Bug 250545 - net/nss-pam-ldapd fails starttls and SSL connections to jumpcloud
Summary: net/nss-pam-ldapd fails starttls and SSL connections to jumpcloud
Status: New
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Ryan Steinmetz
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2020-10-22 22:27 UTC by Henrik Hudson
Modified: 2020-10-23 04:18 UTC (History)
1 user (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Henrik Hudson 2020-10-22 22:27:53 UTC
I was trying to use the net/nss-pam-ldap to bind to ldap.jumpcloud.com with StartTLS. The nslcd daemon just dies. DEBUG logs show it when it's trying to step up the connection. Switching to ldaps:// also fails. ldap:// with 'ssl no' works fine.

nss_ldap and pam_ldap work fine using the same settings. ldapsearch with -ZZ also works fine.

FreeBSD 11.4 system with default port settings.

nss-ldapd on a Debian system works fine with StartTLS.
Comment 1 Henrik Hudson 2020-10-23 01:39:46 UTC
I should add that my 11.4 is built with openssl. I have 12.1 system that uses openssl base builds and it works fine with the same configuration.

The 11.4 seg faults.
Comment 2 Li-Wen Hsu freebsd_committer 2020-10-23 03:31:57 UTC
Do you mean net/nss-pam-ldapd?
Comment 3 Henrik Hudson 2020-10-23 04:14:17 UTC
Dogh. Yeah, that's the one.