slapd crashes with b/trace when starting with SSL certs
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ubuntu-docs (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
I have a working openldap and tried to add SSL to it. On startup it crashes with a backtrace. (file attached).
The certificate is self-signed and was generated with openssl and /usr/lib/
Here is cn=config.ldif:
dn: cn=config
objectClass: olcGlobal
cn: config
olcArgsFile: /var/run/
olcLogLevel: none
olcPidFile: /var/run/
olcToolThreads: 1
structuralObjec
entryUUID: 83598b02-
creatorsName: cn=config
olcTLSCACertifi
olcTLSCertifica
olcTLSCertifica
olcTLSCipherSuite: TLSv2+RSA:!NULL
All files are readable by a non-priviledged user.
lsb_release -rd
Description: Ubuntu 12.10
Release: 12.10
apt-cache policy slapd
slapd:
Installed: 2.4.31-1ubuntu2
Candidate: 2.4.31-1ubuntu2
Version table:
*** 2.4.31-1ubuntu2 0
500 http://
100 /var/lib/
apt-cache policy openssl
openssl:
Installed: 1.0.1c-3ubuntu2.6
Candidate: 1.0.1c-3ubuntu2.6
Version table:
*** 1.0.1c-3ubuntu2.6 0
500 http://
500 http://
100 /var/lib/
1.
500 http://
Changed in ubuntu-docs (Ubuntu): | |
status: | New → Invalid |
Why was this bug filed against ubuntu-docs ?
Anyway, Debian/Ubuntu does not use OpenSSL libraries due to licencing issues. Try to generate your cryptographic material with the GnuTLS toolset instead.
Material created with either libraries should be inter-compatible but that's not the case with ciphers and hashes.