Full_Name: Ondrej Kuznik Version: master OS: URL: ftp://ftp.openldap.org/pub/Ondrej-Kuznik-20150214-ITS-8057-uniqueness-ACL.patch Submission from: (NULL) (86.177.93.243) This is caused by my fix for #6641. Since anyone can specify the manageDSAit control on an operation it is trivial to bypass the uniqueness check as it stands. The above patch is derived from OpenLDAP Software. All of the modifications to OpenLDAP Software represented in the above patches were developed by Ondrej Kuznik <ondra@mistotebe.net>. I have not assigned rights and/or interest in this work to any party. I, Ondrej Kuznik, hereby place the above modifications to OpenLDAP Software (and only these modifications) into the public domain. Hence, these modifications may be freely used and/or redistributed for any purpose with or without attribution and/or other notice.
changed notes changed state Open to Test moved from Incoming to Software Bugs
changed notes changed state Test to Release
changed notes changed state Release to Open
--On Saturday, February 14, 2015 6:16 PM +0000 ondra@mistotebe.net wrote: > Full_Name: Ondrej Kuznik > Version: master > OS: > URL: > ftp://ftp.openldap.org/pub/Ondrej-Kuznik-20150214-ITS-8057-uniqueness-ACL > .patch Submission from: (NULL) (86.177.93.243) > > > This is caused by my fix for #6641. Since anyone can specify the > manageDSAit control on an operation it is trivial to bypass the > uniqueness check as it stands. This "fix" causes OpenLDAP to crash during replication: <http://fpaste.org/207817/70741142/> --Quanah -- Quanah Gibson-Mount Platform Architect Zimbra, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
--On Tuesday, April 07, 2015 4:01 AM +0000 quanah@zimbra.com wrote: > --On Saturday, February 14, 2015 6:16 PM +0000 ondra@mistotebe.net wrote: > >> Full_Name: Ondrej Kuznik >> Version: master >> OS: >> URL: >> ftp://ftp.openldap.org/pub/Ondrej-Kuznik-20150214-ITS-8057-uniqueness-ACL >> .patch Submission from: (NULL) (86.177.93.243) >> >> >> This is caused by my fix for #6641. Since anyone can specify the >> manageDSAit control on an operation it is trivial to bypass the >> uniqueness check as it stands. > > This "fix" causes OpenLDAP to crash during replication: > > <http://fpaste.org/207817/70741142/> Also crashes when using ldapmodify -M or ldapmodrdn -M --Quanah -- Quanah Gibson-Mount Platform Architect Zimbra, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration
A fix for that is at ftp://ftp.openldap.org/incoming/Ondrej-Kuznik-20150408-ITS-8057-uniqueness-fix.tgz The above patch is derived from OpenLDAP Software. All of the modifications to OpenLDAP Software represented in the above patches were developed by Ondrej Kuznik <ondra@mistotebe.net>. I have not assigned rights and/or interest in this work to any party. I, Ondrej Kuznik, hereby place the above modifications to OpenLDAP Software (and only these modifications) into the public domain. Hence, these modifications may be freely used and/or redistributed for any purpose with or without attribution and/or other notice
Breaks replication Fixed in master, RE25, RE24 (2.4.41)
changed notes changed state Open to Closed