1533 – smbd sends 1200/sec ldap queries for invalid uid

Bug 1533 - smbd sends 1200/sec ldap queries for invalid uid

Summary: smbd sends 1200/sec ldap queries for invalid uid

Status:	RESOLVED DUPLICATE of bug 1478

Alias:	None

Product:	Samba 3.0
Classification:	Unclassified
Component:	File Services (show other bugs)
Version:	3.0.4
Hardware:	All Windows XP

Importance:	P3 normal
Target Milestone:	none
Assignee:	Samba Bugzilla Account
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2004-07-14 21:23 UTC by Warwick Smith
Modified:	2004-07-16 04:20 UTC (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Warwick Smith 2004-07-14 21:23:07 UTC

We are using OpenLDAP as a password backend and have found every so often that
the slapd process runs away.  This was traced down to repeated queries (around
1200 per second) for an invalid uid from an smbd process.

An example slapd log entry:
Jul 15 13:25:19 myhost slapd[25634]: conn=3 op=369 SRCH
base="ou=Users,dc=example,dc=com" scope=1
filter="(&(objectClass=posixAccount)(uid=testuser))"

More tracking has found that this uid (testuser) was listed in a memberUid
attribute of a samba ldap group.  

This is of course a problem with invalid data in our ldap database (should only
have valid users listed), but I think the smbd should accept the first "nope, no
such user" response and get on with other things :)

We are okay now (we've done some tidying), but I'm hoping that someone will have
a look at the code so I can sleep easier in the future!

Comment 1 Guenther Deschner 2004-07-16 04:13:08 UTC

Should be fixed with
http://websvn.samba.org/websvn/changeset.php?rep=samba&path=/&rev=805&nolog=0

Could you please try again with samba3.0.5rc1 ?

Comment 2 Guenther Deschner 2004-07-16 04:20:56 UTC


*** This bug has been marked as a duplicate of 1478 ***