Commit Graph

58 Commits

Author SHA1 Message Date
Alexander Bokovoy
f47ccc4d08 CVE-2021-3480: invalid bind DN crash
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
2021-05-18 09:59:08 +03:00
Alexander Bokovoy
24638db0b5 Update to slapi-nis 0.56.6
Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
2020-12-04 15:45:42 +02:00
Alexander Bokovoy
461588afaf New upstream release 2020-05-04 13:32:01 +03:00
Alexander Bokovoy
81bb8b97ed 0.56.4 release 2020-02-07 10:10:57 +02:00
Alexander Bokovoy
596fde59d3 New upstream release 2019-06-06 08:59:01 +03:00
Alexander Bokovoy
00c7cf68ec New upstream release 0.56.2 2018-01-19 12:59:02 +02:00
Alexander Bokovoy
dcb01e3fbb New upstream release 0.56.1 2016-08-08 09:57:12 +03:00
Alexander Bokovoy
3f687b588a Update sources to use the correct tarball 2016-06-20 18:37:15 +03:00
Alexander Bokovoy
4db4a44d40 Use updated tarball 2016-06-20 18:24:51 +03:00
Alexander Bokovoy
57cf3400b6 Update upstream tarball 2016-06-20 18:08:34 +03:00
Alexander Bokovoy
71b72df031 Package 0.56 release 2016-06-20 17:47:00 +03:00
Alexander Bokovoy
eef5a22f6e Package slapi-nis 0.55 2016-01-26 14:22:09 +02:00
Alexander Bokovoy
a6c212d250 Upstream release 0.54.2
- CVE-2015-0283 slapi-nis: infinite loop in getgrnam_r() and
  getgrgid_r() (#1206049)
- Make sure nss_sss.so.2 module is used directly
- Allow building slapi-nis with ID views against 389-ds-base from
  RHEL7.0/CentOS7.0 releases
2015-03-26 11:20:31 +02:00
Alexander Bokovoy
e987499800 New upstream release: 0.54.1
- support FreeIPA overrides in LDAP BIND callback
- ignore FreeIPA override searchs outside configured schema compat subtrees
2014-11-06 14:47:15 +02:00
Alexander Bokovoy
85450498c2 Add support for FreeIPA's ID views
- Allow searching SSSD-provided users as memberUid case-insensitevly
  Fixes bug #1130131
2014-10-10 13:55:24 +03:00
Nalin Dahyabhai
ebe22e515d Update to 0.53
- correct the default NIS map settings for hosts.byname and hosts.byaddr,
  from report by Rik Megens
- fix several problems when hitting out-of-memory conditions, spotted by
  static analysis
- remove ExclusiveArch if %%{rhel} is 7 or higher, because 389-ds-base gets
  built for everything now (#1055711)
2014-04-22 15:29:18 -04:00
Nalin Dahyabhai
2004714e5d Update to 0.52
- correctly reflect whether or not we're built with transaction support in
  the module's nsslapd-pluginVersion attribute
- fix a couple of should've-used-memmove()-instead-of-memcpy() cases which
  would hit when removing maps or groups of maps (#1043546)
2013-12-16 13:31:34 -05:00
Nalin Dahyabhai
5c7342a92f Update to 0.51
- fix another request argument memory leak in NIS server
- fix miscellaneous items found by static analysis
2013-12-09 17:35:47 -05:00
Nalin Dahyabhai
a65ac98381 Update to 0.50
- if we get an EPIPE while registering with rpcbind, try to reconnect and
  retransmit before giving up
2013-10-01 15:05:05 -04:00
Nalin Dahyabhai
8dfff49d90 update to 0.49
- add {nis,schema-compat}-ignore-subtree and -restrict-subtree settings,
  which should let us avoid deadlocks when tasks are modifying data in
  the backend database (#1007451)
2013-09-19 12:03:50 -04:00
Nalin Dahyabhai
60283f080b Update to 0.48
0.48 is basically 0.47.5 with self-tests for the new functionality
added, along with fixes which those tests showed that we needed.
2013-08-12 23:42:45 -04:00
Nalin Dahyabhai
11b78ffedf Update to 0.47.7, fixing some build problems 2013-08-07 14:52:19 -04:00
Nalin Dahyabhai
4c650e9178 update to 0.47.5
Update to 0.47.5:
- merge Alexander Bokovoy's patches to
  - teach the schema compatibility plugin to optionally serve user and group
    information retrieved from libc as part of a set of compat entries
  - handle simple bind requests for those entries by calling out to PAM
  - to rewrite the DN of incoming bind requests to compat entries to point
    at the source entries, instead of returning a referral which most clients
    won't handle
2013-08-07 12:46:36 -04:00
Nalin Dahyabhai
1d9f542385 update to 0.47
- fix request argument memory leaks in NIS server
- add a %sort function
2013-05-24 11:58:32 -04:00
Nalin Dahyabhai
8b956e4f21 update to 0.46
- when checking if we can skip processing for a given change, pay attention to
  whether or not the changes cause the entry to need to be added or removed
  from a map (#912673)
- check SLAPI_PLUGIN_OPRETURN in post-change hooks, in case the backend failed
  to update things but the server called us anyway
2013-04-04 18:13:49 -04:00
Nalin Dahyabhai
2a96b6feba update to 0.45
- fix dispatching for multiple connected clients in the NIS plugin (#923336)
2013-03-19 16:38:30 -04:00
Nalin Dahyabhai
bea5638eff whoops, update the sources, too 2012-11-14 10:58:50 -05:00
Nalin Dahyabhai
b99b66152f update to 0.43
update to 0.43:
- reintroduce support for directory server transactions (nhosoi, IPA#3046)
- control transaction support at run-time, deciding when to do things based
  on the value of the nsslapd-pluginbetxn attribute in the plugin's entry
- NIS: add default settings for shadow.byname and passwd.adjunct.byname maps
2012-11-13 17:56:19 -05:00
Nalin Dahyabhai
f337444307 update to 0.42
- fixes a slow memory leak
- removes transaction support, because 389's new strategy for adding
  transactions no longer expects plugins to change to accomodate the
  feature, and attempts to do so are now bad
2012-06-13 17:16:16 -04:00
Nalin Dahyabhai
f4f35c9914 - of course, i forgot the new sources 2012-04-10 17:17:49 -04:00
Nalin Dahyabhai
a993c1f03e - treat padding values passed to the "link" function as expressions to be
evaluated rather than simply as literal values (part of #767372)
- add a "default" function for trying to evaluate one expression, then
  another, then another... (part of #767372)
- when creating a compat entry based on a real entry, set an entryUSN based on
  the source entry or the rootDSE (freeipa #864); the "scaffolding" entries
  won't have them
2012-04-03 12:07:56 -04:00
Nalin Dahyabhai
8143e92c1b - update to 0.38 2012-03-06 15:27:02 -05:00
Nalin Dahyabhai
a7f763871f - fix a compile error on systems where LDAP_SCOPE_SUBORDINATE isn't defined (reported by Christian Neuhold)
- conditionalize whether we have a build dependency on tcp_wrappers (older releases) or tcp_wrappers-devel (newer releases)
2012-02-13 10:52:07 -05:00
Nalin Dahyabhai
663ab376f2 - jump to 0.36, which adds more formatting operators and tries to keep clients which "ypcat" by doing "yp_first"/"yp_next" from getting stuck when a nis map contains duplicate keys based on a single directory entry 2012-01-24 14:29:40 -05:00
Nalin Dahyabhai
b0c2be4c76 - update to 0.34, pulling in fixes for memory leaks, performance
improvements, and initial support for server backend transactions
2012-01-19 14:24:37 -05:00
Nalin Dahyabhai
d84fcec2eb - update to 0.28:
- when configured with --with-ldap=openldap, link with -lldap_r rather than -lldap (rmeggins, #769107)
2011-12-19 18:30:00 -05:00
Nalin Dahyabhai
986b9f9cca - when building for 389-ds, use Slapi_RWLocks if they appear to be available (the rest of #730394/#730403) 2011-12-06 14:48:37 -05:00
Nalin Dahyabhai
d7f8644030 - update to 0.26
- use posix rwlocks instead of nspr rwlocks
2011-08-12 16:37:32 -04:00
Nalin Dahyabhai
14574aca42 - update to 0.25 2011-07-27 18:45:07 -04:00
Nalin Dahyabhai
e73f356cb7 - speed up building compat entries with attributes with thousands of literal values (#692690) 2011-04-01 11:54:52 -04:00
Nalin Dahyabhai
ffe3123291 - update to 0.22 2011-01-06 12:08:39 -05:00
Nalin Dahyabhai
7cdd06ee7d - update to 0.21 2010-11-23 14:33:12 -05:00
Nalin Dahyabhai
3fd362c481 - upadte to 0.20 2010-11-23 14:19:18 -05:00
Nalin Dahyabhai
c59da85228 - update to 0.20 2010-11-23 14:15:46 -05:00
Nalin Dahyabhai
2dce4f0139 0.19: fix a brown-paper-bag crash 2010-11-22 20:05:35 -05:00
Nalin Dahyabhai
51f19601aa - update to 0.18 2010-11-22 19:37:15 -05:00
Nalin Dahyabhai
1a6b1df1b2 update to 0.18 2010-11-22 19:36:46 -05:00
Nalin Dahyabhai
4f73d84fbb send portmap registrations to the right place 2009-05-14 21:34:23 +00:00
Nalin Dahyabhai
013526c857 update to 0.16, which fixes a bug we don't trigger 2009-05-14 20:17:32 +00:00
Nalin Dahyabhai
8c984f8a7b - fix %deref and %referred to fail rather than return a valid-but-empty
result when they fail to evaluate (reported by Rob Crittenden)
2009-05-08 13:40:45 +00:00