#1139 Race-condition bug in LDAP auth provider
Closed: Fixed None Opened 8 years ago by sgallagh.

Under heavy load, occasionally an LDAP auth request will fail with "System Error".

Further investigation shows that the {{{sdap_call_conn_cb()}}} function is being invoked with a zero-length URI value when this occurs.

I am currently working under the assumption that this is a timing issue with the failover code. (i.e. A second request at the same time causes the global URI value to be freed between the first request's failover server acquisition and the actual LDAP communication setup).

This was seen in a customer environment and I haven't found a consistent way to reproduce it yet.

For the record, the customer has been running sssd-1.5.1-66.el6_2.1.x86_64

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.8.0

Patch was identified during triage. Moving it to 1.7.91 to accurately reflect the release in which it will be delivered.

milestone: SSSD 1.8.0 => SSSD 1.7.91 (1.8.0 beta 1)
owner: somebody => sgallagh
patch: 0 => 1
status: new => assigned

Fixed by:
- 394f8a2 (master)
- 585ffd7 (sssd-1-5)

resolution: => fixed
status: assigned => closed

Metadata Update from @sgallagh:
- Issue assigned to sgallagh
- Issue set to the milestone: SSSD 1.8 beta

3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/2181

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.