Logged in as guest
Viewing Incoming/5953 Full headers
Major security issue: yes no
Notes: not ours Notification:
Date: Tue, 17 Feb 2009 15:15:57 +0000 From: michael@stroeder.com To: openldap-its@OpenLDAP.org Subject: slapd seg faults with SASL bind DIGEST-MD5
Full_Name: Michael Str.der Version: 2.4.14 OS: SLES 10 URL: Submission from: (NULL) (193.197.158.1) If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the authz-regexp configuration is correct in slapd.conf See GDB information below. (gdb) info threads 5 process 4888 0xffffe410 in __kernel_vsyscall () 4 process 4889 0xffffe410 in __kernel_vsyscall () 3 process 4890 0xffffe410 in __kernel_vsyscall () 2 process 4891 0xffffe410 in __kernel_vsyscall () * 1 process 4892 0xb7e89c2f in __db_get_flags () from /appserver/bdb-4.6/lib/libdb-4.6.so (gdb) thread apply all bt Thread 5 (process 4888): #0 0xffffe410 in __kernel_vsyscall () #1 0xb7d8b5d8 in pthread_join () from /lib/libpthread.so.0 #2 0xb7f356db in ldap_pvt_thread_join (thread=3023272864, thread_return=0x0) at thr_posix.c:197 #3 0x080773fb in ?? () #4 0xb4337ba0 in ?? () #5 0x00000000 in ?? () Thread 4 (process 4889): #0 0xffffe410 in __kernel_vsyscall () #1 0xb7b5957e in __lll_mutex_lock_wait () from /lib/libc.so.6 #2 0xb7ae4e63 in _L_mutex_lock_41 () from /lib/libc.so.6 #3 0xb4334314 in ?? () #4 0xb4334314 in ?? () #5 0x00000032 in ?? () #6 0x00000021 in ?? () #7 0xb7f2611c in ?? () from /appserver/openldap-2.4/lib/liblber-2.4.so.2 #8 0x00000001 in ?? () #9 0x0000003c in ?? () #10 0xb4335318 in ?? () #11 0xb7f2173e in lutil_debug (debug=-1271708908, level=-1212492416, fmt=0x8139194 "daemon: activity on %d descriptor%s\n") at debug.c:72 Backtrace stopped: frame did not save the PC Thread 3 (process 4890): #0 0xffffe410 in __kernel_vsyscall () #1 0xb7d8e056 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0 #2 0xb7f357e0 in ldap_pvt_thread_cond_wait (cond=0x81eca6c, mutex=0x81eca54) at thr_posix.c:277 #3 0xb7f3449b in ldap_int_thread_pool_wrapper (xpool=0x81eca50) at tpool.c:654 #4 0xb7d8a2ab in start_thread () from /lib/libpthread.so.0 #5 0xb7b4da4e in clone () from /lib/libc.so.6 Thread 2 (process 4891): #0 0xffffe410 in __kernel_vsyscall () #1 0xb7d8e056 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0 #2 0xb7f357e0 in ldap_pvt_thread_cond_wait (cond=0x81eca6c, mutex=0x81eca54) at thr_posix.c:277 #3 0xb7f3449b in ldap_int_thread_pool_wrapper (xpool=0x81eca50) at tpool.c:654 #4 0xb7d8a2ab in start_thread () from /lib/libpthread.so.0 #5 0xb7b4da4e in clone () from /lib/libc.so.6 Thread 1 (process 4892): #0 0xb7e89c2f in __db_get_flags () from /appserver/bdb-4.6/lib/libdb-4.6.so #1 0xb7a81385 in ?? () from /usr/lib/sasl2/libsasldb.so #2 0x082f9570 in ?? () #3 0x00000000 in ?? ()
Date: Tue, 17 Feb 2009 12:54:34 -0800 From: Quanah Gibson-Mount <quanah@zimbra.com> To: michael@stroeder.com, openldap-its@openldap.org Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
--On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote: > Full_Name: Michael Str?der > Version: 2.4.14 > OS: SLES 10 > URL: > Submission from: (NULL) (193.197.158.1) > > > If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the > authz-regexp configuration is correct in slapd.conf What makes you think this is a bug with OpenLDAP and not cyrus-sasl? --Quanah -- Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
Date: Wed, 18 Feb 2009 10:07:32 +0100 From: =?ISO-8859-1?Q?Michael_Str=F6der?= <michael@stroeder.com> To: Quanah Gibson-Mount <quanah@zimbra.com> CC: openldap-its@openldap.org Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
Quanah Gibson-Mount wrote: > --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote: > >> Full_Name: Michael Str?der >> Version: 2.4.14 >> OS: SLES 10 >> URL: >> Submission from: (NULL) (193.197.158.1) >> >> >> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the >> authz-regexp configuration is correct in slapd.conf > > What makes you think this is a bug with OpenLDAP and not cyrus-sasl? Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3 which was running on the same machine before. With 2.3 when this file was missing only this message was sent to syslog: "unable to open Berkeley db /etc/sasldb2". Today it seg faults. Ciao, Michael.
Date: Wed, 18 Feb 2009 01:17:06 -0800 From: Howard Chu <hyc@symas.com> To: michael@stroeder.com CC: openldap-its@openldap.org Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
michael@stroeder.com wrote: > Quanah Gibson-Mount wrote: >> --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote: >> >>> Full_Name: Michael Str?der >>> Version: 2.4.14 >>> OS: SLES 10 >>> URL: >>> Submission from: (NULL) (193.197.158.1) >>> >>> >>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the >>> authz-regexp configuration is correct in slapd.conf >> What makes you think this is a bug with OpenLDAP and not cyrus-sasl? > > Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3 > which was running on the same machine before. With 2.3 when this file > was missing only this message was sent to syslog: "unable to open > Berkeley db /etc/sasldb2". Today it seg faults. What version of BDB was libsasl built with? What version was OpenLDAP built with? -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
Date: Wed, 18 Feb 2009 16:42:12 +0100 From: =?ISO-8859-1?Q?Michael_Str=F6der?= <michael@stroeder.com> To: openldap-its@openldap.org Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
hyc@symas.com wrote: > michael@stroeder.com wrote: >> Quanah Gibson-Mount wrote: >>> --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote: >>> >>>> Full_Name: Michael Str?der >>>> Version: 2.4.14 >>>> OS: SLES 10 >>>> URL: >>>> Submission from: (NULL) (193.197.158.1) >>>> >>>> >>>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the >>>> authz-regexp configuration is correct in slapd.conf >>> What makes you think this is a bug with OpenLDAP and not cyrus-sasl? >> Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3 >> which was running on the same machine before. With 2.3 when this file >> was missing only this message was sent to syslog: "unable to open >> Berkeley db /etc/sasldb2". Today it seg faults. > > What version of BDB was libsasl built with? What version was OpenLDAP built with? The BDB versions differ but it works when creating /usr/lib/sasl2/slapd.conf with "auxprop_plugin: slapd". IIRC it also worked with OpenLDAP 2.3. Ciao, Michael.
Date: Wed, 18 Feb 2009 15:00:23 -0800 From: Howard Chu <hyc@symas.com> To: michael@stroeder.com CC: openldap-its@openldap.org Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
michael@stroeder.com wrote: > hyc@symas.com wrote: >> michael@stroeder.com wrote: >>> Quanah Gibson-Mount wrote: >>>> --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote: >>>> >>>>> Full_Name: Michael Str?der >>>>> Version: 2.4.14 >>>>> OS: SLES 10 >>>>> URL: >>>>> Submission from: (NULL) (193.197.158.1) >>>>> >>>>> >>>>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the >>>>> authz-regexp configuration is correct in slapd.conf >>>> What makes you think this is a bug with OpenLDAP and not cyrus-sasl? >>> Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3 >>> which was running on the same machine before. With 2.3 when this file >>> was missing only this message was sent to syslog: "unable to open >>> Berkeley db /etc/sasldb2". Today it seg faults. >> What version of BDB was libsasl built with? What version was OpenLDAP built with? > > The BDB versions differ but it works when creating > /usr/lib/sasl2/slapd.conf with "auxprop_plugin: slapd". > > IIRC it also worked with OpenLDAP 2.3. Most likely the BDB versions were the same on your 2.3 build. You cannot have multiple BDB libraries in the same process (unless you build with symbol versioning). This is not an OpenLDAP bug. This ITS will be closed. -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
______________ © Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org
