mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
17,567 Commits 38 Branches 307 Tags 74 MiB
05bbe7833b
Commit Graph

670 Commits

Author SHA1 Message Date
Pierangelo Masarati
028a8af7df comment monitoring by now 2006-09-14 09:06:17 +00:00
Pierangelo Masarati
a87da913cd further cleanup 2006-09-14 01:07:18 +00:00
Pierangelo Masarati
6e18cdb5fd add basic monitoring support to back-ldap/slapo-chain (slapo-chain needs work) 2006-09-14 01:05:48 +00:00
Pierangelo Masarati
1f257bf5ed URIs need to be between double quotes 2006-09-14 01:02:28 +00:00
Pierangelo Masarati
55b5685425 ldap_back_dobind_int() may need to free a connection 2006-09-11 22:45:19 +00:00
Pierangelo Masarati
1ab4c624ed rearrange error handling 2006-09-11 21:04:25 +00:00
Pierangelo Masarati
8eb455e7b2 add sb_version to slap_bindconf; 
rework slap_client_connect() and slap_discover_feature() accordingly
 2006-09-11 00:52:43 +00:00
Pierangelo Masarati
150a4f106c improve timeout support (ITS#4157, ITS#4663); manpage cleanup 2006-09-04 08:24:05 +00:00
Pierangelo Masarati
00c2498543 back-ldap should only touch the connection timestamp when activity actually occurred (i.e. ldap_result() returned a positive value), otherwise if "the network cable is removed after the connection is established" ldap_result() keeps returning 0 forever... 2006-09-03 11:02:15 +00:00
Pierangelo Masarati
8a71ac3740 don't leak identity 2006-08-31 16:21:54 +00:00
Pierangelo Masarati
e172835b55 fix pre-allocated entry/attribute handling 2006-08-29 17:09:08 +00:00
Howard Chu
78172aa0cf Entry/Attribute struct caching, to minimize malloc fragmentation 
Note: this breaks LDAP_COMP_MATCH and SLAP_ZONE_MALLOC. But they
were probably broken already anyway.
 2006-08-29 01:43:23 +00:00
Howard Chu
ca262ee8e6 Fix test045, test048 use acl-bind credentials on retry if they were set. 2006-08-25 02:16:57 +00:00
Kurt Zeilenga
d3e288dffe s/managedit/relax/ 
#unifdef -DSLAP_RELAX
 2006-08-22 23:31:46 +00:00
Pierangelo Masarati
e4d24ecce8 don't leave dangling conns in the AVL tree 2006-08-18 17:11:41 +00:00
Pierangelo Masarati
5b317f5b85 the conn may not be bound yet even if the bound DN is set... 2006-08-18 15:22:26 +00:00
Kurt Zeilenga
3e89a4ff82 LDAP_DEVEL cleanup 2006-08-18 06:29:46 +00:00
Pierangelo Masarati
9c52a2c4ff give slapd a chance to play callback cleanup handlers when a search operation is abandoned (ITS#4645) 2006-08-17 19:47:25 +00:00
Kurt Zeilenga
d9720d50dd Some LDAP_DEVEL cleanup 2006-08-15 19:36:54 +00:00
Kurt Zeilenga
4ba9bc1c2d Use LDAP_OTHER to indicate internal error 2006-08-12 21:46:29 +00:00
Pierangelo Masarati
34af916e3f fix response sending while rebinding (ITS#4597) 2006-06-24 16:58:49 +00:00
Pierangelo Masarati
aec9afc4e3 move retry into response handling (fix ITS#4594; partially addresses ITS#4591 as well) 2006-06-17 12:37:45 +00:00
Pierangelo Masarati
a5b520477c more cleanup for previous commit 2006-06-15 23:43:09 +00:00
Pierangelo Masarati
3ebb40c4dd port identity assertion to back-meta; share as much code as possible with back-ldap; misc cleanup 2006-06-15 23:12:38 +00:00
Pierangelo Masarati
ea6c83481b add return-error support to searches 2006-06-12 22:27:52 +00:00
Pierangelo Masarati
0f8f25cf1a add support for recursive referrals (with simple loop detection) to slapo-chain (ITS#4070); add simple support for returning the error code instead of the original referral (ITS#4570) 2006-06-12 22:09:43 +00:00
Pierangelo Masarati
31a004840d cleanup identity assertion; ready for porting to back-meta 2006-06-10 16:33:26 +00:00
Pierangelo Masarati
50c6a95a62 make sure heavy concurrency doesn't cause quarantine loops 2006-06-10 01:08:45 +00:00
Pierangelo Masarati
942ca17669 cleanup resource release 2006-06-08 23:41:02 +00:00
Pierangelo Masarati
740f196548 rework quarantine locking and so 2006-06-07 23:25:38 +00:00
Pierangelo Masarati
186813daed rearrange quarantine handling during proxyAuthz bind; bind anonymously if no bindmethod is defined 2006-05-30 01:20:32 +00:00
Pierangelo Masarati
85c9a7b4c5 further cleanop of previous commits 2006-05-30 00:40:39 +00:00
Pierangelo Masarati
f5fcd2c169 cleanup previous commit 2006-05-30 00:12:23 +00:00
Pierangelo Masarati
5854464be2 allow pretty time form in quarantine string 2006-05-29 23:36:12 +00:00
Pierangelo Masarati
a6406de871 make room for plugins that deal with quarantine end 2006-05-29 21:43:20 +00:00
Pierangelo Masarati
795841b5a4 implement proxy quarantine (ITS#4569) 2006-05-27 19:54:27 +00:00
Pierangelo Masarati
e5c173691d add cancel strategies (ITS#4560) 2006-05-20 14:29:01 +00:00
Pierangelo Masarati
80dfb95241 fix previous commit 2006-05-19 23:33:15 +00:00
Pierangelo Masarati
fcbc1f484d fix referrals return for ops other than search (ITS#4557); use slab memory for temporaries in returning referrals 2006-05-18 22:28:22 +00:00
Howard Chu
bb11c81178 ITS#4550 don't overwrite remote server's err msg 2006-05-16 21:45:31 +00:00
Howard Chu
5f3bc1f7ec Fix ITS#4450, don't overwrite remote server's rs->sr_text 2006-05-16 21:30:10 +00:00
Pierangelo Masarati
073f14ceac lc_bound_ndn is occasionally saved to keep track of who bound; don't use it to bind unless credentials are present as well 2006-05-16 02:56:59 +00:00
Pierangelo Masarati
9c9b6f7353 idassert: setup rebind stuff when binding for proxyAuthz, so that referral chasing tries to rebind with the correct identity (partially address ITS#3526) 2006-05-16 01:10:51 +00:00
Pierangelo Masarati
3b7084c170 reset the conn field in the cached connection if the bound DN is privileged (ITS#4547) 2006-05-15 01:42:05 +00:00
Pierangelo Masarati
26d1fc8c48 more cleanup of previous commits 2006-05-14 18:09:56 +00:00
Pierangelo Masarati
f87e6270d4 improve previous commit 2006-05-14 17:53:40 +00:00
Pierangelo Masarati
0c2c3ea7e1 typo in previous commit 2006-05-14 17:34:18 +00:00
Pierangelo Masarati
0c33c17bb5 "single-conn" forces flushing of existing conns during rebind on same conn (ITS#4546) 2006-05-14 17:32:15 +00:00
Pierangelo Masarati
3393b15594 cleanup resource release 2006-05-14 15:11:53 +00:00
Pierangelo Masarati
42ab45aed2 fix warning message 2006-05-09 20:32:25 +00:00
Pierangelo Masarati
373ded8d24 add URI list resorting feature (ITS#4524) 2006-05-06 16:15:25 +00:00
Pierangelo Masarati
401b211d98 touch idle-timeout HAVE_TLS odds; silence warning #ifndef HAVE_TLS 2006-05-06 10:50:13 +00:00
Pierangelo Masarati
470fda7744 cleanup version parsing 2006-05-06 10:42:29 +00:00
Pierangelo Masarati
3b5d411af2 fix idassert "override" 2006-05-01 22:54:07 +00:00
Pierangelo Masarati
4d894c7d24 don't idassert if proxyAuthz == boundDN (ITS#4497) 2006-04-21 21:07:31 +00:00
Pierangelo Masarati
e01743193d more coverity issues 2006-04-14 00:17:27 +00:00
Hallvard Furuseth
7a19d8855d Remove useless assert: unsigned lc->lc_refcnt >= 0 2006-04-13 22:20:55 +00:00
Pierangelo Masarati
bd8514fb1e address protocol version issues (ITS#4488) 2006-04-13 16:20:00 +00:00
Kurt Zeilenga
eb9a3c1876 unifdef -DSLAP_ACL_HONOR_DISCLOSE 
unifdef -DSLAP_ACL_HONOR_MANAGE
unifdef -DSLAP_OVERLAY_ACCESS
unifdef -DSLAP_ORDERED_PRETTYNORM
unifdef -DSLAP_AUTHZ_SYNTAX
Move LDAP_COLLECTIVE_ATTRIBUTES, LDAP_COMP_MATCH, and LDAP_SYNC_TIMESTAMP
back behind LDAP_DEVEL (as these either too experimental or not yet
implemented).
 2006-04-12 05:53:26 +00:00
Pierangelo Masarati
666e0677ca re-fix previous commit 2006-04-08 15:59:59 +00:00
Pierangelo Masarati
3d13b08a44 fix network-timeout commit 2006-04-08 14:45:45 +00:00
Pierangelo Masarati
cc8109db06 fix previous commit 2006-04-08 14:45:19 +00:00
Pierangelo Masarati
0500576056 add support for old proxyAuthz encoding; allow to workaround buggy implementations of the new version (now RFC4370) 2006-04-08 11:12:30 +00:00
Pierangelo Masarati
6a293c65b3 line up network-timeout with back-meta 2006-04-07 09:08:37 +00:00
Pierangelo Masarati
8c1b8d3f7b actually, if a connection is already in the AVL tree, use it if not binding; otherwise use a tainted one; taint connections that must be freed when refcnt goes to zero 2006-04-07 01:28:56 +00:00
Kurt Zeilenga
45d0479d37 Reverse last commit. Wrong tree. 2006-04-05 00:40:53 +00:00
Kurt Zeilenga
31d64d4642 No LogTest in re23 2006-04-05 00:39:46 +00:00
Howard Chu
fc61aab12b plug leak 2006-04-04 10:31:01 +00:00
Pierangelo Masarati
070c9d9f07 make sure rs->sr_err is fine 2006-04-03 00:33:34 +00:00
Hallvard Furuseth
b2f79aa42e Initialize and destroy lc_lai.lai_mutex 2006-04-02 23:47:13 +00:00
Hallvard Furuseth
581c1ff6c7 Cast ctype.h char arguments to unsigned char 2006-04-01 23:44:42 +00:00
Pierangelo Masarati
02966c3d1c fix handling of expired connections (ITS#4429; need to look at back-meta as well) 2006-03-29 01:26:42 +00:00
Pierangelo Masarati
bacd1f170f leave existing controls in place if proxyAuthz is not required by idassert (ITS#4457) 2006-03-28 21:45:54 +00:00
Pierangelo Masarati
e673b4d9ad propagate pretty DN (ITS#4456) 2006-03-28 19:20:01 +00:00
Pierangelo Masarati
0a465343fb cleanup 2006-03-27 00:31:38 +00:00
Pierangelo Masarati
1418b2c5b1 fix previous commit: actually free the connection in case of failed bind 2006-03-25 01:12:27 +00:00
Pierangelo Masarati
fd5208c18f destroy bind connection after failed bind (ITS#4428) 2006-03-25 00:33:42 +00:00
Pierangelo Masarati
00073c8cac fix operational attrs return with chain overlay (ITS#4431); misc cleanup 2006-03-24 22:49:51 +00:00
Pierangelo Masarati
3160c03dab cleanup previous commit 2006-03-23 23:01:14 +00:00
Pierangelo Masarati
3437406a0b honor "chase-referrals no" (ITS#4447) 2006-03-23 21:01:19 +00:00
Pierangelo Masarati
3861c47316 queue implicit binds (ITS#4409) 2006-03-03 16:27:00 +00:00
Pierangelo Masarati
fa72882808 fix error message 2006-02-16 01:10:45 +00:00
Kurt Zeilenga
cbc11c9233 unifdef -DLDAP_NULL_IS_NULL 2006-02-14 23:18:12 +00:00
Pierangelo Masarati
f4c578cb31 delete all conns cached for a single client->proxy connection (partially addresses ITS#4387) 2006-02-06 21:39:56 +00:00
Pierangelo Masarati
f0d6ac3e0b debug cleanup 2006-02-04 15:50:22 +00:00
Pierangelo Masarati
54aefe30f7 implement proxy long-lived connection TTL 2006-02-01 23:10:12 +00:00
Pierangelo Masarati
e393f47465 allow slapo-chain to be instantiated without any specific config statement... 2006-01-13 10:41:54 +00:00
Pierangelo Masarati
7124ec615e make sure appropriate limits are in place (ITS#4336) 2006-01-12 22:48:02 +00:00
Pierangelo Masarati
7038044c91 in abnormal cases, error may be sent twice 2006-01-11 15:32:34 +00:00
Pierangelo Masarati
0dce854ce4 complete fix to back-ldap (ITS#4315?); not sure dobind should actually be treated as a bind... 2006-01-11 12:11:59 +00:00
Pierangelo Masarati
7368ffb77a don't idassert anon2anon (ITS#4321) 2006-01-10 13:17:31 +00:00
Pierangelo Masarati
f3c2c7ba48 use slab memory for proxyauthz 2006-01-09 20:00:51 +00:00
Pierangelo Masarati
543c588772 don't send error with back-meta 2006-01-09 15:13:29 +00:00
Pierangelo Masarati
6995603a3d refine fix to ITS#4315; apply it to back-meta as well 2006-01-09 14:20:37 +00:00
Howard Chu
8538223def TS#4315 fix prev commit, spinning in ldap_back_dobind 2006-01-09 09:37:52 +00:00
Howard Chu
2b39a26150 ITS#4315 fix bind concurrency issue 2006-01-09 09:14:53 +00:00
Pierangelo Masarati
18beda81a0 allow proxying of dynamic objects (irrespective of the support provided to dynamic objects) 2006-01-06 16:33:14 +00:00
Pierangelo Masarati
62497187c7 cleanup 2006-01-06 16:31:07 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Pierangelo Masarati
c67c99e3bd clarify generated password issue 2006-01-02 16:20:39 +00:00
Pierangelo Masarati
fc358465d7 allow generic exops to slip thru 2006-01-02 08:19:35 +00:00
Pierangelo Masarati
8c2ceeb605 don't idassert anonymous unless explicitly configured (ITS#4272) 2005-12-20 20:43:14 +00:00
Pierangelo Masarati
96dd70da28 fix memory handling 2005-12-16 16:19:17 +00:00
Pierangelo Masarati
4538422dc9 better handling of internal operations 2005-12-15 13:47:25 +00:00
Pierangelo Masarati
430aff35bb assume operations with version set to 0 are internal, and use LDAPv3 2005-12-15 11:39:46 +00:00
Pierangelo Masarati
fcda57e90f use macros instead of numbers... 2005-12-13 20:11:26 +00:00
Pierangelo Masarati
1b42fde372 implement (per-target) per-conn proxy-side idle-timeout (ITS#4115); revitalize (per-target) network-timeout in back-meta; fix issue with connection initialization error in ldap_back_retry(); cleanup configuration of back-ldap 2005-12-07 17:35:02 +00:00
Pierangelo Masarati
2ea72234aa return more appropriate error code 2005-12-06 20:04:52 +00:00
Pierangelo Masarati
52a827466a fix previous commit 2005-11-28 10:38:01 +00:00
Pierangelo Masarati
4fe032e9be add very preliminary support for <draft-sermersheim-ldap-distproc> 2005-11-27 23:23:59 +00:00
Pierangelo Masarati
26a83119fd cleanup 2005-11-27 23:19:17 +00:00
Pierangelo Masarati
1e01082e10 s/chain-cache-uris/chain-cache-uri/ 2005-11-27 23:18:47 +00:00
Pierangelo Masarati
b3c8a976ec use LDAP_SIZELIMIT_EXCEEDED; rework the return values of slap_send_search_entry(); silence a few warnings 2005-11-25 22:17:24 +00:00
Pierangelo Masarati
ea83f6a669 check sizelimit in frontend (ITS#4213) 2005-11-25 00:28:33 +00:00
Pierangelo Masarati
d34fffcaf9 use lutil_ato*() whenever appropriate 2005-11-24 01:10:05 +00:00
Hallvard Furuseth
6b93c656a1 Fix olcChainConfig definition when !LDAP_CONTROL_X_CHAINING_BEHAVIOR 2005-11-23 10:49:47 +00:00
Pierangelo Masarati
64156a68b2 fix dumb var initialization 2005-11-20 19:55:07 +00:00
Pierangelo Masarati
4c92090e87 fix compilation when the chaining control is undefined 2005-11-20 19:28:03 +00:00
Pierangelo Masarati
4852bf8a58 don't care about empty matched/text #ifdef LDAP_NULL_IS_NULL 2005-11-20 01:59:26 +00:00
Pierangelo Masarati
754e59543d cleanup 2005-11-20 01:39:19 +00:00
Pierangelo Masarati
fbb31b58a1 yet another fix to previous commit 2005-11-20 00:29:35 +00:00
Pierangelo Masarati
b85b28275f fix previous commit 2005-11-20 00:08:50 +00:00
Pierangelo Masarati
d71a3add92 fix typo in write timeouts argnumbers 2005-11-19 23:23:18 +00:00
Pierangelo Masarati
5bd95600de allow the chain overlay and the underlying databases to be loaded via back-config 2005-11-19 23:22:50 +00:00
Pierangelo Masarati
39d721504a plug one-time leaks 2005-11-19 18:44:54 +00:00
Pierangelo Masarati
6d7689b7e3 check we don't exceed userland with config param bits 2005-11-19 18:01:28 +00:00
Pierangelo Masarati
3e7fd464dc streamline back-ldap/slapo-chain configuration; add the possibility to cache non-configured, anonymous referral URIs 2005-11-19 17:48:33 +00:00
Pierangelo Masarati
7fa4b159bf fix dangling resources issue in slapd-ldap; completely rework slapo-chain to fix the resource leak/concurrency issue; add support for multiple well-known URIs to set credentials for, and deal with unknown URIs anonymously; similar reworking and cleanup for slapd-meta 2005-11-19 15:00:50 +00:00
Pierangelo Masarati
dd2afd3e3e refine previous commit... 2005-11-16 14:20:45 +00:00
Pierangelo Masarati
917b77fff1 fix matched handling of slapd-ldap/slapo-chain (ITS#4176) 2005-11-16 14:17:19 +00:00
Pierangelo Masarati
78bd3bf6a3 handle LDAPv2 when returning timelimit; silence warning 2005-11-11 09:54:07 +00:00
Pierangelo Masarati
93abd4c616 cannot happen... 2005-11-09 12:58:57 +00:00
Pierangelo Masarati
4cab386d13 backport write operation timeouts from back-meta to back-ldap; minor cleanup & silence warnings 2005-11-06 23:29:10 +00:00
Pierangelo Masarati
1ec4cf7bba add a giant mutex around the ldapinfo structure to serialize chaining (need to check for deadlocks...) 2005-11-04 01:42:11 +00:00
Pierangelo Masarati
d3a2a42e85 fix previous commit (addresses ITS#4139) 2005-11-03 21:48:46 +00:00
Pierangelo Masarati
2a24cbb5e8 don't leak text/matched 2005-11-03 11:58:06 +00:00
Kurt Zeilenga
ecd86725f2 Update result code to IANA-assigned values 
Provide some backwards compatibility.
Misc cleanup
 2005-11-03 01:27:07 +00:00
Pierangelo Masarati
7146f4e21f don't leak matchedDN 2005-11-01 16:47:17 +00:00
Pierangelo Masarati
4744733638 don't copy o_ndn into lc_bound_ndn, otherwise we end up in a bind with DN but no password\! 2005-10-14 23:25:57 +00:00
Pierangelo Masarati
37f4e80929 hide unused member (will likely be removed) 2005-09-24 18:46:01 +00:00
Pierangelo Masarati
112be0118e cleanup states/timeout handling in back-ldap/meta; add connection pooling and defer of pseudoroot bind to back-meta 2005-09-24 18:39:26 +00:00
Pierangelo Masarati
fb3fc81c7e improved authz_backend detection for internal databases (ITS#4018) 2005-09-10 09:56:29 +00:00
Pierangelo Masarati
866148810e release resources (ITS#4016) 2005-09-09 02:37:38 +00:00
Pierangelo Masarati
4687de2062 fix typo (ITS#4005) 2005-09-06 15:17:07 +00:00
Pierangelo Masarati
7fd7001fc2 fix old erroneous commit (ITS#4001) 2005-09-04 19:21:39 +00:00
Pierangelo Masarati
bac1aea2a5 fix previous commit 2005-08-29 09:48:07 +00:00
Pierangelo Masarati
97600bf23c prettify matchedDN; return response code 2005-08-27 19:20:31 +00:00
Howard Chu
5a03f7611f Fix for Windows mod compatibility, imported symbols cannot be used as 
constant initializers.
 2005-08-26 02:17:13 +00:00
Pierangelo Masarati
6cb8b14435 allow undefined attrs to be "proxied" (ITS#3959) 2005-08-25 21:14:26 +00:00
Pierangelo Masarati
075220dd7e need some minimal timeout otherwise strange issues occur 2005-08-22 18:14:41 +00:00