Re: (ITS#9014) OpenLDAP modifies user provided TLS certificate before sending it to client
Siddharth Jain wrote:
Wow! Thanks for responding so fast. This could be a bug in docker-openl=
dap then. we have repro'ed this in two different environments - mac and u= buntu. Do you
have a recommendation for docker image for openldap?
As I said before, OpenLDAP doesn't touch the certificate files, it merely= tells the TLS library where they are. You must likely have a broken TLS library. -----------------------------------------------------------------------= -------------------------------------------------------------------------= ----------------
*From:* Howard Chu hyc@symas.com *Sent:* Wednesday, April 24, 2019 9:42 AM *To:* Siddharth Jain; openldap-its@OpenLDAP.org *Subject:* Re: (ITS#9014) OpenLDAP modifies user provided TLS certifica=
te before sending it to client
=A0 Siddharth Jain wrote:
we have documented complete steps to repro the bug=A0here <https://eur=
04.safelinks.protection.outlook.com/?url=3Dhttps%3A%2F%2Fgithub.com%2Fsid= djain%2Fopenldap-bug&data=3D02%7C01%7C%7Caca4f78e53324b52690008d6c8d3= cc09%7C84df9e7fe9f640afb435aaaaaaaaaaaa%7C1%7C0%7C636917209315407238&= sdata=3D8VfRtnCNPd%2BFo2Sps%2BLftBG3XcC57ReIFFphK6noyLc%3D&reserved=3D= 0>=A0with
container logs. =20 I see no error here. =20 Using your cert/key files:
There is no OpenLDAP bug here. Your server environment is broken.
--=20 -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
-
hyc@symas.com