Comment 5 for bug 240387

I think I was able to reproduce this, but the start_tls errors were intermittent. I'm testing on an P3 448MHz, and initially had the error quite frequently. I then updated all the packages on the system and the error became less frequent. I also updated the slapd indexes to match our production system. After updating the indexs using slapindex, it was much harder to recreate the error.

For me it only seemed to happen when slapd was under heavy load, and only with php5-ldap I also tested with python-ldap and didn't see the error. Additionally I kept Apache configured with authnz-ldap during my tests. I ran slapd from console using:

  sudo slapd -u openldap -g openldap -f /etc/ldap/slapd -d -1

and didn't see any errors between when an start_tls error occurred and when one didn't.

Can you post your indexes from /etc/ldap/slapd.conf?

Thanks,
Adam