Bug 470393 - configuration of nsslapd-timelimit -1 is rejected
Summary: configuration of nsslapd-timelimit -1 is rejected
Alias: None
Product: Red Hat Directory Server
Classification: Red Hat
Component: Directory Server
Version: 8.0
Hardware: All
OS: Linux
Target Milestone: ---
: ---
Assignee: Nathan Kinder
QA Contact: Chandrasekar Kannan
Depends On:
Blocks: 249650 FDS1.1.4 FDS1.2.0
TreeView+ depends on / blocked
Reported: 2008-11-06 23:11 UTC by Ulf Weltman
Modified: 2015-01-04 23:34 UTC (History)
4 users (show)

Fixed In Version: 8.1
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2009-04-29 23:07:36 UTC
Target Upstream Version:

Attachments (Terms of Use)
trivial fix proposal (884 bytes, patch)
2008-11-06 23:13 UTC, Ulf Weltman
no flags Details | Diff

Description Ulf Weltman 2008-11-06 23:11:32 UTC
The fix for bug 181032 is causing nsslapd-timelimit of -1 to be disallowed.  In 7.1 and according to RHDS 8.0 manual, -1 means infinite time limit.  7.1 had some code that indicated someone might have thought <0 was illegal, but that code didn't do anything.  In 8.0 the code returns operations error.

Comment 1 Ulf Weltman 2008-11-06 23:13:17 UTC
Created attachment 322795 [details]
trivial fix proposal

Comment 2 Nathan Kinder 2008-11-13 21:56:54 UTC
The fix in comment#1 looks good, and is consistent with the behavior outlines in the documentation.

Checked fix into ldapserver (HEAD).

Checking in ldap/servers/slapd/libglobs.c;
/cvs/dirsec/ldapserver/ldap/servers/slapd/libglobs.c,v  <--  libglobs.c
new revision: 1.30; previous revision: 1.29

Comment 3 Jenny Severance 2009-04-01 19:50:19 UTC
fix verified RHEL 4 

[root@jennyv4 jenny]# ldapsearch -x -h `hostname` -p 389 -D "cn=Directory Manager" -w Secret123 -b "cn=config" | grep nsslapd-timelimit
nsslapd-timelimit: 3600
nsslapd-timelimit: 3600

1. stop server
2. edit dse.ldif nsslapd-timelimit: -1
3. start server - no errors

[root@jennyv4 jenny]# ldapsearch -x -h `hostname` -p 389 -D "cn=Directory Manager" -w Secret123 -b "cn=config" | grep nsslapd-timelimit
nsslapd-timelimit: -1
nsslapd-timelimit: 3600 

second attributes belong to container:
dn: cn=default instance config,cn=chaining database,cn=plugins,cn=config

Comment 4 Chandrasekar Kannan 2009-04-29 23:07:36 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.


Note You need to log in before you can comment on or make changes to this bug.