[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#6964) ./configure bug when specifying openssl as the TLS library to use

Full_Name: Paul Rogers
Version: 2.4.23
OS: Solaris 8 / 10
Submission from: (NULL) (

Objective: Compile OpenLDAP with SSL and TLS support against the latest OpenSSL
library that is statically compiled so it is easier to port between secure

Operating System: Solaris 8 and 10, but could affect others (not tested).

Compiled static libraries additional to the system: OpenSSL 0.9.8r

Issue: When compiling OpenLDAP with openssl support for TLS / SSL, the configure
script doesn't have a logic check to see if RSAglue and rsaref libraries should
be used (now deprecated in OpenSSL) at line 19408.

There are other places in configure where a check is made to see if $need_rsaref
is set to yes. This needs applying to line 19408 also.

Workaround: Manually change configure at line 19408 to LIBS="-lssl -lcrypto
$LIBS" if you need to explicitly compile with OpenSSL TLS / SSL support.

Evidence and command executed (from Solaris 10 but same thing occurred on
Solaris 8 also):
$ CC="/usr/sfw/bin/gcc" LIBS="-lssl -lcrypto -lresolv -lgen -lnsl -lsocket"
./configure --prefix=/workingdir/openldap-2.4.23/build-SOLARIS/usr/local/openldap-2.4.23
--disable-slapd --disable-shared --disable-dynamic --with-tls=openssl
Configuring OpenLDAP 2.4.23-Release ...
checking build system type... sparc-sun-solaris2.10
checking host system type... sparc-sun-solaris2.10
checking target system type... sparc-sun-solaris2.10
(other checks)
checking struct sockaddr_storage... yes
checking sys/un.h usability... yes
checking sys/un.h presence... yes
checking for sys/un.h... yes
checking openssl/ssl.h usability... yes
checking openssl/ssl.h presence... yes
checking for openssl/ssl.h... yes
checking for SSL_library_init in -lssl... no
checking for ssl3_accept in -lssl... no
configure: error: Could not locate TLS/SSL package