mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
12,549 Commits 38 Branches 307 Tags 74 MiB
dfff2e0b32
Commit Graph

1233 Commits

Author SHA1 Message Date
Howard Chu
c20d1840ba Blind fix, delete obsolete files cache.c, authpasswd.c 2003-03-07 21:10:02 +00:00
Howard Chu
0b96b6b6ad Chasing a referral needs both the request and response mutexes. 
Unlock and relock... (yuck)
 2003-03-06 14:53:01 +00:00
Howard Chu
ec63a1f87f Pass correct msgid to ldap_result 2003-03-06 14:50:39 +00:00
Howard Chu
8fc4f55d3a Silence warnings in prev commit 2003-03-05 01:53:03 +00:00
Howard Chu
7e7db2578d Added ldap_pvt_get_hname. Use instead of ldap_pvt_gethostbyaddr_a when 
all you want is the hostname. Supports IPv6 addresses.
 2003-03-05 01:35:39 +00:00
Howard Chu
cff5621814 Minor cleanup for sendmsg 2003-03-04 22:14:57 +00:00
Kurt Zeilenga
ef4e745c58 Fix initializer 2003-03-04 21:45:59 +00:00
Kurt Zeilenga
fe4f355328 Add acc_rights detection (needs testing) 2003-03-02 21:46:40 +00:00
Kurt Zeilenga
206b071e7f Add check of <sys/uio.h> and include as needed for struct iovec. 2003-03-02 21:21:36 +00:00
Howard Chu
e820f2f5d3 Cleanup previous commit 2003-03-02 08:05:19 +00:00
Howard Chu
50280bcfed Interoperability fix for sendmsg/recvmsg with access rights 2003-03-02 07:46:33 +00:00
Kurt Zeilenga
81d2b2bb65 Don't send extra messages, will cause interoperability problems 
with versions not built to receive these extra messages.
Likewise in reverse.
 2003-03-01 19:47:04 +00:00
Howard Chu
215be5f443 Fix previous commit 2003-02-28 13:41:53 +00:00
Howard Chu
387a76934b Fix ITS#2335, properly parse multiple CLDAP responses in a single datagram 
for both RFC1798 and MS CLDAP.
 2003-02-28 12:57:28 +00:00
Howard Chu
747265419d Change "goto leave" to "goto exit" to avoid DEC namespace pollution 2003-02-22 01:49:55 +00:00
Kurt Zeilenga
4daeff0ef4 Add a few comments to the ITS#2325 fix 2003-02-21 19:39:09 +00:00
Kurt Zeilenga
c3a43e2c4f Round 2 2003-02-21 19:27:54 +00:00
Kurt Zeilenga
eb161745a4 A little cleanup of last 2 commits 2003-02-21 18:42:15 +00:00
Kurt Zeilenga
ed91ab4cbe Forgot to remove one prompts free 2003-02-21 18:41:05 +00:00
Kurt Zeilenga
9e984beded ITS#2325 fix: properly freeing prompts->results 2003-02-21 18:39:26 +00:00
Kurt Zeilenga
bc0cc3272c Whoops. (I'm reconsidering whether or not to accept the ITS#2325.) 2003-02-21 17:48:03 +00:00
Kurt Zeilenga
3fb4ae2abd Revert last commit 2003-02-21 17:46:11 +00:00
Kurt Zeilenga
2c939f7196 Back out interact free() fixes. Will fix properly in next commit. 2003-02-21 17:11:46 +00:00
Howard Chu
7e1a566391 Use struct berval * instead of ** for newpasswd 2003-02-16 09:42:04 +00:00
Howard Chu
7fffc027b3 Fix ber_scanf args 2003-02-16 09:30:45 +00:00
Howard Chu
b4db079ac7 Fix ber_printf arguments 2003-02-16 08:37:19 +00:00
Kurt Zeilenga
8ca394496b Only install readahead layer when connectionless as 
streams as streams may block.
 2003-02-14 23:32:30 +00:00
Howard Chu
8dac33b6c3 Fix previous commit 2003-02-14 10:27:39 +00:00
Howard Chu
1128bc63b7 Fix typo in peercred DN. Make it agree with actual name used by slapd 
just to avoid confusion.
 2003-02-13 23:11:30 +00:00
Howard Chu
844cc97928 More for re-entrant LDAP* handles. Works much better. 2003-02-13 23:02:31 +00:00
Howard Chu
a6b3a92cc5 Added ld_req_mutex and ld_res_mutex to protect ld_requests and ld_responses 
queues for multithreaded access to LDAP*'s. Also used to protect writes and
reads of ld_sb, respectively. Appears to work...
 2003-02-13 10:43:16 +00:00
Pierangelo Masarati
262d021ecf minor cleanup 2003-02-11 09:23:28 +00:00
Kurt Zeilenga
22215a396c Remove lint 2003-02-10 19:59:32 +00:00
Kurt Zeilenga
aa291a3492 We should be calling libtool --finish when install libraries 2003-02-09 23:10:29 +00:00
Kurt Zeilenga
4b3396f5fd unifdef -DLDAP_NOCACHE 2003-02-09 07:42:18 +00:00
Kurt Zeilenga
c34e59be35 Consistently add cancel.c to makefiles 2003-02-09 01:54:41 +00:00
Kurt Zeilenga
48d47954a6 Rework #ifdef'ing of expermental controls to ease release engineering 
using LDAP_DEVEL (to indicate experimental) to enable experimental features
(true for HEAD unless LDAP_REL_ENG is defined)
 2003-02-08 21:53:05 +00:00
Pierangelo Masarati
1b13edfa54 I suggest the coder(s) of the cyrus stuff to check out the prompt stuff 2003-02-07 09:58:21 +00:00
Pierangelo Masarati
6c32533d02 according to sasl documentation, prompts is filled only if SASL_INTERACT is returned 2003-02-07 09:55:00 +00:00
Jong Hyuk Choi
85b1783d5c LDAP Sync Operation (draft-zeilenga-ldup-sync) as a groundwork for an LDAP replication design 2003-02-05 07:37:02 +00:00
Pierangelo Masarati
e5a1418756 improve last commit 2003-02-04 19:27:56 +00:00
Pierangelo Masarati
c432154ad1 allow multiple URIs (need to backport to back-ldap) 2003-02-04 18:49:58 +00:00
Jong Hyuk Choi
e1bf8cc437 Intermediate Response 2003-02-03 17:28:19 +00:00
Howard Chu
18df386b43 Fix ITS#2161, the check is meaningless anyway. 2003-01-30 00:28:36 +00:00
Jong Hyuk Choi
4f64bd9402 LDAP cancel misc patch 2003-01-27 17:08:51 +00:00
Jong Hyuk Choi
0c43007e55 LDAP cancel operation 2003-01-25 00:36:50 +00:00
Kurt Zeilenga
35f673aaa5 ITS#2267: SASL empty cred fix 2003-01-21 17:31:55 +00:00
Kurt Zeilenga
fc75445270 #ifdef LDAP_PF_LOCAL needed. 2003-01-20 20:10:03 +00:00
Hallvard Furuseth
3bd76701d1 Fix printf format errors. 2003-01-19 14:07:02 +00:00
Hallvard Furuseth
120e39b533 Cast ctype.h arguments to unsigned char. 2003-01-19 14:05:23 +00:00
Hallvard Furuseth
265b7e22c6 Insert missing initializers, to silence gcc warnings. 2003-01-19 13:38:44 +00:00
Hallvard Furuseth
933121a7d9 'static' must come before 'const'. 2003-01-19 13:35:53 +00:00
Hallvard Furuseth
1fbbc11811 Fix LBER_ERROR vs. -1 confusion. 2003-01-19 13:10:17 +00:00
Kurt Zeilenga
6939c53170 Happy new year 2003-01-03 20:20:47 +00:00
Kurt Zeilenga
3dea614e99 cleanup 2002-12-31 05:55:06 +00:00
Pierangelo Masarati
d758296595 silence warnings 2002-12-23 12:02:29 +00:00
Howard Chu
0c2439f5ef Added subjectAltName:IPADDR tests to ldap_pvt_tls_check_hostname() 2002-12-18 21:43:17 +00:00
Howard Chu
c102809fab Use ber_flatten2 to avoid excess mallocs 2002-12-18 19:16:31 +00:00
Howard Chu
464292b50c Remove unneeded sasl_ssf param from ldap_int_sasl_open(), 
it's set by ldap_int_sasl_external().
 2002-12-18 03:09:52 +00:00
Howard Chu
95a512f849 Fix typo in UDP logmsg 2002-12-16 18:17:20 +00:00
Hallvard Furuseth
3b591dd4f6 Fix const errors. 2002-12-11 08:30:29 +00:00
Kurt Zeilenga
56ebd53e51 expand authid buffer 2002-12-08 07:56:49 +00:00
Kurt Zeilenga
840e7f2c5c Include <ac/unistd.h> not <sys/types.h> and <unistd.h> 
Use sizeof( string ) to determine buffer size
Put authzDN in same for as used on server
(We could, just as well, set authid to "fubar" as it matters
not what it is set to)
 2002-12-07 18:32:40 +00:00
Pierangelo Masarati
58c18226e0 on my system need headers to define geteuid() and so 2002-12-07 17:32:33 +00:00
Howard Chu
cf6a9d9d0f For LDAP_PROTO_IPC set the SASL EXTERNAL authid to allow the mech to be 
used by the client side. Please review.
 2002-12-07 13:06:20 +00:00
Howard Chu
d7c0a19aab Added check for sendmsg(). Added hack to use BSD sendmsg()/recvmsg() to 
propagate peer creds if no explicit PEERCRED facility exists. Works
on Solaris 8.
 2002-12-04 16:03:02 +00:00
Kurt Zeilenga
c0f8e30d22 cleanup 2002-12-04 05:13:14 +00:00
Kurt Zeilenga
73b4170a6c Rework libldap to not attempt to set LDAP_API_FEATURE_X_OPENLDAP_THREAD_SAFE 2002-12-04 04:51:55 +00:00
Kurt Zeilenga
da76c1951e First-cut proxy authorization support. 2002-12-03 06:11:32 +00:00
Kurt Zeilenga
9ba95dd027 ITS#2221: getaddrinfo(3) not thread-safe on some platforms (namely 
due to res_() routines).  Change all res_() dependent routines to
share same mutex.
 2002-12-03 01:15:03 +00:00
Howard Chu
4056a8c8a7 Fix ITS#2200, must send non-NULL cred even if it's zero-length. 2002-11-28 16:15:27 +00:00
Kurt Zeilenga
661541fdfc Fix error handling 2002-11-28 04:36:22 +00:00
Kurt Zeilenga
5fe7d38e1c Add whoami.c and passwd.c and other minor tweaks to control cleanups 2002-11-28 02:44:38 +00:00
Kurt Zeilenga
235973571a proxy authz control (client only) 
Misc control cleanups (client only)
 2002-11-28 02:26:55 +00:00
Howard Chu
e721e6bec9 Fix ITS#2187, recursively free all requests 2002-11-27 03:57:36 +00:00
Howard Chu
1702d408bf ITS#2184 maxbuf tweaks from Larry Greenfield @ CMU 2002-11-27 03:51:46 +00:00
Pierangelo Masarati
256f5bbe57 silence warnings 2002-11-10 19:57:16 +00:00
Howard Chu
6b53b4c507 Plug memleak in previous commit 2002-10-24 23:51:34 +00:00
Howard Chu
ddfb4b775b Forced commit, undo previous accidental checkin. 2002-10-24 11:40:37 +00:00
Howard Chu
4396ad3316 ITS#2153, make sure sockbuf buffer is empty before returning (-2) from 
try_read1msg. Blind fix, problem was not duplicated/tested.
 2002-10-24 11:39:06 +00:00
Howard Chu
e2d245e698 Fix comment garbled in 2.1.6. (Very weird, how did this happen?) 2002-10-23 02:45:44 +00:00
Kurt Zeilenga
75e1620ee4 Add copy of OPL 2.0.1 and note in files which specifically refer 
to 2.0.1 as to the location to the copy.
 2002-10-15 23:22:20 +00:00
Kurt Zeilenga
63e7c9e796 first cut at ditStructureRule and nameForm routines 2002-10-13 01:36:58 +00:00
Howard Chu
a9fed89e3f In sb_tls_bio_read/write, check for EAGAIN in addition to EWOULDBLOCK. 
According to read(2)/write(2) EAGAIN is the only one we're interested in.
Fixes HP-UX 11.
http://www.openldap.org/lists/openldap-software/200105/msg00564.html
 2002-10-11 06:22:24 +00:00
Luke Howard
a4ace0ba68 Fix crasher in ldap_domain2dn() 2002-10-10 08:59:19 +00:00
Kurt Zeilenga
cf318d2340 Add ditContentRule routines 2002-10-09 02:56:46 +00:00
Kurt Zeilenga
f833b02518 Fix realloc() bugs 2002-10-08 20:37:30 +00:00
Howard Chu
e37ccca9aa Fix ldap_int_get_controls for optional values 2002-10-07 19:58:10 +00:00
Kurt Zeilenga
491e75548c ITS #2121 submitted by Dave Steck <dsteck@novell.com> with minor changes. 
Patch to allow referrals to be read on synchronous non-search operations.
Treat referrals the same way as MatchDN or ErrorString values.
Store them in the ld structure and provide an option for ldap_get_option
to retrieve them
 2002-10-02 19:14:02 +00:00
Kurt Zeilenga
bbbf2f4ca7 Fix handling of non-critical controls for backends which 
support no controls.
 2002-09-24 18:20:59 +00:00
Howard Chu
4d8a2e2815 Remove dependencies on HAVE_VSNPRINTF, use replacement in liblutil/stdio.c 
if needed. Same check for snprintf.
 2002-09-06 20:54:22 +00:00
Howard Chu
ee30206bc2 Merged ldap_get_values_ber into ldap_get_attribute_ber. 2002-09-06 04:57:21 +00:00
Howard Chu
6a903bc1e5 Added new ldap_get_{dn,attribute,values}_ber functions for linearly 
processing a search entry. Avoids O(n^2) ldap_get_values() behavior.
 2002-09-05 11:33:32 +00:00
Howard Chu
af05dd5511 Set SSL session cache context ID 2002-09-04 07:17:31 +00:00
Howard Chu
f83d30a727 Fix previous commit - still need X509_free for peer cert. 
Just not for local/my cert.
 2002-09-04 02:28:42 +00:00
Kurt Zeilenga
a83cc88edd Move ldap_control_dup() to ldap_pvt.h 2002-09-04 02:14:12 +00:00
Howard Chu
5d062ef54c Don't call X509_free after SSL_get_certificate, it's not a duplicate. 2002-09-04 01:56:09 +00:00
Howard Chu
3099d89d9e Don't use sasl_set_alloc on Cyrus 2, it manages all of its memory 
internally and we don't want to get in the way.
 2002-09-02 22:25:26 +00:00
Howard Chu
90b1e7bd45 Fix ldap_X509dn2bv, OpenSSL gives us DN attributeTypes in EBCDIC 2002-09-02 13:46:56 +00:00
Pierangelo Masarati
c76b36254c cleanup comments 2002-08-31 10:41:49 +00:00
Howard Chu
17493164ea Fix previous commit 2002-08-31 06:23:46 +00:00
Howard Chu
e3304da727 OS/390 EBCDIC support 2002-08-31 05:14:43 +00:00
Howard Chu
d11b134709 Fix large SASL reads. Use EAGAIN instead of EWOULDBLOCK (was right the 
first time after all. see read(2) and write(2)...)
 2002-08-30 10:11:54 +00:00
Pierangelo Masarati
864f05497e allow different solutions to debug sasl shutdown 2002-08-29 17:45:12 +00:00
Pierangelo Masarati
c2efb8788b when shutting down a server with open connections (back-{ldap,meta}), 
the backend attempts a ldap_unbind() that results in calling
ldap_pvt_sasl_mutex_lock() with a NULL argument, causing a SIGSEGV.
I added a few assert() to catch this (I wonder if this might
be related to ITS#1982 "kill -INT corrupts database").
 2002-08-29 16:03:38 +00:00
Howard Chu
1dd1c375bb Fix previous commit - use EWOULDBLOCK instead of EAGAIN 2002-08-29 13:38:36 +00:00
Howard Chu
456e6c73ab Fix ITS#1983, handle writing of large requests. Only one pending request is 
allowed per LDAP* handle. It works, but needs review.
 2002-08-29 12:12:36 +00:00
Pierangelo Masarati
519bf9e28a cleanup logging 2002-08-29 10:42:42 +00:00
Howard Chu
010dbff2cc Fix ITS#1983, in sb_sasl_write, set errno = EAGAIN to tell upper layers to 
retry partial writes
 2002-08-29 10:12:35 +00:00
Howard Chu
5ec4ef6e59 Added no-op for SASL_VERSION_MAJOR < 2 2002-08-28 08:35:38 +00:00
Howard Chu
3cb7a09eb0 Added check for Cyrus SASL sasl_version() 2002-08-28 07:12:22 +00:00
Kurt Zeilenga
7dc1e069e8 Increase res_query buffers to 64k 2002-08-24 17:03:24 +00:00
Pierangelo Masarati
4046c4226e add upper/lower funcs that also compute the length of the string (not used yet) 2002-08-23 08:45:17 +00:00
Kurt Zeilenga
678d686017 make dc const 2002-08-17 19:59:35 +00:00
Kurt Zeilenga
472484725f Update dn2domain() to use str2dn() instead of explode_dn() 2002-08-17 19:42:59 +00:00
Howard Chu
771974f99d ITS#2019 Initialize utils properly 2002-08-10 23:34:55 +00:00
Kurt Zeilenga
ca5aa3b615 Some more sockaddr_in v sockaddr_storage cleanup 2002-08-10 03:48:09 +00:00
Kurt Zeilenga
b3bbe586b6 ITS#2018: use sockaddr_storage 
based upon patch provided by <thorild@Update.UU.SE>
 2002-08-09 22:14:43 +00:00
Kurt Zeilenga
9c28c9b361 Zap LDAPv2-only stuff 2002-08-08 03:01:14 +00:00
Kurt Zeilenga
9c9bd4d5ab Set O_EXCL 2002-08-05 19:49:27 +00:00
Howard Chu
d9eac72099 ITS#1995 return error text when ldap_pvt_tls_check_hostname fails 2002-08-01 03:23:29 +00:00
Kurt Zeilenga
dc4413349e Fix up restart code for EINTR 2002-07-28 05:30:39 +00:00
Kurt Zeilenga
89b3550f95 Clarify error messages 2002-07-26 17:35:57 +00:00
Howard Chu
1a0ca2195e Moved <stdio.h> before <ac/stdlib.h> 2002-07-26 03:16:21 +00:00
Howard Chu
5dc098dab0 Wrap get_ca_list opendir code with #if HAVE_DIRENT_H || dirent to avoid 
compile errors on incompatible build platforms.
 2002-07-24 19:36:03 +00:00
Kurt Zeilenga
e6460769ab Misc sprintf/snprintf cleanup 2002-07-23 18:26:33 +00:00
Stig Venaas
26b33bf614 Fixes ITS#1935 2002-07-16 02:38:14 +00:00
Stig Venaas
bf5e3a15ca Use AF_INET instead of AF_UNSPEC when IPv6 disabled 2002-07-12 15:36:33 +00:00
Julius Enarusai
6107ba67d2 Coverted LDAP_LOG macro to use subsystem ID int values instead of string values 2002-07-11 20:33:24 +00:00
Kurt Zeilenga
d13285fdd8 Fix possible under allocation of buffer 2002-07-08 18:45:53 +00:00
Howard Chu
07ffaeaac8 ITS#1924 use GENERAL_NAMES_free instead of ext_free. 2002-07-05 21:59:02 +00:00
Kurt Zeilenga
2de291ed6e Cut back on the logging... 2002-06-21 19:49:25 +00:00
Kurt Zeilenga
cdce8064e5 ITS#1898: ldap_controls_dup() writes beyond allocated memory 
patch suggested by Dave Steck <dsteck@novell.com>
 2002-06-21 19:14:37 +00:00
Kurt Zeilenga
0371c61073 Add monitorContext rootDSE attribute 2002-06-19 06:44:16 +00:00
Howard Chu
6f8b100f6b Finish implementation of get_ca_list() 2002-06-14 06:09:24 +00:00
Howard Chu
56cba7f97c In ldap_extended_operation_s, check for NULL retoidp and retdatap 
before storing NULL.
 2002-06-13 16:26:47 +00:00
Kurt Zeilenga
fe86a81e25 VLV clean 2002-06-09 06:12:24 +00:00
Howard Chu
70092b38fb Fix ITS#1843, don't deref NULL string in ldap_pvt_str2upper 2002-06-07 13:27:25 +00:00
Howard Chu
8101798791 Better SASL_MAXBUF fix 2002-06-07 03:40:16 +00:00
Howard Chu
353f627aa4 Eliminate SASL client session_callbacks. Since proc was always NULL they 
never did anything anyway.
 2002-06-06 01:44:38 +00:00
Kurt Zeilenga
2c7dae116b More argument handling updates 
(don't check what we expect applications to check).
 2002-06-06 00:26:50 +00:00
Kurt Zeilenga
1064f52dae Fix typo in last commit 2002-06-05 16:39:15 +00:00
Kurt Zeilenga
40ef77a8f8 Add error handling cleanup 2002-06-05 15:51:42 +00:00
Kurt Zeilenga
99f5983fb6 Consistently don't check for NULL session handle and other pointers. 
Application is responsible for providing valid session pointers.
 2002-06-05 15:46:26 +00:00
Howard Chu
7de25993f5 Fix NT_LINK_LIBS, UNIX_LINK_LIBS 2002-05-17 23:41:26 +00:00
Howard Chu
2ca4b0ebfc ITS#1806, Cyrus 1 doesn't give back our callbacks pointer, must stash it 
ourselves.
 2002-05-06 23:56:35 +00:00
Howard Chu
ae3a80eb09 Fix in 1.50 applies to Cyrus 1 as well as Cyrus 2. 2002-05-05 19:15:29 +00:00
Howard Chu
e8e7847175 ITS#1797 silence uninit'd var warnings 2002-05-04 10:52:05 +00:00
Howard Chu
3590877b77 Initialize authid in case ldap_pvt_tls_get_my_dn fails 2002-05-04 01:32:41 +00:00
Howard Chu
0390a171b9 Changed default tls_opt_require_cert value to LDAP_OPT_X_TLS_DEMAND; force 
a fatal error when TLS server cert verification fails.

Changed ldap_pvt_tls_check_hostname to return LDAP_SUCCESS when no cert is
found: this can now only occur if tls_opt_require_cert was explicitly set
to NEVER or ALLOW.

In tls_verify_cb, added a text translation of the verification error code
to the debug message.
 2002-05-04 00:05:48 +00:00
Howard Chu
6c1a786d6c Fix previous commit, wrong if condition 2002-05-03 13:07:42 +00:00
Howard Chu
ed871b997c Break up large SASL writes into units of SASL maxoutbuf size. 2002-05-03 13:04:55 +00:00
Howard Chu
931c4eb35f For Cyrus 2, cannot free session_callbacks in ldap_int_sasl_open, must 
wait until ldap_int_sasl_close because SASL doesn't copy our structure,
it uses it directly.
 2002-05-03 12:10:47 +00:00
Kurt Zeilenga
8c152396b9 Matched Values implementation (ITS#1776) based upon submission 
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
	add testxxx-matchedvalues
	rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
 2002-05-02 18:56:56 +00:00
Howard Chu
b732d3ec55 Fix previous commit, only zero out v3 refer_cnt if we got a SEARCH_RESULT. 
If we got a SEARCH_REFERENCE, we need to keep going...
 2002-05-02 12:08:19 +00:00
Kurt Zeilenga
d82d018f20 add an RFC 2849 check... but behind #if 0 as I'm now thinking this 
is not appropriate.
 2002-05-01 04:40:26 +00:00
Kurt Zeilenga
96483c8dcd cleanup before working on changes 2002-05-01 04:23:59 +00:00
Howard Chu
c9699c1072 Fix previous commit - must fully init newAVA 2002-04-30 14:43:05 +00:00
Howard Chu
b005540094 Added ldap_ucs_to_utf8s to convert ASN.1 T61STRING, BMPSTRING, and 
UNIVERSALSTRING to UTF-8 format.

Rewrote ldap_X509dn2bv to check ASN.1 types and use above function.
 2002-04-30 13:57:01 +00:00
Howard Chu
de3e81cebb Changed ldap_pvt_tls_get_my_dn and ldap_pvt_tls_get_peer_dn to store result 
in dn parameter and return a result code.
 2002-04-30 13:50:56 +00:00
Howard Chu
5528772f23 In ldap_int_tls_start, authid is very temporary, not const. 2002-04-19 04:35:16 +00:00
Howard Chu
202aa8c793 Fix memory leak in previous commit 2002-04-18 16:02:02 +00:00
Howard Chu
17ae956518 Added ldap_X509dn2bv() 
deleted ldap_pvt_tls_get_peer()
  changed ldap_pvt_tls_get_peer_dn() to use ldap_X509dn2bv()
  added ldap_pvt_tls_get_my_dn()
 2002-04-18 12:29:30 +00:00
Howard Chu
315ac06912 Fix warnings from sasl_errdetail 2002-04-18 12:20:55 +00:00
Howard Chu
98a416b584 Additional error reporting for Cyrus SASL 2. Attempt to get SASL-EXTERNAL 
working ifor Cyrus 2. (Both GSSAPI and EXTERNAL are broken at the moment.)
 2002-04-18 00:48:36 +00:00
Howard Chu
dc3e5fb99d ITS#818, ITS#980, ITS#1234 ldapsearch/referral hang - set refer_cnt to 0 
after v3refs have been chased. They are fully processed by the time we get
back, so we should just return the current result message to the caller.
 2002-04-16 12:53:13 +00:00
Kurt Zeilenga
709ce4fa6c Re: Patch: ctype functions require 'unsigned char' args (ITS#1678) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

Here are fixes for more places where the argument to ctype.h functions
should be in the range of `unsigned char'.

Explanation of the last patch (to schema_init.c:bvcasechr()):
TOLOWER() and TOUPPER() return values in the range of `unsigned char',
but bvcasechr() then compares those values with a plain `char'.  So I
convert the return values from TOLOWER()/TOUPPER() to `char' first.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
 2002-04-15 20:42:42 +00:00
Howard Chu
bb17493d31 ITS#1732 signed/unsigned fixes 2002-04-11 08:47:37 +00:00
Pierangelo Masarati
4a2b9b2195 ITS#1730 2002-04-08 18:39:23 +00:00
Pierangelo Masarati
8de44663f7 ITS#1730 and completion of ITS#1701 2002-04-08 10:34:04 +00:00
Pierangelo Masarati
4a8ab5dbf2 Mostly based on patches provided by Hallvard B. Furuseth 
ITS#1677 - cast away const warnings
ITS#1678 - unsigned char args to ctype funcs
ITS#1682 - don't redefine ldap_debug
ITS#1683 - uninitialized vars
ITS#1703 - ldo_debug initialization
ITS#1705 - unsigned testing
ITS#1706 - socklen_t args
ITS#1719 - back-tcl update (other cleanups/fixes/improvements; yet untested)
ITS#1724 - integerNormalize/integerFilter/integerIndexer bugs
ITS#1725 - libdes not required

Implement back-null (/dev/null style backend)
Cleanup some misc warnings ("%lu" format, unused/uninitialized vars,
        ambiguous operator precedence)

Kurt, please regenerate configure
 2002-04-08 09:43:22 +00:00
Howard Chu
5c70106657 ITS#1708 ldap_pvt_tls_sb_ctx() et al 2002-04-05 06:48:03 +00:00
Kurt Zeilenga
b0b8546f05 Patch: More format bugs (ITS#1702) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
 2002-04-02 18:56:26 +00:00
Kurt Zeilenga
26b99bc35d ITS#1701. Fix ber_scanf() return tag handling. 
Based upon patch submitted by Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>.
 2002-04-02 18:40:04 +00:00
Julius Enarusai
b082ed9355 Added LDAP_LOG Messages 2002-04-02 00:22:57 +00:00
Julius Enarusai
e86782aab9 Added LDAP_LOG messages 2002-04-01 23:39:36 +00:00
Julius Enarusai
fff5d3de60 Added LDAP_LOG messages 2002-04-01 22:31:44 +00:00
Julius Enarusai
e30c52dfb7 Added LDAP_LOG Messages 2002-04-01 22:28:02 +00:00
Julius Enarusai
70c73da22c Added LDAP_LOG messages 2002-04-01 22:08:32 +00:00
Kurt Zeilenga
111b464642 move ldap_int_put_filter to ldap_pvt_put_filter 
and other cleanup
 2002-03-30 00:42:40 +00:00
Julius Enarusai
b7bd4368d9 Added LDAP_LOG messages 2002-03-29 17:46:28 +00:00
Julius Enarusai
ae31411a0d Added LDAP_LOG messages 2002-03-27 22:35:35 +00:00
Julius Enarusai
688f45dd06 Added LDAP_LOG messages 2002-03-27 22:23:24 +00:00
Julius Enarusai
171281f3ec Added LDAP_LOG messages 2002-03-27 22:03:35 +00:00
Julius Enarusai
3921e1b0c2 Added LDAP_LOG messages 2002-03-27 21:38:32 +00:00
Julius Enarusai
c0325aed88 Added LDAP_LOG messages 2002-03-27 21:16:36 +00:00
Julius Enarusai
3654b0d4c0 Added LDAP_LOG messages 2002-03-27 19:51:13 +00:00
Julius Enarusai
9c90811315 Added LDAP_LOG messages 2002-03-27 19:43:07 +00:00
Julius Enarusai
a299e74d21 Added LDAP_LOG messages 2002-03-27 19:37:50 +00:00
Julius Enarusai
b4243bc119 Added LDAP_LOG messages 2002-03-27 19:28:43 +00:00
Julius Enarusai
150aa3fc7b Added LDAP_LOG messages 2002-03-27 19:18:11 +00:00
Julius Enarusai
3ab1ea7300 Added LDAP_LOG messages 2002-03-27 19:12:18 +00:00
Julius Enarusai
e4f2c9425a Added LDAP_LOG messages 2002-03-27 18:50:45 +00:00
Julius Enarusai
d88bc7a8b5 Added LDAP_LOG messages 2002-03-27 18:20:08 +00:00
Kurt Zeilenga
fcf9f451a5 Copyright 2001, Adrian Thurston, All rights reserved. 
This software is not subject to any license of
Xandros Corporation.

This is free software; you can redistribute and use it under the same
terms as OpenLDAP itself.

 -------------------------------------------------------------------
This patch adds an option to ldap_get_option which can be called after
ldap_start_tls in order to obtain the pointer to the SSL object used
 2002-03-11 03:39:08 +00:00
Kurt Zeilenga
d50eb2e959 C translator portability changes (ITS#1609) 2002-02-23 23:47:37 +00:00
Kurt Zeilenga
3d9cf98dad If port is zero, use default. 2002-02-21 15:39:35 +00:00
Pierangelo Masarati
c31596eb78 not-so-easy-to-spot bug in filter writing 2002-02-14 18:01:15 +00:00
Pierangelo Masarati
32e48d9e4d disallow unescaped NULs in UTF-8 string values 2002-02-13 22:49:03 +00:00
Kurt Zeilenga
427478a753 Use memchr, not strlen, to look for embedded NULs. 2002-02-13 17:48:39 +00:00
Kurt Zeilenga
dd12660a14 Add embedded NUL check. This is one case where we don't want to 
be liberal in what we accept.
 2002-02-13 17:23:33 +00:00
Kurt Zeilenga
ee6d1a4d40 Check for NULs in DNs. 2002-02-13 16:41:41 +00:00
Pierangelo Masarati
6913aadcdf minor cleanup 2002-02-13 14:44:08 +00:00
Pierangelo Masarati
33d5f0f8f8 honor the ber_len field to allow to exploit ldap_bv2[r]dn to handle DNs embedded in longer strings ... 2002-02-13 12:09:36 +00:00
Pierangelo Masarati
a117c5eee7 use ldap_bv2[r]dn and turn ldap_str2[r]dn into wrappers 2002-02-13 11:46:33 +00:00
Pierangelo Masarati
959edd88c0 prepare for ldap_bv2dn() 2002-02-13 10:05:22 +00:00
Kurt Zeilenga
f1cc2b7ab2 #if 0 RDN debugging 2002-02-13 08:00:31 +00:00
Kurt Zeilenga
275f3be363 Misc. DN fixes and cleanups, namely don't muck with AVA_BINARY values 
Also, pass empty_bv when bv_val is NULL.
 2002-02-13 06:35:27 +00:00
Kurt Zeilenga
defed68e82 Fix typo 2002-02-11 18:18:34 +00:00
Howard Chu
a916535a27 Fix #include of sasl.h 2002-02-11 09:39:15 +00:00
Kurt Zeilenga
d23c559646 Don't use 'shtool mkln' as ln(1) replacement. 
Allow both <sasl/sasl.h> and <sasl.h>
 2002-02-11 08:28:51 +00:00
Kurt Zeilenga
ce07fb958e Update libtool usage 
s/-L.../libraries -lldap/.../libraries/libldap/libldap.la/
 2002-02-10 22:42:51 +00:00
Kurt Zeilenga
b315d8af34 Update Cyrus SASL detection to always look for <sasl.h> regardless 
of version and then try -lsasl2 and -lsasl.  Make SASL code
conditional on SASL_VERSION_MAJOR, not HAVE_CYRUS_SASL.
 2002-02-10 17:51:19 +00:00
Howard Chu
8a4e92b259 Support for Cyrus SASLv2. Untested. 2002-02-10 14:27:23 +00:00
Howard Chu
ffa4b26343 Slightly better fix for library cleanup. Requires GCC. 2002-02-09 01:09:23 +00:00
Howard Chu
1fba3a5c13 Fix flag initialization 2002-02-08 21:53:04 +00:00
Howard Chu
7d41a446cb Added conversion from UTF-8 to T.61. 2002-02-01 03:13:04 +00:00
Howard Chu
cb88cae005 First pass at T.61 <-> UTF-8 translation. Only does T.61 to UTF-8. 
Feel free to inspect, not yet ready for use.
 2002-01-31 13:42:06 +00:00
Howard Chu
63a4a19732 Send a warning to the client if we try to use a bad cert. 2002-01-27 03:48:08 +00:00
Howard Chu
c3c85b4062 Extended TLS_REQCERT/TLSVerifyClient syntax to 4 states: never,allow,try, 
and hard/demand.
 2002-01-27 02:56:18 +00:00
Howard Chu
c81d2bb855 Fix, errno was incorrect after SSL_read returned 0 bytes, caused slapd to 
close the connection prematurely.
 2002-01-26 13:43:22 +00:00
Howard Chu
25cd89b443 Use ber_scanf 'm' format for ignored UDP string 2002-01-17 23:30:05 +00:00
Kurt Zeilenga
7f0289a390 Move most of the new ber_*cmp routines to lber_pvt.h to keep them private, 
rework them slightly to avoid computations which might result in underflow.
Rename them for consistency with other berval routines.
Remove some utf8 lint.
 2002-01-16 18:16:15 +00:00
Pierangelo Masarati
5c1d9b4fce fix assertion 2002-01-16 10:58:04 +00:00
Pierangelo Masarati
6c5be3006d don't auto-detect DCE form; assert the UTF-8 charlen is legal 2002-01-16 09:57:20 +00:00
Howard Chu
40542984cd Added some reference comments for ldap_utf8_charlen2 2002-01-15 09:01:44 +00:00
Howard Chu
2d51ad52b3 Added LDAP_UTF8_CHARLEN2() to validate shortest possible encoding 
of UTF8 string. (Returns charlen if valid, 0 if not.)
 2002-01-15 08:07:46 +00:00
Howard Chu
19f3ba216f Fix ldap_utf8_lentab to detect illegal two-byte sequences. 2002-01-15 03:31:37 +00:00
Pierangelo Masarati
bde71e45f9 fix format 2002-01-14 19:48:09 +00:00
Pierangelo Masarati
36f6a1169a make temporary RDN and AVA arrays rescalable if needed 2002-01-14 19:44:04 +00:00
Pierangelo Masarati
9d6ebd822e fix typo 2002-01-14 19:42:59 +00:00
Pierangelo Masarati
2ee2e7a145 quick fix that in pretty mode escapes with hexpair the specials ',', '+' and '\' 2002-01-14 19:33:13 +00:00
Pierangelo Masarati
7887ef7e92 revert previous commit: do accept '\00' 2002-01-14 11:09:14 +00:00
Pierangelo Masarati
3a6676a082 accept '\<special>' anywhere in the string 2002-01-14 10:50:02 +00:00
Pierangelo Masarati
c4164193ad fix behavior on improperly escaped illegal hexpair; do not accept '\00' 2002-01-14 09:56:54 +00:00
Howard Chu
923e64156d More cleanup in ldap_pvt_tls_destroy() 2002-01-12 02:31:41 +00:00
Howard Chu
07119f7342 Fix ldap_start_tls_s, don't check for TLS present on a non-existent sockbuf 2002-01-12 02:25:22 +00:00
Kurt Zeilenga
dffb050d81 Remove lint 2002-01-10 05:30:23 +00:00
Howard Chu
627d354b98 For Windows, use getsockopt() to retrieve error if connect() fails. 
Don't use ldap_pvt_is_socket_ready() at all on Windows, it is
totally unneeded and getpeername() misbehaves on W2K.
 2002-01-10 05:12:11 +00:00
Kurt Zeilenga
f80b4ad53e Minor const'ification cleanup 2002-01-08 20:24:56 +00:00
Kurt Zeilenga
962e351271 Minor cleanup 2002-01-07 21:22:38 +00:00
Kurt Zeilenga
c4902e88d5 Don't unlock if we've never locked. 2002-01-07 20:18:38 +00:00
Pierangelo Masarati
e5f503c24a Passes last test (empty value); also passes many of the invalid DN tests if liberal parsing is allowed 2002-01-07 15:23:23 +00:00
Pierangelo Masarati
e15aa7b682 fix non-printable flag detection; improve dn test (passes all but last in http://www.openldap.org/ietf/ldapbis/dn.txt) 2002-01-07 15:10:50 +00:00
Pierangelo Masarati
23cd7e837a fix domain generation for UFN 2002-01-07 13:16:53 +00:00
Kurt Zeilenga
0c36372134 Some memory allocation cleanup. 2002-01-06 02:18:37 +00:00
Kurt Zeilenga
c36352c173 Misc allocator cleanup 2002-01-05 19:38:54 +00:00
Howard Chu
bbee3551b8 Fix for Windows, don't call gethostbyname until WSAStartup has occurred. 2002-01-04 23:10:48 +00:00
Kurt Zeilenga
0e2af54a3f Update copyright statements 2002-01-04 21:17:25 +00:00
Kurt Zeilenga
72eb26180f Another minor filter fix (unescaped *) 2002-01-04 20:36:41 +00:00