Rewrote the search filter parser. It's now easier to understand (imo)
and probably somewhat faster. Support for LDAPv3 extensible matches is
also added (although not satisfactory tested yet). The main benefit is
however that the syntax checking is more thorough - the old parser
could silently ignore malformed parts of the filter string and send a
partial filter structure to the server.