A new maintentance release for the 2.6 Feature series has been released.
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Howard Chu (Symas Corp)
Quanah Gibson-Mount (Dropbox)
Ondřej Kuzník (Symas Corp)
Community Contributors:
Stephen Gallagher
Nadezhda Ivanova
Nick Porter
Ryan Tandy
HAMANO Tsukasa
Special notes:
The slapo-memberof overlay is no longer deprecated. Please see the slapo-memberof(5) man page on how to configure it to be compatible with replication.
OpenLDAP 2.6.8 Release (2024/05/21)
Fixed libldap exit handling with OpenSSL3 again (ITS#9952)
Fixed libldap OpenSSL channel binding digest (ITS#10216)
Fixed slapd handling of large uid/gids peercred auth (ITS#10211)
Fixed slapd-asyncmeta/meta target structure allocations (ITS#10197)
Fixed slapd-meta with dynlist (ITS#10164)
Fixed slapd-meta binds when proxying internal op (ITS#10165)
Added slapo-nestgroup overlay (ITS#10161)
Added slapo-memberof 'addcheck' option (ITS#10167)
Fixed slapo-accesslog startup initialization (ITS#10170)
Fixed slapo-constraint double free on invalid attr (ITS#10204)
Fixed slapo-dynlist with abandoned operations (ITS#10044)
Build
Fixed build with gcc14.x (ITS#10166)
Fixed back-perl with clang15 (ITS#10177)
Fixed to reduce systemd dependencies (ITS#10214)
Contrib
Added slapo-alias contrib module (ITS#10104, ITS#10182)
Fixed slapo-autogroup to work with slapo-dynlist (ITS#10185)
Fixed smbk5pwd implicit function declaration (ITS#10206)
Documentation
Fixed slapo-memberof exattr requirements (ITS#7400)
Fixed slapo-memberof is no longer deprecated (ITS#7400)
Minor Cleanup
ITS#9921
ITS#10103
ITS#10171
ITS#10172
ITS#10173
ITS#10179
ITS#10183
ITS#10186
ITS#10188
ITS#10193
ITS#10209
A new maintentance release for the 2.5 Long Term Support series has been released.
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Howard Chu (Symas Corp)
Quanah Gibson-Mount (Dropbox)
Ondřej Kuzník (Symas Corp)
Community Contributors:
Stephen Gallagher
Nadezhda Ivanova
Nick Porter
Ryan Tandy
HAMANO Tsukasa
OpenLDAP 2.5.18 Release (2024/05/21)
Fixed libldap exit handling with OpenSSL3 again (ITS#9952)
Fixed libldap OpenSSL channel binding digest (ITS#10216)
Fixed slapd handling of large uid/gids peercred auth (ITS#10211)
Fixed slapd-meta with dynlist (ITS#10164)
Fixed slapd-meta binds when proxying internal op (ITS#10165)
Fixed slapo-accesslog startup initialization (ITS#10170)
Fixed slapo-dynlist with abandoned operations (ITS#10044)
Build
Fixed build with gcc14.x (ITS#10166)
Fixed back-perl with clang15 (ITS#10177)
Fixed tests to use SCRAM-SHA-256 instead of DIGEST-MD5 (ITS#10208)
Fixed to reduce systemd dependencies (ITS#10214)
Contrib
Fixed smbk5pwd implicit function declaration (ITS#10206)
Minor Cleanup
ITS#9921
ITS#10171
ITS#10173
ITS#10179
ITS#10186
ITS#10209
LMDB 0.9.33 is now available for use.
This is a maintenance release and is made available for general use.
Project contributors:
Howard Chu (Symas Corp)
LMDB 0.9.33 Release (2024/05/21)
ITS#9037 mdb_page_search: fix error code when DBI record is missing
ITS#10198 For win32, stop passing ignored parameter
ITS#10212 Fix meta page usage by read only tools
A new maintentance release for the 2.6 Feature series has been released, fixing a security issue.
- ITS#10139 Fixed slapd to honour disclose in matchedDN handling
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Howard Chu (Symas Corp)
Quanah Gibson-Mount (Dropbox)
Ondřej Kuzník (Symas Corp)
Community Contributors:
Craig Balfour
Greg Burd
Florin Crișan
SATOH Fumiyasu
Hiroyuki Homma
Nadezhda Ivanova
Stacey Marshall
OpenLDAP 2.6.7 Release (2024/01/29)
Added slapo-dynlist option to disable filter support (ITS#10025)
Fixed liblber missing newline on long msg (ITS#10105)
Fixed libldap exit handling with OpenSSL3 (ITS#9952)
Fixed libldap with TLS and multiple ldap URIs (ITS#10101)
Fixed libldap OpenSSL cipher suite handling (ITS#10094)
Fixed libldap OpenSSL 3.0 and Diffie-Hellman param files (ITS#10124)
Fixed libldap timestamps on Windows (ITS#10100)
Fixed lloadd to work when resolv.conf is missing (ITS#10070)
Fixed lloadd handling of closing connection (ITS#10083)
Fixed lloadd tiers to be correctly linked on startup (ITS#10142)
Fixed slapd to honour disclose in matchedDN handling (ITS#10139)
Fixed slapd handling of regex testing in ACLs (ITS#10089)
Fixed slapd sync replication with glued database (ITS#10080)
Fixed slapd local logging on Windows (ITS#10092)
Fixed slapd-asyncmeta when remote suffix is empty (ITS#10076)
Fixed slapo-dynlist so it can't be global (ITS#10091)
Build
Fixed lloadd type mismatches (ITS#10074)
Fixed builds for Windows (ITS#10117)
Fixed build with clang16 (ITS#10123)
Documentation
Fixed slapo-homedir(5) attribute name for olcHomedirArchivePath (ITS#10057)
A new maintentance release for the 2.5 Long Term Support series has been released, fixing a security issue.
- ITS#10139 Fixed slapd to honour disclose in matchedDN handling
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Howard Chu (Symas Corp)
Quanah Gibson-Mount (Dropbox)
Ondřej Kuzník (Symas Corp)
Community Contributors:
Craig Balfour
Greg Burd
Florin Crișan
SATOH Fumiyasu
Nadezhda Ivanova
Stacey Marshall
OpenLDAP 2.5.17 Release (2024/01/29)
Added slapo-dynlist option to disable filter support (ITS#10025)
Fixed liblber missing newline on long msg (ITS#10105)
Fixed libldap exit handling with OpenSSL3 (ITS#9952)
Fixed libldap with TLS and multiple ldap URIs (ITS#10101)
Fixed libldap OpenSSL cipher suite handling (ITS#10094)
Fixed libldap OpenSSL 3.0 and Diffie-Hellman param files (ITS#10124)
Fixed libldap timestamps on Windows (ITS#10100)
Fixed lloadd to work when resolv.conf is missing (ITS#10070)
Fixed lloadd handling of closing connection (ITS#10083)
Fixed slapd to honour disclose in matchedDN handling (ITS#10139)
Fixed slapd handling of regex testing in ACLs (ITS#10089)
Fixed slapd-asyncmeta when remote suffix is empty (ITS#10076)
Fixed slapo-dynlist so it can't be global (ITS#10091)
Build
Fixed lloadd type mismatches (ITS#10074)
Fixed builds for Windows (ITS#10117)
Fixed build with clang16 (ITS#10123
Documentation
Fixed slapo-homedir(5) attribute name for olcHomedirArchivePath (ITS#10057)
LMDB 0.9.32 is now available for use.
This is a maintenance release and is made available for general use.
Project contributors:
Howard Chu (Symas Corp)
Community contributors:
Clément Renault
LMDB 0.9.32 Release (2024/01/29)
ITS#9378 - Add ability to replay log and replay log tool
ITS#10095 - partial revert of ITS#9278. The patch was incorrect and introduced numerous race conditions.
ITS#10125 - mdb_load: fix cursor reinit in Append mode
ITS#10137 - Allow users to define MDB_IDL_LOGN
On January 18th 2024, we will be performing some maintenance on the OpenLDAP project infrastructure and some services may be temporarily unavailable, notably:
- website/FTP
- mailing lists
- ITS (bugzilla)
A new maintentance release for the 2.6 Feature series has been released, fixing two significant issues. Either issue can result in slapd abruptly terminating.
- ITS#10045 regression introduced in 2.6.5 by the initial fix. All users of OpenLDAP 2.6.5 are advised to upgrade.
- ITS#10067 A long standing issue since 2001. All users of back-meta or back-asyncmeta are advised to upgrade.
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Quanah Gibson-Mount (Klarna)
Ondřej Kuzník (Symas Corp)
OpenLDAP 2.6.6 Release (2023/07/31)
Fixed slapd cn=config incorrect handling of paused (ITS#10045)
Fixed slapd-meta to account for MOD ops being optional (ITS#10067)
Fixed slapd-asyncmeta to account for MOD ops being optional (ITS#10067)
A new maintentance release for the 2.5 Long Term Support series has been released, fixing two significant issues. Either issue can result in slapd abruptly terminating.
- ITS#10045 regression introduced in 2.5.15 by the initial fix. All users of OpenLDAP 2.5.15 are advised to upgrade.
- ITS#10067 A long standing issue since 2001. All users of back-meta or back-asyncmeta are advised to upgrade.
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Quanah Gibson-Mount (Klarna)
Ondřej Kuzník (Symas Corp)
OpenLDAP 2.5.16 Release (2023/07/31)
Fixed slapd cn=config incorrect handling of paused (ITS#10045)
Fixed slapd-meta to account for MOD ops being optional (ITS#10067)
Fixed slapd-asyncmeta to account for MOD ops being optional (ITS#10067)
A new maintentance release for the 2.6 Feature series has been released, apart from the usual bug fixes listed below this is what administrators should be aware of:
- Fixed cipher suite handling with TLSv1.3 (ITS#10035)
It is available for download as detailed on our download page:
https://www.openldap.org/software/download/
and should soon be available on all official mirrors:
ftp://ftp.openldap.org/pub/OpenLDAP/MIRRORS
Project contributors:
Howard Chu (Symas Corp)
Quanah Gibson-Mount (Klarna)
Ondřej Kuzník (Symas Corp)
Community contributors:
Sam James
Dilyan Palauzov
Ian Puleston
HAMANO Tsukasa
OpenLDAP 2.6.5 Release (2023/07/10)
Fixed libldap handling of TCP KEEPALIVE options (ITS#10015)
Fixed libldap with async connections (ITS#10023)
Fixed libldap openssl TLSv1.3 cipher suite handling (ITS#10035)
Fixed slapd callback handling with overlays that do extended operations (ITS#9990)
Fixed slapd conversion of pcache configurations (ITS#10031)
Fixed slapd cn=config modification handling with abandon (ITS#10045)
Fixed slapd-mdb online indexer termination and cleanup (ITS#9993)
Fixed slapd-mdb online indexer when interrupted (ITS#10047)
Fixed slapd-monitor connection cleanup (ITS#10042)
Fixed slapo-constraint handling of push replication (ITS#9953)
Fixed slapo-dynlist filter evaluation efficiency (ITS#10041)
Fixed slapo-pcache handling of invalid schema (ITS#10032)
Fixed slapo-ppolicy handling of push replication (ITS#9953)
Fixed slapo-ppolicy handling of pwdMinDelay (ITS#10028)
Fixed slapo-syncprov abandon handling (ITS#10016)
Fixed slapo-translucent handling of invalid schema (ITS#10032)
Fixed slapo-unique handling of push replication (ITS#9953)
Fixed slapo-variant to improve regex handling (ITS#10048)
Build Environment
Fixed compatibility with stricter C99 compilers (ITS#10011)
Keep .pc files during make clean (ITS#9989)
Contrib
Fixed slapo-variant handling of push replication (ITS#9953)
Minor Cleanup
ITS#9855
ITS#9995
ITS#9996
ITS#9997
ITS#9998
ITS#9999
ITS#10000
ITS#10003
ITS#10004
ITS#10033
ITS#10037
ITS#10039
ITS#10046
ITS#10063