8405 – LDAP connection issue

Issue 8405 - LDAP connection issue

Summary: LDAP connection issue

Status:	VERIFIED FIXED

Alias:	None

Product:	OpenLDAP
Classification:	Unclassified
Component:	slapd (show other issues)
Version:	2.4.39
Hardware:	All All

Importance:	--- normal
Target Milestone:	---
Assignee:	OpenLDAP project

URL:
Keywords:

Depends on:
Blocks:

Reported:	2016-04-14 15:23 UTC by kobibe0@gmail.com
Modified:	2017-03-22 16:44 UTC (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.

Description kobibe0@gmail.com 2016-04-14 15:23:06 UTC

Full_Name: kobi beifus
Version: 2.4.39
OS: Linux
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (195.110.40.242)


An attempt to connect to an LDAP server using SSL after a previous connection
was made to LDAP without using SSL , or connecting to an LDAP server with a
different certificate will fail.

This issue happens with OpenLDAP version 2.4.20, and was fixed by adding:
        ldap_set_option(*ld, LDAP_OPT_X_TLS_PROTOCOL_MIN,
&tls_minimum_version);
        ldap_set_option(*ld, LDAP_OPT_X_TLS_CACERTFILE, path);
        ldap_set_option(*ld, LDAP_OPT_X_TLS_NEWCTX, &zero);

However, this doesn't work with OpenLDAP version 2.4.39.

Comment 1 Howard Chu 2016-04-26 11:55:11 UTC

published 8405
marked public

Comment 2 OpenLDAP project 2017-03-22 16:44:36 UTC

Duplicate of ITS#8403

Comment 3 Quanah Gibson-Mount 2017-03-22 16:44:36 UTC

changed notes
changed state Open to Closed