Date: Sun, 03 Jan 2021 21:36:11 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 252393] www/nginx: spnego-http-auth broken by r552734 Message-ID: <bug-252393-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D252393 Bug ID: 252393 Summary: www/nginx: spnego-http-auth broken by r552734 Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: joneum@FreeBSD.org Reporter: topical@gmx.net Assignee: joneum@FreeBSD.org Flags: maintainer-feedback?(joneum@FreeBSD.org) HTTP_AUTH_KRB5 requires either GSSAPI_HEIMDAL or GSSAPI_MIT, i.e. non-base Kerberos. In both cases, the spnego-http-auth module cannot be loaded. "service nginx start" yields: nginx: [emerg] dlopen() "/usr/local/libexec/nginx/ngx_http_auth_spnego_module.so" failed (/usr/local/libexec/nginx/ngx_http_auth_spnego_module.so: Undefined symbol "__gss_krb5_mechanism_oid_desc") in /usr/local/etc/nginx/nginx.conf:16 Before r552734, you could choose GSSAPI_BASE instead, which worked perfectl= y. I assume that the nginx module depends on wrong kerberos library. Any idea how to fix that? Using base Kerberos again would probably be best,= but according to r546696 this isn't an option anymore. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-252393-7788>