Date: Fri, 23 Jul 2004 16:00:53 GMT From: Oliver Eikemeier <eikemeier@fillmore-labs.com> To: freebsd-ports-bugs@FreeBSD.org Subject: Re: ports/69487: [Maintainer] www/squid: use OpenLDAP 2.1 Message-ID: <200407231600.i6NG0rEW025666@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/69487; it has been noted by GNATS. From: Oliver Eikemeier <eikemeier@fillmore-labs.com> To: Thomas-Martin Seck <tmseck@netcologne.de> Cc: FreeBSD-gnats-submit@FreeBSD.org Subject: Re: ports/69487: [Maintainer] www/squid: use OpenLDAP 2.1 Date: Fri, 23 Jul 2004 17:53:00 +0200 Thomas-Martin Seck wrote: > [...] > This issue does not seem to be related to the vendor patch against the > LDAP authentication helpers as I originally thought (see ports/69465) > but > until this issue is sorted out upstream, keep leaving this patch alone > since I cannot test LDAP authentication myself yet. I believe this is caused by the vendor patch and does in no way releate to the OpenLDAP version used. The vendor patch breaks -H, -P and authentication. They changed checkLDAP from if (ldap_simple_bind_s(ld, dn, password) != LDAP_SUCCESS) return 1; return 0; to if (ldap_simple_bind_s(ld, dn, password) != LDAP_SUCCESS) ret = 1; return 0; which can't possibly work. I could show you some more examples of code that is obviously wrong after this patch. Besides, you can test this by yourself by repeating the steps given in <http://www.squid-cache.org/bugs/show_bug.cgi?id=1018> You shouldn't be able to authenticate or crash. Again: I can't see any signs that this relates to the OpenLDAP version used. -Oliver
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200407231600.i6NG0rEW025666>