[Pkg-freeipa-devel] Bug#1073834: 389-ds-base: Replication based on sslclientauth fails to create new TLS context

Andreas Steffen andreas.steffen at strongsec.net
Thu Jun 20 19:24:18 BST 2024


The TLS context cannot be created because the Debian Bookworm libldap-2.5-0
package is built with the GnuTLS stack instead of the OpenSSL TLS stack.

I manually built and installed libldap-2.5 linked to the OpenSSL libssl and
libcrypto libraries and the TLS connection is now successfully established
based on client certificates.

It would be very helpful if the Debian project would make available an
alternative libldap-2.5-openssl package as is the case e.g. with the
libcurl4 package that comes with gnutls, nss and openssl flavors.

Best regards

Andreas



More information about the Pkg-freeipa-devel mailing list