upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-20 22:59:34 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
24515 commits 38 branches 309 tags 68 MiB
Commit graph

12801 commits

Author SHA1 Message Date
Arvid Requate
7929b3ee77 ITS#7901 slapschema: preserve errors in -c mode 2025-10-22 19:25:34 +00:00
Ondřej Kuzník
6a28e8919d ITS#10313 Allow counter mods to be chained 2025-10-21 03:15:43 +00:00
Ondřej Kuzník
e0cca3fcab ITS#10313 Tighten counter tracking modification 
Try to make sure the counter/timer value we used hasn't been used up in
the meantime. Also if the update cannot be committed, do not say whether
the provided OTP was correct, this would open up an oracle for malicious
clients to brute force a token they could use later/elsewhere.
 2025-10-21 03:15:43 +00:00
Ondřej Kuzník
1414325c4d ITS#10379 Use a fresh timestamp for internal mod 2025-10-21 03:15:43 +00:00
Ondřej Kuzník
a480eae05a ITS#10169 Do not leak opattr mods 2025-10-21 03:15:43 +00:00
Howard Chu
78ecd45ff7 Revert "ITS#10398 slapo-memberof/refint: fix clash on subtree renames" 
This reverts commit 1b1b687bd4.
Pushed by mistake
 2025-10-16 20:18:36 +01:00
Howard Chu
e8105816ce ITS#10381 fix logformat for Windows again 
Misplaced line in previous commit.
 2025-10-15 20:17:34 +01:00
Howard Chu
1b1b687bd4 ITS#10398 slapo-memberof/refint: fix clash on subtree renames 
refint must use manageDsaIt control on its repair ops, and
memberof must ignore modify ops with this control set.
 2025-10-07 19:12:12 +01:00
Nadezhda Ivanova
0c69e59f85 ITS#10392 back-ldap does not return a response if incorrect secprops is configured 2025-09-30 16:14:55 +00:00
Howard Chu
0270cdfe8e ITS#10381 fix logformat config 2025-09-23 18:58:39 +00:00
Howard Chu
5fd86869f3 ITS#10191 back-mdb: check for pool pause in search 
Also related, cancel any ops on a DB that is being deleted.
 2025-09-23 17:30:51 +00:00
Ondřej Kuzník
ce9ee22c7a ITS#10385 Set correct rootDN for accesslog replay 2025-09-02 19:20:46 +00:00
Ondřej Kuzník
7c6e35f94b ITS#10369 Merge duplicate attributes properly 2025-09-02 15:27:06 +00:00
Ondřej Kuzník
bb60d30ef5 ITS#10384 Free attributes on error 2025-09-02 15:27:06 +00:00
Howard Chu
83030cacbc ITS#10387 daemon: fix reverselookup of proxied IPv6 address 2025-09-01 15:05:53 +01:00
Ondřej Kuzník
6d9f99e5f5 ITS#10380 Log server version on logfile change 2025-08-22 14:23:19 +01:00
Ondřej Kuzník
5002604537 ITS#10379 Use a fresh timestamp for lastbind mod 2025-08-05 15:35:34 +00:00
Ondřej Kuzník
0734bc3373 ITS#10254 Do not trigger pwdReset when rehashing 2025-08-05 15:35:34 +00:00
Ondřej Kuzník
06480123b1 ITS#10254 Fix rehashing logic and add tests 2025-08-05 15:35:34 +00:00
Ondřej Kuzník
cadbcc629c ITS#9343 Fix the minimum number of ppolicy_rules arguments check 2025-08-05 15:35:34 +00:00
Howard Chu
053ca6b656 ITS#10304 slapd-mdb: fix spurious error when deleting last child of a branch 2025-08-05 16:26:23 +01:00
Nadezhda Ivanova
add3df9da4 ITS#10363 - Implement a target connection time-to-live in asyncmeta 2025-07-31 19:01:56 +00:00
Nadezhda Ivanova
d1848e54ae ITS#10363 Removed unused arguments and unused code in asyncmeta_getconn and asyncmeta_clear_one_msc 2025-07-31 19:01:56 +00:00
Nadezhda Ivanova
4fbdbf388b ITS#10308 Implement cn=monitor for back-asyncmeta 
Provide some target connection statistics such as target connections
status and target status
 2025-07-31 19:01:56 +00:00
Howard Chu
0ff74659c0 ITS#10374 pcache: fix config emit of noattr attrset 
Support for configuring an empty attrset was added in add25c2f45
for ITS#5074 but code to emit the config wasn't updated accordingly.
 2025-07-31 16:43:31 +01:00
Arran Cudbard-Bell
163da8d217
slapo-auditlog: Add olcAuditlogNonBlocking to avoid blocking when logging to named pipes 
The default behaviour of fopen() when called on a named pipe which does not have any reader, is to block, until a reader opens the pipe.  This blocks slapo-auditlog when it attempts to write output.  Depending on how critical the audit log  is, it may be preferable to discard audit log output and continue processing requests if there's no reader available.

For clarity the call to fopen() is removed and replaced with open()/fdopen(), allowing us to specify O_* flags as opposed to using fopen() or open()/fdopen(). 0666 are the base permissions used by fopen() when files are created.
 2025-07-03 11:18:51 -06:00
Howard Chu
6e559efd85 ITS#10360 delta MPR: internal search should use logDB's rootDN 2025-06-23 22:07:55 +00:00
Ondřej Kuzník
dcd60d1d0a ITS#10254 Let slapo-ppolicy rehash user's password 2025-06-23 16:47:48 +00:00
Ondřej Kuzník
406836540c ITS#10254 Fix password_scheme to return full hash specification 2025-06-23 16:47:48 +00:00
Ondřej Kuzník
d0d07810eb ITS#7981 Allow setting a default hash per policy 2025-06-23 16:47:48 +00:00
Ondřej Kuzník
dad90d66c5 ITS#7981 Move default hash selection to slap_passwd_hash_type 2025-06-23 16:47:48 +00:00
Ondřej Kuzník
9d90f55c83 ITS#9343 Fix uninitialised variable 2025-06-23 16:47:48 +00:00
Ondřej Kuzník
14d47146b0 ITS#10169 Allow a Compare against oathSecret 2025-06-20 23:45:43 +00:00
Ondřej Kuzník
47e9cd7313 ITS#10349 Do not leak memberof_t 2025-06-20 14:52:19 +00:00
jinyaoguo
8cf1812431 ITS#10348 Relase memory allocated from ch_malloc in 2 error handling branches. 2025-06-20 14:52:19 +00:00
jinyaoguo
ddea2bc669 ITS#10343 Fix a memory leak in function slap_uuidstr_from_normalized 2025-06-20 14:52:19 +00:00
jinyaoguo
f00339df9e ITS#10344 Ensure the first argument passed to ber_dupbv_x is not NULL. 2025-06-20 14:52:19 +00:00
Ondřej Kuzník
87a2d70750 ITS#10338 Add olcConstraintAllowEmpty 2025-06-17 19:26:25 +00:00
Ondřej Kuzník
10b1d6c9b4 ITS#10339 Do not reuse freed memory 2025-06-17 16:27:59 +00:00
Ondřej Kuzník
7717e2ba4d ITS#10301 Send assert control with forwarded mods if configured 2025-06-17 14:58:26 +00:00
Howard Chu
7a8d72b02b ITS#10336 slapd-mdb: fix delete on empty DB 
Don't assume parent of target entry will always exist.
 2025-05-13 18:02:27 +01:00
Greg Noe
9a52a3c28b ITS#10140 Add microsecond timestamp format for local file logging 2025-04-30 07:46:42 -07:00
Ondřej Kuzník
f1556ba98a ITS#10331 Add helpful error messages for usage errors 2025-04-25 13:45:09 +01:00
Ondřej Kuzník
ca5391b811 ITS#10327 Allow lockless config_back_search() during server pause 
The assumption is that the only reason it is allowed to run at this
point is that it is called from the reconfiguration context anyway.
 2025-04-24 15:24:56 +00:00
Howard Chu
015f2937ba ITS#10168 back-mdb: cleanup index setup 
Nop index setup when index config resulted in no configured indices
 2025-04-23 15:16:47 +00:00
Howard Chu
f1ca58680a ITS#10299 slapacl: use dummy entry_get in dry-run mode 2025-04-01 19:41:10 +00:00
Andrew Elble
f00319b32c ITS#10270 slapo-pcache: negative cache entries are not loaded when pcachePersist is on 2025-03-27 14:59:33 +00:00
Andrew Elble
24d4dcb3d7 ITS#10270 slapo-pcache: queries with ttr/x-refresh are not loaded when pcachePersist is on 2025-03-27 14:59:29 +00:00
Andrew Elble
9b03791108 ITS#10270 slapo-pcache: ttr was not being applied to negatively cached entries 2025-03-27 14:59:15 +00:00
Ondřej Kuzník
82cee8f57a ITS#10312 Explicitly allow FALSE in 'subordinate' 2025-03-12 15:44:57 +00:00