[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#8992) LDAP Over TLS causing reload



--On Thursday, March 14, 2019 10:47 AM +0000 soneshkumar.patel@tcs.com 
wrote:

> Full_Name: Sonesh Patel
> Version: 2.4.46
> OS: FreeBSD
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (45.249.219.13)
>
>
> Hi,
>
> We have introduced LDAP client using OpenLDAP 2.4.46 on FreeBSD server
> and we are using LibreSSL 2.3.6 to perform SSL operations. We are using
> SSL_CTX_add_extra_chain_cert API to add CA certificate into SSL context
> and connection to LDAP server is successful.

OpenLDAP does not support LibreSSL.  Any build of OpenLDAP compiled against 
LibreSSL was hacked into place and is not supported by the OpenLDAP 
project.  If you can reproduce the same behavior using a supported TLS 
library (OpenSSL or GnuTLS), feel free to follow up.

> We already sent mail to the forum (openldap-its@openldap.org) dated Fri 7
> Dec, 2018 but no response till now.

The list is for traffic regarding existing ITSes.  It is not a general 
email list.

This ITS will be closed.

--Quanah



--

Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>