An LDAP secrets engine with hierarchical paths may be in use already on an existing versions of Vault, and further to an upgrade to 1.17.0 to 1.17.5 or on a completely new installation on those versions, after a restart is performed a panic and segmentation error is encountered where Vault fails to properly start. The outputs of the panic will resemble the entries below:
... vault[770235]: 2024-09-23T15:20:11.860Z [DEBUG] secrets.ldap.ldap_627e7d9b: no WAL entries found
... vault[770235]: 2024-09-23T15:20:11.910Z [INFO] secrets.ldap.ldap_627e7d9b: populating role rotation queue
... vault[770235]: panic: runtime error: invalid memory address or nil pointer dereference
... vault[770235]: [signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x6a17d09]
... vault[770235]: ... ... ...
... vault[770235]: ... truncated output before process exit.
This issue was fixed in Vault versions that are shipped with 0.13.1 or 0.14.1 and higher versions of the vault-plugin-secrets-openldap secrets mount.
Upgrade to Vault 1.17.6 or higher versions (1.18.1) in order to resolve the issue.
Refer to the Vaults CHANGELOG.md for a list of changes with each release.