New subject: [Issue 10071] Extra sids in cookie should only be ignored for replay consideration

22 Jun 2023


      https://bugs.openldap.org/show_bug.cgi?id=10071
Issue ID: 10071
           Summary: Extra sids in cookie should only be ignored for replay
                    consideration
           Product: OpenLDAP
           Version: unspecified
          Hardware: All
                OS: All
            Status: UNCONFIRMED
          Keywords: needs_review
          Severity: normal
          Priority: ---
         Component: slapd
          Assignee: bugs@openldap.org
          Reporter: ondra@mistotebe.net
  Target Milestone: ---
A consumer's cookie might contain sids that the provider is not aware of. Those
are currently screened out. This is appropriate for initial checks whether/how
to allow the operation to go ahead but might be needed for content
determination in refresh/persist. As such the cookie should be retained rather
than edited in place.
I don't have the logs from a failed test at hand but will post the
analysis/logs if I find them again.
-- 
You are receiving this mail because:
You are on the CC list for the issue.

[Issue 10071] New: Extra sids in cookie should only be ignored for replay consideration