Errors when trying to authenticate with OIDCSSLValidateServer on #1215
Unanswered
GRRedWings
asked this question in
Q&A
Replies: 1 comment 2 replies
-
release artifacts are compiled against the OpenSSL version that comes with the distribution, there's no hardcoded dependency, any OpenSSL >= 1.0.0 will do |
Beta Was this translation helpful? Give feedback.
2 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
When I use the release artifacts to authenticate a user I have OIDCSSLValidateServer set to on, and I specify a crt file with OIDCCABundlePath. Everything works fine.
When I try to build the library for Windows I get an error
schannel: CertGetCertificateChain trust error CERT_TRUST_IS_PARTIAL_CHAIN
What I've noticed is that the release build is using an older version of libcurl and OpenSSL
oidc_http_call: set HTTP request header User-Agent to: [dwe-server:38080:9] mod_auth_openidc-2.4.15.7 libcurl-7.58.0 OpenSSL 1.1.1 11 Sep 2018
With the Windows version it is using recent versions
oidc_http_call: set HTTP request header User-Agent to: [dwe-server:38080:81788] mod_auth_openidc-0.0.0 libcurl-8.7.0-DEV openssl-3.3.0
Noticing that the library appears to use OpenSSL 1.1.1, is there any plan to upgrade this? Is it possible that my issues are with a newer version of the libraries not being compatible with the configurations that are currently being used under the release build?
Beta Was this translation helpful? Give feedback.
All reactions