[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#7297) slapd crashes when ldap->mysql-backend query contains '\00' symbols

To: openldap-its@OpenLDAP.org
Subject: (ITS#7297) slapd crashes when ldap->mysql-backend query contains '\00' symbols
From: mobisid@gmail.com
Date: Mon, 11 Jun 2012 12:10:43 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Alex Rusinov
Version: slapd 2.3.43 (Feb 22 2012 15:59:04)
OS: CentOS release 5.6 (Final), Linux isg 2.6.18-194.32.1.el5 #1 SMP Wed Jan 5 17:52:25 EST 2011 x86_64 x86_64 x86_64 GNU/Linux
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (2a02:578:1:101:daa:ef09:905b:5510)


Im experiencing ldap crashes when query contains \00 symbols, example (dc was
hidden):
# ldapsearch -LLL -x -s sub -b "dc=aaanet,dc=net"
"(&(objectClass=account)(uid=aaa\00bbb))"
ldap_result: Can't contact LDAP server (-1)   <- here it crashed
--
I'm using ldap with mysql-backend, versions:
http://pastebin.com/AMBZKvjH                                         installed
=======
logs:
http://pastebin.com/Jmz61mQb

Right before the crash the following string appears in logs:
slapd: ../../../../servers/slapd/back-sql/util.c:144: backsql_strfcat_x:
Assertion `dest->bb_val.bv_val == ((void *)0) || dest->bb_val.bv_len == strlen(
dest->bb_val.bv_val )' failed.

Any ideas?

Alex

Prev by Date: Re: (ITS#7292) Memory leak with MMR + delta syncrepl
Next by Date: Re: (ITS#7297) slapd crashes when ldap->mysql-backend query contains '\00' symbols
Index(es):
- Chronological
- Thread