Summary: | www/mod_auth_kerb2: /usr/local/libexec/apache22/mod_auth_kerb.so: Undefined symbol "gsskrb5_register_acceptor_identity" | ||
---|---|---|---|
Product: | Ports & Packages | Reporter: | Helmut Ritter <FreeBSD-Bugzilla> |
Component: | Individual Port(s) | Assignee: | freebsd-apache (Nobody) <apache> |
Status: | Closed Overcome By Events | ||
Severity: | Affects Only Me | CC: | apache, freebsd-ports, freebsd, joneum, michael.osipov, w.schwarzenfeld |
Priority: | --- | Keywords: | needs-patch, needs-qa |
Version: | Latest | Flags: | koobs:
maintainer-feedback?
(apache) |
Hardware: | Any | ||
OS: | Any |
Description
Helmut Ritter
2015-02-09 14:35:09 UTC
Please don't assign bugs related to individual leaf ports to portmgr, thanks. (In reply to Antoine Brodin from comment #1) Pardon me, what is an "individual leaf port"? Helmut, this issue was incorrectly created with categories: 'Ports and Packages' / 'Package Infrastructure' It should have been created in: 'Ports and Packages' / 'Individual Port(s)' Antoine was referring to this --^ Thanks for explanation. I hope porttools will support 'submit' again soon, this would help me a lot to avoid such mistakes. :) Okay, so I've found the issue here, by looking back at old mailing list posts. FreeBSD uses a somewhat modified heimdal kerberos in base. Kerberos comes with a tool that tells compilers how to build kerberos-using libraries and programs. When FreeBSD modifies kerberos, they don't update the tool correctly. Ergo, the very simple one-line patch to this utility mentioned here in 2011, fixes it: https://lists.freebsd.org/pipermail/freebsd-apache/2011-April/002207.html So, on the solution -- It doesn't look like this was fixed in 8.x, at least according to the dates on: http://svnweb.freebsd.org/base/stable/8/kerberos5/ Further, on my 8.x machine, the official package for this port is also broken in the exact same way -- this doesn't get caught because it's a runtime failure, not a build-time one. Whomever maintains this port should probably add ifdefines to get around this, but the port *really should* be able to trust krb5-config. Your best bet is to manually patch that one file, and rebuild. This won't fix the OSes, but at least it'll unstick you. -Dan Mahoney I confirm that the changes in krb5-config fixes the issue. I've suggested a patch to -base in bug 198645. -Dan Everyone is advised to rather use https://github.com/modauthgssapi/mod_auth_gssapi. Port is available. High quality, not symbol issues. 9.3 RELEASE is gone. I think this is overcome by events. |