[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: GSSAPI on sparc64 (ITS#3054)
Kurt D. Zeilenga wrote:
>Thanks for confirming this and that layers work with other
>applications.
>
Yes, security layers works fine with cyrus imap:
root@selma:~# /usr/local/bin/imtest -u tiamat -a tiamat -v -m GSSAPI selma
S: * OK selma.komi.mts.ru Cyrus IMAP4 v2.2.3 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
AUTH=NTLM AUTH=GSSAPI AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
S: C01 OK Completed
C: A01 AUTHENTICATE GSSAPI
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
S: +
YGwGCSqGSIb3EgECAgIAb10wW6ADAgEFoQMCAQ+iTzBNoAMCARCiRgREr10yPoFHWacnRpgeoZyAYdAJcyCeo65VyF0xVz9xWIUjJc93Qqgr6jUV8KjUR5KJBlakRIgxnpmNmpZBBOgIqtP4L0E=
S: +
YD8GCSqGSIb3EgECAgIBBAD//////Qbqyycr794G/0E1ODJd8SHfveXvtbYl9MrHWzUDrqRTEILTBwAQAAQEBAQ=
C:
YEcGCSqGSIb3EgECAgIBBAD/////gn2qfnBB4FwAMwwGtJKbmB8N5yjDEgio0mGUwFBnI2K1ktb0BAAEAHRpYW1hdAYGBgYGBg==
S: A01 OK Success (privacy protection)
Authenticated.
Security strength factor: 56
c01 select inbox
* FLAGS (\Answered \Flagged \Draft \Deleted \Seen)
* OK [PERMANENTFLAGS (\Answered \Flagged \Draft \Deleted \Seen \*)]
* 4 EXISTS
* 0 RECENT
* OK [UNSEEN 4]
* OK [UIDVALIDITY 1081015013]
* OK [UIDNEXT 5]
c01 OK [READ-WRITE] Completed
c05 fetch 4:4 (BODY[])
* 4 FETCH (FLAGS (\Seen) BODY[] {808}
Return-Path: <root@selma.komi.mts.ru>
Received: from selma.komi.mts.ru ([unix socket])
by selma.komi.mts.ru (Cyrus v2.2.3) with LMTP; Mon, 05 Apr 2004
10:02:22 +0400
X-Sieve: CMU Sieve 2.2
Received: from selma.komi.mts.ru (localhost [127.0.0.1])
by selma.komi.mts.ru (MTS Komi/Smtp) with ESMTP id i3562MpY021871
for <tiamat@selma.komi.mts.ru>; Mon, 5 Apr 2004 10:02:22 +0400 (MSD)
(envelope-from root@selma.komi.mts.ru)
Received: (from root@localhost)
by selma.komi.mts.ru (MTS Komi/Submit) id i3562MaL021870
for tiamat; Mon, 5 Apr 2004 10:02:22 +0400 (MSD)
(envelope-from root)
Date: Mon, 5 Apr 2004 10:02:22 +0400 (MSD)
From: Charlie Root <root@selma.komi.mts.ru>
Message-Id: <200404050602.i3562MaL021870@selma.komi.mts.ru>
To: tiamat@selma.komi.mts.ru
Subject: test
test letter
)
c05 OK Completed (0.000 sec)
>However, given that the information doesn't
>point to obvious problem, I suggest you dig some more.
>
>
Ok. When disable security layer it works:
# ldapsearch -Y GSSAPI -b 'dc=komi,dc=mts,dc=ru' -LLL -O maxssf=0 '(uid=test)' uid
SASL/GSSAPI authentication started
SASL username: tiamat@KOMI.MTS.RU
SASL SSF: 0
dn: cn=test,dc=komi,dc=mts,dc=ru
uid: test
heavy trace (/usr/local/libexec/slapd -u ldap -g ldap -d 255) on ldapsearch:
# ldapsearch -Y GSSAPI -b 'dc=komi,dc=mts,dc=ru' -LLL '(uid=test)' uid
SASL/GSSAPI authentication started
SASL username: tiamat@KOMI.MTS.RU
SASL SSF: 56
SASL installing layers
ldapsearch: ldap_search_ext: Can't contact LDAP server (-1)
slapd output:
daemon: activity on 1 descriptors
daemon: new connection on 13
daemon: added 13r
daemon: activity on:
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on: 13r
daemon: read activity on 13
connection_get(13)
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ber_get_next
ldap_read: want=8, got=8
0000: 30 82 02 45 02 01 01 60 0..E...`
ldap_read: want=577, got=577
0000: 82 02 3e 02 01 03 04 00 a3 82 02 35 04 06 47 53 ..>........5..GS
0010: 53 41 50 49 04 82 02 29 60 82 02 25 06 09 2a 86 SAPI...)`..%..*.
0020: 48 86 f7 12 01 02 02 01 00 6e 82 02 14 30 82 02 H........n...0..
0030: 10 a0 03 02 01 05 a1 03 02 01 0e a2 07 03 05 00 ................
0040: 20 00 00 00 a3 82 01 2c 61 82 01 28 30 82 01 24 ......,a..(0..$
0050: a0 03 02 01 05 a1 0d 1b 0b 4b 4f 4d 49 2e 4d 54 .........KOMI.MT
0060: 53 2e 52 55 a2 24 30 22 a0 03 02 01 01 a1 1b 30 S.RU.$0".......0
0070: 19 1b 04 6c 64 61 70 1b 11 73 65 6c 6d 61 2e 6b ...ldap..selma.k
0080: 6f 6d 69 2e 6d 74 73 2e 72 75 a3 81 e7 30 81 e4 omi.mts.ru...0..
0090: a0 03 02 01 10 a1 03 02 01 01 a2 81 d7 04 81 d4 ................
00a0: cf 15 25 eb 01 5f 76 7c 3a 50 a3 42 c1 8e 80 06 ..%.._v|:P.B....
00b0: a5 11 ef c2 5c 49 4f 3c b3 22 dd a2 15 da 5a a7 ....\IO<."....Z.
00c0: 9c cf 7d 81 2f d4 b2 77 fe a2 da 96 f7 ee 75 45 ..}./..w......uE
00d0: cb 14 21 3e da e8 49 b0 13 e9 0f 3b d3 8b 31 dd ..!>..I....;..1.
00e0: 7a 6a 50 b5 6c b3 7d 56 76 d3 5d 8d 28 fe 6b 3e zjP.l.}Vv.].(.k>
00f0: e9 02 f2 06 3e f4 32 d7 7f 55 74 bb 13 72 88 44 ....>.2..Ut..r.D
0100: 78 34 4c ed 5b ae 91 ce 99 51 87 36 d5 0a 2c 10 x4L.[....Q.6..,.
0110: df 40 0a 0b 38 e0 44 b5 d8 b1 e1 3f 43 f1 5f 73 .@..8.D....?C._s
0120: f3 34 2b 6e 44 01 55 a3 77 e9 d5 d5 c5 98 d7 9c .4+nD.U.w.......
0130: fb 8c 47 bc e3 ee 2b ca 22 56 51 58 1a 0d fc e9 ..G...+."VQX....
0140: 7b e5 59 92 9e 19 54 52 fb 7f 8c 99 2b 6f 1c a0 {.Y...TR....+o..
0150: 3e ee 27 72 c2 88 05 7d c6 d5 b3 3d 9e 8d 7f dd >.'r...}...=....
0160: 63 d6 8a 4e 9d eb 89 4f e1 d6 37 cd 48 54 b8 16 c..N...O..7.HT..
0170: 60 49 e7 cc a4 81 ca 30 81 c7 a0 03 02 01 10 a2 `I.....0........
0180: 81 bf 04 81 bc 4b da 9f 2e 87 08 3d 88 e5 7d 6c .....K.....=..}l
0190: 17 2d 55 7a 63 95 47 a5 98 d9 8c 73 f1 a9 de 8e .-Uzc.G....s....
01a0: 30 cf e7 de 4f ab 99 1c 28 9b f3 3d 9f fb 61 ff 0...O...(..=..a.
01b0: b7 56 29 12 6e 7c c8 2d 91 04 ab 29 9a 20 26 2c .V).n|.-...). &,
01c0: cf 43 3d f2 9d f6 d1 95 89 cd 76 40 30 25 4e 67 .C=.......v@0%Ng
01d0: 85 0e db b5 00 61 a5 25 0e bb d6 43 5d 23 28 35 .....a.%...C]#(5
01e0: c5 8e 06 77 0d ac 0f 80 2a cd 61 e9 6c ab fd 09 ...w....*.a.l...
01f0: 00 af 62 42 40 df ca 18 0d 59 0f 68 10 b3 0c 5e ..bB@....Y.h...^
0200: a6 fb d4 c3 49 69 b4 04 22 2a a8 90 77 1b 00 79 ....Ii.."*..w..y
0210: aa 2a aa d5 e2 9c 5f 58 92 49 bf 0d fb 88 4a b2 .*...._X.I....J.
0220: 35 4d 61 c8 2a 84 98 7b c2 42 88 3c 06 9e 50 bb 5Ma.*..{.B.<..P.
0230: 50 f8 7f c9 5e 1d ca c4 fd 21 5b c4 71 a9 35 19 P...^....![.q.5.
0240: 07 .
ber_get_next: tag 0x30 len 581 contents:
ber_dump: buf=0x003ca400 ptr=0x003ca400 end=0x003ca645 len=581
0000: 02 01 01 60 82 02 3e 02 01 03 04 00 a3 82 02 35 ...`..>........5
0010: 04 06 47 53 53 41 50 49 04 82 02 29 60 82 02 25 ..GSSAPI...)`..%
0020: 06 09 2a 86 48 86 f7 12 01 02 02 01 00 6e 82 02 ..*.H........n..
0030: 14 30 82 02 10 a0 03 02 01 05 a1 03 02 01 0e a2 .0..............
0040: 07 03 05 00 20 00 00 00 a3 82 01 2c 61 82 01 28 .... ......,a..(
0050: 30 82 01 24 a0 03 02 01 05 a1 0d 1b 0b 4b 4f 4d 0..$.........KOM
0060: 49 2e 4d 54 53 2e 52 55 a2 24 30 22 a0 03 02 01 I.MTS.RU.$0"....
0070: 01 a1 1b 30 19 1b 04 6c 64 61 70 1b 11 73 65 6c ...0...ldap..sel
0080: 6d 61 2e 6b 6f 6d 69 2e 6d 74 73 2e 72 75 a3 81 ma.komi.mts.ru..
0090: e7 30 81 e4 a0 03 02 01 10 a1 03 02 01 01 a2 81 .0..............
00a0: d7 04 81 d4 cf 15 25 eb 01 5f 76 7c 3a 50 a3 42 ......%.._v|:P.B
00b0: c1 8e 80 06 a5 11 ef c2 5c 49 4f 3c b3 22 dd a2 ........\IO<."..
00c0: 15 da 5a a7 9c cf 7d 81 2f d4 b2 77 fe a2 da 96 ..Z...}./..w....
00d0: f7 ee 75 45 cb 14 21 3e da e8 49 b0 13 e9 0f 3b ..uE..!>..I....;
00e0: d3 8b 31 dd 7a 6a 50 b5 6c b3 7d 56 76 d3 5d 8d ..1.zjP.l.}Vv.].
00f0: 28 fe 6b 3e e9 02 f2 06 3e f4 32 d7 7f 55 74 bb (.k>....>.2..Ut.
0100: 13 72 88 44 78 34 4c ed 5b ae 91 ce 99 51 87 36 .r.Dx4L.[....Q.6
0110: d5 0a 2c 10 df 40 0a 0b 38 e0 44 b5 d8 b1 e1 3f ..,..@..8.D....?
0120: 43 f1 5f 73 f3 34 2b 6e 44 01 55 a3 77 e9 d5 d5 C._s.4+nD.U.w...
0130: c5 98 d7 9c fb 8c 47 bc e3 ee 2b ca 22 56 51 58 ......G...+."VQX
0140: 1a 0d fc e9 7b e5 59 92 9e 19 54 52 fb 7f 8c 99 ....{.Y...TR....
0150: 2b 6f 1c a0 3e ee 27 72 c2 88 05 7d c6 d5 b3 3d +o..>.'r...}...=
0160: 9e 8d 7f dd 63 d6 8a 4e 9d eb 89 4f e1 d6 37 cd ....c..N...O..7.
0170: 48 54 b8 16 60 49 e7 cc a4 81 ca 30 81 c7 a0 03 HT..`I.....0....
0180: 02 01 10 a2 81 bf 04 81 bc 4b da 9f 2e 87 08 3d .........K.....=
0190: 88 e5 7d 6c 17 2d 55 7a 63 95 47 a5 98 d9 8c 73 ..}l.-Uzc.G....s
01a0: f1 a9 de 8e 30 cf e7 de 4f ab 99 1c 28 9b f3 3d ....0...O...(..=
01b0: 9f fb 61 ff b7 56 29 12 6e 7c c8 2d 91 04 ab 29 ..a..V).n|.-...)
01c0: 9a 20 26 2c cf 43 3d f2 9d f6 d1 95 89 cd 76 40 . &,.C=.......v@
01d0: 30 25 4e 67 85 0e db b5 00 61 a5 25 0e bb d6 43 0%Ng.....a.%...C
01e0: 5d 23 28 35 c5 8e 06 77 0d ac 0f 80 2a cd 61 e9 ]#(5...w....*.a.
01f0: 6c ab fd 09 00 af 62 42 40 df ca 18 0d 59 0f 68 l.....bB@....Y.h
0200: 10 b3 0c 5e a6 fb d4 c3 49 69 b4 04 22 2a a8 90 ...^....Ii.."*..
0210: 77 1b 00 79 aa 2a aa d5 e2 9c 5f 58 92 49 bf 0d w..y.*...._X.I..
0220: fb 88 4a b2 35 4d 61 c8 2a 84 98 7b c2 42 88 3c ..J.5Ma.*..{.B.<
0230: 06 9e 50 bb 50 f8 7f c9 5e 1d ca c4 fd 21 5b c4 ..P.P...^....![.
0240: 71 a9 35 19 07 q.5..
ber_get_next
ldap_read: want=8 error=Resource temporarily unavailable
ber_get_next on fd 13 failed errno=35 (Resource temporarily unavailable)
do_bind
ber_scanf fmt ({imt) ber:
ber_dump: buf=0x003ca400 ptr=0x003ca403 end=0x003ca645 len=578
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
0000: 60 82 02 3e 02 01 03 04 00 a3 82 02 35 04 06 47 `..>........5..G
0010: 53 53 41 50 49 04 82 02 29 60 82 02 25 06 09 2a SSAPI...)`..%..*
0020: 86 48 86 f7 12 01 02 02 01 00 6e 82 02 14 30 82 .H........n...0.
0030: 02 10 a0 03 02 01 05 a1 03 02 01 0e a2 07 03 05 ................
0040: 00 20 00 00 00 a3 82 01 2c 61 82 01 28 30 82 01 . ......,a..(0..
0050: 24 a0 03 02 01 05 a1 0d 1b 0b 4b 4f 4d 49 2e 4d $.........KOMI.M
0060: 54 53 2e 52 55 a2 24 30 22 a0 03 02 01 01 a1 1b TS.RU.$0".......
0070: 30 19 1b 04 6c 64 61 70 1b 11 73 65 6c 6d 61 2e 0...ldap..selma.
0080: 6b 6f 6d 69 2e 6d 74 73 2e 72 75 a3 81 e7 30 81 komi.mts.ru...0.
0090: e4 a0 03 02 01 10 a1 03 02 01 01 a2 81 d7 04 81 ................
00a0: d4 cf 15 25 eb 01 5f 76 7c 3a 50 a3 42 c1 8e 80 ...%.._v|:P.B...
00b0: 06 a5 11 ef c2 5c 49 4f 3c b3 22 dd a2 15 da 5a .....\IO<."....Z
00c0: a7 9c cf 7d 81 2f d4 b2 77 fe a2 da 96 f7 ee 75 ...}./..w......u
00d0: 45 cb 14 21 3e da e8 49 b0 13 e9 0f 3b d3 8b 31 E..!>..I....;..1
00e0: dd 7a 6a 50 b5 6c b3 7d 56 76 d3 5d 8d 28 fe 6b .zjP.l.}Vv.].(.k
00f0: 3e e9 02 f2 06 3e f4 32 d7 7f 55 74 bb 13 72 88 >....>.2..Ut..r.
0100: 44 78 34 4c ed 5b ae 91 ce 99 51 87 36 d5 0a 2c Dx4L.[....Q.6..,
0110: 10 df 40 0a 0b 38 e0 44 b5 d8 b1 e1 3f 43 f1 5f ..@..8.D....?C._
0120: 73 f3 34 2b 6e 44 01 55 a3 77 e9 d5 d5 c5 98 d7 s.4+nD.U.w......
0130: 9c fb 8c 47 bc e3 ee 2b ca 22 56 51 58 1a 0d fc ...G...+."VQX...
0140: e9 7b e5 59 92 9e 19 54 52 fb 7f 8c 99 2b 6f 1c .{.Y...TR....+o.
0150: a0 3e ee 27 72 c2 88 05 7d c6 d5 b3 3d 9e 8d 7f .>.'r...}...=...
0160: dd 63 d6 8a 4e 9d eb 89 4f e1 d6 37 cd 48 54 b8 .c..N...O..7.HT.
0170: 16 60 49 e7 cc a4 81 ca 30 81 c7 a0 03 02 01 10 .`I.....0.......
0180: a2 81 bf 04 81 bc 4b da 9f 2e 87 08 3d 88 e5 7d ......K.....=..}
0190: 6c 17 2d 55 7a 63 95 47 a5 98 d9 8c 73 f1 a9 de l.-Uzc.G....s...
01a0: 8e 30 cf e7 de 4f ab 99 1c 28 9b f3 3d 9f fb 61 .0...O...(..=..a
01b0: ff b7 56 29 12 6e 7c c8 2d 91 04 ab 29 9a 20 26 ..V).n|.-...). &
01c0: 2c cf 43 3d f2 9d f6 d1 95 89 cd 76 40 30 25 4e ,.C=.......v@0%N
01d0: 67 85 0e db b5 00 61 a5 25 0e bb d6 43 5d 23 28 g.....a.%...C]#(
01e0: 35 c5 8e 06 77 0d ac 0f 80 2a cd 61 e9 6c ab fd 5...w....*.a.l..
01f0: 09 00 af 62 42 40 df ca 18 0d 59 0f 68 10 b3 0c ...bB@....Y.h...
0200: 5e a6 fb d4 c3 49 69 b4 04 22 2a a8 90 77 1b 00 ^....Ii.."*..w..
0210: 79 aa 2a aa d5 e2 9c 5f 58 92 49 bf 0d fb 88 4a y.*...._X.I....J
0220: b2 35 4d 61 c8 2a 84 98 7b c2 42 88 3c 06 9e 50 .5Ma.*..{.B.<..P
0230: bb 50 f8 7f c9 5e 1d ca c4 fd 21 5b c4 71 a9 35 .P...^....![.q.5
0240: 19 07 ..
ber_scanf fmt ({m) ber:
ber_dump: buf=0x003ca400 ptr=0x003ca40c end=0x003ca645 len=569
0000: 00 82 02 35 04 06 47 53 53 41 50 49 04 82 02 29 ...5..GSSAPI...)
0010: 60 82 02 25 06 09 2a 86 48 86 f7 12 01 02 02 01 `..%..*.H.......
0020: 00 6e 82 02 14 30 82 02 10 a0 03 02 01 05 a1 03 .n...0..........
0030: 02 01 0e a2 07 03 05 00 20 00 00 00 a3 82 01 2c ........ ......,
0040: 61 82 01 28 30 82 01 24 a0 03 02 01 05 a1 0d 1b a..(0..$........
0050: 0b 4b 4f 4d 49 2e 4d 54 53 2e 52 55 a2 24 30 22 .KOMI.MTS.RU.$0"
0060: a0 03 02 01 01 a1 1b 30 19 1b 04 6c 64 61 70 1b .......0...ldap.
0070: 11 73 65 6c 6d 61 2e 6b 6f 6d 69 2e 6d 74 73 2e .selma.komi.mts.
0080: 72 75 a3 81 e7 30 81 e4 a0 03 02 01 10 a1 03 02 ru...0..........
0090: 01 01 a2 81 d7 04 81 d4 cf 15 25 eb 01 5f 76 7c ..........%.._v|
00a0: 3a 50 a3 42 c1 8e 80 06 a5 11 ef c2 5c 49 4f 3c :P.B........\IO<
00b0: b3 22 dd a2 15 da 5a a7 9c cf 7d 81 2f d4 b2 77 ."....Z...}./..w
00c0: fe a2 da 96 f7 ee 75 45 cb 14 21 3e da e8 49 b0 ......uE..!>..I.
00d0: 13 e9 0f 3b d3 8b 31 dd 7a 6a 50 b5 6c b3 7d 56 ...;..1.zjP.l.}V
00e0: 76 d3 5d 8d 28 fe 6b 3e e9 02 f2 06 3e f4 32 d7 v.].(.k>....>.2.
00f0: 7f 55 74 bb 13 72 88 44 78 34 4c ed 5b ae 91 ce .Ut..r.Dx4L.[...
0100: 99 51 87 36 d5 0a 2c 10 df 40 0a 0b 38 e0 44 b5 .Q.6..,..@..8.D.
0110: d8 b1 e1 3f 43 f1 5f 73 f3 34 2b 6e 44 01 55 a3 ...?C._s.4+nD.U.
0120: 77 e9 d5 d5 c5 98 d7 9c fb 8c 47 bc e3 ee 2b ca w.........G...+.
0130: 22 56 51 58 1a 0d fc e9 7b e5 59 92 9e 19 54 52 "VQX....{.Y...TR
0140: fb 7f 8c 99 2b 6f 1c a0 3e ee 27 72 c2 88 05 7d ....+o..>.'r...}
0150: c6 d5 b3 3d 9e 8d 7f dd 63 d6 8a 4e 9d eb 89 4f ...=....c..N...O
0160: e1 d6 37 cd 48 54 b8 16 60 49 e7 cc a4 81 ca 30 ..7.HT..`I.....0
0170: 81 c7 a0 03 02 01 10 a2 81 bf 04 81 bc 4b da 9f .............K..
0180: 2e 87 08 3d 88 e5 7d 6c 17 2d 55 7a 63 95 47 a5 ...=..}l.-Uzc.G.
0190: 98 d9 8c 73 f1 a9 de 8e 30 cf e7 de 4f ab 99 1c ...s....0...O...
01a0: 28 9b f3 3d 9f fb 61 ff b7 56 29 12 6e 7c c8 2d (..=..a..V).n|.-
01b0: 91 04 ab 29 9a 20 26 2c cf 43 3d f2 9d f6 d1 95 ...). &,.C=.....
01c0: 89 cd 76 40 30 25 4e 67 85 0e db b5 00 61 a5 25 ..v@0%Ng.....a.%
01d0: 0e bb d6 43 5d 23 28 35 c5 8e 06 77 0d ac 0f 80 ...C]#(5...w....
01e0: 2a cd 61 e9 6c ab fd 09 00 af 62 42 40 df ca 18 *.a.l.....bB@...
01f0: 0d 59 0f 68 10 b3 0c 5e a6 fb d4 c3 49 69 b4 04 .Y.h...^....Ii..
0200: 22 2a a8 90 77 1b 00 79 aa 2a aa d5 e2 9c 5f 58 "*..w..y.*...._X
0210: 92 49 bf 0d fb 88 4a b2 35 4d 61 c8 2a 84 98 7b .I....J.5Ma.*..{
0220: c2 42 88 3c 06 9e 50 bb 50 f8 7f c9 5e 1d ca c4 .B.<..P.P...^...
0230: fd 21 5b c4 71 a9 35 19 07 .![.q.5..
ber_scanf fmt (m) ber:
ber_dump: buf=0x003ca400 ptr=0x003ca418 end=0x003ca645 len=557
0000: 00 82 02 29 60 82 02 25 06 09 2a 86 48 86 f7 12 ...)`..%..*.H...
0010: 01 02 02 01 00 6e 82 02 14 30 82 02 10 a0 03 02 .....n...0......
0020: 01 05 a1 03 02 01 0e a2 07 03 05 00 20 00 00 00 ............ ...
0030: a3 82 01 2c 61 82 01 28 30 82 01 24 a0 03 02 01 ...,a..(0..$....
0040: 05 a1 0d 1b 0b 4b 4f 4d 49 2e 4d 54 53 2e 52 55 .....KOMI.MTS.RU
0050: a2 24 30 22 a0 03 02 01 01 a1 1b 30 19 1b 04 6c .$0".......0...l
0060: 64 61 70 1b 11 73 65 6c 6d 61 2e 6b 6f 6d 69 2e dap..selma.komi.
0070: 6d 74 73 2e 72 75 a3 81 e7 30 81 e4 a0 03 02 01 mts.ru...0......
0080: 10 a1 03 02 01 01 a2 81 d7 04 81 d4 cf 15 25 eb ..............%.
0090: 01 5f 76 7c 3a 50 a3 42 c1 8e 80 06 a5 11 ef c2 ._v|:P.B........
00a0: 5c 49 4f 3c b3 22 dd a2 15 da 5a a7 9c cf 7d 81 \IO<."....Z...}.
00b0: 2f d4 b2 77 fe a2 da 96 f7 ee 75 45 cb 14 21 3e /..w......uE..!>
00c0: da e8 49 b0 13 e9 0f 3b d3 8b 31 dd 7a 6a 50 b5 ..I....;..1.zjP.
00d0: 6c b3 7d 56 76 d3 5d 8d 28 fe 6b 3e e9 02 f2 06 l.}Vv.].(.k>....
00e0: 3e f4 32 d7 7f 55 74 bb 13 72 88 44 78 34 4c ed >.2..Ut..r.Dx4L.
00f0: 5b ae 91 ce 99 51 87 36 d5 0a 2c 10 df 40 0a 0b [....Q.6..,..@..
0100: 38 e0 44 b5 d8 b1 e1 3f 43 f1 5f 73 f3 34 2b 6e 8.D....?C._s.4+n
0110: 44 01 55 a3 77 e9 d5 d5 c5 98 d7 9c fb 8c 47 bc D.U.w.........G.
0120: e3 ee 2b ca 22 56 51 58 1a 0d fc e9 7b e5 59 92 ..+."VQX....{.Y.
0130: 9e 19 54 52 fb 7f 8c 99 2b 6f 1c a0 3e ee 27 72 ..TR....+o..>.'r
0140: c2 88 05 7d c6 d5 b3 3d 9e 8d 7f dd 63 d6 8a 4e ...}...=....c..N
0150: 9d eb 89 4f e1 d6 37 cd 48 54 b8 16 60 49 e7 cc ...O..7.HT..`I..
0160: a4 81 ca 30 81 c7 a0 03 02 01 10 a2 81 bf 04 81 ...0............
0170: bc 4b da 9f 2e 87 08 3d 88 e5 7d 6c 17 2d 55 7a .K.....=..}l.-Uz
0180: 63 95 47 a5 98 d9 8c 73 f1 a9 de 8e 30 cf e7 de c.G....s....0...
0190: 4f ab 99 1c 28 9b f3 3d 9f fb 61 ff b7 56 29 12 O...(..=..a..V).
01a0: 6e 7c c8 2d 91 04 ab 29 9a 20 26 2c cf 43 3d f2 n|.-...). &,.C=.
01b0: 9d f6 d1 95 89 cd 76 40 30 25 4e 67 85 0e db b5 ......v@0%Ng....
01c0: 00 61 a5 25 0e bb d6 43 5d 23 28 35 c5 8e 06 77 .a.%...C]#(5...w
01d0: 0d ac 0f 80 2a cd 61 e9 6c ab fd 09 00 af 62 42 ....*.a.l.....bB
01e0: 40 df ca 18 0d 59 0f 68 10 b3 0c 5e a6 fb d4 c3 @....Y.h...^....
01f0: 49 69 b4 04 22 2a a8 90 77 1b 00 79 aa 2a aa d5 Ii.."*..w..y.*..
0200: e2 9c 5f 58 92 49 bf 0d fb 88 4a b2 35 4d 61 c8 .._X.I....J.5Ma.
0210: 2a 84 98 7b c2 42 88 3c 06 9e 50 bb 50 f8 7f c9 *..{.B.<..P.P...
0220: 5e 1d ca c4 fd 21 5b c4 71 a9 35 19 07 ^....![.q.5..
ber_scanf fmt (}}) ber:
ber_dump: buf=0x003ca400 ptr=0x003ca645 end=0x003ca645 len=0
>>> dnPrettyNormal: <>
<<< dnPrettyNormal: <>, <>
do_sasl_bind: dn () mech GSSAPI
==> sasl_bind: dn="" mech=GSSAPI datalen=553
send_ldap_sasl: err=14 len=110
send_ldap_response: msgid=1 tag=97 err=14
ber_flush: 126 bytes to sd 13
0000: 30 7c 02 01 01 61 77 0a 01 0e 04 00 04 00 87 6e 0|...aw........n
0010: 60 6c 06 09 2a 86 48 86 f7 12 01 02 02 02 00 6f `l..*.H........o
0020: 5d 30 5b a0 03 02 01 05 a1 03 02 01 0f a2 4f 30 ]0[...........O0
0030: 4d a0 03 02 01 10 a2 46 04 44 fe 75 3a b4 d8 a6 M......F.D.u:...
0040: 9c e9 e1 88 75 a7 1c b6 6c 0d 7f 2a 36 c5 8c f5 ....u...l..*6...
0050: 93 26 d7 a2 9b 10 b9 2a 27 01 95 43 47 ea ec 25 .&.....*'..CG..%
0060: 87 5c 6d 58 5f d8 08 c0 f4 93 9d 73 c8 83 61 90 .\mX_......s..a.
0070: e6 78 cf 0c f2 c1 77 b4 7e 48 16 13 86 e4 .x....w.~H....
ldap_write: want=126, written=126
0000: 30 7c 02 01 01 61 77 0a 01 0e 04 00 04 00 87 6e 0|...aw........n
0010: 60 6c 06 09 2a 86 48 86 f7 12 01 02 02 02 00 6f `l..*.H........o
0020: 5d 30 5b a0 03 02 01 05 a1 03 02 01 0f a2 4f 30 ]0[...........O0
0030: 4d a0 03 02 01 10 a2 46 04 44 fe 75 3a b4 d8 a6 M......F.D.u:...
0040: 9c e9 e1 88 75 a7 1c b6 6c 0d 7f 2a 36 c5 8c f5 ....u...l..*6...
0050: 93 26 d7 a2 9b 10 b9 2a 27 01 95 43 47 ea ec 25 .&.....*'..CG..%
0060: 87 5c 6d 58 5f d8 08 c0 f4 93 9d 73 c8 83 61 90 .\mX_......s..a.
0070: e6 78 cf 0c f2 c1 77 b4 7e 48 16 13 86 e4 .x....w.~H....
<== slap_sasl_bind: rc=14
daemon: activity on 1 descriptors
daemon: activity on: 13r
daemon: read activity on 13
connection_get(13)
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ber_get_next
ldap_read: want=8, got=8
0000: 30 14 02 01 02 60 0f 02 0....`..
ldap_read: want=14, got=14
0000: 01 03 04 00 a3 08 04 06 47 53 53 41 50 49 ........GSSAPI
ber_get_next: tag 0x30 len 20 contents:
ber_dump: buf=0x003c0f20 ptr=0x003c0f20 end=0x003c0f34 len=20
0000: 02 01 02 60 0f 02 01 03 04 00 a3 08 04 06 47 53 ...`..........GS
0010: 53 41 50 49 SAPI
ber_get_next
ldap_read: want=8 error=Resource temporarily unavailable
ber_get_next on fd 13 failed errno=35 (Resource temporarily unavailable)
do_bind
ber_scanf fmt ({imt) ber:
ber_dump: buf=0x003c0f20 ptr=0x003c0f23 end=0x003c0f34 len=17
0000: 60 0f 02 01 03 04 00 a3 08 04 06 47 53 53 41 50 `..........GSSAP
0010: 49 I
ber_scanf fmt ({m) ber:
ber_dump: buf=0x003c0f20 ptr=0x003c0f2a end=0x003c0f34 len=10
0000: 00 08 04 06 47 53 53 41 50 49 ....GSSAPI
ber_scanf fmt (}}) ber:
ber_dump: buf=0x003c0f20 ptr=0x003c0f34 end=0x003c0f34 len=0
>>> dnPrettyNormal: <>
<<< dnPrettyNormal: <>, <>
do_sasl_bind: dn () mech GSSAPI
==> sasl_bind: dn="" mech=<continuing> datalen=0
send_ldap_sasl: err=14 len=65
send_ldap_response: msgid=2 tag=97 err=14
ber_flush: 81 bytes to sd 13
0000: 30 4f 02 01 02 61 4a 0a 01 0e 04 00 04 00 87 41 0O...aJ........A
0010: 60 3f 06 09 2a 86 48 86 f7 12 01 02 02 02 01 04 `?..*.H.........
0020: 00 ff ff ff ff 07 cc dc 3e fa 48 19 2c 2a 35 5f ........>.H.,*5_
0030: b1 f5 e2 b8 ec c5 7d b8 4a 94 c4 c4 77 e5 31 11 ......}.J...w.1.
0040: a5 85 ac c1 88 16 6b 58 46 07 01 00 00 04 04 04 ......kXF.......
0050: 04 .
ldap_write: want=81, written=81
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
0000: 30 4f 02 01 02 61 4a 0a 01 0e 04 00 04 00 87 41 0O...aJ........A
daemon: activity on 1 descriptors
daemon: activity on: 0010: 60 3f 06 09 2a 86 48 86 f7 12 01 02 02 02 01 04 `?..*.H.........
13r
0020: 00 ff ff ff ff 07 cc dc 3e fa 48 19 2c 2a 35 5f ........>.H.,*5_
daemon: read activity on 13
connection_get(13)
0030: b1 f5 e2 b8 ec c5 7d b8 4a 94 c4 c4 77 e5 31 11 ......}.J...w.1.
0040: a5 85 ac c1 88 16 6b 58 46 07 01 00 00 04 04 04 ......kXF.......
0050: 04 .
<== slap_sasl_bind: rc=14
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ber_get_next
ldap_read: want=8, got=8
0000: 30 57 02 01 03 60 52 02 0W...`R.
ldap_read: want=81, got=81
0000: 01 03 04 00 a3 4b 04 06 47 53 53 41 50 49 04 41 .....K..GSSAPI.A
0010: 60 3f 06 09 2a 86 48 86 f7 12 01 02 02 02 01 04 `?..*.H.........
0020: 00 ff ff ff ff 20 30 65 f3 68 1f a5 97 c4 50 e3 ..... 0e.h....P.
0030: a4 09 52 ab 3c a2 41 39 35 e4 05 ec 1e ed a3 d8 ..R.<.A95.......
0040: 5e 93 40 c1 b4 7c 75 59 cc 04 01 00 00 04 04 04 ^.@..|uY........
0050: 04 .
ber_get_next: tag 0x30 len 87 contents:
ber_dump: buf=0x003c6c00 ptr=0x003c6c00 end=0x003c6c57 len=87
0000: 02 01 03 60 52 02 01 03 04 00 a3 4b 04 06 47 53 ...`R......K..GS
0010: 53 41 50 49 04 41 60 3f 06 09 2a 86 48 86 f7 12 SAPI.A`?..*.H...
0020: 01 02 02 02 01 04 00 ff ff ff ff 20 30 65 f3 68 ........... 0e.h
0030: 1f a5 97 c4 50 e3 a4 09 52 ab 3c a2 41 39 35 e4 ....P...R.<.A95.
0040: 05 ec 1e ed a3 d8 5e 93 40 c1 b4 7c 75 59 cc 04 ......^.@..|uY..
0050: 01 00 00 04 04 04 04 .......
connection_input: conn=0 deferring operation: binding
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
do_bind
ber_scanf fmt ({imt) ber:
ber_dump: buf=0x003c6c00 ptr=0x003c6c03 end=0x003c6c57 len=84
0000: 60 52 02 01 03 04 00 a3 4b 04 06 47 53 53 41 50 `R......K..GSSAP
0010: 49 04 41 60 3f 06 09 2a 86 48 86 f7 12 01 02 02 I.A`?..*.H......
0020: 02 01 04 00 ff ff ff ff 20 30 65 f3 68 1f a5 97 ........ 0e.h...
0030: c4 50 e3 a4 09 52 ab 3c a2 41 39 35 e4 05 ec 1e .P...R.<.A95....
0040: ed a3 d8 5e 93 40 c1 b4 7c 75 59 cc 04 01 00 00 ...^.@..|uY.....
0050: 04 04 04 04 ....
ber_scanf fmt ({m) ber:
ber_dump: buf=0x003c6c00 ptr=0x003c6c0a end=0x003c6c57 len=77
0000: 00 4b 04 06 47 53 53 41 50 49 04 41 60 3f 06 09 .K..GSSAPI.A`?..
0010: 2a 86 48 86 f7 12 01 02 02 02 01 04 00 ff ff ff *.H.............
0020: ff 20 30 65 f3 68 1f a5 97 c4 50 e3 a4 09 52 ab . 0e.h....P...R.
0030: 3c a2 41 39 35 e4 05 ec 1e ed a3 d8 5e 93 40 c1 <.A95.......^.@.
0040: b4 7c 75 59 cc 04 01 00 00 04 04 04 04 .|uY.........
ber_scanf fmt (m) ber:
ber_dump: buf=0x003c6c00 ptr=0x003c6c14 end=0x003c6c57 len=67
0000: 00 41 60 3f 06 09 2a 86 48 86 f7 12 01 02 02 02 .A`?..*.H.......
0010: 01 04 00 ff ff ff ff 20 30 65 f3 68 1f a5 97 c4 ....... 0e.h....
0020: 50 e3 a4 09 52 ab 3c a2 41 39 35 e4 05 ec 1e ed P...R.<.A95.....
0030: a3 d8 5e 93 40 c1 b4 7c 75 59 cc 04 01 00 00 04 ..^.@..|uY......
0040: 04 04 04 ...
ber_scanf fmt (}}) ber:
ber_dump: buf=0x003c6c00 ptr=0x003c6c57 end=0x003c6c57 len=0
>>> dnPrettyNormal: <>
<<< dnPrettyNormal: <>, <>
do_sasl_bind: dn () mech GSSAPI
==> sasl_bind: dn="" mech=<continuing> datalen=65
SASL Canonicalize [conn=0]: authcid="tiamat"
slap_sasl_getdn: id=tiamat [len=6]
slap_sasl_getdn: u:id converted to uid=tiamat,cn=GSSAPI,cn=auth
>>> dnNormalize: <uid=tiamat,cn=GSSAPI,cn=auth>
=> ldap_bv2dn(uid=tiamat,cn=GSSAPI,cn=auth,0)
<= ldap_bv2dn(uid=tiamat,cn=GSSAPI,cn=auth,0)=0
=> ldap_dn2bv(272)
<= ldap_dn2bv(uid=tiamat,cn=gssapi,cn=auth,272)=0
<<< dnNormalize: <uid=tiamat,cn=gssapi,cn=auth>
==>slap_sasl2dn: converting SASL name uid=tiamat,cn=gssapi,cn=auth to a DN
slap_sasl_regexp: converting SASL name uid=tiamat,cn=gssapi,cn=auth
slap_sasl_regexp: converted SASL name to cn=ldapmanager,dc=komi,dc=mts,dc=ru
slap_parseURI: parsing cn=ldapmanager,dc=komi,dc=mts,dc=ru
ldap_url_parse_ext(cn=ldapmanager,dc=komi,dc=mts,dc=ru)
>>> dnNormalize: <cn=ldapmanager,dc=komi,dc=mts,dc=ru>
=> ldap_bv2dn(cn=ldapmanager,dc=komi,dc=mts,dc=ru,0)
<= ldap_bv2dn(cn=ldapmanager,dc=komi,dc=mts,dc=ru,0)=0
=> ldap_dn2bv(272)
<= ldap_dn2bv(cn=ldapmanager,dc=komi,dc=mts,dc=ru,272)=0
<<< dnNormalize: <cn=ldapmanager,dc=komi,dc=mts,dc=ru>
<==slap_sasl2dn: Converted SASL name to cn=ldapmanager,dc=komi,dc=mts,dc=ru
getdn: dn:id converted to cn=ldapmanager,dc=komi,dc=mts,dc=ru
SASL Canonicalize [conn=0]: authcDN="cn=ldapmanager,dc=komi,dc=mts,dc=ru"
SASL proxy authorize [conn=0]: authcid="tiamat" authzid="tiamat"
SASL Authorize [conn=0]: proxy authorization allowed
send_ldap_sasl: err=0 len=-1
send_ldap_response: msgid=3 tag=97 err=0
ber_flush: 14 bytes to sd 13
0000: 30 0c 02 01 03 61 07 0a 01 00 04 00 04 00 0....a........
ldap_write: want=14, written=14
0000: 30 0c 02 01 03 61 07 0a 01 00 04 00 04 00 0....a........
<== slap_sasl_bind: rc=0
do_bind: SASL/GSSAPI bind: dn="cn=ldapmanager,dc=komi,dc=mts,dc=ru" ssf=56
daemon: activity on 1 descriptors
daemon: activity on: 13r
daemon: read activity on 13
connection_get(13)
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ldap_pvt_sasl_install
ber_get_next
sasl_read: want=4, got=0
ldap_read: want=8, got=0
ber_get_next on fd 13 failed errno=0 (Undefined error: 0)
connection_read(13): input error=-2 id=0, closing.
connection_closing: readying conn=0 sd=13 for close
connection_close: conn=0 sd=13
daemon: removing 13
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
slapd.conf:
include /usr/local/etc/openldap/schema/core.schema
include /usr/local/etc/openldap/schema/cosine.schema
include /usr/local/etc/openldap/schema/nis.schema
include /usr/local/etc/openldap/schema/inetorgperson.schema
include /usr/local/etc/openldap/schema/misc.schema
pidfile /var/run/openldap/slapd.pid
argsfile /var/run/openldap/slapd.args
database bdb
suffix "dc=komi,dc=mts,dc=ru"
rootdn "cn=ldapmanager,dc=komi,dc=mts,dc=ru"
rootpw secret
directory /var/db/openldap-data
index objectClass eq
index ou eq
index uid,uidNumber,gidNumber,memberUid eq
index cn,mail,surname,givenname eq,subinitial
index displayName eq
sasl-regexp uid=tiamat,cn=gssapi,cn=auth
"cn=ldapmanager,dc=komi,dc=mts,dc=ru"
loglevel -1
Thanks a lot!