Howard Chu
41c5a36376
Require 2.1.3 or higher for Cyrus SASL 2
2002-05-07 23:56:59 +00:00
Howard Chu
fbe4785c5a
Delete unused CANON_BUF_SIZE #define
2002-05-07 23:29:19 +00:00
Howard Chu
6f47e13147
Cyrus 2 support now requires Cyrus 2.1.3. Adds support for in-directory
...
SASL secrets. (Only works with plaintext userpassword tho.)
2002-05-07 23:08:23 +00:00
Howard Chu
3831d98237
Turn these functions on again. Need backend_attribute for SASLauthz stuff.
...
Fix to work with NULL op.
2002-05-07 22:35:01 +00:00
Howard Chu
a067d64c3a
Fixes for slap_sasl_regexp parsing and normalization
2002-05-07 18:46:32 +00:00
Howard Chu
56f1355968
Added comment for future reference re: in-directory secrets
2002-05-07 02:17:34 +00:00
Howard Chu
2ca4b0ebfc
ITS#1806, Cyrus 1 doesn't give back our callbacks pointer, must stash it
...
ourselves.
2002-05-06 23:56:35 +00:00
Howard Chu
a039bd97ea
ITS#1803, bogus free() of lber-private memory.
2002-05-06 16:51:00 +00:00
Howard Chu
ae3a80eb09
Fix in 1.50 applies to Cyrus 1 as well as Cyrus 2.
2002-05-05 19:15:29 +00:00
Kurt Zeilenga
f9687f6c2a
Patch: incomplete 'make clean' in liblunicode (ITS#1791)
...
In liblunicode, 'make clean' and 'make distclean' do not remove
the symlinks ucdata.h and ure.h.
from Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>
2002-05-04 23:13:51 +00:00
Pierangelo Masarati
bffa43e743
fix formats
2002-05-04 11:07:28 +00:00
Pierangelo Masarati
b0d1a52975
remove unused variables
2002-05-04 11:07:04 +00:00
Howard Chu
e8e7847175
ITS#1797 silence uninit'd var warnings
2002-05-04 10:52:05 +00:00
Howard Chu
55cefef7ee
ITS#1797 err used unit'd in Debug statement. (removed)
2002-05-04 10:50:24 +00:00
Kurt Zeilenga
46e33e4634
Fix typos
2002-05-04 04:35:41 +00:00
Kurt Zeilenga
7b1d619a58
Basic dnssrv man page
2002-05-04 04:34:58 +00:00
Howard Chu
3590877b77
Initialize authid in case ldap_pvt_tls_get_my_dn fails
2002-05-04 01:32:41 +00:00
Howard Chu
ef678b179c
ITS#1795 authid is uninit'd if tls_get_cert fails
2002-05-04 01:28:56 +00:00
Howard Chu
846a5832bb
Set tls_opt_require_cert to default to NEVER. libldap defaults to DEMAND
...
due to client needs, we change it back here.
2002-05-04 00:07:12 +00:00
Howard Chu
0390a171b9
Changed default tls_opt_require_cert value to LDAP_OPT_X_TLS_DEMAND; force
...
a fatal error when TLS server cert verification fails.
Changed ldap_pvt_tls_check_hostname to return LDAP_SUCCESS when no cert is
found: this can now only occur if tls_opt_require_cert was explicitly set
to NEVER or ALLOW.
In tls_verify_cb, added a text translation of the verification error code
to the debug message.
2002-05-04 00:05:48 +00:00
Kurt Zeilenga
9d39e1e672
fix uninitialized counter in matched values
2002-05-03 19:00:52 +00:00
Howard Chu
a352bcaa16
Fix DN freeing in BDB_HIER case. (BDB_HIER is still broken, seems to have
...
a bad interaction with the entry cache.)
2002-05-03 14:47:29 +00:00
Howard Chu
203c410243
Fix dependency typo from 1.99
2002-05-03 14:42:14 +00:00
Howard Chu
640bc864fa
Use specific msg id instead of ANY to retrieve search results
2002-05-03 14:23:55 +00:00
Howard Chu
6c1a786d6c
Fix previous commit, wrong if condition
2002-05-03 13:07:42 +00:00
Howard Chu
ed871b997c
Break up large SASL writes into units of SASL maxoutbuf size.
2002-05-03 13:04:55 +00:00
Howard Chu
931c4eb35f
For Cyrus 2, cannot free session_callbacks in ldap_int_sasl_open, must
...
wait until ldap_int_sasl_close because SASL doesn't copy our structure,
it uses it directly.
2002-05-03 12:10:47 +00:00
Pierangelo Masarati
033631f30a
s/LDAP_UNWILLING_TO_PERFORM/LDAP_ADMINLIMIT_EXCEEDED/ when search candidates exceed unckecked limit
2002-05-03 10:27:37 +00:00
Kurt Zeilenga
8c152396b9
Matched Values implementation (ITS#1776) based upon submission
...
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
add testxxx-matchedvalues
rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.
Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
2002-05-02 18:56:56 +00:00
Pierangelo Masarati
71aa1c5dc9
clarifications
2002-05-02 16:49:47 +00:00
Pierangelo Masarati
4f24ebbb8d
3rd step at updating docs by hallvard Furuseth (with minor changes in slapd-meta.5)
2002-05-02 16:35:16 +00:00
Howard Chu
b732d3ec55
Fix previous commit, only zero out v3 refer_cnt if we got a SEARCH_RESULT.
...
If we got a SEARCH_REFERENCE, we need to keep going...
2002-05-02 12:08:19 +00:00
Pierangelo Masarati
b9d74aba5f
broken berval after successful rewrite
2002-05-02 11:42:11 +00:00
Pierangelo Masarati
c7224dc31e
back-meta needs librewrite and back-ldap; automatically enable them
2002-05-02 09:06:12 +00:00
Pierangelo Masarati
2ca323d2b5
Fixes ITS#1786: dynamically growing number of tokens in config line
...
for both slapd and slurpd
Copyright 2002, John Morrissey (jwm at horde dot net), All rights reserved.
This is free software; you can redistribute and use it under the same terms
as OpenLDAP itself.
Applied with changes
2002-05-02 08:48:14 +00:00
Randy Kunkee
260331e622
Remove debugging fluff.
2002-05-02 08:14:01 +00:00
Randy Kunkee
1042e3f04c
Generate ldaptclerr.h correctly.
2002-05-02 08:11:41 +00:00
Howard Chu
d879fb351b
Added config keyword descriptions from ITS#966. Minor cleanup.
2002-05-01 20:24:56 +00:00
Pierangelo Masarati
4ad033a298
couple of fixes
2002-05-01 19:36:24 +00:00
Kurt Zeilenga
888a7c4efc
Error if ar(1) is missing. (ITS#1772)
2002-05-01 19:22:32 +00:00
Howard Chu
0bb46f937b
From Hallvard, with slight changes
2002-05-01 19:21:21 +00:00
Howard Chu
b3d0ab87aa
More cleanups for suffixmassage DNs
2002-05-01 19:05:09 +00:00
Howard Chu
7fae7fe155
Changed be_[n]suffix, be_[n]suffixAlias to BerVarray. No more bvec's anywhere.
2002-05-01 18:50:14 +00:00
Kurt Zeilenga
5b06af70bb
Patch: Perl backend sends bind result twice (ITS#1783)
...
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
================
perl_back_bind() should not send LDAP_SUCCESS, the frontend does that.
Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
2002-05-01 18:10:14 +00:00
Pierangelo Masarati
c030dbfefd
massage dn-valued attributes also when compiled without --enable-rewrite
2002-05-01 17:53:32 +00:00
Pierangelo Masarati
c1edf76e20
use BerVarray for suffix_massaging stuff
2002-05-01 17:45:03 +00:00
Pierangelo Masarati
1aa96af216
second round at ITS#1749
2002-05-01 16:38:30 +00:00
Pierangelo Masarati
6feec86e5d
- trim check for real naming context already defined as suffix
...
- improve automatic massaging (prettify once)
- add (optimistic) automatic filter massaging
- cleanup of massaging stuff
2002-05-01 11:41:57 +00:00
Howard Chu
48fb754cc0
Added RFC 2459 PKCS9 emailAddress
2002-05-01 06:34:49 +00:00
Kurt Zeilenga
d82d018f20
add an RFC 2849 check... but behind #if 0 as I'm now thinking this
...
is not appropriate.
2002-05-01 04:40:26 +00:00