Duckwater Phase 0

Duckwater Phase 0 - May 2008

We are currently planning to start code-review process for the first phase of Duckwater project which will, among other things, deliver the LDAP naming tools standalone functionality. Code-review request will be posted soon to related mailing lists.

June 11 update

The code has been integrated into the gate late last night. 

Connection Management

New libsldap connection management to address many connection related
issues and changes to ldap_cachemgr to improve it's robustness w.r.t.
server monitoring and configuration changes.

Standalone functionality

The other big part adds support for standalone LDAP naming tools - i.e.
no need for the system to be already LDAP client, or if it is, the tools
like ldaplist(1) and ldapaddent(1M) can list/add naming data from/to
completely different configuration to access different server, using
different credentials, authentication methods etc. It's now also
possible to function SSL only - no anonymous searches are done by
ldapclient nor ldap_cachemgr unless the configuration does say so.

List RFEs and CRs

• [PSARC/2008/256][] Native LDAP standalone tools (Duckwater)
• [4624732][] ldapaddent not fully internationalized
• [4796766][] idsconfig and ldapaddent should support project database
• [4877152][] Performance of ldapaddent
• [4880322][] TLSv1/SSL support needs to become integrated in all LDAP client programs
• [4942874][] RFE: native ldap client with ssl restricted to ports 636/389
• [5035244][] Make ldapaddent a standalone tool
   [6227396][] ldaplist* should refer to ldapclient(1M) when ldap not configured
• [6238952][] solaris 10/nevada: 4624458 seems to be back
• [6561249][] idsconfig prints out incorrect information for VLV indexing when run against DS5.2 & 6.0
• [6619071][] Connection management works incorrectly in multiple authentication methods case if 1st one fails
• [6619173][] the first hosts request failed after restarting keep alive connection on server side
• [6625867][] 3rd party appl crashed in ldap_ld_free() on LDAP Naming Service client
• [6634213][] Native LDAP client connection management needs significant improvement
• [6681185][] libsldap: connection management cleanup and enhancement

Code-review webrev

You can find the webrev for code-review here. The code-review progress can be tracked here.