Bug#306258: marked as done (libpam-ldap needs to be linked against ldap_r)

Fri, 13 May 2005 20:38:05 -0700 

Your message dated Fri, 13 May 2005 23:02:37 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#306258: fixed in openldap2 2.1.30-7
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 25 Apr 2005 10:16:46 +0000
>From [EMAIL PROTECTED] Mon Apr 25 03:16:46 2005
Return-path: <[EMAIL PROTECTED]>
Received: from opium.multi24.com [213.239.202.166] 
        by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
        id 1DQ0dy-0008GB-00; Mon, 25 Apr 2005 03:16:46 -0700
Received: by opium.multi24.com (Postfix, from userid 1000)
        id 48DA7400292; Mon, 25 Apr 2005 12:16:44 +0200 (CEST)
Date: Mon, 25 Apr 2005 12:16:44 +0200
From: Peter Palfrader <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: linking with ldap_r breaks pam/nss interaction.
Message-ID: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-15
Content-Disposition: inline
X-PGP: 1024D/94C09C7F 5B00 C96D 5D54 AEE1 206B  AF84 DE7A AF6E 94C0 9C7F
X-Request-PGP: http://www.palfrader.org/keys/94C09C7F.asc
X-Accept-Language: de, en
User-Agent: Mutt/1.5.6+20040907i
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE 
        autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level: 

Package: libnss-ldap
Version: 238-1
Severity: grave

After upgrading to 238-1 from 169-1 in sarge pam authentication no
longer works.

If I enter an invalid password I come back immediately:

| [EMAIL PROTECTED]:~$ su - weasel
| Password: 
| su: Authentication failure
| Sorry.
| 

However, when I enter a valid password su (and login and friends) just hangs:

| [EMAIL PROTECTED]:~$ su - weasel
| Password: 
| 

sometimes, instead of a hanging process I get:

| su: pthread_mutex_lock.c:78: __pthread_mutex_lock: Assertion 
`mutex->__data.__owner == 0' failed.
| zsh: abort      su - weasel


While su is hanging strace shows:
| futex(0x8060ae0, FUTEX_WAIT, 2, NULL)   = -1 EAGAIN (Resource temporarily 
unavailable)
| futex(0x8060ae0, FUTEX_WAIT, 2, NULL)   = -1 EAGAIN (Resource temporarily 
unavailable)
forever.

A bt shows:
(gdb) bt
| #0  0x4070f3e6 in __lll_mutex_lock_wait () from /lib/tls/libpthread.so.0
| #1  0x4070c893 in _L_mutex_lock_26 () from /lib/tls/libpthread.so.0
| #2  0x400d54c4 in mallopt () from /lib/tls/libc.so.6
| #3  0x40146c4f in pthread_mutex_lock () from /lib/tls/libc.so.6
| #4  0x40455ca1 in ldap_start_tls_s () from /usr/lib/libldap.so.2
| #5  0x40512d33 in gcry_sexp_canon_len () from /usr/lib/libgcrypt.so.11
| #6  0x40512e71 in gcry_sexp_canon_len () from /usr/lib/libgcrypt.so.11
| #7  0x4051fbaf in gcry_randomize () from /usr/lib/libgcrypt.so.11
| #8  0x4051b7b5 in gcry_md_algo_name () from /usr/lib/libgcrypt.so.11
| #9  0x4051b8b2 in gcry_md_open () from /usr/lib/libgcrypt.so.11
| #10 0x404b1fbc in _gnutls_hash_init () from /usr/lib/libgnutls.so.11
| #11 0x404ab7b1 in gnutls_handshake () from /usr/lib/libgnutls.so.11
| #12 0x406e8cb5 in gnutls_SSL_free () from /usr/lib/libldap_r.so.2
| #13 0x406e8dda in gnutls_SSL_connect () from /usr/lib/libldap_r.so.2
| #14 0x406e668e in ldap_pvt_tls_init_def_ctx () from /usr/lib/libldap_r.so.2
| #15 0x406e7696 in ldap_int_tls_start () from /usr/lib/libldap_r.so.2
| #16 0x406c74a7 in ldap_int_open_connection () from /usr/lib/libldap_r.so.2
| #17 0x406d9299 in ldap_new_connection () from /usr/lib/libldap_r.so.2
| #18 0x406c6f11 in ldap_open_defconn () from /usr/lib/libldap_r.so.2
| #19 0x406d8e0f in ldap_send_initial_request () from /usr/lib/libldap_r.so.2
| #20 0x406cf137 in ldap_sasl_bind () from /usr/lib/libldap_r.so.2
| #21 0x406cfb50 in ldap_simple_bind () from /usr/lib/libldap_r.so.2
| #22 0x406a3974 in ?? () from /lib/libnss_ldap.so.2
| #23 0x08060290 in ?? ()
| #24 0x00000000 in ?? ()
| #25 0x00000000 in ?? ()
| #26 0x406f0734 in ?? () from /usr/lib/libldap_r.so.2
| #27 0x00005005 in ?? ()
| #28 0x08060294 in ?? ()
| #29 0xbffff4b8 in ?? ()
| #30 0x406df2f8 in ldap_set_option () from /usr/lib/libldap_r.so.2
| #31 0x406a358d in ?? () from /lib/libnss_ldap.so.2
| #32 0x08060290 in ?? ()
| #33 0x0000001e in ?? ()
| #34 0x00000000 in ?? ()
| #35 0x00000000 in ?? ()
| #36 0x00000000 in ?? ()
| #37 0x00000000 in ?? ()


This just happens in connection with pam it seems.  getent passwd and id
weasel all work fine.

Linking against libldap instead of libldap_r fixes the problem.
-- 
 PGP signed and encrypted  |  .''`.  ** Debian GNU/Linux **
    messages preferred.    | : :' :      The  universal
                           | `. `'      Operating System
 http://www.palfrader.org/ |   `-    http://www.debian.org/

---------------------------------------
Received: (at 306258-close) by bugs.debian.org; 14 May 2005 03:17:03 +0000
>From [EMAIL PROTECTED] Fri May 13 20:17:03 2005
Return-path: <[EMAIL PROTECTED]>
Received: from newraff.debian.org [208.185.25.31] (mail)
        by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
        id 1DWn9C-0001bz-00; Fri, 13 May 2005 20:17:02 -0700
Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian))
        id 1DWmvF-0004UD-00; Fri, 13 May 2005 23:02:37 -0400
From: Stephen Frost <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.55 $
Subject: Bug#306258: fixed in openldap2 2.1.30-7
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Fri, 13 May 2005 23:02:37 -0400
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER 
        autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level: 
X-CrossAssassin-Score: 3

Source: openldap2
Source-Version: 2.1.30-7

We believe that the bug you reported is fixed in the latest version of
openldap2, which is due to be installed in the Debian FTP archive:

libldap2-dev_2.1.30-7_i386.deb
  to pool/main/o/openldap2/libldap2-dev_2.1.30-7_i386.deb
libldap2_2.1.30-7_i386.deb
  to pool/main/o/openldap2/libldap2_2.1.30-7_i386.deb
openldap2_2.1.30-7.diff.gz
  to pool/main/o/openldap2/openldap2_2.1.30-7.diff.gz
openldap2_2.1.30-7.dsc
  to pool/main/o/openldap2/openldap2_2.1.30-7.dsc



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Stephen Frost <[EMAIL PROTECTED]> (supplier of updated openldap2 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Fri, 13 May 2005 19:06:21 -0400
Source: openldap2
Binary: libldap2 libldap2-dev
Architecture: source i386
Version: 2.1.30-7
Distribution: unstable
Urgency: high
Maintainer: Torsten Landschoff <[EMAIL PROTECTED]>
Changed-By: Stephen Frost <[EMAIL PROTECTED]>
Description: 
 libldap2   - OpenLDAP libraries
 libldap2-dev - OpenLDAP development libraries
Closes: 302296 306258 306546
Changes: 
 openldap2 (2.1.30-7) unstable; urgency=high
 .
   * Stephen Frost <[EMAIL PROTECTED]>
     + debian/move_files: make libldap a symlink to libldap_r, as carrying
       two versions of this library around is more trouble than it's worth,
       and can cause glorious segfaults down the line
       (closes: #306258, #302296, #306546)
     + debian/move_files: Comment out moves for things we no longer build here
       (slapd, libslapd2-dev, ldap-utils).  Makes rebuilding cleaner.
     + debian/control: Remove libslapd2-dev; doesn't make any sense without the
       slapd to go along with.
     + debian/control: Add Steve Langasek as Uploader.
     + debian/move_files: Disable check_completeness since it doesn't make
       sense anymore (we don't *want* to use all the files).
     + debian/rules: comment-out and remove binary-indep, since we no longer
       have any arch: all packages in here.
Files: 
 7bfa6b9197cdd1b4fec77ffee58ccc07 972 net optional openldap2_2.1.30-7.dsc
 4bcde11b7ef764f9ac0d9fdfbd3d2a2a 454004 net optional openldap2_2.1.30-7.diff.gz
 690b50bfcf240098e0b3b1ed5009347d 148736 libs important 
libldap2_2.1.30-7_i386.deb
 fd2003318771622f8383437ab5db0d6c 225848 libdevel extra 
libldap2-dev_2.1.30-7_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFChWierzgMPqB3kigRAsyVAJ9YwaYbk4KfgEOGFIHGIn6KFa1ZwgCfUkJw
PwBVVpgc4TATb3avjKjwgyM=
=qda4
-----END PGP SIGNATURE-----


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to