Howard Chu
5418b51643
Quiet request logging
2007-10-10 05:17:49 +00:00
Howard Chu
cbb6f3bd50
ITS#5100 ldap_control_dup - OID must be non-NULL
2007-10-09 01:38:50 +00:00
Howard Chu
65db0bf8eb
ITS#3864 use sasl_ssf_t where expected
2007-10-06 14:55:53 +00:00
Pierangelo Masarati
d50645fc0a
dispose of connection when server down (related to ITS#5127)
2007-09-29 11:24:39 +00:00
Pierangelo Masarati
27e747ad48
fix format
2007-09-29 11:22:31 +00:00
Pierangelo Masarati
b9e2fd0dd6
ldap_control*_dup() is no longer private; add ldap_pvt_put_control
2007-08-24 12:29:33 +00:00
Pierangelo Masarati
25d46e7578
rework controls API
2007-08-22 22:35:14 +00:00
Pierangelo Masarati
95dd8de586
fix and cleanup
2007-08-22 20:55:54 +00:00
Kurt Zeilenga
0025d7fa1f
Fix last commit.
2007-08-22 19:33:28 +00:00
Kurt Zeilenga
e6699ce023
Password policy request control should have no control value.
...
Extend ldap_create_control() to supporting creating such.
2007-08-22 19:26:55 +00:00
Pierangelo Masarati
b0d2063d92
client side of draft-wahl-ldap-session
2007-08-21 23:52:03 +00:00
Pierangelo Masarati
145e6fc1f8
fix or comment Calysto findings
2007-08-21 10:52:16 +00:00
Pierangelo Masarati
403704b7bc
move uuid normalized to string to liblutil
2007-08-17 12:42:52 +00:00
Pierangelo Masarati
6df2df130b
don't leak in case of error
2007-08-17 09:47:14 +00:00
Pierangelo Masarati
4bc19cbbb9
cleanup tools
2007-08-16 09:22:07 +00:00
Hallvard Furuseth
973a2b41b7
Make LDAP_MEMORY_DEBUG a bitmask. #define LDAP_MEMORY_DEBUG_ASSERT. ITS#4990.
2007-07-24 20:53:23 +00:00
Howard Chu
2b67f4face
ITS#5056 fix chain_tail processing
2007-07-20 21:28:04 +00:00
Ralf Haferkamp
6ab46208bc
Allow utf-8 in AD-Canonical Names
2007-07-13 10:12:27 +00:00
Pierangelo Masarati
848ea293a3
cleanup
2007-06-19 22:59:53 +00:00
Pierangelo Masarati
7e12342b3b
add sub-second result timeout accuracy (for which is which; ITS#4963 with changes)
2007-06-14 22:35:41 +00:00
Hallvard Furuseth
90fe4bd927
ITS#4983: Partly revert tls_thread_self() paranoia from rev 1.154: Only
...
require that ldap_pvt_thread_t can be cast to u.long and is not wider.
ITS#5010: In ldap_X509dn2bv(), catch error return from ber_decode_oid().
2007-06-12 23:57:08 +00:00
Hallvard Furuseth
5d083f3859
int -> ber_socklen_t for getsockopt()
2007-06-10 20:34:05 +00:00
Hallvard Furuseth
3750520f6f
Fix HP-UX crash: Replace socklen_t with ber_socklen_t from configure. ITS#4629.
2007-06-09 23:35:20 +00:00
Howard Chu
469a45a62f
ITS#4992 fix cldap
2007-06-08 09:40:17 +00:00
Howard Chu
431f6fd810
ITS#4955 fix typo in referral chasing
2007-06-08 09:17:00 +00:00
Hallvard Furuseth
9a9d216526
Shut up gcc -Wformat
2007-05-31 17:07:57 +00:00
Hallvard Furuseth
101b6b9363
Fix --without-tls (ITS#4975). Enable certificate matching.
2007-05-20 22:48:21 +00:00
Hallvard Furuseth
c47e444698
libldap/tls.c calls CRYPTO_set_id_callback(ldap_pvt_thread_self), which
...
causes ldap_pvt_thread_self to be called with the wrong prototype.
That can cause OpenSSL to use a garbage value, e.g. if the unsigned
long it expects takes two words but ldap_pvt_thread_t is an int.
I'm fixing it in HEAD now and also provoking an error if unsigned
long cannot hold a ldap_pvt_thread_t. Otherwise it can silently
compile to broken code. Maybe the latter should go in configure,
but since OpenSSL presumably breaks anyway if that fails I don't
see much point at this time.
2007-05-20 20:02:52 +00:00
Hallvard Furuseth
f906a99eec
Only define x509_cert_get_dn() when HAVE_GNUTLS. Remove unused variable.
2007-05-18 15:10:15 +00:00
Howard Chu
d9a43aee44
Fix GNUtls acknowledgement, initial work by Matt Backes. Sponsored by
...
The Written Word and Stanford University.
2007-05-14 23:35:36 +00:00
Ralf Haferkamp
6ee5d7d3da
make openssl builds working again
2007-05-14 12:19:32 +00:00
Howard Chu
423f20c915
GNUtls - ignore free of NULL ctx
2007-05-13 09:43:41 +00:00
Howard Chu
5f36d32596
Don't NUL-terminate bervals during DN parsing
2007-05-13 09:37:37 +00:00
Howard Chu
47a8f3213b
Merged GNUtls support into main tls.c
2007-05-13 00:15:27 +00:00
Pierangelo Masarati
7601a1f3fb
fix read off by one (spotted by valgrind)
2007-05-12 12:38:09 +00:00
Howard Chu
236e5f50b3
Added ciphersuite support
2007-05-10 21:49:43 +00:00
Howard Chu
c51fd6c96e
Add LDAP_OPT_X_TLS_CRLFILE, peer cert verification for GNUtls
2007-05-10 19:43:28 +00:00
Hallvard Furuseth
7b7b137832
Cast Debug(%p) pointer argument to void*
2007-05-09 18:38:10 +00:00
Howard Chu
b7cfa97817
coverity error, u->lud_scheme is mandatory
2007-05-08 14:13:18 +00:00
Howard Chu
4803e9ba67
Revert prev commit, unnecessary
2007-04-23 14:27:07 +00:00
Howard Chu
7eb1f62f9d
ITS#4935 SASL_MAX_BUFF_SIZE should be 2^24 - 1
2007-04-23 14:21:48 +00:00
Pierangelo Masarati
f29a4e140e
don't assert(0); apparently, other responses may result from a simple bind (but log them, at least; ITS#4924)
2007-04-11 08:57:41 +00:00
Howard Chu
848be16aaf
ITS#4879 fixes for url parse/unparse
2007-04-03 03:27:24 +00:00
Howard Chu
c49812bf6f
ITS#4893 back to pipes...
2007-03-26 12:44:11 +00:00
Howard Chu
867fb2fd9f
ITS#4893 just send the client socket, not a pipe descriptor.
2007-03-25 15:20:50 +00:00
Howard Chu
7426ab07fc
ITS#4893 define LDAP_PF_LOCAL_SENDMSG in <ac/socket.h> if a message must
...
be sent to transmit client credentials. Buffer the message data.
2007-03-25 04:40:22 +00:00
Howard Chu
49d708fae3
Preliminary GNUtls support. gnutls.c will merge back into tls.c later.
2007-03-23 23:47:07 +00:00
Howard Chu
f2a02b90ed
Fix TLS default for clients
2007-03-23 12:47:35 +00:00
Pierangelo Masarati
1429b49d1e
apparently, time_t is unsigned in some systems
2007-03-12 21:04:01 +00:00
Pierangelo Masarati
687ed8861a
don't play with URL list if connect(2) is asynchronous
2007-02-21 22:26:26 +00:00