[Date Prev][Date Next] [Chronological] [Thread] [Top]

search_candidates on win32

To: openldap-devel <openldap-devel@OpenLDAP.org>
Subject: search_candidates on win32
From: Kervin Pierre <kpierre@fit.edu>
Date: Mon, 18 Mar 2002 02:33:52 -0500
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020310

Hello,

I can reliably crash slapd on win32 by running a ldapsearch that is not scope == base. CVS-14MAR02

I think the problem is in the search_candidates() function in servers/slapd/back-bdb/search.c ...

static int search_candidates( ... )
{
        int rc;
        Filter          f, scopef, rf, xf;
        ID              tmp[BDB_IDL_UM_SIZE];
        AttributeAssertion aa_ref;
...

The declaration 'ID tmp[BDB_IDL_UM_SIZE];' causes a stack overflow.

On my system, this evaluates to 'unsigned long tmp[131070]'.

My question is, isn't that array to big? Can someone shed some light on this?


--Kervin


--
http://linuxquestions.org/ - Ask linux questions, give linux help.
http://splint.org/ - Write safe C code. splint source-code analyzer.

Follow-Ups:
- RE: search_candidates on win32
  - From: "Howard Chu" <hyc@highlandsun.com>
- RE: search_candidates on win32
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: Small patch to slapd/backend.c
Next by Date: RE: Small patch to slapd/backend.c
Index(es):
- Chronological
- Thread