mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
14,638 Commits 38 Branches 307 Tags 74 MiB
8242166888
Commit Graph

1374 Commits

Author SHA1 Message Date
Howard Chu
6cedc94c63 ITS#2944, #2956 - revert maxbuf patch from ITS#2184 
Still need to think about interoperability with other versions, vendors...
 2004-02-24 16:25:39 +00:00
Howard Chu
75af144930 Fix mutex deadlock obtaining msgid 2004-02-13 02:47:53 +00:00
Howard Chu
690f0111e9 ITS#2894 - search refs that are the immediate result of another search 
ref are associated with the parent req instead of the original req, to
prevent infinite loops.
 2004-01-25 10:30:10 +00:00
Howard Chu
02a6301f22 ITS#2926 from igor@ipass.net, slightly modified 2004-01-24 03:33:44 +00:00
Kurt Zeilenga
1d933bf8ec Minor tweak to last commit 2004-01-17 19:11:20 +00:00
Howard Chu
54f38330ef define HFIXEDSZ if it's missing. Not all platforms have it. 2004-01-17 01:54:14 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Kurt Zeilenga
afb520a6e9 LDAP_SCOPE SUBORDINATE implementation 2003-12-30 01:34:05 +00:00
Kurt Zeilenga
2775c8d4a8 Update no-op control to return LDAP_NO_OPERATION instead of LDAP_SUCCESS. 
(back-sql needs to be updated)
 2003-12-29 23:31:39 +00:00
Kurt Zeilenga
fcad25da47 Misc code cleanup 2003-12-29 22:25:43 +00:00
Kurt Zeilenga
4590651cf9 Revert #if 0 2003-12-21 08:25:55 +00:00
Kurt Zeilenga
46053f84a6 Clean up LDAP Sync result codes 2003-12-17 21:09:28 +00:00
Kurt Zeilenga
271fff13de Sync with HEAD 2003-12-17 17:55:27 +00:00
Kurt Zeilenga
4d29df5bd1 Add LDAP_DEPRECATED macro 
Need to remove use of deprecated functions.
 2003-12-14 02:47:42 +00:00
Kurt Zeilenga
430b67aa60 Change API error codes to negative numbers so as not to clash 
with newly assigned protocol result codes.
 2003-12-11 05:26:32 +00:00
Howard Chu
7fedf13e02 ITS#2494 sort entries ahead of everything else 2003-12-07 11:15:22 +00:00
Howard Chu
dc19332bb9 Don't init SASL library until we actually want a SASL session 2003-12-03 01:59:33 +00:00
Kurt Zeilenga
a379dd4faf Misc cleanup 2003-11-30 01:07:47 +00:00
Hallvard Furuseth
51f1b8ccd7 Avoid /* inside comments. 2003-11-29 17:29:44 +00:00
Kurt Zeilenga
f7f171ed40 Add ACKNOWLEDGEMENT and fix initial copyright date 2003-11-26 07:53:40 +00:00
Kurt Zeilenga
159de0f135 Updated notices and acknowledgements 2003-11-26 07:16:36 +00:00
Kurt Zeilenga
e3a4c4ec9c Notice/Acknowledge updates 2003-11-26 02:58:56 +00:00
Kurt Zeilenga
aba062ee36 (re)Add BIND4 support for NetBSD 2003-11-21 18:56:52 +00:00
Howard Chu
838c2d774e Fix GSSAPI connections to localhost 2003-11-10 20:58:29 +00:00
Stig Venaas
6c08d96597 use AI_ADDRCONFIG if possible to not lookup AAAA when no IPv6 addresses are configured 2003-10-29 14:49:35 +00:00
Luke Howard
bb6f9f4c53 Back out previous commit - files apart from test.c 2003-10-18 16:01:16 +00:00
Luke Howard
32a9ad1be8 ITS#2777 - fix previous commit 2003-10-18 15:59:58 +00:00
Luke Howard
2ce26dc96e Possible fix for ITS#2777 - getline() conflict when _GNU_SOURCE is 
defined. I simply renamed it to get_line(). (Probably this will
conflict with something else...)
 2003-10-18 15:56:32 +00:00
Kurt Zeilenga
9184c3a18c Fix linking --with-cyrus-sasl and --without-tls 2003-10-17 04:27:32 +00:00
Howard Chu
11453007c2 ITS#2770 - delete bogus maxbuf checks on sasl_read 2003-10-16 18:56:02 +00:00
Kurt Zeilenga
3e6a44ee47 Don't use compat features unnecessarily. 2003-10-15 03:39:05 +00:00
Kurt Zeilenga
e8c4add1a3 Use macro instead of sizeof 
-       p += sizeof(HEADER);
+       p += NS_HFIXEDSZ;
 2003-10-15 03:30:15 +00:00
Kurt Zeilenga
4f003dbdaf mv ldap_int_get_controls to ldap_pvt_get_controls 2003-10-12 08:14:28 +00:00
Hallvard Furuseth
bdac96f929 #include <ac/unistd.h>, to get geteuid() and getegid(). 2003-09-29 14:04:48 +00:00
Jong Hyuk Choi
8693f3361d didn't compile without cyrus-sasl 2003-09-25 01:00:34 +00:00
Howard Chu
38a406c8ab ITS#2717, use default SASL_MECH if none was provided. 
Note that the mech stored in the void *defaults structure is useless
because we can't look inside the structure, and the mech list is needed
as input to the SASL library, before any callbacks are called. It seems
the mech doesn't belong in the *defaults struct, and/or it should be
visible and not opaque.
 2003-09-22 23:50:33 +00:00
Howard Chu
8f3d3cf3c9 Revert rev 1.90 ITS#2484 patch; Cyrus 1.5 is no longer supported. 2003-09-20 00:33:42 +00:00
Howard Chu
1881ae872f ITS#2729 fix typos 2003-09-19 00:49:33 +00:00
Howard Chu
6f632af413 ITS#2484, set sasl_maxbuf to SASL_MAX_BUFF_SIZE if it was negotiated 
as zero.
 2003-09-14 05:19:45 +00:00
Howard Chu
10811b6f51 Clarify/standardize library version mismatch error messages 2003-09-12 00:54:21 +00:00
Jong Hyuk Choi
090ac0a772 unifdef LDAP_SYNC and LDAP_SYNCREPL 2003-08-27 22:16:04 +00:00
Kurt Zeilenga
7c9a2f46b9 preliminary modify/increment client side code 2003-07-30 10:21:57 +00:00
Kurt Zeilenga
cc637cd53c Fix lock release bug 
Fix logging messages (thanks Kent)
 2003-07-28 20:25:44 +00:00
Kurt Zeilenga
ca6820c42e Add Internet Society copyright notices 2003-07-07 05:14:03 +00:00
Kurt Zeilenga
973ffd6f98 Fix RFC reference 2003-07-07 05:01:31 +00:00
Jong Hyuk Choi
262f8bf11f LCUP primitive routines removed 2003-06-27 17:39:48 +00:00
Jong Hyuk Choi
881718ba5b fix a comment 2003-06-23 14:10:18 +00:00
Kurt Zeilenga
4bf037cfaa Add ldapAssertionFailed result code 2003-06-10 02:24:26 +00:00
Hallvard Furuseth
42de322f06 Make all debug output macros conditional on defined(LDAP_DEBUG). 2003-06-06 13:56:18 +00:00
Kurt Zeilenga
e83b55ebde intermediate response fix 2003-05-31 05:48:16 +00:00
Kurt Zeilenga
2259ece543 finish intermediate/partial merge 2003-05-31 05:08:25 +00:00
Kurt Zeilenga
12304f64e5 Merge partial and intermediate responses 2003-05-31 05:01:49 +00:00
Kurt Zeilenga
5c6573fc31 ITS#2558 fix 2003-05-31 03:37:18 +00:00
Hallvard Furuseth
aed036f0c3 Cast away const from AC_GAI_STRERROR() return value. 2003-05-25 20:50:26 +00:00
Luke Howard
0af6508632 s/forms/form in PADL copyright 2003-05-25 04:48:49 +00:00
Kurt Zeilenga
46c9d6dbb8 Remove $OpenLDAP$ from installed configuration file 2003-05-25 04:09:37 +00:00
Luke Howard
4cee2467be s/forms/form in PADL copyright 2003-05-25 02:59:09 +00:00
Luke Howard
89f7ffc9de Clarify copyright 2003-05-24 09:30:48 +00:00
Howard Chu
d449772875 ITS#2548 must dup sasl_errdetail msgs 2003-05-24 01:05:11 +00:00
Kurt Zeilenga
b166736dbf Don't use default binddn when password is empty 2003-05-22 16:21:14 +00:00
Kurt Zeilenga
65bfb44e8e Error when user tries to mix command line and default URI components. 
Remove TLS hard as an ldap.conf option as being not a over-writable
default.  The appropriate way to request ldaps:// is use an ldaps://
URI.  A rewrite to only sent hard for the default URIs but ignored
if the application provides it own URI would be acceptable.
 2003-05-22 00:13:00 +00:00
Howard Chu
8e8fbe0908 Fix ldap_get_attribute_ber to get values in-place. 
Revert previous memleak fix in ldapsearch.c
 2003-05-14 13:16:56 +00:00
Kurt Zeilenga
2ed0725491 Fix typo in last commit 2003-05-06 15:00:58 +00:00
Kurt Zeilenga
ecb17fc30e ITS#2486: plug leak 2003-05-05 17:35:59 +00:00
Hallvard Furuseth
5ee9264465 Fix assignment of <char/int>* to unsigned <char/int>* and vice versa. 2003-05-02 13:29:28 +00:00
Howard Chu
0e8b176d1f Fix prev commit 2003-05-01 09:50:40 +00:00
Howard Chu
46e2b97757 ITS#2424 use two SASL contexts per session to conform to RFC 2222 2003-05-01 04:11:57 +00:00
Howard Chu
4b73446ab5 ITS#2424 reset SASL on an existing connection 2003-04-30 15:38:32 +00:00
Howard Chu
1d2951bb5a For ITS#2424, move all SASL session management to ldap_int_sasl_bind. 2003-04-30 14:13:58 +00:00
Howard Chu
20c8128d27 ITS#2475 delete bogus SASL2 call 2003-04-30 08:08:08 +00:00
Hallvard Furuseth
778a38f49c Reduce warnings: Add missing 0 or NULL initializers for struct members. 2003-04-29 16:36:19 +00:00
Hallvard Furuseth
6d59c23c55 Make string parameter to ldap_charray_add() and ldap_charray_inlist() const. 2003-04-29 16:34:37 +00:00
Hallvard Furuseth
c898a56263 Cast away const. 2003-04-29 14:43:54 +00:00
Luke Howard
375224128e More careful checking of AVA flags 2003-04-24 11:10:31 +00:00
Luke Howard
ad40330a86 Fix Active Directory canonical name breakage 2003-04-24 11:09:22 +00:00
Jong Hyuk Choi
fd3cf2b5ed get_ldapmsg_ber() -> ldap_get_message_ber() 2003-04-22 22:09:25 +00:00
Jong Hyuk Choi
759110255f get_ldapmsg_ber() added. 2003-04-22 21:38:59 +00:00
Kurt Zeilenga
d7a326be26 Don't do (unsafe) DNS reverse lookups. 
HEADS UP: May break some Kerberos deployments.
 2003-04-22 01:17:23 +00:00
Kurt Zeilenga
3f6a9a7e57 More ldap_connect_to_host() tweaks. 2003-04-21 18:45:46 +00:00
Kurt Zeilenga
ca52123a60 Fix builds when getaddrinfo is not detected but getnameinfo is. 
This does not happen normally.
 2003-04-21 18:28:08 +00:00
Kurt Zeilenga
978c94a223 ITS#2459 (partial) fix. Eliminate address parameter all together. 
Need to look closely at the memcpy.  (It likely can be eliminated
as well.)
 2003-04-21 17:06:37 +00:00
Howard Chu
1874658ae3 More memory context tweaks 2003-04-11 01:02:08 +00:00
Kurt Zeilenga
e41ca42de1 mark a few translatable strings 2003-04-06 06:19:13 +00:00
Kurt Zeilenga
cfd9449374 Mark a few error strings 2003-04-06 06:10:56 +00:00
Kurt Zeilenga
5820854fae Don't cache strings, locale could change 2003-04-06 05:48:05 +00:00
Kurt Zeilenga
e62850324d mark the rest of translatable strings 2003-04-06 03:50:05 +00:00
Kurt Zeilenga
1632dd926f Mark error strings 2003-04-06 03:45:32 +00:00
Howard Chu
2ee7488d0b ITS#2423 - make the lib that allocates SASL prompt results responsible 
for freeing them.
 2003-04-06 00:47:55 +00:00
Howard Chu
062f54d1cc ITS#2388 fix if() conditions. 2003-03-20 11:07:53 +00:00
Kurt Zeilenga
c34c42dec3 just in case <netdb.h> does something like 
#define h_errno (* __h_errno())
 2003-03-14 04:56:08 +00:00
Howard Chu
97c2c9c955 ITS#2373 add declaration of h_errno 2003-03-14 04:25:39 +00:00
Howard Chu
c20d1840ba Blind fix, delete obsolete files cache.c, authpasswd.c 2003-03-07 21:10:02 +00:00
Howard Chu
0b96b6b6ad Chasing a referral needs both the request and response mutexes. 
Unlock and relock... (yuck)
 2003-03-06 14:53:01 +00:00
Howard Chu
ec63a1f87f Pass correct msgid to ldap_result 2003-03-06 14:50:39 +00:00
Howard Chu
8fc4f55d3a Silence warnings in prev commit 2003-03-05 01:53:03 +00:00
Howard Chu
7e7db2578d Added ldap_pvt_get_hname. Use instead of ldap_pvt_gethostbyaddr_a when 
all you want is the hostname. Supports IPv6 addresses.
 2003-03-05 01:35:39 +00:00
Howard Chu
cff5621814 Minor cleanup for sendmsg 2003-03-04 22:14:57 +00:00
Kurt Zeilenga
ef4e745c58 Fix initializer 2003-03-04 21:45:59 +00:00
Kurt Zeilenga
fe4f355328 Add acc_rights detection (needs testing) 2003-03-02 21:46:40 +00:00
Kurt Zeilenga
206b071e7f Add check of <sys/uio.h> and include as needed for struct iovec. 2003-03-02 21:21:36 +00:00
Howard Chu
e820f2f5d3 Cleanup previous commit 2003-03-02 08:05:19 +00:00
Howard Chu
50280bcfed Interoperability fix for sendmsg/recvmsg with access rights 2003-03-02 07:46:33 +00:00
Kurt Zeilenga
81d2b2bb65 Don't send extra messages, will cause interoperability problems 
with versions not built to receive these extra messages.
Likewise in reverse.
 2003-03-01 19:47:04 +00:00
Howard Chu
215be5f443 Fix previous commit 2003-02-28 13:41:53 +00:00
Howard Chu
387a76934b Fix ITS#2335, properly parse multiple CLDAP responses in a single datagram 
for both RFC1798 and MS CLDAP.
 2003-02-28 12:57:28 +00:00
Howard Chu
747265419d Change "goto leave" to "goto exit" to avoid DEC namespace pollution 2003-02-22 01:49:55 +00:00
Kurt Zeilenga
4daeff0ef4 Add a few comments to the ITS#2325 fix 2003-02-21 19:39:09 +00:00
Kurt Zeilenga
c3a43e2c4f Round 2 2003-02-21 19:27:54 +00:00
Kurt Zeilenga
eb161745a4 A little cleanup of last 2 commits 2003-02-21 18:42:15 +00:00
Kurt Zeilenga
ed91ab4cbe Forgot to remove one prompts free 2003-02-21 18:41:05 +00:00
Kurt Zeilenga
9e984beded ITS#2325 fix: properly freeing prompts->results 2003-02-21 18:39:26 +00:00
Kurt Zeilenga
bc0cc3272c Whoops. (I'm reconsidering whether or not to accept the ITS#2325.) 2003-02-21 17:48:03 +00:00
Kurt Zeilenga
3fb4ae2abd Revert last commit 2003-02-21 17:46:11 +00:00
Kurt Zeilenga
2c939f7196 Back out interact free() fixes. Will fix properly in next commit. 2003-02-21 17:11:46 +00:00
Howard Chu
7e1a566391 Use struct berval * instead of ** for newpasswd 2003-02-16 09:42:04 +00:00
Howard Chu
7fffc027b3 Fix ber_scanf args 2003-02-16 09:30:45 +00:00
Howard Chu
b4db079ac7 Fix ber_printf arguments 2003-02-16 08:37:19 +00:00
Kurt Zeilenga
8ca394496b Only install readahead layer when connectionless as 
streams as streams may block.
 2003-02-14 23:32:30 +00:00
Howard Chu
8dac33b6c3 Fix previous commit 2003-02-14 10:27:39 +00:00
Howard Chu
1128bc63b7 Fix typo in peercred DN. Make it agree with actual name used by slapd 
just to avoid confusion.
 2003-02-13 23:11:30 +00:00
Howard Chu
844cc97928 More for re-entrant LDAP* handles. Works much better. 2003-02-13 23:02:31 +00:00
Howard Chu
a6b3a92cc5 Added ld_req_mutex and ld_res_mutex to protect ld_requests and ld_responses 
queues for multithreaded access to LDAP*'s. Also used to protect writes and
reads of ld_sb, respectively. Appears to work...
 2003-02-13 10:43:16 +00:00
Pierangelo Masarati
262d021ecf minor cleanup 2003-02-11 09:23:28 +00:00
Kurt Zeilenga
22215a396c Remove lint 2003-02-10 19:59:32 +00:00
Kurt Zeilenga
aa291a3492 We should be calling libtool --finish when install libraries 2003-02-09 23:10:29 +00:00
Kurt Zeilenga
4b3396f5fd unifdef -DLDAP_NOCACHE 2003-02-09 07:42:18 +00:00
Kurt Zeilenga
c34e59be35 Consistently add cancel.c to makefiles 2003-02-09 01:54:41 +00:00
Kurt Zeilenga
48d47954a6 Rework #ifdef'ing of expermental controls to ease release engineering 
using LDAP_DEVEL (to indicate experimental) to enable experimental features
(true for HEAD unless LDAP_REL_ENG is defined)
 2003-02-08 21:53:05 +00:00
Pierangelo Masarati
1b13edfa54 I suggest the coder(s) of the cyrus stuff to check out the prompt stuff 2003-02-07 09:58:21 +00:00
Pierangelo Masarati
6c32533d02 according to sasl documentation, prompts is filled only if SASL_INTERACT is returned 2003-02-07 09:55:00 +00:00
Jong Hyuk Choi
85b1783d5c LDAP Sync Operation (draft-zeilenga-ldup-sync) as a groundwork for an LDAP replication design 2003-02-05 07:37:02 +00:00
Pierangelo Masarati
e5a1418756 improve last commit 2003-02-04 19:27:56 +00:00
Pierangelo Masarati
c432154ad1 allow multiple URIs (need to backport to back-ldap) 2003-02-04 18:49:58 +00:00
Jong Hyuk Choi
e1bf8cc437 Intermediate Response 2003-02-03 17:28:19 +00:00
Howard Chu
18df386b43 Fix ITS#2161, the check is meaningless anyway. 2003-01-30 00:28:36 +00:00
Jong Hyuk Choi
4f64bd9402 LDAP cancel misc patch 2003-01-27 17:08:51 +00:00
Jong Hyuk Choi
0c43007e55 LDAP cancel operation 2003-01-25 00:36:50 +00:00
Kurt Zeilenga
35f673aaa5 ITS#2267: SASL empty cred fix 2003-01-21 17:31:55 +00:00
Kurt Zeilenga
fc75445270 #ifdef LDAP_PF_LOCAL needed. 2003-01-20 20:10:03 +00:00
Hallvard Furuseth
3bd76701d1 Fix printf format errors. 2003-01-19 14:07:02 +00:00
Hallvard Furuseth
120e39b533 Cast ctype.h arguments to unsigned char. 2003-01-19 14:05:23 +00:00
Hallvard Furuseth
265b7e22c6 Insert missing initializers, to silence gcc warnings. 2003-01-19 13:38:44 +00:00
Hallvard Furuseth
933121a7d9 'static' must come before 'const'. 2003-01-19 13:35:53 +00:00
Hallvard Furuseth
1fbbc11811 Fix LBER_ERROR vs. -1 confusion. 2003-01-19 13:10:17 +00:00
Kurt Zeilenga
6939c53170 Happy new year 2003-01-03 20:20:47 +00:00
Kurt Zeilenga
3dea614e99 cleanup 2002-12-31 05:55:06 +00:00
Pierangelo Masarati
d758296595 silence warnings 2002-12-23 12:02:29 +00:00
Howard Chu
0c2439f5ef Added subjectAltName:IPADDR tests to ldap_pvt_tls_check_hostname() 2002-12-18 21:43:17 +00:00
Howard Chu
c102809fab Use ber_flatten2 to avoid excess mallocs 2002-12-18 19:16:31 +00:00
Howard Chu
464292b50c Remove unneeded sasl_ssf param from ldap_int_sasl_open(), 
it's set by ldap_int_sasl_external().
 2002-12-18 03:09:52 +00:00
Howard Chu
95a512f849 Fix typo in UDP logmsg 2002-12-16 18:17:20 +00:00
Hallvard Furuseth
3b591dd4f6 Fix const errors. 2002-12-11 08:30:29 +00:00
Kurt Zeilenga
56ebd53e51 expand authid buffer 2002-12-08 07:56:49 +00:00
Kurt Zeilenga
840e7f2c5c Include <ac/unistd.h> not <sys/types.h> and <unistd.h> 
Use sizeof( string ) to determine buffer size
Put authzDN in same for as used on server
(We could, just as well, set authid to "fubar" as it matters
not what it is set to)
 2002-12-07 18:32:40 +00:00
Pierangelo Masarati
58c18226e0 on my system need headers to define geteuid() and so 2002-12-07 17:32:33 +00:00
Howard Chu
cf6a9d9d0f For LDAP_PROTO_IPC set the SASL EXTERNAL authid to allow the mech to be 
used by the client side. Please review.
 2002-12-07 13:06:20 +00:00
Howard Chu
d7c0a19aab Added check for sendmsg(). Added hack to use BSD sendmsg()/recvmsg() to 
propagate peer creds if no explicit PEERCRED facility exists. Works
on Solaris 8.
 2002-12-04 16:03:02 +00:00
Kurt Zeilenga
c0f8e30d22 cleanup 2002-12-04 05:13:14 +00:00
Kurt Zeilenga
73b4170a6c Rework libldap to not attempt to set LDAP_API_FEATURE_X_OPENLDAP_THREAD_SAFE 2002-12-04 04:51:55 +00:00
Kurt Zeilenga
da76c1951e First-cut proxy authorization support. 2002-12-03 06:11:32 +00:00
Kurt Zeilenga
9ba95dd027 ITS#2221: getaddrinfo(3) not thread-safe on some platforms (namely 
due to res_() routines).  Change all res_() dependent routines to
share same mutex.
 2002-12-03 01:15:03 +00:00
Howard Chu
4056a8c8a7 Fix ITS#2200, must send non-NULL cred even if it's zero-length. 2002-11-28 16:15:27 +00:00
Kurt Zeilenga
661541fdfc Fix error handling 2002-11-28 04:36:22 +00:00
Kurt Zeilenga
5fe7d38e1c Add whoami.c and passwd.c and other minor tweaks to control cleanups 2002-11-28 02:44:38 +00:00
Kurt Zeilenga
235973571a proxy authz control (client only) 
Misc control cleanups (client only)
 2002-11-28 02:26:55 +00:00
Howard Chu
e721e6bec9 Fix ITS#2187, recursively free all requests 2002-11-27 03:57:36 +00:00
Howard Chu
1702d408bf ITS#2184 maxbuf tweaks from Larry Greenfield @ CMU 2002-11-27 03:51:46 +00:00
Pierangelo Masarati
256f5bbe57 silence warnings 2002-11-10 19:57:16 +00:00
Howard Chu
6b53b4c507 Plug memleak in previous commit 2002-10-24 23:51:34 +00:00
Howard Chu
ddfb4b775b Forced commit, undo previous accidental checkin. 2002-10-24 11:40:37 +00:00
Howard Chu
4396ad3316 ITS#2153, make sure sockbuf buffer is empty before returning (-2) from 
try_read1msg. Blind fix, problem was not duplicated/tested.
 2002-10-24 11:39:06 +00:00
Howard Chu
e2d245e698 Fix comment garbled in 2.1.6. (Very weird, how did this happen?) 2002-10-23 02:45:44 +00:00
Kurt Zeilenga
75e1620ee4 Add copy of OPL 2.0.1 and note in files which specifically refer 
to 2.0.1 as to the location to the copy.
 2002-10-15 23:22:20 +00:00
Kurt Zeilenga
63e7c9e796 first cut at ditStructureRule and nameForm routines 2002-10-13 01:36:58 +00:00
Howard Chu
a9fed89e3f In sb_tls_bio_read/write, check for EAGAIN in addition to EWOULDBLOCK. 
According to read(2)/write(2) EAGAIN is the only one we're interested in.
Fixes HP-UX 11.
http://www.openldap.org/lists/openldap-software/200105/msg00564.html
 2002-10-11 06:22:24 +00:00
Luke Howard
a4ace0ba68 Fix crasher in ldap_domain2dn() 2002-10-10 08:59:19 +00:00
Kurt Zeilenga
cf318d2340 Add ditContentRule routines 2002-10-09 02:56:46 +00:00
Kurt Zeilenga
f833b02518 Fix realloc() bugs 2002-10-08 20:37:30 +00:00
Howard Chu
e37ccca9aa Fix ldap_int_get_controls for optional values 2002-10-07 19:58:10 +00:00
Kurt Zeilenga
491e75548c ITS #2121 submitted by Dave Steck <dsteck@novell.com> with minor changes. 
Patch to allow referrals to be read on synchronous non-search operations.
Treat referrals the same way as MatchDN or ErrorString values.
Store them in the ld structure and provide an option for ldap_get_option
to retrieve them
 2002-10-02 19:14:02 +00:00
Kurt Zeilenga
bbbf2f4ca7 Fix handling of non-critical controls for backends which 
support no controls.
 2002-09-24 18:20:59 +00:00
Howard Chu
4d8a2e2815 Remove dependencies on HAVE_VSNPRINTF, use replacement in liblutil/stdio.c 
if needed. Same check for snprintf.
 2002-09-06 20:54:22 +00:00
Howard Chu
ee30206bc2 Merged ldap_get_values_ber into ldap_get_attribute_ber. 2002-09-06 04:57:21 +00:00
Howard Chu
6a903bc1e5 Added new ldap_get_{dn,attribute,values}_ber functions for linearly 
processing a search entry. Avoids O(n^2) ldap_get_values() behavior.
 2002-09-05 11:33:32 +00:00
Howard Chu
af05dd5511 Set SSL session cache context ID 2002-09-04 07:17:31 +00:00
Howard Chu
f83d30a727 Fix previous commit - still need X509_free for peer cert. 
Just not for local/my cert.
 2002-09-04 02:28:42 +00:00
Kurt Zeilenga
a83cc88edd Move ldap_control_dup() to ldap_pvt.h 2002-09-04 02:14:12 +00:00
Howard Chu
5d062ef54c Don't call X509_free after SSL_get_certificate, it's not a duplicate. 2002-09-04 01:56:09 +00:00
Howard Chu
3099d89d9e Don't use sasl_set_alloc on Cyrus 2, it manages all of its memory 
internally and we don't want to get in the way.
 2002-09-02 22:25:26 +00:00
Howard Chu
90b1e7bd45 Fix ldap_X509dn2bv, OpenSSL gives us DN attributeTypes in EBCDIC 2002-09-02 13:46:56 +00:00
Pierangelo Masarati
c76b36254c cleanup comments 2002-08-31 10:41:49 +00:00
Howard Chu
17493164ea Fix previous commit 2002-08-31 06:23:46 +00:00
Howard Chu
e3304da727 OS/390 EBCDIC support 2002-08-31 05:14:43 +00:00
Howard Chu
d11b134709 Fix large SASL reads. Use EAGAIN instead of EWOULDBLOCK (was right the 
first time after all. see read(2) and write(2)...)
 2002-08-30 10:11:54 +00:00
Pierangelo Masarati
864f05497e allow different solutions to debug sasl shutdown 2002-08-29 17:45:12 +00:00
Pierangelo Masarati
c2efb8788b when shutting down a server with open connections (back-{ldap,meta}), 
the backend attempts a ldap_unbind() that results in calling
ldap_pvt_sasl_mutex_lock() with a NULL argument, causing a SIGSEGV.
I added a few assert() to catch this (I wonder if this might
be related to ITS#1982 "kill -INT corrupts database").
 2002-08-29 16:03:38 +00:00
Howard Chu
1dd1c375bb Fix previous commit - use EWOULDBLOCK instead of EAGAIN 2002-08-29 13:38:36 +00:00
Howard Chu
456e6c73ab Fix ITS#1983, handle writing of large requests. Only one pending request is 
allowed per LDAP* handle. It works, but needs review.
 2002-08-29 12:12:36 +00:00
Pierangelo Masarati
519bf9e28a cleanup logging 2002-08-29 10:42:42 +00:00
Howard Chu
010dbff2cc Fix ITS#1983, in sb_sasl_write, set errno = EAGAIN to tell upper layers to 
retry partial writes
 2002-08-29 10:12:35 +00:00
Howard Chu
5ec4ef6e59 Added no-op for SASL_VERSION_MAJOR < 2 2002-08-28 08:35:38 +00:00
Howard Chu
3cb7a09eb0 Added check for Cyrus SASL sasl_version() 2002-08-28 07:12:22 +00:00
Kurt Zeilenga
7dc1e069e8 Increase res_query buffers to 64k 2002-08-24 17:03:24 +00:00
Pierangelo Masarati
4046c4226e add upper/lower funcs that also compute the length of the string (not used yet) 2002-08-23 08:45:17 +00:00
Kurt Zeilenga
678d686017 make dc const 2002-08-17 19:59:35 +00:00
Kurt Zeilenga
472484725f Update dn2domain() to use str2dn() instead of explode_dn() 2002-08-17 19:42:59 +00:00
Howard Chu
771974f99d ITS#2019 Initialize utils properly 2002-08-10 23:34:55 +00:00
Kurt Zeilenga
ca5aa3b615 Some more sockaddr_in v sockaddr_storage cleanup 2002-08-10 03:48:09 +00:00
Kurt Zeilenga
b3bbe586b6 ITS#2018: use sockaddr_storage 
based upon patch provided by <thorild@Update.UU.SE>
 2002-08-09 22:14:43 +00:00
Kurt Zeilenga
9c28c9b361 Zap LDAPv2-only stuff 2002-08-08 03:01:14 +00:00
Kurt Zeilenga
9c9bd4d5ab Set O_EXCL 2002-08-05 19:49:27 +00:00
Howard Chu
d9eac72099 ITS#1995 return error text when ldap_pvt_tls_check_hostname fails 2002-08-01 03:23:29 +00:00
Kurt Zeilenga
dc4413349e Fix up restart code for EINTR 2002-07-28 05:30:39 +00:00
Kurt Zeilenga
89b3550f95 Clarify error messages 2002-07-26 17:35:57 +00:00
Howard Chu
1a0ca2195e Moved <stdio.h> before <ac/stdlib.h> 2002-07-26 03:16:21 +00:00
Howard Chu
5dc098dab0 Wrap get_ca_list opendir code with #if HAVE_DIRENT_H || dirent to avoid 
compile errors on incompatible build platforms.
 2002-07-24 19:36:03 +00:00
Kurt Zeilenga
e6460769ab Misc sprintf/snprintf cleanup 2002-07-23 18:26:33 +00:00
Stig Venaas
26b33bf614 Fixes ITS#1935 2002-07-16 02:38:14 +00:00
Stig Venaas
bf5e3a15ca Use AF_INET instead of AF_UNSPEC when IPv6 disabled 2002-07-12 15:36:33 +00:00
Julius Enarusai
6107ba67d2 Coverted LDAP_LOG macro to use subsystem ID int values instead of string values 2002-07-11 20:33:24 +00:00
Kurt Zeilenga
d13285fdd8 Fix possible under allocation of buffer 2002-07-08 18:45:53 +00:00
Howard Chu
07ffaeaac8 ITS#1924 use GENERAL_NAMES_free instead of ext_free. 2002-07-05 21:59:02 +00:00
Kurt Zeilenga
2de291ed6e Cut back on the logging... 2002-06-21 19:49:25 +00:00
Kurt Zeilenga
cdce8064e5 ITS#1898: ldap_controls_dup() writes beyond allocated memory 
patch suggested by Dave Steck <dsteck@novell.com>
 2002-06-21 19:14:37 +00:00
Kurt Zeilenga
0371c61073 Add monitorContext rootDSE attribute 2002-06-19 06:44:16 +00:00
Howard Chu
6f8b100f6b Finish implementation of get_ca_list() 2002-06-14 06:09:24 +00:00
Howard Chu
56cba7f97c In ldap_extended_operation_s, check for NULL retoidp and retdatap 
before storing NULL.
 2002-06-13 16:26:47 +00:00
Kurt Zeilenga
fe86a81e25 VLV clean 2002-06-09 06:12:24 +00:00
Howard Chu
70092b38fb Fix ITS#1843, don't deref NULL string in ldap_pvt_str2upper 2002-06-07 13:27:25 +00:00
Howard Chu
8101798791 Better SASL_MAXBUF fix 2002-06-07 03:40:16 +00:00
Howard Chu
353f627aa4 Eliminate SASL client session_callbacks. Since proc was always NULL they 
never did anything anyway.
 2002-06-06 01:44:38 +00:00
Kurt Zeilenga
2c7dae116b More argument handling updates 
(don't check what we expect applications to check).
 2002-06-06 00:26:50 +00:00
Kurt Zeilenga
1064f52dae Fix typo in last commit 2002-06-05 16:39:15 +00:00
Kurt Zeilenga
40ef77a8f8 Add error handling cleanup 2002-06-05 15:51:42 +00:00
Kurt Zeilenga
99f5983fb6 Consistently don't check for NULL session handle and other pointers. 
Application is responsible for providing valid session pointers.
 2002-06-05 15:46:26 +00:00
Howard Chu
7de25993f5 Fix NT_LINK_LIBS, UNIX_LINK_LIBS 2002-05-17 23:41:26 +00:00
Howard Chu
2ca4b0ebfc ITS#1806, Cyrus 1 doesn't give back our callbacks pointer, must stash it 
ourselves.
 2002-05-06 23:56:35 +00:00
Howard Chu
ae3a80eb09 Fix in 1.50 applies to Cyrus 1 as well as Cyrus 2. 2002-05-05 19:15:29 +00:00
Howard Chu
e8e7847175 ITS#1797 silence uninit'd var warnings 2002-05-04 10:52:05 +00:00
Howard Chu
3590877b77 Initialize authid in case ldap_pvt_tls_get_my_dn fails 2002-05-04 01:32:41 +00:00
Howard Chu
0390a171b9 Changed default tls_opt_require_cert value to LDAP_OPT_X_TLS_DEMAND; force 
a fatal error when TLS server cert verification fails.

Changed ldap_pvt_tls_check_hostname to return LDAP_SUCCESS when no cert is
found: this can now only occur if tls_opt_require_cert was explicitly set
to NEVER or ALLOW.

In tls_verify_cb, added a text translation of the verification error code
to the debug message.
 2002-05-04 00:05:48 +00:00
Howard Chu
6c1a786d6c Fix previous commit, wrong if condition 2002-05-03 13:07:42 +00:00
Howard Chu
ed871b997c Break up large SASL writes into units of SASL maxoutbuf size. 2002-05-03 13:04:55 +00:00
Howard Chu
931c4eb35f For Cyrus 2, cannot free session_callbacks in ldap_int_sasl_open, must 
wait until ldap_int_sasl_close because SASL doesn't copy our structure,
it uses it directly.
 2002-05-03 12:10:47 +00:00
Kurt Zeilenga
8c152396b9 Matched Values implementation (ITS#1776) based upon submission 
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
	add testxxx-matchedvalues
	rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
 2002-05-02 18:56:56 +00:00
Howard Chu
b732d3ec55 Fix previous commit, only zero out v3 refer_cnt if we got a SEARCH_RESULT. 
If we got a SEARCH_REFERENCE, we need to keep going...
 2002-05-02 12:08:19 +00:00
Kurt Zeilenga
d82d018f20 add an RFC 2849 check... but behind #if 0 as I'm now thinking this 
is not appropriate.
 2002-05-01 04:40:26 +00:00
Kurt Zeilenga
96483c8dcd cleanup before working on changes 2002-05-01 04:23:59 +00:00
Howard Chu
c9699c1072 Fix previous commit - must fully init newAVA 2002-04-30 14:43:05 +00:00
Howard Chu
b005540094 Added ldap_ucs_to_utf8s to convert ASN.1 T61STRING, BMPSTRING, and 
UNIVERSALSTRING to UTF-8 format.

Rewrote ldap_X509dn2bv to check ASN.1 types and use above function.
 2002-04-30 13:57:01 +00:00
Howard Chu
de3e81cebb Changed ldap_pvt_tls_get_my_dn and ldap_pvt_tls_get_peer_dn to store result 
in dn parameter and return a result code.
 2002-04-30 13:50:56 +00:00
Howard Chu
5528772f23 In ldap_int_tls_start, authid is very temporary, not const. 2002-04-19 04:35:16 +00:00
Howard Chu
202aa8c793 Fix memory leak in previous commit 2002-04-18 16:02:02 +00:00
Howard Chu
17ae956518 Added ldap_X509dn2bv() 
deleted ldap_pvt_tls_get_peer()
  changed ldap_pvt_tls_get_peer_dn() to use ldap_X509dn2bv()
  added ldap_pvt_tls_get_my_dn()
 2002-04-18 12:29:30 +00:00
Howard Chu
315ac06912 Fix warnings from sasl_errdetail 2002-04-18 12:20:55 +00:00
Howard Chu
98a416b584 Additional error reporting for Cyrus SASL 2. Attempt to get SASL-EXTERNAL 
working ifor Cyrus 2. (Both GSSAPI and EXTERNAL are broken at the moment.)
 2002-04-18 00:48:36 +00:00
Howard Chu
dc3e5fb99d ITS#818, ITS#980, ITS#1234 ldapsearch/referral hang - set refer_cnt to 0 
after v3refs have been chased. They are fully processed by the time we get
back, so we should just return the current result message to the caller.
 2002-04-16 12:53:13 +00:00
Kurt Zeilenga
709ce4fa6c Re: Patch: ctype functions require 'unsigned char' args (ITS#1678) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

Here are fixes for more places where the argument to ctype.h functions
should be in the range of `unsigned char'.

Explanation of the last patch (to schema_init.c:bvcasechr()):
TOLOWER() and TOUPPER() return values in the range of `unsigned char',
but bvcasechr() then compares those values with a plain `char'.  So I
convert the return values from TOLOWER()/TOUPPER() to `char' first.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
 2002-04-15 20:42:42 +00:00
Howard Chu
bb17493d31 ITS#1732 signed/unsigned fixes 2002-04-11 08:47:37 +00:00
Pierangelo Masarati
4a2b9b2195 ITS#1730 2002-04-08 18:39:23 +00:00
Pierangelo Masarati
8de44663f7 ITS#1730 and completion of ITS#1701 2002-04-08 10:34:04 +00:00
Pierangelo Masarati
4a8ab5dbf2 Mostly based on patches provided by Hallvard B. Furuseth 
ITS#1677 - cast away const warnings
ITS#1678 - unsigned char args to ctype funcs
ITS#1682 - don't redefine ldap_debug
ITS#1683 - uninitialized vars
ITS#1703 - ldo_debug initialization
ITS#1705 - unsigned testing
ITS#1706 - socklen_t args
ITS#1719 - back-tcl update (other cleanups/fixes/improvements; yet untested)
ITS#1724 - integerNormalize/integerFilter/integerIndexer bugs
ITS#1725 - libdes not required

Implement back-null (/dev/null style backend)
Cleanup some misc warnings ("%lu" format, unused/uninitialized vars,
        ambiguous operator precedence)

Kurt, please regenerate configure
 2002-04-08 09:43:22 +00:00
Howard Chu
5c70106657 ITS#1708 ldap_pvt_tls_sb_ctx() et al 2002-04-05 06:48:03 +00:00
Kurt Zeilenga
b0b8546f05 Patch: More format bugs (ITS#1702) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
 2002-04-02 18:56:26 +00:00
Kurt Zeilenga
26b99bc35d ITS#1701. Fix ber_scanf() return tag handling. 
Based upon patch submitted by Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>.
 2002-04-02 18:40:04 +00:00
Julius Enarusai
b082ed9355 Added LDAP_LOG Messages 2002-04-02 00:22:57 +00:00
Julius Enarusai
e86782aab9 Added LDAP_LOG messages 2002-04-01 23:39:36 +00:00
Julius Enarusai
fff5d3de60 Added LDAP_LOG messages 2002-04-01 22:31:44 +00:00
Julius Enarusai
e30c52dfb7 Added LDAP_LOG Messages 2002-04-01 22:28:02 +00:00
Julius Enarusai
70c73da22c Added LDAP_LOG messages 2002-04-01 22:08:32 +00:00
Kurt Zeilenga
111b464642 move ldap_int_put_filter to ldap_pvt_put_filter 
and other cleanup
 2002-03-30 00:42:40 +00:00
Julius Enarusai
b7bd4368d9 Added LDAP_LOG messages 2002-03-29 17:46:28 +00:00
Julius Enarusai
ae31411a0d Added LDAP_LOG messages 2002-03-27 22:35:35 +00:00
Julius Enarusai
688f45dd06 Added LDAP_LOG messages 2002-03-27 22:23:24 +00:00
Julius Enarusai
171281f3ec Added LDAP_LOG messages 2002-03-27 22:03:35 +00:00
Julius Enarusai
3921e1b0c2 Added LDAP_LOG messages 2002-03-27 21:38:32 +00:00
Julius Enarusai
c0325aed88 Added LDAP_LOG messages 2002-03-27 21:16:36 +00:00
Julius Enarusai
3654b0d4c0 Added LDAP_LOG messages 2002-03-27 19:51:13 +00:00
Julius Enarusai
9c90811315 Added LDAP_LOG messages 2002-03-27 19:43:07 +00:00
Julius Enarusai
a299e74d21 Added LDAP_LOG messages 2002-03-27 19:37:50 +00:00
Julius Enarusai
b4243bc119 Added LDAP_LOG messages 2002-03-27 19:28:43 +00:00
Julius Enarusai
150aa3fc7b Added LDAP_LOG messages 2002-03-27 19:18:11 +00:00
Julius Enarusai
3ab1ea7300 Added LDAP_LOG messages 2002-03-27 19:12:18 +00:00
Julius Enarusai
e4f2c9425a Added LDAP_LOG messages 2002-03-27 18:50:45 +00:00
Julius Enarusai
d88bc7a8b5 Added LDAP_LOG messages 2002-03-27 18:20:08 +00:00
Kurt Zeilenga
fcf9f451a5 Copyright 2001, Adrian Thurston, All rights reserved. 
This software is not subject to any license of
Xandros Corporation.

This is free software; you can redistribute and use it under the same
terms as OpenLDAP itself.

 -------------------------------------------------------------------
This patch adds an option to ldap_get_option which can be called after
ldap_start_tls in order to obtain the pointer to the SSL object used
 2002-03-11 03:39:08 +00:00
Kurt Zeilenga
d50eb2e959 C translator portability changes (ITS#1609) 2002-02-23 23:47:37 +00:00
Kurt Zeilenga
3d9cf98dad If port is zero, use default. 2002-02-21 15:39:35 +00:00
Pierangelo Masarati
c31596eb78 not-so-easy-to-spot bug in filter writing 2002-02-14 18:01:15 +00:00
Pierangelo Masarati
32e48d9e4d disallow unescaped NULs in UTF-8 string values 2002-02-13 22:49:03 +00:00
Kurt Zeilenga
427478a753 Use memchr, not strlen, to look for embedded NULs. 2002-02-13 17:48:39 +00:00
Kurt Zeilenga
dd12660a14 Add embedded NUL check. This is one case where we don't want to 
be liberal in what we accept.
 2002-02-13 17:23:33 +00:00
Kurt Zeilenga
ee6d1a4d40 Check for NULs in DNs. 2002-02-13 16:41:41 +00:00
Pierangelo Masarati
6913aadcdf minor cleanup 2002-02-13 14:44:08 +00:00
Pierangelo Masarati
33d5f0f8f8 honor the ber_len field to allow to exploit ldap_bv2[r]dn to handle DNs embedded in longer strings ... 2002-02-13 12:09:36 +00:00
Pierangelo Masarati
a117c5eee7 use ldap_bv2[r]dn and turn ldap_str2[r]dn into wrappers 2002-02-13 11:46:33 +00:00
Pierangelo Masarati
959edd88c0 prepare for ldap_bv2dn() 2002-02-13 10:05:22 +00:00
Kurt Zeilenga
f1cc2b7ab2 #if 0 RDN debugging 2002-02-13 08:00:31 +00:00
Kurt Zeilenga
275f3be363 Misc. DN fixes and cleanups, namely don't muck with AVA_BINARY values 
Also, pass empty_bv when bv_val is NULL.
 2002-02-13 06:35:27 +00:00
Kurt Zeilenga
defed68e82 Fix typo 2002-02-11 18:18:34 +00:00