upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-23 16:19:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
21093 commits 38 branches 309 tags 68 MiB
Commit graph

3900 commits

Author SHA1 Message Date
Pierangelo Masarati
fdafc6384e fix error handling/arg checking 2011-01-03 23:40:02 +00:00
Kurt Zeilenga
37dcb1d791 Remove authzid parameter from verify credential response. 
If client wants authzid, it can ask by adding an Authorization Identity
Request inner control.
 2011-01-03 22:05:23 +00:00
Kurt Zeilenga
7f4c7ebc1c Extend Verify Credentials encode/decode per -devel post. 
(ldapvc doesn't yet request/handle inner password policy control.
 2011-01-03 21:49:26 +00:00
Kurt Zeilenga
e6fd8bfbb0 Remove version from encoding 
(previously removed from SASL choices, but should be always absent)
 2011-01-03 19:21:03 +00:00
Pierangelo Masarati
59b220506d more about ITS#6645 2011-01-01 20:50:00 +00:00
Pierangelo Masarati
6631d41c16 ber_flatten must return -1 on unmatched "{" "}" (ITS#6764) 2011-01-01 16:06:45 +00:00
Hallvard Furuseth
c9e85af35c ITS#6759: assert;Debug -> Debug;assert 2010-12-30 23:19:02 +00:00
Howard Chu
8018924efd ITS#6741 support Bitstring in ldap_X509dn2bv() 2010-12-30 19:38:57 +00:00
Kurt Zeilenga
46f4813632 Remove dead code. 2010-12-30 17:46:26 +00:00
Pierangelo Masarati
f3dd90a553 s/0/O/ 2010-12-30 15:58:48 +00:00
Pierangelo Masarati
538b582cdc fix perror; removed extra sequence opening (is it needed; if yes, it must also be closed, see #if 0) 2010-12-30 15:51:25 +00:00
Pierangelo Masarati
7dfc54378c s/VCRequest/VCResponse/ 2010-12-30 14:12:26 +00:00
Howard Chu
f697a3ffed ITS#6742 from Rich Megginson @ Red Hat 2010-12-24 00:29:31 +00:00
Howard Chu
1bb648841b ITS#6453 cleanup on LDAP_TIMEOUT 2010-12-23 23:18:41 +00:00
Kurt Zeilenga
6119ad7294 Misc vc updates 2010-12-15 00:59:42 +00:00
Kurt Zeilenga
8a692a0034 Add comment regarding ASN.1 syntax 
rm version field
 2010-12-14 22:09:50 +00:00
Kurt Zeilenga
25aa65f693 cleanup 2010-12-14 21:14:31 +00:00
Kurt Zeilenga
d3b51f2614 LDAP "Verify Credentials" operation 
Client library implementation only
 2010-12-14 20:58:02 +00:00
Hallvard Furuseth
5feeec67d7 ITS#6747 Fix LDAP_CONNECTIONLESS Debug(), warnings 2010-12-14 15:06:32 +00:00
Howard Chu
439030a16d ITS#6714 non-blocking support from Richard Megginson @ Red Hat 2010-12-11 04:57:10 +00:00
Howard Chu
0215833bcd Cleanup prev commit 2010-12-11 04:51:21 +00:00
Howard Chu
a2053729f0 ITS#6744 - plug leak 2010-12-11 04:35:01 +00:00
Howard Chu
75bb972859 Partial fix for non-string types in cert DNs. (Need to add explicit support 
for Bitstring, maybe a few others.)
 2010-12-10 02:05:18 +00:00
Pierangelo Masarati
dc156d7f6e allow to set LDIF max line width (ITS#6645) 2010-12-07 10:14:51 +00:00
Pierangelo Masarati
d5f101f836 typo in comment 2010-12-07 10:11:06 +00:00
Hallvard Furuseth
16b7df8397 ITS#6625 Remove some LDAP_R_COMPILEs 2010-12-06 11:31:58 +00:00
Hallvard Furuseth
5ecd624f50 Fix ITS#6625: mutex-protect ldap_free_connection() 2010-12-06 10:51:55 +00:00
Hallvard Furuseth
7cb9c496bf ITS#6625 concurrency patch cleanup 2010-12-06 10:41:41 +00:00
Hallvard Furuseth
5c186dff4d Silence valgrind's ptrcheck (no real change). 
Also removes a bit unnecessary code.
 2010-12-06 08:19:40 +00:00
Hallvard Furuseth
a55d333107 ITS#6733: Fix LDAP_MEMORY_DEBUG issues. 
ber_memcalloc_x overflow check.  Silence some compiler warnings.
 2010-12-03 11:44:22 +00:00
Hallvard Furuseth
a7771fc35a ITS#6732: Clean up ber_errno handling. 
Set it after ber_mem(c)alloc_x failure.  Don't set it when not needed.
 2010-12-02 13:18:32 +00:00
Pierangelo Masarati
603eec5758 remove #ifdef EAGAIN, EWOULDBLOCK (ITS#6603) 2010-11-24 14:47:46 +00:00
Hallvard Furuseth
bc38ec228b For ITS#5421: Remove unnecessary #include "ldap_log.h" 2010-11-23 15:25:49 +00:00
Hallvard Furuseth
7c29e2c7c5 ITS#6723: Handle EOF in test programs 2010-11-23 12:12:54 +00:00
Hallvard Furuseth
18e348a379 Fix last commit (ITS#6622): Remove non-C90 // comment 2010-11-22 12:28:34 +00:00
Hallvard Furuseth
b75b769471 Fix cyrus.c rev 1.159 for --without-cyrus-sasl: 
It modified ldap_int_sasl_bind()'s prototype with but not without SASL.
 2010-11-19 12:32:05 +00:00
Howard Chu
1ed2d0a485 ITS#6706 from Rich Megginson @ Red Hat - improve diagnostic messages 2010-11-15 20:47:24 +00:00
Howard Chu
750f7f895b ITS#6705 from Rich Megginson @ Red Hat - only use .0 files in cacertdir 2010-11-15 20:45:47 +00:00
Howard Chu
4c31652ee8 ITS#6704 from Rich Megginson @ Red Hat - use both cacert and cacertdir 2010-11-15 20:44:32 +00:00
Howard Chu
208308d4dd ITS#6703 from Rich Megginson @ Red Hat - reject non-files for cert/key pem files 2010-11-15 20:43:53 +00:00
Howard Chu
c7e19f9b62 ITS#6702 prompts should be on stderr 2010-11-12 04:15:23 +00:00
Howard Chu
f26b5b6692 ITS#6689 from Rich Megginson @ Red Hat 2010-10-29 10:30:30 +00:00
Howard Chu
0f30db1c46 ITS#6625 concurrency patch from Doug Leavitt @ Oracle .com 2010-10-22 21:45:48 +00:00
Howard Chu
abe4a5f83b ITS#6673 GnuTLS hangs if you tell it to shut the read direction. Just 
shut the write direction; it will all be irrelevant since the socket
will be closed immediately after.
 2010-10-16 12:11:11 +00:00
Howard Chu
845bf30c5b Fix prev commit 2010-10-15 13:53:12 +00:00
Howard Chu
f1a18f4e53 Cleanup prev commit 2010-10-14 03:11:26 +00:00
Howard Chu
120d2ce228 More for prev commit. What about ldap_pvt_sasl_getmechs() ? 2010-10-14 01:47:09 +00:00
Howard Chu
fca72f333b Add ldap_sasl_interactive_bind() 2010-10-14 01:29:32 +00:00
Howard Chu
0b660dc9f6 ITS#6672 mutex cleanup 2010-10-13 08:43:15 +00:00
Howard Chu
1c9853c674 ITS#6669 remove obsolete SunOS4 LWP support 2010-10-12 11:02:59 +00:00
Howard Chu
0890a89c37 ITS#6669 remove obsolete SunOS4 LWP support 2010-10-12 10:26:31 +00:00
Pierangelo Masarati
2b1b37cd4b do not use lutil_atoix() (ITS#6654) 2010-09-21 00:10:44 +00:00
Pierangelo Masarati
9d77d61314 don't use lud_host when NULL (ITS#6653, fixed differently) 2010-09-21 00:05:36 +00:00
Howard Chu
f32f1a45d4 ITS#6639 set sock err to EAGAIN on partial write 2010-09-12 10:09:45 +00:00
Pierangelo Masarati
4601107e4e fix format specifier (ITS#6644) 2010-09-09 16:05:26 +00:00
Pierangelo Masarati
0c0873803d add parsing support for [unsigned] long long (ITS#6622) 2010-08-12 23:32:37 +00:00
Pierangelo Masarati
6c6e187b98 do not alter ld_nextref_proc (ITS#6602) 2010-07-27 00:55:51 +00:00
Pierangelo Masarati
d27038f6b4 fix previous commit 2010-07-26 19:45:36 +00:00
Pierangelo Masarati
c2ab1778a0 check mutex ownership 2010-07-26 19:26:59 +00:00
Howard Chu
512c7ca273 ITS#6585 don't close invalid sockets 2010-07-21 23:41:17 +00:00
Howard Chu
71f062afee ITS#6595 remove unneeded token init code. From Rich Megginson @ RedHat. 2010-07-21 22:57:01 +00:00
Howard Chu
e0cac8a048 ITS#6589 allow self-signed server certs, from Rich Megginson @ RedHat.com 2010-07-14 23:11:34 +00:00
Howard Chu
ce1e201343 add ifdefs for SASL_GSS_CREDS to accomodate ancient Cyrus SASL 2010-06-12 22:10:16 +00:00
Howard Chu
33bfd730a1 ITS#6569 return server's error code on Disconnect 2010-06-02 03:30:19 +00:00
Howard Chu
d3a1be4e3f ITS#6568 plug cldap memleaks 2010-06-02 03:10:39 +00:00
Howard Chu
2dd75cf206 Support option SASL_GSS_CREDS 2010-05-13 06:08:21 +00:00
Howard Chu
73bb167e74 ITS#6541 off-by-one, account for 'Z' being replaced by sign of delta 2010-05-03 05:13:44 +00:00
Ralf Haferkamp
17d61f6e6a Different fix for make -j builds. The previous one caused recompiles 
of fetch.c and ldif.c with every make run.
 2010-04-29 11:28:13 +00:00
Ralf Haferkamp
df9f2d87a5 Fix parallel builds (make -j) 2010-04-23 16:30:55 +00:00
Pierangelo Masarati
de94fbbd26 fix libraries order to build with --enable-dynamic (more about ITS#6517) 2010-04-22 15:45:41 +00:00
Pierangelo Masarati
6cee32cb28 more about ITS#6194 2010-04-20 05:47:09 +00:00
Pierangelo Masarati
a94b978e9d (blind) fix off-by-one bug (ITS#6223; fixed differently) 2010-04-18 02:42:56 +00:00
Howard Chu
b8013e828c No longer used 2010-04-15 21:29:50 +00:00
Pierangelo Masarati
ee156cfd7a serial can be longer than ber_int_t (ITS#6460) 2010-04-14 20:26:24 +00:00
Kurt Zeilenga
3dadeb3efe happy belated New Year 2010-04-13 22:17:29 +00:00
Pierangelo Masarati
9331182a07 union of operation-specific data in LDIFRecord (ITS#6194, by Rich Megginson) 2010-04-13 07:37:59 +00:00
Howard Chu
68b292d869 Cleanup prev commit 2010-04-12 20:21:13 +00:00
Howard Chu
86c361cdb8 In tmp_rsa_cb, new API is in 0.9.8 inclusive, not exclusive 2010-04-12 03:21:05 +00:00
Howard Chu
1dbefa75be ITS#6432 updated MozNSS context and PEM support 2010-04-12 02:44:28 +00:00
Pierangelo Masarati
d033f680b5 (ITS#6194) Patch - Enhancement - provide LDIF support as libldif 2010-04-12 02:01:55 +00:00
Howard Chu
e5302c2431 ITS#6510 ignore referrals on Bind response 2010-04-09 18:30:29 +00:00
Kurt Zeilenga
abdb6c683f ldap_parse_result should always free result when freeit is true. 2010-03-26 14:05:47 +00:00
Kurt Zeilenga
f967ec3b4e Set res parameter to NULL upon ldap_search_ext_s entry. Likewise for friends. 
Note in manual that res parameter should be freed regardless of return value
of ldap_search_ext_s (or friends).
 2010-01-29 23:11:24 +00:00
Pierangelo Masarati
797387c4ef skip the serial, whatever its length (ITS#6460) 2010-01-24 19:16:57 +00:00
Howard Chu
127e504015 ITS#6405 in ldap_pvt_gettime, also check for microsecs going backward 2009-11-30 21:47:38 +00:00
Hallvard Furuseth
3aff1b0c0c ITS#6351,6390: s/memrchr/lutil_memrchr/, but try #define lutil_memrchr->memrchr 2009-11-20 20:43:50 +00:00
Howard Chu
61be1d55d3 More for prev commit - only set if URL was provided. 
(should URL be mandatory?)
 2009-11-18 22:37:02 +00:00
Howard Chu
a248701ed2 ITS#6386 Must init conn->lconn_server 2009-11-18 22:23:14 +00:00
Pierangelo Masarati
a95b8cd488 honor -1 timeout (ITS#6388) 2009-11-18 14:57:52 +00:00
Howard Chu
b99fdb6506 ITS#6283 add missing env options 2009-11-15 21:48:49 +00:00
Howard Chu
9a65f35f2e partially revert prev commit 2009-11-06 02:20:40 +00:00
Howard Chu
86d9e86afd Minor cleanup in strval2str 2009-11-06 01:37:09 +00:00
Hallvard Furuseth
48048c5348 More ITS#6353 - relent a bit: accept terminating NUL byte, which AD can send 2009-11-04 11:17:03 +00:00
Hallvard Furuseth
7b22b22202 ITS#6355: Fix uninitialiezed lso_tmp_rsa_cb() return value 2009-10-30 17:08:57 +00:00
Hallvard Furuseth
989bd54914 For ITS#6353: Catch embedded NULs in BerValues converted to char* strings 2009-10-28 23:00:27 +00:00
Howard Chu
585940984c Fix prev commit, s/errno/err/g 2009-10-27 01:55:45 +00:00
Howard Chu
405c68abf9 For prev commit, check for EINTR/EAGAIN/EWOULDBLOCK 2009-10-26 23:52:55 +00:00
Howard Chu
a05d7015e0 ITS#6327, #6334 take ret=-1/EINTR into account 2009-10-26 23:36:39 +00:00
Howard Chu
30c55952d3 Cleanup prev commit 2009-10-26 19:19:20 +00:00
Howard Chu
1155f5ff20 ITS#6327 fix sb_sasl_generic_write retval for partial writes 2009-10-26 18:49:42 +00:00
Hallvard Furuseth
3a688d8d59 ITS#6348: Fix inverted LBER_USE_DER test in ber_put_seqorset() since rev 1.73 2009-10-23 20:39:54 +00:00
Hallvard Furuseth
068cf1c701 ITS#6344: return failure on failure in ber_put_ostring()/ber_put_bitstring() 2009-10-21 12:41:34 +00:00
Hallvard Furuseth
7e107de4d9 Fix comment describing BerElement.ber_usertag 2009-10-21 11:41:44 +00:00
Hallvard Furuseth
47617b033c Cleanup - macroize magic constant (ITS#5909) 2009-10-21 11:31:59 +00:00
Ralf Haferkamp
8fcdc29405 In case of certificate verification failures include failure reason 
into the error message (openssl only)
 2009-09-30 16:25:23 +00:00
Howard Chu
e0431681ad On OpenSSL 0.9.8 and newer, use RSA_generate_key_ex since 
RSA_generate_key is deprecated
 2009-09-25 23:31:24 +00:00
Pierangelo Masarati
4b4db7b529 keep compatibility with slapd's gmtime_mutex (ITS#6262) 2009-09-08 23:21:21 +00:00
Howard Chu
d0a410b212 Tweak MozNSS include path 2009-08-29 03:56:25 +00:00
Howard Chu
2ba0e44ad1 ITS#6278 PEM support for MozNSS from rmeggins@redhat.com, with header cleanups 2009-08-29 03:41:53 +00:00
Pierangelo Masarati
0b44f1fbcf silence warnings 2009-08-21 17:06:22 +00:00
Pierangelo Masarati
ba2bddafbd copy username, much like other string-valued options (more about ITS#6257) 2009-08-19 21:46:07 +00:00
Pierangelo Masarati
a846dad6fb cleanup previous commit 2009-08-19 13:10:30 +00:00
Pierangelo Masarati
9abaf38d1f silence warnings 2009-08-19 12:23:27 +00:00
Pierangelo Masarati
8776630509 address signedness issue 2009-08-19 12:06:04 +00:00
Hallvard Furuseth
f0d775609b More ITS#6262: Also define ldap_pvt_gmtime_[un]lock if localtime_r is missing 2009-08-19 10:10:31 +00:00
Pierangelo Masarati
637182b8f4 fix previous commit 2009-08-19 00:12:39 +00:00
Pierangelo Masarati
f3cdcadf89 wrap gmtime for reentrancy (ITS#6262) 2009-08-18 23:48:15 +00:00
Pierangelo Masarati
5c916588b8 fix previous commit 2009-08-18 19:09:12 +00:00
Pierangelo Masarati
98a8b74d53 expose SASL_USERNAME when it makes sense (EXTERN needs work, much like SASL_SSL) (ITS#6257) 2009-08-18 18:47:56 +00:00
Howard Chu
b87553684a More for prev commit 2009-08-14 20:02:08 +00:00
Howard Chu
9b764c3f9e Fix prev commit again, IPPROTO_TCP is the documented correct approach 2009-08-13 21:35:38 +00:00
Howard Chu
f5bad5673b Fix prev commit, it was not Linux-only as it claimed to be. 2009-08-13 20:55:04 +00:00
Hallvard Furuseth
b0e6e73d1c ITS#6215 cleanup: Export ber_skip_element() to complement ber_peek_element() 2009-08-12 22:13:50 +00:00
Hallvard Furuseth
3e20bda971 Trying again: No need to maintain ber->ber_usertag except at ber_printf "!" 2009-08-12 22:12:15 +00:00
Hallvard Furuseth
791035d93f Fix last commit: cast strcasecmp unsigned char* to char* 2009-08-07 21:46:25 +00:00
Hallvard Furuseth
3802aa5483 More ITS#6215: Catch malformed elements in ber_get_stringbvl(). 
Do not use ber_<first/next>_element(), which have no error return.
 2009-08-07 19:26:11 +00:00
Hallvard Furuseth
bc20500e62 More ITS#6215: Define and use ber_tag_and_rest() and ber_<peek/skip>_element() 2009-08-07 19:15:26 +00:00
Hallvard Furuseth
95fbdcab4e More ITS#6215: Fix wrong fix in rev 1.121 2009-08-07 16:04:25 +00:00
Howard Chu
e229b7c398 In session_chkhost get the last CN, not the first. 2009-08-07 11:59:42 +00:00
Hallvard Furuseth
455c49ba3e Simplify struct bgbvr and ber_get_stringbvl(), preserving behavior. 2009-08-04 21:11:38 +00:00
Howard Chu
d479db53e0 Minor cleanup 2009-07-31 03:26:03 +00:00
Howard Chu
403ee0b62e Fix, reqcert == ALLOW should ignore cert verification failures 2009-07-31 01:51:34 +00:00
Howard Chu
3f2101198b ITS#6239 use our own hostname checking for MozNSS 2009-07-31 01:32:51 +00:00
Hallvard Furuseth
02e165258c Might help ITS#6145: change while to do-while, to make visible that the 
loop saving malloced data is run at least once.
 2009-07-31 00:05:32 +00:00
Howard Chu
d4f2a06887 Check for CN length match as well in chkhost 2009-07-30 21:52:09 +00:00
Hallvard Furuseth
19b8065922 More ITS#6215: Fix va_arg integer types for ber_scanf "bei" & ber_printf "BX" 2009-07-29 23:03:10 +00:00
Hallvard Furuseth
8b3bb91e93 More ITS#6215: Fix ber_scanf(,"mMvVW",) cleanup on error: 
Parse args correctly and free up memory.
Also set some lengths=0 and remove unneeded ptr==NULL tests before frees.
 2009-07-29 22:38:19 +00:00
Hallvard Furuseth
886520f193 More ITS#6215: Free data to the memory context used to allocate it 2009-07-29 22:10:45 +00:00
Hallvard Furuseth
b6bad3e995 More ITS#6215: 
Reject indefinite-length format in ber_skip_tag().  localize *len.
Reject broken and too large bitstrings in ber_get_bitstringa().
Simplify a number of functions somewhat - no functionality changes.
Remove unnecessary tests and ber_tag updates after ber_skip_tag().
 2009-07-29 21:47:54 +00:00
Hallvard Furuseth
29aa1d07c7 For ITS#6215: No need to maintain ber->ber_usertag except at ber_printf "!" 2009-07-29 17:21:54 +00:00
Hallvard Furuseth
4bed42ae5a For ITS#6215: Do not expose obsolete Seqorset. Note ber_write(,,,nonzero) is gone. 2009-07-29 17:07:52 +00:00
Hallvard Furuseth
36d2dc034d More ITS#6215 - 
Speedup & less memory allocation:
  Simplify the work to encode tag, length, integer/enum, sequence/set.
  Drop struct seqorset and allocations of it.  Replace BerElement.ber_sos.
  Drop ber_write(,,,nonzero) support. Callers, if any, need to be rewritten.
  Make ber_log_sos_dump() and ber_sos_dump() stubs, they could no longer work.
Fix ber_write() buffer overrun after ber_start_seqorset().
Check overflow and max sizes, e.g. for functions returning int size.
Some cleanup, and handwaves in the direction of supporting CHAR_BIT>8.
Add/fix comments and a few descriptive types/macros.
 2009-07-29 16:49:42 +00:00
Hallvard Furuseth
53f884ac1d Remove useless asserts that will be re-assert()ed before the variable is used 2009-07-29 15:06:28 +00:00
Hallvard Furuseth
12a6f3e055 ITS#6215: Fix buffer overrun and write through NULL pointer 2009-07-29 14:57:09 +00:00
Howard Chu
e0bcb7b571 ITS#4643 never use native getpass(), it's deprecated/unsafe 2009-07-22 06:34:37 +00:00
Howard Chu
91dc4501d4 Add VLV Error 2009-07-13 13:13:38 +00:00
Howard Chu
72e319bd02 ITS#5892 return -1 from ldif_read_record on error 2009-07-07 22:30:55 +00:00
Hallvard Furuseth
bbe015f65b ITS#6197 - normalize & speed up ldap_err2string/ldap_perror(): 
Use same result code -> string mapping for both, removing ldap_int_error():
- Classify unknown error codes as API/extension/etc like _err2string did.
- Pass all strings through _(), i.e. the optional gettext, as _perror did.

Also use a switch instead of linear search for the code->string mapping.
Hopefully the compiler will optimize that.  Though the extra gettext,
if anyone uses it, probably counters that speedup.
 2009-07-07 20:05:09 +00:00
Howard Chu
159461bfc8 ITS#5696 des_set_key -> des_set_key_and_parity 2009-07-03 22:19:52 +00:00
Howard Chu
8680c13c5f Cleanup ciphernum 2009-07-03 02:06:24 +00:00
Howard Chu
d95bc8d2d8 Acknowledge richm 2009-07-02 23:19:44 +00:00
Howard Chu
4b8485c47a ITS#5696 Additional MozNSS support from rmeggins@redhat.com 2009-07-02 23:10:23 +00:00
Howard Chu
de91bde800 ITS#6192 add all digests. Also stop using SSLeay-compatible function 
names, we're only concerned with OpenSSL these days.
 2009-07-01 23:46:36 +00:00
Howard Chu
093fed660d ITS#6188 add stub for ldap_pvt_thread_pool_retract() 2009-06-25 23:15:38 +00:00
Hallvard Furuseth
671bed5270 Cleanup & slight speedup (no real change): 
Remove '#if 0 / broken code / #endif.  Rearrange pool_wrapper() to avoid
decrement-increment(ltp_active_count) when more tasks available.
 2009-06-12 20:46:36 +00:00
Hallvard Furuseth
461cb6b7ca Update last commit: avoid LDAP_STAILQ_REMOVE in ldap_pvt_thread_pool_retract 2009-06-12 19:32:53 +00:00
Hallvard Furuseth
13cbd433bd Cast getpeername() arg from struct sockaddr_un* to struct sockaddr* 2009-06-11 16:21:52 +00:00
Howard Chu
39c9b1ab25 Fix prev commit, note *task* not *thread* ... 2009-06-11 05:02:58 +00:00
Howard Chu
23783a9164 Add ldap_pvt_thread_pool_retract() to cancel pending threads 2009-06-11 04:46:04 +00:00
Ralf Haferkamp
5725d5d6e9 Introduce options to configure tcp-keepalive settings per connection. These 
settings only work on Linux and are ignore when not supported (see
discussion on -devel)
 2009-05-06 13:14:36 +00:00
Hallvard Furuseth
4b01f4b23a ITS#6080 again: simplify ber_strnlen, don't use strnlen, revert _GNU_SOURCE 2009-05-01 03:10:25 +00:00
Hallvard Furuseth
4e3f04edc3 Fix previous fix: Don't #ifdef HAVE_STRNLEN before portable.h #defines that 2009-05-01 02:17:28 +00:00
Hallvard Furuseth
a59f93f32f Update previous commit: #define _GNU_SOURCE if needed for strnlen() 2009-05-01 02:11:42 +00:00
Pierangelo Masarati
85b47ab0e7 define and use ber_strnlen() (ITS#6080); please regenerate configure and include/portable.hin 2009-04-29 11:38:31 +00:00
Pierangelo Masarati
99fe30b326 (nearly blind) fix for NULL in TLS error message (ITS#6079) 2009-04-29 11:31:39 +00:00
Ralf Haferkamp
eec889f6d9 more warning fixes 2009-04-24 09:48:08 +00:00
Hallvard Furuseth
7434318a17 ITS#5464, #5666 Update last change: Conflicted with compiler flag -D_GNU_SOURCE 2009-04-16 18:02:01 +00:00
Howard Chu
9e7b5d8f19 ITS#5464, #5666 define _GNU_SOURCE 2009-04-15 07:36:56 +00:00
Howard Chu
44f91f1464 ITS#6041 Windows opendir/closedir issues (from ITS#5408...) 2009-04-11 04:22:27 +00:00
Howard Chu
e223d0b124 ITS#6053 must use gnutls_x509_privkey_init() 2009-04-11 03:53:26 +00:00
Howard Chu
94ab6a31b2 ITS#6038 revert prev commits, ITS rejected 2009-03-27 11:07:42 +00:00
Rein Tollevik
c8cf2fc47a ITS#6038: Write slapadd progress meter to stdout. 2009-03-26 22:50:54 +00:00
Howard Chu
d39bd12e9f Skip redundant PACKETS logging 2009-03-13 23:10:37 +00:00
Howard Chu
d8e3b4e83e ITS#6005 crypt salt_format must use ber_memfree 2009-03-09 01:28:00 +00:00
Howard Chu
02b71d58ec ITS#6005 strings returned to slapd must use ber_mem* 2009-03-08 00:11:25 +00:00
Howard Chu
5d74bea520 ITS#6005 librewrite must use the same mem allocators as slapd 2009-03-07 23:21:26 +00:00
Howard Chu
0ba084d8b0 More cleanup 2009-03-05 09:15:02 +00:00
Howard Chu
c3f8e67615 Tweak prev commit 2009-03-05 09:13:26 +00:00
Howard Chu
9bc829dbef ITS#5991 build cert chain, GnuTLS doesn't do it for us 2009-03-05 08:04:49 +00:00
Howard Chu
54ed3779d6 ITS#5992 trust X509v1 CA certs 2009-03-05 04:35:49 +00:00
Howard Chu
bd312123d6 ITS#5980 clear res_matched after successfully chasing referral 2009-03-03 17:57:24 +00:00
Howard Chu
ee5b6762ae ITS#5980 - find_connection should match URLs with empty hostname 2009-03-03 17:56:44 +00:00
Howard Chu
a1861fd162 ITS#5849 patch was wrong, don't X509_free session cert 2009-03-02 17:43:38 +00:00
Howard Chu
c3cff40c1c ITS#5981 fix GnuTLS TLSVerifyClient try 2009-03-02 03:01:41 +00:00
Howard Chu
e5e9191aeb ITS#5976 check for cert/DN 2009-02-25 21:48:10 +00:00
Howard Chu
64884e7c6c Don't call NSS_Shutdown if someone else init'd the library 2009-02-25 10:14:00 +00:00
Pierangelo Masarati
0d6e859846 fix ldap namespace (part of ITS#5974) 2009-02-24 21:09:41 +00:00
Pierangelo Masarati
ed97e96944 re-fix ITS#5916 2009-02-20 01:07:00 +00:00
Quanah Gibson-Mount
3b743a3b79 Revert part of last commit 
Remove erroneous comment
 2009-02-17 21:47:09 +00:00
Quanah Gibson-Mount
83cb8883a6 More for ITS#5955 
Also special case rand file bits that are OpenSSL only
 2009-02-17 21:39:50 +00:00
Quanah Gibson-Mount
331a57fa37 ITS#5955 2009-02-17 21:32:09 +00:00
Pierangelo Masarati
040f945d36 fix misc warnings 2009-02-15 21:59:16 +00:00
Howard Chu
f38d2df19b Add comments about ITS#3134, #5938, RFC4513 for posterity. This 
file will be moving to the Attic...
 2009-02-11 01:35:56 +00:00
Howard Chu
07e79f26a4 Revert prev commit 2009-02-10 21:29:56 +00:00
Howard Chu
b886c2ad8a ITS#5937 fix ancient IPv6 typo 2009-02-10 13:27:22 +00:00
Pierangelo Masarati
2b95e7d288 partially addresses an issue with ITS#5931 2009-02-10 12:44:12 +00:00
Howard Chu
80c6ea52ea ITS#5853 restructure wait4msg / try_read1msg again. Consolidate 
the two try_read1msg cases into one, bump refcnts to prevent
lconn's from being freed prematurely.
 2009-02-10 09:51:31 +00:00
Howard Chu
fbf42baefa ITS#5934 fix NULL pointer deref 2009-02-09 21:14:46 +00:00
Howard Chu
4bc8cb6336 ITS#5928 hide all ldap_pvt_tls APIs when !HAVE_TLS 2009-02-08 03:25:48 +00:00
Howard Chu
bc486f123d Fix spinner in prev commit 2009-02-05 10:07:20 +00:00
Howard Chu
d0515c4017 ITS#5922 with namespace changes 2009-02-05 09:38:07 +00:00
Howard Chu
ff8838aa28 ITS#5920 restore old HAS_TLS test 2009-02-04 08:56:04 +00:00
Howard Chu
2b08e96b53 ITS#5916 - externally callable functions are ldap_pvt, not ldap_int. 2009-02-02 21:14:34 +00:00
Pierangelo Masarati
0ded1f16d5 Allow alias dereferencing in search C API; use new API in proxy backends (ITS#5916) 2009-01-31 10:27:07 +00:00
Hallvard Furuseth
ff08c4194c Cleanup - macroize magic constant (ITS#5909) 2009-01-30 14:14:22 +00:00
Howard Chu
7aa5ae49ca Modular TLS 2009-01-27 01:01:41 +00:00
Howard Chu
08905d6792 ITS#5789 again 2009-01-26 21:08:55 +00:00
Howard Chu
f59ce2b9a1 ITS#5462 add randfile support for gcrypt 1.4 2009-01-26 03:41:27 +00:00
Howard Chu
2558951251 ITS#5887 add native support for cipher suites for GnuTLS >= 2.2.0 2009-01-26 03:21:16 +00:00
Howard Chu
f9fd0f0cc4 ITS#5655 for new structure 2009-01-26 02:16:46 +00:00
Howard Chu
4dff3e6807 Switch to using modular TLS code, single-implementation version 2009-01-26 02:06:45 +00:00
Howard Chu
988fb232d2 ITS#5896 don't return immediately on Intermediate responses 2009-01-24 07:18:35 +00:00
Howard Chu
cf1558659b ITS#5655 TLS_PROTOCOL_MIN from Philip Guenther 2009-01-24 03:34:49 +00:00
Kurt Zeilenga
4af9eb9715 Update copyright notices 2009-01-22 00:40:04 +00:00
Ralf Haferkamp
af79710c4d Fixed typo 2008-12-12 10:08:07 +00:00
Pierangelo Masarati
7681642bcf fix LDAP deref control response; fix tool response handling; add lutil_memcopy() for API uniformity (more about ITS#5768) 2008-12-11 23:17:08 +00:00
Ralf Haferkamp
5977f20127 Avoid locking up slapd when paused during shutdown (ITS#5841), reverting 
r1.81
 2008-12-09 10:57:15 +00:00
Howard Chu
187efdad6c ITS#5849 free peer cert after retrieving DN 2008-12-05 09:00:24 +00:00
Howard Chu
5a8954f9de ITS#5768 - add deref. 2008-11-25 04:43:38 +00:00
Howard Chu
a6933cae27 Fix prev commit 2008-11-21 05:15:20 +00:00
Howard Chu
86b5de38be ITS#5812 add SASL_NOCANON / -N option 2008-11-21 03:30:15 +00:00
Howard Chu
0bd6ce1062 ITS#4750 only read LDAP_CONF_FILE if geteuid() != getuid() 2008-11-21 02:15:47 +00:00
Pierangelo Masarati
2eeefd4985 check for bogus params to an LDAP routine (ITS#5817) 2008-11-18 16:27:50 +00:00
Hallvard Furuseth
c7002ffed5 ITS#5815: Fix typo "#elif defined( MAXHOSTNAMELEN". 2008-11-16 22:52:56 +00:00
Howard Chu
36124c715a ITS#5789 GNUtls - allow CN matches against IP addresses 2008-11-04 11:21:52 +00:00
Howard Chu
24078323e2 ITS#5739 fix for ITS#4879 was too eager about IPv6 detection 2008-11-03 15:44:49 +00:00
Hallvard Furuseth
8690650121 ITS#4467: Fix ptr += snprintf buffer overflow tests (made out-of-range ptr). 
Also avoid a buf[BUFSIZ] initialization.
 2008-10-24 13:11:10 +00:00
Pierangelo Masarati
6bedf74c41 tag optional stuff 2008-10-22 23:38:09 +00:00
Pierangelo Masarati
91e14ca638 add support for (experimental) dereference control (ITS#5768); need to re-run autoconf (and autoheader?) 2008-10-22 22:19:49 +00:00
Pierangelo Masarati
2b95616768 missing $OpenLDAP$ header 2008-10-22 21:57:28 +00:00
Hallvard Furuseth
677a11ad26 ITS#5748: tavl_find3(NULL,,,) returned undefined data 2008-10-22 19:39:42 +00:00
Ralf Haferkamp
e8c1147b77 reset ld->ld_errno to avoid returning error codes of previously API calls (ITS#5762) 2008-10-21 16:17:41 +00:00
Hallvard Furuseth
08852acb80 Warning cleanup: signed meets unsigned, remove assert(unsigned >= 0). 2008-10-17 23:24:48 +00:00
Hallvard Furuseth
b464a790b8 Fix Debug(%d, scred->bv_len or -1) -> Debug(%ld, (long) scred->bv_len or -1L). 
Cast sasl_encode() arg from unsigned char* to char*.
Warning cleanup: signed meets unsigned.
 2008-10-17 20:46:44 +00:00
Hallvard Furuseth
1c85cf3c88 Warning cleanup: signed meets unsigned. ber_flatten2() returns -1 on 
error, not LBER_ERROR.
 2008-10-13 08:44:54 +00:00
Hallvard Furuseth
03a729673c Warning cleanup: signed meets unsigned. 2008-10-13 08:13:27 +00:00
Howard Chu
9078381252 Cleanup unused defs 2008-10-09 11:33:49 +00:00
Howard Chu
4294664aad ITS#5369 SASL/GSSAPi refactoring from Stefan Metzmacher <metze@samba.org> 
and Rafal Szczeniak <mimir@samba.org>, with minor cleanups
 2008-10-09 11:10:28 +00:00
Howard Chu
f7484f78e6 ITS#5369 SASL/GSSAPi refactoring from Stefan Metzmacher <metze@samba.org> 
and Rafal Szczeniak <mimir@samba.org>, with minor cleanups
 2008-10-09 10:51:28 +00:00
Howard Chu
b2432fdbf2 Add SASL_MECHLIST option to retrieve list of known SASL mechs 2008-10-09 09:28:39 +00:00
Howard Chu
c51252633b Accept X-starttls for prev commit 2008-10-07 03:13:00 +00:00
Howard Chu
809548c88b Handle StartTLS in URL extensions 2008-10-07 03:06:44 +00:00
Howard Chu
99186a90e0 Fix prev commit 2008-09-30 22:22:31 +00:00
Howard Chu
721264db13 ITS#5720 fix ldap_utf8_strchr arguments 2008-09-30 05:05:53 +00:00
Ralf Haferkamp
0f4f9c9c13 Avoid "label at end of compound statement" error of newer gcc 2008-09-19 12:58:00 +00:00
Pierangelo Masarati
43ae03fc10 silence warnings 2008-09-16 14:10:02 +00:00
Pierangelo Masarati
548a9f39ba fix '<hex>'H conversion issue; did not look at decimal yet (ITS#5699) 2008-09-13 18:46:50 +00:00
Howard Chu
178141d7ec ITS#5668 avoid overflows in Windows microsecond computation 2008-09-11 01:51:02 +00:00
Pierangelo Masarati
4aa9edf03e cleanup round of memory handling (either check results or use ch_* calls; ITS#5691) 2008-09-09 19:58:47 +00:00
Howard Chu
cc94023c98 ITS#5677 s/TLS_CRL/TLS_CRLFILE/ 2008-09-02 22:10:44 +00:00
Howard Chu
0dbeb1d87b Pass LDAPURLDescs to connect functions instead of host/port 2008-08-15 22:53:47 +00:00
Howard Chu
46049f1d13 Fix prev commit 2008-08-15 10:53:11 +00:00
Howard Chu
baad2b249d Connect callbacks need error recovery checks 2008-08-15 10:23:29 +00:00
Howard Chu
80d1dba901 Add LDAP_OPT_CONNECT_CB connection callbacks 2008-08-14 04:54:32 +00:00
Howard Chu
a225b02f17 Modular TLS support, proof of concept. tls2.c would replace tls.c, 
but I'm leaving tls.c intact for now.
 2008-08-13 16:18:51 +00:00
Hallvard Furuseth
4028c83c67 ber_decode_oid(): Fix typo in comment 2008-08-06 13:36:53 +00:00
Hallvard Furuseth
4f935126c4 ITS#5604: Normalize lutil_progname(): strip .exe from Windows executable names 2008-07-22 10:16:11 +00:00
Howard Chu
7d479302c0 ITS#5615 return success on Solaris 10 2008-07-15 20:07:36 +00:00
Howard Chu
27fc008761 Protect errno values from Debug 2008-07-02 16:43:51 +00:00
Howard Chu
aebcd93721 ITS#5580: Revert prev commit, failed on byte-at-a-time input. Different 
approach used here.
 2008-07-02 01:33:15 +00:00
Howard Chu
7e4ba700f1 ITS#5585 GnuTLS key strength is in bytes, we expected bits 2008-06-30 23:32:35 +00:00
Howard Chu
14f1138ab5 ITS#5580 fix length decoding, verified with PROTOS 2008-06-27 02:36:41 +00:00
Howard Chu
9ef6cc3cd4 ITS#5577 GnuTLS CRL result >0 is success 2008-06-24 20:14:30 +00:00
Pierangelo Masarati
7e3c9a07e9 add client API for assertion control (ITS#5560) 2008-06-14 17:49:47 +00:00
Howard Chu
99160d7c20 ITS#5542 fix loop iterator 2008-05-30 17:29:47 +00:00
Howard Chu
19d7e565f0 ITS#5318 drop invalid msgids, cleanup msgid logging 2008-05-28 01:19:43 +00:00
Howard Chu
96550c885d ITS#5518,#5525 cleanup ld_defconn if it was freed 2008-05-23 09:53:42 +00:00
Howard Chu
ce27143ce7 ITS#5519 add missing stubs 2008-05-20 11:23:19 +00:00
Hallvard Furuseth
1fc3f1c130 ITS#5507: Set FD_CLOEXEC (close on exec) flag on LDAP file descriptors 2008-05-15 20:56:41 +00:00
Howard Chu
8810ef26b6 ITS#5458 fix error message for missing closing paren 2008-04-10 18:36:15 +00:00
Hallvard Furuseth
c55a06254f ITS#5436: make htons() port number unsigned 2008-03-18 21:12:00 +00:00
Hallvard Furuseth
00be565264 ITS#5407 cleanup (make pool_pause & pool_pausecheck wrappers for handle_pause) 2008-03-10 13:21:24 +00:00
Howard Chu
a287573d2d ITS#5407 more checks for pool pausing 2008-03-08 23:51:07 +00:00
Howard Chu
50cb332390 Use memctx more consistently 2008-03-04 07:24:05 +00:00
Hallvard Furuseth
7859063553 ITS#5364 cleanup 
Fix rev 1.91 patch: Reset ltp_pending_count when flushing ltp_pending_list.
Remove flush_pending_list() again and the now-unnecessary 2nd call to it.
Help the compiler a little.
Move ltp_work_list in case it makes a difference for caching.
Move mutex unlock in pool_destroy() to make concurrency debuggers happier.
 2008-02-11 15:49:52 +00:00
Hallvard Furuseth
650aaee3a5 ITS#5364, reduce work with ltp_mutex locked: 
Negate ltp_open_count when paused, avoids an ltp_pause test in pool_submit().
 2008-02-10 18:16:44 +00:00
Hallvard Furuseth
8afd0b05c1 ITS#5364: introduce ltp_work_list, drop 1st ltp_pause loop in pool_wrapper(). 2008-02-10 17:55:13 +00:00
Hallvard Furuseth
fe86a1cbe5 ITS#5364: maintain value ltp_vary_open_count 2008-02-10 17:38:32 +00:00
Hallvard Furuseth
ee73fca523 ITS#5364, reduce work with ltp_mutex locked: 
Replace ltp_state with ltp_finishing.  Drop state
LDAP_INT_THREAD_POOL_STOPPING, flush pending list instead.
ltp_max_pending = default value instead of 0, and negative when finishing.
 2008-02-10 17:28:20 +00:00
Hallvard Furuseth
6dd87bb83f ITS#5364, thread pool efficiency: 
Add ldap_pvt_thread_pool_pausing(): pause check for slapd without locking.
Make counters int instead of long; INT_MAX pending tasks is enough.
Nitpick cleanup: goto failure instead of if() to not-failure in _submit().
 2008-02-10 16:15:30 +00:00
Howard Chu
68316527c4 ITS#5341 GnuTLS ciphersuite parsing 2008-02-10 11:58:16 +00:00
Pierangelo Masarati
b0b387e9ed ITS#5338 2008-01-25 00:00:30 +00:00
Howard Chu
5cf0b5175b ITS#5324 don't use %n 2008-01-11 06:39:50 +00:00
Hallvard Furuseth
cd63a0c43b Warning cleanup: function ptr <=> void* at ldap_pvt_thread_pool_<set/get>key() 2008-01-11 06:07:43 +00:00
Hallvard Furuseth
2660518c5d ldap_int_bisect_find(): Silence harmless "may be used uninitialized" warning 2008-01-10 18:34:40 +00:00
Hallvard Furuseth
ac914f96a0 #include <signal.h> for pthread_kill() 2008-01-10 16:24:07 +00:00
Ralf Haferkamp
5a143df3ce Corrected memory allocation for cookie (ITS#5315) 2008-01-09 13:28:09 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
30f401c628 rename ldap_pvt_thread_pool_setkey_x() to ldap_pvt_thread_pool_setkey() (as part of ITS#5309) 2008-01-07 21:35:03 +00:00
Hallvard Furuseth
4a2cda3cff ITS#5309: complete the addition of ldap_pvt_thread_pool_setkey_x() 2008-01-07 20:04:46 +00:00
Howard Chu
f41322d8ef Fix prev commit 2008-01-03 08:25:58 +00:00
Pierangelo Masarati
859c6d03c0 fix to ITS#5304 2008-01-02 17:30:40 +00:00
Pierangelo Masarati
622c4d3884 new ldap_pvt_thread_pool_setkey API 2007-12-29 18:14:54 +00:00
Howard Chu
cd673c2ff2 ITS#5300, reject substring filters with empty values 2007-12-29 02:32:22 +00:00
Quanah Gibson-Mount
afcc7d9e83 ITS#4982 libldap_r threaded library linking 2007-12-21 22:18:35 +00:00
Howard Chu
4c9af232d2 Cleanup spaces 2007-12-20 02:46:59 +00:00
Howard Chu
8ddc2dd773 ITS#5291, more for rev 1.79 search timeouts 2007-12-20 02:46:13 +00:00
Howard Chu
33c0301b25 Better fix to prev commit 2007-12-17 07:11:24 +00:00
Hallvard Furuseth
e4ffd33f1a Declare enough buffer space for out-of-range URL port numbers 2007-12-15 23:36:22 +00:00
Pierangelo Masarati
20f2548c82 fix declarations of buffers for numeric strings; other related cleanup 2007-12-15 15:23:23 +00:00
Howard Chu
da53cd0c40 uid/gid are unsigned 2007-12-15 02:28:45 +00:00
Howard Chu
f02d481426 ITS#5263 fix return code from parse_sasl_bind_result() 2007-12-15 02:06:12 +00:00
Hallvard Furuseth
24d9258888 Remove unused variables 2007-12-06 17:23:23 +00:00
Howard Chu
304520c113 Add memctx to lutil_str2bin() 2007-12-02 19:11:41 +00:00
Howard Chu
34a503960d Fix tmpbuf size 2007-12-01 20:28:18 +00:00
Howard Chu
6ffbb9b04d Fix dirsep chars before opening file 2007-12-01 19:19:20 +00:00
Howard Chu
3e05442795 Cleanups from Hallvard 2007-12-01 19:18:43 +00:00
Howard Chu
d4baa7dc87 Fix carries 2007-12-01 11:14:40 +00:00
Howard Chu
fab334d5f1 Fix prev. Once more, with feeling. 2007-11-30 22:26:23 +00:00
Howard Chu
88ea88feeb Fix prev cleanup. 2007-11-30 18:32:42 +00:00
Howard Chu
55f6387214 Cleanup prev commit 2007-11-30 18:25:45 +00:00
Howard Chu
14573820ec Fix rev 1.49 2007-11-30 18:10:22 +00:00
Kurt Zeilenga
ac7762996e Reverse last commit (made by mistake) 2007-11-27 20:49:47 +00:00
Kurt Zeilenga
9c970bdb21 OpenLDAP Devel README 
This software was obtained from the development branch (HEAD) of
	the OpenLDAP Software Repository.  This copy is likely already
	not current, the development branch changes frequently.  These
	changes include code implementing experimental features and
	unproven bug fixes.  Please do NOT redistribute copies of the
	development branch.

	The OpenLDAP Developer's FAQ is available at:
		<http://www.openldap.org/faq/index.cgi?file=4>

	Client developers seeking a suitable development platform
	should use "release" or "stable" versions.
		<http://www.openldap.org/software/>

Contributing
	See <http://www.openldap.org/devel/contributing.html> for how to
	contribute code or documentation to OpenLDAP.  Use the Issue Tracking
	System <http://www.openldap.org/its/> to submit contributions.
	While you are encouraged to coordinate and discuss the development
	activities on the openldap-devel@openldap.org mailing list prior
	to submission, it is noted that contributions must be submitted
	using the Issue Tracking System to be considered.

---
$OpenLDAP: pkg/ldap/README,v 1.45 2007/03/10 17:03:58 kurt Exp $

This work is part of OpenLDAP Software <http://www.openldap.org/>.

Copyright 1998-2007 The OpenLDAP Foundation.
All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted only as authorized by the OpenLDAP
Public License.

A copy of this license is available in the file LICENSE in the
top-level directory of the distribution or, alternatively, at
<http://www.OpenLDAP.org/license.html>.

OpenLDAP is a registered trademark of the OpenLDAP Foundation.
 2007-11-27 20:48:38 +00:00
Pierangelo Masarati
7aeac21440 silence warnings 2007-11-23 12:47:53 +00:00
Howard Chu
b710993764 Fix dec to bin for zero value 2007-11-21 05:08:08 +00:00
Howard Chu
beff004e1e Fix dec to bin negative number handling 2007-11-21 01:49:09 +00:00
Howard Chu
9c8cf1bc04 Fix typo in dec to bin conversion 2007-11-20 18:14:17 +00:00
Howard Chu
2701782cba ITS#5224 add any necessary socket libraries 2007-11-12 07:59:54 +00:00
Howard Chu
a354d38fea Fix typo in prev commit 2007-10-25 06:50:43 +00:00
Howard Chu
183ff5120c Use thread-specific data in pool_context() 2007-10-25 06:48:44 +00:00
Howard Chu
20c4e016fa Added native thread-specific data support 2007-10-25 06:42:40 +00:00
Howard Chu
9bc4ebd12c ITS#5197 add stub for ldap_pvt_thread_pool_query() 2007-10-23 21:14:11 +00:00
Howard Chu
8713229bba Fix liblutil link order 2007-10-19 04:46:41 +00:00
Howard Chu
13c6ef95ce ITS#5194 zero out pool when destroying 2007-10-18 21:13:43 +00:00
Howard Chu
6775e25ba3 In pool_resume don't touch the condvar if the pool is tearing down. 2007-10-18 06:52:54 +00:00
Howard Chu
bdac543b3b Cleanup debug calls 2007-10-18 01:35:07 +00:00
Howard Chu
5418b51643 Quiet request logging 2007-10-10 05:17:49 +00:00
Howard Chu
cbb6f3bd50 ITS#5100 ldap_control_dup - OID must be non-NULL 2007-10-09 01:38:50 +00:00
Howard Chu
a1a63bead0 ITS#4188 check for pool pause every 64 entries. (probably should make 
this number tunable.)
 2007-10-08 01:15:49 +00:00
Pierangelo Masarati
6715f737b7 minor cleanup 2007-10-06 15:40:55 +00:00
Howard Chu
65db0bf8eb ITS#3864 use sasl_ssf_t where expected 2007-10-06 14:55:53 +00:00
Howard Chu
4d58197880 Add lutil_str2bin() for arbitrary length decimal-to-binary conversion 2007-10-01 06:50:19 +00:00
Pierangelo Masarati
d50645fc0a dispose of connection when server down (related to ITS#5127) 2007-09-29 11:24:39 +00:00
Pierangelo Masarati
27e747ad48 fix format 2007-09-29 11:22:31 +00:00
Pierangelo Masarati
3f9df357e8 don't leak file descriptors (coverity) 2007-09-03 16:18:17 +00:00
Howard Chu
8a532879cd More for ITS#5117 - only use libfetch for non-file: URLs 2007-09-02 03:43:58 +00:00
Howard Chu
ec78507682 ITS#5117 try to log a message if chasing an include: fails. Since 
ldif_read_record() doesn't distinguish errors from EOF, this is kind
of futile.
 2007-09-02 02:16:52 +00:00
Howard Chu
670febf7d5 ITS#5105 from Alexey Melnikov @ isode 2007-08-24 21:58:20 +00:00
Pierangelo Masarati
b9e2fd0dd6 ldap_control*_dup() is no longer private; add ldap_pvt_put_control 2007-08-24 12:29:33 +00:00
Pierangelo Masarati
25d46e7578 rework controls API 2007-08-22 22:35:14 +00:00
Pierangelo Masarati
95dd8de586 fix and cleanup 2007-08-22 20:55:54 +00:00
Kurt Zeilenga
0025d7fa1f Fix last commit. 2007-08-22 19:33:28 +00:00
Kurt Zeilenga
e6699ce023 Password policy request control should have no control value. 
Extend ldap_create_control() to supporting creating such.
 2007-08-22 19:26:55 +00:00
Pierangelo Masarati
b0d2063d92 client side of draft-wahl-ldap-session 2007-08-21 23:52:03 +00:00
Pierangelo Masarati
145e6fc1f8 fix or comment Calysto findings 2007-08-21 10:52:16 +00:00
Pierangelo Masarati
ca1aed557b make lutil_uuidstr_from_normalized() return the length of the string 2007-08-17 15:08:47 +00:00
Pierangelo Masarati
403704b7bc move uuid normalized to string to liblutil 2007-08-17 12:42:52 +00:00
Pierangelo Masarati
6df2df130b don't leak in case of error 2007-08-17 09:47:14 +00:00
Pierangelo Masarati
4bc19cbbb9 cleanup tools 2007-08-16 09:22:07 +00:00
Hallvard Furuseth
973a2b41b7 Make LDAP_MEMORY_DEBUG a bitmask. #define LDAP_MEMORY_DEBUG_ASSERT. ITS#4990. 2007-07-24 20:53:23 +00:00
Hallvard Furuseth
17afb33c19 ITS#5010: OID encode/decode fixes and paranoia. #define LBER_OID_COMPONENT_MAX. 2007-07-23 12:57:23 +00:00
Howard Chu
2b67f4face ITS#5056 fix chain_tail processing 2007-07-20 21:28:04 +00:00
Ralf Haferkamp
6ab46208bc Allow utf-8 in AD-Canonical Names 2007-07-13 10:12:27 +00:00
Hallvard Furuseth
e1d42189fa ITS#4990: Fix LDAP_MEMORY_DEBUG and LDAP_MEMORY_DEBUG=0 compilation. 
Declare ber_int_meminuse.  Fix '#if' -> '#ifdef' LDAP_MEMORY_DEBUG.
 2007-07-04 22:55:24 +00:00
Hallvard Furuseth
2ea3d3f621 Ensure ltp_max_pending >= 0; negative values confused pool_query(). 
Remove accidentally added #define LDAP_MAX_PENDING from last commit.
 2007-07-03 11:34:14 +00:00
Hallvard Furuseth
bc8631183c Remove bogus pause wait near end of pool_wrapper(). Add/fix comments. 2007-07-01 16:44:59 +00:00
Pierangelo Masarati
848ea293a3 cleanup 2007-06-19 22:59:53 +00:00
Pierangelo Masarati
7e12342b3b add sub-second result timeout accuracy (for which is which; ITS#4963 with changes) 2007-06-14 22:35:41 +00:00
Hallvard Furuseth
90fe4bd927 ITS#4983: Partly revert tls_thread_self() paranoia from rev 1.154: Only 
require that ldap_pvt_thread_t can be cast to u.long and is not wider.
ITS#5010: In ldap_X509dn2bv(), catch error return from ber_decode_oid().
 2007-06-12 23:57:08 +00:00
Hallvard Furuseth
ed0c9d223a Rename thread contexts to tasks, leaving user contexts the only context. 
Remove ldap_int_thread_ctx_t.ltc_next.al (active list) left over from rev 1.75.
 2007-06-10 23:58:38 +00:00
Hallvard Furuseth
c60f7c1fd2 For ITS#4943: Axe thread pool semaphore code 2007-06-10 23:37:49 +00:00
Hallvard Furuseth
25a7729a12 int -> ber_socklen_t for getsockname() 2007-06-10 20:35:30 +00:00
Hallvard Furuseth
5d083f3859 int -> ber_socklen_t for getsockopt() 2007-06-10 20:34:05 +00:00
Hallvard Furuseth
28da797a3a ITS#5007: Wrap code using MSG_WAITALL in #ifdef MSG_WAITALL. 2007-06-09 23:43:02 +00:00
Hallvard Furuseth
bfdb026fab ITS#5007: Remove void* pointer arithmetic, that's a gcc extension. 2007-06-09 23:41:36 +00:00
Hallvard Furuseth
3750520f6f Fix HP-UX crash: Replace socklen_t with ber_socklen_t from configure. ITS#4629. 2007-06-09 23:35:20 +00:00
Howard Chu
469a45a62f ITS#4992 fix cldap 2007-06-08 09:40:17 +00:00
Howard Chu
431f6fd810 ITS#4955 fix typo in referral chasing 2007-06-08 09:17:00 +00:00
Hallvard Furuseth
b327239618 Remove ltp_active_list. It became unneeded when rev 1.24 added thread_keys[]. 
Tighten loop in pool_pause(): Omit unneeded ltp_pcond signals since rev 1.64.
Fix comment.
 2007-06-04 22:18:01 +00:00
Hallvard Furuseth
b3e4305131 Simplify: Remove tid_zero, thread_keys[].id and ldap_int_main_tid. 
Not needed after ldap_int_thread_userctx_t.ltu_id was added and
_pool_wrapper took care not to update thread_keys[] during pauses.
Fix bogus thread_keys[].ctx comment.
 2007-06-01 15:24:19 +00:00
Hallvard Furuseth
1b890689b1 Add comments. Constify tid_zero. Shut up gcc -Wswitch. if(!tpool)->assert(). 2007-05-31 19:47:38 +00:00
Hallvard Furuseth
1f3e6110b9 Add variable ldap_int_has_thread_pool, assert(at most one pool); 2007-05-31 17:15:54 +00:00
Hallvard Furuseth
9a9d216526 Shut up gcc -Wformat 2007-05-31 17:07:57 +00:00
Hallvard Furuseth
1b15fa9c6e In pool_submit(): 
- Move problematic mutex_unlock()-mutex_lock() into the unused #ifdef
  LDAP_PVT_THREAD_POOL_SEM_LOAD_CONTROL and add a FIXME comment inside.
- Delay ltp_starting--; until pool_wrapper().  Nonzero value could otherwise
  no longer be exposed when !defined LDAP_PVT_THREAD_POOL_SEM_LOAD_CONTROL.
 2007-05-31 12:47:24 +00:00
Hallvard Furuseth
45389c0341 Preserve key order when deleting, so context_reset will free last keys first. 2007-05-31 12:08:50 +00:00
Hallvard Furuseth
7c6b26a68f Make get_thread_info() static. Handle ldap_pvt_thread_pool_t = int (not ptr). 2007-05-30 22:20:20 +00:00
Hallvard Furuseth
101b6b9363 Fix --without-tls (ITS#4975). Enable certificate matching. 2007-05-20 22:48:21 +00:00
Hallvard Furuseth
c47e444698 libldap/tls.c calls CRYPTO_set_id_callback(ldap_pvt_thread_self), which 
causes ldap_pvt_thread_self to be called with the wrong prototype.

That can cause OpenSSL to use a garbage value, e.g. if the unsigned
long it expects takes two words but ldap_pvt_thread_t is an int.

I'm fixing it in HEAD now and also provoking an error if unsigned
long cannot hold a ldap_pvt_thread_t.  Otherwise it can silently
compile to broken code.  Maybe the latter should go in configure,
but since OpenSSL presumably breaks anyway if that fails I don't
see much point at this time.
 2007-05-20 20:02:52 +00:00
Hallvard Furuseth
eb351d9e33 ITS#4972: $LDAP_THREAD_DEBUG, detached threads, debug_already_initialized(). 
Also plug a memory leak, set state vars even when unused for the sake of
debugging, and tweak some readability issues & data types.
 2007-05-18 17:49:38 +00:00
Hallvard Furuseth
6f3cf907b8 Readability patch: ERRVAL() macro for pthreads < 7 vs. >= 7 return values. 2007-05-18 15:28:09 +00:00
Hallvard Furuseth
f906a99eec Only define x509_cert_get_dn() when HAVE_GNUTLS. Remove unused variable. 2007-05-18 15:10:15 +00:00
Howard Chu
d9a43aee44 Fix GNUtls acknowledgement, initial work by Matt Backes. Sponsored by 
The Written Word and Stanford University.
 2007-05-14 23:35:36 +00:00
Ralf Haferkamp
6ee5d7d3da make openssl builds working again 2007-05-14 12:19:32 +00:00
Howard Chu
423f20c915 GNUtls - ignore free of NULL ctx 2007-05-13 09:43:41 +00:00
Howard Chu
5f36d32596 Don't NUL-terminate bervals during DN parsing 2007-05-13 09:37:37 +00:00
Howard Chu
47a8f3213b Merged GNUtls support into main tls.c 2007-05-13 00:15:27 +00:00
Pierangelo Masarati
7601a1f3fb fix read off by one (spotted by valgrind) 2007-05-12 12:38:09 +00:00
Hallvard Furuseth
e509d3ed9a Comment fixes. 
Corrected rev 1.67 cvs comment: ltu_key[] is NULL-terminated _when not full_.
 2007-05-11 18:48:13 +00:00
Howard Chu
236e5f50b3 Added ciphersuite support 2007-05-10 21:49:43 +00:00
Howard Chu
c51fd6c96e Add LDAP_OPT_X_TLS_CRLFILE, peer cert verification for GNUtls 2007-05-10 19:43:28 +00:00
Hallvard Furuseth
810b2389dc Since we only have LDAP_MAXTHR thread_keys, allow max LDAP_MAXTHR 
threads per pool, even when ltp_max_count <= 0 ("unlimited").
Keep ltp_max_count in range [0, LDAP_MAXTHR].
 2007-05-09 23:25:03 +00:00
Hallvard Furuseth
f0a1511422 Make ldap_int_thread_userctx_t.ltu_key[] a proper NULL-terminated array. 
(setkey/getkey expected that, but purgekey could set a NULL in the middle.)
Added some checks for input key!=NULL.

API changes, need review - I'm not sure what's indented here:
- setkey(data=NULL, kfree!=NULL) searched as if intended to reset
  the key, but updated by setting the key.  Now always updates.
- setkey(key=<not found>, data=NULL) could return either success or
  failure.  Now succeeds iff (data == NULL && kfree == NULL).
 2007-05-09 22:59:04 +00:00
Hallvard Furuseth
f5da908c49 thread_keys is a (poor) open-addessed hash table, but it lacked a 
"deleted item" mark.  Add DELETED_THREAD_CTX.
Also improve the hash function a bit, and make the hash unsigned.
 2007-05-09 22:22:44 +00:00
Hallvard Furuseth
8a92825225 Protect thread_keys[] with ldap_pvt_thread_pool_mutex, except in 
ldap_pvt_thread_pool_purgekey() which may only be called during pauses.

Thus, also wait for pauses to finish before accessing thread_keys in
ldap_int_thread_pool_wrapper().  This may prevent pending tasks from
being started when a pause had been requested, which seems to have been
possible.  If that was a feature, we can split ltp_pause==1 in 2 states:
in pause (causes wait), and pause requested.

Also move 'thread_keys[].id = <thread id>' from pool_submit to
pool_wrapper.  Until pool_wrapper set the ctx as well, thread context
lookup would just return NULL anyway.
 2007-05-09 21:38:28 +00:00
Hallvard Furuseth
92afeb8ef7 Replace state LDAP_INT_THREAD_POOL_PAUSING with member ltp_pause, 
so a pause will work during states FINISHING and STOPPING.

Add missing waits and signals, and move waits in pool_wrapper().
Replace if(test) with while(test) when waiting for the multi-purpose
condition variable ltp_cond.
 2007-05-09 19:53:25 +00:00
Hallvard Furuseth
9e9bf22a64 ITS#4943: 
In ldap_pvt_thread_pool_submit(), when backing out of thread creation:
  ltp_pending_count '++' -> '--'.  Signal if there are no more threads.
In ldap_int_thread_pool_wrapper():
  if() -> assert() where false would result in eternal loop.
 2007-05-09 19:34:49 +00:00
Hallvard Furuseth
bb890724d4 Don't complain if detached threads exit after ldap_debug_thread_destroy(). 2007-05-09 19:21:08 +00:00
Hallvard Furuseth
7b7b137832 Cast Debug(%p) pointer argument to void* 2007-05-09 18:38:10 +00:00
Hallvard Furuseth
bbc719ca56 ITS#4948: '#if <undefined macro>' -> '#ifdef' warning cleanup 2007-05-09 18:17:10 +00:00
Howard Chu
b7cfa97817 coverity error, u->lud_scheme is mandatory 2007-05-08 14:13:18 +00:00
Howard Chu
4803e9ba67 Revert prev commit, unnecessary 2007-04-23 14:27:07 +00:00
Howard Chu
7eb1f62f9d ITS#4935 SASL_MAX_BUFF_SIZE should be 2^24 - 1 2007-04-23 14:21:48 +00:00
Pierangelo Masarati
f29a4e140e don't assert(0); apparently, other responses may result from a simple bind (but log them, at least; ITS#4924) 2007-04-11 08:57:41 +00:00
Howard Chu
28493e554c ITS#4912 fix typo in prev commit 2007-04-05 00:16:17 +00:00
Hallvard Furuseth
545b5555fb ber_decode_oid(), ber_encode_oid(): cast bv_val to unsigned char* 2007-04-04 17:51:10 +00:00
Howard Chu
848be16aaf ITS#4879 fixes for url parse/unparse 2007-04-03 03:27:24 +00:00
Howard Chu
b596ae0adf ITS#4875 ignore zero-length st_size 2007-04-03 01:40:52 +00:00
Howard Chu
c80d5f970a ITS#4899 fix for keys not getting cleared 2007-04-01 11:52:51 +00:00
Howard Chu
c49812bf6f ITS#4893 back to pipes... 2007-03-26 12:44:11 +00:00
Howard Chu
867fb2fd9f ITS#4893 just send the client socket, not a pipe descriptor. 2007-03-25 15:20:50 +00:00
Howard Chu
c6df30118f ITS#4893 fix prev commit 2007-03-25 12:18:06 +00:00
Howard Chu
7426ab07fc ITS#4893 define LDAP_PF_LOCAL_SENDMSG in <ac/socket.h> if a message must 
be sent to transmit client credentials. Buffer the message data.
 2007-03-25 04:40:22 +00:00
Howard Chu
724784e6cb Use AC_MEMCPY 2007-03-25 04:31:34 +00:00
Howard Chu
49d708fae3 Preliminary GNUtls support. gnutls.c will merge back into tls.c later. 2007-03-23 23:47:07 +00:00
Howard Chu
b213588f95 Add options for ber_get_stringbv() to omit NUL-terminator, to allow 
non-destructive in-place parsing
 2007-03-23 15:27:38 +00:00
Howard Chu
f2a02b90ed Fix TLS default for clients 2007-03-23 12:47:35 +00:00
Howard Chu
a4f879f9d2 ITS#4880 s/HAVE_POSIX_TERMIOS/HAVE_TERMIOS_H/ 2007-03-23 01:10:58 +00:00
Howard Chu
9fe8f72310 Add DER OID encoder/decoder 2007-03-20 15:10:16 +00:00
Howard Chu
23ba7dfa12 Add ber_skip_data() to help positioning in structured BER data 2007-03-20 12:29:06 +00:00
Pierangelo Masarati
1429b49d1e apparently, time_t is unsigned in some systems 2007-03-12 21:04:01 +00:00
Kurt Zeilenga
0a1301bc6b Add support for uuid_generate/uuid_unparse 2007-03-02 07:36:23 +00:00
Pierangelo Masarati
687ed8861a don't play with URL list if connect(2) is asynchronous 2007-02-21 22:26:26 +00:00
Kurt Zeilenga
b3c4004042 Remove extrananous space in DN (in comment) 2007-02-19 23:39:01 +00:00
Kurt Zeilenga
7beb587a4b Cleanup last commit 2007-02-15 01:42:23 +00:00
Kurt Zeilenga
a9aeb858fe Needs <ac/time.h> 2007-02-15 01:20:46 +00:00
Howard Chu
8db4bd2cc9 Coverity error, uninit'd rc 2007-02-13 11:13:14 +00:00
Howard Chu
1f635b8bcf ITS#4707 added new ldap_init_fd() API 2007-02-12 04:20:24 +00:00
Howard Chu
ee2001ea4b Note mutex protection requirements 2007-02-11 13:45:39 +00:00
Howard Chu
6cbf65642a Move duplicate timestamp detection into lutil_gettime() 2007-02-11 13:42:29 +00:00
Howard Chu
ced581bfa3 Cleanup extraneous debug 2007-02-11 13:01:32 +00:00
Howard Chu
a1aa7c284d Revert to original ldap_get_option( TIMEOUT ) behavior 2007-02-06 23:02:47 +00:00
Howard Chu
7ac06970e6 Don't let timestamps go backward 2007-02-06 04:48:35 +00:00
Howard Chu
75d0b4ee97 Require non-NULL input for timeout options 2007-02-05 20:38:25 +00:00
Howard Chu
0c542682b1 Timeouts should not be malloc'd 2007-02-05 20:32:44 +00:00
Howard Chu
b984564dbd Handle timeouts from ldap_result() 2007-02-05 12:30:40 +00:00
Howard Chu
b4c2cf250d Fairly sure this is what the TIMEOUT option should always have been for 2007-02-05 10:10:24 +00:00
Howard Chu
e0ed944be3 Added ber_bvarray_dup_x() 2007-02-05 04:31:38 +00:00
Howard Chu
4b1bb81452 Add lutil_gettime() returning structured time with microseconds. Use 
microseconds in CSNs. Omit microseconds from modifyTImestamp...
 2007-02-02 23:10:30 +00:00
Pierangelo Masarati
5afd693a6d remove unused code 2007-02-02 12:38:32 +00:00
Howard Chu
de46a75158 Keep HAVE_POLL functionality inside its #ifdefs 2007-02-02 12:29:21 +00:00
Howard Chu
f97f109483 Fix prev commit again 2007-01-28 02:12:29 +00:00
Howard Chu
99a8deb160 ITS#4821 partially revert prev patch 2007-01-27 18:40:02 +00:00
Howard Chu
977bd839cc Calling setkey() with NULL data and kfree should erase the key. 2007-01-25 11:53:09 +00:00
Howard Chu
2298595ea3 Free thread keys in reverse order of allocation 2007-01-25 11:13:15 +00:00
Howard Chu
52a7af8230 ITS#4815 get_option for TLS Cipher Suite was not implemented 2007-01-24 23:38:26 +00:00
Howard Chu
26a47e7bd0 Framework for loadable mapper implementations 2007-01-12 23:20:17 +00:00
Hallvard Furuseth
cb27c61010 avoid nonconst* = const* assignment in ldif_open_url(). 2007-01-11 12:06:31 +00:00
Hallvard Furuseth
d16754c81b Delete unused variables. 2007-01-11 12:04:22 +00:00
Howard Chu
f1784a54e6 ITS#4648, alternate fix 2007-01-10 08:52:07 +00:00
Pierangelo Masarati
7ee7699bb9 more on ITS#4799 2007-01-10 01:18:52 +00:00
Howard Chu
bec25494fe ITS#4799 remove kerberos / kbind references 2007-01-10 00:20:42 +00:00
Howard Chu
9ece06c8f5 ITS#4799 remove all references to kbind 2007-01-09 23:48:28 +00:00
Pierangelo Masarati
9b5ea6a205 honor network timeout even when doing full async 2007-01-07 22:05:33 +00:00
Pierangelo Masarati
aa3c9bad3e First cut to truly async connect: 
- after connect(2), if async the connection is in "connecting" state
	- the first time a request is sent, "connecting" conns are polled
		- in case of success, the request is sent
		- in case still connecting, LDAP_X_CONNECTING is returned;
		  clients are expected to retry later
	- the "async" behavior must be explicitly enabled by setting
	  the LDAP_OPT_CONNECT_ASYNC option

"local" connections need work
 2007-01-07 19:20:46 +00:00
Pierangelo Masarati
5513ac6335 import of LDAP Sync client API 2007-01-06 18:28:32 +00:00
Pierangelo Masarati
c310cfd837 minor cleanup 2007-01-06 18:27:34 +00:00
Pierangelo Masarati
5ce13437de unsolicited responses shouldn't necessarily end the connection 2007-01-05 15:23:39 +00:00
Pierangelo Masarati
8cb4f6b348 fix previous commit 2007-01-04 19:26:59 +00:00
Pierangelo Masarati
d4324d5813 fix \& improve previous commit 2007-01-04 18:33:45 +00:00
Pierangelo Masarati
4b75dd6be3 implement client-side handling of RFC 4511 unsolicited responses and "Notice of Disconnect" 2007-01-04 15:01:22 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
dd94ddba57 don't leave dependencies on liblutil in libldap :) 2006-12-17 22:04:25 +00:00
Howard Chu
28a1868127 Eliminate redundant checks in try_read1msg 2006-12-14 10:02:14 +00:00
Howard Chu
157069fe91 ITS#4545 better fix. this code still needs cleaning up. 2006-12-14 06:58:57 +00:00
Howard Chu
6350fad63f ITS#4545 when referral chasing is off, complete the request 2006-12-13 00:36:12 +00:00
Pierangelo Masarati
5a000a9b91 fix warnings after previous commit 2006-12-04 00:11:12 +00:00
Pierangelo Masarati
a76b702d4c fix request/result abandon 2006-12-03 20:56:25 +00:00
Howard Chu
7540751392 ITS#4723 add CRYPTO_set_id_callback 2006-11-30 06:37:12 +00:00
Howard Chu
2ccecba836 URL with authority spec must use absolute path 2006-11-27 19:03:59 +00:00
Howard Chu
e7be7301c2 allow file: URLs without authority spec. 2006-11-27 18:59:46 +00:00
Howard Chu
9446f8554b define LDIF_MAXLINE instead of using BUFSIZ 2006-11-27 18:59:04 +00:00
Pierangelo Masarati
72e586ba36 revert previous commit; disable RESTART from ldap.conf 2006-11-13 23:51:52 +00:00
Pierangelo Masarati
3c1df853e4 fix endless loop in canceling child requests; cleanup 2006-11-12 14:22:24 +00:00
Howard Chu
7eb3d25a5b Silence warning in prev commit 2006-11-10 10:42:39 +00:00
Howard Chu
b42d93f24f ITS#3755 silence strict-aliasing warnings 2006-11-10 10:39:54 +00:00
Howard Chu
8e48a3c317 ITS#4726 call ldap_pvt_tls_init() in init_ctx() to make sure initialization 
is done
 2006-11-09 23:00:38 +00:00
Howard Chu
961f0ba113 Fix strval2strlen end-of-string check. Otherwise passing in a string 
without string[len] == '\0' causes assert in ldap_dn2bv_x.
 2006-11-08 23:57:02 +00:00
Pierangelo Masarati
4f351fbd90 fix build with thread debugging 2006-11-05 09:22:53 +00:00
Pierangelo Masarati
dc871de33d cleanup prvious commit; log number of abandoned requests waiting for response... 2006-11-02 19:11:18 +00:00
Howard Chu
60a25c72ba ITS#4724 revert prev commit, better fix. 2006-10-30 18:44:52 +00:00
Howard Chu
29fbd00272 ITS#4724 fix _uccase_map parameters 2006-10-30 07:54:39 +00:00
Pierangelo Masarati
71bcd4a4b6 s/ldap_int_discard/ldap_pvt_discard/ 2006-10-28 18:13:12 +00:00
Pierangelo Masarati
57259831c6 fix message (ITS#4717) 2006-10-28 16:19:08 +00:00
Kurt Zeilenga
dbaf7c5c25 More ldapbis cleanup 2006-10-28 04:47:58 +00:00
Kurt Zeilenga
ba2d7ec007 More LDAPBIS cleanup 2006-10-28 03:27:01 +00:00
Kurt Zeilenga
4587e053e7 Misc LDAPbis comment update 
Remove unnecessary ISOC notices
 2006-10-27 19:37:04 +00:00
Pierangelo Masarati
5ee5709993 fix build without threads (ITS#4721) 2006-10-26 22:03:12 +00:00
Pierangelo Masarati
6416d83372 add ldap_int_discard(); use it in proxies (ITS#4717) 2006-10-22 20:31:41 +00:00
Kurt Zeilenga
60e1237c4e Parse txn failed msgid 2006-10-20 06:46:38 +00:00
Pierangelo Masarati
968da1cb14 add LDAP_OPT_DIAGNOSTIC_MESSAGE; replace deprecated option names 2006-10-14 17:04:17 +00:00
Pierangelo Masarati
387c21c7dd apply slightly revised patch for SO_KEEPALIVE (ITS#4708) 2006-10-14 12:42:33 +00:00
Pierangelo Masarati
3dc7480b8b minor cleanup 2006-10-09 21:18:36 +00:00
Pierangelo Masarati
799f2b1449 I hate code duplication, but don't require functions from liblutil in libldap.so 2006-10-08 17:14:04 +00:00
Howard Chu
e16058d857 TS#4635 CR LF is also a valid line separator 2006-10-07 22:18:15 +00:00
Pierangelo Masarati
2f964def8a add support for VERSION, TIMEOUT and NETWORK_TIMEOUT in ldap.conf 2006-09-26 02:34:36 +00:00
Pierangelo Masarati
a9a4a14d80 use AC_LINE_MAX 2006-09-26 00:33:44 +00:00
Pierangelo Masarati
7ed909045f document the LDAP builtin map in librewrite (ITS#4602) 2006-09-24 17:50:48 +00:00
Pierangelo Masarati
0ccdccd0a7 further cleanup 2006-09-24 17:26:17 +00:00
Pierangelo Masarati
5385d13bf8 fix previous commit 2006-09-23 16:10:07 +00:00
Pierangelo Masarati
0d05846dc8 fix potential double free in case of error 2006-09-23 15:43:55 +00:00
Pierangelo Masarati
6a6aa424bc improve functionality of LDAP map: allow protocol version 2006-09-23 13:04:55 +00:00
Pierangelo Masarati
ccdb52ed47 fix way long standing bug in args parsing 2006-09-23 12:33:03 +00:00
Pierangelo Masarati
43f7706c49 add URL parsing test tool 2006-09-23 11:44:16 +00:00
Kurt Zeilenga
62f4745bfc ITS#4679 cleanup 
Note: the caller is expected to pass in a valid LDAP handle.  If not,
the assert will trigger to let him know his code is broken.
 2006-09-21 20:02:55 +00:00
Pierangelo Masarati
67f3fd8078 monitor __ALL__ thread parameters 2006-09-14 18:55:02 +00:00
Howard Chu
deea7b5530 MSVC compatibility 2006-09-14 08:06:49 +00:00
Howard Chu
2cc356588e dirent emulation for MSVC 2006-09-14 08:01:05 +00:00
Howard Chu
57c329a3af ITS#4606 errno is not per-thread on WIN32, always use WSAGet/SetLastError 
(with notable exceptions: ignore tests for EINTR which winsock never sets)
 2006-09-14 06:35:34 +00:00
Pierangelo Masarati
4481502313 use a more reasonable max line length (ITS#4669) 2006-09-12 20:41:37 +00:00
Pierangelo Masarati
ae20e41b70 fix outdated comments 2006-09-06 12:04:52 +00:00
Pierangelo Masarati
d12f5fbcb5 add scope helpers 2006-09-06 12:04:33 +00:00
Pierangelo Masarati
06b491a446 better function name 2006-09-01 16:21:20 +00:00
Pierangelo Masarati
b45c0c881d keep count of requests in use 2006-09-01 14:00:58 +00:00
Pierangelo Masarati
517ae66152 don't risk dangling pointers 2006-09-01 13:59:55 +00:00
Pierangelo Masarati
d1e00eef03 don't use deprecated functions 2006-09-01 13:57:37 +00:00
Pierangelo Masarati
cb3248f173 cleanup 2006-09-01 10:01:36 +00:00
Pierangelo Masarati
82f7a0a3bd re-fix ITS#4405 (really start from the first conn) 2006-08-18 17:12:16 +00:00
Pierangelo Masarati
b03afa868c skip host="" and port=0 (ITS#4610) 2006-08-05 17:08:40 +00:00
Howard Chu
a7870943f7 Fix TLS CTX ref counting 2006-07-02 22:38:01 +00:00
Kurt Zeilenga
3f9201e95b some LDAP ASN.1 updates from 4511/4526 2006-06-15 05:18:06 +00:00
Pierangelo Masarati
8f1c5c4df5 improve previous commit 2006-06-15 01:47:39 +00:00
Pierangelo Masarati
8b76e15d28 fix ber_bvreplace() in case dst is NULL and src is empty 2006-06-15 01:42:25 +00:00
Pierangelo Masarati
b5e33f8de9 don't search past end of berval 2006-06-13 20:34:02 +00:00
Pierangelo Masarati
41ceb4af9d don't risk using dangling pointers when looping thru connections (ITS#4405) 2006-06-13 18:00:33 +00:00
Howard Chu
15853f1e74 ITS#4583 use mutex around SSL_accept() 2006-06-08 19:35:42 +00:00
Pierangelo Masarati
7a3ff8ddc2 count requests and responses in logs 2006-05-27 10:17:34 +00:00
Howard Chu
40f818daef Fix tavl_delete for two-node trees 2006-05-25 05:03:56 +00:00
Howard Chu
2d97c1cae1 ITS#4549 add tavl_find3() to return closest match 2006-05-19 15:24:16 +00:00
Pierangelo Masarati
6b889b0a8a s/fprintf/Debug/ (ITS#4553); lock ld_conn_mutex before accessing conn(s) 2006-05-18 00:59:13 +00:00
Pierangelo Masarati
86b566f029 cleanup 2006-05-18 00:37:56 +00:00
Pierangelo Masarati
2b29cf4909 fix rev 1.125 commit 2006-05-17 22:13:39 +00:00
Pierangelo Masarati
6a2c344217 typo in comment 2006-05-14 12:14:08 +00:00
Howard Chu
25f81a48e6 Add SSL failure reason to TLS: can't connect message. 2006-05-13 00:29:28 +00:00
Howard Chu
ff40a705da ITS#4541 better fix 2006-05-12 06:33:27 +00:00
Howard Chu
da0ec66ceb ITS#4541 refine commit for #4524 2006-05-12 06:16:32 +00:00
Howard Chu
dc96eca891 ITS#4536 set chain_tail after sorting messages 2006-05-11 09:07:08 +00:00
Howard Chu
7b10f413d9 Fix ITS#4533 don't destroy input request 2006-05-10 15:01:50 +00:00
Pierangelo Masarati
373ded8d24 add URI list resorting feature (ITS#4524) 2006-05-06 16:15:25 +00:00
Pierangelo Masarati
af1f87b96d ldap_pvt_runqueue_next_sched() may return a pointer to data that's freed by task run earlier (ITS#4517) 2006-05-02 20:32:37 +00:00
Howard Chu
f269301ab9 Add ldap_pvt_thread_pool_tid() 2006-05-02 00:56:42 +00:00
Hallvard Furuseth
dc5c8409f6 Add missing "static" to last commit 2006-05-01 15:23:16 +00:00
Hallvard Furuseth
19b3812643 Introduce ldap_debug_thread_wrapper() to notice threads that exit by returning 2006-04-30 01:15:57 +00:00
Howard Chu
5b8a74590b Fix tpool_shutdown, don't remove pool from list since pool_destroy 
already does it.
 2006-04-29 22:31:58 +00:00
Howard Chu
7026d5219f Fix adjust_count, missing break 2006-04-29 22:31:33 +00:00
Howard Chu
e1ec64aaee rmutex_lock etc.: caller supplies thread id 2006-04-28 21:39:38 +00:00
Howard Chu
0a7808fbad Added recursive mutex implementation 2006-04-28 20:12:45 +00:00
Howard Chu
70de4ee403 Fix lutil_parsetime parsing fractional seconds 2006-04-28 01:26:05 +00:00
Pierangelo Masarati
8242166888 print the correct search base when taken from ldaprc (ITS#4504) 2006-04-25 22:23:00 +00:00
Pierangelo Masarati
716d1770a2 fix strtoul() odd interface 2006-04-25 15:46:44 +00:00
Pierangelo Masarati
a42367ae3a cleanup 2006-04-24 17:20:13 +00:00
Pierangelo Masarati
77e7acc4f9 cleanup; make sure no spurious error code slip thru 2006-04-24 12:12:14 +00:00
Howard Chu
478ae2346e PPOLICY_ERROR is primitive, not constructed 2006-04-22 00:23:44 +00:00
Howard Chu
68b374dd4a Fix EXPIRE/GRACE ber tags 2006-04-21 23:47:53 +00:00
Hallvard Furuseth
02bb67044b Cleanup since last patch (remove unused label) 2006-04-13 22:13:42 +00:00
Howard Chu
eb0c92c7df Return rc for tls_init_def_ctx 2006-04-11 20:35:37 +00:00
Pierangelo Masarati
dfc8e7f6b8 better fix for ITS#4483 2006-04-09 22:29:42 +00:00
Pierangelo Masarati
623a7a9fe2 Berlement already freed in ber_flush 2006-04-08 17:43:53 +00:00
Pierangelo Masarati
23c620a637 don't leak a BerElement 2006-04-08 17:34:00 +00:00
Pierangelo Masarati
74b6ab9029 more cleanup 2006-04-08 11:01:19 +00:00
Howard Chu
571ac24b33 Fix destruct sequencing 2006-04-07 02:41:58 +00:00
Howard Chu
056b193ed7 Don't implicitly inherit the default SSL_CTX, tls.c:alloc_handle will 
set it explicitly and handle its refcount.
 2006-04-07 01:52:32 +00:00
Howard Chu
9693c800bf Free/decrement SSL_CTX refcount when (re)setting it 2006-04-07 01:15:56 +00:00
Pierangelo Masarati
301394c28d allow a build tree different from the source tree (ITS#4480) 2006-04-07 01:15:07 +00:00
Howard Chu
7709d4d89e Bump SSL_CTX refcount whenever it gets retrieved 2006-04-07 01:13:31 +00:00
Howard Chu
d18277eac9 ITS#4422, #4475 
Move TLS options into struct ldapoptions.
  Added ldap_int_tls_destroy()
  Added LDAP_OPT_X_TLS_NEWCTX to generate new SSL_CTX
 2006-04-07 00:52:38 +00:00
Howard Chu
51d5db03ff ITS#4422, rearrange options to allow passing NULL args to TLS/Cyrus 2006-04-07 00:48:41 +00:00
Pierangelo Masarati
8395383d2c fix ITS#4435 2006-04-06 01:27:16 +00:00
Hallvard Furuseth
b70d6dd8e6 LDAP_RDWR_DEBUG update: 
- Avoid buffer overrun when too many readers.
- When remoinv reader ID, move one ID instead of all later IDs in array.
- assert(correct lock owner) before unlocking a write lock.
 2006-04-05 20:08:34 +00:00
Hallvard Furuseth
ca4a4456e8 LDAP_THREAD_DEBUG revamping, cleanup, bug fixes. 
Expand usage struct with magic numbers and state info.
Add options "noreinit", "nosync", "nomem", "threadID".  Remove "dupinit".
Detect address changes.  Turn off thread ID tracking by default.
 2006-04-05 19:52:07 +00:00
Hallvard Furuseth
7057f8756c thr_yield() returns void, so do not use its "return value" (ITS#4469) 2006-04-03 17:10:38 +00:00
Hallvard Furuseth
7a113f0759 Restore $LDAP_THREAD_DEBUG=off functionality (was lost in last patch). 2006-04-03 12:49:30 +00:00
Pierangelo Masarati
8823f5cc87 fix ITS#4450? 2006-04-03 00:34:35 +00:00
Howard Chu
e1664b1f42 plug leak 2006-04-02 21:06:28 +00:00
Hallvard Furuseth
f67fecc7fb Warning cleanup: destroy_actions() returns no value; use return type void 2006-04-02 19:55:05 +00:00
Hallvard Furuseth
da0c0360e4 Warnings: Unused vars. funcptr=0, not =NULL. if(b=...) -> if((b=...) != NULL). 2006-04-02 19:54:24 +00:00
Hallvard Furuseth
581c1ff6c7 Cast ctype.h char arguments to unsigned char 2006-04-01 23:44:42 +00:00
Pierangelo Masarati
cad751250e allow mutex ownership detection (thanks to Hallvard) 2006-04-01 19:00:37 +00:00
Pierangelo Masarati
d9afc113c5 thread cleanup 2006-04-01 18:54:31 +00:00
Hallvard Furuseth
9313508035 Expand and clarify thr_debug documentation. 2006-04-01 18:31:38 +00:00
Pierangelo Masarati
bf860f0596 ld_abandoned must be protected by ld_res_mutex 2006-04-01 00:30:07 +00:00
Howard Chu
9686c7ce99 cleanup 2006-03-31 21:31:32 +00:00
Howard Chu
1c0d2ad7ae cleanup NULL string handling 2006-03-31 21:30:06 +00:00
Howard Chu
de36ebd08c cleanup NULL deref 2006-03-31 21:20:36 +00:00
Howard Chu
2d4da0b23c Cleanup NULL derefs 2006-03-31 21:18:04 +00:00
Howard Chu
aa87b9ad2e cleanup dead code 2006-03-31 21:07:53 +00:00
Howard Chu
8c4711e9db plug leaks 2006-03-31 20:36:53 +00:00
Howard Chu
0b72c15e52 plug leaks 2006-03-31 20:20:53 +00:00
Howard Chu
7fb8fd446a plug leaks 2006-03-31 20:06:49 +00:00
Kurt Zeilenga
40d75df606 Additional TXN changes (a work in progress) 2006-03-30 18:00:04 +00:00
Pierangelo Masarati
177c051f0f use asynchronous API; note that an endless loop may occur (ITS#4450; no fix yet) 2006-03-25 08:16:19 +00:00
Pierangelo Masarati
f48bf42578 seems to fix referral chasing (ITS#4448) 2006-03-24 01:18:36 +00:00
Pierangelo Masarati
70211e9be5 handle abnormal condition 2006-03-23 18:36:10 +00:00
Pierangelo Masarati
8c9f071238 duplicate string from environment, as it may be overridden by the user (ITS#4436) 2006-03-20 11:57:16 +00:00
Pierangelo Masarati
df2b44c3b9 destroy ld_conn_mutex (ITS#4441) 2006-03-20 11:14:43 +00:00
Kurt Zeilenga
544d00f3e5 Fix encoding 2006-03-07 21:48:47 +00:00
Kurt Zeilenga
fad69dbef8 Additional TXN changes 2006-03-07 02:21:27 +00:00
Kurt Zeilenga
825ce79611 Initial and rough client-side implementation of the revised LDAP 
Transactions specification.  A work in progress!  Comments welcomed.
 2006-03-06 21:20:36 +00:00
Luke Howard
e5a5f5e1b2 Don't fail compile if LDAP_EXOP_X_TURN undefined (ie. if LDAP_REL_ENG undefined) 2006-03-05 04:23:59 +00:00
Luke Howard
0ccbce9d09 Always pass valid BerElement to ldap_create_control() to avoid assert fail 2006-03-02 16:50:34 +00:00
Kurt Zeilenga
8c8ea049cb Macro cleanup 2006-02-16 05:01:29 +00:00
Kurt Zeilenga
cbc11c9233 unifdef -DLDAP_NULL_IS_NULL 2006-02-14 23:18:12 +00:00
Kurt Zeilenga
2d9e341ae9 Report layer installed only after installed, and fix up report text 2006-02-13 23:26:55 +00:00
Howard Chu
57233907ad ITS#4363 avoid running ucgendat unnecessarily 2006-02-10 19:15:35 +00:00
Kurt Zeilenga
fe8e3b7efa Kludge for MSAD (ITS#4391 and others) 2006-02-07 01:20:55 +00:00
Howard Chu
9870eba3ee ITS#4368 unlock pool ltp_mutex before destroying it 2006-01-24 23:31:56 +00:00
Howard Chu
fb4cba514d ITS#4354 only set DH callback if OPT_DHFILE has been set. 2006-01-19 18:12:15 +00:00
Howard Chu
84315e96f8 ITS#4349 don't wait on condition if there are no threads in the pool. 2006-01-18 01:55:24 +00:00
Howard Chu
7f5ea4c098 Get rid of trivial yield, for completeness' sake. 2006-01-15 14:34:44 +00:00
Howard Chu
78a9d66e53 ITS#3950 delete gratuitous yield. (could use pthread_cond_timedwait 
if we ever wanted to time out idle threads.)
 2006-01-15 14:21:16 +00:00
Kurt Zeilenga
48c34d254f Update proxied authorization implementation to use IANA 
assigned result code.
 2006-01-12 22:55:56 +00:00
Pierangelo Masarati
056b7e55da silence warning 2006-01-12 18:29:33 +00:00
Howard Chu
41c46bdb4e Tone down dn2bv/bv2dn logging 2006-01-12 06:07:42 +00:00
Luke Howard
86d1072917 ITS#4327 - make SASL_MECH/SASL_REALM no longer user-only options 2006-01-11 17:28:30 +00:00
Pierangelo Masarati
c5c5ba0b32 s/o/lo/ 2006-01-09 21:02:52 +00:00
Pierangelo Masarati
e94ded997d fix typo in previous commit 2006-01-09 11:18:01 +00:00
Kurt Zeilenga
be8676f780 s/pagectrl.o/pagectrl.lo/ 2006-01-09 05:25:43 +00:00
Kurt Zeilenga
d8eace75a7 cleanup 2006-01-09 05:22:46 +00:00
Kurt Zeilenga
eccd913a07 Update variables holding protocol values to ber_*_t's 
Remove old grouping/txn code (pending redesign)
 2006-01-09 01:25:53 +00:00
Pierangelo Masarati
564dca34bf fix types; further check parameters 2006-01-08 22:45:35 +00:00
Pierangelo Masarati
de79a7bfec rework API functions to create/parse controls; add client API functions to handle RFC2696 paged results (ITS#4314; patch from Hans Leidekker with changes) 2006-01-08 22:03:30 +00:00
Kurt Zeilenga
bca31173d8 Update (and rename) Sort and VLV parse routines to expect actual 
control to be directly passed in.
 2006-01-08 19:34:01 +00:00
Kurt Zeilenga
8ab4786ef2 correct typo 2006-01-08 19:11:57 +00:00
Kurt Zeilenga
d88f4e8197 cleanup 2006-01-08 17:11:15 +00:00
Pierangelo Masarati
339b9c371e rfc2589 support (ITS#4293) 2006-01-06 17:46:52 +00:00
Howard Chu
d1693d4a07 ITS#3950 tweak prev commit, s/REPLACE_SCHED_YIELD/REPLACE_BROKEN_YIELD/ 2006-01-06 06:07:36 +00:00
Kurt Zeilenga
f5fd375d38 i before e and other cleanup 2006-01-06 05:50:51 +00:00
Kurt Zeilenga
21d15546d3 Make use of nanosleep/select as a sched_yeild(2) replacement 
conditional on REPLACE_SCHED_YEILD.   Configure support
needed.
 2006-01-06 05:22:35 +00:00
Howard Chu
69179a5c44 ITS#3950 use select instead of yield when select does the right thing. 2006-01-06 01:02:00 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Kurt Zeilenga
cdbbed6c3b improve LDAP_OTHER description 2006-01-03 19:45:26 +00:00
Pierangelo Masarati
0e6f61aa03 fix leaks in ldap_parse_passwd() 2006-01-02 13:27:29 +00:00
Pierangelo Masarati
ad4a21f1a4 cleanup time unparsing (don't add trailing 0s if other multiples have already been used) 2006-01-02 08:14:55 +00:00
Pierangelo Masarati
eb734a167b add severity-aware logging (ITS#4282) 2005-12-27 16:29:37 +00:00
Pierangelo Masarati
283f79c268 improve previous commit (one line, use buffer and truncate if required) 2005-12-16 12:18:55 +00:00
Pierangelo Masarati
3edbd4fee7 log attrs 2005-12-15 19:12:09 +00:00
Pierangelo Masarati
fcda57e90f use macros instead of numbers... 2005-12-13 20:11:26 +00:00
Pierangelo Masarati
73acecaf0f cleanup 2005-12-13 15:53:10 +00:00
Howard Chu
341ac2a066 Fix prev commit again, relative paths are legal. 2005-11-26 22:34:23 +00:00
Howard Chu
b4b8f12439 ITS#4221 fix -r1.6 2005-11-26 21:56:58 +00:00
Kurt Zeilenga
71cf424b77 unifdef -DLDAP_SCOPE_SUBORDINATE 2005-11-26 06:35:36 +00:00
Pierangelo Masarati
f86543c770 cleanup filter escaping 2005-11-25 12:16:27 +00:00
Pierangelo Masarati
6ab23ef926 add more versatile private API for filter escaping 2005-11-25 10:41:33 +00:00
Pierangelo Masarati
c655139449 fix ldap_bv2escaped_filter_value() according to <draft-ietf-ldapbis-filter> 2005-11-25 01:12:32 +00:00
Pierangelo Masarati
d34fffcaf9 use lutil_ato*() whenever appropriate 2005-11-24 01:10:05 +00:00
Kurt Zeilenga
ec24e6293f Another getpeerucred(3) fix. 2005-11-23 19:41:28 +00:00
Kurt Zeilenga
dc98982397 cleanup last commit 2005-11-23 19:40:08 +00:00
Kurt Zeilenga
7468c7fb58 Support Solaris 10's getpeerucred(3) (*** blind commit ***) 2005-11-23 18:55:31 +00:00
Kurt Zeilenga
54a921caa9 s/ACCRIGHTS/ACCRIGHTSLEN/ 2005-11-23 18:47:52 +00:00
Kurt Zeilenga
c5c5a7f19b s/ACCRIGHTS/ACCRIGHTSLEN/ 2005-11-23 18:22:02 +00:00
Pierangelo Masarati
25fe62efde add support for error-handling number/time parsing functions; need to replace ato{il}/strto[u]l throughout the code 2005-11-23 12:46:33 +00:00
Pierangelo Masarati
1ce491e4f4 fix library checks; implement client side of "touch" modify (ITS#4183) 2005-11-20 14:17:37 +00:00
Pierangelo Masarati
af23be3675 silence warnings... 2005-11-14 21:47:17 +00:00
Hallvard Furuseth
6a778f99f5 Fix lutil_memrchr(): 
Avoid void* pointer arithmetic.
Convert int c to unsigned char, so c=<negative char value> will match.
Do not decrement pointer below start of array (even when value is not used).
 2005-11-14 15:40:01 +00:00
Pierangelo Masarati
474dfbc8fd don't trust strchr/strrchr with bervals 2005-11-13 22:26:53 +00:00
Pierangelo Masarati
4a6f4369c0 don't malloc empty strings for matched, error 2005-11-12 18:42:03 +00:00
Howard Chu
10c94f4e58 Cleanup lbo_valid / meminuse / memfuncs 2005-11-12 18:26:17 +00:00
Howard Chu
146b2c5389 ITS#4082 tls ctx requirements are only applicable to servers, or clients 
with tls_opt_require_cert = TRY or DEMAND. Ignore requirements for clients.
 2005-11-08 13:42:10 +00:00
Pierangelo Masarati
5be72fe816 don't allow '{' in TK_BAREWORD (ITS#4116) 2005-11-07 22:53:43 +00:00
Pierangelo Masarati
a6453f28f8 silence warnings 2005-11-06 23:27:09 +00:00
Kurt Zeilenga
4f63434511 Improve SASL error handling 2005-11-06 22:43:23 +00:00
Pierangelo Masarati
e1a7fa2ee9 fix ldap_bv2escaped_filter_value 2005-11-06 11:41:42 +00:00
Howard Chu
d67a2f2044 Move lconn_tls_ctx to ldo_tls_ctx. Otherwise clients cannot set it after 
ldap_initializ'ing an LD and before connecting on it. Really all of the
global TLS options belong in the ldapoptions struct, instead of static vars.
 2005-11-05 12:49:43 +00:00
Pierangelo Masarati
f571f4b2b4 fix previous commit 2005-11-03 20:11:22 +00:00
Pierangelo Masarati
561cd3d845 don't leak hostname 2005-11-03 15:17:48 +00:00
Pierangelo Masarati
3aca011938 fix previous commit 2005-11-03 11:42:44 +00:00
Pierangelo Masarati
fde95747cb plug leaks 2005-11-03 10:56:49 +00:00
Pierangelo Masarati
4e5eb991eb plug (one time?) leaks 2005-11-03 10:52:58 +00:00
Kurt Zeilenga
ecd86725f2 Update result code to IANA-assigned values 
Provide some backwards compatibility.
Misc cleanup
 2005-11-03 01:27:07 +00:00
Howard Chu
6fcfaedf90 ITS#4137 was returning with tls_def_ctx_mutex locked. 2005-11-02 23:43:19 +00:00
Kurt Zeilenga
461ed37970 cleanup 2005-11-01 20:33:49 +00:00
Pierangelo Masarati
9c056f95fe consistently use HSTRERROR (ITS#4124) 2005-10-31 15:04:37 +00:00
Howard Chu
f80e9d11fa Fix prev commit, spawns unnecessary threads. 2005-10-28 10:31:21 +00:00
Howard Chu
4ebed09d81 ITS#4017, additional revisions for DH parameters 2005-10-28 05:35:19 +00:00
Howard Chu
71514ffb92 Fix pool_submit, create threads as long as we're under the max count. 2005-10-27 21:55:18 +00:00
Kurt Zeilenga
551d94c6e8 Additional serverSaslCred trace messages. 
Misc. cleanup
 2005-10-20 03:49:22 +00:00
Howard Chu
5e416949e0 Fix ldapi DN ordering 2005-10-17 12:57:53 +00:00
Pierangelo Masarati
d277c5b3d6 silence SLAP_SEM_LOAD_CONTROL related warnings... 2005-10-16 08:58:06 +00:00
Kurt Zeilenga
533394d641 disable SLAP_SEM_LOAD_CONTROL by default, needs additional review/work 
Misc. other cleanup
 2005-10-16 00:17:58 +00:00
Kurt Zeilenga
279033fc1c ITS#3440: (blind) fix for VxWorks inet_ntoa(3) leak, 
use inet_ntoa_b(3) instead.
 2005-10-14 03:40:03 +00:00
Kurt Zeilenga
408fa06f95 missed \ 2005-10-13 06:53:32 +00:00
Kurt Zeilenga
a534d5fb6b Add ldap_bv2escaped_filter_value (ITS#2535) 2005-10-13 06:35:28 +00:00
Kurt Zeilenga
6db7e605ee Align Operation buffers using LBER_ALIGNED_BUFFER 2005-10-12 23:17:28 +00:00
Kurt Zeilenga
0ea43c9d7d Assume TLS is properly configured if any one of 
keyfile, certfile, cacertfile, or cacertdir is
provided.  Note that TLS can be properly configured
without any of these when non-X.509 cipher suites
are used, so this might have be rethought.
 2005-10-12 20:31:04 +00:00
Howard Chu
bb3c3f654f Fix typo 2005-10-12 00:31:05 +00:00
Howard Chu
f18c63fa13 Add LDAP* to debug messages to aid tracking 2005-10-12 00:23:30 +00:00
Howard Chu
e8b1b004d4 Fix ITS#3832 must mutex protect ld->ld_conns 2005-10-12 00:05:43 +00:00
Howard Chu
f54bc26357 ITS#4072 ldap_pvt_tls_init_def_ctx() returns LDAP_NO_SUPPORT if not 
sufficiently configured. Update slapd/slurpd to act appropriately.
 2005-10-09 19:55:39 +00:00
Howard Chu
2ea5a66be2 ITS#2942 skip referrals that we've already chased 2005-10-09 10:01:38 +00:00
Howard Chu
a8a23840b8 Simplify lm_chain_tail handling, support LDAP_MSG_RECEIVED 
Drop support for LDAP_MORE_RESULTS_TO_RETURN
 2005-10-08 18:51:14 +00:00
Howard Chu
fc79957ad6 Don't set ndelay on socket connect if no timeout was specified 2005-10-08 18:19:50 +00:00
Howard Chu
9095af5928 ITS#4017 support Diffie-Hellman parameters for multiple key lengths 2005-10-05 20:01:52 +00:00
Howard Chu
c82ae524b9 Make time counter zero based 2005-10-05 15:45:22 +00:00
Pierangelo Masarati
385aebc806 plug potential ld_error leak (ITS#4064) 2005-10-04 21:30:30 +00:00
Howard Chu
a0f6fdb730 ITS#4048 plug leak 2005-09-30 06:20:56 +00:00
Howard Chu
d918bd4dc0 ITS#4053 free cldap peer address 2005-09-30 06:04:38 +00:00
Kurt Zeilenga
9449c5709e ITS#4021: add new {CLEARTEXT} kludge as bv_len=0 kludge no 
longer works well.
 2005-09-29 20:30:09 +00:00
Howard Chu
0f9ad702c3 ITS#4046 fix recvfrom len 2005-09-28 08:36:24 +00:00
Howard Chu
8c3e9ddb1c avl_delete... 2005-09-26 08:57:19 +00:00
Howard Chu
4c89b0e80c Tweak branches in avl_find 2005-09-26 08:21:10 +00:00
Howard Chu
dee98ccd47 Replace avl_insert/delete with iterative version 2005-09-26 08:15:55 +00:00
Howard Chu
53833c6ae6 Fix tavl_delete 2005-09-26 08:15:37 +00:00
Hallvard Furuseth
55fa9241a4 Remove unused variable 2005-09-26 04:36:19 +00:00
Howard Chu
3a018600d3 Revert prev commit 2005-09-23 06:27:16 +00:00
Howard Chu
e840a34fef Fix end conditions for tavl_end and tavl_next 2005-09-23 06:25:13 +00:00
Howard Chu
0951e71df4 tavl_delete: copy balance factor 2005-09-22 01:16:28 +00:00
Howard Chu
495f7e5629 tavl_delete - swap whole structures, not the data pointers. 2005-09-21 19:18:40 +00:00
Howard Chu
fcac0626ad Fix tavl_delete threading 2005-09-21 15:19:36 +00:00
Howard Chu
ecc5186955 Add testtavl, add tavl_end and tavl_next. tavl_delete still needs work. 2005-09-21 14:45:35 +00:00
Howard Chu
cbb86907a2 Add threaded AVL functions 2005-09-21 11:27:14 +00:00
Hallvard Furuseth
123948bd5e Add thread debugging wrapper thr_debug.c and ldap_thr_debug.h in libldap_r/, 
enabled with LDAP_THREAD_DEBUG (cpp macro and environment variable):

Move any ldap_pvt_* definitions from ldap_int_thread.h to ldap_pvt_thread.h.
#define ldap_int_thread_equal/ldap_pvt_thread_equal instead of tpool.c:TID_EQ.
Define some ldap_debug_*_t types, and LDAP_UINTPTR_T, in ldap_int_thread.h.
ldap_int_thread.h/ldap_pvt_thread.h can now be included multiple times, giving
different results depending on whether libldap_r/ldap_thr_debug.h was included.
Add some cleanup and some preprocessor hacks.
#define LDAP_THREAD*_IMPLEMENTATION in libldap_r/*.c, used by ldap_thr_debug.h.
Add PTHREAD_MUTEX_ERRORCHECK/PTHREAD_MUTEX_ERRORCHECK_NP in thr_posix.c.
 2005-09-17 23:28:08 +00:00
Pierangelo Masarati
f8d49b01be address ITS#4023 2005-09-16 18:12:57 +00:00
Howard Chu
2807a2596b Simplify array operations 2005-09-13 07:51:51 +00:00
Hallvard Furuseth
f9a6f7c41a Format fixes. #include <ac/ctype.h>. Cast isspace() arg to unsigned char. 2005-09-13 03:32:19 +00:00
Pierangelo Masarati
52cf1f5f0a cleanup 2005-09-10 19:20:14 +00:00
Pierangelo Masarati
9129a2f7ee silence warnings 2005-09-10 18:59:35 +00:00
Howard Chu
6be50f1b0f ITS#4006 add stub for ldap_pvt_thread_pool_context_reset() 2005-09-06 22:11:26 +00:00
Howard Chu
595169b64f Fix XXHEADERS dependency 2005-09-04 15:23:35 +00:00
Kurt Zeilenga
c6e4254b8f Fix multicast bit 2005-09-04 09:01:46 +00:00
Pierangelo Masarati
6aa5b4f775 address ITS#3925; please test 2005-09-01 01:59:36 +00:00
Pierangelo Masarati
fe4b006e17 wait also if PAUSING; silence warnings and improve readability with gdb 2005-09-01 01:54:00 +00:00
Hallvard Furuseth
2e19c67235 Handle LDAP_INT_GLOBAL_OPT() failure in ldap_int_destroy_global_options() 2005-08-31 18:59:27 +00:00
Howard Chu
4cc7efdadc Revert ITS#3577 patch, breaks Windows build and not needed in RE23. 2005-08-26 02:20:45 +00:00
Kurt Zeilenga
f07015dad2 Update build tools based upon OPENLDAP_AC work 2005-08-25 20:09:26 +00:00
Howard Chu
6cfcae11f2 Improve check for schemes vs cleartext passwords 2005-08-24 03:52:00 +00:00
Howard Chu
1f78e2b831 ITS#3961 better fix - provide a context for the main thread. The context 
must be reset by the caller to clear out temp allocations etc.
 2005-08-23 04:12:57 +00:00
Howard Chu
468112e2ba ITS#3961 provide ldap_pvt_thread_pool_fake_context_init/destroy, don't 
use arbitrary context pointers.
 2005-08-23 03:25:21 +00:00
Pierangelo Masarati
21e33fed33 treat TRUE/FLASE like SUCCESS; don't chase "" referrals 2005-08-22 09:41:36 +00:00
Pierangelo Masarati
f5737d72b0 cosmetic changes (easier to inspect under gdb) 2005-08-20 19:54:56 +00:00
Pierangelo Masarati
3dd05cdb2d fix SASL numeric secprops parsing (ITS#3955) 2005-08-20 14:22:42 +00:00
Pierangelo Masarati
52ce57f525 don't try to print NULLs on Solaris... 2005-08-19 15:47:52 +00:00
Pierangelo Masarati
7732236996 plug yet another one-time leak 2005-08-19 15:05:03 +00:00
Pierangelo Masarati
a0e46c6289 allow oidmacros in syntax (e.g. AD) 2005-08-18 23:34:10 +00:00
Pierangelo Masarati
a324dc8050 clear code before calling functions that may modify it 2005-08-18 18:48:02 +00:00
Pierangelo Masarati
e441f32374 little bit easier to track from inside gdb... 2005-08-18 13:38:59 +00:00
Pierangelo Masarati
90255dfc42 back out fix to ITS#3932 2005-08-17 08:32:47 +00:00
Pierangelo Masarati
4f5502ef9f rework internal functions - need the parsed list of URIs before massaging; no impact on exposed funcs 2005-08-17 07:50:28 +00:00
Pierangelo Masarati
388c076768 fix ITS#3932 - regex/rewrite concurrency issue 2005-08-13 18:43:20 +00:00
Kurt Zeilenga
f799a2e4ba replace struct msghdr macros 2005-08-13 02:17:12 +00:00
Kurt Zeilenga
77173d35e9 Replace PW_GECOS/PASSWD macros 2005-08-12 22:28:17 +00:00
Pierangelo Masarati
3638b6c722 solve a deadlock during unbind: ldap_send_unbind() is called by ldap_free_connection() only, and just in case the last arg is not 0; but most of the times ldap_free_connection() is called with ld_req_mutex locked, so it shouldn't be locked again from inside ldap_send_unbind() 2005-08-11 17:11:41 +00:00
Pierangelo Masarati
b3f366e0ba essentially address 3791 with a reworked patch 2005-08-11 15:13:29 +00:00
Pierangelo Masarati
ad62d9da1b expose ldap_tls_inplace() 2005-08-11 12:14:24 +00:00
Pierangelo Masarati
228af40058 cleanup 2005-08-11 12:13:43 +00:00
Hallvard Furuseth
d50820cdd6 Read LDAPResult.resultCode & ModifyRequest.modification.operation 
and send SortResult.sortResult as BER ENUMERATED, not BER INTEGER.

libldap: ldap_parse_extended_result, try_read1msg, build_result_ber,
ldap_parse_sasl_bind_result.  slapd: do_modify, send_ldap_controls.
 2005-08-10 00:54:38 +00:00
Pierangelo Masarati
a3a9bb9bfa little more about potential concurrency issues 2005-08-03 16:54:08 +00:00
Hallvard Furuseth
d47eaa0ecc Fix printf formats for LDAP_MEMORY_TRACE 2005-08-02 14:08:30 +00:00
Howard Chu
834f1bd253 ITS#3578 increment parent's referral count 2005-08-02 11:24:52 +00:00
Hallvard Furuseth
b295d66a2c assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2005-08-02 10:57:42 +00:00
Pierangelo Masarati
01dc0183a3 plug leaks; cleanup 2005-08-01 23:35:44 +00:00
Hallvard Furuseth
f9e505727e Plug memory leaks - free() controls in LDAP* 2005-08-01 03:51:53 +00:00
Hallvard Furuseth
5c5a834db8 Handle LBER_SB_OPT_[GS]ET_FD arg as ber_socket_t like elsewhere, not as int. 2005-08-01 03:48:53 +00:00
Hallvard Furuseth
d49a477702 Cleanup 2005-07-31 18:05:51 +00:00
Pierangelo Masarati
5ff31144a7 cleanup 2005-07-30 16:26:25 +00:00
Hallvard Furuseth
fbce398466 Also declare copy_hostent() if LDAP_R_COMPILE && HAVE_GETHOSTBYADDR_R. 
Only declare safe_realloc() if LDAP_R_COMPILE.
Indentation cleanup.
 2005-07-26 04:21:19 +00:00
Hallvard Furuseth
2340954bd0 lmPasswd_to_key() arg1 was passed char*. Change it to that from unsigned char*. 2005-07-25 21:01:06 +00:00
Pierangelo Masarati
7fade0d585 (yet) another potential concurrency issue 2005-07-23 22:04:04 +00:00
Hallvard Furuseth
f0091b101f Cast LDAP_BOOL value to LDAP_BOOLEANS; it could only use flags fitting in int. 2005-07-22 13:24:47 +00:00
Pierangelo Masarati
aa0b0f642f don't malloc when not required? 2005-07-21 19:10:16 +00:00
Pierangelo Masarati
1b11741a30 mostly revert previous commit 2005-07-20 19:26:46 +00:00
Pierangelo Masarati
c789d494c4 allow to unregister (and free) memory handling functions 2005-07-20 19:07:04 +00:00
Hallvard Furuseth
81ecb0b153 assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2005-07-18 06:22:33 +00:00
Hallvard Furuseth
f43a823c73 Add missing "static" for functions declared static but defined non-static 2005-07-18 05:14:41 +00:00
Hallvard Furuseth
ab1ef34c51 size_t peercredlen -> socklen_t peercredlen in #if defined(SO_PEERCRED) 2005-07-18 04:42:28 +00:00
Hallvard Furuseth
bf1d1a84bd Remove unused type: struct token 2005-07-17 11:53:35 +00:00
Pierangelo Masarati
19c1c6d671 some (stupid) editors complain because 'new' is a reserved word in C++ 2005-07-16 15:38:33 +00:00
Pierangelo Masarati
5e84975adf paranoid check 2005-07-16 15:37:01 +00:00
Pierangelo Masarati
e790055467 be liberal: accept empty oid lists 2005-07-15 00:46:30 +00:00
Hallvard Furuseth
d449c9d08b Silence "unused variable" warnings 2005-07-14 19:18:55 +00:00
Hallvard Furuseth
3d8aceab81 Fix typos GETNAMEINFO->HAVE_GETNAMEINFO, HAVE_HERROR->HAVE_HSTRERROR 2005-07-14 19:17:05 +00:00
Howard Chu
6754d025f2 ITS#3847 silence warnings 2005-07-11 10:39:32 +00:00
Hallvard Furuseth
bdbda6a231 ber_get_enum() needs int*, not enum*. An enum can have wrong size. 
(Enum _members_ have type int, but the enum's _type_ can be compatible
with some other char/integer type which can represent its members.)
 2005-07-10 09:40:34 +00:00
Kurt Zeilenga
570126dc25 cleanup 2005-07-09 18:57:10 +00:00
Howard Chu
4b07f91511 Fix get_scheme to check length of scheme name 2005-07-08 05:46:08 +00:00
Howard Chu
2392f9c3f6 Linux updates tv on select() so always use a second copy 2005-07-07 16:09:41 +00:00
Hallvard Furuseth
7cc496fd25 Constify ldif_open() args 2005-07-06 10:50:03 +00:00
Hallvard Furuseth
947a70a911 Kill harmless format warning 2005-07-06 09:28:30 +00:00
Hallvard Furuseth
a20b19cc9e ISO C chokes on comma at end of enum list 2005-07-06 08:13:50 +00:00
Pierangelo Masarati
86e6207b63 tentative fix of another issue related to ITS#3800; please review 2005-06-30 16:49:00 +00:00
Pierangelo Masarati
a12298c12e re-fetch the request; since the mutex has been released wile freeing the message, it may have been already removed by someone else (ITS#3800) 2005-06-30 02:36:55 +00:00
Pierangelo Masarati
671b02f748 more on ITS#3808 2005-06-29 12:28:40 +00:00
Howard Chu
5f46aa4d3b ITS#3760 add missing NO_THREADS stubs 2005-06-03 22:08:31 +00:00
Pierangelo Masarati
eb005a9872 allow to muck with referrals while chasing... 2005-05-28 14:29:08 +00:00
Pierangelo Masarati
f103589cc3 fix inconsistent indentation 2005-05-21 14:52:19 +00:00
Howard Chu
d9b09ecc1f Fix ldap_get_option(,LDAP_OPT_SOCKBUF,) 2005-05-18 19:00:30 +00:00
Howard Chu
6a86f5178f ITS#3278 use correct connection for sasl_install() 2005-05-13 05:22:08 +00:00
Howard Chu
9db1b9e8ea Fix Win32 build using separate object directory 2005-05-12 04:03:31 +00:00
Howard Chu
54adc170e5 Fix prev commit 2005-05-12 02:56:11 +00:00
Howard Chu
c225c4af34 Updated ldif_read_record to support LDIF include: directive 2005-05-12 00:46:39 +00:00
Howard Chu
376537f3d7 ITS#3577 Make librewrite shared - > liblrewrite.la 2005-05-11 10:18:27 +00:00
Kurt Zeilenga
be097fc8cd Add ldap_turn(3) and ldap_turn_s(3). 2005-05-04 20:24:48 +00:00
Jong Hyuk Choi
3ae1146a0c Fix for ITS#3612 2005-05-03 00:03:02 +00:00
Pierangelo Masarati
12c32c3e6c fix previous commit 2005-04-27 02:38:55 +00:00
Kurt Zeilenga
c833ff220c type is no longer a char* 
Fix suggested by Peter Marshall <peter@adpm.de>
 2005-04-26 17:50:52 +00:00
Howard Chu
2d06c4fe2d Freshly inserted tasks should be at head of queue and run immediately 2005-04-23 16:56:37 +00:00
Howard Chu
b978e77932 Add task names to runqueue entries 2005-04-23 00:27:57 +00:00
Howard Chu
3f20324ed0 Add ldap_pvt_thread_pool_purgekey to free all instances of key across 
all threads.
 2005-04-22 22:27:29 +00:00
Howard Chu
2dec29f265 Change ldap_pvt_runqueue_insert to return new task pointer 2005-04-22 14:37:59 +00:00
Pierangelo Masarati
2f877b48b1 introduce ber_bvreplace() 2005-04-21 03:40:50 +00:00
Howard Chu
dd646eb734 Added ldap_pvt_runqueue_find() 2005-04-19 14:40:30 +00:00
Howard Chu
5608206da2 Fix LDAP_PVT_THREAD_STACK_SIZE, automatically scale up on 64 bit machines 2005-04-15 06:18:18 +00:00
Howard Chu
9c0e4415d2 Omit FD_SETSIZE check for Winsock 2005-04-13 07:27:36 +00:00
Kurt Zeilenga
3e800f20bd <limits.h> cleanup && ITS#3643 2005-04-10 19:32:14 +00:00
Pierangelo Masarati
e94f1cd3f9 OID checks don't need to be case-insensitive 2005-04-10 16:01:24 +00:00
Pierangelo Masarati
58d4f7fc20 base64 encode passwords in back-config 2005-04-09 15:19:36 +00:00
Howard Chu
eca819d866 ITS#3643 limits.h, INT_MAX 2005-04-09 06:41:39 +00:00
Kurt Zeilenga
94a9f84895 ITS#3614: prevent overflow when using result of sysconf(_SC_OPEN_MAX) 2005-03-30 21:53:01 +00:00
Howard Chu
2da2336ac6 Reorganiza SLAPD_CRYPT and SLAPD_SPASSWD support for better reentrancy 2005-03-18 06:06:38 +00:00
Kurt Zeilenga
f33af81907 AIX getpeerid support 2005-03-16 02:22:46 +00:00
Kurt Zeilenga
f06ca8eb1f cleanup 2005-03-15 03:11:24 +00:00
Howard Chu
1b777e0ab3 Added ldap_pvt_thread_pool_pause/resume 2005-03-07 21:02:31 +00:00
Kurt Zeilenga
d3ec485651 ITS#3583: memcmp replacement compilation error fix 2005-03-05 01:23:29 +00:00
Howard Chu
89210b7100 Added ldap_pvt_sasl_secprops_unparse, slap_sasl_secprops_unparse 2005-03-01 11:42:31 +00:00
Howard Chu
aa74f02cb2 ITS#3552 fix bogus asserts 2005-02-18 02:35:23 +00:00
Luke Howard
fd0b7e75b1 ITS#3439 (NetBSD support for getpeereid()) 2005-02-03 09:36:25 +00:00
Kurt Zeilenga
542f3634aa Add ldap_start_tls() and ldap_install_tls() to provide async version 
of ldap_start_tls_s().
 2005-02-01 23:53:17 +00:00
Kurt Zeilenga
96854698cd ITS#3524 (partial): reinit FDSETs 2005-01-28 19:03:15 +00:00
Kurt Zeilenga
8b730300a2 Enable subordinate scope feature 2005-01-26 03:30:22 +00:00
Kurt Zeilenga
70b5d06849 Remove extra rcsid 2005-01-24 21:59:06 +00:00
Howard Chu
67583f45eb Added ldif_countlines() 2005-01-24 03:40:29 +00:00
Howard Chu
8fd686ada0 Restore avl_find code independent of avl_find2 2005-01-24 03:39:56 +00:00
Pierangelo Masarati
9effc2b8f0 cleanup of rewrite code and docs 2005-01-23 21:42:05 +00:00
Howard Chu
f734dc7bcd Fix ITS#3487, don't copy pointers to malloc'd global options 2005-01-21 01:47:25 +00:00
Howard Chu
3ae4b383d5 ITS#3495 make sure lutil_passwd_init gets called 2005-01-20 00:23:36 +00:00
Howard Chu
8db476e664 More tweaks to ldif_parse_line2 for str2entry 2005-01-19 12:07:06 +00:00
Howard Chu
bd8a9989f4 Added ldif_parse_line2 to parse in-place 2005-01-19 05:05:53 +00:00
Pierangelo Masarati
85c7997cb1 fix ITS#3467 (LDAPURLDesc => URL escaped string) 2005-01-10 23:50:11 +00:00
Pierangelo Masarati
9c40a1869b fix ITS#3474 2005-01-09 20:15:40 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Pierangelo Masarati
52b878dcc0 rework internal handling of strings to minimize temporary allocation; impacts rewrite() and rewrite_session() behavior in case of no rewriting 2005-01-01 16:10:25 +00:00
Kurt Zeilenga
83b1ce9831 inet_addr cleanup 2004-12-31 12:02:23 +00:00
Kurt Zeilenga
a2705b84c7 Update CancelOp's protocol values to those in RFC 3909 2004-12-30 23:04:41 +00:00
Pierangelo Masarati
83ba4ea944 long lasting typo (at least since 2.0) 2004-12-20 21:41:30 +00:00
Kurt Zeilenga
39b20e2e5d cleanup 2004-11-28 22:17:52 +00:00
Howard Chu
2590e26bc7 Initialize TLS connection callback 2004-11-23 05:09:10 +00:00
Howard Chu
ae592801aa Add callbacks for client TLS connection establishment: 
LDAP_OPT_X_TLS_CONNECT_CB and LDAP_OPT_X_TLS_CONNECT_ARG
with int (LDAP_TLS_CONNECT_CB) (LDAP *ld, SSL *ssl, SSL_CTX *ctx, void *arg)
To be called whenever the client library allocates a new SSL* handle.
 2004-11-23 03:48:09 +00:00
Howard Chu
9fd1c81713 Add avl_find2 returning the Avlnode, allowing its data to be reset directly 
instead of recycling thru avl_find/avl_delete/avl_insert
 2004-11-19 23:33:46 +00:00
Howard Chu
fad273c224 Avoid trashing client memory when socket is greater than FD_SETSIZE 2004-11-17 20:04:18 +00:00
Ralf Haferkamp
93cec8b694 - Added autoconf test for CRL capable OpenSSL Version 
- #ifdef'd CRL checking code.
 2004-11-03 12:02:38 +00:00
Kurt Zeilenga
96bfc8ec92 fair use 2004-10-30 20:19:30 +00:00
Ralf Haferkamp
5704a2ef6e CRL checking options for ldap.conf and slapd.conf 2004-10-28 18:50:38 +00:00
Kurt Zeilenga
2c90f72a06 Add comment regarding last commit 2004-10-20 21:51:27 +00:00
Kurt Zeilenga
30fdb0e0ca Fix LDAP Intermediate Response tag values. 
with code to accept old values.
 2004-10-20 21:47:40 +00:00
Howard Chu
1a198bea0f Fix typo in select call 2004-10-19 03:18:22 +00:00
Kurt Zeilenga
440e631319 ITS#3168: Add LDAP_OPT_SOCKBUF 2004-10-19 03:07:05 +00:00
Kurt Zeilenga
e983616d75 More NEW_LOGGING removal 2004-10-19 01:40:38 +00:00
Kurt Zeilenga
547ebf66c4 Move POLL_* macros to <ac/socket.h> 2004-10-18 22:08:37 +00:00
Kurt Zeilenga
1adf003977 Catch POLLERR and POLLHUP. 2004-10-18 21:56:07 +00:00
Kurt Zeilenga
8715d97409 Fix bug in last commit 2004-10-18 21:45:13 +00:00
Kurt Zeilenga
86c216d10c Rough but working poll(2) implementation for -lldap 2004-10-18 21:09:17 +00:00
Kurt Zeilenga
fb0571b5ad Poll code needs a bit more work. 2004-10-18 18:18:52 +00:00
Jong Hyuk Choi
331074b2d5 Patch for fast synchronous search result processing 2004-10-18 04:58:36 +00:00
Kurt Zeilenga
baa76b6f35 Revert last commit. 
return 0 on timeout is actually correct.
 2004-10-09 06:13:47 +00:00
Kurt Zeilenga
1b5c5da96d ITS#3359: fix crash on recursive rebind following referral 2004-10-09 03:16:29 +00:00
Howard Chu
ef76bcaf79 Add some more comments to time conversion 2004-09-28 12:36:34 +00:00
Howard Chu
76252251f5 Rename slap_tm to lutil_tm... 2004-09-28 12:22:22 +00:00
Howard Chu
1ca9556c1b Move time parsers from ppolicy.c to liblutil; preserve greater precision 2004-09-28 12:12:13 +00:00
Kurt Zeilenga
3c310cab6c rebuild 2004-09-26 23:42:16 +00:00
Kurt Zeilenga
5e41701ca2 s/strcmp/strcasecmp/ 2004-09-18 00:15:06 +00:00
Kurt Zeilenga
5368501f35 ITS#3334: DN in (cn:dn:=foo) should be case insensitive 2004-09-18 00:09:37 +00:00
Kurt Zeilenga
5f5d50aeb0 Add TLS cipher suite directive to ldap.conf(5) 2004-09-05 07:21:20 +00:00
Kurt Zeilenga
68af3bc287 More shtool stuff 2004-09-05 07:20:40 +00:00
Kurt Zeilenga
d611a4b49a unifdef -UNEW_LOGGING 2004-09-04 04:54:28 +00:00
Kurt Zeilenga
e0a9ea2f50 Move MSVC port to the Attic 2004-09-04 04:37:41 +00:00
Kurt Zeilenga
67e9b48b7d Cleanup 2004-09-03 00:24:07 +00:00
Kurt Zeilenga
1ccb936170 fix typo in last commit 2004-08-28 04:01:19 +00:00
Kurt Zeilenga
c9dd33b520 Add scheme check to find_connection 2004-08-28 03:55:02 +00:00
Kurt Zeilenga
8064bb6ef1 A better find_connection() port fix 2004-08-28 03:53:31 +00:00
Kurt Zeilenga
1d3eccca9e Partial ITS#3280 fix. ldap:// referrals only. 2004-08-28 03:25:59 +00:00
Kurt Zeilenga
fe6e3ba3ef Instead of removing AI_ADDRCONFIG, place behind #ifdef (of undefined 
macro).  Add comment indicating configure test needed.
 2004-08-27 18:59:34 +00:00
Luke Howard
842fe3091a ITS#3298 - ldap_sasl_int_bind() refers to incorrect Sockbuf when called 
from within a rebind function.
 2004-08-24 05:14:07 +00:00
Howard Chu
eb25111b9a Revert rev 1.92, AI_ADDRCONFIG is not a legal flag for getaddrinfo 2004-08-15 23:15:55 +00:00
Pierangelo Masarati
9c0ed9b6bd fix leak when the rewriteContext is disabled (ITS#3256) 2004-07-25 22:45:53 +00:00
Pierangelo Masarati
30fed3f1c9 cleanup error codes 2004-07-24 11:15:13 +00:00
Howard Chu
0b9cc398e2 ITS#3250 don't call select unnecessarily 2004-07-24 03:13:29 +00:00
Pierangelo Masarati
f0505795c0 cleanup... 2004-07-18 21:32:38 +00:00
Hallvard Furuseth
06d3b9a9e3 ldap_url_parse_ext(): Kill duplicate init + pointless free(NULL) of lud_filter. 2004-07-18 04:12:24 +00:00
Howard Chu
7b9559805e Hide WINAPI entry points from slapd/symdummy 2004-07-17 17:46:54 +00:00
Pierangelo Masarati
8e5d04d2a8 allow unescaped equals, according to draft-ietf-ldapbis-dn (ITS#3229) 2004-07-10 10:48:41 +00:00
Kurt Zeilenga
ecebe3d051 basic poll(2) implementation for connect(2) (needs work) 
Need to deal with selectinfo...
 2004-07-09 19:29:46 +00:00
Kurt Zeilenga
f0bd9b3a5b Mark areas needed poll(2) support with HAVE_POLL. 2004-07-09 17:50:22 +00:00
Howard Chu
24b7f5c42c Fix 't' tag option 2004-07-09 10:19:20 +00:00
Pierangelo Masarati
42a6406bfb fix URI parsing error code 2004-07-05 12:03:39 +00:00
Howard Chu
0305199518 Additional debug tracking... 2004-07-03 16:25:30 +00:00
Pierangelo Masarati
74773777c4 fix extended matching when rule is missing (ITS#3216) 2004-07-03 11:28:47 +00:00
Kurt Zeilenga
b6bd7296ac cleanup last commit, add commit 2004-06-30 22:36:47 +00:00
Kurt Zeilenga
03ec37823c Avoid high-level retry on low-level error as that implies a 
re-sasl_encode() of the input.  sasl_encode() may be stateful.
 2004-06-30 22:30:09 +00:00
Kurt Zeilenga
93b72e36e8 cleanup 2004-06-30 22:28:15 +00:00
Jong Hyuk Choi
3fb0648079 revert the ITS#3139 change for now 2004-06-30 17:51:06 +00:00
Pierangelo Masarati
dd5a27c1f6 log error string 2004-06-30 16:25:40 +00:00
Pierangelo Masarati
76bab2b6df typo in comment 2004-06-30 16:24:07 +00:00
Kurt Zeilenga
1ded030427 fix last commit 2004-06-29 17:48:19 +00:00
Kurt Zeilenga
a593343aa5 ITS#3212: sasl_encode/decode type conflict fix 2004-06-29 17:46:30 +00:00
Pierangelo Masarati
ad48d85ce5 fix ITS#3208 2004-06-28 20:55:04 +00:00
Kurt Zeilenga
3484ddff18 cleanup 2004-06-22 20:20:47 +00:00
Jong Hyuk Choi
a1308f8dfa syncrepl retry code fix for correct timing 2004-06-21 07:03:49 +00:00
Pierangelo Masarati
e8293039b5 add debug to rewrite tool 2004-06-20 22:40:32 +00:00
Pierangelo Masarati
175ce7960d improve parsing - first step 2004-06-18 08:36:30 +00:00
Jong Hyuk Choi
763f8c76ee syncrepl retry-on-error code 2004-06-18 05:04:03 +00:00
Kurt Zeilenga
c15a31b673 Apply same fix (as last commit) to SMD5 as well 2004-06-02 20:29:21 +00:00
Kurt Zeilenga
8b5c9a764c ITS#3169: fix safety checks to allow for varying salt lengths 2004-06-02 20:20:02 +00:00
Howard Chu
56155b25f1 Fix for greater than 4-digit CompositionExclusions 2004-06-02 02:17:04 +00:00
Howard Chu
23f3214f5e Fix ucnumber behavior 2004-05-31 06:25:25 +00:00
Howard Chu
4eef27fc19 Fix prev commit 2004-05-31 02:22:12 +00:00
Howard Chu
d75c35e9de Use hardcoded Unicode data 2004-05-31 01:58:13 +00:00
Howard Chu
688cadf099 Use hardcoded Unicode data tables 2004-05-31 01:54:27 +00:00
Howard Chu
cc4d5c10df ITS#3123 make sure ldap_int_sasl_mutex is init'd before it is used 2004-05-21 10:53:30 +00:00
Howard Chu
6c2bc1de5d Updated to 3.2.0 2004-05-20 03:08:58 +00:00
Howard Chu
d557ceda8f Add special cases for Unicode 3.2.0 2004-05-20 02:52:22 +00:00
Kurt Zeilenga
5deea2b617 ITS#3134: support DNSname style wildcards in common name 
(This is not consistent with RFC 3280 or RFC 2830, but consistent
with current practices.)
Based upon patch submitted by Quanah Gibson-Mount <quanah@stanford.edu>.
 2004-05-19 02:47:30 +00:00
Howard Chu
9da35acf44 Fix ITS#3139, empty output buffer when sb_sasl_write fails 2004-05-14 08:03:25 +00:00
Pierangelo Masarati
f195b20a1f always hexpair escape special chars (databases must be rebuilt) 2004-05-07 22:29:10 +00:00
Pierangelo Masarati
7969841074 allow LDAPv2 DN to be enclosed in <> 2004-05-07 22:28:52 +00:00
Howard Chu
e5d1b3134c Fix for ITS#1181 from Mark Adamson @ CMU.edu 2004-05-06 23:58:13 +00:00
Kurt Zeilenga
781c2d02a1 fix Compare bug in liblber/memory.c (ITS#3116) 2004-04-26 23:16:45 +00:00
Kurt Zeilenga
7cfc2d1f37 back out last change 2004-04-25 04:46:45 +00:00
Kurt Zeilenga
b0830a744f Fail if default context is already initialized 2004-04-25 04:37:19 +00:00
Kurt Zeilenga
ba749eb798 Updated string error handling 2004-04-25 01:09:40 +00:00
Kurt Zeilenga
62da0b6738 AC_STRERROR_R 2004-04-25 00:19:06 +00:00
Howard Chu
affe835984 NUL-terminate alloc'd berbuf (ITS#3086) 2004-04-15 10:25:14 +00:00
Howard Chu
e607e1daad ITS#2920 allow oid macro in ditcontentrule 2004-04-08 21:51:50 +00:00
Kurt Zeilenga
b3fdf881c3 ITS#3072: remove extraneous assignment 2004-04-08 20:20:36 +00:00
Howard Chu
efdeee929d Revert previous commit, didn't solve anything. Probably made things worse. 2004-04-08 12:40:49 +00:00
Kurt Zeilenga
6abba139bb Hide if SIZEOF_WCHAR_T < 4. 2004-04-08 08:54:49 +00:00
Howard Chu
715d087cd3 Fix attributions 2004-04-08 03:05:16 +00:00
Kurt Zeilenga
859e282780 ITS#3065: fix vector handling to ensure its free()able 2004-04-07 18:58:32 +00:00
Kurt Zeilenga
1634811465 Use BER_BVNULL 2004-04-07 01:11:32 +00:00
Howard Chu
62d050a0bd ITS#2982 ok, we should NULL out lc after all... 2004-03-25 12:15:52 +00:00
Howard Chu
d831315024 ITS#2982 be sure to use nextlc when calling try_read1msg 2004-03-25 09:54:23 +00:00
Howard Chu
cbabd269a5 ITS#2457 Added LUTIL_SLASHPATH macro and func for converting 
forward-slash paths to Windows back-slash format.
 2004-03-19 08:06:42 +00:00
Kurt Zeilenga
e323437c6a cleanup for release engineering 2004-03-18 01:06:39 +00:00
Howard Chu
cee3acea09 Fix prev commit 2004-03-17 09:59:03 +00:00
Howard Chu
650837742a Restore NT4 compatibility, avoid W2K-only API 2004-03-17 05:06:04 +00:00
Kurt Zeilenga
38025e96d5 New T_SRV fix 2004-03-17 04:45:56 +00:00
Pierangelo Masarati
c9fae6c942 fix file name 2004-03-16 18:02:38 +00:00
Howard Chu
ef691ae867 Renamed ppcontrol.c to ppolicy.c 2004-03-16 17:44:34 +00:00
Howard Chu
1dc6c053c1 Hide code behind #ifdef LDAP_CONTROL_PASSWORDPOLICYREQUEST 2004-03-16 01:48:21 +00:00
Howard Chu
de5a77c8a2 Rename ppcontrol.c to ppolicy.c 2004-03-16 01:39:04 +00:00
Howard Chu
2b86ace653 ldap_parse_passwordpolicy_control takes a single LDAPControl* arg now, 
use ldap_find_control to find it. Added ldap_passwordpolicy_err2text().
 2004-03-15 23:53:37 +00:00
Kurt Zeilenga
647df2b9cb Start of client-side LDAP tranactions (non-working) 
and lots of cleanup (hence the commit)
(ldapmodify will need much more work for transactions)
 2004-03-14 23:32:00 +00:00
Kurt Zeilenga
af9e1583a7 Add prototypes for grouping functions 
Add ldap_find_control()
 2004-03-14 00:57:44 +00:00
Howard Chu
27d0e14a12 Cleanup comments, copyright 2004-03-13 09:13:11 +00:00
Howard Chu
3810fa18d8 Added PasswordPolicy control 2004-03-12 21:22:32 +00:00
Pierangelo Masarati
daa29805ad define error codes for lutil_passwd* funcs 2004-03-12 20:07:41 +00:00
Pierangelo Masarati
1d1cd21814 allow '$' as action prefix instead of '%'; backward compatibility is preserved 2004-03-10 19:21:39 +00:00
Pierangelo Masarati
14f2ebe1d3 '=' must be escaped (and escapable by '\') according to RFC2253 and draft-ietf-ldapbis-dn-XX (ITS#3009; must have slipped thru some changes long time ago...) 2004-03-09 20:43:27 +00:00
Howard Chu
c558bd49bc ITS#2992 Windows fixes from Alexey Melnikov 2004-03-05 12:24:06 +00:00
Pierangelo Masarati
8aedfad3bb improve previous commit 2004-03-05 10:53:35 +00:00
Howard Chu
127cdb6432 ITS#2996 make sure T_SRV is defined for both places it is referenced 2004-03-05 10:35:21 +00:00
Pierangelo Masarati
df312502ac append trailing slash to AD canonical if DN is exactly a domain (ITS#3000) 2004-03-05 10:33:43 +00:00
Howard Chu
f3f78e8a1f ITS#2997 change MAXTHREADS to LDAP_MAXTHR 2004-03-04 15:35:29 +00:00
Howard Chu
6362951d6e ITS#2993 fix prev commit 2004-03-03 15:58:57 +00:00
Howard Chu
8bac3b4ff7 Pass result berval to lutil_passwd_hash instead of returning it. 2004-03-02 21:59:24 +00:00
Pierangelo Masarati
99c7f5318a really minor cleanup 2004-02-28 12:04:33 +00:00
Pierangelo Masarati
55ae6e4c91 intercept errors from maps 2004-02-28 12:04:06 +00:00
Howard Chu
9c6428b29e Deleted Kerberos and Netscape support 2004-02-26 03:10:53 +00:00
Howard Chu
6cedc94c63 ITS#2944, #2956 - revert maxbuf patch from ITS#2184 
Still need to think about interoperability with other versions, vendors...
 2004-02-24 16:25:39 +00:00
Howard Chu
75af144930 Fix mutex deadlock obtaining msgid 2004-02-13 02:47:53 +00:00
Howard Chu
f8d54b4e87 Fix prev EBCDIC commit 2004-02-04 22:53:17 +00:00
Howard Chu
9f3b0d60f9 Fix EBCDIC conversion for syslog() 2004-02-03 03:58:38 +00:00
Howard Chu
77dc2c479f ITS#2899 NS-MTA-MD5 password len is exactly 64 bytes. 2004-01-25 10:39:32 +00:00
Howard Chu
690f0111e9 ITS#2894 - search refs that are the immediate result of another search 
ref are associated with the parent req instead of the original req, to
prevent infinite loops.
 2004-01-25 10:30:10 +00:00
Howard Chu
02a6301f22 ITS#2926 from igor@ipass.net, slightly modified 2004-01-24 03:33:44 +00:00
Ralf Haferkamp
0b907a37c5 fixed format string 2004-01-19 16:56:15 +00:00
Kurt Zeilenga
1d933bf8ec Minor tweak to last commit 2004-01-17 19:11:20 +00:00
Howard Chu
54f38330ef define HFIXEDSZ if it's missing. Not all platforms have it. 2004-01-17 01:54:14 +00:00
Howard Chu
a6b1dfd1c8 Fix ldap_pvt_thread_self, GetCurrentThread() returns a constant, not a 
unique value.
 2004-01-15 09:59:11 +00:00
Kurt Zeilenga
c3674e92f9 Fix text == NULL bugs in last commit 2004-01-09 04:48:40 +00:00
Kurt Zeilenga
c8408d3c6a ITS#2906: report invalid userPassword schemes, clarify documentation 2004-01-09 04:11:57 +00:00
Pierangelo Masarati
fde8af364d remove (unnecessary) c++ style comments (ITS#2908) 2004-01-08 16:20:32 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Kurt Zeilenga
afb520a6e9 LDAP_SCOPE SUBORDINATE implementation 2003-12-30 01:34:05 +00:00
Kurt Zeilenga
2775c8d4a8 Update no-op control to return LDAP_NO_OPERATION instead of LDAP_SUCCESS. 
(back-sql needs to be updated)
 2003-12-29 23:31:39 +00:00
Kurt Zeilenga
fcad25da47 Misc code cleanup 2003-12-29 22:25:43 +00:00
Pierangelo Masarati
3994dc645a allow to set max passes per rule 2003-12-29 18:02:49 +00:00
Pierangelo Masarati
c860ba6a23 fix, clarify and document previous commit 2003-12-29 17:06:43 +00:00
Pierangelo Masarati
8b797f70e2 allow user-defined return codes from rewriteRules 2003-12-29 16:14:47 +00:00
Pierangelo Masarati
748e144a16 allow '%' escape; treat anything else as error 2003-12-29 15:10:59 +00:00
Pierangelo Masarati
e9314574aa allow memory ownership specification when using (session- wide) variables 2003-12-27 18:48:06 +00:00
Pierangelo Masarati
43f5b50319 fix memory ownership 2003-12-27 17:52:07 +00:00
Kurt Zeilenga
4590651cf9 Revert #if 0 2003-12-21 08:25:55 +00:00
Kurt Zeilenga
46053f84a6 Clean up LDAP Sync result codes 2003-12-17 21:09:28 +00:00
Kurt Zeilenga
271fff13de Sync with HEAD 2003-12-17 17:55:27 +00:00
Kurt Zeilenga
4d29df5bd1 Add LDAP_DEPRECATED macro 
Need to remove use of deprecated functions.
 2003-12-14 02:47:42 +00:00
Howard Chu
39eb55b5f4 ITS#2869 fix decode length checks again 2003-12-11 13:24:06 +00:00
Kurt Zeilenga
430b67aa60 Change API error codes to negative numbers so as not to clash 
with newly assigned protocol result codes.
 2003-12-11 05:26:32 +00:00
Kurt Zeilenga
14b170ce20 More blind s/unsigned long/ac_uint4/ changes 2003-12-09 21:57:34 +00:00
Kurt Zeilenga
96cb99aa54 s/unsigned long/ac_uint4/ 2003-12-08 18:08:29 +00:00
Kurt Zeilenga
fbba83b20f notices and acknowledgements 2003-12-08 17:41:40 +00:00
Howard Chu
7fedf13e02 ITS#2494 sort entries ahead of everything else 2003-12-07 11:15:22 +00:00
Kurt Zeilenga
4383fcd566 Fix liblunicode issues on systems where sizeof(long) > 4. 
Code still lacks portability (alignment/padding, required ac_uint2/4 types)
Should resolve ITS#2632, ITS#2660, ITS#2784
 2003-12-07 08:29:07 +00:00
Kurt Zeilenga
c5f83acf6e cleanup 2003-12-07 05:12:36 +00:00
Howard Chu
f01c60dd66 ITS#2538 plug leak 2003-12-07 04:48:50 +00:00
Luke Howard
98481ec449 Use gmtime_r() if HAVE_GMTIME_R is defined (need to add autoconf check) 2003-12-06 05:48:29 +00:00
Kurt Zeilenga
6264225bb9 zap libldbm 2003-12-04 23:42:05 +00:00
Howard Chu
3152932e96 Moved ldbm into back-ldbm. No more libldbm. 2003-12-04 22:38:54 +00:00
Howard Chu
dc19332bb9 Don't init SASL library until we actually want a SASL session 2003-12-03 01:59:33 +00:00
Kurt Zeilenga
a379dd4faf Misc cleanup 2003-11-30 01:07:47 +00:00
Hallvard Furuseth
51f1b8ccd7 Avoid /* inside comments. 2003-11-29 17:29:44 +00:00
Pierangelo Masarati
a0e158c7a3 clarify comments 2003-11-29 11:10:16 +00:00