1. 22 Jun, 2011 4 commits
    • Howard Chu's avatar
      ITS#6817 fix RE24 build breakage · 5a0a6786
      Howard Chu authored and Quanah Gibson-Mount's avatar Quanah Gibson-Mount committed
      Should SLAP_AUTH_DN be #defined in release now?
      5a0a6786
    • Quanah Gibson-Mount's avatar
      ITS#6862 · c304c44c
      Quanah Gibson-Mount authored
      ITS#6975
      c304c44c
    • Rich Megginson's avatar
      ITS#6862 MozNSS - workaround PR_SetEnv bug · ca45e62b
      Rich Megginson authored and Quanah Gibson-Mount's avatar Quanah Gibson-Mount committed
      ca45e62b
    • Rich Megginson's avatar
      ITS#6975 MozNSS - allow cacertdir in most cases · 7e528ae8
      Rich Megginson authored and Quanah Gibson-Mount's avatar Quanah Gibson-Mount committed
      OpenLDAP built with OpenSSL allows most any value of cacertdir - directory
      is a file, directory does not contain any CA certs, directory does not
      exist - users expect if they specify TLS_REQCERT=never, no matter what
      the TLS_CACERTDIR setting is, TLS/SSL will just work.
      TLS_CACERT, on the other hand, is a hard error.  Even if TLS_REQCERT=never,
      if TLS_CACERT is specified and is not a valid CA cert file, TLS/SSL will
      fail.  This patch makes CACERT errors hard errors, and makes CACERTDIR
      errors "soft" errors.  The code checks CACERT first and, even though
      the function will return an error, checks CACERTDIR anyway so that if the
      user sets TRACE mode they will get CACERTDIR processing messages.
      7e528ae8
  2. 21 Jun, 2011 9 commits
  3. 14 Jun, 2011 2 commits
  4. 13 Jun, 2011 15 commits
  5. 09 Jun, 2011 10 commits