mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-21 03:10:25 +08:00
Code Issues Packages Projects Releases Wiki Activity
17,370 Commits 38 Branches 307 Tags 74 MiB
69d8588ab4
Commit Graph

119 Commits

Author SHA1 Message Date
Pierangelo Masarati
30ffa33d7e do not propagate undefined or otherwise broken search filters (ITS#5614) 2008-07-14 22:14:49 +00:00
Pierangelo Masarati
c6f12694fc allow proxies to filter out search references (ITS#5593) 2008-07-07 21:25:59 +00:00
Howard Chu
010295e9e7 More symbols for ITS#5355 2008-06-29 21:13:03 +00:00
Howard Chu
f481ffef9c ITS#5355 use bi_extra instead of calling directly into back-ldap 2008-02-08 02:01:17 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
9a00bbb35f add support for session tracking (draft-wahl-ldap-sessio) to proxy backends requests 2007-08-22 15:49:35 +00:00
Pierangelo Masarati
e07dc8c757 fix more spurious return stuff; split quarantine in: detection, exploitation, recovery; describe failure reasons 2007-01-28 00:24:10 +00:00
Kurt Zeilenga
3297be046b silence warnings 2007-01-19 07:31:02 +00:00
Pierangelo Masarati
3042c57ac0 allow forcing abandon of search operations on a connection basis 2007-01-09 12:19:04 +00:00
Pierangelo Masarati
e2d65fb69b fix previous commit(s) 2007-01-09 00:59:17 +00:00
Howard Chu
a6a8fb514b Add TLS context configuration 2007-01-08 23:36:24 +00:00
Pierangelo Masarati
d132415e5f cleanup 2007-01-05 10:34:32 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
7e8242d50d pool privileged connections (ITS#4791) 2006-12-24 18:23:36 +00:00
Pierangelo Masarati
3e427ad75a support a separate cached connection for binds when using (liberal) idassert flagged with "override" (ITS#4781) 2006-12-17 22:11:40 +00:00
Pierangelo Masarati
f8d1a61866 more on clarification of special proxy identities and resilience to connection failure 2006-10-07 18:07:56 +00:00
Pierangelo Masarati
5714f8565f fix rebind with idassert when a connection expires; also, fix override 2006-09-30 01:11:19 +00:00
Pierangelo Masarati
6e18cdb5fd add basic monitoring support to back-ldap/slapo-chain (slapo-chain needs work) 2006-09-14 01:05:48 +00:00
Pierangelo Masarati
150a4f106c improve timeout support (ITS#4157, ITS#4663); manpage cleanup 2006-09-04 08:24:05 +00:00
Pierangelo Masarati
34af916e3f fix response sending while rebinding (ITS#4597) 2006-06-24 16:58:49 +00:00
Pierangelo Masarati
3ebb40c4dd port identity assertion to back-meta; share as much code as possible with back-ldap; misc cleanup 2006-06-15 23:12:38 +00:00
Pierangelo Masarati
740f196548 rework quarantine locking and so 2006-06-07 23:25:38 +00:00
Pierangelo Masarati
85c9a7b4c5 further cleanop of previous commits 2006-05-30 00:40:39 +00:00
Pierangelo Masarati
f5fcd2c169 cleanup previous commit 2006-05-30 00:12:23 +00:00
Pierangelo Masarati
a6406de871 make room for plugins that deal with quarantine end 2006-05-29 21:43:20 +00:00
Pierangelo Masarati
795841b5a4 implement proxy quarantine (ITS#4569) 2006-05-27 19:54:27 +00:00
Pierangelo Masarati
e5c173691d add cancel strategies (ITS#4560) 2006-05-20 14:29:01 +00:00
Pierangelo Masarati
0c33c17bb5 "single-conn" forces flushing of existing conns during rebind on same conn (ITS#4546) 2006-05-14 17:32:15 +00:00
Pierangelo Masarati
373ded8d24 add URI list resorting feature (ITS#4524) 2006-05-06 16:15:25 +00:00
Pierangelo Masarati
0500576056 add support for old proxyAuthz encoding; allow to workaround buggy implementations of the new version (now RFC4370) 2006-04-08 11:12:30 +00:00
Pierangelo Masarati
8c1b8d3f7b actually, if a connection is already in the AVL tree, use it if not binding; otherwise use a tainted one; taint connections that must be freed when refcnt goes to zero 2006-04-07 01:28:56 +00:00
Pierangelo Masarati
3861c47316 queue implicit binds (ITS#4409) 2006-03-03 16:27:00 +00:00
Pierangelo Masarati
54aefe30f7 implement proxy long-lived connection TTL 2006-02-01 23:10:12 +00:00
Pierangelo Masarati
543c588772 don't send error with back-meta 2006-01-09 15:13:29 +00:00
Howard Chu
2b39a26150 ITS#4315 fix bind concurrency issue 2006-01-09 09:14:53 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Pierangelo Masarati
1b42fde372 implement (per-target) per-conn proxy-side idle-timeout (ITS#4115); revitalize (per-target) network-timeout in back-meta; fix issue with connection initialization error in ldap_back_retry(); cleanup configuration of back-ldap 2005-12-07 17:35:02 +00:00
Pierangelo Masarati
3e7fd464dc streamline back-ldap/slapo-chain configuration; add the possibility to cache non-configured, anonymous referral URIs 2005-11-19 17:48:33 +00:00
Pierangelo Masarati
7fa4b159bf fix dangling resources issue in slapd-ldap; completely rework slapo-chain to fix the resource leak/concurrency issue; add support for multiple well-known URIs to set credentials for, and deal with unknown URIs anonymously; similar reworking and cleanup for slapd-meta 2005-11-19 15:00:50 +00:00
Pierangelo Masarati
4cab386d13 backport write operation timeouts from back-meta to back-ldap; minor cleanup & silence warnings 2005-11-06 23:29:10 +00:00
Pierangelo Masarati
37f4e80929 hide unused member (will likely be removed) 2005-09-24 18:46:01 +00:00
Pierangelo Masarati
112be0118e cleanup states/timeout handling in back-ldap/meta; add connection pooling and defer of pseudoroot bind to back-meta 2005-09-24 18:39:26 +00:00
Pierangelo Masarati
c6e2a69f27 fix tls propagation, including rebind 2005-08-11 16:01:24 +00:00
Pierangelo Masarati
4ed743cc84 remove unrequired member; address ITS#3913 2005-08-02 22:48:30 +00:00
Pierangelo Masarati
982981d465 fix potential deadlock; improve idassert in case of authzFrom rules (new flag values); rootdn can always idassert 2005-07-03 23:27:56 +00:00
Pierangelo Masarati
9e811df052 seems to definitely fix issues related to ITS#3808 2005-06-29 16:38:09 +00:00
Pierangelo Masarati
a7f44159c1 complete back-config support, including chain overlay; passes all tests; HEADS-UP: few syntax changes (essentially backwards compatible) 2005-05-23 07:25:00 +00:00
Pierangelo Masarati
da2a26d19f first round of back-config support; need to #define LDAP_BACK_BCONFIG; no support for rewrite and so, still stuff to fix. Doesn't pass most of the tests 2005-05-21 19:07:14 +00:00
Pierangelo Masarati
c80eb34888 honor T-F filters (ITS#3706) and some cleanup 2005-05-05 00:07:17 +00:00
Pierangelo Masarati
a141e3badf enable use of asynchronous call to StartTLS 2005-04-16 02:56:46 +00:00