openldap-bugs July 2020

openldap-bugs@openldap.org

2 participants
120 discussions

[Issue 9277] New: restart 3+ providers at once burns CPU forever
by openldap-its＠openldap.org 14 Oct '20

14 Oct '20

https://bugs.openldap.org/show_bug.cgi?id=9277 Issue ID: 9277 Summary: restart 3+ providers at once burns CPU forever Product: OpenLDAP Version: 2.4.50 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: slapd Assignee: bugs(a)openldap.org Reporter: michael(a)stroeder.com Target Milestone: --- I have tiny VMs configured as Æ-DIR servers, 5 providers (multi-provider replication) and 5 read-only consumers each syncing with all providers. Restarting all consumers at once simply works, no matter how many of the providers are up. Restarting only two providers at once also works. But when restarting more than two providers at once all of thems seem to hang eating up CPU. It could be the same issue like ITS#8650 / ITS#9210 but those only mention GNUTLS being affected. But all my Æ-DIR test servers run slapd built against OpenSSL (openSUSE, Debian buster, CentOS7). -- You are receiving this mail because: You are on the CC list for the issue.

1 7

[Issue 9306] New: clang UndefinedBehaviorSanitizer report
by openldap-its＠openldap.org 17 Sep '20

17 Sep '20

https://bugs.openldap.org/show_bug.cgi?id=9306 Issue ID: 9306 Summary: clang UndefinedBehaviorSanitizer report Product: LMDB Version: 0.9.24 Hardware: x86_64 OS: Mac OS Status: UNCONFIRMED Severity: normal Priority: --- Component: liblmdb Assignee: bugs(a)openldap.org Reporter: AskAlexSharov(a)gmail.com Target Milestone: --- Hello. We using LMDB from Golang application. Clang compiler with flag "-fsanitize=undefined" shows next report: mdb.c:7544:26: runtime error: member access within misaligned address 0x00d24759d53a for type 'MDB_page' (aka 'struct MDB_page'), which requires 8 byte alignment 0x00d24759d53a: note: pointer points here 00 00 00 01 c4 49 00 01 00 00 00 00 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 ^ SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior mdb.c:7544:26 in mdb.c:7544:26: runtime error: member access within misaligned address 0x00d24759d546 for type 'union (anonymous union at mdb.c:826:2)', which requires 4 byte alignment 0x00d24759d546: note: pointer points here 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 c8 00 20 00 00 00 00 00 00 00 21 00 ^ SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior mdb.c:7544:26 in mdb.c:7544:26: runtime error: member access within misaligned address 0x00d24759d546 for type 'struct (anonymous struct at mdb.c:827:3)', which requires 4 byte alignment 0x00d24759d546: note: pointer points here 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 c8 00 20 00 00 00 00 00 00 00 21 00 ^ SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior mdb.c:7544:26 in mdb.c:7544:26: runtime error: load of misaligned address 0x00d24759d546 for type 'indx_t' (aka 'unsigned short'), which requires 4 byte alignment 0x00d24759d546: note: pointer points here 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 c8 00 20 00 00 00 00 00 00 00 21 00 ^ SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior mdb.c:7544:26 in mdb.c:7545:3: runtime error: member access within misaligned address 0x00d24759d53a for type 'MDB_page' (aka 'struct MDB_page'), which requires 8 byte alignment 0x00d24759d53a: note: pointer points here 00 00 00 01 c4 49 00 01 00 00 00 00 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 ^ SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior mdb.c:7545:3 in mdb.c:7545:3: runtime error: member access within misaligned address 0x00d24759d53a for type 'union (anonymous union at mdb.c:802:2)', which requires 8 byte alignment 0x00d24759d53a: note: pointer points here 00 00 00 01 c4 49 00 01 00 00 00 00 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 ^ SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior mdb.c:7545:3 in mdb.c:7545:3: runtime error: load of misaligned address 0x00d24759d53a for type 'pgno_t' (aka 'unsigned long'), which requires 8 byte alignment 0x00d24759d53a: note: pointer points here 00 00 00 01 c4 49 00 01 00 00 00 00 00 00 52 00 20 00 20 00 6a 01 2e 01 f2 00 4a 00 9e 00 74 00 ^ -- You are receiving this mail because: You are on the CC list for the issue.

1 3

[Issue 9286] New: mdb_cursor_get MDB_GET_MULTIPLE key not populated
by openldap-its＠openldap.org 17 Sep '20

17 Sep '20

https://bugs.openldap.org/show_bug.cgi?id=9286 Issue ID: 9286 Summary: mdb_cursor_get MDB_GET_MULTIPLE key not populated Product: LMDB Version: 0.9.25 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: liblmdb Assignee: bugs(a)openldap.org Reporter: corey(a)kaylors.net Target Milestone: --- Reading the docs it says "Return key and up to a page of duplicate data items from current cursor position." when MDB_GET_MULTIPLE is used. I don't see the key being populated, but when I call MDB_GET_CURRENT after the use of MDB_GET_MULTIPLE the key is the value I expect. Looking through the code I don't see the key getting used in this path. Granted, I'm not proficient with C so I may have overlooked something. -- You are receiving this mail because: You are on the CC list for the issue.

2 5

[Issue 9268] New: Test065 fails due to invalid log level
by openldap-its＠openldap.org 17 Sep '20

17 Sep '20

https://bugs.openldap.org/show_bug.cgi?id=9268 Issue ID: 9268 Summary: Test065 fails due to invalid log level Product: OpenLDAP Version: 2.4.50 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: build Assignee: bugs(a)openldap.org Reporter: andy(a)asjohnson.com Target Milestone: --- Line #109 of tests/scripts/test065-proxyauthz: $SLAPD -f $CONF2 -h $URI2 -d $LVL -d pcache > $LOG2 2>&1 & Results in this: must compile with LDAP_DEBUG for debugging unrecognized log level "pcache" (deferred) After which the test fails. -- You are receiving this mail because: You are on the CC list for the issue.

1 4

[Bug 9250] New: librewrite only supports up to 9 submatches
by openldap-its＠openldap.org 17 Sep '20

17 Sep '20

https://bugs.openldap.org/show_bug.cgi?id=9250 Bug ID: 9250 Summary: librewrite only supports up to 9 submatches Product: OpenLDAP Version: 2.4.49 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: libraries Assignee: bugs(a)openldap.org Reporter: ryan(a)openldap.org Target Milestone: --- libraries/librewrite$ cat nine.conf rewriteEngine on rewriteContext default rewriteRule "(.)(.)(.)(.)(.)(.)(.)(.)(.)" "$9$8$7$6$5$4$3$2$1" : libraries/librewrite$ ./rewrite -f nine.conf abcdefghijklmnop abcdefghijklmnop -> ihgfedcba [0:ok] libraries/librewrite$ cat eleven.conf rewriteEngine on rewriteContext default rewriteRule "(.)(.)(.)(.)(.)(.)(.)(.)(.)(.)(.)" "$11$10$9$8$7$6$5$4$3$2$1" : libraries/librewrite$ ./rewrite -f eleven.conf abcdefghijklmnop abcdefghijklmnop -> a1a0ihgfedcba [0:ok] I guess no one has needed that many yet... :) -- You are receiving this mail because: You are on the CC list for the bug.

1 2

[Bug 9185] New: glue entry
by openldap-its＠openldap.org 17 Sep '20

17 Sep '20

https://bugs.openldap.org/show_bug.cgi?id=9185 Bug ID: 9185 Summary: glue entry Product: OpenLDAP Version: 2.4.48 Hardware: All OS: Linux Status: UNCONFIRMED Severity: normal Priority: --- Component: client tools Assignee: bugs(a)openldap.org Reporter: gnoe(a)symas.com Target Milestone: --- -- You are receiving this mail because: You are watching someone on the CC list of the bug.

1 4

[Issue 9302] New: ppolicy pwdFailureTime race condition leaves acccount unlocked, violating pwdLockout policy
by openldap-its＠openldap.org 03 Sep '20

03 Sep '20

https://bugs.openldap.org/show_bug.cgi?id=9302 Issue ID: 9302 Summary: ppolicy pwdFailureTime race condition leaves acccount unlocked, violating pwdLockout policy Product: OpenLDAP Version: 2.4.50 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: overlays Assignee: bugs(a)openldap.org Reporter: requate(a)univention.de Target Milestone: --- Multiple concurrent ldap binds with invalid passwords against a user account sometimes don't trigger account lockout, even though the number of failed attempts exceeds the configured pwdLockout policy of the ppolicy overlay. How to reproduce: 1. Configure ppolicy overlay with pwdLockout: TRUE 2. set pwdMaxFailure to some value, e.g. 5 3. Create a test user account and start just enough (or more) parallel ldapsearch processes to make the account get locked, e.g. like this in bash/sh (note the backgrounding): for i in $(seq 6); do ldapsearch -x -D "uid=testuser1,$ldap_base" -w invalid >/dev/null 2>&1 & done 4. Check relevant ppolicy attributes, like: ldapsearch -x -H LDAPI:// -b "uid=testuser1,$ldap_base" + \ grep -E '^(pwdFailureTime|pwdAccountLockedTime):' This often shows no pwdAccountLockedTime but enough (or more) pwdFailureTime values to meet the lockout policy. -- You are receiving this mail because: You are on the CC list for the issue.

1 8

[Bug 9228] New: libldap depends on liblutil (lutil_memcmp) when cross compiling
by openldap-its＠openldap.org 28 Aug '20

28 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9228 Bug ID: 9228 Summary: libldap depends on liblutil (lutil_memcmp) when cross compiling Product: OpenLDAP Version: unspecified Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: build Assignee: bugs(a)openldap.org Reporter: ryan(a)openldap.org Target Milestone: --- cross-compiling for Unix: ./configure --host=arm-linux-gnueabihf CC=arm-linux-gnueabihf-gcc --with-yielding-select && make ... libtool: link: arm-linux-gnueabihf-gcc -g -O2 -o ldapurl ldapurl.o lduversion.o ../../libraries/liblutil/liblutil.a ../../libraries/libldap/.libs/libldap.a /home/ryan/tmp/openldap/libraries/liblber/.libs/liblber.a ../../libraries/liblber/.libs/liblber.a -lresolv /usr/lib/gcc-cross/arm-linux-gnueabihf/8/../../../../arm-linux-gnueabihf/bin/ld: ../../libraries/libldap/.libs/libldap.a(os-ip.o): in function `ldap_pvt_is_socket_ready': /home/ryan/tmp/openldap/libraries/libldap/os-ip.c:248: warning: `sys_errlist' is deprecated; use `strerror' or `strerror_r' instead /usr/lib/gcc-cross/arm-linux-gnueabihf/8/../../../../arm-linux-gnueabihf/bin/ld: /home/ryan/tmp/openldap/libraries/libldap/os-ip.c:248: warning: `sys_nerr' is deprecated; use `strerror' or `strerror_r' instead /usr/lib/gcc-cross/arm-linux-gnueabihf/8/../../../../arm-linux-gnueabihf/bin/ld: ../../libraries/libldap/.libs/libldap.a(result.o): in function `try_read1msg': /home/ryan/tmp/openldap/libraries/libldap/result.c:935: undefined reference to `lutil_memcmp' cross-compiling for Windows: ./configure --host=x86_64-w64-mingw32 CC=x86_64-w64-mingw32-gcc && make ... libtool: link: x86_64-w64-mingw32-gcc -shared .libs/bind.o .libs/open.o .libs/result.o .libs/error.o .libs/compare.o .libs/search.o .libs/controls.o .libs/messages.o .libs/references.o .libs/extended.o .libs/cyrus.o .libs/modify.o .libs/add.o .libs/modrdn.o .libs/delete.o .libs/abandon.o .libs/sasl.o .libs/sbind.o .libs/unbind.o .libs/cancel.o .libs/filter.o .libs/free.o .libs/sort.o .libs/passwd.o .libs/whoami.o .libs/vc.o .libs/getdn.o .libs/getentry.o .libs/getattr.o .libs/getvalues.o .libs/addentry.o .libs/request.o .libs/os-ip.o .libs/url.o .libs/pagectrl.o .libs/sortctrl.o .libs/vlvctrl.o .libs/init.o .libs/options.o .libs/print.o .libs/string.o .libs/util-int.o .libs/schema.o .libs/charray.o .libs/os-local.o .libs/dnssrv.o .libs/utf-8.o .libs/utf-8-conv.o .libs/tls2.o .libs/tls_o.o .libs/tls_g.o .libs/tls_m.o .libs/turn.o .libs/ppolicy.o .libs/dds.o .libs/txn.o .libs/ldap_sync.o .libs/stctrl.o .libs/assertion.o .libs/deref.o .libs/ldifutil.o .libs/ldif.o .libs/fetch.o .libs/lbase64.o .libs/msctrl.o .libs/psearchctrl.o .libs/version.o ../../libraries/liblber/.libs/liblber.dll.a -lregex -lws2_32 -g -O2 -o .libs/libldap.dll -Wl,--enable-auto-image-base -Xlinker --out-implib -Xlinker .libs/libldap.dll.a /usr/bin/x86_64-w64-mingw32-ld: .libs/result.o: in function `try_read1msg': /home/ryan/tmp/openldap/libraries/libldap/result.c:935: undefined reference to `lutil_memcmp' /usr/bin/x86_64-w64-mingw32-ld: .libs/dnssrv.o: in function `ldap_dn2domain': /home/ryan/tmp/openldap/libraries/libldap/dnssrv.c:72: undefined reference to `lutil_memcmp' /usr/bin/x86_64-w64-mingw32-ld: .libs/ldif.o: in function `ldif_must_b64_encode': /home/ryan/tmp/openldap/libraries/libldap/ldif.c:426: undefined reference to `lutil_memcmp' collect2: error: ld returned 1 exit status More similar issues occur with --enable-dynamic. Workaround: configure with ac_cv_func_memcmp_working=yes -- You are receiving this mail because: You are on the CC list for the bug.

1 5

[Bug 9249] New: A dollar sign ($) at the end of the 2nd argument of olcAuthzRegexp crashes slapd
by openldap-its＠openldap.org 28 Aug '20

28 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9249 Bug ID: 9249 Summary: A dollar sign ($) at the end of the 2nd argument of olcAuthzRegexp crashes slapd Product: OpenLDAP Version: 2.4.47 Hardware: All OS: Linux Status: UNCONFIRMED Severity: normal Priority: --- Component: slapd Assignee: bugs(a)openldap.org Reporter: kop(a)karlpinc.com Target Milestone: --- The following ldif, fed to ldapmodify, crashes slapd. dn: cn=config changetype: modify replace: olcAuthzRegexp olcAuthzRegexp: "^([^,]+),cn=PLAIN,cn=auth" "$1,ou=People,dc=example,dc=com$" Happens on Debian 10 with openldap 2.4.47 and RHEL 8 with openldap 2.4.46. Doing ldapmodify -d -1 seems to crash only 1 out of 3 times, but it always crashes without the -d -1. -- You are receiving this mail because: You are on the CC list for the bug.

1 5

[Issue 9304] New: Archived-At: -> 404
by openldap-its＠openldap.org 19 Aug '20

19 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9304 Issue ID: 9304 Summary: Archived-At: -> 404 Product: website Version: unspecified Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: website Assignee: bugs(a)openldap.org Reporter: michael(a)stroeder.com Target Milestone: --- I appreciate this mailing list message header: Archived-At: <https://openldap.org/hyperkitty/list/openldap-technical@openldap.org/messag…> But unfortunately the link returns 404. -- You are receiving this mail because: You are on the CC list for the issue.

1 3

← Newer
1
...
4
5
6
7
8
9
10
11
12
Older →

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-bugs July 2020