[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: access violation in slapd (userCerficate search) (ITS#2004)



OK, I was busy last week, but there is founded bug

Call stack:
slapd!strchrlen+0x1c
slapd!is_ad_sublang+0x4a
slapd!is_ad_subtype+0x65
slapd!ad_inlist+0x44
slapd!send_search_entry+0x4a0
slapd!bdb_search+0xf6c
slapd!do_search+0x7c1
slapd!connection_operation+0x324
slapd!ldap_int_thread_pool_wrapper+0xf7
slapd!_threadstartex+0x73
KERNEL32!BaseThreadStart+0x52

Code (servers/slapd/search.c):
...
/* actually do the search and send the result(s) */
	if ( be->be_search ) {
		(*be->be_search)( be, conn, op, &pbase, &nbase,
			scope, deref, sizelimit,
		    timelimit, filter, &fstr, an, attrsonly );
...

here an->an_desc->ad_lang->bv_val is uninitialized (0xcdcdcdcd), but is
used other functions (bdb_search and so on)

Best regards,
Sergey V. Simakov  mailto:sim@x509.ru
security software engineer, MCP+Internet, MCSE
VALIDATA http://www.x509.ru 

> -----Original Message-----
> From: Kurt D. Zeilenga [mailto:Kurt@OpenLDAP.org] 
> Sent: Sunday, August 04, 2002 9:23 AM
> To: óÉÍÁËÏ× óÅÒÇÅÊ
> Cc: openldap-its@OpenLDAP.org
> Subject: Re: access violation in slapd (userCerficate search) 
> (ITS#2004)
> 
> 
> Where's the software bug?  Looks like normal behavior to me.
> 
> Kurt
> 
> At 08:34 AM 2002-08-02, sim@x509.ru wrote:
> >Full_Name: Sergey Simakov
> >Version: 2.1.2
> >OS: Windows 2000
> >URL: ftp://ftp.openldap.org/incoming/
> >Submission from: (NULL) (194.186.131.178)
> >
> >