mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
19,335 Commits 38 Branches 307 Tags 74 MiB
6a544b7193
Commit Graph

1713 Commits

Author SHA1 Message Date
Howard Chu
cd673c2ff2 ITS#5300, reject substring filters with empty values 2007-12-29 02:32:22 +00:00
Howard Chu
4c9af232d2 Cleanup spaces 2007-12-20 02:46:59 +00:00
Howard Chu
8ddc2dd773 ITS#5291, more for rev 1.79 search timeouts 2007-12-20 02:46:13 +00:00
Howard Chu
33c0301b25 Better fix to prev commit 2007-12-17 07:11:24 +00:00
Hallvard Furuseth
e4ffd33f1a Declare enough buffer space for out-of-range URL port numbers 2007-12-15 23:36:22 +00:00
Pierangelo Masarati
20f2548c82 fix declarations of buffers for numeric strings; other related cleanup 2007-12-15 15:23:23 +00:00
Howard Chu
da53cd0c40 uid/gid are unsigned 2007-12-15 02:28:45 +00:00
Howard Chu
f02d481426 ITS#5263 fix return code from parse_sasl_bind_result() 2007-12-15 02:06:12 +00:00
Howard Chu
5418b51643 Quiet request logging 2007-10-10 05:17:49 +00:00
Howard Chu
cbb6f3bd50 ITS#5100 ldap_control_dup - OID must be non-NULL 2007-10-09 01:38:50 +00:00
Howard Chu
65db0bf8eb ITS#3864 use sasl_ssf_t where expected 2007-10-06 14:55:53 +00:00
Pierangelo Masarati
d50645fc0a dispose of connection when server down (related to ITS#5127) 2007-09-29 11:24:39 +00:00
Pierangelo Masarati
27e747ad48 fix format 2007-09-29 11:22:31 +00:00
Pierangelo Masarati
b9e2fd0dd6 ldap_control*_dup() is no longer private; add ldap_pvt_put_control 2007-08-24 12:29:33 +00:00
Pierangelo Masarati
25d46e7578 rework controls API 2007-08-22 22:35:14 +00:00
Pierangelo Masarati
95dd8de586 fix and cleanup 2007-08-22 20:55:54 +00:00
Kurt Zeilenga
0025d7fa1f Fix last commit. 2007-08-22 19:33:28 +00:00
Kurt Zeilenga
e6699ce023 Password policy request control should have no control value. 
Extend ldap_create_control() to supporting creating such.
 2007-08-22 19:26:55 +00:00
Pierangelo Masarati
b0d2063d92 client side of draft-wahl-ldap-session 2007-08-21 23:52:03 +00:00
Pierangelo Masarati
145e6fc1f8 fix or comment Calysto findings 2007-08-21 10:52:16 +00:00
Pierangelo Masarati
403704b7bc move uuid normalized to string to liblutil 2007-08-17 12:42:52 +00:00
Pierangelo Masarati
6df2df130b don't leak in case of error 2007-08-17 09:47:14 +00:00
Pierangelo Masarati
4bc19cbbb9 cleanup tools 2007-08-16 09:22:07 +00:00
Hallvard Furuseth
973a2b41b7 Make LDAP_MEMORY_DEBUG a bitmask. #define LDAP_MEMORY_DEBUG_ASSERT. ITS#4990. 2007-07-24 20:53:23 +00:00
Howard Chu
2b67f4face ITS#5056 fix chain_tail processing 2007-07-20 21:28:04 +00:00
Ralf Haferkamp
6ab46208bc Allow utf-8 in AD-Canonical Names 2007-07-13 10:12:27 +00:00
Pierangelo Masarati
848ea293a3 cleanup 2007-06-19 22:59:53 +00:00
Pierangelo Masarati
7e12342b3b add sub-second result timeout accuracy (for which is which; ITS#4963 with changes) 2007-06-14 22:35:41 +00:00
Hallvard Furuseth
90fe4bd927 ITS#4983: Partly revert tls_thread_self() paranoia from rev 1.154: Only 
require that ldap_pvt_thread_t can be cast to u.long and is not wider.
ITS#5010: In ldap_X509dn2bv(), catch error return from ber_decode_oid().
 2007-06-12 23:57:08 +00:00
Hallvard Furuseth
5d083f3859 int -> ber_socklen_t for getsockopt() 2007-06-10 20:34:05 +00:00
Hallvard Furuseth
3750520f6f Fix HP-UX crash: Replace socklen_t with ber_socklen_t from configure. ITS#4629. 2007-06-09 23:35:20 +00:00
Howard Chu
469a45a62f ITS#4992 fix cldap 2007-06-08 09:40:17 +00:00
Howard Chu
431f6fd810 ITS#4955 fix typo in referral chasing 2007-06-08 09:17:00 +00:00
Hallvard Furuseth
9a9d216526 Shut up gcc -Wformat 2007-05-31 17:07:57 +00:00
Hallvard Furuseth
101b6b9363 Fix --without-tls (ITS#4975). Enable certificate matching. 2007-05-20 22:48:21 +00:00
Hallvard Furuseth
c47e444698 libldap/tls.c calls CRYPTO_set_id_callback(ldap_pvt_thread_self), which 
causes ldap_pvt_thread_self to be called with the wrong prototype.

That can cause OpenSSL to use a garbage value, e.g. if the unsigned
long it expects takes two words but ldap_pvt_thread_t is an int.

I'm fixing it in HEAD now and also provoking an error if unsigned
long cannot hold a ldap_pvt_thread_t.  Otherwise it can silently
compile to broken code.  Maybe the latter should go in configure,
but since OpenSSL presumably breaks anyway if that fails I don't
see much point at this time.
 2007-05-20 20:02:52 +00:00
Hallvard Furuseth
f906a99eec Only define x509_cert_get_dn() when HAVE_GNUTLS. Remove unused variable. 2007-05-18 15:10:15 +00:00
Howard Chu
d9a43aee44 Fix GNUtls acknowledgement, initial work by Matt Backes. Sponsored by 
The Written Word and Stanford University.
 2007-05-14 23:35:36 +00:00
Ralf Haferkamp
6ee5d7d3da make openssl builds working again 2007-05-14 12:19:32 +00:00
Howard Chu
423f20c915 GNUtls - ignore free of NULL ctx 2007-05-13 09:43:41 +00:00
Howard Chu
5f36d32596 Don't NUL-terminate bervals during DN parsing 2007-05-13 09:37:37 +00:00
Howard Chu
47a8f3213b Merged GNUtls support into main tls.c 2007-05-13 00:15:27 +00:00
Pierangelo Masarati
7601a1f3fb fix read off by one (spotted by valgrind) 2007-05-12 12:38:09 +00:00
Howard Chu
236e5f50b3 Added ciphersuite support 2007-05-10 21:49:43 +00:00
Howard Chu
c51fd6c96e Add LDAP_OPT_X_TLS_CRLFILE, peer cert verification for GNUtls 2007-05-10 19:43:28 +00:00
Hallvard Furuseth
7b7b137832 Cast Debug(%p) pointer argument to void* 2007-05-09 18:38:10 +00:00
Howard Chu
b7cfa97817 coverity error, u->lud_scheme is mandatory 2007-05-08 14:13:18 +00:00
Howard Chu
4803e9ba67 Revert prev commit, unnecessary 2007-04-23 14:27:07 +00:00
Howard Chu
7eb1f62f9d ITS#4935 SASL_MAX_BUFF_SIZE should be 2^24 - 1 2007-04-23 14:21:48 +00:00
Pierangelo Masarati
f29a4e140e don't assert(0); apparently, other responses may result from a simple bind (but log them, at least; ITS#4924) 2007-04-11 08:57:41 +00:00
Howard Chu
848be16aaf ITS#4879 fixes for url parse/unparse 2007-04-03 03:27:24 +00:00
Howard Chu
c49812bf6f ITS#4893 back to pipes... 2007-03-26 12:44:11 +00:00
Howard Chu
867fb2fd9f ITS#4893 just send the client socket, not a pipe descriptor. 2007-03-25 15:20:50 +00:00
Howard Chu
7426ab07fc ITS#4893 define LDAP_PF_LOCAL_SENDMSG in <ac/socket.h> if a message must 
be sent to transmit client credentials. Buffer the message data.
 2007-03-25 04:40:22 +00:00
Howard Chu
49d708fae3 Preliminary GNUtls support. gnutls.c will merge back into tls.c later. 2007-03-23 23:47:07 +00:00
Howard Chu
f2a02b90ed Fix TLS default for clients 2007-03-23 12:47:35 +00:00
Pierangelo Masarati
1429b49d1e apparently, time_t is unsigned in some systems 2007-03-12 21:04:01 +00:00
Pierangelo Masarati
687ed8861a don't play with URL list if connect(2) is asynchronous 2007-02-21 22:26:26 +00:00
Kurt Zeilenga
b3c4004042 Remove extrananous space in DN (in comment) 2007-02-19 23:39:01 +00:00
Kurt Zeilenga
7beb587a4b Cleanup last commit 2007-02-15 01:42:23 +00:00
Kurt Zeilenga
a9aeb858fe Needs <ac/time.h> 2007-02-15 01:20:46 +00:00
Howard Chu
8db4bd2cc9 Coverity error, uninit'd rc 2007-02-13 11:13:14 +00:00
Howard Chu
1f635b8bcf ITS#4707 added new ldap_init_fd() API 2007-02-12 04:20:24 +00:00
Howard Chu
a1aa7c284d Revert to original ldap_get_option( TIMEOUT ) behavior 2007-02-06 23:02:47 +00:00
Howard Chu
75d0b4ee97 Require non-NULL input for timeout options 2007-02-05 20:38:25 +00:00
Howard Chu
0c542682b1 Timeouts should not be malloc'd 2007-02-05 20:32:44 +00:00
Howard Chu
b984564dbd Handle timeouts from ldap_result() 2007-02-05 12:30:40 +00:00
Howard Chu
b4c2cf250d Fairly sure this is what the TIMEOUT option should always have been for 2007-02-05 10:10:24 +00:00
Pierangelo Masarati
5afd693a6d remove unused code 2007-02-02 12:38:32 +00:00
Howard Chu
de46a75158 Keep HAVE_POLL functionality inside its #ifdefs 2007-02-02 12:29:21 +00:00
Howard Chu
52a7af8230 ITS#4815 get_option for TLS Cipher Suite was not implemented 2007-01-24 23:38:26 +00:00
Hallvard Furuseth
d16754c81b Delete unused variables. 2007-01-11 12:04:22 +00:00
Howard Chu
f1784a54e6 ITS#4648, alternate fix 2007-01-10 08:52:07 +00:00
Howard Chu
bec25494fe ITS#4799 remove kerberos / kbind references 2007-01-10 00:20:42 +00:00
Howard Chu
9ece06c8f5 ITS#4799 remove all references to kbind 2007-01-09 23:48:28 +00:00
Pierangelo Masarati
9b5ea6a205 honor network timeout even when doing full async 2007-01-07 22:05:33 +00:00
Pierangelo Masarati
aa3c9bad3e First cut to truly async connect: 
- after connect(2), if async the connection is in "connecting" state
	- the first time a request is sent, "connecting" conns are polled
		- in case of success, the request is sent
		- in case still connecting, LDAP_X_CONNECTING is returned;
		  clients are expected to retry later
	- the "async" behavior must be explicitly enabled by setting
	  the LDAP_OPT_CONNECT_ASYNC option

"local" connections need work
 2007-01-07 19:20:46 +00:00
Pierangelo Masarati
5513ac6335 import of LDAP Sync client API 2007-01-06 18:28:32 +00:00
Pierangelo Masarati
c310cfd837 minor cleanup 2007-01-06 18:27:34 +00:00
Pierangelo Masarati
5ce13437de unsolicited responses shouldn't necessarily end the connection 2007-01-05 15:23:39 +00:00
Pierangelo Masarati
8cb4f6b348 fix previous commit 2007-01-04 19:26:59 +00:00
Pierangelo Masarati
d4324d5813 fix \& improve previous commit 2007-01-04 18:33:45 +00:00
Pierangelo Masarati
4b75dd6be3 implement client-side handling of RFC 4511 unsolicited responses and "Notice of Disconnect" 2007-01-04 15:01:22 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
dd94ddba57 don't leave dependencies on liblutil in libldap :) 2006-12-17 22:04:25 +00:00
Howard Chu
28a1868127 Eliminate redundant checks in try_read1msg 2006-12-14 10:02:14 +00:00
Howard Chu
157069fe91 ITS#4545 better fix. this code still needs cleaning up. 2006-12-14 06:58:57 +00:00
Howard Chu
6350fad63f ITS#4545 when referral chasing is off, complete the request 2006-12-13 00:36:12 +00:00
Pierangelo Masarati
5a000a9b91 fix warnings after previous commit 2006-12-04 00:11:12 +00:00
Pierangelo Masarati
a76b702d4c fix request/result abandon 2006-12-03 20:56:25 +00:00
Howard Chu
7540751392 ITS#4723 add CRYPTO_set_id_callback 2006-11-30 06:37:12 +00:00
Pierangelo Masarati
72e586ba36 revert previous commit; disable RESTART from ldap.conf 2006-11-13 23:51:52 +00:00
Pierangelo Masarati
3c1df853e4 fix endless loop in canceling child requests; cleanup 2006-11-12 14:22:24 +00:00
Howard Chu
b42d93f24f ITS#3755 silence strict-aliasing warnings 2006-11-10 10:39:54 +00:00
Howard Chu
8e48a3c317 ITS#4726 call ldap_pvt_tls_init() in init_ctx() to make sure initialization 
is done
 2006-11-09 23:00:38 +00:00
Howard Chu
961f0ba113 Fix strval2strlen end-of-string check. Otherwise passing in a string 
without string[len] == '\0' causes assert in ldap_dn2bv_x.
 2006-11-08 23:57:02 +00:00
Pierangelo Masarati
4f351fbd90 fix build with thread debugging 2006-11-05 09:22:53 +00:00
Pierangelo Masarati
dc871de33d cleanup prvious commit; log number of abandoned requests waiting for response... 2006-11-02 19:11:18 +00:00
Pierangelo Masarati
71bcd4a4b6 s/ldap_int_discard/ldap_pvt_discard/ 2006-10-28 18:13:12 +00:00
Pierangelo Masarati
57259831c6 fix message (ITS#4717) 2006-10-28 16:19:08 +00:00
Kurt Zeilenga
dbaf7c5c25 More ldapbis cleanup 2006-10-28 04:47:58 +00:00
Kurt Zeilenga
ba2d7ec007 More LDAPBIS cleanup 2006-10-28 03:27:01 +00:00
Kurt Zeilenga
4587e053e7 Misc LDAPbis comment update 
Remove unnecessary ISOC notices
 2006-10-27 19:37:04 +00:00
Pierangelo Masarati
6416d83372 add ldap_int_discard(); use it in proxies (ITS#4717) 2006-10-22 20:31:41 +00:00
Kurt Zeilenga
60e1237c4e Parse txn failed msgid 2006-10-20 06:46:38 +00:00
Pierangelo Masarati
968da1cb14 add LDAP_OPT_DIAGNOSTIC_MESSAGE; replace deprecated option names 2006-10-14 17:04:17 +00:00
Pierangelo Masarati
387c21c7dd apply slightly revised patch for SO_KEEPALIVE (ITS#4708) 2006-10-14 12:42:33 +00:00
Pierangelo Masarati
3dc7480b8b minor cleanup 2006-10-09 21:18:36 +00:00
Pierangelo Masarati
799f2b1449 I hate code duplication, but don't require functions from liblutil in libldap.so 2006-10-08 17:14:04 +00:00
Pierangelo Masarati
2f964def8a add support for VERSION, TIMEOUT and NETWORK_TIMEOUT in ldap.conf 2006-09-26 02:34:36 +00:00
Pierangelo Masarati
a9a4a14d80 use AC_LINE_MAX 2006-09-26 00:33:44 +00:00
Pierangelo Masarati
43f7706c49 add URL parsing test tool 2006-09-23 11:44:16 +00:00
Kurt Zeilenga
62f4745bfc ITS#4679 cleanup 
Note: the caller is expected to pass in a valid LDAP handle.  If not,
the assert will trigger to let him know his code is broken.
 2006-09-21 20:02:55 +00:00
Howard Chu
57c329a3af ITS#4606 errno is not per-thread on WIN32, always use WSAGet/SetLastError 
(with notable exceptions: ignore tests for EINTR which winsock never sets)
 2006-09-14 06:35:34 +00:00
Pierangelo Masarati
4481502313 use a more reasonable max line length (ITS#4669) 2006-09-12 20:41:37 +00:00
Pierangelo Masarati
ae20e41b70 fix outdated comments 2006-09-06 12:04:52 +00:00
Pierangelo Masarati
d12f5fbcb5 add scope helpers 2006-09-06 12:04:33 +00:00
Pierangelo Masarati
06b491a446 better function name 2006-09-01 16:21:20 +00:00
Pierangelo Masarati
b45c0c881d keep count of requests in use 2006-09-01 14:00:58 +00:00
Pierangelo Masarati
517ae66152 don't risk dangling pointers 2006-09-01 13:59:55 +00:00
Pierangelo Masarati
d1e00eef03 don't use deprecated functions 2006-09-01 13:57:37 +00:00
Pierangelo Masarati
cb3248f173 cleanup 2006-09-01 10:01:36 +00:00
Pierangelo Masarati
82f7a0a3bd re-fix ITS#4405 (really start from the first conn) 2006-08-18 17:12:16 +00:00
Pierangelo Masarati
b03afa868c skip host="" and port=0 (ITS#4610) 2006-08-05 17:08:40 +00:00
Howard Chu
a7870943f7 Fix TLS CTX ref counting 2006-07-02 22:38:01 +00:00
Kurt Zeilenga
3f9201e95b some LDAP ASN.1 updates from 4511/4526 2006-06-15 05:18:06 +00:00
Pierangelo Masarati
41ceb4af9d don't risk using dangling pointers when looping thru connections (ITS#4405) 2006-06-13 18:00:33 +00:00
Howard Chu
15853f1e74 ITS#4583 use mutex around SSL_accept() 2006-06-08 19:35:42 +00:00
Pierangelo Masarati
7a3ff8ddc2 count requests and responses in logs 2006-05-27 10:17:34 +00:00
Pierangelo Masarati
6b889b0a8a s/fprintf/Debug/ (ITS#4553); lock ld_conn_mutex before accessing conn(s) 2006-05-18 00:59:13 +00:00
Pierangelo Masarati
86b566f029 cleanup 2006-05-18 00:37:56 +00:00
Pierangelo Masarati
2b29cf4909 fix rev 1.125 commit 2006-05-17 22:13:39 +00:00
Pierangelo Masarati
6a2c344217 typo in comment 2006-05-14 12:14:08 +00:00
Howard Chu
25f81a48e6 Add SSL failure reason to TLS: can't connect message. 2006-05-13 00:29:28 +00:00
Howard Chu
ff40a705da ITS#4541 better fix 2006-05-12 06:33:27 +00:00
Howard Chu
da0ec66ceb ITS#4541 refine commit for #4524 2006-05-12 06:16:32 +00:00
Howard Chu
dc96eca891 ITS#4536 set chain_tail after sorting messages 2006-05-11 09:07:08 +00:00
Howard Chu
7b10f413d9 Fix ITS#4533 don't destroy input request 2006-05-10 15:01:50 +00:00
Pierangelo Masarati
373ded8d24 add URI list resorting feature (ITS#4524) 2006-05-06 16:15:25 +00:00
Pierangelo Masarati
8242166888 print the correct search base when taken from ldaprc (ITS#4504) 2006-04-25 22:23:00 +00:00
Pierangelo Masarati
a42367ae3a cleanup 2006-04-24 17:20:13 +00:00
Pierangelo Masarati
77e7acc4f9 cleanup; make sure no spurious error code slip thru 2006-04-24 12:12:14 +00:00
Howard Chu
478ae2346e PPOLICY_ERROR is primitive, not constructed 2006-04-22 00:23:44 +00:00
Howard Chu
68b374dd4a Fix EXPIRE/GRACE ber tags 2006-04-21 23:47:53 +00:00
Howard Chu
eb0c92c7df Return rc for tls_init_def_ctx 2006-04-11 20:35:37 +00:00
Pierangelo Masarati
dfc8e7f6b8 better fix for ITS#4483 2006-04-09 22:29:42 +00:00
Pierangelo Masarati
623a7a9fe2 Berlement already freed in ber_flush 2006-04-08 17:43:53 +00:00
Pierangelo Masarati
74b6ab9029 more cleanup 2006-04-08 11:01:19 +00:00
Howard Chu
571ac24b33 Fix destruct sequencing 2006-04-07 02:41:58 +00:00
Howard Chu
056b193ed7 Don't implicitly inherit the default SSL_CTX, tls.c:alloc_handle will 
set it explicitly and handle its refcount.
 2006-04-07 01:52:32 +00:00
Howard Chu
9693c800bf Free/decrement SSL_CTX refcount when (re)setting it 2006-04-07 01:15:56 +00:00
Howard Chu
7709d4d89e Bump SSL_CTX refcount whenever it gets retrieved 2006-04-07 01:13:31 +00:00
Howard Chu
d18277eac9 ITS#4422, #4475 
Move TLS options into struct ldapoptions.
  Added ldap_int_tls_destroy()
  Added LDAP_OPT_X_TLS_NEWCTX to generate new SSL_CTX
 2006-04-07 00:52:38 +00:00
Howard Chu
51d5db03ff ITS#4422, rearrange options to allow passing NULL args to TLS/Cyrus 2006-04-07 00:48:41 +00:00
Pierangelo Masarati
8823f5cc87 fix ITS#4450? 2006-04-03 00:34:35 +00:00
Howard Chu
e1664b1f42 plug leak 2006-04-02 21:06:28 +00:00
Hallvard Furuseth
581c1ff6c7 Cast ctype.h char arguments to unsigned char 2006-04-01 23:44:42 +00:00
Pierangelo Masarati
bf860f0596 ld_abandoned must be protected by ld_res_mutex 2006-04-01 00:30:07 +00:00
Howard Chu
9686c7ce99 cleanup 2006-03-31 21:31:32 +00:00
Howard Chu
1c0d2ad7ae cleanup NULL string handling 2006-03-31 21:30:06 +00:00
Howard Chu
2d4da0b23c Cleanup NULL derefs 2006-03-31 21:18:04 +00:00
Howard Chu
aa87b9ad2e cleanup dead code 2006-03-31 21:07:53 +00:00
Howard Chu
8c4711e9db plug leaks 2006-03-31 20:36:53 +00:00
Kurt Zeilenga
40d75df606 Additional TXN changes (a work in progress) 2006-03-30 18:00:04 +00:00
Pierangelo Masarati
177c051f0f use asynchronous API; note that an endless loop may occur (ITS#4450; no fix yet) 2006-03-25 08:16:19 +00:00
Pierangelo Masarati
f48bf42578 seems to fix referral chasing (ITS#4448) 2006-03-24 01:18:36 +00:00
Pierangelo Masarati
70211e9be5 handle abnormal condition 2006-03-23 18:36:10 +00:00
Pierangelo Masarati
8c9f071238 duplicate string from environment, as it may be overridden by the user (ITS#4436) 2006-03-20 11:57:16 +00:00
Pierangelo Masarati
df2b44c3b9 destroy ld_conn_mutex (ITS#4441) 2006-03-20 11:14:43 +00:00
Kurt Zeilenga
544d00f3e5 Fix encoding 2006-03-07 21:48:47 +00:00
Kurt Zeilenga
fad69dbef8 Additional TXN changes 2006-03-07 02:21:27 +00:00
Kurt Zeilenga
825ce79611 Initial and rough client-side implementation of the revised LDAP 
Transactions specification.  A work in progress!  Comments welcomed.
 2006-03-06 21:20:36 +00:00
Luke Howard
e5a5f5e1b2 Don't fail compile if LDAP_EXOP_X_TURN undefined (ie. if LDAP_REL_ENG undefined) 2006-03-05 04:23:59 +00:00
Luke Howard
0ccbce9d09 Always pass valid BerElement to ldap_create_control() to avoid assert fail 2006-03-02 16:50:34 +00:00
Kurt Zeilenga
8c8ea049cb Macro cleanup 2006-02-16 05:01:29 +00:00
Kurt Zeilenga
cbc11c9233 unifdef -DLDAP_NULL_IS_NULL 2006-02-14 23:18:12 +00:00
Kurt Zeilenga
2d9e341ae9 Report layer installed only after installed, and fix up report text 2006-02-13 23:26:55 +00:00
Kurt Zeilenga
fe8e3b7efa Kludge for MSAD (ITS#4391 and others) 2006-02-07 01:20:55 +00:00
Howard Chu
fb4cba514d ITS#4354 only set DH callback if OPT_DHFILE has been set. 2006-01-19 18:12:15 +00:00
Kurt Zeilenga
48c34d254f Update proxied authorization implementation to use IANA 
assigned result code.
 2006-01-12 22:55:56 +00:00
Pierangelo Masarati
056b7e55da silence warning 2006-01-12 18:29:33 +00:00
Howard Chu
41c46bdb4e Tone down dn2bv/bv2dn logging 2006-01-12 06:07:42 +00:00
Luke Howard
86d1072917 ITS#4327 - make SASL_MECH/SASL_REALM no longer user-only options 2006-01-11 17:28:30 +00:00
Pierangelo Masarati
e94ded997d fix typo in previous commit 2006-01-09 11:18:01 +00:00
Kurt Zeilenga
be8676f780 s/pagectrl.o/pagectrl.lo/ 2006-01-09 05:25:43 +00:00
Kurt Zeilenga
d8eace75a7 cleanup 2006-01-09 05:22:46 +00:00
Kurt Zeilenga
eccd913a07 Update variables holding protocol values to ber_*_t's 
Remove old grouping/txn code (pending redesign)
 2006-01-09 01:25:53 +00:00
Pierangelo Masarati
564dca34bf fix types; further check parameters 2006-01-08 22:45:35 +00:00
Pierangelo Masarati
de79a7bfec rework API functions to create/parse controls; add client API functions to handle RFC2696 paged results (ITS#4314; patch from Hans Leidekker with changes) 2006-01-08 22:03:30 +00:00
Kurt Zeilenga
bca31173d8 Update (and rename) Sort and VLV parse routines to expect actual 
control to be directly passed in.
 2006-01-08 19:34:01 +00:00
Kurt Zeilenga
8ab4786ef2 correct typo 2006-01-08 19:11:57 +00:00
Kurt Zeilenga
d88f4e8197 cleanup 2006-01-08 17:11:15 +00:00
Pierangelo Masarati
339b9c371e rfc2589 support (ITS#4293) 2006-01-06 17:46:52 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Kurt Zeilenga
cdbbed6c3b improve LDAP_OTHER description 2006-01-03 19:45:26 +00:00
Pierangelo Masarati
0e6f61aa03 fix leaks in ldap_parse_passwd() 2006-01-02 13:27:29 +00:00
Pierangelo Masarati
283f79c268 improve previous commit (one line, use buffer and truncate if required) 2005-12-16 12:18:55 +00:00
Pierangelo Masarati
3edbd4fee7 log attrs 2005-12-15 19:12:09 +00:00
Pierangelo Masarati
fcda57e90f use macros instead of numbers... 2005-12-13 20:11:26 +00:00
Pierangelo Masarati
73acecaf0f cleanup 2005-12-13 15:53:10 +00:00
Kurt Zeilenga
71cf424b77 unifdef -DLDAP_SCOPE_SUBORDINATE 2005-11-26 06:35:36 +00:00
Pierangelo Masarati
f86543c770 cleanup filter escaping 2005-11-25 12:16:27 +00:00
Pierangelo Masarati
6ab23ef926 add more versatile private API for filter escaping 2005-11-25 10:41:33 +00:00
Pierangelo Masarati
c655139449 fix ldap_bv2escaped_filter_value() according to <draft-ietf-ldapbis-filter> 2005-11-25 01:12:32 +00:00
Pierangelo Masarati
d34fffcaf9 use lutil_ato*() whenever appropriate 2005-11-24 01:10:05 +00:00
Kurt Zeilenga
7468c7fb58 Support Solaris 10's getpeerucred(3) (*** blind commit ***) 2005-11-23 18:55:31 +00:00
Kurt Zeilenga
c5c5a7f19b s/ACCRIGHTS/ACCRIGHTSLEN/ 2005-11-23 18:22:02 +00:00
Pierangelo Masarati
1ce491e4f4 fix library checks; implement client side of "touch" modify (ITS#4183) 2005-11-20 14:17:37 +00:00
Pierangelo Masarati
af23be3675 silence warnings... 2005-11-14 21:47:17 +00:00
Pierangelo Masarati
4a6f4369c0 don't malloc empty strings for matched, error 2005-11-12 18:42:03 +00:00
Howard Chu
146b2c5389 ITS#4082 tls ctx requirements are only applicable to servers, or clients 
with tls_opt_require_cert = TRY or DEMAND. Ignore requirements for clients.
 2005-11-08 13:42:10 +00:00
Pierangelo Masarati
5be72fe816 don't allow '{' in TK_BAREWORD (ITS#4116) 2005-11-07 22:53:43 +00:00
Pierangelo Masarati
a6453f28f8 silence warnings 2005-11-06 23:27:09 +00:00
Kurt Zeilenga
4f63434511 Improve SASL error handling 2005-11-06 22:43:23 +00:00
Pierangelo Masarati
e1a7fa2ee9 fix ldap_bv2escaped_filter_value 2005-11-06 11:41:42 +00:00
Howard Chu
d67a2f2044 Move lconn_tls_ctx to ldo_tls_ctx. Otherwise clients cannot set it after 
ldap_initializ'ing an LD and before connecting on it. Really all of the
global TLS options belong in the ldapoptions struct, instead of static vars.
 2005-11-05 12:49:43 +00:00
Pierangelo Masarati
f571f4b2b4 fix previous commit 2005-11-03 20:11:22 +00:00
Pierangelo Masarati
561cd3d845 don't leak hostname 2005-11-03 15:17:48 +00:00
Kurt Zeilenga
ecd86725f2 Update result code to IANA-assigned values 
Provide some backwards compatibility.
Misc cleanup
 2005-11-03 01:27:07 +00:00
Howard Chu
6fcfaedf90 ITS#4137 was returning with tls_def_ctx_mutex locked. 2005-11-02 23:43:19 +00:00
Kurt Zeilenga
461ed37970 cleanup 2005-11-01 20:33:49 +00:00
Pierangelo Masarati
9c056f95fe consistently use HSTRERROR (ITS#4124) 2005-10-31 15:04:37 +00:00
Howard Chu
4ebed09d81 ITS#4017, additional revisions for DH parameters 2005-10-28 05:35:19 +00:00
Kurt Zeilenga
551d94c6e8 Additional serverSaslCred trace messages. 
Misc. cleanup
 2005-10-20 03:49:22 +00:00
Howard Chu
5e416949e0 Fix ldapi DN ordering 2005-10-17 12:57:53 +00:00
Kurt Zeilenga
279033fc1c ITS#3440: (blind) fix for VxWorks inet_ntoa(3) leak, 
use inet_ntoa_b(3) instead.
 2005-10-14 03:40:03 +00:00
Kurt Zeilenga
408fa06f95 missed \ 2005-10-13 06:53:32 +00:00
Kurt Zeilenga
a534d5fb6b Add ldap_bv2escaped_filter_value (ITS#2535) 2005-10-13 06:35:28 +00:00
Kurt Zeilenga
0ea43c9d7d Assume TLS is properly configured if any one of 
keyfile, certfile, cacertfile, or cacertdir is
provided.  Note that TLS can be properly configured
without any of these when non-X.509 cipher suites
are used, so this might have be rethought.
 2005-10-12 20:31:04 +00:00
Howard Chu
bb3c3f654f Fix typo 2005-10-12 00:31:05 +00:00
Howard Chu
f18c63fa13 Add LDAP* to debug messages to aid tracking 2005-10-12 00:23:30 +00:00
Howard Chu
e8b1b004d4 Fix ITS#3832 must mutex protect ld->ld_conns 2005-10-12 00:05:43 +00:00
Howard Chu
f54bc26357 ITS#4072 ldap_pvt_tls_init_def_ctx() returns LDAP_NO_SUPPORT if not 
sufficiently configured. Update slapd/slurpd to act appropriately.
 2005-10-09 19:55:39 +00:00
Howard Chu
2ea5a66be2 ITS#2942 skip referrals that we've already chased 2005-10-09 10:01:38 +00:00
Howard Chu
a8a23840b8 Simplify lm_chain_tail handling, support LDAP_MSG_RECEIVED 
Drop support for LDAP_MORE_RESULTS_TO_RETURN
 2005-10-08 18:51:14 +00:00
Howard Chu
fc79957ad6 Don't set ndelay on socket connect if no timeout was specified 2005-10-08 18:19:50 +00:00
Howard Chu
9095af5928 ITS#4017 support Diffie-Hellman parameters for multiple key lengths 2005-10-05 20:01:52 +00:00
Pierangelo Masarati
385aebc806 plug potential ld_error leak (ITS#4064) 2005-10-04 21:30:30 +00:00
Howard Chu
a0f6fdb730 ITS#4048 plug leak 2005-09-30 06:20:56 +00:00
Howard Chu
d918bd4dc0 ITS#4053 free cldap peer address 2005-09-30 06:04:38 +00:00
Pierangelo Masarati
9129a2f7ee silence warnings 2005-09-10 18:59:35 +00:00
Hallvard Furuseth
2e19c67235 Handle LDAP_INT_GLOBAL_OPT() failure in ldap_int_destroy_global_options() 2005-08-31 18:59:27 +00:00
Kurt Zeilenga
f07015dad2 Update build tools based upon OPENLDAP_AC work 2005-08-25 20:09:26 +00:00
Pierangelo Masarati
21e33fed33 treat TRUE/FLASE like SUCCESS; don't chase "" referrals 2005-08-22 09:41:36 +00:00
Pierangelo Masarati
f5737d72b0 cosmetic changes (easier to inspect under gdb) 2005-08-20 19:54:56 +00:00
Pierangelo Masarati
3dd05cdb2d fix SASL numeric secprops parsing (ITS#3955) 2005-08-20 14:22:42 +00:00
Pierangelo Masarati
52ce57f525 don't try to print NULLs on Solaris... 2005-08-19 15:47:52 +00:00
Pierangelo Masarati
7732236996 plug yet another one-time leak 2005-08-19 15:05:03 +00:00
Pierangelo Masarati
a0e46c6289 allow oidmacros in syntax (e.g. AD) 2005-08-18 23:34:10 +00:00
Pierangelo Masarati
a324dc8050 clear code before calling functions that may modify it 2005-08-18 18:48:02 +00:00