Howard Chu
d18277eac9
ITS#4422, #4475
...
Move TLS options into struct ldapoptions.
Added ldap_int_tls_destroy()
Added LDAP_OPT_X_TLS_NEWCTX to generate new SSL_CTX
2006-04-07 00:52:38 +00:00
Pierangelo Masarati
8c9f071238
duplicate string from environment, as it may be overridden by the user (ITS#4436)
2006-03-20 11:57:16 +00:00
Luke Howard
86d1072917
ITS#4327 - make SASL_MECH/SASL_REALM no longer user-only options
2006-01-11 17:28:30 +00:00
Kurt Zeilenga
acbb5cf689
Happy new year!
2006-01-03 23:11:52 +00:00
Pierangelo Masarati
f571f4b2b4
fix previous commit
2005-11-03 20:11:22 +00:00
Pierangelo Masarati
561cd3d845
don't leak hostname
2005-11-03 15:17:48 +00:00
Howard Chu
9095af5928
ITS#4017 support Diffie-Hellman parameters for multiple key lengths
2005-10-05 20:01:52 +00:00
Hallvard Furuseth
2e19c67235
Handle LDAP_INT_GLOBAL_OPT() failure in ldap_int_destroy_global_options()
2005-08-31 18:59:27 +00:00
Kurt Zeilenga
3e800f20bd
<limits.h> cleanup && ITS#3643
2005-04-10 19:32:14 +00:00
Kurt Zeilenga
dc0eacd40b
Happy New Year!
2005-01-01 20:49:32 +00:00
Howard Chu
2590e26bc7
Initialize TLS connection callback
2004-11-23 05:09:10 +00:00
Ralf Haferkamp
93cec8b694
- Added autoconf test for CRL capable OpenSSL Version
...
- #ifdef'd CRL checking code.
2004-11-03 12:02:38 +00:00
Ralf Haferkamp
5704a2ef6e
CRL checking options for ldap.conf and slapd.conf
2004-10-28 18:50:38 +00:00
Kurt Zeilenga
5f5d50aeb0
Add TLS cipher suite directive to ldap.conf(5)
2004-09-05 07:21:20 +00:00
Kurt Zeilenga
d611a4b49a
unifdef -UNEW_LOGGING
2004-09-04 04:54:28 +00:00
Kurt Zeilenga
f0bd9b3a5b
Mark areas needed poll(2) support with HAVE_POLL.
2004-07-09 17:50:22 +00:00
Kurt Zeilenga
3c598e89fb
Happy new year
2004-01-01 19:15:16 +00:00
Howard Chu
dc19332bb9
Don't init SASL library until we actually want a SASL session
2003-12-03 01:59:33 +00:00
Kurt Zeilenga
159de0f135
Updated notices and acknowledgements
2003-11-26 07:16:36 +00:00
Howard Chu
11453007c2
ITS#2770 - delete bogus maxbuf checks on sasl_read
2003-10-16 18:56:02 +00:00
Kurt Zeilenga
65bfb44e8e
Error when user tries to mix command line and default URI components.
...
Remove TLS hard as an ldap.conf option as being not a over-writable
default. The appropriate way to request ldaps:// is use an ldaps://
URI. A rewrite to only sent hard for the default URIs but ignored
if the application provides it own URI would be acceptable.
2003-05-22 00:13:00 +00:00
Kurt Zeilenga
6939c53170
Happy new year
2003-01-03 20:20:47 +00:00
Howard Chu
771974f99d
ITS#2019 Initialize utils properly
2002-08-10 23:34:55 +00:00
Kurt Zeilenga
e6460769ab
Misc sprintf/snprintf cleanup
2002-07-23 18:26:33 +00:00
Julius Enarusai
6107ba67d2
Coverted LDAP_LOG macro to use subsystem ID int values instead of string values
2002-07-11 20:33:24 +00:00
Julius Enarusai
171281f3ec
Added LDAP_LOG messages
2002-03-27 22:03:35 +00:00
Howard Chu
ffa4b26343
Slightly better fix for library cleanup. Requires GCC.
2002-02-09 01:09:23 +00:00
Howard Chu
bbee3551b8
Fix for Windows, don't call gethostbyname until WSAStartup has occurred.
2002-01-04 23:10:48 +00:00
Kurt Zeilenga
0e2af54a3f
Update copyright statements
2002-01-04 21:17:25 +00:00
Howard Chu
06b350c04c
Moved WSAStartup/WSACleanup to libldap/init.c. Cleanup occurs in the
...
internal atexit handler.
2001-12-28 06:12:17 +00:00
Howard Chu
dfba82c441
minor cleanup from jon@symas.com
2001-12-18 05:17:06 +00:00
Howard Chu
320d6742b7
Added atexit handler to free global_opts->ldo_defludp.
2001-12-15 13:43:49 +00:00
Howard Chu
2b0819c4a9
Don't copy and leak user; it's an env var so just use it directly.
2001-12-15 12:07:40 +00:00
Howard Chu
e6d6faf3c9
From jon@symas.com - patches for consistent use of directory separators
...
in pathnames.
2001-12-07 01:46:26 +00:00
Kurt Zeilenga
75c7331743
Added the easy part of NLS support, behind an #ifdef.
2001-10-04 18:06:08 +00:00
Howard Chu
e80b5d4040
Clean up CLDAP stuff
2001-09-28 22:19:51 +00:00
Howard Chu
647b5f84ee
Resurrection/rewrite of CLDAP (RFC1798 Connectionless LDAP).
...
Compile with -DLDAP_CONNECTIONLESS to use this code.
For slapd, use "-h cldap://" to listen on UDP.
For ldapsearch, use "-H cldap://" to query on UDP.
Client-side support is very minimal:
no automatic timeout/retries
no basedn wildcard expansion on results
no support for specifying multiple servers at once.
2001-09-28 00:18:40 +00:00
Kurt Zeilenga
05c9d4bfda
Fix TLS ldap.conf issues
2001-09-05 21:22:41 +00:00
Kurt Zeilenga
c731288dc6
Replace ATTR_URIS with ATTR_OPTION (more general solution)
2001-06-25 21:39:14 +00:00
Kurt Zeilenga
c4f5497ac6
move TLS ctx to lconn struct in prep for supporting TLS with referrals
...
need to rework cert check to use per lconn host name
2001-06-25 07:33:42 +00:00
Kurt Zeilenga
5f25c10980
new rebind proc
...
new SASL locking
2001-06-15 00:14:56 +00:00
Kurt Zeilenga
599a610164
Update SASL bufsize checks
2001-01-18 22:18:41 +00:00
Kurt Zeilenga
d554a31b58
Move ldap_pvt_tls_init call to ldap_pvt_tls_start
...
Relax user-only options on TLS_RANDFILE and TLS_REQCERT
2000-09-13 00:54:45 +00:00
Kurt Zeilenga
3b03b64b77
Add char* ldap_pvt_get_fqdn(char*) which returns the FQDN of the
...
input. In input==NULL, returns FQDN of local host.
Fixed copy_hostent() uninitialized pointer bug.
Replaced gethostname calls with ldap_pvt_get_fqdn( NULL ) calls.
2000-08-15 01:55:43 +00:00
Kurt Zeilenga
0f5a264dc3
hostbuf should be static
2000-08-15 00:58:56 +00:00
Kurt Zeilenga
95eea5accc
First cut SASL "interactive" and "quiet" modes (default is "automatic")
2000-07-17 00:56:29 +00:00
Kurt Zeilenga
5fc22599e2
Update SASL code to reuse context through life of session.
...
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
2000-07-13 22:54:38 +00:00
Kurt Zeilenga
fe23628faa
ITS#619: TLS PRNG initialization code
...
based upon patch provided by Ted C. Cheng <cheng@ix.netcom.com>
2000-07-08 22:17:50 +00:00
Kurt Zeilenga
77b235fba5
Apply Novell's IN_KERNEL support (ITS#576)
2000-06-08 17:11:57 +00:00
Kurt Zeilenga
1aa4b07c98
Remove support for DNS DNs (not to be confused with X.500 DN using
...
domainComponents (DC)).
2000-06-05 20:07:02 +00:00