Redundant ldap's bug?

Paulo Cabrita pjc at ual.pt
Thu Apr 6 15:56:37 CEST 2006


Hi Alan,

I saw the code a little closer and I think it's not worthy to try to 
have one CA and two certificate for each server. The LDAP client only 
support the data for one connection...

static char *tls_opt_certfile = NULL;
static char *tls_opt_keyfile = NULL;
static char *tls_opt_dhfile = NULL;
static char *tls_opt_cacertfile = NULL;
static char *tls_opt_cacertdir = NULL;

What do you think?



Alan DeKok wrote:

>Paulo Cabrita <pjc at ual.pt> wrote:
>...
>
>  See:
>
>http://www.openldap.org/devel/cvsweb.cgi/~checkout~/libraries/libldap/tls.c?rev=1.133&hideattic=1&sortbydate=0
>
>...
>static char *tls_opt_cacertfile = NULL;
>...
>
>  Yup.  It's a bug in the OpenLDAP client library.  They don't support
>multiple users of LDAP connections in the same program.
>
>  I'll file a bug with the OpenLDAP project.
>
>  Alan DeKok.
>- 
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>  
>

-- 

Atentamente,

------------------------------------
|Paulo Cabrita, Msc                |
|Director do Centro de Informática |
|da Universidade Autónoma de Lisboa|
|Tel: +351-213177635               |
|Fax: +351-213533702               |
|E-mail: pjc at ual.pt                |
------------------------------------





More information about the Freeradius-Users mailing list