Thanks Philip. I am new to openldap and openssl. I will check my code once again and try to file an ITS .
Thanks again. This is of great help.
On Thu, Aug 28, 2014 at 1:01 PM, Philip Guenther pguenther@proofpoint.com wrote:
On Thu, 28 Aug 2014, SOMA SEKHAR wrote:
Thanks for the quick response. As far as I know , LDAP_OPT_X_TLS_CTXwill set the SSL_CTX pointer. I tried to set this opition to NULL before I did a start tls for the second time. I observed process crash at this time .
Did you file an ITS about that?
. From what you are saying , I understood that SSL_CTX had conext from which the ca cert is verified for the second time. Please correct me if I am wrong
That's my *guess*, but I may be completely wrong. I no longer have a need to "JUST MAKE IT WORK" for my job, so I'm not going to waste my time reading the openldap source to find a workaround for the stuff that the openldap developers aren't going to stand behind by documenting.
Philip Guenther