Commit Graph

230 Commits

Author SHA1 Message Date
Howard Chu
608a822349 ITS#9318 add TLS_REQSAN option
Add an option to specify how subjectAlternativeNames should be
handled when validating the names in a server certificate.
2020-08-21 18:05:08 +00:00
Howard Chu
2386a11649 ITS#9054 Add support for multiple EECDH curves
Requires OpenSSL 1.0.2 or newer
2020-08-21 07:58:07 +01:00
Quanah Gibson-Mount
21eef84a49 ITS#9275 -- Update wording to remove slave and master terms, consolidate on provider/consumer 2020-07-18 16:27:04 +00:00
Quanah Gibson-Mount
c06ac436e2 ITS#9235 Merge libldap_r into libldap 2020-07-03 17:23:14 -07:00
Ondřej Kuzník
528ab11f66 ITS#9271 Document ldap_parse_intermediate 2020-05-28 16:02:02 +00:00
Ryan Tandy
7dfbcfa151 Fix typos 2020-04-28 11:24:48 -07:00
Isaac Boukris
3cd50fa8b3 ITS#9189 rework sasl-cbinding support
Add LDAP_OPT_X_SASL_CBINDING option to define the binding type to use,
defaults to "none".

Add "tls-endpoint" binding type implementing "tls-server-end-point" from
RCF 5929, which is compatible with Windows.

Fix "tls-unique" to include the prefix in the bindings as per RFC 5056.
2020-04-23 21:00:39 +02:00
Quanah Gibson-Mount
a019e7fe1a ITS#9207 - Remove MozNSS code and documentation 2020-04-20 21:38:01 +00:00
Quanah Gibson-Mount
f6ad222e41 Happy New Year! 2020-01-09 16:50:21 +00:00
Ondřej Kuzník
6a5e30674b ITS#8671 Expose OpenLDAP specific interfaces in openldap.h 2019-06-14 11:52:35 +02:00
Nadezhda Ivanova
f239bbd3c6 Add LDAP_OPT_KEEPCONN option
This option instructs try_read1msg to not free the connection on read error
or on Notice of disconnections, but leave it to the caller. It is needed,
for example, by back-asyncmeta, who expects to have control on when
its target connections are freed. Must be used with caution.
2019-02-28 17:27:54 +00:00
Quanah Gibson-Mount
b45a6a7dc7 Happy New Year! 2019-01-14 18:46:16 +00:00
Quanah Gibson-Mount
59e9ff6243 Happy New Year 2018-03-22 15:35:24 +00:00
Nathaniel McCallum
29f6260364 ITS#7532 - Add new function ldap_connect().
This function is used to manually establish a connection after
a call to ldap_initialize(). This is primarily so that a file
descriptor can be obtained before any requests are sent for the
purposes of polling for writability.
2017-10-11 14:31:22 -07:00
Quanah Gibson-Mount
fba60ab2ed ITS#8121 - Note ldap_sasl_bind and ldap_sasl_bind_s can be used to make simple binds via the LDAP_SASL_SIMPLE mechanism 2017-10-06 10:44:38 -07:00
Quanah Gibson-Mount
ba59f9859d ITS#8544 - Grammar and escaping fixes 2017-01-18 07:56:59 -08:00
Quanah Gibson-Mount
1df85d3427 Happy New Year! 2017-01-03 12:36:47 -08:00
Quanah Gibson-Mount
6c4d6c880b Happy New Year! 2016-01-29 13:32:05 -06:00
Quanah Gibson-Mount
1705fa7e55 Happy New Year 2015-02-11 15:36:57 -06:00
Howard Chu
9b4895561c ITS#8032 document LDAP_OPT_API_INFO/FEATURE_INFO 2015-01-22 01:40:04 +00:00
Howard Chu
d951a4288b ITS#7860 more for #5366, ldap_ava definition 2014-07-18 11:26:33 -07:00
Kurt Zeilenga
5c878c1bf2 Happy new year (belated) 2014-01-25 05:21:25 -08:00
Howard Chu
16f8b0902c ITS#7398 add LDAP_OPT_X_TLS_PEERCERT
retrieve peer cert for an active TLS session
2013-09-10 04:31:39 -07:00
Howard Chu
0045e56c34 ITS#7683 more for tls version/cipher info
Add LDAP_OPT_X_TLS_VERSION / LDAP_OPT_X_TLS_CIPHER for
retrieving from an LDAP session handle. Update ldap_get_option(3).
2013-09-09 11:52:10 -07:00
Kurt Zeilenga
0fd1bf30b8 Happy New Year 2013-01-02 10:22:57 -08:00
Howard Chu
1b393b7421 ITS#7411 delete trailing whitespace in ldap_get_option.3 2012-10-11 08:37:33 -07:00
Howard Chu
7767a41061 ITS#7240 note option inheritance behavior 2012-04-18 03:09:53 -07:00
David M. Syzdek
0df3b9222a ITS#7173 Fixing prototype of function in manpage to match prototype in C header.
The prototype for ldap_modify_ext() in the C header file declares
    msgidp as "int *", however the current manpage declares msgidp as
    "int **". This patch updates the manpage to accurately reflect the
    C header.

Signed-off-by: David M. Syzdek <syzdek@bindlebinaries.com>
2012-02-18 15:41:37 -08:00
Kurt Zeilenga
2bbf9804b9 Happy New Year! 2012-01-01 07:10:53 -08:00
Jan Vcelak
4b9d680f55 ITS#7028 man: ldap_sync(3) ldap_sync_destroy type 2011-08-24 15:43:18 -07:00
Howard Chu
123506788b ITS#6959 document ldap_dnfree() 2011-06-03 11:51:11 -07:00
Howard Chu
c721b2b7a0 ITS#6816 MozNSS doc additions from Rich Megginson @ Red Hat. Needs cleanup. 2011-01-31 21:13:11 +00:00
Howard Chu
f46e339634 Note that ldap_sasl_interactive_bind() will be forced to synchronously
query the server for mechanisms if not supplied by the caller.
2011-01-05 00:53:27 +00:00
Kurt Zeilenga
966cef8c9a Happy New Year 2011-01-05 00:42:37 +00:00
Howard Chu
0f30db1c46 ITS#6625 concurrency patch from Doug Leavitt @ Oracle .com 2010-10-22 21:45:48 +00:00
Howard Chu
cf66c2e645 add ldap_sasl_interactive_bind() 2010-10-14 01:59:16 +00:00
Pierangelo Masarati
a1726d61e0 improve previous commit 2010-07-27 01:01:24 +00:00
Pierangelo Masarati
0480296a1f document ldap_set_urllist_proc(3) (ITS#6601) 2010-07-27 00:47:18 +00:00
Kurt Zeilenga
3dadeb3efe happy belated New Year 2010-04-13 22:17:29 +00:00
Kurt Zeilenga
f967ec3b4e Set res parameter to NULL upon ldap_search_ext_s entry. Likewise for friends.
Note in manual that res parameter should be freed regardless of return value
of ldap_search_ext_s (or friends).
2010-01-29 23:11:24 +00:00
Pierangelo Masarati
a95b8cd488 honor -1 timeout (ITS#6388) 2009-11-18 14:57:52 +00:00
Gavin Henry
6f2a0ac2e4 ITS#5366 ldap_get_dn man page errors 2009-10-07 13:15:51 +00:00
Howard Chu
7190a68f28 spell out CTX -> context 2009-08-26 23:21:13 +00:00
Howard Chu
702f5967f2 More tls tweaks 2009-08-26 23:17:43 +00:00
Howard Chu
ff9693a15d Explanation and warnings about OPT_X_TLS_CTX and OPT_X_TLS_SSL_CTX. 2009-08-26 23:12:47 +00:00
Howard Chu
c012c105ba GnuTLS tweaks 2009-08-26 22:57:22 +00:00
Howard Chu
d03052b894 More cleanup 2009-08-26 22:52:09 +00:00
Howard Chu
7980931b63 Minor cleanup 2009-08-26 22:32:09 +00:00
Pierangelo Masarati
274111f8ae more clarifications 2009-08-19 22:34:16 +00:00
Pierangelo Masarati
f52273fe84 first round of fixes; add TCP keepalive stuff. 2009-08-19 20:27:10 +00:00