mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-24 13:24:56 +08:00
Code Issues Packages Projects Releases Wiki Activity
20,170 Commits 38 Branches 307 Tags 75 MiB
430256fafb
Commit Graph

272 Commits

Author SHA1 Message Date
Kurt Zeilenga
2bbf9804b9 Happy New Year! 2012-01-01 07:10:53 -08:00
Howard Chu
111ecbdbed ITS#6851 replace assert with error msg 2011-11-17 17:35:10 -08:00
Howard Chu
ceefe132a8 ITS#6817 fix RE24 build breakage 
Should SLAP_AUTH_DN be #defined in release now?
 2011-06-21 17:05:53 -07:00
Pierangelo Masarati
821d2616b5 fix commit 1.268, related to ITS#6817 2011-03-05 10:30:21 +00:00
Pierangelo Masarati
5d9baf3e85 use (noncritical) whoami extop during SASL bind (ITS#6817) 2011-02-03 23:35:56 +00:00
Pierangelo Masarati
ddbcb565d4 use (noncritical) authzid control during SASL bind (ITS#6817) 2011-02-03 23:20:15 +00:00
Howard Chu
e72c093a55 ITS#6711 minimal tweaks for aclbind/idassertbind for privileged connection 
in dobind_int().
 2011-02-02 20:56:58 +00:00
Howard Chu
d626977848 Cleanup priv/idassert choice: check for configured bind method, not authcDN 2011-02-02 20:32:48 +00:00
Howard Chu
aec5adac17 ITS#6711 use idassert TLS conf for priv connection if aclbind not set 2011-02-02 20:06:28 +00:00
Howard Chu
d3b09ef2a9 ITS#5421 drop ldap-int.h 2011-01-19 21:27:16 +00:00
Kurt Zeilenga
966cef8c9a Happy New Year 2011-01-05 00:42:37 +00:00
Pierangelo Masarati
aa63f21e4f cleanup previous commit 2010-09-09 00:57:04 +00:00
Pierangelo Masarati
65b042b4fb if required by the bindconf configuration, force TLS (partially addresses ITS#6642) 2010-09-09 00:12:01 +00:00
Pierangelo Masarati
1242443553 don't risk leaving around client library error codes 2010-06-22 23:10:48 +00:00
Pierangelo Masarati
3a28608f0d allow successful binds to return control responses (ITS#6530) 2010-04-22 18:18:15 +00:00
Pierangelo Masarati
bbe7272c7f allow strict adherence to RFC4370 wrt/ control criticality (ITS#6523) 2010-04-14 21:37:03 +00:00
Kurt Zeilenga
3dadeb3efe happy belated New Year 2010-04-13 22:17:29 +00:00
Pierangelo Masarati
f75825881a honor X-ORDERED in olcDbIdAssertAuthzFrom; add olcDbIdAssertPassthru (ITS#6456); note: breaks binary compatibility with module back-meta.la 2010-04-09 22:47:55 +00:00
Pierangelo Masarati
1815ad4cb6 register authz cookie (ITS#6296) 2009-09-17 21:16:04 +00:00
Howard Chu
fffb1fab4e Include "lutil.h" - fixes warnings in RE24 2009-09-01 00:35:22 +00:00
Hallvard Furuseth
c0e0a64799 Silence warning (missing braces ininitializer) 2009-08-19 18:58:28 +00:00
Pierangelo Masarati
69878f43c8 refactor connection handling 2009-08-19 16:45:15 +00:00
Pierangelo Masarati
bdec7702d7 better logging of privileged connections (more to come; might be unstable for a bit) 2009-08-19 15:00:59 +00:00
Pierangelo Masarati
c39815ee28 don't deadlock when a TLS uri is not responding (ITS#6167) 2009-06-11 06:51:01 +00:00
Kurt Zeilenga
4af9eb9715 Update copyright notices 2009-01-22 00:40:04 +00:00
Pierangelo Masarati
fb9128cdc8 check validity of idassert-bind line (ITS#5863) 2008-12-20 22:34:00 +00:00
Pierangelo Masarati
5a50733e39 don't send error when going to retry (alternative fix to ITS#5854) 2008-12-12 09:29:51 +00:00
Hallvard Furuseth
05bbe7833b Fix typo in assertion: j1 + j1 -> j1 + j2. (Not a crasher, just wrong test.) 
Warning cleanup: signed meets unsigned.
 2008-10-17 18:02:09 +00:00
Pierangelo Masarati
14c425b922 s/leave/func_leave/ (ITS#5411) 2008-03-15 18:16:21 +00:00
Pierangelo Masarati
ec8466ec83 invalidate connection handler when ldap_sasl_interactive_bind_s() for internal error (ITS#5404); fix response tag 2008-03-08 15:41:17 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
c2bbd6d5e7 fix typing warnings 2007-10-05 10:06:20 +00:00
Howard Chu
c428a16332 coverity - init i 2007-09-26 20:21:53 +00:00
Pierangelo Masarati
43c00ab486 fix previous commit 2007-09-15 18:03:55 +00:00
Pierangelo Masarati
5569180736 draft-wahl-ldap-session: append further instances of the control 2007-09-15 17:26:09 +00:00
Pierangelo Masarati
6d38af2689 improve error message 2007-09-13 17:54:49 +00:00
Pierangelo Masarati
331fef5e78 idassert also in case of SASL mechs that do not set authcId 2007-09-09 21:52:10 +00:00
Pierangelo Masarati
f834cdb2f7 fix proxyAuthz oid setup 2007-09-09 21:48:17 +00:00
Pierangelo Masarati
b95e40f56f cleanup 2007-08-26 15:38:20 +00:00
Pierangelo Masarati
9a00bbb35f add support for session tracking (draft-wahl-ldap-sessio) to proxy backends requests 2007-08-22 15:49:35 +00:00
Pierangelo Masarati
145e6fc1f8 fix or comment Calysto findings 2007-08-21 10:52:16 +00:00
Pierangelo Masarati
27428ac00e uniformly exploit rootdn bind; add support for rootdn bind to backends that didn't have it (ITS#4962) 2007-08-16 09:38:15 +00:00
Pierangelo Masarati
d8636d8e60 fix previous commit: op is not a bind if error 2007-08-11 09:30:52 +00:00
Howard Chu
3b837d4fca More for ITS#5050 2007-07-23 00:33:21 +00:00
Howard Chu
da9f66ede7 ITS#5050 use correct (Bind) timeout in dobind_int 2007-07-22 17:48:04 +00:00
Pierangelo Masarati
6420bcd7d7 restore op before checking result (and, if necessary, bailing out) 2007-03-19 15:50:28 +00:00
Pierangelo Masarati
fd1efa13d0 fix previous commit (ITS#4861) 2007-03-09 17:24:56 +00:00
Pierangelo Masarati
6a9c44849c check consistency of referrals and result code (ITS#4861) 2007-03-08 17:57:49 +00:00
Pierangelo Masarati
e07dc8c757 fix more spurious return stuff; split quarantine in: detection, exploitation, recovery; describe failure reasons 2007-01-28 00:24:10 +00:00
Pierangelo Masarati
ecc28ff57c fix cached connection taint in case of timeout 2007-01-26 00:40:05 +00:00