Howard Chu
ff0defdc13
ITS#6248 fix prev commit tlso_ca_list
...
Don't quit on first dir failure, try them all before giving up.
2021-07-22 23:54:25 +01:00
Howard Chu
dfcaa3f01e
ITS#6248 support multiple CAcert dirs
2021-07-22 21:07:21 +01:00
Howard Chu
2c0707cf13
ITS#9157 save TLS errmsg in ld->ld_error
2021-07-22 15:27:31 +01:00
Bin Lan
457f5bd4a9
ITS#9602 Silence warnings in libldap/tls_o.c
2021-06-29 13:16:37 +01:00
Bin Lan
3be2447dfc
ITS#9601 Silence warning in libldap/tpool.c
2021-06-29 13:16:26 +01:00
Konstantin Andreev
7bd1fac58c
ITS#9590 libldap: fix missing unlock on connection alloc failure
2021-06-24 13:40:44 +01:00
Konstantin Andreev
00529facbe
ITS#9578 ldif: terminate buf after truncating \r
2021-06-12 15:08:11 +01:00
Howard Chu
cd3567d750
ITS#9521 additional ciphersuite fixes
...
Actually check version of matched ciphersuite names.
Also, don't change existing TLS1.3 suites if none are specified
in the new suite string. Avoids ITS#9546.
2021-05-06 20:16:40 +01:00
Howard Chu
16fcba1e98
ITS#9541 fix typo in util-int.c
...
From 94fbd96826
2021-04-30 09:25:13 +01:00
Howard Chu
9624bb5af0
ITS#9513 fix prev commit
...
01e5664c7c
removed an include that is needed
2021-04-23 17:10:02 +01:00
Nadezhda Ivanova
db389d38ce
ITS#9502 Implement LDAP_OPT_TCP_USER_TIMEOUT
2021-04-22 21:52:12 +00:00
Howard Chu
edfc4e7ffe
ITS#9530 ldo_defbase now must be freed in ldap_ld_free()
2021-04-21 18:06:26 +01:00
Norm Green
87397b345b
ITS#9530 fix double-free of LDAP_OPT_DEFBASE
2021-04-21 18:03:43 +01:00
Ondřej Kuzník
7df2a0f394
ITS#8847 Allocate a large enough buffer
2021-04-15 15:16:19 +01:00
Andreas Schulze
680091b5b4
ITS#8586 load cert+chain from TLSCertificateFile
...
For OpenSSL
2021-04-12 20:32:09 +01:00
Howard Chu
e0dcf4c4d7
ITS#9518 fix prev commit
2021-04-09 19:29:11 +01:00
Howard Chu
fe6a740381
ITS#9521 clarify - affects OpenSSL 1.1.1, not 1.1.0
2021-04-09 18:23:53 +01:00
Howard Chu
2a3b64f4e6
ITS#9518 add LDAP_OPT_X_TLS_PROTOCOL_MAX option
...
OpenSSL only
2021-04-09 18:12:40 +01:00
Howard Chu
b72bce2400
ITS#9521 Set TLSv1.3 cipher suites for OpenSSL 1.1
2021-04-09 15:59:22 +01:00
Howard Chu
94fbd96826
ITS#9513 Change all lutil time structs to use nanoseconds
...
Instead of microseconds
2021-03-31 18:53:50 +00:00
Howard Chu
9ac3909ead
ITS#9513 Intercept liblber error printer
...
And add time and thread ID prefix to all debug output
2021-03-31 18:53:50 +00:00
Howard Chu
01e5664c7c
ITS#9513 Cleanup debug output
...
Avoid splitting single lines across multiple Debug invocations
2021-03-31 18:53:50 +00:00
Ondřej Kuzník
3bd1b0909a
ITS#9001 Use a TAvl for request tracking in libldap
2021-03-30 15:46:40 +01:00
Ondřej Kuzník
e36d1e31c5
ITS#9001 manual changes
2021-03-30 15:46:40 +01:00
Quanah Gibson-Mount
38d1ac0449
ITS#5365 - Add support for symbol versioning libldap and lilber
2021-03-29 18:11:00 +00:00
Howard Chu
bc0d62db23
Revert "ITS#8847 more fallout from ldap_pvt_sockaddrstr move"
...
This reverts commit f2ddf89e3c
.
Move Sockaddr def to ac/socket.h instead.
2021-03-27 10:38:59 +00:00
Howard Chu
f2ddf89e3c
ITS#8847 more fallout from ldap_pvt_sockaddrstr move
2021-03-26 14:12:47 +00:00
Howard Chu
829263c454
ITS#8847 move lutil_sockaddrstr() to ldap_pvt_sockaddrstr()
2021-03-26 13:45:26 +00:00
HoweverAT
9d594a118e
ITS#8847 Add SOCKET_BIND_ADDRESSES Option
2021-03-25 18:47:11 +00:00
HoweverAT
8ebd065048
ITS#8847 Print local address in connection dump
2021-03-25 17:37:26 +00:00
Howard Chu
bb6844e296
ITS#7295 don't init TLS threads by default
...
Do it explicitly in servers
2021-03-21 15:26:57 +00:00
Quanah Gibson-Mount
7bc9c29005
Merge remote-tracking branch 'origin/mdb.RE/0.9'
2021-03-16 16:45:15 +00:00
Quanah Gibson-Mount
8ad7be2510
Prepare for release (0.9.29)
2021-03-16 16:41:19 +00:00
Hugh McMaster
baee6c47e7
ITS#8996 - Generate and install a pkg-config file for the libldap library
2021-03-15 21:39:55 +00:00
Hugh McMaster
3eea13bdd4
ITS#8996 - Generate and install a pkg-config file for the liblber library
2021-03-15 21:39:55 +00:00
Tero Saarni
5f9352986d
ITS#9419 fix comparison
2021-03-15 19:03:59 +00:00
Quanah Gibson-Mount
267fe028b5
Merge remote-tracking branch 'origin/mdb.RE/0.9'
2021-03-15 19:02:27 +00:00
Quanah Gibson-Mount
b807a63f2c
ITS#9500
2021-03-15 16:14:56 +00:00
Howard Chu
b167701f86
ITS#9500 fix regression from ITS#8662
2021-03-14 17:51:52 +00:00
Howard Chu
f8891d510b
ITS#9376 simplify
2021-03-14 17:51:38 +00:00
Howard Chu
d67f5cea49
ITS#9500 fix regression from ITS#8662
2021-03-14 14:28:38 +00:00
Quanah Gibson-Mount
5d5f431868
ITS#9490 - Add keepalive settings to ldap.conf
2021-03-04 17:11:35 +00:00
Ondřej Kuzník
568239731f
ITS#8345 Remove LDIF_KLUDGE and defer defaults to _wrap()
2021-03-03 10:37:19 +00:00
Matus Honek
1cb4d2f0c9
ITS#8904 - Ensure SSLv3 is enabled when necessary
...
Either at compilation time, or as a system-wide configuration, OpenSSL
may have disabled SSLv3 protocol by default. This change ensures the
protocol NO flag is cleared when necessary, hence allowing for the
protocol to be used.
2021-02-26 18:30:38 +00:00
Quanah Gibson-Mount
a84d11dcce
ITS#9422 - Update for TLS v1.3
2021-02-25 21:32:58 +00:00
Paul B. Henson
146889f205
ITS#9419 Add support for HAProxy proxy protocol v2
2021-02-24 18:11:09 +00:00
Paul B. Henson
dcca73370b
Move slap_sockaddrstr into liblutil
2021-02-24 18:11:09 +00:00
Quanah Gibson-Mount
56609fb5a6
ITS#9469 - Typo fixes
2021-02-18 20:32:28 +00:00
Quanah Gibson-Mount
ce2c5173bd
ITS#9161 - Fix various typos
...
Fix a number of different typos across the code base
2021-02-17 18:42:46 +00:00
Howard Chu
00a5815c2c
ITS#9465 remove assert in ldap_get_option()
...
Since it's already checked for error
2021-02-11 17:03:32 +00:00