[php-maint] Bug#560161: php5-ldap: LDAPS and LDAP+TLS return error on valid wildcard certificate check

Clement Hermann (nodens) clement.hermann at free.fr
Wed Dec 9 11:34:32 UTC 2009

Package: php5-ldap
Severity: normal


php5-ldap return error on bind when server is using a wildcard
SSL certificate, even when the certificate is valid. ldapsearch works
OK on the same certificate.

Workaround : add TLS_REQCERT never in ldap.conf (but then you cannot
verify that you are connecting to the right server), or use a simple
(non-wildcard) certificate.

This is probably an upstream bug (see
http://bugs.php.net/bug.php?id=17738), but the relevant bug is
currently in "no feedback" state so maybe it could be re-opened as a new bug.
(I don't have any php version supported upstream readily available that
can connect to a ldaps server with a wildcard cert, so I did not report
it upstream).


-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (500, 'sid'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.31-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

More information about the pkg-php-maint mailing list