start tls

Michael Ströder michael at stroeder.com
Thu Aug 9 03:34:58 CEST 2001


Steffen,

sorry for following-up so late.

Steffen Ries wrote:
> 
> attached is a small (experimental) patch, which enables
> 'start_tls_s()' in python-ldap.

I built with your patch against OpenLDAP 2.0.11 and did some tests
without StartTLS first.

Everything went well running (with web2ldap) against
ldap.openldap.org but it failed when accessing www.nldap.com (Novell
DS) or ldap.surfnet.nl (Netscape DS). I got segmentation faults.

The OpenLDAP 2.0-patches by Konstantin for python-ldap posted before
on the mailing list worked. Maybe you already have a newer version
of your patch?

I checked the shared libs. Seems ok to me.

$ ldd _ldap.so 
        libldap.so.2 => /usr/local/openldap2/lib/libldap.so.2
(0x40023000)
        liblber.so.2 => /usr/local/openldap2/lib/liblber.so.2
(0x4004e000)
        libc.so.6 => /lib/libc.so.6 (0x40058000)
        libsasl.so.7 => /usr/lib/libsasl.so.7 (0x4016b000)
        libssl.so.0.9.6 => /usr/lib/libssl.so.0.9.6 (0x40176000)
        libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6
(0x4022e000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x80000000)
        libgdbm.so.2 => /usr/lib/libgdbm.so.2 (0x402f2000)
        libdl.so.2 => /lib/libdl.so.2 (0x402fa000)
        libcrypt.so.1 => /lib/libcrypt.so.1 (0x402fd000)
        libpam.so.0 => /lib/libpam.so.0 (0x4032b000)
        libresolv.so.2 => /lib/libresolv.so.2 (0x40333000)

> I included Konstanin's patches and the memory leak fixes and have run
> the diff against the current CVS version. David's CIDict patches
> are not included, so I disabled CIDict to get it running with
> python2.1.

We'll drop CIDict anyway.

Ciao, Michael.




More information about the python-ldap mailing list