On 01/12/2012 12:51 PM, Jonathan G. Underwood wrote:
> On 12/01/12 16:14, Pat Riehecky wrote:
>> I'm curious if the package from 6.2 (currently in the 6rolling tree -
>> version 2.4.23-20.el6) will perform better. The segfault you've reported
>> seems to indicate something kerberos related. There was a Critical
>> kerberos security update for 6 which you've got installed, I'm wondering
>> if the openldap packages from 6.2, which were built against a newer
>> kerberos library (but not the security update as that didn't exist at
>> the time) show the problem. Perhaps the newer build will resolve this
>> for you.
>>
>> If you can try the 2.4.23-20.el6 packages and let me know if those also
>> exhibit the problem, that would be great.
>>
>> I'm still somewhat curious on the 6.0 vs 6.1 difference here. I've heard
>> no reports of a problem with the 2.4.23-15.el6 ldap packages on 6.1, and
>> they've had them since the release. That's why they were chosen to fix
>> the IPA dependency issue. Does anyone else out there see this same
>> problem? Perhaps it is somehow local to the environment.
>
> Actually, it looks like the problem isn't the openldap packages, but 
> rather the autofs package.
>
> I've just installed the openldap updates, and also the 
> autofs-5.0.5-31.el6 package from SL 6.1 and, so far, everything is 
> back to working.
>
> Looking at the changelog in the specfile for autofs I see:
>
> * Thu Feb 3 2011 Ian Kent <[log in to unmask]> - 5.0.5-29
> - bz579963 - autmount maps stored in LDAP can not be read using simple
>   authenticated binds
>   - deal with Kerberos library dependency.
> - Related: rhbz#579963
>
> Unfortunately that bug report is locked, though.
>
> I'll continue testing, but it seems to me that you may want to 
> consider pushing this update to SL6.0.

This is VERY good information!  Thanks so much for finding it!

Pat

-- 
Pat Riehecky
Scientific Linux Developer