moparisthebest/curl
1
0
Fork 0
mirror of https://github.com/moparisthebest/curl synced 2024-10-31 15:45:12 -04:00
Code Issues Releases Wiki Activity
feecf63a96
curl/lib/ldap.c

723 lines
20 KiB
C
Raw Normal View History

updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
/***************************************************************************
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
* _ _ ____ _
* Project ___| | | | _ \| |
* / __| | | | |_) | |
* | (__| |_| | _ <| |___
Make more human readable and maintainable previous compiler warning fix since it was Ok and actually avoids the targeted compiler warning.
2006-10-29 09:58:59 -05:00
* \___|\___/|_| \_\_____|
Initial revision
1999-12-29 09:20:26 -05:00
*
fix ldap related compilation issues
2010-06-01 11:25:03 -04:00
* Copyright (C) 1998 - 2010, Daniel Stenberg, <daniel@haxx.se>, et al.
Initial revision
1999-12-29 09:20:26 -05:00
*
updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
* This software is licensed as described in the file COPYING, which
* you should have received as part of this distribution. The terms
* are also available at http://curl.haxx.se/docs/copyright.html.
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*
dual-license fix
2001-01-03 04:29:33 -05:00
* You may opt to use, copy, modify, merge, publish, distribute and/or sell
* copies of the Software, and permit persons to whom the Software is
updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
* furnished to do so, under the terms of the COPYING file.
Initial revision
1999-12-29 09:20:26 -05:00
*
dual-license fix
2001-01-03 04:29:33 -05:00
* This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
* KIND, either express or implied.
Initial revision
1999-12-29 09:20:26 -05:00
*
updated source code boilerplate/header
2002-09-03 07:52:59 -04:00
***************************************************************************/
Initial revision
1999-12-29 09:20:26 -05:00
#include "setup.h" moved first of all includes
2000-08-24 10:26:33 -04:00
#include "setup.h"
LDAP: properly implemented as a curl_handler makes the LDAP code much cleaner, nicer and in general being a better libcurl citizen. If a new enough OpenLDAP version is detect, the new and shiny lib/openldap.c code is then used instead of the old cruft Code by Howard, minor cleanups by Daniel.
2010-05-24 18:44:42 -04:00
#if !defined(CURL_DISABLE_LDAP) && !defined(USE_OPENLDAP)
fix ldap related compilation issues
2010-06-01 11:25:03 -04:00
/*
* Notice that USE_OPENLDAP is only a source code selection switch. When
* libcurl is built with USE_OPENLDAP defined the libcurl source code that
* gets compiled is the code from openldap.c, otherwise the code that gets
* compiled is the code from ldap.c.
*
* When USE_OPENLDAP is defined a recent version of the OpenLDAP library
* might be required for compilation and runtime. In order to use ancient
* OpenLDAP library versions, USE_OPENLDAP shall not be defined.
*/
Initial revision
1999-12-29 09:20:26 -05:00
/* -- WIN32 approved -- */
#include <stdio.h>
#include <string.h>
#include <stdarg.h>
#include <stdlib.h>
#include <ctype.h>
#include <errno.h>
Enable OpenLDAP support for cygwin builds. Enable OpenLDAP support for cygwin builds. This support was disabled back in 2008 due to incompatibilities between OpenSSL and OpenLDAP headers. cygwin's OpenSSL 0.9.8l and OpenLDAP 2.3.43 versions on cygwin 1.5.25 allow building an OpenLDAP enabled libcurl supporting back to Windows 95. Remove non-functional CURL_LDAP_HYBRID code and references.
2010-06-04 09:14:31 -04:00
#ifdef CURL_LDAP_WIN /* Use Windows LDAP implementation. */
Ben Greear's minor fix to build (better) with cross-compiled(?) mingw
2004-09-26 02:53:53 -04:00
# include <winldap.h>
added check for MSVC6 standard PSDK and bail out since insufficient for LDAP support with current code.
2007-10-09 19:25:58 -04:00
# ifndef LDAP_VENDOR_NAME
Andre Guibert de Bruet fixed a typo in the error message
2009-03-08 18:45:59 -04:00
# error Your Platform SDK is NOT sufficient for LDAP support! Update your Platform SDK, or disable LDAP support!
added check for MSVC6 standard PSDK and bail out since insufficient for LDAP support with current code.
2007-10-09 19:25:58 -04:00
# else
# include <winber.h>
# endif
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#else
Enable OpenLDAP support for cygwin builds. Enable OpenLDAP support for cygwin builds. This support was disabled back in 2008 due to incompatibilities between OpenSSL and OpenLDAP headers. cygwin's OpenSSL 0.9.8l and OpenLDAP 2.3.43 versions on cygwin 1.5.25 allow building an OpenLDAP enabled libcurl supporting back to Windows 95. Remove non-functional CURL_LDAP_HYBRID code and references.
2010-06-04 09:14:31 -04:00
# define LDAP_DEPRECATED 1 /* Be sure ldap_init() is defined. */
# ifdef HAVE_LBER_H
# include <lber.h>
# endif
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
# include <ldap.h>
Enable OpenLDAP support for cygwin builds. Enable OpenLDAP support for cygwin builds. This support was disabled back in 2008 due to incompatibilities between OpenSSL and OpenLDAP headers. cygwin's OpenSSL 0.9.8l and OpenLDAP 2.3.43 versions on cygwin 1.5.25 allow building an OpenLDAP enabled libcurl supporting back to Windows 95. Remove non-functional CURL_LDAP_HYBRID code and references.
2010-06-04 09:14:31 -04:00
# if (defined(HAVE_LDAP_SSL) && defined(HAVE_LDAP_SSL_H))
# include <ldap_ssl.h>
# endif /* HAVE_LDAP_SSL && HAVE_LDAP_SSL_H */
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#endif
#ifdef HAVE_UNISTD_H
# include <unistd.h>
#endif
Initial revision
1999-12-29 09:20:26 -05:00
#include "urldata.h"
#include <curl/curl.h>
#include "sendf.h"
#include "escape.h"
include progress.h for Curl_pgrsSetDownloadCounter function prototype
2009-11-02 15:04:18 -05:00
#include "progress.h"
bug report #474568 - We need to set "no further data to download" before the Curl_ldap() function returns, as otherwise it'll hang on that assumed transfer.
2001-10-25 04:28:29 -04:00
#include "transfer.h"
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#include "strequal.h"
#include "strtok.h"
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#include "curl_ldap.h"
libcurl's memory.h renamed to curl_memory.h
2009-04-21 07:46:16 -04:00
#include "curl_memory.h"
libcurl internal base64.h header file renamed to curl_base64.h
2008-08-16 20:25:38 -04:00
#include "curl_base64.h"
moved the Curl_raw_ functions into the new lib/rawstr.c file for easier curlx_ inclusion by the curl tool without colliding with the curl_strequal functions.
2008-10-23 07:49:19 -04:00
#include "rawstr.h"
Initial revision
1999-12-29 09:20:26 -05:00
#define _MPRINTF_REPLACE /* use our functions only */
#include <curl/mprintf.h>
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#include "memdebug.h"
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#ifndef HAVE_LDAP_URL_PARSE
Initial revision
1999-12-29 09:20:26 -05:00
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
/* Use our own implementation. */
Initial revision
1999-12-29 09:20:26 -05:00
Simplify and rename internal structure to avoid potential name clash with LDAP header file.
2007-08-13 09:03:08 -04:00
typedef struct {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
char *lud_host;
int lud_port;
char *lud_dn;
char **lud_attrs;
int lud_scope;
char *lud_filter;
char **lud_exts;
Simplify and rename internal structure to avoid potential name clash with LDAP header file.
2007-08-13 09:03:08 -04:00
} CURL_LDAPURLDesc;
#undef LDAPURLDesc
#define LDAPURLDesc CURL_LDAPURLDesc
Henrik Storner's update to make libcurl work with OpenLDAP 2.1.22 (current). Also reported to work with OpenLDAP 2.0.26.
2003-09-01 04:23:31 -04:00
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
static int _ldap_url_parse (const struct connectdata *conn,
LDAPURLDesc **ludp);
static void _ldap_free_urldesc (LDAPURLDesc *ludp);
Simplify and rename internal structure to avoid potential name clash with LDAP header file.
2007-08-13 09:03:08 -04:00
#undef ldap_free_urldesc
#define ldap_free_urldesc _ldap_free_urldesc
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#endif
#ifdef DEBUG_LDAP
#define LDAP_TRACE(x) do { \
_ldap_trace ("%u: ", __LINE__); \
_ldap_trace x; \
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
} while(0)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
static void _ldap_trace (const char *fmt, ...);
#else
#define LDAP_TRACE(x) ((void)0)
#endif
Henrik Storner's update to make libcurl work with OpenLDAP 2.1.22 (current). Also reported to work with OpenLDAP 2.0.26.
2003-09-01 04:23:31 -04:00
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
static CURLcode Curl_ldap(struct connectdata *conn, bool *done);
/*
* LDAP protocol handler.
*/
const struct Curl_handler Curl_handler_ldap = {
"LDAP", /* scheme */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* setup_connection */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
Curl_ldap, /* do_it */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* done */
ZERO_NULL, /* do_more */
ZERO_NULL, /* connect_it */
ZERO_NULL, /* connecting */
ZERO_NULL, /* doing */
ZERO_NULL, /* proto_getsock */
ZERO_NULL, /* doing_getsock */
- Using the libssh2 0.19 function libssh2_session_block_directions(), libcurl now has an improved ability to do right when the multi interface (both "regular" and multi_socket) is used for SCP and SFTP transfers. This should result in (much) less busy-loop situations and thus less CPU usage with no speed loss.
2008-12-19 16:14:52 -05:00
ZERO_NULL, /* perform_getsock */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* disconnect */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
PORT_LDAP, /* defport */
PROT_LDAP /* protocol */
};
#ifdef HAVE_LDAP_SSL
/*
* LDAPS protocol handler.
*/
const struct Curl_handler Curl_handler_ldaps = {
"LDAPS", /* scheme */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* setup_connection */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
Curl_ldap, /* do_it */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* done */
ZERO_NULL, /* do_more */
ZERO_NULL, /* connect_it */
ZERO_NULL, /* connecting */
ZERO_NULL, /* doing */
ZERO_NULL, /* proto_getsock */
ZERO_NULL, /* doing_getsock */
- Using the libssh2 0.19 function libssh2_session_block_directions(), libcurl now has an improved ability to do right when the multi interface (both "regular" and multi_socket) is used for SCP and SFTP transfers. This should result in (much) less busy-loop situations and thus less CPU usage with no speed loss.
2008-12-19 16:14:52 -05:00
ZERO_NULL, /* perform_getsock */
We use this ZERO_NULL to avoid picky compiler warnings, when assigning a NULL pointer to a function pointer var.
2007-10-17 12:58:32 -04:00
ZERO_NULL, /* disconnect */
Added per-protocol callback static tables, replacing callback ptr storage in the connectdata structure by a single handler table ptr.
2007-10-12 09:36:37 -04:00
PORT_LDAPS, /* defport */
PROT_LDAP | PROT_SSL /* protocol */
};
#endif
static CURLcode Curl_ldap(struct connectdata *conn, bool *done)
Initial revision
1999-12-29 09:20:26 -05:00
{
moved here from the newlib branch
2000-05-22 10:12:12 -04:00
CURLcode status = CURLE_OK;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
int rc = 0;
fixed warning about uninitialized.
2007-08-16 11:23:39 -04:00
LDAP *server = NULL;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
LDAPURLDesc *ludp = NULL;
added ldap_msgfree() to fix memory leak.
2007-08-15 04:18:37 -04:00
LDAPMessage *result = NULL;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
LDAPMessage *entryIterator;
unused variable removed
2004-05-06 03:22:32 -04:00
int num = 0;
Major rename and redesign of the internal "backbone" structs. Details will be posted in a minute to the libcurl list.
2001-08-30 18:48:34 -04:00
struct SessionHandle *data=conn->data;
fixed ldap support for winldap.
2007-09-15 16:03:03 -04:00
int ldap_proto = LDAP_VERSION3;
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
int ldap_ssl = 0;
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
char *val_b64;
size_t val_b64_sz;
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
curl_off_t dlsize=0;
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#ifdef LDAP_OPT_NETWORK_TIMEOUT
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
struct timeval ldap_timeout = {10,0}; /* 10 sec connection/search timeout */
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#endif
Initial revision
1999-12-29 09:20:26 -05:00
FTP code turned into state machine. Not completely yet, but a good start. The tag 'before_ftp_statemachine' was set just before this commit in case of future need.
2005-02-09 08:06:40 -05:00
*done = TRUE; /* unconditionally */
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
infof(data, "LDAP local: LDAP Vendor = %s ; LDAP Version = %d\n",
LDAP_VENDOR_NAME, LDAP_VENDOR_VERSION);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
infof(data, "LDAP local: %s\n", data->change.url);
Reversed the 'HAVE_LDAP_URL_PARSE' ifdef statement.
2007-08-22 14:05:46 -04:00
#ifdef HAVE_LDAP_URL_PARSE
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
rc = ldap_url_parse(data->change.url, &ludp);
Reversed the 'HAVE_LDAP_URL_PARSE' ifdef statement.
2007-08-22 14:05:46 -04:00
#else
rc = _ldap_url_parse(conn, &ludp);
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
#endif
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != 0) {
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
failf(data, "LDAP local: %s", ldap_err2string(rc));
status = CURLE_LDAP_INVALID_URL;
goto quit;
}
/* Get the URL scheme ( either ldap or ldaps ) */
Remove pointless storing of the protocol as a string within the connectdata struct, and instead use the already stored string in the handler struct.
2009-12-17 10:45:04 -05:00
if(conn->protocol & PROT_SSL)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_ssl = 1;
infof(data, "LDAP local: trying to establish %s connection\n",
ldap_ssl ? "encrypted" : "cleartext");
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#ifdef LDAP_OPT_NETWORK_TIMEOUT
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_set_option(NULL, LDAP_OPT_NETWORK_TIMEOUT, &ldap_timeout);
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#endif
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_set_option(NULL, LDAP_OPT_PROTOCOL_VERSION, &ldap_proto);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ldap_ssl) {
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
#ifdef HAVE_LDAP_SSL
#ifdef CURL_LDAP_WIN
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
/* Win32 LDAP SDK doesnt support insecure mode without CA! */
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
server = ldap_sslinit(conn->host.name, (int)conn->port, 1);
ldap_set_option(server, LDAP_OPT_SSL, LDAP_OPT_ON);
#else
fixed warning with unused var; removed now obsolete defines since we include now ldap headers which define these.
2007-08-20 19:31:26 -04:00
int ldap_option;
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
char* ldap_ca = data->set.str[STRING_SSL_CAFILE];
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#if defined(CURL_HAS_NOVELL_LDAPSDK)
rc = ldapssl_client_init(NULL, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ldapssl_client_init %s", ldap_err2string(rc));
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(data->set.ssl.verifypeer) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
/* Novell SDK supports DER or BASE64 files. */
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
int cert_type = LDAPSSL_CERT_FILETYPE_B64;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if((data->set.str[STRING_CERT_TYPE]) &&
Renamed Curl_ascii_equal to Curl_raw_equal and bugfixed the my_toupper function used in strequal.c so now all test cases run fine for me again.
2008-10-16 04:23:48 -04:00
(Curl_raw_equal(data->set.str[STRING_CERT_TYPE], "DER")))
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
cert_type = LDAPSSL_CERT_FILETYPE_DER;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ldap_ca) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR %s CA cert not set!",
(cert_type == LDAPSSL_CERT_FILETYPE_DER ? "DER" : "PEM"));
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
infof(data, "LDAP local: using %s CA cert '%s'\n",
(cert_type == LDAPSSL_CERT_FILETYPE_DER ? "DER" : "PEM"),
ldap_ca);
rc = ldapssl_add_trusted_cert(ldap_ca, cert_type);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR setting %s CA cert: %s",
(cert_type == LDAPSSL_CERT_FILETYPE_DER ? "DER" : "PEM"),
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
ldap_err2string(rc));
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
ldap_option = LDAPSSL_VERIFY_SERVER;
} else {
ldap_option = LDAPSSL_VERIFY_NONE;
}
rc = ldapssl_set_verify_mode(ldap_option);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR setting cert verify mode: %s",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
ldap_err2string(rc));
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
server = ldapssl_init(conn->host.name, (int)conn->port, 1);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server == NULL) {
fix printf-style format strings
2010-02-04 14:44:31 -05:00
failf(data, "LDAP local: Cannot connect to %s:%hu",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
conn->host.name, conn->port);
status = CURLE_COULDNT_CONNECT;
goto quit;
}
#elif defined(LDAP_OPT_X_TLS)
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(data->set.ssl.verifypeer) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
/* OpenLDAP SDK supports BASE64 files. */
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if((data->set.str[STRING_CERT_TYPE]) &&
Renamed Curl_ascii_equal to Curl_raw_equal and bugfixed the my_toupper function used in strequal.c so now all test cases run fine for me again.
2008-10-16 04:23:48 -04:00
(!Curl_raw_equal(data->set.str[STRING_CERT_TYPE], "PEM"))) {
bail out with error if someone tries to use another cert than PEM with OpenLDAP.
2007-08-25 08:10:30 -04:00
failf(data, "LDAP local: ERROR OpenLDAP does only support PEM cert-type!");
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ldap_ca) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR PEM CA cert not set!");
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
infof(data, "LDAP local: using PEM CA cert: %s\n", ldap_ca);
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
rc = ldap_set_option(NULL, LDAP_OPT_X_TLS_CACERTFILE, ldap_ca);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
failf(data, "LDAP local: ERROR setting PEM CA cert: %s",
ldap_err2string(rc));
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
ldap_option = LDAP_OPT_X_TLS_DEMAND;
} else {
ldap_option = LDAP_OPT_X_TLS_NEVER;
}
rc = ldap_set_option(NULL, LDAP_OPT_X_TLS_REQUIRE_CERT, &ldap_option);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ERROR setting cert verify mode: %s",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
ldap_err2string(rc));
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
server = ldap_init(conn->host.name, (int)conn->port);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server == NULL) {
fix printf-style format strings
2010-02-04 14:44:31 -05:00
failf(data, "LDAP local: Cannot connect to %s:%hu",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
conn->host.name, conn->port);
status = CURLE_COULDNT_CONNECT;
goto quit;
}
ldap_option = LDAP_OPT_X_TLS_HARD;
rc = ldap_set_option(server, LDAP_OPT_X_TLS, &ldap_option);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
failf(data, "LDAP local: ERROR setting SSL/TLS mode: %s",
ldap_err2string(rc));
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
for now comment the tls_start section...
2007-08-22 06:14:57 -04:00
/*
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
rc = ldap_start_tls_s(server, NULL, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
failf(data, "LDAP local: ERROR starting SSL/TLS mode: %s",
ldap_err2string(rc));
status = CURLE_SSL_CERTPROBLEM;
goto quit;
}
for now comment the tls_start section...
2007-08-22 06:14:57 -04:00
*/
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#else
/* we should probably never come up to here since configure
should check in first place if we can support LDAP SSL/TLS */
failf(data, "LDAP local: SSL/TLS not supported with this version "
"of the OpenLDAP toolkit\n");
status = CURLE_SSL_CERTPROBLEM;
goto quit;
#endif
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
#endif
#endif /* CURL_LDAP_USE_SSL */
} else {
server = ldap_init(conn->host.name, (int)conn->port);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server == NULL) {
fix printf-style format strings
2010-02-04 14:44:31 -05:00
failf(data, "LDAP local: Cannot connect to %s:%hu",
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
conn->host.name, conn->port);
status = CURLE_COULDNT_CONNECT;
goto quit;
}
Make sure DynaGetFunction() returns a function pointer, not a data pointer. The standards don't actually allow typecasts between data and functions so some picky compilers warn about this.
2004-02-06 02:28:49 -05:00
}
fixed ldap support for winldap.
2007-09-15 16:03:03 -04:00
#ifdef CURL_LDAP_WIN
ldap_set_option(server, LDAP_OPT_PROTOCOL_VERSION, &ldap_proto);
#endif
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
rc = ldap_simple_bind_s(server,
conn->bits.user_passwd ? conn->user : NULL,
conn->bits.user_passwd ? conn->passwd : NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ldap_ssl && rc != 0) {
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
ldap_proto = LDAP_VERSION2;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ldap_set_option(server, LDAP_OPT_PROTOCOL_VERSION, &ldap_proto);
rc = ldap_simple_bind_s(server,
conn->bits.user_passwd ? conn->user : NULL,
conn->bits.user_passwd ? conn->passwd : NULL);
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != 0) {
added support for CA cert verification; default now to verify cert unless data->set.ssl.verifypeer is 0.
2007-08-22 20:10:56 -04:00
failf(data, "LDAP local: ldap_simple_bind_s %s", ldap_err2string(rc));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
status = CURLE_LDAP_CANNOT_BIND;
goto quit;
}
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
rc = ldap_search_s(server, ludp->lud_dn, ludp->lud_scope,
ludp->lud_filter, ludp->lud_attrs, 0, &result);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != 0 && rc != LDAP_SIZELIMIT_EXCEEDED) {
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
failf(data, "LDAP remote: %s", ldap_err2string(rc));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
status = CURLE_LDAP_SEARCH_FAILED;
goto quit;
}
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
for(num = 0, entryIterator = ldap_first_entry(server, result);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
entryIterator;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
entryIterator = ldap_next_entry(server, entryIterator), num++)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
BerElement *ber = NULL;
char *attribute; /*! suspicious that this isn't 'const' */
char *dn = ldap_get_dn(server, entryIterator);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
int i;
Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE command on subsequent requests on a re-used connection unless it has to.
2006-08-19 17:18:36 -04:00
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"DN: ", 4);
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)dn, 0);
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\n", 1);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize += strlen(dn)+5;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
for (attribute = ldap_first_attribute(server, entryIterator, &ber);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
attribute;
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
attribute = ldap_next_attribute(server, entryIterator, ber))
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
BerValue **vals = ldap_get_values_len(server, entryIterator, attribute);
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(vals != NULL)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
for (i = 0; (vals[i] != NULL); i++)
{
Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE command on subsequent requests on a re-used connection unless it has to.
2006-08-19 17:18:36 -04:00
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\t", 1);
Curl_client_write(conn, CLIENTWRITE_BODY, (char *) attribute, 0);
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)": ", 2);
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize += strlen(attribute)+3;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if((strlen(attribute) > 7) &&
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
(strcmp(";binary",
(char *)attribute +
(strlen((char *)attribute) - 7)) == 0)) {
/* Binary attribute, encode to base64. */
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
val_b64_sz = Curl_base64_encode(data,
- David McCreedy made changes to allow base64 encoding/decoding to work on non-ASCII platforms.
2007-01-03 18:04:38 -05:00
vals[i]->bv_val,
vals[i]->bv_len,
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
&val_b64);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(val_b64_sz > 0) {
Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE command on subsequent requests on a re-used connection unless it has to.
2006-08-19 17:18:36 -04:00
Curl_client_write(conn, CLIENTWRITE_BODY, val_b64, val_b64_sz);
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
free(val_b64);
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize += val_b64_sz;
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
}
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
}
else {
Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE command on subsequent requests on a re-used connection unless it has to.
2006-08-19 17:18:36 -04:00
Curl_client_write(conn, CLIENTWRITE_BODY, vals[i]->bv_val,
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
vals[i]->bv_len);
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize += vals[i]->bv_len;
}
Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE command on subsequent requests on a re-used connection unless it has to.
2006-08-19 17:18:36 -04:00
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\n", 0);
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize++;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
/* Free memory used to store values */
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ldap_value_free_len(vals);
Initial revision
1999-12-29 09:20:26 -05:00
}
Based on a patch by Armel Asselin, the FTP code no longer re-issues the TYPE command on subsequent requests on a re-used connection unless it has to.
2006-08-19 17:18:36 -04:00
Curl_client_write(conn, CLIENTWRITE_BODY, (char *)"\n", 1);
- As reported independent by both Stan van de Burgt and Didier Brisebourg, CURLINFO_SIZE_DOWNLOAD (the -w variable size_download) didn't work when getting data from ldap!
2009-11-02 13:49:56 -05:00
dlsize++;
Curl_pgrsSetDownloadCounter(data, dlsize);
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ldap_memfree(attribute);
Initial revision
1999-12-29 09:20:26 -05:00
}
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ldap_memfree(dn);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ber)
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
ber_free(ber, 0);
Initial revision
1999-12-29 09:20:26 -05:00
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
quit:
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(result) {
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_msgfree(result);
LDAP_TRACE (("Received %d entries\n", num));
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc == LDAP_SIZELIMIT_EXCEEDED)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
infof(data, "There are more than %d entries\n", num);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_free_urldesc(ludp);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(server)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldap_unbind_s(server);
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#if defined(HAVE_LDAP_SSL) && defined(CURL_HAS_NOVELL_LDAPSDK)
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ldap_ssl)
added basic ldaps support; for now its ifdef'd with HAVE_LDAP_SSL unless we know its fully working, and available with all LDAP SDKs. Win32 requires to have the trusted CA in local keystore - I've not found yet a way to disable the cert check.
2007-08-16 10:08:47 -04:00
ldapssl_client_deinit();
fixed ldaps section for OpenLDAP. Still not working, but at least it compiles now, and should serve as base to get it finally working. Also seems that the ifdefs can be arranged some better because the Solaris and Netscape/iPlanet/Mozilla LDAP SDKs seem to be closer to the Novell section than the OpenLDAP one.
2007-08-20 12:30:41 -04:00
#endif /* HAVE_LDAP_SSL && CURL_HAS_NOVELL_LDAPSDK */
bug report #474568 - We need to set "no further data to download" before the Curl_ldap() function returns, as otherwise it'll hang on that assumed transfer.
2001-10-25 04:28:29 -04:00
/* no data to transfer */
Major overhaul introducing http pipelining support and shared connection cache within the multi handle.
2006-09-07 17:49:20 -04:00
Curl_setup_transfer(conn, -1, -1, FALSE, NULL, -1, NULL);
Set 'bits.close' in case of malloc fail. Don't free 'lud_dn' twice in case curl_unescape() fails.
2005-02-09 09:28:35 -05:00
conn->bits.close = TRUE;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Initial revision
1999-12-29 09:20:26 -05:00
return status;
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
#ifdef DEBUG_LDAP
static void _ldap_trace (const char *fmt, ...)
{
static int do_trace = -1;
va_list args;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(do_trace == -1) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
const char *env = getenv("CURL_TRACE");
do_trace = (env && atoi(env) > 0);
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!do_trace)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return;
va_start (args, fmt);
vfprintf (stderr, fmt, args);
va_end (args);
}
added disable-[protocol] support, largely provided by Miklos Nemeth
2002-06-11 07:13:01 -04:00
#endif
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Patrick Monnerat modified the LDAP code and approach in curl. Starting now, the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-08-11 16:57:54 -04:00
#ifndef HAVE_LDAP_URL_PARSE
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
/*
* Return scope-value for a scope-string.
*/
static int str2scope (const char *p)
{
Oops, should have removed 'not' in previous commit.
2009-12-30 14:43:12 -05:00
if(strequal(p, "one"))
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_SCOPE_ONELEVEL;
Oops, should have removed 'not' in previous commit.
2009-12-30 14:43:12 -05:00
if(strequal(p, "onetree"))
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_SCOPE_ONELEVEL;
Oops, should have removed 'not' in previous commit.
2009-12-30 14:43:12 -05:00
if(strequal(p, "base"))
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_SCOPE_BASE;
Oops, should have removed 'not' in previous commit.
2009-12-30 14:43:12 -05:00
if(strequal(p, "sub"))
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_SCOPE_SUBTREE;
Oops, should have removed 'not' in previous commit.
2009-12-30 14:43:12 -05:00
if(strequal( p, "subtree"))
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_SCOPE_SUBTREE;
return (-1);
}
/*
* Split 'str' into strings separated by commas.
* Note: res[] points into 'str'.
*/
static char **split_str (char *str)
{
char **res, *lasts, *s;
int i;
for (i = 2, s = strchr(str,','); s; i++)
s = strchr(++s,',');
res = calloc(i, sizeof(char*));
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!res)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return NULL;
for (i = 0, s = strtok_r(str, ",", &lasts); s;
s = strtok_r(NULL, ",", &lasts), i++)
res[i] = s;
return res;
}
/*
* Unescape the LDAP-URL components
*/
First commit of David McCreedy's EBCDIC and TPF changes.
2006-04-07 17:50:47 -04:00
static bool unescape_elements (void *data, LDAPURLDesc *ludp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
{
int i;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_filter) {
curl_easy_unescape() takes 4 arguments.
2006-04-08 07:01:40 -04:00
ludp->lud_filter = curl_easy_unescape(data, ludp->lud_filter, 0, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp->lud_filter)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return (FALSE);
}
for (i = 0; ludp->lud_attrs && ludp->lud_attrs[i]; i++) {
curl_easy_unescape() takes 4 arguments.
2006-04-08 07:01:40 -04:00
ludp->lud_attrs[i] = curl_easy_unescape(data, ludp->lud_attrs[i], 0, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp->lud_attrs[i])
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return (FALSE);
}
for (i = 0; ludp->lud_exts && ludp->lud_exts[i]; i++) {
curl_easy_unescape() takes 4 arguments.
2006-04-08 07:01:40 -04:00
ludp->lud_exts[i] = curl_easy_unescape(data, ludp->lud_exts[i], 0, NULL);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp->lud_exts[i])
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return (FALSE);
}
Gisle fixed the problem with ldap_search_s() fails with "filter error": a case of using 'lud_filter' after freeing 'lud_dn'.
2004-05-03 11:01:34 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_dn) {
Gisle fixed the problem with ldap_search_s() fails with "filter error": a case of using 'lud_filter' after freeing 'lud_dn'.
2004-05-03 11:01:34 -04:00
char *dn = ludp->lud_dn;
curl_easy_unescape() takes 4 arguments.
2006-04-08 07:01:40 -04:00
char *new_dn = curl_easy_unescape(data, dn, 0, NULL);
Gisle fixed the problem with ldap_search_s() fails with "filter error": a case of using 'lud_filter' after freeing 'lud_dn'.
2004-05-03 11:01:34 -04:00
free(dn);
Set 'bits.close' in case of malloc fail. Don't free 'lud_dn' twice in case curl_unescape() fails.
2005-02-09 09:28:35 -05:00
ludp->lud_dn = new_dn;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!new_dn)
Gisle fixed the problem with ldap_search_s() fails with "filter error": a case of using 'lud_filter' after freeing 'lud_dn'.
2004-05-03 11:01:34 -04:00
return (FALSE);
}
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return (TRUE);
}
/*
* Break apart the pieces of an LDAP URL.
* Syntax:
* ldap://<hostname>:<port>/<base_dn>?<attributes>?<scope>?<filter>?<ext>
*
* <hostname> already known from 'conn->host.name'.
* <port> already known from 'conn->remote_port'.
reqdata doesn't exist anymore and the path moved to the UrlState struct
2007-11-24 18:18:21 -05:00
* extract the rest from 'conn->data->state.path+1'. All fields are optional.
Update comment reflecting structure change.
2006-09-08 08:17:58 -04:00
* e.g.
* ldap://<hostname>:<port>/?<attributes>?<scope>?<filter>
* yields ludp->lud_dn = "".
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*
Update LDAP URL format reference
2009-10-13 10:48:35 -04:00
* Defined in RFC4516 section 2.
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*/
static int _ldap_url_parse2 (const struct connectdata *conn, LDAPURLDesc *ludp)
{
char *p, *q;
int i;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!conn->data ||
reqdata doesn't exist anymore and the path moved to the UrlState struct
2007-11-24 18:18:21 -05:00
!conn->data->state.path ||
conn->data->state.path[0] != '/' ||
Fix compilation failure
2009-12-17 15:01:24 -05:00
!checkprefix("LDAP", conn->data->change.url))
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_INVALID_SYNTAX;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ludp->lud_scope = LDAP_SCOPE_BASE;
ludp->lud_port = conn->remote_port;
ludp->lud_host = conn->host.name;
/* parse DN (Distinguished Name).
*/
reqdata doesn't exist anymore and the path moved to the UrlState struct
2007-11-24 18:18:21 -05:00
ludp->lud_dn = strdup(conn->data->state.path+1);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp->lud_dn)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_NO_MEMORY;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
p = strchr(ludp->lud_dn, '?');
Vilmos Nebehaj improved libcurl's LDAP abilities: The LDAP code in libcurl can't handle LDAP servers of LDAPv3 nor binary attributes in LDAP objects. So, I made a quick patch to address these problems. The solution is simple: if we connect to an LDAP server, first try LDAPv3 (which is the preferred protocol as of now) and then fall back to LDAPv2. In case of binary attributes, we first convert them to base64, just like the openldap client does. It uses ldap_get_values_len() instead of ldap_get_values() to be able to retrieve binary attributes correctly. I defined the necessary LDAP macros in lib/ldap.c to be able to compile libcurl without the presence of libldap
2005-10-31 03:55:01 -05:00
LDAP_TRACE (("DN '%.*s'\n", p ? (size_t)(p-ludp->lud_dn) :
strlen(ludp->lud_dn), ludp->lud_dn));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
goto success;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
*p++ = '\0';
/* parse attributes. skip "??".
*/
q = strchr(p, '?');
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(q)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
*q++ = '\0';
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(*p && *p != '?') {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ludp->lud_attrs = split_str(p);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp->lud_attrs)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_NO_MEMORY;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
for (i = 0; ludp->lud_attrs[i]; i++)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
LDAP_TRACE (("attr[%d] '%s'\n", i, ludp->lud_attrs[i]));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
}
p = q;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
goto success;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
/* parse scope. skip "??"
*/
q = strchr(p, '?');
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(q)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
*q++ = '\0';
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(*p && *p != '?') {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ludp->lud_scope = str2scope(p);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_scope == -1)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_INVALID_SYNTAX;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
LDAP_TRACE (("scope %d\n", ludp->lud_scope));
}
p = q;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
goto success;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
/* parse filter
*/
q = strchr(p, '?');
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(q)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
*q++ = '\0';
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!*p)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_INVALID_SYNTAX;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
ludp->lud_filter = p;
LDAP_TRACE (("filter '%s'\n", ludp->lud_filter));
p = q;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!p)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
goto success;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
/* parse extensions
*/
ludp->lud_exts = split_str(p);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp->lud_exts)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_NO_MEMORY;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
for (i = 0; ludp->lud_exts[i]; i++)
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
LDAP_TRACE (("exts[%d] '%s'\n", i, ludp->lud_exts[i]));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
success:
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!unescape_elements(conn->data, ludp))
Fixed the LDAP_DEPRECATED #define as suggested by Daniel Johnson, and indented some of the code to curl-style
2007-08-12 18:25:50 -04:00
return LDAP_NO_MEMORY;
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_SUCCESS;
}
static int _ldap_url_parse (const struct connectdata *conn,
LDAPURLDesc **ludpp)
{
Make usage of calloc()'s arguments consistent with rest of code base
2009-11-18 05:33:54 -05:00
LDAPURLDesc *ludp = calloc(1, sizeof(*ludp));
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
int rc;
*ludpp = NULL;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return LDAP_NO_MEMORY;
rc = _ldap_url_parse2 (conn, ludp);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(rc != LDAP_SUCCESS) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
_ldap_free_urldesc(ludp);
ludp = NULL;
}
*ludpp = ludp;
return (rc);
}
static void _ldap_free_urldesc (LDAPURLDesc *ludp)
{
int i;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(!ludp)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
return;
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_dn)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
free(ludp->lud_dn);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_filter)
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
free(ludp->lud_filter);
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_attrs) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
for (i = 0; ludp->lud_attrs[i]; i++)
free(ludp->lud_attrs[i]);
free(ludp->lud_attrs);
}
removed space after if and while before the parenthesis for better source code consistency
2007-11-05 04:45:09 -05:00
if(ludp->lud_exts) {
Gisle Vanem: Patch for ldap.c under Windows. It works with wldap32.dll as supplied with Win-98/ME/2000/XP, so no extra .dlls are required. I've mostly tested it against Verisign's ldap server. Added code in the case there are to many responses (rc = LDAP_SIZELIMIT_EXCEEDED) and print only those we got. E.g. curl ldap://directory.verisign.net/?cn,display-name,mail,info?subtree?(cn=*Nelson*) will print the first 10 results. My only problem with it is that ldap_search_s() fails with "filter error" when CURLDEBUG is defined ?! Maybe someone can spot the error.
2004-05-03 05:14:12 -04:00
for (i = 0; ludp->lud_exts[i]; i++)
free(ludp->lud_exts[i]);
free(ludp->lud_exts);
}
free (ludp);
}
Reversed the 'HAVE_LDAP_URL_PARSE' ifdef statement.
2007-08-22 14:05:46 -04:00
#endif /* !HAVE_LDAP_URL_PARSE */
fix ldap related compilation issues
2010-06-01 11:25:03 -04:00
#endif /* !CURL_DISABLE_LDAP && !USE_OPENLDAP */
Reference in New Issue Copy Permalink