When trying to compile apache+mod_ssl against a recent snapshot of
openssl-0.9.8-dev (?), I get compile errors because the #define for
NID_uniqueIdentifier
is no longer present. It used to be both in objects.h and in obj_mac.h
(and is referenced in ssl_engine_vars.c):
cscope:
0 ssl_engine_vars.c <global> 410 { "UID", NID_uniqueIdentifier },
1 objects.h <global> 557 #define NID_uniqueIdentifier 102
2 obj_mac.h <global> 1550 #define NID_uniqueIdentifier 102
Now the funny thing is that the variable is still present in an up-to-date
copy of objects.h, but it has vanished from obj_mac.h (but USE_OBJ_MAC
is set so it is only #included freom the latter).
It appears that a renaming has happened, as the string "UID" is still
present in both include files, albeit with a different definition:
---obj_mac.h:---
#define SN_userId "UID"
#define LN_userId "userId"
#define NID_userId 458
#define OBJ_userId OBJ_pilotAttributeType,1L
---objects.h:---
#define SN_uniqueIdentifier "UID"
#define LN_uniqueIdentifier "uniqueIdentifier"
#define NID_uniqueIdentifier 102
#define OBJ_uniqueIdentifier OBJ_X509,45L
And it is the "UID" which mod_ssl tries to decode:
static const struct {
char *name;
int nid;
} ssl_var_lookup_ssl_cert_dn_rec[] = {
...
{ "UID", NID_uniqueIdentifier },
...
{ NULL, 0 }
};
So, which file is correct, or: why was obj_mac.h fixed, but objects.h
wasn't?
Puzzled,
Martin
--
<[EMAIL PROTECTED]> | Fujitsu Siemens
Fon: +49-89-636-46021, FAX: +49-89-636-47655 | 81730 Munich, Germany
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
