upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-24 00:29:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
19245 commits 38 branches 309 tags 68 MiB
Commit graph

731 commits

Author SHA1 Message Date
Ralf Haferkamp
3a9310431e Reworked recent backend API changes, now using a separate struct, 
(ConfigReply) for the error messages.
 2007-08-03 12:02:07 +00:00
Ralf Haferkamp
5ae46c195e Added a new parameter (ConfigArgs*) to the _db_init, _db_open, _db_close and 
_db_destroy functions.
 2007-07-25 17:21:05 +00:00
Howard Chu
3b837d4fca More for ITS#5050 2007-07-23 00:33:21 +00:00
Howard Chu
da9f66ede7 ITS#5050 use correct (Bind) timeout in dobind_int 2007-07-22 17:48:04 +00:00
Pierangelo Masarati
0122f25853 fix minor error message 2007-07-14 16:17:20 +00:00
Howard Chu
d6ef5f3a0d ITS#5025 clear sr_entry before sending search reference 2007-06-19 20:04:36 +00:00
Pierangelo Masarati
43367e162e re-parse ID from passmod request, if necessary (ultimately fixes ITS#4964, along with fix to ITS#4973) 2007-05-19 14:08:49 +00:00
Pierangelo Masarati
c30ae47206 check for NULL dn in URL; set error code before seding extended response (partially addresses ITS#4968) 2007-05-15 22:29:06 +00:00
Hallvard Furuseth
e4a87ee27c Fix char* = const char* (text = sr->sr_text) 2007-04-04 17:48:25 +00:00
Pierangelo Masarati
d0e6e17b89 cleanup after sending entry 2007-03-21 22:33:09 +00:00
Pierangelo Masarati
6420bcd7d7 restore op before checking result (and, if necessary, bailing out) 2007-03-19 15:50:28 +00:00
Pierangelo Masarati
fd1efa13d0 fix previous commit (ITS#4861) 2007-03-09 17:24:56 +00:00
Pierangelo Masarati
6a9c44849c check consistency of referrals and result code (ITS#4861) 2007-03-08 17:57:49 +00:00
Pierangelo Masarati
5509c20961 keep SlapReply clean (ITS#4828) 2007-02-01 21:58:48 +00:00
Pierangelo Masarati
917ae32030 more about quarantine separation 2007-01-28 00:31:47 +00:00
Pierangelo Masarati
e07dc8c757 fix more spurious return stuff; split quarantine in: detection, exploitation, recovery; describe failure reasons 2007-01-28 00:24:10 +00:00
Pierangelo Masarati
6155d91143 don't return adminLimitExceeded unless LDAPv3; use largest among candidates timeouts 2007-01-26 01:59:30 +00:00
Pierangelo Masarati
5a228fa87a implement search timeout when the remote server does not respond in the specified timeout 2007-01-26 00:40:54 +00:00
Pierangelo Masarati
ecc28ff57c fix cached connection taint in case of timeout 2007-01-26 00:40:05 +00:00
Kurt Zeilenga
3297be046b silence warnings 2007-01-19 07:31:02 +00:00
Pierangelo Masarati
02af23c4c1 allow modules to muck with connection tree and so 2007-01-18 00:02:29 +00:00
Pierangelo Masarati
b604ef8d52 test mapped error code (ITS#4808) 2007-01-17 21:52:13 +00:00
Pierangelo Masarati
ee2370bf42 one more round of cached connections fixes/improvements 2007-01-13 11:51:28 +00:00
Pierangelo Masarati
78362d5acf fix entry deallocation 2007-01-11 21:33:39 +00:00
Pierangelo Masarati
fc20e15556 further cleanup 2007-01-10 00:53:05 +00:00
Pierangelo Masarati
e79580d203 disallow invalid per-syntax shortcuts 2007-01-09 15:33:54 +00:00
Pierangelo Masarati
3042c57ac0 allow forcing abandon of search operations on a connection basis 2007-01-09 12:19:04 +00:00
Howard Chu
afabf44493 Fix prev commit 2007-01-09 02:09:44 +00:00
Howard Chu
99a1d0f979 Fix TLS parsing 2007-01-09 01:35:31 +00:00
Pierangelo Masarati
e2d65fb69b fix previous commit(s) 2007-01-09 00:59:17 +00:00
Howard Chu
a6a8fb514b Add TLS context configuration 2007-01-08 23:36:24 +00:00
Pierangelo Masarati
82de650b19 fix idassert mode=self for anonymous operations (ITS#4798) 2007-01-08 18:34:59 +00:00
Pierangelo Masarati
45edf395eb cleanup ITS#4781 enhancement 2007-01-06 00:45:02 +00:00
Pierangelo Masarati
d132415e5f cleanup 2007-01-05 10:34:32 +00:00
Pierangelo Masarati
3284f54ec0 silence warnings 2007-01-03 21:34:49 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
7e8242d50d pool privileged connections (ITS#4791) 2006-12-24 18:23:36 +00:00
Pierangelo Masarati
6193ee4003 don't leak callbacks if stuff cannot be registered; provide a means to dispose of private stuff if required 2006-12-24 15:44:56 +00:00
Pierangelo Masarati
4483e79906 further fix of ITS#4782 2006-12-19 22:11:33 +00:00
Pierangelo Masarati
6752a27c0e (almost) blind fixes to ITS#4782 2006-12-19 21:59:23 +00:00
Howard Chu
08b209ffa9 ITS#4782 quick fix, never send result from proxy authz check. 2006-12-19 20:37:38 +00:00
Pierangelo Masarati
f52bb3d2c7 catch double free 2006-12-18 01:29:07 +00:00
Pierangelo Masarati
96152e2a3f fix another typo 2006-12-17 22:48:17 +00:00
Pierangelo Masarati
68fd83f2fd further fix previous commit 2006-12-17 22:21:41 +00:00
Pierangelo Masarati
ef0261e84c cleanup and document ITS#4781 commit 2006-12-17 22:20:02 +00:00
Pierangelo Masarati
3e427ad75a support a separate cached connection for binds when using (liberal) idassert flagged with "override" (ITS#4781) 2006-12-17 22:11:40 +00:00
Pierangelo Masarati
5e3d7a55dc rewrite chased DN according to referral's (ITS#4776) 2006-12-15 02:00:24 +00:00
Pierangelo Masarati
09abc9f8ae fix leak in case of retry 2006-11-24 01:44:11 +00:00
Howard Chu
4b6a3e8b6d Convert schema parsers to ConfigArgs so they can pass errors back to clients 2006-11-15 01:18:37 +00:00
Pierangelo Masarati
71bcd4a4b6 s/ldap_int_discard/ldap_pvt_discard/ 2006-10-28 18:13:12 +00:00
Pierangelo Masarati
45156c6d7a need ldap-int.h for ldap_int_discard() declaration (ITS#4717) 2006-10-28 16:19:53 +00:00
Kurt Zeilenga
dbaf7c5c25 More ldapbis cleanup 2006-10-28 04:47:58 +00:00
Pierangelo Masarati
6416d83372 add ldap_int_discard(); use it in proxies (ITS#4717) 2006-10-22 20:31:41 +00:00
Howard Chu
6f13331f4f Drop extraneous test from copy/paste (1.200) (coverity) 2006-10-08 00:37:18 +00:00
Howard Chu
acdddee3ab Fix uninit'd cb (coverity) 2006-10-08 00:26:32 +00:00
Pierangelo Masarati
f8d1a61866 more on clarification of special proxy identities and resilience to connection failure 2006-10-07 18:07:56 +00:00
Pierangelo Masarati
5714f8565f fix rebind with idassert when a connection expires; also, fix override 2006-09-30 01:11:19 +00:00
Pierangelo Masarati
0e9983ff2b fix ITS#4686 (retry with idassert) 2006-09-26 14:51:47 +00:00
Pierangelo Masarati
524a7bc27a by now, don't bail out if monitoring cannot be set up 2006-09-14 22:26:37 +00:00
Pierangelo Masarati
5bb325054e fix back-ldap monitoring 2006-09-14 19:56:34 +00:00
Pierangelo Masarati
107036a946 fix (temporarily) uninit'ed var 2006-09-14 14:58:00 +00:00
Pierangelo Masarati
028a8af7df comment monitoring by now 2006-09-14 09:06:17 +00:00
Pierangelo Masarati
a87da913cd further cleanup 2006-09-14 01:07:18 +00:00
Pierangelo Masarati
6e18cdb5fd add basic monitoring support to back-ldap/slapo-chain (slapo-chain needs work) 2006-09-14 01:05:48 +00:00
Pierangelo Masarati
1f257bf5ed URIs need to be between double quotes 2006-09-14 01:02:28 +00:00
Pierangelo Masarati
55b5685425 ldap_back_dobind_int() may need to free a connection 2006-09-11 22:45:19 +00:00
Pierangelo Masarati
1ab4c624ed rearrange error handling 2006-09-11 21:04:25 +00:00
Pierangelo Masarati
8eb455e7b2 add sb_version to slap_bindconf; 
rework slap_client_connect() and slap_discover_feature() accordingly
 2006-09-11 00:52:43 +00:00
Pierangelo Masarati
150a4f106c improve timeout support (ITS#4157, ITS#4663); manpage cleanup 2006-09-04 08:24:05 +00:00
Pierangelo Masarati
00c2498543 back-ldap should only touch the connection timestamp when activity actually occurred (i.e. ldap_result() returned a positive value), otherwise if "the network cable is removed after the connection is established" ldap_result() keeps returning 0 forever... 2006-09-03 11:02:15 +00:00
Pierangelo Masarati
8a71ac3740 don't leak identity 2006-08-31 16:21:54 +00:00
Pierangelo Masarati
e172835b55 fix pre-allocated entry/attribute handling 2006-08-29 17:09:08 +00:00
Howard Chu
78172aa0cf Entry/Attribute struct caching, to minimize malloc fragmentation 
Note: this breaks LDAP_COMP_MATCH and SLAP_ZONE_MALLOC. But they
were probably broken already anyway.
 2006-08-29 01:43:23 +00:00
Howard Chu
ca262ee8e6 Fix test045, test048 use acl-bind credentials on retry if they were set. 2006-08-25 02:16:57 +00:00
Kurt Zeilenga
d3e288dffe s/managedit/relax/ 
#unifdef -DSLAP_RELAX
 2006-08-22 23:31:46 +00:00
Pierangelo Masarati
e4d24ecce8 don't leave dangling conns in the AVL tree 2006-08-18 17:11:41 +00:00
Pierangelo Masarati
5b317f5b85 the conn may not be bound yet even if the bound DN is set... 2006-08-18 15:22:26 +00:00
Kurt Zeilenga
3e89a4ff82 LDAP_DEVEL cleanup 2006-08-18 06:29:46 +00:00
Pierangelo Masarati
9c52a2c4ff give slapd a chance to play callback cleanup handlers when a search operation is abandoned (ITS#4645) 2006-08-17 19:47:25 +00:00
Kurt Zeilenga
d9720d50dd Some LDAP_DEVEL cleanup 2006-08-15 19:36:54 +00:00
Kurt Zeilenga
4ba9bc1c2d Use LDAP_OTHER to indicate internal error 2006-08-12 21:46:29 +00:00
Pierangelo Masarati
34af916e3f fix response sending while rebinding (ITS#4597) 2006-06-24 16:58:49 +00:00
Pierangelo Masarati
aec9afc4e3 move retry into response handling (fix ITS#4594; partially addresses ITS#4591 as well) 2006-06-17 12:37:45 +00:00
Pierangelo Masarati
a5b520477c more cleanup for previous commit 2006-06-15 23:43:09 +00:00
Pierangelo Masarati
3ebb40c4dd port identity assertion to back-meta; share as much code as possible with back-ldap; misc cleanup 2006-06-15 23:12:38 +00:00
Pierangelo Masarati
ea6c83481b add return-error support to searches 2006-06-12 22:27:52 +00:00
Pierangelo Masarati
0f8f25cf1a add support for recursive referrals (with simple loop detection) to slapo-chain (ITS#4070); add simple support for returning the error code instead of the original referral (ITS#4570) 2006-06-12 22:09:43 +00:00
Pierangelo Masarati
31a004840d cleanup identity assertion; ready for porting to back-meta 2006-06-10 16:33:26 +00:00
Pierangelo Masarati
50c6a95a62 make sure heavy concurrency doesn't cause quarantine loops 2006-06-10 01:08:45 +00:00
Pierangelo Masarati
942ca17669 cleanup resource release 2006-06-08 23:41:02 +00:00
Pierangelo Masarati
740f196548 rework quarantine locking and so 2006-06-07 23:25:38 +00:00
Pierangelo Masarati
186813daed rearrange quarantine handling during proxyAuthz bind; bind anonymously if no bindmethod is defined 2006-05-30 01:20:32 +00:00
Pierangelo Masarati
85c9a7b4c5 further cleanop of previous commits 2006-05-30 00:40:39 +00:00
Pierangelo Masarati
f5fcd2c169 cleanup previous commit 2006-05-30 00:12:23 +00:00
Pierangelo Masarati
5854464be2 allow pretty time form in quarantine string 2006-05-29 23:36:12 +00:00
Pierangelo Masarati
a6406de871 make room for plugins that deal with quarantine end 2006-05-29 21:43:20 +00:00
Pierangelo Masarati
795841b5a4 implement proxy quarantine (ITS#4569) 2006-05-27 19:54:27 +00:00
Pierangelo Masarati
e5c173691d add cancel strategies (ITS#4560) 2006-05-20 14:29:01 +00:00
Pierangelo Masarati
80dfb95241 fix previous commit 2006-05-19 23:33:15 +00:00
Pierangelo Masarati
fcbc1f484d fix referrals return for ops other than search (ITS#4557); use slab memory for temporaries in returning referrals 2006-05-18 22:28:22 +00:00
Howard Chu
bb11c81178 ITS#4550 don't overwrite remote server's err msg 2006-05-16 21:45:31 +00:00
Howard Chu
5f3bc1f7ec Fix ITS#4450, don't overwrite remote server's rs->sr_text 2006-05-16 21:30:10 +00:00
Pierangelo Masarati
073f14ceac lc_bound_ndn is occasionally saved to keep track of who bound; don't use it to bind unless credentials are present as well 2006-05-16 02:56:59 +00:00
Pierangelo Masarati
9c9b6f7353 idassert: setup rebind stuff when binding for proxyAuthz, so that referral chasing tries to rebind with the correct identity (partially address ITS#3526) 2006-05-16 01:10:51 +00:00
Pierangelo Masarati
3b7084c170 reset the conn field in the cached connection if the bound DN is privileged (ITS#4547) 2006-05-15 01:42:05 +00:00
Pierangelo Masarati
26d1fc8c48 more cleanup of previous commits 2006-05-14 18:09:56 +00:00
Pierangelo Masarati
f87e6270d4 improve previous commit 2006-05-14 17:53:40 +00:00
Pierangelo Masarati
0c2c3ea7e1 typo in previous commit 2006-05-14 17:34:18 +00:00
Pierangelo Masarati
0c33c17bb5 "single-conn" forces flushing of existing conns during rebind on same conn (ITS#4546) 2006-05-14 17:32:15 +00:00
Pierangelo Masarati
3393b15594 cleanup resource release 2006-05-14 15:11:53 +00:00
Pierangelo Masarati
42ab45aed2 fix warning message 2006-05-09 20:32:25 +00:00
Pierangelo Masarati
373ded8d24 add URI list resorting feature (ITS#4524) 2006-05-06 16:15:25 +00:00
Pierangelo Masarati
401b211d98 touch idle-timeout HAVE_TLS odds; silence warning #ifndef HAVE_TLS 2006-05-06 10:50:13 +00:00
Pierangelo Masarati
470fda7744 cleanup version parsing 2006-05-06 10:42:29 +00:00
Pierangelo Masarati
3b5d411af2 fix idassert "override" 2006-05-01 22:54:07 +00:00
Pierangelo Masarati
4d894c7d24 don't idassert if proxyAuthz == boundDN (ITS#4497) 2006-04-21 21:07:31 +00:00
Pierangelo Masarati
e01743193d more coverity issues 2006-04-14 00:17:27 +00:00
Hallvard Furuseth
7a19d8855d Remove useless assert: unsigned lc->lc_refcnt >= 0 2006-04-13 22:20:55 +00:00
Pierangelo Masarati
bd8514fb1e address protocol version issues (ITS#4488) 2006-04-13 16:20:00 +00:00
Kurt Zeilenga
eb9a3c1876 unifdef -DSLAP_ACL_HONOR_DISCLOSE 
unifdef -DSLAP_ACL_HONOR_MANAGE
unifdef -DSLAP_OVERLAY_ACCESS
unifdef -DSLAP_ORDERED_PRETTYNORM
unifdef -DSLAP_AUTHZ_SYNTAX
Move LDAP_COLLECTIVE_ATTRIBUTES, LDAP_COMP_MATCH, and LDAP_SYNC_TIMESTAMP
back behind LDAP_DEVEL (as these either too experimental or not yet
implemented).
 2006-04-12 05:53:26 +00:00
Pierangelo Masarati
666e0677ca re-fix previous commit 2006-04-08 15:59:59 +00:00
Pierangelo Masarati
3d13b08a44 fix network-timeout commit 2006-04-08 14:45:45 +00:00
Pierangelo Masarati
cc8109db06 fix previous commit 2006-04-08 14:45:19 +00:00
Pierangelo Masarati
0500576056 add support for old proxyAuthz encoding; allow to workaround buggy implementations of the new version (now RFC4370) 2006-04-08 11:12:30 +00:00
Pierangelo Masarati
6a293c65b3 line up network-timeout with back-meta 2006-04-07 09:08:37 +00:00
Pierangelo Masarati
8c1b8d3f7b actually, if a connection is already in the AVL tree, use it if not binding; otherwise use a tainted one; taint connections that must be freed when refcnt goes to zero 2006-04-07 01:28:56 +00:00
Kurt Zeilenga
45d0479d37 Reverse last commit. Wrong tree. 2006-04-05 00:40:53 +00:00
Kurt Zeilenga
31d64d4642 No LogTest in re23 2006-04-05 00:39:46 +00:00
Howard Chu
fc61aab12b plug leak 2006-04-04 10:31:01 +00:00
Pierangelo Masarati
070c9d9f07 make sure rs->sr_err is fine 2006-04-03 00:33:34 +00:00
Hallvard Furuseth
b2f79aa42e Initialize and destroy lc_lai.lai_mutex 2006-04-02 23:47:13 +00:00
Hallvard Furuseth
581c1ff6c7 Cast ctype.h char arguments to unsigned char 2006-04-01 23:44:42 +00:00
Pierangelo Masarati
02966c3d1c fix handling of expired connections (ITS#4429; need to look at back-meta as well) 2006-03-29 01:26:42 +00:00
Pierangelo Masarati
bacd1f170f leave existing controls in place if proxyAuthz is not required by idassert (ITS#4457) 2006-03-28 21:45:54 +00:00
Pierangelo Masarati
e673b4d9ad propagate pretty DN (ITS#4456) 2006-03-28 19:20:01 +00:00
Pierangelo Masarati
0a465343fb cleanup 2006-03-27 00:31:38 +00:00
Pierangelo Masarati
1418b2c5b1 fix previous commit: actually free the connection in case of failed bind 2006-03-25 01:12:27 +00:00
Pierangelo Masarati
fd5208c18f destroy bind connection after failed bind (ITS#4428) 2006-03-25 00:33:42 +00:00
Pierangelo Masarati
00073c8cac fix operational attrs return with chain overlay (ITS#4431); misc cleanup 2006-03-24 22:49:51 +00:00
Pierangelo Masarati
3160c03dab cleanup previous commit 2006-03-23 23:01:14 +00:00
Pierangelo Masarati
3437406a0b honor "chase-referrals no" (ITS#4447) 2006-03-23 21:01:19 +00:00
Pierangelo Masarati
3861c47316 queue implicit binds (ITS#4409) 2006-03-03 16:27:00 +00:00
Pierangelo Masarati
fa72882808 fix error message 2006-02-16 01:10:45 +00:00
Kurt Zeilenga
cbc11c9233 unifdef -DLDAP_NULL_IS_NULL 2006-02-14 23:18:12 +00:00
Pierangelo Masarati
f4c578cb31 delete all conns cached for a single client->proxy connection (partially addresses ITS#4387) 2006-02-06 21:39:56 +00:00
Pierangelo Masarati
f0d6ac3e0b debug cleanup 2006-02-04 15:50:22 +00:00
Pierangelo Masarati
54aefe30f7 implement proxy long-lived connection TTL 2006-02-01 23:10:12 +00:00
Pierangelo Masarati
e393f47465 allow slapo-chain to be instantiated without any specific config statement... 2006-01-13 10:41:54 +00:00
Pierangelo Masarati
7124ec615e make sure appropriate limits are in place (ITS#4336) 2006-01-12 22:48:02 +00:00
Pierangelo Masarati
7038044c91 in abnormal cases, error may be sent twice 2006-01-11 15:32:34 +00:00