--On Friday, June 26, 2009 4:48 PM -0400 Victor Duchovni
<victor.ducho...@morganstanley.com> wrote:
On Fri, Jun 26, 2009 at 01:32:42PM -0700, Quanah Gibson-Mount wrote:
OpenLDAP 2.4.16 Release (2009/04/05)
Fixed libldap GnuTLS with x509v1 CA certs (ITS#5992)
Fixed libldap GnuTLS with CA chains (ITS#5991)
Fixed libldap GnuTLS TLSVerifyCilent try (ITS#5981)
OpenLDAP 2.4.15 Release (2009/02/24)
Fixed libldap GnuTLS compilation (ITS#5955)
OpenLDAP 2.4.14 Release (2009/02/14)
Added libldap GnuTLS support for TLS_CIPHER_SUITE (ITS#5887)
Added libldap GnuTLS setting random file (ITS#5462)
I think that finding the real problem is still worth the effort.
In the mean-time it may be useful to see the list of CA certificates
in the ".crt" file.
My point is, GnuTLS support with OpenLDAP is known to be broken for a
variety of scenarios. If they can duplicate the problem with OpenLDAP
2.4.16 libraries, then that's worthwhile to look at. But it's probably
something that's already been fixed. But how you choose to spend your time
is up to you. ;)
--Quanah
--
Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra :: the leader in open source messaging and collaboration
