https://bugzilla.novell.com/show_bug.cgi?id=719180 https://bugzilla.novell.com/show_bug.cgi?id=719180#c0 Summary: security:shibboleth: Bug Classification: openSUSE Product: openSUSE.org Version: unspecified Platform: VMWare OS/Version: SLES 11 Status: NEW Severity: Major Priority: P5 - None Component: 3rd party software AssignedTo: cantor.2@osu.edu ReportedBy: lutz.zellober@verw.uni-hamburg.de QAContact: opensuse-communityscreening@forge.provo.novell.com CC: william.c.schneider@uth.tmc.edu Found By: Integration Test Blocker: --- Sles11Sp1 for VMWare and Shibboleth SP Version 2.4.3-2-2 Startting the shibboleth daemon during boot, the daemon starts up but the an error concerning the socket used to download the metadata is logged. This error also inhibits Contacts to external IDPs. When i restart the service as root , everything is ok. I tried to slow down the start in the startscript by adding a sleep or starting the service via cron at boot. But the the error still happens until manual restart. If more information is needed, please write and i will deliver. Thanks Lutz 2011-09-20 13:21:54 INFO Shibboleth.Application : building MetadataProvider of type Chaining... 2011-09-20 13:21:54 INFO OpenSAML.Metadata.Chaining : building MetadataProvider of type XML 2011-09-20 13:21:54 INFO OpenSAML.Metadata : building MetadataFilter of type RequireValidUntil 2011-09-20 13:21:54 INFO OpenSAML.Metadata : building MetadataFilter of type Signature 2011-09-20 13:21:54 INFO XMLTooling.SecurityHelper : loading certificate(s) from file (/etc/shibboleth/xxx.pem) 2011-09-20 13:21:54 INFO OpenSAML.Metadata : building MetadataFilter of type Whitelist 2011-09-20 13:21:54 DEBUG OpenSAML.MetadataProvider.XML : using remote resource (https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml) 2011-09-20 13:21:54 DEBUG OpenSAML.MetadataProvider.XML : backup remote resource to (/etc/shibboleth/DFN-AAI-Test-metadata.xml) 2011-09-20 13:21:54 DEBUG OpenSAML.MetadataProvider.XML : loaded initial cache tag (If-None-Match: "5c0de-3273a6-4ad5d63657580") 2011-09-20 13:21:54 DEBUG OpenSAML.MetadataProvider.XML : will reload remote resource at most every 7200 seconds 2011-09-20 13:21:54 DEBUG OpenSAML.MetadataProvider.XML : loading configuration from external resource... 2011-09-20 13:21:54 INFO Shibboleth.SecurityPolicyProvider.XML : reload thread started...running when signaled 2011-09-20 13:21:54 INFO XMLTooling.StorageService : cleanup thread started...running every 900 seconds 2011-09-20 13:22:04 ERROR XMLTooling.ParserPool : fatal error on line 0, column 0, message: An exception occurred! Type:NetAccessorException, Message:Could not connect to the socket for URL 'https://www.aai.dfn.de/fileadmin/metadata/DF N-AAI-Test-metadata.xml' 2011-09-20 13:22:04 ERROR OpenSAML.MetadataProvider.XML : error while loading resource (https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml): XML error(s) during parsing, check log for specifics 2011-09-20 13:22:04 WARN OpenSAML.MetadataProvider.XML : adjusted reload interval to 600 seconds 2011-09-20 13:22:04 INFO OpenSAML.MetadataProvider.XML : using local backup of remote resource After manual restart 2011-09-20 13:41:59 INFO Shibboleth.Application : building MetadataProvider of type Chaining... 2011-09-20 13:41:59 INFO OpenSAML.Metadata.Chaining : building MetadataProvider of type XML 2011-09-20 13:41:59 INFO OpenSAML.Metadata : building MetadataFilter of type RequireValidUntil 2011-09-20 13:41:59 INFO OpenSAML.Metadata : building MetadataFilter of type Signature 2011-09-20 13:41:59 INFO XMLTooling.SecurityHelper : loading certificate(s) from file (/etc/shibboleth/xxx.pem) 2011-09-20 13:41:59 INFO OpenSAML.Metadata : building MetadataFilter of type Whitelist 2011-09-20 13:41:59 DEBUG OpenSAML.MetadataProvider.XML : using remote resource (https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml) 2011-09-20 13:41:59 DEBUG OpenSAML.MetadataProvider.XML : backup remote resource to (/etc/shibboleth/DFN-AAI-Test-metadata.xml) 2011-09-20 13:41:59 DEBUG OpenSAML.MetadataProvider.XML : loaded initial cache tag (If-None-Match: "5c0de-3273a6-4ad5d63657580") 2011-09-20 13:41:59 DEBUG OpenSAML.MetadataProvider.XML : will reload remote resource at most every 7200 seconds 2011-09-20 13:41:59 DEBUG OpenSAML.MetadataProvider.XML : loading configuration from external resource... 2011-09-20 13:41:59 INFO Shibboleth.SecurityPolicyProvider.XML : reload thread started...running when signaled 2011-09-20 13:41:59 INFO XMLTooling.StorageService : cleanup thread started...running every 900 seconds 2011-09-20 13:41:59 INFO OpenSAML.MetadataProvider.XML : remote resource (https://www.aai.dfn.de/fileadmin/metadata/DFN-AAI-Test-metadata.xml) unchanged, adjusted reload interval to 7200 seconds 2011-09-20 13:41:59 INFO OpenSAML.MetadataProvider.XML : using local backup of remote resource 2011-09-20 13:42:00 INFO OpenSAML.MetadataProvider.XML : loaded XML resource (/etc/shibboleth/DFN-AAI-Test-metadata.xml) 2011-09-20 13:42:00 INFO OpenSAML.Metadata : applying metadata filter (RequireValidUntil) 2011-09-20 13:42:00 INFO OpenSAML.Metadata : applying metadata filter (Signature) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.