Anton Bobrov wrote, On 2008-07-20 07:07:
> Nelson Bolyard wrote:
>>> 6661:3516: open("/usr/local/ldapcsdk/lib/libprldap50.so", O_RDONLY) = 3
>> Is this related to perl? Isn't prldap a plugin for perl?
>
> no, it is not. libprldap is LDAP C SDK lib built on top of
> NSPR functionality.
Thanks for that info.
> related to comment found in the bug description re libldap
> using some default /etc/ldap.conf for any config stuff is
> completely bogus, it does not. that config file normally
> belongs to pam-ldap/nss-ldap and that is what most likely
> calling to libldap/prldap/ssldap in your case
I would understand that if the complaint was about /bin/login or su,
but why/how does PAM-anything get invoked in Firefox?
Firefox is not an I&A program in Solaris's TCB.
> and the args it passes to LDAP C SDK API [ which are then passed to NSS
> API ] are likely based on its config file
Yes, I'm sure that some code is invoking LDAP and passing that directory
name, which ldap then passes on to NSS. The question is: what code in
firefox invokes ldap?
> i do not have much experience with pam-ldap/nss-ldap but would
> guess that you either can solve the issue by tweaking its
> config file or fixing pam-ldap/nss-ldap appropriately if
> no config tweaks are available to do what you wanna do.
I think we need a stack trace at the point of the call that attempts to
open an NSS database.
I also observe that the truss output shows the process trying to stat
the OpenSSL shared library. I am certain that Firefox does not use
OpenSSL. Perhaps some Sun library attempts to use NSS and then attempts
to use OpenSSL ?
_______________________________________________
dev-tech-ldap mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-ldap
