Re: Application data is sent but not received in OpenLDAP server in case

Re: Application data is sent but not received in OpenLDAP server in case of SSL session reuse

To: Krisztian Nagy-Varga <krisztian.nagy-varga@ericsson.com>

Subject: Re: Application data is sent but not received in OpenLDAP server in case of SSL session reuse

From: "Chris G. Sellers" <cgseller@gmail.com>

Date: Mon, 9 Feb 2009 13:55:08 -0500

In-reply-to: <49905673.90309@ericsson.com>

References: <498FEA62.6030901@ericsson.com> <2CC36CC2-2511-4F1F-AAA0-03AC76927ADE@gmail.com> <49905673.90309@ericsson.com>

I'm not sure the slapd.logs will show that. You will want to do a network trace on the TCP port you are using and see if the connection is closed by the TCP stack by one side or the other and your application tries to re-use that TCP connection but it's closed on the server side.

On Feb 9, 2009, at 11:14 AM, Krisztian Nagy-Varga wrote:

Hi,

Thanks for your reply.
I am not able to upgrade the openldap version to a higher one.

From the slapd logs I see, that this case (your client has left a connection open but the server (TCP) has closed the session and has not told the client to close the TCP session) does not occur. There is an other problem.

The following are the LDAP and SSL libraries used by the client program:
- iPlanet LDAP SDK for C, version 5.0

- OpenSSL 0.9.7
Krisztián Nagy-Varga

Software Developer



Ericsson Hungary Ltd.
Chris G. Sellers wrote:
OpenLDAP 2.0 is very old (circa 2000) and being 9 years old is going to give you problems.

It sounds like your problem is session based, and it may be your client has left a connection open but the server (TCP) has closed the session and has not told the client to close the TCP session.

First step for you - upgrade.

Sellers

On Feb 9, 2009, at 3:33 AM, Krisztian Nagy-Varga wrote:

My server uses
- openldap 2.0.6
- openssl 0.9.6