Bug 125579 - needs a patch to work with evolution-connector
Summary: needs a patch to work with evolution-connector
Alias: None
Product: Fedora
Classification: Fedora
Component: openldap   
(Show other bugs)
Version: 2
Hardware: i686
OS: Linux
Target Milestone: ---
Assignee: Nalin Dahyabhai
QA Contact:
Depends On:
TreeView+ depends on / blocked
Reported: 2004-06-09 00:39 UTC by David Lowe
Modified: 2007-11-30 22:10 UTC (History)
2 users (show)

Fixed In Version: 2.2.13-2
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2004-08-23 21:45:20 UTC
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

Description David Lowe 2004-06-09 00:39:49 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6)
Gecko/20040403 Firefox/0.8

Description of problem:
evolution-connector-1.4.7 requires a patch to openldap to function
correctly. In particular, the "Global Address List" in evolution does
not seem to work without this patch. The patch "openldap-ntlm.diff"
can be found in the docs directory of the evolution-connector source code.

Version-Release number of selected component (if applicable):
openldap-clients-2.1.29-1, openldap-2.1.29-1

How reproducible:

Steps to Reproduce:
1. Use evolution to connect to an Exchange Server
2. Global Address List does not work
3. Recompile openldap with patch, and evolution connector
4. Global address list does work

Additional info:

Comment 1 Nalin Dahyabhai 2004-07-14 18:15:37 UTC
Has this patch been submitted upstream?

Comment 2 David Lowe 2004-07-26 12:31:15 UTC
I found some discussion of submitting the patch here:

But could not see a submitted patch to openldap:

Ximian/SUSE/Novell releases its own evo-openldap package which
contains the patch.

Comment 3 Nalin Dahyabhai 2004-07-26 23:55:17 UTC
The packages pointed to above install things in /opt; I don't think
that's an option for us, but the build-another-copy strategy is doable
(ugh, the patch needs porting to 2.2, too).  Dave, how does
/usr/%{_lib}/evolution-openldap sound as a prefix for these files?

The static libraries will require libsasl2, so the connector's
configure script is going to have to be smart enough to add that
library, or we'll have to build them without SASL support.  If the
connector starts using SASL later on (Win2k3 appears to support
SASL/DIGEST-MD5 just fine, so this whole NTLM mess could be dispensed
with when talking to sufficiently-new servers), we'll have to fix the
connector's configure script anyway.

Comment 4 Tom DuVally 2004-08-05 17:58:34 UTC
As a note:
A dump of the network traffic during a failed attempt to connect to the GC shows that it 
attempts to bind using the username and password of the exchange account.  This is all 
sent clear-text.  

Comment 5 Nalin Dahyabhai 2004-08-23 21:45:20 UTC
Yes, if the connector does not detect ldap_ntlm_bind() at build-time,
it will instead call ldap_simple_bind(), and that's what you're seeing.
The openldap-devel-2.2.13-2 package will have patched static libraries
off in /usr/%{_lib}/evolution-openldap, and
evolution-connector-1.5.92-3 will make use of them.

Note You need to log in before you can comment on or make changes to this bug.