassPretty, 459 1.1 lukem NULL, NULL, objectSubClassMatch, 460 1.1 lukem objectSubClassIndexer, objectSubClassFilter, 461 1.1 lukem offsetof(struct slap_internal_schema, si_ad_structuralObjectClass) }, 462 1.1 lukem { "createTimestamp", "( 2.5.18.1 NAME 'createTimestamp' " 463 1.1 lukem "DESC 'RFC4512: time which object was created' " 464 1.1 lukem "EQUALITY generalizedTimeMatch " 465 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 466 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 467 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 468 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 469 1.1 lukem NULL, NULL, 470 1.1 lukem NULL, NULL, NULL, NULL, NULL, 471 1.1 lukem offsetof(struct slap_internal_schema, si_ad_createTimestamp) }, 472 1.1 lukem { "modifyTimestamp", "( 2.5.18.2 NAME 'modifyTimestamp' " 473 1.1 lukem "DESC 'RFC4512: time which object was last modified' " 474 1.1 lukem "EQUALITY generalizedTimeMatch " 475 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 476 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 477 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 478 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 479 1.1 lukem NULL, NULL, 480 1.1 lukem NULL, NULL, NULL, NULL, NULL, 481 1.1 lukem offsetof(struct slap_internal_schema, si_ad_modifyTimestamp) }, 482 1.1 lukem { "creatorsName", "( 2.5.18.3 NAME 'creatorsName' " 483 1.1 lukem "DESC 'RFC4512: name of creator' " 484 1.1 lukem "EQUALITY distinguishedNameMatch " 485 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 486 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 487 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 488 1.1 lukem NULL, NULL, 489 1.1 lukem NULL, NULL, NULL, NULL, NULL, 490 1.1 lukem offsetof(struct slap_internal_schema, si_ad_creatorsName) }, 491 1.1 lukem { "modifiersName", "( 2.5.18.4 NAME 'modifiersName' " 492 1.1 lukem "DESC 'RFC4512: name of last modifier' " 493 1.1 lukem "EQUALITY distinguishedNameMatch " 494 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 495 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 496 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 497 1.1 lukem NULL, NULL, 498 1.1 lukem NULL, NULL, NULL, NULL, NULL, 499 1.1 lukem offsetof(struct slap_internal_schema, si_ad_modifiersName) }, 500 1.1 lukem { "hasSubordinates", "( 2.5.18.9 NAME 'hasSubordinates' " 501 1.1 lukem "DESC 'X.501: entry has children' " 502 1.1 lukem "EQUALITY booleanMatch " 503 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 " 504 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 505 1.1 lukem NULL, SLAP_AT_DYNAMIC, 506 1.1 lukem NULL, NULL, 507 1.1 lukem NULL, NULL, NULL, NULL, NULL, 508 1.1 lukem offsetof(struct slap_internal_schema, si_ad_hasSubordinates) }, 509 1.1 lukem { "subschemaSubentry", "( 2.5.18.10 NAME 'subschemaSubentry' " 510 1.1 lukem "DESC 'RFC4512: name of controlling subschema entry' " 511 1.1 lukem "EQUALITY distinguishedNameMatch " 512 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE " 513 1.1 lukem "NO-USER-MODIFICATION USAGE directoryOperation )", 514 1.1 lukem NULL, SLAP_AT_DYNAMIC, 515 1.1 lukem NULL, NULL, 516 1.1 lukem NULL, NULL, NULL, NULL, NULL, 517 1.1 lukem offsetof(struct slap_internal_schema, si_ad_subschemaSubentry) }, 518 1.1 lukem #ifdef LDAP_COLLECTIVE_ATTRIBUTES 519 1.1 lukem { "collectiveAttributeSubentries", "( 2.5.18.12 " 520 1.1 lukem "NAME 'collectiveAttributeSubentries' " 521 1.1 lukem "DESC 'RFC3671: collective attribute subentries' " 522 1.1 lukem "EQUALITY distinguishedNameMatch " 523 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 524 1.1 lukem "NO-USER-MODIFICATION USAGE directoryOperation )", 525 1.1 lukem NULL, SLAP_AT_HIDE, 526 1.1 lukem NULL, NULL, 527 1.1 lukem NULL, NULL, NULL, NULL, NULL, 528 1.1 lukem offsetof(struct slap_internal_schema, si_ad_collectiveSubentries) }, 529 1.1 lukem { "collectiveExclusions", "( 2.5.18.7 NAME 'collectiveExclusions' " 530 1.1 lukem "DESC 'RFC3671: collective attribute exclusions' " 531 1.1 lukem "EQUALITY objectIdentifierMatch " 532 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 533 1.1 lukem "USAGE directoryOperation )", 534 1.1 lukem NULL, SLAP_AT_HIDE, 535 1.1 lukem NULL, NULL, 536 1.1 lukem NULL, NULL, NULL, NULL, NULL, 537 1.1 lukem offsetof(struct slap_internal_schema, si_ad_collectiveExclusions) }, 538 1.1 lukem #endif 539 1.1 lukem 540 1.1 lukem { "entryDN", "( 1.3.6.1.1.20 NAME 'entryDN' " 541 1.1 lukem "DESC 'DN of the entry' " 542 1.1 lukem "EQUALITY distinguishedNameMatch " 543 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 544 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 545 1.1 lukem NULL, SLAP_AT_DYNAMIC, 546 1.1 lukem NULL, NULL, 547 1.1 lukem NULL, NULL, NULL, NULL, NULL, 548 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryDN) }, 549 1.1 lukem { "entryUUID", "( 1.3.6.1.1.16.4 NAME 'entryUUID' " 550 1.1 lukem "DESC 'UUID of the entry' " 551 1.1 lukem "EQUALITY UUIDMatch " 552 1.1 lukem "ORDERING UUIDOrderingMatch " 553 1.1 lukem "SYNTAX 1.3.6.1.1.16.1 " 554 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 555 1.1 lukem NULL, SLAP_AT_MANAGEABLE, 556 1.1 lukem NULL, NULL, 557 1.1 lukem NULL, NULL, NULL, NULL, NULL, 558 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryUUID) }, 559 1.1 lukem { "entryCSN", "( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' " 560 1.1 lukem "DESC 'change sequence number of the entry content' " 561 1.1 lukem "EQUALITY CSNMatch " 562 1.1 lukem "ORDERING CSNOrderingMatch " 563 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 564 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 565 1.1 lukem NULL, SLAP_AT_HIDE, 566 1.1 lukem NULL, NULL, 567 1.1 lukem NULL, NULL, NULL, NULL, NULL, 568 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryCSN) }, 569 1.1 lukem { "namingCSN", "( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' " 570 1.1 lukem "DESC 'change sequence number of the entry naming (RDN)' " 571 1.1 lukem "EQUALITY CSNMatch " 572 1.1 lukem "ORDERING CSNOrderingMatch " 573 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 574 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 575 1.1 lukem NULL, SLAP_AT_HIDE, 576 1.1 lukem NULL, NULL, 577 1.1 lukem NULL, NULL, NULL, NULL, NULL, 578 1.1 lukem offsetof(struct slap_internal_schema, si_ad_namingCSN) }, 579 1.1 lukem 580 1.1 lukem #ifdef LDAP_SUPERIOR_UUID 581 1.1 lukem { "superiorUUID", "( 1.3.6.1.4.1.4203.666.1.11 NAME 'superiorUUID' " 582 1.1 lukem "DESC 'UUID of the superior entry' " 583 1.1 lukem "EQUALITY UUIDMatch " 584 1.1 lukem "ORDERING UUIDOrderingMatch " 585 1.1 lukem "SYNTAX 1.3.6.1.1.16.1 " 586 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", 587 1.1 lukem NULL, SLAP_AT_HIDE, 588 1.1 lukem NULL, NULL, 589 1.1 lukem NULL, NULL, NULL, NULL, NULL, 590 1.1 lukem offsetof(struct slap_internal_schema, si_ad_superiorUUID) }, 591 1.1 lukem #endif 592 1.1 lukem 593 1.1 lukem { "syncreplCookie", "( 1.3.6.1.4.1.4203.666.1.23 " 594 1.1 lukem "NAME 'syncreplCookie' " 595 1.1 lukem "DESC 'syncrepl Cookie for shadow copy' " 596 1.1 lukem "EQUALITY octetStringMatch " 597 1.1 lukem "ORDERING octetStringOrderingMatch " 598 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 " 599 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 600 1.1 lukem NULL, SLAP_AT_HIDE, 601 1.1 lukem NULL, NULL, 602 1.1 lukem NULL, NULL, NULL, NULL, NULL, 603 1.1 lukem offsetof(struct slap_internal_schema, si_ad_syncreplCookie) }, 604 1.1 lukem 605 1.1 lukem { "contextCSN", "( 1.3.6.1.4.1.4203.666.1.25 " 606 1.1 lukem "NAME 'contextCSN' " 607 1.1 lukem "DESC 'the largest committed CSN of a context' " 608 1.1 lukem "EQUALITY CSNMatch " 609 1.1 lukem "ORDERING CSNOrderingMatch " 610 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} " 611 1.1 lukem "NO-USER-MODIFICATION USAGE dSAOperation )", 612 1.1 lukem NULL, SLAP_AT_HIDE, 613 1.1 lukem NULL, NULL, 614 1.1 lukem NULL, NULL, NULL, NULL, NULL, 615 1.1 lukem offsetof(struct slap_internal_schema, si_ad_contextCSN) }, 616 1.1 lukem 617 1.1 lukem #ifdef LDAP_SYNC_TIMESTAMP 618 1.1 lukem { "syncTimestamp", "( 1.3.6.1.4.1.4203.666.1.26 NAME 'syncTimestamp' " 619 1.1 lukem "DESC 'Time which object was replicated' " 620 1.1 lukem "EQUALITY generalizedTimeMatch " 621 1.1 lukem "ORDERING generalizedTimeOrderingMatch " 622 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 " 623 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 624 1.1 lukem NULL, 0, 625 1.1 lukem NULL, NULL, 626 1.1 lukem NULL, NULL, NULL, NULL, NULL, 627 1.1 lukem offsetof(struct slap_internal_schema, si_ad_syncTimestamp) }, 628 1.1 lukem #endif 629 1.1 lukem 630 1.1 lukem /* root DSE attributes */ 631 1.1 lukem { "altServer", "( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' " 632 1.1 lukem "DESC 'RFC4512: alternative servers' " 633 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperation )", 634 1.1 lukem rootDseAttribute, 0, 635 1.1 lukem NULL, NULL, 636 1.1 lukem NULL, NULL, NULL, NULL, NULL, 637 1.1 lukem offsetof(struct slap_internal_schema, si_ad_altServer) }, 638 1.1 lukem { "namingContexts", "( 1.3.6.1.4.1.1466.101.120.5 " 639 1.1 lukem "NAME 'namingContexts' " 640 1.1 lukem "DESC 'RFC4512: naming contexts' " 641 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperation )", 642 1.1 lukem rootDseAttribute, 0, 643 1.1 lukem NULL, NULL, 644 1.1 lukem NULL, NULL, NULL, NULL, NULL, 645 1.1 lukem offsetof(struct slap_internal_schema, si_ad_namingContexts) }, 646 1.1 lukem { "supportedControl", "( 1.3.6.1.4.1.1466.101.120.13 " 647 1.1 lukem "NAME 'supportedControl' " 648 1.1 lukem "DESC 'RFC4512: supported controls' " 649 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", 650 1.1 lukem rootDseAttribute, 0, 651 1.1 lukem NULL, NULL, 652 1.1 lukem NULL, NULL, NULL, NULL, NULL, 653 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedControl) }, 654 1.1 lukem { "supportedExtension", "( 1.3.6.1.4.1.1466.101.120.7 " 655 1.1 lukem "NAME 'supportedExtension' " 656 1.1 lukem "DESC 'RFC4512: supported extended operations' " 657 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", 658 1.1 lukem rootDseAttribute, 0, 659 1.1 lukem NULL, NULL, 660 1.1 lukem NULL, NULL, NULL, NULL, NULL, 661 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedExtension) }, 662 1.1 lukem { "supportedLDAPVersion", "( 1.3.6.1.4.1.1466.101.120.15 " 663 1.1 lukem "NAME 'supportedLDAPVersion' " 664 1.1 lukem "DESC 'RFC4512: supported LDAP versions' " 665 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 USAGE dSAOperation )", 666 1.1 lukem rootDseAttribute, 0, 667 1.1 lukem NULL, NULL, 668 1.1 lukem NULL, NULL, NULL, NULL, NULL, 669 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedLDAPVersion) }, 670 1.1 lukem { "supportedSASLMechanisms", "( 1.3.6.1.4.1.1466.101.120.14 " 671 1.1 lukem "NAME 'supportedSASLMechanisms' " 672 1.1 lukem "DESC 'RFC4512: supported SASL mechanisms'" 673 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE dSAOperation )", 674 1.1 lukem rootDseAttribute, 0, 675 1.1 lukem NULL, NULL, 676 1.1 lukem NULL, NULL, NULL, NULL, NULL, 677 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedSASLMechanisms) }, 678 1.1 lukem { "supportedFeatures", "( 1.3.6.1.4.1.4203.1.3.5 " 679 1.1 lukem "NAME 'supportedFeatures' " 680 1.1 lukem "DESC 'RFC4512: features supported by the server' " 681 1.1 lukem "EQUALITY objectIdentifierMatch " 682 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 " 683 1.1 lukem "USAGE dSAOperation )", 684 1.1 lukem rootDseAttribute, 0, 685 1.1 lukem NULL, NULL, 686 1.1 lukem NULL, NULL, NULL, NULL, NULL, 687 1.1 lukem offsetof(struct slap_internal_schema, si_ad_supportedFeatures) }, 688 1.1 lukem { "monitorContext", "( 1.3.6.1.4.1.4203.666.1.10 " 689 1.1 lukem "NAME 'monitorContext' " 690 1.1 lukem "DESC 'monitor context' " 691 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 692 1.1.1.3 lukem "EQUALITY distinguishedNameMatch " 693 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 694 1.1 lukem "USAGE dSAOperation )", 695 1.1 lukem rootDseAttribute, SLAP_AT_HIDE, 696 1.1 lukem NULL, NULL, 697 1.1 lukem NULL, NULL, NULL, NULL, NULL, 698 1.1 lukem offsetof(struct slap_internal_schema, si_ad_monitorContext) }, 699 1.1.1.2 lukem { "configContext", "( 1.3.6.1.4.1.4203.1.12.2.1 " 700 1.1 lukem "NAME 'configContext' " 701 1.1 lukem "DESC 'config context' " 702 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 " 703 1.1.1.3 lukem "EQUALITY distinguishedNameMatch " 704 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 705 1.1 lukem "USAGE dSAOperation )", 706 1.1 lukem rootDseAttribute, SLAP_AT_HIDE, 707 1.1 lukem NULL, NULL, 708 1.1 lukem NULL, NULL, NULL, NULL, NULL, 709 1.1 lukem offsetof(struct slap_internal_schema, si_ad_configContext) }, 710 1.1 lukem { "vendorName", "( 1.3.6.1.1.4 NAME 'vendorName' " 711 1.1 lukem "DESC 'RFC3045: name of implementation vendor' " 712 1.1 lukem "EQUALITY caseExactMatch " 713 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 714 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 715 1.1 lukem "USAGE dSAOperation )", 716 1.1 lukem rootDseAttribute, 0, 717 1.1 lukem NULL, NULL, 718 1.1 lukem NULL, NULL, NULL, NULL, NULL, 719 1.1 lukem offsetof(struct slap_internal_schema, si_ad_vendorName) }, 720 1.1 lukem { "vendorVersion", "( 1.3.6.1.1.5 NAME 'vendorVersion' " 721 1.1 lukem "DESC 'RFC3045: version of implementation' " 722 1.1 lukem "EQUALITY caseExactMatch " 723 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 724 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION " 725 1.1 lukem "USAGE dSAOperation )", 726 1.1 lukem rootDseAttribute, 0, 727 1.1 lukem NULL, NULL, 728 1.1 lukem NULL, NULL, NULL, NULL, NULL, 729 1.1 lukem offsetof(struct slap_internal_schema, si_ad_vendorVersion) }, 730 1.1 lukem 731 1.1 lukem /* subentry attributes */ 732 1.1 lukem { "administrativeRole", "( 2.5.18.5 NAME 'administrativeRole' " 733 1.1 lukem "DESC 'RFC3672: administrative role' " 734 1.1 lukem "EQUALITY objectIdentifierMatch " 735 1.1 lukem "USAGE directoryOperation " 736 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", 737 1.1 lukem administrativeRoleAttribute, SLAP_AT_HIDE, 738 1.1 lukem NULL, NULL, 739 1.1 lukem NULL, NULL, NULL, NULL, NULL, 740 1.1 lukem offsetof(struct slap_internal_schema, si_ad_administrativeRole) }, 741 1.1 lukem { "subtreeSpecification", "( 2.5.18.6 NAME 'subtreeSpecification' " 742 1.1 lukem "DESC 'RFC3672: subtree specification' " 743 1.1 lukem "SINGLE-VALUE " 744 1.1 lukem "USAGE directoryOperation " 745 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 )", 746 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 747 1.1 lukem NULL, NULL, 748 1.1 lukem NULL, NULL, NULL, NULL, NULL, 749 1.1 lukem offsetof(struct slap_internal_schema, si_ad_subtreeSpecification) }, 750 1.1 lukem 751 1.1 lukem /* subschema subentry attributes */ 752 1.1 lukem { "dITStructureRules", "( 2.5.21.1 NAME 'dITStructureRules' " 753 1.1 lukem "DESC 'RFC4512: DIT structure rules' " 754 1.1 lukem "EQUALITY integerFirstComponentMatch " 755 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.17 " 756 1.1 lukem "USAGE directoryOperation ) ", 757 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 758 1.1 lukem NULL, NULL, 759 1.1 lukem NULL, NULL, NULL, NULL, NULL, 760 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ditStructureRules) }, 761 1.1 lukem { "dITContentRules", "( 2.5.21.2 NAME 'dITContentRules' " 762 1.1 lukem "DESC 'RFC4512: DIT content rules' " 763 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 764 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.16 USAGE directoryOperation )", 765 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 766 1.1 lukem oidValidate, NULL, 767 1.1 lukem NULL, NULL, objectClassMatch, NULL, NULL, 768 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ditContentRules) }, 769 1.1 lukem { "matchingRules", "( 2.5.21.4 NAME 'matchingRules' " 770 1.1 lukem "DESC 'RFC4512: matching rules' " 771 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 772 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.30 USAGE directoryOperation )", 773 1.1 lukem subentryAttribute, 0, 774 1.1 lukem oidValidate, NULL, 775 1.1 lukem NULL, NULL, matchingRuleMatch, NULL, NULL, 776 1.1 lukem offsetof(struct slap_internal_schema, si_ad_matchingRules) }, 777 1.1 lukem { "attributeTypes", "( 2.5.21.5 NAME 'attributeTypes' " 778 1.1 lukem "DESC 'RFC4512: attribute types' " 779 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 780 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.3 USAGE directoryOperation )", 781 1.1 lukem subentryAttribute, 0, 782 1.1 lukem oidValidate, NULL, 783 1.1 lukem NULL, NULL, attributeTypeMatch, NULL, NULL, 784 1.1 lukem offsetof(struct slap_internal_schema, si_ad_attributeTypes) }, 785 1.1 lukem { "objectClasses", "( 2.5.21.6 NAME 'objectClasses' " 786 1.1 lukem "DESC 'RFC4512: object classes' " 787 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 788 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.37 USAGE directoryOperation )", 789 1.1 lukem subentryAttribute, 0, 790 1.1 lukem oidValidate, NULL, 791 1.1 lukem NULL, NULL, objectClassMatch, NULL, NULL, 792 1.1 lukem offsetof(struct slap_internal_schema, si_ad_objectClasses) }, 793 1.1 lukem { "nameForms", "( 2.5.21.7 NAME 'nameForms' " 794 1.1 lukem "DESC 'RFC4512: name forms ' " 795 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 796 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.35 USAGE directoryOperation )", 797 1.1 lukem subentryAttribute, SLAP_AT_HIDE, 798 1.1 lukem NULL, NULL, 799 1.1 lukem NULL, NULL, NULL, NULL, NULL, 800 1.1 lukem offsetof(struct slap_internal_schema, si_ad_nameForms) }, 801 1.1 lukem { "matchingRuleUse", "( 2.5.21.8 NAME 'matchingRuleUse' " 802 1.1 lukem "DESC 'RFC4512: matching rule uses' " 803 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 804 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.31 USAGE directoryOperation )", 805 1.1 lukem subentryAttribute, 0, 806 1.1 lukem oidValidate, NULL, 807 1.1 lukem NULL, NULL, matchingRuleMatch, NULL, NULL, 808 1.1 lukem offsetof(struct slap_internal_schema, si_ad_matchingRuleUse) }, 809 1.1 lukem 810 1.1 lukem { "ldapSyntaxes", "( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' " 811 1.1 lukem "DESC 'RFC4512: LDAP syntaxes' " 812 1.1 lukem "EQUALITY objectIdentifierFirstComponentMatch " 813 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )", 814 1.1 lukem subentryAttribute, 0, 815 1.1 lukem NULL, NULL, 816 1.1 lukem NULL, NULL, NULL, NULL, NULL, 817 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ldapSyntaxes) }, 818 1.1 lukem 819 1.1 lukem /* knowledge information */ 820 1.1 lukem { "aliasedObjectName", "( 2.5.4.1 " 821 1.1 lukem "NAME ( 'aliasedObjectName' 'aliasedEntryName' ) " 822 1.1 lukem "DESC 'RFC4512: name of aliased object' " 823 1.1 lukem "EQUALITY distinguishedNameMatch " 824 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )", 825 1.1 lukem aliasAttribute, SLAP_AT_FINAL, 826 1.1 lukem NULL, NULL, 827 1.1 lukem NULL, NULL, NULL, NULL, NULL, 828 1.1 lukem offsetof(struct slap_internal_schema, si_ad_aliasedObjectName) }, 829 1.1 lukem { "ref", "( 2.16.840.1.113730.3.1.34 NAME 'ref' " 830 1.1 lukem "DESC 'RFC3296: subordinate referral URL' " 831 1.1 lukem "EQUALITY caseExactMatch " 832 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 " 833 1.1 lukem "USAGE distributedOperation )", 834 1.1 lukem referralAttribute, 0, 835 1.1 lukem NULL, NULL, 836 1.1 lukem NULL, NULL, NULL, NULL, NULL, 837 1.1 lukem offsetof(struct slap_internal_schema, si_ad_ref) }, 838 1.1 lukem 839 1.1 lukem /* access control internals */ 840 1.1 lukem { "entry", "( 1.3.6.1.4.1.4203.1.3.1 " 841 1.1 lukem "NAME 'entry' " 842 1.1 lukem "DESC 'OpenLDAP ACL entry pseudo-attribute' " 843 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.1 " 844 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 845 1.1 lukem NULL, SLAP_AT_HIDE, 846 1.1 lukem NULL, NULL, 847 1.1 lukem NULL, NULL, NULL, NULL, NULL, 848 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entry) }, 849 1.1 lukem { "children", "( 1.3.6.1.4.1.4203.1.3.2 " 850 1.1 lukem "NAME 'children' " 851 1.1 lukem "DESC 'OpenLDAP ACL children pseudo-attribute' " 852 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.1 " 853 1.1 lukem "SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", 854 1.1 lukem NULL, SLAP_AT_HIDE, 855 1.1 lukem NULL, NULL, 856 1.1 lukem NULL, NULL, NULL, NULL, NULL, 857 1.1 lukem offsetof(struct slap_internal_schema, si_ad_children) }, 858 1.1 lukem 859 1.1 lukem /* access control externals */ 860 1.1 lukem { "authzTo", "( 1.3.6.1.4.1.4203.666.1.8 " 861 1.1 lukem "NAME ( 'authzTo' 'saslAuthzTo' ) " 862 1.1 lukem "DESC 'proxy authorization targets' " 863 1.1 lukem "EQUALITY authzMatch " 864 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " 865 1.1 lukem "X-ORDERED 'VALUES' " 866 1.1 lukem "USAGE distributedOperation )", 867 1.1 lukem NULL, SLAP_AT_HIDE, 868 1.1 lukem NULL, NULL, 869 1.1 lukem NULL, NULL, NULL, NULL, NULL, 870 1.1 lukem offsetof(struct slap_internal_schema, si_ad_saslAuthzTo) }, 871 1.1 lukem { "authzFrom", "( 1.3.6.1.4.1.4203.666.1.9 " 872 1.1 lukem "NAME ( 'authzFrom' 'saslAuthzFrom' ) " 873 1.1 lukem "DESC 'proxy authorization sources' " 874 1.1 lukem "EQUALITY authzMatch " 875 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " 876 1.1 lukem "X-ORDERED 'VALUES' " 877 1.1 lukem "USAGE distributedOperation )", 878 1.1 lukem NULL, SLAP_AT_HIDE, 879 1.1 lukem NULL, NULL, 880 1.1 lukem NULL, NULL, NULL, NULL, NULL, 881 1.1 lukem offsetof(struct slap_internal_schema, si_ad_saslAuthzFrom) }, 882 1.1 lukem 883 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 884 1.1 lukem { "entryTtl", "( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' " 885 1.1 lukem "DESC 'RFC2589: entry time-to-live' " 886 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE " 887 1.1 lukem "NO-USER-MODIFICATION USAGE dSAOperation )", 888 1.1 lukem dynamicAttribute, SLAP_AT_MANAGEABLE, 889 1.1 lukem NULL, NULL, 890 1.1 lukem NULL, NULL, NULL, NULL, NULL, 891 1.1 lukem offsetof(struct slap_internal_schema, si_ad_entryTtl) }, 892 1.1 lukem { "dynamicSubtrees", "( 1.3.6.1.4.1.1466.101.119.4 " 893 1.1 lukem "NAME 'dynamicSubtrees' " 894 1.1 lukem "DESC 'RFC2589: dynamic subtrees' " 895 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFICATION " 896 1.1 lukem "USAGE dSAOperation )", 897 1.1 lukem rootDseAttribute, 0, 898 1.1 lukem NULL, NULL, 899 1.1 lukem NULL, NULL, NULL, NULL, NULL, 900 1.1 lukem offsetof(struct slap_internal_schema, si_ad_dynamicSubtrees) }, 901 1.1 lukem #endif 902 1.1 lukem 903 1.1 lukem /* userApplication attributes (which system schema depends upon) */ 904 1.1 lukem { "distinguishedName", "( 2.5.4.49 NAME 'distinguishedName' " 905 1.1 lukem "DESC 'RFC4519: common supertype of DN attributes' " 906 1.1 lukem "EQUALITY distinguishedNameMatch " 907 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )", 908 1.1 lukem NULL, SLAP_AT_ABSTRACT, 909 1.1 lukem NULL, NULL, 910 1.1 lukem NULL, NULL, NULL, NULL, NULL, 911 1.1 lukem offsetof(struct slap_internal_schema, si_ad_distinguishedName) }, 912 1.1 lukem { "name", "( 2.5.4.41 NAME 'name' " 913 1.1 lukem "DESC 'RFC4519: common supertype of name attributes' " 914 1.1 lukem "EQUALITY caseIgnoreMatch " 915 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 916 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )", 917 1.1 lukem NULL, SLAP_AT_ABSTRACT, 918 1.1 lukem NULL, NULL, 919 1.1 lukem NULL, NULL, NULL, NULL, NULL, 920 1.1 lukem offsetof(struct slap_internal_schema, si_ad_name) }, 921 1.1 lukem { "cn", "( 2.5.4.3 NAME ( 'cn' 'commonName' ) " 922 1.1 lukem "DESC 'RFC4519: common name(s) for which the entity is known by' " 923 1.1 lukem "SUP name )", 924 1.1 lukem NULL, 0, 925 1.1 lukem NULL, NULL, 926 1.1 lukem NULL, NULL, NULL, NULL, NULL, 927 1.1 lukem offsetof(struct slap_internal_schema, si_ad_cn) }, 928 1.1 lukem { "uid", "( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) " 929 1.1 lukem "DESC 'RFC4519: user identifier' " 930 1.1 lukem "EQUALITY caseIgnoreMatch " 931 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 932 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", 933 1.1 lukem NULL, 0, 934 1.1 lukem NULL, NULL, 935 1.1 lukem NULL, NULL, NULL, NULL, NULL, 936 1.1 lukem offsetof(struct slap_internal_schema, si_ad_uid) }, 937 1.1 lukem { "uidNumber", /* for ldapi:// */ 938 1.1 lukem "( 1.3.6.1.1.1.1.0 NAME 'uidNumber' " 939 1.1 lukem "DESC 'RFC2307: An integer uniquely identifying a user " 940 1.1 lukem "in an administrative domain' " 941 1.1 lukem "EQUALITY integerMatch " 942 1.1.1.5 tron "ORDERING integerOrderingMatch " 943 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", 944 1.1 lukem NULL, 0, 945 1.1 lukem NULL, NULL, 946 1.1 lukem NULL, NULL, NULL, NULL, NULL, 947 1.1 lukem offsetof(struct slap_internal_schema, si_ad_uidNumber) }, 948 1.1 lukem { "gidNumber", /* for ldapi:// */ 949 1.1 lukem "( 1.3.6.1.1.1.1.1 NAME 'gidNumber' " 950 1.1 lukem "DESC 'RFC2307: An integer uniquely identifying a group " 951 1.1 lukem "in an administrative domain' " 952 1.1 lukem "EQUALITY integerMatch " 953 1.1.1.5 tron "ORDERING integerOrderingMatch " 954 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", 955 1.1 lukem NULL, 0, 956 1.1 lukem NULL, NULL, 957 1.1 lukem NULL, NULL, NULL, NULL, NULL, 958 1.1 lukem offsetof(struct slap_internal_schema, si_ad_gidNumber) }, 959 1.1 lukem { "userPassword", "( 2.5.4.35 NAME 'userPassword' " 960 1.1 lukem "DESC 'RFC4519/2307: password of user' " 961 1.1 lukem "EQUALITY octetStringMatch " 962 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} )", 963 1.1 lukem NULL, 0, 964 1.1 lukem NULL, NULL, 965 1.1 lukem NULL, NULL, NULL, NULL, NULL, 966 1.1 lukem offsetof(struct slap_internal_schema, si_ad_userPassword) }, 967 1.1 lukem 968 1.1 lukem { "labeledURI", "( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' " 969 1.1 lukem "DESC 'RFC2079: Uniform Resource Identifier with optional label' " 970 1.1 lukem "EQUALITY caseExactMatch " 971 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", 972 1.1 lukem NULL, 0, 973 1.1 lukem NULL, NULL, 974 1.1 lukem NULL, NULL, NULL, NULL, NULL, 975 1.1 lukem offsetof(struct slap_internal_schema, si_ad_labeledURI) }, 976 1.1 lukem 977 1.1 lukem #ifdef SLAPD_AUTHPASSWD 978 1.1 lukem { "authPassword", "( 1.3.6.1.4.1.4203.1.3.4 " 979 1.1 lukem "NAME 'authPassword' " 980 1.1 lukem "DESC 'RFC3112: authentication password attribute' " 981 1.1 lukem "EQUALITY 1.3.6.1.4.1.4203.1.2.2 " 982 1.1 lukem "SYNTAX 1.3.6.1.4.1.4203.1.1.2 )", 983 1.1 lukem NULL, 0, 984 1.1 lukem NULL, NULL, 985 1.1 lukem NULL, NULL, NULL, NULL, NULL, 986 1.1 lukem offsetof(struct slap_internal_schema, si_ad_authPassword) }, 987 1.1 lukem { "supportedAuthPasswordSchemes", "( 1.3.6.1.4.1.4203.1.3.3 " 988 1.1 lukem "NAME 'supportedAuthPasswordSchemes' " 989 1.1 lukem "DESC 'RFC3112: supported authPassword schemes' " 990 1.1 lukem "EQUALITY caseExactIA5Match " 991 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} " 992 1.1 lukem "USAGE dSAOperation )", 993 1.1 lukem subschemaAttribute, 0, 994 1.1 lukem NULL, NULL, 995 1.1 lukem NULL, NULL, NULL, NULL, NULL, 996 1.1 lukem offsetof(struct slap_internal_schema, si_ad_authPasswordSchemes) }, 997 1.1 lukem #endif 998 1.1 lukem 999 1.1 lukem { "description", "( 2.5.4.13 NAME 'description' " 1000 1.1 lukem "DESC 'RFC4519: descriptive information' " 1001 1.1 lukem "EQUALITY caseIgnoreMatch " 1002 1.1 lukem "SUBSTR caseIgnoreSubstringsMatch " 1003 1.1 lukem "SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024} )", 1004 1.1 lukem NULL, 0, 1005 1.1 lukem NULL, NULL, 1006 1.1 lukem NULL, NULL, NULL, NULL, NULL, 1007 1.1 lukem offsetof(struct slap_internal_schema, si_ad_description) }, 1008 1.1 lukem 1009 1.1 lukem { "seeAlso", "( 2.5.4.34 NAME 'seeAlso' " 1010 1.1 lukem "DESC 'RFC4519: DN of related object' " 1011 1.1 lukem "SUP distinguishedName )", 1012 1.1 lukem NULL, 0, 1013 1.1 lukem NULL, NULL, 1014 1.1 lukem NULL, NULL, NULL, NULL, NULL, 1015 1.1 lukem offsetof(struct slap_internal_schema, si_ad_seeAlso) }, 1016 1.1 lukem 1017 1.1 lukem { NULL, NULL, NULL, 0, NULL, NULL, NULL, NULL, NULL, NULL, NULL, 0 } 1018 1.1 lukem }; 1019 1.1 lukem 1020 1.1 lukem static AttributeType slap_at_undefined = { 1021 1.1 lukem { "1.1.1", NULL, "Catchall for undefined attribute types", 1, NULL, 1022 1.1 lukem NULL, NULL, NULL, NULL, 1023 1.1 lukem 0, 0, 0, 1, LDAP_SCHEMA_DSA_OPERATION, NULL }, /* LDAPAttributeType */ 1024 1.1 lukem BER_BVC("UNDEFINED"), /* cname */ 1025 1.1 lukem NULL, /* sup */ 1026 1.1 lukem NULL, /* subtypes */ 1027 1.1 lukem NULL, NULL, NULL, NULL, /* matching rules routines */ 1028 1.1 lukem NULL, /* syntax (will be set later to "octetString") */ 1029 1.1 lukem NULL, /* schema check function */ 1030 1.1 lukem NULL, /* oidmacro */ 1031 1.1.1.2 lukem NULL, /* soidmacro */ 1032 1.1 lukem SLAP_AT_ABSTRACT|SLAP_AT_FINAL, /* mask */ 1033 1.1 lukem { NULL }, /* next */ 1034 1.1 lukem NULL /* attribute description */ 1035 1.1 lukem /* mutex (don't know how to initialize it :) */ 1036 1.1 lukem }; 1037 1.1 lukem 1038 1.1 lukem static AttributeType slap_at_proxied = { 1039 1.1 lukem { "1.1.1", NULL, "Catchall for undefined proxied attribute types", 1, NULL, 1040 1.1 lukem NULL, NULL, NULL, NULL, 1041 1.1 lukem 0, 0, 0, 0, LDAP_SCHEMA_USER_APPLICATIONS, NULL }, /* LDAPAttributeType */ 1042 1.1 lukem BER_BVC("PROXIED"), /* cname */ 1043 1.1 lukem NULL, /* sup */ 1044 1.1 lukem NULL, /* subtypes */ 1045 1.1 lukem NULL, NULL, NULL, NULL, /* matching rules routines (will be set later) */ 1046 1.1 lukem NULL, /* syntax (will be set later to "octetString") */ 1047 1.1 lukem NULL, /* schema check function */ 1048 1.1 lukem NULL, /* oidmacro */ 1049 1.1.1.2 lukem NULL, /* soidmacro */ 1050 1.1 lukem SLAP_AT_ABSTRACT|SLAP_AT_FINAL, /* mask */ 1051 1.1 lukem { NULL }, /* next */ 1052 1.1 lukem NULL /* attribute description */ 1053 1.1 lukem /* mutex (don't know how to initialize it :) */ 1054 1.1 lukem }; 1055 1.1 lukem 1056 1.1 lukem static struct slap_schema_mr_map { 1057 1.1 lukem char *ssmm_name; 1058 1.1 lukem size_t ssmm_offset; 1059 1.1 lukem } mr_map[] = { 1060 1.1 lukem { "caseExactIA5Match", 1061 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactIA5Match) }, 1062 1.1 lukem { "caseExactMatch", 1063 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactMatch) }, 1064 1.1 lukem { "caseExactSubstringsMatch", 1065 1.1 lukem offsetof(struct slap_internal_schema, si_mr_caseExactSubstringsMatch) }, 1066 1.1 lukem { "distinguishedNameMatch", 1067 1.1 lukem offsetof(struct slap_internal_schema, si_mr_distinguishedNameMatch) }, 1068 1.1 lukem { "dnSubtreeMatch", 1069 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSubtreeMatch) }, 1070 1.1 lukem { "dnOneLevelMatch", 1071 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnOneLevelMatch) }, 1072 1.1 lukem { "dnSubordinateMatch", 1073 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSubordinateMatch) }, 1074 1.1 lukem { "dnSuperiorMatch", 1075 1.1 lukem offsetof(struct slap_internal_schema, si_mr_dnSuperiorMatch) }, 1076 1.1 lukem { "integerMatch", 1077 1.1 lukem offsetof(struct slap_internal_schema, si_mr_integerMatch) }, 1078 1.1 lukem { "integerFirstComponentMatch", 1079 1.1 lukem offsetof(struct slap_internal_schema, 1080 1.1 lukem si_mr_integerFirstComponentMatch) }, 1081 1.1 lukem { "objectIdentifierFirstComponentMatch", 1082 1.1 lukem offsetof(struct slap_internal_schema, 1083 1.1 lukem si_mr_objectIdentifierFirstComponentMatch) }, 1084 1.1.1.3 lukem { "caseIgnoreMatch", 1085 1.1.1.3 lukem offsetof(struct slap_internal_schema, si_mr_caseIgnoreMatch) }, 1086 1.1.1.3 lukem { "caseIgnoreListMatch", 1087 1.1.1.3 lukem offsetof(struct slap_internal_schema, si_mr_caseIgnoreListMatch) }, 1088 1.1 lukem { NULL, 0 } 1089 1.1 lukem }; 1090 1.1 lukem 1091 1.1 lukem static struct slap_schema_syn_map { 1092 1.1 lukem char *sssm_name; 1093 1.1 lukem size_t sssm_offset; 1094 1.1 lukem } syn_map[] = { 1095 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.15", 1096 1.1 lukem offsetof(struct slap_internal_schema, si_syn_directoryString) }, 1097 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.12", 1098 1.1 lukem offsetof(struct slap_internal_schema, si_syn_distinguishedName) }, 1099 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.27", 1100 1.1 lukem offsetof(struct slap_internal_schema, si_syn_integer) }, 1101 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.40", 1102 1.1 lukem offsetof(struct slap_internal_schema, si_syn_octetString) }, 1103 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.3", 1104 1.1 lukem offsetof(struct slap_internal_schema, si_syn_attributeTypeDesc) }, 1105 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.16", 1106 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ditContentRuleDesc) }, 1107 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.54", 1108 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ldapSyntaxDesc) }, 1109 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.30", 1110 1.1 lukem offsetof(struct slap_internal_schema, si_syn_matchingRuleDesc) }, 1111 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.31", 1112 1.1 lukem offsetof(struct slap_internal_schema, si_syn_matchingRuleUseDesc) }, 1113 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.35", 1114 1.1 lukem offsetof(struct slap_internal_schema, si_syn_nameFormDesc) }, 1115 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.37", 1116 1.1 lukem offsetof(struct slap_internal_schema, si_syn_objectClassDesc) }, 1117 1.1 lukem { "1.3.6.1.4.1.1466.115.121.1.17", 1118 1.1 lukem offsetof(struct slap_internal_schema, si_syn_ditStructureRuleDesc) }, 1119 1.1 lukem { NULL, 0 } 1120 1.1 lukem }; 1121 1.1 lukem 1122 1.1 lukem int 1123 1.1 lukem slap_schema_load( void ) 1124 1.1 lukem { 1125 1.1 lukem int i; 1126 1.1 lukem 1127 1.1 lukem for( i=0; syn_map[i].sssm_name; i++ ) { 1128 1.1 lukem Syntax ** synp = (Syntax **) 1129 1.1 lukem &(((char *) &slap_schema)[syn_map[i].sssm_offset]); 1130 1.1 lukem 1131 1.1 lukem assert( *synp == NULL ); 1132 1.1 lukem 1133 1.1 lukem *synp = syn_find( syn_map[i].sssm_name ); 1134 1.1 lukem 1135 1.1 lukem if( *synp == NULL ) { 1136 1.1 lukem fprintf( stderr, "slap_schema_load: Syntax: " 1137 1.1 lukem "No syntax \"%s\" defined in schema\n", 1138 1.1 lukem syn_map[i].sssm_name ); 1139 1.1 lukem return LDAP_INVALID_SYNTAX; 1140 1.1 lukem } 1141 1.1 lukem } 1142 1.1 lukem 1143 1.1 lukem for( i=0; mr_map[i].ssmm_name; i++ ) { 1144 1.1 lukem MatchingRule ** mrp = (MatchingRule **) 1145 1.1 lukem &(((char *) &slap_schema)[mr_map[i].ssmm_offset]); 1146 1.1 lukem 1147 1.1 lukem assert( *mrp == NULL ); 1148 1.1 lukem 1149 1.1 lukem *mrp = mr_find( mr_map[i].ssmm_name ); 1150 1.1 lukem 1151 1.1 lukem if( *mrp == NULL ) { 1152 1.1 lukem fprintf( stderr, "slap_schema_load: MatchingRule: " 1153 1.1 lukem "No matching rule \"%s\" defined in schema\n", 1154 1.1 lukem mr_map[i].ssmm_name ); 1155 1.1 lukem return LDAP_INAPPROPRIATE_MATCHING; 1156 1.1 lukem } 1157 1.1 lukem } 1158 1.1 lukem 1159 1.1 lukem slap_at_undefined.sat_syntax = slap_schema.si_syn_octetString; 1160 1.1 lukem slap_schema.si_at_undefined = &slap_at_undefined; 1161 1.1 lukem 1162 1.1 lukem slap_at_proxied.sat_equality = mr_find( "octetStringMatch" ); 1163 1.1 lukem slap_at_proxied.sat_approx = mr_find( "octetStringMatch" ); 1164 1.1 lukem slap_at_proxied.sat_ordering = mr_find( "octetStringOrderingMatch" ); 1165 1.1 lukem slap_at_proxied.sat_substr = mr_find( "octetStringSubstringsMatch" ); 1166 1.1 lukem slap_at_proxied.sat_syntax = slap_schema.si_syn_octetString; 1167 1.1 lukem slap_schema.si_at_proxied = &slap_at_proxied; 1168 1.1 lukem 1169 1.1.1.5 tron ldap_pvt_thread_mutex_init( &ad_index_mutex ); 1170 1.1 lukem ldap_pvt_thread_mutex_init( &ad_undef_mutex ); 1171 1.1 lukem ldap_pvt_thread_mutex_init( &oc_undef_mutex ); 1172 1.1 lukem 1173 1.1 lukem for( i=0; ad_map[i].ssam_name; i++ ) { 1174 1.1 lukem assert( ad_map[i].ssam_defn != NULL ); 1175 1.1 lukem { 1176 1.1 lukem LDAPAttributeType *at; 1177 1.1 lukem int code; 1178 1.1 lukem const char *err; 1179 1.1 lukem 1180 1.1 lukem at = ldap_str2attributetype( ad_map[i].ssam_defn, 1181 1.1 lukem &code, &err, LDAP_SCHEMA_ALLOW_ALL ); 1182 1.1 lukem if ( !at ) { 1183 1.1 lukem fprintf( stderr, 1184 1.1 lukem "slap_schema_load: AttributeType \"%s\": %s before %s\n", 1185 1.1 lukem ad_map[i].ssam_name, ldap_scherr2str(code), err ); 1186 1.1 lukem return code; 1187 1.1 lukem } 1188 1.1 lukem 1189 1.1 lukem if ( at->at_oid == NULL ) { 1190 1.1 lukem fprintf( stderr, "slap_schema_load: " 1191 1.1 lukem "AttributeType \"%s\": no OID\n", 1192 1.1 lukem ad_map[i].ssam_name ); 1193 1.1 lukem ldap_attributetype_free( at ); 1194 1.1 lukem return LDAP_OTHER; 1195 1.1 lukem } 1196 1.1 lukem 1197 1.1 lukem code = at_add( at, 0, NULL, NULL, &err ); 1198 1.1 lukem if ( code ) { 1199 1.1 lukem ldap_attributetype_free( at ); 1200 1.1 lukem fprintf( stderr, "slap_schema_load: AttributeType " 1201 1.1 lukem "\"%s\": %s: \"%s\"\n", 1202 1.1 lukem ad_map[i].ssam_name, scherr2str(code), err ); 1203 1.1 lukem return code; 1204 1.1 lukem } 1205 1.1 lukem ldap_memfree( at ); 1206 1.1 lukem } 1207 1.1 lukem { 1208 1.1 lukem int rc; 1209 1.1 lukem const char *text; 1210 1.1 lukem Syntax *syntax = NULL; 1211 1.1 lukem 1212 1.1 lukem AttributeDescription ** adp = (AttributeDescription **) 1213 1.1 lukem &(((char *) &slap_schema)[ad_map[i].ssam_offset]); 1214 1.1 lukem 1215 1.1 lukem assert( *adp == NULL ); 1216 1.1 lukem 1217 1.1 lukem rc = slap_str2ad( ad_map[i].ssam_name, adp, &text ); 1218 1.1 lukem if( rc != LDAP_SUCCESS ) { 1219 1.1 lukem fprintf( stderr, "slap_schema_load: AttributeType \"%s\": " 1220 1.1 lukem "not defined in schema\n", 1221 1.1 lukem ad_map[i].ssam_name ); 1222 1.1 lukem return rc; 1223 1.1 lukem } 1224 1.1 lukem 1225 1.1 lukem if( ad_map[i].ssam_check ) { 1226 1.1 lukem /* install check routine */ 1227 1.1 lukem (*adp)->ad_type->sat_check = ad_map[i].ssam_check; 1228 1.1 lukem } 1229 1.1 lukem /* install flags */ 1230 1.1 lukem (*adp)->ad_type->sat_flags |= ad_map[i].ssam_flags; 1231 1.1 lukem 1232 1.1 lukem /* install custom syntax routines */ 1233 1.1 lukem if( ad_map[i].ssam_syn_validate || 1234 1.1 lukem ad_map[i].ssam_syn_pretty ) 1235 1.1 lukem { 1236 1.1 lukem Syntax *syn; 1237 1.1 lukem 1238 1.1 lukem syntax = (*adp)->ad_type->sat_syntax; 1239 1.1 lukem 1240 1.1 lukem syn = ch_malloc( sizeof( Syntax ) ); 1241 1.1 lukem *syn = *syntax; 1242 1.1 lukem 1243 1.1 lukem if( ad_map[i].ssam_syn_validate ) { 1244 1.1 lukem syn->ssyn_validate = ad_map[i].ssam_syn_validate; 1245 1.1 lukem } 1246 1.1 lukem if( ad_map[i].ssam_syn_pretty ) { 1247 1.1 lukem syn->ssyn_pretty = ad_map[i].ssam_syn_pretty; 1248 1.1 lukem } 1249 1.1 lukem 1250 1.1 lukem (*adp)->ad_type->sat_syntax = syn; 1251 1.1 lukem } 1252 1.1 lukem 1253 1.1 lukem /* install custom rule routines */ 1254 1.1 lukem if( syntax != NULL || 1255 1.1 lukem ad_map[i].ssam_mr_convert || 1256 1.1 lukem ad_map[i].ssam_mr_normalize || 1257 1.1 lukem ad_map[i].ssam_mr_match || 1258 1.1 lukem ad_map[i].ssam_mr_indexer || 1259 1.1 lukem ad_map[i].ssam_mr_filter ) 1260 1.1 lukem { 1261 1.1 lukem MatchingRule *mr = ch_malloc( sizeof( MatchingRule ) ); 1262 1.1 lukem *mr = *(*adp)->ad_type->sat_equality; 1263 1.1 lukem 1264 1.1 lukem if ( syntax != NULL ) { 1265 1.1 lukem mr->smr_syntax = (*adp)->ad_type->sat_syntax; 1266 1.1 lukem } 1267 1.1 lukem if ( ad_map[i].ssam_mr_convert ) { 1268 1.1 lukem mr->smr_convert = ad_map[i].ssam_mr_convert; 1269 1.1 lukem } 1270 1.1 lukem if ( ad_map[i].ssam_mr_normalize ) { 1271 1.1 lukem mr->smr_normalize = ad_map[i].ssam_mr_normalize; 1272 1.1 lukem } 1273 1.1 lukem if ( ad_map[i].ssam_mr_match ) { 1274 1.1 lukem mr->smr_match = ad_map[i].ssam_mr_match; 1275 1.1 lukem } 1276 1.1 lukem if ( ad_map[i].ssam_mr_indexer ) { 1277 1.1 lukem mr->smr_indexer = ad_map[i].ssam_mr_indexer; 1278 1.1 lukem } 1279 1.1 lukem if ( ad_map[i].ssam_mr_filter ) { 1280 1.1 lukem mr->smr_filter = ad_map[i].ssam_mr_filter; 1281 1.1 lukem } 1282 1.1 lukem 1283 1.1 lukem (*adp)->ad_type->sat_equality = mr; 1284 1.1 lukem } 1285 1.1 lukem } 1286 1.1 lukem } 1287 1.1 lukem 1288 1.1 lukem for( i=0; oc_map[i].ssom_name; i++ ) { 1289 1.1 lukem assert( oc_map[i].ssom_defn != NULL ); 1290 1.1 lukem { 1291 1.1 lukem LDAPObjectClass *oc; 1292 1.1 lukem int code; 1293 1.1 lukem const char *err; 1294 1.1 lukem 1295 1.1 lukem oc = ldap_str2objectclass( oc_map[i].ssom_defn, &code, &err, 1296 1.1 lukem LDAP_SCHEMA_ALLOW_ALL ); 1297 1.1 lukem if ( !oc ) { 1298 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1299 1.1 lukem "\"%s\": %s before %s\n", 1300 1.1 lukem oc_map[i].ssom_name, ldap_scherr2str(code), err ); 1301 1.1 lukem return code; 1302 1.1 lukem } 1303 1.1 lukem 1304 1.1 lukem if ( oc->oc_oid == NULL ) { 1305 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1306 1.1 lukem "\"%s\": no OID\n", 1307 1.1 lukem oc_map[i].ssom_name ); 1308 1.1 lukem ldap_objectclass_free( oc ); 1309 1.1 lukem return LDAP_OTHER; 1310 1.1 lukem } 1311 1.1 lukem 1312 1.1 lukem code = oc_add(oc,0,NULL,NULL,&err); 1313 1.1 lukem if ( code ) { 1314 1.1 lukem ldap_objectclass_free( oc ); 1315 1.1 lukem fprintf( stderr, "slap_schema_load: ObjectClass " 1316 1.1 lukem "\"%s\": %s: \"%s\"\n", 1317 1.1 lukem oc_map[i].ssom_name, scherr2str(code), err); 1318 1.1 lukem return code; 1319 1.1 lukem } 1320 1.1 lukem ldap_memfree(oc); 1321 1.1 lukem 1322 1.1 lukem } 1323 1.1 lukem { 1324 1.1 lukem ObjectClass ** ocp = (ObjectClass **) 1325 1.1 lukem &(((char *) &slap_schema)[oc_map[i].ssom_offset]); 1326 1.1 lukem 1327 1.1 lukem assert( *ocp == NULL ); 1328 1.1 lukem 1329 1.1 lukem *ocp = oc_find( oc_map[i].ssom_name ); 1330 1.1 lukem if( *ocp == NULL ) { 1331 1.1 lukem fprintf( stderr, "slap_schema_load: " 1332 1.1 lukem "ObjectClass \"%s\": not defined in schema\n", 1333 1.1 lukem oc_map[i].ssom_name ); 1334 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1335 1.1 lukem } 1336 1.1 lukem 1337 1.1 lukem if( oc_map[i].ssom_check ) { 1338 1.1 lukem /* install check routine */ 1339 1.1 lukem (*ocp)->soc_check = oc_map[i].ssom_check; 1340 1.1 lukem } 1341 1.1 lukem /* install flags */ 1342 1.1 lukem (*ocp)->soc_flags |= oc_map[i].ssom_flags; 1343 1.1 lukem } 1344 1.1 lukem } 1345 1.1 lukem 1346 1.1 lukem return LDAP_SUCCESS; 1347 1.1 lukem } 1348 1.1 lukem 1349 1.1 lukem int 1350 1.1 lukem slap_schema_check( void ) 1351 1.1 lukem { 1352 1.1 lukem /* we should only be called once after schema_init() was called */ 1353 1.1 lukem assert( schema_init_done == 1 ); 1354 1.1 lukem 1355 1.1 lukem /* 1356 1.1 lukem * cycle thru attributeTypes to build matchingRuleUse 1357 1.1 lukem */ 1358 1.1 lukem if ( matching_rule_use_init() ) { 1359 1.1 lukem return LDAP_OTHER; 1360 1.1 lukem } 1361 1.1 lukem 1362 1.1 lukem ++schema_init_done; 1363 1.1 lukem return LDAP_SUCCESS; 1364 1.1 lukem } 1365 1.1 lukem 1366 1.1 lukem static int rootDseObjectClass ( 1367 1.1 lukem Backend *be, 1368 1.1 lukem Entry *e, 1369 1.1 lukem ObjectClass *oc, 1370 1.1 lukem const char** text, 1371 1.1 lukem char *textbuf, size_t textlen ) 1372 1.1 lukem { 1373 1.1 lukem *text = textbuf; 1374 1.1 lukem 1375 1.1 lukem if( e->e_nname.bv_len ) { 1376 1.1 lukem snprintf( textbuf, textlen, 1377 1.1 lukem "objectClass \"%s\" only allowed in the root DSE", 1378 1.1 lukem oc->soc_oid ); 1379 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1380 1.1 lukem } 1381 1.1 lukem 1382 1.1 lukem /* we should not be called for the root DSE */ 1383 1.1 lukem assert( 0 ); 1384 1.1 lukem return LDAP_SUCCESS; 1385 1.1 lukem } 1386 1.1 lukem 1387 1.1 lukem static int aliasObjectClass ( 1388 1.1 lukem Backend *be, 1389 1.1 lukem Entry *e, 1390 1.1 lukem ObjectClass *oc, 1391 1.1 lukem const char** text, 1392 1.1 lukem char *textbuf, size_t textlen ) 1393 1.1 lukem { 1394 1.1 lukem *text = textbuf; 1395 1.1 lukem 1396 1.1 lukem if( !SLAP_ALIASES(be) ) { 1397 1.1 lukem snprintf( textbuf, textlen, 1398 1.1 lukem "objectClass \"%s\" not supported in context", 1399 1.1 lukem oc->soc_oid ); 1400 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1401 1.1 lukem } 1402 1.1 lukem 1403 1.1 lukem return LDAP_SUCCESS; 1404 1.1 lukem } 1405 1.1 lukem 1406 1.1 lukem static int referralObjectClass ( 1407 1.1 lukem Backend *be, 1408 1.1 lukem Entry *e, 1409 1.1 lukem ObjectClass *oc, 1410 1.1 lukem const char** text, 1411 1.1 lukem char *textbuf, size_t textlen ) 1412 1.1 lukem { 1413 1.1 lukem *text = textbuf; 1414 1.1 lukem 1415 1.1 lukem if( !SLAP_REFERRALS(be) ) { 1416 1.1 lukem snprintf( textbuf, textlen, 1417 1.1 lukem "objectClass \"%s\" not supported in context", 1418 1.1 lukem oc->soc_oid ); 1419 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1420 1.1 lukem } 1421 1.1 lukem 1422 1.1 lukem return LDAP_SUCCESS; 1423 1.1 lukem } 1424 1.1 lukem 1425 1.1 lukem static int subentryObjectClass ( 1426 1.1 lukem Backend *be, 1427 1.1 lukem Entry *e, 1428 1.1 lukem ObjectClass *oc, 1429 1.1 lukem const char** text, 1430 1.1 lukem char *textbuf, size_t textlen ) 1431 1.1 lukem { 1432 1.1 lukem *text = textbuf; 1433 1.1 lukem 1434 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1435 1.1 lukem snprintf( textbuf, textlen, 1436 1.1 lukem "objectClass \"%s\" not supported in context", 1437 1.1 lukem oc->soc_oid ); 1438 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1439 1.1 lukem } 1440 1.1 lukem 1441 1.1 lukem if( oc != slap_schema.si_oc_subentry && !is_entry_subentry( e ) ) { 1442 1.1 lukem snprintf( textbuf, textlen, 1443 1.1 lukem "objectClass \"%s\" only allowed in subentries", 1444 1.1 lukem oc->soc_oid ); 1445 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1446 1.1 lukem } 1447 1.1 lukem 1448 1.1 lukem return LDAP_SUCCESS; 1449 1.1 lukem } 1450 1.1 lukem 1451 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 1452 1.1 lukem static int dynamicObjectClass ( 1453 1.1 lukem Backend *be, 1454 1.1 lukem Entry *e, 1455 1.1 lukem ObjectClass *oc, 1456 1.1 lukem const char** text, 1457 1.1 lukem char *textbuf, size_t textlen ) 1458 1.1 lukem { 1459 1.1 lukem *text = textbuf; 1460 1.1 lukem 1461 1.1 lukem if( !SLAP_DYNAMIC(be) ) { 1462 1.1 lukem snprintf( textbuf, textlen, 1463 1.1 lukem "objectClass \"%s\" not supported in context", 1464 1.1 lukem oc->soc_oid ); 1465 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1466 1.1 lukem } 1467 1.1 lukem 1468 1.1 lukem return LDAP_SUCCESS; 1469 1.1 lukem } 1470 1.1 lukem #endif /* LDAP_DYNAMIC_OBJECTS */ 1471 1.1 lukem 1472 1.1 lukem static int rootDseAttribute ( 1473 1.1 lukem Backend *be, 1474 1.1 lukem Entry *e, 1475 1.1 lukem Attribute *attr, 1476 1.1 lukem const char** text, 1477 1.1 lukem char *textbuf, size_t textlen ) 1478 1.1 lukem { 1479 1.1 lukem *text = textbuf; 1480 1.1 lukem 1481 1.1 lukem if( e->e_nname.bv_len ) { 1482 1.1 lukem snprintf( textbuf, textlen, 1483 1.1 lukem "attribute \"%s\" only allowed in the root DSE", 1484 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1485 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1486 1.1 lukem } 1487 1.1 lukem 1488 1.1 lukem /* we should not be called for the root DSE */ 1489 1.1 lukem assert( 0 ); 1490 1.1 lukem return LDAP_SUCCESS; 1491 1.1 lukem } 1492 1.1 lukem 1493 1.1 lukem static int aliasAttribute ( 1494 1.1 lukem Backend *be, 1495 1.1 lukem Entry *e, 1496 1.1 lukem Attribute *attr, 1497 1.1 lukem const char** text, 1498 1.1 lukem char *textbuf, size_t textlen ) 1499 1.1 lukem { 1500 1.1 lukem *text = textbuf; 1501 1.1 lukem 1502 1.1 lukem if( !SLAP_ALIASES(be) ) { 1503 1.1 lukem snprintf( textbuf, textlen, 1504 1.1 lukem "attribute \"%s\" not supported in context", 1505 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1506 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1507 1.1 lukem } 1508 1.1 lukem 1509 1.1 lukem if( !is_entry_alias( e ) ) { 1510 1.1 lukem snprintf( textbuf, textlen, 1511 1.1 lukem "attribute \"%s\" only allowed in the alias", 1512 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1513 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1514 1.1 lukem } 1515 1.1 lukem 1516 1.1 lukem return LDAP_SUCCESS; 1517 1.1 lukem } 1518 1.1 lukem 1519 1.1 lukem static int referralAttribute ( 1520 1.1 lukem Backend *be, 1521 1.1 lukem Entry *e, 1522 1.1 lukem Attribute *attr, 1523 1.1 lukem const char** text, 1524 1.1 lukem char *textbuf, size_t textlen ) 1525 1.1 lukem { 1526 1.1 lukem *text = textbuf; 1527 1.1 lukem 1528 1.1 lukem if( !SLAP_REFERRALS(be) ) { 1529 1.1 lukem snprintf( textbuf, textlen, 1530 1.1 lukem "attribute \"%s\" not supported in context", 1531 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1532 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1533 1.1 lukem } 1534 1.1 lukem 1535 1.1 lukem if( !is_entry_referral( e ) ) { 1536 1.1 lukem snprintf( textbuf, textlen, 1537 1.1 lukem "attribute \"%s\" only allowed in the referral", 1538 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1539 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1540 1.1 lukem } 1541 1.1 lukem 1542 1.1 lukem return LDAP_SUCCESS; 1543 1.1 lukem } 1544 1.1 lukem 1545 1.1 lukem static int subentryAttribute ( 1546 1.1 lukem Backend *be, 1547 1.1 lukem Entry *e, 1548 1.1 lukem Attribute *attr, 1549 1.1 lukem const char** text, 1550 1.1 lukem char *textbuf, size_t textlen ) 1551 1.1 lukem { 1552 1.1 lukem *text = textbuf; 1553 1.1 lukem 1554 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1555 1.1 lukem snprintf( textbuf, textlen, 1556 1.1 lukem "attribute \"%s\" not supported in context", 1557 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1558 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1559 1.1 lukem } 1560 1.1 lukem 1561 1.1 lukem if( !is_entry_subentry( e ) ) { 1562 1.1 lukem snprintf( textbuf, textlen, 1563 1.1 lukem "attribute \"%s\" only allowed in the subentry", 1564 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1565 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1566 1.1 lukem } 1567 1.1 lukem 1568 1.1 lukem return LDAP_SUCCESS; 1569 1.1 lukem } 1570 1.1 lukem 1571 1.1 lukem static int administrativeRoleAttribute ( 1572 1.1 lukem Backend *be, 1573 1.1 lukem Entry *e, 1574 1.1 lukem Attribute *attr, 1575 1.1 lukem const char** text, 1576 1.1 lukem char *textbuf, size_t textlen ) 1577 1.1 lukem { 1578 1.1 lukem *text = textbuf; 1579 1.1 lukem 1580 1.1 lukem if( !SLAP_SUBENTRIES(be) ) { 1581 1.1 lukem snprintf( textbuf, textlen, 1582 1.1 lukem "attribute \"%s\" not supported in context", 1583 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1584 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1585 1.1 lukem } 1586 1.1 lukem 1587 1.1 lukem snprintf( textbuf, textlen, 1588 1.1 lukem "attribute \"%s\" not supported!", 1589 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1590 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1591 1.1 lukem } 1592 1.1 lukem 1593 1.1 lukem #ifdef LDAP_DYNAMIC_OBJECTS 1594 1.1 lukem static int dynamicAttribute ( 1595 1.1 lukem Backend *be, 1596 1.1 lukem Entry *e, 1597 1.1 lukem Attribute *attr, 1598 1.1 lukem const char** text, 1599 1.1 lukem char *textbuf, size_t textlen ) 1600 1.1 lukem { 1601 1.1 lukem *text = textbuf; 1602 1.1 lukem 1603 1.1 lukem if( !SLAP_DYNAMIC(be) ) { 1604 1.1 lukem snprintf( textbuf, textlen, 1605 1.1 lukem "attribute \"%s\" not supported in context", 1606 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1607 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1608 1.1 lukem } 1609 1.1 lukem 1610 1.1 lukem if( !is_entry_dynamicObject( e ) ) { 1611 1.1 lukem snprintf( textbuf, textlen, 1612 1.1 lukem "attribute \"%s\" only allowed in dynamic object", 1613 1.1 lukem attr->a_desc->ad_cname.bv_val ); 1614 1.1 lukem return LDAP_OBJECT_CLASS_VIOLATION; 1615 1.1 lukem } 1616 1.1 lukem 1617 1.1 lukem return LDAP_SUCCESS; 1618 1.1 lukem } 1619 1.1 lukem #endif /* LDAP_DYNAMIC_OBJECTS */ 1620
Indexes created Wed Apr 15 00:22:22 UTC 2026