OpenLDAP
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

Viewing Incoming/5953
Full headers

From: michael@stroeder.com
Subject: slapd seg faults with SASL bind DIGEST-MD5
Compose comment
Download message
State:
0 replies:
5 followups: 1 2 3 4 5

Major security issue: yes  no

Notes:

Notification:


Date: Tue, 17 Feb 2009 15:15:57 +0000
From: michael@stroeder.com
To: openldap-its@OpenLDAP.org
Subject: slapd seg faults with SASL bind DIGEST-MD5
Full_Name: Michael Str.der
Version: 2.4.14
OS: SLES 10
URL: 
Submission from: (NULL) (193.197.158.1)


If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the
authz-regexp configuration is correct in slapd.conf

See GDB information below.

(gdb) info threads
  5 process 4888  0xffffe410 in __kernel_vsyscall ()
  4 process 4889  0xffffe410 in __kernel_vsyscall ()
  3 process 4890  0xffffe410 in __kernel_vsyscall ()
  2 process 4891  0xffffe410 in __kernel_vsyscall ()
* 1 process 4892  0xb7e89c2f in __db_get_flags () from
/appserver/bdb-4.6/lib/libdb-4.6.so

(gdb) thread apply all bt
Thread 5 (process 4888):
#0  0xffffe410 in __kernel_vsyscall ()
#1  0xb7d8b5d8 in pthread_join () from /lib/libpthread.so.0
#2  0xb7f356db in ldap_pvt_thread_join (thread=3023272864, thread_return=0x0) at
thr_posix.c:197
#3  0x080773fb in ?? ()
#4  0xb4337ba0 in ?? ()
#5  0x00000000 in ?? ()

Thread 4 (process 4889):
#0  0xffffe410 in __kernel_vsyscall ()
#1  0xb7b5957e in __lll_mutex_lock_wait () from /lib/libc.so.6
#2  0xb7ae4e63 in _L_mutex_lock_41 () from /lib/libc.so.6
#3  0xb4334314 in ?? ()
#4  0xb4334314 in ?? ()
#5  0x00000032 in ?? ()
#6  0x00000021 in ?? ()
#7  0xb7f2611c in ?? () from /appserver/openldap-2.4/lib/liblber-2.4.so.2
#8  0x00000001 in ?? ()
#9  0x0000003c in ?? ()
#10 0xb4335318 in ?? ()
#11 0xb7f2173e in lutil_debug (debug=-1271708908, level=-1212492416,
fmt=0x8139194 "daemon: activity on %d descriptor%s\n") at debug.c:72
Backtrace stopped: frame did not save the PC

Thread 3 (process 4890):
#0  0xffffe410 in __kernel_vsyscall ()
#1  0xb7d8e056 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb7f357e0 in ldap_pvt_thread_cond_wait (cond=0x81eca6c, mutex=0x81eca54) at
thr_posix.c:277
#3  0xb7f3449b in ldap_int_thread_pool_wrapper (xpool=0x81eca50) at tpool.c:654
#4  0xb7d8a2ab in start_thread () from /lib/libpthread.so.0
#5  0xb7b4da4e in clone () from /lib/libc.so.6

Thread 2 (process 4891):
#0  0xffffe410 in __kernel_vsyscall ()
#1  0xb7d8e056 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb7f357e0 in ldap_pvt_thread_cond_wait (cond=0x81eca6c, mutex=0x81eca54) at
thr_posix.c:277
#3  0xb7f3449b in ldap_int_thread_pool_wrapper (xpool=0x81eca50) at tpool.c:654
#4  0xb7d8a2ab in start_thread () from /lib/libpthread.so.0
#5  0xb7b4da4e in clone () from /lib/libc.so.6

Thread 1 (process 4892):
#0  0xb7e89c2f in __db_get_flags () from /appserver/bdb-4.6/lib/libdb-4.6.so
#1  0xb7a81385 in ?? () from /usr/lib/sasl2/libsasldb.so
#2  0x082f9570 in ?? ()
#3  0x00000000 in ?? ()

Followup 1

Download message
Date: Tue, 17 Feb 2009 12:54:34 -0800
From: Quanah Gibson-Mount <quanah@zimbra.com>
To: michael@stroeder.com, openldap-its@openldap.org
Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
--On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote:

> Full_Name: Michael Str?der
> Version: 2.4.14
> OS: SLES 10
> URL:
> Submission from: (NULL) (193.197.158.1)
>
>
> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though the
> authz-regexp configuration is correct in slapd.conf

What makes you think this is a bug with OpenLDAP and not cyrus-sasl?

--Quanah


--

Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
--------------------
Zimbra ::  the leader in open source messaging and collaboration



Followup 2

Download message
Date: Wed, 18 Feb 2009 10:07:32 +0100
From: =?ISO-8859-1?Q?Michael_Str=F6der?= <michael@stroeder.com>
To: Quanah Gibson-Mount <quanah@zimbra.com>
CC: openldap-its@openldap.org
Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
Quanah Gibson-Mount wrote:
> --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com wrote:
> 
>> Full_Name: Michael Str?der
>> Version: 2.4.14
>> OS: SLES 10
>> URL:
>> Submission from: (NULL) (193.197.158.1)
>>
>>
>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even though
the
>> authz-regexp configuration is correct in slapd.conf
> 
> What makes you think this is a bug with OpenLDAP and not cyrus-sasl?

Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3
which was running on the same machine before. With 2.3 when this file
was missing only this message was sent to syslog: "unable to open
Berkeley db /etc/sasldb2". Today it seg faults.

Ciao, Michael.



Followup 3

Download message
Date: Wed, 18 Feb 2009 01:17:06 -0800
From: Howard Chu <hyc@symas.com>
To: michael@stroeder.com
CC: openldap-its@openldap.org
Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
michael@stroeder.com wrote:
> Quanah Gibson-Mount wrote:
>> --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com
wrote:
>>
>>> Full_Name: Michael Str?der
>>> Version: 2.4.14
>>> OS: SLES 10
>>> URL:
>>> Submission from: (NULL) (193.197.158.1)
>>>
>>>
>>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even
though the
>>> authz-regexp configuration is correct in slapd.conf
>> What makes you think this is a bug with OpenLDAP and not cyrus-sasl?
>
> Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3
> which was running on the same machine before. With 2.3 when this file
> was missing only this message was sent to syslog: "unable to open
> Berkeley db /etc/sasldb2". Today it seg faults.

What version of BDB was libsasl built with? What version was OpenLDAP built
with?
-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/



Followup 4

Download message
Date: Wed, 18 Feb 2009 16:42:12 +0100
From: =?ISO-8859-1?Q?Michael_Str=F6der?= <michael@stroeder.com>
To: openldap-its@openldap.org
Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
hyc@symas.com wrote:
> michael@stroeder.com wrote:
>> Quanah Gibson-Mount wrote:
>>> --On Tuesday, February 17, 2009 3:15 PM +0000 michael@stroeder.com
wrote:
>>>
>>>> Full_Name: Michael Str?der
>>>> Version: 2.4.14
>>>> OS: SLES 10
>>>> URL:
>>>> Submission from: (NULL) (193.197.158.1)
>>>>
>>>>
>>>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults even
though the
>>>> authz-regexp configuration is correct in slapd.conf
>>> What makes you think this is a bug with OpenLDAP and not
cyrus-sasl?
>> Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP 2.3
>> which was running on the same machine before. With 2.3 when this file
>> was missing only this message was sent to syslog: "unable to open
>> Berkeley db /etc/sasldb2". Today it seg faults.
> 
> What version of BDB was libsasl built with? What version was OpenLDAP built
with?

The BDB versions differ but it works when creating
/usr/lib/sasl2/slapd.conf with "auxprop_plugin: slapd".

IIRC it also worked with OpenLDAP 2.3.

Ciao, Michael.



Followup 5

Download message
Date: Wed, 18 Feb 2009 15:00:23 -0800
From: Howard Chu <hyc@symas.com>
To: michael@stroeder.com
CC: openldap-its@openldap.org
Subject: Re: (ITS#5953) slapd seg faults with SASL bind DIGEST-MD5
michael@stroeder.com wrote:
> hyc@symas.com wrote:
>> michael@stroeder.com wrote:
>>> Quanah Gibson-Mount wrote:
>>>> --On Tuesday, February 17, 2009 3:15 PM +0000
michael@stroeder.com wrote:
>>>>
>>>>> Full_Name: Michael Str?der
>>>>> Version: 2.4.14
>>>>> OS: SLES 10
>>>>> URL:
>>>>> Submission from: (NULL) (193.197.158.1)
>>>>>
>>>>>
>>>>> If /usr/lib/sasl2/slapd.conf is missing 2.4.14 seg faults
even though the
>>>>> authz-regexp configuration is correct in slapd.conf
>>>> What makes you think this is a bug with OpenLDAP and not
cyrus-sasl?
>>> Hmm, I'm not really sure. But IIRC this didn't happen with OpenLDAP
2.3
>>> which was running on the same machine before. With 2.3 when this
file
>>> was missing only this message was sent to syslog: "unable to open
>>> Berkeley db /etc/sasldb2". Today it seg faults.
>> What version of BDB was libsasl built with? What version was OpenLDAP
built with?
>
> The BDB versions differ but it works when creating
> /usr/lib/sasl2/slapd.conf with "auxprop_plugin: slapd".
>
> IIRC it also worked with OpenLDAP 2.3.

Most likely the BDB versions were the same on your 2.3 build. You cannot have 
multiple BDB libraries in the same process (unless you build with symbol 
versioning). This is not an OpenLDAP bug. This ITS will be closed.

-- 
   -- Howard Chu
   CTO, Symas Corp.           http://www.symas.com
   Director, Highland Sun     http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP  http://www.openldap.org/project/


Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest


The OpenLDAP Issue Tracking System uses a hacked version of JitterBug

______________
© Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org