Commit Graph

859 Commits

Author SHA1 Message Date
Kurt Zeilenga
61d874af10 reimplementation of sb_max_incoming 2001-05-04 21:15:09 +00:00
Kurt Zeilenga
383391b460 detect and use fcntl (for BSD/OS)
detect inet_ntop (for MacOSX)
2001-05-03 05:53:34 +00:00
Kurt Zeilenga
6e4655a6c5 Add stupid check for dlopen for SASL and TLS 2001-05-03 01:13:49 +00:00
Kurt Zeilenga
f6f2195e13 Rebuild 2001-05-02 21:30:12 +00:00
Kurt Zeilenga
17b52c97fa Don't require int32 2001-05-02 19:48:40 +00:00
Kurt Zeilenga
a7bc8a4c5b Add DUPENT macros 2001-03-15 03:08:44 +00:00
Gary Williams
72cd80f6ce turn on new logging by default 2001-02-08 16:40:44 +00:00
Kurt Zeilenga
c8326ee004 Update comments 2001-02-01 19:39:12 +00:00
Stig Venaas
7a3c92f2a7 Adding UTF8normcmp() for normalizing and comparing two UTF8 strings 2001-01-31 15:45:30 +00:00
Kurt Zeilenga
788cf960ed rm LBER_USE_INDEFINITE_LEN 2001-01-26 05:04:26 +00:00
Stig Venaas
080acc3ecd Defines for case folding argument to UTF8normalize() 2001-01-24 15:28:53 +00:00
Stig Venaas
8c61bd279e Added UTF8normalize() that does Unicode canonical normalization and
optionally case folding
2001-01-19 15:52:58 +00:00
Kurt Zeilenga
c0a06f25c2 Add ldap_pvt_tls_get_peer_dn() routine. Returns peer as an LDAP DN. 2001-01-18 00:40:58 +00:00
Kurt Zeilenga
8a22a0e0d0 SLP extension derived from patch provided by Caldera Systems.
Copyright 2000, Caldera Systems, Inc All rights reserved.
This software is not subject to any license of Caldera Systems, Inc

This is free software; you can redistribute and use it
under the same terms as OpenLDAP itself
2001-01-16 22:18:33 +00:00
Kurt Zeilenga
5082731e24 Add UTF-8 wc/mb conversion routines contributed by Novell.
/******************************************************************************
 * Copyright (C) 1999, 2000 Novell, Inc. All Rights Reserved.
 *
 * THIS WORK IS SUBJECT TO U.S. AND INTERNATIONAL COPYRIGHT LAWS AND
 * TREATIES. USE, MODIFICATION, AND REDISTRIBUTION OF THIS WORK IS SUBJECT
 * TO VERSION 2.0.1 OF THE OPENLDAP PUBLIC LICENSE, A COPY OF WHICH IS
 * AVAILABLE AT HTTP://WWW.OPENLDAP.ORG/LICENSE.HTML OR IN THE FILE "LICENSE"
 * IN THE TOP-LEVEL DIRECTORY OF THE DISTRIBUTION. ANY USE OR EXPLOITATION
 * OF THIS WORK OTHER THAN AS AUTHORIZED IN VERSION 2.0.1 OF THE OPENLDAP
 * PUBLIC LICENSE, OR OTHER PRIOR WRITTEN CONSENT FROM NOVELL, COULD SUBJECT
 * THE PERPETRATOR TO CRIMINAL AND CIVIL LIABILITY.
 ******************************************************************************/
2000-12-28 02:20:37 +00:00
Kurt Zeilenga
a13fb520ab Fix compilation problem when ldap.h is not included 2000-11-28 20:31:14 +00:00
Kurt Zeilenga
1f7874b724 Add ldap_url_parse_ext() prototype. Routine should likely be renamed
into ldap_pvt_ name space.
2000-11-28 19:59:57 +00:00
Kurt Zeilenga
a09139465a Update URL parsing and LDAP referral/reference chasing to handle
search scope defaulting.
2000-11-28 19:56:55 +00:00
Kurt Zeilenga
df24c61f05 Minor cleanup of last commit 2000-10-30 17:19:52 +00:00
Kurt Zeilenga
7b9886e909 Add LDAP URL critical extension counter support. lud_crit_exts
is the number of critical extensions contained in lud_exts.
As we currently do not support any extension, this flag is
useful for determining whether or not we should attempt to
use the URL.  Added check of this counter to ldap_url_search
and LDAPv3 chase referrals.
2000-10-26 06:17:14 +00:00
Kurt Zeilenga
2504f29a0c Fix IS ASCII checks. Should be < 0x80 (0100), not < 0x100. 2000-10-23 18:04:45 +00:00
Julio Sánchez Fernández
47fd4fbad3 A little bit of Matching Rule Use. 2000-10-23 12:25:43 +00:00
Kurt Zeilenga
9f0d190739 Add ldap_pvt_gai_strerror().
Calls to gai_strerror() should be replaced with calls AC_GAI_STRERROR().
2000-10-18 17:25:30 +00:00
Kurt Zeilenga
08c87f8f13 rename macros per conventions
zap commented out _int_ declarations
2000-10-18 00:33:56 +00:00
Kurt Zeilenga
5e4318df82 use ber_socket_t, not LBER_SOCKET_T 2000-10-18 00:32:35 +00:00
Gary Williams
268d11a20e add prototype for lutil_mnem2level 2000-10-17 19:37:01 +00:00
Kurt Zeilenga
a0760db9dd Add detection for gia_strerror 2000-10-16 04:10:22 +00:00
Kurt Zeilenga
bcdd316b86 entropy should be unsigned 2000-10-14 02:14:38 +00:00
Kurt Zeilenga
0d6ca74255 Doesn't require <stdio.h> 2000-10-13 20:40:45 +00:00
Gary Williams
f6f13d8ecb remove stdarg.h and prototypes that require it 2000-10-13 14:09:32 +00:00
Gary Williams
e3f70c4a37 change to LDAP_LOG macro 2000-10-12 21:13:56 +00:00
Gary Williams
d37f3e6ee2 first try at logging improvements 2000-10-12 20:01:12 +00:00
Kurt Zeilenga
7543094129 mark lber_init_w_nullc as deprecated 2000-10-11 02:45:00 +00:00
Kurt Zeilenga
ff21d9d6b9 Define INET{,6}_ADDRSTRLEN if needed 2000-09-25 01:24:37 +00:00
Kurt Zeilenga
6949ab9d15 Replace indexing hash with 32-bit FNV-1... should be much faster than MD5 2000-09-22 22:19:46 +00:00
Kurt Zeilenga
2b82d4f486 remove lint
update bdb codes
2000-09-22 01:40:57 +00:00
Kurt Zeilenga
c3b0c9bd0a Initial autoconf support for back-bdb 2000-09-18 19:02:03 +00:00
Kurt Zeilenga
f42966f9e1 Fix #undef LDAP_UFN 2000-09-16 06:24:17 +00:00
Kurt Zeilenga
efe39c999f modify ldap_dn2ufn() to return completely typeless UFNs
hide rest of UFN code behind #ifdef LDAP_UFN in preparation
for eventual removal.
2000-09-16 04:33:52 +00:00
Kurt Zeilenga
fd0980cf8d quick patch for NT. Need an integrated versioning mechanism... 2000-09-15 05:55:58 +00:00
Kurt Zeilenga
ac5ecaf8e0 Centralize versioning in build/version.sh 2000-09-15 03:27:20 +00:00
Kurt Zeilenga
ac0714384c Fix typo 2000-09-15 00:08:51 +00:00
Kurt Zeilenga
ed68c977d9 Zap LDAP_LIBUI 2000-09-14 07:22:01 +00:00
Kurt Zeilenga
882b8c5f41 Only set URANDOM_DEVICE if undef 2000-09-12 21:17:19 +00:00
Kurt Zeilenga
860470169d Only set URANDOM_DEVICE if undefined 2000-09-12 20:56:43 +00:00
Kurt Zeilenga
d8c4df6f39 -lldbm now sets DB_USE_ENVIRON and support input of a DB home path.
back-ldbm needs modification to support db home directory as backend
(as oppose to database) option.
2000-09-11 18:46:34 +00:00
Kurt Zeilenga
bfff7ce1f5 Bandaid ucdata build problems 2000-09-07 23:31:59 +00:00
Kurt Zeilenga
f9717334c4 Add pvt ucdata header 2000-09-07 23:23:41 +00:00
Kurt Zeilenga
390fd72398 Remove redefine on MSC 2000-09-04 02:16:40 +00:00
Kurt Zeilenga
cee040a321 Bring UCdata infrastructure. 2000-09-03 23:48:35 +00:00
Kurt Zeilenga
5d9f41e8dc Use shutdown(2) prior to stream close(2). 2000-08-28 22:24:01 +00:00
Kurt Zeilenga
b3b4342f8f Raise ldapi:// SSF to 71. ldapi:// is likely more secure than
DES or other low end encryption.
2000-08-28 19:53:49 +00:00
Kurt Zeilenga
25a9f7427d Remove CLDAP cruft 2000-08-18 04:25:00 +00:00
Howard Chu
0f8047b95e Implemented ldap_pvt_tls_get_peer() for use with SASL/EXTERNAL.
Added ldap_pvt_tls_get_strength() - return encryption strength, for
use as a SASL session security factor.
2000-08-16 23:27:41 +00:00
Kurt Zeilenga
3b03b64b77 Add char* ldap_pvt_get_fqdn(char*) which returns the FQDN of the
input.  In input==NULL, returns FQDN of local host.
Fixed copy_hostent() uninitialized pointer bug.
Replaced gethostname calls with ldap_pvt_get_fqdn( NULL ) calls.
2000-08-15 01:55:43 +00:00
Kurt Zeilenga
db060d8753 Add AC_MEMCPY and AC_FAST_MEMCPY macros to eventually replace
SAFEMEMCPY.  AC_FAST_MEMCPY has a len==1 optimization for use
in -llber.
2000-07-27 20:10:44 +00:00
Kurt Zeilenga
a720b9a48f Add additional comment explaining #error 2000-07-27 18:42:28 +00:00
Kurt Zeilenga
e82077b18b Fix typo 2000-07-24 23:59:25 +00:00
Kurt Zeilenga
1baa8fa8d8 Conform schema routines to LDAP naming conventions 2000-07-22 17:28:45 +00:00
Kurt Zeilenga
904d3232b7 Expose ldap_create_control 2000-07-22 17:28:06 +00:00
Kurt Zeilenga
cd5aed0bbe Use sigaction to set SA_RESTART (if appropriate).
Portability of this code needs to tested.
2000-07-22 00:37:51 +00:00
Kurt Zeilenga
1c39f566ac Assign "published" OID to Password Modify Extended Operation. 2000-07-21 20:28:14 +00:00
Kurt Zeilenga
110dd5f2cb Use MODDN not RENAME as primary macro. 2000-07-21 02:08:36 +00:00
Kurt Zeilenga
6393523ffa Expose sasl flags to -lldap (so they can be quiet)
Fix interactive and automatic modes.  Quiet needs work.
2000-07-17 21:23:59 +00:00
Kurt Zeilenga
b60d417d67 Remove Lint 2000-07-17 01:08:15 +00:00
Kurt Zeilenga
95eea5accc First cut SASL "interactive" and "quiet" modes (default is "automatic") 2000-07-17 00:56:29 +00:00
Kurt Zeilenga
d2b05a3858 Rework SASL command line arguments. Default is now to authenticate
using best available mechanism.  (authzid prompting to be disabled)
To use simple bind, -x is required (implied if -P 2) with -D/-[Ww]
To use simple "anonymous" bind, just -x will do.
2000-07-15 23:25:46 +00:00
Kurt Zeilenga
0b8a8cae90 Add lutil_ldap.h: contains prototypes for -llutil LDAP routines
(used by clients/tools/ldap*.c)
2000-07-13 23:09:55 +00:00
Kurt Zeilenga
5fc22599e2 Update SASL code to reuse context through life of session.
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
2000-07-13 22:54:38 +00:00
Kurt Zeilenga
1f1993989a s/enable-unix/enable-local/
s/LDAP_PF_UNIX/LDAP_PF_LOCAL/
s/AF_UNIX/AF_LOCAL/
s/PF_UNIX/PF_LOCAL/
2000-07-09 21:49:36 +00:00
Kurt Zeilenga
fe23628faa ITS#619: TLS PRNG initialization code
based upon patch provided by Ted C. Cheng <cheng@ix.netcom.com>
2000-07-08 22:17:50 +00:00
Kurt Zeilenga
b4d5d89151 Rev the LDAP_VENDOR_VERSION 2000-07-06 19:05:11 +00:00
Kurt Zeilenga
4f4f59f333 Rework <ac/errno.h> to provide a STRERROR. Prefers errlist over
strerror() as strerror() may not be thread safe.  Likely should
be used by SLAPD.
2000-07-06 01:24:52 +00:00
Kurt Zeilenga
20e6dcec3b Improved but still broken client tools. 2000-07-04 21:49:00 +00:00
Mark Valence
d4d03e36e5 Added "threads" config to slapd.conf. 2000-07-04 19:24:13 +00:00
Kurt Zeilenga
060ee8ee88 Add Steve Sonntag's (Novell) memory debugging extensions 2000-07-04 18:47:06 +00:00
Kurt Zeilenga
8917a2d772 Remove ldap_*_dn() prototypes of #if 0 routines 2000-06-30 22:31:21 +00:00
Kurt Zeilenga
0cfe5f75f8 Clarify LDAP_ATTRCHAR 2000-06-30 19:08:40 +00:00
Kurt Zeilenga
e82d2e042b Include tab in LDAP_SPACE 2000-06-30 02:19:39 +00:00
Kurt Zeilenga
aa4a44263d Fix inclusion of <sasl.h> 2000-06-29 19:36:32 +00:00
Kurt Zeilenga
7f24a010a4 Set TMPDIR 2000-06-26 01:24:38 +00:00
Kurt Zeilenga
e2fa599482 Move old files to the Attic 2000-06-25 22:01:42 +00:00
Kurt Zeilenga
6f44bf3ed3 Add comment regarding use of LDAP_OPT_SUCCESS v. LDAP_OPT_ERROR comparisons. 2000-06-25 17:57:47 +00:00
Kurt Zeilenga
5f20cf1ed5 Modify ldapsearch(1) significantly. Now handles LDAPv3 search
references, extended results, and extended partial results.  LDIF
extended to support these new features and reported version 2.
-L now limits output to LDIFv1 for compatibility reasons.  No
-L is now LDIFv2.  Old alternative form is no longer supported.

Use LDAP_TMPDIR (in ldap_config.h) instead of hardcoded /tmp
Use LDAP_FILE_URI_PREFIX (in ldap_config.h) instead of hardcoded
	file://tmp/
2000-06-25 00:35:17 +00:00
Kurt Zeilenga
49f4147385 Added -llber 'N' ber_printf format which inserts a NULL if
an internal flag set.  Used for SEQUENCE testing.  Flag must
be set using debugger.  Modified ber_printf to use new format
were needed for extensibility testing.

Added first cut -lldap support for extended responses.
Modified ldapsearch(1) to handle v3 search references when not
chasing.  Also added extended/unsolicited notification handling
and extended partial response handling.  Changes include a
number of LDIF enhancements.

Fixed getpassphrase() returns NULL bugs
2000-06-24 01:40:39 +00:00
Kurt Zeilenga
2a370cc4d1 Clarify LinuxThreads USR1/USR2 issue 2000-06-24 00:46:07 +00:00
Kurt Zeilenga
4e3c32d816 Introduce LDAP_V() and friends 2000-06-20 03:53:12 +00:00
Mark Valence
463cc5479f Update some prototype macros to build on NT. 2000-06-19 22:40:42 +00:00
Kurt Zeilenga
3b42f9ce2e Make that LDAP_NEEDS_PROTOTYPES... might as well use proper English 2000-06-19 22:20:36 +00:00
Kurt Zeilenga
52569170cc NEEDS_PROTOTYPE fix 2000-06-19 22:17:47 +00:00
Kurt Zeilenga
3532ba04b2 Fix NEEDS_PROTOTYPES 2000-06-19 21:48:10 +00:00
Kurt Zeilenga
ed761bec2f Remove SCHEMA_NOT_COMPAT #ifdef 2000-06-19 21:30:48 +00:00
Kurt Zeilenga
9ef1a740c2 Round one of LDAP_F() macro changes. In this round we rename
macros into our namespace and limit use to headers.  A subsequent
round will add macros to separately handle forward declarations
of variables from declaration of function prototypes.  The last
round will add additional macros for declaring actual variables and
functions.
2000-06-18 19:48:07 +00:00
Kurt Zeilenga
e393afaeec Kill LinuxThreads clones 2000-06-17 18:49:25 +00:00
Kurt Zeilenga
12ffb6eeb8 Change cn=schema to cn=subschema to reflect subentry contains
subschema information.  subschema, monitor, config should be
per-backend subentries.
2000-06-14 01:29:51 +00:00
Kurt Zeilenga
5417fdfea7 Rename ldap_start_tls() to ldap_start_tls_s() for consistency sake.
Misc other header changes.
2000-06-13 20:45:30 +00:00
Kurt Zeilenga
ec426532b2 Reworked thread code to better support thread-library specific
r/w locks and thread pools.  Hide internal structures (using
pthread'ish technics).  Place common code in threads.c.  Move
no-thread code to thr_stub.c.  Move thread pool code to tpool.c.
Removed setconcurrency call from initializer, added 'concurrency'
directive to slapd.  Tested code under pthreads, pth, and no-threads.
2000-06-13 02:42:13 +00:00
Kurt Zeilenga
1ef14875db Thought I fixed these errors previously... oh well. 2000-06-10 23:06:08 +00:00
Kurt Zeilenga
1d841d49d5 Fix LDAP_END_DECL bug, add LDAP_P() to rebind proc prototype, and
other minor changes.
2000-06-10 17:31:56 +00:00
Kurt Zeilenga
55dba4395f Update PF_INET6 and PF_UNIX detection, both default to auto 2000-06-09 23:09:51 +00:00
Kurt Zeilenga
70a7656d7f Detect getaddrinfo 2000-06-09 17:01:05 +00:00
Kurt Zeilenga
dc1e5a9392 remove IA64 lint 2000-06-09 06:24:10 +00:00
Kurt Zeilenga
e68b429d45 Really disable pthread rw locks 2000-06-08 00:29:32 +00:00
Kurt Zeilenga
e8b360eefd Disable pthread rwlock use til we sort out pool issues 2000-06-08 00:26:00 +00:00
Kurt Zeilenga
22b8b60e49 Add VLV and SortList Control API and related (and other) I-Ds 2000-06-07 19:39:49 +00:00
Mark Valence
33f4955c07 Add thread pool routines. 2000-06-07 19:21:45 +00:00
Kurt Zeilenga
6ad1c45bd3 Use LDAP_VFREE and friends. Other misc code cleanup. 2000-06-07 05:17:29 +00:00
Kurt Zeilenga
107e99e302 Add Pth specific r/w lock implementation. 2000-06-07 01:34:00 +00:00
Kurt Zeilenga
e5ebc553ac Rework URI parser to provide true scheme not proto/properties.
Plus more pthread rwlock code
2000-06-07 01:09:40 +00:00
Kurt Zeilenga
f192014c1a Use pthread rwlocks, if available 2000-06-07 00:28:35 +00:00
Kurt Zeilenga
e14261edf2 Additional unifdef'ing 2000-06-06 20:00:14 +00:00
Mark Valence
72bf2552eb In preparation for thread pools 2000-06-06 19:59:34 +00:00
Kurt Zeilenga
693fb9424a unifdef -DSLAPD_SCHEMA_NOT_COMPAT -USLAPD_SCHEMA_COMPAT 2000-06-06 19:43:18 +00:00
Kurt Zeilenga
4a1f646682 Move experimental Back-BDB2 to Attic 2000-06-06 01:23:17 +00:00
Kurt Zeilenga
1af849c720 DNSSRV use res_query, not res_search
Update configure and depend --enable-dnssrv upon finding res_query
Update back-dnssrv to better handle ManageDSAit control
2000-06-05 23:56:26 +00:00
Kurt Zeilenga
1aa4b07c98 Remove support for DNS DNs (not to be confused with X.500 DN using
domainComponents (DC)).
2000-06-05 20:07:02 +00:00
Kurt Zeilenga
c1117666b1 remove old STR_TRANSLATION feature. The use of this feature
was only of limited use with LDAPv2 (worked okay if no non-T.61
values existed) but downright dangerous in the face of LDAPv3.
Any translation must be schema aware and the BER isn't.
2000-06-05 19:22:19 +00:00
Kurt Zeilenga
7dc76e7139 move --enable-dns (LDAP_API_FEATURE_X_OPENLDAP_V2_DNS) to Attic 2000-06-05 07:19:09 +00:00
Kurt Zeilenga
ea069cb7c2 New indexer/filter codes (test suite works) with cheats
Updated NT Project files (with Cyrus SASL library depend)
2000-06-04 22:59:38 +00:00
Kurt Zeilenga
45c6324a9d Move ldapd into the Attic, quipu tools remain for now. 2000-06-01 23:00:22 +00:00
Kurt Zeilenga
2e0912622b ITS#537: lber io rewrite from Gambor Gombas.
Copyright 2000 Gábor Gombás. All rights reserved.
This is free software. You may redistribute and use it under the same
terms as OpenLDAP itself.
2000-06-01 20:59:21 +00:00
Kurt Zeilenga
ea67f4f758 Fix up referral commit. 2000-05-31 18:01:59 +00:00
Kurt Zeilenga
a26cef7fc8 LDAPv3 referrals changes by Steve Sonntag @ Novell 2000-05-31 17:34:43 +00:00
Kurt Zeilenga
a584fe9dc0 Move -DSLAPD_SCHEMA_COMPAT to acconfig.h... 2000-05-30 21:36:27 +00:00
Kurt Zeilenga
ea68f474fc rebuild after removal of dmalloc detection 2000-05-30 20:17:10 +00:00
Kurt Zeilenga
8ff6a39d9f Mark most of RFC 1823 API as deprecated. 2000-05-29 17:42:49 +00:00
Kurt Zeilenga
64f028a6ab New schema code is now the default.
Use -DSLAPD_SCHEMA_COMPAT to use 1.x compatible schema (deprecated).
2000-05-29 16:39:16 +00:00
Julio Sánchez Fernández
3e3acf87c8 Let the caller decide how liberal the schema parsing routines will be.
Most flags do nothing yet.
2000-05-28 22:45:56 +00:00
Kurt Zeilenga
dcee0a76d4 Rework DB_VERSION kludging 2000-05-25 23:14:53 +00:00
Kurt Zeilenga
2a4d69d70e Define HAVE_BERKELEY_DB not HAVE_BERKELEY_DB2 per new detection. 2000-05-25 23:07:09 +00:00
Kurt Zeilenga
8411a5319a New Berkeley DB detection 2000-05-25 20:44:07 +00:00
Gary Williams
780d4737af use HAVE_BERKELEY_DB and check DB_VERSION_MAJOR for differences 2000-05-25 20:41:55 +00:00
Gary Williams
862e624254 Added support for Berkeley DB3. Hidden behind
HAVE_BERKELEY_DB3.  Configuration support
hopefully coming soon.
2000-05-25 15:21:30 +00:00
Julio Sánchez Fernández
f84c43a43b Parsing and printing of extensions in schema definitions. 2000-05-21 23:32:39 +00:00
Kurt Zeilenga
9c00cb1b51 before including <pth.h>:
#define PTH_SYSCALL_SOFT 1
2000-05-19 20:47:32 +00:00
Kurt Zeilenga
8045b54124 Use getpassphrase() instead of getpass() if available. 2000-05-19 18:41:26 +00:00
Kurt Zeilenga
3c227e10b4 Map getopt symbols to new names to avoid conflicts 2000-05-18 16:13:02 +00:00
Kurt Zeilenga
d408824ce8 SLAPD_SCHEMA_NOT_COMPAT: Disable cn=Monitor & cn=Config 2000-05-15 23:39:27 +00:00
Kurt Zeilenga
49f4a7026d s/CN=SCHEMA/cn=Schema/ 2000-05-15 23:37:16 +00:00
Kurt Zeilenga
e9d0b98a10 Update lber-encode/decode man pages
Add ber_get_enum() for symmetry
2000-05-13 23:08:25 +00:00
Kurt Zeilenga
0bb431d3b3 Y2k copyright update 2000-05-13 02:25:54 +00:00
Howard Chu
3dc83998c0 Moved nt_err from liblutil to liblber, renamed WSAGetErrorString to
ber_pvt_wsa_err2string.
2000-05-12 21:16:15 +00:00
Howard Chu
605832eaa5 Added support for AIX security database:
configure.in: check for AIX security library, set in AUTH_LIBS macro
  top.mk: add AUTH_LIBS macro to SECURITY_LIBS
  portable.h.in: added HAVE_AIX_SECURITY macro (via autoheader)
  passwd.c: use AIX getuserpw in chk_unix. Also fix logic in chk_unix:
  	getpwnam must always succeed for the given user. It is not a
	fatal error if getspnam returns no result for the user: On
	systems that support /etc/shadow, its usage is optional. The
	same logic applies for AIX, SCO/HP SecureWare, etc.
2000-05-11 10:10:53 +00:00
Howard Chu
65d7521be1 Added LBER_OPT_LOG_PRINT_FILE to redirect the output of ber_error_print.
Used mainly on NT since stderr doesn't exist when slapd runs as a service.
2000-05-11 09:39:33 +00:00
Kurt Zeilenga
1dc3e3c408 Add basic and EXPERIMENTAL chroot() support. 2000-05-10 23:30:52 +00:00
Kurt Zeilenga
2c2a54d6d7 Add DNS SRV backend framework (a work in progress). 2000-05-10 18:17:38 +00:00
Howard Chu
f0c4f83ea2 libldap/tls.c: change tls_verify_cb to no longer ignore verification errors.
This means a ldaps connection may drop before any LDAP protocol exchange
occurs (due to expired cert, unrecognized CAs, etc.).
  Change ldap_pvt_tls_connect to copy any TLS error string to ld_error upon
connection failure, otherwise client just sees "can't contact LDAP server."

slapd/connection.c: add flush/delay when SSL_accept fails, to allow any
TLS alerts we generated to propagate back to the client. (Which will then
be picked up by ldap_pvt_tls_connect on the client...)
2000-05-10 17:07:09 +00:00
Howard Chu
9842b8fa87 Remove MINGW32 declarations of snprintf and vsnprintf, the new mingw32
distributions define them now.
2000-05-10 16:12:38 +00:00
Howard Chu
8a3100e636 Remove declaration of strerror_r, it clashes on AIX and we never use it
anyway.
2000-05-10 16:11:38 +00:00
Kurt Zeilenga
f224e69558 Add experimental code to check simple bind passwords
against Cyrus SASLdb.  Like other cleartext mechanisms,
should be protected from eavesdropping.
2000-05-10 04:29:51 +00:00
Kurt Zeilenga
d0555fffe6 Error handling changes including separation of client v. server
SASL to LDAP translation.  plus comments and other minor changes
2000-05-03 18:59:58 +00:00
Kurt Zeilenga
802ee714e4 Framework for authpasswd. Needs work. Behind #ifdef 2000-04-25 13:28:03 +00:00
Kurt Zeilenga
274bf59441 replace ldap_dnssrv_init() with lower level calls
ldap_domain2dn()
    ldap_domain2hostlist()
and provide prototype to soon-to-be-implemented
    ldap_dn2domain().
ldap_dnssrv_init(), if needed, can easily be implemented
using ldap_create(), ldap_set_option() and the above
commands.
2000-04-25 10:38:03 +00:00
Kurt Zeilenga
c02d7e2cb6 ITS#503: Extend ldap tools to support SASL/TLS
Submitted by Gabor Gombas <gombasg@inf.elte.hu>
2000-04-20 09:23:51 +00:00
Kurt Zeilenga
177279176c Chage DEFAULT_DB_PAGE_SIZE to 4096 and allow external define to
override ldbm.h setting.
2000-03-17 20:28:36 +00:00
Kurt Zeilenga
d14c7ad7c2 Depend HAVE_NT_THREADS on _WINNT 2000-03-17 19:35:20 +00:00
Kurt Zeilenga
1aae2ffb46 Remove discrete right macro (not used) 2000-03-17 01:48:44 +00:00
Dmitry Kovalev
f28e0c1967 update Win32 build environment to support back-sql 2000-03-16 19:58:36 +00:00
Kurt Zeilenga
91f292bc00 Delete SLAPD_DISCRETE_ACI 2000-03-16 19:15:21 +00:00
Kurt Zeilenga
6141b1eebe Delete (again) unneeded discrete-aci flag and regenerate... 2000-03-16 19:14:48 +00:00
Dmitry Kovalev
8dc136ddd6 update Unix build environment to support back-sql
2 more steps left: add back-sql directory itself, and update Win32 build environment.
2000-03-16 18:54:11 +00:00
Kurt Zeilenga
17527368d1 work args of ldap_negotiated_sasl_bind_s() and provide examples
with authentication id and authorization ids.  Note: this routine
doesn't actually negotiate anything.  It likely should be renamed
ldap_sasl_auth_s() or ldap_sasl_bind_multistep() or something.
2000-03-14 02:54:08 +00:00
Kurt Zeilenga
8e6ba5831a tempnam() is available in MSVC5 2000-02-25 19:30:28 +00:00
Kurt Zeilenga
0dbaf87730 Another round of changes behind -DSLAPD_SCHEMA_NOT_COMPAT
plus these changes unhidden changes:
	remove now meaning --enable-discreteaci configure option
	fix ITS#451, slapd filters
	Add ber_bvecadd() to support above
	constify ldap_pvt_find_wildcard() and misc slapd routines
	renamed some slap.h macros
	likely broken something
2000-02-14 20:57:34 +00:00
Kurt Zeilenga
6968ede534 ITS#450: teach LDBM/GDBM about cursors 2000-02-11 02:05:14 +00:00
Kurt Zeilenga
9dde98577d Move ldap_unicode_t to ldap_pvt.h, typedef to ldap_ucs2_t for now.
ldap_ucs2_t is a short.  The unicode routines may break if
sizeof(short) != 2...
2000-01-27 05:27:36 +00:00
Kurt Zeilenga
4eb13130a9 typedef ber_int_t ldap_ucs4_t 2000-01-27 01:04:17 +00:00
Kurt Zeilenga
ed9969b1c4 Make ldap_utf8_bytes() act like strlen() not sizeof() 2000-01-23 23:33:01 +00:00
Kurt Zeilenga
42cc5e5333 Fix bugs in UTF-8 code. Apply to getdn and charray. 2000-01-23 23:07:24 +00:00
Kurt Zeilenga
61b509d881 Add some robustness to UTF-8 routines. 2000-01-23 18:43:30 +00:00
Kurt Zeilenga
16c903909c Add comments to UTF-8 declarations.
Add US ASCII optimizations macros.
#ifdef out unused routines
Ready to hack getdn.c and others to support UTF-8
2000-01-23 05:35:38 +00:00
Kurt Zeilenga
22ba55371e Move ldap_utf8_*() declarations from ldap-int.h to ldap_pvt.h.
We may likely want to expose the routines at a later date (ldap_utf8.h?).
2000-01-22 21:09:24 +00:00
Kurt Zeilenga
9ac0eab126 remove UNSPECIFIED_TLS... HOST implies ldap:// 2000-01-14 01:08:15 +00:00
Kurt Zeilenga
9c4c8e8c1f Regenerate using proper tools. 2000-01-13 23:02:51 +00:00
Kurt Zeilenga
0426431639 Fix --enabel-kbind=auto --without-kerberos detection 2000-01-11 04:20:59 +00:00
Kurt Zeilenga
fb49e2771e --disable-kbind --disable-kpasswd should imply --without-kerberos
under "auto" selection.  If not auto, just warn.
Rebuild configure using appropriate tools.
2000-01-08 19:23:26 +00:00
Kurt Zeilenga
6437785a82 Initial implementation of Kerberos password verification for
simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.
2000-01-08 18:42:11 +00:00
Luke Howard
5a0bbd7eed Imported <ldap.h> in <ldap_pvt.h> so ldap_pvt_sasl_bind() has necessary
types. Changed const sasl_callback_t * to LDAP_CONST sasl_callback_t *.
2000-01-05 12:56:17 +00:00
Luke Howard
a466a64318 Added support for connecting to LDAP servers located using DNS
SRV records. Added lock around resolver library which is shared
by the DNS SRV code and the getdxbyname() code.
2000-01-03 02:33:22 +00:00
Luke Howard
57b62dc7d4 Added ldap_pvt_sasl_bind() prototype to ldap_pvt.h. This
required importing sasl.h into ldap_pvt.h, thus that import
was removed from ldap-int.h.
2000-01-03 00:15:30 +00:00
Luke Howard
9b4e3b2234 Merged in preliminary support for Cyrus SASL library;
support for DCE slash-delimited, left-to-right DNs;
support for a domain socket transport (enable with
--enable-ldapi); and extensions to URL parsing to
support the latter transport.
2000-01-02 01:21:25 +00:00
Kurt Zeilenga
33e50afb6b Don't reference draft 1999-12-18 19:50:38 +00:00
Kurt Zeilenga
a3d0b9d667 Fix 2 vs 4 typo 1999-12-18 19:49:39 +00:00
Kurt Zeilenga
e56a2a8d78 Remove old DLL IMPORT/EXPORT macros 1999-12-18 19:49:13 +00:00
Kurt Zeilenga
c061aaa81c Temporary fix for BEOS.
tcp_read/write should not be used.
1999-12-17 21:31:44 +00:00
Kurt Zeilenga
e808aa49cb Add #ifndef GDBM_NOLOCK clause to LDBM_NOLOCKING 1999-12-17 18:43:02 +00:00
Kurt Zeilenga
37d28e7d0d Add ber_bvstr and ber_bvstrdup string to berval allocators. 1999-12-17 05:37:33 +00:00
Kurt Zeilenga
e495b982af Add LDAP_RES_EXTENDED_PARTIAL tag 1999-12-14 00:47:20 +00:00
Kurt Zeilenga
235d5e56e8 Clarify that the contents of this file need not be update by the
installer.
1999-12-14 00:30:02 +00:00
Kurt Zeilenga
b1639dadd6 Remove lint
Add copyrights
1999-12-13 04:53:59 +00:00
Kurt Zeilenga
fe5608c4d5 Wrap request/response bervals in a sequence. 1999-12-11 19:33:45 +00:00
Mark Valence
e0e7e9842e client/server controls added to ldap_start_tls(). 1999-12-10 18:26:12 +00:00
Kurt Zeilenga
431dad371c Fix slapd SASL/ExternalOps encoding
Add controls to extended ops API signatures, need impl.
Update password to support optional server side generation of
new password, verification of old password, and changing of
non-bound user's passwords.
1999-12-10 04:52:32 +00:00
Mark Valence
454284f1ea Adds for Start TLS functionality on slapd and LDAP C API. 1999-12-09 22:33:22 +00:00
Kurt Zeilenga
36a6f6d99b Add TAG defines for X_CHANGE_PASSWD ID, OLD, NEW.
Relocated modify struct to be next to other structs.
1999-12-09 17:00:54 +00:00
Kurt Zeilenga
5e12c84a6f Add simple password test program.
Rework lutil_passwd routines to use struct berval instead of strings.
1999-12-09 01:11:16 +00:00
Mark Valence
0f52ca7f83 Replaced LDAP_EXOP_X_START_TLS with LDAP_EXOP_START_TLS 1999-12-08 17:39:11 +00:00
Mark Valence
ecc3ea7543 Added LDAP_EXOP_X_START_TLS 1999-12-08 17:25:21 +00:00
Kurt Zeilenga
26c7d69e8c Update for new password codes for MSVC5 1999-12-08 06:44:22 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
1999-12-08 04:37:59 +00:00
Mark Valence
5f86e47aa8 Changes for URI spport: New routines ldap_initialize and ldap_create; LDAPURLDesc replaces LDAPServer, LDAPURLDesc list used instead of ldo_defhost. 1999-12-07 18:42:25 +00:00
Kurt Zeilenga
942d37afc5 Set ber_errno here and there. 1999-12-06 06:33:26 +00:00
Kurt Zeilenga
5d5588836f Fix ldap_rename parameter order (ITS#387) 1999-12-04 17:19:11 +00:00
Howard Chu
f0fb0db2fc Must not use "DB_THREAD" flag without HAVE_BERKELEY_DB2_DB_THREAD 1999-11-29 00:49:55 +00:00
Kurt Zeilenga
aee2482547 Remove nested comment. 1999-11-28 02:14:09 +00:00
Howard Chu
eaaea51b53 Fixes for NT dynamic linking. 1999-11-27 23:40:08 +00:00
Kurt Zeilenga
8b99e6cdbd Remove LBER_{TAG,INT,LEN}_{NTOH,HTON} macros. Rewrite code to
manual push bytes about.  Allows ber_*_t to be any 32-bit or
larger type.  Reworked AC_{HTON,NTOH}{L,S} macros to care only
about 32-bit (netlong) and 16-bit (netshort) reordering as
needed for BSD socket interface.
1999-11-26 23:32:18 +00:00
Kurt Zeilenga
62a06eda3e Don't use 'int' for LBER_*_T types as we only have hton{s,l}.
Select appropriopriate hton{s,l} function to use in lber-int.h.
1999-11-25 17:10:45 +00:00
Kurt Zeilenga
45faac4dc1 Cleanup BEGIN/END DECL 1999-11-23 23:07:00 +00:00
Kurt Zeilenga
57feddec73 Suck in lber types from lber.h (which were moved to lber_types.h.in). 1999-11-23 23:03:12 +00:00
Kurt Zeilenga
8c665d48d6 Fix typo 1999-11-23 23:02:46 +00:00
Kurt Zeilenga
3d0dd02b17 Advertise LDAP_CONTROL_X_CHANGE_PASSWD.
Implementation coming soon.
1999-11-17 23:43:25 +00:00
Kurt Zeilenga
357101793b Use lber types instead of uint32 for md5. sha1 still requires
an integer type of exactly 32 bits.
1999-11-17 02:04:06 +00:00
Kurt Zeilenga
f2bcd9c762 add comments here and there 1999-11-17 01:55:29 +00:00
Kurt Zeilenga
f4856214fb *** empty log message *** 1999-11-08 15:38:59 +00:00
Kurt Zeilenga
62e49d5c9d Use LDAP_F for libc routines 1999-11-08 15:33:01 +00:00
Kurt Zeilenga
5b7567b62a Add empty struct ldapoptions declaration to avoid pulling in headers. 1999-11-06 18:02:44 +00:00
Mark Valence
4a5c58c09e Added ldap_pvt_tls_* prototypes. 1999-11-06 05:02:52 +00:00
Kurt Zeilenga
89893b0fbf Remove unnecessary dependency upon $ac_cv_mingw32. 1999-11-02 02:10:36 +00:00
Kurt Zeilenga
daa7907b4f Move NT Thread test into build/openldap.m4. Still bogus (only
enables if MINGW32 and always enables if MINGW32).
1999-11-01 23:45:09 +00:00
Kurt Zeilenga
14f107e9ed Changes to support NT single debug 1999-11-01 22:17:06 +00:00
Kurt Zeilenga
320cc86969 Define HAVE_NT_EVENT_LOG && HAVE_NT_SERVICE_MANAGER when HAVE_NT_THREADS 1999-11-01 22:06:00 +00:00
Kurt Zeilenga
5b5db4def6 Additional mods to fix NT single threaded support. 1999-11-01 22:00:18 +00:00
Kurt Zeilenga
b7af076fee Use centralized output directories.
Update single debug/release not to use service manager nor event manager.
Likely breaks MINGW32 port.
1999-11-01 21:25:22 +00:00
Kurt Zeilenga
10d9136ad5 Use typedef instead of #define for ssize_t. 1999-11-01 18:17:21 +00:00
Kurt Zeilenga
bb1b81473b Add configure tests for ssize_t and caddr_t and remove NT preamble
(excepting WIN32_LEAN_AND_MEAN).  Rework openlog/closelog use to
eliminate need for defines.
1999-11-01 18:14:26 +00:00
Kurt Zeilenga
4757d60fb4 Use compile time, instead of run time, sizeof checks. 1999-11-01 17:36:09 +00:00
Kurt Zeilenga
4cc712db53 Add <ac/param.h> to wrap <sys/param.h> 1999-11-01 17:21:24 +00:00
Kurt Zeilenga
26d8290859 Remove more dependencies upon $ac_cv_mingw32 1999-11-01 03:40:55 +00:00
Howard Chu
17e1877a12 Fix broken MSVC builds. The previous round of Mingw32 patches changed some
ifdefs to depend on _WINNT, which is bogus. Added _WIN32 back on these ifs,
and fixed some other include problems.
1999-10-31 02:26:41 +00:00
Kurt Zeilenga
baa34f752b Do not attempt to obtain sizeof(sin_addr.s_addr) or &sin_addr.s_addr
as s_addr member of in_addr may be a bitfield.
1999-10-30 04:58:06 +00:00
Kurt Zeilenga
7a2044dbda Add readability to comments 1999-10-30 03:26:56 +00:00
Kurt Zeilenga
db5ad318a5 Add comment stating that uint32 must be exactly 32-bits long. 1999-10-30 03:26:13 +00:00
Kurt Zeilenga
771a52499f Add support for sizeof(short) == 4 when sizeof(int) > 4. 1999-10-30 02:53:24 +00:00
Howard Chu
8da24171e3 Added NT-specific definitions to acconfig.h preamble 1999-10-28 11:17:58 +00:00
Kurt Zeilenga
f3da68969b Add third argument AC_DEFINE() calls added by last commit to
avoid having to define macros by hand in acconfig.h (which
were mistaken added to portable.h.in).
1999-10-28 07:48:59 +00:00
Howard Chu
0991e22550 Fixed the LDAP_F macro.
See README 1.27 log
1999-10-28 07:28:53 +00:00
Howard Chu
ff2908ffb8 For Mingw32, added declarations for snprintf and vsnprintf 1999-10-28 07:27:28 +00:00
Howard Chu
21a51c0628 Added LDAP_SIGUSR macros for NT 1999-10-28 07:27:00 +00:00
Howard Chu
c1b8c1b88b Added LDAP_DIRSEP macro for NT 1999-10-28 07:26:44 +00:00
Howard Chu
a01f3099c3 Fixes for NT support:
Remove macros already in Windows headers: strdup, FD_SETSIZE
  Set HAVE_SNPRINTF and HAVE_MEMORY_H to reflect NT environment
  Moved LDAP_DIRSEP macro to ldap_config.h.in
  Moved LDAP_SIGUSR macros to ac/signal.h
1999-10-28 07:26:25 +00:00
Howard Chu
dbabbeeccc Added macros for Mingw32 support.
See README 1.27 log
1999-10-28 07:24:39 +00:00
Kurt Zeilenga
f804da9bef Port to NT. 1999-10-27 04:41:38 +00:00
Kurt Zeilenga
bdca662249 Add lutil_entropy(). Currently only supports /dev/urandom or
Linux equivs.  Should be extended to support other quality
sources of entropy.  Should be extended to support a reasonable fallback.
1999-10-26 22:57:39 +00:00
Kurt Zeilenga
f4a0699311 Add macros to compute base64 encode/decode lengths. 1999-10-25 01:44:47 +00:00
Kurt Zeilenga
7ef67830af Minor adjustments based upon initial read of draft-ietf-ldapext-ldap-c-api-04.txt. 1999-10-19 18:57:38 +00:00
Kurt Zeilenga
c0a6159844 Initial Kth Kerberos support. Changes based upon suggestions
from Booker Bense <bbense@networking.stanford.edu>.
1999-10-01 05:11:39 +00:00
Kurt Zeilenga
a284b641b7 Move crypt(3) prototypes from <ac/unistd.h> to <ac/crypt.h> (new) to
avoid clashes with Kth Kerberos.
1999-10-01 04:48:30 +00:00
Kurt Zeilenga
3c00fd6d23 Rework passwd routines to allow callers to determine which
schemes are supported.  This should facilate server rootDSE
advertisement of supported schemes, etc..
1999-09-25 22:13:25 +00:00
Kurt Zeilenga
35655c056f Reimplement LDBM_SYNC/LDBM_NOSYNC code (dbnosync).
Old code applied sync flags to store(), however supported DBMs
require such flags to be specified during open().  The new
code now applies flags in ldbm_cache_open (which calls ldbm_open).
ldbm_cache_close() now calls ldbm_sync().  This will force
a updating of on-disk contents after each LDAP operation.
The old code either failed to sync the on-disk contents until
close or synced on every store.   Per LDBM operation syncing
*should* be safe enough... real data safety requires transactions.
Removed nosync option from BDB2 as it is not compatible with
txn support.
Also added code to disable DBM level locking as slapd is only
process acessing the databases (dbnolocking).
1999-09-23 19:49:20 +00:00