Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-810

Non-atomic password state updates

    Details

    • Type: Bug
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: 2.6.0, 2.4.3
    • Fix Version/s: None
    • Component/s: core server
    • Labels:
    • Support Ticket IDs:

      Description

      Updating the password policy state in an entry is fragile, and vulnerable to the state being changed in between it being read and it being updated.

      This could occur if two binds on an entry were processed on 2 servers in parallel. One server might see:

      MODIFY REQ type=sync
      BIND REQ (reads the old state)
      MODIFY RES (changes to new state)
      BIND RES (updates the wrong state)

      Note the bind currently takes a read lock. A write lock might be more appropriate here?

        Attachments

          Activity

            People

            • Assignee:
              matthew Matthew Swift
              Reporter:
              cjr Chris Ridd
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: