Bug 250545

Summary: net/nss-pam-ldapd fails starttls and SSL connections to jumpcloud
Product: Ports & Packages Reporter: Henrik Hudson <ports>
Component: Individual Port(s)Assignee: Ryan Steinmetz <zi>
Status: New ---    
Severity: Affects Only Me CC: christian.schaettin, lwhsu
Priority: ---    
Version: Latest   
Hardware: Any   
OS: Any   

Description Henrik Hudson 2020-10-22 22:27:53 UTC 
I was trying to use the net/nss-pam-ldap to bind to ldap.jumpcloud.com with StartTLS. The nslcd daemon just dies. DEBUG logs show it when it's trying to step up the connection. Switching to ldaps:// also fails. ldap:// with 'ssl no' works fine.

nss_ldap and pam_ldap work fine using the same settings. ldapsearch with -ZZ also works fine.

FreeBSD 11.4 system with default port settings.

nss-ldapd on a Debian system works fine with StartTLS.
Comment 1 Henrik Hudson 2020-10-23 01:39:46 UTC 
I should add that my 11.4 is built with openssl. I have 12.1 system that uses openssl base builds and it works fine with the same configuration.

The 11.4 seg faults.
Comment 2 Li-Wen Hsu freebsd_committer freebsd_triage 2020-10-23 03:31:57 UTC 
Do you mean net/nss-pam-ldapd?
Comment 3 Henrik Hudson 2020-10-23 04:14:17 UTC 
Dogh. Yeah, that's the one.