Incorrect parameter passing when calling CACHE_RETURN() would cause slapd to crash under certain conditions.
See ldap/servers/slapd/back-ldbm/id2entry.c line 196. The second parameter should be a pointer to pointer, but the current code passes a regular pointer:
According to Noriko the correct code should be:
Created attachment 394429 [details]
git patch file (id2entry.c)
Noriko reviewed the fix proposal by Endi.
Push the fix to master.
$ git merge work
ldap/servers/slapd/back-ldbm/id2entry.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
$ git push
Counting objects: 13, done.
Delta compression using 4 threads.
Compressing objects: 100% (7/7), done.
Writing objects: 100% (7/7), 819 bytes, done.
Total 7 (delta 5), reused 0 (delta 0)
508af98..107d40e master -> master
*** Bug 565932 has been marked as a duplicate of this bug. ***
Steps to verify
Add 1k entries and remove them.
If the server does not crash in the operations :), this bug is verified.
Thanks Noriko :)
Added 1K entries and then removed them.
No crash found. hence marking as VERIFIED.