DO NOT REPLY [Bug 18756] - Apache core dump when using LDAP authentification.

22 Oct 2003 16:55:43 -0000 

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=18756>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=18756

Apache core dump when using LDAP authentification.





------- Additional Comments From [EMAIL PROTECTED]  2003-10-22 16:58 -------
Hello All,

I just compiled Apache 2.0.47 using ldap modules on Solaris with ldap libraires 
generated by compiling OpenLDAP 2.1.23. Apache core dump systematically in the 
mod_auth_ldap_parse_url function. Apparently the ldap url is never correctly 
parsed.

When I'm trying to access a page protected by an LDAP .htaccess, 
the child crashs and generates the following errors log on LDAP url parsing 
with strange server and port info:
[Wed Oct 22 17:52:32 2003] [debug] prefork.c(1037): AcceptMutex: pthread
(default: pthread)
[Wed Oct 22 17:52:39 2003] [debug] mod_auth_ldap.c(737): [25927] auth_ldap url 
parse: `ldap://myserver:389/mysearchbase?sAMAccountName?sub?(objectClass=*)'
[Wed Oct 22 17:52:39 2003] [debug] mod_auth_ldap.c(758): [25927] auth_ldap url 
parse: Host: mysearchbase
[Wed Oct 22 17:52:39 2003] [debug] mod_auth_ldap.c(760): [25927] auth_ldap url 
parse: Port: 1230072
[Wed Oct 22 17:52:40 2003] [notice] child pid 25927 exit signal Segmentation 
fault (11)

When I include the LDAP restrictions in my httpd.conf file, apachectl core 
dumps in the LDAP url parsing too. Here is the gdb traces:

#0  0x0002ae14 in mod_auth_ldap_parse_url (cmd=0xffbefbd8, config=0xdfb20, 
    url=0xdfc20 "ldap://myserver:389/searchBase?sAMAccountName?sub?
(objectClass=*)") at mod_auth_ldap.c:764
764         ap_log_error(APLOG_MARK, APLOG_DEBUG|APLOG_NOERRNO, 0,

My configure options were:
./configure --prefix=/usr/local/apache2_withldap --enable-so --with-ldap --
enable-ldap --enable-auth-ldap --libdir=/usr/local/openldap-2.1.23/li
b --includedir=/usr/local/openldap-2.1.23/include
 
Here is my .htaccess file:
AuthName "RCS Staff only"
AuthType Basic
AuthLDAPEnabled on
AuthLDAPAuthoritative on
#AuthLDAPBindDN username
#AuthLDAPBindPassword password
AuthLDAPURL "ldap://myserver:389/mysearchbase?sAMAccountName?sub(objectClass=*)"
require valid-user 

I followed the temporary workaround (disabling ldap cache) and recompile Apache 
after adding the last patch without success.

Christian

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to