Hi Alan,
I saw the code a little closer and I think it's not worthy to try to
have one CA and two certificate for each server. The LDAP client only
support the data for one connection...
static char *tls_opt_certfile = NULL;
static char *tls_opt_keyfile = NULL;
static char *tls_opt_dhfile = NULL;
static char *tls_opt_cacertfile = NULL;
static char *tls_opt_cacertdir = NULL;
What do you think?
Alan DeKok wrote:
Paulo Cabrita <[EMAIL PROTECTED]> wrote:
...
See:
http://www.openldap.org/devel/cvsweb.cgi/~checkout~/libraries/libldap/tls.c?rev=1.133&hideattic=1&sortbydate=0
...
static char *tls_opt_cacertfile = NULL;
...
Yup. It's a bug in the OpenLDAP client library. They don't support
multiple users of LDAP connections in the same program.
I'll file a bug with the OpenLDAP project.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
--
Atentamente,
------------------------------------
|Paulo Cabrita, Msc |
|Director do Centro de Informática |
|da Universidade Autónoma de Lisboa|
|Tel: +351-213177635 |
|Fax: +351-213533702 |
|E-mail: [EMAIL PROTECTED] |
------------------------------------
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
