Re: [Bug 219527] Re: Username completion crashes with libnss-ldap
On Fri, Oct 17, 2008 at 09:38:06AM -, Hark wrote: > I also have this problem. Updating my Hardy systems did fix the problem > on one server, but all other servers still have this problem after > updating (and rebooting). No wonder... Since noone fixed the problem it "works by accident" on some updated systems (including some of mine). Apparently networking is not a priority for ubuntu. -- Best regards, Jakob Østergaard Hegelund Evalesco A/S -- Username completion crashes with libnss-ldap https://bugs.launchpad.net/bugs/219527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
Re: [Bug 219527] Re: Username completion crashes with libnss-ldap
Anderson wrote: > I am also getting crashes in my shell when completing LDAP usernames. > > $ cd ~amg > malloc: unknown:0: assertion botched > free: start and end chunk sizes differ > Aborting... > > If I try to install libnss-ldapd, APT tries to remove libnss-ldap. My > question is: libnss-ldap configuration file is compatible with libnss- > ldapd? Can I replace that NSS library safety? > The answers are right above your post... However, I suggest you consider #227675 before switching. -- Best regards, Jakob Østergaard Hegelund Evalesco A/S -- Username completion crashes with libnss-ldap https://bugs.launchpad.net/bugs/219527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 227675] Re: libnss-ldapd nslcd crashes regularly
Mixing and matching packages from various sources is no way to administer any number of servers. I could try out 0.6.2, but if it works, it won't help me because 1) Ubuntu won't jump from 0.5.0 to 0.6.2 and can't support the version 2) I won't automatically get security patches to my 0.6.2 So, in order to get a proper solution, what would people suggest? Since the current state of affairs is that *neither* libnss-ldap *nor* libnss-ldapd is stable in 8.04 LTS, it means there is no reliable way to configure a current Ubuntu system against any of the common directories out there (Open Directory, One, AD, plain simple OpenLDAP, ...). I would assume that fixing at least one of the libnss-ldap* packages would be a priority, and I'd like to help, but I won't waste my time upgrading to packages from random distributions when I know for sure that it won't bring me a long term solution. -- libnss-ldapd nslcd crashes regularly https://bugs.launchpad.net/bugs/227675 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 228900] Re: Disconnects and segfault against Open Directory
I assume this is a dupe of #227675 -- Disconnects and segfault against Open Directory https://bugs.launchpad.net/bugs/228900 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
Re: [Bug 219527] Re: Username completion crashes with libnss-ldap
Hark wrote: > Correct, I also don't experience this problem anymore. > I find the precise description of the resolution very reassuring... Some day when I have time to toy with this again I'll try the ubuntu packages. For now I'm staying with the debian source packages, compiling them on ubuntu. -- Best regards, Jakob Østergaard Hegelund Evalesco A/S -- Username completion crashes with libnss-ldap https://bugs.launchpad.net/bugs/219527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
Re: [Bug 227675] Re: libnss-ldapd nslcd crashes regularly
jdobry wrote: > I must comfirm, that this package still buggy. > Kind of makes you wonder... Do they have more than one computer at Canonical? ;) It's a little bit disturbing that 8.04 has never had the ability to participate in a network with an LDAP directory, and no one (with the ability to fix it) really seems to care. > And I have workarround. Ubuntu 8.04 (Hrardy Heron) have sufficient dependencies to install libnss-ldapd (0.6.3) binary package from debinan > Install lib from this link http://packages.debian.org/sid/libnss-ldapd > Nice; to fix Hardy, install Debian... I'll wait with that until they make it the official recommended solution ;) Thanks for providing feedback - I hope it helps draw a little bit of attention to this problem. -- Best regards, Jakob Østergaard Hegelund Evalesco A/S -- libnss-ldapd nslcd crashes regularly https://bugs.launchpad.net/bugs/227675 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 219527] Re: Username completion crashes with libnss-ldap
I can confirm that changing to libnss-ldapd seems to solve the problem here. One configuration quirk: To control authorization per-host via LDAP, I had the following in my old libnss-ldap /etc/ldap.conf: nss_base_passwd ou=People,dc=evalesco,dc=com?sub?|(host=eagle.rd)(host=\*.rd)(host=\*) With libnss-ldapd this is different, I had to insert: filter passwd (|(host=eagle.rd)(host=\*.rd)(host=\*)) in my /etc/nss-ldapd.conf Both bash and tcsh can now tab-complete on user names again :) -- Username completion crashes with libnss-ldap https://bugs.launchpad.net/bugs/219527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 219527] Re: Username completion crashes with libnss-ldap
Follow one of the HOWTOs on setting up LDAP distribution of user accounts. In my setup I use kerberos for the authentication whereas most online articles describe how to shovel the authentication into LDAP too, but this doesn't seem to matter. You'll see the problems either way. -- Username completion crashes with libnss-ldap https://bugs.launchpad.net/bugs/219527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 227675] [NEW] libnss-ldapd nslcd crashes regularly
Public bug reported: Binary package hint: libnss-ldapd See 219527 for the story of how I ended up doing what I'm doing I migrated a server from nss-ldap to nss-ldapd, because of a bug in nss- ldapd which caused bash and tcsh to crash on username auto-completion. Now, the nslcd daemon which is necessary for libnss-ldapd to function, crashes about once per day. # lsb_release -rd Description:Ubuntu 8.04 Release:8.04 # apt-cache policy libnss-ldapd libnss-ldapd: Installed: 0.5 Candidate: 0.5 Version table: *** 0.5 0 500 http://dk.archive.ubuntu.com hardy/universe Packages 100 /var/lib/dpkg/status My /etc/nss-ldapd.conf looks like: uri ldap://directory.ewan.evalesco.com base dc=evalesco,dc=com filter passwd (|(host=eagle.rd)(host=\*.rd)(host=\*)) LDAP is being used as follows, from the nsswitch.conf: passwd: files ldap group: files ldap shadow: files ldap netgroup: files ldap automount: files ldap ** Affects: nss-ldapd (Ubuntu) Importance: Undecided Status: New -- libnss-ldapd nslcd crashes regularly https://bugs.launchpad.net/bugs/227675 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 227675] Re: libnss-ldapd nslcd crashes regularly
About the crashes: I see the following in the dmesg: [30378.320041] nslcd[4943]: segfault at 2c0008c0 rip 40b94b rsp 43231610 error 4 [118920.022667] nslcd[6481]: segfault at d8000cb0 rip 4042c6 rsp 41c285f0 error 4 There's no description of the crash in /var/log/daemon - only startup messages: May 7 12:09:27 eagle nslcd[11230]: version 0.5 starting May 7 12:09:27 eagle nslcd[11230]: accepting connections May 7 12:17:01 eagle nslcd[11230]: connected to LDAP server ldap://directory.ewan.evalesco.com May 7 12:20:11 eagle nslcd[11230]: connected to LDAP server ldap://directory.ewan.evalesco.com May 7 12:20:11 eagle last message repeated 3 times -- libnss-ldapd nslcd crashes regularly https://bugs.launchpad.net/bugs/227675 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 223828] [NEW] Bash malloc assertion
Public bug reported: Binary package hint: bash On a system with kerberos authentication and LDAP authorization, bash writes the following when trying to tab-complete '~': $ ls ~ malloc: unknown:0: assertion botched free: start and end chunk sizes differ This does not happen on a non-LDAP system. Testing with tcsh (to see if it is an NSS problem rather than a bash problem) shows no problems what so ever. $ lsb_release -rd Description:Ubuntu 8.04 Release:8.04 $ apt-cache policy bash bash: Installed: 3.2-0ubuntu16 Candidate: 3.2-0ubuntu16 Version table: *** 3.2-0ubuntu16 0 500 http://dk.archive.ubuntu.com hardy/main Packages 100 /var/lib/dpkg/status ** Affects: bash (Ubuntu) Importance: Undecided Status: New -- Bash malloc assertion https://bugs.launchpad.net/bugs/223828 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 223828] Re: Bash malloc assertion
Ok, this is a dupe of 219527 -- Bash malloc assertion https://bugs.launchpad.net/bugs/223828 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 219527] Re: Username completion crashes with libnss-ldap
Actually, tcsh shows this problem as well! $ tcsh puffin:~> ls ~ ...[snipped]... puffin:~> ls ~ free(5b3608) bad block. (memtop = 6a5000 membot = 5b3000) ...[snipped]... puffin:~> ls ~ ...[snipped]... It doesn't crash, but the free error is definitely not to be expected... The way I see this, either bash and tcsh both misuse NSS the same way, or, (more likely) there is a problem with nss ldap. -- Username completion crashes with libnss-ldap https://bugs.launchpad.net/bugs/219527 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 85033] Re: Spamprobe segfaults on bad mime input
Thank you for the reply! I think you misunderstood my intentions. I guess I confused matters by pointing to the broken fix in 1.4. Let's forget everything about 1.4, Edgy and Feisty, and start over :) This is the problem: Version 1.2a currently shipped with Dapper will segfault on bad mime input. This is the impact: Anyone can DoS a mail system running Dapper and Spamprobe by sending bad mime data (the mailer will, in common setups, queue the message that caused the segfault and re-try the delivery to spamprobe for a long long time). This is the solution: I sent a patch which fixes 1.2a. Can we include that solution (or any other solution) so that 1.2a in Dapper works? -- Spamprobe segfaults on bad mime input https://launchpad.net/bugs/85033 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 85033] Spamprobe segfaults on bad mime input
Public bug reported:
Binary package hint: spamprobe
In version 1.2a-1 from Ubuntu (and vanilla 1.2a) spamprobe can segfault
on certain Mime input.
The bug is in MimeDecoder.cc, around line 88:
unsigned int index = (unsigned)ch;
if (BASE64_CHARS[index] >= 0) {
ch is a signed char. If ch is negative, the (unsigned) cast will first
zero-extend the negative char to a negative int, and thereafter treat it
as unsigned, causing 'index' to be a very very large integer.
BASE64_CHARS only holds 256 entries and using 'index' as index in this
array causes the segfault.
The proper fix is to write:
unsigned int index = (unsigned char)ch;
if (BASE64_CHARS[index] >= 0) {
This completely fixes the problem.
Please note that spamprobe version 1.4 contains another fix for this
problem which, in my oppinion, is overly convoluted and only fixes the
real problem "by accident". I would recommend that the simple solution
above is added to the Ubuntu 1.2a spamprobe package.
** Affects: spamprobe (Ubuntu)
Importance: Undecided
Status: Unconfirmed
--
Spamprobe segfaults on bad mime input
https://launchpad.net/bugs/85033
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
