Commits · 6f78f933eb5707fc159b0628f1e2652ab24e8f4b · James Lowden / OpenLDAP

Jul 16, 2020
- ITS#9287 · 6f78f933
  Quanah Gibson-Mount authored 4 years ago
  
  6f78f933
- ITS#9287 use getaddrinfo for ldap_pvt_get_fqdn · c91cafcf
  Howard Chu authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  If getaddrinfo is available, should use it here
  c91cafcf
Jul 15, 2020
- Issue#9289 · 50fdb180
  Quanah Gibson-Mount authored 4 years ago
  
  50fdb180
- Issue#9289 - Update URL from DMOZ to Curlie · 9ad64ae8
  Quanah Gibson-Mount authored 4 years ago
  
  9ad64ae8
Jul 08, 2020
- ITS#9285 · 65e8f210
  Quanah Gibson-Mount authored 4 years ago
  
  65e8f210
- ITS#9285 don't hide ppolicy control · 2a996530
  Howard Chu authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  2a996530
Jun 22, 2020
- ITS #9275 -- Update wording to remove slave and master terms, consolidate on provider/consumer · e4067862
  Quanah Gibson-Mount authored 4 years ago
  
  e4067862
Jun 01, 2020
- Issue#9248 · a2c81aeb
  Quanah Gibson-Mount authored 4 years ago
  
  a2c81aeb
- Issue#9248 - Fix default prefix value · 07e2929c
  Quanah Gibson-Mount authored 4 years ago
  
  07e2929c
May 28, 2020
- ITS#9271 · 9b5ff10c
  Quanah Gibson-Mount authored 4 years ago
  
  9b5ff10c
- ITS#9271 Document ldap_parse_intermediate · f993c9f4
  Ondřej Kuzník authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  f993c9f4
May 15, 2020
- Another typo fix in CHANGES file · a05f926a
  Quanah Gibson-Mount authored 4 years ago
  
  a05f926a
- Fix minor typo in CHANGES file · c2e2e16f
  Quanah Gibson-Mount authored 4 years ago
  
  c2e2e16f
May 12, 2020
- ITS#7573 · 8c75b711
  Quanah Gibson-Mount authored 4 years ago
  
  8c75b711
- ITS#7573 Fix back-perl dynamic config with threaded slapd · 8c7f26b1
  Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  8c7f26b1
May 11, 2020
- ITS#9227 · efc517cc
  Quanah Gibson-Mount authored 4 years ago
  
  efc517cc
- ITS#9227 fix attr / opattr detection in prev commit · 1532254d
  Howard Chu authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  1532254d
- ITS#9227 syncrepl: don't delete non-replicated attrs · cc79c9e8
  Howard Chu authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  cc79c9e8
Apr 30, 2020
- add missing line for back_mdb · 2f938166
  Quanah Gibson-Mount authored 4 years ago
  
  2f938166
Apr 28, 2020
- ITS#8650 is really fixed now... · ef627e47
  Quanah Gibson-Mount authored 4 years ago
  
  ef627e47
- ITS#8650 - Fix Debug usage to follow RE24 format · 85fc8974
  Quanah Gibson-Mount authored 4 years ago
  
  85fc8974
- Return to RE · 939527c2
  Quanah Gibson-Mount authored 4 years ago
  
  939527c2
- Increase timeout for RE24 to 2 hours due to bdb/hdb tests taking so long · 84f12485
  Quanah Gibson-Mount authored 4 years ago
  
  84f12485
- Set 2.4.50 release · 733124b3
  Quanah Gibson-Mount authored 4 years ago
  
  View commits for tag OPENLDAP_REL_ENG_2_4_50 OPENLDAP_REL_ENG_2_4_50
  
  733124b3
- ITS#9202 · 226626d4
  Quanah Gibson-Mount authored 4 years ago
  
  226626d4
- ITS#9202 limit depth of nested filters · 98464c11
  Howard Chu authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  Using a hardcoded limit for now; no reasonable apps should ever run into it.
  98464c11
Apr 22, 2020
- ITS#9230 · 9ab0dfdb
  Quanah Gibson-Mount authored 4 years ago
  
  9ab0dfdb
- ITS#9230 - Update man page information on the truncate option for RE24. · 784dc863
  Quanah Gibson-Mount authored 4 years ago
  
  784dc863
Apr 21, 2020

ITS#9233, ITS#8575, ITS#9203, ITS#9206 · 38412073
Quanah Gibson-Mount authored 4 years ago

38412073
ITS#9203 Remove default values from slapd-pw-argon2.5 · ba50189b
Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
```
The defaults vary by crypto library and possibly even version, so it's
not worth trying to keep them accurate.
```
ba50189b
ITS#9206 Use argon2id default values explicitly · 59bed7e6
Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago

59bed7e6
ITS#9206 Convert libsodium default memlimit to KiB · 07405636
Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago

07405636
ITS#9206 Initialize libsodium before calling its functions · 511ad098
Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago

511ad098

ITS#9206 contrib/passwd/argon2: consolidate libsodium implementation · 8ff81631

Peter Marschall authored 4 years ago and

Quanah Gibson-Mount committed 4 years ago


* use 'crypto_pwhash_str_alg(..., crypto_pwhash_ALG_ARGON2ID13)' to set
  the algorithm to Argon2.
  According to libsodium's documentation, the original 'crypto_pwhash_str()'
  only guarantees a "memory-hard, CPU-intensive hash function", but not
  necessarily Argon2.  Although in released versions of libsodium Argon2 is
  the only implemented backend, this may chane in the future.
* multiply the 'memory' parameter by 1024 to align it with the libargon2
  implementation. The objective is to have consistent configuration in
  OpenLDAP's pw-argon2 module no matter what backend implementation is used.

Signed-off-by: Peter Marschall <peter@adpm.de>

8ff81631

ITS#9203 slapd-argon2 -> pw-argon2 · 0ff54ddf
Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
```
Based on initial patch by Peter Marschall.
```
0ff54ddf
ITS#9203 contrib/passwd/argon2: add manual page · 997ff449
Peter Marschall authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
```
Add manual page slapd-pw-argon2.5 and make sure it gets installed.

Signed-off-by: Peter Marschall <peter@adpm.de>
```
997ff449
ITS#8575 Accept parameters for hashing new passwords · b643f7fc
Ondřej Kuzník authored 5 years ago and Quanah Gibson-Mount committed 4 years ago

b643f7fc
ITS#8575 Add a libsodium based implementation · 793f6ecd
Ondřej Kuzník authored 5 years ago and Quanah Gibson-Mount committed 4 years ago

793f6ecd

ITS#8575 Implement argon2 password hashing as a module · 2210a3bd

Simon Levermann authored 8 years ago and

Quanah Gibson-Mount committed 4 years ago

This change implements argon2, which won the Password Hashing
Competition (https://password-hashing.net/) as a contrib-module in order
to provide a modern password hashing alternative in openldap. The
currently available password hashing algorithms are relatively old, and
modern hardware, especially GPUs can compute quite a few (ranging from
tens of thousands to millions) of hashes per second. Argon2 was designed
to withstand such attacks.

This implementation uses the default work factors used in the argon2
command line client, but the resulting hashes are stored in a way that
would allow retroactive changes to these values, or even exposing them
as configuration in the module.

2210a3bd

Apr 16, 2020
- ITS#9181 fix ldap_pvt_thread_mutex_t used before its definition · 0daf8012
  Ryan Tandy authored 4 years ago and Quanah Gibson-Mount committed 4 years ago
  
  0daf8012