[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: (ITS#9014) OpenLDAP modifies user provided TLS certificate before sending it to client
- To: openldap-its@OpenLDAP.org
- Subject: Re: (ITS#9014) OpenLDAP modifies user provided TLS certificate before sending it to client
- From: hyc@symas.com
- Date: Wed, 24 Apr 2019 17:04:47 +0000
- Auto-submitted: auto-generated (OpenLDAP-ITS)
Siddharth Jain wrote:
> Wow! Thanks for responding so fast. This could be a bug in docker-openl=
dap then. we have repro'ed this in two different environments - mac and u=
buntu. Do you
> have a recommendation for docker image for openldap?
As I said before, OpenLDAP doesn't touch the certificate files, it merely=
tells the TLS
library where they are. You must likely have a broken TLS library.
-----------------------------------------------------------------------=
-------------------------------------------------------------------------=
----------------
> *From:* Howard Chu <hyc@symas.com>
> *Sent:* Wednesday, April 24, 2019 9:42 AM
> *To:* Siddharth Jain; openldap-its@OpenLDAP.org
> *Subject:* Re: (ITS#9014) OpenLDAP modifies user provided TLS certifica=
te before sending it to client
> =A0
> Siddharth Jain wrote:
>> we have documented complete steps to repro the bug=A0here <https://eur=
04.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgithub.com%2Fsid=
djain%2Fopenldap-bug&data=3D02%7C01%7C%7Caca4f78e53324b52690008d6c8d3=
cc09%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C636917209315407238&=
sdata=3D8VfRtnCNPd%2BFo2Sps%2BLftBG3XcC57ReIFFphK6noyLc%3D&reserved=3D=
0>=A0with
> container logs.
>=20
> I see no error here.
>=20
> Using your cert/key files:
> There is no OpenLDAP bug here. Your server environment is broken.
--=20
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/