Lea Anthony wrote:
The version I have does not have debugging info, however I was able to get hold of this backtrace:
#0 0xb7b5bb05 in free () from /lib/libc.so.6 #1 0xb7ac566e in _sasldb_getdata () from /usr/lib/sasl2/libsasldb.so.2 #2 0xb7ac33d7 in sasldb_auxprop_lookup () from /usr/lib/sasl2/libsasldb.so.2 #3 0xb7e2df6e in _sasl_auxprop_lookup () from /usr/lib/libsasl2.so.2 #4 0xb7e2f6b4 in _sasl_canon_user () from /usr/lib/libsasl2.so.2 #5 0xb7ac8425 in login_server_mech_step () from /usr/lib/sasl2/liblogin.so.2 #6 0xb7e38567 in sasl_server_step () from /usr/lib/libsasl2.so.2 #7 0x080a5c08 in ?? () #8 0x08213c10 in ?? () #9 0x082289fd in ?? () #10 0x00000000 in ?? ()
Looks like the bug is in libsasl2 ?
It seems so.
----- Original Message ----- From: "Howard Chu"hyc@symas.com To: "lea anthony"lea.anthony@meirion-dwyfor.ac.uk Cc: openldap-its@openldap.org Sent: Tuesday, June 17, 2008 9:22:43 PM (GMT) Europe/London Subject: Re: (ITS#5561) SEGV using TLS/SASL
lea.anthony@meirion-dwyfor.ac.uk wrote:
Full_Name: Lea Anthony Version: 2.3.40 OS: Arch Linux URL: http://pastebin.com/f6b680f22 Submission from: (NULL) (194.82.229.100)
I have TLS setup as follows:
TLSCertificateFile /etc/openldap/certs/cert.pem TLSCertificateKeyFile /etc/openldap/certs/key.pem TLSCipherSuite HIGH:MEDIUM:+TLSv1:+SSLv2:+SSLv3
The server starts fine and doing "ldapsearch -x -ZZ" will do an anonymous bind fine.
However, doing "ldapsearch -ZZ" will cause a segfault on the server. The pastebin URL contains the post SSL negotiation debug lines from "slapd -d -1".
I'm unable to reproduce this crash. Please provide a stack trace.