Howard Chu
9a65f35f2e
partially revert prev commit
2009-11-06 02:20:40 +00:00
Howard Chu
86d9e86afd
Minor cleanup in strval2str
2009-11-06 01:37:09 +00:00
Hallvard Furuseth
48048c5348
More ITS#6353 - relent a bit: accept terminating NUL byte, which AD can send
2009-11-04 11:17:03 +00:00
Hallvard Furuseth
7b22b22202
ITS#6355: Fix uninitialiezed lso_tmp_rsa_cb() return value
2009-10-30 17:08:57 +00:00
Hallvard Furuseth
989bd54914
For ITS#6353: Catch embedded NULs in BerValues converted to char* strings
2009-10-28 23:00:27 +00:00
Howard Chu
585940984c
Fix prev commit, s/errno/err/g
2009-10-27 01:55:45 +00:00
Howard Chu
405c68abf9
For prev commit, check for EINTR/EAGAIN/EWOULDBLOCK
2009-10-26 23:52:55 +00:00
Howard Chu
a05d7015e0
ITS#6327, #6334 take ret=-1/EINTR into account
2009-10-26 23:36:39 +00:00
Howard Chu
30c55952d3
Cleanup prev commit
2009-10-26 19:19:20 +00:00
Howard Chu
1155f5ff20
ITS#6327 fix sb_sasl_generic_write retval for partial writes
2009-10-26 18:49:42 +00:00
Hallvard Furuseth
3a688d8d59
ITS#6348: Fix inverted LBER_USE_DER test in ber_put_seqorset() since rev 1.73
2009-10-23 20:39:54 +00:00
Hallvard Furuseth
068cf1c701
ITS#6344: return failure on failure in ber_put_ostring()/ber_put_bitstring()
2009-10-21 12:41:34 +00:00
Hallvard Furuseth
7e107de4d9
Fix comment describing BerElement.ber_usertag
2009-10-21 11:41:44 +00:00
Hallvard Furuseth
47617b033c
Cleanup - macroize magic constant (ITS#5909)
2009-10-21 11:31:59 +00:00
Ralf Haferkamp
8fcdc29405
In case of certificate verification failures include failure reason
...
into the error message (openssl only)
2009-09-30 16:25:23 +00:00
Howard Chu
e0431681ad
On OpenSSL 0.9.8 and newer, use RSA_generate_key_ex since
...
RSA_generate_key is deprecated
2009-09-25 23:31:24 +00:00
Pierangelo Masarati
4b4db7b529
keep compatibility with slapd's gmtime_mutex (ITS#6262)
2009-09-08 23:21:21 +00:00
Howard Chu
d0a410b212
Tweak MozNSS include path
2009-08-29 03:56:25 +00:00
Howard Chu
2ba0e44ad1
ITS#6278 PEM support for MozNSS from rmeggins@redhat.com, with header cleanups
2009-08-29 03:41:53 +00:00
Pierangelo Masarati
0b44f1fbcf
silence warnings
2009-08-21 17:06:22 +00:00
Pierangelo Masarati
ba2bddafbd
copy username, much like other string-valued options (more about ITS#6257)
2009-08-19 21:46:07 +00:00
Pierangelo Masarati
a846dad6fb
cleanup previous commit
2009-08-19 13:10:30 +00:00
Pierangelo Masarati
9abaf38d1f
silence warnings
2009-08-19 12:23:27 +00:00
Pierangelo Masarati
8776630509
address signedness issue
2009-08-19 12:06:04 +00:00
Hallvard Furuseth
f0d775609b
More ITS#6262: Also define ldap_pvt_gmtime_[un]lock if localtime_r is missing
2009-08-19 10:10:31 +00:00
Pierangelo Masarati
637182b8f4
fix previous commit
2009-08-19 00:12:39 +00:00
Pierangelo Masarati
f3cdcadf89
wrap gmtime for reentrancy (ITS#6262)
2009-08-18 23:48:15 +00:00
Pierangelo Masarati
5c916588b8
fix previous commit
2009-08-18 19:09:12 +00:00
Pierangelo Masarati
98a8b74d53
expose SASL_USERNAME when it makes sense (EXTERN needs work, much like SASL_SSL) (ITS#6257)
2009-08-18 18:47:56 +00:00
Howard Chu
b87553684a
More for prev commit
2009-08-14 20:02:08 +00:00
Howard Chu
9b764c3f9e
Fix prev commit again, IPPROTO_TCP is the documented correct approach
2009-08-13 21:35:38 +00:00
Howard Chu
f5bad5673b
Fix prev commit, it was not Linux-only as it claimed to be.
2009-08-13 20:55:04 +00:00
Hallvard Furuseth
b0e6e73d1c
ITS#6215 cleanup: Export ber_skip_element() to complement ber_peek_element()
2009-08-12 22:13:50 +00:00
Hallvard Furuseth
3e20bda971
Trying again: No need to maintain ber->ber_usertag except at ber_printf "!"
2009-08-12 22:12:15 +00:00
Hallvard Furuseth
791035d93f
Fix last commit: cast strcasecmp unsigned char* to char*
2009-08-07 21:46:25 +00:00
Hallvard Furuseth
3802aa5483
More ITS#6215: Catch malformed elements in ber_get_stringbvl().
...
Do not use ber_<first/next>_element(), which have no error return.
2009-08-07 19:26:11 +00:00
Hallvard Furuseth
bc20500e62
More ITS#6215: Define and use ber_tag_and_rest() and ber_<peek/skip>_element()
2009-08-07 19:15:26 +00:00
Hallvard Furuseth
95fbdcab4e
More ITS#6215: Fix wrong fix in rev 1.121
2009-08-07 16:04:25 +00:00
Howard Chu
e229b7c398
In session_chkhost get the last CN, not the first.
2009-08-07 11:59:42 +00:00
Hallvard Furuseth
455c49ba3e
Simplify struct bgbvr and ber_get_stringbvl(), preserving behavior.
2009-08-04 21:11:38 +00:00
Howard Chu
d479db53e0
Minor cleanup
2009-07-31 03:26:03 +00:00
Howard Chu
403ee0b62e
Fix, reqcert == ALLOW should ignore cert verification failures
2009-07-31 01:51:34 +00:00
Howard Chu
3f2101198b
ITS#6239 use our own hostname checking for MozNSS
2009-07-31 01:32:51 +00:00
Hallvard Furuseth
02e165258c
Might help ITS#6145: change while to do-while, to make visible that the
...
loop saving malloced data is run at least once.
2009-07-31 00:05:32 +00:00
Howard Chu
d4f2a06887
Check for CN length match as well in chkhost
2009-07-30 21:52:09 +00:00
Hallvard Furuseth
19b8065922
More ITS#6215: Fix va_arg integer types for ber_scanf "bei" & ber_printf "BX"
2009-07-29 23:03:10 +00:00
Hallvard Furuseth
8b3bb91e93
More ITS#6215: Fix ber_scanf(,"mMvVW",) cleanup on error:
...
Parse args correctly and free up memory.
Also set some lengths=0 and remove unneeded ptr==NULL tests before frees.
2009-07-29 22:38:19 +00:00
Hallvard Furuseth
886520f193
More ITS#6215: Free data to the memory context used to allocate it
2009-07-29 22:10:45 +00:00
Hallvard Furuseth
b6bad3e995
More ITS#6215:
...
Reject indefinite-length format in ber_skip_tag(). localize *len.
Reject broken and too large bitstrings in ber_get_bitstringa().
Simplify a number of functions somewhat - no functionality changes.
Remove unnecessary tests and ber_tag updates after ber_skip_tag().
2009-07-29 21:47:54 +00:00
Hallvard Furuseth
29aa1d07c7
For ITS#6215: No need to maintain ber->ber_usertag except at ber_printf "!"
2009-07-29 17:21:54 +00:00