[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Unable to start slapd using SSL/TLS

Greg Martin wrote:
Sorry to join just to beg for help.  Grace requested...

I have a problem trying to get slapd to start using a certificate. The error is :

TLS: could not load verify locations (file:`/etc/cert/cacert.pem',dir:`').
main: TLS init def ctx failed: -1
slapd stopped.

I'm no Linux expert, but the following strace output see applicable:

open("/etc/cert/cacert.pem", O_RDONLY|O_LARGEFILE) = 7
fstat64(7, {st_mode=S_IFREG|0755, st_size=951, ...}) = 0
0) = 0x40460000
read(7, "-----BEGIN RSA PRIVATE KEY-----\n"..., 4096) = 951
read(7, "", 4096)                       = 0
close(7)                                = 0
munmap(0x40460000, 4096)                = 0

This file is not a valid certificate file, it is clearly an RSA private key file.

From what I can see the file opened correctly.  Any thoughts?

Thanks for the time & neurons.

-- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc OpenLDAP Core Team http://www.openldap.org/project/