163362 – sys-auth/nss_ldap and openldap + sasl + gssapi

Bug 163362 - sys-auth/nss_ldap and openldap + sasl + gssapi

Summary: sys-auth/nss_ldap and openldap + sasl + gssapi

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	New packages (show other bugs)
Hardware:	All Linux

Importance:	High enhancement (vote)
Assignee:	Robin Johnson

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2007-01-22 22:56 UTC by lkml_ccc
Modified:	2007-01-31 02:33 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
My modified ebuild (nss_ldap-253-r1.ebuild,1.87 KB, text/plain) 2007-01-22 22:58 UTC, lkml_ccc	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description lkml_ccc 2007-01-22 22:56:42 UTC

The current ebuild does not set the configure variable required to bind to openldap via gssapi. 
Instead of binding using the configured (in ldap.conf) principal, it binds as anonymous. This break a configuration where simple bind is not allowed to openldap.

Reproducible: Always

Steps to Reproduce:
1.Use a configuration similar to this (look at last 5 options in ldap.conf) http://www.nabble.com/Re:-nss_ldap-using-sasl-with-gssapi.-Kerberos-credentials-cache%09problem-Scanned--t2270116.html
2.
3.

Actual Results:  
Sasl bind does not work (as it does not use/find cache credentials)

Expected Results:  
It should use the configured cache credentials.

Comment 1 lkml_ccc 2007-01-22 22:58:26 UTC

Created attachment 107851 [details]
My modified ebuild

This ebuild works for me.

Comment 2 Robin Johnson archtester

2007-01-31 02:33:56 UTC

fixed in cvs.