openldap.git branch master updated. 47e0e3fdb59d8be9cc44e814ba03684d352916a6

A ref change was pushed to the OpenLDAP (openldap.git) repository. It will be available in the public mirror shortly.

The branch, master has been updated via 47e0e3fdb59d8be9cc44e814ba03684d352916a6 (commit) via 73368277693c72bdc2347c71c046e5aff9305446 (commit) via 4bb239bd769df2cfc84f2ccc72732eae1393d826 (commit) via 816d94b221c8368a38d0fd2155c5ae0439b0e57b (commit) via be61a967e632fdf7836b6efb4e0fc2776d9d3e52 (commit) via 9835662927a3dc43875bc1f8780c1f49f6c34e69 (commit) via 28828e1b402ee0f6b365216917dbbcf1e528a80f (commit) via af5ed7c6e27d596dbed440c9a20c2f28f125f846 (commit) via 8bb8905b64204c38b3c490ea2cf5ea4ce0743bbc (commit) via 7e3822f3bbe60c1df910d2172c0e06c691f973c8 (commit) from 02eb0b6fe845e7eecf3f8d3e4e5c91e684cd06bf (commit)

Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below.

- Log ----------------------------------------------------------------- commit 47e0e3fdb59d8be9cc44e814ba03684d352916a6 Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 09:03:59 2020 +0000

ITS#9160 OOM handling in back-asyncmeta

commit 73368277693c72bdc2347c71c046e5aff9305446 Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 09:03:41 2020 +0000

ITS#9160 OOM handling in back-meta

commit 4bb239bd769df2cfc84f2ccc72732eae1393d826 Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 09:02:25 2020 +0000

ITS#9160 OOM handling in libldap

commit 816d94b221c8368a38d0fd2155c5ae0439b0e57b Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 09:01:32 2020 +0000

ITS#9160 OOM handling in slapd

commit be61a967e632fdf7836b6efb4e0fc2776d9d3e52 Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 08:59:57 2020 +0000

ITS#9160 OOM handling in mdb tools

commit 9835662927a3dc43875bc1f8780c1f49f6c34e69 Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 08:58:50 2020 +0000

ITS#9160 OOM handling in test programs

commit 28828e1b402ee0f6b365216917dbbcf1e528a80f Author: Ondřej Kuzník ondra@mistotebe.net Date: Thu Jan 30 08:55:59 2020 +0000

ITS#9160 OOM handling in contrib

commit af5ed7c6e27d596dbed440c9a20c2f28f125f846 Author: Ondřej Kuzník ondra@mistotebe.net Date: Tue Nov 12 10:35:53 2019 +0000

ITS#8575 Accept parameters for hashing new passwords

commit 8bb8905b64204c38b3c490ea2cf5ea4ce0743bbc Author: Ondřej Kuzník ondra@mistotebe.net Date: Mon Nov 11 17:42:03 2019 +0000

ITS#8575 Add a libsodium based implementation

commit 7e3822f3bbe60c1df910d2172c0e06c691f973c8 Author: Simon Levermann simon@slevermann.de Date: Wed Jan 25 15:11:06 2017 +0100

ITS#8575 Implement argon2 password hashing as a module

This change implements argon2, which won the Password Hashing Competition (https://password-hashing.net/) as a contrib-module in order to provide a modern password hashing alternative in openldap. The currently available password hashing algorithms are relatively old, and modern hardware, especially GPUs can compute quite a few (ranging from tens of thousands to millions) of hashes per second. Argon2 was designed to withstand such attacks.

This implementation uses the default work factors used in the argon2 command line client, but the resulting hashes are stored in a way that would allow retroactive changes to these values, or even exposing them as configuration in the module.

-----------------------------------------------------------------------

Summary of changes: contrib/slapd-modules/allowed/allowed.c | 12 +- contrib/slapd-modules/authzid/authzid.c | 4 +- .../passwd/{pbkdf2 => argon2}/Makefile | 35 ++-- contrib/slapd-modules/passwd/argon2/README | 109 +++++++++++ contrib/slapd-modules/passwd/argon2/pw-argon2.c | 213 +++++++++++++++++++++ contrib/slapd-modules/samba4/rdnval.c | 6 +- contrib/slapd-modules/samba4/vernum.c | 8 +- libraries/libldap/deref.c | 13 ++ libraries/libldap/getdn.c | 29 +++ libraries/libldap/ldif.c | 6 + libraries/libldap/ldifutil.c | 15 ++ libraries/libldap/options.c | 16 ++ libraries/libldap/result.c | 5 + libraries/libldap/schema.c | 15 ++ libraries/liblmdb/mdb_dump.c | 4 + libraries/liblmdb/mdb_stat.c | 4 + servers/slapd/aci.c | 10 +- servers/slapd/back-asyncmeta/meta_result.c | 4 +- servers/slapd/back-asyncmeta/search.c | 24 +-- servers/slapd/back-meta/config.c | 4 +- servers/slapd/back-meta/map.c | 57 +++++- servers/slapd/back-meta/search.c | 4 +- servers/slapd/bconfig.c | 4 +- servers/slapd/modify.c | 2 +- servers/slapd/schema_init.c | 6 +- servers/slapd/slapmodify.c | 4 +- servers/slapd/value.c | 4 +- tests/progs/slapd-bind.c | 8 + tests/progs/slapd-modrdn.c | 12 ++ tests/progs/slapd-mtread.c | 4 + tests/progs/slapd-read.c | 8 + tests/progs/slapd-search.c | 8 + 32 files changed, 586 insertions(+), 71 deletions(-) copy contrib/slapd-modules/passwd/{pbkdf2 => argon2}/Makefile (70%) create mode 100644 contrib/slapd-modules/passwd/argon2/README create mode 100644 contrib/slapd-modules/passwd/argon2/pw-argon2.c

--- http://www.openldap.org/devel/gitweb.cgi?p=openldap.git