[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#3828) SSL Connection closed immediatly after "ClientHello"

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#3828) SSL Connection closed immediatly after "ClientHello"
From: xrgtn@yandex.ru
Date: Tue, 28 Mar 2006 23:37:11 GMT

Hi!

I see the very similr problem using Debian's
slapd/testing, and 2k bit-wide DSA cert/key pair.

I used different tools for debugging this problem, and
it appears to be a bug in SSL handling in slapd code,
don't know yet whether Debian or upstream is guilty.

The problem is the same as yours, SSL handshake fails,
with slapd talking about "no shared ciphers".

If I run s_server in place of slapd, using _the same_
cert/key pair, SSL handshake with s_client passes.

Also, slapd works (surprise!!!) when I use RSA cert/key
instead of DSA.

Do you have any clue?

-- 
WBR,
xrgtn

Prev by Date: Re: (ITS#4429) (back-ldap?) slapd deadlock
Next by Date: Re: (ITS#3828) SSL Connection closed immediatly after "ClientHello"
Index(es):
- Chronological
- Thread