+++ This bug was initially created as a clone of Bug #469061 +++ Description of problem: When pam_ldap is build against sasl, and openldap is new, the codepath uncovered is buggy. It tries to dereference session->info->something when info == 0. This breaks horribly when you use binddn and first search returns referral. The attached patch fixes the problem (verified and tested on my lovely AD forest). --- Additional comment from i on 2008-10-29 14:10:07 EDT --- Created an attachment (id=321841) The attached patch FIXES THE PROBLEM I hate bugzilla --- Additional comment from nalin on 2008-10-29 14:29:21 EDT --- The patch looks obviously correct to me. Not sure where we are for F10 (I'm reading final development freeze as being yesterday), so this may have to go out as an update rather than in the release proper, but I'll add it to the package. Thanks!
Oops, due to timing, for RHEL 5 I didn't pull in the updated patch from the upstream bug tracker, which didn't include the additional support for rebinding using SASL that needed to be patched here. Marking this as, uh, closed->rawhide.