Checkout Tools
  • last updated 35 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Implement the util_ldap_cache_getuserdn() API so that the ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. [PR 31898]

Submitted by: Jari Ahonen [jah progress.com]

Reviewed by: bnicholes, wrowe, jim

  1. … 5 more files in changeset.
mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d.

PR:

Obtained from:

Submitted by: Jeff Trawick

Reviewed by: minfrin, pquerna, bnicholes

  1. … 2 more files in changeset.
mod_ldap: fix a bogus error message to tell the user which file

is causing a potential problem with the LDAP shared memory cache.

PR: 31431

Obtained from:

Submitted by:

Reviewed by: minfrin, bnicholes, jim

  1. … 2 more files in changeset.
Backport: Fix the global mutex crash when the global mutex is never allocated

due to disabled/empty caches.

PR:

Obtained from:

Submitted by: Jess Holle

Reviewed by: minfrin, bnicholes, trawick

  1. … 2 more files in changeset.
Validate the file path of the trusted certificate file at the time the LDAPTrushedCA directive is handled. PR#30782

Reviewed by: bnicholes, trawick, clar

  1. … 1 more file in changeset.
Switch the caching mutexes from reader/writer thread locks to global mutexes to allow for protection across processes rather than just across threads.

Reviewed by: bnicholes, minfrin, jjclar

  1. … 3 more files in changeset.
Get rid of the race conditions by first checking to make sure that a duplicate node does not already exist before inserting nodes into the different caches.

Reviewed by: bnicholes, minfrin, jjclar

  1. … 2 more files in changeset.
Enhance the util_ldap cache-info page to display the current contents of the search, compare and dn_compare caches

Reviewed by: bnicholes, minfrin, jjclar

  1. … 4 more files in changeset.
Enable the option to support anonymous shared memory in mod_ldap. This makes the cache work on Linux again.

Reviewed by: minfrin, bnicholes, trawick

  1. … 4 more files in changeset.
Allow relative paths for LDAPTrustedCA to be resolved against ServerRoot PR#26602

reviewed by: bnicholes, minfrin, trawick, jim

  1. … 2 more files in changeset.
Throw an error message if an attempt is made to use the LDAPTrustedCA

or LDAPTrustedCAType directives in a VirtualHost.

PR: 26390

Obtained from:

Submitted by:

Reviewed by: minfrin, bnicholes, jim

  1. … 1 more file in changeset.
Overhaul handling of LDAP error conditions, so that the util_ldap_*

functions leave the connections in a sane state after errors have

occurred.

PR: 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134, 27271

Obtained from:

Submitted by:

Reviewed by: minfrin, jim, trawick, bnicholes

  1. … 6 more files in changeset.
mod_ldap calls ldap_simple_bind_s() to validate the user

credentials. If the bind fails, the connection is left

in an unbound state. Make sure that the ldap connection

record is updated to show that the connection is no longer

bound.

PR:

Obtained from:

Submitted by:

Reviewed by: bnicholes, minfrin, jim

  1. … 2 more files in changeset.
Backport the util_ldap patch that updates the bind credentials so that util_ldap will properly reuse the cached ldap connections.

Reviewed by: bnicholes, minfrin, trawick

  1. … 2 more files in changeset.
Stop locking all of the connections while trying to find an available connection that meets the specified criteria. If a connection doesn't meet the criteria, unlock it so that it remains available for other requests.

Reviewed by: bnicholes, minfrin, trawick

  1. … 1 more file in changeset.
Fix the shared memory caching issues in util_ldap PR #18756

Submitted by: Matthieu Estrade, Brad Nicholes

Reviewed by: Mathieu Estrade, Brad Nicholes, Jeff Trawick

  1. … 6 more files in changeset.
fix name of The Apache Software Foundation

  1. … 158 more files in changeset.
apply Apache License, Version 2.0

  1. … 20 more files in changeset.
update license to 2004.

  1. … 274 more files in changeset.
fix a comment style issue that broke the LDAP build with some compilers

PR: 19084

  1. … 1 more file in changeset.
Added support for Novell LDAP SDK SSL and standardized the SSL support across

the various LDAP SDKs. Isolated the SSL functionality to mod_ldap rather than

speading it across mod_auth_ldap and mod_ldap. Also added LDAPTrustedCA

and LDAPTrustedCAType directives to allow for a more common method of

specifying the SSL certificate.

Backported to v2.0 from v2.1

  1. … 4 more files in changeset.
Don't try to use the LDAP cache if it has been turned off. Make sure that we

have a "curl" before trying to use it. If caching has been turned off then the

curl variable will be NULL. This fixes a problem where LDAP caching would

fault when caching was disabled.

This also fixes some memory leaks due to not freeing resources when error

conditions occur.

Ensure LDAP version is set to v3 on every bind.

PR: 14235

Obtained from:

Submitted by: Sergey A. Lipnevich <sergeyli@pisem.net>

Reviewed by: Graham Leggett

  1. … 1 more file in changeset.
Update the copyright dates

  1. … 4 more files in changeset.

Need to fix the export, pool cleanups must be _NONSTD.

Backport the patch to permit Mozilla/Netscape LDAP to work for Apache.

  1. … 1 more file in changeset.