This bug has been migrated to another issue tracking site. It has been closed here and may no longer be being monitored.

If you would like to get updates for this issue, or to participate in it, you may do so at Red Hat Issue Tracker .
Bug 2269530 - Deployment with custom plugins hitting several ns-slapd crashes.
Summary: Deployment with custom plugins hitting several ns-slapd crashes.
Keywords:
Status: CLOSED MIGRATED
Alias: None
Product: Red Hat Directory Server
Classification: Red Hat
Component: 389-ds-base
Version: 12.3
Hardware: x86_64
OS: Linux
unspecified
high
Target Milestone: DS13.0
: dirsrv-13.0
Assignee: LDAP Maintainers
QA Contact: LDAP QA Team
Evgenia Martynyuk
URL:
Whiteboard: sync-to-jira
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2024-03-14 13:44 UTC by Têko Mihinto
Modified: 2024-10-25 04:25 UTC (History)
6 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2024-06-26 13:51:05 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 2292104 0 medium NEW CVE-2024-5953 389-ds-base: Malformed userPassword hash may cause Denial of Service 2025-05-13 11:36:09 UTC
Red Hat Issue Tracker   DIRSRV-81 0 None None Red Hat Issue Tracker 2024-06-26 13:51:04 UTC
Red Hat Issue Tracker IDMDS-4363 0 None None None 2024-05-07 10:39:24 UTC

Description Têko Mihinto 2024-03-14 13:44:28 UTC 
Description of problem:
Customer is trying to migrate to RHDS 12.
They are running some tests with RHDS 12.3 and they are getting ns-slapd crashes regularly.
There are 3 custom plugins and the DNA plugin is enabled.

Version-Release number of selected component (if applicable):
$ cat <SOS_REPORT>/etc/redhat-release
Red Hat Enterprise Linux release 9.3 (Plow)
$
$ grep <SOS_REPORT>/389-ds installed-rpms
389-ds-base-2.3.6-8.module+el9dsrv+20821+6bc979c1.x86_64    Thu Feb 15 18:33:01 2024
389-ds-base-libs-2.3.6-8.module+el9dsrv+20821+6bc979c1.x86_64 Thu Feb 15 18:33:01 2024
cockpit-389-ds-2.3.6-8.module+el9dsrv+20821+6bc979c1.noarch Thu Feb 15 18:33:40 2024
$

How reproducible:
Regularly at customer site.

Steps to Reproduce:
Customer could crash the server with some DEL / ADD / MOD operations.

Actual results:
ns-slapd is crashing.

Expected results:
Server should not crash.

Additional info:
The stacktraces are all different.
This likely indicates memory corruption issues.
Comment 20 Pierre Rogier 2024-06-13 12:25:38 UTC 
FYI this issue is also tracked as CVE-2024-5953 https://bugzilla.redhat.com/show_bug.cgi?id=2292104
Comment 21 Viktor Ashirov 2024-06-26 13:51:05 UTC 
This BZ has been automatically migrated to Red Hat Issue Tracker https://issues.redhat.com/browse/DIRSRV-81. All future work related to this report will be managed there.

Due to differences in account names between systems, some fields were not replicated. Be sure to add yourself to Jira issue's "Watchers" field to continue receiving updates and add others to the "Need Info From" field to continue requesting information.

In the event you have trouble locating or viewing this issue, you can file an issue by sending mail to rh-issues. You can also visit https://access.redhat.com/articles/7032570 for general account information.
Comment 22 Red Hat Bugzilla 2024-10-25 04:25:08 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 120 days
Note You need to log in before you can comment on or make changes to this bug.