Don't pass NULL hostname to ldap_pvt_tls_check_hostname, use "localhost"

[openldap] / libraries / libldap / bind.c
diff --git a/libraries/libldap/bind.c b/libraries/libldap/bind.c

index 8fe3b358b35b0615981d6c019c088322cc8568a2..f985b3b0d937f50deaf4d881896e7bb11b0215ce 100644 (file)
--- a/libraries/libldap/bind.c
+++ b/libraries/libldap/bind.c
@@ -1,5 +1,6 @@
+/* $OpenLDAP$ */
  /*
- * Copyright 1998-1999 The OpenLDAP Foundation, All Rights Reserved.
+ * Copyright 1998-2000 The OpenLDAP Foundation, All Rights Reserved.
   * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
   */
  /*  Portions
@@ -9,6 +10,27 @@
   *  bind.c
   */
  
+/*
+ *     BindRequest ::= SEQUENCE {
+ *             version         INTEGER,
+ *             name            DistinguishedName,       -- who
+ *             authentication  CHOICE {
+ *                     simple          [0] OCTET STRING -- passwd
+#ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
+ *                     krbv42ldap      [1] OCTET STRING
+ *                     krbv42dsa       [2] OCTET STRING
+#endif
+ *                     sasl            [3] SaslCredentials     -- LDAPv3
+ *             }
+ *     }
+ *
+ *     BindResponse ::= SEQUENCE {
+ *             COMPONENTS OF LDAPResult,
+ *             serverSaslCreds         OCTET STRING OPTIONAL -- LDAPv3
+ *     }
+ *
+ */
+
  #include "portable.h"
  
  #include <stdio.h>
@@ -38,29 +60,13 @@
  int
  ldap_bind( LDAP *ld, LDAP_CONST char *dn, LDAP_CONST char *passwd, int authmethod )
  {
-       /*
-        * The bind request looks like this:
-        *      BindRequest ::= SEQUENCE {
-        *              version         INTEGER,
-        *              name            DistinguishedName,       -- who
-        *              authentication  CHOICE {
-        *                      simple          [0] OCTET STRING -- passwd
-#ifdef HAVE_KERBEROS
-        *                      krbv42ldap      [1] OCTET STRING
-        *                      krbv42dsa       [2] OCTET STRING
-#endif
-        *              }
-        *      }
-        * all wrapped up in an LDAPMessage sequence.
-        */
-
         Debug( LDAP_DEBUG_TRACE, "ldap_bind\n", 0, 0, 0 );
  
         switch ( authmethod ) {
         case LDAP_AUTH_SIMPLE:
                 return( ldap_simple_bind( ld, dn, passwd ) );
  
-#ifdef HAVE_KERBEROS
+#ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
         case LDAP_AUTH_KRBV41:
                 return( ldap_kerberos_bind1( ld, dn ) );
  
@@ -68,6 +74,10 @@ ldap_bind( LDAP *ld, LDAP_CONST char *dn, LDAP_CONST char *passwd, int authmetho
                 return( ldap_kerberos_bind2( ld, dn ) );
  #endif
  
+       case LDAP_AUTH_SASL:
+               /* user must use ldap_sasl_bind */
+               /* FALL-THRU */
+
         default:
                 ld->ld_errno = LDAP_AUTH_UNKNOWN;
                 return( -1 );
@@ -101,7 +111,7 @@ ldap_bind_s(
         case LDAP_AUTH_SIMPLE:
                 return( ldap_simple_bind_s( ld, dn, passwd ) );
  
-#ifdef HAVE_KERBEROS
+#ifdef LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND
         case LDAP_AUTH_KRBV4:
                 return( ldap_kerberos_bind_s( ld, dn ) );
  
@@ -112,15 +122,11 @@ ldap_bind_s(
                 return( ldap_kerberos_bind2_s( ld, dn ) );
  #endif
  
+       case LDAP_AUTH_SASL:
+               /* user must use ldap_sasl_bind */
+               /* FALL-THRU */
+
         default:
                 return( ld->ld_errno = LDAP_AUTH_UNKNOWN );
         }
  }
-
-
-void
-ldap_set_rebind_proc( LDAP *ld, int (*rebindproc)( LDAP *ld, char **dnp,
-       char **passwdp, int *authmethodp, int freeit ))
-{
-       ld->ld_rebindproc = rebindproc;
-}