[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#6964) ./configure bug when specifying openssl as the TLS library to use

To: openldap-its@OpenLDAP.org
Subject: (ITS#6964) ./configure bug when specifying openssl as the TLS library to use
From: the_uhu@hotmail.com
Date: Wed, 8 Jun 2011 13:06:16 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Paul Rogers
Version: 2.4.23
OS: Solaris 8 / 10
URL: 
Submission from: (NULL) (77.245.78.130)


Objective: Compile OpenLDAP with SSL and TLS support against the latest OpenSSL
library that is statically compiled so it is easier to port between secure
systems.

Operating System: Solaris 8 and 10, but could affect others (not tested).

Compiled static libraries additional to the system: OpenSSL 0.9.8r

Issue: When compiling OpenLDAP with openssl support for TLS / SSL, the configure
script doesn't have a logic check to see if RSAglue and rsaref libraries should
be used (now deprecated in OpenSSL) at line 19408.

There are other places in configure where a check is made to see if $need_rsaref
is set to yes. This needs applying to line 19408 also.

Workaround: Manually change configure at line 19408 to LIBS="-lssl -lcrypto
$LIBS" if you need to explicitly compile with OpenSSL TLS / SSL support.

Evidence and command executed (from Solaris 10 but same thing occurred on
Solaris 8 also):
$ CC="/usr/sfw/bin/gcc" LIBS="-lssl -lcrypto -lresolv -lgen -lnsl -lsocket"
LDFLAGS="-L/workingdir/openssl-0.9.8r/build-SOLARIS/usr/local/openssl-0.9.8r/lib
-R/workingdir/openssl-0.9.8r/build-SOLARIS/usr/local/openssl-0.9.8r/lib"
CPPFLAGS="-I/workingdir/openssl-0.9.8r/build-SOLARIS/usr/local/openssl-0.9.8r/include"
./configure --prefix=/workingdir/openldap-2.4.23/build-SOLARIS/usr/local/openldap-2.4.23
--disable-slapd --disable-shared --disable-dynamic --with-tls=openssl
--with-ssl
Configuring OpenLDAP 2.4.23-Release ...
checking build system type... sparc-sun-solaris2.10
checking host system type... sparc-sun-solaris2.10
checking target system type... sparc-sun-solaris2.10
...
(other checks)
...
checking struct sockaddr_storage... yes
checking sys/un.h usability... yes
checking sys/un.h presence... yes
checking for sys/un.h... yes
checking openssl/ssl.h usability... yes
checking openssl/ssl.h presence... yes
checking for openssl/ssl.h... yes
checking for SSL_library_init in -lssl... no
checking for ssl3_accept in -lssl... no
configure: error: Could not locate TLS/SSL package

Prev by Date: Re: (ITS#6878) ppcache segfault with tavl_delete
Next by Date: Re: (ITS#6878) ppcache segfault with tavl_delete
Index(es):
- Chronological
- Thread