[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Start TLS extended request
Hi,
I've been trying to use start tls extended request across implementations
(openldap and Windows 2003 AD) (openldap library and winldap library)
the openldap api is ldap_start_tls_s(ldap*,sctrls*,cctrls*), whereas the
windows API (SDK upgrade is needed, if u r not seeing this) is
ldap_start_tls_s(ldap*,int *responsecode,ldapmessage **msg,sctrls *,
cctrls*). openldap client -> openldap server starttls works fine. i havent
yet tried openldap -> W2003Ad, but when i try from windows client ->
openldap server, i see the following response on the server (invoked with
-d -1):
daemon: select: listen=5 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on: 9r
daemon: read activity on 9
connection_get(9)
connection_get(9): got connid=0
connection_read(9): checking for input on id=0
ber_get_next
ldap_read: want=8, got=8
0000: 30 84 00 00 00 23 02 01 0....#..
ldap_read: want=33, got=33
0000: 01 77 84 00 00 00 1a 80 16 31 2e 33 2e 36 2e 31 .w.......1.3.6.1
0010: 2e 34 2e 31 2e 31 34 36 36 2e 32 30 30 33 37 81 .4.1.1466.20037.
0020: 00 .
ber_get_next: tag 0x30 len 35 contents:
ber_dump: buf=0x0a088d60 ptr=0x0a088d60 end=0x0a088d83 len=35
0000: 02 01 01 77 84 00 00 00 1a 80 16 31 2e 33 2e 36 ...w.......1.3.6
0010: 2e 31 2e 34 2e 31 2e 31 34 36 36 2e 32 30 30 33 .1.4.1.1466.2003
0020: 37 81 00 7..
ber_get_next
ldap_read: want=8 error=Resource temporarily unavailable
do_extended
ber_scanf fmt ({m) ber:
ber_dump: buf=0x0a088d60 ptr=0x0a088d63 end=0x0a088d83 len=32
0000: 77 84 00 00 00 1a 80 16 31 2e 33 2e 36 2e 31 2e w.......1.3.6.1.
0010: 34 2e 31 2e 31 34 36 36 2e 32 30 30 33 37 81 00 4.1.1466.20037..
ber_scanf fmt (m) ber:
ber_dump: buf=0x0a088d60 ptr=0x0a088d81 end=0x0a088d83 len=2
0000: 00 00 ..
do_extended: oid=1.3.6.1.4.1.1466.20037
send_ldap_extended: err=2 oid= len=0
ber_get_next on fd 9 failed errno=11 (Resource temporarily unavailable)
send_ldap_response: msgid=1 tag=120 err=2
ber_flush: 38 bytes to sd 9
0000: 30 24 02 01 01 78 1f 0a 01 02 04 00 04 18 6e 6f 0$...x........no
0010: 20 72 65 71 75 65 73 74 20 64 61 74 61 20 65 78 request data ex
0020: 70 65 63 74 65 64 pected
ldap_write: want=38, written=38
0000: 30 24 02 01 01 78 1f 0a 01 02 04 00 04 18 6e 6f 0$...x........no
0010: 20 72 65 71 75 65 73 74 20 64 61 74 61 20 65 78 request data ex
0020: 70 65 63 74 65 64 pected
daemon: select: listen=5 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on: 9r
daemon: read activity on 9
connection_get(9)
connection_get(9): got connid=0
connection_read(9): checking for input on id=0
ber_get_next
ldap_read: want=8 error=Connection reset by peer
ber_get_next on fd 9 failed errno=104 (Connection reset by peer)
connection_read(9): input error=-2 id=0, closing.
connection_closing: readying conn=0 sd=9 for close
connection_close: conn=0 sd=9
daemon: removing 9
conn=0 fd=9 closed
any suggestion on how to resolve and get this working ?
thanks,
Siva