On 09/29/2015 08:15 AM, 389 Project wrote:
Unfortunately, it did not pass the IPA tests.
Bug Description: The cause of the problem is rather not a race condition but
accessing an already freed agreement in a plug-in:
The crashed thread is deleting an agreement object, which calls
It eventually calls op_shared_search with the deleted agreement
base scope and filter
Since it is a DSE entry it goes to dse_search, in which it calls
replarea and crashes in slapi_sdn_copy by NULL dereference in from
Fix Description: This patch adds the check to agmt_get_replarea, in which if
the agreement is not in the agreement list, it returnes NULL repl area.
the NULL repl area is returned the callers back off with an error.