[rt-users] RT::Authen::ExternalAuth + mod_ssl = core dump

Dewhirst, Rob robdewhirst at gmail.com
Thu Mar 27 20:24:31 EDT 2014


This is just about as basic an RT install as you can get.  everything
was installed by CPAN and RPMs.

I can give you instructions or if you have a place I can put a 1-2GB
file I could probably just build a CentOS VM that exhibits the
problem.

On Thu, Mar 27, 2014 at 4:53 PM, Alex Vandiver <alexmv at bestpractical.com> wrote:
> On Thu, 2014-03-27 at 16:42 -0500, Dewhirst, Rob wrote:
>> RT 4.0.19 (because of RTIR)
>> mod_perl
>
> Interesting; we've seen another report of this previously, but I've been
> unable to replicate it.  It's presumably caused by a disagreement of
> mod_ssl with the SSL libraries that perl uses for LDAPS support -- and
> since mod_perl is in use, those two exist in the same process, and their
> disagreements lead to coredumps.  We addressed a similar problem with
> mod_ssl and TLS connections to Postgres early in the 4.0 series.
>
> The simple work-around is to switch from mod_perl to one of the fastcgi
> deployment strategies, which separates the mod_ssl OpenSSL stack from
> perl's LDAPS OpenSSL stack, allowing them to play well together.
>
> However, I'd love to have a simple replication strategy to help track
> this down and fix it.  How stock an RT install is this?  I presume
> you're running with the standard Apache and mod_perl installs from RPMs?
> Can you provide your RT::Authen::ExternalAuth configuration?
>  - Alex
>
> --
> RT Training - Dallas May 20-21
> http://bestpractical.com/training



More information about the rt-users mailing list