Novell eDirectory crashes when setting Universal Password through LDAP

  • 3909919
  • 18-Jan-2008
  • 26-Apr-2012

Environment

Novell Modular Authentication Service (NMAS) version 3.1.3
Novell Modular Authentication Service (NMAS) version 3.2.0
Novell eDirectory 8.8.x for All Platforms
Novell eDirectory 8.7.3.x for All Platforms

Situation

- Attempts to set Universal Password through LDAP crash eDirectory
- Problem affects Novell eDirectory 8.7.3 as well as Novell eDirectory 8.8 servers
- Universal Password policy has "Use Microsoft complexity policy" option turned on.
- Problem is only seen after patching to Security Services Patch 2.0.4 (NMAS version 3.1.3) or Security Services Patch 2.0.5 (NMAS version 3.2.0)

Resolution

The issue was introduced in the NMAS version shipping with Security Services Patch 2.0.4. A fix will be included in the forthcoming Field Test File of NMAS 3.2.0 .

As a workaround, a possible option is to use the Novell syntax instead of Microsoft complexity rules in the Universal Password policy. Unless explicity configured, NMAS uses the Novell syntax by default.

Additional Information

A sample core stack on Linux looks like the following:

#0 0x4030140c in memcpy () from /lib/tls/libc.so.6

#1 0x47338eaf in dal_insertModValue () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#2 0x4733635f in dal_insertCoreModValue () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#3 0x4734e80a in getPwdHistoryUpdates () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#4 0x4734f4cf in DALSetPassword () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#5 0x47377c9d in spmAgentGetPasswordHistory () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#6 0x47377ff8 in spmSetPassword () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#7 0x4737813f in spmAgentDeletePasswordAttributes () from
/opt/novell/eDirectory/lib/nds-modules/libnmas.so
#8 0x477cd1b8 in SetSPMPassword () from
/opt/novell/eDirectory/lib/nds-modules/libspmdclnt.so
#9 0x477c5b74 in setLocalPassword () from
/opt/novell/eDirectory/lib/nds-modules/libspmdclnt.so
#10 0x477c5fe1 in setUnicodePassword () from
/opt/novell/eDirectory/lib/nds-modules/libspmdclnt.so
#11 0x477c64d8 in SPM_DDCSetPassword () from
/opt/novell/eDirectory/lib/nds-modules/libspmdclnt.so
#12 0x477c6541 in SPM_DDCSetPasswordEx () from
/opt/novell/eDirectory/lib/nds-modules/libspmdclnt.so
#13 0x46ee4f0d in SPMSetPassword () from
/opt/novell/eDirectory/lib/nds-modules/libnds.so
#14 0x46cdaaa7 in DSGenerateKeyPair () from
/opt/novell/eDirectory/lib/nds-modules/libnds.so
#15 0x4010ef71 in DDCGenerateKeyPair () from
/opt/novell/eDirectory/sbin/../lib/nds-modules/libdsloader.so.1
#16 0x48af4a2f in UninstallLDAP () from
/opt/novell/eDirectory/lib/nds-modules/libnldap.so
#17 0x48abe154 in DoLBURPOperation () from
/opt/novell/eDirectory/lib/nds-modules/libnldap.so
#18 0x48aada25 in DoLBURPOperation () from
/opt/novell/eDirectory/lib/nds-modules/libnldap.so
#19 0x48aa7494 in DHModuleConfig () from
/opt/novell/eDirectory/lib/nds-modules/libnldap.so
#20 0x08057ae5 in PoolWorker ()
#21 0x4019dcb7 in start_thread () from /lib/tls/libpthread.so.0
#22 0x4035221e in clone () from /lib/tls/libc.so.6
#23 0x4ad26bb0 in ?? ()

Feedback service temporarily unavailable. For content questions or problems, please contact Support.