mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-02-05 13:40:08 +08:00
Code Issues Packages Projects Releases Wiki Activity
3,269 Commits 38 Branches 307 Tags 75 MiB
53338dc4e2
Commit Graph

1319 Commits

Author SHA1 Message Date
Kurt Zeilenga
f9411ca154 Fix another bug... seems to be working... ldap://root.openldap.org/ 2000-05-11 01:12:48 +00:00
Kurt Zeilenga
59305df8bb Fix debug level typo 2000-05-11 00:44:03 +00:00
Kurt Zeilenga
cb8d9e16e9 Add bind handler which returns unwillingToPerform with 
nasty message if password was provided.
 2000-05-10 23:54:57 +00:00
Kurt Zeilenga
1dc3e3c408 Add basic and EXPERIMENTAL chroot() support. 2000-05-10 23:30:52 +00:00
Kurt Zeilenga
18f31148be Working (but likely not robust) DNS SRV backend! 2000-05-10 22:43:08 +00:00
Kurt Zeilenga
fbb58dec53 Fix minor bugs... 2000-05-10 22:21:57 +00:00
Kurt Zeilenga
e87e01b9c5 DNS SRV meat (a work in progress) 2000-05-10 21:48:18 +00:00
Howard Chu
df7ca2c3f3 Remove #undef LDAP_MOD_BVALUES - backends like back-ldap that are also 
LDAP clients themselves still need this definition.
 2000-05-10 21:22:07 +00:00
Howard Chu
3af3014763 Remove bogus use of PERL_LDFLAGS, it's correctly inserted in SLAPD_LIBS 
by top.mk
 2000-05-10 21:18:12 +00:00
Kurt Zeilenga
dbde2604d7 Additional DNS SRV framework (a work in progress) 
add common request handler
	remove bind handler (not needed)
 2000-05-10 20:11:58 +00:00
Kurt Zeilenga
2c2a54d6d7 Add DNS SRV backend framework (a work in progress). 2000-05-10 18:17:38 +00:00
Howard Chu
f0c4f83ea2 libldap/tls.c: change tls_verify_cb to no longer ignore verification errors. 
This means a ldaps connection may drop before any LDAP protocol exchange
occurs (due to expired cert, unrecognized CAs, etc.).
  Change ldap_pvt_tls_connect to copy any TLS error string to ld_error upon
connection failure, otherwise client just sees "can't contact LDAP server."

slapd/connection.c: add flush/delay when SSL_accept fails, to allow any
TLS alerts we generated to propagate back to the client. (Which will then
be picked up by ldap_pvt_tls_connect on the client...)
 2000-05-10 17:07:09 +00:00
Howard Chu
dcad3d9569 Undo slapd/add.c rev 1.54; back-bdb2 and back-ldbm were the only backends 
that called entry_free() on failure. This change would cause a memory leak
from all the other backends. Instead, remove the entry_free calls in these
two backends and let the frontend take care of it for everyone.
 2000-05-10 16:36:46 +00:00
Kurt Zeilenga
f224e69558 Add experimental code to check simple bind passwords 
against Cyrus SASLdb.  Like other cleartext mechanisms,
should be protected from eavesdropping.
 2000-05-10 04:29:51 +00:00
Kurt Zeilenga
dcc943e528 move default "directory" 2000-05-03 19:01:29 +00:00
Kurt Zeilenga
d0555fffe6 Error handling changes including separation of client v. server 
SASL to LDAP translation.  plus comments and other minor changes
 2000-05-03 18:59:58 +00:00
Kurt Zeilenga
8c386888fa Move default LDBM directory from /usr/tmp to $(localstatedir) 2000-05-03 10:07:21 +00:00
Bastiaan Bakker
14418bdff3 Avoid C++ keyword 'new' in header files. 2000-04-30 15:26:51 +00:00
Bastiaan Bakker
873c36f788 Added example 'moduleload' lines to slapd.conf 2000-04-30 15:01:32 +00:00
Randy Kunkee
e5de6c5b0c Change count test for non-zero reference counts to check for ... non-zero. 2000-04-26 09:24:58 +00:00
Randy Kunkee
75467fb340 Rework order of things to allow restart in oneshot mode. 2000-04-26 09:24:12 +00:00
Kurt Zeilenga
92e2453467 A NULL (empty) SASL mechanism should not result in a protocol error. 2000-04-26 09:20:25 +00:00
Kurt Zeilenga
b872bf3a91 fix -UHAVE_CYRUS_SASL 2000-04-25 19:28:00 +00:00
Kurt Zeilenga
20351a05cc SASL: me thinks I got the states okay... now to test. 2000-04-25 18:02:50 +00:00
Kurt Zeilenga
42a20681cc SASL closer to working from frontend only, need to work through 
states.
 2000-04-25 17:23:54 +00:00
Kurt Zeilenga
55ae3cffd8 SASL code without backend support. Should work with 
external store, but not yet tested.  [Intent is to support
both in same server... may not be doable]
 2000-04-25 16:03:17 +00:00
Kurt Zeilenga
2e22c55a6c Fix typo in prev commit 2000-04-25 13:25:55 +00:00
Kurt Zeilenga
6f2a817d9d bind/sasl cleanup PRIOR TO moving call from backend to frontend 2000-04-25 13:21:42 +00:00
Kurt Zeilenga
0c134a72d6 SCHEMA_NOT_COMPAT changes 2000-04-25 13:21:06 +00:00
Kurt Zeilenga
12e253fc66 entry_schema_check rename 2000-04-25 13:20:05 +00:00
Kurt Zeilenga
01c4e0f03c LDAP_OPERATIONS_ERROR -> LDAP_OTHER 
and other error handling changes
 2000-04-25 13:18:59 +00:00
Kurt Zeilenga
365d17ca68 entry_schema_check() rename and more (error handling) 2000-04-25 13:15:55 +00:00
Kurt Zeilenga
8b09742e5c (slightly) better comments 2000-04-25 13:13:42 +00:00
Kurt Zeilenga
f5ab390e08 Update 2000-04-25 13:12:40 +00:00
Kurt Zeilenga
56ebee78fb return more descriptive error text 2000-04-25 13:12:20 +00:00
Kurt Zeilenga
16937cb91d remove SASL bind call. Frontend code coming. 2000-04-25 13:10:31 +00:00
Kurt Zeilenga
3bad06d52b entry_schema_check() rename 2000-04-25 13:07:14 +00:00
Kurt Zeilenga
2dc6185a92 LDAP_OPERATIONS_ERROR -> LDAP_OTHER 
and other misc changes
 2000-04-25 13:06:22 +00:00
Kurt Zeilenga
27a29fddbb Fix comment 2000-04-25 13:02:42 +00:00
Ben Collins
32bdecbb5f for slurpd's replica directory (slurpd.status, and rej file) use a subdir of what the user specifies (add replica/ to it) to avoid /tmp races. A lot of the files that slurpd uses cannot be opened with O_EXCL, nor can we safely determine if there are any hardlinks from another file to it, so we create our own subdirectory so we can control the perms, even in /tmp 2000-04-24 17:03:45 +00:00
Ben Collins
a44adcfb43 filecheck(), we should strcpy the file passed (f arg) and not always slapd_replogfile, else this function is of little real use 2000-04-24 16:47:41 +00:00
Ben Collins
4319e67736 use strcpy instead of sprintf when all we have is two args (source and dest) 2000-04-24 16:44:16 +00:00
Ben Collins
50a41f3ee2 when opening files in /tmp use O_CREAT|O_EXCL to overcome race conditions 2000-04-24 16:42:16 +00:00
Kurt Zeilenga
28d7d099be LDAP_OPERATIONS -> LDAP_OTHER 2000-04-19 13:42:08 +00:00
Kurt Zeilenga
01de012e1c Fix realloc bug and remove use of LDAP_MOD_BVALUES 2000-04-19 08:43:37 +00:00
Kurt Zeilenga
2d4fb1e6e1 Fix c_mutex unlock bug 2000-04-12 01:40:06 +00:00
Kurt Zeilenga
065af58fb7 Fix debug messages 2000-04-12 01:39:52 +00:00
Kurt Zeilenga
4854c6173b Fix debug message 2000-04-12 01:35:53 +00:00
Kurt Zeilenga
2f0ec52df9 Fix improperly terminated comment 2000-04-12 01:10:50 +00:00
Kurt Zeilenga
360c56a78a fix uninitialized ndn bug 2000-04-12 01:09:36 +00:00
Kurt Zeilenga
870dbca576 objectclass=* -> NULL 2000-04-12 01:00:48 +00:00
Julio Sánchez Fernández
976ac15785 The add routine in the backend already frees the entry in error, so 
avoid trying to free it again.
 2000-03-30 13:14:42 +00:00
Julio Sánchez Fernández
7a7855508c We need to inherit syntax_compat from superior. Problem manifests 
itself in that cn suddenly becomes case-sensitive.
 2000-03-24 13:44:37 +00:00
Kurt Zeilenga
ebfb0b8261 Move presence index change outside of values for loop. 2000-03-20 23:38:38 +00:00
Kurt Zeilenga
94d3673dbe wrap sql *.c files with #ifdef SLAPD_SQL to facilate NT builds 
without -DSLAPD_SQL
 2000-03-19 06:18:27 +00:00
Kurt Zeilenga
abbd5ec2fa fix up comment 2000-03-17 22:57:49 +00:00
Kurt Zeilenga
3e5c381d3a Need SOFTADD fix for previous fix 2000-03-17 18:31:40 +00:00
Kurt Zeilenga
d1803fce0a Fix multivalued indices. Need to add indices of remaining 
values after delete of any value.
 2000-03-17 18:22:16 +00:00
Kurt Zeilenga
28c6217a12 s/userPassword/password/ (variable name) 2000-03-17 02:06:50 +00:00
Kurt Zeilenga
d2893546cd Don't add subentries of the RootDSE to namingContexts 2000-03-17 02:06:10 +00:00
Kurt Zeilenga
c66605890d MUST -> MAY ( cn ) 2000-03-17 02:05:21 +00:00
Kurt Zeilenga
cfbeac4576 Missing entry causes slapd to segfault (ITS#482) 
Fix provided by pturgyan@umich.edu
 2000-03-17 01:47:40 +00:00
Dmitry Kovalev
f28e0c1967 update Win32 build environment to support back-sql 2000-03-16 19:58:36 +00:00
Dmitry Kovalev
a16a87a412 even more back-sql files 2000-03-16 19:46:21 +00:00
Dmitry Kovalev
4e703c5261 more back-sql files + rdbms_dependent samples 2000-03-16 19:34:46 +00:00
Dmitry Kovalev
d63b3dc2fd added back-sql files 2000-03-16 19:08:22 +00:00
Dmitry Kovalev
8dc136ddd6 update Unix build environment to support back-sql 
2 more steps left: add back-sql directory itself, and update Win32 build environment.
 2000-03-16 18:54:11 +00:00
Kurt Zeilenga
ad6882acac Add additional be_isroot() checks to protect against empty 
root and client ndns.  (the existing backend protections
*should* be good enough, but one cannot be too safe)
 2000-03-15 19:42:03 +00:00
Kurt Zeilenga
db662b516f Fix NT builds and remove lint 2000-03-13 19:30:14 +00:00
Kurt Zeilenga
000c1ca40b Fix calloc typo 2000-03-09 19:15:48 +00:00
Kurt Zeilenga
9369b9daad Fix malloc of referral pointer array. 2000-03-08 17:37:49 +00:00
Kurt Zeilenga
4710c74605 Rework error handling. Add error descriptions. 
Don't use LDAP_OPERATIONS_ERROR for internal errors.  Use LDAP_OTHER
instead.  (more changes needed in this area)
 2000-03-03 22:37:06 +00:00
Kurt Zeilenga
5681a79d96 StartTLS now grabs conn->c_mutex before mucking with connection. 
Add comment concerning sequencing issues which need to be resolved
by reworking of connection state machine.  Add note that a race
condition exists until this rework is complete.
Rework extended operations to return pointer to static error text.
 2000-03-02 20:36:53 +00:00
Kurt Zeilenga
10588da3c5 Print tag with SASL in progress operations error. 2000-03-02 01:20:00 +00:00
Kurt Zeilenga
ddb9755ba7 Move handling of operations errors due to submission of 
non-bind requests while a multi-step SASL bind process
is under to connection.c.  Return LDAP_OPERATIONS_ERROR,
not LDAP_SASL_BIND_IN_PROGRESS.
 2000-03-02 00:59:10 +00:00
Kurt Zeilenga
e96865c1a8 Reorder error detection based upon precedence 2000-03-01 22:59:34 +00:00
Kurt Zeilenga
add0d847fb Need to strdup subschemasubentry a_type 2000-03-01 19:38:15 +00:00
Kurt Zeilenga
ac7f6c2e37 Replace do_*() return -1 with return SLAPD_DISCONNECT. 
Only return SLAPD_DISCONNECT with a send_ldap_disconnect()
was called.
Add initial code for support predetermined filter results
when filter is undefined (or known to be true or false).
 2000-02-29 23:48:01 +00:00
Kurt Zeilenga
4091381660 Yet another round of SLAPD_SCHEMA_NOT_COMPAT changes, including: 
limited subtype support, modlist handling, filter updates,
lastmod attribute handling.
 2000-02-28 21:16:05 +00:00
Kurt Zeilenga
76553ea53f More -DSLAPD_SCHEMA_NOT_COMPAT changes, including initial 
impl of slap_modlist2mods() and is_at_subtype().
 2000-02-25 19:36:07 +00:00
Kurt Zeilenga
2c16d08b7c noschemacheck should not disable validation of DNs 2000-02-25 19:31:54 +00:00
Kurt Zeilenga
34197ca974 ITS#464: Fix multiple password support 2000-02-24 17:59:10 +00:00
Kurt Zeilenga
ecb915357c Correct comment concerning entry LDIF. 2000-02-22 20:25:54 +00:00
Kurt Zeilenga
550542e020 Use common entry cleanup code. 2000-02-22 19:43:02 +00:00
Kurt Zeilenga
86bd13846f Additional -DSLAPD_SCHEMA_NOT_COMPAT changes 
Not hidden "NULLDN" to "<anonymous>" in modify stats
 2000-02-22 19:26:15 +00:00
Kurt Zeilenga
ceb6412e62 More -DSLAPD_SCHEMA_NOT_COMPAT changes 
Not hidden: "<anonymous>" modifiersname
 2000-02-15 18:57:07 +00:00
Kurt Zeilenga
0dbaf87730 Another round of changes behind -DSLAPD_SCHEMA_NOT_COMPAT 
plus these changes unhidden changes:
	remove now meaning --enable-discreteaci configure option
	fix ITS#451, slapd filters
	Add ber_bvecadd() to support above
	constify ldap_pvt_find_wildcard() and misc slapd routines
	renamed some slap.h macros
	likely broken something
 2000-02-14 20:57:34 +00:00
Kurt Zeilenga
4e4b8204ab ITS#454: fix VPATH support 2000-02-12 20:04:45 +00:00
Kurt Zeilenga
36b0423311 Add Modification/Modifications structures for -DSLAPD_SCHEMA_NOT_COMPAT 2000-02-07 20:37:10 +00:00
Kurt Zeilenga
79e92663e8 Fix -DSLAPD_SCHEMA_NOT_COMPAT -DLDAP_DEBUG builds (still won't run) 2000-02-07 17:50:42 +00:00
Kurt Zeilenga
bc51bd5180 Yet another round of SLAPD_SCHEMA_NOT_COMPAT changes... 
Changes outside of #ifdef include three value filter processing.
 2000-02-06 21:09:44 +00:00
Kurt Zeilenga
f9195f9b6f Another round of SLAPD_SCHEMA_NOT_COMPAT changes including 
basic structures for handing language tags and binary option
(but less actual code to actually support them).  Provided
for reference only.  Will not even compile.
 2000-02-05 05:01:41 +00:00
Kurt Zeilenga
86cedc6ac7 ITS#439: Fix logic error 2000-02-04 17:49:32 +00:00
Kurt Zeilenga
2e3d9d7737 Use experimental OID for ACI syntax. Likely need to add 
additional schema items.
 2000-02-01 18:05:49 +00:00
Kurt Zeilenga
9316c4eace ACI attributes should be of ACI syntax. Need to assign 
OID for experimental syntax.
 2000-02-01 17:53:07 +00:00
Kurt Zeilenga
3708530620 Didn't return after returning unknown critical control. 
Noticed that abandon and unbind don't have control support... something for
another day.
 2000-02-01 01:22:06 +00:00
Kurt Zeilenga
3a6e906194 Replace -DSLAPD_SCHEMA_COMPAT with -USLAPD_SCHEMA_NOT_COMPAT 2000-01-31 22:14:16 +00:00
Kurt Zeilenga
08e3b010d5 Move oc_check_allowed() next to oc_check_required() in preparation for 
rewrite.
 2000-01-31 18:21:07 +00:00
Kurt Zeilenga
10fdd7ff7c Put type;option trimming codes behind SLAPD_SCHEMA_COMPAT. 
Attribute subtyping, especially that using attribute description
options, will have to reengineered.
 2000-01-31 17:59:10 +00:00
Kurt Zeilenga
d298e35514 Add SLAP_SYNTAX_BINARY flag to indicate binary storage is used for 
attributes of the syntax.  Such attribute values be transferred
using binary syntax unless ber2str/str2ber routines are provided.
Used in conjunction with ";binary" attribute description option
and/or the Binary syntax.
 2000-01-31 01:49:44 +00:00