]> git.sur5r.net Git - openldap/log
openldap
13 years agoITS#6525 gnutls cipher spec is unclear
Quanah Gibson-Mount [Thu, 6 Jan 2011 22:30:33 +0000 (22:30 +0000)]
ITS#6525 gnutls cipher spec is unclear

13 years agoITS#6780 document multi-listener-thread support
Howard Chu [Thu, 6 Jan 2011 19:22:45 +0000 (19:22 +0000)]
ITS#6780 document multi-listener-thread support

13 years agoOutline SASL interactive API (no meat)
Kurt Zeilenga [Thu, 6 Jan 2011 18:37:23 +0000 (18:37 +0000)]
Outline SASL interactive API (no meat)

13 years agoITS#6525 gnutls cipher spec is unclear
Gavin Henry [Thu, 6 Jan 2011 18:11:46 +0000 (18:11 +0000)]
ITS#6525 gnutls cipher spec is unclear

13 years agoITS#6522 man page for pcache overlay doesn't state requirement for rootdn
Gavin Henry [Thu, 6 Jan 2011 18:07:22 +0000 (18:07 +0000)]
ITS#6522 man page for pcache overlay doesn't state requirement for rootdn

13 years agoITS#6521 docs: pcache overlay section in admin guide
Gavin Henry [Thu, 6 Jan 2011 18:02:16 +0000 (18:02 +0000)]
ITS#6521 docs: pcache overlay section in admin guide

13 years agoplug leak on usage()
Pierangelo Masarati [Wed, 5 Jan 2011 23:00:51 +0000 (23:00 +0000)]
plug leak on usage()

13 years agoallow clients to set USERNAME in session tracking control request (6779); plug minor...
Pierangelo Masarati [Wed, 5 Jan 2011 22:54:20 +0000 (22:54 +0000)]
allow clients to set USERNAME in session tracking control request (6779); plug minor leaks

13 years agoRe-fix ITS#6764 (check for ber == NULL _before_ using ber)
Hallvard Furuseth [Wed, 5 Jan 2011 13:57:31 +0000 (13:57 +0000)]
Re-fix ITS#6764 (check for ber == NULL _before_ using ber)

13 years agoNote that ldap_sasl_interactive_bind() will be forced to synchronously
Howard Chu [Wed, 5 Jan 2011 00:53:27 +0000 (00:53 +0000)]
Note that ldap_sasl_interactive_bind() will be forced to synchronously
query the server for mechanisms if not supplied by the caller.

13 years agoHappy New Year
Kurt Zeilenga [Wed, 5 Jan 2011 00:42:37 +0000 (00:42 +0000)]
Happy New Year

13 years agoplug one time leak (this time should be correct; ITS#6778)
Pierangelo Masarati [Tue, 4 Jan 2011 23:17:42 +0000 (23:17 +0000)]
plug one time leak (this time should be correct; ITS#6778)

13 years agorevert previous commit (ITS#6777)
Pierangelo Masarati [Tue, 4 Jan 2011 22:34:22 +0000 (22:34 +0000)]
revert previous commit (ITS#6777)

13 years agocleanup
Pierangelo Masarati [Tue, 4 Jan 2011 21:45:43 +0000 (21:45 +0000)]
cleanup

13 years agofix client tool man page
Pierangelo Masarati [Tue, 4 Jan 2011 21:45:01 +0000 (21:45 +0000)]
fix client tool man page

13 years agofix previous commits
Pierangelo Masarati [Tue, 4 Jan 2011 20:43:55 +0000 (20:43 +0000)]
fix previous commits

13 years agofix multi-step binds otherwise
Pierangelo Masarati [Tue, 4 Jan 2011 20:43:10 +0000 (20:43 +0000)]
fix multi-step binds otherwise

13 years agoplug minor leak
Pierangelo Masarati [Tue, 4 Jan 2011 18:45:21 +0000 (18:45 +0000)]
plug minor leak

13 years agomake sure matched is NULL when err=SUCCESS (ITS#6774)
Pierangelo Masarati [Tue, 4 Jan 2011 18:27:02 +0000 (18:27 +0000)]
make sure matched is NULL when err=SUCCESS (ITS#6774)

13 years agocleanup controls logging in LDIF mode (-L[L[L]], ITS#6775)
Pierangelo Masarati [Tue, 4 Jan 2011 18:20:04 +0000 (18:20 +0000)]
cleanup controls logging in LDIF mode (-L[L[L]], ITS#6775)

13 years agoalso works for multi-stage binds (ITS#6771; needs ITS#6773 patch)
Pierangelo Masarati [Tue, 4 Jan 2011 16:19:51 +0000 (16:19 +0000)]
also works for multi-stage binds (ITS#6771; needs ITS#6773 patch)

13 years agono need for next control
Pierangelo Masarati [Tue, 4 Jan 2011 16:17:24 +0000 (16:17 +0000)]
no need for next control

13 years agotypo in error message
Pierangelo Masarati [Tue, 4 Jan 2011 16:16:59 +0000 (16:16 +0000)]
typo in error message

13 years ago(FORCED) add generic support for RFC 3829 authzid control (bauthzid; ITS#6771)
Pierangelo Masarati [Tue, 4 Jan 2011 16:04:50 +0000 (16:04 +0000)]
(FORCED) add generic support for RFC 3829 authzid control (bauthzid; ITS#6771)

13 years agoadd generic support for RFC 3829 authzid control (bauthzid)
Pierangelo Masarati [Tue, 4 Jan 2011 16:03:31 +0000 (16:03 +0000)]
add generic support for RFC 3829 authzid control (bauthzid)

13 years agoVC adjust controls tag
Kurt Zeilenga [Tue, 4 Jan 2011 16:01:07 +0000 (16:01 +0000)]
VC adjust controls tag

13 years agoFORCED COMMIT: Last commit was for ITS#6758 (sr_type=REP_SEARCH before be_operational)
Hallvard Furuseth [Tue, 4 Jan 2011 15:14:32 +0000 (15:14 +0000)]
FORCED COMMIT: Last commit was for ITS#6758 (sr_type=REP_SEARCH before be_operational)

13 years agoSet sr_type=REP_SEARCH before be_operational
Hallvard Furuseth [Tue, 4 Jan 2011 15:12:45 +0000 (15:12 +0000)]
Set sr_type=REP_SEARCH before be_operational

13 years agoITS#6758 config_back_add: Don't set sr_text if compareTrue
Hallvard Furuseth [Tue, 4 Jan 2011 15:02:52 +0000 (15:02 +0000)]
ITS#6758 config_back_add: Don't set sr_text if compareTrue

13 years agofix cloak behavior; plug leak (ITS#6762)
Pierangelo Masarati [Tue, 4 Jan 2011 13:08:28 +0000 (13:08 +0000)]
fix cloak behavior; plug leak (ITS#6762)

13 years agofix previous commit
Pierangelo Masarati [Tue, 4 Jan 2011 11:17:33 +0000 (11:17 +0000)]
fix previous commit

13 years agoadd minimal support for RFC3829 (ITS#6771)
Pierangelo Masarati [Tue, 4 Jan 2011 10:57:35 +0000 (10:57 +0000)]
add minimal support for RFC3829 (ITS#6771)

13 years agos/producer/provider
Quanah Gibson-Mount [Tue, 4 Jan 2011 01:31:30 +0000 (01:31 +0000)]
s/producer/provider

13 years agoUse provider instead of producer, as provider is a very specific term in replication
Quanah Gibson-Mount [Tue, 4 Jan 2011 01:30:28 +0000 (01:30 +0000)]
Use provider instead of producer, as provider is a very specific term in replication

13 years agoplug leak in previous commit
Pierangelo Masarati [Tue, 4 Jan 2011 01:13:58 +0000 (01:13 +0000)]
plug leak in previous commit

13 years agofix control response handling
Pierangelo Masarati [Tue, 4 Jan 2011 01:04:04 +0000 (01:04 +0000)]
fix control response handling

13 years agofix previous commit
Pierangelo Masarati [Tue, 4 Jan 2011 01:02:12 +0000 (01:02 +0000)]
fix previous commit

13 years agoITS#6364: Add information about rootdn setting
Quanah Gibson-Mount [Tue, 4 Jan 2011 00:49:30 +0000 (00:49 +0000)]
ITS#6364: Add information about rootdn setting

13 years agofix request controls
Pierangelo Masarati [Tue, 4 Jan 2011 00:10:02 +0000 (00:10 +0000)]
fix request controls

13 years agoquick fix for vc: allow custom controls tag
Pierangelo Masarati [Tue, 4 Jan 2011 00:09:10 +0000 (00:09 +0000)]
quick fix for vc: allow custom controls tag

13 years agoquick fix; needs work
Pierangelo Masarati [Tue, 4 Jan 2011 00:08:12 +0000 (00:08 +0000)]
quick fix; needs work

13 years agoharmonize with specs; fix bugs in previous commit
Pierangelo Masarati [Mon, 3 Jan 2011 23:40:53 +0000 (23:40 +0000)]
harmonize with specs; fix bugs in previous commit

13 years agofix error handling/arg checking
Pierangelo Masarati [Mon, 3 Jan 2011 23:40:02 +0000 (23:40 +0000)]
fix error handling/arg checking

13 years agofix previous commit
Pierangelo Masarati [Mon, 3 Jan 2011 23:37:48 +0000 (23:37 +0000)]
fix previous commit

13 years agoAdd VC support for ppolicy and authzid inner controls
Kurt Zeilenga [Mon, 3 Jan 2011 22:54:48 +0000 (22:54 +0000)]
Add VC support for ppolicy and authzid inner controls

13 years agoAdd ldapvc args
Kurt Zeilenga [Mon, 3 Jan 2011 22:11:02 +0000 (22:11 +0000)]
Add ldapvc args

13 years agoRemove authzid parameter from verify credential response.
Kurt Zeilenga [Mon, 3 Jan 2011 22:05:23 +0000 (22:05 +0000)]
Remove authzid parameter from verify credential response.
If client wants authzid, it can ask by adding an Authorization Identity
Request inner control.

13 years agofirst cut at new spec (needs #define LDAP_TAG_EXOP_VERIFY_CREDENTIALS_CONTROLS)
Pierangelo Masarati [Mon, 3 Jan 2011 21:50:54 +0000 (21:50 +0000)]
first cut at new spec (needs #define LDAP_TAG_EXOP_VERIFY_CREDENTIALS_CONTROLS)

13 years agoExtend Verify Credentials encode/decode per -devel post.
Kurt Zeilenga [Mon, 3 Jan 2011 21:49:26 +0000 (21:49 +0000)]
Extend Verify Credentials encode/decode per -devel post.
(ldapvc doesn't yet request/handle inner password policy control.

13 years agosync with client-side
Pierangelo Masarati [Mon, 3 Jan 2011 19:40:22 +0000 (19:40 +0000)]
sync with client-side

13 years agoRemove version from encoding
Kurt Zeilenga [Mon, 3 Jan 2011 19:21:03 +0000 (19:21 +0000)]
Remove version from encoding
(previously removed from SASL choices, but should be always absent)

13 years agouse Paged Results when talking to targets (in response to ITS#6664)
Pierangelo Masarati [Mon, 3 Jan 2011 17:52:55 +0000 (17:52 +0000)]
use Paged Results when talking to targets (in response to ITS#6664)

13 years agoITS#6768 (forced commit)
Pierangelo Masarati [Mon, 3 Jan 2011 17:10:05 +0000 (17:10 +0000)]
ITS#6768 (forced commit)

13 years agoforce the generation of a new CSN (ITS#6766)
Pierangelo Masarati [Mon, 3 Jan 2011 00:04:53 +0000 (00:04 +0000)]
force the generation of a new CSN (ITS#6766)

13 years agoskip operations when internal
Pierangelo Masarati [Sun, 2 Jan 2011 23:36:30 +0000 (23:36 +0000)]
skip operations when internal

13 years agomemberof handling of rename (ITS#6700)
Pierangelo Masarati [Sun, 2 Jan 2011 23:03:13 +0000 (23:03 +0000)]
memberof handling of rename (ITS#6700)

13 years agofix control value generation (ITS#6652)
Pierangelo Masarati [Sun, 2 Jan 2011 17:19:14 +0000 (17:19 +0000)]
fix control value generation (ITS#6652)

13 years agohex digits need to be in pairs (ITS#6652)
Pierangelo Masarati [Sun, 2 Jan 2011 15:58:48 +0000 (15:58 +0000)]
hex digits need to be in pairs (ITS#6652)

13 years agofix reqControls validator (partially addresses ITS#6652)
Pierangelo Masarati [Sun, 2 Jan 2011 15:50:00 +0000 (15:50 +0000)]
fix reqControls validator (partially addresses ITS#6652)

13 years agomake sure initialization is only tried once; improve error messages
Pierangelo Masarati [Sun, 2 Jan 2011 15:06:11 +0000 (15:06 +0000)]
make sure initialization is only tried once; improve error messages

13 years agoadd some logging (under TRACE)
Pierangelo Masarati [Sun, 2 Jan 2011 12:29:19 +0000 (12:29 +0000)]
add some logging (under TRACE)

13 years agoquick fix for null DN
Pierangelo Masarati [Sun, 2 Jan 2011 02:15:21 +0000 (02:15 +0000)]
quick fix for null DN

13 years agomore about ITS#6645
Pierangelo Masarati [Sat, 1 Jan 2011 20:50:00 +0000 (20:50 +0000)]
more about ITS#6645

13 years agoadd more rename/delete tests
Pierangelo Masarati [Sat, 1 Jan 2011 19:49:27 +0000 (19:49 +0000)]
add more rename/delete tests

13 years agofix logging
Pierangelo Masarati [Sat, 1 Jan 2011 17:26:15 +0000 (17:26 +0000)]
fix logging

13 years agocheck return value
Pierangelo Masarati [Sat, 1 Jan 2011 16:10:23 +0000 (16:10 +0000)]
check return value

13 years agober_flatten must return -1 on unmatched "{" "}" (ITS#6764)
Pierangelo Masarati [Sat, 1 Jan 2011 16:06:45 +0000 (16:06 +0000)]
ber_flatten must return -1 on unmatched "{" "}" (ITS#6764)

13 years agoITS#6758 Reset dangerous REP_ENTRY_* flags.
Hallvard Furuseth [Fri, 31 Dec 2010 20:53:17 +0000 (20:53 +0000)]
ITS#6758 Reset dangerous REP_ENTRY_* flags.
If SlapReply.sr_un cannot contain an entry but does or soon may
contain another member than sru_search: Ensure nothing will see
leftover REP_ENTRY_* flags and try to clean up the "entry" there.

13 years agoITS#6758 slap.h: Cast REP_* #defines to slap_mask_t
Hallvard Furuseth [Fri, 31 Dec 2010 20:02:41 +0000 (20:02 +0000)]
ITS#6758 slap.h: Cast REP_* #defines to slap_mask_t

13 years agoITS#6758 fix/add slap_send_search_entry() comments
Hallvard Furuseth [Fri, 31 Dec 2010 19:57:53 +0000 (19:57 +0000)]
ITS#6758 fix/add slap_send_search_entry() comments

13 years agoITS#6758 result.c:Use rs_*(). Frees entries earlier.
Hallvard Furuseth [Fri, 31 Dec 2010 18:14:31 +0000 (18:14 +0000)]
ITS#6758 result.c:Use rs_*(). Frees entries earlier.

For readability, use rs_flush_entry() where slap_send_search_entry() and
slap_send_search_reference() release entries before network operations.

This change also frees entires marked MUSTBEFREED earlier.

13 years agoITS#6758 Use rs_*() to manage SlapReply entries.
Hallvard Furuseth [Fri, 31 Dec 2010 17:55:36 +0000 (17:55 +0000)]
ITS#6758 Use rs_*() to manage SlapReply entries.
Some noop changes + fixes entry leaks and REP_ENTRY_MODIFIABLE flag leaks.

13 years agonoop commit: cleanup 0 -> REP_RESULT in SlapReply
Hallvard Furuseth [Fri, 31 Dec 2010 14:08:34 +0000 (14:08 +0000)]
noop commit: cleanup 0 -> REP_RESULT in SlapReply

13 years agoITS#6758, pcache.c: Avoid SlapReply reuse.
Hallvard Furuseth [Fri, 31 Dec 2010 13:46:48 +0000 (13:46 +0000)]
ITS#6758, pcache.c: Avoid SlapReply reuse.
refresh_merge(): Do not reuse Search SlapReply parameter for a Modify,
use a local one and copy its sr_err to the parameter.  The parameter is
from refresh_query().  Move its SlapReply parameter to a local variable.

13 years agoITS#6758 Avoid SlapReply reuse.
Hallvard Furuseth [Fri, 31 Dec 2010 13:08:11 +0000 (13:08 +0000)]
ITS#6758 Avoid SlapReply reuse.
Caller provides a SlapReply and reads the result after the operation,
then reuses it.  Reinitialize before reuse, or move declaration inwards.

13 years agoITS#6760: Fix rwm entry handling
Hallvard Furuseth [Fri, 31 Dec 2010 12:01:03 +0000 (12:01 +0000)]
ITS#6760: Fix rwm entry handling

13 years agoITS#6758 Avoid SlapReply reuse, simple cases.
Hallvard Furuseth [Fri, 31 Dec 2010 10:46:22 +0000 (10:46 +0000)]
ITS#6758 Avoid SlapReply reuse, simple cases.
Caller provides and reuses a SlapReply it does not read after
initialization.  So reinitialize or move the declaration inwards.
In case of refint, move the rs parameter into refint_repair().

13 years agoITS#6758 rs_reinit() += slap_reply_t parameter
Hallvard Furuseth [Fri, 31 Dec 2010 09:45:16 +0000 (09:45 +0000)]
ITS#6758 rs_reinit() += slap_reply_t parameter

13 years agoITS#6758 config_build_entry, avoid SlapReply reuse
Hallvard Furuseth [Fri, 31 Dec 2010 09:02:34 +0000 (09:02 +0000)]
ITS#6758 config_build_entry, avoid SlapReply reuse

Do not use the 'SlapReply *rs' passed to config_build_entry().  Instead
pass a new one to op->o_bd->be_add() and copy the output sr_err to rs.
This takes care of most SlapReply reuse in bconfig.c.

13 years agoITS#6758 bconfig.c: ensure sr_text==NULL if sr_err==LDAP_SUCCESS
Hallvard Furuseth [Fri, 31 Dec 2010 08:45:48 +0000 (08:45 +0000)]
ITS#6758 bconfig.c: ensure sr_text==NULL if sr_err==LDAP_SUCCESS
config_modify_internal(): Do not send rs->sr_text with success.
config_back_modify(): When slap_bv2ad() can set rs->sr_text,
set sr->sr_err too and catch failure.

13 years agoITS#6670 partial fix - ignore member/memberof pointing to same entry
Howard Chu [Fri, 31 Dec 2010 01:38:24 +0000 (01:38 +0000)]
ITS#6670 partial fix - ignore member/memberof pointing to same entry

13 years agoITS#6758 back-bdb: Delay setting sr->sr_entry until we know it will be used
Hallvard Furuseth [Fri, 31 Dec 2010 00:04:38 +0000 (00:04 +0000)]
ITS#6758 back-bdb: Delay setting sr->sr_entry until we know it will be used

13 years agoITS#6758 Do not set sr_err=error before be_search.
Hallvard Furuseth [Thu, 30 Dec 2010 23:59:23 +0000 (23:59 +0000)]
ITS#6758 Do not set sr_err=error before be_search.
glue_op_search() set LDAP_UNWILLING_TO_PERFORM before be_search() as
well as when there was no be_search.

13 years agoITS#6758 Reset some SlapReply flags & data.
Hallvard Furuseth [Thu, 30 Dec 2010 23:55:07 +0000 (23:55 +0000)]
ITS#6758 Reset some SlapReply flags & data.
Reset data more consistenlty.  When resetting sr_entry after sending
data, reset sr_flag as well.  Reset rs_attrs and Extended Operation
oid/data after setting and sending them.

13 years agonoop commit for ITS#6758: simplify future commits
Hallvard Furuseth [Thu, 30 Dec 2010 23:48:41 +0000 (23:48 +0000)]
noop commit for ITS#6758: simplify future commits

13 years agonoop commit for ITS#6758: Remove no-effect code.
Hallvard Furuseth [Thu, 30 Dec 2010 23:43:12 +0000 (23:43 +0000)]
noop commit for ITS#6758: Remove no-effect code.
Unused variable resets, unused SlapReply parameters to some functions.

13 years agoRemove lint (unused vars/labels/funcs/default:s)
Hallvard Furuseth [Thu, 30 Dec 2010 23:34:55 +0000 (23:34 +0000)]
Remove lint (unused vars/labels/funcs/default:s)

13 years agoITS#6758 Add rs_reinit(), rs_flush_entry()
Hallvard Furuseth [Thu, 30 Dec 2010 23:32:07 +0000 (23:32 +0000)]
ITS#6758 Add rs_reinit(), rs_flush_entry()

13 years agoITS#6758 Add rs_assert*, RS_ASSERT, USE_RS_ASSERT
Hallvard Furuseth [Thu, 30 Dec 2010 23:29:46 +0000 (23:29 +0000)]
ITS#6758 Add rs_assert*, RS_ASSERT, USE_RS_ASSERT

13 years agoITS#6759: assert;Debug -> Debug;assert
Hallvard Furuseth [Thu, 30 Dec 2010 23:19:02 +0000 (23:19 +0000)]
ITS#6759: assert;Debug -> Debug;assert

13 years agosilence valgrind
Pierangelo Masarati [Thu, 30 Dec 2010 21:52:09 +0000 (21:52 +0000)]
silence valgrind

13 years agoshould also work for SASL binds (whenever supported)
Pierangelo Masarati [Thu, 30 Dec 2010 21:41:36 +0000 (21:41 +0000)]
should also work for SASL binds (whenever supported)

13 years agoop->o_conn->c_sb may be 0 for internal operations
Pierangelo Masarati [Thu, 30 Dec 2010 21:41:07 +0000 (21:41 +0000)]
op->o_conn->c_sb may be 0 for internal operations

13 years agoITS#6754: Fail if there are unrecognized command-line arguments.
Rein Tollevik [Thu, 30 Dec 2010 19:45:08 +0000 (19:45 +0000)]
ITS#6754: Fail if there are unrecognized command-line arguments.

13 years agoITS#6741 support Bitstring in ldap_X509dn2bv()
Howard Chu [Thu, 30 Dec 2010 19:38:57 +0000 (19:38 +0000)]
ITS#6741 support Bitstring in ldap_X509dn2bv()

13 years agoITS#6684 fix ppolicy crash, fix Makefile install target
Howard Chu [Thu, 30 Dec 2010 18:40:01 +0000 (18:40 +0000)]
ITS#6684 fix ppolicy crash, fix Makefile install target

13 years agoRemove dead code.
Kurt Zeilenga [Thu, 30 Dec 2010 17:46:26 +0000 (17:46 +0000)]
Remove dead code.

13 years agoITS#5862 Assert control for rootDSE/subschema
Howard Chu [Thu, 30 Dec 2010 17:28:19 +0000 (17:28 +0000)]
ITS#5862 Assert control for rootDSE/subschema

13 years agos/0/O/
Pierangelo Masarati [Thu, 30 Dec 2010 15:58:48 +0000 (15:58 +0000)]
s/0/O/

13 years agofix perror; removed extra sequence opening (is it needed; if yes, it must also be...
Pierangelo Masarati [Thu, 30 Dec 2010 15:51:25 +0000 (15:51 +0000)]
fix perror; removed extra sequence opening (is it needed; if yes, it must also be closed, see #if 0)