[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: (ITS#8805) Documentation for LDAP_OPT_X_TLS_NEWCTX is wrong
- To: openldap-its@OpenLDAP.org
- Subject: Re: (ITS#8805) Documentation for LDAP_OPT_X_TLS_NEWCTX is wrong
- From: hyc@symas.com
- Date: Thu, 15 Feb 2018 16:04:51 +0000
- Auto-submitted: auto-generated (OpenLDAP-ITS)
cheimes@redhat.com wrote:
> Full_Name: Christian Heimes
> Version: 2.4.45
> OS: Fedora
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (2001:16b8:607e:f300:6312:6da:8e63:dfa2)
>
>
> The documentation for ldap_set_option LDAP_OPT_X_TLS_NEWCTX is wrong or at least
> misleading. The man page https://linux.die.net/man/3/ldap_set_option describes
> the option as:
>
>> Instructs the library to create a new TLS library context. invalue must be
> const int *. A non-zero value pointed to by invalue tells the library to create
> a context for a server.
>
> However tls2 creates a new context for any non-NULL argument, even for
> ldap_set_option(l, LDAP_OPT_X_TLS_NEWCTX, 0). See
> https://github.com/openldap/openldap/blob/OPENLDAP_REL_ENG_2_4_45/libraries/libldap/tls2.c#L799-L804
I see no disagreement between the code and the documentation. Please
elaborate, otherwise this ITS will be closed.
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/