'Re: [pamldap] Red Hat 9 client + SSL = seg fault'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pamldap
Subject:    Re: [pamldap] Red Hat 9 client + SSL = seg fault
From:       "Ronny Bremer" <rbremer () future-gate ! com>
Date:       2004-01-22 11:21:23
Message-ID: 20040122T122123Z_5232000B0001 () future-gate ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Thats a bug in the SSL libraries segfaulting when more then one subject name is \
included in the certificate, eDIr does that by default. Upgrading is the only way.

Ronny

Ronny Bremer
future gate


> > > Kevin Babcock <kevin_babcock@symantec.com> 21.01.2004 23:26:14 >>>
owner-pamldap@padl.com wrote on 01/21/2004 11:02:35 AM:

> When I use the included nss_ldap-202-5 rpm with Red Hat 9, I have LDAP 
> authentication working just fine using port 389. When I try to use ldaps
> over port 636, *all* utilities that access the name service segmentation
> fault. I have Solaris clients using nss_ldap-212 and pam_ldap-166 I 
> compiled myself against openldap libs (that statically link openssl 0.9.
> 7c) that use SSL just fine.
> 
> My LDAP server is eDirectory 8.7.3 if that matters. If I can't get it to
> work, I'll compile my own, but I'd much rather use Red Hat's included 
> rpm. Any ideas?

I encountered a segmentation fault when connecting with SSL using version 
2.0 of the OpenLDAP libraries.  Upgrading to version 2.1 fixed the 
problem.

-Kevin


[Attachment #5 (multipart/related)]

[Attachment #7 (text/html)]

Thats a bug in the SSL libraries segfaulting when more then one subject name is \
included in the certificate, eDIr does that by default. Upgrading is the only \
way.<br><br>Ronny<br><br>Ronny Bremer<br>future gate<br><br><br>&gt;&gt;&gt; Kevin \
Babcock &lt;kevin_babcock@symantec.com&gt; 21.01.2004 23:26:14 &gt;&gt;&gt;<br><U> <A \
href="mailto:owner-pamldap@padl.com">owner-pamldap@padl.com</A></U>  wrote on \
01/21/2004 11:02:35 AM:<br><br>&gt; When I use the included nss_ldap-202-5 rpm with \
Red Hat 9, I have LDAP <br>&gt; authentication working just fine using port 389. When \
I try to use ldaps<br>&gt; over port 636, *all* utilities that access the name \
service segmentation<br>&gt; fault. I have Solaris clients using nss_ldap-212 and \
pam_ldap-166 I <br>&gt; compiled myself against openldap libs (that statically link \
openssl 0.9.<br>&gt; 7c) that use SSL just fine.<br>&gt; <br>&gt; My LDAP server is \
eDirectory 8.7.3 if that matters. If I can't get it to<br>&gt; work, I'll compile my \
own, but I'd much rather use Red Hat's included <br>&gt; rpm. Any ideas?<br><br>I \
encountered a segmentation fault when connecting with SSL using version <br>2.0 of \
the OpenLDAP libraries.  Upgrading to version 2.1 fixed the \
<br>problem.<br><br>-Kevin<br>


["smime.p7s" (application/x-pkcs7-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic