View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000479 | LDMud 3.3 | Compilation, Installation | public | 2006-07-19 11:07 | 2018-01-29 22:57 |
| Reporter | lynx | Assigned To | Gnomi | ||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | resolved | Resolution | fixed | ||
| Product Version | 3.3.713 | ||||
| Summary | 0000479: disable TLS at runtime no longer possible | ||||
| Description | in earlier versions of ldmud you just needed to leave out --tls-key and the driver would not activate its TLS abilities. nowadays the behaviour has changed, openSSL looks for default certificates and complains if it doesn't find any. we find it very practical to compile ldmud with TLS because the admin might at a later time decide to use it and can then simply activate it in the configuration files. so we think either openSSL should not complain after not being successful, or we should be able to provide a --no-tls flag to the driver. of course we can also redirect ldmud output to /dev/null ... ;) then the admin will never know what went wrong.. like with a microsoft product. | ||||
| Additional Information | this sort of output is making casual new ldmud users nervous: 2006.07.19 17:51:44 LDMud 3.3.714 (Build 2308) (development) 2006.07.19 17:51:44 TLS: (OpenSSL) x509 keyfile 'key.pem', certfile 'cert.pem' 2006.07.19 17:51:44 TLS: (OpenSSL) trusted x509 certificates from directory '/et c/ssl/certs'. 2006.07.19 17:51:44 TLS: Error setting x509 keyfile: 2006.07.19 17:51:44 TLS: SSL error:02001002:system library:fopen:No such file or directory. 2006.07.19 17:51:44 TLS: SSL error:20074002:BIO routines:FILE_CTRL:system lib. 2006.07.19 17:51:44 TLS: SSL error:140B0002:SSL routines:SSL_CTX_use_PrivateKey_ file:system lib. 2006.07.19 17:51:44 Random seed: 0x44be4700 2006.07.19 17:51:44 Attempting to start erq '/home/nt/psyced/bin-linux/erq'. | ||||
| Tags | No tags attached. | ||||
|
|
tls is disabled, as the driver does not find the default certificate files. Are you sure that previous versions simply disabled tls and did not generate error messages? |
|
|
TLS can now be deactivated by default using configure (--with-tls-keyfile=no) and still used using the command line option --tls-key. (The other way around is also possible using '--tls-key none' on the command line to deactivate it.) Committed as r2590. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2006-07-19 11:07 | lynx | New Issue | |
| 2006-08-16 03:55 | fippo | Note Added: 0000514 | |
| 2008-12-26 18:34 | Gnomi | Status | new => assigned |
| 2008-12-26 18:34 | Gnomi | Assigned To | => Gnomi |
| 2009-05-19 17:40 | Gnomi | Note Added: 0001120 | |
| 2009-05-19 17:40 | Gnomi | Status | assigned => resolved |
| 2009-05-19 17:40 | Gnomi | Resolution | open => fixed |
| 2010-11-16 10:42 | Gnomi | Source_changeset_attached | => ldmud.git master f462aa94 |
| 2018-01-29 19:59 | Gnomi | Source_changeset_attached | => ldmud.git master f462aa94 |
| 2018-01-29 22:57 | Gnomi | Source_changeset_attached | => ldmud.git master f462aa94 |
