[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
(ITS#6964) ./configure bug when specifying openssl as the TLS library to use
- To: openldap-its@OpenLDAP.org
- Subject: (ITS#6964) ./configure bug when specifying openssl as the TLS library to use
- From: the_uhu@hotmail.com
- Date: Wed, 8 Jun 2011 13:06:16 GMT
- Auto-submitted: auto-generated (OpenLDAP-ITS)
Full_Name: Paul Rogers
Version: 2.4.23
OS: Solaris 8 / 10
URL:
Submission from: (NULL) (77.245.78.130)
Objective: Compile OpenLDAP with SSL and TLS support against the latest OpenSSL
library that is statically compiled so it is easier to port between secure
systems.
Operating System: Solaris 8 and 10, but could affect others (not tested).
Compiled static libraries additional to the system: OpenSSL 0.9.8r
Issue: When compiling OpenLDAP with openssl support for TLS / SSL, the configure
script doesn't have a logic check to see if RSAglue and rsaref libraries should
be used (now deprecated in OpenSSL) at line 19408.
There are other places in configure where a check is made to see if $need_rsaref
is set to yes. This needs applying to line 19408 also.
Workaround: Manually change configure at line 19408 to LIBS="-lssl -lcrypto
$LIBS" if you need to explicitly compile with OpenSSL TLS / SSL support.
Evidence and command executed (from Solaris 10 but same thing occurred on
Solaris 8 also):
$ CC="/usr/sfw/bin/gcc" LIBS="-lssl -lcrypto -lresolv -lgen -lnsl -lsocket"
LDFLAGS="-L/workingdir/openssl-0.9.8r/build-SOLARIS/usr/local/openssl-0.9.8r/lib
-R/workingdir/openssl-0.9.8r/build-SOLARIS/usr/local/openssl-0.9.8r/lib"
CPPFLAGS="-I/workingdir/openssl-0.9.8r/build-SOLARIS/usr/local/openssl-0.9.8r/include"
./configure --prefix=/workingdir/openldap-2.4.23/build-SOLARIS/usr/local/openldap-2.4.23
--disable-slapd --disable-shared --disable-dynamic --with-tls=openssl
--with-ssl
Configuring OpenLDAP 2.4.23-Release ...
checking build system type... sparc-sun-solaris2.10
checking host system type... sparc-sun-solaris2.10
checking target system type... sparc-sun-solaris2.10
...
(other checks)
...
checking struct sockaddr_storage... yes
checking sys/un.h usability... yes
checking sys/un.h presence... yes
checking for sys/un.h... yes
checking openssl/ssl.h usability... yes
checking openssl/ssl.h presence... yes
checking for openssl/ssl.h... yes
checking for SSL_library_init in -lssl... no
checking for ssl3_accept in -lssl... no
configure: error: Could not locate TLS/SSL package