[389-devel] Please review: [389 Project] #47748: Simultaneous adding a user and binding as the user could fail in the password policy check
Noriko Hosoi
nhosoi at redhat.com
Fri Mar 21 01:38:27 UTC 2014
https://fedorahosted.org/389/ticket/47748
https://fedorahosted.org/389/attachment/ticket/47748/0001-Ticket-47748-Simultaneous-adding-a-user-and-binding-.patch
389 Project wrote:
> Comment:
>
> Bug description: In do_bind, bind_target_entry is retrieved from the
> DB or the entry cache. There was a small window that the entry failed
> to retrieve from there but the bind procedure in the backend (be_bind)
> succeeds. In the case, NULL bind_target_entry is passed to the Pass-
> word Policy check and it fails.
>
> Fix description: If be_bind returns SUCCESS and bind_target_entry is
> NULL, retrieve bind_target_entry agian, which is guaranteed since the
> entry was retrieved in the backend and placed in the entry cache.
>
More information about the 389-devel
mailing list