After painstakingly commenting everything out of all startup files, then
added them back in, I found the cause of the
"-bash: [: =: unary operator expected"
error that has been occurring on all Linux servers since turning on LDAP
TLS on INT.
In the file:
/etc/profile.d/krb5-workstation.sh
Th
That did it!
The example uses X509_REQ_get_subject_name(CSR). X509_REQs now contain
a pointer to a valid X509_NAME, so it's not necessary to allocate one.
I was leaking the original one when I replaced it with the new one.
Thanks very much, Steve.
Paul
___
Paul A
On Sat, May 30, 2009, Paul Suhler wrote:
> Hi.
>
> Using OpenSSL 0.9.8i, I'm getting a memory leak when I create a CSR. My
> process is taken more-or-less from the Viega, et al. book:
>
No idea what that version is but the one in demos/x509/mkreq.c doesn't leak
memory.
Steve.
--
Dr Stephen N.
Hi.
Using OpenSSL 0.9.8i, I'm getting a memory leak when I create a CSR. My
process is taken more-or-less from the Viega, et al. book:
Initial:
X509_REQ_new() to get the request structure
OPENSSL_malloc(1) to add a byte to the request for the version
RSA Key:
RSA_new() for an RSA structure
Try looking in /etc/profile, ~/.profile, ~/.bashrc, or other startup
files. You can always look at the man page for bash to figure out
what files it automatically reads, and the '-' at the beginning means
that it's a login shell.
-Kyle H
On May 29, 2009, at 9:52 PM, John Kane wrote:
Tha
Rene Hollan wrote:
> Well, the BIO_write or BIO_read on the SSL BIO wrapping the
> decrypted side of the SSL "black box" don't return WANT_* codes.
> They return the number of chars transferred, or -1 in case of
> error. At that point, one can get the SSL Error from the SSL session.
If you wr
how do I sign a certificate in openssl with the CRMF string generated from
mozilla .
On 05/30/2009 12:52 AM, John Kane wrote:
Thanks for the response, Kyle.
I've pretty much deduced what the error is, but just cannot figure out where it is coming
from. It only happens when I turn on TLS for LDAP. There are really no 'variables'
defined in the LDAP configs; nothing using the
