[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slurpd ignores TLS-specific options in slapd.conf (ITS#1947)

slurpd(8), like other LDAP clients, uses ldap.conf(5) for
configuring TLS.


At 10:28 PM 2002-07-15, spam4octan@highway.ru wrote:
>Full_Name: Peter A. Savitch
>Version: 2.1.3
>OS: Linux
>URL: ftp://ftp.openldap.org/incoming/Peter-Savitch-020715.patch
>Submission from: (NULL) (
>Hi people.
>I see servers/slurpd/config.c looks for options that it is explicitly
>interersted in.
>For instance, if I declare my own TLSCACertificateFile in slapd.conf(5), it is
>ignored completely (and that's why SSL failes with my own Root CA).
>This could lead to some other bugs, not only TLS-related, especially in the
>I suggest You to share configuration parsing/loading between slapd and slurpd in
>a more effecient manner than simply copying parts of code from the former one to
>the latter one. This does not seems a big deal imho...
>The patch supplied should be checked before use -- may be I've lost something.
>Thank You.