Description of problem: freeradius immediately segfaults when attempting an LDAP lookup. Version-Release number of selected component (if applicable): FC5 current and FC6 rawhide How reproducible: always Steps to Reproduce: 1. configure freeradius to "Auth-Type LDAP" 2. start radiusd 3. run radtest Actual results: segfault Expected results: rad_recv: Access-Accept packet (or similar) Additional info: Apparently this used to work in FC4. It works in Debian stable, but not in FC5 or FC6. Googling around suggests similar problems have been caused by .so collisions (eg radiusd linked against libsasl.so and libldap.so, the latter being linked against libsasl2.so..). I don't know if this is useful, though.
The sasl thing I mentioned was bug 126507.
I now can't use the FC4 one as I will need client cert-based EAP-TLS to work and that causes it to segfault. Will report that against FC6 if the bug persists, but I can't use any of them now. It's rather quiet in here--perhaps there's another channel I should be using to report this bug?
Please start the radius server in debug mode (option "-X") and attach the log to this bugzilla. Please also get a core dump from the server.
gdb says: Program terminated with signal 11, Segmentation fault. #0 ldap_set_option (ld=0x558b9640, option=20485, invalue=0x5555558adb80) at options.c:358 358 assert( LDAP_VALID( ld ) ); Attachments to follow..
Created attachment 139562 [details] output of "radiusd -X"
Created attachment 139563 [details] strace output of "radiusd -X"
Created attachment 139564 [details] gzipped core file This is on FC6 x86_64.
Created attachment 139565 [details] gdb output gdb-radiusd.log as suggested in /usr/share/doc/freeradius-1.1.3/bugs. I only installed the debuginfo RPMs for freeradius and openldap.
It's now been quiet for almost two weeks. Is anyone working on this bug?
Maybe there is a interim solution: Rebuild freeradius without PIE support. Disable pie patch for this. Is this solving your problem?
Yes it is under FC6, thanks very much. I've also built the FC6 SRPM for FC5, though I'm using a modified openldap install, since we suffer the symptoms of bug 209496 (which has been completely unanswered, despite a patch from upstream having been supplied). So that works too, although it's more FC6 than FC5.
Please have a look at http://people.redhat.com/twoerner/BZ/210912/ This package should fix your problem.
Yes, it does. Thanks! :)
More weeks pass.. what happens now?
Fixed in updates in package freeradius-1.1.3-1.1.