Bug 110586
Summary: | nss_ldap causes getent/pam segfaults | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 3 | Reporter: | Christopher C. Weis <ccweis> |
Component: | nss_ldap | Assignee: | Nalin Dahyabhai <nalin> |
Status: | CLOSED ERRATA | QA Contact: | Jay Turner <jturner> |
Severity: | high | Docs Contact: | |
Priority: | medium | ||
Version: | 3.0 | CC: | dag, srevivo |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | ia64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2004-01-16 17:16:38 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Christopher C. Weis
2003-11-21 15:56:52 UTC
The /etc/ldap.conf and /etc/openldap/ldap.conf configuration files are read by different libraries, and support different configuration directives. The coincidence in their naming is unfortunate and confusing. Can you append the output of ldapsearch -x -b '' -s base supportedSASLmechanisms to this report? (If you get any values, then this is likely a dup of #106801.) Here you go... This does look like a duplicate of the other bug. Any idea what's going on? [root@a-lnx006 root]# ldapsearch -x -b '' -s base supportedSASLmechanisms version: 2 # # filter: (objectclass=*) # requesting: supportedSASLmechanisms # # dn: supportedSASLMechanisms: GSSAPI # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 [root@a-lnx006 root]# Hmm, yes, the package was built wrong (links with libsasl2 instead of libsasl). That's being fixed for RHBA-2003:339. We've downloaded RHBA-2003-339 and recompiled it on a fresh RHEL3 AMD x86_64. While using it, we get a dlopen error and unresolved symbols: PAM unable to dlopen(/lib/security/$ISA/pam_ldap.so) PAM [dlerror: /lib/security/../../lib64/security/pam_ldap.so: undefined symbol: _pam_ldap_readconfigfromdns] PAM adding faulty module: /lib/security/$ISA/pam_ldap.so Failed password for illegal user ##user## from ##ip## port 33347 ssh2 Illegal user ##user## from ##ip## After disabling the included dnsconfig-patch, everything works as expected. Is it possible there's a missing define _LDAP_PAM_LDAP_DNSCONFIG_H when compiling the default package for x86_64. An errata has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2003-339.html The RHEL3 U1 update fixes the pam_ldap problem on x86_64 with a clean RHEL3 installation. Thanks. |