[Date Prev][Date Next] [Chronological] [Thread] [Top]
Re: certificateExactMatch missing on HP-UX built

To: "Kurt" <Kurt@OpenLDAP.org>
Subject: Re: certificateExactMatch missing on HP-UX built
From: "s\.rossi\@libero\.it" <s.rossi@libero.it>
Date: Sat, 16 Oct 2004 14:23:48 +0200
Cc: "openldap-software" <openldap-software@OpenLDAP.org>
Hi Kurt,

> I note that 2.1 is historic.  You should consider upgrading to
> at least the latest stable release of OpenLDAP Software.

I've followed this way, but, unfortunately I still have problems with 2.2.X. Everything seems OK until I launch 'make depend' when I receive this error:

----

Making depend in /opt/openldap-2.2.12
  Entering subdirectory include
Making ldap_config.h
 
  Entering subdirectory libraries
Making depend in /opt/openldap-2.2.12/libraries
  Entering subdirectory liblutil
	../../build/mkdep   -d "." -c "gcc" -m "-M" -I../../include        -I../../include      base64.c csn.c entropy.c sasl.c signal.c hash.c passfile.c  md5.c passwd.c sha1.c getpass.c lockf.c utils.c uuid.c sockpair.c  avl.c ldif.c fetch.c  testavl.c  setproctitle.c getpeereid.c detach.c 
 
  Entering subdirectory liblber
	../../build/mkdep -l  -d "." -c "gcc" -m "-M" -I../../include -I../../include      assert.c decode.c encode.c io.c bprint.c debug.c  memory.c options.c sockbuf.c stdio.c 
 
  Entering subdirectory liblunicode
	touch .links
	../../build/mkdep   -d "." -c "gcc" -m "-M" -I../../include        -I../../include      ucstr.c ucdata.c ucgendat.c ure.c urestubs.c
 
  Entering subdirectory libldap
	../../build/mkdep -l  -d "." -c "gcc" -m "-M" -I../../include        -I../../include      bind.c open.c result.c error.c compare.c search.c  controls.c messages.c references.c extended.c cyrus.c  modify.c add.c modrdn.c delete.c abandon.c  sasl.c sbind.c kbind.c unbind.c cancel.c   filter.c free.c sort.c passwd.c whoami.c  getdn.c getentry.c getattr.c getvalues.c addentry.c  request.c os-ip.c url.c sortctrl.c vlvctrl.c  init.c options.c print.c string.c util-int.c schema.c  charray.c tls.c os-local.c dnssrv.c utf-8.c utf-8-conv.c 
 
  Entering subdirectory libldap_r
	touch .links
	../../build/mkdep -l  -d "." -c "gcc" -m "-M" -I../../include        -I../../include  -DLDAP_R_COMPILE -I./../libldap    threads.c rdwr.c tpool.c rq.c  thr_posix.c thr_cthreads.c thr_thr.c thr_lwp.c thr_nt.c  thr_pth.c thr_stub.c apitest.c test.c  bind.c open.c result.c error.c compare.c search.c  controls.c messages.c references.c extended.c cyrus.c  modify.c add.c modrdn.c delete.c abandon.c  sasl.c sbind.c kbind.c unbind.c cancel.c  filter.c free.c sort.c passwd.c whoami.c  getdn.c getentry.c getattr.c getvalues.c addentry.c  request.c os-ip.c url.c sortctrl.c vlvctrl.c  init.c options.c print.c string.c util-int.c schema.c  charray.c tls.c os-local.c dnssrv.c utf-8.c utf-8-conv.c
 
  Entering subdirectory librewrite
	../../build/mkdep   -d "." -c "gcc" -m "-M" -I../../include        -I../../include      config.c context.c info.c ldapmap.c map.c params.c rule.c  session.c subst.c var.c xmap.c  parse.c rewrite.c 
 
 
  Entering subdirectory clients
Making depend in /opt/openldap-2.2.12/clients
  Entering subdirectory tools
	../../build/mkdep   -d "." -c "gcc" -m "-M" -I../../include        -I../../include      ldapsearch.c ldapmodify.c ldapdelete.c ldapmodrdn.c  ldappasswd.c ldapwhoami.c ldapcompare.c common.c
 
 
  Entering subdirectory servers
Making depend in /opt/openldap-2.2.12/servers
  Entering subdirectory slapd
Make: line 512: syntax error.  Stop.
*** Error exit code 1

Stop.
*** Error exit code 1

Stop.

-----

This is the log from 2.2.12 but nothing change from this version to .17 (tried all version). The compiling environment is the same I've used for 2.1.30.


> IIRC, 2.1 implements userCertificate and other certificate-related
> attributes in accordance with RFC 2256.  In RFC 2256, userCertificate
> is defined to have no equality matching rule.  Note also that the
> certificateExactMatch matching rule has yet to be specified on
> the Standards Track for use in LDAP.
> 
> 2.2 implements certificate attributes in a manner more consistent
> with X.509, the LDAP and implementation particulars of which are
> still a "work in progress".  I'm hoping to ready an I-D for
> consideration as a Standards Track RFC in the next few months.
[cut]

I've followed all the discussion about this matter reading a lot of mail on the ML archive, trying to find out a solution for my problem. To be honest, at this moment I do not need a strictly RFC compliant LDAP server, my PKI it's an old UniCERT infrastructure and I'm only trying to undestand why my built on HPUX is missing this matching rule and other built (on Windows, Red Hat, Mandrake, even the  one for HPUX from Symas) do not present this problem. 

Thank you for your help,
Simon.

P.S. If you wish I will open another thread with the problem I found compiling the 2.2.X, attaching more data (i.e. configure log)



____________________________________________________________
Libero ADSL: navighi gratis a 1.2 Mega, senza canone e costi di attivazione. 
Abbonati subito su http://www.libero.it
Prev by Date: Re: auth trigger
Next by Date: Re: Oracle Internet Directory
Index(es):
- Chronological
- Thread