Skip Menu |

This queue is for tickets about the perl-ldap CPAN distribution.

Report information
The Basics
Id: 4186
Status: resolved
Priority: 0/
Queue: perl-ldap
People
Owner: Nobody in particular
Requestors: Marek.Rouchal [...] gmx.net
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: (no value)

History Show all quoted text
  Wed Oct 22 07:22:36 2003 Marek.Rouchal [...] gmx.net - Ticket created
Subject: test errors in perl-ldap-0.30
my config: perl-5.8.1 (ithreads, shared libperl), Solaris 7 (sparc), gcc-3.1.1, openssl-0.9.7b, openldap-2.1.8 and the latest&greatest modules from CPAN (all required by perl-ldap). I see failures in t/55ssl.t - I tried to figure out whether this is a misconfiguration on my side, and tried to find the root cause, but did not succeed. Maybe you can help. The test/verbose log is attached, here is my test.cfg. Please let me know if I shall send any additional info. Thanks, Marek test.cfg: # Currently test that require a server are only implemented to work # with slapd from the OpenLDAP project. Edit this file so the tests # can find the executable and know what type of server it is # Set this to the path to where you have slapd $SERVER_EXE = "/opt/TWWfsw/openldap218/libexec/slapd"; # This should be one of # openldap1 # openldap2 # openldap2[+ssl][+ipc][+sasl] $SERVER_TYPE = "openldap2+ssl+ipc+sasl"; # $HOST = "localhost"; # If you are using openldap 2.1 then you will need to change this to point # to your installation schema dir (eg /usr/local/etc/openldap/schema) $SCHEMA_DIR = "/home/hwadm/Perl/Ldap/schema"; $EXTERNAL_TESTS = 1; %sortctrl = ( host => 'webmail.infineon.com', base => 'C=DE', filter => '*', order => 'mail', ); 1;

Message body is not shown because it is too large.

  Wed Oct 22 09:11:20 2003 gbarr [...] pobox.com - Correspondence added
From: Graham Barr <gbarr [...] pobox.com>
Subject: Re: [cpan #4186] test errors in perl-ldap-0.30
Date: Wed, 22 Oct 2003 14:10:37 +0100
To: bug-perl-ldap [...] rt.cpan.org
RT-Send-Cc:
On 22 Oct 2003, at 12:22, via RT wrote: Show quoted text
> my config: perl-5.8.1 (ithreads, shared libperl), Solaris 7 (sparc), > gcc-3.1.1, openssl-0.9.7b, openldap-2.1.8 and the latest&greatest > modules from CPAN (all required by perl-ldap). > > I see failures in t/55ssl.t - I tried to figure out whether this is > a misconfiguration on my side, and tried to find the root cause, but > did not succeed. Maybe you can help. > > The test/verbose log is attached, here is my test.cfg. Please let me > know if I shall send any additional info.
In the temp directory there should be a file called 55ssl, this is a logfile created by the server. Does that show any reason why the start_tls failed. I also see that 57url.t failes when trying to connect to the SSL port also, does temp/57url show anything too ? Graham.
  Wed Oct 22 10:58:21 2003 gbarr [...] pobox.com - Correspondence added
From: Graham Barr <gbarr [...] pobox.com>
Subject: Re: [Comment] RE: [cpan #4186] test errors in perl-ldap-0.30
Date: Wed, 22 Oct 2003 15:57:44 +0100
To: bug-perl-ldap [...] rt.cpan.org
RT-Send-Cc:
On 22 Oct 2003, at 14:45, marek.rouchal@infineon.com via RT wrote: Show quoted text
>> In the temp directory there should be a file called 55ssl, this is a >> logfile created by the server. Does that show any reason why the >> start_tls failed.
> > Yeah, there are lines: > ber_get_next on fd 9 failed errno=11 (Resource temporarily unavailable) > TLS trace: SSL_accept:error in SSLv3 read client certificate A
Yes, it looks like its having problems reading the cert from the client. But as the tests are not using explicitly defined certs I don't think this is a Net::LDAP issue I did notice from your logs you are using openldap-2.1.8. Here I have 2.1.19 and I cannot reproduce the problem. So I can only assume that the problem is caused by the specific combination of versions of openldap and libssl Apparently, looking in the openldap CHANGES file there was a bug-fix for TLS certificate checking in version 2.1.13 Hope this helps Graham.
  Mon Jan 12 04:33:03 2004 Marek.Rouchal [...] gmx.net - Correspondence added
[gbarr@pobox.com - Wed Oct 22 10:58:21 2003]: Show quoted text
> Apparently, looking in the openldap CHANGES file there was a bug-fix > for TLS certificate checking in version 2.1.13
Yeah, I think this was the issue. I now tried p-ldap-0.31 with openldap 2.1.23 and that runs ok. But: The first test breaks because I changed the test.cfg and the SIGNATURE is then broken. Can you exclude test.cfg from the validation of the SIGNATURE? Cheers, Marek
  Mon Jan 12 11:22:44 2004 gbarr [...] pobox.com - Correspondence added
From: Graham Barr <gbarr [...] pobox.com>
Subject: Re: [cpan #4186] test errors in perl-ldap-0.30
Date: Mon, 12 Jan 2004 16:22:44 +0000
To: bug-perl-ldap [...] rt.cpan.org
RT-Send-Cc:
On 12 Jan 2004, at 09:33, via RT wrote: Show quoted text
> [gbarr@pobox.com - Wed Oct 22 10:58:21 2003]:
>> Apparently, looking in the openldap CHANGES file there was a bug-fix >> for TLS certificate checking in version 2.1.13
> > Yeah, I think this was the issue. I now tried p-ldap-0.31 with > openldap 2.1.23 and that runs ok. > > But: The first test breaks because I changed the test.cfg and > the SIGNATURE is then broken. Can you exclude test.cfg from > the validation of the SIGNATURE?
No, thats not possible. The whole idea is to check the integrity of the distribution and that nobody has made changes to any file. If you change any file, then expect test 1 to fail. Of course you could just remove the file from the t/ directory :) Graham.
  Sat Mar 25 22:49:10 2006 GBARR [...] CPAN.ORG - Status changed from 'new' to 'resolved'