upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-24 16:49:39 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
24222 commits 38 branches 309 tags 68 MiB
Commit graph

24222 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ondřej Kuzník
3cf5db1610 ITS#10080 Preserve original choice of backend for entry_release 2023-10-09 20:22:42 +00:00
Howard Chu
5c7b096b3c ITS#10105 liblber lutil_debug: ensure msg ends with NL 2023-10-02 18:53:23 +01:00
Ondřej Kuzník
38791abdc9 ITS#9959 Adjust tests 2023-09-27 14:44:52 +00:00
Ondřej Kuzník
b13132f2ce ITS#9959 Expose connection endpoints in cn=monitor 2023-09-27 14:44:52 +00:00
Ondřej Kuzník
923483ccea ITS#9959 Track actual connection local/peername 2023-09-27 14:44:52 +00:00
Ondřej Kuzník
100def6487 ITS#10084 Switch MECH default away from DIGEST-MD5 2023-09-26 17:16:29 +01:00
Ondřej Kuzník
9691d02268 ITS#10085 Disable the client SASL part of test029 
When identity assertion is not done (e.g. cn=People which is Bjorn's
direct backend) we need to store the client's password to bind as them
but that only works if they did a simple bind. Might be enabled again if
identity assertion rules change in the future.
 2023-09-26 17:15:55 +01:00
Florin Crișan
b7a22d380e ITS#10101 libldap: fix double sb_close when first TLS connection fails 2023-09-21 17:34:59 +01:00
hyc
a7bd0416c8 More windows cleanup for slapi 
Fix link dependencies.
Fix file locking in printmsg.c.
 2023-09-07 21:13:35 +01:00
Howard Chu
3489931553 Cleanup Windows build 
Fix make depend errors in slapi
 2023-09-07 20:03:07 +01:00
Ondřej Kuzník
de89b06b03 ITS#10074 Fix type mismatches in lloadd 2023-08-23 01:21:15 +00:00
Ondřej Kuzník
242d1e6d62 ITS#7226 Make olcAuditlogFile SINGLE-VALUE 2023-08-21 12:19:16 +01:00
Ondřej Kuzník
02975a3dc7 ITS#10091 Do not allow dynlist being configured as global 2023-08-15 13:07:46 +01:00
François Kooman
61e4832110 ITS#9827 update Argon2 defaults 
- switch to argon2id by default (from argon2i)
- use OWASP recommended parameters as defaults

This only affects builds that use libargon2, e.g. Debian, and
not builds that use libsodium as argon2id is already the
default there, and better parameters are used

References: https://bugs.openldap.org/show_bug.cgi?id=9827
Signed-off-by: François Kooman <fkooman@tuxed.net>
 2023-08-11 20:58:56 +00:00
Ondřej Kuzník
39403c9db2 ITS#10073 back-ldap: Make sure we have a suffix configured 2023-08-11 20:00:50 +00:00
Greg Burd
ba90df4dc3
convert Debug to use config args 2023-08-10 15:29:47 -04:00
Howard Chu
2086008a79
Use ConfigArgs in ACL parsing 
For better error propagation back to config clients, also
remove unconditional use of stderr.

parse_acl() was only partially converted, the rest remains to be done.
 2023-08-08 14:18:33 -04:00
Howard Chu
9142da8eaf
Use ConfigArgs in slapi config parsing 2023-08-08 14:18:21 -04:00
Greg Burd
7a4812d2fa
Allow caller to determine if the process should exit or not when the regex is found to be problematic. 2023-08-08 11:08:22 -04:00
Ondřej Kuzník
2738a32de3 ITS#10045 Make sure we only unpause when paused 2023-07-31 16:46:12 +00:00
Quanah Gibson-Mount
52ee3e23a4 ITS#10086 - Fix incorrect configurations in test 
Fix test to be valid
 2023-07-28 20:02:35 +00:00
Ondřej Kuzník
5677a410e6 ITS#10083 Do not mess with a connection that's dying already 2023-07-20 16:21:54 +00:00
Nadezhda Ivanova
6cbcfa0af3 ITS#10076 suffixmassage in back-asyncmeta does not handle empty remote suffix correctly 2023-07-19 16:41:29 +00:00
Ondřej Kuzník
4b7b2172d9 ITS#10060 Try harder to find a finished operation with msgid=LDAP_RES_ANY 2023-07-19 14:53:47 +00:00
Ondřej Kuzník
3676f3ad69 ITS#10060 Return tag of last message if all=LDAP_MSG_ALL 2023-07-19 14:53:47 +00:00
Ondřej Kuzník
208d68cdd9 ITS#10070 Allow running without a valid resolv.conf file 2023-07-19 14:53:20 +00:00
Quanah Gibson-Mount
58b203d699 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2023-07-10 16:22:45 +00:00
Quanah Gibson-Mount
ce201088de Update release date for LMDB 0.9.31 2023-07-10 16:09:21 +00:00
Quanah Gibson-Mount
051fb0bbfe Prep for release 2023-06-26 16:54:11 +00:00
Ondřej Kuzník
67d3fd3d14 ITS#10068 keep our own copy of the DN 2023-06-21 13:20:18 +01:00
Ondřej Kuzník
5ae48d085f ITS#10067 Account for mods being optional 2023-06-20 01:03:12 +00:00
Ondřej Kuzník
2414e4a96b ITS#9343 Adapt documentation to explain new behaviour 2023-06-13 10:10:21 +01:00
Ondřej Kuzník
7aaee92f0a ITS#9343 More policy selection criteria 2023-06-06 11:46:17 +01:00
Ondřej Kuzník
34470dd86b ITS#9343 Check for objectclasss when retrieving policy 2023-06-06 11:46:17 +01:00
Ondřej Kuzník
bdbba0748e ITS#10013 Fix slapo-ppolicy control handling 2023-06-06 11:46:17 +01:00
Ondřej Kuzník
f635f9e6d8 ITS#10064 Allow renaming of Cft_Misc entries 2023-06-06 11:46:17 +01:00
Quanah Gibson-Mount
d18cd6f8c6 ITS#10063 - regenerate configure 2023-06-02 15:34:20 +00:00
Quanah Gibson-Mount
55a485d12e ITS#10063 - Fix typo in configure variable 2023-06-02 13:56:59 +00:00
Howard Chu
337455eb3a ITS#9952 libldap: use atexit for TLS teardown 2023-05-31 16:04:15 +00:00
Quanah Gibson-Mount
a70f39e3aa ITS#10057 - homedir: Fix config attribute name 
Fix config attribute name for olcHomedirArchivePath
 2023-05-30 20:54:15 +00:00
Quanah Gibson-Mount
ffeb6f0de5 Merge remote-tracking branch 'origin/mdb.RE/0.9' 2023-05-25 19:38:28 +00:00
Quanah Gibson-Mount
887d3b3077 ITS#8447 2023-05-25 19:37:01 +00:00
Howard Chu
76bad923f7 ITS#8447 fix cursor_put(MDB_CURRENT) on DUPSORT DB with different-sized data 2023-05-25 19:33:44 +00:00
Ian Puleston
12d2382b53 ITS#10023 libldap: fix asynch connects 
This is option #1
 2023-05-25 16:56:00 +00:00
Ondřej Kuzník
1cfe66906a Fix hanging indent in slapo-ldap manpage 2023-05-25 16:36:18 +01:00
Ondřej Kuzník
04ca49552e Check slapadd result before continuing with test 2023-05-24 13:46:50 +01:00
Quanah Gibson-Mount
6b77544ab8 fix typo in lload.conf.5 cerificate -> certificate 2023-05-15 20:53:53 +00:00
Quanah Gibson-Mount
eee62b84a0 ITS#10014, ITS#10039, ITS#10053 - Regenerate configure 2023-05-15 20:12:24 +00:00
orbea
cb73e60a49 ITS#10039 Test for SSL_CTX_set_ciphersuites() 
When configuring OpenLDAP using --with-tls=openssl with LibreSSL the
configure will fail to detect SSL_export_keyring_material_early() since
LibreSSL doesn't support this function yet. However OpenLDAP doesn't
actually use this function and only checks for it to ensure a modern
OpenSSL API is used. This can be easily solved by checking for an
equivalent modern OpenSSL function which both LibreSSL and OpenSSL both
support such as SSL_CTX_set_ciphersuites(). Doing this allows the build
and tests to succeed with modern LibreSSL versions. This was tested with
LibreSSL >= 3.6.

Bug: https://bugs.openldap.org/show_bug.cgi?id=10039
 2023-05-15 19:17:51 +00:00
Howard Chu
ec3fafd1a6 ITS#10047 back-mdb: fix indexer resume on slapd restart 
when overlays are in use on the database
 2023-05-15 17:55:46 +00:00