upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-28 18:49:34 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
24473 commits 38 branches 309 tags 68 MiB
Commit graph

797 commits

Author SHA1 Message Date
Ondřej Kuzník
6327f45d7d ITS#9725 Update lastbind manpage to document core functionality 2021-11-11 17:12:45 +00:00
Ondřej Kuzník
7a4b42600b ITS#9725 Use backend's timestamp precision 2021-11-11 17:12:45 +00:00
Quanah Gibson-Mount
a7f2b55874 ITS#9644 - Fix ppm module man page name and installation target 2021-09-15 01:06:13 +00:00
Ondřej Kuzník
fd5b6a170e ITS#9656 Check we got configuration from policy 2021-09-04 21:19:39 +00:00
David Coutadeur
a428afe1b5 ITS#9644 - Add man page for ppm 2021-08-26 21:14:41 +00:00
Quanah Gibson-Mount
c6b43dcdc5 ITS#9635 - Delete back-ndb 2021-08-17 16:01:29 +00:00
Ondřej Kuzník
1cf39a8568 ITS#5344 Record and maintain new DN on ModRDN ops 2021-08-06 15:30:47 +01:00
Howard Chu
e700dc03ee ITS#9615 move CheckModule from policy to overlay config 
And fix errmsg FIXME
 2021-08-03 16:31:49 +00:00
Quanah Gibson-Mount
0a31f0d31a ITS#9485 - Regenerate configure for contrib ldapc++ 
using autoconf
 2021-07-29 18:24:01 +00:00
Quanah Gibson-Mount
8434638157 ITS#9485 - Regenerate autogenerated files for contrib ldapc++ 
using autoreconf -f -i
 2021-07-29 18:23:25 +00:00
Quanah Gibson-Mount
ef174831b8 ITS#9485 - Update contrib ldapc++ for autoconf-2.71 2021-07-29 18:22:52 +00:00
Quanah Gibson-Mount
92a8025f29 ITS#6244 - Add "now" dynacl module 2021-07-22 17:12:58 +00:00
Quanah Gibson-Mount
d73ce9b3ce ITS#7832 - Fix sysconfdir setting having prefix twice 2021-07-19 17:36:05 +00:00
Ondřej Kuzník
681799da65 ITS#9472 Fix cn=config memory leaks in slapo-datamorph 2021-06-21 16:36:06 +00:00
Ondřej Kuzník
006ca73d83 ITS#9473 Fix cn=config memory leaks in slapo-variant 2021-06-21 16:36:06 +00:00
Ondřej Kuzník
5dddb72503 ITS#7215 Update datamorph/variant to drop workaround 2021-06-21 16:36:06 +00:00
Quanah Gibson-Mount
7eaad9d812 ITS#7832 - Correctly configure sysconfdir so that etcdir can be overridden. 2021-06-16 17:51:12 +00:00
Quanah Gibson-Mount
4005c53d89 ITS#9554 -- Regenerate configure 2021-05-20 16:13:14 +00:00
Quanah Gibson-Mount
3be30b194f ITS#9554 - Rename configure.in to configure.ac 2021-05-20 16:13:14 +00:00
Quanah Gibson-Mount
45fd7f5b71 ITS#9527 - Fix typo ocDatabase to olcDatabase 2021-04-19 18:07:05 +00:00
Quanah Gibson-Mount
c62d48ed11 ITS#9525 - Rework contrib module builds 
Adjust to honor CFLAGS and LDFLAGS
Drop -Wall from the OPTimization flag
 2021-04-19 16:57:10 +00:00
Howard Chu
d6d93463b9 ITS#9494 autogroup: fix db_open trashing thread context 2021-04-14 16:36:16 +01:00
Ondřej Kuzník
0886121233 ITS#8770 Fix dsaschema memory leaks 
Stopping short of a full rewrite which would be needed to get rid of
static variables, etc.
 2021-04-09 21:02:08 +00:00
Ondřej Kuzník
aba73bdb89 ITS#8770 Update dsaschema for current slapd 2021-04-09 21:02:08 +00:00
Ondřej Kuzník
12a81e78de ITS#9337 Actually use the local Operation 2021-04-06 14:12:28 +01:00
Quanah Gibson-Mount
136eedda8f ITS#7832 - Fix Makefile so that it installs into DESTDIR 
Tweak CRACKLIB linking so that it doesn't depend on gmake
 2021-04-02 19:00:56 +00:00
Quanah Gibson-Mount
9bb87c58ff ITS#9471 - Install slapo-rbac(5) man page 2021-04-01 22:23:41 +00:00
Quanah Gibson-Mount
8d9a99b29f ITS#9515 - Fix .lo file generation during build process 2021-04-01 17:22:45 +00:00
Ondřej Kuzník
ded462bc66 ITS#9515 Apply ITS#9001 changes to datamorph 2021-04-01 10:45:26 +01:00
Howard Chu
94fbd96826 ITS#9513 Change all lutil time structs to use nanoseconds 
Instead of microseconds
 2021-03-31 18:53:50 +00:00
Ondřej Kuzník
e36d1e31c5 ITS#9001 manual changes 2021-03-30 15:46:40 +01:00
Quanah Gibson-Mount
3c62c94b32 ITS#9473 - Fix typo 2021-03-26 19:43:08 +00:00
Ondřej Kuzník
fc4f8b2527 ITS#9473 Add variant overlay 2021-03-26 18:05:30 +00:00
Quanah Gibson-Mount
588fcf2b04 ITS#9472 - Fix typos 2021-03-26 18:05:11 +00:00
Quanah Gibson-Mount
3e6aaeeaf9 ITS##7832 Fix typos 2021-03-26 17:53:54 +00:00
Ondřej Kuzník
c809208d02 ITS#9472 Add datamorph overlay 2021-03-26 16:36:26 +00:00
David Coutadeur
c81bb20711 clean and homogenize ppm files for integration into contrib (issue #7832 !252) 2021-03-26 15:01:36 +00:00
David Coutadeur
f3975b3f90 Proposing ppolicy extended module for OpenLDAP (issue #7832) 2021-03-26 15:01:36 +00:00
Quanah Gibson-Mount
d28a933b70 ITS#9471 - Fix typos in previous commit 2021-03-18 21:06:58 +00:00
Ondřej Kuzník
d594ffe902 ITS#9471 Add RBAC overlay to contrib 2021-03-18 19:36:39 +00:00
Quanah Gibson-Mount
c7763538de ITS#9453 - Make pw argon2 official 2021-03-10 23:21:08 +00:00
Ryan Tandy
455dd54b0b ITS#9484 Include portable.h in contrib passwd modules 2021-03-02 20:51:09 +00:00
Howard Chu
b57d317fd9 ITS#9478 fix breakage from ITS#9348 2021-02-24 20:09:58 +00:00
Quanah Gibson-Mount
a48d8b4813 ITS#9161 - A few more typo fixes 2021-02-18 20:25:35 +00:00
Quanah Gibson-Mount
ce2c5173bd ITS#9161 - Fix various typos 
Fix a number of different typos across the code base
 2021-02-17 18:42:46 +00:00
Quanah Gibson-Mount
11e5ba23d5 ITS#7790 - Fix contrib modules for new header name 2021-02-09 17:39:37 +00:00
Quanah Gibson-Mount
efaf9a4a17 Happy New Year! 2021-01-11 19:25:53 +00:00
Ondřej Kuzník
67d005ee65 ITS#9348 Stop using plain strerror() 2020-09-25 12:47:46 +01:00
Quanah Gibson-Mount
f876eac3d2 ITS#9311 - Contrib modules to be singular 2020-08-21 19:34:27 +00:00
Quanah Gibson-Mount
1b3fcd4e75 ITS#9308 - ensure "i" is initialized 2020-08-05 23:06:49 +00:00
Quanah Gibson-Mount
21eef84a49 ITS#9275 -- Update wording to remove slave and master terms, consolidate on provider/consumer 2020-07-18 16:27:04 +00:00
Quanah Gibson-Mount
c06ac436e2 ITS#9235 Merge libldap_r into libldap 2020-07-03 17:23:14 -07:00
Quanah Gibson-Mount
58c978825c Issue#9020 - Use consistent namespaces for overlays 2020-06-22 20:44:12 +00:00
Quanah Gibson-Mount
2286e2edbc Issue#9248 - Fix default prefix value 2020-05-31 22:32:53 +00:00
Ryan Tandy
feb6f21d2e ITS#9203 Remove default values from slapd-pw-argon2.5 
The defaults vary by crypto library and possibly even version, so it's
not worth trying to keep them accurate.
 2020-04-14 09:26:19 -07:00
Ryan Tandy
0ec42b08b4 ITS#9206 Use argon2id default values explicitly 2020-04-14 09:26:19 -07:00
Ryan Tandy
307b06ff40 ITS#9206 Convert libsodium default memlimit to KiB 2020-04-14 09:26:19 -07:00
Ryan Tandy
6485667711 ITS#9206 Initialize libsodium before calling its functions 2020-04-14 09:26:19 -07:00
Peter Marschall
40ce9a46c9 ITS#9206 contrib/passwd/argon2: consolidate libsodium implementation 
* use 'crypto_pwhash_str_alg(..., crypto_pwhash_ALG_ARGON2ID13)' to set
  the algorithm to Argon2.
  According to libsodium's documentation, the original 'crypto_pwhash_str()'
  only guarantees a "memory-hard, CPU-intensive hash function", but not
  necessarily Argon2.  Although in released versions of libsodium Argon2 is
  the only implemented backend, this may chane in the future.
* multiply the 'memory' parameter by 1024 to align it with the libargon2
  implementation. The objective is to have consistent configuration in
  OpenLDAP's pw-argon2 module no matter what backend implementation is used.

Signed-off-by: Peter Marschall <peter@adpm.de>
 2020-04-14 09:26:19 -07:00
Ryan Tandy
2be4576a0c ITS#9203 slapd-argon2 -> pw-argon2 
Based on initial patch by Peter Marschall.
 2020-04-14 09:26:19 -07:00
Peter Marschall
5c20342baa ITS#9203 contrib/passwd/argon2: add manual page 
Add manual page slapd-pw-argon2.5 and make sure it gets installed.

Signed-off-by: Peter Marschall <peter@adpm.de>
 2020-04-14 09:26:19 -07:00
Quanah Gibson-Mount
1a55a5c61b ITS#9177 - Finish updating migration to latest autoconf and related build tools 2020-04-10 17:44:56 +00:00
Peter Marschall
52fad51dcc ITS#8628 - contrib/passwd/pbkdf2: new Makefile variables SSL_LIB & SSL_INC 2020-04-01 22:29:10 +00:00
Ryan Tandy
d86caacaa1 ITS#8837 Fix pw-pbkdf2 manpage name to get it installed 2020-03-29 10:00:45 -07:00
Ryan Tandy
d34d2c3945 ITS#8639 Delete LM hash support from smbk5pwd 2020-03-07 16:55:35 +00:00
Ondřej Kuzník
28828e1b40 ITS#9160 OOM handling in contrib 2020-02-07 09:46:52 +00:00
Ondřej Kuzník
af5ed7c6e2 ITS#8575 Accept parameters for hashing new passwords 2020-02-07 09:46:23 +00:00
Ondřej Kuzník
8bb8905b64 ITS#8575 Add a libsodium based implementation 2020-02-07 09:46:23 +00:00
Simon Levermann
7e3822f3bb ITS#8575 Implement argon2 password hashing as a module 
This change implements argon2, which won the Password Hashing
Competition (https://password-hashing.net/) as a contrib-module in order
to provide a modern password hashing alternative in openldap. The
currently available password hashing algorithms are relatively old, and
modern hardware, especially GPUs can compute quite a few (ranging from
tens of thousands to millions) of hashes per second. Argon2 was designed
to withstand such attacks.

This implementation uses the default work factors used in the argon2
command line client, but the resulting hashes are stored in a way that
would allow retroactive changes to these values, or even exposing them
as configuration in the module.
 2020-02-07 09:46:23 +00:00
Quanah Gibson-Mount
d2c9ef8cc4 ITS#7855 - Update config.guess and config.sub for ldapc++ contrib module 
Update config.guess and config.sub from official upstream project at https://savannah.gnu.org/projects/config/

    Specifically in this case, commit 5256817ace8493502ec88501a19e4051c2e220b0 for the date Wed Jan 1 19:36:58 2020 +1100
 2020-02-03 19:12:36 +00:00
Quanah Gibson-Mount
f6ad222e41 Happy New Year! 2020-01-09 16:50:21 +00:00
Greg Veldman
3be82f40d5 ITS#9055 Introduce a combined password scheme 2019-10-03 08:41:31 +01:00
Greg Veldman
711a96064e ITS#9055 Accept previous token 2019-10-03 08:37:03 +01:00
Quanah Gibson-Mount
1d0a96e78a Revert "ITS#9008 Do the same for contrib Makefiles" 
This reverts commit 3fa7d3c805.
 2019-05-17 17:03:02 +00:00
Quanah Gibson-Mount
ec2cb12e68 ITS#9010 - Delete back-bdb/back-hdb 
This commits deletes all references and code for back-bdb and back-hdb.
There is some follow up work still necessary to flush out the admin
guide for back-mdb.
 2019-05-13 17:20:28 +00:00
Ondřej Kuzník
3fa7d3c805 ITS#9008 Do the same for contrib Makefiles 2019-04-24 14:59:51 +01:00
Ondřej Kuzník
251ce83d60 ITS#8731 NSSOV is not processable by coccinelle 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
97a310b312 ITS#8731 Apply doc/devel/variadic_debug/04-variadic.cocci 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
e1e643ea41 ITS#8731 Manual adjustments 2019-02-15 16:51:53 +00:00
Ondřej Kuzník
129dcfbd86 ITS#8731 General Debug() related fixes 2019-02-15 16:51:53 +00:00
Quanah Gibson-Mount
b45a6a7dc7 Happy New Year! 2019-01-14 18:46:16 +00:00
Quanah Gibson-Mount
3add82a3bb ITS#8286 -- Add matching rules for attributes 
Add matching rules for all cases where it was missing.  Cleanup
incorrect types for a few attributes as well.  Fix network-timeout
handling in back-ldap/meta/asyncmeta.
 2018-12-18 19:14:06 +00:00
Ondřej Kuzník
d40a832db0 ITS#8878 Include the first character in the transformation 2018-11-08 11:14:47 +00:00
Quanah Gibson-Mount
59e9ff6243 Happy New Year 2018-03-22 15:35:24 +00:00
Josh Soref
10566c8be3 ITS#8605 - spelling fixes 
* javascript
* kernel
* ldap
* length
* macros
* maintained
* manager
* matching
* maximum
* mechanism
* memory
* method
* mimic
* minimum
* modifiable
* modifiers
* modifying
* multiple
* necessary
* normalized
* objectclass
* occurrence
* occurring
* offered
* operation
* original
* overridden
* parameter
* permanent
* preemptively
* printable
* protocol
* provider
* really
* redistribution
* referenced
* refresh
* regardless
* registered
* request
* reserved
* resource
* response
* sanity
* separated
* setconcurrency
* should
* specially
* specifies
* structure
* structures
* subordinates
* substitution
* succeed
* successful
* successfully
* sudoers
* sufficient
* superiors
* supported
* synchronization
* terminated
* they're
* through
* traffic
* transparent
* unsigned
* unsupported
* version
* absence
* achieves
* adamson
* additional
* address
* against
* appropriate
* architecture
* associated
* async
* attribute
* authentication
* authorized
* auxiliary
* available
* begin
* beginning
* buffered
* canonical
* certificate
* charray
* check
* class
* compatibility
* compilation
* component
* configurable
* configuration
* configure
* conjunction
* constraints
* constructor
* contained
* containing
* continued
* control
* convenience
* correspond
* credentials
* cyrillic
* database
* definitions
* deloldrdn
* dereferencing
* destroy
* distinguish
* documentation
* emmanuel
* enabled
* entry
* enumerated
* everything
* exhaustive
* existence
* existing
* explicitly
* extract
* fallthru
* fashion
* february
* finally
* function
* generically
* groupname
* happened
* implementation
* including
* initialization
* initializes
* insensitive
* instantiated
* instantiation
* integral
* internal
* iterate
 2017-10-11 14:39:38 -07:00
ck@test-centos64.cksoft.de
44e9bda0e4 ITS#7721 - Allow authTimestamp updates to be forwarded via updateref 2017-10-11 14:31:38 -07:00
Quanah Gibson-Mount
a795d7cc0b ITS#8583 - Fix C++ LDAP Control structure 2017-10-06 10:45:21 -07:00
SATOH Fumiyasu
2c36a37f90 ITS#8709 contrib/slapd-modules/passwd/totp: OpenSSL 1.1.0 compatibility 2017-09-06 21:29:24 +01:00
Quanah Gibson-Mount
0f101f0fce ITS#8205 - Pick up changes that were ignored in the last commit 2017-04-25 11:48:32 -07:00
Quanah Gibson-Mount
92eabee52e ITS#8205 - Fix typos, use man page from Howard for TOTP 2017-04-25 11:38:57 -07:00
Peter Marschall
46da831b6d ITS#8205 - contrib/smbk5pwd: add man page, install it too 
Add a manual page slapo-smbk5pwd.5 and update smbk5pwd's Makefile to
install the new manual page.

ITS#8205 - contrib/lastbind: install man page

Update lastbind's Makefile to install the manual page too.

ITS#8205 - contrib/passwd/sha2: add man page, install it too

Add a manual page slapd-pw-sha2.5 and update passwd/sha2's Makefile to
install the new manual page.

ITS#8205 - contrib/adremap: install man page

Update adremap's Makefile to install the manual page too.

ITS#8205 - contrib/allop: install man page

Update allop's Makefile to install the manual page too.

ITS#8205 - contrib/cloak: install man page

Update cloak's Makefile to install the manual page too.

ITS#8205 - contrib/lastmod: install man page

Update lastmod's Makefile to install the manual page too.

ITS#8205 - contrib/nops: install man page

Update nops's Makefile to install the manual page too.

ITS#8205 - contrib/nssov: install man page

Update nssov's Makefile to install the manual page too.

ITS#8205 - contrib/passwd: add man page slapd-pw-sha2.5, install it too

Add a manual page slapd-pw-radius.5 and update passwd's Makefile to
install the new manual page.

ITS#8205 - contrib/passwd/totp: add man page, install it too

Add a manual page slapo-totp.5 and update passwd/totp's Makefile to
install the new manual page.

ITS#8205 - contrib/passwd/pbkdf2: add man page, install it too

Add a manual page slapd-pw-pbkdf2.5 and update passwd/pbkdf2's Makefile to
install the new manual page.
 2017-04-25 11:38:44 -07:00
Ondřej Kuzník
af78f2ef64 ITS#8632 request the correct type 2017-04-10 14:26:56 +01:00
Ondřej Kuzník
59fbc28dbc ITS#8513 Update TOTP README 2017-03-29 10:51:22 -07:00
Quanah Gibson-Mount
2c84446240 ITS#8587 - Fix typos 2017-03-29 10:44:55 -07:00
Emily Backes
b76f117d3e ITS#8569 Add a manpage for slapo-autogroup 2017-01-18 09:38:06 -08:00
Quanah Gibson-Mount
1df85d3427 Happy New Year! 2017-01-03 12:36:47 -08:00
Emmanuel Dreyfus
0d10236da9 Use newer DES API so that smbk5pwd loads with newer OpenSSL 
OpenSSL removed old DES API which used des_* functions.
24956ca00f

In order to link with libcrypto from recent OpenSSL releases, we need
to replace the older API des_* functions by the newer API DES_* functions.

Signed-off-by: Emmanuel Dreyfus <manu@netbsd.org>
 2016-11-29 09:35:08 -08:00
Hallvard Furuseth
2996fda0ee Fix contrib prototypes - add ConfigReply* 2016-06-12 10:19:03 +02:00
Hallvard Furuseth
23c5d6bbdd ITS#8435 Fix uninited slap_callback.sc_writewait 2016-06-12 08:30:58 +02:00
Devin J. Pohly
fb5b3a0df2 ITS#6826 conversion scripts 
These were provided as part of the original ITS but not previously committed.
Perl scripts to convert between Apache and OpenLDAP hash formats.
 2016-04-11 13:35:39 +01:00