Lasa Martxel wrote: > Hello Howard, > > I have tried that, but without success. > > I have had a look at the tls implementation, and once the tls context is > created and initialized, it is only destroyed when the reference count to the > context > is 0, which happens when the context is destroyed. > >>From what I've seen, the context is destroyed when the program exits (atexit >>callback). > > The tls context contains the client certificates among other things, so I > can't reinitialize it with the new ones for the second instance. > > I may be missing something.
Yes. Read the ldap_set_option(3) manpage more carefully. Use LDAP_OPT_X_TLS_NEWCTX. > > Thanks! > > ---------------------------------------------------------------------------------------------------------------------------------------------------------------- > *De:* Howard Chu <[email protected]> > *Enviado:* jueves, 2 de abril de 2020 12:31 > *Para:* Lasa Martxel <[email protected]>; [email protected] > <[email protected]> > *Asunto:* Re: Multiple OpenLDAP client instances with the c library > > Lasa Martxel wrote: >> Hello, >> >> I'm using the openldap c client library (2.4.45). >> >> I would like to somehow have two client instances (not necessarily >> simultaneously) within the same application, but I'm having issues with the >> second instance I >> create. >> >> I have not found a way to clear the global options so the new ones >> (different ca cerficiate, different client certificate) can be used with the >> second instance. >> With the second ldap_initialize, global options are already initialized. >> Same with the TLS context, it's initialized too. > > So just use ldap_set_option on the second LDAP* handle and change the options. > > -- > -- Howard Chu > CTO, Symas Corp. > https://eur02.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.symas.com&data=02%7C01%7Cmlasa%40ikerlan.es%7C674a3bfac1fd4078a52508d7d6f0ff32%7C910ac815f8554a08bf2990b46552cf11%7C0%7C0%7C637214203694494045&sdata=dFuaJbDcgyKl6fvMYTqaScxSWkO69JeHRv9oPxm99VA%3D&reserved=0 > Director, Highland Sun > https://eur02.safelinks.protection.outlook.com/?url=http%3A%2F%2Fhighlandsun.com%2Fhyc%2F&data=02%7C01%7Cmlasa%40ikerlan.es%7C674a3bfac1fd4078a52508d7d6f0ff32%7C910ac815f8554a08bf2990b46552cf11%7C0%7C0%7C637214203694494045&sdata=MmQpXW0iC6FqiVlfOIUorOa0BaXhJt%2FANv8BpF0clVU%3D&reserved=0 > Chief Architect, OpenLDAP > https://eur02.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.openldap.org%2Fproject%2F&data=02%7C01%7Cmlasa%40ikerlan.es%7C674a3bfac1fd4078a52508d7d6f0ff32%7C910ac815f8554a08bf2990b46552cf11%7C0%7C0%7C637214203694494045&sdata=0IkKAM5SAicdNHq3MRtuxFREYXnXQozMA1HPMlCJDXc%3D&reserved=0 -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
