Hello !
I have an issue where when establishing a connection in TLS mode, the certificates includes the CRL Distribution Points so netopeer2/libnetconf2 tries to download but fails to do so.
In wireshark traces it seems to attempt it in HTTP mode and not in LDAP mode.
2026-04-28 07:42:06.113 INFO/APP/netopeer2-server(PID:685): [INF]: LN: Trying to connect via IPv4 to 99.99.99.99:4335.
2026-04-28 07:42:06.113 INFO/APP/netopeer2-server(PID:685): [INF]: LN: Successfully connected to 99.99.99.99:4335 over IPv4.
2026-04-28 07:42:06.116 INFO/APP/netopeer2-server(PID:685): [INF]: LN: Downloading CRL from "10.41.213.222:389/CN=InternalTest_CA2,ou=CertificateAuthorityRoot,dc=LtmSysVerDnsCrlDpcmp975cert31?certificateRevocationList;binary???".
2026-04-28 07:42:06.120 INFO/APP/netopeer2-server(PID:685): [ERR]: LN: Downloading CRL from "10.41.213.222:389/CN=InternalTest_CA2,ou=CertificateAuthorityRoot,dc=LtmSysVerDnsCrlDpcmp975cert31?certificateRevocationList;binary???" failed (Empty reply from server).
2026-04-28 07:42:06.121 INFO/APP/netopeer2-server(PID:685): [WRN]: LN: Failed to fetch CRL from "10.41.213.222:389/CN=InternalTest_CA2,ou=CertificateAuthorityRoot,dc=LtmSysVerDnsCrlDpcmp975cert31?certificateRevocationList;binary???".
2026-04-28 07:42:06.121 INFO/APP/netopeer2-server(PID:685): [ERR]: LN: Loading server CRL failed.
Do you know if LDAP mode is supported for CRL ?
Hello !
I have an issue where when establishing a connection in TLS mode, the certificates includes the CRL Distribution Points so netopeer2/libnetconf2 tries to download but fails to do so.
In wireshark traces it seems to attempt it in HTTP mode and not in LDAP mode.
2026-04-28 07:42:06.113 INFO/APP/netopeer2-server(PID:685): [INF]: LN: Trying to connect via IPv4 to 99.99.99.99:4335.
2026-04-28 07:42:06.113 INFO/APP/netopeer2-server(PID:685): [INF]: LN: Successfully connected to 99.99.99.99:4335 over IPv4.
2026-04-28 07:42:06.116 INFO/APP/netopeer2-server(PID:685): [INF]: LN: Downloading CRL from "10.41.213.222:389/CN=InternalTest_CA2,ou=CertificateAuthorityRoot,dc=LtmSysVerDnsCrlDpcmp975cert31?certificateRevocationList;binary???".
2026-04-28 07:42:06.120 INFO/APP/netopeer2-server(PID:685): [ERR]: LN: Downloading CRL from "10.41.213.222:389/CN=InternalTest_CA2,ou=CertificateAuthorityRoot,dc=LtmSysVerDnsCrlDpcmp975cert31?certificateRevocationList;binary???" failed (Empty reply from server).
2026-04-28 07:42:06.121 INFO/APP/netopeer2-server(PID:685): [WRN]: LN: Failed to fetch CRL from "10.41.213.222:389/CN=InternalTest_CA2,ou=CertificateAuthorityRoot,dc=LtmSysVerDnsCrlDpcmp975cert31?certificateRevocationList;binary???".
2026-04-28 07:42:06.121 INFO/APP/netopeer2-server(PID:685): [ERR]: LN: Loading server CRL failed.
Do you know if LDAP mode is supported for CRL ?