ports/124321: KDE logins do not work with nsswitch LDAP enabled

Daniel Eischen deischen at FreeBSD.org
Thu Jun 5 20:20:07 UTC 2008 

>Number:         124321
>Category:       ports
>Synopsis:       KDE logins do not work with nsswitch LDAP enabled
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu Jun 05 20:20:06 UTC 2008
>Closed-Date:
>Last-Modified:
>Originator:     Daniel Eischen
>Release:        8.0-current
>Organization:
>Environment:
FreeBSD f4i.clc.gdeb.com 8.0-CURRENT FreeBSD 8.0-CURRENT #1: Tue May 27 22:50:54 UTC 2008     root at f4i.foo.bar.com:/opt/FreeBSD/obj/opt/FreeBSD/src/src/sys/f4i  amd64
>Description:
KDE logins do not work when ldap is enabled in nsswitch.conf.
I have rebuilt all ports (portupgrade -af) with both openldap
23 and 24 (with WANT_OPENLDAP_VER=24 in /etc/make.conf).  The
same problem exists regardless of which ldap is installed.

GNOME (gdm) and xdm all work fine with ldap enabled.  kdm does
not work, not even for local (passwd files) users.

KDE (kdm) initially accepts the user id and password and
starts to login, but after a brief mouse pointer busy timer,
it goes right back to the login screen.  KDE's login splash
screen never appears.  Every time a login is attempted, the
following goes to /var/log/kdm-bin.log:

KCrash: Application 'kdmgreet' crashing...
Warning: connect() failed: : No such file or directory
KCrash cannot reach kdeinit, launching directly.
X Error of failed request:  BadValue (integer parameter out of range for operation)
  Major opcode of failed request:  113 (X_KillClient)
  Value in failed request:  0x600009
  Serial number of failed request:  182
  Current serial number in output stream:  190

If I remove ldap from /etc/nsswitch.conf, then KDE works (only for
local users obviously).

I do not know how to further debug the problem, but can try other things if necessary.

Other relevent information:

f4i.foo.bar.com [51] $ cat /etc/nsswitch.conf 
#
# nsswitch.conf(5) - name service switch configuration file
# $FreeBSD: src/etc/nsswitch.conf,v 1.1 2006/05/03 15:14:47 ume Exp $
#
group: files ldap
hosts: files dns
networks: files
passwd: files ldap
shells: files
services: files
protocols: files
rpc: files

f4i.foo.bar.com [52] $ pkg_info | grep ldap
nss_ldap-1.257      RFC 2307 NSS module
openldap-client-2.3.41 Open source LDAP client implementation
pam_ldap-1.8.4      A pam module for authenticating with LDAP

f4i.foo.bar.com [53] $ pkg_info | grep kde-3.5
kde-3.5.8_1         The "meta-port" for KDE

f4i.foo.bar.com [54] $ cat /etc/pam.d/kde 
#
# $FreeBSD: src/etc/pam.d/kde,v 1.7 2007/06/10 18:57:20 yar Exp $
#
# PAM configuration for the "kde" service
#

# auth
#auth           sufficient      pam_krb5.so             no_warn try_first_pass
#auth           sufficient      pam_ssh.so              no_warn try_first_pass
auth            required        pam_unix.so             no_warn try_first_pass

# account
account         required        pam_nologin.so
#account        required        pam_krb5.so
account         required        pam_unix.so

# session
#session        optional        pam_ssh.so
session         required        pam_permit.so

>How-To-Repeat:
Install KDE amd64 with ldap enabled.
>Fix:


>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-ports-bugs mailing list