[Date Prev][Date Next] [Chronological] [Thread] [Top]

backend_group and re-entrant operations

To: openldap-devel@OpenLDAP.org
Subject: backend_group and re-entrant operations
From: Simon Wilkinson <sxw@sxw.org.uk>
Date: Fri, 19 Jul 2002 13:35:22 +0100

The SASL code performs additional searches (to resolve SASL regex rules), but 
in doing so sets the connection to be NULL. If the server is configured to 
use group based access control, this causes a segmentation fault in 
backend_group when it tries to store things in the NULL connection structure.

I've trialled two solutions to this, both of which work. I was wondering 
which would be considered to be the "correct" solution.

1) Make backend_group ignore the connection structure if conn==NULL. This is 
a trivial patch, and seems to work fine, just disabling the group membership 
caching.

2) Make the SASL code pass the connection identifier through all of its 
internal operations, and delete the group cache information when we're 
finished (as its for the pre-authentication ID)

I guess the more general question is - is it valid to perform backend 
operations with a NULL connection?

Cheers,

Simon.

-- 
Simon Wilkinson            <simon@sxw.org.uk>          http://www.sxw.org.uk

Follow-Ups:
- Re: backend_group and re-entrant operations
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: Enabling multi-master replication option in CVS
Next by Date: the alias feature in OpenLDAP
Index(es):
- Chronological
- Thread