upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-24 00:29:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
2530 commits 38 branches 309 tags 68 MiB
Commit graph

340 commits

Author SHA1 Message Date
Julio Sánchez Fernández
e892ebfc5e Some content for tls_verify_cb where parts of our policy should 
be implemented.

The rest of this change mostly contains random ideas taken from
mod_ssl.  The purpose is to get the repository in sync with the
code I am testing.  I still can't manage to make Netscape send
its certificate to slapd, though it works with Apache/mod_ssl
(with the same certificates).  Trying s_client against both
does not shed any light.  If anyone manages to make it work,
please let us know.
 1999-07-20 18:31:53 +00:00
Julio Sánchez Fernández
463a7ec91d We were freeing lud_dn when when lud_host was meant, leading to 
arena corruption.
 1999-07-20 11:11:57 +00:00
Kurt Zeilenga
543aafd991 Implement RFC2255 URL format. 1999-07-19 19:32:47 +00:00
Kurt Zeilenga
d2487f9219 s/time(0)/time(NULL)/ 1999-07-19 19:28:21 +00:00
Hallvard Furuseth
cde93a6e06 make ldap.ld_lberoptions unsigned, like berelement.ber_options 1999-07-18 01:20:45 +00:00
Hallvard Furuseth
5ab862aee7 Pass socklen_t* instead of int* to getsockopt, accept, getpeername, recvfrom 1999-07-16 18:43:10 +00:00
Julio Sánchez Fernández
85acec922f We were not remembering the allocated SSL thing in the Sockbuf. 
Set flags without relying on errno (this change may be gratuitous
or wrong).
 1999-07-16 15:46:15 +00:00
Julio Sánchez Fernández
7a64fcf7b3 Set ciphers from slapd.conf. 
More error checking and reporting.
Slowly getting there, SSL_accept succeeds now, but connection breaks
immediately after that (my glue logic with slapd is broken).
 1999-07-15 21:03:47 +00:00
Kurt Zeilenga
c7425738bb Add missing arg to Debug macro call 1999-07-15 20:00:05 +00:00
Julio Sánchez Fernández
41de66a0b2 New routine tls_report_error to analyze errors from OpenSSL 
Change temporarily the default protocol from TLSv1 to SSLv3 with
fallback to SSLv2.  This seems necessary for slapd to accept connections
from Netscape.
Try to set the cipher list in the default context.  Does not semm to
work yet.
 1999-07-15 14:59:09 +00:00
Kurt Zeilenga
cbb5553b03 Newer versions of OpenSSL install headers in $prefix/include/openssl... 1999-07-14 00:03:52 +00:00
Julio Sánchez Fernández
710f697fb7 Get and set TLS options 1999-07-13 19:34:07 +00:00
Julio Sánchez Fernández
70fe83b1d2 First version with TLS. Untested. 1999-07-13 19:32:51 +00:00
Julio Sánchez Fernández
43fba8fcb1 First version with TLS. Untested. 1999-07-13 19:30:41 +00:00
Julio Sánchez Fernández
97a681910e Options for TLS 1999-07-13 19:29:19 +00:00
Julio Sánchez Fernández
739466b85d Add tls.c 
Add use of TLS_LIBS so that test tools compile
 1999-07-13 19:27:33 +00:00
Julio Sánchez Fernández
8f4f94d415 First version of TLS glue for SSLeay/OpenSSL originally written by 
Bart Hartgers.  Untested.
 1999-07-13 19:11:53 +00:00
Hallvard Furuseth
2c27a6abcf Eliminate htonl(unsigned_long_arg), which is wrong on 64-bit OSF1/alpha 1999-07-13 09:41:25 +00:00
Hallvard Furuseth
5f880ae022 Fix LDAP_CONST->const in explode_name(), it failed when LDAP_CONST was empty. 1999-07-13 06:48:35 +00:00
Hallvard Furuseth
fb3b8e5ef1 Fix LDAP_CONNECTIONLESS code rot 1999-07-13 06:39:55 +00:00
Hallvard Furuseth
c4a13efbea Fix NULLxxx -> NULL 1999-07-13 06:37:19 +00:00
Hallvard Furuseth
6eef6bea01 ldap-int.h 1999-07-13 06:27:47 +00:00
Hallvard Furuseth
354702b94e ldap-int.h 1999-07-13 06:21:14 +00:00
Hallvard Furuseth
96e8fafb51 constify use of invalue in <ber/ldap>_set_option() 1999-07-13 05:17:50 +00:00
Hallvard Furuseth
2cc187ffbf constify ldap_int_put_controls, ldap_control_dup, ldap_controls_dup 1999-07-13 05:13:33 +00:00
Hallvard Furuseth
95b64907d3 Fix read_next_searchobj prototype: long*blenp -> ber_len_t*blenp 1999-07-13 05:04:06 +00:00
Hallvard Furuseth
55fa595f56 Add missing newline at EOF 1999-07-13 04:11:49 +00:00
Kurt Zeilenga
7574b70c6b Add charray (from slapd) to -lldap/-lldap_r (not yet used) 
Add digest md5 codes to -lldap/-lldap_r (work in progress)
 1999-07-07 17:58:21 +00:00
Kurt Zeilenga
4831bb0a75 request value should be optional. 1999-07-07 17:52:06 +00:00
Kurt Zeilenga
a67b08d515 Minor editorial change. 1999-07-07 17:51:39 +00:00
Kurt Zeilenga
522cd72f43 Fix CRITICIAL typo 1999-07-07 17:49:15 +00:00
Julio Sánchez Fernández
c8e37af0ca Removed numerous memory leaks detected by Mark Meredith. 
Make sure the token_val argument to get_token is always initialized
to something, either newly allocated memory or NULL.
 1999-07-02 11:57:07 +00:00
Kurt Zeilenga
ddd0559284 Fairly complete slapd SASL bind parsing... and centralized cleanup code. 
Update error strings and cldap misuse of server error.
 1999-07-01 04:42:01 +00:00
Kurt Zeilenga
f4ff5a9299 EXPERIMENTAL: Use sasl bind for simple bind. 
Add sasl.c to libldap_r.dsp.
 1999-06-28 23:24:16 +00:00
Kurt Zeilenga
64d5725662 Allow ctrls argument to be NULL. 1999-06-28 22:47:20 +00:00
Kurt Zeilenga
5045f15b23 EXPERIMENTAL ldap_parse_result() 1999-06-28 22:33:03 +00:00
Kurt Zeilenga
8482d2b488 Provide build support for sasl.c. 1999-06-28 22:30:56 +00:00
Kurt Zeilenga
1fd3c797a8 Validate outvalue after session param. 1999-06-28 22:22:27 +00:00
Kurt Zeilenga
37fceeb662 Minor cleanup of ldap_result(). 1999-06-28 22:20:04 +00:00
Kurt Zeilenga
80e5e3fead First cut at SASL routines. 1999-06-28 22:19:21 +00:00
Kurt Zeilenga
613bf0b077 Return LDAP_BAD_PARAM if res is not EXOP result. 
Skip over referrals that might exist in EXOP result.
 1999-06-28 22:17:38 +00:00
Kurt Zeilenga
24c39b31b6 Add LDAP_VALID and other asserts. 1999-06-21 22:38:00 +00:00
Julio Sánchez Fernández
fd15804f63 Tokenization is not really well done. This is a temporary fix for parsing 
answers from Innosoft servers, but expect better tokenization in the
future.
 1999-06-21 10:08:03 +00:00
Kurt Zeilenga
669b8f4047 ber_int_t, ber_tag_t, ber_socket_t, ber_len_t 
added lber_types.h.nt, lber_types.h.in
removal of NULLxxx internal macros (in favor of NULL).
ch_free added to slapd,slurpd/ch_malloc.c
#define free ch_free (should be removed after s/free/ch_free/g) in proto-slap.h
ch_malloc and friends use ber_memalloc and friends
 1999-06-18 23:53:05 +00:00
Kurt Zeilenga
bbc568b21f ldapconfig.h vs ldap_config.h changes 
backout previous nt changes (actually, just don't include nt_svc.c)
 1999-06-17 04:43:24 +00:00
Kurt Zeilenga
21e081dc5b Separate autoconf generated values from "defaults". 
ldap_defaults.h incorporates non-generated ldapconfig.h values.
	ldap_config.h.in is new template for autoconf generated defaults
		(namely directories and paths)
	ldap_config.h.nt, NT template (must be manually copied)
	s/<ldapconfig.h>/<ldap_defaults.h>/
	s/DIRSEP/LDAP_DIRSEP/ & s/DEFAULT_/LDAP_/
 1999-06-17 03:54:25 +00:00
Kurt Zeilenga
fdbb2b80bf Remove misplaced LDAP_P() in declaration of ldap_int_get_controls. 1999-06-16 17:11:14 +00:00
Julio Sánchez Fernández
64d018c357 Make sure print_numericoid always returns with a value. 
Remove some lint.
 1999-06-16 12:31:18 +00:00
Julio Sánchez Fernández
2abcbd5a4d Matching rules. 
Replace be_liberal by allow_quoted in low level parsers since that
reflects better its semantics.
Add allow_quoted to parse_numericoid.
 1999-06-14 13:40:52 +00:00
Julio Sánchez Fernández
3e6fe96a96 Constification. 1999-06-14 11:57:43 +00:00
Julio Sánchez Fernández
766a5832b1 Netscape DS quotes the SYNTAX values, we propagate the be_liberal 
setting to parse_noidlen so that it can grok that.
Propagate be_liberal parse_oids so that it only accepts a qdstring when
necessary (i.e. in SUP) to cater for another Netscapism.
 1999-06-14 11:31:42 +00:00
Julio Sánchez Fernández
8d2b71e6c1 ldap_*_free routines are new and replace the old static routines, all 
references changed.
Parsers are now more liberal in that they can accept missing OIDs or
OIDs that are in the wrong syntax.
 1999-06-13 23:34:41 +00:00
Kurt Zeilenga
cb68aab469 s/ldap_open/ldap_init/ calls... ldap_open is deprecated. 1999-06-13 21:49:35 +00:00
Kurt Zeilenga
2cb228a9ce Clean up build_result_ber error handling. 1999-06-11 18:48:34 +00:00
Kurt Zeilenga
fde9d8702e Fix build_result_ber to construct a new ber and to set ld_errno appropriately. 1999-06-10 18:00:04 +00:00
Julio Sánchez Fernández
92839e817f Fixed inconsistent management of white space that was producing parsing 
problems in slapd.
 1999-06-09 11:51:31 +00:00
Julio Sánchez Fernández
9291bf6f44 Added whitespace in output in a few places. 
Minor cosmetic changes.
Fixed parsing of noidlen.
 1999-06-08 17:40:27 +00:00
Kurt Zeilenga
f257ee858c Use LDAP_VERSION2 instead of LDAP_VERSION. 1999-06-07 18:45:52 +00:00
Kurt Zeilenga
8c772985c7 s/LDAP_OPT_MATCHED_STRING/LDAP_OPT_MATCHED_DN/ 
Added place holder for LDAP_FILTER_EXTENDED code.
Added assert() here and there and removed lint.
Removed version promotion code (version must be manually set).
Added messages.c to MSVC project.
 1999-06-05 20:18:32 +00:00
Kurt Zeilenga
48c8aa035d EXPERIMENTAL ldap_extended_operation() and ldap_parse_extended_result() 1999-06-04 00:34:04 +00:00
Kurt Zeilenga
a53823a613 Update comments to reflect RFC2251 specs. 1999-06-03 19:22:33 +00:00
Kurt Zeilenga
9fef42d3f8 Enable browsing info in MSVC debugging configurations. 
Toy with dllimport/dllexport stuff (think I'll leave the real dll work to
somebody else).
Added ldap_strdup() wrapper of ber_strdup().
 1999-06-03 18:24:22 +00:00
Kurt Zeilenga
21c70857f1 s/<stdlib.h>/<ac/stdlib.h>/ 1999-06-03 00:37:44 +00:00
Kurt Zeilenga
3046c0449e Fix up s/NULL.*/NULL/ errors 1999-06-02 23:21:06 +00:00
Kurt Zeilenga
1f52f6e43e Add ber_strdup(), remove ldap_int_strdup(), add LDAP_STRDUP macro 
and ripple change through -lldap.
 1999-06-02 22:28:22 +00:00
Kurt Zeilenga
bed6465529 Make first argument of *_get_option const (experimental). 
Make _MOD_SOFTADD 0x1000 to minimize chance of conflict with legit changes
to API spec.
Fix memory leak in ldap_mods_free() and minor memory allocator issues.
 1999-06-02 21:38:48 +00:00
Kurt Zeilenga
e44971436c Minor adjustments to the LBER_VFREE() & LDAP_VFREE macros. 1999-06-01 19:25:17 +00:00
Kurt Zeilenga
8e60c8e287 Clean up memory handlers. Share vector free routines... ber_memvfree(). 1999-06-01 19:08:27 +00:00
Kurt Zeilenga
716523f1ac Clean up namespace 1999-06-01 19:03:47 +00:00
Kurt Zeilenga
847c452c9d Add extended.c to projects 
remove bogus libldap_r/apitest.ds[pw] files.
 1999-06-01 02:07:05 +00:00
Kurt Zeilenga
f83e93af21 Share errcode lookup code. Modify ld_version conditions not to test absolutes. 
Add asserts and additional param checks.
 1999-06-01 02:06:12 +00:00
Kurt Zeilenga
c581055b54 Add skeleton ldap_extended_operation routines. 1999-05-31 21:19:07 +00:00
Kurt Zeilenga
37636eabd3 Clean up LDAP_BOOL_GET and fetching via ldap_get_option(). 
Modify apitest to test for non-zero instead of LDAP_OPT_ON.
 1999-05-31 17:30:22 +00:00
Julio Sánchez Fernández
2b69b706de Syntaxes. 
Accept X- experimental clauses.
 1999-05-31 12:04:06 +00:00
Julio Sánchez Fernández
f804c46da6 Cosmetic/spelling fixes. 1999-05-31 11:23:41 +00:00
Kurt Zeilenga
5176f4e356 Free strings returned by ldap_get_option(). 1999-05-31 05:34:49 +00:00
Kurt Zeilenga
d8032bcbaa Use #error if ctime_r nargs are screwy. 1999-05-31 05:34:13 +00:00
Kurt Zeilenga
2e5a52414a Initial round 2 memory allocation changes. THIS IS A WORK IN PROGRESS. 
includes single to multiple hooks changes.
ber_mem* reimplementation.
namespace glue (finally naming has not be decided upon nor implemented).
Added ldap_int_strdup to handle "internal" strdup'ing, this version uses hooks.
ldap_pvt_strdup still available for when strdup() is missing, this version
directly uses system allocators.
Updated -lldif to use ber allocators.  Items returned by ldif routines
should be ber_memfree()d as needed.
 1999-05-30 23:00:52 +00:00
Julio Sánchez Fernández
be051c3fb3 Relax some rules to survive Netscape DS brokennes, more to come. 
A few parse_whsp were missing.
Detect and survive null input.
 1999-05-30 00:01:53 +00:00
Kurt Zeilenga
87a8abe880 old_abandon should be int* not long*. 1999-05-29 03:32:33 +00:00
Kurt Zeilenga
4839e570fb safe_free_string() should be static 1999-05-29 01:45:55 +00:00
Julio Sánchez Fernández
e6f9faa94a Fixed parsing of noidlen 1999-05-29 01:32:37 +00:00
Kurt Zeilenga
1bcec8bf6a Add LBER_ and LDAP_ memory allocators/deallocators for internal 
library use:
  LBER_ macros expand to system routines.
  LDAP_ macros expand to new ber_ allocators.

Add ber_ and ldap_ memory allocators/deallocator:
  ber_ routines are wrappers of LBER_ macros.
  ldap_ routines are wrappers of ber_ routines.

Removed safe_realloc() macro from various files.  This issue
(if an issue) should be resolved across whole package.

ldapmodify.c now uses ber_ allocators to resolve ber_bvfree()
vs. WIN32 multiple heaps issue.

These changes should facilate implementation of
  ber_set_option( NULL, LBER_OPT_MEMORY_FN, ...)
and
  ldap_set_option( NULL, LDAP_OPT_MEMORY_FN, ...).
 1999-05-29 01:19:14 +00:00
Kurt Zeilenga
4e5ed2dffc Changed lc_conn to be a pointer to a BerElement to aid in state management. 
Added validation to exposed opaque data structures (BerElement, Sockbuf,
and LDAP).  Added macros BER_VALID, SOCKBUF_VALID, LDAP_VALID.
Added ber_pvt_ber_bytes() and ber_pvt_ber_remaining() macros to hide
some ber internals.  These really should be handled by ber_get_option().
 1999-05-28 19:33:05 +00:00
Julio Sánchez Fernández
06c5f96b49 safe_string_free was freeing the string value, so we have to save it. 1999-05-28 18:51:21 +00:00
Julio Sánchez Fernández
8c954245fd Add schema support 1999-05-28 14:26:25 +00:00
Howard Chu
d44ac9835a In try_read1msg, clear errno before calling ber_get_next, otherwise leftover 
values will obscure EOF condition on closed sockets.
 1999-05-28 05:19:18 +00:00
Kurt Zeilenga
6e0c7b95ab Death to LBER_END_SEQORSET. 1999-05-28 03:24:41 +00:00
Kurt Zeilenga
2b9a296eb4 Initial implementation of ldap_int_get_controls()... EXPERIMENTAL. 1999-05-28 02:15:57 +00:00
Kurt Zeilenga
c1501fd3a7 Use difftime() to determine cache age. 1999-05-27 22:48:14 +00:00
Kurt Zeilenga
f90277edc5 strlen returns size_t not int. 1999-05-27 22:33:12 +00:00
Kurt Zeilenga
8c793fa1c9 rename ldap_pvt_init_utils() to ldap_int_utils_init() and provide 
prototype in ldap-int.h.
 1999-05-27 22:25:55 +00:00
Julio Sánchez Fernández
d5509bbbe9 Incorporate #define's per Kurt's suggestion 1999-05-27 18:18:36 +00:00
Julio Sánchez Fernández
676558aa64 Provide human-readable syntax errors. 1999-05-26 19:21:55 +00:00
Julio Sánchez Fernández
fd488b3846 Fix namespace contamination, some comments added. 1999-05-26 13:52:11 +00:00
Howard Chu
967d1dcb2d For ITS#157: Added LDAP backend for slapd, which also required adding 
LDAP_OPT_MATCH_STRING to ldap.h and libldap/options.c.
 1999-05-26 02:35:20 +00:00
Julio Sánchez Fernández
06239ebd66 Untested support for parsing attribute type definitions 1999-05-24 12:44:48 +00:00
Julio Sánchez Fernández
b2b3581bc1 Initial incomplete and broken version. 1999-05-24 01:38:57 +00:00
Kurt Zeilenga
22d98c85c3 ldap.h: 
added comments
 removed LDAP_MAX_ATTR_LEN
 removed LDAP_COMPAT* from <ldap.h> but not code.
 move LDAP_DEFAULT_REFHOPCOUNT to ldap-int.h
 added experimental options macros
 added LDAP_CONTROL_REFERRALS macros
libldap:
 Replace ld_attrbuffer with per use allocated attributed.
 ldap_first/next_attribute attributes now must be freed (as per draft).
 unifdef -DLDAP_API_FEATURE_X_OPENLDAP_V2_REFERRALS
 1999-05-22 06:11:48 +00:00
Kurt Zeilenga
5654a0b231 fix url vs url_in typo. 1999-05-21 22:20:28 +00:00