[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5360) wrong default for TLSVerifyClient (with GnuTLS?)

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#5360) wrong default for TLSVerifyClient (with GnuTLS?)
From: hyc@symas.com
Date: Sun, 10 Feb 2008 05:30:29 GMT

steve.langasek@canonical.com wrote:
> Full_Name: Steve Langasek
> Version: 2.4.7
> OS: Debian
> URL: http://people.ubuntu.com/~vorlon/slapd-tlsverifyclient-default.patch
> Submission from: (NULL) (2001:4830:1244:0:219:d2ff:fe76:2acb)
>
>
> The code in slapd whose purpose is to override the library default value for
> LDAP_OPT_X_TLS_REQUIRE_CERT is failing, at least when OpenLDAP is built with
> GnuTLS, because the override is done to a set of "global" options which are
> never used.
>
> The patch referenced below has been verified to fix this issue.

Thanks for the patch, committed to HEAD.

-- 
   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP     http://www.openldap.org/project/

Prev by Date: Re: (ITS#5362) syncrepl provider kills consumer by sending truncated cookie
Next by Date: Re: (ITS#5363) ldapsearch hangs when using ldap for host in nsswitch
Index(es):
- Chronological
- Thread