DO NOT REPLY [Bug 29207] New: - LDAP add-to-cache causes auth_ldap to return false negatives

[bu...@apache.org]

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=29207>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=29207

LDAP add-to-cache causes auth_ldap to return false negatives

           Summary: LDAP add-to-cache causes auth_ldap to return false
                    negatives
           Product: Apache httpd-2.0
           Version: 2.0-HEAD
          Platform: Other
        OS/Version: Other
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: mod_ldap
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: minfrin@sharp.fm


The LDAP cache code is returning false negatives when the cache gets full.

There are two problems at work here:

- The cache purge code doesn't work, so the cache gets full and stays full.

- The add to cache function, failing because the cache is full, seems to be
causing Apache to return an auth denied, when it should really fail and log an
error, though auth the user (as there is no reason why a successfully auth'ed
user should be denied due to cache problems).

The segfaults that were caused by the above problems have been fixed, unmasking
the two problems.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org