[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Controls handled incorrectly (ITS#2034)

To: openldap-its@OpenLDAP.org
Subject: Re: Controls handled incorrectly (ITS#2034)
From: Kurt@OpenLDAP.org
Date: Tue, 20 Aug 2002 19:52:28 GMT

At 11:21 AM 2002-08-20, mortis@ucalgary.ca wrote:
>Full_Name: Jeremy Mortis
>Version: 2.0.23
>OS: Redhat 7.2
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (136.159.213.7)
>
>When using an LDAP instance with multiple databases, JNDI searches fail.
>
>This appears to be due to the fact that JNDI passes the 'manageDSAit' control
>along, 
>which causes the 'select_backend' routine to choose the wrong database.

RFC 3296:
  The client may provide the ManageDsaIT control with an operation
  to indicate that the operation is intended to manage objects
  within the DSA (server) Information Tree

The control, as discussed in RFC 3296, is commonly used to
manage subordinate referral knowledge.

By selecting the superior database, slapd is providing access
to the subordinate referral knowledge associated with the
baseObject.

This is not a bug in OpenLDAP, but a bug in JNDI.  Clients
should only provide the ManageDSAit control when the user
wants to manage the DSA information tree.

Kurt

Prev by Date: Controls handled incorrectly (ITS#2034)
Next by Date: Re: slapd hangs at 100% cpu in sched_yield (ITS#2030)
Index(es):
- Chronological
- Thread