Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-70912

All LDAP bind state must be attached to connection object

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • 6.3.0-rc0, 6.0.6
    • Affects Version/s: None
    • Component/s: None
    • None
    • Fully Compatible
    • ALL
    • v6.3, v6.0
    • Security 2022-11-14, Security 2022-11-28, Security 2022-12-12, Security 2022-12-26, Security 2023-01-09, Security 2023-01-23, Security 2023-02-06, Security 2023-02-20

      OpenLDAPConnection::bindAsUser both binds to the target LDAP server and invokes ldap_set_rebind_proc, to register a callback which actually performs the binding operation. This callback will get executed if a subsequent query operation chases a referral to a delegated LDAP server, and finds that we need to bind to the new server using our original bind parameters. The callback is provided with the address of additional arguments which contain the bind parameters. This address must be valid when the callback is called.

      Because the callback can be invoked during any call to several OpenLDAPConenction methods, the pointer registered in ldap_set_rebind_proc must be to a value whose lifetime is guaranteed to live at least as long as the OpenLDAPConnection itself.

            Assignee:
            varun.ravichandran@mongodb.com Varun Ravichandran
            Reporter:
            spencer.jackson@mongodb.com Spencer Jackson
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: