Summary: | Oracle Instant Client segfaults for LDAP users | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Andrew Sterling Hanenkamp <sterling> |
Component: | Current packages | Assignee: | Don Seiler (RETIRED) <rizzo> |
Status: | RESOLVED TEST-REQUEST | ||
Severity: | normal | ||
Priority: | High | ||
Version: | 2004.2 | ||
Hardware: | x86 | ||
OS: | All | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Andrew Sterling Hanenkamp
2004-08-23 16:17:30 UTC
This sounds upstream to me. There is no real configuration that we do since the packages are all binary anyway. I'm not quite sure I understand your setup. You have Oracle authenticating against LDAP? I didn't think that was possible. We use Microsoft ActiveDirectory to validate all logins via the pam_smb module. We then use nss_ldap to contact AD to get the rest of a user's account info. This is only used to perform login authentication. However, it would appear that sqlplus attempts to very the user's details before connecting to the foreign host. Thus, the problem is that Oracle dies when it attempts to contact AD through OpenLDAP client through NSS. I've been able to discover a little bit of information through Oracle's Metalink support site. For those with access to this support site, the document I've found so far is 504229.996. It would appear that this is a problem with Oracle on Linux, in general. However, I have, as yet, no solution because the document isn't resolved--one suggestion was that running nscd would fix the problem, but I tried that and it's still broked. Eureka! I've found a solution: emerge =nss_ldap-207 Apparently, there's something about the newer version of nss_ldap that borks up the Oracle 10g Instant Client. Sorry for late reply. I can set a depend on <=net-libs/nss_ldap-207 if USE="ldap" in oracle-instantclient-basic. Let me know what you think, or if perhaps it has since been fixed in newer versions. please try the very latest nss_ldap-226, it should work as well. Waiting for user to test and report back. |