Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-89699

Properly detect when OpenLDAP includes MozNSS-compatible shims

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 8.1.0-rc0, 8.0.5
    • Affects Version/s: None
    • Component/s: None
    • None
    • Server Security
    • Fully Compatible
    • ALL
    • v8.0, v7.0, v6.0
    • Security 2024-04-29, Security 2024-05-13, Security 2024-05-27, Security 2024-06-10, Security 2024-06-24, Security 2024-07-08, Security 2024-07-22, Security 2024-08-05, Security 2024-08-19

      RHEL 7.5+ (and by extension, Amazon Linux 2) link the single-threaded version of libldap by default. Additionally, this version of libldap has been patched to use OpenSSL but still relies on Mozilla NSS's db of certs. 

      The server needs to properly detect when libldap is still using MozNSS, which influences whether or not the LDAP connection pool can be used.

            Assignee:
            varun.ravichandran@mongodb.com Varun Ravichandran
            Reporter:
            varun.ravichandran@mongodb.com Varun Ravichandran
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: