[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE : Crash in proxy authorization in some case (ITS#2578)

To: openldap-its@OpenLDAP.org
Subject: RE : Crash in proxy authorization in some case (ITS#2578)
From: emmanuel.duru@atosorigin.com
Date: Tue, 10 Jun 2003 06:50:54 GMT

Here it is:

(gdb) where
#0  0x78c24 in slap_sasl_check_authz (op=0x409b70, searchDN=0xfdc017e8,
assertDN=0xfdc017f0, 
    ad=0x2b65f0, authc=0xfdc017f0) at saslauthz.c:518
#1  0x7917c in slap_sasl_authorized (op=0x409b70, authcDN=0xfdc017f0,
authzDN=0xfdc017e8)
    at saslauthz.c:693
#2  0x7c9dc in slap_sasl_authorize (sconn=0x308340, context=0x2f6048, 
    requested_user=0xfdc017f0 "", rlen=29, auth_identity=0x308d51
"user2@rahil", alen=11, 
    def_realm=0x0, urlen=0, props=0x2c9420) at sasl.c:755
#3  0xff36d8c8 in do_authorization (s_conn=0x308340) at server.c:1010
#4  0xff36dea8 in sasl_server_step (conn=0x308340, 
    clientin=0x409c90
"username=\"user2@rahil\",realm=\"rahil.sc.atosorigin.com\",authzid=\"dn
:cn=putois,ou=people,o=sota\",nonce=\"rU8Au20c/709dKr5fShvCkF7YNu+T8dORs
jPIwnCFpA=\",cnonce=\"rU8Au20c/709dKr5fShvCkF7YNu+T8dORsjPIwnCFpA="...,
clientinlen=319, serverout=0xfdc019b4, 
    serveroutlen=0xfdc019a0) at server.c:1268
#5  0x7d604 in slap_sasl_bind (op=0x409b70, rs=0xfdc01ad8) at
sasl.c:1386
#6  0x60d20 in do_bind (op=0x409b70, rs=0xfdc01ad8) at bind.c:295
#7  0x4d48c in connection_operation (ctx=0xfdc01b80, arg_v=0x409b70) at
connection.c:943
#8  0xca2bc in ldap_int_thread_pool_wrapper (xpool=0x2ae148) at
tpool.c:463
(gdb) print vals
$1 = 0x0
(gdb) 

-----Message d'origine-----
De : Kurt D. Zeilenga [mailto:Kurt@OpenLDAP.org] 
Envoyé : jeudi 5 juin 2003 22:14
À : emmanuel.duru@atosorigin.com
Cc : openldap-its@OpenLDAP.org
Objet : Re: Crash in proxy authorization in some case (ITS#2578)


Please provide a stack back trace from the crash.  Thanks, Kurt

At 06:39 AM 6/5/2003, emmanuel.duru@atosorigin.com wrote:
>Full_Name: Emmanuel Duru
>Version: 2.2.0 alpha
>OS: solaris 8
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (195.68.44.148)
>
>
>My server is configured with sasl-authz-policy = both.
>I have one entry (user A) with a saslAuthzTo set to another entry dname
(user
>B).
>I run ldapsearch in the name of user A, trying proxy authorization to
user C.
>The server crashes.
>Proposed correction : in saslauthz.c:slap_sasl_check_authz(), test the
nullity
>of the vals variable set by backend_attribute() before the loop for
(i=0,... ?

Prev by Date: RE : Crash in SASL bind (ITS#2577)
Next by Date: RE : Crash in proxy authorization in some case (ITS#2578)
Index(es):
- Chronological
- Thread