[Pkg-openssl-devel] Bug#1027830: Bug#1027830: [ITB] Re: Bug#1027830: openssl: starttls fails on our LDAP server on bullseye, but it works on buster
Sebastian Andrzej Siewior
sebastian at breakpoint.cc
Thu Jan 19 19:11:06 GMT 2023
control: reassign -1 ldap-utils 2.4.57+dfsg-3
On 2023-01-04 13:50:53 [+0000], Jonathan Rietveld wrote:
> We've since found out that installing libldap-common resolves our
> issue, as others
> (https://github.com/wheelybird/ldap-user-manager/issues/172 and
> https://github.com/docker-mailserver/docker-mailserver/issues/2340)
> found out. This package is installed by default on buster (even before
> installing any ldap-related packages), but not on bullseye.
>
> Perhaps it might make sense to add libldap-common as a dependency for
> other packages like libnss-ldap, pam_ldap or ldap-utils on bullseye?
Based on Jonathan's investigation, I reasign the bug to
openldap/ldap-utils since it appears it has to depend on libldap-common
in order to get TLS to work with ceritificate validation. It has only
recommends via libldap-*.
This poped up on the openssl package but it appears to use gnutls stack
instead.
> Kind regards,
>
> Jonathan
Sebastian
More information about the Pkg-openssl-devel
mailing list