[squid-users] Problem with LDAP authentication on Win32 Port

Hello,

In my test environment, I use two squid configurations:
Squid 2.4 Stable 2, On GNU/Linux Debian 2.2, compiled from sources.
Squid 2.3 STABLE 5, On Win NT 4.0, native Win32 port (binaries).
The goal is to create a generic proxy configuration which will be installed
in several places around the world by my company for intranet uses.

I first configured the GNU/Linux version, which works fine. I'm using a LDAP
external server to authenticate users via the squid_ldap_auth program.
Then I did the same things with the windows version. All is OK (startup,
proxying, caching) but LDAP authentication fails.

Here are my configuration lines :
Linux :
authenticate_program /usr/local/squid/libexec/squid/squid_ldap_auth -b
o=mycompany,c=fr -f uid=%s my_ldap_server
Window$ :
authenticate_program C:/Squid/ldap_auth.dll -b o=mycompany,c=fr -f uid=%s
my_ldap_server

With the line :
debug_options ALL,9
I obtain the following results in cache.log :

Linux :
[...]
2001/09/07 17:06:00| aclCheck: checking password via authenticator
2001/09/07 17:06:00| aclDecodeProxyAuth: header = 'Basic
dGJpZG9uOm1kcHRiYQ=='
2001/09/07 17:06:00| aclDecodeProxyAuth: cleartext = 'tbidon:mdptba'
2001/09/07 17:06:00| aclLookupProxyAuthStart: going to ask authenticator on
tbidon
2001/09/07 17:06:00| authenticateStart: 'tbidon:mdptba'
2001/09/07 17:06:00| cbdataAdd: 0x8451688
2001/09/07 17:06:00| cbdataLock: 0x8451550
2001/09/07 17:06:00| cbdataLock: 0x8451688
2001/09/07 17:06:00| cbdataValid: 0x8451688
2001/09/07 17:06:00| comm_write: FD 6: sz 14: hndl (nil): data (nil).
2001/09/07 17:06:00| commSetSelect: FD 6 type 2
2001/09/07 17:06:00| commSetSelect: FD 6 type 1
2001/09/07 17:06:00| helperDispatch: Request sent to authenticator #1, 14
bytes
2001/09/07 17:06:01| comm_poll: 1 FDs ready
2001/09/07 17:06:01| comm_poll: FD 6 ready for writing
2001/09/07 17:06:01| commHandleWrite: FD 6: off 0, sz 14.
2001/09/07 17:06:01| commHandleWrite: write() returns 14
2001/09/07 17:06:01| comm_poll: 1 FDs ready
2001/09/07 17:06:01| comm_poll: FD 6 ready for reading
2001/09/07 17:06:01| cbdataValid: 0x822d688
2001/09/07 17:06:01| helperHandleRead: 3 bytes from authenticator #1.
2001/09/07 17:06:01| helperHandleRead: end of reply found
2001/09/07 17:06:01| cbdataValid: 0x8451688
2001/09/07 17:06:01| authenticateHandleReply: {OK}
2001/09/07 17:06:01| cbdataValid: 0x8451550
2001/09/07 17:06:01| cbdataUnlock: 0x8451550
2001/09/07 17:06:01| aclLookupProxyAuthDone: result = OK
2001/09/07 17:06:01| cbdataValid: 0x822a4d0
[...]

Window$ :
[...]
2001/09/07 16:38:45| aclCheck: checking password via authenticator
2001/09/07 16:38:45| aclDecodeProxyAuth: header = 'Basic
dGJpZG9uOm1kcHRiYQ=='
2001/09/07 16:38:45| aclDecodeProxyAuth: cleartext = 'tbidon:mdptba'
2001/09/07 16:38:45| aclLookupProxyAuthStart: going to ask authenticator on
tbidon
2001/09/07 16:38:45| authenticateStart: 'tbidon:mdptba'
2001/09/07 16:38:45| cbdataAdd: 00BDD980
2001/09/07 16:38:45| cbdataLock: 00BDDB00
2001/09/07 16:38:45| authenticateHandleReply: {ERR}
2001/09/07 16:38:45| cbdataValid: 00BDDB00
2001/09/07 16:38:45| cbdataUnlock: 00BDDB00
2001/09/07 16:38:45| aclLookupProxyAuthDone: result = ERR
2001/09/07 16:38:45| cbdataValid: 00BB4D10
[...]

As you can see, with the same server, the same connection string, the same
user parameters, I obtain a "OK" response on Linux, and a "ERR" response on
Window$.
I think it's a bug in the Win32 port of the "squid_ldap_auth" external
authenticate program. In the README.txt file of the WIn32 port, it's said :

Current features:
    Run as a native Windows NT Service (No CygWin Unix emulation, compiled
with MS VC++ 6.0)
    [...]
    LDAP Authenticator working as DLL plug-in (NOT YET TESTED !!!)
    [...]

Please help me... Thanks in advance

--
Alexis BOSSON - French web developper & GNU/Linux administrator