GitLab

Please, someone look for SYNTAX_DN in the file, read my comment there
and try to explain what was the code doing there.  I don't understand
the purpose of that.  And I need it to know what to do about it.

Lots to do here.  Possibly move matching rules to a separate file, since
new code and pieces that have been removed from here would have to come
here.

function.

We need to indexing routines per matching rule.  One (cindex) is used to
create the indexes.  The other (sindex) is used to search.  This is
necessary because the syntax of the value assertion may be different
from the syntax of the attributes the matching rules is used with.
They may be the same function, however, and will be the same in most
cases.

delete_values returns LDAP_UNDEFINED_TYPE if the type is unknown,
this is suspect.

Adapt to work with the f_sub definition change reversal.

The matching rule will do that if necessary.

instead of in get_ava.

being.  Really, this should be done, but it makes too great a mess,
so we will leave it for later.

Change at_canonical_name to start from an AttributeType instead
of a character string.  This routine could be inlined cleanly.

Changes in headers needed for new schema support.  These changes break
lots of files in this directory.

First step in third stage of new schema support.
The backend compiles, but it is incomplete.  The rest of slapd is broken,
so don't even think about trying it.

Add digest md5 codes to -lldap/-lldap_r (work in progress)

	Fix broken ACL macros.
	Fix o_dn/o_ndn == NULL vs "".

of a bind request and, upon failure, are left "anonymous."

Rework ACL code to hide access testing within macros to facilate additions
and eventual redesign.

Addition of #ifdef SLAPD_ACLAUTH to conditional include EXPERIMENTAL
"auth" access controls.  Adds ACL_AUTH "auth" access level (above none,
below "compare").  bind requires anonymous access at this level or above access
to "entry"/"userPassword"/"krbName".  This allows administrators to restrict
which entries can be bound to.  (This will likely become default behavior
after testing has completed).

Added configuration support for "digest-realm <realm>" configure directive.
Added connection state and bind_in_progress fields to cn=monitor connection
attribute.

Make sure the token_val argument to get_token is always initialized
to something, either newly allocated memory or NULL.