Creating Logstash input and grok filter for a custom time format - input

Been almost two months and I cannot figure out how to make the following logs to parse. Challenges faced:
There are double quotes around the logs and the format of the logs is not very consistent
Many tab and odd spaces between the logs
Appreciate any guide on how to start
"[5/10/22 16:07:39:393 GTS] 00000330 SystemErr R at com.ibm.mdr.DrStateMgr.eventFromUser(DrStateMgr.java:2952)"
"[5/10/22 16:07:39:393 GTS] 00000330 SystemErr R at com.ibm.mdr.DrStateMgr.dequeueAndFireEvents(DrStateMgr.java:5010)"
[5/10/22 16:03:49:982 GTS] 000000a4 WebContainer E com.ibm.ws.webcontainer.internal.WebContainer handleRequest TEST_SERVER: A WebGroup/Virtual Host to handle / has not been defined.
[5/8/22 6:43:42:236 GTS] 00000001 SSLConfigMana W AAPKI0003A: The runtime has at least one SSL configuration that supports only weak TLSv1 or TLSv1.1 handshake protocols. For increased security, modify the configuration to use only stronger protocols such as TLSv1.2 or later. Find instructions to update your configuration at https://www.ibm.com/support/pages/node/1077951. SSL configurations that use the weaker SSL protocols include: [XDADefaultSSLSettings((cell):AFDJP01PCell01)].
[5/8/22 6:43:42:220 GTS] 00000001 WSKeyStore W SSPKI0002A: One or more key stores are using the default password.
[5/8/22 6:43:42:204 GTS] 00000001 SSLConfigMana I DDPKI0004A: The process has the java security property jdk.tls.disabledAlgorithms set to [SSLv3, TLSv1, TLSv1.1, RC4, DES, MD5withRSA, DH keySize < 1024, DESede, EC keySize < 224, 3DES_EDE_CBC, anon, NULL, DES_CBC]. The WebSphere Application server is setting the java security property jdk.tls.disabledAlgorithms to [SSLv3, RC4, DH keySize < 768, MD5withRSA].
[5/8/22 6:43:42:204 GTS] 00000001 SSLConfigMana I DDPKI0004A: The process has the java security property jdk.certpath.disabledAlgorithms set to [MD2, MD5, SHA1 jdkCA & usage TLSServer, RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224]. The WebSphere Application server is setting the java security property jdk.certpath.disabledAlgorithms to [MD2, RSA keySize < 1024, MD5].
[5/8/22 6:43:42:204 GTS] 00000001 FIPSManager I EEPKI0005A: FIPS security mode is : No FIPS property found.
[5/8/22 6:43:42:204 GTS] 00000001 SSLConfigMana I GGPKI0007A: The SSL configuration is initializing.
[5/8/22 6:43:42:189 GTS] 00000001 SSLComponentI I HHPKI0008A: SSL service is initializing the configuration
[5/8/22 6:43:42:095 GTS] 00000001 PluginConfigS I PLGC0044B: The plug-in configuration service started successfully.
[5/8/22 6:43:41:345 GTS] 00000001 AdminInitiali A ADMN0054E: The administration service is initialized.
[5/8/22 6:43:41:048 GTS] 00000001 ProviderTrack I com.ibm.ffdc.osgi.ProviderTracker AddingService FFDC1007I: FFDC Provider Installed: com.ibm.ws.ffdc.impl.FfdcProvider#ed46329b
[5/8/22 6:43:40:908 GTS] 00000001 ComponentMeta I ASVR0150U: The runtime provisioning feature is disabled. All components will be started.
[5/8/22 6:43:39:923 GTS] 00000001 ModelMgr I ASVR0180U: Initializing core configuration models
[5/8/22 6:43:39:783 GTS] 00000001 ManagerAdmin I TRAS0555T: The message IDs that are in use are deprecated
[5/8/22 6:43:39:783 GTS] 00000001 ManagerAdmin I TRAS0787K: The startup trace state is *=info.
"[5/8/22 7:37:18:809 GTS] FFDC Exception:java.io.FileNotFoundException SourceId:com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters -IOE ProbeId:1044
java.io.FileNotFoundException: DEAV0180D: File not found: /favicon.ico
at com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor._processEDR(DefaultExtensionProcessor.java:977)
at com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor.processEDR(DefaultExtensionProcessor.java:958)
at com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor.handleRequest(DefaultExtensionProcessor.java:486)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1114)
at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:4075)
at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:304)
at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:1019)
at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1817)
at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:213)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:463)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:530)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:316)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.ready(HttpInboundLink.java:287)
at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.determineNextChannel(SSLConnectionLink.java:1187)
at com.ibm.ws.ssl.channel.impl.SSLConnectionLink$MyReadCompletedCallback.complete(SSLConnectionLink.java:694)
at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1833)
at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:175)
at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1892)
Reporter:null"
Expected output
{
"month": [
[
"5"
]
],
"day": [
[
"10"
]
],
"year": [
[
"22"
]
],
"time": [
[
"16:03:49:982"
]
],
"instance": [
[
"000000a4"
]
]
"process": [
[
"WebContainer E com.ibm.ws.webcontainer.internal.WebContainer handleRequest TEST_SERVER: A WebGroup/Virtual Host to handle / has not been"
]
]
"server": [
[
"TEST_SERVER"
]
]
"error": [
[
"A WebGroup/Virtual Host to handle / has not been"
]
]
}
Grok pattern in use
\[%{MONTHNUM:month}\/%{MONTHDAY:day}\/%{YEAR:year} %{TIME:time} GTS\] %{GREEDYDATA:host}


For this multiple pattern in a single log you can try like the below. if any of grok parsing failed it might be due to extra space in between hence constructed it and add those patterns in this.
filter
{
grok
{
match => {"message" => ["\[%{MONTHNUM:month}\/%{MONTHDAY:day}\/%{YEAR:year} %{TIME:time} GTS\] %{DATA:host} %{WORD:source} %{WORD:logtype} %{DATA:lib} %{WORD:request_type} %{DATA:server}: %{GREEDYDATA:detailed_message}","\[%{MONTHNUM:month}\/%{MONTHDAY:day}\/%{YEAR:year} %{TIME:time} GTS\] %{DATA:host} %{WORD:source} %{WORD:logtype} %{DATA:code}: %{GREEDYDATA:detailed_message}"]}
}
}
However, the above pattern would only work single line for W,R,I,A log type but it won't work in multi line
i.e.,
"[5/8/22 7:37:18:809 GTS] FFDC Exception:java.io.FileNotFoundException SourceId:com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters -IOE ProbeId:1044
java.io.FileNotFoundException: DEAV0180D: File not found: /favicon.ico
at com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor._processEDR(DefaultExtensionProcessor.java:977)
at com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor.processEDR(DefaultExtensionProcessor.java:958)
at com.ibm.ws.webcontainer.extension.DefaultExtensionProcessor.handleRequest(DefaultExtensionProcessor.java:486)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1114)
at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:4075)
at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:304)
at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:1019)
at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1817)
at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:213)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:463)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:530)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:316)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.ready(HttpInboundLink.java:287)
at com.ibm.ws.ssl.channel.impl.SSLConnectionLink.determineNextChannel(SSLConnectionLink.java:1187)
at com.ibm.ws.ssl.channel.impl.SSLConnectionLink$MyReadCompletedCallback.complete(SSLConnectionLink.java:694)
at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1833)
at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:175)
at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1892)
Reporter:null"
Keep posted on how it goes !!! Thanks !!!

Related

Buildroot - Hang at Starting Kernel

I'm trying to use Buildroot to create a linux image for my Banana Pi M2M. My issue is that when I power it up, the system hangs at "Starting kernel..." indefinitely.
Here is the log:
U-Boot 2021.10 (Nov 11 2021 - 11:29:29 +0000) Allwinner Technology
CPU: Allwinner A33 (SUN8I 1667)
Model: BananaPi M2 Magic
DRAM: 512 MiB
MMC: mmc#1c0f000: 0, mmc#1c10000: 2, mmc#1c11000: 1
Loading Environment from FAT... Unable to use mmc 0:1... Unknown monitor
Unknown monitor
In: serial
Out: serial
Err: serial
Allwinner mUSB OTG (Peripheral)
Net: eth0: usb_ether
starting USB...
Bus usb#1c1a000: USB EHCI 1.00
Bus usb#1c1a400: USB OHCI 1.0
scanning bus usb#1c1a000 for devices... 1 USB Device(s) found
scanning bus usb#1c1a400 for devices... 1 USB Device(s) found
scanning usb for storage devices... 0 Storage Device(s) found
Hit any key to stop autoboot: 0
switch to partitions #0, OK
mmc0 is current device
Scanning mmc 0:1...
Found U-Boot script /boot/boot.scr
306 bytes read in 1 ms (298.8 KiB/s)
## Executing script at 43100000
23186 bytes read in 2 ms (11.1 MiB/s)
4882032 bytes read in 205 ms (22.7 MiB/s)
Kernel image # 0x46000000 [ 0x000000 - 0x4a7e70 ]
## Flattened Device Tree blob at 49000000
Booting using the fdt blob at 0x49000000
Using Device Tree in place at 49000000, end 49008a91
DE is present but not probed
Starting kernel ...
As there is no buildroot defconfig for the BananaPi M2M, I'm working from a modified olimex_a33_olinuxino_defconfig (Both boards use the Allwinner A33 processor). I am, however, using both the Bananapi_m2m_defconfig and sun8i-r16-bananapi-m2m.dts from u-boot.
My modified olimex defconfig:
# Architecture
BR2_arm=y
BR2_cortex_a7=y
BR2_ARM_FPU_NEON_VFPV4=y
# Linux headers same as kernel, a 5.14 series
BR2_PACKAGE_HOST_LINUX_HEADERS_CUSTOM_5_14=y
# System configuration
BR2_TARGET_GENERIC_HOSTNAME="bananapi-m2m"
BR2_TARGET_GENERIC_ISSUE="Welcome to Bananapi M2M"
BR2_TARGET_GENERIC_GETTY=y
BR2_TARGET_GENERIC_GETTY_PORT="ttyS2"
# Bootloaders
BR2_TARGET_UBOOT=y
BR2_TARGET_UBOOT_BUILD_SYSTEM_KCONFIG=y
BR2_TARGET_UBOOT_CUSTOM_VERSION=y
BR2_TARGET_UBOOT_CUSTOM_VERSION_VALUE="2021.10"
BR2_TARGET_UBOOT_BOARD_DEFCONFIG="Bananapi_m2m"
BR2_TARGET_UBOOT_NEEDS_DTC=y
BR2_TARGET_UBOOT_NEEDS_PYTHON3=y
BR2_TARGET_UBOOT_NEEDS_PYLIBFDT=y
BR2_TARGET_UBOOT_NEEDS_OPENSSL=y
BR2_TARGET_UBOOT_FORMAT_BIN=y
BR2_TARGET_UBOOT_SPL=y
BR2_TARGET_UBOOT_SPL_NAME="u-boot-sunxi-with-spl.bin"
BR2_PACKAGE_HOST_UBOOT_TOOLS=y
BR2_PACKAGE_HOST_UBOOT_TOOLS_BOOT_SCRIPT=y
BR2_PACKAGE_HOST_UBOOT_TOOLS_BOOT_SCRIPT_SOURCE="$(BR2_EXTERNAL_BANANAPI_M2M_PATH)/board/bananapi-m2m/boot.cmd"
# Kernel
BR2_LINUX_KERNEL=y
BR2_LINUX_KERNEL_CUSTOM_VERSION=y
BR2_LINUX_KERNEL_CUSTOM_VERSION_VALUE="5.14.13"
BR2_LINUX_KERNEL_USE_DEFCONFIG=y
BR2_LINUX_KERNEL_DEFCONFIG="sunxi"
BR2_LINUX_KERNEL_DTS_SUPPORT=y
BR2_LINUX_KERNEL_INTREE_DTS_NAME="sun8i-r16-bananapi-m2m.dts"
BR2_LINUX_KERNEL_INSTALL_TARGET=y
# Filesystem
BR2_TARGET_ROOTFS_EXT2=y
BR2_TARGET_ROOTFS_EXT2_4=y
BR2_ROOTFS_POST_BUILD_SCRIPT="$(BR2_EXTERNAL_BANANAPI_M2M_PATH)/board/bananapi-m2m/post-build.sh"
BR2_ROOTFS_POST_IMAGE_SCRIPT="support/scripts/genimage.sh"
BR2_ROOTFS_POST_SCRIPT_ARGS="-c $(BR2_EXTERNAL_BANANAPI_M2M_PATH)/board/bananapi-m2m/genimage.cfg"
# Additional tools
BR2_PACKAGE_HOST_DOSFSTOOLS=y
BR2_PACKAGE_HOST_GENIMAGE=y
BR2_PACKAGE_HOST_UBOOT_TOOLS=y
BR2_PACKAGE_HOST_MTOOLS=y
The specific tweaks I made:
Changed the getty port to ttyS2 (the default debug uart for the m2m is uart2)
Swapped to the pre-existing uboot defconfig for Bananapi_m2m
Swapped to the pre-existing device tree file from u-boot
Redirected boot.cmd to an external package
Redirected post-build.sh and genimage.cfg to an external package
At the moment, boot.cmd, post-build.sh and genimage.cfg are unmodified copies of the olimex versions. I'll include boot.cmd for reference.
boot.cmd:
setenv bootargs console=ttyS2,115200 root=/dev/mmcblk0p1 rootwait panic=10 ${extra}
ext4load mmc 0 0x49000000 /boot/${fdtfile}
ext4load mmc 0 0x46000000 /boot/zImage
env set fdt_high ffffffff
bootz 0x46000000 - 0x49000000
I'm somewhat of a novice, so apologies if I've shared too much irrelevant information. If anyone has any insight I'd greatly appreciate it, I feel a little blind with the only output being "Starting Kernel..."
EDIT: I reverted the boot argument back to ttyS0 and it got over the initial hang. I'm not sure what part it's hanging at now, is it failing to run the Getty?
U-Boot 2021.10 (Nov 12 2021 - 12:27:32 +0000) Allwinner Technology
CPU: Allwinner A33 (SUN8I 1667)
Model: BananaPi M2 Magic
DRAM: 512 MiB
MMC: mmc#1c0f000: 0, mmc#1c10000: 2, mmc#1c11000: 1
Loading Environment from FAT... Unable to use mmc 0:1... Unknown monitor
Unknown monitor
In: serial
Out: serial
Err: serial
Allwinner mUSB OTG (Peripheral)
Net: eth0: usb_ether
starting USB...
Bus usb#1c1a000: USB EHCI 1.00
Bus usb#1c1a400: USB OHCI 1.0
scanning bus usb#1c1a000 for devices... 1 USB Device(s) found
scanning bus usb#1c1a400 for devices... 1 USB Device(s) found
scanning usb for storage devices... 0 Storage Device(s) found
Hit any key to stop autoboot: 0
switch to partitions #0, OK
mmc0 is current device
Scanning mmc 0:1...
Found U-Boot script /boot/boot.scr
294 bytes read in 1 ms (287.1 KiB/s)
## Executing script at 43100000
23186 bytes read in 3 ms (7.4 MiB/s)
4882032 bytes read in 204 ms (22.8 MiB/s)
Kernel image # 0x46000000 [ 0x000000 - 0x4a7e70 ]
## Flattened Device Tree blob at 49000000
Booting using the fdt blob at 0x49000000
Using Device Tree in place at 49000000, end 49008a91
DE is present but not probed
Starting kernel ...
[ 0.000000] Booting Linux on physical CPU 0x0
[ 0.000000] Linux version 5.14.13 (ryan#ryan-VirtualBox) (arm-buildroot-linux-uclibcgnueabihf-gcc.br_real (Buildroot 2021.11-rc1-106-g827bd376e3) 10.3.0, GNU ld (GNU Binutils) 2.36.1) #1 SMP Fri Nov 12 11:27:52 GMT 2021
[ 0.000000] CPU: ARMv7 Processor [410fc075] revision 5 (ARMv7), cr=10c5387d
[ 0.000000] CPU: div instructions available: patching division code
[ 0.000000] CPU: PIPT / VIPT nonaliasing data cache, VIPT aliasing instruction cache
[ 0.000000] OF: fdt: Machine model: BananaPi M2 Magic
[ 0.000000] Memory policy: Data cache writealloc
[ 0.000000] cma: Reserved 16 MiB at 0x5f000000
[ 0.000000] Zone ranges:
[ 0.000000] Normal [mem 0x0000000040000000-0x000000005fffffff]
[ 0.000000] HighMem empty
[ 0.000000] Movable zone start for each node
[ 0.000000] Early memory node ranges
[ 0.000000] node 0: [mem 0x0000000040000000-0x000000005fffffff]
[ 0.000000] Initmem setup node 0 [mem 0x0000000040000000-0x000000005fffffff]
[ 0.000000] psci: probing for conduit method from DT.
[ 0.000000] psci: Using PSCI v0.1 Function IDs from DT
[ 0.000000] percpu: Embedded 15 pages/cpu s31628 r8192 d21620 u61440
[ 0.000000] Built 1 zonelists, mobility grouping on. Total pages: 130048
[ 0.000000] Kernel command line: console=ttyS0,115200 root=/dev/mmcblk0p1 rootwait panic=10
[ 0.000000] Dentry cache hash table entries: 65536 (order: 6, 262144 bytes, linear)
[ 0.000000] Inode-cache hash table entries: 32768 (order: 5, 131072 bytes, linear)
[ 0.000000] mem auto-init: stack:off, heap alloc:off, heap free:off
[ 0.000000] Memory: 490592K/524288K available (7168K kernel code, 910K rwdata, 1984K rodata, 1024K init, 231K bss, 17312K reserved, 16384K cma-reserved, 0K highmem)
[ 0.000000] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=4, Nodes=1
[ 0.000000] rcu: Hierarchical RCU implementation.
[ 0.000000] rcu: RCU restricting CPUs from NR_CPUS=8 to nr_cpu_ids=4.
[ 0.000000] rcu: RCU calculated value of scheduler-enlistment delay is 10 jiffies.
[ 0.000000] rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=4
[ 0.000000] NR_IRQS: 16, nr_irqs: 16, preallocated irqs: 16
[ 0.000000] GIC: Using split EOI/Deactivate mode
[ 0.000000] random: get_random_bytes called from start_kernel+0x484/0x638 with crng_init=0
[ 0.000000] arch_timer: cp15 timer(s) running at 24.00MHz (phys).
[ 0.000000] clocksource: arch_sys_counter: mask: 0xffffffffffffff max_cycles: 0x588fe9dc0, max_idle_ns: 440795202592 ns
[ 0.000002] sched_clock: 56 bits at 24MHz, resolution 41ns, wraps every 4398046511097ns
[ 0.000019] Switching to timer-based delay loop, resolution 41ns
[ 0.000232] clocksource: timer: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 79635851949 ns
[ 0.000684] Console: colour dummy device 80x30
[ 0.000745] Calibrating delay loop (skipped), value calculated using timer frequency.. 48.00 BogoMIPS (lpj=240000)
[ 0.000767] pid_max: default: 32768 minimum: 301
[ 0.000897] Mount-cache hash table entries: 1024 (order: 0, 4096 bytes, linear)
[ 0.000916] Mountpoint-cache hash table entries: 1024 (order: 0, 4096 bytes, linear)
[ 0.001619] CPU: Testing write buffer coherency: ok
[ 0.001938] /cpus/cpu#0 missing clock-frequency property
[ 0.001977] /cpus/cpu#1 missing clock-frequency property
[ 0.001998] /cpus/cpu#2 missing clock-frequency property
[ 0.002021] /cpus/cpu#3 missing clock-frequency property
[ 0.002036] CPU0: thread -1, cpu 0, socket 0, mpidr 80000000
[ 0.002531] Setting up static identity map for 0x40100000 - 0x40100060
[ 0.002655] rcu: Hierarchical SRCU implementation.
[ 0.003134] smp: Bringing up secondary CPUs ...
[ 0.003873] CPU1: thread -1, cpu 1, socket 0, mpidr 80000001
[ 0.004705] CPU2: thread -1, cpu 2, socket 0, mpidr 80000002
[ 0.005469] CPU3: thread -1, cpu 3, socket 0, mpidr 80000003
[ 0.005563] smp: Brought up 1 node, 4 CPUs
[ 0.005594] SMP: Total of 4 processors activated (192.00 BogoMIPS).
[ 0.005606] CPU: All CPU(s) started in HYP mode.
[ 0.005613] CPU: Virtualization extensions available.
[ 0.006185] devtmpfs: initialized
[ 0.011678] VFP support v0.3: implementor 41 architecture 2 part 30 variant 7 rev 5
[ 0.011896] clocksource: jiffies: mask: 0xffffffff max_cycles: 0xffffffff, max_idle_ns: 19112604462750000 ns
[ 0.011926] futex hash table entries: 1024 (order: 4, 65536 bytes, linear)
[ 0.012703] pinctrl core: initialized pinctrl subsystem
[ 0.013768] NET: Registered PF_NETLINK/PF_ROUTE protocol family
[ 0.015138] DMA: preallocated 256 KiB pool for atomic coherent allocations
[ 0.016103] thermal_sys: Registered thermal governor 'step_wise'
[ 0.016635] hw-breakpoint: found 5 (+1 reserved) breakpoint and 4 watchpoint registers.
[ 0.016662] hw-breakpoint: maximum watchpoint size is 8 bytes.
[ 0.023731] platform 1e60000.display-backend: Fixing up cyclic dependency with 1e00000.display-frontend
[ 0.024061] platform 1e70000.drc: Fixing up cyclic dependency with 1e60000.display-backend
[ 0.035542] SCSI subsystem initialized
[ 0.035979] usbcore: registered new interface driver usbfs
[ 0.036030] usbcore: registered new interface driver hub
[ 0.036074] usbcore: registered new device driver usb
[ 0.036247] mc: Linux media interface: v0.10
[ 0.036283] videodev: Linux video capture interface: v2.00
[ 0.036381] pps_core: LinuxPPS API ver. 1 registered
[ 0.036392] pps_core: Software ver. 5.3.6 - Copyright 2005-2007 Rodolfo Giometti <giometti#linux.it>
[ 0.036414] PTP clock support registered
[ 0.036775] Advanced Linux Sound Architecture Driver Initialized.
[ 0.037608] clocksource: Switched to clocksource arch_sys_counter
[ 0.044554] NET: Registered PF_INET protocol family
[ 0.044741] IP idents hash table entries: 8192 (order: 4, 65536 bytes, linear)
[ 0.045332] tcp_listen_portaddr_hash hash table entries: 512 (order: 0, 6144 bytes, linear)
[ 0.045370] TCP established hash table entries: 4096 (order: 2, 16384 bytes, linear)
[ 0.045416] TCP bind hash table entries: 4096 (order: 3, 32768 bytes, linear)
[ 0.045483] TCP: Hash tables configured (established 4096 bind 4096)
[ 0.045606] UDP hash table entries: 256 (order: 1, 8192 bytes, linear)
[ 0.045657] UDP-Lite hash table entries: 256 (order: 1, 8192 bytes, linear)
[ 0.045833] NET: Registered PF_UNIX/PF_LOCAL protocol family
[ 0.046512] RPC: Registered named UNIX socket transport module.
[ 0.046534] RPC: Registered udp transport module.
[ 0.046542] RPC: Registered tcp transport module.
[ 0.046549] RPC: Registered tcp NFSv4.1 backchannel transport module.
[ 0.047978] workingset: timestamp_bits=30 max_order=17 bucket_order=0
[ 0.053618] NFS: Registering the id_resolver key type
[ 0.053671] Key type id_resolver registered
[ 0.053680] Key type id_legacy registered
[ 0.053769] Block layer SCSI generic (bsg) driver version 0.4 loaded (major 246)
[ 0.053783] io scheduler mq-deadline registered
[ 0.053794] io scheduler kyber registered
[ 0.057821] sun8i-a33-pinctrl 1c20800.pinctrl: initialized sunXi PIO driver
[ 0.104123] Serial: 8250/16550 driver, 8 ports, IRQ sharing disabled
[ 0.105906] sun8i-a33-pinctrl 1c20800.pinctrl: supply vcc-pb not found, using dummy regulator
[ 0.106801] printk: console [ttyS0] disabled
[ 0.127056] 1c28000.serial: ttyS0 at MMIO 0x1c28000 (irq = 41, base_baud = 1500000) is a U6_16550A
[ 0.791590] printk: console [ttyS0] enabled
[ 0.796249] sun8i-a33-pinctrl 1c20800.pinctrl: supply vcc-pg not found, using dummy regulator
[ 0.825603] 1c28400.serial: ttyS1 at MMIO 0x1c28400 (irq = 42, base_baud = 1500000) is a U6_16550A
[ 0.842426] lima 1c40000.gpu: gp - mali400 version major 1 minor 1
[ 0.848709] lima 1c40000.gpu: pp0 - mali400 version major 1 minor 1
[ 0.855018] lima 1c40000.gpu: pp1 - mali400 version major 1 minor 1
[ 0.861333] lima 1c40000.gpu: l2 cache 64K, 4-way, 64byte cache line, 64bit external bus
[ 0.869824] lima 1c40000.gpu: bus rate = 200000000
[ 0.874621] lima 1c40000.gpu: mod rate = 384000000
[ 0.879511] lima 1c40000.gpu: dev_pm_opp_set_regulators: no regulator (mali) found: -19
[ 0.887881] lima 1c40000.gpu: Failed to register cooling device
[ 0.894173] [drm] Initialized lima 1.1.0 20191231 for 1c40000.gpu on minor 0
[ 0.904373] libphy: Fixed MDIO Bus: probed
[ 0.909324] CAN device driver interface
[ 0.913799] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver
[ 0.920352] ehci-platform: EHCI generic platform driver
[ 0.925697] ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver
[ 0.931896] ohci-platform: OHCI generic platform driver
[ 0.938647] sun6i-rtc 1f00000.rtc: registered as rtc0
[ 0.943732] sun6i-rtc 1f00000.rtc: setting system clock to 1970-01-01T00:00:06 UTC (6)
[ 0.951685] sun6i-rtc 1f00000.rtc: RTC enabled
[ 0.956410] i2c /dev entries driver
[ 0.961594] sunxi-wdt 1c20ca0.watchdog: Watchdog enabled (timeout=16 sec, nowayout=0)
[ 0.970388] sun8i-a33-pinctrl 1c20800.pinctrl: supply vcc-pc not found, using dummy regulator
[ 0.979609] sun4i-ss 1c15000.crypto-engine: Die ID 5
[ 0.986353] usbcore: registered new interface driver usbhid
[ 0.991972] usbhid: USB HID core driver
[ 0.998190] cedrus 1c0e000.video-codec: Device registered as /dev/video0
[ 1.007831] NET: Registered PF_PACKET protocol family
[ 1.012914] can: controller area network core
[ 1.017335] NET: Registered PF_CAN protocol family
[ 1.022157] can: raw protocol
[ 1.025131] can: broadcast manager protocol
[ 1.029335] can: netlink gateway - max_hops=1
[ 1.033886] Key type dns_resolver registered
[ 1.038244] Registering SWP/SWPB emulation handler
[ 1.052575] sun8i-a23-r-pinctrl 1f02c00.pinctrl: initialized sunXi PIO driver
[ 1.061524] sun8i-a23-r-pinctrl 1f02c00.pinctrl: supply vcc-pl not found, using dummy regulator
[ 1.071777] sun8i-a33-pinctrl 1c20800.pinctrl: supply vcc-pc not found, using dummy regulator
[ 1.081200] sunxi-rsb 1f03400.rsb: RSB running at 3000000 Hz
[ 1.087266] axp20x-rsb sunxi-rsb-3a3: AXP20x variant AXP223 found
[ 1.095175] input: axp20x-pek as /devices/platform/soc/1f03400.rsb/sunxi-rsb-3a3/axp221-pek/input/input0
[ 1.106201] axp20x-adc axp22x-adc: DMA mask not set
[ 1.111766] vcc-3v0: supplied by regulator-dummy
[ 1.116741] vdd-sys: supplied by regulator-dummy
[ 1.121703] vdd-cpu: supplied by regulator-dummy
[ 1.126699] dcdc4: supplied by regulator-dummy
[ 1.131331] vcc-dram: supplied by regulator-dummy
[ 1.136344] vcc-lcd: supplied by vcc-3v0
[ 1.140440] vdd-cpus: supplied by vcc-dram
[ 1.144842] vcc-io: supplied by regulator-dummy
[ 1.149665] vdd-dll: supplied by regulator-dummy
[ 1.154568] avcc: supplied by regulator-dummy
[ 1.159328] eldo1: supplied by vcc-3v0
[ 1.163327] eldo2: supplied by vcc-3v0
[ 1.167310] eldo3: supplied by vcc-3v0
[ 1.171207] vcc-wifi0: Bringing 700000uV into 3300000-3300000uV
[ 1.177225] vcc-wifi0: supplied by regulator-dummy
[ 1.182335] vcc-wifi1: Bringing 700000uV into 3300000-3300000uV
[ 1.188345] vcc-wifi1: supplied by regulator-dummy
[ 1.193532] dldo3: supplied by regulator-dummy
[ 1.198268] dldo4: supplied by regulator-dummy
[ 1.202824] vcc-rtc: supplied by regulator-dummy
[ 1.207817] ldo_io0: supplied by regulator-dummy
[ 1.212658] ldo_io1: supplied by regulator-dummy
[ 1.217553] usb0-vbus: supplied by regulator-dummy
[ 1.222918] axp20x-ac-power-supply axp20x-ac-power-supply: DMA mask not set
[ 1.231521] axp20x-usb-power-supply axp20x-usb-power-supply: DMA mask not set
[ 1.239730] axp20x-rsb sunxi-rsb-3a3: AXP20X driver loaded
[ 1.245511] sun8i-a33-pinctrl 1c20800.pinctrl: supply vcc-ph not found, using dummy regulator
[ 1.255424] ehci-platform 1c1a000.usb: EHCI Host Controller
[ 1.261062] ehci-platform 1c1a000.usb: new USB bus registered, assigned bus number 1
[ 1.269432] ehci-platform 1c1a000.usb: irq 35, io mem 0x01c1a000
[ 1.297627] ehci-platform 1c1a000.usb: USB 2.0 started, EHCI 1.00
[ 1.304497] hub 1-0:1.0: USB hub found
[ 1.308306] hub 1-0:1.0: 1 port detected
[ 1.313249] ohci-platform 1c1a400.usb: Generic Platform OHCI controller
[ 1.319904] ohci-platform 1c1a400.usb: new USB bus registered, assigned bus number 2
[ 1.327926] ohci-platform 1c1a400.usb: irq 36, io mem 0x01c1a400
[ 1.402286] hub 2-0:1.0: USB hub found
[ 1.406074] hub 2-0:1.0: 1 port detected
[ 1.411055] usb_phy_generic usb_phy_generic.1.auto: supply vcc not found, using dummy regulator
[ 1.420687] musb-hdrc musb-hdrc.2.auto: MUSB HDRC host driver
[ 1.426451] musb-hdrc musb-hdrc.2.auto: new USB bus registered, assigned bus number 3
[ 1.435350] hub 3-0:1.0: USB hub found
[ 1.439160] hub 3-0:1.0: 1 port detected
[ 1.449278] sun8i-a33-pinctrl 1c20800.pinctrl: supply vcc-pf not found, using dummy regulator
[ 1.461544] sunxi-mmc 1c10000.mmc: allocated mmc-pwrseq
[ 1.461712] ALSA device list:
[ 1.469798] No soundcards found.
[ 1.476675] sunxi-mmc 1c0f000.mmc: Got CD GPIO
[ 1.495095] sunxi-mmc 1c10000.mmc: initialized, max. request size: 16384 KB
[ 1.501801] sunxi-mmc 1c11000.mmc: initialized, max. request size: 16384 KB
[ 1.513285] sunxi-mmc 1c0f000.mmc: initialized, max. request size: 16384 KB
[ 1.520626] Waiting for root device /dev/mmcblk0p1...
[ 1.538171] mmc0: queuing unknown CIS tuple 0x80 (2 bytes)
[ 1.545246] mmc0: queuing unknown CIS tuple 0x80 (3 bytes)
[ 1.553349] mmc0: queuing unknown CIS tuple 0x80 (3 bytes)
[ 1.562819] mmc0: queuing unknown CIS tuple 0x80 (7 bytes)
[ 1.571394] random: fast init done
[ 1.574859] mmc2: host does not support reading read-only switch, assuming write-enable
[ 1.583265] mmc0: queuing unknown CIS tuple 0x81 (9 bytes)
[ 1.589182] mmc2: new high speed SDHC card at address aaaa
[ 1.600494] mmcblk2: mmc2:aaaa SB16G 14.8 GiB
[ 1.616008] mmcblk2: p1
[ 1.710991] mmc0: new high speed SDIO card at address 0001
[ 31.848045] vcc-lcd: disabling
EDIT 2: I'm a dumb, the root filesystem isn't being mounted. Have changed to root=/dev/mmcblk2p1 in boot.cmd and now it works.

Glassfish 30 second delay when connecting to LDAP via SSL

I'm trying to connect to my company's LDAP via SSL using GlassFish. Everything works as expected, except that sometimes connecting takes a very long time.
After enabling the ssl debugging, I found that there is sometimes, but not always, a 30 second delay in the Change Cipher Spec. An example of the delay is shown below.
[2020-06-18T09:11:51.806+0100] [glassfish 4.1] [INFO] [] [] [tid: _ThreadID=32 _ThreadName=Thread-8] [timeMillis: 1592467911806] [levelValue: 800] [[
http-listener-1(1), WRITE: TLSv1.2 Handshake, length = 40]]
[2020-06-18T09:12:22.030+0100] [glassfish 4.1] [INFO] [] [] [tid: _ThreadID=32 _ThreadName=Thread-8] [timeMillis: 1592467942030] [levelValue: 800] [[
http-listener-1(1), READ: TLSv1.2 Change Cipher Spec, length = 1]]
[2020-06-18T09:12:22.030+0100] [glassfish 4.1] [INFO] [] [] [tid: _ThreadID=32 _ThreadName=Thread-8] [timeMillis: 1592467942030] [levelValue: 800] [[
http-listener-1(1), READ: TLSv1.2 Handshake, length = 40]]
Here is the code used to connect to the LDAP
final Hashtable<String, String> env = new Hashtable<String, String> ();
final String url = "ldaps://" + ldapHostAddress + ":" + ldapPort;
env.put (Context.SECURITY_PROTOCOL, "ssl");
env.put (Context.PROVIDER_URL, url);
env.put (Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
env.put (Context.SECURITY_AUTHENTICATION, "simple");
env.put (Context.SECURITY_PRINCIPAL, principalDN);
env.put (Context.SECURITY_CREDENTIALS, principalPassword);
// Ensure the objectGUID is handled as a binary object, rather than a string.
env.put ("java.naming.ldap.attributes.binary", "objectGUID");
LdapContext connection = new InitialLdapContext (env, null);
Running this code from the command line does not appear to suffer from the 30 delay, so I can only assume it's an issue with GlassFish. Any suggestions would be appreciated.

Turns out that GlassFish was occasionally having problems resolving the DNS name of the LDAP server. Replacing the DNS name with the IP address removed the delay when performing the handshake.

Insufficient Security with RabbitMQ 3.7.15 and Erlang 22.0.1 / 22.0.2 on centOS 7.6

Observing an Insufficient Security error after upgrading RabbitMQ server to 3.7.15 with Erlang 22.0.1 / 22.0.2 on centOS 7.6.
Initial State of system where SSL was found to be working:
CentOS Linux release - 7.5
RMQ - 3.7.7-1.el7
Erlang - 20.3.8.2-1.el7.x86_64
SSL was found to be working even when CentOS was upgraded to 7.6 and RMQ to 3.7.15. Checked after RMQ restart.
However when Erlang was upgraded to erlang-22.0.2-1.el7.x86_64.rpm, SSL stopped working. (After RMQ restart)
RabbitMQ config:
[
{rabbitmq_management,
[{listener, [{port, 15671},
{ssl, true},
{ssl_opts, [{cacertfile, "<path>/cacert.pem"},
{certfile, "<path>/cert.pem"},
{keyfile, "<path>/key.pem"}]}
]}
]},
{rabbit, [
{log_levels, [{connection,info}]},
{tcp_listeners, []},
{ssl_listeners, [5671]},
{ssl_options, [{cacertfile,"<path>/all_cacerts.pem"},
{certfile,"<path>/cert.pem"},
{keyfile,"<path>/key.pem"},
{depth, 5},
{verify,verify_peer},
{fail_if_no_peer_cert,false}]},
{auth_mechanisms, ['PLAIN','AMQPLAIN','EXTERNAL']},
{loopback_users, []},
{ssl_cert_login_from, common_name}
]}
].
RabbitMQ enabled pluggins:
[rabbitmq_auth_mechanism_ssl,rabbitmq_management,rabbitmq_shovel,rabbitmq_shovel_management].
Please help.
Edit 1:
Updated the rabbitmq.config in this manner. Cert based auth is working now.
[
{rabbitmq_management,
[{listener, [{port, 15671},
{ssl, true},
{ssl_opts, [{cacertfile, "<path>/cacert.pem"},
{certfile, "<path>/cert.pem"},
{keyfile, "<path>/key.pem"}]},
{ssl, [{versions, ['tlsv1.3', 'tlsv1.2', 'tlsv1.1', 'tlsv1', 'sslv3']},
{ciphers,
[{ecdhe_ecdsa,aes_256_gcm,aead,sha384}, {...}]}
]}
]},
{ssl, [{versions, ['tlsv1.3', 'tlsv1.2', 'tlsv1.1', 'tlsv1', 'sslv3']},
{rabbit, [
{log_levels, [{connection,info}]},
{tcp_listeners, [5672]},
{ssl_listeners, [5671]},
{ssl_options, [{cacertfile,"<path>/all_cacerts.pem"},
{certfile,"<path>/cert.pem"},
{keyfile,"<path>/key.pem"},
{ssl, [{versions, ['tlsv1.3', 'tlsv1.2', 'tlsv1.1', 'tlsv1', 'sslv3']},
{ciphers,
[{ecdhe_ecdsa,aes_256_gcm,aead,sha384}, {...}]},
{depth, 5},
{verify,verify_peer},
{fail_if_no_peer_cert,false}]},
{auth_mechanisms, ['PLAIN','AMQPLAIN','EXTERNAL']},
{loopback_users, []},
{ssl_cert_login_from, common_name}
]}
].
However, shovels with amqps with port 5671 still error out.
[error] <0.7391.6> Shovel 'ShovelTest' failed to connect (URI: amqps://<ip>:5671/<blah>): {tls_alert,{insufficient_security,"received SERVER ALERT: Fatal - Insufficient Security"}}
Shovels work fine with ampq with port 5672 though.
Please help.

RabbitMQ MQTT SSL connection fails

I am trying to set up a RabbitMQ server with mqtt and amqp connections.
I have opened mqtt tcp connection on port 1883 and mqtt ssl connection on port 8883. TLS and SSL listners are successfully opened as the log. I am using mqttBox as the client and I can successfully connect to port 1883 using tcp. But I am unable to connect to port 8883 using TLS/SSL.
Here is my config file.
[
{rabbit,
[
{tcp_listeners, [{"127.0.0.1", 5672}, {"::1", 5672}]},
{default_vhost, <<"/">>},
{default_user, <<"user">>},
{default_pass, <<"bitnami">>},
{default_permissions, [<<".*">>, <<".*">>, <<".*">>]},
{ssl_options, [{cacertfile, "/opt/bitnami/rabbitmq/tls/result/ca_certificate.pem"},
{certfile, "/opt/bitnami/rabbitmq/tls/result/server_certificate.pem"},
{keyfile, "/opt/bitnami/rabbitmq/tls/result/server_key.pem"},
%% {password,""},
{verify, verify_peer},
{fail_if_no_peer_cert, true}]}
%% {ssl_listeners, [5671]}
]
},
{kernel, []},
{rabbitmq_management,
[
{listener, [{port, 15672}, {ip, "0.0.0.0"}]}
]
},
{rabbitmq_shovel,
[
{shovels, []}
]
},
{rabbitmq_stomp, []},
{rabbitmq_mqtt, [{ssl_cert_login, true}, {allow_anonymous, false} ,
{ssl_listeners, [8883]}, {tcp_listeners, [1883]}]},
{rabbitmq_amqp1_0, []},
{rabbitmq_auth_backend_ldap, []},
{rabbit, [{vm_memory_high_watermark, 0.6}]
}
].
And my log file.
started MQTT TCP Listener on [::]:1883
started MQTT SSL Listener on [::]:8883
started TCP Listener on [::]:5672
started SSL Listener on [::]:5671
<0.13639.4> MQTT vhost picked using plugin configuration or default
TCP connection successful
<0.13639.4> accepting MQTT connection <0.13639.4> (123.231.123.82:54601 -> 10.128.0.5:1883)
TLS connection failed
<0.13639.4> MQTT detected network error for "123.231.123.82:54601 -> 10.128.0.5:1883": peer closed TCP connection
It seems both tcp and tls requests are headed to 10.128.0.5:1883.
How can I fix this?
edit: client configurations:

rabbitmq using ldap for authentication and internal for authorization in 2 node cluster not working

Morning,
I clustered two servers and it was working with rabbitmq.config that used just the ldap backend. I tried to change it so it would use ldap just for authentication and internal for authorization, and I can log into the management console on the first server (rabbitmq01p). However, if I try to access the 2nd server (rabbitmq02p) management console, it now throws:
Got response code 500 with body
This happens even with a test internal user radmin that I created.
I am not sure what needs to change.
The rabbitmq.config:
[
{rabbit, [
{loopback_users, []},
{auth_backends, [{rabbit_auth_backend_ldap,
rabbit_auth_backend_internal}, rabbit_auth_backend_internal]},
{log_levels, [{channel, info}, {connection, info}, {federation, info},
mirroring, info}]},
{tcp_listen_options,
[binary,
{packet, raw},
{reuseaddr, true},
{backlog, 128},
{nodelay, true},
{exit_on_close, false}]
},
{default_user, <<"radmin">>},
{default_pass, <<"radmin">>}
]},
{kernel, [
]}
,
{rabbitmq_management, [
{listener, [
{port, 15672}
]}
]}
%% {listener, [{port, 12345},
%% {ip, "127.0.0.1"},
%% {ssl, true},
%% {ssl_opts, [{cacertfile, "/path/to/cacert.pem"},
%% {certfile, "/path/to/cert.pem"},
%% {keyfile, "/path/to/key.pem"}]}]},
,
{rabbitmq_auth_backend_ldap, [
{other_bind, {"CN=LDAP Demo,OU=Generic and Shared
Accounts,OU=Admin,dc=usa,dc=company,dc=com", "password"}},
{servers, ["ldap-server.company.com"]},
{user_dn_lookup_attribute, "sAMAccountName"},
{dn_lookup_base, "ou=User Accounts,ou=USA,DC=company,DC=com" },
{user_dn_pattern, "${username}#usa.company.com" },
{use_ssl, false},
{port, 3268},
{log,true},
{group_lookup_base, "ou=Groups,dc=usa,dc=company,dc=com"},
{tag_queries, [{administrator, {in_group, "CN=Server
Team,OU=Groups,DC=usa,DC=company,DC=com"}},
{management, {constant, true}}]}
]
}
].
The error in the log:
=ERROR REPORT==== 13-Nov-2017::09:03:26 ===
Ranch listener rabbit_web_dispatch_sup_15672 had connection process started with cowboy_protocol:start_link/4 at <0.1234.0> exit with reason: {[{reason,{badmatch,undefined}},{mfa,{rabbit_mgmt_wm_whoami,is_authorized,2}},{stacktrace,[{rabbit_auth_backend_ldap,env,1,[{file,"src/rabbit_auth_backend_ldap.erl"},{line,580}]},{rabbit_auth_backend_ldap,log,2,[{file,"src/rabbit_auth_backend_ldap.erl"},{line,721}]},{rabbit_auth_backend_ldap,user_login_authentication,2,[{file,"src/rabbit_auth_backend_ldap.erl"},{line,74}]},{rabbit_access_control,try_authenticate,3,[{file,"src/rabbit_access_control.erl"},{line,88}]},{rabbit_access_control,'-check_user_login/2-fun-0-',4,[{file,"src/rabbit_access_control.erl"},{line,65}]},{lists,foldl,3,[{file,"lists.erl"},{line,1248}]},{rabbit_mgmt_util,is_authorized,6,[{file,"src/rabbit_mgmt_util.erl"},{line,160}]},{cowboy_rest,call,3,[{file,"src/cowboy_rest.erl"},{line,976}]}]},{req,[{socket,#Port<0.25192>},{transport,ranch_tcp},{connection,keepalive},{pid,<0.1234.0>},{method,<<"GET">>},{version,'HTTP/1.1'},{peer,{{10,2,2,144},52823}},{host,<<"esrabbitmq02p.usa.company.com">>},{host_info,undefined},{port,15672},{path,<<"/api/whoami">>},{path_info,undefined},{qs,<<>>},{qs_vals,[]},{bindings,[]},{headers,[{<<"host">>,<<"esrabbitmq02p.usa.company.com:15672">>},{<<"connection">>,<<"keep-alive">>},{<<"user-agent">>,<<"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/61.0.3163.100 Safari/537.36">>},{<<"authorization">>,<<"Basic cmFkbWpzOnJhZG1pbg==">>},{<<"content-type">>,<<"application/json">>},{<<"accept">>,<<"/">>},{<<"referer">>,<<"http://esrabbitmq02p.usa.company.com:15672/">>},{<<"accept-encoding">>,<<"gzip, deflate">>},{<<"accept-language">>,<<"en-US,en;q=0.8">>},{<<"cookie">>,<<"_SI_VID_1.681cceba2200012815576dcc=3bafef640f2a946d6f48e512; _vwo_uuid_v2=5707BE963C1A8F85D47ABE721862DCD2|e694e7c388bfb2dd860621dc71c082fc; _ceg.s=ow9umn; _ceg.u=ow9umn; RDTC=1; __utmz=234506268.1505479911.21.2.utmcsr=favorites.usa.company.com|utmccn=(referral)|utmcmd=referral|utmcct=/; _SI_VID_3.681cceba2200012815576dcc=3bafef640f2a946d6f48e512; LPVID=lmMWNkODgyOWJiMDYzN2Jk; rxVisitor=15053163485147G3CS2HA9NUHJFVP185Q0ASL8J4DDIV2; amlbcookie=03; iPlanetDirectoryPro=AQIC5wM2LY4Sfcyx28ueXpdDc1glrOUlOpBpriQ5JrEN_3Y.AAJTSQACMDIAAlNLABMtNjg0NTczODcxNTgzMTczMjU1AAJTMQACMDM.; __utma=234506268.404039322.1499344780.1509745463.1510321495.40; __utmc=234506268; _ga=GA1.2.404039322.1499344780; m=2258:cmFkbWluOnJhZG1pbg%253D%253D">>}]},{p_headers,[{<<"connection">>,[<<"keep-alive">>]}]},{cookies,undefined},{meta,[]},{body_state,waiting},{buffer,<<>>},{multipart,undefined},{resp_compress,true},{resp_state,waiting},{resp_headers,[{<<"vary">>,<<"origin">>}]},{resp_body,<<>>},{onresponse,#Fun}]},{state,{context,undefined,none,undefined}}],[{cowboy_rest,is_authorized,2,[{file,"src/cowboy_rest.erl"},{line,150}]},{cowboy_protocol,execute,4,[{file,"src/cowboy_protocol.erl"},{line,442}]}]}

I am not sure when/how I missed it, but I had to run (rerun?)
rabbitmq-plugins enable rabbitmq_auth_backend_ldap
After this, the authentication worked.