rpms/nss_ldap/F-9 pam_ldap-184-broken-sasl-rebind.patch, NONE, 1.1 nss_ldap-259-parse2.patch, 1.3, 1.4 nss_ldap.spec, 1.99, 1.100 pam_ldap-184-referral-passwd2.patch, 1.1, 1.2 sources, 1.41, 1.42
Nalin Dahyabhai
nalin at fedoraproject.org
Wed Oct 29 21:25:24 UTC 2008
Author: nalin
Update of /cvs/pkgs/rpms/nss_ldap/F-9
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv15878
Modified Files:
nss_ldap-259-parse2.patch nss_ldap.spec
pam_ldap-184-referral-passwd2.patch sources
Added Files:
pam_ldap-184-broken-sasl-rebind.patch
Log Message:
- update to the latest version to pull in fixes from the development stream
pam_ldap-184-broken-sasl-rebind.patch:
--- NEW FILE pam_ldap-184-broken-sasl-rebind.patch ---
diff --git a/pam_ldap.c b/pam_ldap.c
index 6de0ced..73e94f2 100644
--- a/pam_ldap.c
+++ b/pam_ldap.c
@@ -1683,7 +1683,7 @@ _rebind_proc (LDAP * ld, LDAP_CONST char *url, int request, ber_int_t msgid)
userpw.bv_len = (userpw.bv_val != 0) ? strlen (userpw.bv_val) : 0;
rc =
- ldap_sasl_bind (session->ld, session->info->userdn, LDAP_SASL_SIMPLE,
+ ldap_sasl_bind (session->ld, who, LDAP_SASL_SIMPLE,
&userpw, psrvctrls, 0, &msgid);
if ( rc != LDAP_SUCCESS ) {
return rc;
nss_ldap-259-parse2.patch:
Index: nss_ldap-259-parse2.patch
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/nss_ldap-259-parse2.patch,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- nss_ldap-259-parse2.patch 17 Oct 2008 19:39:49 -0000 1.3
+++ nss_ldap-259-parse2.patch 29 Oct 2008 21:25:24 -0000 1.4
@@ -1,3 +1,5 @@
+GNU libc ignores malformed entries (those which don't parse correctly), so we
+should do that for entries we find using LDAP, upstream bug #248.
diff -up nss_ldap-259/configure.in nss_ldap-259/configure.in
--- nss_ldap-259/configure.in 2008-02-26 13:58:44.000000000 -0500
+++ nss_ldap-259/configure.in 2008-02-26 13:34:06.000000000 -0500
Index: nss_ldap.spec
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/nss_ldap.spec,v
retrieving revision 1.99
retrieving revision 1.100
diff -u -r1.99 -r1.100
--- nss_ldap.spec 17 Oct 2008 19:39:52 -0000 1.99
+++ nss_ldap.spec 29 Oct 2008 21:25:24 -0000 1.100
@@ -1,8 +1,8 @@
%define pam_ldap_version 184
Summary: NSS library and PAM module for LDAP
Name: nss_ldap
-Version: 259
-Release: 3%{?dist}.3
+Version: 263
+Release: 1%{?dist}
Source0: ftp://ftp.padl.com/pub/nss_ldap-%{version}.tar.gz
Source1: ftp://ftp.padl.com/pub/pam_ldap-%{pam_ldap_version}.tar.gz
Source3: nss_ldap.versions
@@ -23,6 +23,7 @@
Patch15: nss_ldap-257-mozldap.patch
Patch16: pam_ldap-184-referral-passwd2.patch
Patch17: nss_ldap-259-res_init.patch
+Patch19: pam_ldap-184-broken-sasl-rebind.patch
URL: http://www.padl.com/
License: LGPLv2+
@@ -74,6 +75,7 @@
%patch7 -p1 -b .manpointer
%patch13 -p1 -b .exop-modify
%patch16 -p1 -b .referral-passwd2
+%patch19 -p1 -b .broken-sasl-rebind
autoreconf -f -i
popd
@@ -188,16 +190,34 @@
%doc pam_ldap-%{pam_ldap_version}/ns-pwd-policy.schema
%changelog
-* Fri Oct 17 2008 Nalin Dahyabhai <nalin at redhat.com> - 259-3.3
+* Wed Oct 29 2008 Nalin Dahyabhai <nalin at redhat.com> - 263-1
+- update to 263, pulling in Luke's patch for #374 (#445972) which doesn't
+ leak the result message, and the fix for #376 (#466794)
+
+* Wed Oct 29 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-5
+- pam_ldap: don't crash when we have to follow a referral while looking up
+ information about the authenticating user and we're using SASL, which
+ affected 259-1 and later (patch from Paul P Komkoff Jr, #469061)
+
+* Fri Oct 17 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-4
- add missing local-to-network conversion on port numbers when looking up
- services (#450634)
+ services, which affected 259-1 and later (#450634)
+
+* Mon Sep 15 2008 Nalin Dahyabhai <nalin at redhat.com>
+- return 0 (fail) instead of 1 (success) when setnetgrent() is called for
+ a netgroup which doesn't actually exist or which has no members (#445972,
+ upstream #374)
-* Tue Sep 30 2008 Nalin Dahyabhai <nalin at redhat.com> - 259-3.2
+* Thu Sep 11 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-3
+- promote the previous change from a scratch build to the real thing
+
+* Tue Aug 26 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-2
- add libssl and libcrypto to the list of libraries against which we link
- statically to avoid running into symbol collisions at run-time, from devel
- stream (#446860)
-- defuzz one patch by pulling an updated version from the development stream
-- rebuild (#464620)
+ statically to avoid running into symbol collisions at run-time (#446860)
+
+* Wed Jul 16 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-1
+- update to version 261
+- remove fuzz from patches
* Sat May 24 2008 Dennis Gilmore <dennis at ausil.us> - 259-3.1
- minor rebuild for sparc
pam_ldap-184-referral-passwd2.patch:
Index: pam_ldap-184-referral-passwd2.patch
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/pam_ldap-184-referral-passwd2.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- pam_ldap-184-referral-passwd2.patch 26 Feb 2008 20:56:55 -0000 1.1
+++ pam_ldap-184-referral-passwd2.patch 29 Oct 2008 21:25:24 -0000 1.2
@@ -1,7 +1,8 @@
We need to hang on to the user's (old) password when the policy error is
change-after-reset or password-expired, because at password-change time,
we may need it to chase a referral during the update operation. Revised
-patch attached to upstream #232.
+patch attached to upstream #232, also requires -broken-sasl-rebind.patch
+to fix #469061.
Index: pam_ldap-184/pam_ldap.c
===================================================================
Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/sources,v
retrieving revision 1.41
retrieving revision 1.42
diff -u -r1.41 -r1.42
--- sources 26 Feb 2008 21:04:40 -0000 1.41
+++ sources 29 Oct 2008 21:25:24 -0000 1.42
@@ -1,2 +1,2 @@
-ef29690c6e5f02dffbfd0f32f296a97b nss_ldap-259.tar.gz
+5c14e6cdbbdde2872cf78d56b39ae24c nss_ldap-263.tar.gz
01bf1ad8576f0d1b58d9eddc68987a47 pam_ldap-184.tar.gz
More information about the scm-commits
mailing list