Bug 443955
Summary: | SIGSEGV with search filter length | ||||||
---|---|---|---|---|---|---|---|
Product: | [Retired] 389 | Reporter: | Paulo Alberto <pauloviolada> | ||||
Component: | Directory Server | Assignee: | Rich Megginson <rmeggins> | ||||
Status: | CLOSED DUPLICATE | QA Contact: | Chandrasekar Kannan <ckannan> | ||||
Severity: | urgent | Docs Contact: | |||||
Priority: | low | ||||||
Version: | 1.1.0 | CC: | andrey.ivanov, benl, nhosoi | ||||
Target Milestone: | --- | ||||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2008-04-28 20:50:20 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | |||||||
Bug Blocks: | 444712 | ||||||
Attachments: |
|
Description
Paulo Alberto
2008-04-24 11:04:41 UTC
I am unable to reproduce this running fedora-ds-base-1.1.0-3.fc8 on a Fedora 8 x86_64 machine. I have a few questions that may help in being able to reproduce this issue: - Is this reproducible with a fresh database immediately after an install, or do you have to have data in your database? - In your script, are you using a base and bind DN that are both valid and exist? If you find that having data in your database is needed to trigger this issue, I would appreciate a test LDIF that you can reproduce the issue with. I'm able to reproduce this issue now. It required an entry to be added that the filter would be checked against. Here's the entry I added: dn: uid=test,dc=example,dc=com uid: test cn: test user sn: user objectclass: inetorgperson objectclass: posixaccount homedirectory: /home/test uidNumber: 501 gidNumber:501 Here's the stack trace: (gdb) bt #0 0x00002aaaaab60b48 in vattr_map_lookup (type_to_find=0xa13a80 "mail", result=0x40407a48) at ../ldapserver/ldap/servers/slapd/vattr.c:1904 #1 0x00002aaaaab612fb in vattr_map_namespace_sp_getlist (dn=0x787ec0, type_to_find=0xa13a80 "mail") at ../ldapserver/ldap/servers/slapd/vattr.c:2193 #2 0x00002aaaaab5e72e in vattr_test_filter (pb=0x958700, e=0xa10970, f=0xa139f0, filter_type=FILTER_TYPE_SUBSTRING, type=0xa13a80 "mail") at ../ldapserver/ldap/servers/slapd/vattr.c:439 #3 0x00002aaaaab08416 in slapi_vattr_filter_test_ext_internal (pb=0x958700, e=0xa10970, f=0xa139f0, verify_access=0, only_check_access=0, access_check_done=0x40407da8) at ../ldapserver/ldap/servers/slapd/filterentry.c:877 #4 0x00002aaaaab08a4c in vattr_test_filter_list (pb=0x958700, e=0xa10970, flist=0xa19790, ftype=161, verify_access=0, only_check_access=0, access_check_done=0x40407da8) at ../ldapserver/ldap/servers/slapd/filterentry.c:1018 #5 0x00002aaaaab08805 in slapi_vattr_filter_test_ext_internal (pb=0x958700, e=0xa10970, f=0xa19700, verify_access=0, only_check_access=0, access_check_done=0x40407da8) at ../ldapserver/ldap/servers/slapd/filterentry.c:945 #6 0x00002aaaaab08a4c in vattr_test_filter_list (pb=0x958700, e=0xa10970, flist=0xa10500, ftype=160, verify_access=0, only_check_access=0, access_check_done=0x40407da8) at ../ldapserver/ldap/servers/slapd/filterentry.c:1018 #7 0x00002aaaaab0878e in slapi_vattr_filter_test_ext_internal (pb=0x958700, e=0xa10970, f=0x9591b0, verify_access=0, only_check_access=0, access_check_done=0x40407da8) at ../ldapserver/ldap/servers/slapd/filterentry.c:939 #8 0x00002aaaaab08188 in slapi_vattr_filter_test_ext (pb=0x958700, e=0xa10970, f=0x9591b0, verify_access=1, only_check_access=0) at ../ldapserver/ldap/servers/slapd/filterentry.c:807 #9 0x00002aaaaab08120 in slapi_vattr_filter_test (pb=0x958700, e=0xa10970, f=0x9591b0, verify_access=1) at ../ldapserver/ldap/servers/slapd/filterentry.c:770 #10 0x00002aaaae9eefd4 in ldbm_back_next_search_entry_ext (pb=0x958700, use_extension=0) at ../ldapserver/ldap/servers/slapd/back-ldbm/ldbm_search.c:1240 #11 0x00002aaaae9ee7ba in ldbm_back_next_search_entry (pb=0x958700) at ../ldapserver/ldap/servers/slapd/back-ldbm/ldbm_search.c:1011 #12 0x00002aaaaab2841c in iterate (pb=0x958700, be=0x7d9480, send_result=1, pnentries=0x4040a04c) at ../ldapserver/ldap/servers/slapd/opshared.c:966 #13 0x00002aaaaab287a9 in send_results (pb=0x958700, send_result=1, nentries=0x4040a04c) at ../ldapserver/ldap/servers/slapd/opshared.c:1184 #14 0x00002aaaaab27e2e in op_shared_search (pb=0x958700, send_result=1) at ../ldapserver/ldap/servers/slapd/opshared.c:595 #15 0x00000000004282ad in do_search (pb=0x958700) at ../ldapserver/ldap/servers/slapd/search.c:276 #16 0x0000000000411aa1 in connection_dispatch_operation (conn=0x2aaab0851410, op=0xa14250, pb=0x958700) at ../ldapserver/ldap/servers/slapd/connection.c:532 #17 0x0000000000413066 in connection_threadmain () at ../ldapserver/ldap/servers/slapd/connection.c:2163 #18 0x00000033a742780d in sasl_map_config_add () at ../ldapserver/ldap/servers/slapd/sasl_map.c:342 #19 0x0000003398806407 in start_thread () from /lib64/libpthread.so.0 #20 0x0000003397cd4b0d in clone () from /lib64/libc.so.6 Created attachment 304041 [details] stacktraces I could also duplicate the crash. Since the cause of the problem is the memory corruption, different test cases show different stack traces. But the patch proposed by Ulf in bug 182621 fixes all cases. I'm marking this bug as duplicate of bug 182621. *** This bug has been marked as a duplicate of 182621 *** Bug already CLOSED. setting screened+ flag |