[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: dnNormalize2 failed assertion (sasl_regexp?)

To: <sfrost@snowman.net>
Subject: Re: dnNormalize2 failed assertion (sasl_regexp?)
From: "Pierangelo Masarati" <ando@sys-net.it>
Date: Thu, 6 Feb 2003 17:50:41 +0100 (CET)
Cc: <openldap-devel@OpenLDAP.org>
Importance: Normal
In-reply-to: <20030206155132.GH484@ns.snowman.net>
References: <20030206010220.GG484@ns.snowman.net> <20030206155132.GH484@ns.snowman.net>

> * Stephen Frost (sfrost@snowman.net) wrote:
>>   My slapd is crashing with the following message:
>> slapd:
>> /data1/sfrost/debs/openldap21/openldap21-2.1.12/servers/slapd/dn.c:379:
>> dnNormalize2: Assertion `strlen( val->bv_val ) == val->bv_len' failed.
>>
>>   This is running 2.1.12 (obviously).  Prior to this is:
>>
>> >>> dnPrettyNormal: <>
>> <<< dnPrettyNormal: <>, <>
>> do_sasl_bind: dn () mech GSSAPI
>> ==> sasl_bind: dn="" mech=<continuing> datalen=113
>> SASL Canonicalize [conn=2]:
>> authzid="dn:uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth"
>> slap_sasl_getdn:
>> id=dn:uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth
>> >>> dnNormalize: <uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth>
>> => ldap_bv2dn(uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth,0) <=
>> ldap_bv2dn(uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth,0)=0
>
> Just in case anyone actually *reads* this list, I've found out some more
> rather interesting things:
>
> 738     in getdn.c
> (gdb) p *bv
> $3 = {bv_len = 48, bv_val = 0x81418cf
> "uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth\b"} (gdb) p
> strlen(bv->bv_val)
> $4 = 49
>
> No clue where the \b is coming from.  The command I'm using is:
>
> sfrost@ldap1:/home/sfrost> ldapsearch -X
> dn:uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth SASL/GSSAPI
> authentication started
>
> Other fun things from the logs...
>
> Feb  6 09:38:35 syslog@ldap1 slapd[19873]: do_sasl_bind: dn () mech
> GSSAPI Feb  6 09:38:35 syslog@ldap1 slapd[19873]: ==> sasl_bind: dn=""
> mech=<continuing> datalen=113 Feb  6 09:38:35 syslog@ldap1 slapd[19873]:
> SASL Canonicalize [conn=0]:
> authzid="dn:uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=aut" Feb  6
> 09:38:35 syslog@ldap1 slapd[19873]: slap_sasl_getdn:
> id=dn:uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=auth Feb  6 09:38:35
> syslog@ldap1 slapd[19873]: >>> dnNormalize:
> <uid=sfrost/ldap,cn=SNOWMAN.NET,cn=gssapi,cn=aut>
>
> Note the missing 'h', which is because of the \b.  Not sure why I didn't
> see it before.
>
> Ok, so, I contend that the assert that's there is just plain wrong.  The
> length is being passed around, who cares what strlen says?  I'm guessing
> this thing isn't actually required to be NULL-terminated (why does it
> need to be, you've got the length!).  Things appear to work reasonably
> when it's not, in fact.

The assert is there to trap situations like this.  If you don't
like it, compile with -DNDEBUG.  The strlen MUST work because
all the dn handling does terminate strings with '\0', so the assert
MUST succeed or something mucked with the DN in an erroneous manner
(as in this case: who put the '\b' there?).  I suggest you let alone
the asserts and try to find out who's playing with the DN strings.

P.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it

Follow-Ups:
- Re: dnNormalize2 failed assertion (sasl_regexp?)
  - From: Stephen Frost <sfrost@snowman.net>

References:
- dnNormalize2 failed assertion (sasl_regexp?)
  - From: Stephen Frost <sfrost@snowman.net>
- Re: dnNormalize2 failed assertion (sasl_regexp?)
  - From: Stephen Frost <sfrost@snowman.net>

Prev by Date: Re: dnNormalize2 failed assertion (sasl_regexp?)
Next by Date: Re: dnNormalize2 failed assertion (sasl_regexp?)
Index(es):
- Chronological
- Thread