openldap-bugs August 2020

openldap-bugs@openldap.org

2 participants
189 discussions

[Issue 9054] Add support for multiple EECDH curves
by openldap-its＠openldap.org 21 Aug '20

21 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9054 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- See Also| |https://bugs.openldap.org/s | |how_bug.cgi?id=9325 -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9054] Add support for multiple EECDH curves
by openldap-its＠openldap.org 21 Aug '20

21 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9054 --- Comment #3 from Quanah Gibson-Mount <quanah(a)openldap.org> --- additional in master for slapd: Commits: • 650b1404 by Howard Chu at 2020-08-21T20:06:56+01:00 ITS#9054, #9318 add new TLS options to slapd bindconf -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9054] Add support for multiple EECDH curves
by openldap-its＠openldap.org 21 Aug '20

21 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9054 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |TEST Status|UNCONFIRMED |RESOLVED -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9054] Add support for multiple EECDH curves
by openldap-its＠openldap.org 21 Aug '20

21 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9054 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Keywords|OL_2_5_REQ | Target Milestone|2.5.0 |2.4.52 --- Comment #2 from Quanah Gibson-Mount <quanah(a)openldap.org> --- OL head: Commits: • 2386a116 by Howard Chu at 2020-08-21T07:58:07+01:00 ITS#9054 Add support for multiple EECDH curves Requires OpenSSL 1.0.2 or newer -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9321] New: ldapsearch nettimeout doesn't work with startTls when the server address is not reachable
by openldap-its＠openldap.org 21 Aug '20

21 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9321 Issue ID: 9321 Summary: ldapsearch nettimeout doesn't work with startTls when the server address is not reachable Product: OpenLDAP Version: 2.5 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: client tools Assignee: bugs(a)openldap.org Reporter: allen.zhang(a)audiocodes.com Target Milestone: --- We found that ldapsearch doesn't return with failure according to the nettimeout when the server address is not valid. it fails only after TCP timeout (about 120 seconds in my environment). we dug into in to the source code and found that : in common.c, we set the nettimeout after ldap_start_tls_s is called. We tried to call "ldap_set_option( ld, LDAP_OPT_NETWORK_TIMEOUT, (void *) &nettimeout )" before ldap_start_tls_s and it works well! -- You are receiving this mail because: You are on the CC list for the issue.

1 2

[Issue 9266] Replace custom hostname and IP address verification with OpenSSL API
by openldap-its＠openldap.org 20 Aug '20

20 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9266 --- Comment #5 from Quanah Gibson-Mount <quanah(a)openldap.org> --- See also https://lists.openldap.org/hyperkitty/list/openldap-announce@openldap.org/t… -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9266] Replace custom hostname and IP address verification with OpenSSL API
by openldap-its＠openldap.org 19 Aug '20

19 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9266 Quanah Gibson-Mount <quanah(a)openldap.org> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dar(a)xoe.solutions --- Comment #4 from Quanah Gibson-Mount <quanah(a)openldap.org> --- *** Issue 9318 has been marked as a duplicate of this issue. *** -- You are receiving this mail because: You are on the CC list for the issue.

1 0

[Issue 9309] New: slapd exits on failed assertion in ppolicy.c: 912 ctrls_cleanup
by openldap-its＠openldap.org 19 Aug '20

19 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9309 Issue ID: 9309 Summary: slapd exits on failed assertion in ppolicy.c: 912 ctrls_cleanup Product: OpenLDAP Version: 2.4.50 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: overlays Assignee: bugs(a)openldap.org Reporter: jakealexis(a)gmail.com Target Milestone: --- Created attachment 753 --> https://bugs.openldap.org/attachment.cgi?id=753&action=edit slapd debug -1 output When trying to authenticate against slapd, it exits with an assertion failure: `slapd: ppolicy.c:912: ctrls_cleanup: Assertion `rs->sr_ctrls != NULL' failed.` I have searched quite extensively, and have found multiple previous bug reports with similar symptoms, often to do with the ppolicy overlay. Most of these have been marked as closed and fixed, but I'm using the latest version and still getting the same problem. I have found one RedHat bug with similar symptoms that described it as a config error, but with no details of what the config error is - and the assert statement doesn't help me narrow it down. I have tested this on 2.4.46 and 2.4.50, same behaviour. -- You are receiving this mail because: You are on the CC list for the issue.

1 6

[Issue 9308] New: slapo-allow contrib module increments uninitialized variable
by openldap-its＠openldap.org 19 Aug '20

19 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9308 Issue ID: 9308 Summary: slapo-allow contrib module increments uninitialized variable Product: OpenLDAP Version: 2.4.51 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: contrib Assignee: bugs(a)openldap.org Reporter: quanah(a)openldap.org Target Milestone: --- Line 335 declares "i" with no default value line 345 increments it Need to fix the for loop at 339 to ensure it is initialized before incrementation -- You are receiving this mail because: You are on the CC list for the issue.

1 4

[Issue 9304] New: Archived-At: -> 404
by openldap-its＠openldap.org 19 Aug '20

19 Aug '20

https://bugs.openldap.org/show_bug.cgi?id=9304 Issue ID: 9304 Summary: Archived-At: -> 404 Product: website Version: unspecified Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: website Assignee: bugs(a)openldap.org Reporter: michael(a)stroeder.com Target Milestone: --- I appreciate this mailing list message header: Archived-At: <https://openldap.org/hyperkitty/list/openldap-technical@openldap.org/messag…> But unfortunately the link returns 404. -- You are receiving this mail because: You are on the CC list for the issue.

1 3

Jump to page:

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-bugs August 2020