Red Hat Bugzilla – Bug 210912
freeradius segfaults when attempting LDAP lookup
Last modified: 2007-11-30 17:11:45 EST
Description of problem:
freeradius immediately segfaults when attempting an LDAP lookup.
Version-Release number of selected component (if applicable):
FC5 current and FC6 rawhide
Steps to Reproduce:
1. configure freeradius to "Auth-Type LDAP"
2. start radiusd
3. run radtest
rad_recv: Access-Accept packet (or similar)
Apparently this used to work in FC4. It works in Debian stable, but not in FC5
Googling around suggests similar problems have been caused by .so collisions (eg
radiusd linked against libsasl.so and libldap.so, the latter being linked
against libsasl2.so..). I don't know if this is useful, though.
The sasl thing I mentioned was bug 126507.
I now can't use the FC4 one as I will need client cert-based EAP-TLS to work and
that causes it to segfault. Will report that against FC6 if the bug persists,
but I can't use any of them now.
It's rather quiet in here--perhaps there's another channel I should be using to
report this bug?
Please start the radius server in debug mode (option "-X") and attach the log to
Please also get a core dump from the server.
Program terminated with signal 11, Segmentation fault.
#0 ldap_set_option (ld=0x558b9640, option=20485, invalue=0x5555558adb80)
358 assert( LDAP_VALID( ld ) );
Attachments to follow..
Created attachment 139562 [details]
output of "radiusd -X"
Created attachment 139563 [details]
strace output of "radiusd -X"
Created attachment 139564 [details]
gzipped core file
This is on FC6 x86_64.
Created attachment 139565 [details]
gdb-radiusd.log as suggested in /usr/share/doc/freeradius-1.1.3/bugs. I only
installed the debuginfo RPMs for freeradius and openldap.
It's now been quiet for almost two weeks. Is anyone working on this bug?
Maybe there is a interim solution: Rebuild freeradius without PIE support.
Disable pie patch for this.
Is this solving your problem?
Yes it is under FC6, thanks very much.
I've also built the FC6 SRPM for FC5, though I'm using a modified openldap
install, since we suffer the symptoms of bug 209496 (which has been completely
unanswered, despite a patch from upstream having been supplied). So that works
too, although it's more FC6 than FC5.
Please have a look at http://people.redhat.com/twoerner/BZ/210912/
This package should fix your problem.
Yes, it does. Thanks! :)
More weeks pass.. what happens now?
Fixed in updates in package freeradius-1.1.3-1.1.