Kurt Zeilenga
9568a013a8
Backend lock wasn't being released properly.
1999-07-16 00:16:54 +00:00
Julio Sánchez Fernández
edb1d671f8
Initialize the TLS environment *after* reading the config files.
1999-07-15 21:07:01 +00:00
Julio Sánchez Fernández
fd49eacc4b
Parse more TLS options in slapd.conf
1999-07-15 21:05:08 +00:00
Julio Sánchez Fernández
7a64fcf7b3
Set ciphers from slapd.conf.
...
More error checking and reporting.
Slowly getting there, SSL_accept succeeds now, but connection breaks
immediately after that (my glue logic with slapd is broken).
1999-07-15 21:03:47 +00:00
Julio Sánchez Fernández
27bcfd696d
More options for TLS
1999-07-15 20:58:47 +00:00
Kurt Zeilenga
c7425738bb
Add missing arg to Debug macro call
1999-07-15 20:00:05 +00:00
Julio Sánchez Fernández
d92c7c1c7d
A couple of options for TLS configuration. Still a conflict here,
...
the default context is initialized before the config file is read,
so the locations are not know at context initialization.
1999-07-15 15:04:02 +00:00
Julio Sánchez Fernández
41de66a0b2
New routine tls_report_error to analyze errors from OpenSSL
...
Change temporarily the default protocol from TLSv1 to SSLv3 with
fallback to SSLv2. This seems necessary for slapd to accept connections
from Netscape.
Try to set the cipher list in the default context. Does not semm to
work yet.
1999-07-15 14:59:09 +00:00
Hallvard Furuseth
5bcdf362f3
Remove duplicate 'static'
1999-07-14 23:28:56 +00:00
Hallvard Furuseth
eb9f0359ef
fix typo in rm command
1999-07-14 23:13:34 +00:00
Julio Sánchez Fernández
1df71e1814
Get rid of two compilation warnings. One is thought to be properly
...
taken care of. The second, however, on remove_old_locks is unclear.
1999-07-14 19:51:35 +00:00
Julio Sánchez Fernández
e74ff638ba
Parsing of flag -T was falling through to the default case.
...
Init the TLS environment if necessary. Lots of things needed here,
in particular, preparing properly the default context.
1999-07-14 19:49:39 +00:00
Julio Sánchez Fernández
6d75d0f8fb
connection_init now takes one more argument that indicates whether to
...
use TLS right away or not on that connection.
1999-07-14 19:44:18 +00:00
Kurt Zeilenga
6cd03236c1
Update configure due to Hallvard's openldap.m4 change
1999-07-14 17:50:40 +00:00
Kurt Zeilenga
2ce7c6859f
Match xrpcomp change in devel
1999-07-14 17:07:39 +00:00
Julio Sánchez Fernández
c18d6e7ecf
Only bind on TLS port if explicitly requested with -T, otherwise all
...
kind of conflicts happen when running tests.
1999-07-14 13:39:30 +00:00
Julio Sánchez Fernández
5b7babdee4
Bind and listen on TLS port too
1999-07-14 13:16:13 +00:00
Julio Sánchez Fernández
8542e45380
Extend slapd_args with TLS info
1999-07-14 13:14:54 +00:00
Julio Sánchez Fernández
153bf433ae
Define LDAP_TLS_PORT as 636, the default port for LDAP over raw TLS
1999-07-14 13:12:51 +00:00
Hallvard Furuseth
5d19e04366
Fix typo in socklen_t comment (signal.h -> sys/types.h and sys/socket.h)
1999-07-14 12:08:58 +00:00
Julio Sánchez Fernández
184a966329
Fix detection of socklen_t
...
Rebuild configure to reflect that
1999-07-14 11:13:32 +00:00
Kurt Zeilenga
cbb5553b03
Newer versions of OpenSSL install headers in $prefix/include/openssl...
1999-07-14 00:03:52 +00:00
Julio Sánchez Fernández
509fdc1e6d
Deal with sb_trans_needs_read and sb_trans_needs_write
1999-07-13 19:40:10 +00:00
Julio Sánchez Fernández
eeec88a8c4
Add a couple of control flags to sockbufs and macros to test them.
1999-07-13 19:38:01 +00:00
Julio Sánchez Fernández
710f697fb7
Get and set TLS options
1999-07-13 19:34:07 +00:00
Kurt Zeilenga
3a80a89061
Rebuild configure with TLS changes
1999-07-13 19:32:58 +00:00
Julio Sánchez Fernández
70fe83b1d2
First version with TLS. Untested.
1999-07-13 19:32:51 +00:00
Julio Sánchez Fernández
43fba8fcb1
First version with TLS. Untested.
1999-07-13 19:30:41 +00:00
Julio Sánchez Fernández
97a681910e
Options for TLS
1999-07-13 19:29:19 +00:00
Julio Sánchez Fernández
739466b85d
Add tls.c
...
Add use of TLS_LIBS so that test tools compile
1999-07-13 19:27:33 +00:00
Julio Sánchez Fernández
7482777a7c
Add tls.c
...
Add use of TLS_LIBS so that test tools compile
1999-07-13 19:25:10 +00:00
Julio Sánchez Fernández
96ae2837f6
Add option definitions for TLS
1999-07-13 19:23:41 +00:00
Julio Sánchez Fernández
6064e66c05
Use $(TLS_LIBS)
1999-07-13 19:22:14 +00:00
Julio Sánchez Fernández
c0a7e4ba85
Pass TLS_LIBS to the Makefile's.
1999-07-13 19:21:27 +00:00
Julio Sánchez Fernández
ac5348b0d4
Our check for SSLeay_add_ssl_algorithms fails with modern versions of
...
OpenSSL since it has been made a preprocessor macro. Please review
this change to do the right thing w.r.t. rsaref.
1999-07-13 19:20:16 +00:00
Julio Sánchez Fernández
0dac59ca26
Include $(TLS_LIBS)
1999-07-13 19:15:14 +00:00
Julio Sánchez Fernández
6eae20d056
Include TLS_LIBS
1999-07-13 19:13:32 +00:00
Julio Sánchez Fernández
8f4f94d415
First version of TLS glue for SSLeay/OpenSSL originally written by
...
Bart Hartgers. Untested.
1999-07-13 19:11:53 +00:00
Kurt Zeilenga
ff28f54d2d
Add configure support for 'socklen_t' as provided by Hallvard.
1999-07-13 18:46:22 +00:00
Kurt Zeilenga
47be141fb4
Support old c_plusplus...
1999-07-13 18:41:00 +00:00
Kurt Zeilenga
94d5067b22
Use assert instead of private Assert macro
1999-07-13 18:39:20 +00:00
Hallvard Furuseth
2c27a6abcf
Eliminate htonl(unsigned_long_arg), which is wrong on 64-bit OSF1/alpha
1999-07-13 09:41:25 +00:00
Kurt Zeilenga
12b87ceebc
Fix debug message.
1999-07-13 08:24:26 +00:00
Hallvard Furuseth
5f880ae022
Fix LDAP_CONST->const in explode_name(), it failed when LDAP_CONST was empty.
1999-07-13 06:48:35 +00:00
Hallvard Furuseth
fb3b8e5ef1
Fix LDAP_CONNECTIONLESS code rot
1999-07-13 06:39:55 +00:00
Hallvard Furuseth
c4a13efbea
Fix NULLxxx -> NULL
1999-07-13 06:37:19 +00:00
Hallvard Furuseth
03760c89ec
Forced commit to correct previous log, files were not changed:
...
Create ldap_int_tblsize and ldap_int_ip_init().
Initialize from ldap_int_initialize().
1999-07-13 06:31:56 +00:00
Hallvard Furuseth
6eef6bea01
ldap-int.h
1999-07-13 06:27:47 +00:00
Hallvard Furuseth
354702b94e
ldap-int.h
1999-07-13 06:21:14 +00:00
Hallvard Furuseth
96e8fafb51
constify use of invalue in <ber/ldap>_set_option()
1999-07-13 05:17:50 +00:00