[Pkg-openldap-devel] Bug#418997: /usr/bin/ldapsearch: ldapsearch -Y
GSSAPI segfaults
Juha Jäykkä
juhaj at iki.fi
Fri Apr 13 08:40:02 UTC 2007
Package: ldap-utils
Version: 2.3.30-5
Severity: important
File: /usr/bin/ldapsearch
juhaj at noether 11:31:39 ~> klist
Credentials cache: FILE:/tmp/krb5cc_1000_svvwJa
Principal: juhaj at TFY.UTU.FI
Issued Expires Principal
Apr 13 09:40:27 Apr 13 19:40:27 krbtgt/TFY.UTU.FI at TFY.UTU.FI
juhaj at noether 11:31:43 ~> ldapsearch -x uid=juhaj cn
# extended LDIF
#
# LDAPv3
# base <> with scope subtree
# filter: uid=juhaj
# requesting: cn
#
# juhaj, People, tfy.utu.fi
dn: uid=juhaj,ou=People,dc=tfy,dc=utu,dc=fi
cn:: SnVoYSBKw6R5a2vDpA==
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
juhaj at noether 11:31:49 ~> ldapsearch -Y GSSAPI uid=juhaj cn
SASL/GSSAPI authentication started
Segmentation fault
juhaj at noether 11:31:49 ~>
Need I say more?
For what it's worth, here's /etc/ldap/ldap.conf
BASE dc=tfy,dc=utu,dc=fi
URI <three machines listed with ldap://machine.fully.qualified.domain.name>
SASL_REALM TFY.UTU.FI
SASL_MECH GSSAPI
TLS_CACERTDIR /etc/ssl/certs
There's TLS_CACERTDIR, but the connection in question is ldap://, not
ldaps://.
-Juha
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (990, 'unstable'), (1, 'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.17+juhaj+v1.0 (PREEMPT)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=fi_FI.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages ldap-utils depends on:
ii libc6 2.5-1 GNU C Library: Shared libraries
ii libldap-2.3-0 2.3.30-5 OpenLDAP libraries
ii libsasl2-2 2.1.22.dfsg1-8 Authentication abstraction library
ii libssl0.9.8 0.9.8e-4 SSL shared libraries
Versions of packages ldap-utils recommends:
ii libsasl2-modules 2.1.22.dfsg1-8 Pluggable Authentication Modules f
-- no debconf information
More information about the Pkg-openldap-devel
mailing list