core dumps with slapd, TLS, and solaris 8

[phil@bolthole.com]

Hi folks,
I'm trying to get openldap and TLS working with solaris. I'm giving up on
SASL for now :-)
But things are going horribly, horribly wrong.

I tried openldap 2.0.7. It core-dumped.
I found the patch for libraries/libldap/open.c
Didn't help at all.

I did a cvs grab of the latest version: did not help!!!

Seems to die in the SAME PLACE.
Here's the relevant info:


(slapd started with slapd -h "ldap:// ldaps://" -d 3 )
# sh /etc/init.d/slapd start
ldap_url_parse_ext(ldap://)
ldap_url_parse_ext(ldaps://)
Segmentation Fault - core dumped

after copying the non-stripped executable to libexec, gdb says
#0  0xdf7dcee9 in strlen () from /usr/lib/libc.so.1
(gdb) bt
#0  0xdf7dcee9 in strlen () from /usr/lib/libc.so.1
#1  0xdf80ce0e in _doprnt () from /usr/lib/libc.so.1
#2  0xdf80e843 in vsnprintf () from /usr/lib/libc.so.1
#3  0x80991b7 in ldap_log_printf (ld=0x0, loglvl=-1, 
    fmt=0x80ba080 "TLS: could not load verify locations
(file:`%s',dir:`%s').\n") at print.c:48
#4  0x809d05e in ldap_pvt_tls_init_def_ctx () at tls.c:196
#5  0x805bfde in main (argc=5, argv=0x8047480) at main.c:403
#6  0x805bb03 in _start ()


But the thing is... the "could not load verify locations" string is
NOT PASSED IN at tls.c, line 196.
It's from tls.c, line **159**
So some really ugly stuff seems to be happening.

This is solaris 8 intel (MU3), gcc 2.95.2, openssl 0.9.6

Here's the stuff I added to slapd.conf:
TLSCipherSuite HIGH:MEDIUM:+SSLv2
TLSCertificateFile /usr/local/etc/openldap/ldapcert.pem
TLSCACertificateFile /usr/local/etc/openldap/ldapreq.pem
TLSCertificateKeyFile /usr/local/etc/openldap/demoCA/cacert.pem