Commit Graph

59 Commits

Author SHA1 Message Date
Devin J. Pohly
fb5b3a0df2 ITS#6826 conversion scripts
These were provided as part of the original ITS but not previously committed.
Perl scripts to convert between Apache and OpenLDAP hash formats.
2016-04-11 13:35:39 +01:00
Quanah Gibson-Mount
6c4d6c880b Happy New Year! 2016-01-29 13:32:05 -06:00
Howard Chu
fb00ef1915 ITS#8294 more for prev commit 2015-10-29 20:31:36 +00:00
Howard Chu
01c27e1342 ITS#8294 avoid symbol clash with other crypto libs 2015-10-29 20:19:00 +00:00
Howard Chu
639da48fdc ITS#8230 add GnuTLS/nettle support 2015-09-25 19:28:18 +01:00
Howard Chu
ccedb68ee2 ITS#8230 fix padding count 2015-09-25 18:53:05 +01:00
Howard Chu
6e4c747d5d ITS#8230 Don't skip tval on big-endian 2015-09-25 18:52:24 +01:00
Ryan Tandy
9d2dc5dd24 ITS#8198 use #elif instead of #else for gnutls cases
Reserve #else for actual fallback cases.
2015-08-22 18:59:13 -07:00
Luca Bruno
709a0f4a97 ITS#8198 Optionally use libnettle instead of OpenSSL for crypto
OpenLDAP can be configured to be either built with OpenSSL or
GnuTLS. This commit adds support for building pw-pbkbdf2 module
without OpenSSL, by using PBKDF2 crypto primitives provided by
libnettle.
Closes hamano/openldap-pbkdf2#2

Signed-off-by: Luca Bruno <luca.bruno@rocket-internet.de>
2015-08-22 19:35:38 +00:00
Luca Bruno
ba20d70d2b ITS#8198 Fix an always-true check
Fixed asprintf return value check, in order to properly catch
error conditions. This has been caught by clang -Wtautological-compare:

pw-pbkdf2.c:132:17: warning: comparison of unsigned expression < 0 is always false
        if(msg->bv_len < 0){
           ~~~~~~~~~~~ ^ ~

Signed-off-by: Luca Bruno <luca.bruno@rocket-internet.de>
2015-08-22 19:35:34 +00:00
Howard Chu
a8491a63e6 Fix setting authTimestamp on non-TOTP binds 2015-07-16 03:28:37 +01:00
Howard Chu
34e7cbb6fe Plug memleak on mismatched length 2015-07-13 17:17:42 +01:00
Howard Chu
ea43ac38bf Merge authTimestamp from lastbind overlay
This code duplicates the basic function of lastbind. The two overlays
cannot be used together. The timestamp Mod op is changed to require
the old value to still be present at the end of the Bind. This allows
us to detect collisions (multiple successful Binds in the same time
window) and properly fail the extra Bind attempts.
2015-07-02 20:12:51 +01:00
Howard Chu
e069a79239 Add TOTP pw mechanism 2015-07-02 17:05:14 +01:00
Quanah Gibson-Mount
1705fa7e55 Happy New Year 2015-02-11 15:36:57 -06:00
SATOH Fumiyasu
ea58e1ee55 ITS#7782 tweak contrib/slapd-modules/**/Makefile
Set LDAP_BUILD=$(LDAP_SRC) by default
2014-12-16 19:52:44 +00:00
Howard Chu
b8912c33ba ITS#8000 silence warnings 2014-12-10 22:24:25 +00:00
HAMANO Tsukasa
2a43a7d16f ITS#7977 Add PBKDF2 -SHA256 and -SHA512 2014-11-05 09:29:31 +00:00
ryan@nardis.ca
b54ae0e2bd ITS#7851 contrib pw-sha2 fix int/size_t comparison 2014-07-18 09:43:36 -07:00
Ryan Tandy
9b36358270 ITS#7851 tell lutil_b64_pton the correct target buffer size 2014-07-18 09:42:22 -07:00
Howard Chu
44f797edad Fix EOL/whitespace 2014-07-18 09:28:27 -07:00
Ryan Tandy
1560c61fa2 ITS#7869 fix do_phk_hash arguments 2014-07-18 09:27:14 -07:00
ryan@nardis.ca
d10652d33c ITS#7885 Wrong RPATH in contrib/passwd/Makefile
Similar to #7858, another easy patch.
2014-06-30 04:54:38 -07:00
HAMANO Tsukasa
0fbabb115b ITS#7742 New: PBKDF2 module
Signed-off-by: HAMANO Tsukasa <hamano@osstech.co.jp>
2014-04-01 20:23:29 -07:00
Kurt Zeilenga
5c878c1bf2 Happy new year (belated) 2014-01-25 05:21:25 -08:00
Quanah Gibson-Mount
ad9f847bf4 ITS#7490
Zero out the complete context buffer
From mhardin@symas.com
2013-01-17 12:05:01 -08:00
Kurt Zeilenga
0fd1bf30b8 Happy New Year 2013-01-02 10:22:57 -08:00
Howard Chu
e584749808 ITS#7357 set NAS-Identifier in request 2012-08-21 13:30:02 -07:00
SATOH Fumiyasu
251b4e69ca ITS#7309 contrib/slapd-modules: Unify the structure and usage of Makefile 2012-06-26 06:36:16 -07:00
SATOH Fumiyasu
899f3c994f ITS#7278 SHA-2: Add support salted SHA-2 password hashes
Support {SSHA256}, {SSHA384} and {SSHA512} hash schemes
2012-05-29 16:05:56 -07:00
SATOH Fumiyasu
3bc7f6d27d ITS#7269 SHA2: Avoid "static char real_hash[]" to support multithread
Remove sha*_hex_hash() and replace chk_sha*() with
libraries/liblutil/passwd.c:chk_sha1() implementation to
avoid a race condition.
2012-05-29 16:02:16 -07:00
SATOH Fumiyasu
e4f4322f6c SHA2: Make slapd-sha2 module portable
contrib/slapd-modules/passwd/sha2/sha2.[ch] need portable.h and
some macros to be portable source.

contrib/slapd-modules/passwd/sha2/slapd-sha2.c:hash_sha*() must
declare "struct berval digest" before a statement for K&R C,
and must replace C++ "// foo"-style comments with C style.
2012-05-08 12:16:25 -07:00
Kurt Zeilenga
2bbf9804b9 Happy New Year! 2012-01-01 07:10:53 -08:00
Howard Chu
5fa1826370 Add CVS ID 2011-02-07 01:14:04 +00:00
Howard Chu
0561aa164a Drop unneeded scheme param 2011-02-07 01:12:49 +00:00
Howard Chu
e9e99fe612 Add APR1 to Makefile/README. Add {BSDMD5} mechanism. 2011-02-07 01:09:47 +00:00
Howard Chu
ffc1d68035 Use lutil_passwd_string64 instead of pw_string64 2011-02-07 00:49:55 +00:00
Howard Chu
4f8c0eddd2 ITS#6826 from Devin J. Pohly 2011-02-07 00:49:04 +00:00
Howard Chu
7f8b0560bd Replace pw_string64 with lutil_passwd_string64 2011-02-07 00:47:25 +00:00
Kurt Zeilenga
966cef8c9a Happy New Year 2011-01-05 00:42:37 +00:00
Kurt Zeilenga
3dadeb3efe happy belated New Year 2010-04-13 22:17:29 +00:00
Howard Chu
61129f8d7a ITS#6433 add mechs for generating SHA2 hashes 2010-03-03 23:56:30 +00:00
Kurt Zeilenga
36ef26a2af Cleanup 2009-08-18 00:49:15 +00:00
Kurt Zeilenga
a5abeb92ec Update contrib notices to reflect that they are distributed as part of
OpenLDAP Software (though they may not necessarily be supported by the
OpenLDAP Project).  Assistance in updating ACKNOWLEDGEMENTS welcomed.
2009-08-16 22:55:23 +00:00
Quanah Gibson-Mount
8f8128d727 Add missing CVS tag 2009-04-28 03:05:46 +00:00
Emmanuel Dreyfus
e240d55c07 Add libtoolized makefile 2009-04-25 18:19:24 +00:00
Howard Chu
ba0863d500 ITS#5660 SHA2 password hashes 2009-01-26 04:08:34 +00:00
Kurt Zeilenga
4af9eb9715 Update copyright notices 2009-01-22 00:40:04 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
5616af14c3 needs portable.h 2007-06-02 11:31:17 +00:00