Skip Menu |

This queue is for tickets about the perl-ldap CPAN distribution.

Report information
The Basics
Id: 66753
Status: resolved
Priority: 0/
Queue: perl-ldap
People
Owner: Nobody in particular
Requestors: mmaslano [...] redhat.com
Cc:
AdminCc:
Bug Information
Severity: Normal
Broken in: 0.4001
Fixed in: 0.50

History Show all quoted text
  Mon Mar 21 11:42:24 2011 mmaslano [...] redhat.com - Ticket created
Subject: tests are failing with latest openldap
For new openldap-2.4.23 are certificates mandatory. Without them server doesn't respond correctly. IO::Socket::SSL (v1.39) already have options to use it, but they need to be incorporated in perl-ldap. I'm not sure whether there is problem only in test suite or also in code. The last release of openldap brought a lot of changes, so there could be more. perl t/55ssl.t 1..15 ok 1 # client ok 2 # bind: 0: Success ok 3 # data/50-in.ldif not ok 4 # start_stl: 1: SSL connect attempt failed because of handshake problemserror:00000000:lib(0):func(0):reason(0) ok 5 # start_stl: 1: Unexpected EOF not ok 6 # search: 81: Can't contact LDAP server not ok 7 # Can't contact LDAP server ldaps://localhost:9010/ IO::Socket::SSL: SSL connect attempt failed because of handshake problemserror:00000000:lib(0):func(0):reason(0) at t/common.pl line 132. perl t/57url.t 1..22 ok 1 # client ok 2 # bind: 0: Success ok 3 # data/50-in.ldif ok 4 # search: 0: Success ok 5 # Success ok 6 # Read 50-out.ldif ok 7 # data/50-cmp.ldif Trying ldap://localhost:9009/ ok 8 # ldap://localhost:9009/ client ok 9 # search: 0: Success ok 10 # Success ok 11 # Read 50-out.ldif ok 12 # data/50-cmp.ldif Trying ldaps://localhost:9010/ ldaps://localhost:9010/ IO::Socket::SSL: SSL connect attempt failed because of handshake problemserror:00000000:lib(0):func(0):reason(0) at t/common.pl line 146.
  Sun Jan 29 14:31:11 2012 MARSCHAP [...] cpan.org - Correspondence added
On Mon Mar 21 11:42:24 2011, mmaslano@redhat.com wrote: Show quoted text
> For new openldap-2.4.23 are certificates mandatory. Without them
server Show quoted text
> doesn't respond correctly. IO::Socket::SSL (v1.39) already have
options Show quoted text
> to use it, but they need to be incorporated in perl-ldap. I'm not sure > whether there is problem only in test suite or also in code. The last > release of openldap brought a lot of changes, so there could be more. > > > perl t/55ssl.t > 1..15 > ok 1 # client > ok 2 # bind: 0: Success > ok 3 # data/50-in.ldif > not ok 4 # start_stl: 1: SSL connect attempt failed because of
handshake Show quoted text
> problemserror:00000000:lib(0):func(0):reason(0) > ok 5 # start_stl: 1: Unexpected EOF > not ok 6 # search: 81: Can't contact LDAP server > not ok 7 # Can't contact LDAP server > ldaps://localhost:9010/ IO::Socket::SSL: SSL connect attempt failed > because of handshake problemserror:00000000:lib(0):func(0):reason(0)
at Show quoted text
> t/common.pl line 132. > > perl t/57url.t > 1..22 > ok 1 # client > ok 2 # bind: 0: Success > ok 3 # data/50-in.ldif > ok 4 # search: 0: Success > ok 5 # Success > ok 6 # Read 50-out.ldif > ok 7 # data/50-cmp.ldif > Trying ldap://localhost:9009/ > ok 8 # ldap://localhost:9009/ client > ok 9 # search: 0: Success > ok 10 # Success > ok 11 # Read 50-out.ldif > ok 12 # data/50-cmp.ldif > Trying ldaps://localhost:9010/ > ldaps://localhost:9010/ IO::Socket::SSL: SSL connect attempt failed > because of handshake problemserror:00000000:lib(0):func(0):reason(0)
at Show quoted text
> t/common.pl line 146.
Now that perl-ldap v0.44 has been released with changes in that region, can you give it a try, test whether it fixes the issue, and report back. Thanks Peter
  Sun Jan 29 14:31:12 2012 The RT System itself - Status changed from 'new' to 'open'
  Thu May 17 12:39:02 2012 MARSCHAP [...] cpan.org - Status changed from 'open' to 'stalled'
  Sat Sep 08 13:34:24 2012 MARSCHAP [...] cpan.org - Correspondence added
Hi, I guess I found the cause of the issue: the certificate used in the tests is outdated. I will try to create a new one that lasts longer ;-) Best PEter
  Sat Sep 08 13:34:24 2012 The RT System itself - Status changed from 'stalled' to 'open'
  Sun Oct 07 08:46:58 2012 MARSCHAP [...] cpan.org - Correspondence added
Updated versions of key.pem & cert.pem as well as a tool to re-generate them will be in the next release of perl-ldap. In the meantime they can be found at https://github.com/marschap/perl-ldap/tree/next Peter
  Sun Oct 07 08:46:59 2012 MARSCHAP [...] cpan.org - Status changed from 'open' to 'patched'
  Sat Nov 24 10:03:48 2012 MARSCHAP [...] cpan.org - Status changed from 'patched' to 'resolved'
  Sat Nov 24 10:03:48 2012 MARSCHAP [...] cpan.org - Fixed in 0.50 added