[jadmin] Pb SSL with jabber server 2.1.2
EXT / ALTIOR GIRAUD Emmanuel
ext.altior.giraud at sncf.fr
Thu Mar 15 08:09:16 CDT 2007
Hello
I am trying to crypt the connection beetwen client and server jabber
2.1.2 on a redhat entreprise v3
and it is not working.
If i put off all the crypt instruction, the communication runs
but the message are not crypting.
When i connect a client for example exodus with the cryptage option,
the client tries to authentify and doesnt do anything. the client
Here is my configuration:
In the files: sm.xml,c2s.xml ,s2s.xml,resolver.xml, rooter.xml,I add the
instruction pemfile
<rooter>
<pemfile>/home/jabber/jabberd/jabberd-2.1.2/etc/jabberd/server.pem</pemf
ile>
</rooter>
In the file made for the communication between client to server(c2s) i
add
the instruction
<local>
<id require-starttls='true'>jabber.dsit.sncf.fr</id>
<ip>0.0.0.0</ip>
<pemfile>/home/jabber/jabberd/jabberd-2.1.2/etc/jabberd/server.pem</pemf
ile>
</local>
I just have one domain.
I generate the log with the debug options:
C2S : Thu Mar 15 12:07:03 2007 [notice] [9] [10.40.49.175, port=4221]
connect (my IP client)
C2S : sx (io.c:471) 9 state change from 3 to 6
C2S : sx (io.c:472) tag 9 event 7 data 0x0
C2S : Thu Mar 15 12:06:51 2007 c2s.c:435 close action on fd 9
C2S : sx (sx.c:72) freeing sx for 9
C2S : sx (sasl.c:875) cleaning up conn state
C2S : Thu Mar 15 12:07:03 2007 c2s.c:452 accept action on fd 9
C2S : sx (sx.c:55) allocated new sx for 9
C2S : sx (server.c:236) doing server init for sx 9
C2S : sx (server.c:251) waiting for stream header
C2S : sx (server.c:254) tag 9 event 0 data 0x0
C2S : Thu Mar 15 12:07:03 2007 c2s.c:33 want read
C2S : Thu Mar 15 12:07:03 2007 c2s.c:416 read action on fd 9
C2S : sx (io.c:169) 9 ready for reading
C2S : sx (io.c:175) tag 9 event 2 data 0x813e5b0
C2S : Thu Mar 15 12:07:03 2007 c2s.c:43 reading from 9
C2S : Thu Mar 15 12:07:03 2007 c2s.c:97 read 143 bytes
C2S : sx (io.c:191) passed 143 read bytes
C2S : sx (chain.c:93) calling io read chain
C2S : sx (io.c:215) decoded read data (143 bytes): <stream:stream
to="jabber.dsit.sncf.fr" xmlns="jabber:client"
xmlns:stream="http://etherx.jabber.org/streams" xml:lang="fr_FR"
version="1.0" >
C2S : sx (server.c:118) stream request: to jabber.dsit.sncf.fr from
(null) version 1.0
C2S : sx (server.c:133) 9 state change from 0 to 1
C2S : sx (server.c:151) stream id is
n3ph0ttu21k3ih6l9csay8xqrwfomf6ajwsjpler
C2S : sx (server.c:181) prepared stream response: <?xml
version='1.0'?><stream:stream
xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client'
from='jabber.dsit.sncf.fr' version='1.0'
id='n3ph0ttu21k3ih6l9csay8xqrwfomf6ajwsjpler'>
C2S : sx (io.c:231) tag 9 event 1 data 0x0
C2S : Thu Mar 15 12:07:03 2007 c2s.c:38 want write
C2S : Thu Mar 15 12:07:03 2007 c2s.c:430 write action on fd 9
C2S : sx (io.c:303) 9 ready for writing
C2S : sx (io.c:261) encoding 193 bytes for writing: <?xml
version='1.0'?><stream:stream
xmlns:stream='http://etherx.jabber.org/streams' xmlns='jabber:client'
from='jabber.dsit.sncf.fr' version='1.0'
id='n3ph0ttu21k3ih6l9csay8xqrwfomf6ajwsjpler'>
C2S : sx (chain.c:79) calling io write chain
C2S : sx (io.c:322) handing app 193 bytes to write
C2S : sx (io.c:323) tag 9 event 3 data 0x813e5c8
C2S : Thu Mar 15 12:07:03 2007 c2s.c:135 writing to 9
C2S : Thu Mar 15 12:07:03 2007 c2s.c:139 193 bytes written
C2S : sx (server.c:29) stream established
C2S : sx (sasl.c:363) setting up sasl for this server conn
C2S : Thu Mar 15 12:07:03 2007 main.c:264 sx sasl callback: get realm:
realm is 'jabber.dsit.sncf.fr'
C2S : sx (sasl.c:435) sasl context initialised for 9
C2S : sx (server.c:39) 9 state change from 1 to 3
C2S : sx (server.c:40) tag 9 event 4 data 0x0
C2S : sx (server.c:45) building features nad
C2S : sx (sasl.c:476) ssl not established yet but the app requires it,
not offering mechanisms
C2S : Thu Mar 15 12:07:03 2007 bind.c:35 not auth'd, not offering
resource bind
C2S : sx (io.c:356) tag 9 event 0 data 0x0
C2S : Thu Mar 15 12:07:03 2007 c2s.c:33 want read
C2S : Thu Mar 15 12:07:03 2007 c2s.c:430 write action on fd 9
C2S : sx (io.c:303) 9 ready for writing
C2S : sx (io.c:261) encoding 66 bytes for writing: <stream:features
xmlns:stream='http://etherx.jabber.org/streams'/>
C2S : sx (chain.c:79) calling io write chain
C2S : sx (io.c:322) handing app 66 bytes to write
C2S : sx (io.c:323) tag 9 event 3 data 0x813e5c8
C2S : Thu Mar 15 12:07:03 2007 c2s.c:135 writing to 9
C2S : Thu Mar 15 12:07:03 2007 c2s.c:139 66 bytes written
C2S : sx (io.c:356) tag 9 event 0 data 0x0
C2S : Thu Mar 15 12:07:03 2007 c2s.c:33 want read
C2S : Thu Mar 15 12:07:03 2007 c2s.c:416 read action on fd 9
S2S : Thu Mar 15 12:06:31 2007 main.c:577 next time check at 1173956851
S2S : Thu Mar 15 12:07:31 2007 main.c:572 running time checks
ROUT: Thu Mar 15 12:06:32 2007 main.c:447 next time check at 1173956852
ROUT: Thu Mar 15 12:07:32 2007 main.c:442 running time checks
C2S : sx (io.c:169) 9 ready for reading
C2S : sx (io.c:175) tag 9 event 2 data 0x813e5c8
C2S : Thu Mar 15 12:07:03 2007 c2s.c:43 reading from 9
C2S : Thu Mar 15 12:07:03 2007 c2s.c:97 read 107 bytes
C2S : sx (io.c:191) passed 107 read bytes
C2S : sx (chain.c:93) calling io read chain
C2S : sx (io.c:215) decoded read data (107 bytes): <iq id="jcl_4"
type="get"><query
xmlns="jabber:iq:auth"><username>ext.altior.giraud</username></query></i
q>
C2S : sx (io.c:70) completed nad: <iq xmlns='jabber:client' type='get'
id='jcl_4'><query
xmlns='jabber:iq:auth'><username>ext.altior.giraud</username></query></i
q>
C2S : sx (chain.c:119) calling nad read chain
C2S : sx (io.c:134) tag 9 event 6 data 0x8144dd0
C2S : Thu Mar 15 12:08:03 2007 c2s.c:416 read action on fd 9
S2S : Thu Mar 15 12:07:31 2007 main.c:577 next time check at 1173956911
S2S : Thu Mar 15 12:08:31 2007 main.c:572 running time checks
ROUT: Thu Mar 15 12:07:32 2007 main.c:447 next time check at 1173956912
ROUT: Thu Mar 15 12:08:32 2007 main.c:442 running time checks
C2S : sx (io.c:169) 9 ready for reading
C2S : sx (io.c:175) tag 9 event 2 data 0x8143b80
C2S : Thu Mar 15 12:08:03 2007 c2s.c:43 reading from 9
C2S : Thu Mar 15 12:08:03 2007 c2s.c:97 read 4 bytes
C2S : sx (io.c:191) passed 4 read bytes
C2S : sx (chain.c:93) calling io read chain
C2S : sx (io.c:215) decoded read data (4 bytes):
C2S : Thu Mar 15 12:09:03 2007 c2s.c:416 read action on fd 9
S2S : Thu Mar 15 12:08:31 2007 main.c:577 next time check at 1173956971
S2S : Thu Mar 15 12:09:31 2007 main.c:572 running time checks
ROUT: Thu Mar 15 12:08:32 2007 main.c:447 next time check at 1173956972
ROUT: Thu Mar 15 12:09:32 2007 main.c:442 running time checks
C2S : sx (io.c:169) 9 ready for reading
C2S : sx (io.c:175) tag 9 event 2 data 0x8143b80
C2S : Thu Mar 15 12:09:03 2007 c2s.c:43 reading from 9
C2S : Thu Mar 15 12:09:03 2007 c2s.c:97 read 4 bytes
C2S : sx (io.c:191) passed 4 read bytes
C2S : sx (chain.c:93) calling io read chain
C2S : sx (io.c:215) decoded read data (4 bytes):
C2S : Thu Mar 15 12:10:03 2007 c2s.c:416 read action on fd 9
S2S : Thu Mar 15 12:09:31 2007 main.c:577 next time check at 1173957031
S2S : Thu Mar 15 12:10:31 2007 main.c:572 running time checks
ROUT: Thu Mar 15 12:09:32 2007 main.c:447 next time check at 1173957032
ROUT: Thu Mar 15 12:10:32 2007 main.c:442 running time checks
C2S : sx (io.c:169) 9 ready for reading
[jabber at Dev-E_learning bin]$ ldd c2s
libmysqlclient.so.14 => /usr/lib/libmysqlclient.so.14
(0xb74cb000)
libexpat.so.0 => /usr/lib/libexpat.so.0 (0xb74ab000)
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb7495000)
libdl.so.2 => /lib/libdl.so.2 (0xb7487000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0xb745a000)
libidn.so.11 => /home/jabber/jabberd/libidn/lib/libidn.so.11
(0xb742b000)
libresolv.so.2 => /lib/libresolv.so.2 (0xb7418000)
libc.so.6 => /lib/tls/libc.so.6 (0xb72e1000)
libnsl.so.1 => /lib/libnsl.so.1 (0xb72cc000)
libm.so.6 => /lib/tls/libm.so.6 (0xb72aa000)
libz.so.1 => /usr/lib/libz.so.1 (0xb729c000)
Why????
Do i make a mistake in the configuration file c2s?
Thank you for your help.
Emmanuel Giraud
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.jabber.org/pipermail/jadmin/attachments/20070315/c18d61ca/attachment.htm
More information about the JAdmin
mailing list