Ldap3-bleeding-edge

- tested against Python 3.11
- fixed multiple issues
- add pycryptodomex as a dependency
- add TLS channel binding during NTLM authentication

- new feature: added support for using Kerberos authentication on windows clients using the native winkerberos library
- new feature: added support for using Channel Bind tokens with Kerberos authentication on windows clients
- fixed a bug related to using start_tls with a RESTARTABLE strategy that caused errors to be raised erroneously.
- fixed a bug around the type checking of Reverse DNS Settings with Kerberos authentication
- fixed an issue related to decoding unicode strings in LDAP referrals and attributes in python 2
- minor documentation updates and corrections

- new feature: SafeRestartable strategy (SAFE_RESTARTABLE) for using a restartable Connection object in a multi-threading program
- tested against Python 3.9
- added requirements-dev.txt
- fixed logging unicode exceptions in python2.7
- added more granular control over use of reverse dns with Kerberos (thanks Azaria)
- support MS Active Directory persistent search (thanks eLeX)
- added support for LDAP signing when using DIGEST-MD5 authentication (thanks Augustin-FL)
- check only for searchResEntries in LDIF conversion (thanks Jay)
- modify-increment now works properly in mock strategies (thanks Saint-Marcel)
- objectGUID are now converted properly (thanks Janne)
- default timeout in asynchronous strategies raised to 20 seconds

- fixed regression in 2.8 for members returned in AD auto-range search (thanks Felix)
- fixed regression in 2.8 for attribute error in restartable class (thanks Christian)
- try to use Crypto library if present for hashing NTLM password on python interpreter missing the MD4 OpenSSL algorithm (thanks Doron)

- new feature: SafeSync strategy (SAFE_SYNC) for using a synchronous Connection object in a multi-threading program
- new feature: LDIF_LINE_LENGTH for specifying line length wrapping in ldif-content output (default to 78 as per RFC 2849)
- fixed requirements for pyasn1
- fixed regression for ldapi connections
- fixed issue with lazy connection requesting server info on every operation
- fixed searching by objectGUID in hex format (thanks Matt)
- added iso_format parameter to utils.format_json to return dates in ISO format (thanks Hugh)
- fixed issue with Referral attributes not returned by the referral server (thanks Nazarii)
- fixed lost error message in auto_bind (thanks cfelder)
- fixed delete_old_dn in mock connections (thanks kpinc)
- fixed a ResourceWarning with lazy connections
- fixed entry_to_json() that in python2 modified the original entry value (thanks Dirk-Jan)
- tests doesnt' raise Exception if real server is not present (thanks Matej)

- tested against Python 3.8.1 and pyasn1 0.4.8
- re-enabled ssl exception raising on bad certificate when only 1 server is present in the server pool
- removed Python 2.6 from Travis configuration (thanks gliptak)
- added support for source specifications in LDAP connections (thanks Azaria)
- added support for allowing special AD security identifier (SID) in DN (thanks John)
- fixed pickling of entry and attribute (thanks cfelder)
- close connection when auto_bind fails (thank Hrishikesh)
- operational attributes can be used in Abstraction Layer (thanks Sohalt)
- additional SSL options can be used in Tls object (thanks Nazarii)
- threading.Event replaces loop checking in async strategy. ASYNC strategy should be much faster now (thanks Yang)
- adding a key that is already an alias that contains other aliases in CaseInsensitiveWithAliasDict() now works properly (thanks Mark)
- when searching for GUID, UUID and SID the backslash character (0x5C) is properly managed (thanks Nocturem)
- LDIF output properly formatted when controls are missing (thanks Tom)
- operational attributes are not returned in MOCK strategies when not requested (thanks kpinc)
- undecodable values are returned as raw bytes when using the pyasn1 decoder