[Date Prev][Date Next] [Chronological] [Thread] [Top]

does slapd store/cache TLS certs

To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Subject: does slapd store/cache TLS certs
From: lejeczek <peljasz@yahoo.co.uk>
Date: Wed, 17 Jun 2015 15:05:26 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.co.uk; s=s2048; t=1434549927; bh=+pw6eIxB9aAoDrTGdc9m48WkMlGsDIdd+KIqzjbH0pc=; h=Date:From:To:Subject:From:Subject; b=oy9B+mUfWCCKEt76WHwPbEQeWhboW1+4uvXccj3T/vqbjXjuoZsJNHvu73K/0okabjqxB1a+XTzA8JWa5KAXNy2TLmaKnlkMQOFAG7s7E7Rgd9PMhLM3GGDLG43Msxa1mqmLWjTmMlTU63RdvEDjC4ifvJCB6PO7pR7gRmHkov/p0Vk1EIwgrS4Ae4iRiyhG/cHRXuXwIb7XKU8ex3WYUitqoLMDUsXT+hwsLUDFOLNCDzG8zfwAUwcVetEY7Fl5gf70YPI6GggVw2tSMzwR+MK7Vs7/hX7EKBpb5/5Zd20lT6H4HJ1D+sR1w+tho9TAezgxrsm/JuUuHVbQpWfdWw==
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0

hi everybody,

I could not connect to slapd, command would fail with infamous:

TLS: error: connect - force handshake failure: errno 0 -moznss error -5938

TLS: can't connect: TLS error -5938:Encountered end of file.
ldap_err2string
ldap_start_tls: Connect error (-11)
    additional info: TLS error -5938:Encountered end of file

I was positive about certs, restarted daemons, looked atother obvious places, etc. - nothing.Only after I removed database & config files,recreated/restarted the whole slap it worded.

Would it be that slapd caches certificates somewhere anddoes not re-read those upon restart?


many thanks

Follow-Ups:
- Re: does slapd store/cache TLS certs
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: RE: proxy to AD does not work during login client machine
Next by Date: open ldap meta backend empty search
Index(es):
- Chronological
- Thread