Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 456862 - net-nds/openldap-2.4.30[gnutls] is crashing
Summary: net-nds/openldap-2.4.30[gnutls] is crashing
Status: RESOLVED INVALID
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: [OLD] Library (show other bugs)
Hardware: AMD64 Linux
: Normal normal
Assignee: Gentoo LDAP project
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-02-11 22:22 UTC by bsod
Modified: 2014-10-12 06:34 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
emerge --info (emergeInfoServer,4.91 KB, text/plain)
2013-02-11 22:23 UTC, bsod 		Details
Example for the crash (examplestack,12.71 KB, text/plain)
2013-02-11 22:25 UTC, bsod 		Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description bsod 2013-02-11 22:22:39 UTC 
When openldap on hardened(?) gentoo is build with the gnutls use flag compile will work but ldap will not start.
If you use ldap in nsswitch.conf emerge will not work anymore until you remove ldap from nsswitch.conf.

Reproducible: Always

Steps to Reproduce:
1.compile openldap-2.4.30 (the latest stable release) with the gnutls use flag
2.try to do anything with ldap that requires tls (start ldap server, connect to ldap server) and it will crash




As a workaround you have to disable the gnutls use flag. Some other packages often depend on it than you basically have to remove ldap support from them.
Comment 1 bsod 2013-02-11 22:23:54 UTC 
Created attachment 338648 [details]
emerge --info
Comment 2 bsod 2013-02-11 22:25:45 UTC 
Created attachment 338650 [details]
Example for the crash

This is the crash you are seeing when ldap is enabled in nsswitch.conf.
Basically this shuts down every emerge!
Comment 3 Jeroen Roovers (RETIRED) gentoo-dev 2013-02-13 18:54:31 UTC 
Not sure whether this is in sys-auth/nss_ldap (the crash refers to /lib64/libnss_ldap.so.2) or net-nds/openldap
Comment 4 Robin Johnson archtester Gentoo Infrastructure gentoo-dev Security 2014-10-12 06:34:41 UTC 
Rebuild your system with a consistent version of gnutls.
Don't link one thing to old gnutls, and something else to new gnutls.