Hi,

I'm having trouble to get svnserve + SASL to work under OpenBSD 4.7 stable.

When I try to checkout I always get:
svn: Authentication error from server: SASL(-13): user not found: no secret in
database

Here is my config:

# cat /var/svn/myrepo/conf/svnserve.conf
[general]
# anon-access = read
# auth-access = write
# password-db = passwd
# authz-db = authz
realm = myrepo
[sasl]
use-sasl = true
# min-encryption = 0
# max-encryption = 256

# cat /usr/local/lib/sasl2/subversion.conf
pwcheck_method: auxprop
auxprop_plugin: sasldb
sasldb_path: /etc/svn-sasldb2
mech_list: ANONYMOUS DIGEST-MD5

This is how I create the user:

# saslpasswd2 -c -f /etc/svn-sasldb2 -u myrepo username

Some questions which might help me to debug/solve the problem:

- can I get SASL to log somewhere on the server (I tried log_level: 7 in
subversion.conf without success already)?
- what is the correct name for SASL app config file:
/usr/local/lib/sasl2/svn.conf or /usr/local/lib/sasl2/subversion.conf or what?
- what is the correct sasldb_path in this file: with or without .db extension
(saslpasswd2 seems to append .db automatically)?
- do I need to add some special flags or something to use saslpasswd2 with
DIGEST-MD5 or should I create the svn-sasldb2 in a different way?

Any hints are welcome.

Thanks in advance,
Regards,

JC6rg

[ message continues ]

Hi,

just for the archives I'm answering to my own questions below:

I found the solution to that problem via ktrace/kdump. Starting
svnserve with ktrace revealed that the process tries to
read: /usr/local/lib/sasl2/svn.conf
Furthermore the .db extension is not required in this file and no
special flags are required to create the password file.

Regards,

JC6rg

On Sun, 25 Jul 2010 12:45:50 +0200

[ message continues ]