mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-06 10:46:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
23,341 Commits 38 Branches 307 Tags 74 MiB
efaf9a4a17
Commit Graph

4766 Commits

Author SHA1 Message Date
Ryan Tandy
e96f90e212 ITS#9176 Implement SNI for GnuTLS 2020-04-27 11:01:01 -07:00
Howard Chu
4265849b0f ITS#9176 check for failure setting SNI 2020-04-27 18:54:02 +01:00
Howard Chu
b8f34888c3 ITS#9176 check for numeric addrs before passing SNI 2020-04-27 18:25:49 +01:00
Howard Chu
5c0efb9ce8 ITS#9176 Add TLS SNI support to libldap 
Implemented for OpenSSL, GnuTLS just stubbed
 2020-04-27 03:41:12 +01:00
Isaac Boukris
4c545ee078 ITS#9242 - ifdef tls-endpoint code in openssl pre 0.9.8 2020-04-25 22:50:52 +02:00
Isaac Boukris
4cac398b19 ITS#9189 - initialize ldo_sasl_cbinding in LDAP_LDO_SASL_NULLARG 
Reported-by: Ryan Tandy @ryan
 2020-04-23 22:28:51 +00:00
Ryan Tandy
e9543da971 ITS#9215 Define _XOPEN_SOURCE for glibc only 2020-04-23 13:19:33 -07:00
Isaac Boukris
3cd50fa8b3 ITS#9189 rework sasl-cbinding support 
Add LDAP_OPT_X_SASL_CBINDING option to define the binding type to use,
defaults to "none".

Add "tls-endpoint" binding type implementing "tls-server-end-point" from
RCF 5929, which is compatible with Windows.

Fix "tls-unique" to include the prefix in the bindings as per RFC 5056.
 2020-04-23 21:00:39 +02:00
Quanah Gibson-Mount
8505f774a5 Update to drop NON_BLOCKING ifdefs that were only really for moznss 2020-04-20 21:38:01 +00:00
Quanah Gibson-Mount
a019e7fe1a ITS#9207 - Remove MozNSS code and documentation 2020-04-20 21:38:01 +00:00
Ryan Tandy
84ab23f37f ITS#9087 Let configure detect cross windres tool 2020-04-17 21:39:52 +00:00
Chris Zagar
7985626fae ITS#9087 - Change hard-coded windres to $(RC) to support mingw cross-compiling 2020-04-17 21:01:05 +00:00
Ryan Tandy
db404baf15 ITS#9226 Fix link order for rewrite program on MinGW 2020-04-16 19:35:53 -07:00
Ryan Tandy
d5e133f459 ITS#9181 fix ldap_pvt_thread_mutex_t used before its definition 2020-04-16 19:15:31 +00:00
Quanah Gibson-Mount
a97eed06f0 ITS#6937 - Remove unused proctitle bits 2020-04-15 19:32:28 +00:00
Quanah Gibson-Mount
e50741e459 ITS#6567 - More cleanup 2020-04-13 17:19:35 +00:00
Howard Chu
735e1ab14b ITS#8650 loop on incomplete TLS handshake 
Always retry ldap_int_tls_connect() if it didn't complete,
regardless of blocking or non-blocking socket. Code from
ITS#7428 was wrong to only retry for async.
 2020-04-12 23:51:09 +01:00
Quanah Gibson-Mount
c6493c45b5 ITS#6567 - Remove non-cyrus-sasl GSSAPI bits 2020-04-10 18:19:33 +00:00
Quanah Gibson-Mount
0668877847 ITS#9191 - Avoid div 0 error 2020-04-06 15:42:00 +00:00
Ryan Tandy
7732cb2794 ITS#9086 Add debug logging for more GnuTLS errors 2020-04-02 15:52:31 +00:00
Sergei Trofimovich
57b7003a64 thr_posix.c: fix implicit function declaration for 'pthread_setconcurrency' 
thr_posix.c: In function 'ldap_pvt_thread_set_concurrency':
thr_posix.c:96:9: error: implicit declaration of function 'pthread_setconcurrency'
  return pthread_setconcurrency( n );
         ^~~~~~~~~~~~~~~~~~~~~~
         pthread_setcanceltype

Signed-off-by: Sergei Trofimovich <slyfox@gentoo.org>
 2020-03-26 22:06:41 +00:00
Howard Chu
4f7ea78c95 ITS#9181 Fix race on Windows mutex init 2020-03-16 17:07:43 +00:00
Andrew Lawrence
6f5cc45f93 ITS#8639 remove LANMAN hashed passwords 2020-03-07 16:55:35 +00:00
Quanah Gibson-Mount
6bd2a3721d ITS#9175 - Fix argument cast 
Fixes potential segfault in ldapsearch
 2020-02-21 21:10:49 +00:00
Ondřej Kuzník
b1170bc035 Revert "ITS#9160 OOM handling in mdb tools", wrong branch. 
This reverts commit be61a967e6.
 2020-02-07 11:34:20 +00:00
Ondřej Kuzník
4bb239bd76 ITS#9160 OOM handling in libldap 2020-02-07 09:46:52 +00:00
Ondřej Kuzník
be61a967e6 ITS#9160 OOM handling in mdb tools 2020-02-07 09:46:52 +00:00
Quanah Gibson-Mount
1ce8c2bcea Return to engineering 2020-01-30 18:14:31 +00:00
Quanah Gibson-Mount
bc30f083d6 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-01-30 18:13:03 +00:00
Quanah Gibson-Mount
6a1af27ff2 Release 0.9.25 2020-01-30 17:57:13 +00:00
Ondřej Kuzník
76c43165ea Remove LDAP_X_TXN and rename accordingly 2020-01-28 12:09:09 +00:00
Ondřej Kuzník
9ce2d2f9d2 ITS#9156 Implement pwdMaxLength 2020-01-23 23:46:43 +00:00
Quanah Gibson-Mount
a2be9ff491 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-01-23 16:10:20 +00:00
Howard Chu
dc021fe9ec ITS#9155 2020-01-23 14:52:50 +00:00
Howard Chu
87a94cbf9b ITS#9155 lmdb: free mt_spill_pgs in non-nested txn on end 2020-01-23 14:52:13 +00:00
Howard Chu
c06807ec45 ITS#9120 fix tm2time compat breakage 
Add lutil_tm2gtime for Proleptic Gregorian calendar,
revert lutil_tm2time to previous behavior using Unix epoch
 2020-01-19 19:05:04 +00:00
Howard Chu
e2e17dd2f1 ITS#9147 plug descriptor leak if ldaps connect fails 2020-01-11 04:18:37 +00:00
Quanah Gibson-Mount
f6ad222e41 Happy New Year! 2020-01-09 16:50:21 +00:00
Quanah Gibson-Mount
cc93098132 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2020-01-09 16:47:22 +00:00
Quanah Gibson-Mount
ed0b29b3fe Happy New Year! 2020-01-09 16:46:43 +00:00
Howard Chu
97c145919d ITS#9120 change reference year from 1970 to 0000 
Now handles +/-8740 years centered around year 0000 (1BCE)
 2019-11-28 21:33:48 +00:00
Quanah Gibson-Mount
a4af93f16b Merge remote-tracking branch 'origin/mdb.RE/0.9' 2019-11-23 15:31:12 +00:00
Quanah Gibson-Mount
8bf3fdcd6d ITS#9118 - Fix typo in prev commit 2019-11-22 14:36:38 +00:00
Howard Chu
7d0c4b4c30 ITS#9118 2019-11-21 20:45:11 +00:00
Howard Chu
34f572e7a5 ITS#9118 add MAP_NOSYNC for FreeBSD 2019-11-21 20:44:37 +00:00
Ondřej Kuzník
639e5f15fd ITS#9081 Do not leak sb (ITS#8755 regression) 2019-09-23 17:27:18 +01:00
Ryan Tandy
63c82c0ed7 ITS#9069 Do not call gnutls_global_set_mutex() 
Since GnuTLS moved to implicit initialization on library load, calling
this function deinitializes GnuTLS and then re-initializes it.

When GnuTLS uses /dev/urandom as an entropy source (getrandom() not
available, or older versions of GnuTLS), and the application closed all
file descriptors at startup, this could result in GnuTLS opening
/dev/urandom over one of the application's file descriptors when
re-initialized.

Additionally, the custom mutex functions are never reset, so if libldap
is unloaded (for example via dlclose()) after calling this, its code may
be unmapped and the application could crash when GnuTLS calls the mutex
functions.

On typical systems, GnuTLS system mutexes are probably the same as what
libldap uses anyway.
 2019-09-12 13:16:30 -07:00
Howard Chu
5db7e9baaa return to release engineering, ITS#9068 2019-08-26 17:56:17 +01:00
Howard Chu
239d5cd82b ITS#9068 fix backslash escaping 
mdb_load wasn't properly inserting escaped backslashes into the data.
mdb_dump wasn't escaping backslashes when generating printable output.
 2019-08-26 17:55:23 +01:00
Quanah Gibson-Mount
0eed0ccefc ITS#7585 - Windows doesn't support LDAPI 
Adjust patch for ITS#7585 as Windows does not have LDAPI support.
 2019-07-23 14:45:16 +00:00
Howard Chu
0c357cc88a Release 0.9.24 2019-07-19 17:41:12 +01:00
Quanah Gibson-Mount
4ccd139355 Revert "use AI_ADDRCONFIG if defined in the environment" 
This reverts commit ebf0ef5cb1.

Depends on custom glibc from RedHat
 2019-07-19 16:24:45 +00:00
Quanah Gibson-Mount
403c01b5e6 Fix previous commit. It broke builds where --with-cyrus-sasl=no is set. 2019-06-27 17:44:18 +00:00
Howard Chu
b02807ea2f Cleanup limits in cyrus.c 2019-06-25 15:31:31 +01:00
Ondřej Kuzník
b2f4cacd47 ITS#7996 Use a separate mutex in ldap_int_initialize 2019-06-21 12:19:38 +02:00
Ondřej Kuzník
60754d77c8 ITS#8755 Do not close the default SockBuf a second time 2019-06-20 16:58:25 +02:00
Jame Gerwe
6c177e6629 ITS#8794 - Fix implicit declaration for ldap_is_ldapc_url 
Fix building OpenLDAP with -DLDAP_CONNECTIONLESS so that ldap_is_ldapc_url function is defined
 2019-06-17 17:25:29 +00:00
Ondřej Kuzník
5e8aa3f6d1 ITS#8754 Don't try IPv6 addresses unless configured to 2019-06-13 10:24:43 +02:00
Côme Chilliet
2cac3ceb03 ITS#8674 Return correct result from ldap_create_assertion_control_value 
ldap_create_assertion_control_value was returning ld->ld_errno
 upon success without reseting it to LDAP_SUCCESS first
 2019-06-12 16:57:13 +02:00
Ondřej Kuzník
db40120a27 ITS#7996 Tighten race in ldap_int_initialize 2019-06-12 11:53:38 +02:00
Ondřej Kuzník
860daa0989 ITS#7042 More to unsetting opts with an empty string 2019-06-12 11:50:14 +02:00
Patrick Monnerat
0f9afae02d ITS#7042 Allow unsetting of tls_* syncrepl options. 
This can be done by setting them to an empty string value.
 2019-06-11 15:36:03 +02:00
Jan Vcelak
ebf0ef5cb1 use AI_ADDRCONFIG if defined in the environment 2019-05-13 15:33:55 +00:00
Sumit Bose
6c5a79be98 ITS#7585 fix ldapi with SASL_NOCANON 
Was using the ldapi socket path as a hostname
 2019-04-18 21:57:04 +01:00
Quanah Gibson-Mount
b227ea50e0 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2019-04-18 00:09:09 +00:00
Howard Chu
4da8e78fc5 ITS#9007 2019-04-16 10:35:50 +01:00
Kris Zyp
8d93fe0718 ITS#9007 don't free loose writemap pages 
Broken in ITS#8756
 2019-04-16 10:35:04 +01:00
Ondřej Kuzník
5b55054544 Do not allocate a new cbinding if we have one already. 2019-03-27 10:54:42 +00:00
Ondřej Kuzník
aba073e171 ITS#8980 Actually return the computed status 2019-03-19 16:46:03 +00:00
Nadezhda Ivanova
f239bbd3c6 Add LDAP_OPT_KEEPCONN option 
This option instructs try_read1msg to not free the connection on read error
or on Notice of disconnections, but leave it to the caller. It is needed,
for example, by back-asyncmeta, who expects to have control on when
its target connections are freed. Must be used with caution.
 2019-02-28 17:27:54 +00:00
Vernon Smith
8158888085 ITS#8980 fix async connections with non-blocking TLS 2019-02-28 17:02:40 +00:00
Howard Chu
06d289f985 ITS#8983 Add draft Persistent Search 2019-02-25 15:19:33 +00:00
Ondřej Kuzník
e6ae7d5136 ITS#8731 Make loading ldap-int.h possible from server code again 2019-02-19 17:14:26 +00:00
Ondřej Kuzník
117dcbc54d Silence compiler warnings 2019-02-19 10:28:08 +00:00
Ondřej Kuzník
cd914149a6 Make prototypes available where needed 2019-02-19 10:26:39 +00:00
Ondřej Kuzník
97a310b312 ITS#8731 Apply doc/devel/variadic_debug/04-variadic.cocci 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
09cec1f1b4 ITS#8731 Apply doc/devel/variadic_debug/03-libldap_Debug.cocci 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
e1e643ea41 ITS#8731 Manual adjustments 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
254d2adab0 ITS#8731 Rework logging 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
129dcfbd86 ITS#8731 General Debug() related fixes 2019-02-15 16:51:53 +00:00
Quanah Gibson-Mount
6c5b7f7583 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2019-02-13 16:58:49 +00:00
Howard Chu
f8505b10ed ITS#8975 2019-02-10 10:13:10 +00:00
Kris Zyp
ea30be6109 ITS#8975 WIN32: Skip setting file pointer for write maps 
CreateFileMapping already takes care of it.
 2019-02-10 10:11:53 +00:00
Quanah Gibson-Mount
09ff530036 ITS#8957 - Fix ASYNC TLS 
Fix ASYNC TLS by correctly handling a return code of -2 in addition to 0
 2019-01-31 23:28:36 +00:00
Quanah Gibson-Mount
50b33cc6b8 ITS#8968 - Fix ASYNC connection on Solaris 10 
Fixes ASYNC connections to handle a return code of ENOTCONN as this is
what Solaris 10 does.
 2019-01-31 23:28:28 +00:00
Howard Chu
8c39ba1077 ITS#8969 2019-01-31 00:22:50 +00:00
Howard Chu
7375ffc0d4 ITS#8969 tweak mdb_page_split 
Bump up number of keys for which we use fine-grained splitpoint search
 2019-01-31 00:22:28 +00:00
Howard Chu
e8c62bf8b4 ITS#8966 add changelog support to syncrepl consumer 
Tested against DSEE7. The DSEE binaries must be in your path to run the test script.
 2019-01-29 18:51:43 -08:00
Howard Chu
b15149a56b Happy New Year 2019-01-14 19:06:40 +00:00
Quanah Gibson-Mount
b45a6a7dc7 Happy New Year! 2019-01-14 18:46:16 +00:00
Quanah Gibson-Mount
497f385587 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2019-01-14 18:40:58 +00:00
Quanah Gibson-Mount
f9acf68207 Happy New Year! 2019-01-14 18:40:15 +00:00
Howard Chu
d3b1558dcb ITS#8353 CRYPTO_set_id_callback deprecated in OpenSSL 0.9.9 2019-01-02 10:16:40 +00:00
Quanah Gibson-Mount
6a47588fd6 Return to engineering 2018-12-19 16:52:12 +00:00
Quanah Gibson-Mount
868750c74b Merge remote-tracking branch 'origin/mdb.RE/0.9' 2018-12-19 15:53:50 +00:00
Quanah Gibson-Mount
2a5eaad691 Release 0.9.23 2018-12-19 15:51:03 +00:00
Howard Chu
8ccb3d4e1b Add msctrl to libldap_r 
Overlooked this in a9bfce1292
 2018-12-18 17:11:54 +00:00
Howard Chu
18e0bcb7de Add MS AD persistent search ctrl 2018-12-13 05:44:46 -08:00
Howard Chu
7e5c9c1345 ITS#8752 (maybe related) 
Avoid incremental access to user-supplied bv in dupbv
 2018-12-05 10:41:47 +00:00
Ondřej Kuzník
c65cf6e6d7 ITS#8858 Fix use after free 2018-11-29 14:41:58 +00:00