[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#8529) Avoid hiding the error in LDAP client if user specified CA does not load

Full_Name: Howard Guo
Version: Latest at commit 227e02ec2049c6df5df44333980e3b529289a5c7
OS: openSUSE
URL: ftp://ftp.openldap.org/incoming/howard-guo-161110.patch
Submission from: (NULL) (

The TLS configuration deliberately hid the error in case that user specified CA
locations cannot be read, by loading CAs from default locations; and when user
does not specify CA locations, the CAs from default locations are not read at
This patch corrects the behaviour so that CAs from default location are used if
user does not specify a CA location, and user is informed of the error if CAs
cannot be loaded from the user specified location.