Arthur de Jong

Open Source / Free Software developer

summaryrefslogtreecommitdiffstats
path: root/nslcd
Commit message (Collapse)AuthorAgeFilesLines
* also allow spaces in user and group names because it was ↵Arthur de Jong2008-10-011-1/+1
| | | | | | causing problems in some environments git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@788 ef36b2f9-881f-0410-afb5-c4e39611909c
* also retry if ldap_result() failed and getting error ↵Arthur de Jong2008-09-241-1/+1
| | | | | | number returned LDAP_SUCCESS git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@787 ef36b2f9-881f-0410-afb5-c4e39611909c
* log option name instead of option value for ↵Arthur de Jong2008-09-241-1/+1
| | | | | | ldap_set_option() value git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@786 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename get_base_from_dse() to get_base_from_rootdse()Arthur de Jong2008-07-201-5/+5
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@777 ef36b2f9-881f-0410-afb5-c4e39611909c
* make the get_base_from_dse() function cleaner and add a ↵Arthur de Jong2008-07-201-5/+11
| | | | | | comment describing the function git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@776 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement looking up search base in DSE of LDAP serverArthur de Jong2008-07-201-0/+53
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@775 ef36b2f9-881f-0410-afb5-c4e39611909c
* LDAP_OPT_X_TLS_REQUIRE_CERT is not a booleanArthur de Jong2008-07-101-4/+5
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@773 ef36b2f9-881f-0410-afb5-c4e39611909c
* replace https:// by ldaps:// (stupid typo)Arthur de Jong2008-06-172-4/+4
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@770 ef36b2f9-881f-0410-afb5-c4e39611909c
* give pidfile and socket creation functions more logical ↵Arthur de Jong2008-06-151-4/+4
| | | | | | names git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@763 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement SASL authentication based on a patch by Dan ↵Arthur de Jong2008-06-143-30/+82
| | | | | | White <dwhite@olp.net> git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@762 ef36b2f9-881f-0410-afb5-c4e39611909c
* combine isvalidusername() and isvalidgroupname() into ↵Arthur de Jong2008-06-134-90/+43
| | | | | | isvalidname() because they are similar enough and we just want to check to see if it is a reasonable name (e.g. not a DN) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@759 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't perform SSL/TLS sanity checks if it isn't ↵Arthur de Jong2008-06-121-0/+4
| | | | | | available on the platform git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@757 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove warning on using ssl optionArthur de Jong2008-06-061-1/+0
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@751 ef36b2f9-881f-0410-afb5-c4e39611909c
* check that all URLs start with https:// if "ssl on" is ↵Arthur de Jong2008-06-061-0/+12
| | | | | | specified git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@750 ef36b2f9-881f-0410-afb5-c4e39611909c
* also set TLS options if an ldaps:// URL is specifiedArthur de Jong2008-06-061-2/+4
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@749 ef36b2f9-881f-0410-afb5-c4e39611909c
* add uid and gid configuration keywords that set the user ↵Arthur de Jong2008-06-063-10/+84
| | | | | | id and group id of the running nslcd process git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@745 ef36b2f9-881f-0410-afb5-c4e39611909c
* environ is defined in unistd.hArthur de Jong2008-06-061-3/+0
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@744 ef36b2f9-881f-0410-afb5-c4e39611909c
* increase write buffer size in nslcd to free up threads ↵Arthur de Jong2008-06-061-2/+2
| | | | | | earlier and increase timeout for nslcd to nss communication to one minute (at both places) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@743 ef36b2f9-881f-0410-afb5-c4e39611909c
* miscellaneous portability improvementsArthur de Jong2008-06-063-3/+12
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@742 ef36b2f9-881f-0410-afb5-c4e39611909c
* include a random string in every log message to be able ↵Arthur de Jong2008-05-163-5/+48
| | | | | | to group log messages for a single request git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@739 ef36b2f9-881f-0410-afb5-c4e39611909c
* add sanity checks to sleep calls to never sleep too long ↵Arthur de Jong2008-05-161-0/+2
| | | | | | (problems could occur when the clock moves backwards) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@738 ef36b2f9-881f-0410-afb5-c4e39611909c
* improve documentation for myldap_get_rdn_value() functionArthur de Jong2008-05-151-5/+5
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@734 ef36b2f9-881f-0410-afb5-c4e39611909c
* close the connection and retry the search (once) if the ↵Arthur de Jong2008-05-111-0/+24
| | | | | | search fails with the first call to myldap_get_entry() (starting a search doesn't always give an error when the connection has been broken) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@733 ef36b2f9-881f-0410-afb5-c4e39611909c
* split retry mechanism of myldap_search() into a new ↵Arthur de Jong2008-05-111-45/+58
| | | | | | do_retry_search() function git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@732 ef36b2f9-881f-0410-afb5-c4e39611909c
* allocate the search memory region in myldap_search() ↵Arthur de Jong2008-05-111-31/+27
| | | | | | instead of in do_try_search() and have the latter return an LDAP status code git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@731 ef36b2f9-881f-0410-afb5-c4e39611909c
* also allow closing of searches that no longer have a ↵Arthur de Jong2008-05-111-19/+13
| | | | | | valid connection and integrate myldap_search_free() into myldap_search_close() git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@730 ef36b2f9-881f-0410-afb5-c4e39611909c
* make number of threads configurable with the threads keywordArthur de Jong2008-05-043-6/+21
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@725 ef36b2f9-881f-0410-afb5-c4e39611909c
* add reference to note about thread-safeness of OpenLDAPArthur de Jong2008-05-041-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@724 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix copyright yearArthur de Jong2008-05-041-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@723 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement a cache for dn2uid() lookups that saves some ↵Arthur de Jong2008-05-031-24/+81
| | | | | | time doing LDAP searches for groups with a lot of members, based on a patch by Petter Reinholdtsen <pere@hungry.com> git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@722 ef36b2f9-881f-0410-afb5-c4e39611909c
* only support tls-related options if LDAP library ↵Arthur de Jong2008-05-023-2/+19
| | | | | | supports TLS, only add rebind code if ldap_set_rebind_proc() is found and only set LDAP_X_OPT_CONNECT_TIMEOUT if that option is supported git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@716 ef36b2f9-881f-0410-afb5-c4e39611909c
* support ranged attribute valuesArthur de Jong2008-05-011-1/+166
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@715 ef36b2f9-881f-0410-afb5-c4e39611909c
* support the case where an attribute mapping variable is NULLArthur de Jong2008-04-271-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@710 ef36b2f9-881f-0410-afb5-c4e39611909c
* also close the LDAP connection on LDAP_SERVER_DOWN ↵Arthur de Jong2008-04-261-4/+4
| | | | | | (besides LDAP_UNAVAILABLE) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@709 ef36b2f9-881f-0410-afb5-c4e39611909c
* spelling fix in commentArthur de Jong2008-04-261-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@707 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix log message of incorrect map statementArthur de Jong2008-04-261-1/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@705 ef36b2f9-881f-0410-afb5-c4e39611909c
* make log message a little more descriptiveArthur de Jong2008-04-261-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@704 ef36b2f9-881f-0410-afb5-c4e39611909c
* ensure that the connection to the LDAP server is closed ↵Arthur de Jong2008-04-261-0/+15
| | | | | | whenever any of the ldap_*() functions return LDAP_UNAVAILABLE git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@702 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement new timing mechanism for retries to quickly ↵Arthur de Jong2008-04-253-42/+86
| | | | | | fail lookups to LDAP server that have been failing for some time, removing the reconnect_tries option and giving reconnect_sleeptime and reconnect_maxsleeptime options a new meaning git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@701 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't issue warning when myldap_get_entry() returns NULL ↵Arthur de Jong2008-04-231-1/+2
| | | | | | and LDAP_SUCCESS git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@692 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix tests for valid user and group namesArthur de Jong2008-04-202-10/+10
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@690 ef36b2f9-881f-0410-afb5-c4e39611909c
* add checks for valid user and group names in incoming ↵Arthur de Jong2008-04-203-30/+155
| | | | | | requests and for data returned from LDAP git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@689 ef36b2f9-881f-0410-afb5-c4e39611909c
* only support uniqueMember containing DN valuesArthur de Jong2008-04-201-14/+3
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@688 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix warning message to not refer to aliasArthur de Jong2008-04-201-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@687 ef36b2f9-881f-0410-afb5-c4e39611909c
* make warning message more verbose, fix comment and don't ↵Arthur de Jong2008-04-201-2/+5
| | | | | | try to store empty results git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@686 ef36b2f9-881f-0410-afb5-c4e39611909c
* correctly call set_free() instead of free()Arthur de Jong2008-04-191-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@683 ef36b2f9-881f-0410-afb5-c4e39611909c
* use the new set data structure to gather the group membersArthur de Jong2008-04-191-59/+21
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@682 ef36b2f9-881f-0410-afb5-c4e39611909c
* add test for emtpy DNArthur de Jong2008-04-191-0/+3
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@678 ef36b2f9-881f-0410-afb5-c4e39611909c
* instead of using the dict module to build a cache just ↵Arthur de Jong2008-04-181-28/+37
| | | | | | store the values in an fixed-sized array because no more than 9 attributes are currently retrieved from an entry and we never retrieve the same value more than once (so the cache is useless) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@677 ef36b2f9-881f-0410-afb5-c4e39611909c
* change dict_values_first() and dict_values_next() into ↵Arthur de Jong2008-04-171-2/+2
| | | | | | dict_loop_first() and dict_loop_next() to have a looping mechanism over keys and values git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@675 ef36b2f9-881f-0410-afb5-c4e39611909c