]>
git.sur5r.net Git - openldap/log
Kurt Zeilenga [Fri, 21 Jun 2002 19:14:37 +0000 (19:14 +0000)]
ITS#1898: ldap_controls_dup() writes beyond allocated memory
patch suggested by Dave Steck <dsteck@novell.com>
Kurt Zeilenga [Fri, 21 Jun 2002 07:32:54 +0000 (07:32 +0000)]
Add LIBRARY section to each man page
Howard Chu [Fri, 21 Jun 2002 01:34:53 +0000 (01:34 +0000)]
Fix dynamic module linking
Kurt Zeilenga [Thu, 20 Jun 2002 20:48:19 +0000 (20:48 +0000)]
Yet another schema error bug fix
Kurt Zeilenga [Thu, 20 Jun 2002 20:46:16 +0000 (20:46 +0000)]
Fix off by one error in erorr reporting
Kurt Zeilenga [Wed, 19 Jun 2002 22:04:28 +0000 (22:04 +0000)]
assert( e != NULL ) in entry2str()
Kurt Zeilenga [Wed, 19 Jun 2002 18:15:20 +0000 (18:15 +0000)]
Use #ifdef, not #if, to check SHUT_RDWR
Pierangelo Masarati [Wed, 19 Jun 2002 07:57:01 +0000 (07:57 +0000)]
use monitorContext for the monitor database
Kurt Zeilenga [Wed, 19 Jun 2002 06:44:16 +0000 (06:44 +0000)]
Add monitorContext rootDSE attribute
Kurt Zeilenga [Wed, 19 Jun 2002 06:06:21 +0000 (06:06 +0000)]
Hide cn=Monitor from namingContexts
Should add a special DN pointer
Kurt Zeilenga [Wed, 19 Jun 2002 06:00:48 +0000 (06:00 +0000)]
Add monitor test.
Need to hide cn=Monitor from namingContext
Kurt Zeilenga [Wed, 19 Jun 2002 01:39:26 +0000 (01:39 +0000)]
Detail simple method
Kurt Zeilenga [Tue, 18 Jun 2002 22:41:03 +0000 (22:41 +0000)]
make curlies match
Howard Chu [Tue, 18 Jun 2002 19:35:29 +0000 (19:35 +0000)]
Minor cleanup, add mention of BDB to tests
Kurt Zeilenga [Tue, 18 Jun 2002 08:02:36 +0000 (08:02 +0000)]
SSF updates
Kurt Zeilenga [Tue, 18 Jun 2002 07:41:56 +0000 (07:41 +0000)]
SSF discussion
Kurt Zeilenga [Tue, 18 Jun 2002 07:31:20 +0000 (07:31 +0000)]
Use correct ssfs.
Kurt Zeilenga [Tue, 18 Jun 2002 07:11:58 +0000 (07:11 +0000)]
More security considerations
Howard Chu [Tue, 18 Jun 2002 01:00:27 +0000 (01:00 +0000)]
ITS#1891 in ber_flush, no-op if towrite == 0
Kurt Zeilenga [Tue, 18 Jun 2002 00:55:39 +0000 (00:55 +0000)]
Add some basic network security information
Howard Chu [Tue, 18 Jun 2002 00:37:45 +0000 (00:37 +0000)]
ITS#1891, debug msg in send_search_entry
Howard Chu [Tue, 18 Jun 2002 00:23:40 +0000 (00:23 +0000)]
In rootdn, add ref to SASL Authentication identities
Kurt Zeilenga [Tue, 18 Jun 2002 00:11:36 +0000 (00:11 +0000)]
Add initial security chapter (intro only).
Kurt Zeilenga [Tue, 18 Jun 2002 00:05:23 +0000 (00:05 +0000)]
Reorganize chapters
Kurt Zeilenga [Mon, 17 Jun 2002 22:45:34 +0000 (22:45 +0000)]
Make it clear that ldap_explode_dn() and friends are deprecated.
Kurt Zeilenga [Mon, 17 Jun 2002 22:18:27 +0000 (22:18 +0000)]
Add option to disallow unprotected simple authentication.
Add protected simple authentication as a "strong" mechanism.
Kurt Zeilenga [Mon, 17 Jun 2002 22:15:59 +0000 (22:15 +0000)]
check for -ldb-4 in addition to -ldb4
Kurt Zeilenga [Mon, 17 Jun 2002 05:57:09 +0000 (05:57 +0000)]
Formatting fix
Kurt Zeilenga [Mon, 17 Jun 2002 05:56:55 +0000 (05:56 +0000)]
Some LDBM v BDB cleanup
Kurt Zeilenga [Mon, 17 Jun 2002 05:33:32 +0000 (05:33 +0000)]
add rootpw hash password comments
Kurt Zeilenga [Sun, 16 Jun 2002 18:59:17 +0000 (18:59 +0000)]
Reference slapd-bdb and slapd-ldbm man pages.
Update index examples
Howard Chu [Sun, 16 Jun 2002 12:31:17 +0000 (12:31 +0000)]
Added CA and PEM terms
Howard Chu [Sun, 16 Jun 2002 12:24:16 +0000 (12:24 +0000)]
Added TLS configuration, mostly the same as the man pages but fleshed
out a little more.
Howard Chu [Sun, 16 Jun 2002 12:10:23 +0000 (12:10 +0000)]
Note that TLS_CERT and TLS_KEY are user-only options.
Howard Chu [Sun, 16 Jun 2002 08:46:41 +0000 (08:46 +0000)]
More minor cleanup
Howard Chu [Sun, 16 Jun 2002 07:29:06 +0000 (07:29 +0000)]
Fix typo in previous commit
Howard Chu [Sun, 16 Jun 2002 07:19:31 +0000 (07:19 +0000)]
Minor cleanup and reformat, added TLS options.
Kurt Zeilenga [Sun, 16 Jun 2002 06:12:26 +0000 (06:12 +0000)]
Fix invalid search filter
Kurt Zeilenga [Sun, 16 Jun 2002 00:11:51 +0000 (00:11 +0000)]
Add SSF access control example.
Kurt Zeilenga [Sat, 15 Jun 2002 22:18:51 +0000 (22:18 +0000)]
Reserve digit flags
Kurt Zeilenga [Sat, 15 Jun 2002 22:01:39 +0000 (22:01 +0000)]
Add -4/-6 flags to slapd to force use of IPv4 or IPv6
Pierangelo Masarati [Sat, 15 Jun 2002 18:20:41 +0000 (18:20 +0000)]
small cleanup
Pierangelo Masarati [Sat, 15 Jun 2002 17:01:35 +0000 (17:01 +0000)]
define and normalize static bervals alltogether
Pierangelo Masarati [Sat, 15 Jun 2002 15:01:17 +0000 (15:01 +0000)]
should compile even without Cyrus SASL
Howard Chu [Sat, 15 Jun 2002 01:20:04 +0000 (01:20 +0000)]
Forced commit, previous log msg "should" -> "should not".
Howard Chu [Sat, 15 Jun 2002 01:00:50 +0000 (01:00 +0000)]
Cleanup grammar, etc.
Kurt Zeilenga [Fri, 14 Jun 2002 22:12:27 +0000 (22:12 +0000)]
Use host-less LDAP URLs
Howard Chu [Fri, 14 Jun 2002 22:06:23 +0000 (22:06 +0000)]
Changed "saslRegexp" to "sasl-regexp". (Both are valid, but this is
more consistent with the other sasl directives.)
Kurt Zeilenga [Fri, 14 Jun 2002 22:03:52 +0000 (22:03 +0000)]
saslAuthzTo/From LDUP URLs should have hostnames
Howard Chu [Fri, 14 Jun 2002 21:59:23 +0000 (21:59 +0000)]
Typos - "TCP" backend should be "TCL"
Kurt Zeilenga [Fri, 14 Jun 2002 21:47:09 +0000 (21:47 +0000)]
Misc formatting changes
Kurt Zeilenga [Fri, 14 Jun 2002 21:42:55 +0000 (21:42 +0000)]
Remove extra BDB define
Kurt Zeilenga [Fri, 14 Jun 2002 21:19:42 +0000 (21:19 +0000)]
LDBM->BDB updates
Kurt Zeilenga [Fri, 14 Jun 2002 20:53:52 +0000 (20:53 +0000)]
Misc cleanup
Kurt Zeilenga [Fri, 14 Jun 2002 20:41:40 +0000 (20:41 +0000)]
Patch: Bugs with back-ldap/meta mappings (ITS#1787)
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
================
manpage patch for ITS#1787.
Howard Chu [Fri, 14 Jun 2002 13:35:09 +0000 (13:35 +0000)]
Added a bit about client and server certificates.
Howard Chu [Fri, 14 Jun 2002 13:18:15 +0000 (13:18 +0000)]
Another typo, mistake in previous commit
Howard Chu [Fri, 14 Jun 2002 13:03:20 +0000 (13:03 +0000)]
Fix typos, add a brief mention of Authorization Policy configuration
Howard Chu [Fri, 14 Jun 2002 13:01:48 +0000 (13:01 +0000)]
Fix EX: typo
Howard Chu [Fri, 14 Jun 2002 12:39:59 +0000 (12:39 +0000)]
Forced commit, previous had no log entry. Fixed some typos, added a
couple references to BDB.
Howard Chu [Fri, 14 Jun 2002 12:38:32 +0000 (12:38 +0000)]
*** empty log message ***
Howard Chu [Fri, 14 Jun 2002 12:32:36 +0000 (12:32 +0000)]
Added X.509 term
Howard Chu [Fri, 14 Jun 2002 11:02:57 +0000 (11:02 +0000)]
Added sasl-authz-policy
Kurt Zeilenga [Fri, 14 Jun 2002 09:10:02 +0000 (09:10 +0000)]
zap unnecessary include
Kurt Zeilenga [Fri, 14 Jun 2002 08:25:14 +0000 (08:25 +0000)]
Use experimental OIDs for saslAuth attributes and hide 'em
make the usage distributedOperation
Howard Chu [Fri, 14 Jun 2002 08:16:06 +0000 (08:16 +0000)]
Fix OID clash in previous commit
Howard Chu [Fri, 14 Jun 2002 08:10:14 +0000 (08:10 +0000)]
Added saslAuthzTo and saslAuthzFrom to system schema.
Added sasl-authz-policy config keyword to control proxy authorization.
Moved sasl-related config processing to sasl.c:slap_sasl_config().
Moved other global defs used only in saslauthz.c into saslauthz.c.
Howard Chu [Fri, 14 Jun 2002 06:09:24 +0000 (06:09 +0000)]
Finish implementation of get_ca_list()
Howard Chu [Thu, 13 Jun 2002 16:26:47 +0000 (16:26 +0000)]
In ldap_extended_operation_s, check for NULL retoidp and retdatap
before storing NULL.
Kurt Zeilenga [Thu, 13 Jun 2002 16:14:10 +0000 (16:14 +0000)]
Update I-Ds.
Kurt Zeilenga [Thu, 13 Jun 2002 14:50:33 +0000 (14:50 +0000)]
ITS#1882: fix typo
Kurt Zeilenga [Thu, 13 Jun 2002 03:59:10 +0000 (03:59 +0000)]
Generate man page date from version.sh
Kurt Zeilenga [Wed, 12 Jun 2002 16:39:05 +0000 (16:39 +0000)]
Date: Thu, 2 May 2002 08:54:59 GMT
From: h.b.furuseth@usit.uio.no
To: openldap-its@OpenLDAP.org
Subject: Patch: Bugs with back-ldap/meta mappings
Full_Name: Hallvard B. Furuseth
Version: HEAD
OS: Linux
URL: http://folk.uio.no/hbf/OpenLDAP/back-ldap.txt
Submission from: (NULL) (158.36.148.34)
The source claims the 'map' attribute has syntax
map {objectclass | attribute} {<source> | *} [<dest> | *]
while it actually has syntax
map {objectclass | attribute} [<local name> | *] {<foreign name> |
*}
except that the code is confused about it. Removed attributes are
put in both the maps for local and foreign names:
# Remove description and present title as description instead
map attribute description
map attribute description title
-->
slapd.conf: line 10: duplicate mapping found (ignored)
Also, map.c:ldap_back_map_attrs() loops forever on removed attributes
(ie. if one asks ldapsearch for an attribute which has been removed).
Kurt Zeilenga [Wed, 12 Jun 2002 16:32:29 +0000 (16:32 +0000)]
Add pointer to JLDAP TODO list
Kurt Zeilenga [Wed, 12 Jun 2002 16:28:05 +0000 (16:28 +0000)]
Clarify that client side items refer to client/tools and/or ldap(3) work
Kurt Zeilenga [Wed, 12 Jun 2002 15:43:19 +0000 (15:43 +0000)]
Update to the 'gentle SIGHUP' patch. (ITS#1679)
- Let write operations return unwilling-to-perform after
'gentle shutdown' has been initiated.
- Change -1 to 2 in slapd_gentle_shutdown and slapd_shutdown, since
sig_atomic_t can be unsigned (ITS#1736). The 'gentle SIGHUP' patch
is older than ITS#1736 but was applied later, so it reintroduced
the problem.
Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, June 2002.
Howard Chu [Wed, 12 Jun 2002 08:38:59 +0000 (08:38 +0000)]
Deleted Connection->c_cdn. Use conn->c_dn instead...
Kurt Zeilenga [Wed, 12 Jun 2002 04:55:30 +0000 (04:55 +0000)]
remove --enable-kbind option (can be manually set)
Howard Chu [Wed, 12 Jun 2002 04:12:51 +0000 (04:12 +0000)]
Fix typo in previous commit
Howard Chu [Wed, 12 Jun 2002 04:05:48 +0000 (04:05 +0000)]
Finished slap_sasl_setpass for Cyrus 1.5; Cyrus 2.1 is incomplete.
Added conn->c_sasl_dn, streamlined slap_sasl_bind.
Kurt Zeilenga [Wed, 12 Jun 2002 03:42:01 +0000 (03:42 +0000)]
add reference to "Software Bugs" issues
Kurt Zeilenga [Wed, 12 Jun 2002 03:36:05 +0000 (03:36 +0000)]
Rework todo
Kurt Zeilenga [Wed, 12 Jun 2002 00:50:28 +0000 (00:50 +0000)]
Add {CLEARTEXT} to password-hash possibilities
Kurt Zeilenga [Wed, 12 Jun 2002 00:43:34 +0000 (00:43 +0000)]
Add {CLEARTEXT} password-hash support
Kurt Zeilenga [Wed, 12 Jun 2002 00:13:29 +0000 (00:13 +0000)]
An almost complete slap_sasl_setpass()
Kurt Zeilenga [Tue, 11 Jun 2002 22:56:47 +0000 (22:56 +0000)]
Rework c_authzid_backend in preparation for sasl_setpass() support
Kurt Zeilenga [Mon, 10 Jun 2002 19:56:17 +0000 (19:56 +0000)]
return PROTOCOL_ERROR if reqdata is empty.
Jong Hyuk Choi [Mon, 10 Jun 2002 19:02:25 +0000 (19:02 +0000)]
DB_RMW flag to dn2id and id2entry
Kurt Zeilenga [Sun, 9 Jun 2002 19:11:53 +0000 (19:11 +0000)]
Fix preamble
Kurt Zeilenga [Sun, 9 Jun 2002 18:57:35 +0000 (18:57 +0000)]
Misc updates
Kurt Zeilenga [Sun, 9 Jun 2002 06:12:24 +0000 (06:12 +0000)]
VLV clean
Kurt Zeilenga [Sat, 8 Jun 2002 18:49:14 +0000 (18:49 +0000)]
Cannot set rootpw when rootdn is not under suffix
Kurt Zeilenga [Sat, 8 Jun 2002 18:40:58 +0000 (18:40 +0000)]
Update
Kurt Zeilenga [Sat, 8 Jun 2002 18:40:36 +0000 (18:40 +0000)]
Note that rootpw can only be set if rootdn is under suffix.
Kurt Zeilenga [Sat, 8 Jun 2002 18:38:52 +0000 (18:38 +0000)]
Be less forgiving (don't ignore so many configuration errors)
Kurt Zeilenga [Sat, 8 Jun 2002 18:04:43 +0000 (18:04 +0000)]
Add rootdn check when rootpw is set.
Kurt Zeilenga [Sat, 8 Jun 2002 06:09:30 +0000 (06:09 +0000)]
Fix for ITS#1842 (applied blindly)
Howard Chu [Fri, 7 Jun 2002 22:45:22 +0000 (22:45 +0000)]
Fix ITS#1865, (ITS#1764?) cond_broadcast behavior was broken
Kurt Zeilenga [Fri, 7 Jun 2002 20:32:06 +0000 (20:32 +0000)]
userPassword/authPassword can be safely subtyped (though I wouldn't
recommend it).
Howard Chu [Fri, 7 Jun 2002 13:27:25 +0000 (13:27 +0000)]
Fix ITS#1843, don't deref NULL string in ldap_pvt_str2upper