When trying to compile apache+mod_ssl against a recent snapshot of openssl-0.9.8-dev (?), I get compile errors because the #define for NID_uniqueIdentifier is no longer present. It used to be both in objects.h and in obj_mac.h (and is referenced in ssl_engine_vars.c): cscope: 0 ssl_engine_vars.c <global> 410 { "UID", NID_uniqueIdentifier }, 1 objects.h <global> 557 #define NID_uniqueIdentifier 102 2 obj_mac.h <global> 1550 #define NID_uniqueIdentifier 102
Now the funny thing is that the variable is still present in an up-to-date copy of objects.h, but it has vanished from obj_mac.h (but USE_OBJ_MAC is set so it is only #included freom the latter). It appears that a renaming has happened, as the string "UID" is still present in both include files, albeit with a different definition: ---obj_mac.h:--- #define SN_userId "UID" #define LN_userId "userId" #define NID_userId 458 #define OBJ_userId OBJ_pilotAttributeType,1L ---objects.h:--- #define SN_uniqueIdentifier "UID" #define LN_uniqueIdentifier "uniqueIdentifier" #define NID_uniqueIdentifier 102 #define OBJ_uniqueIdentifier OBJ_X509,45L And it is the "UID" which mod_ssl tries to decode: static const struct { char *name; int nid; } ssl_var_lookup_ssl_cert_dn_rec[] = { ... { "UID", NID_uniqueIdentifier }, ... { NULL, 0 } }; So, which file is correct, or: why was obj_mac.h fixed, but objects.h wasn't? Puzzled, Martin -- <[EMAIL PROTECTED]> | Fujitsu Siemens Fon: +49-89-636-46021, FAX: +49-89-636-47655 | 81730 Munich, Germany ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]