[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: TLS fails

To: openldap-technical@openldap.org
Subject: Re: TLS fails
From: Frederik Bosch <frederik.bosch@gmail.com>
Date: Tue, 31 Aug 2010 12:15:43 +0200
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=6AhhSb4uRm6X0cXBflQWPGQETpp74wW2s75k5ZQ5pqk=; b=mpFL8i7H3iX2vmZWhG/VDGWrmxeXpkMKY64Ko6ICuW1B0xRkyA6XIsHgM6hI3S1VGf usvNZ7BbWPEjm/P4KbYtfw4TkM1JmpigClHAZy/3oTmD+Oz7Jmewc2t+qwpcesSggFBr EmxiiWLPA8vMX02ev/3vGym7S9vtEJS7Ww16M=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=wYToxis+74OOk+fb+OQlQi+XkOTEyOMHq8bQhLA9Ex9Bk73GysflVmZM/qh74o1NAz WzzV9WNHLZCxIuJ0xSBprfjkRLH8MmnvrGAP4537VLdiUNo5gK+k1whNkAJZ5ES0haI4 TmLXrsbG3OjD/BeTkN9Hk+I/0eP45JnMEjXlo=
In-reply-to: <4C7CC5CC.3030200@gmail.com>
References: <4C7CC5CC.3030200@gmail.com>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.11) Gecko/20100713 Thunderbird/3.0.6

In that case. I'd go for recompiling with openssl. I already tried, butthat gave me following error.


Could not locate TLS/SSL package.

Of course, I also googled that. I think I need to point where to findthe OpenSSL library.


dpkg -L openssl says

/usr/lib/ssl
/usr/lib/ssl/misc
/usr/lib/ssl/misc/c_info
/usr/lib/ssl/misc/CA.sh
/usr/lib/ssl/misc/c_hash
/usr/lib/ssl/misc/c_name
/usr/lib/ssl/misc/c_issuer
/usr/lib/ssl/misc/CA.pl

So I tried to do

env CPPFLAGS="-I/usr/lib/ssl" LDFLAGS="-L/usr/lib/ssl"

before configure but no success. By the way, this is first time I try tocompile something and I do it with debuild -us -uc.





On 08/31/2010 11:05 AM, Frederik Bosch wrote:

After getting my ACL right (thanks Dieter!), I have problems installing
an official certificate. I bought a certificate at RapidSSL. Starting
slapd gives me the following error.

TLS init def ctx failed: -69

This error is thrown in openldap 2.4.17. Since I am on debian, slapd is
compiled against GnuTLS. When I was using 2.4.11 I had another error:

TLS init def ctx failed: -207

When I had a self-signed certificate I had no trouble. What could be wrong?

Follow-Ups:
- Re: TLS fails
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

References:
- TLS fails
  - From: Frederik Bosch <frederik.bosch@gmail.com>

Prev by Date: Re: TLS fails
Next by Date: Re: TLS fails
Index(es):
- Chronological
- Thread