[Help-gnutls] The "Could not negotiate a supported cipher suite." problem again
Matthias Urlichs
smurf at smurf.noris.de
Wed Jul 21 18:44:22 CEST 2004
Hi,
@kiste tex $ ldapwhoami -ZZ -D "<your login DN>" -w "<password>"
ldap_start_tls: Connect error (91)
additional info: A TLS packet with unexpected length was received.
Past emails say that the problem's fixed with current versions,
but apparently it's not ..?
I'm using gnutls_1_0_16, gcrypt-1-2-0. Help appreciated.
The server (slapd, debugging with "-d 65535") reports:
daemon: activity on 1 descriptors
daemon: new connection on 13
ldap_pvt_gethostbyname_a: host=kiste, r=0
str2filter "(objectclass=*)"
put_filter: "(objectclass=*)"
put_filter: simple
put_simple_filter: "objectclass=*"
begin get_filter
PRESENT
ber_scanf fmt (m) ber:
ber_dump: buf=0x08121d58 ptr=0x08121d58 end=0x08121d65 len=13
0000: 87 0b 6f 62 6a 65 63 74 63 6c 61 73 73 ..objectclass
end get_filter 0
conn=0 fd=13 ACCEPT from IP=127.0.0.1:43063 (IP=0.0.0.0:389)
daemon: added 13r
daemon: activity on:
daemon: select: listen=6 active_threads=0 tvp=NULL
daemon: select: listen=7 active_threads=0 tvp=NULL
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
daemon: select: listen=10 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on: 13r
daemon: read activity on 13
connection_get(13)
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
ber_get_next
ldap_read: want=8, got=8
0000: 30 1d 02 01 01 77 18 80 0....w..
ldap_read: want=23, got=23
0000: 16 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e 31 34 36 .1.3.6.1.4.1.146
0010: 36 2e 32 30 30 33 37 6.20037
ber_get_next: tag 0x30 len 29 contents:
ber_dump: buf=0x08121c88 ptr=0x08121c88 end=0x08121ca5 len=29
0000: 02 01 01 77 18 80 16 31 2e 33 2e 36 2e 31 2e 34 ...w...1.3.6.1.4
0010: 2e 31 2e 31 34 36 36 2e 32 30 30 33 37 .1.1466.20037
do_extended
ber_scanf fmt ({m) ber:
ber_dump: buf=0x08121c88 ptr=0x08121c8b end=0x08121ca5 len=26
0000: 77 18 80 16 31 2e 33 2e 36 2e 31 2e 34 2e 31 2e w...1.3.6.1.4.1.
0010: 31 34 36 36 2e 32 30 30 33 37 1466.20037
do_extended: oid=1.3.6.1.4.1.1466.20037
ber_get_next
ldap_read: want=8 error=Resource temporarily unavailable
ber_get_next on fd 13 failed errno=11 (Resource temporarily unavailable)
send_ldap_extended: err=0 oid= len=0
send_ldap_response: msgid=1 tag=120 err=0
ber_flush: 14 bytes to sd 13
0000: 30 0c 02 01 01 78 07 0a 01 00 04 00 04 00 0....x........
ldap_write: want=14, written=14
0000: 30 0c 02 01 01 78 07 0a 01 00 04 00 04 00 0....x........
daemon: select: listen=6 active_threads=0 tvp=NULL
daemon: select: listen=7 active_threads=0 tvp=NULL
daemon: select: listen=8 active_threads=0 tvp=NULL
daemon: select: listen=9 active_threads=0 tvp=NULL
daemon: select: listen=10 active_threads=0 tvp=NULL
daemon: activity on 1 descriptors
daemon: activity on: 13r
daemon: read activity on 13
connection_get(13)
connection_get(13): got connid=0
connection_read(13): checking for input on id=0
tls_read: want=5, got=5
0000: 16 03 01 00 44 ....D
tls_read: want=68, got=68
0000: 01 00 00 40 03 01 40 fe 9b d8 bb 41 be 6f 17 9a ... at ..@....A.o..
0010: 35 c6 39 2e 42 96 10 20 c2 e7 1f 8c 80 69 f7 03 5.9.B.. .....i..
0020: 37 53 94 65 23 7b 00 00 18 00 33 00 16 00 39 00 7S.e#{....3...9.
0030: 2f 00 0a 00 35 00 05 00 04 00 32 00 13 00 38 00 /...5.....2...8.
0040: 66 02 01 00 f...
TLS: can't accept.
TLS: Could not negotiate a supported cipher suite. (null):0
connection_read(13): TLS accept error error=-1 id=0, closing
connection_closing: readying conn=0 sd=13 for close
--
Matthias Urlichs | {M:U} IT Design @ m-u-it.de | smurf at smurf.noris.de
More information about the Gnutls-help
mailing list