Bug 244937 - mod_admserv: Should do client TLS/SSL init even if mod_nss not used
mod_admserv: Should do client TLS/SSL init even if mod_nss not used
Status: CLOSED CURRENTRELEASE
Product: 389
Classification: Community
Component: Admin (Show other bugs)
1.1.0beta
All Linux
low Severity low
: ---
: ---
Assigned To: Rich Megginson
Viktor Ashirov
:
Depends On:
Blocks: 240316 FDS1.1.0
  Show dependency treegraph
 
Reported: 2007-06-19 19:10 EDT by Rich Megginson
Modified: 2015-12-07 11:31 EST (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2015-12-07 11:31:51 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)
diffs (3.35 KB, patch)
2007-06-19 19:12 EDT, Rich Megginson
no flags Details | Diff

  None (edit)
Description Rich Megginson 2007-06-19 19:10:55 EDT
The way mod_admserv works now is that it only does NSS initialization if mod_nss
is being used.  But mod_nss is only for the server side of TLS/SSL.  mod_admserv
needs to be able to speak LDAPS to the directory server even if it is not a
TLS/SSL server itself.
Comment 1 Rich Megginson 2007-06-19 19:12:33 EDT
Created attachment 157430 [details]
diffs
Comment 2 Noriko Hosoi 2007-06-19 19:28:50 EDT
Your changes look good.
Comment 3 Rich Megginson 2007-06-19 19:33:35 EDT
Reviewed by: nhosoi (Thanks!)
Fix Description: The way the code currently works is that mod_admserv let's
mod_nss do all of the NSS initialization.  But mod_nss is only used when the
admin server is also a TLS/SSL server.  mod_admserv still needs to do NSS
initialization when it is a TLS/SSL client (e.g. of the config DS using LDAPS).
 This fix allows mod_admserv to do the client side TLS/SSL init.
Platforms tested: RHEL4
Flag Day: no
Doc impact: no

Index: mod_admserv.c
===================================================================
RCS file: /cvs/dirsec/mod_admserv/mod_admserv.c,v
retrieving revision 1.29
retrieving revision 1.30
diff -u -r1.29 -r1.30
--- mod_admserv.c	11 May 2007 19:46:36 -0000	1.29
+++ mod_admserv.c	19 Jun 2007 23:31:12 -0000	1.30

Note You need to log in before you can comment on or make changes to this bug.