upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-25 00:59:45 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
20275 commits 38 branches 309 tags 68 MiB
Commit graph

772 commits

Author SHA1 Message Date
Pierangelo Masarati
aa63f21e4f cleanup previous commit 2010-09-09 00:57:04 +00:00
Pierangelo Masarati
65b042b4fb if required by the bindconf configuration, force TLS (partially addresses ITS#6642) 2010-09-09 00:12:01 +00:00
Pierangelo Masarati
22e5e49f26 use request/referral DN, scope, filter according to RFC4511 (related to ITS#6565) 2010-07-22 19:17:20 +00:00
Ralf Haferkamp
c4f0c2cc2b unregister controls when removing syncprov, ppolicy, valsort, chain or 
sssvlv overlay
 2010-07-01 11:51:43 +00:00
Pierangelo Masarati
1242443553 don't risk leaving around client library error codes 2010-06-22 23:10:48 +00:00
Pierangelo Masarati
3a28608f0d allow successful binds to return control responses (ITS#6530) 2010-04-22 18:18:15 +00:00
Pierangelo Masarati
467a1da79f add support for don't use copy in SASL auxprops lookup/store (ITS#6475; TODO: document new directives) 2010-04-15 18:13:53 +00:00
Pierangelo Masarati
9d2e03f052 allow to specify a per-database list of attributes that need to be always collected, even if not explicitly requested by clients (addresses ITS#6513) 2010-04-15 05:26:21 +00:00
Pierangelo Masarati
bbe7272c7f allow strict adherence to RFC4370 wrt/ control criticality (ITS#6523) 2010-04-14 21:37:03 +00:00
Kurt Zeilenga
3dadeb3efe happy belated New Year 2010-04-13 22:17:29 +00:00
Pierangelo Masarati
9702081201 handle ordered values as appropriate (ITS#6516) 2010-04-12 18:01:37 +00:00
Pierangelo Masarati
f57a216f1c use slab allocation 2010-04-12 07:44:56 +00:00
Pierangelo Masarati
32048a5128 fix previous commit 2010-04-12 02:28:40 +00:00
Pierangelo Masarati
2355fb516a backout unintended commit commit 2010-04-12 00:08:11 +00:00
Pierangelo Masarati
0dc3a13c01 fix previous commit 2010-04-12 00:06:45 +00:00
Pierangelo Masarati
f75825881a honor X-ORDERED in olcDbIdAssertAuthzFrom; add olcDbIdAssertPassthru (ITS#6456); note: breaks binary compatibility with module back-meta.la 2010-04-09 22:47:55 +00:00
Howard Chu
32feda4478 Add pbind proxybind overlay. Just intercepts Bind requests on a regular DB 
and proxies them to a remote server.
 2010-02-04 01:59:58 +00:00
Howard Chu
66a58ae93a ConnTTL, NetworkTimeout, and ProtocolVersion were missing from the 
config OC, thus inaccessible from cn=config
 2010-02-04 01:02:51 +00:00
Pierangelo Masarati
2047a0d784 plug one-time leaks 2009-12-18 19:07:16 +00:00
Pierangelo Masarati
48b8970dad issue a useful error message 2009-12-08 19:49:15 +00:00
Pierangelo Masarati
5118f06b13 plug leak/logical error (ITS#6326) 2009-10-07 22:46:35 +00:00
Pierangelo Masarati
1815ad4cb6 register authz cookie (ITS#6296) 2009-09-17 21:16:04 +00:00
Pierangelo Masarati
393612b8e1 by now, make sure no timeout is used (ITS#6282) 2009-09-08 07:56:43 +00:00
Howard Chu
fffb1fab4e Include "lutil.h" - fixes warnings in RE24 2009-09-01 00:35:22 +00:00
Pierangelo Masarati
20359f2020 fix previous commit (ITS#6267) 2009-08-24 00:41:12 +00:00
Hallvard Furuseth
c0e0a64799 Silence warning (missing braces ininitializer) 2009-08-19 18:58:28 +00:00
Pierangelo Masarati
69878f43c8 refactor connection handling 2009-08-19 16:45:15 +00:00
Pierangelo Masarati
bdec7702d7 better logging of privileged connections (more to come; might be unstable for a bit) 2009-08-19 15:00:59 +00:00
Pierangelo Masarati
148cc2f2fc silence warnings 2009-08-19 13:20:11 +00:00
Pierangelo Masarati
c39815ee28 don't deadlock when a TLS uri is not responding (ITS#6167) 2009-06-11 06:51:01 +00:00
Howard Chu
6f8323590e More explicit for prev commit 2009-03-06 04:00:38 +00:00
Howard Chu
4fc4cb7995 ITS#6003, #5916 fix ldap_back_entry_get_rw, no deref here 2009-03-06 03:57:35 +00:00
Howard Chu
1f5937f993 More for prev 2009-02-27 06:57:09 +00:00
Howard Chu
bfdb727446 Fix potential double-free of filter on abandon 2009-02-27 06:39:43 +00:00
Howard Chu
e6eff03373 ITS#5977 fix typo 2009-02-27 01:58:09 +00:00
Pierangelo Masarati
7fe91339df fix ITS#5959 fix 2009-02-27 01:45:20 +00:00
Howard Chu
7549abb063 Better fix for prev 2009-02-27 01:31:31 +00:00
Howard Chu
6345812f49 More for prev commit 2009-02-27 01:28:22 +00:00
Howard Chu
62eeafa1d9 ITS#5977 strip duplicates out of sorted attrs 2009-02-27 01:11:33 +00:00
Howard Chu
2024d5af85 ITS#5959 drop illegal values, only drop attr if it's left empty 2009-02-20 02:02:17 +00:00
Pierangelo Masarati
a5924e3092 more on ITS#5931: handle intermediate responses and support syncrepl also in back-ldap 2009-02-10 14:27:28 +00:00
Pierangelo Masarati
911b5fd42e do not assert when receiving intermediate response (partial fix to ITS#5931) 2009-02-09 14:55:56 +00:00
Pierangelo Masarati
bdb121c967 discard attribute values if attribute name cannot be parsed (ITS#5927) 2009-02-07 15:09:18 +00:00
Howard Chu
2b08e96b53 ITS#5916 - externally callable functions are ldap_pvt, not ldap_int. 2009-02-02 21:14:34 +00:00
Pierangelo Masarati
0ded1f16d5 Allow alias dereferencing in search C API; use new API in proxy backends (ITS#5916) 2009-01-31 10:27:07 +00:00
Pierangelo Masarati
4572e7d721 proxy RFC4525 increment; bail out in case of unsupported extension (ITS#5912) 2009-01-29 20:30:19 +00:00
Kurt Zeilenga
4af9eb9715 Update copyright notices 2009-01-22 00:40:04 +00:00
Pierangelo Masarati
fb9128cdc8 check validity of idassert-bind line (ITS#5863) 2008-12-20 22:34:00 +00:00
Pierangelo Masarati
5a50733e39 don't send error when going to retry (alternative fix to ITS#5854) 2008-12-12 09:29:51 +00:00
Pierangelo Masarati
2f32c29e4a don't bailout in case of insufficientAccess (ITS#5816) 2008-11-18 01:29:34 +00:00
Hallvard Furuseth
7cd654253e ITS#4467: Fix snprintf buffer overflow test for olcDbQuarantine output. 
Overrides previous patch which partly fixed it: it was a no-op test before.
 2008-10-18 23:49:28 +00:00
Hallvard Furuseth
670ec4f938 Warning cleanup: signed meets unsigned. 2008-10-17 18:05:00 +00:00
Hallvard Furuseth
05bbe7833b Fix typo in assertion: j1 + j1 -> j1 + j2. (Not a crasher, just wrong test.) 
Warning cleanup: signed meets unsigned.
 2008-10-17 18:02:09 +00:00
Pierangelo Masarati
23f78d1bba leave rs struct untouched (ITS#5742) 2008-10-17 00:06:12 +00:00
Pierangelo Masarati
1421d522ad fix overlays with private instances of databases (ITS#5736) 2008-10-12 20:20:46 +00:00
Pierangelo Masarati
dc414747a7 silence warnings 2008-09-16 14:44:24 +00:00
Pierangelo Masarati
969a0aef0e canonicalize undef objectClass names (much like attributes; ITS#5681) 2008-09-04 08:05:17 +00:00
Pierangelo Masarati
adc358f664 free filter before overlays' cleanup callback 2008-07-15 12:31:08 +00:00
Pierangelo Masarati
d0dd945882 fix potential leak in previous commit 2008-07-15 08:54:41 +00:00
Pierangelo Masarati
5c53e3ad72 improve previous commit (ITS#5614) 2008-07-14 22:44:01 +00:00
Pierangelo Masarati
30ffa33d7e do not propagate undefined or otherwise broken search filters (ITS#5614) 2008-07-14 22:14:49 +00:00
Pierangelo Masarati
c6f12694fc allow proxies to filter out search references (ITS#5593) 2008-07-07 21:25:59 +00:00
Howard Chu
010295e9e7 More symbols for ITS#5355 2008-06-29 21:13:03 +00:00
Pierangelo Masarati
20e8da9ba7 lookup entries as LDAP_REQ_SEARCH (ITS#5513) 2008-05-17 11:36:44 +00:00
Pierangelo Masarati
14c425b922 s/leave/func_leave/ (ITS#5411) 2008-03-15 18:16:21 +00:00
Pierangelo Masarati
ec8466ec83 invalidate connection handler when ldap_sasl_interactive_bind_s() for internal error (ITS#5404); fix response tag 2008-03-08 15:41:17 +00:00
Pierangelo Masarati
b23e4f15a9 make sure orr_newrdn is passed correctly to libldap (ITS#5397) 2008-02-28 16:22:23 +00:00
Hallvard Furuseth
5b526d2544 ITS#5328 - cosmetic cleanup (0 -> LDAP_SUCCESS) 2008-02-11 21:07:25 +00:00
Howard Chu
f481ffef9c ITS#5355 use bi_extra instead of calling directly into back-ldap 2008-02-08 02:01:17 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
c2bbd6d5e7 fix typing warnings 2007-10-05 10:06:20 +00:00
Howard Chu
c428a16332 coverity - init i 2007-09-26 20:21:53 +00:00
Howard Chu
ebb9e029a7 Make slap_passwd_parse non-destructive 2007-09-23 04:40:51 +00:00
Howard Chu
a3547e2758 More for a_numvals 2007-09-23 04:40:16 +00:00
Howard Chu
c4dbe1a274 Attribute/Modification value counters 2007-09-21 08:43:56 +00:00
Pierangelo Masarati
43c00ab486 fix previous commit 2007-09-15 18:03:55 +00:00
Pierangelo Masarati
eb51129e29 alloc temporaries on slab 2007-09-15 17:33:59 +00:00
Pierangelo Masarati
d1c4d6481f further fix ITS#5138 (please review) 2007-09-15 17:30:07 +00:00
Pierangelo Masarati
5569180736 draft-wahl-ldap-session: append further instances of the control 2007-09-15 17:26:09 +00:00
Howard Chu
5cd816f4eb ITS#5138 don't scan past the sequence of attributes 2007-09-15 03:08:32 +00:00
Pierangelo Masarati
9c5c20b1b9 fix potential double-free (valgrind; ITS#5137) 2007-09-14 23:58:00 +00:00
Pierangelo Masarati
6d38af2689 improve error message 2007-09-13 17:54:49 +00:00
Pierangelo Masarati
331fef5e78 idassert also in case of SASL mechs that do not set authcId 2007-09-09 21:52:10 +00:00
Pierangelo Masarati
f834cdb2f7 fix proxyAuthz oid setup 2007-09-09 21:48:17 +00:00
Pierangelo Masarati
b95e40f56f cleanup 2007-08-26 15:38:20 +00:00
Pierangelo Masarati
9a00bbb35f add support for session tracking (draft-wahl-ldap-sessio) to proxy backends requests 2007-08-22 15:49:35 +00:00
Pierangelo Masarati
99c92b74c9 handle response controls in exops 2007-08-22 12:07:27 +00:00
Pierangelo Masarati
145e6fc1f8 fix or comment Calysto findings 2007-08-21 10:52:16 +00:00
Pierangelo Masarati
2f5bfba296 let req_modify_s and req_modrdn_s have a common portion to interoperate within slap_mods_opattrs() (ITS#5093) 2007-08-16 09:48:53 +00:00
Pierangelo Masarati
27428ac00e uniformly exploit rootdn bind; add support for rootdn bind to backends that didn't have it (ITS#4962) 2007-08-16 09:38:15 +00:00
Pierangelo Masarati
d8636d8e60 fix previous commit: op is not a bind if error 2007-08-11 09:30:52 +00:00
Ralf Haferkamp
3a9310431e Reworked recent backend API changes, now using a separate struct, 
(ConfigReply) for the error messages.
 2007-08-03 12:02:07 +00:00
Ralf Haferkamp
5ae46c195e Added a new parameter (ConfigArgs*) to the _db_init, _db_open, _db_close and 
_db_destroy functions.
 2007-07-25 17:21:05 +00:00
Howard Chu
3b837d4fca More for ITS#5050 2007-07-23 00:33:21 +00:00
Howard Chu
da9f66ede7 ITS#5050 use correct (Bind) timeout in dobind_int 2007-07-22 17:48:04 +00:00
Pierangelo Masarati
0122f25853 fix minor error message 2007-07-14 16:17:20 +00:00
Howard Chu
d6ef5f3a0d ITS#5025 clear sr_entry before sending search reference 2007-06-19 20:04:36 +00:00
Pierangelo Masarati
43367e162e re-parse ID from passmod request, if necessary (ultimately fixes ITS#4964, along with fix to ITS#4973) 2007-05-19 14:08:49 +00:00
Pierangelo Masarati
c30ae47206 check for NULL dn in URL; set error code before seding extended response (partially addresses ITS#4968) 2007-05-15 22:29:06 +00:00
Hallvard Furuseth
e4a87ee27c Fix char* = const char* (text = sr->sr_text) 2007-04-04 17:48:25 +00:00