182 Commits

Author	SHA1	Message	Date
Pierangelo Masarati	fcbc1f484d	fix referrals return for ops other than search (ITS#4557); use slab memory for temporaries in returning referrals	2006-05-18 22:28:22 +00:00
Pierangelo Masarati	073f14ceac	lc_bound_ndn is occasionally saved to keep track of who bound; don't use it to bind unless credentials are present as well	2006-05-16 02:56:59 +00:00
Pierangelo Masarati	9c9b6f7353	idassert: setup rebind stuff when binding for proxyAuthz, so that referral chasing tries to rebind with the correct identity (partially address ITS#3526)	2006-05-16 01:10:51 +00:00
Pierangelo Masarati	3b7084c170	reset the conn field in the cached connection if the bound DN is privileged (ITS#4547)	2006-05-15 01:42:05 +00:00
Pierangelo Masarati	26d1fc8c48	more cleanup of previous commits	2006-05-14 18:09:56 +00:00
Pierangelo Masarati	f87e6270d4	improve previous commit	2006-05-14 17:53:40 +00:00
Pierangelo Masarati	0c33c17bb5	"single-conn" forces flushing of existing conns during rebind on same conn (ITS#4546)	2006-05-14 17:32:15 +00:00
Pierangelo Masarati	3393b15594	cleanup resource release	2006-05-14 15:11:53 +00:00
Pierangelo Masarati	373ded8d24	add URI list resorting feature (ITS#4524)	2006-05-06 16:15:25 +00:00
Pierangelo Masarati	401b211d98	touch idle-timeout HAVE_TLS odds; silence warning #ifndef HAVE_TLS	2006-05-06 10:50:13 +00:00
Pierangelo Masarati	3b5d411af2	fix idassert "override"	2006-05-01 22:54:07 +00:00
Pierangelo Masarati	4d894c7d24	don't idassert if proxyAuthz == boundDN (ITS#4497)	2006-04-21 21:07:31 +00:00
Pierangelo Masarati	e01743193d	more coverity issues	2006-04-14 00:17:27 +00:00
Hallvard Furuseth	7a19d8855d	Remove useless assert: unsigned lc->lc_refcnt >= 0	2006-04-13 22:20:55 +00:00
Pierangelo Masarati	bd8514fb1e	address protocol version issues (ITS#4488)	2006-04-13 16:20:00 +00:00
Pierangelo Masarati	666e0677ca	re-fix previous commit	2006-04-08 15:59:59 +00:00
Pierangelo Masarati	cc8109db06	fix previous commit	2006-04-08 14:45:19 +00:00
Pierangelo Masarati	0500576056	add support for old proxyAuthz encoding; allow to workaround buggy implementations of the new version (now RFC4370)	2006-04-08 11:12:30 +00:00
Pierangelo Masarati	6a293c65b3	line up network-timeout with back-meta	2006-04-07 09:08:37 +00:00
Pierangelo Masarati	8c1b8d3f7b	actually, if a connection is already in the AVL tree, use it if not binding; otherwise use a tainted one; taint connections that must be freed when refcnt goes to zero	2006-04-07 01:28:56 +00:00
Kurt Zeilenga	45d0479d37	Reverse last commit. Wrong tree.	2006-04-05 00:40:53 +00:00
Kurt Zeilenga	31d64d4642	No LogTest in re23	2006-04-05 00:39:46 +00:00
Pierangelo Masarati	02966c3d1c	fix handling of expired connections (ITS#4429; need to look at back-meta as well)	2006-03-29 01:26:42 +00:00
Pierangelo Masarati	bacd1f170f	leave existing controls in place if proxyAuthz is not required by idassert (ITS#4457)	2006-03-28 21:45:54 +00:00
Pierangelo Masarati	1418b2c5b1	fix previous commit: actually free the connection in case of failed bind	2006-03-25 01:12:27 +00:00
Pierangelo Masarati	fd5208c18f	destroy bind connection after failed bind (ITS#4428)	2006-03-25 00:33:42 +00:00
Pierangelo Masarati	3160c03dab	cleanup previous commit	2006-03-23 23:01:14 +00:00
Pierangelo Masarati	3437406a0b	honor "chase-referrals no" (ITS#4447)	2006-03-23 21:01:19 +00:00
Pierangelo Masarati	3861c47316	queue implicit binds (ITS#4409)	2006-03-03 16:27:00 +00:00
Kurt Zeilenga	cbc11c9233	unifdef -DLDAP_NULL_IS_NULL	2006-02-14 23:18:12 +00:00
Pierangelo Masarati	f4c578cb31	delete all conns cached for a single client->proxy connection (partially addresses ITS#4387)	2006-02-06 21:39:56 +00:00
Pierangelo Masarati	f0d6ac3e0b	debug cleanup	2006-02-04 15:50:22 +00:00
Pierangelo Masarati	54aefe30f7	implement proxy long-lived connection TTL	2006-02-01 23:10:12 +00:00
Pierangelo Masarati	7038044c91	in abnormal cases, error may be sent twice	2006-01-11 15:32:34 +00:00
Pierangelo Masarati	0dce854ce4	complete fix to back-ldap (ITS#4315?); not sure dobind should actually be treated as a bind...	2006-01-11 12:11:59 +00:00
Pierangelo Masarati	7368ffb77a	don't idassert anon2anon (ITS#4321)	2006-01-10 13:17:31 +00:00
Pierangelo Masarati	f3c2c7ba48	use slab memory for proxyauthz	2006-01-09 20:00:51 +00:00
Pierangelo Masarati	6995603a3d	refine fix to ITS#4315; apply it to back-meta as well	2006-01-09 14:20:37 +00:00
Howard Chu	8538223def	TS#4315 fix prev commit, spinning in ldap_back_dobind	2006-01-09 09:37:52 +00:00
Howard Chu	2b39a26150	ITS#4315 fix bind concurrency issue	2006-01-09 09:14:53 +00:00
Kurt Zeilenga	acbb5cf689	Happy new year!	2006-01-03 23:11:52 +00:00
Pierangelo Masarati	8c2ceeb605	don't idassert anonymous unless explicitly configured (ITS#4272)	2005-12-20 20:43:14 +00:00
Pierangelo Masarati	4538422dc9	better handling of internal operations	2005-12-15 13:47:25 +00:00
Pierangelo Masarati	430aff35bb	assume operations with version set to 0 are internal, and use LDAPv3	2005-12-15 11:39:46 +00:00
Pierangelo Masarati	fcda57e90f	use macros instead of numbers...	2005-12-13 20:11:26 +00:00
Pierangelo Masarati	1b42fde372	implement (per-target) per-conn proxy-side idle-timeout (ITS#4115); revitalize (per-target) network-timeout in back-meta; fix issue with connection initialization error in ldap_back_retry(); cleanup configuration of back-ldap	2005-12-07 17:35:02 +00:00
Pierangelo Masarati	2ea72234aa	return more appropriate error code	2005-12-06 20:04:52 +00:00
Pierangelo Masarati	4852bf8a58	don't care about empty matched/text #ifdef LDAP_NULL_IS_NULL	2005-11-20 01:59:26 +00:00
Pierangelo Masarati	7fa4b159bf	fix dangling resources issue in slapd-ldap; completely rework slapo-chain to fix the resource leak/concurrency issue; add support for multiple well-known URIs to set credentials for, and deal with unknown URIs anonymously; similar reworking and cleanup for slapd-meta	2005-11-19 15:00:50 +00:00
Pierangelo Masarati	78bd3bf6a3	handle LDAPv2 when returning timelimit; silence warning	2005-11-11 09:54:07 +00:00