RHEL6 system curl breaks metadata fetch too?
Christopher Bongaarts
cab at umn.edu
Mon May 18 17:45:09 EDT 2015
On 5/18/2015 4:38 PM, Peter Schober wrote:
> So why/how would you run the SP on RHEL and still have the SP run
> without the SP package provided libcurl?
*I* would never do something like that :) But people who for whatever
reason do, sometimes ask me questions...
> And even the libcurl built against nss will be able to do HTTP GET for
> metadata documents. Unless you require specific overrides for the
> transport to function at all I doubt that whatever issue you're
> seening (your not specific about that) are related to that.
I don't recall the specific functionality that the SP needed that NSS
lacked, but the errors in this case were regarding bad cipher names
(perhaps it's just a syntactic difference?):
2015-05-18 15:36:04 ERROR XMLTooling.libcurl.InputStream : error while
fetching https://idp2.shib.umn.edu/metadata.xml: (59) Unknown cipher in
list: ALL:!aNULL:!LOW:!EXPORT:!SSLv2
2015-05-18 15:36:04 ERROR XMLTooling.libcurl.InputStream : on Red Hat
6+, make sure libcurl used is built with OpenSSL
--
%% Christopher A. Bongaarts %% cab at umn.edu %%
%% OIT - Identity Management %% http://umn.edu/~cab %%
%% University of Minnesota %% +1 (612) 625-1809 %%
More information about the users
mailing list