Commit Graph

317 Commits

Author SHA1 Message Date
Kurt Zeilenga
e801d834bc Warn about lack of SASL and/or TLS. 2000-07-25 01:11:09 +00:00
Kurt Zeilenga
5fc22599e2 Update SASL code to reuse context through life of session.
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
2000-07-13 22:54:38 +00:00
Kurt Zeilenga
1f1993989a s/enable-unix/enable-local/
s/LDAP_PF_UNIX/LDAP_PF_LOCAL/
s/AF_UNIX/AF_LOCAL/
s/PF_UNIX/PF_LOCAL/
2000-07-09 21:49:36 +00:00
Kurt Zeilenga
07c7d3c3cb QUIPU -> Attic 2000-06-25 21:40:13 +00:00
Kurt Zeilenga
d5e9b1a2d8 Minor clean 2000-06-18 19:36:48 +00:00
Kurt Zeilenga
55dba4395f Update PF_INET6 and PF_UNIX detection, both default to auto 2000-06-09 23:09:51 +00:00
Kurt Zeilenga
70a7656d7f Detect getaddrinfo 2000-06-09 17:01:05 +00:00
Julio Sánchez Fernández
05d1caad05 Added maildap. 2000-06-09 00:45:59 +00:00
Kurt Zeilenga
9ad6c8aaac Use CDPATH clearing mechanism borrowed from autoconf 2.14a 2000-06-09 00:43:04 +00:00
Kurt Zeilenga
f08840491f Clear CDPATH 2000-06-09 00:32:02 +00:00
Kurt Zeilenga
e5ebc553ac Rework URI parser to provide true scheme not proto/properties.
Plus more pthread rwlock code
2000-06-07 01:09:40 +00:00
Kurt Zeilenga
4a1f646682 Move experimental Back-BDB2 to Attic 2000-06-06 01:23:17 +00:00
Kurt Zeilenga
1af849c720 DNSSRV use res_query, not res_search
Update configure and depend --enable-dnssrv upon finding res_query
Update back-dnssrv to better handle ManageDSAit control
2000-06-05 23:56:26 +00:00
Kurt Zeilenga
7dc76e7139 move --enable-dns (LDAP_API_FEATURE_X_OPENLDAP_V2_DNS) to Attic 2000-06-05 07:19:09 +00:00
Kurt Zeilenga
45c6324a9d Move ldapd into the Attic, quipu tools remain for now. 2000-06-01 23:00:22 +00:00
Kurt Zeilenga
25be5fca2f comment out dmalloc detection 2000-05-30 20:15:54 +00:00
Kurt Zeilenga
fa38b2edc3 Add basic detection for db3 2000-05-25 21:09:10 +00:00
Kurt Zeilenga
8411a5319a New Berkeley DB detection 2000-05-25 20:44:07 +00:00
Kurt Zeilenga
8045b54124 Use getpassphrase() instead of getpass() if available. 2000-05-19 18:41:26 +00:00
Howard Chu
605832eaa5 Added support for AIX security database:
configure.in: check for AIX security library, set in AUTH_LIBS macro
  top.mk: add AUTH_LIBS macro to SECURITY_LIBS
  portable.h.in: added HAVE_AIX_SECURITY macro (via autoheader)
  passwd.c: use AIX getuserpw in chk_unix. Also fix logic in chk_unix:
  	getpwnam must always succeed for the given user. It is not a
	fatal error if getspnam returns no result for the user: On
	systems that support /etc/shadow, its usage is optional. The
	same logic applies for AIX, SCO/HP SecureWare, etc.
2000-05-11 10:10:53 +00:00
Kurt Zeilenga
1dc3e3c408 Add basic and EXPERIMENTAL chroot() support. 2000-05-10 23:30:52 +00:00
Howard Chu
de72e9a46c Looks like we found the same problem. But I think rev 1.297 is incomplete.
ol_link_sasl vs ol_link_spasswd is confusing.
2000-05-10 22:48:23 +00:00
Kurt Zeilenga
36d5d25e31 Additional DNS SRV framework (a work in progress)
Fix --disable-spasswd
2000-05-10 20:07:01 +00:00
Kurt Zeilenga
2c2a54d6d7 Add DNS SRV backend framework (a work in progress). 2000-05-10 18:17:38 +00:00
Kurt Zeilenga
056a1e27db Remove extra --enable-modules flag... 2000-05-10 04:31:42 +00:00
Kurt Zeilenga
f224e69558 Add experimental code to check simple bind passwords
against Cyrus SASLdb.  Like other cleartext mechanisms,
should be protected from eavesdropping.
2000-05-10 04:29:51 +00:00
Kurt Zeilenga
6141b1eebe Delete (again) unneeded discrete-aci flag and regenerate... 2000-03-16 19:14:48 +00:00
Dmitry Kovalev
8dc136ddd6 update Unix build environment to support back-sql
2 more steps left: add back-sql directory itself, and update Win32 build environment.
2000-03-16 18:54:11 +00:00
Kurt Zeilenga
0dbaf87730 Another round of changes behind -DSLAPD_SCHEMA_NOT_COMPAT
plus these changes unhidden changes:
	remove now meaning --enable-discreteaci configure option
	fix ITS#451, slapd filters
	Add ber_bvecadd() to support above
	constify ldap_pvt_find_wildcard() and misc slapd routines
	renamed some slap.h macros
	likely broken something
2000-02-14 20:57:34 +00:00
Kurt Zeilenga
c889235649 Only allow NDBM if manually selected. Provide no hints that
one can select NDBM as NDBM is not supported.
2000-01-27 19:33:59 +00:00
Kurt Zeilenga
5ae4ea3593 Don't even spit out NDBM skipped warning 2000-01-27 19:30:57 +00:00
Kurt Zeilenga
45842ab4a1 Don't list NDBM as an option. 2000-01-27 19:11:44 +00:00
Kurt Zeilenga
dd1e4fc53d Add -llunicode to build environment 2000-01-26 00:00:45 +00:00
Kurt Zeilenga
0426431639 Fix --enabel-kbind=auto --without-kerberos detection 2000-01-11 04:20:59 +00:00
Kurt Zeilenga
fb49e2771e --disable-kbind --disable-kpasswd should imply --without-kerberos
under "auto" selection.  If not auto, just warn.
Rebuild configure using appropriate tools.
2000-01-08 19:23:26 +00:00
Kurt Zeilenga
6437785a82 Initial implementation of Kerberos password verification for
simple bind via:
	{KERBEROS}principal
Code is disabled by default (for security reasons).  Use
--enable-kpasswd to enable.  Behind SLAPD_KPASSWD.
Reworked Kerberos detection and split out KBIND as independent
feature (--disable-kbind) (LDAP_API_FEATURE_X_OPENLDAP_V2_KBIND).
KBIND depends upon detection of KRB4 (or KRB425) support.  Detection,
building with eBones (as distributed with FreeBSD 3.4) okay, but
wasn't able to test as I don't have a K4 KDC handy.
--with-kerberos has a number of detection options... most likely
don't work properly.
2000-01-08 18:42:11 +00:00
Luke Howard
9b4e3b2234 Merged in preliminary support for Cyrus SASL library;
support for DCE slash-delimited, left-to-right DNs;
support for a domain socket transport (enable with
--enable-ldapi); and extensions to URL parsing to
support the latter transport.
2000-01-02 01:21:25 +00:00
Kurt Zeilenga
8b99e6cdbd Remove LBER_{TAG,INT,LEN}_{NTOH,HTON} macros. Rewrite code to
manual push bytes about.  Allows ber_*_t to be any 32-bit or
larger type.  Reworked AC_{HTON,NTOH}{L,S} macros to care only
about 32-bit (netlong) and 16-bit (netshort) reordering as
needed for BSD socket interface.
1999-11-26 23:32:18 +00:00
Kurt Zeilenga
c59d1a34db Use 'long' for LBER_INT_T. 1999-11-25 17:45:21 +00:00
Kurt Zeilenga
62a06eda3e Don't use 'int' for LBER_*_T types as we only have hton{s,l}.
Select appropriopriate hton{s,l} function to use in lber-int.h.
1999-11-25 17:10:45 +00:00
Kurt Zeilenga
ff2068b4ee Booker says Krb5 requires "-lkrb4 -lkrb5 -ldes425 -lcrypto -lcom_err" 1999-11-17 02:26:55 +00:00
Kurt Zeilenga
4d03404848 s/==/=/ in sh equality tests 1999-11-17 02:18:04 +00:00
Kurt Zeilenga
357101793b Use lber types instead of uint32 for md5. sha1 still requires
an integer type of exactly 32 bits.
1999-11-17 02:04:06 +00:00
Kurt Zeilenga
a90a38ec2d write winsock with AC_CACHE_CHECK to allow mangling via environment. 1999-11-02 02:32:55 +00:00
Kurt Zeilenga
89893b0fbf Remove unnecessary dependency upon $ac_cv_mingw32. 1999-11-02 02:10:36 +00:00
Kurt Zeilenga
daa7907b4f Move NT Thread test into build/openldap.m4. Still bogus (only
enables if MINGW32 and always enables if MINGW32).
1999-11-01 23:45:09 +00:00
Kurt Zeilenga
320cc86969 Define HAVE_NT_EVENT_LOG && HAVE_NT_SERVICE_MANAGER when HAVE_NT_THREADS 1999-11-01 22:06:00 +00:00
Kurt Zeilenga
bb1b81473b Add configure tests for ssize_t and caddr_t and remove NT preamble
(excepting WIN32_LEAN_AND_MEAN).  Rework openlog/closelog use to
eliminate need for defines.
1999-11-01 18:14:26 +00:00
Kurt Zeilenga
4757d60fb4 Use compile time, instead of run time, sizeof checks. 1999-11-01 17:36:09 +00:00
Kurt Zeilenga
26d8290859 Remove more dependencies upon $ac_cv_mingw32 1999-11-01 03:40:55 +00:00