Full_Name: Thomas Grainger Version: libldap-2.4-2 OS: Ubuntu URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (62.60.6.23) when setting OPT_X_TLS_NEWCTX after an invalid OPT_X_TLS_CACERTFILE libldap returns a generic error code would it be possible to pass the underlying TLS library's error code instead or in addition? https://github.com/python-ldap/python-ldap/issues/55#issuecomment-577831055
In one of our test envs, had the path wrong in replication config for encryption artifacts: *** Conf excerpt: *** syncrepl … tls_key=/opt/symas/etc/openldap/file-name.pem *** Which gives generic error: *** Log Trace: *** an 27 17:25:17 sapz1a slapd[6203]: slapd starting … TLS context initialization failed (-1) Jan 27 17:25:17 hostname slapd[6203]: do_syncrepl: rid=031 rc -1 retrying (4 retries left) *** Would have been helpful for the message to specify which artifact wasn’t found, the line number of the config, or some other way of narrowing the problem. — Shawn
Need to see if this is possible, see also ITS#9474
fixed in master
Commits: • 2c0707cf by Howard Chu at 2021-07-22T15:27:31+01:00 ITS#9157 save TLS errmsg in ld->ld_error
head: • 2c0707cf by Howard Chu ITS#9157: check for NULL ld RE26 (2.6.3): • 6675535c by Howard Chu at 2022-06-03T20:29:24+00:00 ITS#9157: check for NULL ld
*** Issue 6477 has been marked as a duplicate of this issue. ***