openldap-commit June 2024

openldap-commit@openldap.org

1 participants
20 discussions

[Git][openldap/openldap][OPENLDAP_REL_ENG_2_5] ITS#10223 - fix function call
by Quanah Gibson-Mount (＠quanah) 28 Jun '24

28 Jun '24

Quanah Gibson-Mount pushed to branch OPENLDAP_REL_ENG_2_5 at openldap / OpenLDAP Commits: 4c98d791 by Quanah Gibson-Mount at 2024-06-28T19:11:03+00:00 ITS#10223 - fix function call - - - - - 1 changed file: - libraries/libldap/tls_o.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/4c98d79157da10c27df6f52… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/4c98d79157da10c27df6f52… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][OPENLDAP_REL_ENG_2_6] ITS#10230 slapo-memberof: fix addcheck search to omit dynamic values
by Quanah Gibson-Mount (＠quanah) 28 Jun '24

28 Jun '24

Quanah Gibson-Mount pushed to branch OPENLDAP_REL_ENG_2_6 at openldap / OpenLDAP Commits: 0f984dd3 by Howard Chu at 2024-06-28T17:14:45+00:00 ITS#10230 slapo-memberof: fix addcheck search to omit dynamic values - - - - - 1 changed file: - servers/slapd/overlays/memberof.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/0f984dd3543a4d1f5be2289… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/0f984dd3543a4d1f5be2289… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][OPENLDAP_REL_ENG_2_5] 13 commits: ITS#10223 libldap: check for OpenSSL SSL_CTX_set_ciphersuites failure
by Quanah Gibson-Mount (＠quanah) 28 Jun '24

28 Jun '24

Quanah Gibson-Mount pushed to branch OPENLDAP_REL_ENG_2_5 at openldap / OpenLDAP Commits: 248d7402 by Howard Chu at 2024-06-28T16:50:47+00:00 ITS#10223 libldap: check for OpenSSL SSL_CTX_set_ciphersuites failure - - - - - 07dc2133 by Quanah Gibson-Mount at 2024-06-28T16:52:07+00:00 ITS#10223 - - - - - bee6e76c by Howard Chu at 2024-06-28T16:52:18+00:00 ITS#10224 libldap: check for OpenSSL EVP_Digest* failure - - - - - 979eed81 by Quanah Gibson-Mount at 2024-06-28T16:52:36+00:00 ITS#10224 - - - - - 08a78a02 by François Kooman at 2024-06-28T16:52:53+00:00 ITS#9827 update Argon2 defaults - switch to argon2id by default (from argon2i) - use OWASP recommended parameters as defaults This only affects builds that use libargon2, e.g. Debian, and not builds that use libsodium as argon2id is already the default there, and better parameters are used References: https://bugs.openldap.org/show_bug.cgi?id=9827 Signed-off-by: François Kooman <fkooman(a)tuxed.net> - - - - - 412d897c by Quanah Gibson-Mount at 2024-06-28T16:53:05+00:00 ITS#9827 - Use 7MB memory/5 iterations as default This has the same protections as 19MB/2 iterations, but requires less system memory - - - - - a85ed561 by Quanah Gibson-Mount at 2024-06-28T16:53:20+00:00 ITS#9827 - - - - - 230bd39c by Nadezhda Ivanova at 2024-06-28T16:58:05+00:00 ITS#10219 Modify of olcDisabled by removing and adding a value invokes db_open twice Do not invoke db_open if the database is not actually disabled - - - - - 910c2be2 by Quanah Gibson-Mount at 2024-06-28T16:58:36+00:00 ITS#10219 - - - - - 5baa8723 by Nadezhda Ivanova at 2024-06-28T16:59:11+00:00 ITS#10227 Asyncmeta will not reset a connection if a bind operation fails with LDAP_OTHER, leaving the connection in invalid state - - - - - 66117ce8 by Quanah Gibson-Mount at 2024-06-28T17:02:41+00:00 ITS#10227 - - - - - 12d105b1 by Howard Chu at 2024-06-28T17:02:46+00:00 ITS#10231 slapadd: check for NULL suffix in error message - - - - - d161fa7f by Quanah Gibson-Mount at 2024-06-28T17:02:52+00:00 ITS#10231 - - - - - 6 changed files: - CHANGES - libraries/libldap/tls_o.c - servers/slapd/back-asyncmeta/bind.c - servers/slapd/bconfig.c - servers/slapd/pwmods/argon2.c - servers/slapd/slapadd.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/9f48f3f3b618f484447217… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/9f48f3f3b618f484447217… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][OPENLDAP_REL_ENG_2_6] 18 commits: ITS#10223 libldap: check for OpenSSL SSL_CTX_set_ciphersuites failure
by Quanah Gibson-Mount (＠quanah) 28 Jun '24

28 Jun '24

Quanah Gibson-Mount pushed to branch OPENLDAP_REL_ENG_2_6 at openldap / OpenLDAP Commits: a45e1fc4 by Howard Chu at 2024-06-28T16:46:13+00:00 ITS#10223 libldap: check for OpenSSL SSL_CTX_set_ciphersuites failure - - - - - 0e7dbc99 by Quanah Gibson-Mount at 2024-06-28T16:47:27+00:00 ITS#10223 - - - - - 1d556f23 by Howard Chu at 2024-06-28T16:47:32+00:00 ITS#10224 libldap: check for OpenSSL EVP_Digest* failure - - - - - 9d07c21d by Quanah Gibson-Mount at 2024-06-28T16:47:55+00:00 ITS#10224 - - - - - d13a07bf by François Kooman at 2024-06-28T16:48:57+00:00 ITS#9827 update Argon2 defaults - switch to argon2id by default (from argon2i) - use OWASP recommended parameters as defaults This only affects builds that use libargon2, e.g. Debian, and not builds that use libsodium as argon2id is already the default there, and better parameters are used References: https://bugs.openldap.org/show_bug.cgi?id=9827 Signed-off-by: François Kooman <fkooman(a)tuxed.net> - - - - - 3516e19b by Quanah Gibson-Mount at 2024-06-28T16:49:04+00:00 ITS#9827 - Use 7MB memory/5 iterations as default This has the same protections as 19MB/2 iterations, but requires less system memory - - - - - d0d0470f by Quanah Gibson-Mount at 2024-06-28T16:50:21+00:00 ITS#9827 - - - - - dc358cbc by Nadezhda Ivanova at 2024-06-28T16:56:38+00:00 ITS#10218 Disabling and re-enabling an asyncmeta database via cn=config leaks memory Make sure asyncmeta frees the pending operations structures, resets all connections, frees connection structures and stops the timeout-loop. - - - - - 8f05e9ed by Quanah Gibson-Mount at 2024-06-28T16:57:22+00:00 ITS#10218 - - - - - 532b2e60 by Nadezhda Ivanova at 2024-06-28T16:58:12+00:00 ITS#10219 Modify of olcDisabled by removing and adding a value invokes db_open twice Do not invoke db_open if the database is not actually disabled - - - - - f30d23a9 by Quanah Gibson-Mount at 2024-06-28T16:58:22+00:00 ITS#10219 - - - - - 1ea9880a by Nadezhda Ivanova at 2024-06-28T16:59:06+00:00 ITS#10227 Asyncmeta will not reset a connection if a bind operation fails with LDAP_OTHER, leaving the connection in invalid state - - - - - c8e2fbf3 by Quanah Gibson-Mount at 2024-06-28T17:00:39+00:00 ITS#10227 - - - - - 5cd67e37 by Quanah Gibson-Mount at 2024-06-28T17:01:22+00:00 ITS#10230 - - - - - 8350e24c by Howard Chu at 2024-06-28T17:01:55+00:00 ITS#10231 slapadd: check for NULL suffix in error message - - - - - 9937d5b9 by Quanah Gibson-Mount at 2024-06-28T17:02:02+00:00 ITS#10231 - - - - - 74f0e83e by Howard Chu at 2024-06-28T17:03:29+00:00 ITS#10235 slapo-nestgroup: silence extraneous register_at message - - - - - 743ece89 by Quanah Gibson-Mount at 2024-06-28T17:03:55+00:00 ITS#10235 - - - - - 10 changed files: - CHANGES - libraries/libldap/tls_o.c - servers/slapd/back-asyncmeta/back-asyncmeta.h - servers/slapd/back-asyncmeta/bind.c - servers/slapd/back-asyncmeta/init.c - servers/slapd/back-asyncmeta/meta_result.c - servers/slapd/bconfig.c - servers/slapd/overlays/nestgroup.c - servers/slapd/pwmods/argon2.c - servers/slapd/slapadd.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/d24499a93aede6b22e440a… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/d24499a93aede6b22e440a… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][mdb.RE/0.9] 3 commits: ITS#10222 LMDB: Updated mdb_dump man page
by Quanah Gibson-Mount (＠quanah) 28 Jun '24

28 Jun '24

Quanah Gibson-Mount pushed to branch mdb.RE/0.9 at openldap / OpenLDAP Commits: b84c3505 by Zach Vonler at 2024-06-28T14:55:01+00:00 ITS#10222 LMDB: Updated mdb_dump man page The -a option to mdb_load makes the previous text obsolete. - - - - - c6a49d79 by Howard Chu at 2024-06-28T14:55:06+00:00 LMDB: tweak mdb_load.1 manpage Add missing -a option to Synopsis - - - - - f6d015dd by Quanah Gibson-Mount at 2024-06-28T15:55:18+00:00 ITS#10222 - - - - - 3 changed files: - libraries/liblmdb/CHANGES - libraries/liblmdb/mdb_dump.1 - libraries/liblmdb/mdb_load.1 View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/54f00bd01f37e252cf01c6… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/54f00bd01f37e252cf01c6… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][master] ITS#10235 slapo-nestgroup: silence extraneous register_at message
by Howard Chu (＠hyc) 26 Jun '24

26 Jun '24

Howard Chu pushed to branch master at openldap / OpenLDAP Commits: b490437a by Howard Chu at 2024-06-27T00:49:21+01:00 ITS#10235 slapo-nestgroup: silence extraneous register_at message - - - - - 1 changed file: - servers/slapd/overlays/nestgroup.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/b490437a66247b92ca0ee3e… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/b490437a66247b92ca0ee3e… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][mdb.RE/0.9] Return to engineering
by Quanah Gibson-Mount (＠quanah) 24 Jun '24

24 Jun '24

Quanah Gibson-Mount pushed to branch mdb.RE/0.9 at openldap / OpenLDAP Commits: 54f00bd0 by Quanah Gibson-Mount at 2024-06-24T16:56:14+00:00 Return to engineering - - - - - 1 changed file: - libraries/liblmdb/CHANGES View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/54f00bd01f37e252cf01c64… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/54f00bd01f37e252cf01c64… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][master] ITS#10231 slapadd: check for NULL suffix in error message
by Howard Chu (＠hyc) 18 Jun '24

18 Jun '24

Howard Chu pushed to branch master at openldap / OpenLDAP Commits: aa31963e by Howard Chu at 2024-06-18T17:14:12+01:00 ITS#10231 slapadd: check for NULL suffix in error message - - - - - 1 changed file: - servers/slapd/slapadd.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/aa31963e44e8e89bf7752a3… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/aa31963e44e8e89bf7752a3… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][master] ITS#10230 slapo-memberof: fix addcheck search to omit dynamic values
by Howard Chu (＠hyc) 17 Jun '24

17 Jun '24

Howard Chu pushed to branch master at openldap / OpenLDAP Commits: f1b92178 by Howard Chu at 2024-06-17T21:40:48+01:00 ITS#10230 slapo-memberof: fix addcheck search to omit dynamic values - - - - - 1 changed file: - servers/slapd/overlays/memberof.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/f1b921783b41d95a5a32baf… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/f1b921783b41d95a5a32baf… You're receiving this email because of your account on git.openldap.org.

1 0

[Git][openldap/openldap][mdb.master3] ITS#9378 don't try to print oversized keys in debug msg
by Howard Chu (＠hyc) 17 Jun '24

17 Jun '24

Howard Chu pushed to branch mdb.master3 at openldap / OpenLDAP Commits: ce6f8e2d by Howard Chu at 2024-06-17T17:06:19+01:00 ITS#9378 don't try to print oversized keys in debug msg - - - - - 1 changed file: - libraries/liblmdb/mdb.c View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/ce6f8e2d930a1a2d8db0bbb… -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/commit/ce6f8e2d930a1a2d8db0bbb… You're receiving this email because of your account on git.openldap.org.

1 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

openldap-commit June 2024