Skip to content
Snippets Groups Projects
Select Git revision
  • stats
  • master default protected
  • OPENLDAP_REL_ENG_2_5
  • mdb.master
  • mdb.master3
  • OPENLDAP_REL_ENG_2_4
  • mdb.RE/0.9
  • cdel
  • syslog2
  • vl32
  • mdb.cursor
  • mdb
  • deltammr
  • OPENLDAP_REL_ENG_2_3
  • ACLCHECK
  • OPENLDAP_REL_ENG_2_2
  • OPENLDAP_AC
  • OPENLDAP_REL_ENG_2_1
  • OPENLDAP_REL_ENG_2
  • OPENLDAP_REL_ENG_1_2
  • OPENLDAP_REL_ENG_2_5_5
  • OPENLDAP_REL_ENG_2_4_59
  • OPENLDAP_REL_ENG_2_5_4
  • OPENLDAP_REL_ENG_2_5_3BETA
  • OPENLDAP_REL_ENG_2_4_58
  • LMDB_0.9.29
  • OPENLDAP_REL_ENG_2_5_2BETA
  • OPENLDAP_REL_ENG_2_4_49
  • OPENLDAP_REL_ENG_2_5_1ALPHA
  • LMDB_0.9.28
  • OPENLDAP_REL_ENG_2_4_57
  • OPENLDAP_REL_ENG_2_4_56
  • OPENLDAP_REL_ENG_2_4_55
  • LMDB_0.9.27
  • OPENLDAP_REL_ENG_2_5_0ALPHA
  • OPENLDAP_REL_ENG_2_4_54
  • OPENLDAP_REL_ENG_2_4_53
  • OPENLDAP_REL_ENG_2_4_52
  • OPENLDAP_REL_ENG_2_4_51
  • LMDB_0.9.26
40 results
Compare
Forked from openldap / OpenLDAP
7232 commits behind, 2232 commits ahead of the upstream repository.
user avatar
ITS#6975 MozNSS - allow cacertdir in most cases
Rich Megginson authored 
OpenLDAP built with OpenSSL allows most any value of cacertdir - directory
is a file, directory does not contain any CA certs, directory does not
exist - users expect if they specify TLS_REQCERT=never, no matter what
the TLS_CACERTDIR setting is, TLS/SSL will just work.
TLS_CACERT, on the other hand, is a hard error.  Even if TLS_REQCERT=never,
if TLS_CACERT is specified and is not a valid CA cert file, TLS/SSL will
fail.  This patch makes CACERT errors hard errors, and makes CACERTDIR
errors "soft" errors.  The code checks CACERT first and, even though
the function will return an error, checks CACERTDIR anyway so that if the
user sets TRACE mode they will get CACERTDIR processing messages.
7e528ae8
History
user avatar 7e528ae8
History
Name Last commit Last update
build
clients
contrib
doc
include
libraries
servers
tests
.gitattributes
.gitignore
ANNOUNCEMENT
CHANGES
COPYRIGHT
INSTALL
LICENSE
Makefile.in
README
aclocal.m4
configure
configure.in
README
OpenLDAP 2.4 README
    For a description of what this distribution contains, see the
    ANNOUNCEMENT file in this directory.  For a description of
    changes from previous releases, see the CHANGES file in this
    directory.

    This is 2.4 release, it includes significant changes from prior
    releases.

REQUIRED SOFTWARE
    Building OpenLDAP Software requires a number of software packages
    to be preinstalled.  Additional information regarding prerequisite
    software can be found in the OpenLDAP Administrator's Guide.

    Base system (libraries and tools):
        Standard C compiler (required)
        Cyrus SASL 2.1.21+ (recommended)
        OpenSSL 0.9.7+ (recommended)
        Reentrant POSIX REGEX software (required)

    SLAPD:
        BDB and HDB backends require Oracle Berkeley DB 4.4 - 4.8,
	or 5.0 - 5.1.  It is highly recommended to apply the
        patches from Oracle for a given release.

    CLIENTS/CONTRIB ware:
        Depends on package.  See per package README.


MAKING AND INSTALLING THE DISTRIBUTION
    Please see the INSTALL file for basic instructions.  More
    detailed instructions can be found in the OpenLDAP Admnistrator's
    Guide (see DOCUMENTATION section).


DOCUMENTATION
    The OpenLDAP Administrator's Guide is available in the
    guide.html file in the doc/guide/admin directory.  The
    guide and a number of other documents are available at
    <http://www.openldap.org/doc/admin/guide.html>.

    The distribution also includes manual pages for most programs
    and library APIs.  See ldap(3) for details.

    The OpenLDAP website is available and contains the latest LDAP
    news, releases announcements, pointers to other LDAP resources,
    etc..  It is located at <http://www.OpenLDAP.org/>.

    The OpenLDAP Software FAQ is available at
    <http://www.openldap.org/faq/>.


SUPPORT / FEEDBACK / PROBLEM REPORTS / DISCUSSIONS
    OpenLDAP Software is user supported.  If you have problems, please
    review the OpenLDAP FAQ <http://www.openldap.org/faq/> and
    archives of the OpenLDAP-software and OpenLDAP-bugs mailing lists
    <http://www.openldap.org/lists/>.  If you cannot find the answer,
    please enquire on the OpenLDAP-software list.

    Issues, such as bug reports, should be reported using our
    Issue Tracking System <http://www.OpenLDAP.org/its/>.  Do not
    use this system for software enquiries.  Please direct these
    to an appropriate mailing list.


CONTRIBUTING
    See <http://www.openldap.org/devel/contributing.html> for
    information regarding how to contribute code or documentation
    to the OpenLDAP Project for inclusion in OpenLDAP Software.
    While you are encouraged to coordinate and discuss the development
    activities on the <openldap-devel@openldap.org> mailing list
    prior to submission, it is noted that contributions must be
    submitted using the Issue Tracking System
    <http://www.openldap.org/its/> to be considered.

---
$OpenLDAP$

This work is part of OpenLDAP Software <http://www.openldap.org/>.

Copyright 1998-2011 The OpenLDAP Foundation.
All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted only as authorized by the OpenLDAP
Public License.

A copy of this license is available in the file LICENSE in the
top-level directory of the distribution or, alternatively, at
<http://www.OpenLDAP.org/license.html>.

OpenLDAP is a registered trademark of the OpenLDAP Foundation.