[Bug 305264] Re: gnutls regression: failure in certificate chain validation
redbaron
ivanov.maxim at gmail.com
Tue Mar 17 13:30:40 GMT 2009
I've noticed strange behaviour which could be related to this bug.
#certtool -i < ldap-cert.pem | grep -i issu
Issuer: C=RU,ST=State,L=City,O=company,OU=SysAdmin,CN=ca.domain.my,EMAIL=admin at domain.my
#certtool -e --load-ca-certificate cacert.pem < ldap-cert.pem
Issued by: C=RU,ST=State,L=City,O=company,OU=SysAdmin,CN=ldap.florist.my,EMAIL=admin at florist.ru
certtool: Error: The last certificate is not self signed.
Notice that in verify mode it things tha issuer is the same as CN of
ldap-cert.pem, while in information mode it show issuer correctly.
Of course openssl verify verifies ldap-cert.pem seamlessly.
--
gnutls regression: failure in certificate chain validation
https://bugs.launchpad.net/bugs/305264
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to openldap in ubuntu.
More information about the Ubuntu-server-bugs
mailing list