summaryrefslogtreecommitdiff
path: root/source4/libcli/ldap
AgeCommit message (Collapse)AuthorFilesLines
2009-10-14s4: Changes the old occurences of "lp_realm" in "lp_dnsdomain" where neededMatthias Dieter Wallnöfer1-1/+3
For KERBEROS applications the realm should be upcase (function "lp_realm") but for DNS ones it should be used lowcase (function "lp_dnsdomain"). This patch implements the use of both in the right way.
2009-10-02s4: fix various warnings (not "const" related ones)Matthias Dieter Wallnöfer2-3/+2
2009-08-17s4:libcli/ldap Explain why we set a hostname for ldapi:// connectionsAndrew Bartlett1-1/+3
It is a pretty odd thing to do, and it's only because of the restrictions of DIGEST-MD5 in Cyrus SASL that we do it. Andrew Bartlett
2009-07-31s4:libcli/ldap: the tls code steals the original socket on its own nowStefan Metzmacher1-3/+0
metze
2009-07-23s4:libcli/ldap: add support for new Recycle Bin Feature LDAP ControlsStefan Metzmacher1-0/+40
LDAP_SERVER_SHOW_RECYCLED_OID 1.2.840.113556.1.4.2064 LDAP_SERVER_SHOW_DEACTIVATED_LINK_OID 1.2.840.113556.1.4.2065 metze
2009-06-10fixed the encoding/decoding of the reverse attribute for server side sortAndrew Tridgell1-3/+10
2009-02-24libcli/ldap: move generic ldap control encoding code to ldap_message.cStefan Metzmacher2-129/+6
As they can we static there, we pass the specific handlers as parameter where we need to support controls. metze
2009-02-24s4:libcli/ldap: don't use 'void **out' as arguments as the behavior is not ↵Stefan Metzmacher1-17/+32
defined in C. metze
2009-02-24libcli/ldap: move ldap_ndr from source4/ to toplevelStefan Metzmacher3-114/+1
metze
2009-02-24libcli/ldap: move ldap_errors.h to the toplevel and install itStefan Metzmacher1-66/+0
metze
2009-02-24libcli/ldap: move ldap_message.[ch] from source4/ to the toplevelStefan Metzmacher4-1701/+1
metze
2009-02-24s4:libcli/ldap: remove reference to DEBUG()Stefan Metzmacher1-1/+0
This prepares using ldap_message.c in source3/ later metze
2009-02-24s4:libcli: split out LIBCLI_LDAP_MESSAGE subsystemStefan Metzmacher5-287/+300
metze
2009-02-18Worked around a problem with select/poll/epoll and gnutls Andrew Tridgell1-0/+4
Our packet layer relies on the event system reliably telling us when a packet is available. When we are using a socket layer like TLS then things get a bit trickier, as there may be bytes in the encryption buffer which could be read even if there are no bytes at the socket level. The GNUTLS library is supposed to prevent this happening by always leaving some data at the socket level when there is data to be processed in its buffers, but it seems that this is not always reliable. To work around this I have added a new packet option packet_set_unreliable_select() which tells the packet layer to not assume that the socket layer has a reliable select, and to instead keep trying to read from the socket until it gets back no data. This option is set for the ldap client and server when TLS is negotiated. This seems to fix the problems with the ldaps tests.
2009-02-13s4:libcli/ldap: use const char * const *attributes as in all other placesStefan Metzmacher2-2/+2
metze
2009-01-30Fix the mess with ldb includes.Simo Sorce3-43/+68
Separate again the public from the private headers. Add a new header specific for modules. Also add service function for modules as now ldb_context and ldb_module are opaque structures for them.
2009-01-03s4:libcli/ldap: convert to tevent_* apiStefan Metzmacher2-14/+14
metze
2009-01-03s4:socket: use a socket_wrapper aware function to auto close the fd event ↵Stefan Metzmacher1-3/+4
for sockets metze
2008-12-29s4:lib/tevent: rename structsStefan Metzmacher3-9/+9
list="" list="$list event_context:tevent_context" list="$list fd_event:tevent_fd" list="$list timed_event:tevent_timer" for s in $list; do o=`echo $s | cut -d ':' -f1` n=`echo $s | cut -d ':' -f2` r=`git grep "struct $o" |cut -d ':' -f1 |sort -u` files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4` for f in $files; do cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp mv $f.tmp $f done done metze
2008-12-24Rename samba-socket -> samba_socket to fix a couple more compilerJelmer Vernooij1-1/+1
warnings.
2008-12-18s4:lib/socket: socket_connect_send() and socket_connect_ev() should only ↵Stefan Metzmacher1-1/+1
wrok with addresses metze
2008-12-17s4: fix LIBEVENTS dependencies and use more forward declarationsStefan Metzmacher1-1/+0
We should only include events.h where we really need it and prefer forward declarations of 'struct event_context' metze
2008-12-17s4:dsdb: add support for DSDB_OPENLDAP_DEREFERENCE_CONTROLAndrew Bartlett1-0/+115
Encode and decode the OpenLDAP dereference control (draft-masarati-ldap-deref-00) At this time, the ldb_controls infrustructure does not handle request and reply controls having different formats, so this is purely the client implementation (ie, there is no decode of the client->server packet, and no encode of the server->client packet). Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-12-17s4:libcli/ldap: split out a ldap_decode_attribs_bare() functionAndrew Bartlett1-8/+18
The OpenLDAP dereference control (draft-masarati-ldap-deref-00) uses an attribute list, as found in the search reply, but without one enclosing ASN1_SEQUENCE(0) This allows the dereference control parsing code to use this as a helper function. Signed-off-by: Stefan Metzmacher <metze@samba.org>
2008-11-17Improve debug when SASL search failsAndrew Bartlett1-1/+1
2008-11-02Add gensec_settings structure. This wraps loadparm_context for now, butJelmer Vernooij1-1/+2
should in the future only contain some settings required for gensec.
2008-10-23Fix function parameters.Jelmer Vernooij1-1/+1
2008-10-23Use common error definitions.Jelmer Vernooij1-3/+3
2008-10-20Make sure prototypes are always included, make some functions static andJelmer Vernooij3-0/+3
remove some unused functions.
2008-10-11Fix include paths to new location of libutil.Jelmer Vernooij3-4/+4
2008-09-29LDB ASYNC: misc changesSimo Sorce1-1/+1
2008-09-24Fix nasty bug that would come up only if a client connection to a remoteSimo Sorce2-9/+13
ldap server suddenly dies. We were creating a wrong talloc hierarchy, so the event.fde was not freed automatically as expected. This in turn made the event system call the ldap io handlers with a null packet structure, causing a segfault. Fix also the ordering in ldap_connection_dead() Thanks to Metze for the huge help in tracking down this one.
2008-07-15Make up a full hostname for ldapi connections.Andrew Bartlett1-2/+7
The DIGEST-MD5 SASL method requires a hostname, so provide one. Andrew Bartlett (This used to be commit edfb2ed1f22bc735af5a0c3d3ae6ab6771d28f2c)
2008-07-15Cleanup ldap_bind_sasl.Andrew Bartlett1-4/+3
With these changes, we don't leak the LDAP socket, and don't reset all credentials feature flags, just the ones we are actually incompatible with. Andrew Bartlett (This used to be commit 72e52a301102941c41ab423e0212fe9a1aed0405)
2008-06-14Make up the right dependencies now that ldb depends on libeventsSimo Sorce1-0/+1
(This used to be commit 3b8eec7ca334528cad3cdcd5e3fc5ee555d8d0e0)
2008-05-18Fix a couple (well, little more than that..) of typos.Jelmer Vernooij1-1/+1
(This used to be commit a6b52119940a900fb0de3864b8bca94e2965cc24)
2008-05-18Create prototype headers from Makefile directory, without smb_build in the ↵Jelmer Vernooij1-1/+2
middle. (This used to be commit f4a77b96f9c17d853348b70794026e5b9e384942)
2008-05-18Use variables for source directory in a couple more places.Jelmer Vernooij1-3/+3
(This used to be commit c41bd3005f5f0b9cfd3709fc9217b4a401d265b4)
2008-04-21Remove more event_context_init() uses from function calls within deep down ↵Simo Sorce2-10/+7
the code. Make sure we pass around the event_context where we need it instead. All test but a few python ones fail. Jelmer promised to fix them. (This used to be commit 3045d391626fba169aa26be52174883e18d323e9)
2008-04-15Fix warnings.Jelmer Vernooij1-0/+2
(This used to be commit 88013ca9775a6ff5e5a393f9d8238dbcd197f26f)
2008-04-14Use _OBJ_FILES variables in a couple more places.Jelmer Vernooij1-7/+7
(This used to be commit 92856d5054106894b65cd1a1b5119c0facfc4cff)
2008-04-02Reintroduce header previously autogenerated but ignored by git.Jelmer Vernooij1-0/+10
Also fixed extra include in regpatch. (This used to be commit 0e371cf169e9a607fcbb3e65437ab9413935dd52)
2008-04-02Install public header files again and include required prototypes.Jelmer Vernooij8-23/+71
(This used to be commit 47ffbbf67435904754469544390b67d34c958343)
2008-02-29Change remaining prototype headers to be private.Jelmer Vernooij1-1/+1
(This used to be commit 2f7ff409e89c9682e681ddcf54439db9e3b6ccb4)
2008-02-29Move public header accumulation out of the perl code.Jelmer Vernooij1-2/+2
Never install generated prototype files. It's easier to break the API when using them and they're not easily readable for 3rd party users. Conflicts: source/auth/config.mk source/auth/credentials/config.mk source/auth/gensec/config.mk source/build/smb_build/config_mk.pm source/build/smb_build/main.pl source/build/smb_build/makefile.pm source/dsdb/config.mk source/lib/charset/config.mk source/lib/tdr/config.mk source/lib/util/config.mk source/libcli/config.mk source/libcli/ldap/config.mk source/librpc/config.mk source/param/config.mk source/rpc_server/config.mk source/torture/config.mk (This used to be commit 6c659689ed4081f1d7a6253c538c7f01784197ba)
2008-01-15util: Move asn1 to lib/util to trim down the number of subsystems.Jelmer Vernooij3-3/+3
(This used to be commit 44e1cfd2d0ef62e4ee541cec00581a7151d951b3)
2008-01-01r26639: librpc: Pass iconv convenience on from RPC connection to NDR ↵Jelmer Vernooij1-1/+1
library, so it can be overridden by OpenChange. (This used to be commit 2f29f80e07adef1f020173f2cd6d947d0ef505ce)
2008-01-01r26638: libndr: Require explicitly specifying iconv_convenience for ↵Jelmer Vernooij1-2/+2
ndr_struct_push_blob(). (This used to be commit 61ad78ac98937ef7a9aa32075a91a1c95b7606b3)
2007-12-27r26613: Add a function to write a DATA_BLOB into an LDAPString.Andrew Bartlett1-3/+3
This respects the length set in the DATA_BLOB, rather than hoping to see NULL termination of the data pointer. (found testing the Ambigious Name Resolution code against OpenLDAP). Andrew Bartlett (This used to be commit bc0022e8c7357b126dc91a945f0e53e4e4108e7d)
2007-12-21r26540: Revert my previous commit after concerns raised by Andrew.Jelmer Vernooij1-1/+1
(This used to be commit 6ac86f8be7d9a8c5ab396a93e6d1e6819e11f173)