Issue 8529 - Avoid hiding the error in LDAP client if user specified CA does not load
Summary: Avoid hiding the error in LDAP client if user specified CA does not load
Status: VERIFIED FIXED
Alias: None
Product: OpenLDAP
Classification: Unclassified
Component: slapd (show other issues)
Version: unspecified
Hardware: All All
: --- normal
Target Milestone: ---
Assignee: OpenLDAP project
URL:
Keywords:
: 5582 (view as issue list)
Depends on:
Blocks:
 
Reported: 2016-11-10 14:43 UTC by hguo@suse.com
Modified: 2021-07-22 12:57 UTC (History)
1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.
Description hguo@suse.com 2016-11-10 14:43:34 UTC 
Full_Name: Howard Guo
Version: Latest at commit 227e02ec2049c6df5df44333980e3b529289a5c7
OS: openSUSE
URL: ftp://ftp.openldap.org/incoming/howard-guo-161110.patch
Submission from: (NULL) (195.135.221.2)


The TLS configuration deliberately hid the error in case that user specified CA
locations cannot be read, by loading CAs from default locations; and when user
does not specify CA locations, the CAs from default locations are not read at
all.
    
This patch corrects the behaviour so that CAs from default location are used if
user does not specify a CA location, and user is informed of the error if CAs
cannot be loaded from the user specified location.
Comment 1 Michael Ströder 2016-11-10 15:09:52 UTC 
@Quanah: Could this patch even make it into upcoming release 2.4.45?
Comment 2 Quanah Gibson-Mount 2017-02-22 17:57:35 UTC 
changed notes
changed state Open to Test
moved from Incoming to Software Bugs
Comment 3 Quanah Gibson-Mount 2017-02-28 21:58:57 UTC 
changed notes
changed state Test to Release
Comment 4 Quanah Gibson-Mount 2017-03-27 23:28:45 UTC 
changed notes
Comment 5 OpenLDAP project 2017-06-01 22:09:30 UTC 
Fixed in master
Fixed in RE25
Fixed in RE24 (2.4.45)
See also ITS#5582, ITS#6248, ITS#8586
Comment 6 Quanah Gibson-Mount 2017-06-01 22:09:30 UTC 
changed notes
changed state Release to Closed
Comment 7 Howard Chu 2021-07-22 12:57:03 UTC 
*** Issue 5582 has been marked as a duplicate of this issue. ***