[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#7336) Ldapmodify crashes slapd when updating olcTLSVerifyClient attribute via TLS authentication

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#7336) Ldapmodify crashes slapd when updating olcTLSVerifyClient attribute via TLS authentication
From: ondra@mistotebe.net
Date: Fri, 22 Jun 2018 10:42:40 +0000
Auto-submitted: auto-generated (OpenLDAP-ITS)

On Sun, Mar 23, 2014 at 09:32:22AM +0000, ck@cksoft.de wrote:
> Hi,
> 
> I can confirm that openldap-2.4.39 still has in issue with this.
> 
> When connecting via TLS I tried to modify olcTLSVerifyClient from never 
> to try with following ldif:
> 
>    dn: cn=config
>    changetype: modify
>    replace: olcTLSVerifyClient
>    olcTLSVerifyClient: try
> 
> this caused slapd to hang indefinetely.
> 
> I was able to successfully modify above when connecting without TLS.
> 
> I need to complete my current task but will set up a small proof of 
> concept later on in my lab.

Hi Christian,
have you been able to set up a test configuration that reproduces it
with latest OpenLDAP? A cursory test here doesn't seem to do anything of
the sort.

Thanks,

-- 
OndÅ?ej KuznÃk
Senior Software Engineer
Symas Corporation                       http://www.symas.com
Packaged, certified, and supported LDAP solutions powered by OpenLDAP

Prev by Date: (ITS#8868) Inefficiency when processing certain search filters
Next by Date: Re: (ITS#7336) Ldapmodify crashes slapd when updating olcTLSVerifyClient attribute via TLS authentication
Index(es):
- Chronological
- Thread