Date: Fri, 23 Jul 2004 16:00:53 GMT From: Oliver Eikemeier <eikemeier@fillmore-labs.com> To: freebsd-ports-bugs@FreeBSD.org Subject: Re: ports/69487: [Maintainer] www/squid: use OpenLDAP 2.1 Message-ID: <200407231600.i6NG0rEW025666@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR ports/69487; it has been noted by GNATS.
From: Oliver Eikemeier <eikemeier@fillmore-labs.com>
To: Thomas-Martin Seck <tmseck@netcologne.de>
Cc: FreeBSD-gnats-submit@FreeBSD.org
Subject: Re: ports/69487: [Maintainer] www/squid: use OpenLDAP 2.1
Date: Fri, 23 Jul 2004 17:53:00 +0200
Thomas-Martin Seck wrote:
> [...]
> This issue does not seem to be related to the vendor patch against the
> LDAP authentication helpers as I originally thought (see ports/69465)
> but
> until this issue is sorted out upstream, keep leaving this patch alone
> since I cannot test LDAP authentication myself yet.
I believe this is caused by the vendor patch and does in no way releate
to the OpenLDAP version used. The vendor patch breaks -H, -P and
authentication.
They changed checkLDAP from
if (ldap_simple_bind_s(ld, dn, password) != LDAP_SUCCESS)
return 1;
return 0;
to
if (ldap_simple_bind_s(ld, dn, password) != LDAP_SUCCESS)
ret = 1;
return 0;
which can't possibly work. I could show you some more examples of code
that is obviously wrong after this patch. Besides, you can test this by
yourself by repeating the steps given in
<http://www.squid-cache.org/bugs/show_bug.cgi?id=1018>;
You shouldn't be able to authenticate or crash.
Again: I can't see any signs that this relates to the OpenLDAP version
used.
-Oliver
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200407231600.i6NG0rEW025666>