Article delegate-en/4587 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A4581@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Fwd: [DeleGate-En] how to implement SNI on https? detailed instruction please.
25 Sep 2009 07:09:11 GMT David Wang <p2eiqbdyi-re5dixvbmxtr.ml@ml.delegate.org>


Any update is much appreciated.

Kind regards,
David

---------- Forwarded message ----------
From: David Wang <p2eiqbdyi-re5dixvbmxtr.ml@ml.delegate.org>
Date: Thu, Sep 24, 2009 at 11:04 AM
Subject: Re: [DeleGate-En] how to implement SNI on https? detailed
instruction please.
To: feedback@delegate.org


Hi Yutaka,

On that reply, I mentioned I did the steps as you said, but the port 9999 is
not up at the first step, and the log is:
 /bin/delegated -P999 -fv SERVER=https STLS=fcl TLSCONF=-vd
09/21 15:13:09.84 [7954] 0+0: --- [crypto] 0 dglibcrypto.so
09/21 15:13:09.85 [7954] 0+0: --- [crypto] 0 libcrypto.so.0.9.8
09/21 15:13:09.85 [7954] 0+0: --- [/usr/lib/libcrypto.so]
09/21 15:13:09.85 [7954] 0+0: --- [crypto] 8D314A0 /usr/lib/libcrypto.so
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional: SSL_set_SSL_CTX
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional: SSL_get_servername
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional: SSL_get_servername_type
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional: SSL_CTX_callback_ctrl
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional:
SSL_CTX_use_certificate_chain_file
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional:
SSL_CTX_set_session_id_context
09/21 15:13:09.85 [7954] 0+0: --- [crypto] optional:
SSL_CTX_set_generate_session_id
09/21 15:13:09.85 [7954] 0+0: ---- [crypto] loaded 102 syms, unknown=47+7,
already=0
09/21 15:13:09.85 [7954] 0+0: --- [ssl] 0 dglibssl.so
09/21 15:13:09.85 [7954] 0+0: --- [ssl] 0 libssl.so.0.9.8
09/21 15:13:09.86 [7954] 0+0: --- [/usr/lib/libssl.so]
09/21 15:13:09.86 [7954] 0+0: --- [ssl] 8D32CB8 /usr/lib/libssl.so
09/21 15:13:09.86 [7954] 0+0: ---- [ssl] loaded 102 syms, unknown=0+0,
already=0
09/21 15:13:09.86 [7954] 0+0: +++ loaded OpenSSL 0.9.8g 19 Oct 2007
09/21 15:13:09.86 [7954] 0+0: ... testing resolver[SYS] with '
WWW.DeleGate.ORG <http://www.delegate.org/>'
09/21 15:13:09.86 [7954] 0+0: ... you can suppress this test by RES_WAIT=0
09/21 15:13:09.86 [7954] 0+0: ... gethostname(xx.xx.xx)
09/21 15:13:09.86 [7954] 0+0: configuring default RESOLV ...
09/21 15:13:09.86 [7954] 0+0: ... gethostname()='xx.xx.xx'
09/21 15:13:09.86 [7954] 0+0: ... SYS: xx.xx.xx -> 127.0.0.1

09/21 15:13:09.87 [7954] 0+0: ... DNS: 127.0.0.1 -> localhost
09/21 15:13:09.87 [7954] 0+0: ... DNS available
09/21 15:13:09.87 [7954] 0+0: ... NIS not available (no default domain)
09/21 15:13:09.87 [7954] 0+0: ... export RES_ORDER=CFD
09/21 15:13:09.87 [7954] 0+0: {R}
confid(detected)[9400be67aeb6c594fa43f818804974f0]<-[]
09/21 15:13:09.87 [7954] 0+0: export RESOLV=cache,file,dns (set by default)
SRCSIGN=
BLDSIGN=
09/21 15:13:09.87 [7954] 0+0: --INITIALIZATION START-09092115+1000: 9.9.3 on
Linux/2.6.9-22.EL--
09/21 15:13:09.87 [7954] 0+0: EXECDIR=/var/spool/delegate-nobody/etc/../bin
09/21 15:13:09.87 [7954] 0+0: BINSHELL=/bin/sh
09/21 15:13:09.87 [7954] 0+0: MAXIMA=delegated:12 for small mem=60M
09/21 15:13:09.87 [7954] 0+0: scan STLS and FILTERS before beDaemon()...
09/21 15:13:09.87 [7954] 0+0: STLS -> CMAP="sslway:FCL:starttls"
09/21 15:13:09.88 [7954] 0+0: --- [z] 0 dglibz.so
09/21 15:13:09.88 [7954] 0+0: --- [z] 0 libz.so.0.9.8
09/21 15:13:09.88 [7954] 0+0: --- [/usr/lib/libz.so]
09/21 15:13:09.88 [7954] 0+0: --- [z] 8D32450 /usr/lib/libz.so
09/21 15:13:09.88 [7954] 0+0: --- [z] optional: gziocallback
09/21 15:13:09.88 [7954] 0+0: ---- [z] loaded 17 syms, unknown=0+1,
already=0
09/21 15:13:09.88 [7954] 0+0: +++ loaded Zlib 1.2.1.2
09/21 15:13:09.88 [7954] 0+0: #### gzip/gunzip = dynamically linked
09/21 15:13:09.88 [7954] 0+0: ## SSLway CFI_TYPE=FCL: -ac is assumed
09/21 15:13:09.88 [7954] 0+0: ## SSLway start
09/21 15:13:09.88 [7954] 0+0: ## SSLway new ctx #2088594664 8D3F318
7954:error:02001002:system library:fopen:No such file or
directory:bss_file.c:352:fopen('server-cert.pem','r')
7954:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:354:
7954:error:140DC002:SSL routines:SSL_CTX_use_certificate_chain_file:system
lib:ssl_rsa.c:720:
09/21 15:13:09.89 [7954] 0+0: ## SSLway certfile not found or wrong:
server-cert.pem [at /var/spool/delegate-nobody/etc]
09/21 15:13:09.89 [7954] 0+0: ## SSLway keyfile not found or wrong:
server-key.pem [at /var/spool/delegate-nobody/etc]
09/21 15:13:09.89 [7954] 0+0: ## SSLway key does not match cert:
server-key.pem server-cert.pem
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- Using Default Certificate
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- set saveCtx fd=-1
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.000012 start
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.000019 init done
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.000298 begin args
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.000300 end args
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.000759 end rand_seed
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.001052 start con/acc
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.001054 before ssl_new
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.005427 after ssl_new
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.005817 before loadContext
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.010892 after loadContext
09/21 15:13:09.89 [7954] 0+0: ## SSLway -- 0.010951 start relay ...
09/21 15:13:09.89 [7954] 0+0: ## SSLway initialized ctx #2088594664 0 0
09/21 15:13:09.90 [7954] 0+0: server_open(delegate,:999,listen=20)
09/21 15:13:09.90 [7954] 0+0: server_open(delegate,:999) BOUND
09/21 15:13:09.90 [7954] 0+0: DGROOT=/var/spool/delegate-nobody^M
09/21 15:13:09.90 [7954] 0+0: <DeleGate/9.9.3> [7954] -P999 READY^M
09/21 15:13:09.90 [7954] 0+0: HostID: No-HostId-Available
<DeleGate/9.9.3> [7954] -P999 READY
Config: Linux/2.6.9-22.EL; FileSize-Bits=32/64,32/32,32,32;
socket=87380/16384,++NAT; sockpair=110592/110592,1002++U; char=signed;
thread=PThread/pthread; stty=tcsetattr; fmem=4/60/321M
DGROOT=/var/spool/delegate-nobody
ADMIN=admin@xx..xx
AIST-Product-ID: 2000-ETL-198715-01, H14PRO-049, H15PRO-165, H18PRO-443
Copyright (c) 1994-2000 Yutaka Sato and ETL,AIST,MITI
Copyright (c) 2001-2009 National Institute of Advanced Industrial Science
and Technology (AIST)
BLDSIGN=9.9.3:20090914112256+1000:6ba6075851b07162:admin@xx..xx:-
HostID: No-HostId-Available
Loaded: OpenSSL 0.9.8g 19 Oct 2007
Loaded: Zlib 1.2.1.2
09/21 15:13:09.91 [7954] 0+0: PORT= 999/9 (3,231)
09/21 15:13:09.91 [7954] 0+0: OWNER=nobody =>
OWNER=nobody/nobody(nobody/nobody)
09/21 15:13:09.91 [7954] 0+0: STLS -> CMAP="sslway:FCL:starttls"
09/21 15:13:09.91 [7954] 0+0: default netmask 127.0.0.1/. = FFFFFF00
09/21 15:13:09.91 [7954] 0+0: REMITTABLE =
http,https/{80,443},gopher,ftp,wais
09/21 15:13:09.91 [7954] 0+0: ADMIN=admin@xx.xx.xxprotocol=https(specialist)
09/21 15:13:09.92 [7954] 0+0: #### CACHE DISABLED #### Cache directory seems
not exist: /var/spool/delegate-nobody/cache
09/21 15:13:09.92 [7954] 0+0: MOUNT[0]X[2] /-/builtin/icons/* = default
09/21 15:13:09.92 [7954] 0+0: MOUNT[1]X[3] /-/* =
forbidden,from=!.RELIABLE,default
09/21 15:13:09.92 [7954] 0+0: MOUNT[2]X[0] /-* = default
09/21 15:13:09.92 [7954] 0+0: MOUNT[3]X[1] /=* = default
09/21 15:13:09.92 [7954] 0+0: MOUNT[4]=[4] /favicon.ico
builtin:icons/ysato/default.ico default,direction=fo,onerror=404,expires=15m
09/21 15:13:09.92 [7954] 0+0: Stay open PIDFILE for accept() lock[fd=13]
09/21 15:13:09.92 [7954] 0+0: StickyReport[14,15]127.0.0.127:65535><
127.0.0.127:65535 110592/110592 110592/110592
09/21 15:13:09.92 [7954] 0+0: env[25]
LIBPATH=.;/var/spool/delegate-nobody/etc;/var/spool/delegate-nobody/lib;/var/spool/delegate-nobody/etc/../bin;/var/spool/delegate-nobody/etc
09/21 15:13:09.92 [7954] 0+0: env[29] RESOLV=cache,file,dns
09/21 15:13:09.92 [7954] 0+0: arg[3] SERVER=https
09/21 15:13:09.92 [7954] 0+0: arg[4] STLS=fcl
09/21 15:13:09.92 [7954] 0+0: arg[5] TLSCONF=-vd
09/21 15:13:09.92 [7954] 0+0: DELEGATE_Modified[0]: 4ab709ea 1253509610
09/21 15:13:09.92 [7954] 0+0: --INITIALIZATION DONE-09092115+1000: 9.9.3 on
Linux/2.6.9-22.EL--
09/21 15:13:09.92 [7954] 0+0: logMMap: B7FEC000 1344
09/21 15:13:09.92 [7954] 0+0: LOG-Socketpair[20,21]
I checked the port 9999 is not up, so the step 2 is failed with NO ACTIVE
PORT. what's wrong with me?

Kind regards
David


On Wed, Sep 23, 2009 at 8:45 PM, Yutaka Sato <feedback@delegate.org> wrote:

> In message <_A4576@delegate-en.ML_> on
> 09/23/09(10:26:52)
> you David Wang <p2eiqbdyi-re5dixvbmxtr.ml@ml.delegate.org> wrote:
>  |Did you receive my reply on that same day?
>  |Looking forward to hearing from you.
>
> I recommend you to do the test steps from 1) to 4) I wrote.
>
> Cheers,
> Yutaka
> --
>  9 9   Yutaka Sato <y.sato@delegate.org> http://delegate.org/y.sato/
>  ( ~ )  National Institute of Advanced Industrial Science and Technology
> _<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
> Do the more with the less -- B. Fuller
>


  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V