#
1.15 |
|
13-Oct-2022 |
jmatthew |
Add client certificate authentication and optional SASL EXTERNAL bind, which allows the client to bind as the subject of the certificate in cases where the directory doesn't implicitly do that.
The client certificate is configured with 'certfile' and 'keyfile' directives, and SASL EXTERNAL bind is configured with the 'bindext' directive.
ok tb@
|
Revision tags: OPENBSD_6_6_BASE OPENBSD_6_7_BASE OPENBSD_6_8_BASE OPENBSD_6_9_BASE OPENBSD_7_0_BASE OPENBSD_7_1_BASE OPENBSD_7_2_BASE
|
#
1.14 |
|
11-May-2019 |
rob |
The BER API is currently used by ldap, ldapd, ldapctl, ypldap, snmpd, and snmpctl. Separate copies of ber.[ch] have existed and been maintained in sync in ldap, ldapd, ypldap and snmpd.
This commit moves the BER API into /usr/lib/libutil. All current consumers already link libutil. ldapd and snmpd regress passes, and release builds.
With help from tb@ and guenther@.
ok deraadt@, tb@
|
Revision tags: OPENBSD_6_5_BASE
|
#
1.13 |
|
17-Jan-2019 |
tedu |
use $OpenBSD markers only
|
#
1.12 |
|
27-Nov-2018 |
martijn |
Sync aldap and ber with ldap(1).
OK claudio@
|
Revision tags: OPENBSD_6_4_BASE
|
#
1.11 |
|
21-Jun-2018 |
reyk |
Sync aldap from ldap(1).
This also fixes the _url functions that was previously #ifdef'ed out.
OK claudio@
|
Revision tags: OPENBSD_6_2_BASE OPENBSD_6_3_BASE
|
#
1.10 |
|
30-May-2017 |
jmatthew |
Teach ypldap to use tls when connecting to ldap servers. libtls help from jsing@, linker help from deraadt@
|
Revision tags: OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE
|
#
1.9 |
|
30-Apr-2012 |
jmatthew |
Use paged searches so we can handle larger directories. Servers that don't understand paging, such as ldapd(8), ignore it and return a single set of results as before. from Jim Smith, some tweaks and fixes by me, ok dlg@
|
Revision tags: OPENBSD_5_1_BASE
|
#
1.8 |
|
28-Aug-2011 |
aschrijver |
Use the correct terminology, replace the term "entry" with the term "attribute" where applicable.
OK martinh@ pyr@
|
Revision tags: OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE
|
#
1.7 |
|
06-Feb-2010 |
blambert |
Simplify LDAP URL handling (currently unused): instead of strdup()'ing multiple values from an already strdup'ed buffer (none of which were checked for NULL upon return, which is also fixed in this), just use a buffer attached to the aldap_url struct.
Add an aldap_search_url() function, which is a wrapper around aldap_parse_url and aldap_search.
Finally, since the URL bits are unused, wrap them in #if 0 for now.
ok pyr@, whose heart was a little broken by the #if 0 (temporary, I swear!)
|
Revision tags: OPENBSD_4_5_BASE OPENBSD_4_6_BASE
|
#
1.6 |
|
27-Jan-2009 |
aschrijver |
Add correct error handling to the aldap API. Use the error handling in the ldapclient.
with help from pyr@
|
#
1.5 |
|
26-Jan-2009 |
pyr |
move aldap_close in aldap.c, where it belongs. discussed with aschrijver@
|
#
1.4 |
|
14-Oct-2008 |
aschrijver |
Add support for referrals and lists of attributes.
|
#
1.3 |
|
06-Oct-2008 |
aschrijver |
Oops, also commit the header file. Remove silly debug message.
|
#
1.2 |
|
30-Sep-2008 |
pyr |
add missing copyright.
|
#
1.1 |
|
30-Sep-2008 |
aschrijver |
aldap library -- Replacement for openldap used in ypldap. aldap is an semi-asynchronous client interface to connect to LDAP servers.
|
#
1.14 |
|
11-May-2019 |
rob |
The BER API is currently used by ldap, ldapd, ldapctl, ypldap, snmpd, and snmpctl. Separate copies of ber.[ch] have existed and been maintained in sync in ldap, ldapd, ypldap and snmpd.
This commit moves the BER API into /usr/lib/libutil. All current consumers already link libutil. ldapd and snmpd regress passes, and release builds.
With help from tb@ and guenther@.
ok deraadt@, tb@
|
Revision tags: OPENBSD_6_5_BASE
|
#
1.13 |
|
17-Jan-2019 |
tedu |
use $OpenBSD markers only
|
#
1.12 |
|
27-Nov-2018 |
martijn |
Sync aldap and ber with ldap(1).
OK claudio@
|
Revision tags: OPENBSD_6_4_BASE
|
#
1.11 |
|
21-Jun-2018 |
reyk |
Sync aldap from ldap(1).
This also fixes the _url functions that was previously #ifdef'ed out.
OK claudio@
|
Revision tags: OPENBSD_6_2_BASE OPENBSD_6_3_BASE
|
#
1.10 |
|
30-May-2017 |
jmatthew |
Teach ypldap to use tls when connecting to ldap servers. libtls help from jsing@, linker help from deraadt@
|
Revision tags: OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE
|
#
1.9 |
|
30-Apr-2012 |
jmatthew |
Use paged searches so we can handle larger directories. Servers that don't understand paging, such as ldapd(8), ignore it and return a single set of results as before. from Jim Smith, some tweaks and fixes by me, ok dlg@
|
Revision tags: OPENBSD_5_1_BASE
|
#
1.8 |
|
28-Aug-2011 |
aschrijver |
Use the correct terminology, replace the term "entry" with the term "attribute" where applicable.
OK martinh@ pyr@
|
Revision tags: OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE
|
#
1.7 |
|
06-Feb-2010 |
blambert |
Simplify LDAP URL handling (currently unused): instead of strdup()'ing multiple values from an already strdup'ed buffer (none of which were checked for NULL upon return, which is also fixed in this), just use a buffer attached to the aldap_url struct.
Add an aldap_search_url() function, which is a wrapper around aldap_parse_url and aldap_search.
Finally, since the URL bits are unused, wrap them in #if 0 for now.
ok pyr@, whose heart was a little broken by the #if 0 (temporary, I swear!)
|
Revision tags: OPENBSD_4_5_BASE OPENBSD_4_6_BASE
|
#
1.6 |
|
27-Jan-2009 |
aschrijver |
Add correct error handling to the aldap API. Use the error handling in the ldapclient.
with help from pyr@
|
#
1.5 |
|
26-Jan-2009 |
pyr |
move aldap_close in aldap.c, where it belongs. discussed with aschrijver@
|
#
1.4 |
|
14-Oct-2008 |
aschrijver |
Add support for referrals and lists of attributes.
|
#
1.3 |
|
06-Oct-2008 |
aschrijver |
Oops, also commit the header file. Remove silly debug message.
|
#
1.2 |
|
30-Sep-2008 |
pyr |
add missing copyright.
|
#
1.1 |
|
30-Sep-2008 |
aschrijver |
aldap library -- Replacement for openldap used in ypldap. aldap is an semi-asynchronous client interface to connect to LDAP servers.
|
#
1.13 |
|
17-Jan-2019 |
tedu |
use $OpenBSD markers only
|
#
1.12 |
|
27-Nov-2018 |
martijn |
Sync aldap and ber with ldap(1).
OK claudio@
|
Revision tags: OPENBSD_6_4_BASE
|
#
1.11 |
|
21-Jun-2018 |
reyk |
Sync aldap from ldap(1).
This also fixes the _url functions that was previously #ifdef'ed out.
OK claudio@
|
Revision tags: OPENBSD_6_2_BASE OPENBSD_6_3_BASE
|
#
1.10 |
|
30-May-2017 |
jmatthew |
Teach ypldap to use tls when connecting to ldap servers. libtls help from jsing@, linker help from deraadt@
|
Revision tags: OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE
|
#
1.9 |
|
30-Apr-2012 |
jmatthew |
Use paged searches so we can handle larger directories. Servers that don't understand paging, such as ldapd(8), ignore it and return a single set of results as before. from Jim Smith, some tweaks and fixes by me, ok dlg@
|
Revision tags: OPENBSD_5_1_BASE
|
#
1.8 |
|
28-Aug-2011 |
aschrijver |
Use the correct terminology, replace the term "entry" with the term "attribute" where applicable.
OK martinh@ pyr@
|
Revision tags: OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE
|
#
1.7 |
|
06-Feb-2010 |
blambert |
Simplify LDAP URL handling (currently unused): instead of strdup()'ing multiple values from an already strdup'ed buffer (none of which were checked for NULL upon return, which is also fixed in this), just use a buffer attached to the aldap_url struct.
Add an aldap_search_url() function, which is a wrapper around aldap_parse_url and aldap_search.
Finally, since the URL bits are unused, wrap them in #if 0 for now.
ok pyr@, whose heart was a little broken by the #if 0 (temporary, I swear!)
|
Revision tags: OPENBSD_4_5_BASE OPENBSD_4_6_BASE
|
#
1.6 |
|
27-Jan-2009 |
aschrijver |
Add correct error handling to the aldap API. Use the error handling in the ldapclient.
with help from pyr@
|
#
1.5 |
|
26-Jan-2009 |
pyr |
move aldap_close in aldap.c, where it belongs. discussed with aschrijver@
|
#
1.4 |
|
14-Oct-2008 |
aschrijver |
Add support for referrals and lists of attributes.
|
#
1.3 |
|
06-Oct-2008 |
aschrijver |
Oops, also commit the header file. Remove silly debug message.
|
#
1.2 |
|
30-Sep-2008 |
pyr |
add missing copyright.
|
#
1.1 |
|
30-Sep-2008 |
aschrijver |
aldap library -- Replacement for openldap used in ypldap. aldap is an semi-asynchronous client interface to connect to LDAP servers.
|
#
1.12 |
|
27-Nov-2018 |
martijn |
Sync aldap and ber with ldap(1).
OK claudio@
|
Revision tags: OPENBSD_6_4_BASE
|
#
1.11 |
|
21-Jun-2018 |
reyk |
Sync aldap from ldap(1).
This also fixes the _url functions that was previously #ifdef'ed out.
OK claudio@
|
Revision tags: OPENBSD_6_2_BASE OPENBSD_6_3_BASE
|
#
1.10 |
|
30-May-2017 |
jmatthew |
Teach ypldap to use tls when connecting to ldap servers. libtls help from jsing@, linker help from deraadt@
|
Revision tags: OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE
|
#
1.9 |
|
30-Apr-2012 |
jmatthew |
Use paged searches so we can handle larger directories. Servers that don't understand paging, such as ldapd(8), ignore it and return a single set of results as before. from Jim Smith, some tweaks and fixes by me, ok dlg@
|
Revision tags: OPENBSD_5_1_BASE
|
#
1.8 |
|
28-Aug-2011 |
aschrijver |
Use the correct terminology, replace the term "entry" with the term "attribute" where applicable.
OK martinh@ pyr@
|
Revision tags: OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE
|
#
1.7 |
|
06-Feb-2010 |
blambert |
Simplify LDAP URL handling (currently unused): instead of strdup()'ing multiple values from an already strdup'ed buffer (none of which were checked for NULL upon return, which is also fixed in this), just use a buffer attached to the aldap_url struct.
Add an aldap_search_url() function, which is a wrapper around aldap_parse_url and aldap_search.
Finally, since the URL bits are unused, wrap them in #if 0 for now.
ok pyr@, whose heart was a little broken by the #if 0 (temporary, I swear!)
|
Revision tags: OPENBSD_4_5_BASE OPENBSD_4_6_BASE
|
#
1.6 |
|
27-Jan-2009 |
aschrijver |
Add correct error handling to the aldap API. Use the error handling in the ldapclient.
with help from pyr@
|
#
1.5 |
|
26-Jan-2009 |
pyr |
move aldap_close in aldap.c, where it belongs. discussed with aschrijver@
|
#
1.4 |
|
14-Oct-2008 |
aschrijver |
Add support for referrals and lists of attributes.
|
#
1.3 |
|
06-Oct-2008 |
aschrijver |
Oops, also commit the header file. Remove silly debug message.
|
#
1.2 |
|
30-Sep-2008 |
pyr |
add missing copyright.
|
#
1.1 |
|
30-Sep-2008 |
aschrijver |
aldap library -- Replacement for openldap used in ypldap. aldap is an semi-asynchronous client interface to connect to LDAP servers.
|
#
1.11 |
|
21-Jun-2018 |
reyk |
Sync aldap from ldap(1).
This also fixes the _url functions that was previously #ifdef'ed out.
OK claudio@
|
Revision tags: OPENBSD_6_2_BASE OPENBSD_6_3_BASE
|
#
1.10 |
|
30-May-2017 |
jmatthew |
Teach ypldap to use tls when connecting to ldap servers. libtls help from jsing@, linker help from deraadt@
|
Revision tags: OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE
|
#
1.9 |
|
30-Apr-2012 |
jmatthew |
Use paged searches so we can handle larger directories. Servers that don't understand paging, such as ldapd(8), ignore it and return a single set of results as before. from Jim Smith, some tweaks and fixes by me, ok dlg@
|
Revision tags: OPENBSD_5_1_BASE
|
#
1.8 |
|
28-Aug-2011 |
aschrijver |
Use the correct terminology, replace the term "entry" with the term "attribute" where applicable.
OK martinh@ pyr@
|
Revision tags: OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE
|
#
1.7 |
|
06-Feb-2010 |
blambert |
Simplify LDAP URL handling (currently unused): instead of strdup()'ing multiple values from an already strdup'ed buffer (none of which were checked for NULL upon return, which is also fixed in this), just use a buffer attached to the aldap_url struct.
Add an aldap_search_url() function, which is a wrapper around aldap_parse_url and aldap_search.
Finally, since the URL bits are unused, wrap them in #if 0 for now.
ok pyr@, whose heart was a little broken by the #if 0 (temporary, I swear!)
|
Revision tags: OPENBSD_4_5_BASE OPENBSD_4_6_BASE
|
#
1.6 |
|
27-Jan-2009 |
aschrijver |
Add correct error handling to the aldap API. Use the error handling in the ldapclient.
with help from pyr@
|
#
1.5 |
|
26-Jan-2009 |
pyr |
move aldap_close in aldap.c, where it belongs. discussed with aschrijver@
|
#
1.4 |
|
14-Oct-2008 |
aschrijver |
Add support for referrals and lists of attributes.
|
#
1.3 |
|
06-Oct-2008 |
aschrijver |
Oops, also commit the header file. Remove silly debug message.
|
#
1.2 |
|
30-Sep-2008 |
pyr |
add missing copyright.
|
#
1.1 |
|
30-Sep-2008 |
aschrijver |
aldap library -- Replacement for openldap used in ypldap. aldap is an semi-asynchronous client interface to connect to LDAP servers.
|
Revision tags: OPENBSD_6_2_BASE
|
#
1.10 |
|
30-May-2017 |
jmatthew |
Teach ypldap to use tls when connecting to ldap servers. libtls help from jsing@, linker help from deraadt@
|
Revision tags: OPENBSD_5_2_BASE OPENBSD_5_3_BASE OPENBSD_5_4_BASE OPENBSD_5_5_BASE OPENBSD_5_6_BASE OPENBSD_5_7_BASE OPENBSD_5_8_BASE OPENBSD_5_9_BASE OPENBSD_6_0_BASE OPENBSD_6_1_BASE
|
#
1.9 |
|
30-Apr-2012 |
jmatthew |
Use paged searches so we can handle larger directories. Servers that don't understand paging, such as ldapd(8), ignore it and return a single set of results as before. from Jim Smith, some tweaks and fixes by me, ok dlg@
|
Revision tags: OPENBSD_5_1_BASE
|
#
1.8 |
|
28-Aug-2011 |
aschrijver |
Use the correct terminology, replace the term "entry" with the term "attribute" where applicable.
OK martinh@ pyr@
|
Revision tags: OPENBSD_4_7_BASE OPENBSD_4_8_BASE OPENBSD_4_9_BASE OPENBSD_5_0_BASE
|
#
1.7 |
|
06-Feb-2010 |
blambert |
Simplify LDAP URL handling (currently unused): instead of strdup()'ing multiple values from an already strdup'ed buffer (none of which were checked for NULL upon return, which is also fixed in this), just use a buffer attached to the aldap_url struct.
Add an aldap_search_url() function, which is a wrapper around aldap_parse_url and aldap_search.
Finally, since the URL bits are unused, wrap them in #if 0 for now.
ok pyr@, whose heart was a little broken by the #if 0 (temporary, I swear!)
|
Revision tags: OPENBSD_4_5_BASE OPENBSD_4_6_BASE
|
#
1.6 |
|
27-Jan-2009 |
aschrijver |
Add correct error handling to the aldap API. Use the error handling in the ldapclient.
with help from pyr@
|
#
1.5 |
|
26-Jan-2009 |
pyr |
move aldap_close in aldap.c, where it belongs. discussed with aschrijver@
|
#
1.4 |
|
14-Oct-2008 |
aschrijver |
Add support for referrals and lists of attributes.
|
#
1.3 |
|
06-Oct-2008 |
aschrijver |
Oops, also commit the header file. Remove silly debug message.
|
#
1.2 |
|
30-Sep-2008 |
pyr |
add missing copyright.
|
#
1.1 |
|
30-Sep-2008 |
aschrijver |
aldap library -- Replacement for openldap used in ypldap. aldap is an semi-asynchronous client interface to connect to LDAP servers.
|