Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix LDAP GetError and LDAP search #509

Merged
merged 35 commits into from
May 3, 2024
Merged

Fix LDAP GetError and LDAP search #509

merged 35 commits into from
May 3, 2024

Conversation

gustavoluvizotto
Copy link
Contributor

@gustavoluvizotto gustavoluvizotto commented Apr 16, 2024
edited
Loading

At error.go, if Value is nil, then the cast will fail.

At search.go, there add an extra check to ensure presence of the attribute when collecting the entries of a successful search.

gustavoluvizotto and others added 30 commits September 11, 2023 18:59
@gustavoluvizotto
When trying to parse ldap error, value can be nil
14fb4c6
@gustavoluvizotto
change module name
a93329e
@gustavoluvizotto
update v3 module name and README
93d87c2
@gustavoluvizotto
When trying to parse ldap v3 error, value can be nil
ae81db6
@cpuschma @gustavoluvizotto
chore: update go-asn1-ber to v1.5.5 (go-ldap#464)
3222984 
* chore: update go-asn1-ber
* Remove unnecessary dependency for go-asn1-ber v1.5.4 through "go mod tidy"
@raymonstah @gustavoluvizotto
fix: request timeout race condition (go-ldap#465)
1b699fc
@0x34d @cpuschma @gustavoluvizotto
feat: add cifuzz workflow (go-ldap#460)
87ffed5 
Signed-off-by: Arjun Singh <[email protected]>
Co-authored-by: Christopher Puschmann <[email protected]>
@cpuschma @gustavoluvizotto
fix: Limit maximum BER packet length in FuzzParseDN to 65536 bytes (g…
169c1c9 
…o-ldap#466)

Parallel and large amount of fuzzing data can create large amounts of allocated data and cause restricted fuzzing environments to crash (see go-ldap#460)
@cpuschma @gustavoluvizotto
chore: Mirror v3 to root directory (go-ldap#468)
aa49216
@t2y @gustavoluvizotto
fix: add a setup process in TestMain to prevent DATA RACE as a result…
3cacdbe 
… of changing ber's module global variable for fuzz tests go-ldap#472 (go-ldap#473)
@t2y @gustavoluvizotto
refactor: match the result code with IsErrorAnyOf even if an error is…
13ecd9c 
… wrapped (go-ldap#471)
@t2y @johnweldon @gustavoluvizotto
fix: update golangci/golangci-lint-action since a deprecated warning …
707a142 
…occurs (go-ldap#474)

Co-authored-by: John Weldon <[email protected]>
@cpuschma @gustavoluvizotto
feat: extend SearchResult Unmarshal to support *string as field type (
032ab34 
go-ldap#475) (go-ldap#476)
@dependabot @gustavoluvizotto
Bump golang.org/x/crypto from 0.13.0 to 0.17.0 in /v3 (go-ldap#478)
36b6245 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.13.0 to 0.17.0.
- [Commits](golang/crypto@v0.13.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot @gustavoluvizotto
Bump golang.org/x/crypto from 0.13.0 to 0.17.0 (go-ldap#479)
a84bee4 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.13.0 to 0.17.0.
- [Commits](golang/crypto@v0.13.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@sirzzang @cpuschma @gustavoluvizotto
feat: Add support for children scope choice const (go-ldap#480)
a690afb 
* feat: Add support for children scope choice const

* Add comment to `ScopeChildren` that this scope may not be available on directory server other than OpenLDAP

* Mirror changes to v3

---------

Co-authored-by: sirzzang <[email protected]>
Co-authored-by: Christopher Puschmann <[email protected]>
@cpuschma @gustavoluvizotto
Add EnforceSizeLimit to enforce the specified search request size l…
ee111be 
…imit (go-ldap#482)
@t2y @gustavoluvizotto
ci: Add go 1.22 build/testing to github workflow (go-ldap#485)
e42f79a
@levkohimins @gustavoluvizotto
feat: GSSAPI client (with unix support) (go-ldap#449)
1463798 
* feat: unix gssapi client

* fix: lint errors

* fix: comment grammar

---------

Co-authored-by: Levko Burburas <[email protected]>
@donatello @gustavoluvizotto
fix: mark functions as deprecated with doc comment (go-ldap#491)
2d3dcd0 
Refer to https://go.dev/wiki/Deprecated

The right way to mark a function as deprecated is to use `Deprecated:`
as the beginning of a doc comment paragraph.

This ensures that various tools (such as static checks) pick up the
deprecation information.
@t2y @gustavoluvizotto
Refactor the context handling with receiving an ldap response in sear…
0d764b0 
…chAsync() (go-ldap#496)

* Refactor the context handling with receiving an ldap response in searchAsync() go-ldap#495
* Add debug print for response
@cpuschma @gustavoluvizotto
Update README to include new features and implemented RFCs
c75e537 
* Add newly added features and RFCs to the list
* Removed the Travis CI link as it has been replaced with Github Actions
@cpuschma @gustavoluvizotto
chore: add comment to Start function to inform about possible insta…
64975db 
…bility when called (go-ldap#499)
@cpuschma @gustavoluvizotto
feat: Refactor ParseDN function to fix resource usage and invalid p…
b3dfcb5 
…arsings (fixes go-ldap#487) (go-ldap#497)
@cpuschma @gustavoluvizotto
Revert "fix: Limit maximum BER packet length in FuzzParseDN to 6553… (
cbf5d2c 
go-ldap#500)

* Revert "fix: Limit maximum BER packet length in `FuzzParseDN` to 65536 bytes (go-ldap#466)"

This reverts commit 80095a3

* Fix index out of range crash
@johnweldon @gustavoluvizotto
Update golang.org/x/crypto (go-ldap#502)
fd4938d 
* Update golang.org/x/crypto
* Forgot to mirror to v3
* update asn1-ber
@inteon @gustavoluvizotto
feat: Add tests to parseDN (fuzzing, roundtrip ...) (go-ldap#504)
6b123c1 
* add tests to parseDN (including fuzz tests) and apply changes required to make roundtripping work

Signed-off-by: Tim Ramlot <[email protected]>

* undo unnessary changes

Signed-off-by: Tim Ramlot <[email protected]>

---------

Signed-off-by: Tim Ramlot <[email protected]>
@cpuschma @gustavoluvizotto
fix: Replace DER with ASN1 BER encoding when parsing distinguishedNam…
6fbeed8 
…es (go-ldap#505)

* fix: Replace DER with ASN1 BER encoding when parsing distinguishedNames
* Remove leftover comment
@gustavoluvizotto
Merge branch 'go-ldap:master' into research-scanner
fe10864
@gustavoluvizotto
fix search when cannot unpack ber packet due to no attributes
ad842dc
@gustavoluvizotto
Copy link
Contributor Author

@cpuschma how can I get this PR to be reviewed?

johnweldon
johnweldon requested changes Apr 18, 2024
View reviewed changes
Copy link
Member

@johnweldon johnweldon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please match the changes in the root folder to the v3 folder. Otherwise LGTM

@gustavoluvizotto
Copy link
Contributor Author

@johnweldon changes done

@cpuschma cpuschma merged commit 56e5759 into go-ldap:master May 3, 2024
22 checks passed
@gustavoluvizotto gustavoluvizotto deleted the research-scanner branch May 6, 2024 11:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@johnweldon johnweldon johnweldon requested changes

@cpuschma cpuschma cpuschma approved these changes

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
10 participants
@gustavoluvizotto @johnweldon @cpuschma @raymonstah @0x34d @t2y @sirzzang @levkohimins @donatello @inteon