Bug#616035: [libgnutls26] Breaks OpenLDAP with message: TLS: peer cert untrusted or revoked (0x402)

Andreas Metzler ametzler at downhill.at.eu.org
Wed Mar 2 18:15:57 UTC 2011

# this is neither a security hole nor does it make the package
# unusable
severity 616035 important

On 2011-03-02 Vedran Furač <vedran.furac at gmail.com> wrote:
> Package: libgnutls26
> Version: 2.10.4-2
> Severity: grave

> After the upgrade to version 2.10.4 pam authentication against OpenLDAP
> fails with the following error message:

> TLS: peer cert untrusted or revoked (0x402)
> TLS: can't connect: (unknown error code).

> Had to downgrade to 2.8.6 to be able to log in again.

Couuld you please show 
gnutls-cli --x509cafile wherever-TLS_CACERT-pointsto -p 636 ldap-server-hostname

for both 2.8.6 and 2.10.4?

thanks cu andreas

More information about the Pkg-gnutls-maint mailing list