Commit Graph

1856 Commits

Author SHA1 Message Date
Howard Chu
c102809fab Use ber_flatten2 to avoid excess mallocs 2002-12-18 19:16:31 +00:00
Howard Chu
6a37f1ae80 Added ber_flatten2 - uses passed in struct berval, allocates copy or
directly re-uses existing ber buf.
2002-12-18 19:15:27 +00:00
Howard Chu
464292b50c Remove unneeded sasl_ssf param from ldap_int_sasl_open(),
it's set by ldap_int_sasl_external().
2002-12-18 03:09:52 +00:00
Howard Chu
95a512f849 Fix typo in UDP logmsg 2002-12-16 18:17:20 +00:00
Hallvard Furuseth
f77c8b567e Remove a useless function pointer cast. 2002-12-16 12:02:54 +00:00
Hallvard Furuseth
ae28aa57b2 Remove a bad function pointer cast. 2002-12-16 09:18:20 +00:00
Hallvard Furuseth
2bcb48361d Remove casts of AVL function pointers. 2002-12-14 22:25:52 +00:00
Howard Chu
e42209dd77 Fix previous commit, fstat arg was wrong. 2002-12-11 10:58:02 +00:00
Hallvard Furuseth
3b591dd4f6 Fix const errors. 2002-12-11 08:30:29 +00:00
Kurt Zeilenga
56ebd53e51 expand authid buffer 2002-12-08 07:56:49 +00:00
Kurt Zeilenga
840e7f2c5c Include <ac/unistd.h> not <sys/types.h> and <unistd.h>
Use sizeof( string ) to determine buffer size
Put authzDN in same for as used on server
(We could, just as well, set authid to "fubar" as it matters
not what it is set to)
2002-12-07 18:32:40 +00:00
Pierangelo Masarati
58c18226e0 on my system need headers to define geteuid() and so 2002-12-07 17:32:33 +00:00
Howard Chu
cf6a9d9d0f For LDAP_PROTO_IPC set the SASL EXTERNAL authid to allow the mech to be
used by the client side. Please review.
2002-12-07 13:06:20 +00:00
Howard Chu
1363d4bf1a Fix prev commit - require passed descriptor to be a pipe (FIFO) and
require it to only be accessible by its owner, otherwise ignore it.
2002-12-04 20:50:19 +00:00
Howard Chu
d7c0a19aab Added check for sendmsg(). Added hack to use BSD sendmsg()/recvmsg() to
propagate peer creds if no explicit PEERCRED facility exists. Works
on Solaris 8.
2002-12-04 16:03:02 +00:00
Kurt Zeilenga
eb41333e4c Use getpeereid(3) where available else use *_PEERCRED replacment function 2002-12-04 06:17:32 +00:00
Kurt Zeilenga
c0f8e30d22 cleanup 2002-12-04 05:13:14 +00:00
Kurt Zeilenga
73b4170a6c Rework libldap to not attempt to set LDAP_API_FEATURE_X_OPENLDAP_THREAD_SAFE 2002-12-04 04:51:55 +00:00
Kurt Zeilenga
da76c1951e First-cut proxy authorization support. 2002-12-03 06:11:32 +00:00
Kurt Zeilenga
9ba95dd027 ITS#2221: getaddrinfo(3) not thread-safe on some platforms (namely
due to res_() routines).  Change all res_() dependent routines to
share same mutex.
2002-12-03 01:15:03 +00:00
Hallvard Furuseth
416aeb9347 Never let ldif_parse_line() return a NULL value with success. 2002-12-02 22:46:07 +00:00
Hallvard Furuseth
3121074ad7 Output from ldif_fetch_url() is expected to be \0-terminated. 2002-12-02 22:08:26 +00:00
Hallvard Furuseth
2dcf00b82f ldif_fetch_url() would return NULL value or pointless memory if file was empty 2002-12-02 21:46:58 +00:00
Kurt Zeilenga
1edcd14a79 Remove extraneous empty check 2002-12-02 18:46:53 +00:00
Hallvard Furuseth
cccc8702c6 Plug memory leak in ldif_parse_line() if ber_strdup( type ) failed && url. 2002-12-02 11:14:13 +00:00
Kurt Zeilenga
b215a1039b ITS#2218: fix empty values w/ spaces 2002-12-02 04:19:01 +00:00
Howard Chu
4056a8c8a7 Fix ITS#2200, must send non-NULL cred even if it's zero-length. 2002-11-28 16:15:27 +00:00
Kurt Zeilenga
661541fdfc Fix error handling 2002-11-28 04:36:22 +00:00
Kurt Zeilenga
5fe7d38e1c Add whoami.c and passwd.c and other minor tweaks to control cleanups 2002-11-28 02:44:38 +00:00
Kurt Zeilenga
235973571a proxy authz control (client only)
Misc control cleanups (client only)
2002-11-28 02:26:55 +00:00
Howard Chu
10a194feb5 ITS#2128, setvbuf is unreliable 2002-11-27 04:13:19 +00:00
Howard Chu
e721e6bec9 Fix ITS#2187, recursively free all requests 2002-11-27 03:57:36 +00:00
Howard Chu
1702d408bf ITS#2184 maxbuf tweaks from Larry Greenfield @ CMU 2002-11-27 03:51:46 +00:00
Kurt Zeilenga
6b42a33152 Reorder build order to ensure -llutil is available -llber and
-llber is available for -llunicode.  Add -llber to ucgendat
(to pick up snprintf).
2002-11-26 20:18:03 +00:00
Pierangelo Masarati
256f5bbe57 silence warnings 2002-11-10 19:57:16 +00:00
Howard Chu
5fe69447f8 Define DB_VERSION_X to make life easier when checking BDB versions. 2002-10-30 20:35:25 +00:00
Howard Chu
6b53b4c507 Plug memleak in previous commit 2002-10-24 23:51:34 +00:00
Howard Chu
ddfb4b775b Forced commit, undo previous accidental checkin. 2002-10-24 11:40:37 +00:00
Howard Chu
4396ad3316 ITS#2153, make sure sockbuf buffer is empty before returning (-2) from
try_read1msg. Blind fix, problem was not duplicated/tested.
2002-10-24 11:39:06 +00:00
Howard Chu
e2d245e698 Fix comment garbled in 2.1.6. (Very weird, how did this happen?) 2002-10-23 02:45:44 +00:00
Kurt Zeilenga
9cfcdc432b Fix ITS#2142 2002-10-17 16:55:42 +00:00
Kurt Zeilenga
75e1620ee4 Add copy of OPL 2.0.1 and note in files which specifically refer
to 2.0.1 as to the location to the copy.
2002-10-15 23:22:20 +00:00
Kurt Zeilenga
63e7c9e796 first cut at ditStructureRule and nameForm routines 2002-10-13 01:36:58 +00:00
Howard Chu
82eed24c3d Prefer thr_yield over sched_yield for Solaris 2002-10-12 01:21:21 +00:00
Howard Chu
a9fed89e3f In sb_tls_bio_read/write, check for EAGAIN in addition to EWOULDBLOCK.
According to read(2)/write(2) EAGAIN is the only one we're interested in.
Fixes HP-UX 11.
http://www.openldap.org/lists/openldap-software/200105/msg00564.html
2002-10-11 06:22:24 +00:00
Kurt Zeilenga
93046479ae better check of snprintf result 2002-10-11 02:51:09 +00:00
Luke Howard
a4ace0ba68 Fix crasher in ldap_domain2dn() 2002-10-10 08:59:19 +00:00
Kurt Zeilenga
cf318d2340 Add ditContentRule routines 2002-10-09 02:56:46 +00:00
Kurt Zeilenga
2a8d73e25a Bump EXBUFSIZ up a bit 2002-10-08 20:56:03 +00:00
Kurt Zeilenga
f833b02518 Fix realloc() bugs 2002-10-08 20:37:30 +00:00
Kurt Zeilenga
873a6802ab Plug memory leak (ITS#2126) 2002-10-08 19:45:01 +00:00
Howard Chu
e37ccca9aa Fix ldap_int_get_controls for optional values 2002-10-07 19:58:10 +00:00
Kurt Zeilenga
06aa7d8d43 Include <ac/bytes.h> after <ac/stdlib.h> to avoid problems
Linux on Alpha problems
2002-10-02 20:57:05 +00:00
Kurt Zeilenga
14ab87b54a MacOS 10.1 pthread_kill() workaround 2002-10-02 20:10:55 +00:00
Kurt Zeilenga
491e75548c ITS #2121 submitted by Dave Steck <dsteck@novell.com> with minor changes.
Patch to allow referrals to be read on synchronous non-search operations.
Treat referrals the same way as MatchDN or ErrorString values.
Store them in the ld structure and provide an option for ldap_get_option
to retrieve them
2002-10-02 19:14:02 +00:00
Kurt Zeilenga
ba6d2c5cc0 ITS#1502: fix NS-MTA-MD5 typo 2002-09-24 21:21:35 +00:00
Kurt Zeilenga
bbbf2f4ca7 Fix handling of non-critical controls for backends which
support no controls.
2002-09-24 18:20:59 +00:00
Howard Chu
9a8eadb9de Fix return values, set stack size. (Default is only 64K, far too small.)
Fixes the SEGVs from stack overrun, but slapd tends to get hung in select.
2002-09-21 01:41:45 +00:00
Howard Chu
2e6a83049e POSIX threads tweaks for Draft 4 vs Draft 5 2002-09-12 23:12:18 +00:00
Howard Chu
dfa8bdec60 Fine-tuning pthreads revision dependencies 2002-09-11 07:24:21 +00:00
Howard Chu
890d4b9449 Moved stdio replacements from liblutil lutil_* to liblber ber_pvt_*. 2002-09-10 00:47:32 +00:00
Kurt Zeilenga
007b618d99 Should resolve ITS#2071 2002-09-07 18:27:57 +00:00
Howard Chu
c9b7fc6407 New POSIX threads version support. Detects Draft 4,5,6,7,10 (final).
Should eliminate individual checks for pthread_yield, sched_yield,
and pthread_detach, but they're left in for now as a redundant check.
2002-09-07 14:09:09 +00:00
Kurt Zeilenga
11761fa6ca Add NT-MTA-MD5 Support.
Based, in part, from ITS#1502 submission from John Morrissey.

Copyright 2001, John Morrissey (jwm at horde dot net), All rights reserved.
This is free software; you can redistribute and use it under the same terms
as OpenLDAP itself.
2002-09-07 01:51:12 +00:00
Howard Chu
4d8a2e2815 Remove dependencies on HAVE_VSNPRINTF, use replacement in liblutil/stdio.c
if needed. Same check for snprintf.
2002-09-06 20:54:22 +00:00
Howard Chu
ee30206bc2 Merged ldap_get_values_ber into ldap_get_attribute_ber. 2002-09-06 04:57:21 +00:00
Howard Chu
6a903bc1e5 Added new ldap_get_{dn,attribute,values}_ber functions for linearly
processing a search entry. Avoids O(n^2) ldap_get_values() behavior.
2002-09-05 11:33:32 +00:00
Howard Chu
af05dd5511 Set SSL session cache context ID 2002-09-04 07:17:31 +00:00
Howard Chu
f83d30a727 Fix previous commit - still need X509_free for peer cert.
Just not for local/my cert.
2002-09-04 02:28:42 +00:00
Kurt Zeilenga
a83cc88edd Move ldap_control_dup() to ldap_pvt.h 2002-09-04 02:14:12 +00:00
Howard Chu
5d062ef54c Don't call X509_free after SSL_get_certificate, it's not a duplicate. 2002-09-04 01:56:09 +00:00
Howard Chu
3099d89d9e Don't use sasl_set_alloc on Cyrus 2, it manages all of its memory
internally and we don't want to get in the way.
2002-09-02 22:25:26 +00:00
Howard Chu
90b1e7bd45 Fix ldap_X509dn2bv, OpenSSL gives us DN attributeTypes in EBCDIC 2002-09-02 13:46:56 +00:00
Pierangelo Masarati
bcf7b47079 silence warnings 2002-08-31 10:54:58 +00:00
Pierangelo Masarati
aea52e5bc9 define macros for appropriate sizing of lutil buffers 2002-08-31 10:48:02 +00:00
Pierangelo Masarati
c76b36254c cleanup comments 2002-08-31 10:41:49 +00:00
Pierangelo Masarati
b8e6b2536a silence debug check 2002-08-31 10:41:11 +00:00
Howard Chu
17493164ea Fix previous commit 2002-08-31 06:23:46 +00:00
Howard Chu
e3304da727 OS/390 EBCDIC support 2002-08-31 05:14:43 +00:00
Howard Chu
d11b134709 Fix large SASL reads. Use EAGAIN instead of EWOULDBLOCK (was right the
first time after all. see read(2) and write(2)...)
2002-08-30 10:11:54 +00:00
Kurt Zeilenga
2de5c33ba7 Add manageDsaIt/NOOP control support to every tool.
Update NT build.
2002-08-29 21:52:45 +00:00
Pierangelo Masarati
3b799694ee reworking of threads in session handling 2002-08-29 19:44:02 +00:00
Pierangelo Masarati
864f05497e allow different solutions to debug sasl shutdown 2002-08-29 17:45:12 +00:00
Pierangelo Masarati
c2efb8788b when shutting down a server with open connections (back-{ldap,meta}),
the backend attempts a ldap_unbind() that results in calling
ldap_pvt_sasl_mutex_lock() with a NULL argument, causing a SIGSEGV.
I added a few assert() to catch this (I wonder if this might
be related to ITS#1982 "kill -INT corrupts database").
2002-08-29 16:03:38 +00:00
Howard Chu
1dd1c375bb Fix previous commit - use EWOULDBLOCK instead of EAGAIN 2002-08-29 13:38:36 +00:00
Howard Chu
456e6c73ab Fix ITS#1983, handle writing of large requests. Only one pending request is
allowed per LDAP* handle. It works, but needs review.
2002-08-29 12:12:36 +00:00
Pierangelo Masarati
519bf9e28a cleanup logging 2002-08-29 10:42:42 +00:00
Howard Chu
010dbff2cc Fix ITS#1983, in sb_sasl_write, set errno = EAGAIN to tell upper layers to
retry partial writes
2002-08-29 10:12:35 +00:00
Howard Chu
536019beb4 For ITS#1983, in ber_pvt_sb_do_write, partial writes are not failures 2002-08-29 09:46:19 +00:00
Howard Chu
5ec4ef6e59 Added no-op for SASL_VERSION_MAJOR < 2 2002-08-28 08:35:38 +00:00
Howard Chu
3cb7a09eb0 Added check for Cyrus SASL sasl_version() 2002-08-28 07:12:22 +00:00
Julius Enarusai
48593e1484 Fix compile error when --without-threads configure option is set. Function
headers differ from prototypes in ldap_pvt_threads.h
2002-08-26 19:26:09 +00:00
Kurt Zeilenga
7dc1e069e8 Increase res_query buffers to 64k 2002-08-24 17:03:24 +00:00
Kurt Zeilenga
8de258d2e2 Patch: 'ldapmodify -y file' reads password from file (ITS#2031)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
            ================
Adapted by Kurt Zeilenga for inclusion in OpenLDAP.  My comments are
marked with enclosed with square brackets (e.g. [Kurt's comment] below.
            ================

If I run ldapmodify & co from a script, I don't want to use '-W password'
because the password shows up in the output of 'ps' for everyone,
and I can't pipe the password to 'ldapmodify -w' because -w uses
getpassphrase() which reads from the tty instead of stdin.
So I added '-y file' which reads the password from file.  The programs
exit if the file cannot be read.

[Complete contents of file is used as password.  Use:
	echo -n "secret" > password
to create a file with "secret" as the password.  The -n avoids
adding a newline (which would invalidate the password).  Note
that echo is a builtin and hence its arguments are not visible
to 'ps'.]

I changed ldapmodify, ldapmodrdn, ldapdelete, ldapsearch, ldapcompare.
I did not bother to change ldappasswd and ldapwhoami, because they
prompt for many passwords.  [I fixed up ldapwhoami.]

Rerun autoconf after applying this patch. [Done.]

Note:  I do not know if Windows NT has fstat(), so I set HAVE_FSTAT to
undef in portable.nt.  (fstat() is used to warn if the file is publicly
readable or writeable.)  [I used fstat() to set the buffer size to
read.]

[Note: using the contents of a file extends the tools to support
passwords which could not normally be provided using getpassphrase()
or via the command line.]

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, Aug 2002.
[Kurt D. Zeilenga <kurt@openldap.org>, Aug 2002.]
2002-08-24 05:47:17 +00:00
Howard Chu
8c30114d84 Added thread-pool getkey/setkey functions 2002-08-24 05:39:43 +00:00
Kurt Zeilenga
86717ac2d9 NT port fixes 2002-08-24 00:37:59 +00:00
Pierangelo Masarati
4046c4226e add upper/lower funcs that also compute the length of the string (not used yet) 2002-08-23 08:45:17 +00:00
Howard Chu
3b9f4a82ee Added support for BDB 4.1.17 2002-08-22 04:00:06 +00:00
Jong Hyuk Choi
b81122d441 Slapadd is changed to include Operational Attributes (entryUUID, entryCSN,
creatorsName, modifiersName, createTimestamp, modifyTimestamp) when it adds
from ldif file. Month field in time format in entryCSN is changed to 1~12.
2002-08-21 00:11:32 +00:00
Kurt Zeilenga
678d686017 make dc const 2002-08-17 19:59:35 +00:00
Kurt Zeilenga
472484725f Update dn2domain() to use str2dn() instead of explode_dn() 2002-08-17 19:42:59 +00:00
Kurt Zeilenga
a500feb4a6 Patch: lutil_progname() and lutil_strcopy() are not declared (ITS#2021)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

lutil_progname() and lutil_strcopy() are not declared, which can
be fatal since they do not return int.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, Aug 2002.
2002-08-13 02:33:20 +00:00
Howard Chu
771974f99d ITS#2019 Initialize utils properly 2002-08-10 23:34:55 +00:00
Kurt Zeilenga
ca5aa3b615 Some more sockaddr_in v sockaddr_storage cleanup 2002-08-10 03:48:09 +00:00
Howard Chu
4c69827b15 ITS#2016 possibly better macro test for this fix 2002-08-10 00:32:25 +00:00
Howard Chu
66d9bf404b ITS#2016 Don't include <openssl/des.h> if we're also including <krb.h>. 2002-08-10 00:22:52 +00:00
Kurt Zeilenga
b3bbe586b6 ITS#2018: use sockaddr_storage
based upon patch provided by <thorild@Update.UU.SE>
2002-08-09 22:14:43 +00:00
Kurt Zeilenga
9c28c9b361 Zap LDAPv2-only stuff 2002-08-08 03:01:14 +00:00
Howard Chu
6226684204 Eliminate an unnecessary malloc/free 2002-08-07 00:47:57 +00:00
Howard Chu
1c69a2ab2b ITS#1998 ber_mem2bv should accept 0-length calls, just like ber_strdup. 2002-08-06 02:35:51 +00:00
Kurt Zeilenga
9c9bd4d5ab Set O_EXCL 2002-08-05 19:49:27 +00:00
Howard Chu
91aff0b3e2 Revert previous commit. Fix needs more design. 2002-08-01 07:09:11 +00:00
Howard Chu
d9eac72099 ITS#1995 return error text when ldap_pvt_tls_check_hostname fails 2002-08-01 03:23:29 +00:00
Howard Chu
478283ea47 ITS#910, ITS#1983 retry partial writes in ber_pvt_sb_do_write
blind fix, needs testing
2002-08-01 03:03:52 +00:00
Kurt Zeilenga
dc4413349e Fix up restart code for EINTR 2002-07-28 05:30:39 +00:00
Howard Chu
f2af8dfdd7 If HAVE_EBCDIC, translate dbname from ASCII to EBCDIC in ldbm_open. 2002-07-27 04:43:48 +00:00
Howard Chu
db8aec69e2 test programs need -llutil 2002-07-27 03:20:47 +00:00
Howard Chu
0fcec3a01c test programs need -llutil 2002-07-27 03:06:15 +00:00
Howard Chu
3b141ba108 Fix segfault from ITS#1960 hacks 2002-07-27 02:19:44 +00:00
Howard Chu
155c16484b Moved slap_strcopy, slap_strncopy to lutil_strcopy, lutil_strncopy
Added lutil_gentime, moved lutil_vsnprintf to stdio.c
2002-07-27 00:25:16 +00:00
Howard Chu
f969443fb7 Additional tweak for HAVE_PTHREADS_OS390 2002-07-27 00:12:39 +00:00
Kurt Zeilenga
89b3550f95 Clarify error messages 2002-07-26 17:35:57 +00:00
Howard Chu
2db6e4e97e Must include <stdio.h> for prototypes 2002-07-26 13:21:27 +00:00
Howard Chu
84b91f70ad Minor uniformity tweaks, use lutil_progname, don't use fscanf 2002-07-26 03:22:53 +00:00
Howard Chu
42ef1aab4d Make liblutil before liblunicde, ucgendat needs liblutil 2002-07-26 03:17:21 +00:00
Howard Chu
1a0ca2195e Moved <stdio.h> before <ac/stdlib.h> 2002-07-26 03:16:21 +00:00
Howard Chu
cc8aa38d7d Some tweaks for OS/390 pthreads. Func signatures are different, return
val is 0/-1 with err in errno instead of in return val.
2002-07-26 03:15:25 +00:00
Howard Chu
a20390528d Fix previous commit, "data" disappeared... 2002-07-26 03:14:13 +00:00
Howard Chu
f0b25d7b2c Conditionalize use of vsyslog 2002-07-26 02:56:01 +00:00
Kurt Zeilenga
ee705326d4 More 64-bit hacking...
This code should be rewritten to avoid fixed sized types.
2002-07-25 15:00:31 +00:00
Howard Chu
5dc098dab0 Wrap get_ca_list opendir code with #if HAVE_DIRENT_H || dirent to avoid
compile errors on incompatible build platforms.
2002-07-24 19:36:03 +00:00
Kurt Zeilenga
45c9cbafe3 Clean up last commit 2002-07-23 18:41:30 +00:00
Kurt Zeilenga
e6460769ab Misc sprintf/snprintf cleanup 2002-07-23 18:26:33 +00:00
Kurt Zeilenga
b6bbc69e2f Short term fix for ITS#1960
Code really should be changed to write only 'unsigned int's
with simple sanity check.
2002-07-23 18:22:58 +00:00
Howard Chu
1a8d570c08 Added vsnprintf, snprintf implementations. 2002-07-19 17:33:14 +00:00
Howard Chu
dc1773dbd4 pw_gecos depends on HAVE_PW_GECOS 2002-07-19 14:25:37 +00:00
Howard Chu
3fd49c39ec Must include <stdio.h> since <rewrite.h> uses FILE *. 2002-07-19 14:24:53 +00:00
Stig Venaas
26b33bf614 Fixes ITS#1935 2002-07-16 02:38:14 +00:00
Stig Venaas
bf5e3a15ca Use AF_INET instead of AF_UNSPEC when IPv6 disabled 2002-07-12 15:36:33 +00:00
Julius Enarusai
a6730db3e9 debug.c file moved from liblutil to liblber due to changes in LDAP_LOG macro and global variable ldap_logvels 2002-07-11 23:26:34 +00:00
Julius Enarusai
6107ba67d2 Coverted LDAP_LOG macro to use subsystem ID int values instead of string values 2002-07-11 20:33:24 +00:00
Howard Chu
2adfd47e88 Fix SEGV on single-byte connection input 2002-07-11 12:26:35 +00:00
Kurt Zeilenga
7592a9b9c7 make sure we don't test against stored values starting with "{" 2002-07-10 22:04:14 +00:00
Kurt Zeilenga
7259718466 ITS#1916: fix fscanf EOF bugs 2002-07-09 01:00:56 +00:00
Kurt Zeilenga
d401bf956f ITS#1922: add references.lo 2002-07-09 00:34:41 +00:00
Kurt Zeilenga
d13285fdd8 Fix possible under allocation of buffer 2002-07-08 18:45:53 +00:00
Howard Chu
07ffaeaac8 ITS#1924 use GENERAL_NAMES_free instead of ext_free. 2002-07-05 21:59:02 +00:00
Kurt Zeilenga
2de291ed6e Cut back on the logging... 2002-06-21 19:49:25 +00:00
Kurt Zeilenga
cdce8064e5 ITS#1898: ldap_controls_dup() writes beyond allocated memory
patch suggested by Dave Steck <dsteck@novell.com>
2002-06-21 19:14:37 +00:00
Kurt Zeilenga
0371c61073 Add monitorContext rootDSE attribute 2002-06-19 06:44:16 +00:00
Howard Chu
5e6c17bb2b ITS#1891 in ber_flush, no-op if towrite == 0 2002-06-18 01:00:27 +00:00
Howard Chu
6f8b100f6b Finish implementation of get_ca_list() 2002-06-14 06:09:24 +00:00
Howard Chu
56cba7f97c In ldap_extended_operation_s, check for NULL retoidp and retdatap
before storing NULL.
2002-06-13 16:26:47 +00:00
Kurt Zeilenga
56bbe05490 Add {CLEARTEXT} password-hash support 2002-06-12 00:43:34 +00:00
Kurt Zeilenga
fe86a81e25 VLV clean 2002-06-09 06:12:24 +00:00
Howard Chu
a1e63db574 Fix ITS#1865, (ITS#1764?) cond_broadcast behavior was broken 2002-06-07 22:45:22 +00:00
Howard Chu
70092b38fb Fix ITS#1843, don't deref NULL string in ldap_pvt_str2upper 2002-06-07 13:27:25 +00:00
Howard Chu
8101798791 Better SASL_MAXBUF fix 2002-06-07 03:40:16 +00:00
Howard Chu
353f627aa4 Eliminate SASL client session_callbacks. Since proc was always NULL they
never did anything anyway.
2002-06-06 01:44:38 +00:00
Kurt Zeilenga
2c7dae116b More argument handling updates
(don't check what we expect applications to check).
2002-06-06 00:26:50 +00:00
Kurt Zeilenga
1064f52dae Fix typo in last commit 2002-06-05 16:39:15 +00:00
Kurt Zeilenga
40ef77a8f8 Add error handling cleanup 2002-06-05 15:51:42 +00:00
Kurt Zeilenga
99f5983fb6 Consistently don't check for NULL session handle and other pointers.
Application is responsible for providing valid session pointers.
2002-06-05 15:46:26 +00:00
Kurt Zeilenga
131470685f /dev/urandom re-read(2) loop 2002-06-03 16:43:57 +00:00
Kurt Zeilenga
771a131b0d Fix unprotected list modification 2002-05-31 20:22:44 +00:00
Howard Chu
a348f46e56 Use LDAP_REWRITE_V, not LDAP_V 2002-05-18 01:29:18 +00:00
Howard Chu
7de25993f5 Fix NT_LINK_LIBS, UNIX_LINK_LIBS 2002-05-17 23:41:26 +00:00
Kurt Zeilenga
c3a59a6407 Remove sys/uio.h include 2002-05-15 05:53:10 +00:00
Howard Chu
b2e731a3e0 Win32 fix from Kervin Pierre 2002-05-11 18:15:07 +00:00
Howard Chu
9979d200db Fleshed out debug2syslog 2002-05-10 17:48:54 +00:00
Howard Chu
2ca4b0ebfc ITS#1806, Cyrus 1 doesn't give back our callbacks pointer, must stash it
ourselves.
2002-05-06 23:56:35 +00:00
Howard Chu
ae3a80eb09 Fix in 1.50 applies to Cyrus 1 as well as Cyrus 2. 2002-05-05 19:15:29 +00:00
Kurt Zeilenga
f9687f6c2a Patch: incomplete 'make clean' in liblunicode (ITS#1791)
In liblunicode, 'make clean' and 'make distclean' do not remove
the symlinks ucdata.h and ure.h.

from Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>
2002-05-04 23:13:51 +00:00
Howard Chu
e8e7847175 ITS#1797 silence uninit'd var warnings 2002-05-04 10:52:05 +00:00
Howard Chu
3590877b77 Initialize authid in case ldap_pvt_tls_get_my_dn fails 2002-05-04 01:32:41 +00:00
Howard Chu
0390a171b9 Changed default tls_opt_require_cert value to LDAP_OPT_X_TLS_DEMAND; force
a fatal error when TLS server cert verification fails.

Changed ldap_pvt_tls_check_hostname to return LDAP_SUCCESS when no cert is
found: this can now only occur if tls_opt_require_cert was explicitly set
to NEVER or ALLOW.

In tls_verify_cb, added a text translation of the verification error code
to the debug message.
2002-05-04 00:05:48 +00:00
Howard Chu
6c1a786d6c Fix previous commit, wrong if condition 2002-05-03 13:07:42 +00:00
Howard Chu
ed871b997c Break up large SASL writes into units of SASL maxoutbuf size. 2002-05-03 13:04:55 +00:00
Howard Chu
931c4eb35f For Cyrus 2, cannot free session_callbacks in ldap_int_sasl_open, must
wait until ldap_int_sasl_close because SASL doesn't copy our structure,
it uses it directly.
2002-05-03 12:10:47 +00:00
Kurt Zeilenga
8c152396b9 Matched Values implementation (ITS#1776) based upon submission
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
	add testxxx-matchedvalues
	rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
2002-05-02 18:56:56 +00:00
Howard Chu
b732d3ec55 Fix previous commit, only zero out v3 refer_cnt if we got a SEARCH_RESULT.
If we got a SEARCH_REFERENCE, we need to keep going...
2002-05-02 12:08:19 +00:00
Kurt Zeilenga
d82d018f20 add an RFC 2849 check... but behind #if 0 as I'm now thinking this
is not appropriate.
2002-05-01 04:40:26 +00:00
Kurt Zeilenga
96483c8dcd cleanup before working on changes 2002-05-01 04:23:59 +00:00
Howard Chu
c9699c1072 Fix previous commit - must fully init newAVA 2002-04-30 14:43:05 +00:00
Howard Chu
b005540094 Added ldap_ucs_to_utf8s to convert ASN.1 T61STRING, BMPSTRING, and
UNIVERSALSTRING to UTF-8 format.

Rewrote ldap_X509dn2bv to check ASN.1 types and use above function.
2002-04-30 13:57:01 +00:00
Howard Chu
de3e81cebb Changed ldap_pvt_tls_get_my_dn and ldap_pvt_tls_get_peer_dn to store result
in dn parameter and return a result code.
2002-04-30 13:50:56 +00:00
Pierangelo Masarati
d019bff7b8 First commit of Hallvard's backend documentation effort
Backend documentation patch, version 1

================
Most of this text is taken from OpenLDAP.  The work of rewriting it
to manual pages is done by by Hallvard B. Furuseth and placed into
the public domain.  This software is not subject to any license of
the University of Oslo.
================

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
2002-04-29 20:24:29 +00:00
Stig Venaas
e08bc054c7 Adding support for compatibility decomposition to ucdata lib, and switch
from NFC to NFKC in UTF8bvnormalize() and UTF8bvnormcmp()
2002-04-19 12:59:57 +00:00
Howard Chu
5528772f23 In ldap_int_tls_start, authid is very temporary, not const. 2002-04-19 04:35:16 +00:00
Howard Chu
202aa8c793 Fix memory leak in previous commit 2002-04-18 16:02:02 +00:00
Howard Chu
17ae956518 Added ldap_X509dn2bv()
deleted ldap_pvt_tls_get_peer()
  changed ldap_pvt_tls_get_peer_dn() to use ldap_X509dn2bv()
  added ldap_pvt_tls_get_my_dn()
2002-04-18 12:29:30 +00:00
Howard Chu
315ac06912 Fix warnings from sasl_errdetail 2002-04-18 12:20:55 +00:00
Howard Chu
98a416b584 Additional error reporting for Cyrus SASL 2. Attempt to get SASL-EXTERNAL
working ifor Cyrus 2. (Both GSSAPI and EXTERNAL are broken at the moment.)
2002-04-18 00:48:36 +00:00
Howard Chu
dc3e5fb99d ITS#818, ITS#980, ITS#1234 ldapsearch/referral hang - set refer_cnt to 0
after v3refs have been chased. They are fully processed by the time we get
back, so we should just return the current result message to the caller.
2002-04-16 12:53:13 +00:00
Howard Chu
491d2ae5b9 ITS#1720 chk_sasl for Cyrus SASL 2 2002-04-16 04:05:51 +00:00
Kurt Zeilenga
709ce4fa6c Re: Patch: ctype functions require 'unsigned char' args (ITS#1678)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

Here are fixes for more places where the argument to ctype.h functions
should be in the range of `unsigned char'.

Explanation of the last patch (to schema_init.c:bvcasechr()):
TOLOWER() and TOUPPER() return values in the range of `unsigned char',
but bvcasechr() then compares those values with a plain `char'.  So I
convert the return values from TOLOWER()/TOUPPER() to `char' first.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
2002-04-15 20:42:42 +00:00
Kurt Zeilenga
319440033f Patch: ucdata 2.4 bugs (ITS#1751)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

ucgendat.c accessed unallocated memory when i == ncodes_size.

The changes others are trivial, I just include them since I'm patching
ucdata anyway:

ucdata.c   had some pointless '0 <= unsigned' comparisons.

ucstr.c    assigned a long* to an unsigned long*.  Since malloc()
           returns void*, the result need not be cast at all.

I'll send the ucgendat.c and ucdata.c patches to Mark Leisher
<mleisher@crl.nmsu.edu>.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
2002-04-15 20:39:22 +00:00
Kurt Zeilenga
02e8527248 Patch: Escape character troubles (ITS#1753)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

maildap could address buf[-1] if len was < 2.

REWRITE_SUBMATCH_ESCAPE is '%', not '\'.

librewrite and saslautz could walk past the end of a string which
ended with an escape character.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
2002-04-15 18:29:39 +00:00
Howard Chu
bb17493d31 ITS#1732 signed/unsigned fixes 2002-04-11 08:47:37 +00:00
Pierangelo Masarati
4a2b9b2195 ITS#1730 2002-04-08 18:39:23 +00:00