Bug 2269530

Summary: Deployment with custom plugins hitting several ns-slapd crashes.
Product: Red Hat Directory Server Reporter: Têko Mihinto <tmihinto>
Component: 389-ds-baseAssignee: LDAP Maintainers <idm-ds-dev-bugs>
Status: CLOSED MIGRATED QA Contact: LDAP QA Team <idm-ds-qe-bugs>
Severity: high Docs Contact: Evgenia Martynyuk <emartyny>
Priority: unspecified    
Version: 12.3CC: apeddire, idm-ds-dev-bugs, msauton, musoni, progier, tbordaz
Target Milestone: DS13.0Keywords: Triaged
Target Release: dirsrv-13.0   
Hardware: x86_64   
OS: Linux   
Whiteboard: sync-to-jira
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2024-06-26 13:51:05 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Têko Mihinto 2024-03-14 13:44:28 UTC 
Description of problem:
Customer is trying to migrate to RHDS 12.
They are running some tests with RHDS 12.3 and they are getting ns-slapd crashes regularly.
There are 3 custom plugins and the DNA plugin is enabled.

Version-Release number of selected component (if applicable):
$ cat <SOS_REPORT>/etc/redhat-release
Red Hat Enterprise Linux release 9.3 (Plow)
$
$ grep <SOS_REPORT>/389-ds installed-rpms
389-ds-base-2.3.6-8.module+el9dsrv+20821+6bc979c1.x86_64    Thu Feb 15 18:33:01 2024
389-ds-base-libs-2.3.6-8.module+el9dsrv+20821+6bc979c1.x86_64 Thu Feb 15 18:33:01 2024
cockpit-389-ds-2.3.6-8.module+el9dsrv+20821+6bc979c1.noarch Thu Feb 15 18:33:40 2024
$

How reproducible:
Regularly at customer site.

Steps to Reproduce:
Customer could crash the server with some DEL / ADD / MOD operations.

Actual results:
ns-slapd is crashing.

Expected results:
Server should not crash.

Additional info:
The stacktraces are all different.
This likely indicates memory corruption issues.
Comment 20 Pierre Rogier 2024-06-13 12:25:38 UTC 
FYI this issue is also tracked as CVE-2024-5953 https://bugzilla.redhat.com/show_bug.cgi?id=2292104
Comment 21 Viktor Ashirov 2024-06-26 13:51:05 UTC 
This BZ has been automatically migrated to Red Hat Issue Tracker https://issues.redhat.com/browse/DIRSRV-81. All future work related to this report will be managed there.

Due to differences in account names between systems, some fields were not replicated. Be sure to add yourself to Jira issue's "Watchers" field to continue receiving updates and add others to the "Need Info From" field to continue requesting information.

In the event you have trouble locating or viewing this issue, you can file an issue by sending mail to rh-issues. You can also visit https://access.redhat.com/articles/7032570 for general account information.
Comment 22 Red Hat Bugzilla 2024-10-25 04:25:08 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days