rpms/nss_ldap/F-9 pam_ldap-184-broken-sasl-rebind.patch, NONE, 1.1 nss_ldap-259-parse2.patch, 1.3, 1.4 nss_ldap.spec, 1.99, 1.100 pam_ldap-184-referral-passwd2.patch, 1.1, 1.2 sources, 1.41, 1.42

Nalin Dahyabhai nalin at fedoraproject.org
Wed Oct 29 21:25:24 UTC 2008 

Author: nalin

Update of /cvs/pkgs/rpms/nss_ldap/F-9
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv15878

Modified Files:
	nss_ldap-259-parse2.patch nss_ldap.spec 
	pam_ldap-184-referral-passwd2.patch sources 
Added Files:
	pam_ldap-184-broken-sasl-rebind.patch 
Log Message:
- update to the latest version to pull in fixes from the development stream


pam_ldap-184-broken-sasl-rebind.patch:

--- NEW FILE pam_ldap-184-broken-sasl-rebind.patch ---
diff --git a/pam_ldap.c b/pam_ldap.c
index 6de0ced..73e94f2 100644
--- a/pam_ldap.c
+++ b/pam_ldap.c
@@ -1683,7 +1683,7 @@ _rebind_proc (LDAP * ld, LDAP_CONST char *url, int request, ber_int_t msgid)
   userpw.bv_len = (userpw.bv_val != 0) ? strlen (userpw.bv_val) : 0;
 
   rc =
-    ldap_sasl_bind (session->ld, session->info->userdn, LDAP_SASL_SIMPLE,
+    ldap_sasl_bind (session->ld, who, LDAP_SASL_SIMPLE,
                     &userpw, psrvctrls, 0, &msgid);
   if ( rc != LDAP_SUCCESS ) {
     return rc;

nss_ldap-259-parse2.patch:

Index: nss_ldap-259-parse2.patch
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/nss_ldap-259-parse2.patch,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- nss_ldap-259-parse2.patch	17 Oct 2008 19:39:49 -0000	1.3
+++ nss_ldap-259-parse2.patch	29 Oct 2008 21:25:24 -0000	1.4
@@ -1,3 +1,5 @@
+GNU libc ignores malformed entries (those which don't parse correctly), so we
+should do that for entries we find using LDAP, upstream bug #248.
 diff -up nss_ldap-259/configure.in nss_ldap-259/configure.in
 --- nss_ldap-259/configure.in	2008-02-26 13:58:44.000000000 -0500
 +++ nss_ldap-259/configure.in	2008-02-26 13:34:06.000000000 -0500


Index: nss_ldap.spec
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/nss_ldap.spec,v
retrieving revision 1.99
retrieving revision 1.100
diff -u -r1.99 -r1.100
--- nss_ldap.spec	17 Oct 2008 19:39:52 -0000	1.99
+++ nss_ldap.spec	29 Oct 2008 21:25:24 -0000	1.100
@@ -1,8 +1,8 @@
 %define pam_ldap_version 184
 Summary: NSS library and PAM module for LDAP
 Name: nss_ldap
-Version: 259
-Release: 3%{?dist}.3
+Version: 263
+Release: 1%{?dist}
 Source0: ftp://ftp.padl.com/pub/nss_ldap-%{version}.tar.gz
 Source1: ftp://ftp.padl.com/pub/pam_ldap-%{pam_ldap_version}.tar.gz
 Source3: nss_ldap.versions
@@ -23,6 +23,7 @@
 Patch15: nss_ldap-257-mozldap.patch
 Patch16: pam_ldap-184-referral-passwd2.patch
 Patch17: nss_ldap-259-res_init.patch
+Patch19: pam_ldap-184-broken-sasl-rebind.patch
 
 URL: http://www.padl.com/
 License: LGPLv2+
@@ -74,6 +75,7 @@
 %patch7 -p1 -b .manpointer
 %patch13 -p1 -b .exop-modify
 %patch16 -p1 -b .referral-passwd2
+%patch19 -p1 -b .broken-sasl-rebind
 autoreconf -f -i
 popd
 
@@ -188,16 +190,34 @@
 %doc pam_ldap-%{pam_ldap_version}/ns-pwd-policy.schema
 
 %changelog
-* Fri Oct 17 2008 Nalin Dahyabhai <nalin at redhat.com> - 259-3.3
+* Wed Oct 29 2008 Nalin Dahyabhai <nalin at redhat.com> - 263-1
+- update to 263, pulling in Luke's patch for #374 (#445972) which doesn't
+  leak the result message, and the fix for #376 (#466794)
+
+* Wed Oct 29 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-5
+- pam_ldap: don't crash when we have to follow a referral while looking up
+  information about the authenticating user and we're using SASL, which
+  affected 259-1 and later (patch from Paul P Komkoff Jr, #469061)
+
+* Fri Oct 17 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-4
 - add missing local-to-network conversion on port numbers when looking up
-  services (#450634)
+  services, which affected 259-1 and later (#450634)
+
+* Mon Sep 15 2008 Nalin Dahyabhai <nalin at redhat.com>
+- return 0 (fail) instead of 1 (success) when setnetgrent() is called for
+  a netgroup which doesn't actually exist or which has no members (#445972,
+  upstream #374)
 
-* Tue Sep 30 2008 Nalin Dahyabhai <nalin at redhat.com> - 259-3.2
+* Thu Sep 11 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-3
+- promote the previous change from a scratch build to the real thing
+
+* Tue Aug 26 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-2
 - add libssl and libcrypto to the list of libraries against which we link
-  statically to avoid running into symbol collisions at run-time, from devel
-  stream (#446860)
-- defuzz one patch by pulling an updated version from the development stream
-- rebuild (#464620)
+  statically to avoid running into symbol collisions at run-time (#446860)
+
+* Wed Jul 16 2008 Nalin Dahyabhai <nalin at redhat.com> - 261-1
+- update to version 261
+- remove fuzz from patches
 
 * Sat May 24 2008 Dennis Gilmore <dennis at ausil.us> - 259-3.1
 - minor rebuild for sparc

pam_ldap-184-referral-passwd2.patch:

Index: pam_ldap-184-referral-passwd2.patch
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/pam_ldap-184-referral-passwd2.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- pam_ldap-184-referral-passwd2.patch	26 Feb 2008 20:56:55 -0000	1.1
+++ pam_ldap-184-referral-passwd2.patch	29 Oct 2008 21:25:24 -0000	1.2
@@ -1,7 +1,8 @@
 We need to hang on to the user's (old) password when the policy error is
 change-after-reset or password-expired, because at password-change time,
 we may need it to chase a referral during the update operation.  Revised
-patch attached to upstream #232.
+patch attached to upstream #232, also requires -broken-sasl-rebind.patch
+to fix #469061.
 
 Index: pam_ldap-184/pam_ldap.c
 ===================================================================


Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/nss_ldap/F-9/sources,v
retrieving revision 1.41
retrieving revision 1.42
diff -u -r1.41 -r1.42
--- sources	26 Feb 2008 21:04:40 -0000	1.41
+++ sources	29 Oct 2008 21:25:24 -0000	1.42
@@ -1,2 +1,2 @@
-ef29690c6e5f02dffbfd0f32f296a97b  nss_ldap-259.tar.gz
+5c14e6cdbbdde2872cf78d56b39ae24c  nss_ldap-263.tar.gz
 01bf1ad8576f0d1b58d9eddc68987a47  pam_ldap-184.tar.gz

More information about the scm-commits mailing list