mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
23,779 Commits 38 Branches 307 Tags 74 MiB
c5241b49af
Commit Graph

4826 Commits

Author SHA1 Message Date
Howard Chu
00a5815c2c ITS#9465 remove assert in ldap_get_option() 
Since it's already checked for error
 2021-02-11 17:03:32 +00:00
Howard Chu
f9c5b46651 ITS#9461 fix typo 2021-02-11 11:34:57 +00:00
Howard Chu
257847ab71 Return to Engineering, ITS#9461 2021-02-09 23:42:03 +00:00
Howard Chu
40585b4839 ITS#9461 refix ITS#9376 
Was setting C_DEL flag gratuitously
 2021-02-09 23:41:11 +00:00
Quanah Gibson-Mount
62b7ba7862 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2021-02-04 20:48:51 +00:00
Quanah Gibson-Mount
51a29155e1 Prepare for release (0.9.28) 2021-02-04 20:46:33 +00:00
Ondřej Kuzník
08f07b2ac1 Fix typo in MS AD persistent search ctrl 2021-02-04 15:55:57 +00:00
Quanah Gibson-Mount
61f619043e ITS#8580 - Explicitly honor the server side cipher suite preference 2021-01-28 20:22:50 +00:00
Howard Chu
bedc82a249 ITS#8662 2021-01-28 18:28:32 +00:00
Howard Chu
7796aaebcd ITS#8662 Add -a append option to mdb_load 
To allow reloading of custom-sorted DBs from mdb_dump
 2021-01-28 18:26:41 +00:00
Quanah Gibson-Mount
efaf9a4a17 Happy New Year! 2021-01-11 19:25:53 +00:00
Quanah Gibson-Mount
cf81bfb2e4 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2021-01-11 19:22:25 +00:00
Quanah Gibson-Mount
b4e1e00e9e Happy New Year! 2021-01-11 19:21:58 +00:00
Howard Chu
d2936fb1d5 ITS#9425 add more checks to ldap_X509dn2bv 2020-12-14 20:05:44 +00:00
Howard Chu
c944dc55b7 ITS#9423 ldap_X509dn2bv: check for invalid BER after RDN count 2020-12-13 21:52:00 +00:00
Ondřej Kuzník
50a021a387 Do not enforce a valid ld in lutil_sasl_interact 2020-11-17 17:58:15 +00:00
Quanah Gibson-Mount
ef893fffad ITS#9381 - Remove unused variables, fix rc usage 2020-10-29 20:09:36 +00:00
Quanah Gibson-Mount
cbcc15f561 Return to RE 2020-10-26 19:03:01 +00:00
Quanah Gibson-Mount
3c9aa9df84 Prepare for release (0.9.27) 2020-10-26 19:00:40 +00:00
Howard Chu
37a48f4e89 ITS#9376 2020-10-23 20:38:14 +01:00
Howard Chu
c131c853f0 ITS#9376 Fixes for repeated deletes with xcursor 
On DUPSORT DBs, must initialize xcursor regardless of whether
caller requested its data. Also in cursor_prev must check whether
cursor index is still within range before using it.
 2020-10-23 20:37:30 +01:00
Ondřej Kuzník
3f5293e145 ITS#5422 Save errno before passing it to Debug() 2020-09-24 23:34:36 +00:00
Howard Chu
c3131eb5a3 ITS#9348 replace all uses of STRERROR with AC_STRERROR_R 
Avoid using sys_errlist unless there's no other choice
 2020-09-24 23:34:36 +00:00
Howard Chu
6d7c2511b4 ITS#9201 partial revert 2020-09-03 21:08:17 +01:00
Howard Chu
ccfbb74c62 ITS#9201 additional fixes 2020-09-03 21:01:07 +01:00
Howard Chu
b24ca75993 ITS#9201 fix LDAP_THREAD_DEBUG 
Add missing defs to ldap_thr_debug.h.
slap tools must init libldap so internal mutexes get inited.
 2020-09-03 12:37:32 +01:00
Howard Chu
4c74bd0a41 ITS#9332 add placeholder in LDAP_LDO_TLS_NULLARG 2020-09-01 20:25:00 +01:00
Howard Chu
536767798b ITS#9054 fix typo 2020-08-27 11:22:58 +01:00
Howard Chu
e3faae939c ITS#9328 cldap: check for error on connected socket 
libldap doesn't use a connected socket for UDP sessions, but 3rd
parties can, passed in with ldap_init_fd().
 2020-08-26 20:53:38 +00:00
Quanah Gibson-Mount
c1411b8199 ITS#9323 - Limit to OpenSSL 1.0.2 or later 2020-08-25 21:52:04 +00:00
Howard Chu
88e569d857 ITS#9249 librewrite: fix malloc/free corruption 
If substitution parsing fails, would attempt to free a mapping
that hadn't been allocated yet.

Also, on failure, caller in saslauthz would attempt to free a
rwinfo struct that hadn't been allocated.
 2020-08-23 19:32:51 +00:00
Howard Chu
608a822349 ITS#9318 add TLS_REQSAN option 
Add an option to specify how subjectAlternativeNames should be
handled when validating the names in a server certificate.
 2020-08-21 18:05:08 +00:00
Howard Chu
2386a11649 ITS#9054 Add support for multiple EECDH curves 
Requires OpenSSL 1.0.2 or newer
 2020-08-21 07:58:07 +01:00
Howard Chu
9d2f15307d ITS#7926 dynamic changes to olcListenerThreads 
Reallocates sockets from old to new listener threads
 2020-08-18 22:37:50 +01:00
Quanah Gibson-Mount
01db7a099e Return to engineering 2020-08-12 05:03:38 +00:00
Quanah Gibson-Mount
9c78a81d05 Merge remote-tracking branch 'origin/mdb.RE/0.9' into master 2020-08-11 18:28:02 +00:00
Quanah Gibson-Mount
20403b7b38 Release 0.9.26 2020-08-11 18:24:07 +00:00
Ondřej Kuzník
917fcc03ee ITS#9279 Send Netscape expired control as a bare string 2020-07-27 14:22:24 +02:00
Quanah Gibson-Mount
c444578743 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-07-23 21:59:13 +00:00
Quanah Gibson-Mount
37ebb6b46b ITS#9278 2020-07-23 21:35:36 +00:00
Quanah Gibson-Mount
0ce23640b6 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-07-23 21:32:44 +00:00
Ondřej Kuzník
fd921e7121 ITS#9279 Expose Netscape password policy controls in libldap 2020-07-22 18:57:38 +00:00
Quanah Gibson-Mount
21eef84a49 ITS#9275 -- Update wording to remove slave and master terms, consolidate on provider/consumer 2020-07-18 16:27:04 +00:00
Howard Chu
24b45f57f2 ITS#9287 use getaddrinfo for ldap_pvt_get_fqdn 
If getaddrinfo is available, should use it here
 2020-07-16 21:08:36 +01:00
Ondřej Kuzník
1129df533d ITS#8701 Expose account usability in libldap 2020-07-07 16:43:35 +01:00
Ryan Tandy
a4474d3584 ITS#9235 Delete LDAP_THREAD_SAFE 2020-07-03 17:24:16 -07:00
Ryan Tandy
1f39b05f37 ITS#9235 Fix librewrite compile without threads 2020-07-03 17:23:14 -07:00
Ryan Tandy
c4b6aad6cb ITS#9235 Link test progs with thread libs 2020-07-03 17:23:14 -07:00
Ryan Tandy
a10210db84 ITS#9235 Only compile libldap_r sources when LDAP_R_COMPILE 2020-07-03 17:23:14 -07:00
Ryan Tandy
a5c0b59398 ITS#9235 Define LDAP_R_COMPILE iff building with threads 2020-07-03 17:23:14 -07:00
Quanah Gibson-Mount
c06ac436e2 ITS#9235 Merge libldap_r into libldap 2020-07-03 17:23:14 -07:00
Brett Sheffield
42d7238925 ITS#8603 Add ldif_open_mem() 
ldif_open_mem() is the fmemopen(3) equivalent of ldif_open() which opens
an ldif steam from memory, rather than from a file.
 2020-06-23 10:31:08 +01:00
Sergio Gelato
8006ee58b8 ITS#8204 Improved RFC2782 shuffle when several, but not all, records have weight 0. 
The fallback to a straight Fisher-Yates shuffle needs to occur whenever the
sum of the *remaining* weights is zero, or else the remaining records will
not be reordered. Testing only once at the beginning covers the case when
all weights are zero, and obviously no shuffling is needed when only one
weight is zero; but other weight combinations are possible, such as (1, 0, 0).
 2020-06-22 17:27:30 +00:00
Sergio Gelato
ee7502accd ITS#8204 Remove bias towards the first record in RFC2782 shuffle implementation. 
Prior to this change, given two records of weight 1 the algorithm would
return them in the order (0,1) with 100% probability instead of the
desired 50%. This was due to an off-by-one error in the range test.

srv_rand() returns a float in the range [0.0, 1.0[, so r is an integer in the
range [0, total[. The correct probability for record 0 to be chosen is
a[0].weight/total, not (a[0].weight+1)/total.
 2020-06-22 17:27:30 +00:00
Howard Chu
f681a07634 Silence stupid fallthru warning 2020-06-16 19:57:41 +01:00
Howard Chu
f683ffdc81 ITS#9278 fix robust mutex cleanup for FreeBSD 
FreeBSD 11 supports robust process-shared POSIX mutexes,
but requires them to be explicitly destroyed before munmap
 2020-06-16 19:56:16 +01:00
Quanah Gibson-Mount
fb1933f567 Issue#7530 - Test for ERANGE when using 6 form gethostbyname_r 2020-05-26 19:18:02 +00:00
Ryan Tandy
9282e6edea ITS#8155 Support cacertdir with GnuTLS 2020-05-14 07:56:28 -07:00
Howard Chu
fd23680a44 ITS#9215 fix for glibc again 2020-04-28 16:33:41 +01:00
Ryan Tandy
4a50fa745d ITS#9215 Fix previous commit 2020-04-27 20:06:52 +00:00
Ryan Tandy
e96f90e212 ITS#9176 Implement SNI for GnuTLS 2020-04-27 11:01:01 -07:00
Howard Chu
4265849b0f ITS#9176 check for failure setting SNI 2020-04-27 18:54:02 +01:00
Howard Chu
b8f34888c3 ITS#9176 check for numeric addrs before passing SNI 2020-04-27 18:25:49 +01:00
Howard Chu
5c0efb9ce8 ITS#9176 Add TLS SNI support to libldap 
Implemented for OpenSSL, GnuTLS just stubbed
 2020-04-27 03:41:12 +01:00
Isaac Boukris
4c545ee078 ITS#9242 - ifdef tls-endpoint code in openssl pre 0.9.8 2020-04-25 22:50:52 +02:00
Isaac Boukris
4cac398b19 ITS#9189 - initialize ldo_sasl_cbinding in LDAP_LDO_SASL_NULLARG 
Reported-by: Ryan Tandy @ryan
 2020-04-23 22:28:51 +00:00
Ryan Tandy
e9543da971 ITS#9215 Define _XOPEN_SOURCE for glibc only 2020-04-23 13:19:33 -07:00
Isaac Boukris
3cd50fa8b3 ITS#9189 rework sasl-cbinding support 
Add LDAP_OPT_X_SASL_CBINDING option to define the binding type to use,
defaults to "none".

Add "tls-endpoint" binding type implementing "tls-server-end-point" from
RCF 5929, which is compatible with Windows.

Fix "tls-unique" to include the prefix in the bindings as per RFC 5056.
 2020-04-23 21:00:39 +02:00
Quanah Gibson-Mount
8505f774a5 Update to drop NON_BLOCKING ifdefs that were only really for moznss 2020-04-20 21:38:01 +00:00
Quanah Gibson-Mount
a019e7fe1a ITS#9207 - Remove MozNSS code and documentation 2020-04-20 21:38:01 +00:00
Ryan Tandy
84ab23f37f ITS#9087 Let configure detect cross windres tool 2020-04-17 21:39:52 +00:00
Chris Zagar
7985626fae ITS#9087 - Change hard-coded windres to $(RC) to support mingw cross-compiling 2020-04-17 21:01:05 +00:00
Ryan Tandy
db404baf15 ITS#9226 Fix link order for rewrite program on MinGW 2020-04-16 19:35:53 -07:00
Ryan Tandy
d5e133f459 ITS#9181 fix ldap_pvt_thread_mutex_t used before its definition 2020-04-16 19:15:31 +00:00
Quanah Gibson-Mount
a97eed06f0 ITS#6937 - Remove unused proctitle bits 2020-04-15 19:32:28 +00:00
Quanah Gibson-Mount
e50741e459 ITS#6567 - More cleanup 2020-04-13 17:19:35 +00:00
Howard Chu
735e1ab14b ITS#8650 loop on incomplete TLS handshake 
Always retry ldap_int_tls_connect() if it didn't complete,
regardless of blocking or non-blocking socket. Code from
ITS#7428 was wrong to only retry for async.
 2020-04-12 23:51:09 +01:00
Quanah Gibson-Mount
c6493c45b5 ITS#6567 - Remove non-cyrus-sasl GSSAPI bits 2020-04-10 18:19:33 +00:00
Quanah Gibson-Mount
0668877847 ITS#9191 - Avoid div 0 error 2020-04-06 15:42:00 +00:00
Ryan Tandy
7732cb2794 ITS#9086 Add debug logging for more GnuTLS errors 2020-04-02 15:52:31 +00:00
Sergei Trofimovich
57b7003a64 thr_posix.c: fix implicit function declaration for 'pthread_setconcurrency' 
thr_posix.c: In function 'ldap_pvt_thread_set_concurrency':
thr_posix.c:96:9: error: implicit declaration of function 'pthread_setconcurrency'
  return pthread_setconcurrency( n );
         ^~~~~~~~~~~~~~~~~~~~~~
         pthread_setcanceltype

Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>
 2020-03-26 22:06:41 +00:00
Howard Chu
4f7ea78c95 ITS#9181 Fix race on Windows mutex init 2020-03-16 17:07:43 +00:00
Andrew Lawrence
6f5cc45f93 ITS#8639 remove LANMAN hashed passwords 2020-03-07 16:55:35 +00:00
Quanah Gibson-Mount
6bd2a3721d ITS#9175 - Fix argument cast 
Fixes potential segfault in ldapsearch
 2020-02-21 21:10:49 +00:00
Ondřej Kuzník
b1170bc035 Revert "ITS#9160 OOM handling in mdb tools", wrong branch. 
This reverts commit be61a967e6.
 2020-02-07 11:34:20 +00:00
Ondřej Kuzník
4bb239bd76 ITS#9160 OOM handling in libldap 2020-02-07 09:46:52 +00:00
Ondřej Kuzník
be61a967e6 ITS#9160 OOM handling in mdb tools 2020-02-07 09:46:52 +00:00
Quanah Gibson-Mount
1ce8c2bcea Return to engineering 2020-01-30 18:14:31 +00:00
Quanah Gibson-Mount
bc30f083d6 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-01-30 18:13:03 +00:00
Quanah Gibson-Mount
6a1af27ff2 Release 0.9.25 2020-01-30 17:57:13 +00:00
Ondřej Kuzník
76c43165ea Remove LDAP_X_TXN and rename accordingly 2020-01-28 12:09:09 +00:00
Ondřej Kuzník
9ce2d2f9d2 ITS#9156 Implement pwdMaxLength 2020-01-23 23:46:43 +00:00
Quanah Gibson-Mount
a2be9ff491 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-01-23 16:10:20 +00:00
Howard Chu
dc021fe9ec ITS#9155 2020-01-23 14:52:50 +00:00
Howard Chu
87a94cbf9b ITS#9155 lmdb: free mt_spill_pgs in non-nested txn on end 2020-01-23 14:52:13 +00:00
Howard Chu
c06807ec45 ITS#9120 fix tm2time compat breakage 
Add lutil_tm2gtime for Proleptic Gregorian calendar,
revert lutil_tm2time to previous behavior using Unix epoch
 2020-01-19 19:05:04 +00:00
Howard Chu
e2e17dd2f1 ITS#9147 plug descriptor leak if ldaps connect fails 2020-01-11 04:18:37 +00:00
Quanah Gibson-Mount
f6ad222e41 Happy New Year! 2020-01-09 16:50:21 +00:00
Quanah Gibson-Mount
cc93098132 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-01-09 16:47:22 +00:00
Quanah Gibson-Mount
ed0b29b3fe Happy New Year! 2020-01-09 16:46:43 +00:00