2004-11-8 Brian Masney <masneyb@ntelos.net>

	* debian/control - updated the depends and build-depends line

	(from Andrew Pollock <me@andrew.net.au>)

2004-10-13 Brian Masney <masneyb@ntelos.net>

	* server/ldap.c (ldap_start) - allow doing an anonymous bind to the

	LDAP server

2004-9-27 Brian Masney <masneyb@ntelos.net>

	* contrib/dhcpd-conf-to-ldap.pl - make sure the DHCP hardware address

	is always lowercased

2004-7-30 Brian Masney <masneyb@ntelos.net>

	* server/ldap.c - added more debbuging statements. Fixed possible crash

	that could occur whenever more than 1 external DN is added to an LDAP

	entry. Fixed possible infinite loop when reading the external DNs.

	(from Sebastian Hetze <s.hetze@linux-ag.de>)

2004-7-1 Brian Masney <masneyb@ntelos.net>

	* README.ldap - updated build instructions paragraph

	(from Mason Schmitt <sysadmin@sunwave.net>)

2004-6-29 Brian Masney <masneyb@ntelos.net>

	* debian/control - set the minimum required version of the DHCP server

	to be 3.0.1rc9

	* configure - fix for sed when configure was run from an older shell

2004-6-22 Brian Masney <masneyb@ntelos.net>

	* Updated patch to use ISC DHCP 3.0.1rc14

2004-5-24 Brian Masney <masneyb@ntelos.net>

	* server/ldap.c - don't append a ; to the end of a dhcpStatement if it

	ends in }

	* server/ldap.c contrib/dhcpd-conf-to-ldap.pl - support having multiple

	dhcpRange statements (from Marco D'Ettorre <marco.dettorre@sys-net.it>)

2004-5-5 Brian Masney <masneyb@ntelos.net>

	* server/ldap.c - added more debugging statements when

	it is compiled in to help troubleshoot parsing errors. Don't free

	a LDAP connection prematurely when there is a reference to another

	LDAP tree. If the config entry ends in }, make sure a ; gets tacked

	on

	* debian/* - Updated version number. Renamed package from

	dhcp3-ldap-ntelos to dhcp3-server-ldap.

	* server/ldap.c - enclose the shared-network name in quotes so

	that there can be shared network statements in LDAP that have spaces

	in them

	* configure - after the work directory is setup, add -lldap -llber

	to the server Makefile

Wed Apr 21 15:09:08 CEST 2004 - mt@suse.de

	* contrib/dhcpd-conf-to-ldap.pl:

	  - added "--conf=file" option usable instead of stdin

	  - added "--ldif=file" option usable instead of stdout

	  - added "--second=host|dn" option usefull for failover

	  - added "--use=feature" option to enable extended features;

	    currently used to enable failover (default is disabled).

	  - extended remaining_line() to support block statements

	  - fixed / improved failover support, added notes about

	* server/ldap.c:

	  - moved code checking statement ends to check_statement_end()

	  - moved parsing of entry options/statements to

	    ldap_parse_entry_options()

	  - moved code closing debug fd into ldap_close_debug_fd()

	  - moved code writing to debug fd into ldap_write_debug()

	  - added support for full hostname in dhcpServer search filter

	  - added support for multiple dhcpService entries in dhcpServer object

	  - added parsing of options and statements for dhcpServer object

	  - added verify if dhcpService contains server dn as primary or

	    secondary

	  - changed to search for dhcpHost,dhcpSubClass bellow of all

	    dhcpService trees instead of base-dn (avoids finding of hosts in

	    foreign configs)

	  - fixes to free all dn's fetched by ldap_get_dn (e.g. debug output)

	  - fixes to free ldap results, mainly in cases where no LDAP_SUCCESS

	    returned or other error conditions happened

	  - fixed/improved some log messages

2004-3-30 Brian Masney <masneyb@ntelos.net>

	* contrib/dhcpd-conf-to-ldap.pl - added option to control the

	DHCP Config DN. Wrap the DHCP Statements in { }

	This patch was contributed by Marius Tomaschewski <mt@suse.de>

	* server/ldap.c - changed ldap_username and ldap_password to

	be optional (anonymous bind is used then). Added {} block support

	to dhcpStatements. (no ";" at end if statement ends with a "}").

	Fixed writing to ldap-debug-file. Changed find_haddr_in_ldap() to

	use dhcpHost objectClass in its filter

	This patch was contributed by Marius Tomaschewski <mt@suse.de>

2004-3-23 Brian Masney <masneyb@ntelos.net>

	* contrib/dhcpd-conf-to-ldap.pl - added options for server, basedn

	options and usage message (Net::Domain instead of SYS::Hostname).

	Added handling of zone, authoritative and failover (config and

	pool-refs) statements. Added numbering of groups and pools per

	subnet. This patch was contributed by Marius Tomaschewski <mt@suse.de>

2004-2-26 Brian Masney <masneyb@ntelos.net>

	* fixed an instance where the LDAP server would restart, but the DHCP

	server would not reconnect

2004-2-18 Brian Masney <masneyb@ntelos.net>

	* allow multiple dhcp*DN entries in the LDAP entry.

2003-9-11 Brian Masney <masneyb@ntelos.net>

	* updated patch to work with 3.0.1rc12

static char read_function PROTO ((struct parse *));

	if (file != -1) {

		tmp -> read_function = read_function;;

	}

		}

static char

read_function (struct parse * cfile)

{

  char c;

	cfile -> buflen = read (cfile -> file, cfile -> inbuf, cfile -> bufsiz);

	if (cfile -> buflen == 0) {

		c = EOF;

		cfile -> bufix = 0;

	} else if (cfile -> buflen < 0) {

		c = EOF;

		cfile -> bufix = cfile -> buflen = 0;

	} else {

		c = cfile -> inbuf [0];

		cfile -> bufix = 1;

	}

	return c;

}

mv $workname/server/Makefile $workname/server/Makefile.noldap

cat $workname/server/Makefile.noldap | sed 's/^LIBS =/LIBS=-lldap -llber/' > $workname/server/Makefile.ldap

ln $workname/server/Makefile.ldap $workname/server/Makefile

#!/usr/bin/perl -w

# Brian Masney <masneyb@ntelos.net>

# To use this script, set your base DN below. Then run 

# ./dhcpd-conf-to-ldap.pl < /path-to-dhcpd-conf/dhcpd.conf > output-file

# The output of this script will generate entries in LDIF format. You can use

# the slapadd command to add these entries into your LDAP server. You will

# definately want to double check that your LDAP entries are correct before

# you load them into LDAP.

# This script does not do much error checking. Make sure before you run this

# that the DHCP server doesn't give any errors about your config file

# FailOver notes:

#   Failover is disabled by default, since it may need manually intervention.

#   You can try the '--use=failover' option to see what happens :-)

#

#   If enabled, the failover pool references will be written to LDIF output.

#   The failover configs itself will be added to the dhcpServer statements

#   and not to the dhcpService object (since this script uses only one and

#   it may be usefull to have multiple service containers in failover mode).

#   Further, this script does not check if primary or secondary makes sense,

#   it simply converts what it gets...

use Net::Domain qw(hostname hostfqdn hostdomain);

use Getopt::Long;

my $domain = hostdomain();           # your.domain

my $basedn = "dc=".$domain;

   $basedn =~ s/\./,dc=/g;           # dc=your,dc=domain

my $server = hostname();             # hostname (nodename)

my $dhcpcn = 'DHCP Config';          # CN of DHCP config tree

my $dhcpdn = "cn=$dhcpcn, $basedn";  # DHCP config tree DN

my $second = '';                     # secondary server DN / hostname

my $i_conf = '';                     # dhcp.conf file to read or stdin

my $o_ldif = '';                     # output ldif file name or stdout

my @use    = ();                     # extended flags (failover)

sub usage($;$)

{

  my $rc = shift;

  my $err= shift;

  print STDERR "Error: $err\n\n" if(defined $err);

  print STDERR <<__EOF_USAGE__;

usage: 

  $0 [options] < dhcpd.conf > dhcpd.ldif

options:

  --basedn  "dc=your,dc=domain"        ("$basedn")

  --dhcpdn  "dhcp config DN"           ("$dhcpdn")

  --server  "dhcp server name"         ("$server")

  --second  "secondary server or DN"   ("$second")

  --conf    "/path/to/dhcpd.conf"      (default is stdin)

  --ldif    "/path/to/output.ldif"     (default is stdout)

  --use     "extended features"        (see source comments)

__EOF_USAGE__

  exit($rc);

}

sub next_token

{

  local ($lowercase) = @_;

  local ($token, $newline);

  do 

    {

      if (!defined ($line) || length ($line) == 0)

        {

          $line = <>;

          return undef if !defined ($line);

          chop $line;

          $line_number++;

          $token_number = 0;

        }

      $line =~ s/#.*//;

      $line =~ s/^\s+//;

      $line =~ s/\s+$//;

    }

  while (length ($line) == 0);

  if (($token, $newline) = $line =~ /^(.*?)\s+(.*)/)

    {

      $line = $newline;

    }

  else

    {

      $token = $line;

      $line = '';

    }

  $token_number++;

  $token =~ y/[A-Z]/[a-z]/ if $lowercase;

  return ($token);

}

sub remaining_line

{

  local ($block) = shift || 0;

  local ($tmp, $str);

  $str = "";

  while (defined($tmp = next_token (0)))

    {

      $str .= ' ' if !($str eq "");

      $str .= $tmp;

      last if $tmp =~ /;\s*$/;

      last if($block and $tmp =~ /\s*[}{]\s*$/);

    }

  $str =~ s/;$//;

  return ($str);

}

sub

add_dn_to_stack

{

  local ($dn) = @_;

  $current_dn = "$dn, $current_dn";

}

sub

remove_dn_from_stack

{

  $current_dn =~ s/^.*?,\s*//;

}

sub

parse_error

{

  print "Parse error on line number $line_number at token number $token_number\n";

  exit (1);

}

sub

print_entry

{

  return if (scalar keys %curentry == 0);

  if (!defined ($curentry{'type'}))

    {

      $hostdn = "cn=$server, $basedn";

      print "dn: $hostdn\n";

      print "cn: $server\n";

      print "objectClass: top\n";

      print "objectClass: dhcpServer\n";

      print "dhcpServiceDN: $current_dn\n";

      if(grep(/FaIlOvEr/i, @use))

        {

          foreach my $fo_peer (keys %failover)

            {

              next if(scalar(@{$failover{$fo_peer}}) <= 1);

              print "dhcpStatements: failover peer $fo_peer { ",

                    join('; ', @{$failover{$fo_peer}}), "; }\n";

            }

        }

      print "\n";

      print "dn: $current_dn\n";

      print "cn: $dhcpcn\n";

      print "objectClass: top\n";

      print "objectClass: dhcpService\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

      print "dhcpPrimaryDN: $hostdn\n";

      if(grep(/FaIlOvEr/i, @use) and ($second ne ''))

        {

          print "dhcpSecondaryDN: $second\n";

        }

    }

  elsif ($curentry{'type'} eq 'subnet')

    {

      print "dn: $current_dn\n";

      print "cn: " . $curentry{'ip'} . "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpSubnet\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

      print "dhcpNetMask: " . $curentry{'netmask'} . "\n";

      if (defined ($curentry{'ranges'}))

        {

          foreach $statement (@{$curentry{'ranges'}})

            {

              print "dhcpRange: $statement\n";

            }

        }

    }

  elsif ($curentry{'type'} eq 'shared-network')

    {

      print "dn: $current_dn\n";

      print "cn: " . $curentry{'descr'} . "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpSharedNetwork\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

    }

  elsif ($curentry{'type'} eq 'group')

    {

      print "dn: $current_dn\n";

      print "cn: group", $curentry{'idx'}, "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpGroup\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

    }

  elsif ($curentry{'type'} eq 'host')

    {

      print "dn: $current_dn\n";

      print "cn: " . $curentry{'host'} . "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpHost\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

      if (defined ($curentry{'hwaddress'}))

        {

          $curentry{'hwaddress'} =~ y/[A-Z]/[a-z]/;

          print "dhcpHWAddress: " . $curentry{'hwaddress'} . "\n";

        }

    }

  elsif ($curentry{'type'} eq 'pool')

    {

      print "dn: $current_dn\n";

      print "cn: pool", $curentry{'idx'}, "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpPool\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

      if (defined ($curentry{'ranges'}))

        {

          foreach $statement (@{$curentry{'ranges'}})

            {

              print "dhcpRange: $statement\n";

            }

        }

    }

  elsif ($curentry{'type'} eq 'class')

    {

      print "dn: $current_dn\n";

      print "cn: " . $curentry{'class'} . "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpClass\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

    }

  elsif ($curentry{'type'} eq 'subclass')

    {

      print "dn: $current_dn\n";

      print "cn: " . $curentry{'subclass'} . "\n";

      print "objectClass: top\n";

      print "objectClass: dhcpSubClass\n";

      if (defined ($curentry{'options'}))

        {

          print "objectClass: dhcpOptions\n";

        }

      print "dhcpClassData: " . $curentry{'class'} . "\n";

    }

  if (defined ($curentry{'statements'}))

    {

      foreach $statement (@{$curentry{'statements'}})

        {

          print "dhcpStatements: $statement\n";

        }

    }

  if (defined ($curentry{'options'}))

    {

      foreach $statement (@{$curentry{'options'}})

        {

          print "dhcpOption: $statement\n";

        }

    }

  print "\n";

  undef (%curentry);

}

sub parse_netmask

{

  local ($netmask) = @_;

  local ($i);

  if ((($a, $b, $c, $d) = $netmask =~ /^(\d+)\.(\d+)\.(\d+)\.(\d+)$/) != 4)

    {

      parse_error ();

    }

  $num = (($a & 0xff) << 24) |

         (($b & 0xff) << 16) |

         (($c & 0xff) << 8) |

          ($d & 0xff);

  for ($i=1; $i<=32 && $num & (1 << (32 - $i)); $i++)

    {

    }

  $i--;

  return ($i);

}

sub parse_subnet

{

  local ($ip, $tmp, $netmask);

  print_entry () if %curentry;

  $ip = next_token (0);

  parse_error () if !defined ($ip);

  $tmp = next_token (1);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq 'netmask');

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  $netmask = parse_netmask ($tmp);

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  add_dn_to_stack ("cn=$ip");

  $curentry{'type'} = 'subnet';

  $curentry{'ip'} = $ip;

  $curentry{'netmask'} = $netmask;

  $cursubnet = $ip;

  $curcounter{$ip} = { pool  => 0, group => 0 };

}

sub parse_shared_network

{

  local ($descr, $tmp);

  print_entry () if %curentry;

  $descr = next_token (0);

  parse_error () if !defined ($descr);

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  add_dn_to_stack ("cn=$descr");

  $curentry{'type'} = 'shared-network';

  $curentry{'descr'} = $descr;

}

sub parse_host

{

  local ($descr, $tmp);

  print_entry () if %curentry;

  $host = next_token (0);

  parse_error () if !defined ($host);

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  add_dn_to_stack ("cn=$host");

  $curentry{'type'} = 'host';

  $curentry{'host'} = $host;

}

sub parse_group

{

  local ($descr, $tmp);

  print_entry () if %curentry;

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  my $idx;

  if(exists($curcounter{$cursubnet})) {

    $idx = ++$curcounter{$cursubnet}->{'group'};

  } else {

    $idx = ++$curcounter{''}->{'group'};

  }

  add_dn_to_stack ("cn=group".$idx);

  $curentry{'type'} = 'group';

  $curentry{'idx'} = $idx;

}

sub parse_pool

{

  local ($descr, $tmp);

  print_entry () if %curentry;

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  my $idx;

  if(exists($curcounter{$cursubnet})) {

    $idx = ++$curcounter{$cursubnet}->{'pool'};

  } else {

    $idx = ++$curcounter{''}->{'pool'};

  }

  add_dn_to_stack ("cn=pool".$idx);

  $curentry{'type'} = 'pool';

  $curentry{'idx'} = $idx;

}

sub parse_class

{

  local ($descr, $tmp);

  print_entry () if %curentry;

  $class = next_token (0);

  parse_error () if !defined ($class);

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  $class =~ s/\"//g;

  add_dn_to_stack ("cn=$class");

  $curentry{'type'} = 'class';

  $curentry{'class'} = $class;

}

sub parse_subclass

{

  local ($descr, $tmp);

  print_entry () if %curentry;

  $class = next_token (0);

  parse_error () if !defined ($class);

  $subclass = next_token (0);

  parse_error () if !defined ($subclass);

  $tmp = next_token (0);

  parse_error () if !defined ($tmp);

  parse_error () if !($tmp eq '{');

  add_dn_to_stack ("cn=$subclass");

  $curentry{'type'} = 'subclass';

  $curentry{'class'} = $class;

  $curentry{'subclass'} = $subclass;

}

sub parse_hwaddress

{

  local ($type, $hw, $tmp);

  $type = next_token (1);

  parse_error () if !defined ($type);

  $hw = next_token (1);

  parse_error () if !defined ($hw);

  $hw =~ s/;$//;

  $curentry{'hwaddress'} = "$type $hw";

}

sub parse_range

{

  local ($tmp, $str);

  $str = remaining_line ();

  if (!($str eq ''))

    {

      $str =~ s/;$//;

      push (@{$curentry{'ranges'}}, $str);

    }

}

sub parse_statement

{

  local ($token) = shift;

  local ($str);

  if ($token eq 'option')

    {

      $str = remaining_line ();

      push (@{$curentry{'options'}}, $str);

    }

  elsif($token eq 'failover')

    {

      $str = remaining_line (1); # take care on block

      if($str =~ /[{]/)

        {

          my ($peername, @statements);

          parse_error() if($str !~ /^\s*peer\s+(.+?)\s+[{]\s*$/);

          parse_error() if(($peername = $1) !~ /^\"?[^\"]+\"?$/);

          #

          # failover config block found:

          # e.g. 'failover peer "some-name" {'

          #

          if(not grep(/FaIlOvEr/i, @use))

            {

              print STDERR "Warning: Failover config 'peer $peername' found!\n";

              print STDERR "         Skipping it, since failover disabled!\n";

              print STDERR "         You may try out --use=failover option.\n";

            }

          until($str =~ /[}]/ or $str eq "")

            {

                $str = remaining_line (1);

                # collect all statements, except ending '}'

                push(@statements, $str) if($str !~ /[}]/);

            }

          $failover{$peername} = [@statements];

        }

      else

        {

          #

          # pool reference to failover config is fine

          # e.g. 'failover peer "some-name";'

          #

          if(not grep(/FaIlOvEr/i, @use))

            {

              print STDERR "Warning: Failover reference '$str' found!\n";

              print STDERR "         Skipping it, since failover disabled!\n";

              print STDERR "         You may try out --use=failover option.\n";

            }

          else

            {

              push (@{$curentry{'statements'}}, $token. " " . $str);

            }

        }

    }

  elsif($token eq 'zone')

    {

      $str = $token;

      while($str !~ /}$/) {

        $str .= ' ' . next_token (0);

      }

      push (@{$curentry{'statements'}}, $str);

    }

  elsif($token =~ /^(authoritative)[;]*$/)

    {

      push (@{$curentry{'statements'}}, $1);

    }

  else

    {

      $str = $token . " " . remaining_line ();

      push (@{$curentry{'statements'}}, $str);

    }

}

my $ok = GetOptions(

    'basedn=s'      => \$basedn,

    'dhcpdn=s'      => \$dhcpdn,

    'server=s'      => \$server,

    'second=s'      => \$second,

    'conf=s'        => \$i_conf,

    'ldif=s'        => \$o_ldif,

    'use=s'         => \@use,

    'h|help|usage'  => sub { usage(0); },

);

unless($server =~ /^\w+/)

  {

    usage(1, "invalid server name '$server'");

  }

unless($basedn =~ /^\w+=[^,]+/)

  {

    usage(1, "invalid base dn '$basedn'");

  }

if($dhcpdn =~ /^cn=([^,]+)/i)

  {

    $dhcpcn = "$1";

  }

$second = '' if not defined $second;

unless($second eq '' or $second =~ /^cn=[^,]+\s*,\s*\w+=[^,]+/i)

  {

    if($second =~ /^cn=[^,]+$/i)

      {

        # relative DN 'cn=name'

        $second = "$second, $basedn";

      }

    elsif($second =~ /^\w+/)

      {

        # assume hostname only

        $second = "cn=$second, $basedn";

      }

    else

      {

        usage(1, "invalid secondary '$second'")

      }

  }

usage(1) unless($ok);

if($i_conf ne "" and -f $i_conf)

  {

    if(not open(STDIN, '<', $i_conf))

      {

        print STDERR "Error: can't open conf file '$i_conf': $!\n";

        exit(1);

      }

  }

if($o_ldif ne "")

  {

    if(-e $o_ldif)

      {

        print STDERR "Error: output ldif name '$o_ldif' already exists!\n";

        exit(1);

      }

    if(not open(STDOUT, '>', $o_ldif))

      {

        print STDERR "Error: can't open ldif file '$o_ldif': $!\n";

        exit(1);

      }

  }

print STDERR "Creating LDAP Configuration with the following options:\n";

print STDERR "\tBase DN: $basedn\n";

print STDERR "\tDHCP DN: $dhcpdn\n";

print STDERR "\tServer DN: cn=$server, $basedn\n";

print STDERR "\tSecondary DN: $second\n"

             if(grep(/FaIlOvEr/i, @use) and $second ne '');

print STDERR "\n";

my $token;

my $token_number = 0;

my $line_number = 0;

my %curentry;

my $cursubnet = '';

my %curcounter = ( '' => { pool => 0, group => 0 } );

$current_dn = "$dhcpdn";

$curentry{'descr'} = $dhcpcn;

$line = '';

%failover = ();

while (($token = next_token (1)))

  {

    if ($token eq '}')

      {

        print_entry () if %curentry;

        if($current_dn =~ /.+?,\s*${dhcpdn}$/) {

          # don't go below dhcpdn ...

          remove_dn_from_stack ();

        }

      }

    elsif ($token eq 'subnet')

      {

        parse_subnet ();

        next;

      }

    elsif ($token eq 'shared-network')

      {

        parse_shared_network ();

        next;

      }

    elsif ($token eq 'class')

      {

        parse_class ();

        next;

      }

    elsif ($token eq 'subclass')

      {

        parse_subclass ();

        next;

      }

    elsif ($token eq 'pool')

      {

        parse_pool ();

        next;

      }

    elsif ($token eq 'group')

      {

        parse_group ();

        next;

      }

    elsif ($token eq 'host')

      {

        parse_host ();

        next;

      }

    elsif ($token eq 'hardware')

      {

        parse_hwaddress ();

        next;

      }

    elsif ($token eq 'range')

      {

        parse_range ();

        next;

      }

    else

      {

        parse_statement ($token);

        next;

      }

  }

close(STDIN)  if($i_conf);

close(STDOUT) if($o_ldif);

print STDERR "Done.\n";

attributetype ( 2.16.840.1.113719.1.203.4.1 

	NAME 'dhcpPrimaryDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The DN of the dhcpServer which is the primary server for the configuration.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.2 

	NAME 'dhcpSecondaryDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The DN of dhcpServer(s) which provide backup service for the configuration.'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.3 

	NAME 'dhcpStatements' 

	EQUALITY caseIgnoreIA5Match

	DESC 'Flexible storage for specific data depending on what object this exists in. Like conditional statements, server parameters, etc. This allows the standard to evolve without needing to adjust the schema.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

attributetype ( 2.16.840.1.113719.1.203.4.4 

	NAME 'dhcpRange' 

	EQUALITY caseIgnoreIA5Match

	DESC 'The starting & ending IP Addresses in the range (inclusive), separated by a hyphen; if the range only contains one address, then just the address can be specified with no hyphen.  Each range is defined as a separate value.'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

attributetype ( 2.16.840.1.113719.1.203.4.5 

	NAME 'dhcpPermitList' 

	EQUALITY caseIgnoreIA5Match

	DESC 'This attribute contains the permit lists associated with a pool. Each permit list is defined as a separate value.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

attributetype ( 2.16.840.1.113719.1.203.4.6 

	NAME 'dhcpNetMask' 

	EQUALITY integerMatch

	DESC 'The subnet mask length for the subnet.  The mask can be easily computed from this length.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.7 

	NAME 'dhcpOption' 

	EQUALITY caseIgnoreIA5Match

	DESC 'Encoded option values to be sent to clients.  Each value represents a single option and contains (OptionTag, Length, OptionValue) encoded in the format used by DHCP.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

attributetype ( 2.16.840.1.113719.1.203.4.8 

	NAME 'dhcpClassData' 

	EQUALITY caseIgnoreIA5Match

	DESC 'Encoded text string or list of bytes expressed in hexadecimal, separated by colons.  Clients match subclasses based on matching the class data with the results of match or spawn with statements in the class name declarations.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.9 

	NAME 'dhcpOptionsDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s) of the dhcpOption objects containing the configuration options provided by the server.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.10 

	NAME 'dhcpHostDN' 

	EQUALITY distinguishedNameMatch

	DESC 'the distinguished name(s) of the dhcpHost objects.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) 

attributetype ( 2.16.840.1.113719.1.203.4.11 

	NAME 'dhcpPoolDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s) of pools.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.12 

	NAME 'dhcpGroupDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s)   of the groups.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.13 

	NAME 'dhcpSubnetDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s) of the subnets.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.14 

	NAME 'dhcpLeaseDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name of a client address.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE)

attributetype ( 2.16.840.1.113719.1.203.4.15 NAME 'dhcpLeasesDN' 

	DESC 'The distinguished name(s) client addresses.' 

	EQUALITY distinguishedNameMatch

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.16 

	NAME 'dhcpClassesDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s) of a class(es) in a subclass.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.17 

	NAME 'dhcpSubclassesDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s) of subclass(es).' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.18 

	NAME 'dhcpSharedNetworkDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name(s) of sharedNetworks.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.19 

	NAME 'dhcpServiceDN' 

	EQUALITY distinguishedNameMatch

	DESC 'The DN of dhcpService object(s)which contain the configuration information. Each dhcpServer object has this attribute identifying the DHCP configuration(s) that the server is associated with.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )

attributetype ( 2.16.840.1.113719.1.203.4.20 

	NAME 'dhcpVersion' DESC 'The version attribute of this object.' 

	EQUALITY caseIgnoreIA5Match

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.21 

	NAME 'dhcpImplementation' 

	EQUALITY caseIgnoreIA5Match

	DESC 'Description of the DHCP Server implementation e.g. DHCP Servers vendor.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.22 

	NAME 'dhcpAddressState' 

	EQUALITY caseIgnoreIA5Match

	DESC 'This stores information about the current binding-status of an address.  For dynamic addresses managed by DHCP, the values should be restricted to the following: "FREE", "ACTIVE", "EXPIRED", "RELEASED", "RESET", "ABANDONED", "BACKUP".  For other addresses, it SHOULD be one of the following: "UNKNOWN", "RESERVED" (an address that is managed by DHCP that is reserved for a specific client), "RESERVED-ACTIVE" (same as reserved, but address is currently in use), "ASSIGNED" (assigned manually or by some other mechanism), "UNASSIGNED", "NOTASSIGNABLE".'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.23 

	NAME 'dhcpExpirationTime' 

	EQUALITY generalizedTimeMatch 

	DESC 'This is the time the current lease for an address expires.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.24 

	NAME 'dhcpStartTimeOfState' 

	EQUALITY generalizedTimeMatch 

	DESC 'This is the time of the last state change for a leased address.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.25 

	NAME 'dhcpLastTransactionTime' 

	EQUALITY generalizedTimeMatch 

	DESC 'This is the last time a valid DHCP packet was received from the client.'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.26 

	NAME 'dhcpBootpFlag' 

	EQUALITY booleanMatch 

	DESC 'This indicates whether the address was assigned via BOOTP.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.27 

	NAME 'dhcpDomainName' 

	EQUALITY caseIgnoreIA5Match

	DESC 'This is the name of the domain sent to the client by the server.  It is essentially the same as the value for DHCP option 15 sent to the client, and represents only the domain - not the full FQDN.  To obtain the full FQDN assigned to the client you must prepend the "dhcpAssignedHostName" to this value with a ".".' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.28 

	NAME 'dhcpDnsStatus' 

	EQUALITY integerMatch

	DESC 'This indicates the status of updating DNS resource records on behalf of the client by the DHCP server for this address.  The value is a 16-bit bitmask.'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.29 

	NAME 'dhcpRequestedHostName' 

	EQUALITY caseIgnoreIA5Match

	DESC 'This is the hostname that was requested by the client.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.30 

	NAME 'dhcpAssignedHostName' 

	EQUALITY caseIgnoreIA5Match

	DESC 'This is the actual hostname that was assigned to a client. It may not be the name that was requested by the client.  The fully qualified domain name can be determined by appending the value of "dhcpDomainName" (with a dot separator) to this name.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.31 

	NAME 'dhcpReservedForClient' 

	EQUALITY distinguishedNameMatch

	DESC 'The distinguished name of a "dhcpClient" that an address is reserved for.  This may not be the same as the "dhcpAssignedToClient" attribute if the address is being reassigned but the current lease has not yet expired.'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.32 

	NAME 'dhcpAssignedToClient' 

	EQUALITY distinguishedNameMatch

	DESC 'This is the distinguished name of a "dhcpClient" that an address is currently assigned to.  This attribute is only present in the class when the address is leased.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.33 

	NAME 'dhcpRelayAgentInfo' 

	EQUALITY octetStringMatch

	DESC 'If the client request was received via a relay agent, this contains information about the relay agent that was available from the DHCP request.  This is a hex-encoded option value.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.34 

	NAME 'dhcpHWAddress' 

	EQUALITY octetStringMatch

	DESC 'The clients hardware address that requested this IP address.' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.35 

	NAME 'dhcpHashBucketAssignment' 

	EQUALITY octetStringMatch

	DESC 'HashBucketAssignment bit map for the DHCP Server, as defined in DHC Load Balancing Algorithm [RFC 3074].' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.36 

	NAME 'dhcpDelayedServiceParameter' 

	EQUALITY integerMatch

	DESC 'Delay in seconds corresponding to Delayed Service Parameter configuration, as defined in  DHC Load Balancing Algorithm [RFC 3074]. '

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.37 

	NAME 'dhcpMaxClientLeadTime' 

	EQUALITY integerMatch

	DESC 'Maximum Client Lead Time configuration in seconds, as defined in DHCP Failover Protocol [FAILOVR]' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.38 

	NAME 'dhcpFailOverEndpointState' 

	EQUALITY caseIgnoreIA5Match

	DESC 'Server (Failover Endpoint) state, as defined in DHCP Failover Protocol [FAILOVR]' 

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 2.16.840.1.113719.1.203.4.39 

	NAME 'dhcpErrorLog' 

	EQUALITY caseIgnoreIA5Match

	DESC 'Generic error log attribute that allows logging error conditions within a dhcpService or a dhcpSubnet, like no IP addresses available for lease.'

	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

# Classes

objectclass ( 2.16.840.1.113719.1.203.6.1 

	NAME 'dhcpService' 

	DESC 'Service object that represents the actual DHCP Service configuration. This is a container object.' 

	SUP top 

	MUST (cn $ dhcpPrimaryDN) 

	MAY ( dhcpSecondaryDN $ dhcpSharedNetworkDN $ dhcpSubnetDN $ 

		dhcpGroupDN $ dhcpHostDN $  dhcpClassesDN $ dhcpOptionsDN $ 

		dhcpStatements ) )

objectclass ( 2.16.840.1.113719.1.203.6.2 

	NAME 'dhcpSharedNetwork' 

	DESC 'This stores configuration information for a shared network.' 

	SUP top 

	MUST cn 

	MAY ( dhcpSubnetDN $ dhcpPoolDN $ dhcpOptionsDN $ dhcpStatements) 

	X-NDS_CONTAINMENT ('dhcpService' ) )

objectclass ( 2.16.840.1.113719.1.203.6.3 

	NAME 'dhcpSubnet' 

	DESC 'This class defines a subnet. This is a container object.' 

	SUP top 

	MUST ( cn $ dhcpNetMask ) 

	MAY ( dhcpRange $ dhcpPoolDN $ dhcpGroupDN $ dhcpHostDN $ 

		dhcpClassesDN $ dhcpLeasesDN $ dhcpOptionsDN $ dhcpStatements) 

	X-NDS_CONTAINMENT ('dhcpService' 'dhcpSharedNetwork') )

objectclass ( 2.16.840.1.113719.1.203.6.4 

	NAME 'dhcpPool' 

	DESC 'This stores configuration information about a pool.' 

	SUP top 

	MUST ( cn $ dhcpRange ) 

	MAY (dhcpClassesDN $ dhcpPermitList $ dhcpLeasesDN $ dhcpOptionsDN $ 

		dhcpStatements) 

	X-NDS_CONTAINMENT ('dhcpSubnet' 'dhcpSharedNetwork') )

objectclass ( 2.16.840.1.113719.1.203.6.5 

	NAME 'dhcpGroup' 

	DESC 'Group object that lists host DNs and parameters. This is a container object.' 

	SUP top 

	MUST cn 

	MAY ( dhcpHostDN $ dhcpOptionsDN $ dhcpStatements ) 

	X-NDS_CONTAINMENT ('dhcpSubnet' 'dhcpService' ) )

objectclass ( 2.16.840.1.113719.1.203.6.6 

	NAME 'dhcpHost' 

	DESC 'This represents information about a particular client' 

	SUP top 

	MUST cn 

	MAY  (dhcpLeaseDN $ dhcpHWAddress $ dhcpOptionsDN $ dhcpStatements) 

	X-NDS_CONTAINMENT ('dhcpService' 'dhcpSubnet' 'dhcpGroup') )

objectclass ( 2.16.840.1.113719.1.203.6.7 

	NAME 'dhcpClass' 

	DESC 'Represents information about a collection of related clients.' 

	SUP top 

	MUST cn 

	MAY (dhcpSubClassesDN $ dhcpOptionsDN $ dhcpStatements) 

	X-NDS_CONTAINMENT ('dhcpService' 'dhcpSubnet' ) )

objectclass ( 2.16.840.1.113719.1.203.6.8 

	NAME 'dhcpSubClass' 

	DESC 'Represents information about a collection of related classes.' 

	SUP top 

	MUST cn 

	MAY (dhcpClassData $ dhcpOptionsDN $ dhcpStatements) 

	X-NDS_CONTAINMENT 'dhcpClass' ) 

objectclass ( 2.16.840.1.113719.1.203.6.9 

	NAME 'dhcpOptions' 

	DESC 'Represents information about a collection of options defined.' 

	SUP top AUXILIARY

	MUST cn 

	MAY ( dhcpOption ) 

	X-NDS_CONTAINMENT  ('dhcpService' 'dhcpSharedNetwork' 'dhcpSubnet' 

			'dhcpPool' 'dhcpGroup' 'dhcpHost' 'dhcpClass' ) )

objectclass ( 2.16.840.1.113719.1.203.6.10 

	NAME 'dhcpLeases' 

	DESC 'This class represents an IP Address, which may or may not have been leased.' 

	SUP top 

	MUST ( cn $ dhcpAddressState ) 

	MAY ( dhcpExpirationTime $ dhcpStartTimeOfState $ 

		dhcpLastTransactionTime $ dhcpBootpFlag $ dhcpDomainName $ 

		dhcpDnsStatus $ dhcpRequestedHostName $ dhcpAssignedHostName $ 

		dhcpReservedForClient $ dhcpAssignedToClient $ 

		dhcpRelayAgentInfo $ dhcpHWAddress ) 

	X-NDS_CONTAINMENT ( 'dhcpService' 'dhcpSubnet' 'dhcpPool') )

objectclass ( 2.16.840.1.113719.1.203.6.11 

	NAME 'dhcpLog' 

	DESC 'This is the object that holds past information about the IP address. The cn is the time/date stamp when the address was assigned or released, the address state at the time, if the address was assigned or released.' 

	SUP top 

	MUST ( cn ) 

	MAY ( dhcpAddressState $ dhcpExpirationTime $ dhcpStartTimeOfState $ 

		dhcpLastTransactionTime $ dhcpBootpFlag $ dhcpDomainName $ 

		dhcpDnsStatus $ dhcpRequestedHostName $ dhcpAssignedHostName $ 

		dhcpReservedForClient $ dhcpAssignedToClient $ 

		dhcpRelayAgentInfo $ dhcpHWAddress $ dhcpErrorLog) 

	X-NDS_CONTAINMENT ('dhcpLeases' 'dhcpPool' 'dhcpSubnet' 

					'dhcpSharedNetwork' 'dhcpService' ) )

objectclass ( 2.16.840.1.113719.1.203.6.12 

	NAME 'dhcpServer' 

	DESC 'DHCP Server Object' 

	SUP top 

	MUST (cn $ dhcpServiceDN) 

	MAY (dhcpVersion $ dhcpImplementation $ dhcpHashBucketAssignment $ dhcpDelayedServiceParameter $ dhcpMaxClientLeadTime $ dhcpFailOverEndpointState $ dhcpStatements)

	X-NDS_CONTAINMENT ('o' 'ou' 'dc') )

dhcp3-server-ldap (3.0.1rc14-1) unstable; urgency=low

  * See ChangeLog-LDAP for changes in this release

 -- Brian Masney <masneyb@gftp.org>  Tue, 22 Jun 2004 15:29:07 -0400

dhcp3-server-ldap (3.0.1rc13-1) unstable; urgency=low

  * See ChangeLog-LDAP for changes in this release

 -- Brian Masney <masneyb@gftp.org>  Wed, 05 May 2004 07:20:13 -0400

dhcp3-server-ldap (3.0.1rc12-1) unstable; urgency=low

  * Updated patch to work against ISC DHCPD 3.0.1rc12

 -- Brian Masney <masneyb@gftp.org>  Mon, 08 Sep 2003 16:34:00 -0400

dhcp3-server-ldap (3.0.1rc11-2) unstable; urgency=low

  * Added these Debian files. They are mostly from the existing dhcp3-server

    package in Debian.

 -- Brian Masney <masneyb@gftp.org>  Mon, 04 Aug 2003 13:34:00 -0400

Source: dhcp3-server-ldap

Section: net

Priority: optional

Maintainer: Brian Masney <masneyb@gftp.org>

Build-Depends: debhelper (>= 2.1.18), dpkg-dev (>= 1.7.0), groff, libldap2-dev

Standards-Version: 2.4.0.0

Package: dhcp3-server-ldap

Architecture: any

Depends: ${shlibs:Depends}, debconf, debianutils (>= 1.7), dhcp3-server (>= 3.0+3.0.1rc9)

Conflicts: dhcp, dhcp3-ldap-ntelos

Description: This is the DHCP server with LDAP patches applied to it

/*

 * Copyright (c) 1996, 1997 The Internet Software Consortium.

 * All rights reserved.

 *

 * Redistribution and use in source and binary forms, with or without

 * modification, are permitted provided that the following conditions

 * are met:

 *

 * 1. Redistributions of source code must retain the above copyright

 *    notice, this list of conditions and the following disclaimer.

 * 2. Redistributions in binary form must reproduce the above copyright

 *    notice, this list of conditions and the following disclaimer in the

 *    documentation and/or other materials provided with the distribution.

 * 3. Neither the name of The Internet Software Consortium nor the names of its

 *    contributors may be used to endorse or promote products derived

 *    from this software without specific prior written permission.

 *

 * THIS SOFTWARE IS PROVIDED BY THE INTERNET SOFTWARE CONSORTIUM AND

 * CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING,

 * BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS

 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL

 * THE INTERNET SOFTWARE CONSORTIUM OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,

 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES

 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR

 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

 * OF THE POSSIBILITY OF SUCH DAMAGE.

 */

usr/sbin/dhcpd3

#!/bin/sh

set -e 

# Removes the left over diversions of the old package

if [ "$1" = remove -o "$1" = upgrade ]; then

	for v in `list_versions`; do

	        dpkg-divert --package dhcp3-server-ldap --remove \

			--rename --divert /usr/sbin/dhcpd3-noldap \

			/usr/sbin/dhcpd3

	done

fi

#!/bin/sh

set -e 

if [ "$1" = remove ]; then

	dpkg-divert --package dhcp3-server-ldap --remove --rename \

		--divert /usr/sbin/dhcpd3-noldap /usr/sbin/dhcpd3

fi

#!/bin/sh

set -e 

if [ "$1" = install -o "$1" = upgrade ]; then

	if dpkg-divert --list /usr/sbin/dhcpd3 \

		| grep -q "by dhcp3-server-ldap";

	then

		exit 0

	fi

	dpkg-divert --package dhcp3-server-ldap --add --rename \

		--divert /usr/sbin/dhcpd3-noldap /usr/sbin/dhcpd3

fi

shlibs:Depends=libc6 (>= 2.3.2.ds1-4), libldap2 (>= 2.1.17-1)

usr/sbin

dhcp3-server-ldap_3.0.1rc13-1_i386.deb net optional

#!/usr/bin/make -f

# Made with the iad of dh_make, by Craig Small

# Sample debian/rules that uses debhelper. GNU copyright 1997 by Joey Hess.

# Also some stuff taken from debmake scripts, by Cristopt Lameter.

# Uncomment this to turn on verbose mode.

#export DH_VERBOSE=1

export DH_COMPAT=3

DESTDIR = `pwd`/debian/tmp

IVARS = DESTDIR=$(DESTDIR)

BVARS = PREDEFINES='-D_PATH_DHCPD_DB=\"/var/lib/dhcp3/dhcpd.leases\" \

	-D_PATH_DHCLIENT_DB=\"/var/lib/dhcp3/dhclient.leases\" \

	-D_PATH_DHCLIENT_SCRIPT=\"/etc/dhcp3/dhclient-script\" \

	-D_PATH_DHCPD_CONF=\"/etc/dhcp3/dhcpd.conf\" \

        -D_PATH_DHCLIENT_CONF=\"/etc/dhcp3/dhclient.conf\"'

build: build-stamp

build-stamp:

	dh_testdir

	./configure

	$(MAKE) $(BVARS)

	touch build-stamp

clean: 

	dh_testdir

	rm -f build-stamp install-stamp

	# Add here commands to clean up after the build process.

	-$(MAKE) distclean

	# Remove leftover junk...

	rm -Rf work.linux-2.2/

	dh_clean

install: install-stamp

install-stamp: build-stamp

	dh_testdir

	dh_testroot

	dh_clean -k

	dh_installdirs

	# Add here commands to install the package into debian/tmp.

	$(MAKE) install $(IVARS)

	mv $(DESTDIR)/usr/sbin/dhcpd $(DESTDIR)/usr/sbin/dhcpd3

	dh_movefiles

	# Remove unwanted directories that dh_movefiles leaves around

	rmdir $(DESTDIR)/etc

	rm -Rf $(DESTDIR)/sbin/

	rm -Rf $(DESTDIR)/usr/bin/

	rm -Rf $(DESTDIR)/usr/include/

	rm -Rf $(DESTDIR)/usr/lib/

	rm -Rf $(DESTDIR)/usr/local/

	rm -Rf $(DESTDIR)/usr/man/

	rm -Rf $(DESTDIR)/var/

	rm -f $(DESTDIR)/usr/sbin/dhcrelay

	touch install-stamp

# Build architecture-dependent files here (this package does not contain

#	architecture-independent files).

binary-arch: build install

	dh_testdir -a

	dh_testroot -a

	dh_strip -a

	dh_compress -a

	dh_fixperms -a

	dh_installdeb -a

	dh_shlibdeps -a

	dh_gencontrol -a

	dh_md5sums -a

	dh_builddeb -a

source diff:                                                                  

	@echo >&2 'source and diff are obsolete - use dpkg-source -b'; false

binary: binary-arch

.PHONY: build clean binary-indep binary-arch binary

Network Working Group                                  M. Meredith,

Internet Draft                                         V. Nanjundaswamy,

Document: <draft-ietf-dhc-ldap-schema-00.txt>          M. Hinckley

Category: Proposed Standard                            Novell Inc.

Expires: 15th December 2001                            16th June 2001

                          LDAP Schema for DHCP

Status of this Memo

This document is an Internet-Draft and is in full conformance with all

provisions of Section 10 of RFC2026 [ ].

Internet-Drafts are working documents of the Internet Engineering Task

Force (IETF), its areas, and its working groups.  Note that other groups

may also distribute working documents as Internet-Drafts. Internet-

Drafts are draft documents valid for a maximum of six months and may be

updated, replaced, or obsolete by other documents at any time.  It is

inappropriate to use Internet-Drafts as reference material or to cite

them other than as "work in progress."  The list of current Internet-

Drafts can be accessed at http://www.ietf.org/ietf/1id-abstracts.txt The

list of Internet-Draft Shadow Directories can be accessed at

http://www.ietf.org/shadow.html.

1. Abstract

This document defines a schema for representing DHCP configuration in an

LDAP directory. It can be used to represent the DHCP Service

configuration(s) for an entire enterprise network, a subset of the

network, or even a single server. Representing DHCP configuration in an

LDAP directory enables centralized management of DHCP services offered

by one or more DHCP Servers within the enterprise.

2. Conventions used in this document

The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",

"SHOULD", "SHOULD NOT", "RECOMMENDED",  "MAY", and "OPTIONAL" in this

document are to be interpreted as described in RFC-2119 [ ].

In places where different sets of terminology are commonly used to

represent similar DHCP concepts, this schema uses the terminology of the

Internet Software Consortium's DHCP server reference implementation.

For more information see www.isc.org.

3. Design Considerations

The DHCP LDAP schema is designed to be a simple multi-server schema. The

M. Meredith et al.        Expires December 2001                 [Page 1]

INTERNET-DRAFT            LDAP Schema for DHCP              16 June 2001

intent of this schema is to provide a basic framework for representing

the most common elements used in the configuration of DHCP Server.  This

should allow other network services to obtain and use basic DHCP

configuration information in a server-independent but knowledgeable way.

It is expected that some implementations may need to extend the schema

objects, in order to implement all of their features or needs. It is

recommended that you use the schema defined in this draft to represent

DHCP configuration information in an LDAP directory.  Conforming to a

standard schema improves interoperability between DHCP implementations

from different vendors.

Some implementations may choose not to support all of the objects

defined here.

Two decisions are explicitly left up to each implementation:

First, implementations may choose not to store the lease information in

the directory, so those objects would not be used.

Second, implementations may choose not to implement the auditing

information.

It is up to the implementation to determine if the data in the directory

is considered "authoritative", or if it is simply a copy of data from an

authoritative source. Validity of the information if used as a copy is

to be ensured by the implementation.

Primarily two types of applications will use the information in this

schema: 1. DHCP servers (for loading their configuration) 2. Management

Interfaces (for defining/editing configurations).

The schema should be efficient for the needs of both types of

applications.  The schema is designed to allow objects managed by DHCP

(such as computers, subnets, etc) to be present anywhere in a directory

hierarchy (to allow those objects to be placed in the directory for

managing administrative control and access to the objects).

The schema uses a few naming conventions - all object classes and

attributes are prefixed with "dhcp" to decrease the chance that object

classes and attributes will have the same name.  The schema also uses

standard naming attributes ("cn", "ou", etc) for all objects.

4. Common DHCP Configuration Attributes

Although DHCP manages several different types of objects, the

configuration of those objects is often similar.  Consequently, most of

these objects have a common set of attributes, which are defined below.

M. Meredith et al.        Expires December 2001                 [Page 2]

INTERNET-DRAFT            LDAP Schema for DHCP              16 June 2001

4.1. Attributes Definitions

The schema definitions listed below are for readability.  The LDIF

layout for this schema will follow in section 8.

Name: dhcpPrimaryDN Description: The Distinguished Name of the

dhcpServer object, which is the primary server for the configuration.

Syntax: DN Flags: SINGLE-VALUE

Named: dhcpSecondaryDN Description: The Distinguished Name(s) of the

dhcpServer object(s), which are secondary servers for the configuration.

Syntax: DN

Name: dhcpStatements Description: Flexible storage for representing any

specific data depending on the object to which it is attached. Examples

include conditional statements, Server parameters, etc.  This also

serves as a 'catch-all' attribute that allows the standard to evolve

without needing to update the schema.  Syntax: IA5String

Name: dhcpRange Description: The starting and ending IP Addresses in the

range (inclusive), separated by a hyphen; if the range only contains one

address, then just the address can be specified with no hyphen.  Each

range is defined as a separate value.  Syntax: IA5String

Name: dhcpPermitList Description: This attribute contains the permit

lists associated with a pool. Each permit list is defined as a separate

value.  Syntax: IA5String

Name: dhcpNetMask Description: The subnet mask length for the subnet.

The mask can be easily computed from this length.  Syntax: Integer

Flags: SINGLE-VALUE

Name: dhcpOption Description: Encoded option values to be sent to

clients.  Each value represents a single option and contains (OptionTag,

Length, OptionData) encoded in the format used by DHCP.  For more

information see [DHCPOPT].  Syntax: OctetString

Name: dhcpClassData Description: Encoded text string or list of bytes

expressed in hexadecimal, separated by colons. Clients match subclasses

based on matching the class data with the results of a 'match' or 'spawn

with' statement in the class name declarations.  Syntax: IA5String

Flags: SINGLE-VALUE

Name: dhcpSubclassesDN Description: List of subclasses, these are the

actual DN of each subclass object.  Syntax: DN

Name: dhcpClassesDN Description: List of classes, these are the actual

DN of each class object.  Syntax: DN

M. Meredith et al.        Expires December 2001                 [Page 3]

INTERNET-DRAFT            LDAP Schema for DHCP              16 June 2001

Name: dhcpSubnetDN Description: List of subnets, these are the actual DN

of each subnet object.  Syntax: DN

Name: dhcpPoolDN Description: List of pools, these are the actual DN of

each Pool object.  Syntax: DN

Name: dhcpOptionsDN Description: List of options, these are the actual

DN of each Options object.  Syntax: DN

Name: dhcpHostDN Description: List of hosts, these are the actual DN of

each host object.  Syntax: DN

Name: dhcpSharedNetworkDN Description: List of shared networks, these

are the actual DN of each shared network object.  Syntax: DN

Name: dhcpGroupDN Description: List of groups, these are the actual DN

of each Group object.  Syntax: DN

Name: dhcpLeaseDN Description: Single Lease DN. A dhcpHost configuration

uses this attribute to identify a static IP address assignment.  Syntax:

DN Flags: SINGLE-VALUE

Name: dhcpLeasesDN Description: List of leases, these are the actual DN

of each lease object.  Syntax: DN

Name: dhcpServiceDN Description: The DN of dhcpService object(s)which

contain the configuration information. Each dhcpServer object has this

attribute identifying the DHCP configuration(s) that the server is

associated with.  Syntax: DN

Name: dhcpHWAddress Description: The hardware address of the client

associated with a lease Syntax: OctetString Flags: SINGLE-VALUE

Name: dhcpVersion Description: This is the version identified for the

object that this attribute is part of. In case of the dhcpServer object,

this represents the DHCP software version.  Syntax: IA5String Flags:

SINGLE-VALUE

Name: dhcpImplementation Description: DHCP Server implementation

description e.g. DHCP Vendor information.  Syntax: IA5String Flags:

SINGLE-VALUE

Name: dhcpHashBucketAssignment Description: HashBucketAssignment bit map

for the DHCP Server, as defined in DHC Load Balancing Algorithm [RFC

3074].  Syntax: Octet String Flags: SINGLE-VALUE

Name: dhcpDelayedServiceParameter Description: Delay in seconds

corresponding to Delayed Service Parameter configuration, as defined in

M. Meredith et al.        Expires December 2001                 [Page 4]

INTERNET-DRAFT            LDAP Schema for DHCP              16 June 2001

DHC Load Balancing Algorithm [RFC 3074].  Syntax: Integer Flags: SINGLE-

VALUE

Name: dhcpMaxClientLeadTime Description: Maximum Client Lead Time

configuration in seconds, as defined in DHCP Failover Protocol [FAILOVR]

Syntax: Integer Flags: SINGLE-VALUE

Name: dhcpFailOverEndpointState Description: Server (Failover Endpoint)

state, as defined in DHCP Failover Protocol [FAILOVR] Syntax: IA5String

Flags: SINGLE-VALUE

5. Configurations and Services

The schema definitions below are for readability the LDIF layout for

this schema will follow in section 8.

The DHC working group is currently considering several proposals for

fail-over and redundancy of DHCP servers.  These may require sharing of

configuration information between servers.  This schema provides a

generalized mechanism for supporting any of these proposals, by

separating the definition of a server from the definition of

configuration service provided by the server.

Separating the DHCP Server (dhcpServer) and the DHCP Configuration

(dhcpService) representations allows a configuration service to be

provided by one or more servers. Similarly, a server may provide one or

more configurations. The schema allows a server to be configured as

either a primary or secondary provider of a DHCP configuration.

Configurations are also defined so that one configuration can include

some of the objects that are defined in another configuration.  This

allows for sharing and/or a hierarchy of related configuration items.

Name: dhcpService Description:  Service object that represents the

actual DHCP Service configuration. This will be a container with the

following attributes.  Must: cn, dhcpPrimaryDN May: dhcpSecondaryDN,

dhcpSharedNetworkDN, dhcpSubnetDN, dhcpGroupDN, dhcpHostDN,

dhcpClassesDN, dhcpOptionsDN, dhcpStatements

The following objects could exist inside the dhcpService container:

dhcpSharedNetwork, dhcpSubnet, dhcpGroup, dhcpHost, dhcpClass,

dhcpOptions, dhcpLog

Name: dhcpServer Description:  Server object that the DHCP server will

login as.  The configuration information is in the dhcpService container

that the dhcpServiceDN points to.  Must: cn, dhcpServiceDN May:

dhcpVersion, dhcpImplementation, dhcpHashBucketAssignment,

dhcpDelayedServiceParameter, dhcpMaxClientLeadTime, 

M. Meredith et al.        Expires December 2001                 [Page 5]

INTERNET-DRAFT            LDAP Schema for DHCP              16 June 2001

dhcpFailOverEndpointState, dhcpStatements

5.1. DHCP Declaration related classes:

Name: dhcpSharedNetwork Description: Shared Network class will list what

pools and subnets are in this network.

This will be a container with the following attributes.  Must: cn May:

dhcpSubnetDN, dhcpPoolDN, dhcpOptionsDN, dhcpStatements

The following objects can exist within a dhcpSharedNetwork container:

dhcpSubnet, dhcpPool, dhcpOptions, dhcpLog

Name: dhcpSubnet Description: Subnet object will include configuration

information associated with a subnet, including a range and a net mask.

This will be a container with the following attributes.  Must: cn

(Subnet address), dhcpNetMask May: dhcpRange, dhcpPoolDN, dhcpGroupDN,

dhcpHostDN, dhcpClassesDN, dhcpLeasesDN, dhcpOptionsDN, dhcpStatements

The following objects can exist within a dhcpSubnet container: dhcpPool,

dhcpGroup, dhcpHost, dhcpClass, dhcpOptions, dhcpLease, dhcpLog

Name: dhcpGroup Description: Group object will have configuration

information associated with a group.

This will be a container with the following attributes.  Must: cn May:

dhcpHostDN, dhcpOptionsDN, dhcpStatements

The following objects can exist within a dhcpGroup container: dhcpHost,

dhcpOptions

Name: dhcpHost Description: The host object includes DHCP host

declarations to assign a static IP address or declare the client as

known or specify statements for a specific client.  Must: cn May:

dhcpLeaseDN, dhcpHWAddress, dhcpOptionsDN, dhcpStatements

The following objects can exist within a dhcpHost container: dhcpLease,

dhcpOptions

Name: dhcpOptions Description: The options class is for option space

declarations, it contains a list of options.  Must: cn, dhcpOption

Name: dhcpClass Description: This is a class to group clients together

based on matching rules.

This will be a container with the following attributes.  Must: cn May:

dhcpSubClassesDN, dhcpOptionsDN, dhcpStatements

The following object can exist within a dhcpClass container:

dhcpSubclass, dhcpOptions

M. Meredith et al.        Expires December 2001                 [Page 6]

INTERNET-DRAFT            LDAP Schema for DHCP              16 June 2001

Name: dhcpSubClass Description: This includes configuration information

for a subclass associated with a class. The dhcpSubClass object will

always be contained within the corresponding class container object.

Must: cn May:  dhcpClassData, dhcpOptionsDN, dhcpStatements

Name: dhcpPool Description: This contains configuration for a pool that

will have the range of addresses, permit lists and point to classes and

leases that are members of this pool.

This will be a container that could be contained by dhcpSubnet or a