[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Unable to start slapd using SSL/TLS

To: greg.martin18@verizon.net
Subject: Re: Unable to start slapd using SSL/TLS
From: Howard Chu <hyc@symas.com>
Date: Sat, 25 Feb 2006 21:51:53 -0800
Cc: openldap-software@OpenLDAP.org
In-reply-to: <4400EFD6.9020309@gmartin.org>
References: <4400EFD6.9020309@gmartin.org>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9a1) Gecko/20060224 SeaMonkey/1.5a Mnenhy/0.7.3.0

Greg Martin wrote:

Sorry to join just to beg for help.  Grace requested...


I have a problem trying to get slapd to start using a certificate.  The
error is :

TLS: could not load verify locations (file:`/etc/cert/cacert.pem',dir:`'). main: TLS init def ctx failed: -1 slapd stopped.


I'm no Linux expert, but the following strace output see applicable:

open("/etc/cert/cacert.pem", O_RDONLY|O_LARGEFILE) = 7
fstat64(7, {st_mode=S_IFREG|0755, st_size=951, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1,
0) = 0x40460000
read(7, "-----BEGIN RSA PRIVATE KEY-----\n"..., 4096) = 951
read(7, "", 4096)                       = 0
close(7)                                = 0
munmap(0x40460000, 4096)                = 0

This file is not a valid certificate file, it is clearly an RSA private key file.

From what I can see the file opened correctly.  Any thoughts?

Thanks for the time & neurons.


--
 -- Howard Chu
 Chief Architect, Symas Corp.  http://www.symas.com
 Director, Highland Sun        http://highlandsun.com/hyc
 OpenLDAP Core Team            http://www.openldap.org/project/

References:
- Unable to start slapd using SSL/TLS
  - From: Greg Martin <gmartin@gmartin.org>

Prev by Date: Re: slapd 2.3.19 freezes up
Next by Date: Re: structural object class modification from X to Y not allowed
Index(es):
- Chronological
- Thread