--On Tuesday, December 18, 2018 6:08 PM +0000 Howard Chu hyc@symas.com wrote:
Quanah Gibson-Mount wrote:
--On Tuesday, December 18, 2018 5:53 PM +0000 Howard Chu hyc@symas.com wrote:
---------------- servers/slapd/bconfig.c -----------------------
olcTLSCertificateKey -- ??? (Private SYNTAX OID) Shouldn't the SYNTAX be 1.3.6.1.4.1.1466.115.121.1.8? And use certificateExactMatch?
No, a key is not a certificate. Keys are stored in PKCS#8 encoding.
So what's the matching rule for it? ;)
I suppose it'll have to be octetStringMatch.
Ok, done:
https://github.com/quanah/openldap-scratch/commit/57026b565a092de45faf3f6bf9ec118fb2080341
That should cover ITS#8286.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com