Possibly its#7477
On Dec 23, 2015, at 7:14 PM, Ryan Tandy ryan@nardis.ca wrote:
On Wed, Dec 23, 2015 at 08:55:13PM -0500, Tim Dunphy wrote: I'm using version 2.4.31. And I installed it through the ubuntu package manger (apt-get).
[root@ldap1:~] #slapd -V @(#) $OpenLDAP: slapd (Ubuntu) (Sep 15 2015 18:19:13) $ buildd@lgw01-53 :/build/openldap-2QUgtL/openldap-2.4.31/debian/build/servers/slapd
Thanks. This package is linked with GnuTLS, not OpenSSL.
I don't have an Ubuntu install handy, but on Debian 7 (wheezy), which also ships 2.4.31, I get:
modifying entry "cn=config" ldap_modify: Inappropriate matching (18) additional info: modify/add: olcTLSCACertificateFile: no equality matching rule
My suggestion is: when replacing the values, either delete the existing values before adding the new ones, or use 'replace:' instead of 'add:' to have that done for you.
If you have the time, I would also be interested to know whether you encounter the same segfault using Ubuntu 15.10, or the 14.04 backport from my PPA:
https://launchpad.net/~rtandy/+archive/ubuntu/openldap-backports
Sorry but I'm having some trouble providing a backtrace due to the complexity of the ldap command.
I just realized it wouldn't be much help anyway, since the packages you have installed don't include debug symbols for the ldap* clients, but for the record, appropriate commands would have been:
apt-get install libldap-2.4-2-dbg gdb --args ldapmodify -H ldapi:// -Y EXTERNAL -f addcerts.ldif