Commit Graph

1528 Commits

Author SHA1 Message Date
Ondřej Kuzník
10a6ffa3e9 Expose ldap_int_tls_connect as ldap_pvt_tls_connect 2018-10-22 11:35:31 +01:00
Ondřej Kuzník
0f44671c51 ITS#8772 Remove the local rmutex implementation 2018-10-19 13:08:10 +01:00
Ondřej Kuzník
7fa5eb4242 ITS#8772 Remove type distinction for recursive mutexes 2018-10-19 13:08:10 +01:00
Ondřej Kuzník
5c0b820c4a ITS#8772 Remove cthread support 2018-10-19 13:08:10 +01:00
Ondřej Kuzník
d4df939b95 ITS#8858 Introduce ldap_pvt_thread_pool_walk 2018-10-19 13:08:09 +01:00
Ondřej Kuzník
33aa4405e5 ITS#8850 Split ldap_pvt_thread_pool_destroy logic 2018-10-19 13:08:09 +01:00
Ondřej Kuzník
8ee03cea88 Use correct namespace for (BER_)STRLENOF 2018-07-19 08:35:29 +01:00
Ondřej Kuzník
bf816cb7c0 Do not require ac/string.h for lber_pvt.h 2018-07-18 09:16:11 +01:00
Ondřej Kuzník
8a259e3df1 ITS#8573 allow all libldap options in tools -o option 2018-06-14 16:19:10 +01:00
Quanah Gibson-Mount
59e9ff6243 Happy New Year 2018-03-22 15:35:24 +00:00
Ondřej Kuzník
8e34ed8c78 ITS#8753 Public key pinning support in libldap 2017-11-13 17:24:49 +00:00
Bryan Duncan
a25046535c ITS #6300: Added support for using kqueue in slapd (for systems that support kqueue(2).
Patch obtained from:
        http://public.me.com/bryan.duncan/bryan-duncan.kqueue.090922.patch

 # This patch file is derived from OpenLDAP Software. All of the
 # modifications to OpenLDAP Software represented in the following
 # patch(es) were developed by Apple.  I, Bryan Duncan, am authorized by
 # Apple, my employer, to release this work under the following terms.
 #
 # Copyright 2009 Apple Inc. All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
 # modification, are permitted only as authorized by the OpenLDAP
 # Public License.
 #
 # A copy of this license is available in file LICENSE in the
 # top-level directory of the distribution or, alternatively, at
 # http://www.OpenLDAP.org/license.html.
 #
2017-10-19 14:54:50 -07:00
Josh Soref
10566c8be3 ITS#8605 - spelling fixes
* javascript
* kernel
* ldap
* length
* macros
* maintained
* manager
* matching
* maximum
* mechanism
* memory
* method
* mimic
* minimum
* modifiable
* modifiers
* modifying
* multiple
* necessary
* normalized
* objectclass
* occurrence
* occurring
* offered
* operation
* original
* overridden
* parameter
* permanent
* preemptively
* printable
* protocol
* provider
* really
* redistribution
* referenced
* refresh
* regardless
* registered
* request
* reserved
* resource
* response
* sanity
* separated
* setconcurrency
* should
* specially
* specifies
* structure
* structures
* subordinates
* substitution
* succeed
* successful
* successfully
* sudoers
* sufficient
* superiors
* supported
* synchronization
* terminated
* they're
* through
* traffic
* transparent
* unsigned
* unsupported
* version
* absence
* achieves
* adamson
* additional
* address
* against
* appropriate
* architecture
* associated
* async
* attribute
* authentication
* authorized
* auxiliary
* available
* begin
* beginning
* buffered
* canonical
* certificate
* charray
* check
* class
* compatibility
* compilation
* component
* configurable
* configuration
* configure
* conjunction
* constraints
* constructor
* contained
* containing
* continued
* control
* convenience
* correspond
* credentials
* cyrillic
* database
* definitions
* deloldrdn
* dereferencing
* destroy
* distinguish
* documentation
* emmanuel
* enabled
* entry
* enumerated
* everything
* exhaustive
* existence
* existing
* explicitly
* extract
* fallthru
* fashion
* february
* finally
* function
* generically
* groupname
* happened
* implementation
* including
* initialization
* initializes
* insensitive
* instantiated
* instantiation
* integral
* internal
* iterate
2017-10-11 14:39:38 -07:00
Nathaniel McCallum
29f6260364 ITS#7532 - Add new function ldap_connect().
This function is used to manually establish a connection after
a call to ldap_initialize(). This is primarily so that a file
descriptor can be obtained before any requests are sent for the
purposes of polling for writability.
2017-10-11 14:31:22 -07:00
Hallvard Furuseth
ff2d7cc798 ITS#8733 Allow a raw integer to be decoded from a berval 2017-09-28 14:15:06 +01:00
Hallvard Furuseth
62811e8f65 ITS#8733 Allow extraction of the complete ber element 2017-09-28 14:14:55 +01:00
Ondřej Kuzník
6aa6daf2f0 ITS#8732 Extend CIRCLEQ macros 2017-09-28 08:53:58 +01:00
Ondřej Kuzník
a8f01cc885 ITS#8638 Add a recursive mutex to libldap_r for libevent
Most thread implementations suppport a native recursive mutex, use that
where possible (especially when a regular mutex is recursive already).

Also provide a macro for applications to test whether they can use the
lock functions interchangeably.
2017-09-26 16:26:33 +01:00
Howard Chu
afa861bf22 ITS#8719 add crypt_r() support 2017-09-06 21:25:16 +01:00
Quanah Gibson-Mount
70f482880a Regenerate for autoca, asyncmeta, and wiredtiger 2017-04-19 12:49:24 -07:00
Quanah Gibson-Mount
45f131616b ITS#8643 - Fix typo 2017-04-18 08:01:26 -07:00
Howard Chu
a336241e0e Add ldap_pvt_thread_pool_queues decl
Was missing from 0ef9e6107b
2017-04-09 15:35:05 +01:00
Howard Chu
b402a2805f Add options to use DER format cert+keys directly
Instead of loading from files.
2017-04-09 00:13:42 +01:00
Ondřej Kuzník
e56a849e5d ITS#8625 Separate Avlnode and TAvlnode types
Switch AVL_CHILD/AVL_THREAD values and set Avlnode bits to AVL_CHILD for
better compatibility between avl and tavl as suggested by Howard.
2017-03-29 14:52:44 +01:00
Howard Chu
e12ca8b6fe Fixes for multiple threadpool queues
Remove poolq_hash, it wasn't distributing work evenly to the queues.
Just walk through all queues and use the one with smallest
active+pending count. Since pool_retract also relied on the hash,
a different means of locating the thread to retract was needed.
Add pool_submit2 which returns the threadpool task structure,
and record which poolq this task lives on.
2017-03-15 11:13:09 +00:00
Howard Chu
451a9623f3 ITS#8576 Revert "LDAP_TAILQ fix"
This reverts commit 8ee8248328.
2017-02-01 11:58:54 +00:00
Quanah Gibson-Mount
c3cb77e4a6 ITS#8570 - Fix typo 2017-01-17 08:49:26 -08:00
Quanah Gibson-Mount
1df85d3427 Happy New Year! 2017-01-03 12:36:47 -08:00
Quanah Gibson-Mount
6c4d6c880b Happy New Year! 2016-01-29 13:32:05 -06:00
Howard Chu
854eb3b7dc ITS#8295 more for prev commit
Silence warnings about struct timeval declaration
2015-11-16 13:36:20 +00:00
Emily Backes
5324d283d9 ITS#8054 operation duration logging 2015-10-31 11:55:23 +00:00
Howard Chu
597ce61000 ITS#8295 fix Windows microsecond timer
Also add ldap_pvt_gettimeofday() to
emulate gettimeofday on Windows
2015-10-28 13:49:25 +00:00
Quanah Gibson-Mount
1705fa7e55 Happy New Year 2015-02-11 15:36:57 -06:00
Howard Chu
a32a2da33a ITS#8040 experimental Lazy Commit 2015-02-02 10:50:22 +00:00
Howard Chu
c8353f7acd ITS#8003 fix off-by-one in LDIF length
must account for leading space when counting total number of lines
2014-12-15 14:36:55 +00:00
Howard Chu
e9f5e59ba2 LDAP_TXN is now RFC 5805 2014-09-16 00:09:47 +01:00
Howard Chu
dda779d83e Windows64 32/64 silliness
On Windows64, long is the same size as int. Use size_t when we
need an actual 64 bit unsigned long.
2014-06-23 08:00:11 -07:00
Kurt Zeilenga
5c878c1bf2 Happy new year (belated) 2014-01-25 05:21:25 -08:00
Quanah Gibson-Mount
1a712bf18e Enable features that were hidden behind LDAP_DEVEL 2013-09-19 09:50:52 -07:00
Howard Chu
16f8b0902c ITS#7398 add LDAP_OPT_X_TLS_PEERCERT
retrieve peer cert for an active TLS session
2013-09-10 04:31:39 -07:00
Howard Chu
0045e56c34 ITS#7683 more for tls version/cipher info
Add LDAP_OPT_X_TLS_VERSION / LDAP_OPT_X_TLS_CIPHER for
retrieving from an LDAP session handle. Update ldap_get_option(3).
2013-09-09 11:52:10 -07:00
Howard Chu
7d6d6944c5 ITS#7683 log tls prot/cipher info
Note: I could not test the MozNSS patch due to the absence of
NSS PEM support on my machine. Given the review comments in
https://bugzilla.mozilla.org/show_bug.cgi?id=402712 I doubt that
trustworthy PEM support will be appearing for MozNSS any time soon.
2013-09-07 12:22:09 -07:00
Howard Chu
e631ce808e ITS#7595 Add Elliptic Curve support for OpenSSL 2013-09-07 09:47:40 -07:00
Howard Chu
ca310ebff4 Add channel binding support
Currently only implemented for OpenSSL.
Needs an option to set the criticality flag.
2013-08-26 23:31:48 -07:00
Howard Chu
34f832faee Multiple queues per threadpool 2013-08-16 19:04:49 -07:00
Howard Chu
461db2de1a ITS#7497 fix lineno overflow in ldif_read_record() 2013-01-23 02:19:02 +00:00
Kurt Zeilenga
0fd1bf30b8 Happy New Year 2013-01-02 10:22:57 -08:00
Howard Chu
bbfe587246 Add support for 64 bit index hashing 2012-12-03 18:14:28 -08:00
Mat Booth
e6d190c7de ITS#7332 Changes required to build with Microsoft Visual Studio 2012-07-23 08:29:39 -07:00
Emily Backes
c453a236fc Update name information 2012-07-22 07:08:35 -07:00
Jani Salonen
a572f4b967 ITS#7305 add slapi_[get|free]_client_ip() 2012-06-23 05:46:25 -07:00
Howard Chu
19aeb1cda9 ITS#7293 fix typo in ldap_create_session_tracking_control() decl 2012-06-23 05:38:57 -07:00
Kurt Zeilenga
2bbf9804b9 Happy New Year! 2012-01-01 07:10:53 -08:00
Howard Chu
68ee165fb5 ITS#7115 blocked writers should not interfere with pool pause 2011-12-21 01:24:23 -08:00
Quanah Gibson-Mount
692d6e4f55 ITS#6984 enable draft-wahl-ldap-session 2011-11-07 14:02:50 -08:00
Howard Chu
df81345337 Add MDB support to configure and test framework.
Does not update the tests themselves.

In configure --help, call it "mdb database backend" instead of something
with "memory-mapped" which could confuse somebody about a memory-only DB.

Conflicts:

	servers/slapd/back-mdb/Makefile.in
2011-09-01 17:00:26 -07:00
Pierangelo Masarati
92f4a3b2a7 response tag is [1] according to RFC 2589 (ITS#6886) 2011-06-30 21:24:12 +02:00
Howard Chu
9f7d119ce3 Add LDAP_OPT_X_TLS_PACKAGE
to return the name of the underlying TLS implementation
2011-06-10 02:11:26 -07:00
Kurt Zeilenga
868e11f6f5 use IANA assigned OID for dontUseCopy control, don't hide anymore 2011-03-16 19:24:41 +00:00
Hallvard Furuseth
0ac44dc868 ITS#6859 Fix NT threads LDAP_INT_MUTEX_FIRSTCREATE().
s/int_/pvt_/ in call to ldap_int_thread_mutex_init().
Bug introduced in rev 1.33; OpenLDAP 2.4.24.
2011-03-14 16:54:30 +00:00
Howard Chu
93da727d86 ITS#6848 Add -w option to wait for DB startup before parent exits 2011-03-01 01:19:37 +00:00
Howard Chu
ba30a9ee62 Export pw_string64 as lutil_passwd_string64 2011-02-07 00:46:06 +00:00
Howard Chu
e542bd5498 ITS#5421 export ldap_debug define in <ldap_log.h> 2011-01-19 21:20:10 +00:00
Kurt Zeilenga
be897b6679 Outline SASL interactive API (no meat) 2011-01-06 18:37:23 +00:00
Kurt Zeilenga
966cef8c9a Happy New Year 2011-01-05 00:42:37 +00:00
Kurt Zeilenga
390ba8c84e VC adjust controls tag 2011-01-04 16:01:07 +00:00
Kurt Zeilenga
4e515a8a65 Add VC support for ppolicy and authzid inner controls 2011-01-03 22:54:48 +00:00
Kurt Zeilenga
37dcb1d791 Remove authzid parameter from verify credential response.
If client wants authzid, it can ask by adding an Authorization Identity
Request inner control.
2011-01-03 22:05:23 +00:00
Kurt Zeilenga
7f4c7ebc1c Extend Verify Credentials encode/decode per -devel post.
(ldapvc doesn't yet request/handle inner password policy control.
2011-01-03 21:49:26 +00:00
Kurt Zeilenga
3242a3fab4 Fix prototype to match code 2010-12-28 22:59:15 +00:00
Kurt Zeilenga
6119ad7294 Misc vc updates 2010-12-15 00:59:42 +00:00
Kurt Zeilenga
11fc6a68de Fix typo 2010-12-14 21:51:49 +00:00
Kurt Zeilenga
4ce4e4768a should be .5 2010-12-14 21:38:31 +00:00
Kurt Zeilenga
3f25b4ffcf Assign experimental OID 2010-12-14 21:37:41 +00:00
Kurt Zeilenga
d3b51f2614 LDAP "Verify Credentials" operation
Client library implementation only
2010-12-14 20:58:02 +00:00
Pierangelo Masarati
dc156d7f6e allow to set LDIF max line width (ITS#6645) 2010-12-07 10:14:51 +00:00
Hallvard Furuseth
285eee8904 ITS#6625 Invert test in NT threads LDAP_INT_MUTEX_FIRSTCREATE 2010-12-06 10:48:29 +00:00
Hallvard Furuseth
7cb9c496bf ITS#6625 concurrency patch cleanup 2010-12-06 10:41:41 +00:00
Howard Chu
0f30db1c46 ITS#6625 concurrency patch from Doug Leavitt @ Oracle .com 2010-10-22 21:45:48 +00:00
Howard Chu
fca72f333b Add ldap_sasl_interactive_bind() 2010-10-14 01:29:32 +00:00
Howard Chu
0890a89c37 ITS#6669 remove obsolete SunOS4 LWP support 2010-10-12 10:26:31 +00:00
Pierangelo Masarati
0c0873803d add parsing support for [unsigned] long long (ITS#6622) 2010-08-12 23:32:37 +00:00
Howard Chu
2dd75cf206 Support option SASL_GSS_CREDS 2010-05-13 06:08:21 +00:00
Kurt Zeilenga
3dadeb3efe happy belated New Year 2010-04-13 22:17:29 +00:00
Pierangelo Masarati
9331182a07 union of operation-specific data in LDIFRecord (ITS#6194, by Rich Megginson) 2010-04-13 07:37:59 +00:00
Pierangelo Masarati
d033f680b5 (ITS#6194) Patch - Enhancement - provide LDIF support as libldif 2010-04-12 02:01:55 +00:00
Hallvard Furuseth
31d7966546 ITS#6402: Kill broken macro LBER_INVALID.
Also update comments about ber_tag_t vs BER identifier octets.
2009-11-30 10:36:48 +00:00
Hallvard Furuseth
3aff1b0c0c ITS#6351,6390: s/memrchr/lutil_memrchr/, but try #define lutil_memrchr->memrchr 2009-11-20 20:43:50 +00:00
Howard Chu
5e52ad6751 ITS#6351 only declare memrchr if not defined by platform 2009-11-15 21:41:41 +00:00
Pierangelo Masarati
07dc23f5ee treat bervals as bervals (related to ITS#6378,ITS#6379) 2009-11-15 18:26:53 +00:00
Hallvard Furuseth
48048c5348 More ITS#6353 - relent a bit: accept terminating NUL byte, which AD can send 2009-11-04 11:17:03 +00:00
Hallvard Furuseth
dd1aee481d Revert previous change - debug levels should all have the same type 2009-10-30 17:43:52 +00:00
Hallvard Furuseth
989bd54914 For ITS#6353: Catch embedded NULs in BerValues converted to char* strings 2009-10-28 23:00:27 +00:00
Howard Chu
def5f3e6f5 Prev commit: flags should be unsigned 2009-10-26 19:31:36 +00:00
Howard Chu
02fdfc871f Cleanup prev commit 2009-10-26 19:30:42 +00:00
Howard Chu
1155f5ff20 ITS#6327 fix sb_sasl_generic_write retval for partial writes 2009-10-26 18:49:42 +00:00
Hallvard Furuseth
278880083b Fix sock_errset macro: Wrap it in (), return void to match Winsock version.
AC_SOCKET_INVALID nitpick: ((unsigned)~0) [needs 2's compl.] -> ((unsigned)-1)
2009-10-23 12:29:50 +00:00
Howard Chu
f8a77ecfa2 ITS#6342 include <ac/unistd.h> 2009-10-21 03:09:28 +00:00
Pierangelo Masarati
16d3ad01c0 don't "overflow" debug levels (ITS#6324) 2009-10-06 22:03:15 +00:00
Hallvard Furuseth
f0d775609b More ITS#6262: Also define ldap_pvt_gmtime_[un]lock if localtime_r is missing 2009-08-19 10:10:31 +00:00