Hide Forgot
cloned from https://fedorahosted.org/389/ticket/305
Need steps to reproduce/verify this issue.
create a directory server instance and use the Example.ldif database with the dc=example,dc=com suffix using the console or ns-newpwpolicy.pl, create a subtree password policy at dc=example,dc=com and ou=people,dc=example,dc=com - then create a per-user password policy for uid=scarter,ou=people,dc=example,dc=com do an ldapsearch like this: ldapsearch -xLLL -D "cn=directory manager" -W -b dc=example,dc=com uid=scarter pwdpolicysubentry to verify that scarter has the per-user policy, and search ldapsearch -xLLL -D "cn=directory manager" -W -b dc=example,dc=com uid=alutz pwdpolicysubentry to verify that alutz has the policy set on ou=people then, do ldapsearches like this: ii=10 ; while [ $ii -gt 0 ] ; do ldapsearch -xLLL -D "cn=directory manager" -w thepassword -b dc=example,dc=com '(pwdpolicysubentry=*)' \* pwdpolicysubentry > /dev/null 2>&1 & ii=`expr $ii - 1` ; done Mark - anything to add?
To ssh://rmeggins@pkgs.devel.redhat.com/rpms/389-ds-base 81baa46..9aeb581 rhel-6.3 -> rhel-6.3 Commit 9aeb581741ad5a062ac0b23795b59acf31c33896
[1] create a DS instance using "dc=example,dc=com" [2] import Example.ldif [3] Setup a subtree password policy on ou=people,dc=example,dc=com [4] Test the crash: ii=10 ; while [ $ii -gt 0 ] ; do ldapsearch -xLLL -D "cn=directory manager" -w thepassword -b dc=example,dc=com '(pwdpolicysubentry=*)' \* pwdpolicysubentry > /dev/null 2>&1 & ii=`expr $ii - 1` ; done [5] Test the hang ii=10 ; while [ $ii -gt 0 ] ; do ldapcompare -x -D "cn=directory manager" -w thepassword "uid=scarter,ou=people,dc=example,dc=com" pwdpolicysubentry:on > /dev/null 2>&1 & ii=`expr $ii -1` ; done
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: Cause: concurrent compare operations on virtual attrs Consequence: hang Fix: an internal loop was incorrectly handled, fixed the loop issue Result: no more hang from concurrent compare ops
Followed the reproducible steps given in the comment #2 and comment #5. I did not observe any hang/crash. Hence, marking the bug as verified.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHSA-2012-0813.html