moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-11-04 08:35:05 -05:00
Code Issues Releases Wiki Activity
02f8de6516
curl/lib/ldap.c

1097 lines
28 KiB
C
Raw Normal View History

updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
/***************************************************************************
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
* _ _ ____ _
* Project ___| | | | _ \| |
* / __| | | | |_) | |
* | (__| |_| | _ <| |___
* \___|\___/|_| \_\_____|
Initial revision
1999-12-29 09:20:26 -05:00
*
urldata: simplify bytecounters - no need to have them protocol specific - no need to set pointers to them with the Curl_setup_transfer() call - make Curl_setup_transfer() operate on a transfer pointer, not connection - switch some counters from long to the more proper curl_off_t type Closes #3627
2019-02-28 05:36:26 -05:00
* Copyright (C) 1998 - 2019, Daniel Stenberg, <daniel@haxx.se>, et al.
Initial revision
1999-12-29 09:20:26 -05:00
*
updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
* This software is licensed as described in the file COPYING, which
* you should have received as part of this distribution. The terms
URLs: change all http:// URLs to https://
2016-02-02 18:19:02 -05:00
* are also available at https://curl.haxx.se/docs/copyright.html.
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*
dual-license fix
2001-01-03 04:29:33 -05:00
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
* copies of the Software, and permit persons to whom the Software is
updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
* furnished to do so, under the terms of the COPYING file.
Initial revision
1999-12-29 09:20:26 -05:00
*
dual-license fix
2001-01-03 04:29:33 -05:00
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
* KIND, either express or implied.
Initial revision
1999-12-29 09:20:26 -05:00
*
updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
***************************************************************************/
Initial revision
1999-12-29 09:20:26 -05:00
build: fix circular header inclusion with other packages This commit renames lib/setup.h to lib/curl_setup.h and renames lib/setup_once.h to lib/curl_setup_once.h. Removes the need and usage of a header inclusion guard foreign to libcurl. [1] Removes the need and presence of an alarming notice we carried in old setup_once.h [2] ---------------------------------------- 1 - lib/setup_once.h used __SETUP_ONCE_H macro as header inclusion guard up to commit ec691ca3 which changed this to HEADER_CURL_SETUP_ONCE_H, this single inclusion guard is enough to ensure that inclusion of lib/setup_once.h done from lib/setup.h is only done once. Additionally lib/setup.h has always used __SETUP_ONCE_H macro to protect inclusion of setup_once.h even after commit ec691ca3, this was to avoid a circular header inclusion triggered when building a c-ares enabled version with c-ares sources available which also has a setup_once.h header. Commit ec691ca3 exposes the real nature of __SETUP_ONCE_H usage in lib/setup.h, it is a header inclusion guard foreign to libcurl belonging to c-ares's setup_once.h The renaming this commit does, fixes the circular header inclusion, and as such removes the need and usage of a header inclusion guard foreign to libcurl. Macro __SETUP_ONCE_H no longer used in libcurl. 2 - Due to the circular interdependency of old lib/setup_once.h and the c-ares setup_once.h header, old file lib/setup_once.h has carried back from 2006 up to now days an alarming and prominent notice about the need of keeping libcurl's and c-ares's setup_once.h in sync. Given that this commit fixes the circular interdependency, the need and presence of mentioned notice is removed. All mentioned interdependencies come back from now old days when the c-ares project lived inside a curl subdirectory. This commit removes last traces of such fact.
2013-01-06 13:06:49 -05:00
#include "curl_setup.h"
#include "setup.h" moved first of all includes
2000-08-24 10:26:33 -04:00
LDAP: properly implemented as a curl_handler makes the LDAP code much cleaner, nicer and in general being a better libcurl citizen. If a new enough OpenLDAP version is detect, the new and shiny lib/openldap.c code is then used instead of the old cruft Code by Howard, minor cleanups by Daniel.
2010-05-24 18:44:42 -04:00
#if !defined(CURL_DISABLE_LDAP) && !defined(USE_OPENLDAP)
fix ldap related compilation issues
2010-06-01 11:25:03 -04:00
/*
* Notice that USE_OPENLDAP is only a source code selection switch. When
* libcurl is built with USE_OPENLDAP defined the libcurl source code that
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
* gets compiled is the code from openldap.c, otherwise the code that gets
* compiled is the code from ldap.c.
fix ldap related compilation issues
2010-06-01 11:25:03 -04:00
*
* When USE_OPENLDAP is defined a recent version of the OpenLDAP library
* might be required for compilation and runtime. In order to use ancient
* OpenLDAP library versions, USE_OPENLDAP shall not be defined.
*/
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#ifdef USE_WIN32_LDAP /* Use Windows LDAP implementation. */
Ben Greear's minor fix to build (better) with cross-compiled(?) mingw
2004-09-26 02:53:53 -04:00
# include <winldap.h>
added check for MSVC6 standard PSDK and bail out since insufficient for LDAP support with current code.
2007-10-09 19:25:58 -04:00
# ifndef LDAP_VENDOR_NAME
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
# error Your Platform SDK is NOT sufficient for LDAP support! \
Update your Platform SDK, or disable LDAP support!
added check for MSVC6 standard PSDK and bail out since insufficient for LDAP support with current code.
2007-10-09 19:25:58 -04:00
# else
# include <winber.h>
# endif
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#else
Enable OpenLDAP support for cygwin builds. Enable OpenLDAP support for cygwin builds. This support was disabled back in 2008 due to incompatibilities between OpenSSL and OpenLDAP headers. cygwin's OpenSSL 0.9.8l and OpenLDAP 2.3.43 versions on cygwin 1.5.25 allow building an OpenLDAP enabled libcurl supporting back to Windows 95. Remove non-functional CURL_LDAP_HYBRID code and references.
2010-06-04 09:14:31 -04:00
# define LDAP_DEPRECATED 1 /* Be sure ldap_init() is defined. */
# ifdef HAVE_LBER_H
# include <lber.h>
# endif
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
# include <ldap.h>
Enable OpenLDAP support for cygwin builds. Enable OpenLDAP support for cygwin builds. This support was disabled back in 2008 due to incompatibilities between OpenSSL and OpenLDAP headers. cygwin's OpenSSL 0.9.8l and OpenLDAP 2.3.43 versions on cygwin 1.5.25 allow building an OpenLDAP enabled libcurl supporting back to Windows 95. Remove non-functional CURL_LDAP_HYBRID code and references.
2010-06-04 09:14:31 -04:00
# if (defined(HAVE_LDAP_SSL) && defined(HAVE_LDAP_SSL_H))
# include <ldap_ssl.h>
# endif /* HAVE_LDAP_SSL && HAVE_LDAP_SSL_H */
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#endif
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
#include "urldata.h"
Initial revision
1999-12-29 09:20:26 -05:00
#include <curl/curl.h>
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
#include "sendf.h"
#include "escape.h"
#include "progress.h"
#include "transfer.h"
ldap: fix strcase use follow-up to 811a693b80
2016-10-31 04:30:36 -04:00
#include "strcase.h"
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
#include "strtok.h"
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#include "curl_ldap.h"
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
#include "curl_multibyte.h"
libcurl internal base64.h header file renamed to curl_base64.h
2008-08-16 20:25:38 -04:00
#include "curl_base64.h"
bits.close: Fixed compilation warning warning: implicit declaration of function 'connclose'
2014-05-21 19:09:11 -04:00
#include "connect.h"
lib: include curl_printf.h as one of the last headers curl_printf.h defines printf to curl_mprintf, etc. This can cause problems with external headers which may use __attribute__((format(printf, ...))) markers etc. To avoid that they cause problems with system includes, we include curl_printf.h after any system headers. That makes the three last headers to always be, and we keep them in this order: curl_printf.h curl_memory.h memdebug.h None of them include system headers, they all do funny #defines. Reported-by: David Benjamin Fixes #743
2016-04-29 09:46:40 -04:00
/* The last 3 #include files should be in this order */
mprintf.h: remove #ifdef CURLDEBUG ... and as a consequence, introduce curl_printf.h with that re-define magic instead and make all libcurl code use that instead.
2015-03-03 06:36:18 -05:00
#include "curl_printf.h"
curl_memory: make curl_memory.h the second-last header file loaded This header file must be included after all header files except memdebug.h, as it does similar memory function redefinitions and can be similarly affected by conflicting definitions in system or dependent library headers.
2015-03-24 18:12:03 -04:00
#include "curl_memory.h"
Revert changes relative to lib/*.[ch] recent renaming This reverts renaming and usage of lib/*.h header files done 28-12-2012, reverting 2 commits: f871de0... build: make use of 76 lib/*.h renamed files ffd8e12... build: rename 76 lib/*.h files This also reverts removal of redundant include guard (redundant thanks to changes in above commits) done 2-12-2013, reverting 1 commit: c087374... curl_setup.h: remove redundant include guard This also reverts renaming and usage of lib/*.c source files done 3-12-2013, reverting 3 commits: 13606bb... build: make use of 93 lib/*.c renamed files 5b6e792... build: rename 93 lib/*.c files 7d83dff... build: commit 13606bbfde follow-up 1 Start of related discussion thread: http://curl.haxx.se/mail/lib-2013-01/0012.html Asking for confirmation on pushing this revertion commit: http://curl.haxx.se/mail/lib-2013-01/0048.html Confirmation summary: http://curl.haxx.se/mail/lib-2013-01/0079.html NOTICE: The list of 2 files that have been modified by other intermixed commits, while renamed, and also by at least one of the 6 commits this one reverts follows below. These 2 files will exhibit a hole in history unless git's '--follow' option is used when viewing logs. lib/curl_imap.h lib/curl_smtp.h
2013-01-03 20:50:28 -05:00
#include "memdebug.h"
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#ifndef HAVE_LDAP_URL_PARSE
Initial revision
1999-12-29 09:20:26 -05:00
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
/* Use our own implementation. */
Initial revision
1999-12-29 09:20:26 -05:00
Simplify and rename internal structure to avoid potential name clash with LDAP header file.
2007-08-13 09:03:08 -04:00
typedef struct {
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
char *lud_host;
int lud_port;
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
TCHAR *lud_dn;
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
TCHAR **lud_attrs;
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
#else
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
char *lud_dn;
char **lud_attrs;
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
#endif
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
int lud_scope;
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
TCHAR *lud_filter;
#else
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
char *lud_filter;
ldap.c: Fixed compilation warning ldap.c:98: warning: extra tokens at end of #endif directive
2015-01-04 11:11:08 -05:00
#endif
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
char **lud_exts;
ldap.c: Corrected build error from commit 857f999353f333
2013-09-10 14:30:07 -04:00
size_t lud_attrs_dups; /* how many were dup'ed, this field is not in the
"real" struct so can only be used in code
without HAVE_LDAP_URL_PARSE defined */
Simplify and rename internal structure to avoid potential name clash with LDAP header file.
2007-08-13 09:03:08 -04:00
} CURL_LDAPURLDesc;
#undef LDAPURLDesc
#define LDAPURLDesc CURL_LDAPURLDesc
Henrik Storner's update to make libcurl work with OpenLDAP 2.1.22 (current). Also reported to work with OpenLDAP 2.0.26.
2003-09-01 04:23:31 -04:00
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
static int _ldap_url_parse(const struct connectdata *conn,
LDAPURLDesc **ludp);
static void _ldap_free_urldesc(LDAPURLDesc *ludp);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Simplify and rename internal structure to avoid potential name clash with LDAP header file.
2007-08-13 09:03:08 -04:00
#undef ldap_free_urldesc
#define ldap_free_urldesc _ldap_free_urldesc
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#endif
#ifdef DEBUG_LDAP
#define LDAP_TRACE(x) do { \
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
_ldap_trace("%u: ", __LINE__); \
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
_ldap_trace x; \
build: Disable Visual Studio warning "conditional expression is constant" - Disable warning C4127 "conditional expression is constant" globally in curl_setup.h for when building with Microsoft's compiler. This mainly affects building with the Visual Studio project files found in the projects dir. Prior to this change the cmake and winbuild build systems already disabled 4127 globally for when building with Microsoft's compiler. Also, 4127 was already disabled for all build systems in the limited circumstance of the WHILE_FALSE macro which disabled the warning specifically for while(0). This commit removes the WHILE_FALSE macro and all other cruft in favor of disabling globally in curl_setup. Background: We have various macros that cause 0 or 1 to be evaluated, which would cause warning C4127 in Visual Studio. For example this causes it: #define Curl_resolver_asynch() 1 Full behavior is not clearly defined and inconsistent across versions. However it is documented that since VS 2015 Update 3 Microsoft has addressed this somewhat but not entirely, not warning on while(true) for example. Prior to this change some C4127 warnings occurred when I built with Visual Studio using the generated projects in the projects dir. Closes https://github.com/curl/curl/pull/4658
2019-11-30 03:29:36 -05:00
} while(0)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
static void _ldap_trace(const char *fmt, ...);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#else
fix a bunch of MSVC compiler warnings
2011-09-03 10:06:10 -04:00
#define LDAP_TRACE(x) Curl_nop_stmt
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#endif
ldap: Stop using wide char version of ldapp_err2string Despite ldapp_err2string being documented by MS as returning a PCHAR (char *), when UNICODE it is mapped to ldap_err2stringW and returns PWCHAR (wchar_t *). We have lots of code that expects ldap_err2string to return char *, most of it failf used like this: failf(data, "LDAP local: Some error: %s", ldap_err2string(rc)); Closes https://github.com/curl/curl/pull/4272
2019-08-27 14:20:20 -04:00
#if defined(USE_WIN32_LDAP) && defined(ldap_err2string)
/* Use ansi error strings in UNICODE builds */
#undef ldap_err2string
#define ldap_err2string ldap_err2stringA
#endif
Henrik Storner's update to make libcurl work with OpenLDAP 2.1.22 (current). Also reported to work with OpenLDAP 2.0.26.
2003-09-01 04:23:31 -04:00
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
static CURLcode Curl_ldap(struct connectdata *conn, bool *done);
/*
* LDAP protocol handler.
*/
const struct Curl_handler Curl_handler_ldap = {
"LDAP", /* scheme */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* setup_connection */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
Curl_ldap, /* do_it */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* done */
ZERO_NULL, /* do_more */
ZERO_NULL, /* connect_it */
ZERO_NULL, /* connecting */
ZERO_NULL, /* doing */
ZERO_NULL, /* proto_getsock */
ZERO_NULL, /* doing_getsock */
curl_multi_fdset: correct fdset with FTP PORT use After a PORT has been issued, and the multi handle would switch to the CURLM_STATE_DO_MORE state (which is unique for FTP), libcurl would return the wrong fdset to wait for when curl_multi_fdset() is called. The code would blindly assume that it was waiting for a connect of the second connection, while that isn't true immediately after the PORT command. Also, the function multi.c:domore_getsock() was highly FTP-centric and therefore ugly to keep in protocol-agnostic code. I solved this problem by introducing a new function pointer in the Curl_handler struct called domore_getsock() which is only called during the DOMORE state for protocols that set that pointer. The new ftp.c:ftp_domore_getsock() function now returns fdset info about the control connection's command/response handling while such a state is in use, and goes over to waiting for a writable second connection first once the commands are done. The original problem could be seen by running test 525 and checking the time stamps in the FTP server log. I can verify that this fix at least fixes this problem. Bug: http://curl.haxx.se/mail/lib-2011-10/0250.html Reported by: Gokhan Sengun
2011-10-21 17:36:54 -04:00
ZERO_NULL, /* domore_getsock */
- Using the libssh2 0.19 function libssh2_session_block_directions(), libcurl now has an improved ability to do right when the multi interface (both "regular" and multi_socket) is used for SCP and SFTP transfers. This should result in (much) less busy-loop situations and thus less CPU usage with no speed loss.
2008-12-19 16:14:52 -05:00
ZERO_NULL, /* perform_getsock */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* disconnect */
Fixed LDAP after RTSP readwrite change
2011-05-06 16:48:24 -04:00
ZERO_NULL, /* readwrite */
handler: refactor connection checking Add a new type of callback to Curl_handler which performs checks on the connection. Alter RTSP so that it uses this callback to do its own check on connection health.
2017-05-31 07:09:56 -04:00
ZERO_NULL, /* connection_check */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
PORT_LDAP, /* defport */
ldap: use the new protocol handler setup Use the new flags field and stop using the old protocol defines.
2011-03-15 04:13:11 -04:00
CURLPROTO_LDAP, /* protocol */
buildfix: spell define correctly
2011-03-15 11:44:50 -04:00
PROTOPT_NONE /* flags */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
};
#ifdef HAVE_LDAP_SSL
/*
* LDAPS protocol handler.
*/
const struct Curl_handler Curl_handler_ldaps = {
"LDAPS", /* scheme */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* setup_connection */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
Curl_ldap, /* do_it */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* done */
ZERO_NULL, /* do_more */
ZERO_NULL, /* connect_it */
ZERO_NULL, /* connecting */
ZERO_NULL, /* doing */
ZERO_NULL, /* proto_getsock */
ZERO_NULL, /* doing_getsock */
curl_multi_fdset: correct fdset with FTP PORT use After a PORT has been issued, and the multi handle would switch to the CURLM_STATE_DO_MORE state (which is unique for FTP), libcurl would return the wrong fdset to wait for when curl_multi_fdset() is called. The code would blindly assume that it was waiting for a connect of the second connection, while that isn't true immediately after the PORT command. Also, the function multi.c:domore_getsock() was highly FTP-centric and therefore ugly to keep in protocol-agnostic code. I solved this problem by introducing a new function pointer in the Curl_handler struct called domore_getsock() which is only called during the DOMORE state for protocols that set that pointer. The new ftp.c:ftp_domore_getsock() function now returns fdset info about the control connection's command/response handling while such a state is in use, and goes over to waiting for a writable second connection first once the commands are done. The original problem could be seen by running test 525 and checking the time stamps in the FTP server log. I can verify that this fix at least fixes this problem. Bug: http://curl.haxx.se/mail/lib-2011-10/0250.html Reported by: Gokhan Sengun
2011-10-21 17:36:54 -04:00
ZERO_NULL, /* domore_getsock */
- Using the libssh2 0.19 function libssh2_session_block_directions(), libcurl now has an improved ability to do right when the multi interface (both "regular" and multi_socket) is used for SCP and SFTP transfers. This should result in (much) less busy-loop situations and thus less CPU usage with no speed loss.
2008-12-19 16:14:52 -05:00
ZERO_NULL, /* perform_getsock */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* disconnect */
Fixed LDAP after RTSP readwrite change
2011-05-06 16:48:24 -04:00
ZERO_NULL, /* readwrite */
handler: refactor connection checking Add a new type of callback to Curl_handler which performs checks on the connection. Alter RTSP so that it uses this callback to do its own check on connection health.
2017-05-31 07:09:56 -04:00
ZERO_NULL, /* connection_check */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
PORT_LDAPS, /* defport */
handler: make 'protocol' always specified as a single bit This makes the findprotocol() function work as intended so that libcurl can properly be restricted to not support HTTP while still supporting HTTPS - since the HTTPS handler previously set both the HTTP and HTTPS bits in the protocol field. This fixes --proto and --proto-redir for most SSL protocols. This is done by adding a few new convenience defines that groups HTTP and HTTPS, FTP and FTPS etc that should then be used when the code wants to check for both protocols at once. PROTO_FAMILY_[protocol] style. Bug: https://github.com/bagder/curl/pull/97 Reported-by: drizzt
2014-04-20 13:37:54 -04:00
CURLPROTO_LDAPS, /* protocol */
ldap: use the new protocol handler setup Use the new flags field and stop using the old protocol defines.
2011-03-15 04:13:11 -04:00
PROTOPT_SSL /* flags */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
};
#endif
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#if defined(USE_WIN32_LDAP)
#if defined(USE_WINDOWS_SSPI)
static int ldap_win_bind_auth(LDAP *server, const char *user,
const char *passwd, unsigned long authflags)
{
ULONG method = 0;
ldap: silence clang warning Use memset() to initialize a structure to avoid LLVM/Clang warning: ldap.c:193:39: warning: missing field 'UserLength' initializer [-Wmissing-field-initializers] Closes https://github.com/curl/curl/pull/1992
2017-10-15 11:59:43 -04:00
SEC_WINNT_AUTH_IDENTITY cred;
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
int rc = LDAP_AUTH_METHOD_NOT_SUPPORTED;
ldap: silence clang warning Use memset() to initialize a structure to avoid LLVM/Clang warning: ldap.c:193:39: warning: missing field 'UserLength' initializer [-Wmissing-field-initializers] Closes https://github.com/curl/curl/pull/1992
2017-10-15 11:59:43 -04:00
memset(&cred, 0, sizeof(cred));
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#if defined(USE_SPNEGO)
if(authflags & CURLAUTH_NEGOTIATE) {
method = LDAP_AUTH_NEGOTIATE;
}
else
#endif
#if defined(USE_NTLM)
if(authflags & CURLAUTH_NTLM) {
method = LDAP_AUTH_NTLM;
}
else
#endif
#if !defined(CURL_DISABLE_CRYPTO_AUTH)
if(authflags & CURLAUTH_DIGEST) {
method = LDAP_AUTH_DIGEST;
}
else
#endif
{
/* required anyway if one of upper preprocessor definitions enabled */
}
if(method && user && passwd) {
rc = Curl_create_sspi_identity(user, passwd, &cred);
if(!rc) {
rc = ldap_bind_s(server, NULL, (TCHAR *)&cred, method);
Curl_sspi_free_identity(&cred);
}
}
else {
/* proceed with current user credentials */
method = LDAP_AUTH_NEGOTIATE;
rc = ldap_bind_s(server, NULL, NULL, method);
}
return rc;
}
#endif /* #if defined(USE_WINDOWS_SSPI) */
static int ldap_win_bind(struct connectdata *conn, LDAP *server,
const char *user, const char *passwd)
{
int rc = LDAP_INVALID_CREDENTIALS;
PTCHAR inuser = NULL;
PTCHAR inpass = NULL;
if(user && passwd && (conn->data->set.httpauth & CURLAUTH_BASIC)) {
LDAP: fixed checksrc issue
2017-05-23 17:14:13 -04:00
inuser = Curl_convert_UTF8_to_tchar((char *) user);
inpass = Curl_convert_UTF8_to_tchar((char *) passwd);
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
ldap: fix MinGW compiler warning ldap_bind_s is marked as deprecated in w32api's winldap.h shipping with the latest original MinGW, resulting in compiler warnings since commit f0fe66f13c93d3d0af45d9fb1231c9164e0f9dc8. Fix this for the non-SSPI case by using ldap_simple_bind_s again instead of ldap_bind_s with LDAP_AUTH_SIMPLE. Closes https://github.com/curl/curl/pull/1664
2017-07-08 11:33:58 -04:00
rc = ldap_simple_bind_s(server, inuser, inpass);
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
Curl_unicodefree(inuser);
Curl_unicodefree(inpass);
}
#if defined(USE_WINDOWS_SSPI)
else {
rc = ldap_win_bind_auth(server, user, passwd, conn->data->set.httpauth);
}
#endif
return rc;
}
#endif /* #if defined(USE_WIN32_LDAP) */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
static CURLcode Curl_ldap(struct connectdata *conn, bool *done)
Initial revision
1999-12-29 09:20:26 -05:00
{
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
CURLcode result = CURLE_OK;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
int rc = 0;
fixed warning about uninitialized.
2007-08-16 11:23:39 -04:00
LDAP *server = NULL;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
LDAPURLDesc *ludp = NULL;
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
LDAPMessage *ldapmsg = NULL;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
LDAPMessage *entryIterator;
unused variable removed
2004-05-06 03:22:32 -04:00
int num = 0;
code style: use spaces around equals signs
2017-09-09 17:09:06 -04:00
struct Curl_easy *data = conn->data;
fixed ldap support for winldap.
2007-09-15 16:03:03 -04:00
int ldap_proto = LDAP_VERSION3;
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
int ldap_ssl = 0;
base64: fix Curl_base64_encode and Curl_base64_decode interfaces Previous interfaces for these libcurl internal functions did not allow to tell apart a legitimate zero size result from an error condition. These functions now return a CURLcode indicating function success or otherwise specific error. Output size is returned using a pointer argument. All usage of these two functions, and others closely related, has been adapted to the new interfaces. Relative error and OOM handling adapted or added where missing. Unit test 1302 also adapted.
2011-08-24 02:07:36 -04:00
char *val_b64 = NULL;
size_t val_b64_sz = 0;
curl_off_t dlsize = 0;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#ifdef LDAP_OPT_NETWORK_TIMEOUT
checksrc: use space after comma
2015-03-17 08:41:49 -04:00
struct timeval ldap_timeout = {10, 0}; /* 10 sec connection/search timeout */
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#endif
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
TCHAR *host = NULL;
#else
char *host = NULL;
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#endif
ldap: Fixed Unicode user and password in Win32 bind calls
2015-01-03 15:16:26 -05:00
char *user = NULL;
char *passwd = NULL;
Initial revision
1999-12-29 09:20:26 -05:00
FTP code turned into state machine. Not completely yet, but a good start. The tag 'before_ftp_statemachine' was set just before this commit in case of future need.
2005-02-09 08:06:40 -05:00
*done = TRUE; /* unconditionally */
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
infof(data, "LDAP local: LDAP Vendor = %s ; LDAP Version = %d\n",
LDAP_VENDOR_NAME, LDAP_VENDOR_VERSION);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
infof(data, "LDAP local: %s\n", data->change.url);
Reversed the 'HAVE_LDAP_URL_PARSE' ifdef statement.
2007-08-22 14:05:46 -04:00
#ifdef HAVE_LDAP_URL_PARSE
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
rc = ldap_url_parse(data->change.url, &ludp);
Reversed the 'HAVE_LDAP_URL_PARSE' ifdef statement.
2007-08-22 14:05:46 -04:00
#else
rc = _ldap_url_parse(conn, &ludp);
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
#endif
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != 0) {
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
failf(data, "LDAP local: %s", ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_LDAP_INVALID_URL;
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
goto quit;
}
code: style updates
2016-04-03 14:28:34 -04:00
/* Get the URL scheme (either ldap or ldaps) */
SSL: check for SSL, not specific protocols Code cleanup to check less for protocols and more for the specific relevant feature. Like if SSL is required.
2011-05-05 09:49:43 -04:00
if(conn->given->flags & PROTOPT_SSL)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_ssl = 1;
infof(data, "LDAP local: trying to establish %s connection\n",
ldap_ssl ? "encrypted" : "cleartext");
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
host = Curl_convert_UTF8_to_tchar(conn->host.name);
if(!host) {
result = CURLE_OUT_OF_MEMORY;
goto quit;
}
#else
host = conn->host.name;
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#endif
ldap: Fixed Unicode user and password in Win32 bind calls
2015-01-03 15:16:26 -05:00
if(conn->bits.user_passwd) {
user = conn->user;
passwd = conn->passwd;
}
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#ifdef LDAP_OPT_NETWORK_TIMEOUT
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_set_option(NULL, LDAP_OPT_NETWORK_TIMEOUT, &ldap_timeout);
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#endif
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_set_option(NULL, LDAP_OPT_PROTOCOL_VERSION, &ldap_proto);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ldap_ssl) {
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
#ifdef HAVE_LDAP_SSL
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#ifdef USE_WIN32_LDAP
Fix a couple of spelling errors in lib/ Found with codespell.
2011-04-19 09:54:13 -04:00
/* Win32 LDAP SDK doesn't support insecure mode without CA! */
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
server = ldap_sslinit(host, (int)conn->port, 1);
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_set_option(server, LDAP_OPT_SSL, LDAP_OPT_ON);
#else
fixed warning with unused var; removed now obsolete defines since we include now ldap headers which define these.
2007-08-20 19:31:26 -04:00
int ldap_option;
checksrc: code style: use 'char *name' style
2016-11-23 01:53:24 -05:00
char *ldap_ca = conn->ssl_config.CAfile;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#if defined(CURL_HAS_NOVELL_LDAPSDK)
rc = ldapssl_client_init(NULL, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ldapssl_client_init %s", ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
goto quit;
}
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
if(conn->ssl_config.verifypeer) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
/* Novell SDK supports DER or BASE64 files. */
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
int cert_type = LDAPSSL_CERT_FILETYPE_B64;
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
if((data->set.ssl.cert_type) &&
(strcasecompare(data->set.ssl.cert_type, "DER")))
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
cert_type = LDAPSSL_CERT_FILETYPE_DER;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ldap_ca) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR %s CA cert not set!",
(cert_type == LDAPSSL_CERT_FILETYPE_DER ? "DER" : "PEM"));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
goto quit;
}
infof(data, "LDAP local: using %s CA cert '%s'\n",
(cert_type == LDAPSSL_CERT_FILETYPE_DER ? "DER" : "PEM"),
ldap_ca);
rc = ldapssl_add_trusted_cert(ldap_ca, cert_type);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR setting %s CA cert: %s",
(cert_type == LDAPSSL_CERT_FILETYPE_DER ? "DER" : "PEM"),
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
ldap_option = LDAPSSL_VERIFY_SERVER;
}
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
else
ldap_option = LDAPSSL_VERIFY_NONE;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
rc = ldapssl_set_verify_mode(ldap_option);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR setting cert verify mode: %s",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
goto quit;
}
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
server = ldapssl_init(host, (int)conn->port, 1);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server == NULL) {
string formatting: fix 15+ printf-style format strings
2013-07-24 10:43:13 -04:00
failf(data, "LDAP local: Cannot connect to %s:%ld",
ldap: Use host.dispname for infof() connection failure messages As host.name may be encoded use dispname for infof() failure messages.
2015-01-03 14:45:30 -05:00
conn->host.dispname, conn->port);
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_COULDNT_CONNECT;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
#elif defined(LDAP_OPT_X_TLS)
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
if(conn->ssl_config.verifypeer) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
/* OpenLDAP SDK supports BASE64 files. */
proxy: Support HTTPS proxy and SOCKS+HTTP(s) * HTTPS proxies: An HTTPS proxy receives all transactions over an SSL/TLS connection. Once a secure connection with the proxy is established, the user agent uses the proxy as usual, including sending CONNECT requests to instruct the proxy to establish a [usually secure] TCP tunnel with an origin server. HTTPS proxies protect nearly all aspects of user-proxy communications as opposed to HTTP proxies that receive all requests (including CONNECT requests) in vulnerable clear text. With HTTPS proxies, it is possible to have two concurrent _nested_ SSL/TLS sessions: the "outer" one between the user agent and the proxy and the "inner" one between the user agent and the origin server (through the proxy). This change adds supports for such nested sessions as well. A secure connection with a proxy requires its own set of the usual SSL options (their actual descriptions differ and need polishing, see TODO): --proxy-cacert FILE CA certificate to verify peer against --proxy-capath DIR CA directory to verify peer against --proxy-cert CERT[:PASSWD] Client certificate file and password --proxy-cert-type TYPE Certificate file type (DER/PEM/ENG) --proxy-ciphers LIST SSL ciphers to use --proxy-crlfile FILE Get a CRL list in PEM format from the file --proxy-insecure Allow connections to proxies with bad certs --proxy-key KEY Private key file name --proxy-key-type TYPE Private key file type (DER/PEM/ENG) --proxy-pass PASS Pass phrase for the private key --proxy-ssl-allow-beast Allow security flaw to improve interop --proxy-sslv2 Use SSLv2 --proxy-sslv3 Use SSLv3 --proxy-tlsv1 Use TLSv1 --proxy-tlsuser USER TLS username --proxy-tlspassword STRING TLS password --proxy-tlsauthtype STRING TLS authentication type (default SRP) All --proxy-foo options are independent from their --foo counterparts, except --proxy-crlfile which defaults to --crlfile and --proxy-capath which defaults to --capath. Curl now also supports %{proxy_ssl_verify_result} --write-out variable, similar to the existing %{ssl_verify_result} variable. Supported backends: OpenSSL, GnuTLS, and NSS. * A SOCKS proxy + HTTP/HTTPS proxy combination: If both --socks* and --proxy options are given, Curl first connects to the SOCKS proxy and then connects (through SOCKS) to the HTTP or HTTPS proxy. TODO: Update documentation for the new APIs and --proxy-* options. Look for "Added in 7.XXX" marks.
2016-11-16 12:49:15 -05:00
if((data->set.ssl.cert_type) &&
(!strcasecompare(data->set.ssl.cert_type, "PEM"))) {
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
failf(data, "LDAP local: ERROR OpenLDAP only supports PEM cert-type!");
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
bail out with error if someone tries to use another cert than PEM with OpenLDAP.
2007-08-25 08:10:30 -04:00
goto quit;
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ldap_ca) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR PEM CA cert not set!");
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
goto quit;
}
infof(data, "LDAP local: using PEM CA cert: %s\n", ldap_ca);
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
rc = ldap_set_option(NULL, LDAP_OPT_X_TLS_CACERTFILE, ldap_ca);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
failf(data, "LDAP local: ERROR setting PEM CA cert: %s",
ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
ldap_option = LDAP_OPT_X_TLS_DEMAND;
}
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
else
ldap_option = LDAP_OPT_X_TLS_NEVER;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
rc = ldap_set_option(NULL, LDAP_OPT_X_TLS_REQUIRE_CERT, &ldap_option);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR setting cert verify mode: %s",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
server = ldap_init(host, (int)conn->port);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server == NULL) {
string formatting: fix 15+ printf-style format strings
2013-07-24 10:43:13 -04:00
failf(data, "LDAP local: Cannot connect to %s:%ld",
ldap: Use host.dispname for infof() connection failure messages As host.name may be encoded use dispname for infof() failure messages.
2015-01-03 14:45:30 -05:00
conn->host.dispname, conn->port);
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_COULDNT_CONNECT;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
ldap_option = LDAP_OPT_X_TLS_HARD;
rc = ldap_set_option(server, LDAP_OPT_X_TLS, &ldap_option);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
failf(data, "LDAP local: ERROR setting SSL/TLS mode: %s",
ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
for now comment the tls_start section...
2007-08-22 06:14:57 -04:00
/*
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
rc = ldap_start_tls_s(server, NULL, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
failf(data, "LDAP local: ERROR starting SSL/TLS mode: %s",
ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
for now comment the tls_start section...
2007-08-22 06:14:57 -04:00
*/
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#else
/* we should probably never come up to here since configure
should check in first place if we can support LDAP SSL/TLS */
failf(data, "LDAP local: SSL/TLS not supported with this version "
"of the OpenLDAP toolkit\n");
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_SSL_CERTPROBLEM;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
#endif
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
#endif
#endif /* CURL_LDAP_USE_SSL */
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
}
else {
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
server = ldap_init(host, (int)conn->port);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server == NULL) {
string formatting: fix 15+ printf-style format strings
2013-07-24 10:43:13 -04:00
failf(data, "LDAP local: Cannot connect to %s:%ld",
ldap: Use host.dispname for infof() connection failure messages As host.name may be encoded use dispname for infof() failure messages.
2015-01-03 14:45:30 -05:00
conn->host.dispname, conn->port);
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_COULDNT_CONNECT;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
goto quit;
}
Make sure DynaGetFunction() returns a function pointer, not a data pointer. The standards don't actually allow typecasts between data and functions so some picky compilers warn about this.
2004-02-06 02:28:49 -05:00
}
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#ifdef USE_WIN32_LDAP
fixed ldap support for winldap.
2007-09-15 16:03:03 -04:00
ldap_set_option(server, LDAP_OPT_PROTOCOL_VERSION, &ldap_proto);
#endif
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#ifdef USE_WIN32_LDAP
rc = ldap_win_bind(conn, server, user, passwd);
#else
ldap: Fixed Unicode user and password in Win32 bind calls
2015-01-03 15:16:26 -05:00
rc = ldap_simple_bind_s(server, user, passwd);
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#endif
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ldap_ssl && rc != 0) {
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
ldap_proto = LDAP_VERSION2;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ldap_set_option(server, LDAP_OPT_PROTOCOL_VERSION, &ldap_proto);
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#ifdef USE_WIN32_LDAP
rc = ldap_win_bind(conn, server, user, passwd);
#else
ldap: Fixed Unicode user and password in Win32 bind calls
2015-01-03 15:16:26 -05:00
rc = ldap_simple_bind_s(server, user, passwd);
LDAP: using ldap_bind_s on Windows with methods (#878) * LDAP: using ldap_bind_s on Windows with methods(BASIC/DIGEST/NTLM/AUTONEG) * ldap: updated per build options handling * ldap: fixed logic for auth selection
2017-05-23 15:45:39 -04:00
#endif
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != 0) {
ldap: show precise LDAP call in error message on Windows Also add a unique but common text ('bind via') to make it easy to grep this specific failure regardless of platform. Ref: https://github.com/curl/curl/pull/878/files#diff-7a636f08047c4edb53a240f540b4ecf6R468 Closes https://github.com/curl/curl/pull/3118 Reviewed-by: Daniel Stenberg <daniel@haxx.se> Reviewed-by: Marcel Raad <Marcel.Raad@teamviewer.com>
2018-10-09 11:05:35 -04:00
#ifdef USE_WIN32_LDAP
failf(data, "LDAP local: bind via ldap_win_bind %s",
ldap_err2string(rc));
#else
failf(data, "LDAP local: bind via ldap_simple_bind_s %s",
ldap_err2string(rc));
#endif
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_LDAP_CANNOT_BIND;
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
goto quit;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
rc = ldap_search_s(server, ludp->lud_dn, ludp->lud_scope,
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
ludp->lud_filter, ludp->lud_attrs, 0, &ldapmsg);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != 0 && rc != LDAP_SIZELIMIT_EXCEEDED) {
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
failf(data, "LDAP remote: %s", ldap_err2string(rc));
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
result = CURLE_LDAP_SEARCH_FAILED;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
goto quit;
}
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
for(num = 0, entryIterator = ldap_first_entry(server, ldapmsg);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
entryIterator;
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
entryIterator = ldap_next_entry(server, entryIterator), num++) {
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
BerElement *ber = NULL;
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed attribute variable warnings when Unicode is enabled Use 'TCHAR *' for local attribute variable rather than 'char *'.
2015-01-03 16:19:11 -05:00
TCHAR *attribute;
#else
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
char *attribute; /*! suspicious that this isn't 'const' */
ldap: Fixed attribute variable warnings when Unicode is enabled Use 'TCHAR *' for local attribute variable rather than 'char *'.
2015-01-03 16:19:11 -05:00
#endif
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
int i;
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
/* Get the DN and write it to the client */
{
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
char *name;
size_t name_len;
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed DN variable warnings when Unicode is enabled Use 'TCHAR *' for local DN variable rather than 'char *'.
2015-01-03 16:12:56 -05:00
TCHAR *dn = ldap_get_dn(server, entryIterator);
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
name = Curl_convert_tchar_to_UTF8(dn);
if(!name) {
ldap_memfree(dn);
result = CURLE_OUT_OF_MEMORY;
goto quit;
}
ldap: Fixed DN variable warnings when Unicode is enabled Use 'TCHAR *' for local DN variable rather than 'char *'.
2015-01-03 16:12:56 -05:00
#else
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
char *dn = name = ldap_get_dn(server, entryIterator);
ldap: Fixed DN variable warnings when Unicode is enabled Use 'TCHAR *' for local DN variable rather than 'char *'.
2015-01-03 16:12:56 -05:00
#endif
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
name_len = strlen(name);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"DN: ", 4);
if(result) {
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
Curl_unicodefree(name);
#endif
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
ldap_memfree(dn);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
goto quit;
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *) name,
name_len);
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
if(result) {
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
Curl_unicodefree(name);
#endif
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
ldap_memfree(dn);
goto quit;
}
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\n", 1);
if(result) {
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
Curl_unicodefree(name);
#endif
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
ldap_memfree(dn);
goto quit;
}
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
dlsize += name_len + 5;
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert DN output to UTF-8 when Unicode
2015-01-07 14:19:20 -05:00
Curl_unicodefree(name);
#endif
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
ldap_memfree(dn);
}
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
/* Get the attributes and write them to the client */
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
for(attribute = ldap_first_attribute(server, entryIterator, &ber);
attribute;
attribute = ldap_next_attribute(server, entryIterator, ber)) {
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
BerValue **vals;
size_t attr_len;
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
char *attr = Curl_convert_tchar_to_UTF8(attribute);
if(!attr) {
if(ber)
ber_free(ber, 0);
result = CURLE_OUT_OF_MEMORY;
goto quit;
}
ldap: Fixed attribute variable warnings when Unicode is enabled Use 'TCHAR *' for local attribute variable rather than 'char *'.
2015-01-03 16:19:11 -05:00
#else
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
char *attr = attribute;
ldap: Fixed attribute variable warnings when Unicode is enabled Use 'TCHAR *' for local attribute variable rather than 'char *'.
2015-01-03 16:19:11 -05:00
#endif
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
attr_len = strlen(attr);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
vals = ldap_get_values_len(server, entryIterator, attribute);
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
if(vals != NULL) {
for(i = 0; (vals[i] != NULL); i++) {
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\t", 1);
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
if(result) {
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
goto quit;
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
}
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY,
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
(char *) attr, attr_len);
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
if(result) {
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
goto quit;
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
}
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *)": ", 2);
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
if(result) {
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
goto quit;
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
}
ldap: Pass write length in all Curl_client_write() calls As we get the length for the DN and attribute variables, and we know the length for the line terminator, pass the length values rather than zero as this will save Curl_client_write() from having to perform an additional strlen() call.
2015-01-03 12:39:23 -05:00
dlsize += attr_len + 3;
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
ldap: Pass write length in all Curl_client_write() calls As we get the length for the DN and attribute variables, and we know the length for the line terminator, pass the length values rather than zero as this will save Curl_client_write() from having to perform an additional strlen() call.
2015-01-03 12:39:23 -05:00
if((attr_len > 7) &&
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
(strcmp(";binary", (char *) attr + (attr_len - 7)) == 0)) {
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
/* Binary attribute, encode to base64. */
ldap: Prefer 'CURLcode result' for curl result codes
2015-01-03 12:45:51 -05:00
result = Curl_base64_encode(data,
vals[i]->bv_val,
vals[i]->bv_len,
&val_b64,
&val_b64_sz);
if(result) {
base64: fix Curl_base64_encode and Curl_base64_decode interfaces Previous interfaces for these libcurl internal functions did not allow to tell apart a legitimate zero size result from an error condition. These functions now return a CURLcode indicating function success or otherwise specific error. Output size is returned using a pointer argument. All usage of these two functions, and others closely related, has been adapted to the new interfaces. Relative error and OOM handling adapted or added where missing. Unit test 1302 also adapted.
2011-08-24 02:07:36 -04:00
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
base64: fix Curl_base64_encode and Curl_base64_decode interfaces Previous interfaces for these libcurl internal functions did not allow to tell apart a legitimate zero size result from an error condition. These functions now return a CURLcode indicating function success or otherwise specific error. Output size is returned using a pointer argument. All usage of these two functions, and others closely related, has been adapted to the new interfaces. Relative error and OOM handling adapted or added where missing. Unit test 1302 also adapted.
2011-08-24 02:07:36 -04:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: Prefer 'CURLcode result' for curl result codes
2015-01-03 12:45:51 -05:00
base64: fix Curl_base64_encode and Curl_base64_decode interfaces Previous interfaces for these libcurl internal functions did not allow to tell apart a legitimate zero size result from an error condition. These functions now return a CURLcode indicating function success or otherwise specific error. Output size is returned using a pointer argument. All usage of these two functions, and others closely related, has been adapted to the new interfaces. Relative error and OOM handling adapted or added where missing. Unit test 1302 also adapted.
2011-08-24 02:07:36 -04:00
goto quit;
}
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(val_b64_sz > 0) {
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, val_b64,
val_b64_sz);
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
free(val_b64);
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
if(result) {
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
goto quit;
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
}
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize += val_b64_sz;
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
}
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
}
else {
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, vals[i]->bv_val,
vals[i]->bv_len);
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
if(result) {
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
goto quit;
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
}
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize += vals[i]->bv_len;
}
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap: Pass write length in all Curl_client_write() calls As we get the length for the DN and attribute variables, and we know the length for the line terminator, pass the length values rather than zero as this will save Curl_client_write() from having to perform an additional strlen() call.
2015-01-03 12:39:23 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\n", 1);
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
if(result) {
ldap_value_free_len(vals);
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
if(ber)
ber_free(ber, 0);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
goto quit;
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
}
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize++;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
/* Free memory used to store values */
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ldap_value_free_len(vals);
Initial revision
1999-12-29 09:20:26 -05:00
}
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
/* Free the attribute as we are done with it */
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Convert attribute output to UTF-8 when Unicode
2015-01-07 14:45:24 -05:00
Curl_unicodefree(attr);
#endif
ldap: Fixed attribute memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:25:11 -05:00
ldap_memfree(attribute);
ldap: check Curl_client_write() return codes There might be one or two memory leaks left in the error paths.
2014-12-09 18:41:32 -05:00
result = Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\n", 1);
if(result)
goto quit;
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize++;
Curl_pgrsSetDownloadCounter(data, dlsize);
Initial revision
1999-12-29 09:20:26 -05:00
}
ldap: Fixed DN memory leaks on failed client write Fixed memory leaks from commit 086ad79970 as was noted in the commit comments.
2015-01-03 12:05:50 -05:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ber)
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ber_free(ber, 0);
Initial revision
1999-12-29 09:20:26 -05:00
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
quit:
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
if(ldapmsg) {
ldap_msgfree(ldapmsg);
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
LDAP_TRACE(("Received %d entries\n", num));
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc == LDAP_SIZELIMIT_EXCEEDED)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
infof(data, "There are more than %d entries\n", num);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_free_urldesc(ludp);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_unbind_s(server);
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#if defined(HAVE_LDAP_SSL) && defined(CURL_HAS_NOVELL_LDAPSDK)
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ldap_ssl)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldapssl_client_deinit();
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#endif /* HAVE_LDAP_SSL && CURL_HAS_NOVELL_LDAPSDK */
bug report #474568 - We need to set "no further data to download" before the Curl_ldap() function returns, as otherwise it'll hang on that assumed transfer.
2001-10-25 04:28:29 -04:00
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed Unicode host name in Win32 initialisation calls
2015-01-03 14:59:12 -05:00
Curl_unicodefree(host);
#endif
bug report #474568 - We need to set "no further data to download" before the Curl_ldap() function returns, as otherwise it'll hang on that assumed transfer.
2001-10-25 04:28:29 -04:00
/* no data to transfer */
urldata: simplify bytecounters - no need to have them protocol specific - no need to set pointers to them with the Curl_setup_transfer() call - make Curl_setup_transfer() operate on a transfer pointer, not connection - switch some counters from long to the more proper curl_off_t type Closes #3627
2019-02-28 05:36:26 -05:00
Curl_setup_transfer(data, -1, -1, FALSE, -1);
bits.close: introduce connection close tracking Make all code use connclose() and connkeep() when changing the "close state" for a connection. These two macros take a string argument with an explanation, and debug builds of curl will include that in the debug output. Helps tracking connection re-use/close issues.
2014-05-20 04:32:23 -04:00
connclose(conn, "LDAP connection always disable re-use");
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: rename variables to comply to curl standards
2014-12-09 18:36:31 -05:00
return result;
Initial revision
1999-12-29 09:20:26 -05:00
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#ifdef DEBUG_LDAP
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
static void _ldap_trace(const char *fmt, ...)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
static int do_trace = -1;
va_list args;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(do_trace == -1) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
const char *env = getenv("CURL_TRACE");
atoi: remove atoi usage
2010-11-28 17:11:14 -05:00
do_trace = (env && strtol(env, NULL, 10) > 0);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!do_trace)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return;
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
va_start(args, fmt);
vfprintf(stderr, fmt, args);
va_end(args);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
added disable-[protocol] support, largely provided by Miklos Nemeth
2002-06-11 07:13:01 -04:00
#endif
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#ifndef HAVE_LDAP_URL_PARSE
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
/*
* Return scope-value for a scope-string.
*/
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
static int str2scope(const char *p)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
strcase: s/strequal/strcasecompare some more follow-ups to 811a693b80
2016-10-31 04:37:30 -04:00
if(strcasecompare(p, "one"))
return LDAP_SCOPE_ONELEVEL;
if(strcasecompare(p, "onetree"))
return LDAP_SCOPE_ONELEVEL;
if(strcasecompare(p, "base"))
return LDAP_SCOPE_BASE;
if(strcasecompare(p, "sub"))
return LDAP_SCOPE_SUBTREE;
if(strcasecompare(p, "subtree"))
return LDAP_SCOPE_SUBTREE;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return (-1);
}
/*
* Split 'str' into strings separated by commas.
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
* Note: out[] points into 'str'.
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*/
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
static bool split_str(char *str, char ***out, size_t *count)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
char **res;
char *lasts;
char *s;
size_t i;
size_t items = 1;
s = strchr(str, ',');
while(s) {
items++;
s = strchr(++s, ',');
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
res = calloc(items, sizeof(char *));
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!res)
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
return FALSE;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
for(i = 0, s = strtok_r(str, ",", &lasts); s && i < items;
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
s = strtok_r(NULL, ",", &lasts), i++)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
res[i] = s;
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
*out = res;
*count = items;
return TRUE;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
/*
* Break apart the pieces of an LDAP URL.
* Syntax:
* ldap://<hostname>:<port>/<base_dn>?<attributes>?<scope>?<filter>?<ext>
*
* <hostname> already known from 'conn->host.name'.
* <port> already known from 'conn->remote_port'.
reqdata doesn't exist anymore and the path moved to the UrlState struct
2007-11-24 18:18:21 -05:00
* extract the rest from 'conn->data->state.path+1'. All fields are optional.
Update comment reflecting structure change.
2006-09-08 08:17:58 -04:00
* e.g.
* ldap://<hostname>:<port>/?<attributes>?<scope>?<filter>
* yields ludp->lud_dn = "".
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*
Update LDAP URL format reference
2009-10-13 10:48:35 -04:00
* Defined in RFC4516 section 2.
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*/
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
static int _ldap_url_parse2(const struct connectdata *conn, LDAPURLDesc *ludp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
int rc = LDAP_SUCCESS;
char *p;
ldap: fix OOM error on missing query string - Allow missing queries, don't return NO_MEMORY error in such a case. It is acceptable for there to be no specified query string, for example: curl ldap://ldap.forumsys.com A regression bug in 1b443a7 caused this issue. This is a partial fix for #4261. Bug: https://github.com/curl/curl/issues/4261#issuecomment-525543077 Reported-by: Jojojov@users.noreply.github.com Analyzed-by: Samuel Surtees Closes https://github.com/curl/curl/pull/4467
2019-10-04 21:49:43 -04:00
char *path;
char *q = NULL;
char *query = NULL;
ldap.c: Fixed compilation warning ldap.c:802: warning: comparison between signed and unsigned integer expressions
2015-01-04 10:16:04 -05:00
size_t i;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!conn->data ||
url: use the URL API internally as well ... to make it a truly unified URL parser. Closes #3017
2018-09-14 17:33:28 -04:00
!conn->data->state.up.path ||
conn->data->state.up.path[0] != '/' ||
ldap: fix LDAP URL parsing regressions - Match URL scheme with LDAP and LDAPS - Retrieve attributes, scope and filter from URL query instead Regression brought in 46e164069d1a5230 (7.62.0) Closes #3362
2018-12-11 05:15:15 -05:00
!strncasecompare("LDAP", conn->data->state.up.scheme, 4))
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_INVALID_SYNTAX;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ludp->lud_scope = LDAP_SCOPE_BASE;
ludp->lud_port = conn->remote_port;
ludp->lud_host = conn->host.name;
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
/* Duplicate the path */
url: use the URL API internally as well ... to make it a truly unified URL parser. Closes #3017
2018-09-14 17:33:28 -04:00
p = path = strdup(conn->data->state.up.path + 1);
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
if(!path)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_NO_MEMORY;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: fix OOM error on missing query string - Allow missing queries, don't return NO_MEMORY error in such a case. It is acceptable for there to be no specified query string, for example: curl ldap://ldap.forumsys.com A regression bug in 1b443a7 caused this issue. This is a partial fix for #4261. Bug: https://github.com/curl/curl/issues/4261#issuecomment-525543077 Reported-by: Jojojov@users.noreply.github.com Analyzed-by: Samuel Surtees Closes https://github.com/curl/curl/pull/4467
2019-10-04 21:49:43 -04:00
/* Duplicate the query if present */
if(conn->data->state.up.query) {
q = query = strdup(conn->data->state.up.query);
if(!query) {
free(path);
return LDAP_NO_MEMORY;
}
ldap: fix LDAP URL parsing regressions - Match URL scheme with LDAP and LDAPS - Retrieve attributes, scope and filter from URL query instead Regression brought in 46e164069d1a5230 (7.62.0) Closes #3362
2018-12-11 05:15:15 -05:00
}
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
ldap: fix LDAP URL parsing regressions - Match URL scheme with LDAP and LDAPS - Retrieve attributes, scope and filter from URL query instead Regression brought in 46e164069d1a5230 (7.62.0) Closes #3362
2018-12-11 05:15:15 -05:00
/* Parse the DN (Distinguished Name) */
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
if(*p) {
char *dn = p;
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
char *unescaped;
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
CURLcode result;
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
LDAP_TRACE(("DN '%s'\n", dn));
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
ldap: Fixed memory leak from commit efb64fdf80 The unescapped DN was not freed after a successful character conversion.
2015-01-04 09:11:02 -05:00
/* Unescape the DN */
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
result = Curl_urldecode(conn->data, dn, 0, &unescaped, NULL, FALSE);
if(result) {
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
rc = LDAP_NO_MEMORY;
goto quit;
}
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
/* Convert the unescaped string to a tchar */
ludp->lud_dn = Curl_convert_UTF8_to_tchar(unescaped);
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
/* Free the unescaped string as we are done with it */
Curl_unicodefree(unescaped);
ldap: Fixed memory leak from commit efb64fdf80 The unescapped DN was not freed after a successful character conversion.
2015-01-04 09:11:02 -05:00
if(!ludp->lud_dn) {
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
rc = LDAP_NO_MEMORY;
goto quit;
}
#else
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
ludp->lud_dn = unescaped;
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
#endif
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
p = q;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
ldap: Remove the unescape_elements() function Due to the recent modifications this function is no longer used.
2015-01-03 16:04:13 -05:00
goto quit;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
/* Parse the attributes. skip "??" */
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
q = strchr(p, '?');
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(q)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
*q++ = '\0';
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
if(*p) {
char **attributes;
size_t count = 0;
/* Split the string into an array of attributes */
if(!split_str(p, &attributes, &count)) {
rc = LDAP_NO_MEMORY;
goto quit;
}
/* Allocate our array (+1 for the NULL entry) */
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
ludp->lud_attrs = calloc(count + 1, sizeof(TCHAR *));
#else
ludp->lud_attrs = calloc(count + 1, sizeof(char *));
#endif
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
if(!ludp->lud_attrs) {
free: instead of Curl_safefree() Since we just started make use of free(NULL) in order to simplify code, this change takes it a step further and: - converts lots of Curl_safefree() calls to good old free() - makes Curl_safefree() not check the pointer before free() The (new) rule of thumb is: if you really want a function call that frees a pointer and then assigns it to NULL, then use Curl_safefree(). But we will prefer just using free() from now on.
2015-03-16 10:01:15 -04:00
free(attributes);
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
rc = LDAP_NO_MEMORY;
goto quit;
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
for(i = 0; i < count; i++) {
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
char *unescaped;
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
CURLcode result;
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
LDAP_TRACE(("attr[%d] '%s'\n", i, attributes[i]));
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
/* Unescape the attribute */
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
result = Curl_urldecode(conn->data, attributes[i], 0, &unescaped, NULL,
FALSE);
if(result) {
free: instead of Curl_safefree() Since we just started make use of free(NULL) in order to simplify code, this change takes it a step further and: - converts lots of Curl_safefree() calls to good old free() - makes Curl_safefree() not check the pointer before free() The (new) rule of thumb is: if you really want a function call that frees a pointer and then assigns it to NULL, then use Curl_safefree(). But we will prefer just using free() from now on.
2015-03-16 10:01:15 -04:00
free(attributes);
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
rc = LDAP_NO_MEMORY;
goto quit;
}
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
/* Convert the unescaped string to a tchar */
ludp->lud_attrs[i] = Curl_convert_UTF8_to_tchar(unescaped);
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
/* Free the unescaped string as we are done with it */
Curl_unicodefree(unescaped);
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
if(!ludp->lud_attrs[i]) {
free: instead of Curl_safefree() Since we just started make use of free(NULL) in order to simplify code, this change takes it a step further and: - converts lots of Curl_safefree() calls to good old free() - makes Curl_safefree() not check the pointer before free() The (new) rule of thumb is: if you really want a function call that frees a pointer and then assigns it to NULL, then use Curl_safefree(). But we will prefer just using free() from now on.
2015-03-16 10:01:15 -04:00
free(attributes);
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
rc = LDAP_NO_MEMORY;
goto quit;
}
#else
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
ludp->lud_attrs[i] = unescaped;
ldap: Fixed support for Unicode attributes in Win32 search call
2015-01-03 15:49:11 -05:00
#endif
ludp->lud_attrs_dups++;
}
ldap: Fix memory leak from commit 3a805c5cc1
2015-01-04 15:06:04 -05:00
free: instead of Curl_safefree() Since we just started make use of free(NULL) in order to simplify code, this change takes it a step further and: - converts lots of Curl_safefree() calls to good old free() - makes Curl_safefree() not check the pointer before free() The (new) rule of thumb is: if you really want a function call that frees a pointer and then assigns it to NULL, then use Curl_safefree(). But we will prefer just using free() from now on.
2015-03-16 10:01:15 -04:00
free(attributes);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
p = q;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
ldap: Remove the unescape_elements() function Due to the recent modifications this function is no longer used.
2015-01-03 16:04:13 -05:00
goto quit;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
/* Parse the scope. skip "??" */
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
q = strchr(p, '?');
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(q)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
*q++ = '\0';
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
if(*p) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ludp->lud_scope = str2scope(p);
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
if(ludp->lud_scope == -1) {
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
rc = LDAP_INVALID_SYNTAX;
goto quit;
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
}
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
LDAP_TRACE(("scope %d\n", ludp->lud_scope));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
p = q;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
ldap: Remove the unescape_elements() function Due to the recent modifications this function is no longer used.
2015-01-03 16:04:13 -05:00
goto quit;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
/* Parse the filter */
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
q = strchr(p, '?');
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(q)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
*q++ = '\0';
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
if(*p) {
char *filter = p;
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
char *unescaped;
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
CURLcode result;
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
LDAP_TRACE(("filter '%s'\n", filter));
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
/* Unescape the filter */
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
result = Curl_urldecode(conn->data, filter, 0, &unescaped, NULL, FALSE);
if(result) {
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
rc = LDAP_NO_MEMORY;
goto quit;
}
ldap: Renamed the CURL_LDAP_WIN definition to USE_WIN32_LDAP For consistency with other USE_WIN32_ defines as well as the USE_OPENLDAP define.
2015-01-18 15:25:37 -05:00
#if defined(USE_WIN32_LDAP)
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
/* Convert the unescaped string to a tchar */
ludp->lud_filter = Curl_convert_UTF8_to_tchar(unescaped);
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
/* Free the unescaped string as we are done with it */
Curl_unicodefree(unescaped);
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
if(!ludp->lud_filter) {
rc = LDAP_NO_MEMORY;
goto quit;
}
#else
ldap/imap: Fixed spelling mistake in comments and variable names Reported-by: Michael Osipov
2015-01-07 08:50:56 -05:00
ludp->lud_filter = unescaped;
ldap: Fixed support for Unicode filter in Win32 search call
2015-01-03 15:58:29 -05:00
#endif
}
p = q;
if(p && !*p) {
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
rc = LDAP_INVALID_SYNTAX;
goto quit;
LDAP: fix bad free() when URL parsing failed When an error occurs parsing an LDAP URL, The ludp->lud_attrs[i] entries could be freed even though they sometimes point to data within an allocated area. This change introduces a lud_attrs_dup[] array for the duplicated string pointers, and it removes the unused lud_exts array. Bug: http://curl.haxx.se/mail/lib-2013-08/0209.html
2013-09-05 17:51:53 -04:00
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
quit:
free: instead of Curl_safefree() Since we just started make use of free(NULL) in order to simplify code, this change takes it a step further and: - converts lots of Curl_safefree() calls to good old free() - makes Curl_safefree() not check the pointer before free() The (new) rule of thumb is: if you really want a function call that frees a pointer and then assigns it to NULL, then use Curl_safefree(). But we will prefer just using free() from now on.
2015-03-16 10:01:15 -04:00
free(path);
ldap: fix LDAP URL parsing regressions - Match URL scheme with LDAP and LDAPS - Retrieve attributes, scope and filter from URL query instead Regression brought in 46e164069d1a5230 (7.62.0) Closes #3362
2018-12-11 05:15:15 -05:00
free(query);
ldap: Fixed support for Unicode DN in Win32 search call
2015-01-03 15:36:10 -05:00
return rc;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
static int _ldap_url_parse(const struct connectdata *conn,
LDAPURLDesc **ludpp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
Make usage of calloc()'s arguments consistent with rest of code base
2009-11-18 05:33:54 -05:00
LDAPURLDesc *ludp = calloc(1, sizeof(*ludp));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
int rc;
*ludpp = NULL;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_NO_MEMORY;
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
rc = _ldap_url_parse2(conn, ludp);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
_ldap_free_urldesc(ludp);
ludp = NULL;
}
*ludpp = ludp;
return (rc);
}
escape: avoid using curl_easy_unescape() internally Since the internal Curl_urldecode() function has a better API.
2016-10-08 05:21:38 -04:00
static void _ldap_free_urldesc(LDAPURLDesc *ludp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp)
source cleanup: unify look, style and indent levels By the use of a the new lib/checksrc.pl script that checks that our basic source style rules are followed.
2011-04-20 09:17:42 -04:00
return;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Bug #149: Deletion of unnecessary checks before calls of the function "free" The function "free" is documented in the way that no action shall occur for a passed null pointer. It is therefore not needed that a function caller repeats a corresponding check. http://stackoverflow.com/questions/18775608/free-a-null-pointer-anyway-or-check-first This issue was fixed by using the software Coccinelle 1.0.0-rc24. Signed-off-by: Markus Elfring <elfring@users.sourceforge.net>
2015-03-11 12:41:01 -04:00
free(ludp->lud_dn);
free(ludp->lud_filter);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_attrs) {
lib: reduce variable scopes Fixes Codacy/CppCheck warnings. Closes https://github.com/curl/curl/pull/3872
2019-05-11 15:42:48 -04:00
size_t i;
ldap: fix the build for systems with ldap_url_parse() Make sure that the custom struct fields are only used by code that doesn't use a struct defintion from the outside. Attempts to fix the problem introduced in 3dc6fc42bfc61b
2013-09-08 18:01:52 -04:00
for(i = 0; i < ludp->lud_attrs_dups; i++)
free(ludp->lud_attrs[i]);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
free(ludp->lud_attrs);
}
checksrc: stricter no-space-before-paren enforcement In order to make the code style more uniform everywhere
2016-12-13 17:34:59 -05:00
free(ludp);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
Reversed the 'HAVE_LDAP_URL_PARSE' ifdef statement.
2007-08-22 14:05:46 -04:00
#endif /* !HAVE_LDAP_URL_PARSE */
fix ldap related compilation issues
2010-06-01 11:25:03 -04:00
#endif /* !CURL_DISABLE_LDAP && !USE_OPENLDAP */
Reference in New Issue Copy Permalink