[Date Prev][Date Next] [Chronological] [Thread] [Top]

Info message for LDAP_SERVER_DOWN in case of SSL/TLS failure (ITS#1995)

Version: REL_ENG_2(_1)
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (

If something went wrong during establishing a SSL/TLS connection the API returns
LDAP_SERVER_DOWN. So far, so good. But the programmer is guessing what caused
the error.

For the programmer's convenience and to avoid a lot of traffic on the mailing
list the info field could contain a short description about what went wrong.

"Issuer certificate of server certificate not found."
"CN attribute did not match host name."

Maybe some messages generated by OpenSSL could be used directly?