Skip to Main Content
Forums

Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

How to configure LDAP and SSL on Solaris to login and su to accounts served from Windows 2000 Active

807573Apr 3 2002 — edited Apr 4 2002
The following shows two problems with accounts served from Active Directory to Solaris via LDAP and SSL.

P1. login first attempt always fails and the second one succeeds
P2. an su from a non privileged account always fails

A truss trace of the login and su processes may show a problem within ldap_simple_bind.

Specifically the usual dialog with the SSL peer (Active Directory server) is not followed i.e. 108 bytes is written instead of 69 bytes. All other truss
traces show that if 69 bytes is written after the connect the server replies with its certificate and the SSL connection continues to work OK.

The write of 108 bytes appears to coincide with approximately 4 second delay after entering the password first time and the message "Incorrect login"
being displayed.

Questions:

1. what determines that the SSL client (Solaris)initially writes 108 bytes?
2. is this related to the problem?

Any comments/advice on how to fix this appreciated.

Thanks,
Stuart

Environment: Solaris 8, Win2k Active Directory Service Pack 2, iPlanet(tm) Directory SDK for C 5.08, PADL nss_ldap-184 & pam_ldap-140

Notes:

The above problem appears to coincide with event 1216 in on Win2K, Microsoft KB article Q246717 indicates that this is due to the LDAP client not keeping
its UDP socket open. However, ethereal shows no UDP dialog on port 636.

The trusted directory has been updated with the path of the LDAP SDK
libraries. Thanks to Ken Bradley bradleyk@mentorgen.com for this tip. With
the trusted path updated the su from a non privileged account now prompts
for a password but still fails.

# crle -s
/usr/lib/secure:/usr/lib/security:/usr/lib/ldapcsdk5[1].08-SunOS5.8/lib
# crle

Configuration file [2]: /var/ld/ld.config
Default Library Path (ELF): /usr/lib (system default)
Trusted Directories (ELF):
/usr/lib/secure:/usr/lib/security:/usr/lib/ldapcsdk5[1].08-SunOS5.8/lib

Command line:
crle -c /var/ld/ld.config -s
/usr/lib/secure:/usr/lib/security:/usr/lib/ldapcsdk5[1].08-SunOS5.8/lib

+++ Comments marked by +++

+++ login to account served from Active Directory follows

# exec login
login: dav
Password: +++ "Test1" entered
Login incorrect +++ ~4 second delay before this messages is displayed
login: dav
Password: +++ "Test1" entered
Last login: Wed Apr 3 21:47:46 on pts/10
Sun Microsystems Inc. SunOS 5.8 Generic February 2000
mail: Cannot open file '/var/mail/' for output
$

+++ the above error message from "/bin/mail -E" maybe due to setgid
executable

$ ls -l /bin/mail
-r-x--s--x 1 root mail 61288 Jan 5 2000 /bin/mail

+++ login truss trace follows

# truss -f \
-d \
-o /var/tmp/login.truss \
-u libldap50,libssldap50,libssl3,libprldap50,libplc4,libplds4 \
-v connect,getpeername,getsockopt,setsockopt,so_socket \
-p PID

+++ truncated +++
8093: 5.3012 stat("/etc/ssl/certs/cert7.db", 0xFFBEE6A8) = 0
8093: 5.3016 open("/etc/ssl/certs/cert7.db", O_RDONLY) = 4
8093: 5.3019 fcntl(4, F_SETFD, 0x00000001) = 0
8093: 5.3022 read(4, "\00615 a\0\0\002\0\010E1".., 260) = 260
8093: 5.3089 brk(0x00030FF0) = 0
8093: 5.3091 brk(0x00032FF0) = 0
8093: 5.3094 lseek(4, 73728, SEEK_SET) = 73728
8093: 5.3097 read(4, "\0 $1FF71FF41F821D1F1D03".., 8192) = 8192
+++ truncated +++
8093: 5.5385 connect(7, 0xFFBEE600, 32, 1) Err#150 EINPROGRESS
8093: AF_INET name = 16.37.3.118 port = 636
8093: 5.5390 poll(0xFFBEDF40, 1, 5000) = 1
8093: 5.5393 getsockopt(7, 65535, 4103, 0xFFBEDE78, 0xFFBEDE7C, 1) = 0
8093/1: 5.5395 -> libldap50:ldap_memfree(0x29d00, 0xffbee1ec, 0x27c,
0x2710)
8093/1: 5.5402 -> libldap50:ldap_x_free(0x29d00, 0xffbee1ec, 0x27c,
0x2710)
8093/1: 5.5408 <- libldap50:ldap_memfree() = 0
8093/1: 5.5413 -> libldap50:ldap_x_hostlist_next(0xffbee678, 0xffbee674,
0x29cd0, 0x285ac)
8093/1: 5.5420 <- libldap50:ldap_x_hostlist_next() = 0
8093/1: 5.5425 -> libldap50:ldap_x_hostlist_statusfree(0x29cd0,
0xffbee674, 0x29cd0, 0x285ac)
8093/1: 5.5437 -> libldap50:ldap_x_free(0x29cd0, 0xffbee674, 0x29cd0,
0x285ac)
8093/1: 5.5442 <- libldap50:ldap_x_hostlist_statusfree() = 0
8093/1: 5.5448 -> libprldap50:prldap_get_socket_info(0x1, 0x29cb8,
0xffbee6e0, 0x0)
8093/1: 5.5455 <- libprldap50:prldap_get_socket_info() = 0
8093/1: 5.5460 -> libssl3:SSL_ImportFD(0x0, 0x2b148, 0xffffffff,
0x29cb8)
8093: 5.5472 getpeername(7, 0xFFBEE610, 0xFFBEE5AC, 1) = 0
8093: AF_INET name = 16.37.3.118 port = 636
8093/1: 5.5475 <- libssl3:SSL_ImportFD() = 0x2b148
8093/1: 5.5480 -> libssl3:SSL_OptionSet(0x2b148, 0x1, 0x1, 0x29cb8)
8093/1: 5.5492 <- libssl3:SSL_OptionSet() = 0
8093/1: 5.5497 -> libssl3:SSL_OptionSet(0x2b148, 0x5, 0x1, 0x29cb8)
8093/1: 5.5504 <- libssl3:SSL_OptionSet() = 0
8093/1: 5.5509 -> libssl3:SSL_ResetHandshake(0x2b148, 0x0, 0x4, 0x29cb8)
8093/1: 5.5517 <- libssl3:SSL_ResetHandshake() = 0
8093/1: 5.5523 -> libssl3:SSL_SetURL(0x2b148, 0x29ca0, 0x0, 0x29cb8)
8093/1: 5.5530 <- libssl3:SSL_SetURL() = 0
8093/1: 5.5535 -> libprldap50:prldap_set_socket_info(0x1, 0x29cb8,
0xffbee6e0, 0x29cb8)
8093/1: 5.5542 <- libprldap50:prldap_set_socket_info() = 0
8093/1: 5.5548 -> libssl3:SSL_AuthCertificateHook(0x2b148, 0xff0331e4,
0x2ac28, 0x29cb8)
8093/1: 5.5554 <- libssl3:SSL_AuthCertificateHook() = 0
8093/1: 5.5560 -> libssl3:SSL_GetClientAuthDataHook(0x2b148, 0xff0332f8,
0x0, 0x29cb8)
8093/1: 5.5567 <- libssl3:SSL_GetClientAuthDataHook() = 0
8093: 5.5572 time() = 1017866852
8093: 5.5594 getpeername(7, 0xFFBEE600, 0xFFBEE59C, 1) = 0
8093: AF_INET name = 16.37.3.118 port = 636
+++ following write of 69 bytes results in read of 3+2+1455+2522 bytes
+++ it appears certificate is sent from Active Directory server
8093: 5.5599 write(7, "80 C010301\0 *\0\0\010\0".., 69) = 69
8093: 5.5606 brk(0x0008EFF0) = 0
8093: 5.5611 brk(0x00090FF0) = 0
8093: 5.5616 read(7, "160301", 3) = 3
8093: 5.5621 read(7, "0F89", 2) = 2
8093: 5.5624 read(7, "02\0\0 F0301A2 O g ,CCAF".., 3977) = 1455
8093: 5.5628 read(7, "8216 C P Q T E S T D C 1".., 2522) = 2522
8093: 5.5631 brk(0x00090FF0) = 0
8093: 5.5634 brk(0x00094FF0) = 0
8093: 5.5801 brk(0x00094FF0) = 0
8093: 5.5803 brk(0x00096FF0) = 0
8093: 5.5850 brk(0x00096FF0) = 0
8093: 5.5852 brk(0x00098FF0) = 0
+++ possible comparisson with cert7.db
8093: 5.5856 lseek(4, 57344, SEEK_SET) = 57344
8093: 5.5859 read(4, "\0101F *1BD01B0717D217AD".., 8192) = 8192
8093: 5.7107 brk(0x00098FF0) = 0
8093: 5.7110 brk(0x0009AFF0) = 0
8093: 5.7118 brk(0x0009AFF0) = 0
8093: 5.7120 brk(0x0009CFF0) = 0
8093: 5.7123 lseek(4, 163840, SEEK_SET) = 163840
8093: 5.7126 read(4, "\0\n1F901EE71EA91DE01D !".., 8192) = 8192
8093/1: 5.7403 -> libssl3:SSL_PeerCertificate(0x2b148, 0x8, 0x145c8,
0xff033218)
8093/1: 5.7411 <- libssl3:SSL_PeerCertificate() = 0x3d598
8093: 5.8173 brk(0x0009CFF0) = 0
8093: 5.8175 brk(0x0009EFF0) = 0
8093: 5.8221 brk(0x0009EFF0) = 0
8093: 5.8224 brk(0x000A0FF0) = 0
8093: 5.8227 lseek(4, 81920, SEEK_SET) = 81920
8093: 5.8230 read(4, "\01E1F8B1D141CFD1C861C13".., 8192) = 8192
8093: 5.8233 brk(0x000A0FF0) = 0
8093: 5.8235 brk(0x000A2FF0) = 0
8093: 5.8238 lseek(4, 172032, SEEK_SET) = 172032
8093: 5.8241 read(4, "\0\b1F901EED1E .1D :1D "".., 8192) = 8192
8093: 5.8332 brk(0x000A2FF0) = 0
8093: 5.8334 brk(0x000A4FF0) = 0
8093: 5.8520 brk(0x000A4FF0) = 0
8093: 5.8522 brk(0x000A6FF0) = 0
8093: 5.9617 brk(0x000A6FF0) = 0
8093: 5.9619 brk(0x000A8FF0) = 0
8093: 5.9625 sysinfo(514, "sparcv9+vis sparcv9 sparcv8plus+vis sparcv8plus
sparcv8 sparcv8-fsmuld sparcv7 sparc", 256) = 85
8093: 6.0277 brk(0x000A8FF0) = 0
8093: 6.0280 brk(0x000AAFF0) = 0
8093: 6.0309 brk(0x000AAFF0) = 0
8093: 6.0311 brk(0x000ACFF0) = 0
8093: 6.0317 brk(0x000ACFF0) = 0
8093: 6.0319 brk(0x000AEFF0) = 0
8093: 6.0328 brk(0x000AEFF0) = 0
8093: 6.0331 brk(0x000B0FF0) = 0
8093: 6.0386 write(7, "160301\08D\v\0\003\0\0\0".., 189) = 189
8093: 6.0389 read(7, 0x000401D8, 5) Err#11 EAGAIN
8093: 6.0461 poll(0xFFBEE448, 1, 5000) = 1
8093: 6.0464 read(7, "140301\001", 5) = 5
8093: 6.0467 read(7, "01", 1) = 1
8093: 6.0471 read(7, "160301\0 ", 5) = 5
8093: 6.0473 read(7, "\v9917931D019FD7 .F7AE84".., 32) = 32
8093: 6.0487 write(7, "170301\0 Q ( p9B ;A3 KE4".., 86) = 86
8093/1: 6.0506 <- libldap50:ldap_simple_bind() = 1
8093/1: 6.0511 -> libldap50:ldap_result(0x3ec00, 0x1, 0x0, 0xffbeea60)
8093: 6.0518 time() = 1017866852
8093: 6.0527 poll(0xFFBEE608, 5, 10000) = 1
8093: 6.0540 brk(0x000B0FF0) = 0
8093: 6.0542 brk(0x000B2FF0) = 0
8093: 6.0545 read(7, "170301\0 &", 5) = 5
8093: 6.0548 read(7, " K n mBCCC88B9E405 2 O #".., 38) = 38
8093: 6.0927 time() = 1017866852
8093/1: 6.0958 <- libldap50:ldap_result() = 97
8093/1: 6.0963 -> libldap50:ldap_parse_result(0x3ec00, 0xa4f90,
0xffbeea58, 0x0)
8093/1: 6.1141 <- libldap50:ldap_parse_result() = 0
8093/1: 6.1146 -> libldap50:ldap_set_option(0x3ec00, 0x3, 0xffbeeae4,
0x7efefeff)
8093/1: 6.1153 <- libldap50:ldap_set_option() = 0
8093/1: 6.1158 -> libldap50:ldap_search_s(0x3ec00, 0x2aac8, 0x2,
0xffbeeee8)
8093: 6.1498 time() = 1017866852
8093: 6.1511 write(7, "170301\0 d9D998C f s "E1".., 105) = 105
8093/1: 6.1520 -> libldap50:ldap_memfree(0xaeea8, 0x0, 0x0, 0x0)
8093/1: 6.1526 -> libldap50:ldap_x_free(0xaeea8, 0x0, 0x0, 0x0)
8093/1: 6.1532 <- libldap50:ldap_memfree() = 0
8093/1: 6.1537 -> libldap50:ldap_memfree(0xaeee8, 0x0, 0xaeea8, 0x285ac)
8093/1: 6.1543 -> libldap50:ldap_x_free(0xaeee8, 0x0, 0xaeea8, 0x285ac)
8093/1: 6.1549 <- libldap50:ldap_memfree() = 0
8093: 6.1570 poll(0xFFBEE5A0, 5, -1) = 1
8093: 6.1583 read(7, "17030106A3", 5) = 5
8093: 6.1586 read(7, "89BA 5EDCE $ x d85A2 0 j".., 1699) = 1455
8093: 6.1589 read(7, "EC10C0EE 2AF KEA12DB p1D".., 244) = 244
8093: 6.1594 brk(0x000B2FF0) = 0
8093: 6.1597 brk(0x000B4FF0) = 0
8093/1: 6.2084 -> libprldap50:prldap_get_session_info(0x0, 0x29c70,
0xffbee4d4, 0xc)
8093/1: 6.2090 <- libprldap50:prldap_get_session_info() = 0
8093/1: 6.2095 -> libldap50:ldap_x_hostlist_first(0x425c0, 0x0,
0xffbee460, 0xffbee45c)
8093/1: 6.2110 -> libldap50:ldap_x_hostlist_next(0xffbee460, 0xffbee45c,
0x425f0, 0xffbee45c)
8093/1: 6.2120 <- libldap50:ldap_x_hostlist_first() = 0
8093: 6.2126 ioctl(6, 0xC00C6982, 0xFFBEDA64) = 0
8093: 6.2129 ioctl(6, 0xC00C6982, 0xFFBEDA64) = 0
8093: 6.2132 open64("/etc/.name_service_door", O_RDONLY) = 8
8093: 6.2135 fcntl(8, F_SETFD, 0x00000001) = 0
8093: 6.2137 door_info(8, 0xFF1BE790) = 0
8093: 6.2139 close(8) = 0
8093: 6.2141 open("/etc/hosts", O_RDONLY) = 8
8093: 6.2144 fstat64(8, 0xFFBEB2E0) = 0
8093: 6.2146 brk(0x000B4FF0) = 0
8093: 6.2149 brk(0x000B6FF0) = 0
8093: 6.2151 ioctl(8, TCGETA, 0xFFBEB26C) Err#25 ENOTTY
8093: 6.2154 read(8, " #\n # I n t e r n e t".., 8192) = 466
8093: 6.2158 read(8, 0x000B4DFC, 8192) = 0
8093: 6.2160 llseek(8, 0, SEEK_CUR) = 466
8093: 6.2162 close(8) = 0
8093: 6.2166 stat("/etc/resolv.conf", 0xFFBE9B48) = 0
8093: 6.2170 so_socket(2, 1, 0, "", 1) = 8
8093: 6.2174 connect(8, 0x0008C390, 16, 1) = 0
8093: AF_INET name = 16.37.3.118 port = 53
8093: 6.2178 send(8, " GD801\0\001\0\0\0\0\0\0".., 29, 0) = 29
8093: 6.2182 poll(0xFFBE9A04, 1, 4999) = 1
8093: 6.2184 fcntl(8, F_GETFL, 0x00000000) = 2
8093: 6.2186 fstat64(8, 0xFFBE97D0) = 0
8093: 6.2188 getsockopt(8, 65535, 8192, 0xFFBE98D0, 0xFFBE98C8, -15125480)
= 0
8093: 6.2190 fstat64(8, 0xFFBE97D0) = 0
8093: 6.2192 getsockopt(8, 65535, 8192, 0xFFBE98D0, 0xFFBE98CC, -15125480)
= 0
8093: 6.2194 setsockopt(8, 65535, 8192, 0xFFBE98D0, 4, -15125480) = 0
8093: 6.2196 fcntl(8, F_SETFL, 0x00000006) = 0
8093: 6.2198 recvfrom(8, " GD88580\001\001\0\0\0\0".., 1024, 0, 0xFFBE99F0,
0xFFBE9A00) = 45
8093: 6.2201 fstat64(8, 0xFFBE97D0) = 0
8093: 6.2203 getsockopt(8, 65535, 8192, 0xFFBE98D0, 0xFFBE98CC, 0) = 0
8093: 6.2206 setsockopt(8, 65535, 8192, 0xFFBE98D0, 4, 0) = 0
8093: 6.2208 fcntl(8, F_SETFL, 0x00000002) = 0
8093: 6.2210 close(8) = 0
8093: 6.2214 so_socket(26, 2, 0, "", 1) = 8
8093: 6.2217 fcntl(8, F_GETFL, 0x00000000) = 2
8093: 6.2219 fstat64(8, 0xFFBEDC00) = 0
8093: 6.2221 getsockopt(8, 65535, 8192, 0xFFBEDD00, 0xFFBEDCF8, -15461424)
= 0
8093: 6.2223 fstat64(8, 0xFFBEDC60) = 0
8093: 6.2225 getsockopt(8, 65535, 8192, 0xFFBEDD60, 0xFFBEDD5C, -18000372)
= 0
8093: 6.2227 setsockopt(8, 65535, 8192, 0xFFBEDD60, 4, -18000372) = 0
8093: 6.2229 fcntl(8, F_SETFL, 0x00000082) = 0
8093: 6.2232 connect(8, 0xFFBEE3E8, 32, 1) Err#126 EADDRNOTAVAIL
8093: AF_INET name = 16.37.3.118 port = 0
8093: 6.2237 close(8) = 0
8093/1: 6.2239 -> libldap50:ldap_memfree(0x42620, 0xffbedfd4, 0x0,
0xffbee3e8)
8093/1: 6.2244 -> libldap50:ldap_x_free(0x42620, 0xffbedfd4, 0x0,
0xffbee3e8)
8093/1: 6.2250 <- libldap50:ldap_memfree() = 0
8093/1: 6.2255 -> libldap50:ldap_x_hostlist_next(0xffbee460, 0xffbee45c,
0x425f0, 0x285ac)
8093/1: 6.2260 <- libldap50:ldap_x_hostlist_next() = 0
8093/1: 6.2266 -> libldap50:ldap_x_hostlist_statusfree(0x425f0,
0xffbee45c, 0x425f0, 0x285ac)
8093/1: 6.2276 -> libldap50:ldap_x_free(0x425f0, 0xffbee45c, 0x425f0,
0x285ac)
8093/1: 6.2281 <- libldap50:ldap_x_hostlist_statusfree() = 0
8093: 6.2555 time() = 1017866852
8093/1: 6.2740 <- libldap50:ldap_search_s() = 0
8093/1: 6.2746 -> libldap50:ldap_first_entry(0x3ec00, 0xa4f90, 0x2,
0xffbeeee8)
8093/1: 6.2752 <- libldap50:ldap_first_entry() = 0xa4f90
8093/1: 6.2758 -> libldap50:ldap_get_dn(0x3ec00, 0xa4f90, 0xffffffff,
0xfffffff8)
8093/1: 6.2821 <- libldap50:ldap_get_dn() = 0x40470
8093/1: 6.2827 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c6f60,
0x0)
8093/1: 6.6346 -> libldap50:ldap_memfree(0xaef08, 0x0, 0x0, 0x0)
8093/1: 6.6351 -> libldap50:ldap_x_free(0xaef08, 0x0, 0x0, 0x0)
8093/1: 6.6357 <- libldap50:ldap_memfree() = 0
8093/1: 6.6362 -> libldap50:ldap_memfree(0xaeef8, 0x0, 0xaef08, 0x285ac)
8093/1: 6.6368 -> libldap50:ldap_x_free(0xaeef8, 0x0, 0xaef08, 0x285ac)
8093/1: 6.6373 <- libldap50:ldap_memfree() = 0
8093/1: 6.6378 <- libldap50:ldap_get_values() = 0
8093/1: 6.6383 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7428,
0x0)
8093/1: 6.9811 <- libldap50:ldap_get_values() = 0x404a8
8093/1: 6.9817 -> libldap50:ldap_value_free(0x404a8, 0xfa1, 0x0,
0xffffc17c)
8093/1: 6.9829 -> libldap50:ldap_x_free(0x404a8, 0xfa1, 0x0, 0xffffc17c)
8093/1: 6.9834 <- libldap50:ldap_value_free() = 0
8093/1: 6.9839 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7438,
0x285ac)
8093/1: 7.3060 <- libldap50:ldap_get_values() = 0x404a8
8093/1: 7.3070 -> libldap50:ldap_value_free(0x404a8, 0x2e03, 0x0,
0xffff47f4)
8093/1: 7.3081 -> libldap50:ldap_x_free(0x404a8, 0x2e03, 0x0, 0xffff47f4)
8093/1: 7.3087 <- libldap50:ldap_value_free() = 0
8093/1: 7.3092 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7450,
0x285ac)
8093/1: 7.6527 <- libldap50:ldap_get_values() = 0
8093/1: 7.6537 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7460,
0x0)
8093/1: 7.9907 <- libldap50:ldap_get_values() = 0
8093/1: 7.9916 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7470,
0x0)
8093/1: 8.3262 <- libldap50:ldap_get_values() = 0
8093/1: 8.3272 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7480,
0x0)
8093/1: 8.6776 <- libldap50:ldap_get_values() = 0
8093/1: 8.6786 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c7490,
0x0)
8093/1: 9.0149 <- libldap50:ldap_get_values() = 0
8093/1: 9.0158 -> libldap50:ldap_get_values(0x3ec00, 0xa4f90, 0xff0c74a0,
0x0)
8093/1: 9.3510 <- libldap50:ldap_get_values() = 0
8093/1: 9.3520 -> libldap50:ldap_msgfree(0xa4f90, 0x0, 0xff0c74a0,
0x40228)
8093/1: 9.3556 <- libldap50:ldap_msgfree() = 101
8093/1: 9.3561 -> libldap50:ldap_simple_bind(0x3ec00, 0x40470, 0xaef08,
0x40228)
8093: 9.3687 time() = 1017866855
8093: 9.3705 write(7, "170301\0 PA4 K99F6 $ X0E".., 85) = 85
8093/1: 9.3714 <- libldap50:ldap_simple_bind() = 4
8093/1: 9.3719 -> libldap50:ldap_result(0x3ec00, 0x4, 0x0, 0xffbef2e0)
8093: 9.3725 time() = 1017866855
8093: 9.3735 poll(0xFFBEEE60, 5, 10000) = 1
8093: 9.3747 read(7, "170301\0 &", 5) = 5
8093: 9.3750 read(7, "D9B09006CD qDA899511D6 q".., 38) = 38
8093: 9.4129 time() = 1017866855
8093/1: 9.4160 <- libldap50:ldap_result() = 97
8093/1: 9.4165 -> libldap50:ldap_parse_result(0x3ec00, 0xa4f90,
0xffbef2b4, 0x0)
8093/1: 9.4352 <- libldap50:ldap_parse_result() = 0
8093: 9.4357 getuid() = 0 [0]
8093/1: 9.4359 -> libldap50:ldap_simple_bind(0x3ec00, 0x2b358, 0x29928,
0x0)
8093: 9.4484 time() = 1017866855
8093: 9.4502 write(7, "170301\0 QAD z 5 ] cBA10".., 86) = 86
8093/1: 9.4510 -> libldap50:ldap_memfree(0xaeed8, 0x0, 0x0, 0x0)
8093/1: 9.4516 -> libldap50:ldap_x_free(0xaeed8, 0x0, 0x0, 0x0)
8093/1: 9.4521 <- libldap50:ldap_memfree() = 0
8093/1: 9.4526 -> libldap50:ldap_memfree(0xaeea8, 0x0, 0xaeed8, 0x285ac)
8093/1: 9.4532 -> libldap50:ldap_x_free(0xaeea8, 0x0, 0xaeed8, 0x285ac)
8093/1: 9.4537 <- libldap50:ldap_memfree() = 0
8093/1: 9.4543 <- libldap50:ldap_simple_bind() = 5
8093/1: 9.4548 -> libldap50:ldap_result(0x3ec00, 0x5, 0x0, 0xffbef2e0)
8093: 9.4555 time() = 1017866855
8093: 9.4562 poll(0xFFBEEE88, 5, 10000) = 1
8093: 9.4575 read(7, "170301\0 &", 5) = 5
8093: 9.4578 read(7, "14 5FCDC I < ) _18F2A9 j".., 38) = 38
8093: 9.4957 time() = 1017866856
8093/1: 9.4988 <- libldap50:ldap_result() = 97
8093/1: 9.4993 -> libldap50:ldap_parse_result(0x3ec00, 0xa4f90,
0xffbef2d8, 0x0)
8093/1: 9.5170 <- libldap50:ldap_parse_result() = 0
8093: 9.5177 fstat(3, 0xFFBEF198) = 0
8093: 9.5179 time() = 1017866856
8093: 9.5184 putmsg(3, 0xFFBEE850, 0xFFBEE844, 0) = 0
8093: 9.5190 open("/var/run/syslog_door", O_RDONLY) = 8
8093: 9.5193 door_info(8, 0xFFBEE788) = 0
8093: 9.5195 getpid() = 8093 [7386]
8093: 9.5198 door_call(8, 0xFFBEE770) = 0
8093: 9.5200 close(8) = 0
8093: 9.5202 fstat(3, 0xFFBEF138) = 0
8093: 9.5204 time() = 1017866856
8093: 9.5208 putmsg(3, 0xFFBEE7F0, 0xFFBEE7E4, 0) = 0
8093: 9.5213 open("/var/run/syslog_door", O_RDONLY) = 8
8093: 9.5215 door_info(8, 0xFFBEE728) = 0
8093: 9.5217 getpid() = 8093 [7386]
8093: 9.5220 door_call(8, 0xFFBEE710) = 0
8093: 9.5222 close(8) = 0
8093: 9.5224 fstat(3, 0xFFBEF198) = 0
8093: 9.5226 time() = 1017866856
8093: 9.5230 putmsg(3, 0xFFBEE850, 0xFFBEE844, 0) = 0
8093: 9.5235 open("/var/run/syslog_door", O_RDONLY) = 8
8093: 9.5238 door_info(8, 0xFFBEE788) = 0
8093: 9.5240 getpid() = 8093 [7386]
8093: 9.5242 door_call(8, 0xFFBEE770) = 0
8093: 9.5244 close(8) = 0
8093: 9.5247 open64("/etc/.name_service_door", O_RDONLY) = 8
8093: 9.5250 fcntl(8, F_SETFD, 0x00000001) = 0
8093: 9.5252 door_info(8, 0xFF1BE790) = 0
8093: 9.5254 close(8) = 0
8093: 9.5258 open("/etc/passwd", O_RDONLY) = 8
8093: 9.5261 fstat64(8, 0xFFBEEBE0) = 0
8093: 9.5263 ioctl(8, TCGETA, 0xFFBEEB6C) Err#25 ENOTTY
8093: 9.5400 read(8, " r o o t : x : 0 : 1 : S".., 8192) = 479
8093: 9.5404 read(8, 0x000B2AA4, 8192) = 0
8093: 9.5407 llseek(8, 0, SEEK_CUR) = 479
8093: 9.5409 close(8) = 0
8093: 9.5412 open("/usr/lib/nss_ldap.so.1", O_RDONLY) = 8
8093: 9.5415 fstat(8, 0xFFBEE77C) = 0
8093: 9.5417 mmap(0x00000000, 8192, PROT_READ|PROT_EXEC, MAP_PRIVATE, 8, 0)
= 0xFECC0000
8093: 9.5526 mmap(0x00000000, 155648, PROT_READ|PROT_EXEC, MAP_PRIVATE, 8,
0) = 0xFEC50000
8093: 9.5529 mmap(0xFEC6A000, 5720, PROT_READ|PROT_WRITE|PROT_EXEC,
MAP_PRIVATE|MAP_FIXED, 8, 40960) = 0xFEC6A000
8093: 9.5533 mmap(0xFEC6C000, 35192, PROT_READ|PROT_WRITE|PROT_EXEC,
MAP_PRIVATE|MAP_FIXED|MAP_ANON, -1, 0) = 0xFEC6C000
8093: 9.5537 munmap(0xFEC5C000, 57344) = 0
8093: 9.5540 memcntl(0xFEC50000, 9480, MC_ADVISE, MADV_WILLNEED, 0, 0) = 0
8093: 9.5542 close(8) = 0
8093: 9.5549
open("/export/home/dav/iplanet/ldapcsdk5[1].08-SunOS5.8/lib/libdb-3.1.so",
O_RDONLY) Err#2 ENOENT
8093: 9.5553 open("/usr/lib/libdb-3.1.so", O_RDONLY) = 8
8093: 9.5556 fstat(8, 0xFFBEE6BC) = 0
8093: 9.5558 mmap(0xFECC0000, 8192, PROT_READ|PROT_EXEC,
MAP_PRIVATE|MAP_FIXED, 8, 0) = 0xFECC0000
8093: 9.5561 mmap(0x00000000, 581632, PROT_READ|PROT_EXEC, MAP_PRIVATE, 8,
0) = 0xFE300000
8093: 9.5564 mmap(0xFE38A000, 13176, PROT_READ|PROT_WRITE|PROT_EXEC,
MAP_PRIVATE|MAP_FIXED, 8, 499712) = 0xFE38A000
8093: 9.5570 munmap(0xFE37C000, 57344) = 0
8093: 9.5574 mmap(0x00000000, 8192, PROT_READ|PROT_WRITE|PROT_EXEC,
MAP_PRIVATE|MAP_ANON, -1, 0) = 0xFEC40000
8093: 9.5578 memcntl(0xFE300000, 53904, MC_ADVISE, MADV_WILLNEED, 0, 0) = 0
8093: 9.5580 close(8) = 0
8093: 9.5584 mprotect(0xFEC50000, 42836, PROT_READ|PROT_WRITE|PROT_EXEC) =
0
8093: 9.5591 mprotect(0xFEC50000, 42836, PROT_READ|PROT_EXEC) = 0
8093: 9.5739 munmap(0xFECC0000, 8192) = 0
8093: 9.5743 sigaction(SIGPIPE, 0xFFBEEBF8, 0xFFBEED18) = 0
8093: 9.5746 getpid() = 8093 [7386]
8093: 9.5749 getuid() = 0 [0]
8093: 9.5751 open("/etc/ldap.conf", O_RDONLY) = 8
8093: 9.5756 fstat64(8, 0xFFBED368) = 0
8093: 9.5758 ioctl(8, TCGETA, 0xFFBED2F4) Err#25 ENOTTY
8093: 9.5761 read(8, " # @ ( # ) $ I d : l".., 8192) = 6487
8093: 9.5783 stat64("/var/tmp", 0xFFBEC718) = 0
8093: 9.5790 brk(0x000B6FF0) = 0
8093: 9.5792 brk(0x000B8FF0) = 0
8093: 9.5799 brk(0x000B8FF0) = 0
8093: 9.5802 brk(0x000FAFF0) = 0
8093: 9.5809 brk(0x000FAFF0) = 0
8093: 9.5811 brk(0x000FCFF0) = 0
8093: 9.5821 brk(0x000FCFF0) = 0
8093: 9.5824 brk(0x000FEFF0) = 0
8093: 9.5827 brk(0x000FEFF0) = 0
8093: 9.5830 brk(0x00100FF0) = 0
8093: 9.5837 stat64("/var/tmp", 0xFFBEC718) = 0
8093: 9.5840 brk(0x00100FF0) = 0
8093: 9.5843 brk(0x00104FF0) = 0
8093: 9.5846 brk(0x00104FF0) = 0
8093: 9.5848 brk(0x00146FF0) = 0
8093: 9.5851 brk(0x00146FF0) = 0
8093: 9.5853 brk(0x00148FF0) = 0
8093: 9.5858 brk(0x00148FF0) = 0
8093: 9.5861 brk(0x0014CFF0) = 0
8093: 9.5864 brk(0x0014CFF0) = 0
8093: 9.5867 brk(0x0014EFF0) = 0
8093: 9.5874 read(8, 0x000B2AA4, 8192) = 0
8093: 9.5877 llseek(8, 0, SEEK_CUR) = 6487
8093: 9.5879 close(8) = 0
8093: 9.5881 open("/etc/ldap.secret", O_RDONLY) = 8
8093: 9.5884 fstat64(8, 0xFFBED368) = 0
8093: 9.5886 ioctl(8, TCGETA, 0xFFBED2F4) Err#25 ENOTTY
8093: 9.5889 read(8, " P a s s p o r t\n", 8192) = 9
8093: 9.5891 llseek(8, 0, SEEK_CUR) = 9
8093: 9.5894 close(8) = 0
8093/1: 9.5920 -> libssldap50:ldapssl_client_init(0xfec6b6f6, 0x0,
0xfec5a0b8, 0xfec5a250)
8093/1: 9.5932 -> libssldap50:ldapssl_clientauth_init(0xfec6b6f6, 0x0,
0x0, 0x0)
8093/1: 9.5937 <- libssldap50:ldapssl_client_init() = 0
8093/1: 9.5942 -> libldap50:ldap_init(0xfec6b678, 0x27c, 0x0, 0x0)
8093/1: 9.5971 <- libldap50:ldap_init() = 0xb2aa0
8093/1: 9.5976 -> libldap50:ldap_set_option(0xb2aa0, 0x5, 0xffbee498,
0xfec591bc)
8093/1: 9.5984 <- libldap50:ldap_set_option() = 0
8093/1: 9.5990 -> libldap50:ldap_set_rebind_proc(0xb2aa0, 0xfec526d8, 0x0,
0x0)
8093/1: 9.5996 <- libldap50:ldap_set_rebind_proc() = 0
8093/1: 9.6001 -> libldap50:ldap_set_option(0xb2aa0, 0x11, 0xaf498, 0x0)
8093/1: 9.6008 <- libldap50:ldap_set_option() = 0
8093/1: 9.6013 -> libldap50:ldap_set_option(0xb2aa0, 0x2, 0xaf474, 0x0)
8093/1: 9.6019 <- libldap50:ldap_set_option() = 0
8093/1: 9.6024 -> libldap50:ldap_set_option(0xb2aa0, 0x4, 0xaf49c, 0x0)
8093/1: 9.6031 <- libldap50:ldap_set_option() = 0
8093/1: 9.6036 -> libldap50:ldap_set_option(0xb2aa0, 0x4f01, 0xffbee530,
0x0)
8093/1: 9.6042 <- libldap50:ldap_set_option() = 0
8093/1: 9.6047 -> libldap50:ldap_set_option(0xb2aa0, 0x8, 0x1, 0x0)
8093/1: 9.6053 <- libldap50:ldap_set_option() = 0
8093/1: 9.6058 -> libldap50:ldap_set_option(0xb2aa0, 0x9, 0x1, 0x0)
8093/1: 9.6065 <- libldap50:ldap_set_option() = 0
8093/1: 9.6071 -> libssldap50:ldapssl_install_routines(0xb2aa0, 0x1, 0x1,
0x0)
8093/1: 9.6077 -> libprldap50:prldap_install_routines(0xb2aa0, 0x1, 0x0,
0x0)
8093/1: 9.6083 -> libldap50:ldap_set_option(0xb2aa0, 0x4f00,
0xffbee3b0, 0xfffffff8)
8093/1: 9.6093 <- libldap50:ldap_set_option() = 0
8093/1: 9.6098 -> libldap50:ldap_set_option(0xb2aa0, 0x5, 0xffbee3b4,
0x0)
8093/1: 9.6105 <- libldap50:ldap_set_option() = 0
8093/1: 9.6110 -> libldap50:ldap_set_option(0xb2aa0, 0x65, 0xffbee39c,
0x0)
8093/1: 9.6115 <- libldap50:ldap_set_option() = 0
8093/1: 9.6120 -> libldap50:ldap_set_option(0xb2aa0, 0x60, 0xffbee3c8,
0x0)
8093/1: 9.6126 <- libldap50:ldap_set_option() = 0
8093/1: 9.6131 <- libprldap50:prldap_install_routines() = 0
8093/1: 9.6136 -> libldap50:ldap_get_option(0xb2aa0, 0x4f00, 0xffbee4a4,
0x0)
8093/1: 9.6141 <- libldap50:ldap_get_option() = 0
8093/1: 9.6146 -> libldap50:ldap_set_option(0xb2aa0, 0x4f00, 0xffbee4a4,
0x0)
8093/1: 9.6157 <- libldap50:ldap_set_option() = 0
8093/1: 9.6161 -> libprldap50:prldap_set_session_info(0xb2aa0, 0x0,
0xffbee49c, 0x0)
8093/1: 9.6170 -> libldap50:ldap_get_option(0xb2aa0, 0x4f00,
0xffbee3a8, 0xfffffff8)
8093/1: 9.6176 <- libldap50:ldap_get_option() = 0
8093/1: 9.6181 <- libprldap50:prldap_set_session_info() = 0
8093/1: 9.6186 <- libssldap50:ldapssl_install_routines() = 0
8093/1: 9.6191 -> libldap50:ldap_set_option(0xb2aa0, 0xa, 0x1, 0x0)
8093/1: 9.6198 <- libldap50:ldap_set_option() = 0
8093/1: 9.6204 -> libldap50:ldap_simple_bind(0xb2aa0, 0xfec6b6ca,
0xfec6b705, 0x0)
8093/1: 9.6345 -> libprldap50:prldap_get_session_info(0x0, 0x42710,
0xffbee14c, 0xc)
8093/1: 9.6351 <- libprldap50:prldap_get_session_info() = 0
8093/1: 9.6356 -> libldap50:ldap_x_hostlist_first(0x42740, 0x27c,
0xffbee0d8, 0xffbee0d4)
8093/1: 9.6371 -> libldap50:ldap_x_hostlist_next(0xffbee0d8, 0xffbee0d4,
0x42770, 0xffbee0d4)
8093/1: 9.6382 <- libldap50:ldap_x_hostlist_first() = 0
8093: 9.6388 ioctl(6, 0xC00C6982, 0xFFBED6DC) = 0
8093: 9.6391 ioctl(6, 0xC00C6982, 0xFFBED6DC) = 0
8093: 9.6394 open64("/etc/.name_service_door", O_RDONLY) = 8
8093: 9.6397 fcntl(8, F_SETFD, 0x00000001) = 0
8093: 9.6399 door_info(8, 0xFF1BE790) = 0
8093: 9.6401 close(8) = 0
8093: 9.6404 open("/etc/hosts", O_RDONLY) = 8
8093: 9.6407 fstat64(8, 0xFFBEAF58) = 0
8093: 9.6409 brk(0x0014EFF0) = 0
8093: 9.6411 brk(0x00150FF0) = 0
8093: 9.6414 ioctl(8, TCGETA, 0xFFBEAEE4) Err#25 ENOTTY
8093: 9.6417 read(8, " #\n # I n t e r n e t".., 8192) = 466
8093: 9.6421 read(8, 0x0014D144, 8192) = 0
8093: 9.6423 llseek(8, 0, SEEK_CUR) = 466
8093: 9.6425 close(8) = 0
8093: 9.6428 stat("/etc/resolv.conf", 0xFFBE97C0) = 0
8093: 9.6432 so_socket(2, 1, 0, "", 1) = 8
8093: 9.6437 connect(8, 0x0008C390, 16, 1) = 0
8093: AF_INET name = 16.37.3.118 port = 53
8093: 9.6441 send(8, " GD901\0\001\0\0\0\0\0\0".., 40, 0) = 40
8093: 9.6445 poll(0xFFBE967C, 1, 4999) = 1
8093: 9.6447 fcntl(8, F_GETFL, 0x00000000) = 2
8093: 9.6449 fstat64(8, 0xFFBE9448) = 0
8093: 9.6451 getsockopt(8, 65535, 8192, 0xFFBE9548, 0xFFBE9540, -15125480)
= 0
8093: 9.6453 fstat64(8, 0xFFBE9448) = 0
8093: 9.6455 getsockopt(8, 65535, 8192, 0xFFBE9548, 0xFFBE9544, -15125480)
= 0
8093: 9.6458 setsockopt(8, 65535, 8192, 0xFFBE9548, 4, -15125480) = 0
8093: 9.6460 fcntl(8, F_SETFL, 0x00000006) = 0
8093: 9.6462 recvfrom(8, " GD98580\001\001\0\0\0\0".., 1024, 0, 0xFFBE9668,
0xFFBE9678) = 56
8093: 9.6466 fstat64(8, 0xFFBE9448) = 0
8093: 9.6468 getsockopt(8, 65535, 8192, 0xFFBE9548, 0xFFBE9544, 0) = 0
8093: 9.6470 setsockopt(8, 65535, 8192, 0xFFBE9548, 4, 0) = 0
8093: 9.6472 fcntl(8, F_SETFL, 0x00000002) = 0
8093: 9.6475 close(8) = 0
8093: 9.6479 so_socket(26, 2, 0, "", 1) = 8
8093: 9.6482 fcntl(8, F_GETFL, 0x00000000) = 2
8093: 9.6484 fstat64(8, 0xFFBED878) = 0
8093: 9.6486 getsockopt(8, 65535, 8192, 0xFFBED978, 0xFFBED970, 0) = 0
8093: 9.6488 fstat64(8, 0xFFBED8D8) = 0
8093: 9.6490 getsockopt(8, 65535, 8192, 0xFFBED9D8, 0xFFBED9D4, -18000372)
= 0
8093: 9.6493 setsockopt(8, 65535, 8192, 0xFFBED9D8, 4, -18000372) = 0
8093: 9.6495 fcntl(8, F_SETFL, 0x00000082) = 0
8093: 9.6498 connect(8, 0xFFBEE060, 32, 1) Err#150 EINPROGRESS
8093: AF_INET name = 16.37.3.118 port = 636
8093: 9.6503 poll(0xFFBED9A0, 1, 5000) = 1
8093: 9.6506 getsockopt(8, 65535, 4103, 0xFFBED8D8, 0xFFBED8DC, 1) = 0
8093/1: 9.6508 -> libldap50:ldap_memfree(0x427a0, 0xffbedc4c, 0x27c,
0x7530)
8093/1: 9.6513 -> libldap50:ldap_x_free(0x427a0, 0xffbedc4c, 0x27c,
0x7530)
8093/1: 9.6519 <- libldap50:ldap_memfree() = 0
8093/1: 9.6524 -> libldap50:ldap_x_hostlist_next(0xffbee0d8, 0xffbee0d4,
0x42770, 0x285ac)
8093/1: 9.6529 <- libldap50:ldap_x_hostlist_next() = 0
8093/1: 9.6534 -> libldap50:ldap_x_hostlist_statusfree(0x42770,
0xffbee0d4, 0x42770, 0x285ac)
8093/1: 9.6545 -> libldap50:ldap_x_free(0x42770, 0xffbee0d4, 0x42770,
0x285ac)
8093/1: 9.6550 <- libldap50:ldap_x_hostlist_statusfree() = 0
8093/1: 9.6555 -> libprldap50:prldap_get_socket_info(0x1, 0x42758,
0xffbee140, 0x0)
8093/1: 9.6561 <- libprldap50:prldap_get_socket_info() = 0
8093/1: 9.6566 -> libssl3:SSL_ImportFD(0x0, 0xa4fd0, 0xffffffff,
0x42758)
8093: 9.6573 getpeername(8, 0xFFBEE070, 0xFFBEE00C, 1) = 0
8093: AF_INET name = 16.37.3.118 port = 636
8093/1: 9.6576 <- libssl3:SSL_ImportFD() = 0xa4fd0
8093/1: 9.6581 -> libssl3:SSL_OptionSet(0xa4fd0, 0x1, 0x1, 0x42758)
8093/1: 9.6588 <- libssl3:SSL_OptionSet() = 0
8093/1: 9.6593 -> libssl3:SSL_OptionSet(0xa4fd0, 0x5, 0x1, 0x42758)
8093/1: 9.6598 <- libssl3:SSL_OptionSet() = 0
8093/1: 9.6603 -> libssl3:SSL_ResetHandshake(0xa4fd0, 0x0, 0x4, 0x42758)
8093/1: 9.6610 <- libssl3:
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on May 1 2002
Added on Apr 3 2002
#identity-management, #oracle-unified-directory-oud-oracle-directory-server-enterprise-edition-sun-dsee
1 comment
409 views