Prev: libx11 build problems
Next: Upgraded Trac, but still getting errors...
From: Mel Flynn on 15 Sep 2009 18:01
On Tuesday 15 September 2009 23:50:50 Mel Flynn wrote:
> On Tuesday 15 September 2009 18:29:13 Tim Gustafson wrote:
> > > Could shar(1) your current work? I can likely fix the issues
> > > you're seeing, but it would be nice if you can save me some
> > > cycles finding the urls and making the distinfo. How to shar
> > > a port is I think covered in the porters handbook. In short:
> > > cd /usr/ports
> > > shar `find category/portname -type f` >/tmp/portname.sh.
> >
> > I'm attaching the file as a ZIP (so that it doesn't get clobbered
> > anywhere). Thanks for your help - I really appreciate it!
>
> Here you go:
> php -i:
> kadm5
>
> kadm5 support => enabled
>
> You will have to test if this works as expected. I just made it compile and
> link.
>
Eep, sorry for not cleaning up the test output. I was checking if make test
can be run, but run-tests.php doesn't work without full source as it screws
with LD_LIBRARY_PATH.
--
Mel
_______________________________________________
freebsd-ports(a)freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscribe(a)freebsd.org"
From: Mel Flynn on 15 Sep 2009 18:23
On Wednesday 16 September 2009 00:02:49 Tim Gustafson wrote:
> > You will have to test if this works as expected. I just made it
> > compile and link.
>
> Awesome, thanks! I've got it complied and installed.
>
> Here's what I get when I use this library now:
>
> /libexec/ld-elf.so.1: /usr/lib/libkrb5.so.9: Undefined symbol "issuid"
>
> Is that enough to go on, or do you need more info?

Ah yes, didn't test on earlier versions. It's passed midnight here, but I'll
add fixes for 7 and 6.x if possible. You probably need to add -lroken to the
link chain for this. If you get what's happening in files/patch-config.m4 you
can try and fix it yourself.
--
Mel
_______________________________________________
freebsd-ports(a)freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscribe(a)freebsd.org"
From: Tim Gustafson on 15 Sep 2009 20:16
------=_Part_29272_1051975718.1253060167007
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

> Ah yes, didn't test on earlier versions. It's passed midnight here,
> but I'll add fixes for 7 and 6.x if possible. You probably need to
> add -lroken to the link chain for this. If you get what's happening
> in files/patch-config.m4 you can try and fix it yourself.

Thanks for all your help on this - I'm really getting excited about the prospect of using this library. I've been holding out for like a year now. :\

I got a bit further than before - I'm attaching the updated files/patch-config.m4 file. I added roken and also com_err. The library compiles and I can call functions in it.

However, this is what I'm getting in the Apache error log now:

foo/admin(a)BLAH.LOCAL's Password:

It looks like it's trying to prompt me for a password interactively over STDERR or something at the server level.

Tim Gustafson
Baskin School of Engineering
UC Santa Cruz
tjg(a)soe.ucsc.edu
831-459-5354
------=_Part_29272_1051975718.1253060167007
Content-Type: application/octet-stream; name=patch-config.m4
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=patch-config.m4

--- config.m4.orig 2003-05-09 16:28:45.000000000 +0200
+++ config.m4 2009-09-15 23:41:56.000000000 +0200
36a37,58
> SEARCH_PATH="/usr/local/include /usr/include /usr/src/krb5-1.2.4/src/include"
> SEARCH_FOR="kadm5/kadm5_err.h"
> AC_MSG_CHECKING(for kadm5/kadm5_err.h)
> for i in $SEARCH_PATH ; do
> if test -r $i/$SEARCH_FOR; then
> AC_DEFINE(HAVE_KADM5_ERR_H, [], [Wether kadm5/kadm5_err.h is present])
> AC_MSG_RESULT(found in $i)
> fi
> done
> AC_MSG_CHECKING(various enum values)
> ENUMS="KADM5_AUTH_SETKEY KADM5_SETKEY_DUP_ENCTYPES"
> found=0
> for i in $ENUMS; do
> if grep -q $i $KADM5_DIR/*; then
> AC_DEFINE([HAVE_$i], [], [System has $i])
> AC_MSG_RESULT($i)
> found=1
> fi
> done
> if test $found -eq 0; then
> AC_MSG_RESULT(none)
> fi
59c81
< PHP_ADD_LIBRARY_WITH_PATH(gssrpc, /usr/lib, KADM5_SHARED_LIBADD)
---
> dnl not needed in FreeBSD PHP_ADD_LIBRARY_WITH_PATH(gssrpc, /usr/lib, KADM5_SHARED_LIBADD)
61,62c83,88
< PHP_ADD_LIBRARY_WITH_PATH(k5crypto, /usr/lib, KADM5_SHARED_LIBADD)
< PHP_ADD_LIBRARY_WITH_PATH(dyn, /usr/lib, KADM5_SHARED_LIBADD)
---
> dnl not needed in FreeBSD PHP_ADD_LIBRARY_WITH_PATH(k5crypto, /usr/lib, KADM5_SHARED_LIBADD)
> dnl not needed in FreeBSD PHP_ADD_LIBRARY_WITH_PATH(dyn, /usr/lib, KADM5_SHARED_LIBADD)
> dnl needed for FreeBSD:
> PHP_ADD_LIBRARY_WITH_PATH(asn1, /usr/lib, KADM5_SHARED_LIBADD)
> PHP_ADD_LIBRARY_WITH_PATH(roken, /usr/lib, KADM5_SHARED_LIBADD)
> PHP_ADD_LIBRARY_WITH_PATH(com_err, /usr/lib, KADM5_SHARED_LIBADD)

------=_Part_29272_1051975718.1253060167007
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
freebsd-ports(a)freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscribe(a)freebsd.org"
------=_Part_29272_1051975718.1253060167007--
From: Mel Flynn on 16 Sep 2009 09:28
On Wednesday 16 September 2009 02:16:07 Tim Gustafson wrote:
> > Ah yes, didn't test on earlier versions. It's passed midnight here,
> > but I'll add fixes for 7 and 6.x if possible. You probably need to
> > add -lroken to the link chain for this. If you get what's happening
> > in files/patch-config.m4 you can try and fix it yourself.
>
> Thanks for all your help on this - I'm really getting excited about the
> prospect of using this library. I've been holding out for like a year
> now. :\
>
> I got a bit further than before - I'm attaching the updated
> files/patch-config.m4 file. I added roken and also com_err. The library
> compiles and I can call functions in it.
>
> However, this is what I'm getting in the Apache error log now:
>
> foo/admin(a)BLAH.LOCAL's Password:
>
> It looks like it's trying to prompt me for a password interactively over
> STDERR or something at the server level.

The latest release is 2003 so it looks largely unmaintained :/. I don't have a
kerberos server available that I can play with, without upsetting people :).
There's also no docs available that specify if this module is meant to be
working through a webserver. However, you did specify a password for
kadm5_init_with_password in php? If you have some php testcode, I can see if I
can steal a jail to setup a test kerberos server.
--
Mel
_______________________________________________
freebsd-ports(a)freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscribe(a)freebsd.org"
From: Tim Gustafson on 16 Sep 2009 10:56
------=_Part_29407_287177134.1253112934892
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

> The latest release is 2003 so it looks largely unmaintained
> :/. I don't have a kerberos server available that I can play
> with, without upsetting people :). There's also no docs
> available that specify if this module is meant to be working
> through a webserver. However, you did specify a password for
> kadm5_init_with_password in php? If you have some php testcode,
> I can see if I can steal a jail to setup a test Kerberos server.

Yeah, I noticed that the PECL module itself was unmaintained at this point, but I was hoping that it was functional.

Yes, I'm specifying a password to kadm5_init_with_password. Please see attached PHP script, which runs under Apache-level authentication.

If I run this from the command line, it does indeed prompt me interactively for a password. I'm wondering if that's a function of the PECL library itself, or if it's due to something internal to Kerberos that's changed since the PECL module was released.

I guess I'm going to have to learn some more C if I want this to work. :(

Tim Gustafson
Baskin School of Engineering
UC Santa Cruz
tjg(a)soe.ucsc.edu
831-459-5354

------=_Part_29407_287177134.1253112934892
Content-Type: application/octet-stream; name=kerberos.php
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment; filename=kerberos.php

<?php

if (($_SERVER["PHP_AUTH_USER"] == "") or
($_SERVER["PHP_AUTH_PW"] == "")) {
echo "ERROR: Your user name or password was not supplied.";

exit(1);
}

$Kerberos = kadm5_init_with_password("kerberos-01",
"FOO.LOCAL",
$_SERVER["PHP_AUTH_USER"],
$_SERVER["PHP_AUTH_PW"]);

if (!$Kerberos) {
echo "ERROR: Could not authenticate against the Kerberos server.";

exit(1);
}

$Princs = kadm5_get_principals($Kerberos);

if (!$Princs) {
echo "ERROR: Could not get list of principals.";

exit(1);
}

echo "<pre>\n";
print_r($Princs);
echo "</pre>\n";

kadm5_destroy($Kerberos);

?>
------=_Part_29407_287177134.1253112934892
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
freebsd-ports(a)freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-ports
To unsubscribe, send any mail to "freebsd-ports-unsubscribe(a)freebsd.org"
------=_Part_29407_287177134.1253112934892--
First  |  Prev  | 
Pages: 1 2
Prev: libx11 build problems
Next: Upgraded Trac, but still getting errors...