Re: LDAP: ldap_set_option failed. Could not set LDAP_OPT_X_TLS to LDAP_OPT_X_TLS_HARD

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Eric Covener wrote:

I think there's something related to SSL and how recent apache (it seems
from 2.2.12?) handle it: in fact, we had to move SSLCertificateFile into
httpd.conf and set explicitly "SSLEngine On" where needed (while before it
was a bit implicitly).


This version is where SNI came in, but I have a hard time buying that
you never had "SSLEngine on" in any context.
No no, we had them, but not in every context (at least one in each config file, but not in each vhost that needs that). 
Can you apply this patch and generate debugging info from the SDK?

http://people.apache.org/~covener/ldap_debug/
Thanks a lot for the patch! I applied (against 2.2.14 tarball code) it but then apache fails to build: 

make[4]: Entering directory `/path/to/src/httpd-2.2.14/modules/ldap'
/path/to/src/httpd-2.2.14/srclib/apr/libtool --silent --mode=compile gcc -g -O2 -pthread -DLINUX=2 -D_REENTRANT -D_GNU_SOURCE -D_LARGEFILE64_SOURCE -I/path/to/src/httpd-2.2.14/srclib/pcre -I. -I/path/to/src/httpd-2.2.14/os/unix -I/path/to/src/httpd-2.2.14/server/mpm/prefork -I/path/to/src/httpd-2.2.14/modules/http -I/path/to/src/httpd-2.2.14/modules/filters -I/path/to/src/httpd-2.2.14/modules/proxy -I/path/to/src/httpd-2.2.14/include -I/path/to/src/httpd-2.2.14/modules/generators -I/path/to/src/httpd-2.2.14/modules/mappers -I/path/to/src/httpd-2.2.14/modules/database -I/path/to/src/httpd-2.2.14/srclib/apr/include -I/path/to/src/httpd-2.2.14/srclib/apr-util/include -I/path/to/src/httpd-2.2.14/server -I/path/to/src/httpd-2.2.14/modules/proxy/../generators -I/path/to/openssl-0.9.8g-16052008/include -I/path/to/src/httpd-2.2.14/modules/ssl -I/path/to/src/httpd-2.2.14/modules/dav/main -prefer-pic -c util_ldap.c && touch util_ldap.slo 
util_ldap.c: In function 'util_ldap_merge_config':
util_ldap.c:1891: error: 'util_ldap_state_t' has no member named 'debug_level' util_ldap.c:1891: error: 'util_ldap_state_t' has no member named 'debug_level' 
util_ldap.c: In function 'util_ldap_post_config':
util_ldap.c:2053: error: 'util_ldap_state_t' has no member named 'debug_level' util_ldap.c:2054: error: 'util_ldap_state_t' has no member named 'debug_level' util_ldap.c:2058: error: 'util_ldap_state_t' has no member named 'debug_level' 
util_ldap.c: In function 'util_ldap_set_debug_level':
util_ldap.c:2080: error: 'util_ldap_state_t' has no member named 'debug_level' 
make[4]: *** [util_ldap.slo] Error 1
make[4]: Leaving directory `/path/to/src/httpd-2.2.14/modules/ldap'
make[3]: *** [shared-build-recursive] Error 1
make[3]: Leaving directory `/path/to/src/httpd-2.2.14/modules/ldap'
make[2]: *** [shared-build-recursive] Error 1
make[2]: Leaving directory `/path/to/src/httpd-2.2.14/modules'
make[1]: *** [shared-build-recursive] Error 1
make[1]: Leaving directory `/path/to/src/httpd-2.2.14'
make: *** [all-recursive] Error 1

Thanks for your help,
Sandro

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
  "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux