aboutsummaryrefslogtreecommitdiff
path: root/lib/config-tpf.h
AgeCommit message (Collapse)Author
2014-07-16Remove all traces of FBOpenSSL SPNEGO supportDavid Woodhouse
This is just fundamentally broken. SPNEGO (RFC4178) is a protocol which allows client and server to negotiate the underlying mechanism which will actually be used to authenticate. This is *often* Kerberos, and can also be NTLM and other things. And to complicate matters, there are various different OIDs which can be used to specify the Kerberos mechanism too. A SPNEGO exchange will identify *which* GSSAPI mechanism is being used, and will exchange GSSAPI tokens which are appropriate for that mechanism. But this SPNEGO implementation just strips the incoming SPNEGO packet and extracts the token, if any. And completely discards the information about *which* mechanism is being used. Then we *assume* it was Kerberos, and feed the token into gss_init_sec_context() with the default mechanism (GSS_S_NO_OID for the mech_type argument). Furthermore... broken as this code is, it was never even *used* for input tokens anyway, because higher layers of curl would just bail out if the server actually said anything *back* to us in the negotiation. We assume that we send a single token to the server, and it accepts it. If the server wants to continue the exchange (as is required for NTLM and for SPNEGO to do anything useful), then curl was broken anyway. So the only bit which actually did anything was the bit in Curl_output_negotiate(), which always generates an *initial* SPNEGO token saying "Hey, I support only the Kerberos mechanism and this is its token". You could have done that by manually just prefixing the Kerberos token with the appropriate bytes, if you weren't going to do any proper SPNEGO handling. There's no need for the FBOpenSSL library at all. The sane way to do SPNEGO is just to *ask* the GSSAPI library to do SPNEGO. That's what the 'mech_type' argument to gss_init_sec_context() is for. And then it should all Just Work™. That 'sane way' will be added in a subsequent patch, as will bug fixes for our failure to handle any exchange other than a single outbound token to the server which results in immediate success.
2013-02-14strlcat: remove functionDaniel Stenberg
This function was only used twice, both in places where performance isn't crucial (socks + if2ip). Removing the use of this function removes the need to have our private version for systems without it == reduced amount of code. Also, in the SOCKS case it is clearly better to fail gracefully rather than to truncate the results. This work was triggered by a bug report on the strcal prototype in strequal.h. strlcat was added in commit db70cd28 in February 2001! Bug: http://curl.haxx.se/bug/view.cgi?id=1192 Reported by: Jeremy Huddleston
2012-04-09configure: Windows cross-compilation fixesYang Tse
BUILDING_LIBCURL and CURL_STATICLIB are no longer defined in curl_config.h, configure will generate appropriate conditionals so that mentioned symbols get defined and used in Makefiles at compilation time
2011-03-10sources: update source headersDaniel Stenberg
All C and H files now (should) feature the proper project curl source code header, which includes basic info, a copyright statement and some basic disclaimers.
2010-02-26Added SIZEOF_INT and SIZEOF_SHORT definitions for non-configure systemsYang Tse
2009-11-15Remove enable-thread / disable-thread configure option. These were only placeboYang Tse
options. The library is always built as thread safe as possible on every system.
2009-11-14Refactor how preprocessor symbol _THREAD_SAFE definition is done.Yang Tse
2009-10-18Check for basename() is now done the same as other function checksYang Tse
2009-05-02Use build-time configured curl_socklen_t instead of socklen_tYang Tse
2009-05-01David McCreedy's "TPF-platform specific changes to various files" patchYang Tse
2008-12-30changed HAVE_SIN6_SCOPE_ID define to HAVE_SOCKADDR_IN6_SIN6_SCOPE_ID since ↵Gunter Knauf
just found that ares already uses this define.
2008-12-30added HAVE_SIN6_SCOPE_ID define to all non-configure platforms which seem to ↵Gunter Knauf
be IPv6-aware.
2008-11-13Refactor configure script detection of functions used to set sockets intoYang Tse
non-blocking mode, and decouple function detection from function capability.
2008-09-24HAVE_INET_PTON will only be defined when an IPv6 capable workingYang Tse
inet_pton function is available.
2008-09-24ntoa() and inet_ntoa_r() no longer usedYang Tse
2008-09-19HAVE_ALARM definition for static config-*.h filesYang Tse
2008-08-21Get rid of ENABLE_64BIT symbol definition and usage.Yang Tse
Improve HAVE_LONGLONG symbol description.
2008-08-13The size of long is a build time characteristic and as such it is now recordedYang Tse
in curlbuild.h as CURL_SIZEOF_LONG. Definition now done from configure process and in CVS curlbuild.h.dist for non-configure systems.
2008-08-07Initial support of curlbuild.h and curlrules.h which allowsYang Tse
to have a curl_off_t data type no longer gated to off_t.
2008-07-17RECVFROM_TYPE_ARG2, RECVFROM_TYPE_ARG5 and RECVFROM_TYPE_ARG6 are now definedYang Tse
to the data type pointed by its respective argument and not the pointer type.
2008-07-16Configure process now checks availability of recvfrom() socket function andYang Tse
finds out its return type and the types of its arguments. Added definitions for non-configure systems config files, and introduced macro sreadfrom which will be used on udp sockets as a recvfrom() wrapper.
2008-07-14Removed inclusion of remaining system header files from configuration files.Yang Tse
These are included from lib/setup.h or specific source code file.
2008-05-21fix: socklen_t definition commentYang Tse
2007-08-11Patrick Monnerat modified the LDAP code and approach in curl. Starting now,Daniel Stenberg
the configure script checks for openldap and friends and we link with those libs just like we link all other third party libraries, and we no longer dlopen() those libraries. Our private header file lib/ldap.h was renamed to lib/curl_ldap.h due to this. I set a tag in CVS (curl-7_17_0-preldapfix) just before this commit, just in case.
2007-03-20Remove unneeded 'HAVE_*' defines.Gisle Vanem
2006-11-24Define HAVE_SIGNAL_H, HAVE_SIG_ATOMIC_T and HAVE_SIG_ATOMIC_T_VOLATILEYang Tse
as appropriate for platforms that don't have autotools support
2006-10-14Define HAVE_STRUCT_TIMEVAL as appropriate for platforms that lack autotools ↵Yang Tse
support
2006-07-25Simplify check for NEED_MALLOC_H, and make more explicit that NEED_MALLOC_H ↵Yang Tse
shall be defined if <malloc.h> header file must be included even when including <stdlib.h>.
2006-07-11include <malloc.h> only if HAVE_MALLOC_H and NEED_MALLOC_H are both defined.Yang Tse
2006-07-04Get qualifier of arg 2 for send() apart into SEND_QUAL_ARG2.Yang Tse
2006-07-04Platforms that don't have/run configure need default values in their config ↵Yang Tse
files for: HAVE_GETNAMEINFO, GETNAMEINFO_QUAL_ARG1, GETNAMEINFO_TYPE_ARG1, GETNAMEINFO_TYPE_ARG2, GETNAMEINFO_TYPE_ARG46, GETNAMEINFO_TYPE_ARG7 HAVE_RECV, RECV_TYPE_ARG1, RECV_TYPE_ARG2, RECV_TYPE_ARG3, RECV_TYPE_ARG4, RECV_TYPE_RETV HAVE_SEND, SEND_TYPE_ARG1, SEND_TYPE_ARG2, SEND_TYPE_ARG3, SEND_TYPE_ARG4, SEND_TYPE_RETV
2006-05-23David McCreedy's updateDaniel Stenberg
2006-04-07First commit of David McCreedy's EBCDIC and TPF changes.Daniel Stenberg