No, my modules/packages aren't exporting anything, hence the LDAP::get_student_number($username); call.

Diagnostic information... I'm running short on ideas of what to look for too. I've simplified the code of the problem to this:

#!/servers/web/bin/perl -w
use strict;

use IO::Socket::SSL;
use LWP::UserAgent;
use Data::Dumper;

        ### LWP Stuff
$ENV{HTTPS_VERSION} = '3';
# CLIENT CERT SUPPORT

       ### These ENV variables are required by LWP, there
       ### exists no other method of telling LWP which
       ### certificates should be used.
my $certdbpath = "/some/cert/path/conf/";
$ENV{HTTPS_CERT_FILE} = "$certdbpath/client.crt";
$ENV{HTTPS_KEY_FILE}  = "$certdbpath/client.key";

callforte();

exit;

##############################################

sub callforte
{
        print "This is libwww-perl-$LWP::VERSION\n";
        print STDERR "This is libwww-perl-$LWP::VERSION\n";

                # Check we have permission to read the certificates.
        open CERT, $ENV{HTTPS_CERT_FILE} or die "not cert :(";
        open KEY, $ENV{HTTPS_KEY_FILE} or die "not key :(";

        my $ua = new LWP::UserAgent;
        my $req = new HTTP::Request('POST', 'https://machine.edu.au:12
+3443/cgi-bin/fortecgi?'.
                  'pagename=CheckForte');

                # This is an HTML form
        $req->content_type('application/x-www-form-urlencoded');

        $req->content("dummy_input=1");

        my $res = $ua->request($req);

        print STDERR $res->code."\n";
        print STDERR $res->content(), "\n";
        print Dumper($res);
        return "";
}
[download]

You'll note the ommision of Net::LDAPS. One of the packages that Net::LDAPS needs is IO::Socket::SSL, and it seems to be the cause of my problems. :(

My code compiles fine, and my process can read the key and certificate. When I comment out the use IO::Socket::SSL; line I connect to the Forte server without a problem, and the access log for the server records this. When I use IO::Socket::SSL, the HTTP::Response _msg is "Can't connect to machine.edu.au:123443 ()". However no message is recorded in the server error logs and no access attempt is recorded in the server access logs. Swapping the loading order isn't helping either.

Doing a watch of netstat -tn on the forte machine records tcp connections when the script is run without IO::Socket::SSL but none when that code is included. Since these connections stick around for a few minutes I suspect that it isn't just because the script connects and then disconnects super fast.

Localising %ENV and defining my certificates within the callforte subroutine doesn't help either, which is a shame because that would have been an easy fix.

A separate test, changing the host I'm trying to connect to, yeilds similar results. Attempting to connect to https://www.unimelb.edu.au fails in exactly the same manner, but connecting to http://www.unimelb.edu.au responds with a "405: Method Not Allowed" which is good, because the page doesn't accept POSTs.

Does anyone know enough about IO::Socket::SSL and LWP (in particular with Crypt::SSLeay) to help? It's definately an interaction problem because they both work perfectly on their own.

Thanks.

jarich

Update: I think podmaster is right, and that it's a clash of SSL contexts. :( I don't really have an option regarding setting the ENV variables, as that's what LWP requires to work (clarified above). It really bothers me that merely useing IO::Socket::SSL tromps all over LWP::UserAgent. It bothers me that LWP::UserAgent fails quietly too. Surely something should have complained rather than it look like it's working until I attempt to use LWP to make a SSL connection to something! I guess there's a new project for me. ;)

Update II: I think I've come up with a way to skip LDAP altogether, so at least I need not keep stressing about this. :) Yay, workaround!