mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
12,786 Commits 38 Branches 307 Tags 74 MiB
43ec05a45a
Commit Graph

115 Commits

Author SHA1 Message Date
Pierangelo Masarati
3e84f692aa there might definitely be concurrency issues, but it's not pooled connections' fault 2005-07-23 22:03:35 +00:00
Pierangelo Masarati
e810105f87 (mostly) reverting previous commit (overconservative) 2005-07-23 22:02:12 +00:00
Pierangelo Masarati
796316bc84 strengthen concurrency protection 2005-07-23 19:39:51 +00:00
Pierangelo Masarati
6adfb5dd2f note an issue 2005-07-22 03:23:26 +00:00
Hallvard Furuseth
81ecb0b153 assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2005-07-18 06:22:33 +00:00
Pierangelo Masarati
681a547e13 fix potential deadlock 2005-07-04 22:41:27 +00:00
Pierangelo Masarati
982981d465 fix potential deadlock; improve idassert in case of authzFrom rules (new flag values); rootdn can always idassert 2005-07-03 23:27:56 +00:00
Pierangelo Masarati
1aaa18b180 more on ITS#3808 2005-06-29 18:16:29 +00:00
Pierangelo Masarati
9e811df052 seems to definitely fix issues related to ITS#3808 2005-06-29 16:38:09 +00:00
Pierangelo Masarati
cbe9c74675 return LDAP_SUCCESS if Start TLS failed but was not critical 2005-06-29 12:38:18 +00:00
Pierangelo Masarati
671b02f748 more on ITS#3808 2005-06-29 12:28:40 +00:00
Pierangelo Masarati
196af0e056 (partial?) fix ITS#3808 2005-06-29 11:44:11 +00:00
Pierangelo Masarati
a7f44159c1 complete back-config support, including chain overlay; passes all tests; HEADS-UP: few syntax changes (essentially backwards compatible) 2005-05-23 07:25:00 +00:00
Pierangelo Masarati
471f4772a0 cleanup connection locking 2005-04-21 00:49:35 +00:00
Pierangelo Masarati
a141e3badf enable use of asynchronous call to StartTLS 2005-04-16 02:56:46 +00:00
Pierangelo Masarati
5affbfa428 add SASL bind for acl-authc; use slap_bindconf 2005-04-10 23:44:06 +00:00
Pierangelo Masarati
edfbbeb653 clarify comment 2005-02-19 16:55:14 +00:00
Pierangelo Masarati
f8b463d0bc use asynchronous StartTLS 2005-02-19 16:14:22 +00:00
Howard Chu
beaeb5ed5c Fix if HAVE_TLS is missing 2005-02-18 04:20:56 +00:00
Pierangelo Masarati
e50092878d temporarily revert to synchronous start tls 2005-02-05 17:33:22 +00:00
Pierangelo Masarati
43138aa500 use asynchronous Start TLS exop; allow propagating TLS if used in the original connection; minor cleanup 2005-02-05 15:55:02 +00:00
Howard Chu
122cdf4549 In ldap_back_bind, don't send success result, frontend does it 2005-02-01 00:19:45 +00:00
Pierangelo Masarati
cfc77f0a0a make referrals chasing optional (default is to chase them) 2005-01-30 22:56:59 +00:00
Pierangelo Masarati
3dd2f4150b allow proxyAuthz of users authenticated via SASL 2005-01-26 20:01:02 +00:00
Pierangelo Masarati
c6b6d2a5ec StartTLS (ITS#3507) + chain overlay fixes and improvements 2005-01-24 09:38:11 +00:00
Pierangelo Masarati
1d919d35a5 remove #ifdef's for identity assertion 2005-01-20 09:04:37 +00:00
Pierangelo Masarati
41d7c03e8b clear out the error 2005-01-09 23:30:19 +00:00
Pierangelo Masarati
cd2e651c26 ITS#3469: C99 compliance 2005-01-08 11:25:11 +00:00
Pierangelo Masarati
4d8267595f retry on ldap_result() with a timeout 2005-01-08 09:19:51 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Pierangelo Masarati
fefa59059d minor cleanup 2004-12-08 19:11:27 +00:00
Pierangelo Masarati
f176935a58 remove rewrite stuff -- now delegted to rwm overlay 2004-11-13 14:43:30 +00:00
Pierangelo Masarati
dd367a2b78 make sure we're comparing the same database 2004-11-11 13:12:34 +00:00
Howard Chu
55f12a7eee Add a retry for failed connections 2004-10-01 11:16:38 +00:00
Kurt Zeilenga
d611a4b49a unifdef -UNEW_LOGGING 2004-09-04 04:54:28 +00:00
Pierangelo Masarati
a7b55f4f44 assert administrative identity instead of the required one if doing auth check in non-caching mode 2004-07-23 00:11:05 +00:00
Pierangelo Masarati
277d921945 clear shared connections when ldap_result fails with -1 (typically, remote server is down); fixes ITS#3217 2004-07-04 23:35:18 +00:00
Pierangelo Masarati
1f70ad82f2 clean up unnecessary checks; don't use SASL native authz if authz ID is not static, because back-ldap pools connections... 2004-06-21 00:57:12 +00:00
Pierangelo Masarati
eca48b6f20 not sure that cyrus-sasl doesn't honor empty authz; need to check 2004-06-20 23:21:40 +00:00
Pierangelo Masarati
5bfb9fd590 make authz mode selection fully manual, plus more cleanup 2004-06-20 22:42:36 +00:00
Pierangelo Masarati
f34b11760a allow a hidden parameter to instruct the proxy that the SASL mech can do native authz; will disappear as soon as I can detect it automnatically 2004-06-19 18:18:26 +00:00
Pierangelo Masarati
e6065fb20d li->be didn't work; since it seems to be unnecessary, it's been removed; please check 2004-06-19 15:16:51 +00:00
Jong Hyuk Choi
f60f2d5048 Fix typo 2004-06-08 02:52:59 +00:00
Pierangelo Masarati
a18e199e0d more on identity assertion 2004-05-22 17:26:02 +00:00
Pierangelo Masarati
cdebc4d376 more on idassert: SASL bind/authz 2004-05-15 10:11:10 +00:00
Pierangelo Masarati
8b954144d6 reflect Kurt's comments on ID assertion 2004-05-14 10:01:22 +00:00
Pierangelo Masarati
66ddf62922 add idassert code (undocumented yet) 2004-05-13 20:25:53 +00:00
Kurt Zeilenga
44725e7303 use BER_BVNULL 2004-04-07 04:11:43 +00:00
Pierangelo Masarati
e17be551a4 fix previous commit 2004-04-06 08:47:59 +00:00
Pierangelo Masarati
6a1dd9a1cd exploit new frontend API 2 protocol error mapping; use urldesc... 2004-04-05 17:36:53 +00:00