mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
18,011 Commits 38 Branches 307 Tags 74 MiB
f2a4158e0d
Commit Graph

456 Commits

Author SHA1 Message Date
Pierangelo Masarati
3771d2ed49 fox to ITS#5070 fix: error out if serialNumber requires size > sizeof(long long) (detected by Coverity) 2007-08-16 11:57:34 +00:00
Pierangelo Masarati
f4e12e11d6 trim unused vars 2007-08-03 20:26:48 +00:00
Pierangelo Masarati
d0baca7a62 add certificateListValidate (#ifdef LDAP_DEVEL) 2007-08-03 13:12:36 +00:00
Pierangelo Masarati
34921e07ad allow parsing of long long serials when long long is defined (ITS#5070) 2007-08-03 10:50:18 +00:00
Pierangelo Masarati
6a4dd27158 allow validation/normalization of x509 v1 (default) certs 2007-07-25 00:56:51 +00:00
Hallvard Furuseth
101b6b9363 Fix --without-tls (ITS#4975). Enable certificate matching. 2007-05-20 22:48:21 +00:00
Hallvard Furuseth
861babae6f include lber-int.h (for rev 1.396 certificate changes) 2007-05-18 14:41:28 +00:00
Pierangelo Masarati
978c3609e0 allow array of more generic syntaxes 2007-05-16 09:13:14 +00:00
Pierangelo Masarati
eb5d285a1b allow attribute inheritance with syntax restriction (please review) 2007-05-16 01:40:34 +00:00
Howard Chu
97b0c98ab5 Don't use strdup on bervals 2007-05-13 09:36:52 +00:00
Howard Chu
f3c9d552dd Use liblber for certificate Validation, Normalization 2007-05-13 01:27:51 +00:00
Howard Chu
51e58c671e Fix q[-1] ref in prev commit 2007-01-29 23:56:59 +00:00
Howard Chu
67f16caec0 ITS#4823 allow zero-length IA5String 2007-01-29 04:39:54 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
78af5454d2 use case consistent with RFCs (ITS#4764) 2006-12-02 10:30:29 +00:00
Kurt Zeilenga
dbaf7c5c25 More ldapbis cleanup 2006-10-28 04:47:58 +00:00
Kurt Zeilenga
99b954e2c3 LDAPBIS cleanup 2006-10-28 03:53:02 +00:00
Howard Chu
dd74acbf74 Fix ITS#4672, clear errno before calling STRTOL 2006-09-13 05:34:38 +00:00
Hallvard Furuseth
6567412f54 schema_destroy(): Handle failed slap_schema_init() 2006-04-13 22:19:19 +00:00
Kurt Zeilenga
eb9a3c1876 unifdef -DSLAP_ACL_HONOR_DISCLOSE 
unifdef -DSLAP_ACL_HONOR_MANAGE
unifdef -DSLAP_OVERLAY_ACCESS
unifdef -DSLAP_ORDERED_PRETTYNORM
unifdef -DSLAP_AUTHZ_SYNTAX
Move LDAP_COLLECTIVE_ATTRIBUTES, LDAP_COMP_MATCH, and LDAP_SYNC_TIMESTAMP
back behind LDAP_DEVEL (as these either too experimental or not yet
implemented).
 2006-04-12 05:53:26 +00:00
Hallvard Furuseth
6c772f2057 assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2006-04-01 23:52:42 +00:00
Kurt Zeilenga
ffee887d71 Update certificate schema to use IANA assigned OIDs 2006-03-08 20:07:25 +00:00
Kurt Zeilenga
4c64b8626d Add support for GSER-encoded certificateExactAsssertion values 2006-03-03 04:54:49 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Kurt Zeilenga
e50fc1833d Add UUIDPretty 
Likely should add UUID-named-entry test case to test026...
 2005-12-20 23:25:44 +00:00
Kurt Zeilenga
439af9ec10 (Quick)fix UUID naming attributes 2005-12-20 22:36:51 +00:00
Pierangelo Masarati
474dfbc8fd don't trust strchr/strrchr with bervals 2005-11-13 22:26:53 +00:00
Howard Chu
8f5ea1f1d2 substring indexing optimization 2005-10-23 22:38:15 +00:00
Kurt Zeilenga
d10832b0c8 entryUUID schema to use IANA (newly) assigned OIDs 2005-09-26 18:37:50 +00:00
Howard Chu
86bd3651e1 ITS#4040 move initialization 2005-09-25 06:12:41 +00:00
Howard Chu
5697278574 ITS#4040 fix uniqueMemberMatch when value is zero-length 2005-09-25 06:11:35 +00:00
Pierangelo Masarati
4bc8197dcb further ACI factoring out & confinement 2005-08-22 16:03:35 +00:00
Pierangelo Masarati
de90dbbc52 mutex-protect "undefined" attribute descriptions/objectClasses addition (ITS#3958) 2005-08-22 09:46:17 +00:00
Pierangelo Masarati
ec49990d51 ACIs almost entirely factored out of slapd 
Added OpenLDAPaciSyntax based on ITS#3877 by Nikita Shulga
aci_mask() doesn't exploit the normalized value yet (next step)
The case #define SLAPD_ACI_ENABLED / #undef SLAP_DYNACL should
be removed
 2005-08-17 17:14:57 +00:00
Pierangelo Masarati
d10250d9f6 add authzSyntax for authzTo/authzFrom attributes; add X-ORDERED 'VALUES' if support for ordered_value_{validate,pretty,normalize} is present; exploit normalization in slap_parseURI (only #ifdef LDAP_DEVEL) 2005-08-11 23:52:17 +00:00
Hallvard Furuseth
9601e1e7ec serialNumberAndIssuerPretty() and serialNumberAndIssuerNormalize() 
were confused about realloced memory.
 2005-07-30 23:30:42 +00:00
Hallvard Furuseth
81ecb0b153 assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2005-07-18 06:22:33 +00:00
Howard Chu
5d2ba11ad9 ITS#3847 silence warnings 2005-07-11 12:11:15 +00:00
Luke Howard
f90800667d Fix OpenLDAP ITS#3782 - broken logic in bitwise matching rules 2005-06-16 05:31:24 +00:00
Kurt Zeilenga
3e800f20bd <limits.h> cleanup && ITS#3643 2005-04-10 19:32:14 +00:00
Kurt Zeilenga
e7e8ec90b6 Update uniqueMemberMatch to be consistent with latest 
draft-ietf-ldapbis-syntaxes
Add uniqueMemberMatch approximate support
Add uniqueMemberMatch indexing support
 2005-03-26 02:07:00 +00:00
Kurt Zeilenga
8da81d42c7 ITS#3538: improved substrings matching (spaces handled 
in accordance with LDAPprep)
 2005-03-25 05:57:07 +00:00
Howard Chu
3f357270d4 Fix unparsers, schema loading works 2005-03-21 10:23:01 +00:00
Howard Chu
b6019af759 Fix off-by-one in octetStringSubstringsFilter 2005-02-01 13:40:17 +00:00
Pierangelo Masarati
e559e61b4f consistently use BER_* macros 2005-01-18 09:35:09 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Kurt Zeilenga
d616bd4ff8 cleanup 2004-12-07 18:40:47 +00:00
Howard Chu
810abc1419 Better fix for prev commit 2004-12-06 07:38:09 +00:00
Howard Chu
ee01d03766 Don't assert on short time strings, just ignore them. 2004-12-06 03:37:06 +00:00
Howard Chu
02a85a1c93 Hide CSN schema dependencies 2004-12-02 16:59:00 +00:00
Howard Chu
1e577505eb Add CSN syntax, matching rules (to support inequality indexing) 2004-12-02 09:05:26 +00:00
Sang Seok Lim
decfd7217f 1) <all> type component reference support 
2) nibble type memory support when decoding
3) description type object identifier support
4) OPTIONAL, DEFAULT support in certificate decoder/extractor/matching
5) Misc bug fix
 2004-11-29 20:21:38 +00:00
Sang Seok Lim
a90e63fde0 ComponentFilterMatch support for userCertificate 2004-11-14 20:11:38 +00:00
Sang Seok Lim
71e78dd7f9 Component Matching module 
See "contrib/slapd-modules/comp_match/README" to understand
what's the purpose of  this patch is and how to use it.
 2004-10-27 19:37:02 +00:00
Howard Chu
7e87f54716 Revert ITS#3353 patch, it needs to be reworked. 2004-10-06 05:51:38 +00:00
Howard Chu
fda3d6260e ITS#3353 consolidate slapd globals into a single struct 2004-10-01 07:33:16 +00:00
Howard Chu
62b6b32633 Add SLAP_MR_ORDERED_INDEX - support for inequality indexing. Currently 
only implemented for generalizedTime syntax.
 2004-09-28 13:11:11 +00:00
Howard Chu
fc44ed4593 Tweak exact hashing in prev commit 2004-09-28 04:13:09 +00:00
Howard Chu
bf7c7a22d6 ITS#2661: configurable substring index lengths 
ITS#2588: use subany to help long subinitial/subfinal matches
 2004-09-28 02:51:00 +00:00
Pierangelo Masarati
761f287943 multiple precision with BIGNUM/gmp/ulong 2004-09-26 22:58:47 +00:00
Kurt Zeilenga
910076d26f Add additional DN matching rules. 2004-09-09 03:56:58 +00:00
Kurt Zeilenga
741f9ea383 Add initial dnSubtreeMatch. 
Should reuse other DN routines.
Need to add various other DN matching rule functions.
This commit, combined with entryDN and slapcat -a, should
fully address ITS#3112.
 2004-09-09 02:07:27 +00:00
Kurt Zeilenga
d611a4b49a unifdef -UNEW_LOGGING 2004-09-04 04:54:28 +00:00
Jong Hyuk Choi
70fda7725a revert prev commit to normalizers 2004-09-01 16:01:36 +00:00
Jong Hyuk Choi
6baa9b1e2b use ch_malloc for normailzed values 2004-08-31 14:22:56 +00:00
Jong Hyuk Choi
e6df94946d patch for ITS#3296 - do not use sl_malloc on normalized attr values 2004-08-31 13:47:33 +00:00
Kurt Zeilenga
fea393c077 cleanup 2004-08-28 19:26:59 +00:00
Sang Seok Lim
2af6457771 This patch is for a component filter. please refer ITS#3260 for detail 
and "implementing GSER and Component Matching" in ODD 2004.
All codes are #ifdef'd with LDAP_COMP_MATCH.
test031-component-filter works correctly only when the LDAP_COMP_MATCH macro is set.
To disable it, set AC_WITH_COMP_MATCH "no" in "openldap_src/tests/run.in".
 2004-08-26 00:06:39 +00:00
Jong Hyuk Choi
8b5b2e715b should not assert(0) in UUIDValidate 2004-07-28 17:27:52 +00:00
Pierangelo Masarati
448e2dcad4 fix empty uniqueMember dn portion (ITS#3247) 2004-07-18 21:40:16 +00:00
Sang Seok Lim
ad19032bf2 This patch provides support for rdnMatch matching rule and RDN syntax in 
RFC 3687. For now, both the attribute and assertion values are considered
as RDNs. Refer to ITS#3207 to find related discussion.
 2004-06-29 23:36:58 +00:00
Pierangelo Masarati
5256cbda6c fix uniqueMemberMatch according to previous fix (related to ITS#3210) 2004-06-29 17:23:54 +00:00
Pierangelo Masarati
c25c3ed9e5 fix nameUID* and uniqueMember* stuff in a consistent manner (related to ITS#3210) 2004-06-29 16:29:00 +00:00
Kurt Zeilenga
6830aca2d1 cleanup 2004-06-28 23:03:01 +00:00
Pierangelo Masarati
279d629c81 fix nameUID/uniqueMember stuff (ITS#3210) 2004-06-28 22:10:27 +00:00
Kurt Zeilenga
25166f8166 cleanup 2004-06-11 00:14:01 +00:00
Pierangelo Masarati
1543d3b95b fix previous commit :) 2004-05-13 22:19:16 +00:00
Pierangelo Masarati
a10fe8e098 caught nasty empty DN bug 2004-05-13 22:12:24 +00:00
Kurt Zeilenga
a3bbc8adec Update substr indexing macros to better separate 
initial/final string settings from any string settings.
 2004-05-04 22:31:57 +00:00
Kurt Zeilenga
05463503e8 ITS#3118: fix objectIdentifierFirstComponentMatch for schema elements 2004-04-28 20:10:21 +00:00
Kurt Zeilenga
81d31dc721 ITS#3118: initial fix: (objectClasses=2.5.6.0) works 
need to add special handler to allow (objectClasses=top) to work
 2004-04-28 05:12:53 +00:00
Pierangelo Masarati
5e5e0cd98a quick hack for ITS#3118; may need work 2004-04-28 00:09:25 +00:00
Kurt Zeilenga
5f2497910b ITS#3115: don't increment argument to TOLOWER macro 2004-04-26 23:13:19 +00:00
Kurt Zeilenga
1372965d89 ITS#3092: Rename sl_free() and friends to slap_sl_free() 2004-04-20 03:44:57 +00:00
Kurt Zeilenga
69eeb79662 Additional invalid objectClass changes (ITS#3097) 
catch error in validation/pretty functions
 2004-04-19 20:45:26 +00:00
Kurt Zeilenga
44725e7303 use BER_BVNULL 2004-04-07 04:11:43 +00:00
Kurt Zeilenga
ad6969e6cd Add a yet-to-be-tested deliveryMethodValidate function 2004-04-02 02:25:36 +00:00
Kurt Zeilenga
855c22d862 Add numericStringOrderingMatch rule (ITS#2988) 2004-03-26 18:58:01 +00:00
Kurt Zeilenga
ec4e7ef232 Add note that some of the unimplemented matching rules are 
now described in RFC 3698.  Would be good to implement these.
 2004-03-18 21:39:57 +00:00
Pierangelo Masarati
129aa2884b fix numericStringMatch (ITS#2938) 2004-02-17 20:30:37 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Pierangelo Masarati
f2a9089e4d cleanup most of the -pedantic warnings (ITS#2884) and other small fixes 2003-12-17 20:55:46 +00:00
Kurt Zeilenga
4e15a84452 Updated notices 2003-11-27 01:17:14 +00:00
Howard Chu
ccf224a759 ITS#2808 fix UUIDNormalize, use it. 2003-11-03 08:22:13 +00:00
Kurt Zeilenga
80fa73bf8c Update entryUUID to latest draft specification 2003-10-31 17:41:31 +00:00
Howard Chu
7126ccf569 Fix caseExact/caseIgnore IA5 normalization 2003-10-23 05:28:22 +00:00
Kurt Zeilenga
aa225c2c70 Explicitly mark attribute/assertion syntax of values to be normalized 2003-10-18 06:18:05 +00:00
Howard Chu
dee604c608 ITS#2771 fix memory usage in LDAPDN_rewrite, fix normalizer 2003-10-18 05:49:58 +00:00
Kurt Zeilenga
c57db6c33e Add basic support for certificateMatch (as an extensible matching rule) 2003-10-18 04:20:19 +00:00
Kurt Zeilenga
3fbe93c704 Rework support for certificate exact matching based, in part, 
on patch submitted by Mark Ruijter <openldap@siennax.com>.
This addresses (hopefully) ITS 2702, 2703, 2719, 2771.
Additional work:
	fix extraneous frees in libldap/getdn.c x509 rewrite routine
	indexing
 2003-10-18 02:39:08 +00:00