#47415 "Manage certificates" crashes admin server
Closed: wontfix None Opened 10 years ago by rmeggins.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Directory Server): Bug 979419

Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.

Description of problem: One of our customer was trying to double-check the
certificate installed on one set of servers last week but the "Manage
Certificates" button in the console doesn't appear to be doing anything.  But
then several minutes later, a crash report is sent out.

Version-Release number of selected component (if applicable):


How reproducible: Always


Steps to Reproduce:
1. Open admin console
2. Click on Mange Certificates.
3.

Actual results: admin server crashes


Expected results: No crashes.


Additional info:

The problem here is that we are crashing in adminutil due to a NULL dereference. This is caused by an improperly escaped DN being passed to ldap_explode_dn(). Specifically, in dn2AttrName(), we have the following code:

{{{
dnList = ldap_explode_dn(dn, 1);
rootList = ldap_explode_dn(rootDN, 1);

while (rootList[rootLen]) rootLen++;
while (dnList[dnLen]) dnLen++;
}}}

If dn is something like "cn=1->2,cn=replica,cn=dc\3Dexample\2Cdc\3Dcom,cn=mapping tree,cn=config", ldap_explode_dn() will return NULL due to the unescaped '>' character. We then try to access the an item from dnList without checking if it is NULL first. We need to be sure that we are using properly excaped DNs in the adminutil code.

To ssh://git.fedorahosted.org/git/389/adminutil.git
0b0deef..663e32b master -> master
commit e86bde45c26eed149d344c8761d02e351773d877
Author: Rich Megginson rmeggins@redhat.com
Date: Fri Oct 4 08:14:25 2013 -0600

Metadata Update from @rmeggins:
- Issue assigned to rmeggins
- Issue set to the milestone: 389-admin,console 1.1.36

7 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/752

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix (was: Fixed)

3 years ago

Login to comment on this ticket.

Metadata