[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#5599) slapd dies on erroneous MOD input

To: openldap-its@OpenLDAP.org
Subject: (ITS#5599) slapd dies on erroneous MOD input
From: suomi@ayni.com
Date: Mon, 7 Jul 2008 08:32:22 GMT

Full_Name: suomi hasler
Version: 2.4.8-3
OS: fedora 9
URL: http://www.ayni.com/slap-prob.txt
Submission from: (NULL) (194.158.243.162)


use perl-LDAP-0.34-4.fc9.noarch to communicate with the ldap server

bind to the cn=config subtree

in this configuration, change this entry:
dn="olcDatabase={-1}frontend,cn=config"
which is an olcAccess with the original value of: 
{10}to dn.subtree="ou=postfix,dc=mydom,dc=com"  by
dn.base="cn=myname,ou=pam-ldap,dc=mydom,dc=com" write  by
dn.base="cn=postfix,ou=postfix,dc=mydom,dc=com" read  by self write  by
anonymous auth  by users none

to the following (erroneous) value (note the missing opening brace at the
start)

10}to dn.subtree="ou=postfix,dc=mydom,dc=com"  by
dn.base="cn=myname,ou=pam-ldap,dc=mydom,dc=com" write  by
dn.base="cn=postfix,ou=postfix,dc=mydom,dc=com" read  by self write  by
anonymous auth  by users none

on the interface you get:
<snip>
Modifying Attributes of DN: olcDatabase={-1}frontend,cn=config

Modify-Result-Code: 80

Modify Attribute Error: ResultCode: 80, ErrorMessage: <olcAccess> handler exited
with 1


Return Code from Modify Attribute: 80
Message: LDAP_OTHER: An unknown error has occurred

MessageID: 4
</snip>

some seconds later, slapd fails, that is, it does not reply to requests any
more, and must be stopped using kill -9 pid.
thereafter, the db is garbled but can be recovered by

slapd -d255 -uldap

after that you may start slapd using the normal procedures:
/etc/init.d/ldap start


reproduceability: always

Prev by Date: Re: (ITS#5540) Normalization assertion in attr.c
Next by Date: Re: (ITS#5594) assertion thrown in daemon.c
Index(es):
- Chronological
- Thread