[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#5513) back-ldap+ppolicy bind assertion failure

To: openldap-its@OpenLDAP.org
Subject: (ITS#5513) back-ldap+ppolicy bind assertion failure
From: mbackes@symas.com
Date: Thu, 15 May 2008 03:20:58 GMT

Full_Name: Matthew Backes
Version: 2.3, 2.4
OS: linux
URL: 
Submission from: (NULL) (76.88.99.93)


A basic back-ldap configuration with the password policy overlay stacked on top
results in an assertfail for the second bind.  e.g.  given a working (possibly
empty db) on ldap://localhost:1389/...

include ...../core.schema
include ...../ppolicy.schema

modulepath .....
moduleload back_ldap.la
moduleload ppolicy.la

database ldap
suffix ""
uri ldap://localhost:1389/

After performing a successful remote bind, the next bind attempt halts the
back-ldap directory with:

slapd: bind.c:905: ldap_back_getconn: Assertion `( li->li_idassert.si_flags &
(0x02U) )' failed.

where 0x02U here is LDAP_BACK_AUTH_OVERRIDE.

This happens under both OpenLDAP 2.3 and 2.4.

Prev by Date: (ITS#5512) Doc contribution for search privileges in 2.4
Next by Date: (ITS#5514) Query about openLDAP on windows
Index(es):
- Chronological
- Thread