[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
SSL Errors in debug, but it works
Hi, just got openldap working with mod_auth_ldap. I followed the
FAQ-O-MATIC guide for this at:
http://www.openldap.org/faq/index.cgi?_highlightWords=ssl&file=185
I started the server, debugged it and issued a transaction from the
client server via the mod_auth_ldap module in apache. The transaction
worked fine but I'm seeing some errors in the debugs so I'm not sure if
this means that it's working but it's not encrypted or it IS working
and is encrypted and this output is nothing to worry about.
Questionable debug output denoted by "<---":
Thanks in advance.
su-2.05b# /usr/local/libexec/slapd -u ldap -g ldap -d1 -h ldaps:///
@(#) $OpenLDAP: slapd 2.1.30 (Apr 30 2004 21:01:55) $
jlixfeld@trek.tor1.ebit.ca:/usr/ports/net/openldap21-server/work/
openldap-2.1.30/servers/slapd
daemon_init: listen on ldaps:///
daemon_init: 1 listeners to open...
ldap_url_parse_ext(ldaps:///)
daemon: initialized ldaps:///
daemon_init: 2 listeners opened
slapd init: initiated server.
bdb_initialize: initialize BDB backend
bdb_initialize: Sleepycat Software: Berkeley DB 4.1.25: (December 19,
2002)
--------8<-------------8<---------------
<snip>
--------8<-------------8<---------------
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
TLS trace: SSL_accept:before/accept initialization
TLS trace: SSL_accept:SSLv3 read client hello A
TLS trace: SSL_accept:SSLv3 write server hello A
TLS trace: SSL_accept:SSLv3 write certificate A
TLS trace: SSL_accept:SSLv3 write server done A
TLS trace: SSL_accept:SSLv3 flush data
TLS trace: SSL_accept:error in SSLv3 read client certificate A <---
TLS trace: SSL_accept:error in SSLv3 read client certificate A <---
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
TLS trace: SSL_accept:SSLv3 read client key exchange A
TLS trace: SSL_accept:SSLv3 read finished A
TLS trace: SSL_accept:SSLv3 write change cipher spec A
TLS trace: SSL_accept:SSLv3 write finished A
TLS trace: SSL_accept:SSLv3 flush data
connection_read(13): unable to get TLS client DN error=49 id=0 <---
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ber_get_next
ber_get_next: tag 0x30 len 12 contents:
ber_get_next
ber_get_next on fd 13 failed errno=35 (Resource temporarily
unavailable) <---
do_bind
ber_scanf fmt ({imt) ber:
ber_scanf fmt (m}) ber:
>>> dnPrettyNormal: <>
<<< dnPrettyNormal: <>, <>
do_bind: version=3 dn="" method=128
send_ldap_result: conn=0 op=0 p=3
send_ldap_response: msgid=1 tag=97 err=0
ber_flush: 14 bytes to sd 13
do_bind: v3 anonymous bind
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ber_get_next
ber_get_next: tag 0x30 len 88 contents:
ber_get_next
ber_get_next on fd 13 failed errno=35 (Resource temporarily
unavailable) <---
do_search
ber_scanf fmt ({miiiib) ber: