mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-12 10:54:48 +08:00
Code Issues Packages Projects Releases Wiki Activity
5,104 Commits 38 Branches 307 Tags 75 MiB
ac46e96c74
Commit Graph

679 Commits

Author SHA1 Message Date
Kurt Zeilenga
c0a06f25c2 Add ldap_pvt_tls_get_peer_dn() routine. Returns peer as an LDAP DN. 2001-01-18 00:40:58 +00:00
Kurt Zeilenga
a0828d6135 Rework scope defaulting to only default scope for references. 
Might break LDAPv2 partial results
 2001-01-10 23:48:24 +00:00
Kurt Zeilenga
1d1c1edf44 update rand file after use 2001-01-10 21:14:13 +00:00
Ben Collins
4391e6654a s/UTF8_CHARLEN/LDAP_UTF8_CHARLEN/ 2001-01-03 21:38:32 +00:00
Kurt Zeilenga
5082731e24 Add UTF-8 wc/mb conversion routines contributed by Novell. 
/******************************************************************************
 * Copyright (C) 1999, 2000 Novell, Inc. All Rights Reserved.
 *
 * THIS WORK IS SUBJECT TO U.S. AND INTERNATIONAL COPYRIGHT LAWS AND
 * TREATIES. USE, MODIFICATION, AND REDISTRIBUTION OF THIS WORK IS SUBJECT
 * TO VERSION 2.0.1 OF THE OPENLDAP PUBLIC LICENSE, A COPY OF WHICH IS
 * AVAILABLE AT HTTP://WWW.OPENLDAP.ORG/LICENSE.HTML OR IN THE FILE "LICENSE"
 * IN THE TOP-LEVEL DIRECTORY OF THE DISTRIBUTION. ANY USE OR EXPLOITATION
 * OF THIS WORK OTHER THAN AS AUTHORIZED IN VERSION 2.0.1 OF THE OPENLDAP
 * PUBLIC LICENSE, OR OTHER PRIOR WRITTEN CONSENT FROM NOVELL, COULD SUBJECT
 * THE PERPETRATOR TO CRIMINAL AND CIVIL LIABILITY.
 ******************************************************************************/
 2000-12-28 02:20:37 +00:00
Kurt Zeilenga
b7607bf237 ITS#884: GSSAPI interoperabity with ActiveDirectory 
Improve interoperability when of scred is present but empty.
 2000-12-27 19:42:09 +00:00
Kurt Zeilenga
d8292a62da Fix referral scope logic 2000-12-08 19:45:04 +00:00
Kurt Zeilenga
a09139465a Update URL parsing and LDAP referral/reference chasing to handle 
search scope defaulting.
 2000-11-28 19:56:55 +00:00
Kurt Zeilenga
c0f9ec5458 ITS#889 fix 2000-11-22 20:27:30 +00:00
Kurt Zeilenga
6053ed1058 ITS#903: validate hostname in server cert from Norbert Klasen 
adapted as needed.
 2000-11-22 20:23:38 +00:00
Kurt Zeilenga
5941625eb7 ITS#889: quick fix 2000-11-20 18:59:42 +00:00
Kurt Zeilenga
511a84bc31 First cut of SASL/EXTERNAL 2000-10-31 23:00:35 +00:00
Kurt Zeilenga
907cd90607 Fix UTF-8 5-octet sequences 2000-10-27 21:32:46 +00:00
Kurt Zeilenga
7b9886e909 Add LDAP URL critical extension counter support. lud_crit_exts 
is the number of critical extensions contained in lud_exts.
As we currently do not support any extension, this flag is
useful for determining whether or not we should attempt to
use the URL.  Added check of this counter to ldap_url_search
and LDAPv3 chase referrals.
 2000-10-26 06:17:14 +00:00
Kurt Zeilenga
2504f29a0c Fix IS ASCII checks. Should be < 0x80 (0100), not < 0x100. 2000-10-23 18:04:45 +00:00
Julio Sánchez Fernández
47fd4fbad3 A little bit of Matching Rule Use. 2000-10-23 12:25:43 +00:00
Kurt Zeilenga
9e7accb034 This patch replaces gai_strerror with AC_GAI_STRERROR in daemon.c and also 
uses AC_GAI_STRERROR to report getaddrinfo failures in os-ip.c
-- Stig Venass
 2000-10-19 18:05:11 +00:00
Kurt Zeilenga
9f0d190739 Add ldap_pvt_gai_strerror(). 
Calls to gai_strerror() should be replaced with calls AC_GAI_STRERROR().
 2000-10-18 17:25:30 +00:00
Kurt Zeilenga
3498151f99 Validate session handle 2000-10-18 16:32:57 +00:00
Kurt Zeilenga
ffe1320bf5 fix SOCKET_ERROR typos 2000-10-18 03:24:50 +00:00
Kurt Zeilenga
ce373d3800 Use SOCKET_ERROR instead of -1 2000-10-18 00:27:31 +00:00
Kurt Zeilenga
d491ac55de Update handling of partial responses 
Update comments
Update log messages
rename symbols per conventions
 2000-10-18 00:26:53 +00:00
Kurt Zeilenga
6442964059 Handle *lud_host == '\0' 
(likely should modify parsers and other codes to disallow such)
 2000-10-17 20:30:14 +00:00
Kurt Zeilenga
174c6abfe2 ldap_url_search should use hostport of URL. 2000-10-17 19:26:04 +00:00
Kurt Zeilenga
66818be637 Don't attempt to send abandon unless connection exists. 
If connection doesn't exist, return LDAP_SERVER_DOWN.
 2000-10-16 23:11:41 +00:00
Kurt Zeilenga
edef4b2970 ITS#821: TLS data ready fix from <mattc@chartist.com> 2000-10-16 20:26:56 +00:00
Julio Sánchez Fernández
5d899f0c00 Better processing of extensible filters. Needs testing, but the prior 
version was not encoding properly the filter.
 2000-10-15 19:17:06 +00:00
Kurt Zeilenga
3d57f2ae67 Rework control create/dup routines to distinguish not 
present value from empty value.
 2000-10-14 02:13:53 +00:00
Kurt Zeilenga
93d9fde132 Label sb debugging as "ldap_"... 2000-10-13 01:00:55 +00:00
Kurt Zeilenga
2a6f092422 Add sasl i/o debugging 2000-10-12 23:50:58 +00:00
Gary Williams
3e0cc38404 remove LDAP_Debug macro 2000-10-12 21:16:18 +00:00
Kurt Zeilenga
5a32ff0603 Add missing 'static'... (ITS#823,825,828) 
as reported by Jeff Earickson <jaearick@colby.edu>
other suggestions to be separately reviewed
 2000-10-11 23:42:53 +00:00
Kurt Zeilenga
f8e5ed25e9 Revised ITS#799 fix from Steve Sonntag <vtag@novell.com> 
The problem is that the current code checks the queue inside
 the test for correct connecction state, so sometimes the queue
 doesn't get checked. This change moves the test outside
 the connection check.
 2000-10-11 21:11:34 +00:00
Kurt Zeilenga
8e6062eb82 References with empty dn (ITS#817) 2000-10-11 04:23:23 +00:00
Kurt Zeilenga
b7b9148c7f Return more appropriate result codes than LDAP_UNAVAILABLE 
upon failures.
 2000-10-09 22:11:34 +00:00
Kurt Zeilenga
2cdbfd069b Add missing newlines 2000-10-05 18:30:06 +00:00
Kurt Zeilenga
6712936ef8 ITS#799: chasing multiple referrals bug 
Patch provided by Steve Sonntag <vtag@novell.com>
 2000-10-05 01:40:36 +00:00
Kurt Zeilenga
005a2f7aec Don't assert on null 2000-10-03 18:51:30 +00:00
Kurt Zeilenga
778b665242 Fix up some free'ing. 2000-10-02 17:43:39 +00:00
Kurt Zeilenga
003a293e2b Don't specify LDFLAGS when using LTLINK to avoid duplicate 
specfication of flags.
 2000-10-01 08:10:37 +00:00
Kurt Zeilenga
74b048a5a4 Fix ldap_first/next_attribute to return NULL without error when 
nothing is left.
 2000-09-30 06:57:23 +00:00
Kurt Zeilenga
1890b720b4 cleanup getattr bailout code 2000-09-30 05:35:44 +00:00
Kurt Zeilenga
f8d9bffb98 Don't touch (unescape) URL handed to rebind proc. 2000-09-30 02:37:05 +00:00
Kurt Zeilenga
dd733e163a ITS#791: fix SASL ctx close 2000-09-29 18:27:06 +00:00
Kurt Zeilenga
2b82d4f486 remove lint 
update bdb codes
 2000-09-22 01:40:57 +00:00
Kurt Zeilenga
90d557402b Should modify code to bail on initialization errors... 
For now, just (void) the return
 2000-09-21 19:56:04 +00:00
Mark Adamson
bf1ee530ea Implementation of SASL authorization. 2000-09-21 17:32:54 +00:00
Kurt Zeilenga
e1b73eda93 cleanup 2000-09-16 22:46:04 +00:00
Kurt Zeilenga
f42966f9e1 Fix #undef LDAP_UFN 2000-09-16 06:24:17 +00:00
Kurt Zeilenga
efe39c999f modify ldap_dn2ufn() to return completely typeless UFNs 
hide rest of UFN code behind #ifdef LDAP_UFN in preparation
for eventual removal.
 2000-09-16 04:33:52 +00:00
Kurt Zeilenga
f4f093054a overrun protection doesn't work... hmmm.... 2000-09-16 01:05:14 +00:00
Kurt Zeilenga
b611ec4b87 consistently use ber_pvt_ber_*() routines 2000-09-15 05:56:37 +00:00
Ben Collins
aaf59e2a2b don't define NEED_COPY_HOSTENT in the decleration 2000-09-15 03:33:05 +00:00
Ben Collins
621babf51d fix compiler warnings by including ac/unistd.h and only declaring copy_hostent() when we actually need to use it 2000-09-15 03:06:18 +00:00
Ben Collins
718a6bfca4 initialize Sockbuf * to NULL 2000-09-15 03:05:27 +00:00
Ben Collins
3635cbdbe1 remove unused vars 2000-09-15 03:04:46 +00:00
Ben Collins
9946e999c8 move some vars to where they are actually used to avoid compiler warnings 2000-09-15 03:04:04 +00:00
Ben Collins
81d26d3ac0 fix call to ldap_connect_to_path() 2000-09-15 03:02:57 +00:00
Ben Collins
b2866ff162 s/LDAP_PF_UNIX/LDAP_PF_LOCAL/ so that we actually declare ldap_connect_to_path(). Also fix the decleration to match the function 2000-09-15 02:55:54 +00:00
Ben Collins
5df2c83b38 remove unused var, 'dn' 2000-09-15 02:54:28 +00:00
Ben Collins
960041de8a include ac/ctype.h and initialize some variables to avoid compiler warnings 2000-09-15 02:53:55 +00:00
Kurt Zeilenga
b641615c53 Keep ldap_first/next_attribute from running past end of attributes. 
Likely other sequences need this attention.
 2000-09-15 01:16:09 +00:00
Kurt Zeilenga
b4c9287f45 Don't send optional cred if empty 2000-09-15 00:09:24 +00:00
Kurt Zeilenga
fbfe0f0ac7 Fix typo in Kbind code 2000-09-14 19:58:55 +00:00
Kurt Zeilenga
ed68c977d9 Zap LDAP_LIBUI 2000-09-14 07:22:01 +00:00
Ben Collins
5a33b7509b Fix error in if() statement (==, not =) 2000-09-13 21:47:12 +00:00
Ben Collins
07ce0a9935 s/got_max_ssf/got_min_ssf/ thinko fix when checking for minssf. In this case, minssf was never set, and would cause maxssh to be set in error 2000-09-13 21:46:11 +00:00
Randy Kunkee
ab3be5d76d Include <ac/param.h> to pick up MAXPATHLEN. 2000-09-13 07:26:55 +00:00
Kurt Zeilenga
92c55c4454 Clean up 2000-09-13 01:12:47 +00:00
Kurt Zeilenga
d554a31b58 Move ldap_pvt_tls_init call to ldap_pvt_tls_start 
Relax user-only options on TLS_RANDFILE and TLS_REQCERT
 2000-09-13 00:54:45 +00:00
Kurt Zeilenga
2c30c90876 Rework TLS code (only supports default connection) 2000-09-12 00:30:05 +00:00
Kurt Zeilenga
102a88659b ITS#717 kbind fixes 2000-09-06 21:32:45 +00:00
Kurt Zeilenga
d59a62e236 Clarify perms 2000-09-04 21:57:01 +00:00
Kurt Zeilenga
cee040a321 Bring UCdata infrastructure. 2000-09-03 23:48:35 +00:00
Kurt Zeilenga
b99299219f Fix typo 2000-09-03 19:33:26 +00:00
Kurt Zeilenga
5518aefda0 Change default to SSL_PEER_NONE (don't require peer certificate). 2000-09-01 23:24:17 +00:00
Kurt Zeilenga
57ed8f6458 Fix port defaulting 2000-09-01 23:03:17 +00:00
Kurt Zeilenga
8983f7cb8b Fix ldap_pvt_tls_start() return value check. 2000-09-01 01:04:18 +00:00
Kurt Zeilenga
3844db4404 Use example.com, not openldap.org, in examples 2000-08-25 02:17:40 +00:00
Kurt Zeilenga
a2afb207be Move ldap_start_tls_s() to tls.c 2000-08-25 02:16:15 +00:00
Kurt Zeilenga
57936dc93c Zap CLDAP 2000-08-19 00:07:30 +00:00
Kurt Zeilenga
25a9f7427d Remove CLDAP cruft 2000-08-18 04:25:00 +00:00
Howard Chu
0f8047b95e Implemented ldap_pvt_tls_get_peer() for use with SASL/EXTERNAL. 
Added ldap_pvt_tls_get_strength() - return encryption strength, for
use as a SASL session security factor.
 2000-08-16 23:27:41 +00:00
Kurt Zeilenga
2ae410bd1b Treat INADDR_LOOPBACK (as well as INADDR_ANY) as local host. 2000-08-15 02:13:00 +00:00
Kurt Zeilenga
3b03b64b77 Add char* ldap_pvt_get_fqdn(char*) which returns the FQDN of the 
input.  In input==NULL, returns FQDN of local host.
Fixed copy_hostent() uninitialized pointer bug.
Replaced gethostname calls with ldap_pvt_get_fqdn( NULL ) calls.
 2000-08-15 01:55:43 +00:00
Kurt Zeilenga
0f5a264dc3 hostbuf should be static 2000-08-15 00:58:56 +00:00
Kurt Zeilenga
f22250baaa Fix a minor leak. 2000-08-14 18:39:43 +00:00
Kurt Zeilenga
b33f8b75d3 ITS#647 from Paul R. Turgyan <pturgyan@umich.edu> 
When calling ldap_search looking for "supportedSASLMechanisms",
a NULL string should be passed to ldap_search and not a NULL pointer.
 2000-08-06 05:25:10 +00:00
Kurt Zeilenga
5b856458a2 s/SAFEMEMCPY/AC_MEMCPY/ 
Use AC_FMEMCPY where appropriate (-llber)
 2000-07-28 01:07:07 +00:00
Kurt Zeilenga
a50f391bb3 Working SASL security layers! 2000-07-28 00:04:07 +00:00
Kurt Zeilenga
33fb0e055b From: vtag@novell.com 
Subject: Bug in ldap_parse_result function (ITS#643)

If a user is using ldap result to obtain search results one message
at a time and calls ldap_parse_result on one of those messages, i.e.
the message chain does not have an LDAP_RES_SEARCH_RESULT message
in the chain, ldap_parse_result returns a LDAP_DECODING_ERROR
instead of LDAP_NO_RESULTS_RETURNED.
 2000-07-27 23:44:44 +00:00
Kurt Zeilenga
ecbb4e55b1 Expose ldap_create_control 
Conform schema routines to ldap naming conventions
 2000-07-22 17:29:54 +00:00
Kurt Zeilenga
b800a28c1e Plug leak of syn_names 2000-07-21 02:23:27 +00:00
Kurt Zeilenga
804100b431 Fix sasl end game processing. 2000-07-20 18:39:40 +00:00
Kurt Zeilenga
5c10406b9e Fix up SASL interact error checking 2000-07-19 22:53:22 +00:00
Randy Kunkee
f42e510e03 Fix prototype for dummy ldap_int_sasl_bind. 2000-07-19 07:44:06 +00:00
Kurt Zeilenga
9fb680d527 Fix SASL automatic/quiet modes... 2000-07-17 21:36:30 +00:00
Kurt Zeilenga
6393523ffa Expose sasl flags to -lldap (so they can be quiet) 
Fix interactive and automatic modes.  Quiet needs work.
 2000-07-17 21:23:59 +00:00
Kurt Zeilenga
95eea5accc First cut SASL "interactive" and "quiet" modes (default is "automatic") 2000-07-17 00:56:29 +00:00
Kurt Zeilenga
d2b05a3858 Rework SASL command line arguments. Default is now to authenticate 
using best available mechanism.  (authzid prompting to be disabled)
To use simple bind, -x is required (implied if -P 2) with -D/-[Ww]
To use simple "anonymous" bind, just -x will do.
 2000-07-15 23:25:46 +00:00