openldap-bugs

openldap-bugs@openldap.org

1 participants
20967 discussions

(ITS#8874) --with-fetch incorrectly links libcom_err
by quanah＠openldap.org 06 Jul '18

06 Jul '18

Full_Name: Quanah Gibson-Mount Version: 2.4.46 OS: FreeBSD 11 URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (47.208.148.239) When building OpenLDAP on FreeBSD where the fetch library is available, slapd picks up a dependency on libcom_err which shouldn't exist. This comes in from lines 934 and 944 of build/openldap.m4: 934 LIBS="-lfetch -lcom_err $LIBS" 944 ol_link_fetch="-lfetch -lcom_err" These should be updated appropriately and configure regenerated

1 0

Re: (ITS#8759) mixed overlay nops & memberof cause segfault
by hyc＠symas.com 06 Jul '18

06 Jul '18

zhixu.liu(a)gmail.com wrote: > Full_Name: Z. Liu > Version: 2.4.44 > OS: Gentoo > URL: ftp://ftp.openldap.org/incoming/ > Submission from: (NULL) (221.218.169.84) > > > if we enable overlay nops & memberof together, then doing a member MODDN > operation, slapd will segfault and exit immediately. > > Example operation: > > dn: uid=test,ou=People,dc=example,dc=dc=com > changetype: moddn > newrdn: uid=chenln > deleteoldrdn: 1 > newsuperior: ou=Leave,dc=example,dc=com > > The reason is: in servers/slapd/overlays/memberof.c, function > memberof_value_modify define mod/values/nvalues in the stack, which will be > passed to other overlays, nops will try to free them if no attribute is changed. Note that code in contrib is unsupported and is not actually part of OpenLDAP Software. You can either contact the nops author and ask them for a fix, or you're welcome to submit a fix yourself. Nobody in the OpenLDAP Project is going to investigate this issue. -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

1 0

(ITS#8873) slapd-meta/ldap - Remove deprecated options
by quanah＠openldap.org 05 Jul '18

05 Jul '18

Full_Name: Quanah Gibson-Mount Version: HEAD OS: N/A URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (47.208.148.239) For OpenLDAP 2.5, we should remove the deprecated configuration options for back-ldap/meta/asyncmeta that have been marked as deprecated for multiple release series. Man pages should be updated accordingly as well. acl-authcDN acl-passwd idassert-authcDN idassert-passwd idassert-mode idassert-method port server suffixmassage map rewrite*

1 0

Re: (ITS#8866) RFE: slapo-constraint to return filter used in diagnostic message
by michael＠stroeder.com 04 Jul '18

04 Jul '18

On 06/20/2018 01:25 PM, Michael Ströder wrote: > This patch is meant to enhance user experience in case a client software > is used to maintain data directly via LDAP. This is a real-world issue. > > Find the patch against master here: > https://www.stroeder.com/temp/0001-ITS-8866-slapo-unique-to-return-filter-u… > > Also cleanly applies to RE24 and therefore > could be easily added to upcoming release 2.4.47. ;-) Any chance to see this in 2.4.47? It simply works and the patch was also reviewed by another C programmer. Ciao, Michael.

1 0

Re: (ITS#8872) configure.in has long been deprecated
by hyc＠symas.com 30 Jun '18

30 Jun '18

fturco(a)fastmail.fm wrote: > Full_Name: Francesco Turco > Version: 2.4.45 > OS: Gentoo Linux > URL: ftp://ftp.openldap.org/incoming/ > Submission from: (NULL) (2001:b07:2eb:c9ed:21c:c0ff:fead:3d70) > > > The Portage package manager reports the following warning message when building > net-nds/openldap-2.4.45 on Gentoo Linux: > > * This package has a configure.in file which has long been deprecated. Please > * update it to use configure.ac instead as newer versions of autotools will > die > * when it finds this file. See https://bugs.gentoo.org/426262 for details. > > Original bug report: https://bugs.gentoo.org/607686 Not a priority. The version of autoconf we use has been frozen for a long time and isn't going to change any time soon. End-users aren't expected to run the autotools themselves anyway, only the OpenLDAP Release Engineer does that. And changing filenames out of the blue is not viewed fondly by people trolling commit histories. Closing this ITS. -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/

1 0

(ITS#8872) configure.in has long been deprecated
by fturco＠fastmail.fm 30 Jun '18

30 Jun '18

Full_Name: Francesco Turco Version: 2.4.45 OS: Gentoo Linux URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (2001:b07:2eb:c9ed:21c:c0ff:fead:3d70) The Portage package manager reports the following warning message when building net-nds/openldap-2.4.45 on Gentoo Linux: * This package has a configure.in file which has long been deprecated. Please * update it to use configure.ac instead as newer versions of autotools will die * when it finds this file. See https://bugs.gentoo.org/426262 for details. Original bug report: https://bugs.gentoo.org/607686

1 0

(ITS#8871) mutex issue with cancel operation
by hsuenju_ko＠stratus.com 26 Jun '18

26 Jun '18

Full_Name: HsuenJu Ko Version: 2.4.46 OS: VOS URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (198.97.42.5) A multi-threaded test case using C API experiences a hang involving cancel operation. One thread which performs cancel operation hangs waiting for a mutex(ld_conn_mutex) in ldap_send_initial_request while the other thread is performing ldap_result loop waiting for the result of search operation. The same mutex is held by wait4msg() across the ldap_int_select() call. It appears that before the ITS#6672 is installed, the ld_conn_mutex is unlocked before the ldap_int_select() and after the ITS#6672 the unlock is moved after ldap_int_select() which causes the thread performing the cancel to hang until ldap_result returns. By holding this mutex across select(), then all other threads needing the mutex are frozen until this select completes.

1 0

Re: (ITS#8667) slapcat not honoring '-g' option
by ondra＠mistotebe.net 25 Jun '18

25 Jun '18

On Mon, Jun 05, 2017 at 03:11:06PM +0000, gnoe(a)symas.com wrote: > Slapcat is not honoring the '-g' option. The output includes entries from glued > subordinates when it shouldn't. The attached test script > (gregory-noe-170605.tar) sets up the following DIT with inetOrgPerson entries in > each OU: > > dn: dc=example,dc=com > |- ou=NonSub00,dc=example,dc=com > |- ou=NonSub01,dc=example,dc=com > |- ou=NonSub02,dc=example,dc=com > > glued sub: ou=Accounting,dc=example,dc=com > glued sub: ou=Administrative,dc=example,dc=com > glued sub: ou=Janitorial,dc=example,dc=com > > Then the script runs 'slapcat -g -b dc=example,dc=com | grep ^dn'. The result > contains entries from all three glued subordinates. Hi Gregory, the branch linked below has a patch to this that results in the test script you provided produce output that's expected, let me know if it fixes your issue: https://github.com/mistotebe/openldap/tree/its8667 Regards, -- Ondřej Kuzník Senior Software Engineer Symas Corporation http://www.symas.com Packaged, certified, and supported LDAP solutions powered by OpenLDAP

1 0

Re: (ITS#8870) SASL_NOCANON changing default to ON
by alexandr.nedvedicky＠oracle.com 25 Jun '18

25 Jun '18

On Fri, Jun 22, 2018 at 06:17:15PM -0700, Quanah Gibson-Mount wrote: > --On Saturday, June 23, 2018 1:56 AM +0000 quanah(a)symas.com wrote: > > >--On Friday, June 22, 2018 9:01 PM +0000 alexandr.nedvedicky(a)oracle.com > >wrote: > > > >>Full_Name: Alexandr Nedvedicky > >>Version: 2.46 > >>OS: Solaris 11.3 > >>URL: ftp://ftp.openldap.org/incoming/ > >>Submission from: (NULL) (141.143.193.76) > >> > >> > >>Disclaimer: I understand I'm asking for change, which might be disruptive > >>for many OpenLDAP users. > > > >Hi, > > > >This has already been covered extensively in > ><http://www.openldap.org/its/index.cgi/?findid=5812>. If you prefer to > >have it turned off > > Turned on, even. ;) > thank you for the link. will change global ldap.conf we ship. regards sasha

1 0

Re: (ITS#8870) SASL_NOCANON changing default to ON
by quanah＠symas.com 22 Jun '18

22 Jun '18

--On Saturday, June 23, 2018 1:56 AM +0000 quanah(a)symas.com wrote: > --On Friday, June 22, 2018 9:01 PM +0000 alexandr.nedvedicky(a)oracle.com > wrote: > >> Full_Name: Alexandr Nedvedicky >> Version: 2.46 >> OS: Solaris 11.3 >> URL: ftp://ftp.openldap.org/incoming/ >> Submission from: (NULL) (141.143.193.76) >> >> >> Disclaimer: I understand I'm asking for change, which might be disruptive >> for many OpenLDAP users. > > Hi, > > This has already been covered extensively in > <http://www.openldap.org/its/index.cgi/?findid=5812>. If you prefer to > have it turned off Turned on, even. ;) --Quanah -- Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: <http://www.symas.com>

1 0

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-bugs