[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#5513) back-ldap+ppolicy bind assertion failure

Full_Name: Matthew Backes
Version: 2.3, 2.4
OS: linux
Submission from: (NULL) (

A basic back-ldap configuration with the password policy overlay stacked on top
results in an assertfail for the second bind.  e.g.  given a working (possibly
empty db) on ldap://localhost:1389/...

include ...../core.schema
include ...../ppolicy.schema

modulepath .....
moduleload back_ldap.la
moduleload ppolicy.la

database ldap
suffix ""
uri ldap://localhost:1389/

After performing a successful remote bind, the next bind attempt halts the
back-ldap directory with:

slapd: bind.c:905: ldap_back_getconn: Assertion `( li->li_idassert.si_flags &
(0x02U) )' failed.

where 0x02U here is LDAP_BACK_AUTH_OVERRIDE.

This happens under both OpenLDAP 2.3 and 2.4.