Commit 493f638e authored by Kurt Zeilenga's avatar Kurt Zeilenga
Browse files

backport ITS#4320 fix from HEAD

parent 90ccdd7f
OpenLDAP 2.3 Change Log
OpenLDAP 2.3.17 Engineering
Fixed slapd anonymous proxy authorization issue (ITS#4320)
Fixed slapd-ldap/meta session reuse issue (ITS#4315)
Fixed slapd-monitor thread issue (ITS#4318)
Build environment
......
......@@ -844,6 +844,11 @@ static int parseProxyAuthz (
return LDAP_PROTOCOL_ERROR;
}
if ( BER_BVISEMPTY( &op->o_ndn ) ) {
rs->sr_text = "anonymous proxyAuthz not allowed";
return LDAP_PROXY_AUTHZ_FAILURE;
}
op->o_proxy_authz = ctrl->ldctl_iscritical
? SLAP_CONTROL_CRITICAL
: SLAP_CONTROL_NONCRITICAL;
......@@ -860,10 +865,14 @@ static int parseProxyAuthz (
op->o_connid, 0, 0 );
/* anonymous */
op->o_ndn.bv_val[ 0 ] = '\0';
if ( !BER_BVISNULL( &op->o_ndn ) ) {
op->o_ndn.bv_val[ 0 ] = '\0';
}
op->o_ndn.bv_len = 0;
op->o_dn.bv_val[ 0 ] = '\0';
if ( !BER_BVISNULL( &op->o_dn ) ) {
op->o_dn.bv_val[ 0 ] = '\0';
}
op->o_dn.bv_len = 0;
return LDAP_SUCCESS;
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment