Red Hat Bugzilla – Bug 852338
some TLS ciphers cannot be enabled
Last modified: 2013-03-03 20:30:55 EST
Description of problem:
The list of ciphers in OpenLDAP with MozNSS backend is incomplete. Therefore, some ciphers cannot be enabled.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. LDAPTLS_CIPHER_SUITE=CAMELLIA ldapsearch -x ldaps://server
ldap_start_tls: Connect error (-11)
I already submitted a patch for this upstream:
openldap-2.4.32-3.fc17 has been submitted as an update for Fedora 17.
openldap-2.4.32-3.fc18 has been submitted as an update for Fedora 18.
* should fix your issue,
* was pushed to the Fedora 18 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing openldap-2.4.32-3.fc18'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
openldap-2.4.32-3.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
openldap-2.4.32-3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.