diff options
Diffstat (limited to 'ldap/admin/src/scripts/template-migrateTo7')
| -rw-r--r-- | ldap/admin/src/scripts/template-migrateTo7 | 3321 |
1 files changed, 0 insertions, 3321 deletions
diff --git a/ldap/admin/src/scripts/template-migrateTo7 b/ldap/admin/src/scripts/template-migrateTo7 deleted file mode 100644 index 4a7b2c37..00000000 --- a/ldap/admin/src/scripts/template-migrateTo7 +++ /dev/null @@ -1,3321 +0,0 @@ -#{{PERL-EXEC}} -# -# BEGIN COPYRIGHT BLOCK -# This Program is free software; you can redistribute it and/or modify it under -# the terms of the GNU General Public License as published by the Free Software -# Foundation; version 2 of the License. -# -# This Program is distributed in the hope that it will be useful, but WITHOUT -# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS -# FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. -# -# You should have received a copy of the GNU General Public License along with -# this Program; if not, write to the Free Software Foundation, Inc., 59 Temple -# Place, Suite 330, Boston, MA 02111-1307 USA. -# -# In addition, as a special exception, Red Hat, Inc. gives You the additional -# right to link the code of this Program with code not covered under the GNU -# General Public License ("Non-GPL Code") and to distribute linked combinations -# including the two, subject to the limitations in this paragraph. Non-GPL Code -# permitted under this exception must only link to the code of this Program -# through those well defined interfaces identified in the file named EXCEPTION -# found in the source code files (the "Approved Interfaces"). The files of -# Non-GPL Code may instantiate templates or use macros or inline functions from -# the Approved Interfaces without causing the resulting work to be covered by -# the GNU General Public License. Only Red Hat, Inc. may make changes or -# additions to the list of Approved Interfaces. You must obey the GNU General -# Public License in all respects for all of the Program code and other code used -# in conjunction with the Program except the Non-GPL Code covered by this -# exception. If you modify this file, you may extend this exception to your -# version of the file, but you are not obligated to do so. If you do not wish to -# provide this exception without modification, you must delete this exception -# statement from your version and license this file solely under the GPL without -# exception. -# -# -# Copyright (C) 2001 Sun Microsystems, Inc. Used by permission. -# Copyright (C) 2005 Red Hat, Inc. -# All rights reserved. -# END COPYRIGHT BLOCK -# - -# enable the use of our bundled perldap with our bundled ldapsdk libraries -# all of this nonsense can be omitted if the mozldapsdk and perldap are -# installed in the operating system locations (e.g. /usr/lib /usr/lib/perl5) -BEGIN { - my $sroot = "{{DS-ROOT}}"; - push @INC, "$sroot/lib/perl/arch", "$sroot/lib/perl"; - if ($ENV{LD_LIBRARY_PATH}) { - $ENV{LD_LIBRARY_PATH} .= ":"; - } - $ENV{LD_LIBRARY_PATH} .= "$sroot/shared/lib"; - # this is only needed for HP/ux PA-RISC, but it doesn't hurt other platforms - if ($ENV{SHLIB_PATH}) { - $ENV{SHLIB_PATH} .= ":"; - } - $ENV{SHLIB_PATH} .= "$sroot/shared/lib"; -} -# Migrate a old directory server to a 7.0 directory server - -######################################################################################################## -# enable the use of Perldap functions -require DynaLoader; - -use Getopt::Std; -use Mozilla::LDAP::Conn; -use Mozilla::LDAP::Entry; -use Mozilla::LDAP::LDIF; -use Mozilla::LDAP::Utils qw(:all); -use Mozilla::LDAP::API qw(:api :ssl :apiv3 :constant); # Direct access to C API -use Time::localtime; - -######################################################################################################## -use Class::Struct ; # load struct-building module - -struct S_index => { - names => '@' , - types => '@' , - oids => '@' , - specific => '$' - }; - - -struct S_plugin => { - name => '$' , - type => '$' , - enable => '$' , - args => '@' - }; -##################################################################################################### - -sub usage { - print(STDERR "\nUsage: $0 -D rootdn { -w password | -w - | -j filename } -p port \n"); - print(STDERR " -o OldInstancePath -n NewInstancePath [-t tracelevel] [-L logfile]\n"); - print(STDERR "************** parameters in brackets are optionals, others are required **************\n"); - print(STDERR " Opts: -D rootdn - New Directory Manager\n"); - print(STDERR " : -w password - New Directory Manager's password\n"); - print(STDERR " : -w - - Prompt for New Directory Manager's password\n"); - print(STDERR " : -j filename - Read New Directory Manager's password from file\n"); - print(STDERR " : -p port - New Directory Server port\n"); - print(STDERR " : -o OldInstancePath - Path of the Old instance to migrate \n"); - print(STDERR " : -n NewInstancePath - Path of the new instance\n"); - print(STDERR " : [-d dataPath] - Path to directory containing data files to import into new instance\n"); - print(STDERR " : [-v oldVersion] - Old version (obtained by running $slapdExecName -v\n"); - print(STDERR " : [-t tracelevel] - specify the level of trace (0..3)\n"); - print(STDERR " : [-L logfile] - specify the file to log the migration report \n"); - - - } - - - -############# -BEGIN { - - require 'uname.lib' ; - $isNT = -d '\\'; - $PATHSEP = $isNT ? "\\" : "/"; - ${SEP} = $isNT ? ";" : ":" ; - @INC = ( '.', '../../../admin/admin/bin'); - grep { s@/@\\@g } @INC if $isNT; - $script_suffix = $isNT ? ".bat" : ""; - $exe_suffix = $isNT ? ".exe" : ""; - # NT needs quotes around some things unix doesn't - $quote = $isNT ? "\"" : ""; - - # If this variable is set, all file/directory creation will make sure the mode - # and ownership of the destination is the same as the source - $PRESERVE = 1 if (!$isNT); - $script_suffix = $isNT ? ".bat" : ""; - $exe_suffix = $isNT ? ".exe" : ""; - if ($isNT) { - $os = "WINNT"; - } else { - $os = &uname("-s"); - } - if ($isNT) { - # we have to pass batch files directly to the NT command interpreter - $com_spec = $ENV{ComSpec}; - if (!$com_spec) { - $com_spec = $ENV{COMSPEC}; - } - if (!$com_spec || ! -f $com_spec) { - # find the first available command interpreter - foreach $drive (c..z) { - $com_spec = "$drive:\\winnt\\system32\\cmd.exe"; - last if (-f $com_spec); - $com_spec = undef; - } - if (! $com_spec) { - # punt and pray - $com_spec = 'c:\winnt\system32\cmd.exe'; - } - } - } - if ( $os eq "AIX" ) { - $dll_suffix = "_shr.a"; - } - elsif ( $os eq "HP-UX" ) { - $dll_suffix = ".sl"; - } - elsif ( $os eq "WINNT" ) { - $dll_suffix = ".dll"; - } - else { - $dll_suffix = ".so"; - } - $slapdExecName = $isNT ? 'slapd.exe' : './ns-slapd'; - # if this flag is set, we will migrate the old database - # by doing a db2ldif -> ldif2db; - $convertToLDIF = 1; - select STDERR; - $| = 1; - select STDOUT; - $| = 1; - # if the old value for dbcachesize is less than this, make it this - $MIN_DBCACHESIZE = '500000'; -} - -SWITCH: { - if ($os eq "AIX") { - $LIB_PATH = "LIBPATH" ; - last SWITCH ; - } - if ($os eq "HP-UX") { - $LIB_PATH = "SHLIB_PATH" ; - last SWITCH ; - } - if ($isNT) { - $LIB_PATH = "PATH" ; - last SWITCH ; - } - else { - $LIB_PATH = "LD_LIBRARY_PATH" ; - last SWITCH ; - } - } - - # Old parameters - ${oldDir} = "" ; - ${oldname} = "" ; - ${oldHome} = "" ; - ${oldConfDir} = "" ; - ${oldlocaluser} ; - ${olduid} ; - ${oldgid} ; - - # New parameters - ${root} = "{{DS-ROOT}}" ; - ${type} = "" ; - ${newname} = "" ; - ${newport} = "" ; - ${rootDN} = "" ; - ${rootpwd} = "" ; - ${localhost} = "" ; - ${LogFileReport} = "" ; - ${newuid} ; - ${localuser} ; - ${newgid} ; - $NO_INPUT_USER = 0 ; # by default user can give inputs during the migration process - ${curdir} = getCwd(); - ${slapdExecDir} = "${root}${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server${PATHSEP}"; - - # specify the level of trace - $TRACELEVEL=1; - - $LDAP_SERVER_UNREACHABLE = 81; - - # get input users - &getParameters() ; - ${oldDir} = &normalizeDir("${oldDir}"); - ${oldHome} = "${oldDir}${PATHSEP}$type-$oldname" ; - ${oldConfDir} = "${oldHome}${PATHSEP}config${PATHSEP}" ; - ${oldSlapdConf} = "${oldConfDir}slapd.conf" ; - ${oldDSEldif} = "${oldConfDir}dse.ldif" ; - ${serverHome} = "${root}${PATHSEP}$type-$newname" ; - ${DSEldif} = "$serverHome${PATHSEP}config${PATHSEP}dse.ldif"; - ${ldif_rep} = "${oldConfDir}${PATHSEP}ldif${PATHSEP}" ; - ${oldSlapdExecDir} = "${oldDir}${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server${PATHSEP}"; - - - - - open(LOGFILE, ">> $LogFileReport"); - - printTrace("\noldDir: $oldDir, oldHome: $oldHome, \noldConfDir: $oldConfDir, \noldSlapdConf: $oldSlapdConf, \nldif_rep: $ldif_rep, \nrootDN: $rootDN, \nPwd: ******, \nPort: $newport, \nNewname: $newname\n",3); - printTrace("\nLIB_PATH: $LIB_PATH",4); - - if (!(-d $serverHome)) { - printMsg("\n$serverHome doesn't exist\n"); - exit(1); - } - if (!(-d $oldHome)) { - printMsg("\n$oldHome doesn't exist\n"); - exit(1); - } - - if ($olddatadir && !(-d $olddatadir)) { - print("\n$olddatadir doesn't exist\n"); - exit(1); - } - -#define CONFIG_DATABASE_DIRECTIVE "database" -#define CONFIG_DATABASE_ATTRIBUTE "nsslapd-database" -#define CONFIG_PLUGIN_DIRECTIVE "plugin" -#define CONFIG_PLUGIN_ATTRIBUTE "nsslapd-plugin" -#define CONFIG_SIZELIMIT_DIRECTIVE "sizelimit" -#define CONFIG_SIZELIMIT_ATTRIBUTE "nsslapd-sizelimit" -#define CONFIG_ORCAUTO_DIRECTIVE "orcauto" -#define CONFIG_ORCAUTO_ATTRIBUTE "nsslapd-orcauto" -#define CONFIG_TIMELIMIT_DIRECTIVE "timelimit" -#define CONFIG_TIMELIMIT_ATTRIBUTE "nsslapd-timelimit" -#define CONFIG_SUFFIX_DIRECTIVE "suffix" -#define CONFIG_SUFFIX_ATTRIBUTE "nsslapd-suffix" -#define CONFIG_READONLY_DIRECTIVE "readonly" -#define CONFIG_READONLY_ATTRIBUTE "nsslapd-readonly" -#define CONFIG_REFERRAL_DIRECTIVE "referral" -#define CONFIG_REFERRAL_ATTRIBUTE "nsslapd-referral" -#define CONFIG_OBJECTCLASS_DIRECTIVE "objectclass" -#define CONFIG_OBJECTCLASS_ATTRIBUTE "nsslapd-objectclass" -#define CONFIG_ATTRIBUTE_DIRECTIVE "attribute" -#define CONFIG_ATTRIBUTE_ATTRIBUTE "nsslapd-attribute" -#define CONFIG_SCHEMACHECK_DIRECTIVE "schemacheck" -#define CONFIG_SCHEMACHECK_ATTRIBUTE "nsslapd-schemacheck" -#define CONFIG_LOGLEVEL_DIRECTIVE "loglevel" -#define CONFIG_LOGLEVEL_ATTRIBUTE "nsslapd-errorlog-level" -#define CONFIG_ACCESSLOGLEVEL_DIRECTIVE "accessloglevel" -#define CONFIG_ACCESSLOGLEVEL_ATTRIBUTE "nsslapd-accesslog-level" -#define CONFIG_ACCESSLOG_MAXNUMOFLOGSPERDIR_DIRECTIVE "accesslog-maxNumOfLogsPerDir" -#define CONFIG_ACCESSLOG_MAXNUMOFLOGSPERDIR_ATTRIBUTE "nsslapd-accesslog-maxlogsperdir" -#define CONFIG_ERRORLOG_MAXNUMOFLOGSPERDIR_DIRECTIVE "errorlog-maxNumOfLogsPerDir" -#define CONFIG_ERRORLOG_MAXNUMOFLOGSPERDIR_ATTRIBUTE "nsslapd-errorlog-maxlogsperdir" -#define CONFIG_AUDITLOG_MAXNUMOFLOGSPERDIR_DIRECTIVE "auditlog-maxNumOfLogsPerDir" -#define CONFIG_AUDITLOG_MAXNUMOFLOGSPERDIR_ATTRIBUTE "nsslapd-auditlog-maxlogsperdir" -#define CONFIG_ACCESSLOG_MAXLOGSIZE_DIRECTIVE "accesslog-maxlogsize" -#define CONFIG_ACCESSLOG_MAXLOGSIZE_ATTRIBUTE "nsslapd-accesslog-maxlogsize" -#define CONFIG_ERRORLOG_MAXLOGSIZE_DIRECTIVE "errorlog-maxlogsize" -#define CONFIG_ERRORLOG_MAXLOGSIZE_ATTRIBUTE "nsslapd-errorlog-maxlogsize" -#define CONFIG_AUDITLOG_MAXLOGSIZE_DIRECTIVE "auditlog-maxlogsize" -#define CONFIG_AUDITLOG_MAXLOGSIZE_ATTRIBUTE "nsslapd-auditlog-maxlogsize" -#define CONFIG_ACCESSLOG_LOGROTATIONTIME_DIRECTIVE "accesslog-logrotationtime" -#define CONFIG_ACCESSLOG_LOGROTATIONTIME_ATTRIBUTE "nsslapd-accesslog-logrotationtime" -#define CONFIG_ERRORLOG_LOGROTATIONTIME_DIRECTIVE "errorlog-logrotationtime" -#define CONFIG_ERRORLOG_LOGROTATIONTIME_ATTRIBUTE "nsslapd-errorlog-logrotationtime" -#define CONFIG_AUDITLOG_LOGROTATIONTIME_DIRECTIVE "auditlog-logrotationtime" -#define CONFIG_AUDITLOG_LOGROTATIONTIME_ATTRIBUTE "nsslapd-auditlog-logrotationtime" -#define CONFIG_ACCESSLOG_LOGROTATIONTIMEUNIT_DIRECTIVE "accesslog-logrotationtimeunit" -#define CONFIG_ACCESSLOG_LOGROTATIONTIMEUNIT_ATTRIBUTE "nsslapd-accesslog-logrotationtimeunit" -#define CONFIG_ERRORLOG_LOGROTATIONTIMEUNIT_DIRECTIVE "errorlog-logrotationtimeunit" -#define CONFIG_ERRORLOG_LOGROTATIONTIMEUNIT_ATTRIBUTE "nsslapd-errorlog-logrotationtimeunit" -#define CONFIG_AUDITLOG_LOGROTATIONTIMEUNIT_DIRECTIVE "auditlog-logrotationtimeunit" -#define CONFIG_AUDITLOG_LOGROTATIONTIMEUNIT_ATTRIBUTE "nsslapd-auditlog-logrotationtimeunit" -#define CONFIG_ACCESSLOG_MAXLOGDISKSPACE_DIRECTIVE "accesslog-maxlogdiskspace" -#define CONFIG_ACCESSLOG_MAXLOGDISKSPACE_ATTRIBUTE "nsslapd-accesslog-logmaxdiskspace" -#define CONFIG_ERRORLOG_MAXLOGDISKSPACE_DIRECTIVE "errorlog-maxlogdiskspace" -#define CONFIG_ERRORLOG_MAXLOGDISKSPACE_ATTRIBUTE "nsslapd-errorlog-logmaxdiskspace" -#define CONFIG_AUDITLOG_MAXLOGDISKSPACE_DIRECTIVE "auditlog-maxlogdiskspace" -#define CONFIG_AUDITLOG_MAXLOGDISKSPACE_ATTRIBUTE "nsslapd-auditlog-logmaxdiskspace" -#define CONFIG_ACCESSLOG_MINFREEDISKSPACE_DIRECTIVE "accesslog-minfreediskspace" -#define CONFIG_ACCESSLOG_MINFREEDISKSPACE_ATTRIBUTE "nsslapd-accesslog-logminfreediskspace" -#define CONFIG_ERRORLOG_MINFREEDISKSPACE_DIRECTIVE "errorlog-minfreediskspace" -#define CONFIG_ERRORLOG_MINFREEDISKSPACE_ATTRIBUTE "nsslapd-errorlog-logminfreediskspace" -#define CONFIG_AUDITLOG_MINFREEDISKSPACE_DIRECTIVE "auditlog-minfreediskspace" -#define CONFIG_AUDITLOG_MINFREEDISKSPACE_ATTRIBUTE "nsslapd-auditlog-logminfreediskspace" -#define CONFIG_ACCESSLOG_LOGEXPIRATIONTIME_DIRECTIVE "accesslog-logexpirationtime" -#define CONFIG_ACCESSLOG_LOGEXPIRATIONTIME_ATTRIBUTE "nsslapd-accesslog-logexpirationtime" -#define CONFIG_ERRORLOG_LOGEXPIRATIONTIME_DIRECTIVE "errorlog-logexpirationtime" -#define CONFIG_ERRORLOG_LOGEXPIRATIONTIME_ATTRIBUTE "nsslapd-errorlog-logexpirationtime" -#define CONFIG_AUDITLOG_LOGEXPIRATIONTIME_DIRECTIVE "auditlog-logexpirationtime" -#define CONFIG_AUDITLOG_LOGEXPIRATIONTIME_ATTRIBUTE "nsslapd-auditlog-logexpirationtime" -#define CONFIG_ACCESSLOG_LOGEXPIRATIONTIMEUNIT_DIRECTIVE "accesslog-logexpirationtimeunit" -#define CONFIG_ACCESSLOG_LOGEXPIRATIONTIMEUNIT_ATTRIBUTE "nsslapd-accesslog-logexpirationtimeunit" -#define CONFIG_ERRORLOG_LOGEXPIRATIONTIMEUNIT_DIRECTIVE "errorlog-logexpirationtimeunit" -#define CONFIG_ERRORLOG_LOGEXPIRATIONTIMEUNIT_ATTRIBUTE "nsslapd-errorlog-logexpirationtimeunit" -#define CONFIG_AUDITLOG_LOGEXPIRATIONTIMEUNIT_DIRECTIVE "auditlog-logexpirationtimeunit" -#define CONFIG_AUDITLOG_LOGEXPIRATIONTIMEUNIT_ATTRIBUTE "nsslapd-auditlog-logexpirationtimeunit" -#define CONFIG_ACCESSLOG_LOGGING_ENABLED_DIRECTIVE "accesslog-logging-enabled" -#define CONFIG_ACCESSLOG_LOGGING_ENABLED_ATTRIBUTE "nsslapd-accesslog-logging-enabled" -#define CONFIG_ERRORLOG_LOGGING_ENABLED_DIRECTIVE "errorlog-logging-enabled" -#define CONFIG_ERRORLOG_LOGGING_ENABLED_ATTRIBUTE "nsslapd-errorlog-logging-enabled" -#define CONFIG_AUDITLOG_LOGGING_ENABLED_DIRECTIVE "auditlog-logging-enabled" -#define CONFIG_AUDITLOG_LOGGING_ENABLED_ATTRIBUTE "nsslapd-auditlog-logging-enabled" -#define CONFIG_ROOTDN_DIRECTIVE "rootdn" -#define CONFIG_ROOTDN_ATTRIBUTE "nsslapd-rootdn" -#define CONFIG_ROOTPW_DIRECTIVE "rootpw" -#define CONFIG_ROOTPW_ATTRIBUTE "nsslapd-rootpw" -#define CONFIG_ROOTPWSTORAGESCHEME_DIRECTIVE "rootpwstoragescheme" -#define CONFIG_ROOTPWSTORAGESCHEME_ATTRIBUTE "nsslapd-rootpwstoragescheme" -#define CONFIG_UPDATEDN_DIRECTIVE "updatedn" -#define CONFIG_UPDATEDN_ATTRIBUTE "nsslapd-updatedn" -#define CONFIG_UPDATEPW_DIRECTIVE "updatepw" -#define CONFIG_UPDATEPW_ATTRIBUTE "nsslapd-updatepw" -#define CONFIG_UPDATESSLCLIENT_DIRECTIVE "updateSSLclient" -#define CONFIG_UPDATESSLCLIENT_ATTRIBUTE "nsslapd-updateSSLclient" -#define CONFIG_AUDITFILE_DIRECTIVE "auditfile" -#define CONFIG_AUDITFILE_ATTRIBUTE "nsslapd-auditlog" -#define CONFIG_LASTMOD_DIRECTIVE "lastmod" -#define CONFIG_LASTMOD_ATTRIBUTE "nsslapd-lastmod" -#define CONFIG_INCLUDE_DIRECTIVE "include" -#define CONFIG_INCLUDE_ATTRIBUTE "nsslapd-include" -#define CONFIG_DYNAMICCONF_DIRECTIVE "dynamicconf" -#define CONFIG_DYNAMICCONF_ATTRIBUTE "nsslapd-dynamicconf" -#define CONFIG_USEROC_DIRECTIVE "useroc" -#define CONFIG_USEROC_ATTRIBUTE "nsslapd-useroc" -#define CONFIG_USERAT_DIRECTIVE "userat" -#define CONFIG_USERAT_ATTRIBUTE "nsslapd-userat" -#define CONFIG_SVRTAB_DIRECTIVE "svrtab" -#define CONFIG_SVRTAB_ATTRIBUTE "nsslapd-svrtab" -#ifndef _WIN32 -#define CONFIG_LOCALUSER_DIRECTIVE "localuser" -#define CONFIG_LOCALUSER_ATTRIBUTE "nsslapd-localuser" -#endif /* !_WIN32 */ -#define CONFIG_LOCALHOST_DIRECTIVE "localhost" -#define CONFIG_LOCALHOST_ATTRIBUTE "nsslapd-localhost" -#define CONFIG_PORT_DIRECTIVE "port" -#define CONFIG_PORT_ATTRIBUTE "nsslapd-port" -#define CONFIG_LISTENHOST_DIRECTIVE "listenhost" -#define CONFIG_LISTENHOST_ATTRIBUTE "nsslapd-listenhost" -#define CONFIG_SECURITY_DIRECTIVE "security" -#define CONFIG_SECURITY_ATTRIBUTE "nsslapd-security" -#define CONFIG_SSL3CIPHERS_DIRECTIVE "SSL3ciphers" -#define CONFIG_SSL3CIPHERS_ATTRIBUTE "nsslapd-SSL3ciphers" -#define CONFIG_ACCESSLOG_DIRECTIVE "accesslog" -#define CONFIG_ACCESSLOG_ATTRIBUTE "nsslapd-accesslog" -#define CONFIG_ERRORLOG_DIRECTIVE "errorlog" -#define CONFIG_ERRORLOG_ATTRIBUTE "nsslapd-errorlog" -#define CONFIG_INSTANCEDIR_DIRECTIVE "instancedir" -#define CONFIG_INSTANCEDIR_ATTRIBUTE "nsslapd-instancedir" -#define CONFIG_SECUREPORT_DIRECTIVE "secure-port" -#define CONFIG_SECUREPORT_ATTRIBUTE "nsslapd-securePort" -#define CONFIG_SECURELISTENHOST_DIRECTIVE "secure-listenhost" -#define CONFIG_SECURELISTENHOST_ATTRIBUTE "nsslapd-securelistenhost" -#define CONFIG_THREADNUMBER_DIRECTIVE "threadnumber" -#define CONFIG_THREADNUMBER_ATTRIBUTE "nsslapd-threadnumber" -#define CONFIG_MAXTHREADSPERCONN_DIRECTIVE "maxthreadsperconn" -#define CONFIG_MAXTHREADSPERCONN_ATTRIBUTE "nsslapd-maxthreadsperconn" -#if !defined(_WIN32) && !defined(AIX) -#define CONFIG_MAXDESCRIPTORS_DIRECTIVE "maxdescriptors" -#define CONFIG_MAXDESCRIPTORS_ATTRIBUTE "nsslapd-maxdescriptors" -#endif /* !_WIN32 && ! AIX */ -#define CONFIG_RESERVEDESCRIPTORS_DIRECTIVE "reservedescriptors" -#define CONFIG_RESERVEDESCRIPTORS_ATTRIBUTE "nsslapd-reservedescriptors" -#define CONFIG_IDLETIMEOUT_DIRECTIVE "idletimeout" -#define CONFIG_IDLETIMEOUT_ATTRIBUTE "nsslapd-idletimeout" -#define CONFIG_IOBLOCKTIMEOUT_DIRECTIVE "ioblocktimeout" -#define CONFIG_IOBLOCKTIMEOUT_ATTRIBUTE "nsslapd-ioblocktimeout" -#define CONFIG_NTSYNCH_DIRECTIVE "ntsynch" -#define CONFIG_NTSYNCH_ATTRIBUTE "nsslapd-NTSynch" -#define CONFIG_NTSYNCHUSESSL_DIRECTIVE "ntsynchusessl" -#define CONFIG_NTSYNCHUSESSL_ATTRIBUTE "nsslapd-NTSynch-SSL" -#define CONFIG_NTSYNCHPORT_DIRECTIVE "ntsynch-port" -#define CONFIG_NTSYNCHPORT_ATTRIBUTE "nsslapd-NTSynch-port" -#define CONFIG_ACCESSCONTROL_DIRECTIVE "accesscontrol" -#define CONFIG_ACCESSCONTROL_ATTRIBUTE "nsslapd-accesscontrol" -#define CONFIG_GROUPEVALNESTLEVEL_DIRECTIVE "groupevalnestlevel" -#define CONFIG_GROUPEVALNESTLEVEL_ATTRIBUTE "nsslapd-groupevalnestlevel" -#define CONFIG_NAGLE_DIRECTIVE "nagle" -#define CONFIG_NAGLE_ATTRIBUTE "nsslapd-nagle" -#define CONFIG_PW_CHANGE_DIRECTIVE "pw_change" -#define CONFIG_PW_CHANGE_ATTRIBUTE "passwordChange" -#define CONFIG_PW_MUSTCHANGE_DIRECTIVE "pw_must_change" -#define CONFIG_PW_MUSTCHANGE_ATTRIBUTE "passwordMustChange" -#define CONFIG_PW_SYNTAX_DIRECTIVE "pw_syntax" -#define CONFIG_PW_SYNTAX_ATTRIBUTE "passwordCheckSyntax" -#define CONFIG_PW_MINLENGTH_DIRECTIVE "pw_minlength" -#define CONFIG_PW_MINLENGTH_ATTRIBUTE "passwordMinLength" -#define CONFIG_PW_EXP_DIRECTIVE "pw_exp" -#define CONFIG_PW_EXP_ATTRIBUTE "passwordExp" -#define CONFIG_PW_MAXAGE_DIRECTIVE "pw_maxage" -#define CONFIG_PW_MAXAGE_ATTRIBUTE "passwordMaxAge" -#define CONFIG_PW_MINAGE_DIRECTIVE "pw_minage" -#define CONFIG_PW_MINAGE_ATTRIBUTE "passwordMinAge" -#define CONFIG_PW_WARNING_DIRECTIVE "pw_warning" -#define CONFIG_PW_WARNING_ATTRIBUTE "passwordWarning" -#define CONFIG_PW_HISTORY_DIRECTIVE "pw_history" -#define CONFIG_PW_HISTORY_ATTRIBUTE "passwordHistory" -#define CONFIG_PW_INHISTORY_DIRECTIVE "pw_inhistory" -#define CONFIG_PW_INHISTORY_ATTRIBUTE "passwordInHistory" -#define CONFIG_PW_LOCKOUT_DIRECTIVE "pw_lockout" -#define CONFIG_PW_LOCKOUT_ATTRIBUTE "passwordLockout" -#define CONFIG_PW_STORAGESCHEME_DIRECTIVE "pw_storagescheme" -#define CONFIG_PW_STORAGESCHEME_ATTRIBUTE "passwordStorageScheme" -#define CONFIG_PW_MAXFAILURE_DIRECTIVE "pw_maxfailure" -#define CONFIG_PW_MAXFAILURE_ATTRIBUTE "passwordMaxFailure" -#define CONFIG_PW_UNLOCK_DIRECTIVE "pw_unlock" -#define CONFIG_PW_UNLOCK_ATTRIBUTE "passwordUnlock" -#define CONFIG_PW_LOCKDURATION_DIRECTIVE "pw_lockduration" -#define CONFIG_PW_LOCKDURATION_ATTRIBUTE "passwordLockoutDuration" -#define CONFIG_PW_RESETFAILURECOUNT_DIRECTIVE "pw_resetfailurecount" -#define CONFIG_PW_RESETFAILURECOUNT_ATTRIBUTE "passwordResetFailureCount" -#define CONFIG_ACCESSLOG_BUFFERING_DIRECTIVE "logbuffering" -#define CONFIG_ACCESSLOG_BUFFERING_ATTRIBUTE "nsslapd-accesslog-logbuffering" -#define CONFIG_CHANGELOG_DIR_DIRECTIVE "changelogdir" -#define CONFIG_CHANGELOG_DIR_ATTRIBUTE "nsslapd-changelogdir" -#define CONFIG_CHANGELOG_SUFFIX_DIRECTIVE "changelogsuffix" -#define CONFIG_CHANGELOG_SUFFIX_ATTRIBUTE "nsslapd-changelogsuffix" -#define CONFIG_CHANGELOG_MAXENTRIES_DIRECTIVE "changelogmaxextries" -#define CONFIG_CHANGELOG_MAXENTRIES_ATTRIBUTE "nsslapd-changelogmaxentries" -#define CONFIG_CHANGELOG_MAXAGE_DIRECTIVE "changelogmaxage" -#define CONFIG_CHANGELOG_MAXAGE_ATTRIBUTE "nsslapd-changelogmaxage" -#define CONFIG_RETURN_EXACT_CASE_DIRECTIVE "return_exact_case" -#define CONFIG_RESULT_TWEAK_DIRECTIVE "result_tweak" -#define CONFIG_REFERRAL_MODE_DIRECTIVE "referralmode" -#define CONFIG_ATTRIBUTE_NAME_EXCEPTION_DIRECTIVE "attribute_name_exceptions" -#define CONFIG_MAXBERSIZE_DIRECTIVE "maxbersize" -#define CONFIG_VERSIONSTRING_DIRECTIVE "versionstring" -#define CONFIG_ENQUOTE_SUP_OC_DIRECTIVE "enquote_sup_oc" -#define CONFIG_ENQUOTE_SUP_OC_ATTRIBUTE "nsslapd-enquote_sup_oc" -#define CONFIG_BASEDN_DIRECTIVE "certmap-basedn" -#define CONFIG_BASEDN_ATTRIBUTE "nsslapd-certmap-basedn" - -%HashParametersName = (); - -# The following hash displays only general server parameters to migrate under cn=config -%GeneralSrvParamToMigrate = ( - 'accesscontrol' => 'nsslapd-accesscontrol', - 'errorlog-logging-enabled' => 'nsslapd-errorlog-logging-enabled', - 'accesslog-logging-enabled' => 'nsslapd-accesslog-logging-enabled', - 'auditlog-logging-enabled' => 'nsslapd-auditlog-logging-enabled', - 'logbuffering' => 'nsslapd-accesslog-logbuffering', - 'accesslog-logexpirationtime' => 'nsslapd-accesslog-logexpirationtime', - 'accesslog-logexpirationtimeunit' => 'nsslapd-accesslog-logexpirationtimeunit', - 'accesslog-maxlogdiskspace' => 'nsslapd-accesslog-logmaxdiskspace', - 'accesslog-minfreediskspace' => 'nsslapd-accesslog-logminfreediskspace', - 'accesslog-logrotationtime' => 'nsslapd-accesslog-logrotationtime', - 'accesslog-logrotationtimeunit' => 'nsslapd-accesslog-logrotationtimeunit', - 'accesslog-maxlogsize' => 'nsslapd-accesslog-maxlogsize', - 'accesslog-maxnumoflogsperdir' => 'nsslapd-accesslog-maxLogsPerDir', - 'auditlog-logexpirationtime' => 'nsslapd-auditlog-logexpirationtime', - 'auditlog-logexpirationtimeunit' => 'nsslapd-auditlog-logexpirationtimeunit', - 'auditlog-maxlogdiskspace' => 'nsslapd-auditlog-logmaxdiskspace', - 'auditlog-minfreediskspace' => 'nsslapd-auditlog-logminfreediskspace', - 'auditlog-logrotationtime' => 'nsslapd-auditlog-logrotationtime', - 'auditlog-logrotationtimeunit' => 'nsslapd-auditlog-logrotationtimeunit', - 'auditlog-maxlogsize' => 'nsslapd-auditlog-maxlogsize', - 'auditlog-maxnumoflogsperdir' => 'nsslapd-auditlog-maxLogsPerDir', - 'certmap-basedn' => 'nsslapd-certmap-basedn', - 'enquote_sup_oc' => 'nsslapd-enquote-sup-oc', - 'loglevel' => 'nsslapd-errorlog-level', - 'errorlog-logexpirationtime' => 'nsslapd-errorlog-logexpirationtime', - 'errorlog-logexpirationtimeunit' => 'nsslapd-errorlog-logexpirationtimeunit', - 'errorlog-maxlogdiskspace' => 'nsslapd-errorlog-logmaxdiskspace', - 'errorlog-minfreediskspace' => 'nsslapd-errorlog-logminfreediskspace', - 'errorlog-logrotationtime' => 'nsslapd-errorlog-logrotationtime', - 'errorlog-logrotationtimeunit' => 'nsslapd-errorlog-logrotationtimeunit', - 'errorlog-maxlogsize' => 'nsslapd-errorlog-maxlogsize', - 'errorlog-maxnumoflogsperdir' => 'nsslapd-errorlog-maxlogsperdir', - 'idletimeout' => 'nsslapd-idletimeout', - 'ioblocktimeout' => 'nsslapd-ioblocktimeout', - 'lastmod' => 'nsslapd-lastmod', - 'listenhost' => 'nsslapd-listenhost', - 'maxdescriptors' => 'nsslapd-maxdescriptors', - 'referral' => 'nsslapd-referral', - 'reservedescriptors' => 'nsslapd-reservedescriptors', - 'rootpwstoragescheme' => 'nsslapd-rootpwstoragescheme', - 'schemacheck' => 'nsslapd-schemacheck', - 'secure-port' => 'nsslapd-securePort', - 'security' => 'nsslapd-security', - 'sizelimit' => 'nsslapd-sizelimit', - 'SSL3ciphers' => 'nsslapd-SSL3ciphers', - 'timelimit' => 'nsslapd-timelimit', - 'pw_change' => 'passwordChange', - 'pw_syntax' => 'passwordCheckSyntax', - 'pw_exp' => 'passwordExp', - 'pw_history' => 'passwordHistory', - 'pw_inhistory' => 'passwordInHistory', - 'pw_lockout' => 'passwordLockout', - 'pw_lockduration' => 'passwordLockoutDuration', - 'pw_maxage' => 'passwordMaxAge', - 'pw_maxfailure' => 'passwordMaxFailure', - 'pw_minage' => 'passwordMinAge', - 'pw_minlength' => 'passwordMinLength', - 'pw_must_change' => 'passwordMustChange', - 'pw_resetfailurecount' => 'passwordResetFailureCount', - 'pw_storagescheme' => 'passwordStorageScheme', - 'pw_unlock' => 'passwordUnlock', - 'pw_warning' => 'passwordWarning' -); - -# the following hash displays global parameters related to database stored under cn=config,cn=ldbm database,cn=plugins,cn=config -%GlobalConfigLDBMparamToMigrate = ( - 'allidsthreshold' => 'nsslapd-allidsthreshold', - 'lookthroughlimit' => 'nsslapd-lookthroughlimit', - 'mode' => 'nsslapd-mode', - 'dbcachesize' => 'nsslapd-dbcachesize' -); - -# the following hash displays specific parameters to each backends and stored under cn=DBname,cn=ldbm database,cn=plugins,cn=config -%LDBMparamToMigrate = ( - 'cachesize' => 'nsslapd-cachesize', - 'readonly' => 'nsslapd-readonly' -); - -%stdIncludes = ( - "${oldConfDir}slapd.at.conf", "\n", - "${oldConfDir}slapd.oc.conf", "\n", - "${oldConfDir}java-object-schema.conf", "\n", - "${oldConfDir}ns-admin-schema.conf", "\n", - "${oldConfDir}ns-calendar-schema.conf", "\n", - "${oldConfDir}ns-certificate-schema.conf", "\n", - "${oldConfDir}ns-common-schema.conf", "\n", - "${oldConfDir}ns-compass-schema.conf", "\n", - "${oldConfDir}ns-delegated-admin-schema.conf", "\n", - "${oldConfDir}ns-directory-schema.conf", "\n", - "${oldConfDir}ns-legacy-schema.conf", "\n", - "${oldConfDir}ns-mail-schema.conf", "\n", - "${oldConfDir}ns-mcd-browser-schema.conf", "\n", - "${oldConfDir}ns-mcd-config-schema.conf", "\n", - "${oldConfDir}ns-mcd-li-schema.conf", "\n", - "${oldConfDir}ns-mcd-mail-schema.conf", "\n", - "${oldConfDir}ns-media-schema.conf", "\n", - "${oldConfDir}ns-mlm-schema.conf", "\n", - "${oldConfDir}ns-msg-schema.conf", "\n", - "${oldConfDir}ns-netshare-schema.conf", "\n", - "${oldConfDir}ns-news-schema.conf", "\n", - "${oldConfDir}ns-proxy-schema.conf", "\n", - "${oldConfDir}ns-value-schema.conf", "\n", - "${oldConfDir}ns-wcal-schema.conf", "\n", - "${oldConfDir}ns-cos-schema.conf", "\n", - "${oldConfDir}ns-web-schema.conf", "\n" -); - -%userDefinedConfigFiles = ( - "slapd.conf", "\n", - "slapd.ldbm.conf", "\n", - "slapd.user_at.conf", "\n", - "slapd.user_oc.conf", "\n", - "ns-schema.conf", "\n" - ); - -$CIS_SYNTAX_OID = "1.3.6.1.4.1.1466.115.121.1.15" ; -$TELEPHONE_SYNTAX_OID = "1.3.6.1.4.1.1466.115.121.1.50" ; -$DN_SYNTAX_OID = "1.3.6.1.4.1.1466.115.121.1.12" ; -$CES_SYNTAX_OID = "1.3.6.1.4.1.1466.115.121.1.26" ; -$INT_SYNTAX_OID = "1.3.6.1.4.1.1466.115.121.1.27" ; -$BIN_SYNTAX_OID = "1.3.6.1.4.1.1466.115.121.1.5" ; - -%allowedPlugins = ( - "cis", $CIS_SYNTAX_OID, - "tel", $TELEPHONE_SYNTAX_OID, - "dn", $DN_SYNTAX_OID, - "ces", $CES_SYNTAX_OID, - "int", $INT_SYNTAX_OID, - "bin", $BIN_SYNTAX_OID - ); - -%allowedModifiers = ( - "single", "SINGLE-VALUE" - ); -# "override" is not supported anymore and "operational" cannot be used in user defined attribute. - -@oldSuffixes = () ; # array of old suffixes (with "o=netscaperoot" if presents) - -# link beetwen the name of the suffix and its associated DBname -%DBNAMES = () ; -%DBDirectory = () ; - -%oldhash = () ; - -# list of standard plugin's in version 4 -%stdPlugins = ( - "7-bit check" => "\n", - "binary syntax" => "\n", - "case exact string syntax" => "\n", - "case ignore string syntax" => "\n", - "distinguished name syntax" => "\n", - "integer syntax" => "\n", - "internationalization plugin" => "\n", - "referential integrity postoperation" => "\n", - "telephone syntax" => "\n", - "uid uniqueness" => "\n" - - ); - -# list of standard indexes configured out of the box in version 4 -%stdIndex = ( - 'aci', "\n", - 'changenumber', "\n", - 'copiedfrom', "\n", - 'dncomp', "\n", - 'entrydn', "\n", - 'numsubordinates', "\n", - 'objectclass', "\n", - 'parentid', "\n" -); - -# list of user added Plugin's. In the new version, they 'll need to be recompiled -@badPlugins = () ; - -%newIndex = () ; - -%User_oc = () ; -# push objectnames as they are encountered in config files. -@User_oc_names = () ; - -%User_at = () ; - - - -#Usage parameters -$USER_OC_FILE_MODIFIED = 0 ; # 0 if user don't want to modify LDIF objectclasses before processing, 1 else -$USER_AT_FILE_MODIFIED = 0 ; -$INDEX_FILE_MODIFIED = 0 ; - -# get the version of the DS to migrate -($oldVersion, $oldMinor) = &getVersion($oldDir, $oldversionstr); -# get the version of the new DS -($Version, $Minor) = &getVersion($root); - -# get old LIB_PATH -$old_libpath = &getLibPath($oldDir, $oldVersion, $oldMinor); -# get new LIB_PATH -$new_libpath = &getLibPath($root, $Version, $Minor); - -# Shutdown the legacy Directory instance -printTrace("\nShutdown the legacy Directory Server instance: ${oldHome}",0); -&stopServer($oldDir, 'slapd-'.$oldname); - -# compare configuration files with the standard ones -CompareStdConfigFiles() ; -die "\n\n The version of the product you want to migrate is not a 4.x Netscape Directory Server\n" unless ($oldVersion == 4) ; - -FillHashParametersName() ; - -############### Connect to the New LDAP Directory Server ###################### -$ENV{"$LIB_PATH"} = $new_libpath; -my $LDAPservername = &getLDAPservername(); -die "\n Migration aborted. Make sure your Old and New Directory Servers are installed on the same machine \n" if ( $LDAPservername == -1 ); -$conn = new Mozilla::LDAP::Conn($LDAPservername,$newport,$rootDN,$rootpwd) or die "\n Can't contact the $Version.$Minor LDAP server: $LDAPservername\n"; - -# continue if the connection to new LDAP server is successful ! -printTrace("\nConnected to $Version.$Minor LDAP server\n",0) ; - -# get the uid and gid of the new slapd user -($localuser, $newuid, $newgid) = getuid_gid(); -# get the uid and gid of the old slapd user -($oldlocaluser, $olduid, $oldgid) = getolduid_gid(); - -# backup new configuration files in <new_root_server>/slapd-instancename/config -printTrace("\nBackup $serverHome${PATHSEP}config on $serverHome${PATHSEP}config_backup ...",0); -&backupConfigFiles(); - -# Parse the main configuration file: slapd.conf -printTrace("\nParse the configuration file: $oldSlapdConf...",0); -ParseSlapdConf("< ${oldSlapdConf}"); - -#migrate key/cert databases -printTrace("\nMigrate key/cert databases...",0); -&MigrateSSL(); - -# Update parameters : general server parameters, global LDBM parameter, specific backend parameters -printTrace("\nUpdate general server parameters...",0); -$conn = new Mozilla::LDAP::Conn($LDAPservername,$newport,$rootDN,$rootpwd) or die "\n Can't contact the $Version.$Minor LDAP server: $LDAPservername\n"; -AddGeneralParameters(); -printTrace("\nUpdate global LDBM parameters...",0); -AddGeneralLDBMParameters(); -printTrace("\nUpdate specific backend parameters...",0); -AddSpecificLDBMParameters(); - -##### FOR TESTING PURPOSE ONLY ######## -# -#testIndexUpdating(); -# -####################################### - -# Migrate some entries contained in the old dse.ldif, and migrate certmap.conf -&MigrateDSE() ; -&MigrateCertmap() ; - -# update new attribute definitions -LDAPmodify_User_at(); - -# update new object classes definitions -LDAPmodify_User_oc(); - -# add new indexes to each backends -LDAPmodify_Indexes(); - -# migrate Plug'ins parameters (enable attribute, and arguments) -LDAPmodify_stdPlugin(); - -################## Close the connection to new LDAP Server ##################### -$conn->close; - - -################## stop the new instance and Export/Import the data, restart the server ################## -if (%DBNAMES) { - &stopServer($root,'slapd-'.$newname); - if ($olddatadir) { - printTrace("\nold data directory $olddatadir...",0) ; - $ldif_rep = "$olddatadir${PATHSEP}"; - } else { - printTrace("\ndata processing...",0) ; - # migrate data for each suffix: old -> LDIF files - &db2ldif($oldSlapdConf); - } - - # migrate LDIF data to the new database: LDIF -> new - &manyLdif2db(); - &startServer(); -} -else { - printTrace("\nThere no old non-standard suffixes to migrate",0); -} - -printMsg("\n\n ****** End of migration ******\n\n"); - -close(LOGFILE); - - -########################################################################################### -# get input users -sub getParameters { - my $exit = 0 ; - my $i = 0; - my $pwdfile= ""; - while ($i <= $#ARGV) { - if ( "$ARGV[$i]" eq "-D" ) { # directory manager - if (! $rootDN) { - $rootDN = $ARGV[++$i] ; - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-w") { # password - if (! $rootpwd) { - $rootpwd = $ARGV[++$i] ; - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-j") { # password file - if (! $pwdfile) { - $pwdfile = $ARGV[++$i] ; - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-o") { # old instance path - if (! $oldHome ) { - $oldHome = $ARGV[++$i] ; - grep { s@\\@/@g } $oldHome if $isNT ; - if ($oldHome =~ /[\"]?(.*)?[\"]?/) { $oldHome = $1 ; } - if ($oldHome =~ m@^(.*)/([^-/]*)-([^/]*)[/]?$@) { - $oldDir = $1 ; - $type = $2 ; - $oldname = $3 ; - if ($isNT) { - $oldDir = lc($oldDir) ; - $type = lc($type) ; - $oldname = lc($oldname) ; - $oldHome = lc($oldHome) ; - grep { s@/@\\@g } $oldDir ; - grep { s@/@\\@g } $oldHome ; - } - } - else { - print("\nThe old instance path is not correct. It must be like slapd-instancename"); - &usage(); - exit(1); - } - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-n") { # new instance path - if (! $serverHome ) { - $serverHome = $ARGV[++$i] ; - grep { s@\\@/@g } $root if $isNT ; - grep { s@\\@/@g } $serverHome if $isNT ; - if ($serverHome =~ /[\"]?(.*)?[\"]?/) { $serverHome = $1 ; } - if ($serverHome =~ m@^(.*?)/?([^/-]*)-([^/]*)[/]?$@) { - $root = $1 if ($1); - $type = $2 ; - $newname = $3 ; - if ($isNT) { - $root = lc($root) ; - $type = lc($type) ; - $newname = lc($newname) ; - $serverHome = lc($serverHome) ; - grep { s@/@\\@g } $root ; - grep { s@/@\\@g } $serverHome ; - } - } - else { - print("\nThe new instance path is not correct. It must be like slapd-instancename"); - &usage(); - exit(1); - } - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-p") { # new DS port - if (! $newport ) { - $newport = $ARGV[++$i] ; - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-d") { # old instance LDIF data dir - if (! $olddatadir ) { - $olddatadir = $ARGV[++$i] ; - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-v") { # old version - if (! $oldversionstr ) { - $oldversionstr = $ARGV[++$i] ; - } - else { - &usage() ; - exit(1); - } - } elsif ("$ARGV[$i]" eq "-t") { # TRACELEVEL - my $value = $ARGV[++$i] ; - if ($value =~ /[0-3]/) { - $TRACELEVEL = $value ; - } - else { - print("\nThe tracelevel must belong to 0..3 interval"); - &usage(); - exit(); - } - } elsif ("$ARGV[$i]" eq "-noinput") { # no user interventions during processing - $NO_INPUT_USER = 1 ; - } elsif ("$ARGV[$i]" eq "-L") { # migration logfile - $LogFileReport = $ARGV[++$i] ; - } - else { - print("\nThe option $ARGV[$i] is not recognized"); - &usage() ; - exit(1); - } - $i++; - } - if (! $rootDN) { - print("\nThe rootDN is missing"); - $exit = 1; - } - if ($pwdfile ne "") { - # Open file and get the password - unless (open (RPASS, $pwfile)) { - die "Error, cannot open password file $passwdfile\n"; - } - $rootpwd = <RPASS>; - chomp($rootpwd); - close(RPASS); - } elsif ($rootpwd eq "-"){ - # Read the password from terminal - die "The '-w -' option requires an extension library (Term::ReadKey) which is not\n", - "part of the standard perl distribution. If you want to use it, you must\n", - "download and install the module. You can find it at\n", - "http://www.perl.com/CPAN/CPAN.html\n"; - # Remove the previous line and uncomment the following 6 lines once you have installed Term::ReadKey module. -# use Term::ReadKey; -# print "Bind Password: "; -# ReadMode('noecho'); -# $rootpwd = ReadLine(0); -# chomp($rootpwd); -# ReadMode('normal'); - } - if (! $rootpwd) { - print("\nThe rootpwd is missing"); - $exit = 1 ; - } - if (! $newport) { - print("\nThe port is missing"); - $exit = 1; - } - if (! $serverHome) { - print("\nThe new instance path is missing"); - $exit = 1; - } - if (! $oldHome) { - print("\nThe old instance path is missing"); - $exit = 1; - } - if ((! $LogFileReport) && $serverHome) { - ($sec, $min, $hour, $dd, $mm, $yy) = &GetTime(); - $LogFileReport = "${serverHome}${PATHSEP}logs${PATHSEP}Migration_${dd}${mm}${yy}_${hour}${min}${sec}.log"; - } - - if ($exit) { - &usage() ; - exit(1); - } - -} - - -############################################################################### -# This subroutine is used to parse the slapd.conf configuration file and migrate specific parameters contained in it - - -sub ParseSlapdConf { - my $oldsrc = shift; - my $NumLine = 0 ; - # read the old conf file into a hash table - open( OLDSRC, $oldsrc ) || die "Can't open $oldsrc: $!: "; - LINE: while ( <OLDSRC> ) { - $NumLine++ ; - printTrace("\nLine: $_",4) ; - if (/^\s*\#/) { # skip comments - printTrace("\n# ",4) ; - next LINE; - } - if (/^\s*$/) { # skip blank lines - printTrace("\nBLANK LINE",4); - next LINE; - } elsif (/^suffix\s+/i) { - chomp($_) ; - CheckSuffix($_); - } elsif (/^plugin/i) { - printTrace("\nPLUGIN",4); - chomp($_); - if (! &isAStandardPlugin($_)) { - push @badPlugins, $_; - } - else { - my $Plugin = $_ ; - if (! &ParsePlugin($_,$NumLine)) { - printMsg("\nLine $NumLine, syntax error of the plugin:\n$Plugin"); - } - } - } elsif (/^include\s+[\"]?(.*?)[\"]?\s*$/i) { - # strip leading and trailing " - my $include_file = $1 ; - grep { s@/@\\@g } $include_file if $isNT; - if (! &isAStandardInclude($include_file)) { - printTrace("\nFILE: $1 NOT STANDARD",4) ; - &ParseConfigurationFile($include_file); - printTrace("\nEXIT ParseConfigurationFile: $include_file",4) ; - } - } elsif (/^userat\s+[\"]?(.*?)[\"]?\s*$/i) { - printTrace("\nuserat: $1",4); - my $at_file = $1 ; - grep { s@/@\\@g } $at_file if $isNT; - # Parse user defined attributes - &ParseAttributesFile($at_file); - } elsif (/^useroc\s+[\"]?(.*?)[\"]?\s*$/i) { - printTrace("\nuseroc: $1",4); - my $oc_file = $1 ; - grep { s@/@\\@g } $oc_file if $isNT; - # Parse user defined object classes - &ParseObjectClassesFile($oc_file); - } elsif (/^dynamicconf\s+[\"]?(.*?)[\"]?\s*$/i){ - printTrace("\ndynamicconf: $1",4); - my $dynamiconf_file = $1 ; - grep { s@/@\\@g } $dynamiconf_file if $isNT; - # Parse dynamic configuration file (e-g slapd.ldbm.conf) - &ParseConfigurationFile($dynamiconf_file); - } elsif (/^\s*(\S+)\s+[\"]?(.*?)[\"]?\s*$/) { - printTrace("\nParseParameters: $1",4); - # Parse parameters and record the associated value in %oldhash - &ParseParameters($1,$2,$NumLine); - } else { - printTrace("\nUnknown format of configuration data: $_",0); } - } - close(OLDSRC); - - } - - - -############################################################################# -# return 1 if the suffix already exists, 0 else -sub existSuffix { - my $suffixname = shift ; - my $nsuffix = normalizeDN($suffixname); - my $entry = $conn->search("cn=mapping tree,cn=config", "one", "(|(cn=\"$suffixname\")(cn=\"$nsuffix\"))"); - return 1 if ($entry) ; - my $cpt = 5; - my $errorCode = $conn->getErrorCode(); - while (($errorCode eq $LDAP_SERVER_UNREACHABLE) && $cpt && (! $entry)) { - printTrace("\ntry to reconnect to search cn=\"$suffixname\",cn=mapping tree,cn=config", 1); - $conn = new Mozilla::LDAP::Conn($LDAPservername,$newport,$rootDN,$rootpwd) or die "\n Unable to contact the $Version.$Minor LDAP server: $LDAPservername\n"; - $entry = $conn->search("cn=mapping tree,cn=config", "one", "(|(cn=\"$suffixname\")(cn=\"$nsuffix\"))"); - $errorCode = $conn->getErrorCode(); - $cpt--; - } - return 1 if ($entry) ; - return 0 ; -} - -# return the name of the backend if it has been successfully created, 0 else -sub createBackend { - my $suffixname = shift ; - my $backend = "MigratedDB_0" ; - my $NbRetry = 1 ; - my $entry = $conn->search("cn=$backend,cn=ldbm database,cn=plugins,cn=config ", "base","objectclass=*") ; - while ($entry) { - # try to find another name for the backend - $backend = "MigratedDB_$NbRetry" ; - $entry = $conn->search("cn=$backend,cn=ldbm database,cn=plugins,cn=config ", "base","objectclass=*") ; - $NbRetry++; - } - # normally I should have a unique name for the backend - my $suffixarg = "nsslapd-suffix" ; - $entry = $conn->newEntry() ; - $entry->setDN("cn=$backend,cn=ldbm database,cn=plugins,cn=config"); - $entry->setValues("objectclass", "top", "extensibleObject", "nsBackendInstance" ); - $entry->setValues("cn", $backend ); - $entry->setValues($suffixarg, $suffixname ); - my $res = $conn->add($entry) ; - if ($res) { - return $backend ; - } - else { - return 0 ; - } -} - -# return 1, if add the new entry in the mapping tree, else 0 -sub AddEntryInMappingTree { - my $backend = shift ; - my $entry = $conn->search("cn=$backend,cn=ldbm database,cn=plugins,cn=config ", "base","objectclass=*") ; - if ($entry) { - printTrace("\nAddEntry in progress ...",4) ; - my $suffixarg = "nsslapd-suffix" ; - my $statearg = "nsslapd-state" ; - my $backendarg= "nsslapd-backend"; - my $suffixname = $entry->{$suffixarg}[0]; - $entry = $conn->newEntry() ; - $entry->setDN("cn=\"$suffixname\",cn=mapping tree,cn=config") ; - $entry->setValues("objectclass", "top", "extensibleObject", "nsMappingTree" ); - $entry->setValues("cn", "\"$suffixname\""); - $entry->setValues($statearg, "backend"); - $entry->setValues($backendarg, $backend); - return $conn->add($entry); - } - else { - printTrace("\nNo AddEntry processed for $backend",4); - return 0 ; - } -} - - -# Treat the case where the suffix is "o=NetscapeRoot" -sub CheckSuffix { - my $suffix = shift ; - my $suffixname ; - my $expLdif; - my $confirm = "No"; - my $dest = "$serverHome${PATHSEP}db_backup" ; - my $newSlapdExecDir = "$root${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server"; - - if (!(/^suffix\s+\"?(.*?)\"?\s*$/i)) { - printMsg("Syntax error of the suffix: $suffix"); - return 0 ; - } - else { - $suffixname = $1 ; - } - if (/^suffix\s+\"?\s*o=netscaperoot\s*\"?\s*$/i) { - printTrace("\nFor the suffix o=NetscapeRoot, we do nothing",1); - # treat the case where the suffix is "o=NetscapeRoot" - } - else { - push @oldSuffixes, $_; - # check if the suffix already exists in the new DS target - if (! existSuffix($suffixname)) { - printTrace("\n\nSuffix $suffixname doesn't exist",1) ; - # create a new backend with the name of the suffix preceded by MigratedDB_ - my $backend = createBackend($suffixname) ; - if ($backend) { - printTrace("\nBackend: $backend has been created !!!",1); - # if the creation of the backend is ok, we add a new entry in the mapping tree - if (AddEntryInMappingTree($backend)) { - # We add the association dbname->suffix in the hash %DBNAMES - $DBNAMES{$suffixname} = $backend ; - # get the db filename - $entry = $conn->search("cn=$backend,cn=ldbm database,cn=plugins,cn=config ", "base","objectclass=*") ; - my $dirarg = "nsslapd-directory"; - $DBDirectory{$backend} = $entry->{$dirarg}[0]; - printTrace("\nThe relation $backend->$suffixname has been added to the mapping tree",2); - } - else { - printMsg("\nCOULD NOT ADD ENTRY: $backend->$suffixname IN MAPPINGTREE"); - } - } - else { - printMsg("\nCOULD NOT CREATE BACKEND: $backend"); - } - } - else { - printMsg("\n\nSuffix: $suffixname already exists"); - # the suffix already exists in the new DS - printMsg("\nMigration will overwrite existing database"); - printMsg("\nDo you want to continue Yes/No [No] ?") ; - my $answer = <STDIN> ; - if ($answer =~ /y|yes/i) { - my $nsuffix = normalizeDN($suffixname); - my $my_entry = $conn->search("cn=mapping tree,cn=config", "one", "(|(cn=\"$suffixname\")(cn=\"$nsuffix\"))"); - my $backend = $my_entry->{"nsslapd-backend"}[0]; - my $backend_entry = $conn->search("cn=$backend,cn=ldbm database,cn=plugins,cn=config ", "base","objectclass=*") ; - printMsg("Do you want to export the existing data Yes/No [Yes] ?"); - my $answer = <STDIN> ; - if (!($answer =~ /n|no/i)) { - mkdir $dest, 0700 unless (-d $dest); - $expLdif = "$dest${PATHSEP}$backend.ldif"; - while (!($confirm =~ /y|yes/i)) { - printMsg("\nEnter the full pathname of the file [$expLdif]:") ; - $answer = <STDIN> ; - chomp($expLdif = $answer) unless ($answer eq "\n"); - printMsg("\nExisting data will be exported under $expLdif"); - printMsg("\nContinue Yes/No [No] ?"); - $confirm = <STDIN>; - } - $ENV{"$LIB_PATH"}=$new_libpath; - chdir($newSlapdExecDir) or die "\nCould not change directory to $newSlapdExecDir: $!\n"; - printTrace("\nNow backing up database $CN in $expLdif\n",0); - &stopServer($root,'slapd-'.$newname); - &newinst_db2ldif($expLdif, $suffixname, $serverHome); - &startServer(); - } - # We add the association dbname->suffix in the hash %DBNAMES - $DBNAMES{$suffixname} = $backend ; - my $dirarg = "nsslapd-directory"; - $DBDirectory{$backend} = $backend_entry->{$dirarg}[0]; - printTrace("\nThe relation $backend->$suffixname has been added to the mapping tree",2); - } - } - return 1 ; -} -} - -############################################################################# -# Usefull to know the standard configuration -sub isAStandardPlugin { - my $line = shift; - chomp($line); - printTrace("\nStdPlugin?: $line",4); - if ($line =~ /^plugin\s+(database|extendop|preoperation|postoperation|matchingrule|syntax)\s+(on|off)\s+\"(.*?)\"\s+\"(.*?)\"\s+(\S+)(.*)$/i) { - # $1 = <type>, $2 = <on|off>, $3 = <name>, $4 = <pathname>, $5 = <init_function>, $6 = [<arg>]* - printTrace("\nName: $3, pathname: $4, init_function: $5",4); - - my $LC_line = lc($3); - my $Value = $stdPlugins{$LC_line} ; - if ($Value) { - printTrace("\nIS A STANDARD PLUGIN",4); - } - else { - printTrace("\nNOT A STANDARD PLUGIN",4); - } - return $stdPlugins{$LC_line} ; - } - else { - printTrace("\nSYNTAX ERROR PLUGIN",4); - return 0 ; - } -} - -sub isAStandardIndex { - my $line = shift ; - chomp($line); - if ($line =~ /^index\s+(\S+).*/i) { - my $LC_line = lc($1); - my $Value = $stdIndex{$LC_line} ; - printTrace("\nInclude: $LC_line \nValue: $Value", 4); - return $stdIndex{$LC_line}; - } - else { - return 0 ; - } -} - - -sub isAStandardInclude { - my $line = shift; - - chomp($line); - if ($isNT){ - return $stdIncludes{lc($line)}; - } - else { - return $stdIncludes{$line} ; - } -} - -############################################################################# -# -# Execute a Perldap command to update plugins definition in the new schema - -sub LDAPmodify_stdPlugin { - my $Filename = shift ; - my @pluginames = keys(%stdPlugins); - if (! $STDPLUGINS_FILE_MODIFIED) { - printTrace("\nLDAPmodify_plugin",4); - printTrace("\nMigrate plugin's...",1); - foreach $pluginame ( @pluginames ) { - my $update_plugin = 0 ; - my $ref_plugin = $stdPlugins{$pluginame}; - if ($ref_plugin ne "\n") { - my $name = $ref_plugin->name ; - # We have a name change of "uid uniqueness plugin" in DS7.0 - # to "attribute uniqueness" - $name = "attribute uniqueness" if ($name eq "uid uniqueness"); - my $entry = $conn->search("cn=$name,cn=plugins,cn=config", "base","objectclass=nsSlapdPlugin") ; - if ($entry) { - my $pluginenabled="nsslapd-pluginenabled" ; - if (($entry->{$pluginenabled}[0]) ne $ref_plugin->enable) { - $update_plugin = 1 ; - my $enable = $ref_plugin->enable ; - printTrace("\n$pluginame, plugin-enable: $enable",3) ; - $entry->setValues($pluginenabled, $enable ); - } - my $ArgNum = 0 ; - foreach $ArgValue (@{$ref_plugin->args}) { - my $Arg="nsslapd-pluginarg$ArgNum"; - printTrace("\n$Arg: $ArgValue",3) ; - if ($entry->{$Arg}[0] ne $ArgValue) { - printTrace("\n$pluginame, $Arg: $ArgValue",3) ; - $update_plugin = 1 ; - $entry->setValues($Arg, $ArgValue) ; - } - $ArgNum++ ; - } - if ($update_plugin) { - printTrace("\n$pluginame is being updated...",2); - my $res = $conn->update($entry) ; - if ($res) { - printTrace("\nupdated !",2); - } - else { - printMsg("\nError during update of plugin: $pluginame") ; - $MigrationErrors .= "\nError during update of plugin: $pluginame"; - } - } - else { - printTrace("\n$pluginame has not changed",4); - } - } - else { - printMsg("\ncan't access the plugin: cn=$name,cn=plugins,cn=config"); - } - } - else { - printTrace("\nPLUGIN NOT RECORDED: $pluginame",4) ; - } - } - } - else { - # treat the case where the user wants to look at these plugins before processing - } -} - -############################################################################# -# Execute Perldap command to add new indexes to the migrated instances - -sub LDAPmodify_Indexes { - my $Filename = shift ; - my @indexnames = keys(%newIndex); - my @suffixnames = keys(%DBNAMES); - if ((! $INDEX_FILE_MODIFIED) && (%DBNAMES)) { - # we update indexes only if there is at least one backend to migrate - printTrace("\nLDAPmodify_indexes",4); - printTrace("\nMigrate indexes...",1); - foreach $indexname ( @indexnames ) { - printTrace("\nIndexName: $indexname",4); - printTrace("\nIndexTypes: .@{$newIndex{$indexname}->types}.", 4) ; - printTrace("\nIndexOIDS: .@{$newIndex{$indexname}->oids}.", 4) ; - foreach $suffixname ( @suffixnames ) { - # check if the index already exists ! - printTrace("\nsearch for cn=$indexname,cn=index,cn=$DBNAMES{$suffixname},cn=ldbm database,cn=plugins,cn=config...", 3); - my $entry = $conn->search("cn=$indexname,cn=index,cn=$DBNAMES{$suffixname},cn=ldbm database,cn=plugins,cn=config","base","objectclass=nsIndex"); - if (! $entry) { - # create a new index - printTrace("index $indexname is being created under cn=index,cn=$DBNAMES{$suffixname},cn=ldbm database,cn=plugins,cn=config...",2); - my $entry = $conn->newEntry(); - $entry->setDN("cn=$indexname,cn=index,cn=$DBNAMES{$suffixname},cn=ldbm database,cn=plugins,cn=config"); - $entry->setValues("objectclass", "top", "nsIndex" ) ; - $entry->setValues("cn", $indexname) ; - $entry->setValues("nssystemindex", "false") ; - my @types = @{$newIndex{$indexname}->types} ; - my @oids = @{$newIndex{$indexname}->oids} ; - $entry->setValues("nsindextype", @types) if (@types) ; - $entry->setValues("nsmatchingrule", @oids ) if (@oids); - my $res = $conn->add($entry) ; - if ($res) { - printTrace("\nAdd index successfully: $indexname for backend: $DBNAMES{$suffixname}",2); - } - else { - printMsg("\n Failed to add the index: $indexname to backend: $DBNAMES{$suffixname}"); - $MigrationErrors .= "\n Failed to add the index: $indexname to backend: $DBNAMES{$suffixname}" ; - } - } - elsif ($entry->{nssystemindex}[0] eq "false") { - # if the index is not a system index, we update it - printTrace("\nindex $indexname is being processed under cn=index,cn=$DBNAMES{$suffixname},cn=ldbm database,cn=plugins,cn=config...",2); - my @types = @{$newIndex{$indexname}->types} ; printTrace("\ntypes: .@types.",2) ; - my @oids = @{$newIndex{$indexname}->oids} ; printTrace("\noids: .@oids.",2) ; - my @existing_types = $entry->getValues("nsindextype"); - my @existing_oids = $entry->getValues("nsmatchingrule"); - # get the elements present in @types and not present in @existing_types - my @typesToAdd = &getDiff(\@types, \@existing_types); - # same for matchingrules - my @oidsToAdd = &getDiff(\@oids, \@existing_oids); - foreach $newtype (@typesToAdd) { - $entry->addValue("nsindextype", $newtype); printTrace("\nnewtype: $newtype",2); - } - foreach $newoid (@oidsToAdd) { - $entry->addValue("nsmatchingrule", $newoid); - } - if (@typesToAdd || @oidsToAdd) { - my $res = $conn->update($entry) ; - if ($res) { - printTrace("\nUpdate index successfully: $indexname for backend: $DBNAMES{$suffixname}",2); - } - else { - printMsg("\n Failed to update the index: $indexname to backend: $DBNAMES{$suffixname}"); - $MigrationErrors .= "\n Failed to update the index: $indexname to backend: $DBNAMES{$suffixname}" ; - } - } - else { - printTrace("\nNothing to update",2); - } - } - else { - printTrace("\nThe index: $indexname is a system index. It can't be updated",2); - } - } - } - - } - else { - # treat the case where the user wants to look at these indexes before processing - } - -} - -############################################################################# -# -# Execute a Perldap command to add all user defined object classes in the new schema - -sub LDAPmodify_User_oc { - my $Filename = shift ; - if (! $USER_OC_FILE_MODIFIED) { - printTrace("\nLDAPmodify_User_oc",4); - printTrace("\nMigrate objectclasses...",1); - foreach $objectname ( @User_oc_names ) { - my $entry = $conn->search("cn=schema", "base","objectclass=*") ; - die "\ncan't connect to object: cn=schema\n" unless ($entry); - printTrace("\nObjectName: $objectname\nValue: $User_oc{$objectname}",3); - next if ($entry->hasValue("objectclasses",$User_oc{$objectname},1)) ; - $entry->addValue("objectclasses",$User_oc{$objectname},"1") ; - my $res = $conn->update($entry) ; - my $err = $conn->getErrorCode(); - if ($res) { - printTrace("\nobjectclass: $User_oc{$objectname} added",2); - } elsif ($err == 20) { # already exists - printTrace("\nobjectclass: $User_oc{$objectname} already exists",1); - } else { - printMsg("\nCan\'t add objectclass to the schema: $User_oc{$objectname}"); - my $msg = $conn->getErrorString(); - printMsg("\nMsg: $msg"); - $MigrationErrors .= "\nCan\'t add objectclass to the schema: $User_oc{$objectname}" ; - } - } - } - else { - # treat the case where the user wants to look at these objectclasses before processing - } -} - -############################################################################# -# -# Execute a Perldap command to add all user defined attributes in the new schema - -sub LDAPmodify_User_at { - my $Filename = shift ; - my @attributenames = keys(%User_at); - if (! $USER_AT_FILE_MODIFIED) { - - printTrace("\nLDAPmodify_User_at",4); - printTrace("\nMigrate attributes...",1); - foreach $attributename ( @attributenames ) { - my $entry = $conn->search("cn=schema", "base","objectclass=*") ; - printTrace("\nAtributeName: $attributename, Value: $User_at{$attributename}",3); - die "\nentry not found cn=schema\n" unless $entry ; - next if ($entry->hasValue("attributetypes",$User_at{$attributename},1) ) ; - my $res = $entry->addValue("attributetypes",$User_at{$attributename},"1") ; - if (! $res) { - printMsg("\nCan\'t add attribute to the schema: $User_at{$attributename}"); - $MigrationErrors .= "\nCan\'t add attribute to the schema: $User_at{$attributename}" ; - } - my $res = $conn->update($entry) ; - my $err = $conn->getErrorCode(); - if ($res) { - printTrace("\nattribute: $attributename added",2); - } elsif ($err == 20) { # already exists - printTrace("\nattribute: $attributename already exists",1); - } - else { - printMsg("\nCan\'t add attribute to the schema: $User_at{$attributename}"); - my $msg = $conn->getErrorString(); - printMsg("\nMsg: $msg"); - $MigrationErrors .= "\nCan\'t add attribute to the schema: $User_at{$attributename}" ; - } - } - } - else { - # treat the case where the user wants to look at these attributes before processing - } -} - -############################################################################# -# Add an object class to the user_oc hash and reset the object !!! -sub AddObjectClass { - my $ObjectClass = shift ; - my $ObjectName = $ObjectClass->{'ObjectName'} ; - my $Object_oid = $ObjectClass->{'Object_oid'} ; - my $Object_superior = $ObjectClass->{'Object_superior'} ; - my $Object_requires = $ObjectClass->{'Object_requires'} ; - my $Object_allows = $ObjectClass->{'Object_allows'} ; - my $ObjectClassDef = "( $Object_oid NAME \'$ObjectName\' DESC \'\' SUP $Object_superior STRUCTURAL MUST ($Object_requires) MAY ($Object_allows) X-ORIGIN \'user defined\' )"; - if ( (!($ObjectName =~ /^top$/i)) && ( ! $User_oc{$ObjectName} )) { - $User_oc{$ObjectName} = $ObjectClassDef ; - push @User_oc_names, $ObjectName ; - printTrace("ObjectName: $ObjectName \nObject_oid: $Object_oid \nObject_superior:$Object_superior \nObject_requires: $Object_requires \nObject_allows: $Object_allows \nObjectClassDefinition: $User_oc{$ObjectName}\n",4); - } - elsif ( ($User_oc{$ObjectName}) && ($User_oc{$ObjectName} ne $ObjectClassDef) ) { - printMsg("\nAttempt to redifine the objectclass: $ObjectName previously defined in your configuration file. Operation not allowed "); - } - else { - printMsg("\nAttempt to redifine the objectclass: top. Operation not allowed"); - } - resetObjectClass($ObjectClass); -} - -############################################################################# -# Build an LDIF attribute and add it to the user_at hash -sub AddAttribute { - my $Attr = shift ; - my $AttributeName = $Attr->{'AttributeName'}; - my $Attribute_oid = $Attr->{'Attribute_oid'}; - my $Attribute_aliases = $Attr->{'Attribute_aliases'}; - my $Attribute_syntax = $Attr->{'Attribute_syntax'}; - my $Attribute_single = $Attr->{'Attribute_single'}; - my $AttributeDef = "( $Attribute_oid NAME ( \'$AttributeName\' $Attribute_aliases) DESC \'User Defined Attribute\' SYNTAX $Attribute_syntax $Attribute_single X-ORIGIN 'user defined' )" ; - printTrace("\nAttributeDef: $AttributeDef",4); - $User_at{$AttributeName} = $AttributeDef ; -} -############################################################################# -# add the index structure to the newIndex hash -sub AddIndex { - my $ref_index = shift ; - my $state = shift ; - printTrace("\nAddIndex, last state: $state",4) ; - if ($state == 1) { - $ref_index->specific("ALL") ; - return 1 ; - } - elsif ($state == 6) { - $ref_index->specific("NONE") ; - return 1 ; - } - if (($state == 1) || ($state == 3) || ($state == 5) || ($state == 6)) { - foreach $name (@{$ref_index->names}) { - $newIndex{$name} = $ref_index ; # record the ref to the index struct in the newIndex hash - } - return 1 ; - } - else { - return 0 ; - } -} - -############################################################################# -# add the plugin structure to the stdPlugin hash - -sub AddPlugin { - my $ref_plugin = shift ; - printTrace("\nAddPlugin",4) ; - $stdPlugins{lc($ref_plugin->name)} = $ref_plugin ; - my $name = $ref_plugin->name ; - my $type = $ref_plugin->type ; - my $enable = $ref_plugin->enable ; - - printTrace("\nPluginName: $name",4); - printTrace("\nPluginType: $type",4); - printTrace("\nPluginEnable: $enable",4); - printTrace("\nPluginArgs: @{$ref_plugin->args}",4); - return 1 ; -} - - -############################################################################# -# parse a plugin definition and call the addindex - -sub ParsePlugin { - my $Plugin = shift ; - my $NumLine = shift ; - my $state = 0 ; - my $ErrorMsg = "Syntax error of a plugin definition. \n line parsed:"; - my $ref_plugin = S_plugin->new(); - printTrace("\nParsePlugin: $_",4); - if (/^plugin\s+(database|extendop|preoperation|postoperation|matchingrule|syntax)\s+(on|off)\s+\"(.*?)\"\s+\"(.*?)\"\s+(\S+)(.*)$/i) { - # $1 = <type>, $2 = <on|off>, $3 = <name>, $4 = <pathname>, $5 = <init_function>, $6 = [<arg>]* - $ref_plugin->name($3); - $ref_plugin->type($1); - $ref_plugin->enable($2); - $_ = $6 ; - my $ArgNb = 0 ; - my $prec ; - my $arg ; - my $Unix_oldDir = $oldDir ; - my $Unix_root = $root ; - grep { s@\\@/@g } $Unix_oldDir if $isNT; - grep { s@\\@/@g } $Unix_root if $isNT; - while (!(/^\s*$/)) { - if (/^\s*\".*?\"/) { - s/^\s*\"(.*?)\"(.*)/$2/i ; - $arg = $1 ; - } - elsif (/^\s*[^\"\s]+/) { - s/^\s*([^\"\s]+)(.*)/$2/i ; - $arg = $1 ; - } - $prec = $_ ; - $_ = $arg ; - - s@$Unix_oldDir@$Unix_root@ig ; - s/$type-$oldname/$type-$newname/ig ; - @{$ref_plugin->args}[$ArgNb++] = $_ ; - $_ = $prec ; - } - if (/^\s*$/) { - return AddPlugin($ref_plugin); - } - else { - return 0 ; - } - } - return 0 ; -} - -############################################################################# -# parse an index definition and call the addindex - -sub ParseIndex { - my $index = shift ; - my $NumLine = shift ; - my $ref_index = S_index->new() ; - my $Value ; - my $state = 0 ; - my $ErrorMsg = "Syntax error of an index definition.\nline parsed:"; - printTrace("\nParseIndex: $_",4) ; - s/,/, /g ; - s/\s+,/,/g ; - s/^index\s+//i ; # substitute the token index - while (!(/^\s*$/)) { - s/^\s*(\S+)(.*)$/$2/ ; - $Value = $1 ; - printTrace("\nValue: $Value",4); - printTrace("\nState: $state",4) ; - SWITCH: { - if ($state == 0) { - if ($Value =~ /[^\.]/) { - if ($Value =~ /(\S+),$/) { - push @{$ref_index->names}, $1 ; - } - else { - $state = 1 ; - push @{$ref_index->names}, $Value ; - } - } - else { - return 0 ; - } - last SWITCH ; - } - if ($state == 1) { - if ($Value =~ /^none$/i) { - $state = 6 ; # end of the index definition - } - elsif ($Value =~ /^\"\"$/) { - $state = 4 ; # we expect to have at least one OID - } - elsif ($Value =~ /(\S+),$/) { - $state = 2 ; - push @{$ref_index->types}, $1 ; - } - else { - $state = 3 ; - push @{$ref_index->types}, $Value ; - } - last SWITCH ; - } - if ($state == 2) { - if ($Value =~ /(\S+),$/) { - push @{$ref_index->types}, $1 ; - } - else { - $state = 3 ; - push @{$ref_index->types}, $Value ; - } - last SWITCH ; - } - if ($state == 3) { - if ($Value =~ /(\S+),$/) { - $state = 4 ; - push @{$ref_index->oids}, $1 ; - } - else { - $state = 5 ; - push @{$ref_index->oids}, $Value ; - } - last SWITCH ; - } - if ($state == 4) { - if ($Value =~ /(\S+),$/) { - push @{$ref_index->oids}, $1 ; - } - else { - $state = 5 ; - push @{$ref_index->oids}, $Value ; - } - last SWITCH ; - } - } - } -return AddIndex($ref_index,$state) ; - -} - -############################################################################# - -sub ParseAttribute { - - - my $Attr = shift ; - my $NumLine = shift ; - my $state = 1 ; - my $ErrorMsg = "Syntax error of an attribute definition.\nline parsed:"; - my %Attribute = ( - 'AttributeName' => "", - 'Attribute_oid' => "", - 'Attribute_aliases' => "", - 'Attribute_syntax' => "", - 'Attribute_single' => "" - ); - my $AttributeName = " "; - printTrace("\nParseAttribute",4); - while (!(/^\s*$/)) { - s/^(.*?)(\S+)\s*$/$1/ ; - printTrace("\nValue: $2",4); - printTrace("\nState: $state",4) ; - my $Value = $2 ; - SWITCH: { - if ($state == 1) { - if (isAllowedModifier($Value)) { - $state = 1 ; - $modifier = lc($Value); - $AttrVar = 'Attribute_' . $modifier ; - $Attribute{$AttrVar} = &getModifierValue($Value) ; - } - elsif (&isAllowedPlugin($Value)) { - $state = 2 ; - $Attribute{'Attribute_syntax'} = &getSyntaxOid($Value) ; - } - else { - return 0 ; - } - last SWITCH ; - } - if ($state == 2) { - if ($Value =~ /[\.]|-oid$/) { - $Attribute{'Attribute_oid'} = "$Value" ; - printTrace("\nAttribute-oid: $Attribute{'Attribute_oid'}",3); - $state = 3 ; - } - elsif ($Value =~ /[^\.]/) { - $AttributeName = $Attribute{'AttributeName'} ; - if ($AttributeName) { $Attribute{'Attribute_aliases'} .= "\'$AttributeName\' " ;} - $Attribute{'AttributeName'} = $Value ; - $state = 4 ; - } - else { - return 0 ; - } - last SWITCH ; - } - if ($state == 3) { - if ($Value =~ /[^\.]/) { - $AttributeName = $Attribute{'AttributeName'} ; - if ($AttributeName) { $Attribute{'Attribute_aliases'} .= "\'$AttributeName\' " ;} - $Attribute{'AttributeName'} = $Value ; - $state = 4 ; } - else { - return 0 ; - } - last SWITCH ; - } - if ($state == 4) { - if ($Value =~/^attribute$/i){ - $state = 5; - } - elsif ($Value =~/[^\.]/i) { - $AttributeName = $Attribute{'AttributeName'} ; - if ($AttributeName) { $Attribute{'Attribute_aliases'} .= "\'$AttributeName\' " ;} - $Attribute{'AttributeName'} = $Value ; - } - else { - return 0 ; - } - last SWITCH ; - } - if ($state == 5) { - return 0 ; - last SWITCH ; - } - } - } - $Attribute{'Attribute_oid'} = $Attribute{'AttributeName'} . '-oid' unless ($Attribute{'Attribute_oid'}) ; - return AddAttribute(\%Attribute) ; -} - - -############################################################################# -# fill in the hash HashParametersName - -sub FillHashParametersName { - my @paramnames = ( keys(%GeneralSrvParamToMigrate), keys(%GlobalConfigLDBMparamToMigrate), keys(%LDBMparamToMigrate)); - foreach $param (@paramnames) { - $HashParametersName{$param} = '\n'; - } -} - - -# Parse parameters -sub ParseParameters { - my $param = shift ; - my $value = shift ; - my $NumLine = shift ; - my $ErrorMsg = "parameter unknown, or not to be migrated: "; - if ($HashParametersName{lc($param)} && ($value !~ /^\s*$/)) { - $HashParametersName{lc($param)} = $value ; - printTrace("\nParam: $param is present",4); - } - else { - printTrace("\n$NumLine, $ErrorMsg,$param",4); - } - -} - -# add general server parameters -sub AddGeneralParameters { - my @paramnames = keys(%GeneralSrvParamToMigrate); - my $entry = $conn->search("cn=config","base","objectclass=*"); - die "\ncan't access to object: cn=config. \nMigration stopped\n" unless ($entry); - printTrace("\nAddGeneralParameters",4); - foreach $param (@paramnames) { - my $LDAPparam = $GeneralSrvParamToMigrate{$param} ; - my $Value = $HashParametersName{$param} ; - if (($Value ne '\n') && ($entry->{$LDAPparam}[0] ne $Value)) { - printTrace("\nLDAPparam: $LDAPparam, Value: $Value",4); - $entry->setValues($LDAPparam, $Value); - my $res = $conn->update($entry); - if ($res) { - printTrace("\nUpdate successfully $LDAPparam ",0); - } - else { - printMsg("\nCan't update parameter: $LDAPparam"); - } - } - } -} - - -# add general LDBM parameters -sub AddGeneralLDBMParameters { - my @paramnames = keys(%GlobalConfigLDBMparamToMigrate); - my $entry = $conn->search("cn=config,cn=ldbm database,cn=plugins,cn=config","base","objectclass=*"); - die "\ncan't access to object: cn=config,cn=ldbm database,cn=plugins,cn=config. \nMigration stopped\n" unless ($entry); - printTrace("\nAddGeneralLDBMParameters",4); - foreach $param (@paramnames) { - my $LDAPparam = $GlobalConfigLDBMparamToMigrate{$param} ; - my $Value = $HashParametersName{$param} ; - if (($Value ne '\n') && ($entry->{$LDAPparam}[0] ne $Value)) { - printTrace("\nLDAPparam: $LDAPparam, Value: $Value",4); - $entry->setValues($LDAPparam, $Value); - my $res = $conn->update($entry); - if ($res) { - printTrace("\nUpdate successfully $LDAPparam ",0); - } - else { - printMsg("\nCan't update parameter: $LDAPparam"); - } - } - } -} - -# add specific LDBM parameters -sub AddSpecificLDBMParameters { - my @paramnames = keys(%LDBMparamToMigrate); - my %REV_DBNAMES = reverse %DBNAMES ; - my @dbnames = keys(%REV_DBNAMES); - printTrace("\nAddSpecificLDBMParameters",4); - foreach $dbname (@dbnames) { - my $entry = $conn->search("cn=$dbname,cn=ldbm database,cn=plugins,cn=config","base","objectclass=*"); - die "\ncan't access to object: cn=$dbname,cn=ldbm database,cn=plugins,cn=config. \nMigration stopped\n" unless ($entry); - foreach $param (@paramnames) { - my $LDAPparam = $LDBMparamToMigrate{$param} ; - my $Value = $HashParametersName{$param} ; - if (($Value ne '\n') && ($entry->{$LDAPparam}[0] ne $Value)) { - printTrace("\nLDAPparam: $LDAPparam, Value: $Value",4); - $entry->setValues($LDAPparam, $Value); - my $res = $conn->update($entry); - if ($res) { - printTrace("\nUpdate successfully $LDAPparam",2); - } - else { - printMsg("\nCan't update parameter: $LDAPparam"); - } - } - } - } -} - -############################################################################# -# Parse a configuration file potentialy tuned by the user (different from slapd.user_oc.conf and slapd.user_at.conf) - -sub ParseConfigurationFile { - - my $FileToParse = shift; - my $NumLine = 0; - my $PARSE_OBJECTCLASSES = 0 ; # 1 if there are objectclass definitions in the file - printTrace("\nParseConfigurationFile: $FileToParse",4) ; - printTrace("\nParse $FileToParse",2); - # read each line of the configuration file - my $CONFIGFILE = "CONFIGFILE.$FileToParse" ; - open( $CONFIGFILE, $FileToParse ) || die "Can't open $FileToParsec: $!: "; - LINE: while ( <$CONFIGFILE> ) { - $NumLine++ ; - if (/^\s*\#/) { # skip comments - next LINE; - } - if (/^\s*$/) { # skip blank lines - next LINE; - } elsif (/^suffix\s+/i) { - chomp($_) ; - CheckSuffix($_) ; - } elsif (/^plugin/i) { - chomp($_); - if (! &isAStandardPlugin($_)) { - push @badPlugins, $_; - } - else { - my $Plugin = $_ ; - if (! &ParsePlugin($_,$NumLine)) { - printMsg("\nLine $NumLine, syntax error of the plugin:\n$Plugin"); - } - } - } elsif (/^index/i) { - chomp($_); - if (! &isAStandardIndex($_)) { - my $Index = $_ ; - if (! &ParseIndex($_,$NumLine)) { - printMsg("\nLine $NumLine, syntax error of index:\n$Index"); - } - } - } elsif (/^include\s+[\"]?(.*?)[\"]?\s*$/i) { - # strip leading and trailing " - my $include_file = $1 ; - grep { s@/@\\@g } $include_file if $isNT; - if (! &isAStandardInclude($include_file)) { - &ParseConfigurationFile($include_file); - } - } elsif (/^attribute\s+\S+/i) { - chomp($_); - my $Attrib = $_ ; - if (! &ParseAttribute($_,$NumLine)) { - printMsg("\nLine $NumLine, syntax error of attribute:\n$Attrib"); - } - } elsif (/^objectclass\s+(\S+)\s*$/i) { - # At least one objectclass is present in the file - $PARSE_OBJECTCLASSES = 1; - } elsif (/^\s*(\S+)\s+[\"]?(.*?)[\"]?\s*$/) { - # Parse parameters and record the associated value in %Oldhash - &ParseParameters($1,$2,$NumLine); - } - } - close($CONFIGFILE); - ParseObjectClassesFile($FileToParse) if ($PARSE_OBJECTCLASSES); # parse objectclass definition - -} - -############################################################################# -# Parse the file specified in the userat attribute - -sub ParseAttributesFile { - my $userat_file=shift ; - my $NumLine = 0; - printTrace("\nParseAttributesFile: $userat_file",4); - printTrace("\nParse user defined attributes file: $userat_file",2); - # read each line of the configuration file - open( ATTRFILE, $userat_file ) || die "Can't open $FileToParsec: $!: "; - LINE: while ( <ATTRFILE> ) { - $NumLine++ ; - if (/^\s*\#/) { # skip comments - next LINE; - } - if (/^\s*$/) { # skip blank lines - next LINE; - } elsif (/^attribute\s+\S+/i) { - chomp($_); - my $Attrib = $_ ; - if (! &ParseAttribute($_, $NumLine)) { - printMsg("\nLine $NumLine, syntax error of attribute:\n$Attrib"); - } - } - } - close(ATTRFILE); -} - -############################################################################# -# Parse the file specified in the useroc token - -sub ParseObjectClassesFile { - my $useroc_file = shift ; - my %ObjectClass = ( - 'ObjectName' => " ", - 'Object_oid' => " ", - 'Object_superior' => "top", - 'Object_requires' => " ", - 'Object_allows' => " " - ); - - my $state = 0; - my $ErrorMsg = "Syntax error of an object class definition.\nline parsed:"; - my $LineNb = 0 ; # Number of the current line parsed in the file - printTrace("ParseObjectClassesFile: $useroc_file\n",4) ; - # read each line of the configuration file - open( OBJCLASSFILE, $useroc_file ) || die "Can't open $FileToParsec: $!: "; - printTrace("Begin the parsing of the file: $useroc_file",4); - LINE: while ( <OBJCLASSFILE> ) { - printTrace("Current Line: $_",4); - $LineNb++ ; - if (/^\s*\#/) { # skip comments - next LINE; - } - if (/^\s*$/) { # skip blank lines - next LINE; - } - SWITCH: { - if ($state == 0) { resetObjectClass(\%ObjectClass); - if (/^objectclass\s+(\S+)\s*$/i) { - $ObjectClass{'ObjectName'} = $1; - $state = 1 ;} - else {} # printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - if ($state == 1) {if (/^\s+oid\s+(\S+)\s*$/i) { - $ObjectClass{'Object_oid'} = $1; - $state = 2 ;} - elsif (/^\s+superior\s+(\S+)\s*$/i) { - $ObjectClass{'Object_superior'} = $1; - $state = 3 ; - } - elsif (/^\s+requires\s*$/i) { - $state = 4; - } - elsif (/^\s+allows\s*$/i) { - $state = 5; - } - else {$state=0; printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - if ($state == 2) {if (/^\s+superior\s+(\S+)\s*$/i) { - $ObjectClass{'Object_superior'} = $1; - $state = 3 ;} - elsif (/^\s+requires\s*$/i) { - $state = 4; - } - elsif (/^\s+allows\s*$/i) { - $state = 5; - } - else { $state=0; printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - if ($state == 3) {if (/^\s+requires\s*$/i) - { $state = 4; } - elsif (/^objectclass\s+(\S+)\s*$/i) { - # run an ldap add before to continue - &AddObjectClass(\%ObjectClass); - $ObjectClass{'ObjectName'} = $1; - $state = 1 ;} - elsif (/^\s+allows\s*$/i) - { $state = 5; } - else {$state = 0; printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - if ($state == 4) {if (/^\s+([^,\s]+),\s*$/i) { - $ObjectClass{'Object_requires'}.=$1." \$ "; } - elsif (/^\s+([^,\s]+)\s*$/i) { - $ObjectClass{'Object_requires'}.=$1." "; - $state = 6; } - else {$state = 0;printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - if ($state == 5) {if (/^\s+([^,\s]+),\s*$/i) { - $ObjectClass{'Object_allows'}.=$1." \$ "; } - elsif (/^\s+([^,\s]+)\s*$/i) { - $ObjectClass{'Object_allows'}.=$1." "; - # run an ldap add before to continue - &AddObjectClass(\%ObjectClass); - $state = 0; } - else {$state = 0; printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - if ($state == 6) {if (/^objectclass\s+(\S+)\s*$/i) { - # run an ldap add before to continue - &AddObjectClass(\%ObjectClass); - $ObjectClass{'ObjectName'} = $1; - $state = 1 ;} - elsif (/^\s+allows\s*$/i) { - $state = 5;} - else {$state = 0; printMsg($ErrorMsg,$_,$LineNb);} - last SWITCH;} - } - } - close(OBJCLASSFILE); - if (($state == 3) || ($state == 4) || ($state == 5) || ($state == 6)) { - &AddObjectClass(\%ObjectClass); - } - printTrace("state: $state",4); -} - -############################################################################# -# printMsg print message to the user standard output. - -sub printMsg { - - my $TypeMsg = shift ; - my $Msg = shift ; - my $LineNb = shift ; - if ($LineNb) { - printTrace("Line: $LineNb, $TypeMsg, $Msg"); - } - else { - printTrace("$TypeMsg $Msg"); - } -} - -############################################################################# -# print message error to the user standard output. - -sub printTrace { - - my $Msg = shift ; - my $level = shift ; - if ($level <= $TRACELEVEL) { - print($Msg); - print LOGFILE $Msg ; - } -} - -############################################################################# -# reset an objectclass structure - -sub resetObjectClass { - my $ObjectClass = shift; - $ObjectClass->{'ObjectName'} = " " ; - $ObjectClass->{'Object_oid'} = " " ; - $ObjectClass->{'Object_superior'} = "top" ; - $ObjectClass->{'Object_requires'} = " " ; - $ObjectClass->{'Object_allows'} = " " ; -} - -############################################################################# -# this subroutine implements a very stupid version of diff - -sub diff { - my $f1 = shift; - my $f2 = shift; - my $lineToBeginWith = shift; - my $NULL = "" ; - my $diff_f1 = $NULL ; - my $diff_f2 = $NULL ; - my $retval = $NULL ; - my $ret; - open(F1, "$f1") or die "Could not open file $f1"; - open(F2, "$f2") or close(F1), die "Could not open file $f2"; - - while (defined($l1 = <F1>)) { - if ($lineToBeginWith){ - $lineToBeginWith -- ; - next ; - } - next if ($l1 =~ /^\#/); - $ret = defined($l2 = <F2>); - if ($ret) { - $ret = defined($l2 = <F2>) while ($ret && ($l2 =~ /^\#/)) ; - if ($ret) { - if (!($l1 eq $l2)) { - - # ignore whitespace - $l1_clean = $l1 ; - $l2_clean = $l2 ; - $l1_clean =~ s/\s//g; - $l2_clean =~ s/\s//g; - - if (!($l1_clean eq $l2_clean)) { - $diff_f1 .= "${l1}" unless ($l1_clean eq $NULL); - $diff_f2 .= "${l2}" unless ($l2_clean eq $NULL); - } - } - } - else { - next if ($l1 =~ /^\s*$/) ; - $diff_f1 .= "${l1}"; - } - } - else { - next if ($l1 =~ /^\s*$/) ; - $diff_f1 .= "${l1}"; - } - } - - while (defined($l2 = <F2>)) { - if (($l2 =~ /^\#/) || ($l2 =~ /^\s*$/)) { - next ; - } - else { - $diff_f2 .= "${l2}" ; - } - } - - close(F1); - close(F2); - - $retval .= "- differences present in your config file but not in standard file:\n\n". "$diff_f1\n" if ($diff_f1) ; - $retval .= "- differences present in standard file but not in your config file:\n\n" . "$diff_f2" if ($diff_f2) ; - return $retval ; -} - -sub CompareStdConfigFiles { - # Compare each configuration file against its default version. If it has changed, - # notify the user that the file has changed and will need to be checked by the - # user. This should be safe to do because there should be no path information - # stored in these conf files, which are just schema stuff. - # printTrace("\nCheck if standard configuration files have changed",3); - - my $origFilePath = "$oldDir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}install${PATHSEP}config${PATHSEP}" ; - my $FilesChanged = ""; - my $AllDiffs = "***********************************************************************"; - my $NoChanges = "" ; - my $lineToBegin = 0 ; - printTrace("\nVersion of the old directory server: $oldVersion.$oldMinor",0); - opendir(CONFDIR, $oldConfDir) or - die "Error: could not open migrated config dir $oldConfDir: $!"; - - foreach $file (readdir(CONFDIR)) { - $origFile = $origFilePath . $file ; - $configFile = $oldConfDir . $file ; - if ((! exists($userDefinedConfigFiles{lc($file)})) && (-f $origFile)) { - my $lineToBegin = 1 if (lc($file) eq "slapd-collations.conf"); # we ignore the first line of slapd-collations - $diffs = &diff($configFile, $origFile, $lineToBegin); - $lineToBegin = 0 if $lineToBegin ; - if ($diffs) { - $FilesChanged .= "\n$configFile"; - $AllDiffs .= "\n$configFile is different than the standard configuration file" ; - $AllDiffs .= "\nYou will need to check this file and make sure its changes are compatible "; - $AllDiffs .= "with the new directory server\nHere are the differences:\n"; - $AllDiffs .= "$diffs \n\n"; - $AllDiffs .= "***********************************************************************"; - } - else { - $NoChanges .= "\n$configFile"; - } - } - } - closedir(CONFDIR); - -if ($FilesChanged) { - printTrace("\nNo changes to old configuration files:$NoChanges",3) ; - printTrace("\n***********************************************************************",3) ; - printMsg("\nThe following standard files have been modified: $FilesChanged"); - if ($NO_INPUT_USER) { - # do nothing - } - else { - printMsg("\nDo you want to see the differences Yes/No [No] ?") ; - my $answer = <STDIN> ; - if ($answer =~ /y|yes/i) { - printMsg("$AllDiffs"); - } - printMsg("\nDo you want to continue the migration Yes/No [No] ?"); - $answer = <STDIN> ; - if (! ($answer =~ /y|yes/i)) { - exit(1); - } - } - } -} - - -############################################################################# - -sub db2ldif { - my ($conf, $ldif_dir) = @_; - $ENV{"$LIB_PATH"}=$old_libpath; - if (!$conf) { - $conf = "$oldHome${PATHSEP}config${PATHSEP}slapd.conf"; - } - if (! $ldif_dir) { $ldif_dir = $ldif_rep ;} - if (!(-d $ldif_dir)) { - mkdir($ldif_dir,0777) or die "can't create $ldif_rep to store temporary ldif files"; - } - my $dir = "$oldDir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server"; - chdir($dir) or - die "Error: could not change directory to $dir: $!"; - my @suffixnames = keys(%DBNAMES) ; - foreach $suffixname (@suffixnames) { - my $ldif_file = $ldif_dir.$DBNAMES{$suffixname}.".ldif" ; - # If we are on NT, ${quote} is setup to "\"", else it's setup to "" - # As the suffix can contain some space characters, I write the suffix parameter: "\"$suffixname\"" rather than "${quote}$suffixname${quote}" - my @cmd = - ( "${quote}$oldDir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server" . - "${PATHSEP}$slapdExecName${quote}", "db2ldif", '-n', '-f', - "${quote}$conf${quote}", '-a', "${quote}$ldif_file${quote}", - '-d', '1','-s',"\"$suffixname\"" ); - open(DB2LDIF, "${quote}@cmd${quote} 2>&1|") or - die "Error: could not execute @cmd: $!"; - sleep(1); # allow pipe to fill with data - $ii = 0; # counter - while (<DB2LDIF>) { - ++$ii; - if (($ii % 250) == 0) { - printMsg(" Processing...\n"); - } - } - close(DB2LDIF); - # set the ownership of the ldif file; should be the same as the new slapd user id - if ((! $isNt) && ($oldlocaluser ne $localuser)) { - if (-f $ldif_file) { - chown( $newuid, $newgid, $ldif_file) or printMsg("\nUnable to change the ownership of $ldif_file to $localuser") ; - } - } - } - print " Done.\n"; - chdir($curdir) or die "Could not change directory to $curdir: $!"; -} - -############################################################################# -# This db2ldif is used to export database of the new instance - -sub newinst_db2ldif { - my $ldif = shift ; - my $include_suffix = shift ; - my $home = shift ; - my $db2ldif_param = "db2ldif -r -D $home -a $ldif -s \"$include_suffix\""; - - open(DB2LDIF, "${quote}${quote}$slapdExecName${quote} $db2ldif_param${quote} 2>&1 |") or die "Could not run ns-slapd program $ldif2db_exe\n"; - sleep(1); # allow some data to accumulate in the pipe - my $ii = 0; - while (<DB2LDIF>) { - ++$ii; - if (($ii % 250) == 0) { - printMsg(" Processing...\n"); - } - printMsg($_); - } - close(DB2LDIF); - # set the ownership of the ldif file; should be the same as the 5.x slapd user id - if ((! $isNt) && ($oldlocaluser ne $localuser)) { - if (-f $ldif) { - chown( $newuid, $newgid, $ldif) or printMsg("\nUnable to change the ownership of $ldif to $localuser") ; - } - } -} - -############################################################################# - -# this is used to run the system() call, capture exit and signal codes, -# and die() upon badness; the first argument is a directory to change -# dir to, if any, and the rest are passed to system() -sub mySystem { - my $rc = &mySystemNoDie(@_); - my ($dir, @args) = @_; - if ($rc == 0) { -# success - } elsif ($rc == 0xff00) { - die "Error executing @args: error code $rc: $!"; - } elsif ($rc > 0x80) { - $rc >>= 8; - die "Error executing @args: error code $rc: $!"; - } else { - if ($rc & 0x80) { - $rc &= ~0x80; - } - die "Error executing @args: received signal $rc: $!"; - } - - # usually won't get return value - return $rc; -} - -# This version does not die but just returns the error code -sub mySystemNoDie { - my ($dir, @args) = @_; - if ($dir && ($dir ne "")) { - chdir($dir) or die "Could not change directory to $dir: $!"; - } - my $cmd = $args[0]; - # the system {$cmd} avoids some NT shell quoting problems if the $cmd - # needs to be quoted e.g. contains spaces; the map puts double quotes - # around the arguments on NT which are stripped by the command - # interpreter cmd.exe; but don't quote things which are already quoted - my @fixargs = map { /^[\"].*[\"]$/ ? $_ : $quote . $_ . $quote } @args; - my $rc = 0; - if ($cmd =~ /[.](bat|cmd)$/) { - # we have to pass batch files directly to the NT command interpreter - $cmd = $com_spec; -# print "system $cmd /c \"@fixargs\"\n"; - $rc = 0xffff & system {$cmd} '/c', "\"@fixargs\""; - } else { -# print "system $cmd @fixargs\n"; - $rc = 0xffff & system {$cmd} @fixargs; - } - chdir(${curdir}) or die "Could not change directory to $curdir: $!"; - return $rc; -} - -############################################################################# -sub manyLdif2db { - my %rev_dbnames = reverse(%DBNAMES); - @backends = keys(%rev_dbnames); - $ENV{"$LIB_PATH"}=$new_libpath; - chdir($slapdExecDir) or die "Could not change directory to $slapdExecDir: $!"; - foreach $backend (@backends) { - my $ldif = "${ldif_rep}$backend.ldif" ; - if (! -f $ldif) { - $ldif = ${ldif_rep}."data.ldif"; - } - &Ldif2db($ldif, $backend); - } - # remove the empty ldif directory - # but not if using the data dir - if (!$olddatadir) { - rmdir($ldif_rep); - } - chdir($curdir) or die "Could not change directory to $curdir: $!"; -} - - -sub Ldif2db { - my $ldif = shift ; - my $backend = shift ; - my $ldif2db_param = "ldif2db -D $serverHome -n $backend -i $ldif"; - open(LDIF2DB, "${quote}${quote}$slapdExecName${quote} $ldif2db_param${quote} 2>&1 |") or die "Could not run ns-slapd program $ldif2db_exe\n"; - sleep(1); # allow some data to accumulate in the pipe - while (<LDIF2DB>) { - printMsg($_); - } - close(LDIF2DB); - # remove the ldif file after the import - # but not if using the data dir - if (!$olddatadir) { - unlink($ldif) ; - } -} - -############################################################################# - -#sub copyBak { -# opendir( OLDBAK, "$oldHome${PATHSEP}bak" ) || -# die "Can't open directory $oldHome${PATHSEP}bak: $!: "; -# local ( @dirs ) = readdir( OLDBAK ); -# closedir ( OLDBAK ); -# for ( @dirs ) { -# if ( $_ eq "." || $_ eq ".." ) { -# next; -# } elsif ( -d "$oldHome${PATHSEP}bak${PATHSEP}$_" ) { -# $srcDir = "$oldHome${PATHSEP}bak${PATHSEP}$_"; -# $destDir = "$serverHome${PATHSEP}bak${PATHSEP}$_"; -# $srcLDIF = "$oldHome${PATHSEP}ldif${PATHSEP}bak.ldif"; -# $destLDIF = "$serverHome${PATHSEP}ldif${PATHSEP}bak.ldif"; -# mkdir( $destDir , 0755 ) if !( -e $destDir); -# # Converting database -# if ( !$isNT && $newuser ) { -# chown($newuid, $newgid, -# "$serverHome${PATHSEP}bak", $destDir); -# } -# &other_db2ldif($srcDir, $srcLDIF); -# if ($needAclUpg) { -# &mySystem("$root${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server", -# "$root${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server" . -# "${PATHSEP}aclupg$exe_suffix", '-d', '-i', -# $srcLDIF, '-o', $destLDIF); -# } else { -# ©BinFile($srcLDIF, $destLDIF); -# } -# &other_ldif2db($destLDIF, $destDir); -# } -# } -#} -############################################################################# - -sub startServer { - my $instanceDir = ${serverHome} ; - my $errLog = $instanceDir . $PATHSEP . 'logs' . $PATHSEP . 'errors'; - # emulate tail -f - # if the last line we see does not contain "slapd started", try again - my $done = 0; - my $started = 0; - my $code = 0; - my $lastLine = ""; - my $timeout = time + 240; # 4 minutes - $ENV{"$LIB_PATH"}=$new_libpath; - - my $startCmd = $instanceDir . $PATHSEP . 'start' . $script_suffix; - if (! -f $startCmd) { - $startCmd = $instanceDir . $PATHSEP . 'start-slapd' . $script_suffix; - } - printTrace("\nInstanceDir: $instanceDir\n",4); - $code = &mySystem($instanceDir,$startCmd); - open(IN, $errLog) or die "Could not open error log $errLog: $!"; - my $pos = tell(IN); - while (($done == 0) && (time < $timeout)) { - for (; ($done == 0) && ($_ = <IN>); $pos = tell(IN)) { - $lastLine = $_; - # print; - # the server has already been started and shutdown once . . . - if (/slapd started\./) { - $started++; - if ($started == 2) { - $done = 1; - } - # sometimes the server will fail to come up; in that case, restart it - } elsif (/Initialization Failed/) { - # print "Server failed to start: $_"; - $code = &mySystem($instanceDir, $startCmd); - # sometimes the server will fail to come up; in that case, restart it - } elsif (/exiting\./) { - # print "Server failed to start: $_"; - #$code = &mySystem($startCmd); - - $code = &mySystem($instanceDir, $startCmd); - } - } - if ($lastLine =~ /PR_Bind/) { - # server port conflicts with another one, just report and punt - print $lastLine; - print "This server cannot be started until the other server on this\n"; - print "port is shutdown.\n"; - $done = 1; - } - if ($done == 0) { - # rest a bit, then . . . - sleep(2); - # . . . reset the EOF status of the file desc - seek(IN, $pos, 0); - } - } - close(IN); - - if ($started < 2) { - $! = $code; - # $now = time; - # if ($now > $timeout) { - # print "Possible timeout: timeout=$timeout now=$now\n"; - # } - die "Error: could not start server: $!"; - } - - return 0; -} - -sub stopServer { - my $root = shift; - my $name = shift; - $maxStopIterations = 5; - print "\nShutting down server $name . . .\n"; - - $ENV{"$LIB_PATH"}=$new_libpath; - $stopCmd = $quote . $root . $PATHSEP . $name . $PATHSEP . 'stop' . $script_suffix . $quote; - if (! -f $stopCmd) { - $stopCmd = $quote . $root . $PATHSEP . $name . $PATHSEP . 'stop-slapd' . $script_suffix . $quote; - } - - if (! -f $stopCmd) { - # no stop command, probably a 1.X system; for NT, we'll try net stop - # for unix, we'll get the pid and kill it - if ($isNT) { - $stopCmd = 'net stop ' . $name; - } else { - # see if there is a pid file - $pidfile = $root . $PATHSEP . $name . $PATHSEP . 'logs' . - $PATHSEP . 'pid'; - if (open(PIDFILE, $pidfile)) { - chomp($pid = <PIDFILE>); - close(PIDFILE); - while ($maxStopIterations-- && !$exitCode) { - $exitCode = kill(15, $pid); - } - $stopCmd = undef; - } - } - } - - # keep looping until the stop cmd returns an error code, which usually - # means that what ever we want to stop is stopped, or some other error - # occurred e.g. permission, or no such service - $exitCode = &runAndIgnoreOutput($stopCmd); -# print "stopServer: exitCode=$exitCode\n"; - while ($stopCmd && $maxStopIterations-- && $exitCode) { - $exitCode = &runAndIgnoreOutput($stopCmd); -# print "stopServer: exitCode=$exitCode\n"; - } - - if (!$maxStopIterations) { - print "Warning: could not shutdown the server: $!\n"; - } - - sleep(10) ; - - $exitCode = 0; - -} - - -sub runAndIgnoreOutput { - my $cmd = shift; - printMsg("."); - open(RUNCMD, "${quote}$cmd${quote} 2>&1 |") or die "Error: could not run $cmd: $!"; - printMsg("."); - sleep(1); # allow pipe to fill with data - printMsg("."); - while (<RUNCMD>) { -# print; - } - my $code = close(RUNCMD); -# print "runAndIgnore: code=$code status=$?\n"; - return $?; -} -############################################################################# -# migrate some of entries present in the old DSE.ldif like -# cn=snmp,cn=config -# cn=encryption,cn=config -# all the aci's - -sub MigrateDSE { - printTrace("\nMigrate DSE entries...",1); - open( DSELDIF, "< $oldDSEldif" ) || die "Can't open $oldDSEldif: $!: "; - my $in = new Mozilla::LDAP::LDIF(*DSELDIF) ; - while ($old_entry = readOneEntry $in) { - my $DN = $old_entry->getDN() ; - SWITCH: { - # migrate the entrie: cn=snmp,cn=config - if ($DN =~ /^cn=SNMP,cn=config$/i) { - my $entry = $conn->search("$DN","base","objectclass=nsSNMP"); - if ($entry) { - my $res = $conn->update($old_entry); - if ($res) { - printTrace("\n$DN updated !",2); - } - else { - printMsg("\nFailed to update $DN"); - } - } - else { - printMsg("\nUnable to get info under $DN"); - } - last SWITCH; - } - # migrate the entrie: cn=encryption,cn=config - if ($DN =~ /cn=encryption,cn=config$/i) { - if ($conn->search("$DN","base","objectclass=*")) { - if ($old_entry->hasValue("objectClass", "nsEncryptionConfig")) { - my $certfile = "alias/slapd-" . $newname . "-cert8.db"; - my $keyfile = "alias/slapd-" . $newname. "-key3.db"; - $old_entry->setValues("nsCertfile",$certfile) if ! $old_entry->hasValue("nsCertfile",$certfile); - $old_entry->setValues("nsKeyfile",$keyfile) if ! $old_entry->hasValue("nsKeyfile",$keyfile); - } - my $res = $conn->update($old_entry); - if ($res) { - printTrace("\n$DN updated !",2); - } - else { - printMsg("\nFailed to update $DN"); - } - } - else { - my $res = $conn->add($old_entry); - if ($res) { - printTrace("\n$DN added !",2); - } - else { - printMsg("\nFailed to add $DN"); - } - } - last SWITCH; - } - if (@{$old_entry->{aci}} && (! ($DN =~ /^cn=monitor$/i)) && (! ($DN =~ /^cn=schema$/i))) { - # migrate aci's - my $entry = $conn->search("$DN","base","objectclass=*"); - if ($entry) { - my $res = $conn->update($old_entry); - if ($res) { - printTrace("\n$DN updated !",2); - } - else { - printMsg("\nFailed to update $DN"); - } - } - else { - my $res = $conn->add($old_entry); - if ($res) { - printTrace("\n$DN added !",2); - } - else { - printMsg("\nFailed to add $DN"); - } - } - last SWITCH; - } - } - } - close(DSELDIF); -} -############################################################################# -# migrate SSL info - -sub MigrateSSL { - my $secPwd = 'bidon' ; - # copy the SSL directory - ©Dir("$oldHome${PATHSEP}ssl","$serverHome${PATHSEP}ssl"); - # copy the cert db and key files - if ( -d "$oldDir${PATHSEP}alias") { - $aliasDir = "$root${PATHSEP}alias"; - if (! -d $aliasDir) { - mkdir($aliasDir, 0750); - } - &stopServer($root,'slapd-'.$newname); - my $keydb = "$aliasDir${PATHSEP}slapd-$newname-key3.db" ; - my $certdb = "$aliasDir${PATHSEP}slapd-$newname-cert8.db" ; - my $certdb7 = "$aliasDir${PATHSEP}slapd-$newname-cert7.db" ; - my $old_keydb = "$oldDir${PATHSEP}alias${PATHSEP}slapd-$oldname-key3.db" ; - my $old_certdb = "$oldDir${PATHSEP}alias${PATHSEP}slapd-$oldname-cert7.db"; - my $keydb_backup = "$aliasDir${PATHSEP}slapd-$newname-key3.db_backup" ; - my $certdb_backup = "$aliasDir${PATHSEP}slapd-$newname-cert7.db_backup" ; - if (-f $old_keydb) { - if (-f $keydb) { - if ($NO_INPUT_USER) { - printMsg("\n$keydb already exists. backup in $keydb_backup ..."); - ©BinFile($keydb,$keydb_backup); - ©BinFile($old_keydb,$keydb); - } - else { - print("\n\n$keydb already exists. Do you want to overwrite it ? [no]: "); - my $answer = <STDIN> ; - if ($answer =~ /^y|yes$/i) { - ©BinFile($old_keydb,$keydb); - } - } - } - else { - ©BinFile($old_keydb,$keydb); - } - } - if (-f $old_certdb) { - $mode = (stat($old_certdb))[2] if $PRESERVE; - if (-f $certdb) { - if ($NO_INPUT_USER) { - printMsg("\n$certdb already exists. backup in $certdb_backup ..."); - ©BinFile($certdb,$certdb_backup); - unlink($certdb) || print "Couldn't delete $certdb : $!\n"; - ©BinFile($old_certdb,$certdb7); - } - else { - print("\n\n$certdb already exists. Do you want to overwrite it ? [no]: "); - my $answer = <STDIN> ; - if ($answer =~ /^y|yes$/i) { - unlink($certdb) || print "Couldn't delete $certdb : $!\n"; - ©BinFile($old_certdb,$certdb7); - } - } - } - else { - ©BinFile($old_certdb,$certdb7); - } - } - # copy the old password file - if (-f "$oldDir${PATHSEP}alias${PATHSEP}$type-$oldname-pin.txt") { - ©BinFile( - "$oldDir${PATHSEP}alias${PATHSEP}$type-$oldname-pin.txt", - "$aliasDir${PATHSEP}$type-$newname-pin.txt" - ); - } - &startServer(); - if ($PRESERVE) { - chown($newuid,$newgid,$certdb) || print "Failed to set uid $newuid gid $newgid on $certdb : $!\n"; - chmod($mode,$certdb) || print "Failed to set mode $mode on $certdb : $!\n"; - } - } - -} - -sub DisableSSL { - my $entry = $conn->search("cn=config","base","objectclass=*"); - my $LDAPparam = "nsslapd-security" ; - my $Value = "off" ; - if ($entry->{$LDAPparam}[0] ne $Value) { - printTrace("\nDisable SSL...",1); - $entry->setValues($LDAPparam, $Value); - } - my $res = $conn->update($entry); - if ($res) { - printTrace("\nSSL disabled",2); - } - else { - printMsg("\nCan't disable SSL, the server may have problems starting"); - } -} - -# enable the migration of client authentication informations -sub MigrateCertmap { - # backup the old new certmap.conf and replace it with the old certmap.conf file - my $oldCertmap = "$oldDir${PATHSEP}shared${PATHSEP}config${PATHSEP}certmap.conf"; - my $newCertmap = "$root${PATHSEP}shared${PATHSEP}config${PATHSEP}certmap.conf" ; - my $backupCertmap = "$root${PATHSEP}shared${PATHSEP}config${PATHSEP}certmap.conf_backup" ; - if (&hasChangedoldCertmap($oldCertmap)) { - if ($NO_INPUT_USER) { - printMsg("\n$newCertmap has been backup in $backupCertmap"); - ©BinFile($newCertmap,$backupCertmap); - ©BinFile($oldCertmap,$newCertmap); - } - else { - my $Ask = 1 ; - while ($Ask) { - printMsg("\n\nWhere do you want to back up the file $newCertmap [$backupCertmap] ?") ; - my $Answer = <STDIN> ; - $backupCertmap = $Answer if ($Answer ne "\n"); - chomp($backupCertmap); - printTrace("\nDest: .$backupCertmap.",4); - if (-e $backupCertmap) { - printMsg("\n\n$backupCertmap already exists. Do you want to overwrite it Yes/No [No] ?") ; - if (<STDIN> =~ /yes|y/i) { - $Ask = 0 ; - } - else { - $backupCertmap = "$root${PATHSEP}shared${PATHSEP}config${PATHSEP}certmap.conf_backup" ; - } - } - else { - $Ask = 0 ; - } - } - printTrace("\nBackup file: $newCertmap in $backupCertmap",4); - ©BinFile($newCertmap,$backupCertmap); - ©BinFile($oldCertmap,$newCertmap); - } - } - else { - } -} - -sub hasChangedoldCertmap { - my $certmapfile = shift ; - my @reference = ("certmap default default", - "default:DNComps", - "default:FilterComps e") ; - my $cpt = 0 ; - printTrace("\nhasChangedoldCertmap",3); - open(CERTMAP,"< $certmapfile"); - while (<CERTMAP>) { - if ((! /^\s*#/) && (! /^\s*$/)) { - my $ref = $reference[$cpt] ; - printTrace("\nValue: $_, ref: $ref",4); - if (! /^\s*$ref\s*$/) { - return 1 ; - } - else { - $cpt++ ; - } - } - } - close (CERTMAP); - printTrace("\ncpt: $cpt",4); - if ($cpt < $#reference) { - return 1 ; - } - else { - return 0 ; - } -} -############################################################################# -# copy a directory to another - -sub copyDir { - my $src = shift; - my $dest = shift; - my $exclude = shift; - - opendir( SRC, $src ) or die "Can't open directory $src: $!: "; - my $mode; - my $uid; - my $gid; - mkdir ( $dest , 0755 ) or die "\nCan't create directory $dest. \nPlease check you have enough rights to create it and/or check that your parent directory exists.\n" if !( -e $dest ); - if ($PRESERVE) { - $mode = (stat($src))[2]; - ($uid, $gid) = (stat(_))[4..5]; - # Make sure files owned by the old user are owned by the - # new user - if ($uid == $olduid) { - $uid = $newuid; - $gid = $newgid; - } - chown $uid, $gid, $dest; - chmod $mode, $dest; - } - local ( @files ) = readdir ( SRC ); - closedir( SRC ); - for ( @files ) { - if ( $_ eq "." || $_ eq ".." ) { - next; - } elsif ( $exclude && /$exclude/ ) { - next; - } elsif( -d "$src${PATHSEP}$_") { - ©Dir ( "$src${PATHSEP}$_", "$dest${PATHSEP}$_" ); - } else { - ©BinFile ( "$src${PATHSEP}$_", "$dest${PATHSEP}$_"); - } - } -} - -sub copyBinFile { - my $src = shift; - my $dest = shift; - my $buf = ""; - my $bufsize = 8192; - - open( SRC, $src ) || die "Can't open $src: $!\n"; - # if we are given a directory destination instead of a file, extract the - # filename portion of the source to use as the destination filename - if (-d $dest) { - $dest = $dest . $PATHSEP . &basename($src); - } - open( DEST, ">$dest" ) || die "Can't create $dest: $!\n"; - binmode SRC; - binmode DEST; - if ($PRESERVE) { - $mode = (stat($src))[2]; - ($uid, $gid) = (stat(_))[4..5]; - # Make sure files owned by the old user are owned by the - # new user - if ($uid == $olduid) { - $uid = $newuid; - $gid = $newgid; - } - chown $uid, $gid, $dest; - chmod $mode, $dest; - } - while (read(SRC, $buf, $bufsize)) { - print DEST $buf; - } - close( SRC ); - close( DEST ); -} -############################################################################# -# backup new configuration files -# backup the directory <new_root_server>/slapd-instance/config in <new_root_server>/slapd-instance/BackupConfig - -sub backupConfigFiles { - # backup the new config files - my $src = "$serverHome${PATHSEP}config" ; - my $dest = "$serverHome${PATHSEP}config_backup" ; - if ($NO_INPUT_USER) { - printMsg("\n$src has been backup in $dest"); - ©Dir($src,$dest); - } - else { - my $Ask = 1 ; - while ($Ask) { - printMsg("\n\nWhere do you want to back up your configuration directory [$dest] ?") ; - my $Answer = <STDIN> ; - $dest = $Answer if ($Answer ne "\n"); - chomp($dest); - printTrace("\nDest: .$dest.",4); - if (-e $dest) { - printMsg("\n\n$dest already exists. Do you want to overwrite it Yes/No [No] ?") ; - if (<STDIN> =~ /yes|y/i) { - $Ask = 0 ; - } - else { - $dest = "$serverHome${PATHSEP}config_backup" ; - } - } - else { - $Ask = 0 ; - } - } - printTrace("\nBackup Directory: $src in $dest",4); - ©Dir($src,$dest); - } -} -############################################################################# - -sub getLDAPservername { - my $oldLDAPservername; - my $LDAPservername; - open(OLDSLAPDCONF, $oldSlapdConf) or - die "\nError: could not open old config file $oldSlapdConf \n"; - while(<OLDSLAPDCONF>) { - chop; - if (/^localhost\s+/i) { - ($oldLDAPservername = $') =~ s/^[\"]//;; - $oldLDAPservername =~ s/[\"]$//; - printTrace("\nName of the old LDAP server: $oldLDAPservername",3); - } - } - close(OLDSLAPDCONF); - - open( DSELDIF, "< $DSEldif" ) || die "\nCan't open $DSEldif \n"; - my $in = new Mozilla::LDAP::LDIF(*DSELDIF) ; - while ($entry = readOneEntry $in) { - my $DN = $entry->getDN() ; - if ($DN =~ /^cn=config$/i) { - my $localhost = "nsslapd-localhost"; - my @values = $entry->getValues($localhost); - if ($#values != -1) { - $LDAPservername = $values[0]; - } - break; - } - } - close(DSELDIF); - # check old and new are installed on the same physical machine. - if (lc($oldLDAPservername) ne lc($LDAPservername)) { - # warn the user he tries to migrate a old server installed on a different machine from the new one - printMsg("\n\nYour old server is on $oldLDAPservername, and your new server is on $LDAPservername. We don't support migration on different machines. Do you want to continue ? Yes/No [No]:") ; - if (! (<STDIN> =~ /yes|y/i)) { - return -1; - } - } - return $LDAPservername ; -} - -############################################################################# - -sub getLibPath { - my $myDir = shift; - my $myVersion = shift; - my $myMinor = shift; - - if ($isNT) { - return $ENV{"$LIB_PATH"}; - } - if (($myVersion >= 6) && ($myMinor >= 2)) { - return - "$myDir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}lib${SEP}". - "$myDir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server${SEP}". - $ENV{"$LIB_PATH"}; - } else { - return "$myDir${PATHSEP}lib${SEP}".$ENV{"$LIB_PATH"}; - } -} - -############################################################################# - -sub getVersion { - my $dir = shift; - my $versionstr = shift; - my $version = 0; - my $minor = 0; - my $buildNumber = 0; - my $progDir = "${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server${PATHSEP}"; - my $progDir2 = "${PATHSEP}bin${PATHSEP}slapd${PATHSEP}"; - - # find the slapd executable - if (!$versionstr) { # version not specified on cmd line - find it - $prog = $dir . $progDir . $slapdExecName; - if (! -f $prog) { - $prog = $dir . $progDir2 . $slapdExecName; - if (-f $prog && $isNT) { - # if slapd is in bin/slapd and we're on NT, just assume version 1; - # apparently, slapd.exe doesn't like the -v argument . . . - return ( '1', $minor ); - } - else{ - die "Could not run slapd program $prog: $!"; - } - } - else { - chdir($dir . $progDir); - } - $cur_libpath=$ENV{"$LIB_PATH"}; - $ENV{"$LIB_PATH"}= - "$dir${PATHSEP}lib${SEP}". - "$dir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}lib${SEP}". - "$dir${PATHSEP}bin${PATHSEP}slapd${PATHSEP}server${SEP}". - $ENV{"$LIB_PATH"}; - # read the old version from the old slapd program - - open(F, "${quote}${quote}$prog${quote} -v${quote} 2>&1 |") or - die "Could not run slapd program $prog: $!"; - sleep(1); # allow some data to accumulate in the pipe -# print "Output from $prog -v:\n"; - while (<F>) { - if (/^Red Hat-Directory/ || /^Netscape-Directory/ || /^iPlanet-Directory/i) { - $versionstr = $_; - last; - } - } - $code = close(F); - # print "$prog returned code=$code status=$?\n"; - $ENV{"$LIB_PATH"}=$cur_libpath; - } - - if ($versionstr =~ /^Red Hat-Directory\/(\d+)\.(\d+)(?:b\d)*\s+(\S+)/) { - $version = $1; - $minor = $2; - $buildNumber = $3; - } - elsif ($versionstr =~ /^Netscape-Directory\/(\d+)\.(\d+)(?:b\d)*\s+(\S+)/) { - $version = $1; - $minor = $2; - $buildNumber = $3; - } - elsif ($versionstr =~ /^Netscape-Directory\(restrict?ed-mode\)\/(\d+)\.(\d+)\s+(\S+)/) { # we can have restricted-mode or restriced-mode ... - $version = $1; - $minor = $2; - $buildNumber = $3; - } - elsif ($versionstr =~ /^iPlanet-Directory\/(\d+)\.(\d+)\s+(\S+)/i) { - $version = $1; - $minor = $2; - $buildNumber = $3; - } elsif ($versionstr =~ /(\d+)\.(\d+)/) { - $version = $1; - $minor = $2; - } - - if ($version == 0) { - die "\nCould not determine version of the directory server in $dir: \n"; - } - - # distinguish the 4.1 and the 4.11 thanks to the buildNumber - if (($version == 4) && ($minor == 1)){ - if (! ($buildNumber =~ /^B99\.16/)) { - # it's not a 4.1 Netscape Directory Server => it's a 4.11 - $minor = 11 ; - } - } - chdir($curdir) or die "Could not change directory to $curdir: $!" ; - return ( $version, $minor ); -} - -############################################################################# - -sub getDiff { - # we get references to arrays - my $elements = shift ; - my $existing_elements = shift ; - my %count = () ; - my %countEE = () ; - @diff = () ; - foreach $e (@{$elements}, @{$existing_elements}) { $count{$e}++ ;} - foreach $e (@{existing_elements}) { $countEE{$e}++ ;} - foreach $e (@{$elements}) { - # if $e is only present in @$elements, we push it to the diff array - if (($count{$e} == 1) && ($countEE{$e} == 0)) { - push @diff, $e ; - } - } - return @diff ; -} - -############################################################################################### -sub testIndexUpdating { - #my $entry = $conn->newEntry(); - #$entry->setDN("cn=djeattribute,cn=index,cn=MigratedDB_5,cn=ldbm database,cn=plugins,cn=config"); - my $entry = $conn->search("cn=mail,cn=index,cn=MigratedDB_2,cn=ldbm database,cn=plugins,cn=config","base","objectclass=nsIndex"); - my @types = ("pres", "sub", "eq") ; - my @existing_types = $entry->getValues("nsindextype"); - my @typesToAdd = &getDiff(\@types, \@existing_types); - foreach $newtype (@typesToAdd) { - $entry->addValue("nsindextype", $newtype); printTrace("\nnewtype: $newtype",2); - } - my $res = $conn->update($entry) ; - if ($res) {print("\nUpdate index mail\n");} - else { print("\ncan't update index mail");} - - $entry = $conn->search("cn=givenName,cn=index,cn=MigratedDB_2,cn=ldbm database,cn=plugins,cn=config","base","objectclass=nsIndex"); - @types = ("pres", "sub", "eq") ; - @existing_types = $entry->getValues("nsindextype"); print("\ngivenName, existing_types: @existing_types"); - @typesToAdd = &getDiff(\@types, \@existing_types); print("\nTypesToAdd: @typesToAdd"); - foreach $newtype (@typesToAdd) { - $entry->addValue("nsindextype", $newtype); printTrace("\nnewtype: $newtype",2); - } - my $res = $conn->update($entry) ; - if ($res) {print("\nUpdate index givenName\n");} - else { print("\ncan't update index givenName");} - } - - -############################################################################################### -sub normalizeDir { - my $dir = shift ; - my $dir_prec = "" ; - while ($dir_prec ne $dir) { - $dir_prec = $dir ; - if ($isNT) { - grep { s@\\\\@\\@g } $dir ; - } - else { - grep { s@//@/@g } $dir ; - } - } - return $dir ; -} - - -############################################################################################### -# return 1 if the value parameters is -sub isAllowedPlugin { - my $Value = lc(shift) ; - if ($allowedPlugins{$Value}) { - return 1 ; - } - else { - return 0 ; - } - -} - - -sub getSyntaxOid { - my $Value = lc(shift) ; - return $allowedPlugins{$Value} ; -} - -############################################################################################### -# return 1 if the value given in parameters is an allowed modifier -sub isAllowedModifier { - my $Value = lc(shift) ; - if ($allowedModifiers{$Value}) { - return 1 ; - } - else { - return 0 ; - } -} - -sub getModifierValue { - my $Value = lc(shift) ; - return $allowedModifiers{$Value} ; -} - -############################################################################################### - -sub GetTime { - my $tm = localtime; - (my $sec, my $min, my $hour, my $dd, my $mm, my $yy) = ($tm->sec, $tm->min, $tm->hour, $tm->mday, ($tm->mon)+1, ($tm->year)+1900); - $sec = "0$sec" unless $sec > 9 ; - $min = "0$min" unless $min > 9 ; - $hour = "0$hour" unless $hour > 9 ; - $dd = "0$dd" unless $dd > 9 ; - $mm = "0$mm" unless $mm > 9 ; - return ($sec, $min, $hour, $dd, $mm, $yy); -} - -############################################################################################### -# get uid and group id of the new slapd server. -# The uid is done through the nsslapd-localuser attribute - -sub getuid_gid { - my $newuid ; - my $newgid ; - my $localuser ; - my $localuser_attr = "nsslapd-localuser" ; - if (! $isNT) { - my $entry = $conn->search("cn=config ", "base","objectclass=*", 0, ($localuser_attr)) ; - # Tests wether we succeed to get the entry cn=config - die "\nCan't get the entry cn=config \n" unless ($entry); - my @values = $entry->getValues($localuser_attr); - if ($#values == -1 || ($values[0] eq "") ) { # tests wether the nsslapd-localuser attribute has a value - printMsg("\nNo localuser has been found in the configuration of the directory. "); - if ($NO_INPUT_USER) { - printMsg("\nWe considered nobody as the localuser"); - $localuser = "nobody" ; - } - else { - my $Ask = 1 ; - while ($Ask) { - printMsg("\nUnder what user does your $Version.$Minor directory server run [nobody] ? ") ; - $localuser = <STDIN> ; - chomp($localuser); - $localuser = "nobody" if ($localuser eq ""); - ($newuid, $newgid) = (getpwnam("$localuser"))[2..3] ; - if ($newuid) { - $Ask = 0 ; - } - else { - printMsg("\nError: $localuser is unknown from the system "); - } - } - } - } - else { - $localuser = $values[0]; # returns the first value (we should only have one localuser) - my $size = $#values ; - } - ($newuid, $newgid) = (getpwnam("$localuser"))[2..3] ; - return ($localuser, $newuid, $newgid) ; - } - else { - return () ; - } -} - - -############################################################################################### -# get uid and group id of the old slapd server. - -sub getolduid_gid { - my $oldlocaluser ; - if (! $isNT) { - open(CONF, $oldSlapdConf) or die "\nError: cannot open $oldSlapdConf: $!\n"; - while (<CONF>) { - if (/^localuser\s+/i) { - chomp($oldlocaluser = $'); - last; - } - } - close(CONF); - ($olduid, $oldgid) = (getpwnam("$oldlocaluser"))[2..3] ; - return ($oldlocaluser, $olduid, $oldgid) ; - } - else { - return (); - } -} - -############################################################################################### -# get current directory - -sub getCwd { - my $command = $isNT ? "cd" : "/bin/pwd"; - open(PWDCMD, "$command 2>&1 |") or - die "Error: could not execute $command: $!"; - # without the following sleep, reading from the pipe will - # return nothing; I guess it gives the pwd command time - # to get some data to read . . . - sleep(1); - my $currentdir; - while (<PWDCMD>) { - if (!$currentdir) { - chomp($currentdir = $_); - } - } - my $code = close(PWDCMD); -# if ($code || $?) { -# print "$command returned code=$code status=$? dir=$curdir\n"; -# } -# print "getCwd curdir=\[$curdir\]\n"; - return $currentdir; -} |