mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
22,695 Commits 38 Branches 307 Tags 74 MiB
16793977ff
Commit Graph

4685 Commits

Author SHA1 Message Date
Howard Chu
f8505b10ed ITS#8975 2019-02-10 10:13:10 +00:00
Kris Zyp
ea30be6109 ITS#8975 WIN32: Skip setting file pointer for write maps 
CreateFileMapping already takes care of it.
 2019-02-10 10:11:53 +00:00
Quanah Gibson-Mount
09ff530036 ITS#8957 - Fix ASYNC TLS 
Fix ASYNC TLS by correctly handling a return code of -2 in addition to 0
 2019-01-31 23:28:36 +00:00
Quanah Gibson-Mount
50b33cc6b8 ITS#8968 - Fix ASYNC connection on Solaris 10 
Fixes ASYNC connections to handle a return code of ENOTCONN as this is
what Solaris 10 does.
 2019-01-31 23:28:28 +00:00
Howard Chu
8c39ba1077 ITS#8969 2019-01-31 00:22:50 +00:00
Howard Chu
7375ffc0d4 ITS#8969 tweak mdb_page_split 
Bump up number of keys for which we use fine-grained splitpoint search
 2019-01-31 00:22:28 +00:00
Howard Chu
e8c62bf8b4 ITS#8966 add changelog support to syncrepl consumer 
Tested against DSEE7. The DSEE binaries must be in your path to run the test script.
 2019-01-29 18:51:43 -08:00
Howard Chu
b15149a56b Happy New Year 2019-01-14 19:06:40 +00:00
Quanah Gibson-Mount
b45a6a7dc7 Happy New Year! 2019-01-14 18:46:16 +00:00
Quanah Gibson-Mount
497f385587 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2019-01-14 18:40:58 +00:00
Quanah Gibson-Mount
f9acf68207 Happy New Year! 2019-01-14 18:40:15 +00:00
Howard Chu
d3b1558dcb ITS#8353 CRYPTO_set_id_callback deprecated in OpenSSL 0.9.9 2019-01-02 10:16:40 +00:00
Quanah Gibson-Mount
6a47588fd6 Return to engineering 2018-12-19 16:52:12 +00:00
Quanah Gibson-Mount
868750c74b Merge remote-tracking branch 'origin/mdb.RE/0.9' 2018-12-19 15:53:50 +00:00
Quanah Gibson-Mount
2a5eaad691 Release 0.9.23 2018-12-19 15:51:03 +00:00
Howard Chu
8ccb3d4e1b Add msctrl to libldap_r 
Overlooked this in a9bfce1292
 2018-12-18 17:11:54 +00:00
Howard Chu
18e0bcb7de Add MS AD persistent search ctrl 2018-12-13 05:44:46 -08:00
Howard Chu
7e5c9c1345 ITS#8752 (maybe related) 
Avoid incremental access to user-supplied bv in dupbv
 2018-12-05 10:41:47 +00:00
Ondřej Kuzník
c65cf6e6d7 ITS#8858 Fix use after free 2018-11-29 14:41:58 +00:00
Howard Chu
de998c3518 DirSync ctrl requires critical 2018-11-18 02:47:21 +00:00
Howard Chu
a9bfce1292 Add some MS AD controls 2018-11-17 18:33:41 -08:00
Ondřej Kuzník
10a6ffa3e9 Expose ldap_int_tls_connect as ldap_pvt_tls_connect 2018-10-22 11:35:31 +01:00
Ondřej Kuzník
0f44671c51 ITS#8772 Remove the local rmutex implementation 2018-10-19 13:08:10 +01:00
Ondřej Kuzník
7fa5eb4242 ITS#8772 Remove type distinction for recursive mutexes 2018-10-19 13:08:10 +01:00
Ondřej Kuzník
5c0b820c4a ITS#8772 Remove cthread support 2018-10-19 13:08:10 +01:00
Ondřej Kuzník
d4df939b95 ITS#8858 Introduce ldap_pvt_thread_pool_walk 2018-10-19 13:08:09 +01:00
Ondřej Kuzník
33aa4405e5 ITS#8850 Split ldap_pvt_thread_pool_destroy logic 2018-10-19 13:08:09 +01:00
Howard Chu
d7a778004b ITS#8809 add missing includes 2018-09-21 18:42:34 +01:00
Ryan Tandy
4c1ab16ade Revert "ITS#8650 retry gnutls_handshake after GNUTLS_E_AGAIN" 
This reverts commit 7b5181da8c.
 2018-09-18 19:16:31 -07:00
Howard Chu
ea4c969a24 ITS#8857 mdb_cursor_del 2018-09-10 19:06:45 +01:00
moneromooo-monero
246e7e77c8 ITS#8857 document mdb_cursor_del does not invalidate the cursor 2018-09-10 19:06:11 +01:00
Howard Chu
3bec2a8228 Fix ITS#8756, 8831, 8844, 8908 2018-09-10 16:24:51 +01:00
Howard Chu
1105d2043e ITS#8908 DOC: GET_MULTIPLE etc don't return the key 
Unnecessary since these are DUPs, the key will always be the same
 2018-09-10 16:20:26 +01:00
Howard Chu
1f33a6d910 ITS#8756 remove loose pg from dirty list in freelist_save 2018-09-10 16:20:07 +01:00
Howard Chu
9e859dd1ca ITS#8831 move flag init into readhdr 
Avoid stomping on flags from 1st readhr invocation
 2018-09-10 16:19:28 +01:00
Ondřej Kuzník
b0244fc869 ITS#8842 Do some printability checks on the dc RDN 2018-07-02 16:18:26 +01:00
Ondřej Kuzník
fb49d486a3 ITS#8864 Fix ber_realloc after a partial ber_flush 2018-06-14 17:07:19 +01:00
Ondřej Kuzník
8a259e3df1 ITS#8573 allow all libldap options in tools -o option 2018-06-14 16:19:10 +01:00
Howard Chu
3b01bbbc67 ITS#8844 use getpid() in mdb_env_close0() 2018-05-02 17:06:15 +01:00
Quanah Gibson-Mount
b0a6dbcc70 Return to engineering 2018-03-22 19:13:11 +00:00
Quanah Gibson-Mount
59e9ff6243 Happy New Year 2018-03-22 15:35:24 +00:00
Quanah Gibson-Mount
762d7b075e Merge remote-tracking branch 'origin/mdb.RE/0.9' 2018-03-22 15:28:21 +00:00
Quanah Gibson-Mount
5033a08c86 Update release date 2018-03-22 15:23:05 +00:00
Quanah Gibson-Mount
385193cd52 Happy New Year 2018-03-22 15:22:03 +00:00
Howard Chu
2f4948f1e4 Release 0.9.22 2018-03-21 22:50:02 +00:00
Howard Chu
e77918a903 ITS#8819 can't use fakepage mp_ptrs directly 2018-03-21 22:48:04 +00:00
Quanah Gibson-Mount
6f9a9ca825 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2018-02-11 21:02:26 +00:00
Quanah Gibson-Mount
a351fe0b64 ITS#8722 2018-02-11 21:02:05 +00:00
Hallvard Furuseth
f6514da360 Tweak ITS#8722 fix: Use XCURSOR_REFRESH() 
This checks XCURSOR_INITED() and fixes the mn_flags check.
 2018-02-11 20:59:44 +00:00
Hallvard Furuseth
40daa8e73f XCURSOR_REFRESH() fixups/cleanup 
* Check NUMKEYS(), similar to f34b61f947
  "ITS#8722 fix FIRST_DUP/LAST_DUP cursor bounds check".
* Move XCURSOR_INITED() into XCURSOR_REFRESH().  This adds a check in
  mdb_cursor_put, below /* converted, write the original data first */.
* Factor mc_ki[] out to XCURSOR_REFRESH().
* Replace an mc_pg[] with mp which is equal (mdb_cursor_del0).
 2018-02-11 20:59:37 +00:00
Howard Chu
98b2910ee8 ITS#8722 fix FIRST_DUP/LAST_DUP cursor bounds check 2018-02-11 20:59:28 +00:00
Quanah Gibson-Mount
264263484b ITS#8622 2018-02-11 20:58:54 +00:00
Howard Chu
35251f6847 ITS#8699 more for cursor_del ITS#8622 
Set C_DEL flag on reinit'd subcursor
 2018-02-11 20:57:50 +00:00
Quanah Gibson-Mount
3b1acd40cd Fix ITS location 2018-02-09 19:00:38 +00:00
Quanah Gibson-Mount
735b6c995e Merge remote-tracking branch 'origin/mdb.RE/0.9' 2018-02-09 18:49:21 +00:00
Quanah Gibson-Mount
e20e307929 ITS#8760 2018-02-09 18:47:21 +00:00
Howard Chu
a4d9a75a1e ITS#8760 fix regression in 0.9.19 2018-02-09 18:46:40 +00:00
Quanah Gibson-Mount
4ac16b128c ITS#8612 2018-02-09 18:46:06 +00:00
Quanah Gibson-Mount
b2426af3d1 ITS#8612 Fix Solaris builds with liblmdb 
This patch fixes liblmdb builds on Solaris and derivatives by defining
_POSIX_PTHREAD_SEMANTICS
 2018-02-09 18:45:37 +00:00
Quanah Gibson-Mount
3d8fc321d5 0.9.22 engineering 2018-02-09 18:45:20 +00:00
Howard Chu
650b4822ce Avoid unnecessary C99 initializers 2018-01-25 15:40:26 +00:00
Howard Chu
f09ffffcbd Cleanup warnings 2018-01-25 15:36:00 +00:00
Bradley Baetz
e5ee07785e ITS#8791 fix OpenSSL 1.1.1 BIO_method compat 
Use the new methods unconditionally, define helper functions for older versions.
 2018-01-25 15:28:51 +00:00
Soohoon Lee
1863245f49 ITS#8484 - Fix MozNSS initialization 2017-12-08 07:00:02 -08:00
Howard Chu
f82ca15a18 ITS#8782 plug memleaks in cancel 2017-12-04 16:00:33 +00:00
Quanah Gibson-Mount
f5da6638ec ITS#8753, ITS#8774 - Fix compilation with older versions of OpenSSL 2017-11-17 14:30:45 -08:00
Ondřej Kuzník
36da75830f ITS#8753 Remove extraneous file 2017-11-14 09:28:18 +00:00
Ondřej Kuzník
8e34ed8c78 ITS#8753 Public key pinning support in libldap 2017-11-13 17:24:49 +00:00
Ondřej Kuzník
91ebfc82ea ITS#8753 Move base64 decoding to separate file 2017-11-13 16:51:01 +00:00
Ondřej Kuzník
3d5a7545b9 Build internal avl testing tools correctly 2017-10-26 11:53:50 +01:00
Josh Soref
10566c8be3 ITS#8605 - spelling fixes 
* javascript
* kernel
* ldap
* length
* macros
* maintained
* manager
* matching
* maximum
* mechanism
* memory
* method
* mimic
* minimum
* modifiable
* modifiers
* modifying
* multiple
* necessary
* normalized
* objectclass
* occurrence
* occurring
* offered
* operation
* original
* overridden
* parameter
* permanent
* preemptively
* printable
* protocol
* provider
* really
* redistribution
* referenced
* refresh
* regardless
* registered
* request
* reserved
* resource
* response
* sanity
* separated
* setconcurrency
* should
* specially
* specifies
* structure
* structures
* subordinates
* substitution
* succeed
* successful
* successfully
* sudoers
* sufficient
* superiors
* supported
* synchronization
* terminated
* they're
* through
* traffic
* transparent
* unsigned
* unsupported
* version
* absence
* achieves
* adamson
* additional
* address
* against
* appropriate
* architecture
* associated
* async
* attribute
* authentication
* authorized
* auxiliary
* available
* begin
* beginning
* buffered
* canonical
* certificate
* charray
* check
* class
* compatibility
* compilation
* component
* configurable
* configuration
* configure
* conjunction
* constraints
* constructor
* contained
* containing
* continued
* control
* convenience
* correspond
* credentials
* cyrillic
* database
* definitions
* deloldrdn
* dereferencing
* destroy
* distinguish
* documentation
* emmanuel
* enabled
* entry
* enumerated
* everything
* exhaustive
* existence
* existing
* explicitly
* extract
* fallthru
* fashion
* february
* finally
* function
* generically
* groupname
* happened
* implementation
* including
* initialization
* initializes
* insensitive
* instantiated
* instantiation
* integral
* internal
* iterate
 2017-10-11 14:39:38 -07:00
Zebediah Figura
cc99da182f ITS#8508 - Allow ucgendat.c to recognize title-case characters even if they do not have lower-case equivalents 
I, Zebediah Figura, hereby place the following modifications to OpenLDAP Software (and only these modifications) into the public domain. Hence, these modifications may be freely used and/or redistributed for any purpose with or without attribution and/or other notice.
 2017-10-11 14:32:16 -07:00
Nathaniel McCallum
29f6260364 ITS#7532 - Add new function ldap_connect(). 
This function is used to manually establish a connection after
a call to ldap_initialize(). This is primarily so that a file
descriptor can be obtained before any requests are sent for the
purposes of polling for writability.
 2017-10-11 14:31:22 -07:00
Jan Vcelak
cbf5f03476 ITS#7389 - MozNSS: load certificates from certdb, fallback to PEM 
If TLS_CACERT pointed to a PEM file and TLS_CACERTDIR was set to NSS
certificate database, the backend assumed that the certificate is always
located in the certificate database. This assumption might be wrong.

This patch makes the library to try to load the certificate from NSS
database and fallback to PEM file if unsuccessfull.
 2017-10-06 13:59:07 -07:00
Ian Puleston
46c93e41f4 ITS#8167 Fix non-blocking TLS with referrals 2017-10-06 13:57:13 -07:00
Quanah Gibson-Mount
35a880c53e ITS#8687 - EGD is disabled by default in OpenSSL 1.1. We need to comment out this block if it is not detected. Particularly affects cross compilation. 2017-10-06 13:48:40 -07:00
sca+openldap@andreasschulze.de
90835da72f ITS#8578 - remove unused-variables in RE24 testing call (2.4.45) 2017-10-06 10:45:08 -07:00
Jan Vcelak
19fd969d21 ITS#7374 - MozNSS: better file name matching for hashed CA certificate directory 
CA certificate files in OpenSSL compatible CACERTDIR were loaded if the
file extension was '.0'. However the file name should be 8 letters long
certificate hash of the certificate subject name, followed by a numeric
suffix which is used to differentiate between two certificates with the
same subject name.

Wit this patch, certificate file names are matched correctly (using
regular expressions).
 2017-10-06 10:44:13 -07:00
Jan Vcelak
acc5b88661 ITS#7373 - TLS: do not reuse tls_session if hostname check fails 
If multiple servers are specified, the connection to the first one
succeeds, and the hostname verification fails, *tls_session is not
dropped, but reused when connecting to the second server.

This is a problem with Mozilla NSS backend because another handshake
cannot be performed on the same file descriptor. From this reason,
hostname checking was moved into ldap_int_tls_connect() before
connection error handling.
 2017-10-06 10:44:07 -07:00
Hallvard Furuseth
ff2d7cc798 ITS#8733 Allow a raw integer to be decoded from a berval 2017-09-28 14:15:06 +01:00
Hallvard Furuseth
62811e8f65 ITS#8733 Allow extraction of the complete ber element 2017-09-28 14:14:55 +01:00
Quanah Gibson-Mount
43a039eba4 ITS#7428 - Non-blocking TLS is not compatible with MOZNSS 2017-09-26 10:59:08 -07:00
Ondřej Kuzník
a8f01cc885 ITS#8638 Add a recursive mutex to libldap_r for libevent 
Most thread implementations suppport a native recursive mutex, use that
where possible (especially when a regular mutex is recursive already).

Also provide a macro for applications to test whether they can use the
lock functions interchangeably.
 2017-09-26 16:26:33 +01:00
Quanah Gibson-Mount
c1512eea58 Fix typo "errror" -> "error" 2017-09-08 12:03:02 -07:00
Howard Chu
01a5eeac1d ITS#8727 plug ber leaks 2017-09-08 16:35:32 +01:00
Howard Chu
738723866e ITS#8717 call connection delete callbacks 
When TLS fails to start
 2017-09-06 21:46:09 +01:00
Howard Chu
af92b8d2ca ITS#8705 fix service pathname 
Strip trailing space of last pathname component, if any. Not first.
 2017-08-03 12:42:21 +01:00
Howard Chu
a58c01317c Merge remote-tracking branch 'origin/mdb.RE/0.9' 2017-06-01 17:52:15 +01:00
Howard Chu
60d500206a Release 0.9.21 2017-06-01 17:51:10 +01:00
Ryan Tandy
431c4af526 ITS#8648 init SASL library in global init 2017-05-07 21:29:44 +00:00
Ryan Tandy
e437b12277 ITS#8648 check result of ldap_int_initialize in ldap_{get,set}_option 2017-05-07 20:16:25 +00:00
Ryan Tandy
7b5181da8c ITS#8650 retry gnutls_handshake after GNUTLS_E_AGAIN 2017-05-06 22:50:13 +00:00
Howard Chu
38ac129e3a Fix pool_retract signature 
Omitted from e12ca8b6fe
 2017-04-21 14:39:17 +01:00
Quanah Gibson-Mount
42bc6ed991 ITS#8634 - Fix DES API function calls to current DES API 2017-04-14 12:27:14 -07:00
Howard Chu
9e051001d4 Add GnuTLS support for direct DER config of cacert/cert/key 
Followon to b402a2805f
 2017-04-10 00:21:08 +01:00
Howard Chu
13c39b98b5 Fixup handle_pause() 
Return -1 if running on the main thread - which means there
are no worker threads to pause.
 2017-04-09 15:39:44 +01:00
Howard Chu
2e011eeb67 Fixup cacert option 2017-04-09 15:39:13 +01:00
Howard Chu
83fb515555 Fixup cacert/cert/key options 
Add get_option support, allow delete by setting a NULL arg.
 2017-04-09 14:49:48 +01:00
Howard Chu
b402a2805f Add options to use DER format cert+keys directly 
Instead of loading from files.
 2017-04-09 00:13:42 +01:00
Quanah Gibson-Mount
eb8f1a7247 ITS#8353, ITS#8533 - Cleanup for libldap_r 2017-04-07 13:39:11 -07:00