openldap-bugs December 2021

openldap-bugs@openldap.org

1 participants
114 discussions

[Issue 9765] New: slapd crash
by openldap-its＠openldap.org 08 Dec '21

08 Dec '21

https://bugs.openldap.org/show_bug.cgi?id=9765 Issue ID: 9765 Summary: slapd crash Product: OpenLDAP Version: 2.4.46 Hardware: All OS: Linux Status: UNCONFIRMED Keywords: needs_review Severity: normal Priority: --- Component: overlays Assignee: bugs(a)openldap.org Reporter: shivaprasadtp(a)yahoo.in Target Milestone: --- Start-up two slapd server instances. Configure syncreply overlay with one of the servers as a provider and the other one as consumer. Create around 100 users. Now start changing syncrepl configuration for one of the slapd servers, lets say the consumer server, in a loop with 5 seconds delay. After few mins the slapd server crashes. -- You are receiving this mail because: You are on the CC list for the issue.

1 4

[Issue 9757] New: The private key of the ldap certificate
by openldap-its＠openldap.org 02 Dec '21

02 Dec '21

https://bugs.openldap.org/show_bug.cgi?id=9757 Issue ID: 9757 Summary: The private key of the ldap certificate Product: OpenLDAP Version: 2.4.59 Hardware: All OS: Linux Status: UNCONFIRMED Keywords: needs_review Severity: normal Priority: --- Component: backends Assignee: bugs(a)openldap.org Reporter: ydgdsnn(a)163.com Target Milestone: --- Created attachment 856 --> https://bugs.openldap.org/attachment.cgi?id=856&action=edit prikey.key Current situation: The private key of the ldap certificate is used to set LDAP_OPT_X_TLS_KEYFILE when bind, and this file is currently stored in plain text. Appeal: Can we store the ciphertext of the file, and then decrypt it when we use it? -- You are receiving this mail because: You are on the CC list for the issue.

1 2

[Issue 8485] [PATCH] Adding support for encrypted server private keys
by openldap-its＠openldap.org 02 Dec '21

02 Dec '21

https://bugs.openldap.org/show_bug.cgi?id=8485 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |ydgdsnn(a)163.com --- Comment #13 from Quanah Gibson-Mount <quanah(a)openldap.org> --- *** Issue 9757 has been marked as a duplicate of this issue. *** -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9754] New: segfault after adding olcAccess
by openldap-its＠openldap.org 02 Dec '21

02 Dec '21

https://bugs.openldap.org/show_bug.cgi?id=9754 Issue ID: 9754 Summary: segfault after adding olcAccess Product: OpenLDAP Version: 2.6.0 Hardware: x86_64 OS: Linux Status: UNCONFIRMED Keywords: needs_review Severity: normal Priority: --- Component: slapd Assignee: bugs(a)openldap.org Reporter: goudal(a)enseirb.fr Target Milestone: --- On a new production server 2.6.0 on ubuntu 20.04 LTS uptodate. After adding an olcAccess attribute I got a segfault. The aclValue added is {9}to attrs=ipbCompteValide,ipbEtendue,mailForwardingAddress by dn.base="uid=cptadmin,ou=people,dc=ipb,dc=fr" write by * read (the ipbXXX attrs are local ones). I have tried to add it twice and it did segfault twice. Here are the last logs for the server (logLevel was on sync). Nov 25 14:34:32 ldap2021 slapd[67824]: slap_graduate_commit_csn: removing 0x7f3a475615c0 20211125133351.609580Z#000000#00a#000000 Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291397 MOD dn="dc=ipb,dc=fr" Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291397 MOD attr=contextCSN Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291397 syncprov_matchops: recording uuid for dn=dc=ipb,dc=fr on opc=0x7f3a48001440 Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1053 op=1 syncprov_qresp: set up a new syncres mode=2 csn= Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291397 RESULT tag=103 err=0 qtime=0.000017 etime=0.003762 text= Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291398 SRCH base="dc=ipb,dc=fr" scope=2 deref=0 filter="(entryUUID=29a4991c-9dda-103b-98c2-c3fe49d4fff9)" Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291398 SRCH attr=* + Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291398 SEARCH RESULT tag=101 err=0 qtime=0.000028 etime=0.000285 nentries=1 text= Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291399 MOD dn="uid=pbouchevrea,ou=people,dc=ipb,dc=fr" Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291399 MOD attr=ipbDateFin entryCSN modifiersName modifyTimestamp Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291399 syncprov_matchops: recording uuid for dn=uid=pbouchevrea,ou=people,dc=ipb,dc=fr on opc=0x7f3a48001630 Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291399 syncprov_findbase: searching Nov 25 14:34:32 ldap2021 slapd[67824]: slap_queue_csn: queueing 0x7f3a438bc700 20211125133351.654596Z#000000#00a#000000 Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1053 op=1 syncprov_qresp: set up a new syncres mode=2 csn=20211125133351.654596Z#000000#00a#000000 Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291399 RESULT tag=103 err=0 qtime=0.000025 etime=0.022224 text= Nov 25 14:34:32 ldap2021 slapd[67824]: slap_graduate_commit_csn: removing 0x7f3a438bc700 20211125133351.654596Z#000000#00a#000000 Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291400 MOD dn="dc=ipb,dc=fr" Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291400 MOD attr=contextCSN Nov 25 14:34:32 ldap2021 slapd[67824]: conn=1000 op=291400 syncprov_matchops: recording uuid for dn=dc=ipb,dc=fr on opc=0x7f3a50003440 Nov 25 14:34:32 ldap2021 kernel: [262778.995540] slapd[68072]: segfault at 0 ip 00007f4ea0d3553e sp 00007f4e9dae9f48 error 4 in libc-2.31.so[7f4ea0cad000+178000] Nov 25 14:34:32 ldap2021 kernel: [262778.995584] Code: b6 07 29 c8 c3 0f 1f 80 00 00 00 00 f3 0f 1e fa 89 f8 31 d2 66 0f ef ff 09 f0 25 ff 0f 00 00 3d c0 0f 00 00 0f 8f 74 02 00 00 <f3> 0f 6f 0f f3 0f 6f 06 66 0f 74 c1\ 66 0f da c1 66 0f ef c9 66 0f Nov 25 14:34:36 ldap2021 slapd[70083]: * Stopping OpenLDAP slapd -- You are receiving this mail because: You are on the CC list for the issue.

1 4

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-bugs December 2021