[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#521792: marked as done (apache2.2-common: Segfault in authnz_ldap module)

Your message dated Mon, 13 Apr 2009 00:48:52 -0700
with message-id <20090413074852.GN18723@jade.home>
and subject line closing
has caused the Debian Bug report #521792,
regarding apache2.2-common: Segfault in authnz_ldap module
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
521792: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=521792
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: apache2.2-common
Version: 2.2.11-2
Severity: normal

When enabling authnz_ldap with `a2enmod authnz_ldap` and using it in
config to authenticate users, apache2 child process segfaults. It worked
fine until yesterday when apache2 was restarted.

Used config:
  AuthType Basic
  AuthBasicProvider ldap
  AuthName "Fladi.at NAGIOS"
  AuthLDAPURL "ldap://127.0.0.1/dc=fladi,dc=at?uid";
  AuthLDAPGroupAttribute uniqueMember
  AuthLDAPGroupAttributeIsDN on
  Require ldap-group cn=Nagios,ou=Apache,ou=groups,dc=fladi,dc=at

Backtrace:
FladischerMichael@uni { ~ }$ sudo APACHE_RUN_USER=www-data
APACHE_RUN_GROUP=www-data  gdb /usr/sbin/apache2
GNU gdb 6.8-debian
Copyright (C) 2008 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later
<http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show
copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu"...
(gdb) run -X
Starting program: /usr/sbin/apache2 -X
[Thread debugging using libthread_db enabled]
[New Thread 0x7fbee5fac740 (LWP 26274)]
Finding last valid log LSN: file: 1 offset 2788173
Recovery starting from [1][2780033]
Recovery complete at Mon Mar 30 08:59:03 2009
Maximum transaction ID 80000020 Recovery checkpoint [1][2790189]
warning: Lowest section in /usr/lib/libicudata.so.40 is .hash at
0000000000000120
[New Thread 0x7fbec2842950 (LWP 26277)]
[Thread 0x7fbec2842950 (LWP 26277) exited]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fbee5fac740 (LWP 26274)]
uldap_connection_init (r=0x1377f08, ldc=0x86f8a0) at
/build/buildd/apache2-2.2.11/modules/ldap/util_ldap.c:261
261     /build/buildd/apache2-2.2.11/modules/ldap/util_ldap.c: No such
file or directory.
  in /build/buildd/apache2-2.2.11/modules/ldap/util_ldap.c
(gdb) bt
#0  uldap_connection_init (r=0x1377f08, ldc=0x86f8a0) at
/build/buildd/apache2-2.2.11/modules/ldap/util_ldap.c:261
#1  0x00007fbedc7efb3d in uldap_connection_open (r=0x1377f08, ldc=0x0)
at /build/buildd/apache2-2.2.11/modules/ldap/util_ldap.c:353
#2  0x00007fbedc7f0305 in uldap_cache_checkuserid (r=0x1377f08,
ldc=0x86f8a0, url=0x0, basedn=0xb29bb0 "dc=fladi,dc=at", scope=2,
attrs=0xb29bc0, 
    filter=0x7fffedfc0620 "(&(objectclass=*)(uid=FladischerMichael))",
bindpw=0x138d2ba "obscured", binddn=0x7fffedfc2620,
retvals=0x7fffedfc2628)
    at /build/buildd/apache2-2.2.11/modules/ldap/util_ldap.c:954
#3  0x00007fbee0cbc5f4 in authn_ldap_check_password (r=0x1377f08,
user=0x138d2c8 "FladischerMichael", password=0x138d2ba "obscured")
    at /build/buildd/apache2-2.2.11/modules/aaa/mod_authnz_ldap.c:399
#4  0x00007fbee14d0058 in authenticate_basic_user (r=0x1377f08) at
/build/buildd/apache2-2.2.11/modules/aaa/mod_auth_basic.c:230
#5  0x0000000000434183 in ap_run_check_user_id (r=0x1377f08) at
/build/buildd/apache2-2.2.11/server/request.c:71
#6  0x0000000000436404 in ap_process_request_internal (r=0x1377f08) at
/build/buildd/apache2-2.2.11/server/request.c:214
#7  0x0000000000449968 in ap_process_request (r=0x1377f08) at
/build/buildd/apache2-2.2.11/modules/http/http_request.c:280
#8  0x00000000004469b8 in ap_process_http_connection (c=0x134f448) at
/build/buildd/apache2-2.2.11/modules/http/http_core.c:190
#9  0x0000000000440613 in ap_run_process_connection (c=0x134f448) at
/build/buildd/apache2-2.2.11/server/connection.c:43
#10 0x000000000044df80 in child_main (child_num_arg=<value optimized
out>) at /build/buildd/apache2-2.2.11/server/mpm/prefork/prefork.c:680
#11 0x000000000044e298 in make_child (s=0x789938, slot=0) at
/build/buildd/apache2-2.2.11/server/mpm/prefork/prefork.c:721
#12 0x000000000044e8b0 in ap_mpm_run (_pconf=<value optimized out>,
plog=<value optimized out>, s=0x789938) at
/build/buildd/apache2-2.2.11/server/mpm/prefork/prefork.c:997
#13 0x0000000000425d65 in main (argc=2, argv=0x7fffedfc2be8) at
/build/buildd/apache2-2.2.11/server/main.c:742
(gdb) 



-- Package-specific info:
List of /etc/apache2/mods-enabled/*.load:
  000_auth_pgsql alias auth_basic auth_pam authn_file authnz_ldap
  authz_default authz_groupfile authz_host authz_user autoindex bt
  cache cgi dav dav_fs dav_lock dav_svn deflate dir disk_cache env
  geoip info ldap mime negotiation perl php5 proxy proxy_ajp
  proxy_http python rewrite setenvif ssl status userdir

-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.26-1-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_AT.UTF-8, LC_CTYPE=de_AT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages apache2.2-common depends on:
ii  apache2-utils          2.2.11-2          utility programs for webservers
ii  libapr1                1.3.3-3           The Apache Portable Runtime Librar
ii  libaprutil1            1.3.4+dfsg-1      The Apache Portable Runtime Utilit
ii  libc6                  2.9-6             GNU C Library: Shared libraries
ii  libmagic1              5.00-1            File type determination library us
ii  libssl0.9.8            0.9.8g-15         SSL shared libraries
ii  libuuid1               1.41.3-1          universally unique id library
ii  lsb-base               3.2-22            Linux Standard Base 3.2 init scrip
ii  mime-support           3.44-1            MIME files 'mime.types' & 'mailcap
ii  net-tools              1.60-23           The NET-3 networking toolkit
ii  perl                   5.10.0-19         Larry Wall's Practical Extraction 
ii  procps                 1:3.2.7-11        /proc file system utilities
ii  zlib1g                 1:1.2.3.3.dfsg-13 compression library - runtime

Versions of packages apache2.2-common recommends:
ii  ssl-cert                      1.0.23     simple debconf wrapper for OpenSSL

Versions of packages apache2.2-common suggests:
pn  apache2-doc                  <none>      (no description available)
pn  apache2-suexec | apache2-sue <none>      (no description available)
ii  lynx-cur [www-browser]       2.8.7pre1-1 Text-mode WWW Browser with NLS sup
ii  w3m [www-browser]            0.5.2-2+b1  WWW browsable pager with excellent

Versions of packages apache2.2-common is related to:
pn  apache2-mpm-event             <none>     (no description available)
pn  apache2-mpm-itk               <none>     (no description available)
ii  apache2-mpm-prefork           2.2.11-2   Apache HTTP Server - traditional n
pn  apache2-mpm-worker            <none>     (no description available)

-- no debconf information

--- End Message ---
--- Begin Message --- 
Version: 2.2.11-3

Bug reporter said it's fixed.

-- 
_________________________
Ryan Niebur
ryanryan52@gmail.com

Attachment: signature.asc
Description: Digital signature


--- End Message ---
Reply to: