| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: openldap2-contrib | Distribution: openSUSE Tumbleweed |
| Version: 2.6.8 | Vendor: openSUSE |
| Release: 2.2 | Build date: Wed Aug 7 13:42:49 2024 |
| Group: Productivity/Networking/LDAP/Servers | Build host: reproducible |
| Size: 249856 | Source RPM: openldap2-2.6.8-2.2.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: https://www.openldap.org | |
| Summary: OpenLDAP Contrib Modules | |
Various overlays found in contrib/: addpartial Intercepts ADD requests, applies changes to existing entries allop allowed Generates attributes indicating access rights autogroup authzid implements RFC 3829 support cloak datamorph store enumerated values and fixed size integers denyop lastbind writes last bind timestamp to entry noopsrch handles no-op search control pw-sha2 generates/validates SHA-2 password hashes pw-pbkdf2 generates/validates PBKDF2 password hashes smbk5pwd generates Samba3 password hashes (heimdal krb disabled) trace traces overlay invocation variant allows attributes/values to be shared between several entries vc implements the verify credentials extended operation
OLDAP-2.8
* Wed Aug 07 2024 Filip Kastl <filip.kastl@suse.com>
- Add back two hunks from gcc14.patch as gcc14-v2.patch. Not all
bugs that gcc14.patch fixed were dealt with in the upstream --
one bug is caused by
0016-Clear-shared-key-only-in-close-function.patch and one bug
still remains in the upstream.
* Wed Jul 31 2024 Jan Engelhardt <jengelh@inai.de>
- Update to relese 2.6.8
* slapd: ability to log directly to a file bypassing syslog
* back-ndb has been retired
* back-sql and back-perl have been deprecated
* lloadd enhancments:
* Additional load balancing strategies
* Additional options to improve coherence with certain
controls and extended operations
* Ability to log directly to a file bypassing syslog
- Delete gcc14.patch, openldap2-fb9e6a81bbee.patch (merged)
- Drop rcslapd symlink
* Mon Jul 29 2024 Martin Jambor <mjambor@suse.com>
- Backported one hunk from upstream commit fb9e6a81bbee as
openldap2-fb9e6a81bbee.patch to fix incompatible pointer type being
passed to a function which is diagnosed as an error by GCC 14.
* Sat May 25 2024 Jan Engelhardt <jengelh@inai.de>
- Add gcc14.patch
* Sat May 11 2024 Andreas Stieger <andreas.stieger@gmx.de>
- update to 2.6.7:
* Added slapo-dynlist option to disable filter support
* Fixed liblber missing newline on long msg
* Fixed libldap exit handling with OpenSSL3
* Fixed libldap with TLS and multiple ldap URIs
* Fixed libldap OpenSSL cipher suite handling
* Fixed libldap OpenSSL 3.0 and Diffie-Hellman param files
* Fixed lloadd to work when resolv.conf is missing
* Fixed lloadd handling of closing connection
* Fixed lloadd tiers to be correctly linked on startup
* Fixed slapd to honour disclose in matchedDN handling
* Fixed slapd handling of regex testing in ACLs
* Fixed slapd sync replication with glued database
* Fixed slapd-asyncmeta when remote suffix is empty
* Fixed slapo-dynlist so it can't be global
* Fixed slapo-homedir(5) attribute name for olcHomedirArchivePath
* Fri Nov 03 2023 Jan Engelhardt <jengelh@inai.de>
- Update to release 2.6.6
* Fixed libldap handling of TCP KEEPALIVE options
* Fixed slapd callback handling with overlays that do extended
operations
* Tue Sep 05 2023 Thorsten Kukuk <kukuk@suse.com>
- Disable SLP by default for Factory and ALP (bsc#1214884)
* Sat Apr 15 2023 Dirk Müller <dmueller@suse.com>
- update to 2.6.4:
* Fixed client tools to remove 'h' and 'p' options
* Fixed ldapsearch memory leak with paged results (ITS#9860)
* Fixed libldap ldif_open_urlto check for failure (ITS#9904 CVE-2023-2953 boo#1211795)
* Fixed libldap ldap_url_parsehosts check for failure
* Fixed liblunicode UTF8bvnormalize buffer size (ITS#9955)
* Fixed lloadd memory leaks (ITS#9907)
* Fixed lloadd shutdown code to protect memory correctly
* Fixed lloadd race in epoch.c (ITS#9947)
* Fixed lloadd potential deadlock with cn=monitor (ITS#9951)
* Fixed lloadd to keep listener base around when not active
* Fixed lloadd object reclamation sequencing (ITS#9983)
* Fixed slapd memory leak with olcAuthIDRewrite (ITS#6035)
* Fixed slapd free of redundant cmdline option (ITS#9912)
* Fixed slapd transactions extended operations cleanup after
* Fixed slapd deadlock with replicated cn=config
* Fixed slapd connection close logic (ITS#9991)
* Fixed slapd bconfig locking of cn=config entries (ITS#9045)
* Fixed slapd-mdb max number of index databases to 256
* Fixed slapd-mdb to always release entries from ADD operations
* Fixed slapd-mdb to fully init empty DN in tool_entry_get
* Fixed slapd-monitor memory leaks with lloadd (ITS#9906)
* Fixed slapd-monitor to free remembered cookies (ITS#9339)
* Fixed slapo-accesslog reqStart ordering matching rule
* Fixed slapo-deref memory leak (ITS#9924)
* Fixed slapo-dynlist to ignore irrelevant objectClasses
* Fixed slapo-dynlist to avoid unnecessary searches (ITS#9929)
* Fixed slapo-dynlist to mark internal searches as such
* Fixed slapo-pcache crash in consistency_check (ITS#9966)
* Fixed slapo-remoteauth memory leaks (ITS#9438)
* Fixed slapo-rwm memory leaks (ITS#9817)
* Build Environment
* Fixed ancient DOS related ifdef checks (ITS#9925)
* Fixed build process to not use gmake specific features
* Fixed source tree to remove symlinks (ITS#9926)
* Fixed slapo-otp testdir creation (ITS#9437)
* Fixed slapd-tester memory leak (ITS#9908)
* Fixed usage of non-standard C syntax (ITS#9898, ITS#9899,
ITS#9901)
* Fixed usage of bashism (ITS#9900)
* Fixed test suite portability (ITS#9931)
* Documentation
* Fixed ldap_bind(3) to document ber_bvfree in ldap_sasl_bind
(ITS#9976)
* Fixed slapo-asyncmeta(5) to clarify scheduling for target
connections (ITS#9941)
* Fixed slapo-dynlist(5) to clarify configuration settings
(ITS#9957)
* Fixed slapo-unique(5) to clarify when quoting should be used
(ITS#9915)
* Minor cleanup
* Sat Dec 10 2022 Dirk Müller <dmueller@suse.com>
- add reproducible.patch to avoid using compile-time specific date/time
constructs
* Mon Sep 26 2022 William Brown <william.brown@suse.com>
- bsc#1202931 - CVE-2022-31253 - Openldap start script allowed the ldap user
to privilege escalate to root due to unbound chown commands.
* Thu Jul 14 2022 Michael Ströder <michael@stroeder.com>
- removed obsolete 0017-Resolve-error-handling-in-new-ctx-when-global.patch
- update to 2.6.3
* Fixed librewrite declaration of calloc (ITS#9841)
* Fixed libldap to check for NULL ld (ITS#9157)
* Fixed libldap memory leaks (ITS#9876)
* Fixed lloadd to correctly tag Notice of Disconnection (ITS#9856)
* Fixed slapd delta-sync DN leak on ADD ops (ITS#9866)
* Fixed slapd replication with back-glue (ITS#9868)
* Fixed slapd lastbind replication with chaining (ITS#9863)
* Fixed slapd-ldap to correctly set authzid (ITS#9863)
* Fixed slapd-mdb to check for stale readers on
MDB_READERS_FULL (ITS#7165)
* Fixed slapd-mdb indexer task with replicated config (ITS#9858)
* Fixed slapo-accesslog onetime memory leak (ITS#9864)
* Fixed slapo-ppolicy interaction with slapo-rwm (ITS#9871)
* Fixed slapo-rwm to handle escaping special characters (ITS#9817)
* Fixed slapo-syncprov memory leaks (ITS#9867)
* Fixed slapo-syncprov fallback in delta-sync mode (ITS#9823)
* Fixed slapo-unique to not release NULL entry (ITS#8245)
* doc: Fixed ldap_get_option(3) to clarify ldap_get/set_option
restrictions (ITS#9824)
* Mon May 23 2022 Michael Ströder <michael@stroeder.com>
- Update to release 2.6.2
* Added support for OpenSSL 3.0 (ITS#9436)
* Fixed ldapdelete to prune LDAP subentries (ITS#9737)
* Fixed libldap to drop connection when non-LDAP data is
received (ITS#9803)
* Fixed libldap to allow newlines at end of included file
(ITS#9811)
* Fixed slapd slaptest conversion of olcLastBind (ITS#9808)
* Fixed slapd to correctly init global_host earlier (ITS#9787)
* Fixed slapd bconfig locking for cn=config replication
(ITS#9584)
* Fixed slapd usage of thread local counters (ITS#9789)
* Fixed slapd to clear runqueue task correctly (ITS#9785)
* Fixed slapd idletimeout handling (ITS#9820)
* Fixed slapd syncrepl handling of new sessions (ITS#9584)
* Fixed slapd to clear connections on bind (ITS#9799)
* Fixed slapd to correctly advance connections index (ITS#9831)
* Fixed slapd syncrepl ODSEE replication of unknown attr
(ITS#9801)
* Fixed slapd-asyncmeta memory leak in keepalive setting,
slapd-ldap memory leak in keepalive setting, SEGV on config
rewrite, ordering on config rewrite, memory leak in keepalive
setting (ITS#9802)
* Fixed slapo-pcache SEGV & slapd-monitor SEGV on shutdown
(ITS#9809)
* Fixed slapd-monitor crash when hitting sizelimit (ITS#9832)
* Fixed slapd-sql to properly escape filter value (ITS#9815)
* Fixed slapo-dynlist dynamic group regression (ITS#9825)
* Fixed slapo-ppolicy operation handling to be consistent
(ITS#9794)
* Fixed slapo-translucent to correctly duplicate substring
filters (ITS#9818)
* Contrib:
* Update ppm module to the 2.1 release (ITS#9814)
* Documentation:
* admin26: Document new lloadd features (ITS#9780)
* Fixed slapd.conf(5)/slapd-config(5) syncrepl
sizelimit/timelimit documentation (ITS#9804)
* Fixed slapd-sock(5) to clarify "sockresps result" behavior
(ITS#8255)
* Thu May 12 2022 William Brown <william.brown@suse.com>
- bsc#1199277 - Resolve segfault when calling new ctx with global ctx
* 0017-Resolve-error-handling-in-new-ctx-when-global.patch
* Mon Apr 11 2022 Michael Ströder <michael@stroeder.com>
- Use libargon2 instead of libsodium because it supports p>1
- Added new contrib overlays: authzid, datamorph, variant, vc
* Sat Apr 02 2022 Jan Engelhardt <jengelh@inai.de>
- Update to release 2.6.1
* Ability to log directly to a file bypassing syslog
* back-ndb is retired
* back-sql and back-perl are deprecated
* lloadd(8): Additional load balancing strategies.
* lloadd(8): Additional options to improve coherence with certain
controls and extended operations.
* Sat Mar 26 2022 Stephan Kulow <coolo@suse.com>
- Add _multibuild support to integrate the build of libldapcpp-devel
to drop the outdated copy
* Mon Oct 25 2021 Michael Ströder <michael@stroeder.com>
- update to 2.5.9
OpenLDAP 2.5.9 Release (2021/10/25)
Fixed slapo-accesslog to initialize minCSN on import of 2.4 databases (ITS#9720)
* Mon Oct 11 2021 Michael Ströder <michael@stroeder.com>
- update to 2.5.8
OpenLDAP 2.5.8 Release (2021/10/11)
Fixed libldap ldap_int_tls_connect: isdigit() requires unsigned char (ITS#9668)
Fixed libldap memory leak in ldap_get_option LDAP_OPT_X_TLS_PEERCERT (ITS#9696)
Fixed slapd to allow normalized values for namingContexts in cn=monitor (ITS#8341)
Fixed slapd to normalize the suffix in rootDSE (ITS#9664)
Fixed slapd slapadd to avoid destroying configDB prematurely (ITS#9678)
Fixed slapd to not spam logs with lastbind information (ITS#9156)
Fixed slapd slaptest migration to correctly set olcTSLVerifyClient (ITS#9711)
Fixed slapd-mdb multival delete handling (ITS#9712)
Fixed slapd-sql ldap_entry_objectclass table for mariadb/mysql (ITS#9679)
Fixed slapd-wt multiple issues (ITS#9463)
Fixed slapd-wt to close cache db correctly (ITS#9631)
Fixed slapo-ppolicy to restore OpenLDAP 2.4 compatibilty (ITS#9671)
Fixed slapo-syncprov to free uuid list when finished replaying sessionlog (ITS#6467)
Build
Fixed libldap result.c compilation on musl systems (ITS#9648)
Fixed slapd duplicate definition of peerbv (ITS#9659)
Fixed test suite with memberof modular builds (ITS#9464)
Contrib
Added man page for ppm contrib module (ITS#9644)
Fix crash when pwdCheckModuleArg is not defined for ppm (ITS#9656)
Documentation
Fixed guide download link for heimdal (ITS#9669)
Fixed guide documentation for TLSECName (ITS#9687)
Fixed guide documentation missing tags (ITS#9693)
Fixed guide loadbalancer typo (ITS#9699)
Fixed guide synprov-nopresent redundant text (ITS#9689)
Fixed guide various typos and fix config alignment (ITS#9706)
Removed ppolicy.schema from servers/slapd/schema/README (ITS#9156)
Fixed slapd.conf(5)/slapd-config(5) to document default for database monitoring (ITS#9674)
Fixed slapd-meta(5)/slapd-asyncmeta(5) verbiage for try-propagate (ITS#9646)
Fixed slapo-syncprov(5) to note entryCSN indexing is highly recommended (ITS#9688)
* Tue Aug 24 2021 Philipp Wagner <mail@philipp-wagner.com>
- Update to upstream version 2.5.7
Fixed lloadd client state tracking (ITS#9624)
Fixed slapd bconfig to canonicalize structuralObjectclass (ITS#9611)
Fixed slapd-ldif duplicate controls response (ITS#9497)
Fixed slapd-mdb multival crash when attribute is missing an equality matchingrule (ITS#9621)
Fixed slapd-mdb compatibility with OpenLDAP 2.4 MDB databases (ITS#8958)
Fixed slapd-mdb idlexp maximum size handling (ITS#9637)
Fixed slapd-monitor number of ops executing with asynchronous backends (ITS#9628)
Fixed slapd-sql to add support for ppolicy attributes (ITS#9629)
Fixed slapd-sql to close transactions after bind and search (ITS#9630)
Fixed slapo-accesslog to make reqMod optional (ITS#9569)
Fixed slapo-ppolicy logging when pwdChangedTime attribute is not present (ITS#9625)
Documentation
slapd-mdb(5) note max idlexp size is 30, not 31 (ITS#9637)
slapo-accesslog(5) note that reqMod is optional (ITS#9569)
Add ldapvc(1) man page (ITS#9549)
Add guide section on load balancer (ITS#9443)
Updated guide to document multiprovider as replacement for mirrormode (ITS#9200)
Updated guide to clarify slapd-mdb upgrade requirements (ITS#9200)
Updated guide to document removal of deprecated options from client tools (ITS#9200)
* Fri Jul 30 2021 Philipp Wagner <mail@philipp-wagner.com>
- Major version update to 2.5.6
See https://www.openldap.org/software/release/announce.html for a list of
changes.
- The threaded version of the OpenLDAP libraries, libldap_r, has been merged
with libldap with 2.5. Removed all related downstream changes, including the
openldap-r-only.dif patch.
Introduce a new compatibility symlink in the other direction: libldap_r
pointing to libldap.
- Removed the ppolicy-check-password module. It is unmaintained and does not
build any more. As part of that also remove the patch
patch 0200-Fix-incorrect-calculation-of-consecutive-number-of-c.patch, which
is applied to this module.
- Removed patch 0001-ITS-8866-slapo-unique-to-return-filter-used-in-diagn.patch
Fixed upstream in 2.5 (ITS#8866)
- Updated patch 0005-pie-compile.dif
Removed the hunks on back-bdb and back-hdb, which are retired backends in 2.5.
- Removed patch 0007-Recover-on-DB-version-change.dif
The back-bdb backend was retired.
- Removed patch 0011-openldap-re24-its7796.patch
Fixed upstream in 2.5 (ITS#7796)
- Remove non-existant configure arguments:
- -enable-rewrite, --enable-monitor, --enable-lmpasswd
- Add the --enable-dynacl configure option, which is required for --enable-aci
- Add the --with-argon2 configure option and remove it from the contrib
modules, since it is now official (ITS#9453).
- Pass mandir to smbk5pwd to ensure the man page ends up in /usr/share.
- Include the new overlays in libdir/openldap in the packages.
- Add the pkgconfig files to the devel package.
- Remove compat macro for _fillupdir, which was introduced in Nov 2017 and
should be widely available now.
* Fri Jun 04 2021 Michael Ströder <michael@stroeder.com>
- updated to 2.4.59
OpenLDAP 2.4.59 Release (2021/06/03)
Fixed libldap TLSv1.3 cipher suites with OpenSSL 1.1.1 (ITS#9521)
Fixed libldap double free of LDAP_OPT_DEFBASE (ITS#9530)
Fixed slapd syncrepl handling of add+delete on single value attr (ITS#9295)
Fixed slapd-mdb cursor init check (ITS#9526)
Fixed slapd-mdb deletion of context entry (ITS#9531)
Fixed slapd-mdb off-by-one affecting search scope (ITS#9557)
Fixed slapo-pcache locking during expiration (ITS#9529)
Contrib
Fixed slapo-autogroup to not thrash thread context (ITS#9494)
Documentation
ldap_modify(3) - Delete non-existent mod_next parameter (ITS#9559)
* Tue Mar 16 2021 Michael Ströder <michael@stroeder.com>
- updated to 2.4.58
OpenLDAP 2.4.58 Release (2021/03/16)
Fixed slapd validity checks for issuerAndThisUpdateCheck (ITS#9454)
Fixed slapd to alloc new conn struct after freeing old one (ITS#9458)
Fixed slapd syncrepl to check all contextCSNs (ITS#9282)
Fixed slapd-bdb lockdetect config (ITS#9449)
* Mon Jan 18 2021 Michael Ströder <michael@stroeder.com>
- updated to 2.4.57
OpenLDAP 2.4.57 Release (2021/01/18)
Fixed ldapexop to use correct return code (ITS#9417)
Fixed slapd to remove asserts in UUIDNormalize (ITS#9391)
Fixed slapd to remove assert in csnValidate (ITS#9410)
Fixed slapd validity checks for issuerAndThisUpdateCheck (ITS#9411, ITS#9427)
Fixed slapd validity checks for serialNumberAndIssuerCheck (ITS#9404, ITS#9424)
Fixed slapd AVA sort with invalid RDN (ITS#9412)
Fixed slapd ldap_X509dn2bv to check for invalid BER after RDN count (ITS#9423, ITS#9425)
Fixed slapd saslauthz to remove asserts in validation (ITS#9406, ITS#9407)
Fixed slapd saslauthz to use slap_sl_free on normalized DN (ITS#9409)
Fixed slapd saslauthz SEGV in slap_parse_user (ITS#9413)
Fixed slapd modrdn memory leak (ITS#9420)
Fixed slapd double-free in vrfilter (ITS#9408)
Fixed slapd cancel operation to correctly terminate (ITS#9428)
Fixed slapd-ldap fix binds on retry with closed connection (ITS#9400)
Fixed slapo-syncprov to ignore duplicate sessionlog entries (ITS#9394)
/usr/lib/openldap/addpartial.la /usr/lib/openldap/addpartial.so /usr/lib/openldap/addpartial.so.0 /usr/lib/openldap/addpartial.so.0.0.0 /usr/lib/openldap/allop.la /usr/lib/openldap/allop.so /usr/lib/openldap/allop.so.0 /usr/lib/openldap/allop.so.0.0.0 /usr/lib/openldap/allowed.la /usr/lib/openldap/allowed.so /usr/lib/openldap/allowed.so.0 /usr/lib/openldap/allowed.so.0.0.0 /usr/lib/openldap/authzid.la /usr/lib/openldap/authzid.so /usr/lib/openldap/authzid.so.0 /usr/lib/openldap/authzid.so.0.0.0 /usr/lib/openldap/autogroup.la /usr/lib/openldap/autogroup.so /usr/lib/openldap/autogroup.so.0 /usr/lib/openldap/autogroup.so.0.0.0 /usr/lib/openldap/cloak.la /usr/lib/openldap/cloak.so /usr/lib/openldap/cloak.so.0 /usr/lib/openldap/cloak.so.0.0.0 /usr/lib/openldap/datamorph.la /usr/lib/openldap/datamorph.so /usr/lib/openldap/datamorph.so.0 /usr/lib/openldap/datamorph.so.0.0.0 /usr/lib/openldap/denyop.la /usr/lib/openldap/denyop.so /usr/lib/openldap/denyop.so.0 /usr/lib/openldap/denyop.so.0.0.0 /usr/lib/openldap/lastbind.la /usr/lib/openldap/lastbind.so /usr/lib/openldap/lastbind.so.0 /usr/lib/openldap/lastbind.so.0.0.0 /usr/lib/openldap/noopsrch.la /usr/lib/openldap/noopsrch.so /usr/lib/openldap/noopsrch.so.0 /usr/lib/openldap/noopsrch.so.0.0.0 /usr/lib/openldap/pw-pbkdf2.la /usr/lib/openldap/pw-pbkdf2.so /usr/lib/openldap/pw-pbkdf2.so.0 /usr/lib/openldap/pw-pbkdf2.so.0.0.0 /usr/lib/openldap/pw-sha2.la /usr/lib/openldap/pw-sha2.so /usr/lib/openldap/pw-sha2.so.0 /usr/lib/openldap/pw-sha2.so.0.0.0 /usr/lib/openldap/smbk5pwd.la /usr/lib/openldap/smbk5pwd.so /usr/lib/openldap/smbk5pwd.so.0 /usr/lib/openldap/smbk5pwd.so.0.0.0 /usr/lib/openldap/trace.la /usr/lib/openldap/trace.so /usr/lib/openldap/trace.so.0 /usr/lib/openldap/trace.so.0.0.0 /usr/lib/openldap/variant.la /usr/lib/openldap/variant.so /usr/lib/openldap/variant.so.0 /usr/lib/openldap/variant.so.0.0.0 /usr/lib/openldap/vc.la /usr/lib/openldap/vc.so /usr/lib/openldap/vc.so.0 /usr/lib/openldap/vc.so.0.0.0
Generated by rpm2html 1.8.1
Fabrice Bellet, Sat Dec 21 00:12:52 2024