diff options
| author | Michael Adam <obnox@samba.org> | 2009-05-22 11:58:00 +0200 |
|---|---|---|
| committer | Michael Adam <obnox@samba.org> | 2009-05-22 12:11:28 +0200 |
| commit | 2b6dbddb9cc723fcbd2e4e22a9404d6b4ff805d7 (patch) | |
| tree | 523d1a6a2cda176af3fe97d1c16ed6f7e6c33a28 | |
| parent | b6769282d60d20301f085243b3e747efffe2d637 (diff) | |
| download | samba-2b6dbddb9cc723fcbd2e4e22a9404d6b4ff805d7.tar.gz | |
s3:winbind:idmap_ldap: fix a crash bug in idmap_ldap_unixids_to_sids (#6387)
This fixes a crash bug hit when multiple mappings were found by
the ldap search. This crash was caused by an ldap asssertion
in ldap_next_entry because was set to NULL in each iteration.
The corresponding fix was applied to the idmap_ldap_sids_to_unixids()
by Jerry in 2007 (b066668b74768d9ed547f16bf7b6ba6aea5df20a).
This fixes the crash part of bug #6387.
There is a logic part, too:
The problem currently only occurs when multiple mappings are found
for one given unixid. Now winbindd does not crash any more but
it does not correctly handle this situation. It just returns the
last mapping from the ldap search results.
This needs fixing.
Michael
(cherry picked from commit e9010fa366746ec1ae948dbcf3493d446e23b14c)
Signed-off-by: Michael Adam <obnox@samba.org>
| -rw-r--r-- | source3/winbindd/idmap_ldap.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/source3/winbindd/idmap_ldap.c b/source3/winbindd/idmap_ldap.c index 7224589076e..854fd21df8e 100644 --- a/source3/winbindd/idmap_ldap.c +++ b/source3/winbindd/idmap_ldap.c @@ -892,6 +892,7 @@ static NTSTATUS idmap_ldap_unixids_to_sids(struct idmap_domain *dom, TALLOC_CTX *memctx; struct idmap_ldap_context *ctx; LDAPMessage *result = NULL; + LDAPMessage *entry = NULL; const char *uidNumber; const char *gidNumber; const char **attr_list; @@ -979,7 +980,6 @@ again: } for (i = 0; i < count; i++) { - LDAPMessage *entry = NULL; char *sidstr = NULL; char *tmp = NULL; enum id_type type; |