You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@subversion.apache.org by "D.J. Heap" <dj...@gmail.com> on 2007/10/01 02:39:53 UTC
SASL auth issue
I've been experimenting with SASL auth a bit and have found a strange
issue when using NTLM -- if I specify the ntlm_server option it sends
the client and server into a tight auth loop like:
( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries
commit-revprops mergeinfo ) ) ) ( 2 ( edit-pipeline svndiff1
absent-entries ) 13:svn://dc/Junk ) ( success ( ( NTLM ) 4:Junk ) ) (
NTLM ( 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
) ) ( failure ( 53:SASL(-24): remote authentication server
unavailable: ) ) ( NTLM (
45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
) ) ( failure ( 53:SASL(-24): remote authentication server
unavailable: ) ) ( NTLM (
45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
) ) ( failure ( 53:SASL(-24): remote authentication server
unavailable: ) ) ( NTLM (
45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
) ) ( failure ( 53:SASL(-24): remote authentication server
unavailable: ) ) ( NTLM (
45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
) ) ( failure ( 53:SASL(-24): remote authentication server
unavailable: ) ) ( NTLM (
45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
) ) ( failure ( 53:SASL(-24): remote authentication server unavailable: ) )
...
which appears to go on forever.
Aside from the auth failing issue (and I would be interested to know
if anyone has a working NTLM sasl config), it seems like the client
should stop trying at some point.
I'll investigate further when I can, but would appreciate any info
from sasl/svn-protocol experts.
Thanks!
DJ
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Re: SASL auth issue
Posted by "D.J. Heap" <dj...@gmail.com>.
On 9/30/07, Vlad Georgescu <vg...@gmail.com> wrote:
[snip]
> >
> > Aside from the auth failing issue (and I would be interested to know
> > if anyone has a working NTLM sasl config), it seems like the client
> > should stop trying at some point.
>
> Thanks for the report. I fixed this problem in r26862.
>
Thanks Vlad, that was fast!
I'm still looking at the NTLM issue, but it seems to be because it
can't get a session with the server for some reason -- I suspect
netbios isn't enabled on the server or something similar.
DJ
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Re: SASL auth issue
Posted by Vlad Georgescu <vg...@gmail.com>.
Vlad Georgescu wrote:
> D.J. Heap wrote:
>> Aside from the auth failing issue (and I would be interested to know
>> if anyone has a working NTLM sasl config), it seems like the client
>> should stop trying at some point.
>
> Thanks for the report. I fixed this problem in r26862.
By that I mean I fixed the infinite loop problem. I've no idea why the
NTLM auth fails.
--
Vlad
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Re: SASL auth issue
Posted by Vlad Georgescu <vg...@gmail.com>.
D.J. Heap wrote:
> I've been experimenting with SASL auth a bit and have found a strange
> issue when using NTLM -- if I specify the ntlm_server option it sends
> the client and server into a tight auth loop like:
>
> ( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries
> commit-revprops mergeinfo ) ) ) ( 2 ( edit-pipeline svndiff1
> absent-entries ) 13:svn://dc/Junk ) ( success ( ( NTLM ) 4:Junk ) ) (
> NTLM ( 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
> ) ) ( failure ( 53:SASL(-24): remote authentication server
> unavailable: ) ) ( NTLM (
> 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
> ) ) ( failure ( 53:SASL(-24): remote authentication server
> unavailable: ) ) ( NTLM (
> 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
> ) ) ( failure ( 53:SASL(-24): remote authentication server
> unavailable: ) ) ( NTLM (
> 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
> ) ) ( failure ( 53:SASL(-24): remote authentication server
> unavailable: ) ) ( NTLM (
> 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
> ) ) ( failure ( 53:SASL(-24): remote authentication server
> unavailable: ) ) ( NTLM (
> 45:TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
> ) ) ( failure ( 53:SASL(-24): remote authentication server unavailable: ) )
> ...
>
>
> which appears to go on forever.
>
> Aside from the auth failing issue (and I would be interested to know
> if anyone has a working NTLM sasl config), it seems like the client
> should stop trying at some point.
Thanks for the report. I fixed this problem in r26862.
--
Vlad
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org