ldap_do_free_request: Assertion `lr->lr_refcnt == 1'
This bug report will be marked for expiration in 41 days if no further activity occurs. (find out why)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apache2 (Ubuntu) |
Incomplete
|
Undecided
|
Unassigned |
Bug Description
Using apache2 authnz_ldap against Active Directory with require ldap-group (after auth_kerb authentication) crashes apache2 when serving any request with:
[Thu Mar 02 16:43:21.251455 2023] [mpm_prefork:
[Thu Mar 02 16:43:21.251503 2023] [core:notice] [pid 3809200] AH00094: Command line: '/usr/sbin/apache2'
apache2: ../../.
This only happens with search base = ad root dsn and seems related to the extra search response items like the following to the user lookup query (traced with tshark), which are only returned when search base = ad root dsn.
Lightweight Directory Access Protocol
LDAPMessage searchResRef(2)
messageID: 2
protocolOp: searchResRef (19)
[Response To: 8]
[Time: 0.043273000 seconds]
Likely a bug related to openldap, so these are the ldap libs installed:
ii libldap-2.5-0:amd64 2.5.13+
ii libldap-common 2.5.13+
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: apache2 2.4.52-1ubuntu4.3
ProcVersionSign
Uname: Linux 5.19.0-32-generic x86_64
ApportVersion: 2.20.11-0ubuntu82.3
Architecture: amd64
CasperMD5CheckR
CurrentDesktop: LXQt
Date: Sat Mar 4 12:57:47 2023
SourcePackage: apache2
UpgradeStatus: Upgraded to jammy on 2022-07-09 (238 days ago)
tags: | removed: server-todo |
Changed in apache2 (Ubuntu): | |
status: | New → Incomplete |
Hi AZ,
Is this still an issue for you? openldap has been updated since this bug report, so perhaps this has been fixed in the update.