Hide Forgot
Description of problem: Doing a yum -y install ipa-client on a RHEL 6.1 does not update openldap. When running ipa-client-install sssd segfaults with: kernel: sssd_be[10632]: segfault at 10 ip 00007f294c911eee sp 00007fffdd8fe3b0 error 4 in libldap-2.4.so.2.5.2[7f294c8fe000+43000] This was tested with openldap-2.4.19-15.el6.x86_64 . It works with the latest openldap.
Apparently at some point we made some assumptions in SSSD that require openldap to be using Mozilla-NSS for crypto, so we broke compatibility with openldap 2.4.19 (as shipped in 6.0). We should add a versioned dependency on the latest openldap.
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: No technical note required
Verification steps: 1. During sssd upgrade, without openldap >= 2.4.23-20, I get the following error: Error: Package: sssd-1.8.0-24.el6.x86_64 (sssd63) Requires: openldap >= 2.4.23-20 Installed: openldap-2.4.19-15.el6.x86_64 2. With openldap >= 2.4.23-20, the error no longer appears. Verified with version sssd-1.8.0-24.el6.x86_64
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2012-0747.html