(ITS#3412) TLS options give errors with HEAD

[quanah@stanford.edu]

Full_Name: Quanah Gibson-Mount
Version: HEAD
OS: Solaris 8
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (171.66.182.82)


With the HEAD checkout as of 12/2/2004 at around 3 p.m., TLS options in the
slapd.conf file are not seen as valid.

My slapd.conf file starts:

# $Id: slapd.conf.master,v 1.13 2004/12/02 21:48:07 quanah Exp $
#
# See slapd.conf(5) for details on configuration options.
# This file should NOT be world readable.
#
include         /usr/local/etc/openldap/schema/core.schema
include         /usr/local/etc/openldap/schema/cosine.schema
include         /usr/local/etc/openldap/schema/dyngroup.schema
include         /usr/local/etc/openldap/schema/krb5-kdc.schema
include         /usr/local/etc/openldap/schema/inetorgperson.schema
include         /usr/local/etc/openldap/schema/misc.schema
include         /usr/local/etc/openldap/schema/nis.schema
include         /usr/local/etc/openldap/schema/eduperson.schema
include         /usr/local/etc/openldap/schema/suacct.schema
include         /usr/local/etc/openldap/schema/superson.schema
include         /usr/local/etc/openldap/schema/suapplication.schema

# Schema check allows for forcing entries to match schemas for
# their objectClasses's
schemacheck     on

# Use star cert
TLSCertificateFile      /usr/local/etc/openldap/stardomain.crt
TLSCertificateKeyFile   /usr/local/etc/openldap/stardomain.key
TLSCACertificateFile    /usr/local/etc/openldap/comodo.pem


This fails with:

line 23 (TLSCertificateFile     /usr/local/etc/openldap/stardomain.crt)
/usr/local/etc/openldap/slapd.conf: line 23: unknown tls_option <5>
/usr/local/etc/openldap/slapd.conf: line 23: handler for <TLSCertificateFile>
exited with -1!slapadd: bad configuration file!


This appears to be a problem with the new config work.

--Quanah