[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#7996) Global initialisation race in ldap_int_initialize

To: openldap-its@OpenLDAP.org
Subject: (ITS#7996) Global initialisation race in ldap_int_initialize
From: a.cudbardb@freeradius.org
Date: Tue, 09 Dec 2014 18:14:38 +0000
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Arran Cudbard-Bell
Version: 2.4.40
OS: OSX 10.10.1
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (69.196.165.104)


Issue is fully documented here:
https://github.com/arr2036/ldapperf/issues/2

As libldap lacks a global initialisation function, the global config struct and
other global resources are initialised on the first call to either ldap_create,
ldap_get_option or ldap_set_option via a call to ldap_int_initialize.

Where multiple threads are spawned and each allocate a new handle using a
function that calls ldap_create, the lack of concurrent access protection in
ldap_int_initialize causes memory corruption.

There are a few ways this could be fixed. One is documented in the issue tracker
link above. There are likely better ones.

An alternative of fixing this would be to have public functions that can be used
to initialise any global resources before creating handles, and to free them
explicitly (instead of relying on atexit or a similar mechanism).

In terms of writing dynamically loadable/unloadable modules around libldap, the
second approach is preferred as any memory allocated on the heap could be
cleaned up prior to the module being unloaded.

Prev by Date: Re: (ITS#7995) of-by-one error in schema
Next by Date: Re: (ITS#7995) of-by-one error in schema
Index(es):
- Chronological
- Thread