openldap-devel

openldap-devel@openldap.org

1416 discussions

#15646 BerkeleyDB hybrid mutexes
by Howard Chu 08 Oct '07

08 Oct '07

Fyi, hybrid mutex support in BDB 4.6.21 is still not a good idea on 2.6 Linux systems. -- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

2 1

slapo-memberof nested group behavior
by Faraz Khan 08 Oct '07

08 Oct '07

Dear all, i know that nested groups have been discussed in detail before- just wanted to know what the priority of implementing nested groups through slapo-memberof or otherwise is. The functionality already discussed is: If A memberof B and C memberof A then C memberof B Functionality required would be that the memberof attribute handles recursion correctly. The administrative importance of this functionality cannot be emphasized more upon. I am willing to help out with the slapo-memberof module if the functionality can be built into the current overlay only. Pointers on how to accomplish this would be appreciated. -- Faraz R Khan Chief Architect Emergen Consulting Pvt Ltd +92.21.111.111.320 x200 www.emergen.biz

2 1

Old open bugs
by Howard Chu 08 Oct '07

08 Oct '07

I just noticed that ITS#4468 was fixed in 2.3.34 by the fix for ITS#4805. Hallvard, are you still tracking ITS#3864 and #4467? Ando, did fixes for ITS#4563 and 4591 ever get backported from HEAD into a release? -- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

2 2

Re: commit: ldap/build openldap.m4
by Gavin Henry 05 Oct '07

05 Oct '07

hyc(a)OpenLDAP.org wrote: > Update of /repo/OpenLDAP/pkg/ldap/build > > Modified Files: > Tag: OPENLDAP_REL_ENG_2_3 > openldap.m4 1.140.2.13 -> 1.140.2.14 > > Log Message: > Reject BDB 4.6 or newer > Much easier than telling folks they can use the early version of 4.6 I think. -- Kind Regards, Gavin Henry. Managing Director. T +44 (0) 1224 279484 M +44 (0) 7930 323266 F +44 (0) 1224 824887 E ghenry(a)suretecsystems.com Open Source. Open Solutions(tm). http://www.suretecsystems.com/

1 0

Re: commit: ldap/servers/slapd filter.c
by Howard Chu 05 Oct '07

05 Oct '07

ando(a)OpenLDAP.org wrote: > Update of /repo/OpenLDAP/pkg/ldap/servers/slapd > > Modified Files: > filter.c 1.142 -> 1.143 > > Log Message: > for consistency, always represent UUIDs correctly (ITS#5168; really, a de-normalize hook would help) I guess we need a syntax flag that says "denormalization needed" and perhaps a usage flag for the normalizer that says "denormalize a normalized value" -- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

2 1

syncprov_playlog() and sl_mutex
by Pierangelo Masarati 04 Oct '07

04 Oct '07

There seems to be no (longer?) reason for syncprov_playlog() to release the sl_mutex from inside. I'd prefer, for readability, to lock/unlock either inside or outside the function call. Fixing (unless there's objection...) p. Ing. Pierangelo Masarati OpenLDAP Core Team SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it --------------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Email: pierangelo.masarati(a)sys-net.it ---------------------------------------

1 1

Basic examples of new overlays worthwhile ?
by Buchan Milne 03 Oct '07

03 Oct '07

Someone on #ldap was having trouble with slapo-memberof, so I did a quick basic example to confirm it works, available at http://pastebin.ca/724050 So, I wonder if it is worthwhile having some examples like this in the documentation or not ? Or, would it be better to ship a test for the overlay, and provide a more complete example of a rfc2307bis-type setup ? Alternatively, is there a to-do list for the outstanding documentation work ? Regards, Buchan

3 2

Patch for memberOf overlay section from Buchan Milne (Was: Re: commit: openldap-guide/admin overlays.sdf)
by Pierangelo Masarati 03 Oct '07

03 Oct '07

ghenry(a)OpenLDAP.org wrote: > Update of /repo/OpenLDAP/pkg/openldap-guide/admin > > Modified Files: > overlays.sdf 1.11 -> 1.12 > > Log Message: > Patch for memberOf overlay section from Buchan Milne. Few comments (I'd fix it myself, but I'm not native English and I don't have sdf installed, so you'd probably do a much better job): The last sentence > Note that the {{B:memberOf}} attribute is an operational attribute, so > it must be requested explicitly. should be completed by adding (for dummies :) > Note that the {{B:memberOf}} attribute is an operational attribute, so > it must be requested explicitly in search requests. Moreover, I made "memberOf" operational by hacking the original definition, in order to be able to add it to arbitrary entries without the need to add the "extensibleObject" objectClass, or to create a specific "memberOfGroup" auxiliary obhjectClass that allows "memberOf" and add it to all entries where the attribute is added. This has to be fixed somehow. Either we define our own "member-of" attribute and make it operational, or we define a "memberOfGroup" auxiliary objectClass as described above, or whatever. Finally, I'd mention that if the overlay is added to an existing database, data is not sanitized by populating all entries according to their group membership. This is on the TODO list. There might be other minor sanity checks missing that I'm not aware of. p. Ing. Pierangelo Masarati OpenLDAP Core Team SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it --------------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Email: pierangelo.masarati(a)sys-net.it ---------------------------------------

1 0

si_presentlist could use a single malloc instead of two :)
by Pierangelo Masarati 02 Oct '07

02 Oct '07

Bervals stored in si_presentlist could use a single malloc instead of two if the berval and the payload are malloc'ed in one shot. This would be allowed by the very well confined use that is made of those data. Any objection? p. Ing. Pierangelo Masarati OpenLDAP Core Team SysNet s.r.l. via Dossi, 8 - 27100 Pavia - ITALIA http://www.sys-net.it --------------------------------------- Office: +39 02 23998309 Mobile: +39 333 4963172 Email: pierangelo.masarati(a)sys-net.it ---------------------------------------

2 1

[Fwd: LDAP/Samba 4 summary]
by Howard Chu 02 Oct '07

02 Oct '07

Yesterday afternoon at the CIFS Workshop we had a meeting to discuss Samba 4's use of LDAP going forward, and what obstacles remained. Among the attendees that I can remember were Andrew Bartlett, Andrew Tridgell, Simo Sorce, Stefan Metzmacher, and (one more, I've forgotten the name) from the Samba team. Nicole Jacque and another (sorry, don't remember the name) from Apple/OpenDirectory, Pete Rowley from FedoraDS, and myself and Marty Heyman for OpenLDAP and Symas. The upshot is that both the Samba and the LDAP sides have work to do, but there are no major roadblocks. LDAP will be Samba 4's default/recommended data store. As for OpenLDAP, most of what Samba 4 needs is either already implemented, or in progress. Schema design tends to still be a stumbling block; in a separate conversation we discussed some design issues in MIT's new Kerberos schema as well as missing features in Heimdal's existing Kerberos schema. That's a bit outside this openldap-devel scope but I've committed to working with the Samba and Kerberos communities to draft some changes to unify these two Kerberos schemas. -- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

3 2

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-devel