5795 – Modification of cn=config prevents to bind at next directory restart

Issue 5795 - Modification of cn=config prevents to bind at next directory restart

Summary: Modification of cn=config prevents to bind at next directory restart

Status:	VERIFIED FIXED

Alias:	None

Product:	OpenLDAP
Classification:	Unclassified
Component:	slapd (show other issues)
Version:	2.4.11
Hardware:	All All

Importance:	--- normal
Target Milestone:	---
Assignee:	OpenLDAP project

URL:
Keywords:

Depends on:
Blocks:

Reported:	2008-11-06 14:23 UTC by emmanuel.duru@atosorigin.com
Modified:	2014-08-01 21:03 UTC (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.

Description emmanuel.duru@atosorigin.com 2008-11-06 14:23:01 UTC

Full_Name: Emmanuel Duru
Version: 2.4.11
OS: Windows
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (80.78.0.137)


I have set a rootdn on cn=config which is a real entry
(cn=admin,ou=somewhere,o=myorg,c=fr).
I bind with this DN.
I perform a change on cn=config (change the log level).
At next slapd startup, I get:
PROXIED attributeDescription "OU" inserted.
PROXIED attributeDescription "O" inserted.
PROXIED attributeDescription "C" inserted.
and then when trying to bind, I get an invalid credentials error (49).
The problem seems to come from modifiersname in cn=config entry, because if I
delete this attribute and restarts slapd, all is fine.

Comment 1 Howard Chu 2008-11-06 14:48:50 UTC

emmanuel.duru@atosorigin.com wrote:
> Full_Name: Emmanuel Duru
> Version: 2.4.11
> OS: Windows
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (80.78.0.137)
>
>
> I have set a rootdn on cn=config which is a real entry
> (cn=admin,ou=somewhere,o=myorg,c=fr).
> I bind with this DN.
> I perform a change on cn=config (change the log level).
> At next slapd startup, I get:
> PROXIED attributeDescription "OU" inserted.
> PROXIED attributeDescription "O" inserted.
> PROXIED attributeDescription "C" inserted.
> and then when trying to bind, I get an invalid credentials error (49).
> The problem seems to come from modifiersname in cn=config entry, because if I
> delete this attribute and restarts slapd, all is fine.

Ah, thanks for this. You're seeing the same as #5783, but you've provided much 
more useful information here.

-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/

Comment 2 Howard Chu 2008-11-06 15:28:13 UTC

hyc@symas.com wrote:
> emmanuel.duru@atosorigin.com wrote:
>> Full_Name: Emmanuel Duru
>> Version: 2.4.11
>> OS: Windows
>> URL: ftp://ftp.openldap.org/incoming/
>> Submission from: (NULL) (80.78.0.137)
>>
>>
>> I have set a rootdn on cn=config which is a real entry
>> (cn=admin,ou=somewhere,o=myorg,c=fr).
>> I bind with this DN.
>> I perform a change on cn=config (change the log level).
>> At next slapd startup, I get:
>> PROXIED attributeDescription "OU" inserted.
>> PROXIED attributeDescription "O" inserted.
>> PROXIED attributeDescription "C" inserted.
>> and then when trying to bind, I get an invalid credentials error (49).
>> The problem seems to come from modifiersname in cn=config entry, because if I
>> delete this attribute and restarts slapd, all is fine.
>
> Ah, thanks for this. You're seeing the same as #5783, but you've provided much
> more useful information here.
>
Now fixed in HEAD.

-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/

Comment 3 Howard Chu 2008-11-06 15:29:10 UTC

changed notes
changed state Open to Closed

Comment 4 Quanah Gibson-Mount 2008-11-10 22:31:40 UTC

changed notes

Comment 5 OpenLDAP project 2014-08-01 21:03:34 UTC

dup #5783, fixed in HEAD
fixed in RE24