Re: error 21 on Red Hat

Mon, 24 Jun 2013 14:29:50 -0700 

On 06/24/2013 02:53 PM, Rodney Simioni wrote:

Comment below.

-----Original Message-----
From: Rich Megginson [mailto:ri...@stanfordalumni.org]
Sent: Monday, June 24, 2013 4:52 PM
To: mozilla-dev-tech-cry...@lists.mozilla.org
Cc: Rodney Simioni
Subject: Re: error 21 on Red Hat

On 06/24/2013 09:47 AM, Rodney Simioni wrote:

Hi,

Ok, I'm getting further, certdb was able to recognize the cert but I'm



not quite there yet.



I still don't have TLS enabled. Does anybody know why I'm getting
'error 21'





TLS: certdb config: configDir='/etc/openldap/cacerts/'
tokenDescription='ldap(0)' certPrefix='' keyPrefix='' flags=readOnly

TLS: using moznss security dir /etc/openldap/cacerts/ prefix .

TLS: error: tlsm_PR_Recv returned 0 - error 21:Is a directory

TLS: error: connect - force handshake failure: errno 21 - moznss error
-5938

TLS: can't connect: TLS error -5938:Encountered end of file.


I think this is the real problem - encountered end of file e.g. peer
unexpectedly closed the connection.

Is this from a client or a server?
[[Rod's comment]] Server.


What is the client?  What are the client settings?
Can you provide the server settings for olcTLSCACertificateFile, olcTLSCACertificatePath, olcTLSCertificateFile, olcTLSCertificateKeyFile, and olcTLSVerifyClient? 





ldap_err2string

ldap_start_tls: Connect error (-11)

          additional info: TLS error -5938:Encountered end of file



This email message is intended for the use of the person to whom it

has been sent, and may contain information that is confidential or
legally protected. If you are not the intended recipient or have
received this message in error, you are not authorized to copy,
distribute, or otherwise use this message or its attachments. Please
notify the sender immediately by return e-mail and permanently delete
this message and any attachments. Verio Inc. makes no warranty that this
email is error or virus free.  Thank you.






This email message is intended for the use of the person to whom it has been 
sent, and may contain information that is confidential or legally protected. If 
you are not the intended recipient or have received this message in error, you 
are not authorized to copy, distribute, or otherwise use this message or its 
attachments. Please notify the sender immediately by return e-mail and 
permanently delete this message and any attachments. Verio Inc. makes no 
warranty that this email is error or virus free.  Thank you.



--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto

Reply via email to