upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-22 15:49:34 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
21093 commits 38 branches 309 tags 68 MiB
Commit graph

488 commits

Author SHA1 Message Date
Howard Chu
ccfe26fca9 Cleanup overflow check 2007-12-02 21:46:50 +00:00
Hallvard Furuseth
3b6122cb73 Integer indexing - cleanup 2007-12-02 19:25:33 +00:00
Howard Chu
304520c113 Add memctx to lutil_str2bin() 2007-12-02 19:11:41 +00:00
Hallvard Furuseth
283313ba15 Fix last patch, and reduce allocations in lutil_str2bin(). 2007-12-02 17:32:08 +00:00
Hallvard Furuseth
bddba8ae17 Integer indexing - handle huge values 2007-12-02 16:10:23 +00:00
Howard Chu
60c0a68249 Trim unneeded tmp var 2007-12-01 11:44:18 +00:00
Howard Chu
95993844dd Omit leading zero pad byte 2007-12-01 11:41:52 +00:00
Howard Chu
d513108ea3 Fix sign bit 2007-12-01 11:00:40 +00:00
Howard Chu
b7f3bb05f5 Fix 1.426, must sign-extend small numbers, not zero-pad 2007-11-30 18:12:17 +00:00
Howard Chu
8a8a05d811 Change integer indexing to ordered only, no backward compatibility 2007-11-25 13:19:08 +00:00
Pierangelo Masarati
7aeac21440 silence warnings 2007-11-23 12:47:53 +00:00
Howard Chu
dd39c0a6fd integer indexing must be unsigned 2007-11-21 03:07:09 +00:00
Howard Chu
3ff3957dc7 Add index_intlen keyword for ordered indexing of integers 2007-11-21 02:54:57 +00:00
Howard Chu
c406042fd6 ITS#5072 fix issuer format, use uppercase hex per RFC3641 2007-10-05 11:27:20 +00:00
Pierangelo Masarati
c3c3c9c16b support de-normalization 2007-10-05 09:26:48 +00:00
Howard Chu
925e92dcc9 certificateExactNormalize - only check serial encoding if len > 1 2007-10-01 16:32:30 +00:00
Howard Chu
291c8d9bd8 ITS#5070 unify serialNumberAndIssuer validation 2007-10-01 08:43:56 +00:00
Howard Chu
4ad821910c ITS#5070 use lutil_str2bin() for certificate serialNumbers 
Still need to fix serialNumberAndIssuerPretty to accept hex
 2007-10-01 06:55:02 +00:00
Howard Chu
37e295f269 ITS#5070 again, use [-]0x123456789abcdef for big int serial numbers 2007-09-29 09:50:54 +00:00
Howard Chu
d322eb96c3 ITS#5151 fix CertificateListValidate 2007-09-24 07:55:56 +00:00
Howard Chu
f1065e1780 Remove special cases for BigNums in certificateExactNormalize, just 
use hex when serial is larger than int. Normalized values need to be
consistent regardless of compile-time environment...
 2007-09-24 06:26:36 +00:00
Pierangelo Masarati
12ea3e4304 check call consistency 2007-09-03 16:36:22 +00:00
Howard Chu
f8fcb44d13 Fix PrintableString/IA5String commentary 2007-09-03 00:40:37 +00:00
Pierangelo Masarati
f6dc2b1032 hide (experimental) schema 2007-09-01 15:45:12 +00:00
Pierangelo Masarati
56d9a93ad4 authzMatch IS octetStringMatch 2007-09-01 15:44:24 +00:00
Pierangelo Masarati
1b40253d4d release certificateListValidate() 2007-08-30 20:27:13 +00:00
Pierangelo Masarati
47f1f66361 keep pretty and normal form of CSN the same... 2007-08-27 10:39:48 +00:00
Pierangelo Masarati
6edcf92419 also the MOD part is hex; preserve compatibility with OpenLDAP's 2.3 entryCSN 2007-08-27 10:09:46 +00:00
Pierangelo Masarati
81a4676571 add csnValidate/csnNormalize, since the SID could be hexadecimal, and we want upper/lowercase a-f to match as appropriate 2007-08-27 09:13:45 +00:00
Pierangelo Masarati
2082935657 so SIDs are hex 2007-08-27 07:09:57 +00:00
Pierangelo Masarati
2132aa3b16 add support for CSNSIDMatch; use it to set contextCSN as appropriate when slapadd'ing -w 2007-08-26 15:39:45 +00:00
Pierangelo Masarati
72f009ac52 behave when a value of an ordered attr starts with '{' and either contains or not '}', but the prefix '{X}' does not contain a numericString 2007-08-24 23:05:10 +00:00
Pierangelo Masarati
3771d2ed49 fox to ITS#5070 fix: error out if serialNumber requires size > sizeof(long long) (detected by Coverity) 2007-08-16 11:57:34 +00:00
Pierangelo Masarati
f4e12e11d6 trim unused vars 2007-08-03 20:26:48 +00:00
Pierangelo Masarati
d0baca7a62 add certificateListValidate (#ifdef LDAP_DEVEL) 2007-08-03 13:12:36 +00:00
Pierangelo Masarati
34921e07ad allow parsing of long long serials when long long is defined (ITS#5070) 2007-08-03 10:50:18 +00:00
Pierangelo Masarati
6a4dd27158 allow validation/normalization of x509 v1 (default) certs 2007-07-25 00:56:51 +00:00
Hallvard Furuseth
101b6b9363 Fix --without-tls (ITS#4975). Enable certificate matching. 2007-05-20 22:48:21 +00:00
Hallvard Furuseth
861babae6f include lber-int.h (for rev 1.396 certificate changes) 2007-05-18 14:41:28 +00:00
Pierangelo Masarati
978c3609e0 allow array of more generic syntaxes 2007-05-16 09:13:14 +00:00
Pierangelo Masarati
eb5d285a1b allow attribute inheritance with syntax restriction (please review) 2007-05-16 01:40:34 +00:00
Howard Chu
97b0c98ab5 Don't use strdup on bervals 2007-05-13 09:36:52 +00:00
Howard Chu
f3c9d552dd Use liblber for certificate Validation, Normalization 2007-05-13 01:27:51 +00:00
Howard Chu
51e58c671e Fix q[-1] ref in prev commit 2007-01-29 23:56:59 +00:00
Howard Chu
67f16caec0 ITS#4823 allow zero-length IA5String 2007-01-29 04:39:54 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
78af5454d2 use case consistent with RFCs (ITS#4764) 2006-12-02 10:30:29 +00:00
Kurt Zeilenga
dbaf7c5c25 More ldapbis cleanup 2006-10-28 04:47:58 +00:00
Kurt Zeilenga
99b954e2c3 LDAPBIS cleanup 2006-10-28 03:53:02 +00:00
Howard Chu
dd74acbf74 Fix ITS#4672, clear errno before calling STRTOL 2006-09-13 05:34:38 +00:00
Hallvard Furuseth
6567412f54 schema_destroy(): Handle failed slap_schema_init() 2006-04-13 22:19:19 +00:00
Kurt Zeilenga
eb9a3c1876 unifdef -DSLAP_ACL_HONOR_DISCLOSE 
unifdef -DSLAP_ACL_HONOR_MANAGE
unifdef -DSLAP_OVERLAY_ACCESS
unifdef -DSLAP_ORDERED_PRETTYNORM
unifdef -DSLAP_AUTHZ_SYNTAX
Move LDAP_COLLECTIVE_ATTRIBUTES, LDAP_COMP_MATCH, and LDAP_SYNC_TIMESTAMP
back behind LDAP_DEVEL (as these either too experimental or not yet
implemented).
 2006-04-12 05:53:26 +00:00
Hallvard Furuseth
6c772f2057 assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2006-04-01 23:52:42 +00:00
Kurt Zeilenga
ffee887d71 Update certificate schema to use IANA assigned OIDs 2006-03-08 20:07:25 +00:00
Kurt Zeilenga
4c64b8626d Add support for GSER-encoded certificateExactAsssertion values 2006-03-03 04:54:49 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Kurt Zeilenga
e50fc1833d Add UUIDPretty 
Likely should add UUID-named-entry test case to test026...
 2005-12-20 23:25:44 +00:00
Kurt Zeilenga
439af9ec10 (Quick)fix UUID naming attributes 2005-12-20 22:36:51 +00:00
Pierangelo Masarati
474dfbc8fd don't trust strchr/strrchr with bervals 2005-11-13 22:26:53 +00:00
Howard Chu
8f5ea1f1d2 substring indexing optimization 2005-10-23 22:38:15 +00:00
Kurt Zeilenga
d10832b0c8 entryUUID schema to use IANA (newly) assigned OIDs 2005-09-26 18:37:50 +00:00
Howard Chu
86bd3651e1 ITS#4040 move initialization 2005-09-25 06:12:41 +00:00
Howard Chu
5697278574 ITS#4040 fix uniqueMemberMatch when value is zero-length 2005-09-25 06:11:35 +00:00
Pierangelo Masarati
4bc8197dcb further ACI factoring out & confinement 2005-08-22 16:03:35 +00:00
Pierangelo Masarati
de90dbbc52 mutex-protect "undefined" attribute descriptions/objectClasses addition (ITS#3958) 2005-08-22 09:46:17 +00:00
Pierangelo Masarati
ec49990d51 ACIs almost entirely factored out of slapd 
Added OpenLDAPaciSyntax based on ITS#3877 by Nikita Shulga
aci_mask() doesn't exploit the normalized value yet (next step)
The case #define SLAPD_ACI_ENABLED / #undef SLAP_DYNACL should
be removed
 2005-08-17 17:14:57 +00:00
Pierangelo Masarati
d10250d9f6 add authzSyntax for authzTo/authzFrom attributes; add X-ORDERED 'VALUES' if support for ordered_value_{validate,pretty,normalize} is present; exploit normalization in slap_parseURI (only #ifdef LDAP_DEVEL) 2005-08-11 23:52:17 +00:00
Hallvard Furuseth
9601e1e7ec serialNumberAndIssuerPretty() and serialNumberAndIssuerNormalize() 
were confused about realloced memory.
 2005-07-30 23:30:42 +00:00
Hallvard Furuseth
81ecb0b153 assert expects int. (int)<nonnull ptr/long> can be 0. Use assert(arg!=0/NULL). 2005-07-18 06:22:33 +00:00
Howard Chu
5d2ba11ad9 ITS#3847 silence warnings 2005-07-11 12:11:15 +00:00
Luke Howard
f90800667d Fix OpenLDAP ITS#3782 - broken logic in bitwise matching rules 2005-06-16 05:31:24 +00:00
Kurt Zeilenga
3e800f20bd <limits.h> cleanup && ITS#3643 2005-04-10 19:32:14 +00:00
Kurt Zeilenga
e7e8ec90b6 Update uniqueMemberMatch to be consistent with latest 
draft-ietf-ldapbis-syntaxes
Add uniqueMemberMatch approximate support
Add uniqueMemberMatch indexing support
 2005-03-26 02:07:00 +00:00
Kurt Zeilenga
8da81d42c7 ITS#3538: improved substrings matching (spaces handled 
in accordance with LDAPprep)
 2005-03-25 05:57:07 +00:00
Howard Chu
3f357270d4 Fix unparsers, schema loading works 2005-03-21 10:23:01 +00:00
Howard Chu
b6019af759 Fix off-by-one in octetStringSubstringsFilter 2005-02-01 13:40:17 +00:00
Pierangelo Masarati
e559e61b4f consistently use BER_* macros 2005-01-18 09:35:09 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Kurt Zeilenga
d616bd4ff8 cleanup 2004-12-07 18:40:47 +00:00
Howard Chu
810abc1419 Better fix for prev commit 2004-12-06 07:38:09 +00:00
Howard Chu
ee01d03766 Don't assert on short time strings, just ignore them. 2004-12-06 03:37:06 +00:00
Howard Chu
02a85a1c93 Hide CSN schema dependencies 2004-12-02 16:59:00 +00:00
Howard Chu
1e577505eb Add CSN syntax, matching rules (to support inequality indexing) 2004-12-02 09:05:26 +00:00
Sang Seok Lim
decfd7217f 1) <all> type component reference support 
2) nibble type memory support when decoding
3) description type object identifier support
4) OPTIONAL, DEFAULT support in certificate decoder/extractor/matching
5) Misc bug fix
 2004-11-29 20:21:38 +00:00
Sang Seok Lim
a90e63fde0 ComponentFilterMatch support for userCertificate 2004-11-14 20:11:38 +00:00
Sang Seok Lim
71e78dd7f9 Component Matching module 
See "contrib/slapd-modules/comp_match/README" to understand
what's the purpose of  this patch is and how to use it.
 2004-10-27 19:37:02 +00:00
Howard Chu
7e87f54716 Revert ITS#3353 patch, it needs to be reworked. 2004-10-06 05:51:38 +00:00
Howard Chu
fda3d6260e ITS#3353 consolidate slapd globals into a single struct 2004-10-01 07:33:16 +00:00
Howard Chu
62b6b32633 Add SLAP_MR_ORDERED_INDEX - support for inequality indexing. Currently 
only implemented for generalizedTime syntax.
 2004-09-28 13:11:11 +00:00
Howard Chu
fc44ed4593 Tweak exact hashing in prev commit 2004-09-28 04:13:09 +00:00
Howard Chu
bf7c7a22d6 ITS#2661: configurable substring index lengths 
ITS#2588: use subany to help long subinitial/subfinal matches
 2004-09-28 02:51:00 +00:00
Pierangelo Masarati
761f287943 multiple precision with BIGNUM/gmp/ulong 2004-09-26 22:58:47 +00:00
Kurt Zeilenga
910076d26f Add additional DN matching rules. 2004-09-09 03:56:58 +00:00
Kurt Zeilenga
741f9ea383 Add initial dnSubtreeMatch. 
Should reuse other DN routines.
Need to add various other DN matching rule functions.
This commit, combined with entryDN and slapcat -a, should
fully address ITS#3112.
 2004-09-09 02:07:27 +00:00
Kurt Zeilenga
d611a4b49a unifdef -UNEW_LOGGING 2004-09-04 04:54:28 +00:00
Jong Hyuk Choi
70fda7725a revert prev commit to normalizers 2004-09-01 16:01:36 +00:00
Jong Hyuk Choi
6baa9b1e2b use ch_malloc for normailzed values 2004-08-31 14:22:56 +00:00
Jong Hyuk Choi
e6df94946d patch for ITS#3296 - do not use sl_malloc on normalized attr values 2004-08-31 13:47:33 +00:00
Kurt Zeilenga
fea393c077 cleanup 2004-08-28 19:26:59 +00:00
Sang Seok Lim
2af6457771 This patch is for a component filter. please refer ITS#3260 for detail 
and "implementing GSER and Component Matching" in ODD 2004.
All codes are #ifdef'd with LDAP_COMP_MATCH.
test031-component-filter works correctly only when the LDAP_COMP_MATCH macro is set.
To disable it, set AC_WITH_COMP_MATCH "no" in "openldap_src/tests/run.in".
 2004-08-26 00:06:39 +00:00