[php-maint] Bug#428468: ldap-account-manager: reports "No such entry" or "Can't contact server"
Brian May
bam at snoopy.debian.net
Wed Jul 4 04:49:29 UTC 2007
reassign 428468 slapd 2.3.30-5
thanks
>>>>> "Roland" == Roland Gruber <post at rolandgruber.de> writes:
Roland> there were always some user reports about LDAP server
Roland> crashes when using TLS. Usually this was caused by buggy
Roland> OpenSSL installations. But in this case the server does
Roland> not crash or maybe only a single thread.
Yes, I am beginning to think more and more that this is a bug in
slapd. Possible a security bug that can allow denial of service
attacks, although I haven't worked out yet how to crash the server on
demand.
For the record:
* If I change ldap-account-manager to use ldapi:/// it encounters the same problem.
* gdb of gq reports ldap_search_ext_s is returning LDAP_SERVER_DOWN:
Breakpoint 3, formlist_from_entry (error_context=74, server=0x80ca830, dn=0x828e768, ocvalues_only=0) at formfill.c:187
187 LDAPControl *ctrls[2] = { NULL, NULL } ;
(gdb) n
195 c.ldctl_oid = LDAP_CONTROL_MANAGEDSAIT;
(gdb)
196 c.ldctl_value.bv_val = NULL;
(gdb)
197 c.ldctl_value.bv_len = 0;
(gdb)
198 c.ldctl_iscritical = 1;
(gdb)
203 rc = ldap_search_ext_s(ld,
(gdb)
215 if(rc == LDAP_NOT_SUPPORTED) {
(gdb)
220 if (rc == LDAP_SERVER_DOWN) {
(gdb)
221 server->server_down++;
(gdb)
330 close_connection(server, FALSE);
(gdb)
331 set_normalcursor();
(gdb)
334 }
(gdb) n
The server was *not* down at the time.
--
Brian May <bam at snoopy.debian.net>
More information about the pkg-php-maint
mailing list