https://bugs.openldap.org/show_bug.cgi?id=10360
Issue ID: 10360 Summary: delta-sync can apply old mods Product: OpenLDAP Version: 2.6.9 Hardware: All OS: All Status: UNCONFIRMED Keywords: needs_review Severity: normal Priority: --- Component: slapd Assignee: bugs@openldap.org Reporter: hyc@openldap.org Target Milestone: ---
This might be related to #10358, but not sure.
In delta MPR, if an older mod is received on an entry after a newer mod has already been applied by a local user, the older mod is applied and the newer mod is lost.
The incoming replication ops are checked for freshness by check_csn_age() but that only checks the incoming cookieCSN against contextCSNs of the same SID. I.e., that check only prevents duplicate mods being replicated multiple times from the same remote provider. If check_csn_age() passes, then syncrepl_message_to_op() is invoked which just applies the mod. It doesn't check the mod or cookieCSN against the entry's current entryCSN.
The code in syncrepl_op_mod() performs the checks we need. The code just needs to be pulled into a new function so it can be used in both places.
https://bugs.openldap.org/show_bug.cgi?id=10360
--- Comment #1 from Howard Chu hyc@openldap.org --- Hm, no, we already have the check in both places. Still looking.
https://bugs.openldap.org/show_bug.cgi?id=10360
Howard Chu hyc@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |INVALID Status|UNCONFIRMED |RESOLVED
--- Comment #2 from Howard Chu hyc@openldap.org --- The consumer code is correct. The server was misconfigured, the consumer DB rootDN didn't have access to the logDB.
https://bugs.openldap.org/show_bug.cgi?id=10360
Ondřej Kuzník ondra@mistotebe.net changed:
What |Removed |Added ---------------------------------------------------------------------------- Ever confirmed|0 |1 Status|RESOLVED |CONFIRMED Resolution|INVALID |---
https://bugs.openldap.org/show_bug.cgi?id=10360
Ondřej Kuzník ondra@mistotebe.net changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|CONFIRMED |IN_PROGRESS
https://bugs.openldap.org/show_bug.cgi?id=10360
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|IN_PROGRESS |RESOLVED Assignee|bugs@openldap.org |hyc@openldap.org Keywords|needs_review | Resolution|--- |TEST
--- Comment #3 from Quanah Gibson-Mount quanah@openldap.org --- commit 6e559efd85e223c80a2a603d176f7eb9cd23d621 Author: Howard Chu hyc@openldap.org Date: Thu Jun 19 17:03:16 2025 +0100
ITS#10360 delta MPR: internal search should use logDB's rootDN
https://bugs.openldap.org/show_bug.cgi?id=10360
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Keywords| |needs_review
https://bugs.openldap.org/show_bug.cgi?id=10360
Ondřej Kuzník ondra@mistotebe.net changed:
What |Removed |Added ---------------------------------------------------------------------------- See Also| |https://bugs.openldap.org/s | |how_bug.cgi?id=10385
https://bugs.openldap.org/show_bug.cgi?id=10360
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Ever confirmed|1 |0 Resolution|TEST |--- Status|RESOLVED |UNCONFIRMED
--- Comment #4 from Quanah Gibson-Mount quanah@openldap.org --- reopen for triage
https://bugs.openldap.org/show_bug.cgi?id=10360
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Target Milestone|--- |2.6.11 Keywords|needs_review |
https://bugs.openldap.org/show_bug.cgi?id=10360
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|UNCONFIRMED |RESOLVED
--- Comment #5 from Quanah Gibson-Mount quanah@openldap.org --- RE26:
• fa73dfe2 by Howard Chu at 2025-09-17T17:26:53+00:00 ITS#10360 delta MPR: internal search should use logDB's rootDN
-
openldap-its@openldap.org