mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
20,170 Commits 38 Branches 307 Tags 74 MiB
430256fafb
Commit Graph

1761 Commits

Author SHA1 Message Date
Howard Chu
86b5de38be ITS#5812 add SASL_NOCANON / -N option 2008-11-21 03:30:15 +00:00
Howard Chu
0bd6ce1062 ITS#4750 only read LDAP_CONF_FILE if geteuid() != getuid() 2008-11-21 02:15:47 +00:00
Pierangelo Masarati
2eeefd4985 check for bogus params to an LDAP routine (ITS#5817) 2008-11-18 16:27:50 +00:00
Hallvard Furuseth
c7002ffed5 ITS#5815: Fix typo "#elif defined( MAXHOSTNAMELEN". 2008-11-16 22:52:56 +00:00
Howard Chu
36124c715a ITS#5789 GNUtls - allow CN matches against IP addresses 2008-11-04 11:21:52 +00:00
Howard Chu
24078323e2 ITS#5739 fix for ITS#4879 was too eager about IPv6 detection 2008-11-03 15:44:49 +00:00
Hallvard Furuseth
8690650121 ITS#4467: Fix ptr += snprintf buffer overflow tests (made out-of-range ptr). 
Also avoid a buf[BUFSIZ] initialization.
 2008-10-24 13:11:10 +00:00
Pierangelo Masarati
6bedf74c41 tag optional stuff 2008-10-22 23:38:09 +00:00
Pierangelo Masarati
91e14ca638 add support for (experimental) dereference control (ITS#5768); need to re-run autoconf (and autoheader?) 2008-10-22 22:19:49 +00:00
Pierangelo Masarati
2b95616768 missing $OpenLDAP$ header 2008-10-22 21:57:28 +00:00
Ralf Haferkamp
e8c1147b77 reset ld->ld_errno to avoid returning error codes of previously API calls (ITS#5762) 2008-10-21 16:17:41 +00:00
Hallvard Furuseth
08852acb80 Warning cleanup: signed meets unsigned, remove assert(unsigned >= 0). 2008-10-17 23:24:48 +00:00
Hallvard Furuseth
b464a790b8 Fix Debug(%d, scred->bv_len or -1) -> Debug(%ld, (long) scred->bv_len or -1L). 
Cast sasl_encode() arg from unsigned char* to char*.
Warning cleanup: signed meets unsigned.
 2008-10-17 20:46:44 +00:00
Hallvard Furuseth
1c85cf3c88 Warning cleanup: signed meets unsigned. ber_flatten2() returns -1 on 
error, not LBER_ERROR.
 2008-10-13 08:44:54 +00:00
Howard Chu
9078381252 Cleanup unused defs 2008-10-09 11:33:49 +00:00
Howard Chu
4294664aad ITS#5369 SASL/GSSAPi refactoring from Stefan Metzmacher <metze@samba.org> 
and Rafal Szczeniak <mimir@samba.org>, with minor cleanups
 2008-10-09 11:10:28 +00:00
Howard Chu
f7484f78e6 ITS#5369 SASL/GSSAPi refactoring from Stefan Metzmacher <metze@samba.org> 
and Rafal Szczeniak <mimir@samba.org>, with minor cleanups
 2008-10-09 10:51:28 +00:00
Howard Chu
b2432fdbf2 Add SASL_MECHLIST option to retrieve list of known SASL mechs 2008-10-09 09:28:39 +00:00
Howard Chu
c51252633b Accept X-starttls for prev commit 2008-10-07 03:13:00 +00:00
Howard Chu
809548c88b Handle StartTLS in URL extensions 2008-10-07 03:06:44 +00:00
Howard Chu
99186a90e0 Fix prev commit 2008-09-30 22:22:31 +00:00
Howard Chu
721264db13 ITS#5720 fix ldap_utf8_strchr arguments 2008-09-30 05:05:53 +00:00
Ralf Haferkamp
0f4f9c9c13 Avoid "label at end of compound statement" error of newer gcc 2008-09-19 12:58:00 +00:00
Pierangelo Masarati
43ae03fc10 silence warnings 2008-09-16 14:10:02 +00:00
Howard Chu
cc94023c98 ITS#5677 s/TLS_CRL/TLS_CRLFILE/ 2008-09-02 22:10:44 +00:00
Howard Chu
0dbeb1d87b Pass LDAPURLDescs to connect functions instead of host/port 2008-08-15 22:53:47 +00:00
Howard Chu
46049f1d13 Fix prev commit 2008-08-15 10:53:11 +00:00
Howard Chu
baad2b249d Connect callbacks need error recovery checks 2008-08-15 10:23:29 +00:00
Howard Chu
80d1dba901 Add LDAP_OPT_CONNECT_CB connection callbacks 2008-08-14 04:54:32 +00:00
Howard Chu
a225b02f17 Modular TLS support, proof of concept. tls2.c would replace tls.c, 
but I'm leaving tls.c intact for now.
 2008-08-13 16:18:51 +00:00
Howard Chu
27fc008761 Protect errno values from Debug 2008-07-02 16:43:51 +00:00
Howard Chu
7e4ba700f1 ITS#5585 GnuTLS key strength is in bytes, we expected bits 2008-06-30 23:32:35 +00:00
Howard Chu
9ef6cc3cd4 ITS#5577 GnuTLS CRL result >0 is success 2008-06-24 20:14:30 +00:00
Pierangelo Masarati
7e3c9a07e9 add client API for assertion control (ITS#5560) 2008-06-14 17:49:47 +00:00
Howard Chu
99160d7c20 ITS#5542 fix loop iterator 2008-05-30 17:29:47 +00:00
Howard Chu
19d7e565f0 ITS#5318 drop invalid msgids, cleanup msgid logging 2008-05-28 01:19:43 +00:00
Howard Chu
96550c885d ITS#5518,#5525 cleanup ld_defconn if it was freed 2008-05-23 09:53:42 +00:00
Hallvard Furuseth
1fc3f1c130 ITS#5507: Set FD_CLOEXEC (close on exec) flag on LDAP file descriptors 2008-05-15 20:56:41 +00:00
Howard Chu
8810ef26b6 ITS#5458 fix error message for missing closing paren 2008-04-10 18:36:15 +00:00
Hallvard Furuseth
c55a06254f ITS#5436: make htons() port number unsigned 2008-03-18 21:12:00 +00:00
Howard Chu
68316527c4 ITS#5341 GnuTLS ciphersuite parsing 2008-02-10 11:58:16 +00:00
Pierangelo Masarati
b0b387e9ed ITS#5338 2008-01-25 00:00:30 +00:00
Howard Chu
5cf0b5175b ITS#5324 don't use %n 2008-01-11 06:39:50 +00:00
Hallvard Furuseth
2660518c5d ldap_int_bisect_find(): Silence harmless "may be used uninitialized" warning 2008-01-10 18:34:40 +00:00
Ralf Haferkamp
5a143df3ce Corrected memory allocation for cookie (ITS#5315) 2008-01-09 13:28:09 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Howard Chu
f41322d8ef Fix prev commit 2008-01-03 08:25:58 +00:00
Pierangelo Masarati
859c6d03c0 fix to ITS#5304 2008-01-02 17:30:40 +00:00
Howard Chu
cd673c2ff2 ITS#5300, reject substring filters with empty values 2007-12-29 02:32:22 +00:00
Howard Chu
4c9af232d2 Cleanup spaces 2007-12-20 02:46:59 +00:00
Howard Chu
8ddc2dd773 ITS#5291, more for rev 1.79 search timeouts 2007-12-20 02:46:13 +00:00
Howard Chu
33c0301b25 Better fix to prev commit 2007-12-17 07:11:24 +00:00
Hallvard Furuseth
e4ffd33f1a Declare enough buffer space for out-of-range URL port numbers 2007-12-15 23:36:22 +00:00
Pierangelo Masarati
20f2548c82 fix declarations of buffers for numeric strings; other related cleanup 2007-12-15 15:23:23 +00:00
Howard Chu
da53cd0c40 uid/gid are unsigned 2007-12-15 02:28:45 +00:00
Howard Chu
f02d481426 ITS#5263 fix return code from parse_sasl_bind_result() 2007-12-15 02:06:12 +00:00
Howard Chu
5418b51643 Quiet request logging 2007-10-10 05:17:49 +00:00
Howard Chu
cbb6f3bd50 ITS#5100 ldap_control_dup - OID must be non-NULL 2007-10-09 01:38:50 +00:00
Howard Chu
65db0bf8eb ITS#3864 use sasl_ssf_t where expected 2007-10-06 14:55:53 +00:00
Pierangelo Masarati
d50645fc0a dispose of connection when server down (related to ITS#5127) 2007-09-29 11:24:39 +00:00
Pierangelo Masarati
27e747ad48 fix format 2007-09-29 11:22:31 +00:00
Pierangelo Masarati
b9e2fd0dd6 ldap_control*_dup() is no longer private; add ldap_pvt_put_control 2007-08-24 12:29:33 +00:00
Pierangelo Masarati
25d46e7578 rework controls API 2007-08-22 22:35:14 +00:00
Pierangelo Masarati
95dd8de586 fix and cleanup 2007-08-22 20:55:54 +00:00
Kurt Zeilenga
0025d7fa1f Fix last commit. 2007-08-22 19:33:28 +00:00
Kurt Zeilenga
e6699ce023 Password policy request control should have no control value. 
Extend ldap_create_control() to supporting creating such.
 2007-08-22 19:26:55 +00:00
Pierangelo Masarati
b0d2063d92 client side of draft-wahl-ldap-session 2007-08-21 23:52:03 +00:00
Pierangelo Masarati
145e6fc1f8 fix or comment Calysto findings 2007-08-21 10:52:16 +00:00
Pierangelo Masarati
403704b7bc move uuid normalized to string to liblutil 2007-08-17 12:42:52 +00:00
Pierangelo Masarati
6df2df130b don't leak in case of error 2007-08-17 09:47:14 +00:00
Pierangelo Masarati
4bc19cbbb9 cleanup tools 2007-08-16 09:22:07 +00:00
Hallvard Furuseth
973a2b41b7 Make LDAP_MEMORY_DEBUG a bitmask. #define LDAP_MEMORY_DEBUG_ASSERT. ITS#4990. 2007-07-24 20:53:23 +00:00
Howard Chu
2b67f4face ITS#5056 fix chain_tail processing 2007-07-20 21:28:04 +00:00
Ralf Haferkamp
6ab46208bc Allow utf-8 in AD-Canonical Names 2007-07-13 10:12:27 +00:00
Pierangelo Masarati
848ea293a3 cleanup 2007-06-19 22:59:53 +00:00
Pierangelo Masarati
7e12342b3b add sub-second result timeout accuracy (for which is which; ITS#4963 with changes) 2007-06-14 22:35:41 +00:00
Hallvard Furuseth
90fe4bd927 ITS#4983: Partly revert tls_thread_self() paranoia from rev 1.154: Only 
require that ldap_pvt_thread_t can be cast to u.long and is not wider.
ITS#5010: In ldap_X509dn2bv(), catch error return from ber_decode_oid().
 2007-06-12 23:57:08 +00:00
Hallvard Furuseth
5d083f3859 int -> ber_socklen_t for getsockopt() 2007-06-10 20:34:05 +00:00
Hallvard Furuseth
3750520f6f Fix HP-UX crash: Replace socklen_t with ber_socklen_t from configure. ITS#4629. 2007-06-09 23:35:20 +00:00
Howard Chu
469a45a62f ITS#4992 fix cldap 2007-06-08 09:40:17 +00:00
Howard Chu
431f6fd810 ITS#4955 fix typo in referral chasing 2007-06-08 09:17:00 +00:00
Hallvard Furuseth
9a9d216526 Shut up gcc -Wformat 2007-05-31 17:07:57 +00:00
Hallvard Furuseth
101b6b9363 Fix --without-tls (ITS#4975). Enable certificate matching. 2007-05-20 22:48:21 +00:00
Hallvard Furuseth
c47e444698 libldap/tls.c calls CRYPTO_set_id_callback(ldap_pvt_thread_self), which 
causes ldap_pvt_thread_self to be called with the wrong prototype.

That can cause OpenSSL to use a garbage value, e.g. if the unsigned
long it expects takes two words but ldap_pvt_thread_t is an int.

I'm fixing it in HEAD now and also provoking an error if unsigned
long cannot hold a ldap_pvt_thread_t.  Otherwise it can silently
compile to broken code.  Maybe the latter should go in configure,
but since OpenSSL presumably breaks anyway if that fails I don't
see much point at this time.
 2007-05-20 20:02:52 +00:00
Hallvard Furuseth
f906a99eec Only define x509_cert_get_dn() when HAVE_GNUTLS. Remove unused variable. 2007-05-18 15:10:15 +00:00
Howard Chu
d9a43aee44 Fix GNUtls acknowledgement, initial work by Matt Backes. Sponsored by 
The Written Word and Stanford University.
 2007-05-14 23:35:36 +00:00
Ralf Haferkamp
6ee5d7d3da make openssl builds working again 2007-05-14 12:19:32 +00:00
Howard Chu
423f20c915 GNUtls - ignore free of NULL ctx 2007-05-13 09:43:41 +00:00
Howard Chu
5f36d32596 Don't NUL-terminate bervals during DN parsing 2007-05-13 09:37:37 +00:00
Howard Chu
47a8f3213b Merged GNUtls support into main tls.c 2007-05-13 00:15:27 +00:00
Pierangelo Masarati
7601a1f3fb fix read off by one (spotted by valgrind) 2007-05-12 12:38:09 +00:00
Howard Chu
236e5f50b3 Added ciphersuite support 2007-05-10 21:49:43 +00:00
Howard Chu
c51fd6c96e Add LDAP_OPT_X_TLS_CRLFILE, peer cert verification for GNUtls 2007-05-10 19:43:28 +00:00
Hallvard Furuseth
7b7b137832 Cast Debug(%p) pointer argument to void* 2007-05-09 18:38:10 +00:00
Howard Chu
b7cfa97817 coverity error, u->lud_scheme is mandatory 2007-05-08 14:13:18 +00:00
Howard Chu
4803e9ba67 Revert prev commit, unnecessary 2007-04-23 14:27:07 +00:00
Howard Chu
7eb1f62f9d ITS#4935 SASL_MAX_BUFF_SIZE should be 2^24 - 1 2007-04-23 14:21:48 +00:00
Pierangelo Masarati
f29a4e140e don't assert(0); apparently, other responses may result from a simple bind (but log them, at least; ITS#4924) 2007-04-11 08:57:41 +00:00
Howard Chu
848be16aaf ITS#4879 fixes for url parse/unparse 2007-04-03 03:27:24 +00:00
Howard Chu
c49812bf6f ITS#4893 back to pipes... 2007-03-26 12:44:11 +00:00
Howard Chu
867fb2fd9f ITS#4893 just send the client socket, not a pipe descriptor. 2007-03-25 15:20:50 +00:00
Howard Chu
7426ab07fc ITS#4893 define LDAP_PF_LOCAL_SENDMSG in <ac/socket.h> if a message must 
be sent to transmit client credentials. Buffer the message data.
 2007-03-25 04:40:22 +00:00
Howard Chu
49d708fae3 Preliminary GNUtls support. gnutls.c will merge back into tls.c later. 2007-03-23 23:47:07 +00:00
Howard Chu
f2a02b90ed Fix TLS default for clients 2007-03-23 12:47:35 +00:00
Pierangelo Masarati
1429b49d1e apparently, time_t is unsigned in some systems 2007-03-12 21:04:01 +00:00
Pierangelo Masarati
687ed8861a don't play with URL list if connect(2) is asynchronous 2007-02-21 22:26:26 +00:00
Kurt Zeilenga
b3c4004042 Remove extrananous space in DN (in comment) 2007-02-19 23:39:01 +00:00
Kurt Zeilenga
7beb587a4b Cleanup last commit 2007-02-15 01:42:23 +00:00
Kurt Zeilenga
a9aeb858fe Needs <ac/time.h> 2007-02-15 01:20:46 +00:00
Howard Chu
8db4bd2cc9 Coverity error, uninit'd rc 2007-02-13 11:13:14 +00:00
Howard Chu
1f635b8bcf ITS#4707 added new ldap_init_fd() API 2007-02-12 04:20:24 +00:00
Howard Chu
a1aa7c284d Revert to original ldap_get_option( TIMEOUT ) behavior 2007-02-06 23:02:47 +00:00
Howard Chu
75d0b4ee97 Require non-NULL input for timeout options 2007-02-05 20:38:25 +00:00
Howard Chu
0c542682b1 Timeouts should not be malloc'd 2007-02-05 20:32:44 +00:00
Howard Chu
b984564dbd Handle timeouts from ldap_result() 2007-02-05 12:30:40 +00:00
Howard Chu
b4c2cf250d Fairly sure this is what the TIMEOUT option should always have been for 2007-02-05 10:10:24 +00:00
Pierangelo Masarati
5afd693a6d remove unused code 2007-02-02 12:38:32 +00:00
Howard Chu
de46a75158 Keep HAVE_POLL functionality inside its #ifdefs 2007-02-02 12:29:21 +00:00
Howard Chu
52a7af8230 ITS#4815 get_option for TLS Cipher Suite was not implemented 2007-01-24 23:38:26 +00:00
Hallvard Furuseth
d16754c81b Delete unused variables. 2007-01-11 12:04:22 +00:00
Howard Chu
f1784a54e6 ITS#4648, alternate fix 2007-01-10 08:52:07 +00:00
Howard Chu
bec25494fe ITS#4799 remove kerberos / kbind references 2007-01-10 00:20:42 +00:00
Howard Chu
9ece06c8f5 ITS#4799 remove all references to kbind 2007-01-09 23:48:28 +00:00
Pierangelo Masarati
9b5ea6a205 honor network timeout even when doing full async 2007-01-07 22:05:33 +00:00
Pierangelo Masarati
aa3c9bad3e First cut to truly async connect: 
- after connect(2), if async the connection is in "connecting" state
	- the first time a request is sent, "connecting" conns are polled
		- in case of success, the request is sent
		- in case still connecting, LDAP_X_CONNECTING is returned;
		  clients are expected to retry later
	- the "async" behavior must be explicitly enabled by setting
	  the LDAP_OPT_CONNECT_ASYNC option

"local" connections need work
 2007-01-07 19:20:46 +00:00
Pierangelo Masarati
5513ac6335 import of LDAP Sync client API 2007-01-06 18:28:32 +00:00
Pierangelo Masarati
c310cfd837 minor cleanup 2007-01-06 18:27:34 +00:00
Pierangelo Masarati
5ce13437de unsolicited responses shouldn't necessarily end the connection 2007-01-05 15:23:39 +00:00
Pierangelo Masarati
8cb4f6b348 fix previous commit 2007-01-04 19:26:59 +00:00
Pierangelo Masarati
d4324d5813 fix \& improve previous commit 2007-01-04 18:33:45 +00:00
Pierangelo Masarati
4b75dd6be3 implement client-side handling of RFC 4511 unsolicited responses and "Notice of Disconnect" 2007-01-04 15:01:22 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
dd94ddba57 don't leave dependencies on liblutil in libldap :) 2006-12-17 22:04:25 +00:00
Howard Chu
28a1868127 Eliminate redundant checks in try_read1msg 2006-12-14 10:02:14 +00:00
Howard Chu
157069fe91 ITS#4545 better fix. this code still needs cleaning up. 2006-12-14 06:58:57 +00:00
Howard Chu
6350fad63f ITS#4545 when referral chasing is off, complete the request 2006-12-13 00:36:12 +00:00
Pierangelo Masarati
5a000a9b91 fix warnings after previous commit 2006-12-04 00:11:12 +00:00
Pierangelo Masarati
a76b702d4c fix request/result abandon 2006-12-03 20:56:25 +00:00
Howard Chu
7540751392 ITS#4723 add CRYPTO_set_id_callback 2006-11-30 06:37:12 +00:00
Pierangelo Masarati
72e586ba36 revert previous commit; disable RESTART from ldap.conf 2006-11-13 23:51:52 +00:00
Pierangelo Masarati
3c1df853e4 fix endless loop in canceling child requests; cleanup 2006-11-12 14:22:24 +00:00
Howard Chu
b42d93f24f ITS#3755 silence strict-aliasing warnings 2006-11-10 10:39:54 +00:00
Howard Chu
8e48a3c317 ITS#4726 call ldap_pvt_tls_init() in init_ctx() to make sure initialization 
is done
 2006-11-09 23:00:38 +00:00
Howard Chu
961f0ba113 Fix strval2strlen end-of-string check. Otherwise passing in a string 
without string[len] == '\0' causes assert in ldap_dn2bv_x.
 2006-11-08 23:57:02 +00:00
Pierangelo Masarati
4f351fbd90 fix build with thread debugging 2006-11-05 09:22:53 +00:00
Pierangelo Masarati
dc871de33d cleanup prvious commit; log number of abandoned requests waiting for response... 2006-11-02 19:11:18 +00:00
Pierangelo Masarati
71bcd4a4b6 s/ldap_int_discard/ldap_pvt_discard/ 2006-10-28 18:13:12 +00:00
Pierangelo Masarati
57259831c6 fix message (ITS#4717) 2006-10-28 16:19:08 +00:00
Kurt Zeilenga
dbaf7c5c25 More ldapbis cleanup 2006-10-28 04:47:58 +00:00
Kurt Zeilenga
ba2d7ec007 More LDAPBIS cleanup 2006-10-28 03:27:01 +00:00
Kurt Zeilenga
4587e053e7 Misc LDAPbis comment update 
Remove unnecessary ISOC notices
 2006-10-27 19:37:04 +00:00
Pierangelo Masarati
6416d83372 add ldap_int_discard(); use it in proxies (ITS#4717) 2006-10-22 20:31:41 +00:00
Kurt Zeilenga
60e1237c4e Parse txn failed msgid 2006-10-20 06:46:38 +00:00
Pierangelo Masarati
968da1cb14 add LDAP_OPT_DIAGNOSTIC_MESSAGE; replace deprecated option names 2006-10-14 17:04:17 +00:00
Pierangelo Masarati
387c21c7dd apply slightly revised patch for SO_KEEPALIVE (ITS#4708) 2006-10-14 12:42:33 +00:00
Pierangelo Masarati
3dc7480b8b minor cleanup 2006-10-09 21:18:36 +00:00
Pierangelo Masarati
799f2b1449 I hate code duplication, but don't require functions from liblutil in libldap.so 2006-10-08 17:14:04 +00:00
Pierangelo Masarati
2f964def8a add support for VERSION, TIMEOUT and NETWORK_TIMEOUT in ldap.conf 2006-09-26 02:34:36 +00:00
Pierangelo Masarati
a9a4a14d80 use AC_LINE_MAX 2006-09-26 00:33:44 +00:00
Pierangelo Masarati
43f7706c49 add URL parsing test tool 2006-09-23 11:44:16 +00:00
Kurt Zeilenga
62f4745bfc ITS#4679 cleanup 
Note: the caller is expected to pass in a valid LDAP handle.  If not,
the assert will trigger to let him know his code is broken.
 2006-09-21 20:02:55 +00:00
Howard Chu
57c329a3af ITS#4606 errno is not per-thread on WIN32, always use WSAGet/SetLastError 
(with notable exceptions: ignore tests for EINTR which winsock never sets)
 2006-09-14 06:35:34 +00:00
Pierangelo Masarati
4481502313 use a more reasonable max line length (ITS#4669) 2006-09-12 20:41:37 +00:00
Pierangelo Masarati
ae20e41b70 fix outdated comments 2006-09-06 12:04:52 +00:00
Pierangelo Masarati
d12f5fbcb5 add scope helpers 2006-09-06 12:04:33 +00:00
Pierangelo Masarati
06b491a446 better function name 2006-09-01 16:21:20 +00:00
Pierangelo Masarati
b45c0c881d keep count of requests in use 2006-09-01 14:00:58 +00:00
Pierangelo Masarati
517ae66152 don't risk dangling pointers 2006-09-01 13:59:55 +00:00
Pierangelo Masarati
d1e00eef03 don't use deprecated functions 2006-09-01 13:57:37 +00:00
Pierangelo Masarati
cb3248f173 cleanup 2006-09-01 10:01:36 +00:00
Pierangelo Masarati
82f7a0a3bd re-fix ITS#4405 (really start from the first conn) 2006-08-18 17:12:16 +00:00
Pierangelo Masarati
b03afa868c skip host="" and port=0 (ITS#4610) 2006-08-05 17:08:40 +00:00
Howard Chu
a7870943f7 Fix TLS CTX ref counting 2006-07-02 22:38:01 +00:00
Kurt Zeilenga
3f9201e95b some LDAP ASN.1 updates from 4511/4526 2006-06-15 05:18:06 +00:00
Pierangelo Masarati
41ceb4af9d don't risk using dangling pointers when looping thru connections (ITS#4405) 2006-06-13 18:00:33 +00:00
Howard Chu
15853f1e74 ITS#4583 use mutex around SSL_accept() 2006-06-08 19:35:42 +00:00
Pierangelo Masarati
7a3ff8ddc2 count requests and responses in logs 2006-05-27 10:17:34 +00:00
Pierangelo Masarati
6b889b0a8a s/fprintf/Debug/ (ITS#4553); lock ld_conn_mutex before accessing conn(s) 2006-05-18 00:59:13 +00:00
Pierangelo Masarati
86b566f029 cleanup 2006-05-18 00:37:56 +00:00
Pierangelo Masarati
2b29cf4909 fix rev 1.125 commit 2006-05-17 22:13:39 +00:00
Pierangelo Masarati
6a2c344217 typo in comment 2006-05-14 12:14:08 +00:00
Howard Chu
25f81a48e6 Add SSL failure reason to TLS: can't connect message. 2006-05-13 00:29:28 +00:00
Howard Chu
ff40a705da ITS#4541 better fix 2006-05-12 06:33:27 +00:00
Howard Chu
da0ec66ceb ITS#4541 refine commit for #4524 2006-05-12 06:16:32 +00:00
Howard Chu
dc96eca891 ITS#4536 set chain_tail after sorting messages 2006-05-11 09:07:08 +00:00
Howard Chu
7b10f413d9 Fix ITS#4533 don't destroy input request 2006-05-10 15:01:50 +00:00
Pierangelo Masarati
373ded8d24 add URI list resorting feature (ITS#4524) 2006-05-06 16:15:25 +00:00
Pierangelo Masarati
8242166888 print the correct search base when taken from ldaprc (ITS#4504) 2006-04-25 22:23:00 +00:00
Pierangelo Masarati
a42367ae3a cleanup 2006-04-24 17:20:13 +00:00
Pierangelo Masarati
77e7acc4f9 cleanup; make sure no spurious error code slip thru 2006-04-24 12:12:14 +00:00
Howard Chu
478ae2346e PPOLICY_ERROR is primitive, not constructed 2006-04-22 00:23:44 +00:00
Howard Chu
68b374dd4a Fix EXPIRE/GRACE ber tags 2006-04-21 23:47:53 +00:00
Howard Chu
eb0c92c7df Return rc for tls_init_def_ctx 2006-04-11 20:35:37 +00:00
Pierangelo Masarati
dfc8e7f6b8 better fix for ITS#4483 2006-04-09 22:29:42 +00:00
Pierangelo Masarati
623a7a9fe2 Berlement already freed in ber_flush 2006-04-08 17:43:53 +00:00
Pierangelo Masarati
74b6ab9029 more cleanup 2006-04-08 11:01:19 +00:00
Howard Chu
571ac24b33 Fix destruct sequencing 2006-04-07 02:41:58 +00:00
Howard Chu
056b193ed7 Don't implicitly inherit the default SSL_CTX, tls.c:alloc_handle will 
set it explicitly and handle its refcount.
 2006-04-07 01:52:32 +00:00
Howard Chu
9693c800bf Free/decrement SSL_CTX refcount when (re)setting it 2006-04-07 01:15:56 +00:00
Howard Chu
7709d4d89e Bump SSL_CTX refcount whenever it gets retrieved 2006-04-07 01:13:31 +00:00
Howard Chu
d18277eac9 ITS#4422, #4475 
Move TLS options into struct ldapoptions.
  Added ldap_int_tls_destroy()
  Added LDAP_OPT_X_TLS_NEWCTX to generate new SSL_CTX
 2006-04-07 00:52:38 +00:00
Howard Chu
51d5db03ff ITS#4422, rearrange options to allow passing NULL args to TLS/Cyrus 2006-04-07 00:48:41 +00:00
Pierangelo Masarati
8823f5cc87 fix ITS#4450? 2006-04-03 00:34:35 +00:00
Howard Chu
e1664b1f42 plug leak 2006-04-02 21:06:28 +00:00
Hallvard Furuseth
581c1ff6c7 Cast ctype.h char arguments to unsigned char 2006-04-01 23:44:42 +00:00
Pierangelo Masarati
bf860f0596 ld_abandoned must be protected by ld_res_mutex 2006-04-01 00:30:07 +00:00
Howard Chu
9686c7ce99 cleanup 2006-03-31 21:31:32 +00:00
Howard Chu
1c0d2ad7ae cleanup NULL string handling 2006-03-31 21:30:06 +00:00
Howard Chu
2d4da0b23c Cleanup NULL derefs 2006-03-31 21:18:04 +00:00
Howard Chu
aa87b9ad2e cleanup dead code 2006-03-31 21:07:53 +00:00
Howard Chu
8c4711e9db plug leaks 2006-03-31 20:36:53 +00:00
Kurt Zeilenga
40d75df606 Additional TXN changes (a work in progress) 2006-03-30 18:00:04 +00:00
Pierangelo Masarati
177c051f0f use asynchronous API; note that an endless loop may occur (ITS#4450; no fix yet) 2006-03-25 08:16:19 +00:00
Pierangelo Masarati
f48bf42578 seems to fix referral chasing (ITS#4448) 2006-03-24 01:18:36 +00:00
Pierangelo Masarati
70211e9be5 handle abnormal condition 2006-03-23 18:36:10 +00:00
Pierangelo Masarati
8c9f071238 duplicate string from environment, as it may be overridden by the user (ITS#4436) 2006-03-20 11:57:16 +00:00
Pierangelo Masarati
df2b44c3b9 destroy ld_conn_mutex (ITS#4441) 2006-03-20 11:14:43 +00:00
Kurt Zeilenga
544d00f3e5 Fix encoding 2006-03-07 21:48:47 +00:00
Kurt Zeilenga
fad69dbef8 Additional TXN changes 2006-03-07 02:21:27 +00:00
Kurt Zeilenga
825ce79611 Initial and rough client-side implementation of the revised LDAP 
Transactions specification.  A work in progress!  Comments welcomed.
 2006-03-06 21:20:36 +00:00
Luke Howard
e5a5f5e1b2 Don't fail compile if LDAP_EXOP_X_TURN undefined (ie. if LDAP_REL_ENG undefined) 2006-03-05 04:23:59 +00:00
Luke Howard
0ccbce9d09 Always pass valid BerElement to ldap_create_control() to avoid assert fail 2006-03-02 16:50:34 +00:00
Kurt Zeilenga
8c8ea049cb Macro cleanup 2006-02-16 05:01:29 +00:00
Kurt Zeilenga
cbc11c9233 unifdef -DLDAP_NULL_IS_NULL 2006-02-14 23:18:12 +00:00
Kurt Zeilenga
2d9e341ae9 Report layer installed only after installed, and fix up report text 2006-02-13 23:26:55 +00:00
Kurt Zeilenga
fe8e3b7efa Kludge for MSAD (ITS#4391 and others) 2006-02-07 01:20:55 +00:00
Howard Chu
fb4cba514d ITS#4354 only set DH callback if OPT_DHFILE has been set. 2006-01-19 18:12:15 +00:00
Kurt Zeilenga
48c34d254f Update proxied authorization implementation to use IANA 
assigned result code.
 2006-01-12 22:55:56 +00:00
Pierangelo Masarati
056b7e55da silence warning 2006-01-12 18:29:33 +00:00
Howard Chu
41c46bdb4e Tone down dn2bv/bv2dn logging 2006-01-12 06:07:42 +00:00
Luke Howard
86d1072917 ITS#4327 - make SASL_MECH/SASL_REALM no longer user-only options 2006-01-11 17:28:30 +00:00
Pierangelo Masarati
e94ded997d fix typo in previous commit 2006-01-09 11:18:01 +00:00
Kurt Zeilenga
be8676f780 s/pagectrl.o/pagectrl.lo/ 2006-01-09 05:25:43 +00:00
Kurt Zeilenga
d8eace75a7 cleanup 2006-01-09 05:22:46 +00:00
Kurt Zeilenga
eccd913a07 Update variables holding protocol values to ber_*_t's 
Remove old grouping/txn code (pending redesign)
 2006-01-09 01:25:53 +00:00
Pierangelo Masarati
564dca34bf fix types; further check parameters 2006-01-08 22:45:35 +00:00
Pierangelo Masarati
de79a7bfec rework API functions to create/parse controls; add client API functions to handle RFC2696 paged results (ITS#4314; patch from Hans Leidekker with changes) 2006-01-08 22:03:30 +00:00
Kurt Zeilenga
bca31173d8 Update (and rename) Sort and VLV parse routines to expect actual 
control to be directly passed in.
 2006-01-08 19:34:01 +00:00
Kurt Zeilenga
8ab4786ef2 correct typo 2006-01-08 19:11:57 +00:00
Kurt Zeilenga
d88f4e8197 cleanup 2006-01-08 17:11:15 +00:00
Pierangelo Masarati
339b9c371e rfc2589 support (ITS#4293) 2006-01-06 17:46:52 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Kurt Zeilenga
cdbbed6c3b improve LDAP_OTHER description 2006-01-03 19:45:26 +00:00
Pierangelo Masarati
0e6f61aa03 fix leaks in ldap_parse_passwd() 2006-01-02 13:27:29 +00:00
Pierangelo Masarati
283f79c268 improve previous commit (one line, use buffer and truncate if required) 2005-12-16 12:18:55 +00:00
Pierangelo Masarati
3edbd4fee7 log attrs 2005-12-15 19:12:09 +00:00
Pierangelo Masarati
fcda57e90f use macros instead of numbers... 2005-12-13 20:11:26 +00:00
Pierangelo Masarati
73acecaf0f cleanup 2005-12-13 15:53:10 +00:00
Kurt Zeilenga
71cf424b77 unifdef -DLDAP_SCOPE_SUBORDINATE 2005-11-26 06:35:36 +00:00
Pierangelo Masarati
f86543c770 cleanup filter escaping 2005-11-25 12:16:27 +00:00