OpenLDAP Changelog

New in version 2.4.40

October 7th, 2014
  • Fixed libldap DNS SRV priority handling (ITS#7027)
  • Fixed libldap don't leak libldap err codes (ITS#7676)
  • Fixed libldap CR/LF handling (ITS#4635)
  • Fixed libldap ldif-wrap length (ITS#7871)
  • Fixed libldap GnuTLS ciphersuite parsing (ITS#7500)
  • Fixed libldap GnuTLS with newer versions (ITS#7430,ITS#6359)
  • Fixed libldif to correctly handle 4096 character lines (ITS#7859)
  • Fixed librewrite reference counting (ITS#7723)
  • Fixed slapacl with back-mdb reader transactions (ITS#7920)
  • Fixed slapd syncrepl to send cookie on fallback (ITS#7849)
  • Fixed slapd syncrepl SEGV when abandoning a connection (ITS#7928)
  • Fixed slapd slapcat with external schema (ITS#7895)
  • Fixed slapd schema RDN normalization (ITS#7935)
  • Fixed slapd with repeated language tags (ITS#7941)
  • Fixed slapd modrdn crash on naming attr with no matching rule (ITS#7850)
  • Fixed slapd memory leak in control handling (ITS#7942)
  • Fixed slapd-ldap removed dead code (ITS#7922)
  • Fixed slapd-mdb to work concurrently with slapadd (ITS#7798)
  • Fixed slapd-mdb with paged results (ITS#7705, ITS#7800)
  • Fixed slapd-mdb slapcat with nonexistent indices (ITS#7870)
  • Fixed slapd-mdb long lived reader transactions (ITS#7904)
  • Fixed slapd-mdb memory leak on matchedDN (ITS#7872)
  • Fixed slapd-mdb sorting of attribute values (ITS#7902)
  • Fixed slapd-mdb to flag attribute values as sorted (ITS#7903)
  • Fixed slapd-mdb index config handling (ITS#7912)
  • Fixed slapd-mdb entry release handling (ITS#7915)
  • Fixed slapd-mdb with aliases and referrals (ITS#7927)
  • Fixed slapd-mdb alias dereferencing (ITS#7702)
  • Fixed slapd-sock socket flushing (ITS#7937)
  • Fixed slapo-accesslog attribute normalization (ITS#7934)
  • Fixed slapo-accesslog internal search logging (ITS#7929)
  • Fixed slapo-auditlog connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-chain interaction with slapo-rwm (ITS#7930)
  • Fixed slapo-constraint connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-dds connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-dyngroup connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-memberof attr count (ITS#7893)
  • Fixed slapo-memberof frontendDB handling (ITS#7249)
  • Fixed slapo-memberof internal search logging (ITS#7929)
  • Fixed slapo-pcache config processing (ITS#7919)
  • Fixed slapo-pcache connection destroy logic (ITS#7906,ITS#7923)
  • Added slapo-ppolicy ORDERING rules (ITS#7838)
  • Fixed slapo-ppolicy timestamp resolution to use microseconds (ITS#7161)
  • Fixed slapo-ppolicy connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-refint to check for pauses in cn=config (ITS#7873)
  • Fixed slapo-refint internal search logging (ITS#7929)
  • Fixed slapo-refint connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-seqmod connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-slapover connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapo-sock db_init (ITS#7868)
  • Fixed slapo-sssvlv fix olcSssVlvMaxPerConn (ITS#7908)
  • Fixed slapo-translucent double free (ITS#7587)
  • Fixed slapo-translucent to work with manageDSAit (ITS#7864)
  • Fixed slapo-translucent to use local backend with local entries (ITS#7915)
  • Fixed slapo-unique connection destroy logic (ITS#7906,ITS#7923)
  • Fixed slapcacl with invalid suffix (ITS#7827)
  • Build Environment:
  • Remove support for gcrypt (ITS#7877)
  • BDB 6.0.20 and later is not supported (ITS#7890)
  • Fixed ODBC link check (ITS#7891)
  • Fixed slapd.ldif frontend config (ITS#7933)
  • Contrib:
  • Added pbkdf2 module (ITS#7742)
  • Fixed autogroup double free (ITS#7831)
  • Fixed autogroup modification callback responses (ITS#6970)
  • Fixed ldapc++ memory leak in Async connection (ITS#7806)
  • Fixed nssov install path (ITS#7858)
  • Fixed passwd rpath (ITS#7885)
  • Fixed apr1 do_phk_hash argument order (ITS#7869)
  • Fixed slapd-sha2 buffer overrun (ITS#7851)
  • Documentation:
  • Fixed slapd.ldif man page reference (ITS#7803)
  • Fixed slapd.conf(5) man page to reference exattrs (ITS#7847)
  • Fixed guide to work with mkrelease (ITS#7887)
  • Fixed ldap_get_dn(3) ldap_ava definition (ITS#7860)

New in version 2.4.39 (January 28th, 2014)

  • Fixed libldap MozNSS crash (ITS#7783)
  • Fixed libldap memory leak with SASL (ITS#7757)
  • Fixed libldap assert in parse_passwdpolicy_control (ITS#7759)
  • Fixed libldap shortcut NULL RDNs (ITS#7762)
  • Fixed libldap deref to use correct control
  • Fixed liblmdb keysizes with mdb_update_key (ITS#7756)
  • Fixed slapd cn=config olcDbConfig modification (ITS#7750)
  • Fixed slapd-bdb/hdb to bail out of search if config is paused (ITS#7761)
  • Fixed slapd-bdb/hdb indexing issue with derived attributes (ITS#7778)
  • Fixed slapd-mdb to bail out of search if config is paused (ITS#7761)
  • Fixed slapd-mdb indexing issue with derived attributes (ITS#7778)
  • Fixed slapd-perl to bail out of search if config is paused (ITS#7761)
  • Fixed slapd-sql to bail out of search if config is paused (ITS#7761)
  • Fixed slapo-constraint handling of softadd/softdel (ITS#7773)
  • Fixed slapo-syncprov assert with findbase (ITS#7749)
  • Build Environment:
  • Test suite: Use $(MAKE) for tests (ITS#7753)
  • Documentation:
  • admin24 fix TLSDHParamFile to be correct (ITS#7684)

New in version 2.4.38 (November 18th, 2013)

  • Fixed liblmdb nordahead flag (ITS#7734)
  • Fixed liblmdb to check cursor index before cursor_del (ITS#7733)
  • Fixed liblmdb wasted space on split (ITS#7589)
  • Fixed slapd for certs with a NULL issuerDN (ITS#7746)
  • Fixed slapd cn=config with empty nested includes (ITS#7739)
  • Fixed slapd syncrepl memory leak with delta-sync MMR (ITS#7735)
  • Fixed slapd-bdb/hdb to stop processing on dn not found (ITS#7741)
  • Fixed slapd-bdb/hdb with indexed ANDed filters (ITS#7743)
  • Fixed slapd-mdb to stop processing on dn not found (ITS#7741)
  • Fixed slapd-mdb dangling reader (ITS#7662)
  • Fixed slapd-mdb matching rule for OlcDbEnvFlags (ITS#7737)
  • Fixed slapd-mdb with indexed ANDed filters (ITS#7743)
  • Fixed slapd-meta from blocking other threads (ITS#7740)
  • Fixed slapo-syncprov assert with findbase (ITS#7749)

New in version 2.4.37 (October 28th, 2013)

  • Added liblmdb nordahead environment flag (ITS#7725)
  • Fixed client tools CLDAP with IPv6 (ITS#7695)
  • Fixed libldap CLDAP with IPv6 (ITS#7695)
  • Fixed libldap lock ordering with abandon op (ITS#7712)
  • Fixed liblmdb segfault with mdb_cursor_del (ITS#7718)
  • Fixed liblmdb when converting to writemap (ITS#7715)
  • Fixed liblmdb assert on MDB_NEXT with delete (ITS#7722)
  • Fixed liblmdb wasted space on split (ITS#7589)
  • Fixed slapd cn=config with olcTLSProtocolMin (ITS#7685)
  • Fixed slapd-bdb/hdb optimize index updates (ITS#7329)
  • Fixed slapd-ldap chaining with cn=config (ITS#7381, ITS#7434)
  • Fixed slapd-ldap chaning with controls (ITS#7687)
  • Fixed slapd-mdb optimize index updates (ITS#7329)
  • Fixed slapd-meta chaining with cn=config (ITS#7381, ITS#7434)
  • Fixed slapo-constraint to no-op on nonexistent entries (ITS#7692)
  • Fixed slapo-dds assert on startup (ITS#7699)
  • Fixed slapo-memberof to not replicate internal ops (ITS#7710)
  • Fixed slapo-refint to not replicate internal ops (ITS#7710)
  • Build Environment:
  • Fixed slapd-mdb ptr arithmetic on void *s (ITS#7720)
  • Documentation:
  • ldapsearch(1) minor typo fix (ITS#7680)
  • slapd-passwd(5) minor typo fix (ITS#7680)

New in version 2.4.36 (August 19th, 2013)

  • Added back-meta target filter patterns (ITS#7609)
  • Added liblmdb mdb_txn_env to API (ITS#7660)
  • Fixed libldap CLDAP with uninit'd memory (ITS#7582)
  • Fixed libldap with UDP (ITS#7583)
  • Fixed libldap OpenSSL TLS versions (ITS#7645)
  • Fixed liblmdb MDB_PREV behavior (ITS#7556)
  • Fixed liblmdb transaction issues (ITS#7515)
  • Fixed liblmdb mdb_drop overflow page return (ITS#7561)
  • Fixed liblmdb nested split (ITS#7592)
  • Fixed liblmdb overflow page behavior (ITS#7620)
  • Fixed liblmdb race condition with read and write txns (ITS#7635)
  • Fixed liblmdb mdb_del behavior with MDB_DUPSORT and mdb_del (ITS#7658)
  • Fixed slapd cn=config with unknown schema elements (ITS#7608)
  • Fixed slapd cn=config with loglevel 0 (ITS#7611)
  • Fixed slapd slapi filterlist free behavior (ITS#7636)
  • Fixed slapd slapi control free behavior (ITS#7641)
  • Fixed slapd schema countryString as directoryString (ITS#7659)
  • Fixed slapd schema telephoneNumber as directoryString (ITS#7659)
  • Fixed slapd-bdb/hdb to wait for read locks in tool mode (ITS#6365)
  • Fixed slapd-mdb behavior with alias dereferencing (ITS#7577)
  • Fixed slapd-mdb modrdn and base-scoped searches (ITS#7604)
  • Fixed slapd-mdb refcount behavior (ITS#7628)
  • Fixed slapd-meta binding flag is set (ITS#7524)
  • Fixed slapd-meta with minimal config (ITS#7581)
  • Fixed slapd-meta missing results messages (ITS#7591)
  • Added slapd-meta TCP keepalive support (ITS#7513)
  • Fixed slapo-sssvlv double free (ITS#7588)
  • Fixed slaptest to list -Q option (ITS#7568)
  • Build Environment:
  • Fixed slapd-meta declaration warnings (ITS#7654)
  • Contrib:
  • Fixed nssov group enumeration bug (ITS#7569)
  • Fixed autogroup when URI has no attrs (ITS#7580)
  • Documentation:
  • admin24 Update database backend notes (ITS#7590)
  • ldap.conf(5) fixed typos (ITS#7568)
  • ldapmodify(1) remove replog reference (ITS#7562)
  • ldif(5) remove replog reference (ITS#7562)
  • slapd-config(5) remove replog reference (ITS#7562)
  • slapd.conf(5) remove replog reference (ITS#7562)
  • slapd-config(5) document TLSProtocolMin (ITS#5655,ITS#7645)
  • slapd.conf(5) document TLSProtocolMin (ITS#5655,ITS#7645)

New in version 2.4.34 (March 4th, 2013)

  • Fixed libldap connections with EINTR (ITS#7476)
  • Fixed libldap lineno overflow in ldif_read_record (ITS#7497)
  • Fixed liblmdb mdb_env_open flag handling (ITS#7453)
  • Fixed liblmdb mdb_midl_sort array optimization (ITS#7432)
  • Fixed liblmdb freelist with large entries (ITS#7455)
  • Fixed liblmdb to check for filled dirty page list (ITS#7491)
  • Fixed liblmdb to validate data limits (ITS#7485)
  • Fixed liblmdb mdb_update_key for large keys (ITS#7505)
  • Fixed ldapmodify to not core dump with invalid LDIF (ITS#7477)
  • Fixed slapd syncrepl for old entries in MMR setup (ITS#7427)
  • Fixed slapd signedness for index_substr_any_* (ITS#7449)
  • Fixed slapd enforce SLAPD_MAX_DAEMON_THREADS (ITS#7450)
  • Fixed slapd mutex in send_ldap_ber (ITS#6164)
  • Added slapd-ldap onerr option (ITS#7492)
  • Added slapd-ldap keepalive support (ITS#7501)
  • Fixed slapd-ldif with empty dir (ITS#7451)
  • Fixed slapd-mdb to reopen attr DBs after env reopen (ITS#7416)
  • Fixed slapd-mdb handling of missing entries (ITS#7483,7496)
  • Fixed slapd-mdb environment flag setting (ITS#7452)
  • Fixed slapd-mdb with sub db slapcat (ITS#7469)
  • Fixed slapd-mdb to correctly work with toolthreads > 2 (ITS#7488,ITS#7527)
  • Fixed slapd-mdb subtree search speed (ITS#7473)
  • Fixed slapd-meta conversion to cn=config (ITS#7525)
  • Fixed slapd-meta segfault when modifying olcDbUri (ITS#7526)
  • Fixed slapd-sql back-config support (ITS#7499)
  • Fixed slapo-constraint handle uri and restrict correctly (ITS#7418)
  • Fixed slapo-constraint with multi-master replication (ITS#7426)
  • Fixed slapo-constraint segfault (ITS#7431)
  • Fixed slapo-deref control initialization (ITS#7436)
  • Fixed slapo-deref control exposure (ITS#7445)
  • Fixed slapo-memberof with internal ops (ITS#7487)
  • Fixed slapo-pcache matching rules for config db (ITS#7459)
  • Fixed slapo-rwm modrdn cleanup (ITS#7414)
  • Fixed slapo-sssvlv maxperconn parameter (ITS#7484)
  • Build Environment:
  • Fixed slapo-constraint test suite (ITS#7423)
  • Contrib:
  • Added nssov nssov_config support (ITS#7518)
  • Added nssov password_prohibit_message (ITS#7518)
  • Fixed ldapc++ with gcc-4.7 (ITS#7281,ITS#7304)
  • Fixed nssov olcNssPamSession handling (ITS#7481)
  • Fixed nssov connection DN (ITS#7518)
  • Add missing Makefile for various modules (ITS#7308)
  • Unify Makefile structure for modules (ITS#7309)
  • Fixed slapo-allowed attribute replication (ITS#7493)
  • Fixed slapo-passwd SHA2 to correctly zero buffer (ITS#7490)
  • Documentation:
  • ldapurl(1) fix example usage (ITS#7454)
  • ldap_get_option(3) fixed trailing whitespace (ITS#7411)
  • slapd-config(5) olcExtraAttrs is per db (ITS#7421)
  • slapd-overlays(5) update manpage index (ITS#7489)
  • slapo-dynlist(5) Search behavior notes (ITS#7486)
  • slapo-valsort(5) Document valsort control syntax (ITS#7523)

New in version 2.4.33 (October 10th, 2012)

  • Added slapd-meta cn=config support
  • Fixed libldap MozNSS slot picking (ITS#7359)
  • Fixed libldap MozNSS with tokenname:certnickname format (ITS#7360)
  • Fixed libmdb POSIX semaphore cleanup on environment close (ITS#7364)
  • Fixed libmdb mdb_page_split (ITS#7385, ITS#7229)
  • Fixed slapd alock handling on Windows (ITS#7361)
  • Fixed slapd acl handling with zero-length values (ITS#7350)
  • Fixed slapd syncprov to not reference ops inside a lock (ITS#7172)
  • Fixed slapd delta-syncrepl MMR with large attribute values (ITS#7354)
  • Fixed slapd slapd_rw_destroy function (ITS#7390)
  • Fixed slapd-ldap idassert bind handling (ITS#7403)
  • Fixed slapd-mdb slapadd -q -w double free (ITS#7356)
  • Fixed slapd-mdb to close read txn in reindex commit (ITS#7386)
  • Fixed slapo-constraint with multiple modifications (ITS#7168)
  • Build Environment:
  • Fixed build with Visual Studio (ITS#7358)
  • Fixed libmdb posix semaphore use on BSD system (ITS#7363)
  • Add slapo-constraint test suite (ITS#7344, ITS#7366)
  • Contrib:
  • Updated radius passwd module for NAS-Identifier (ITS#7357)
  • Documentation:
  • slapo-refint(5) Note that refint is not replicated (ITS#7405)

New in version 2.4.31 (April 24th, 2012)

  • Added slapo-accesslog support for reqEntryUUID (ITS#6656)
  • Fixed libldap IPv6 URL detection (ITS#7194)
  • Fixed libldap rebinding on failed connection (ITS#7207)
  • Fixed libmdb alignment of MDB_db members (ITS#7191)
  • Fixed libmdb branch page merging on deletes (ITS#7190)
  • Fixed libmdb page split with MDB_APPEND (ITS#7213)
  • Fixed libmdb free page usage with entry deletion (ITS#7210)
  • Fixed libmdb to use IOV_MAX if it is defined and small (ITS#7196)
  • Fixed libmdb key alignment (ITS#7219)
  • Fixed libmdb mdb_page_split (ITS#7229)
  • Fixed libmdb with zero length IDLs (ITS#7230)
  • Fixed slapd listener initialization (ITS#7233)
  • Fixed slapd cn=config with olcTLSVerifyClient (ITS#7197)
  • Fixed slapd delta-syncrepl fallback on non-leaf error (ITS#7195)
  • Fixed slapd to reject MMR setups with bad serverID setting (ITS#7200)
  • Fixed slapd approxIndexer key generation (ITS#7203)
  • Fixed slapd modification of olcSuffix (ITS#7205)
  • Fixed slapd schema validation with missing definitions (ITS#7224)
  • Fixed slapd syncrepl -c with supplied CSN values (ITS#7245)
  • Fixed slapd-bdb/hdb idlcache with only one element (ITS#7231)
  • Fixed slapd-perl modify with binary values (ITS#7149)
  • Fixed slapd-shell cn=config support (ITS#7201)
  • Fixed slapd-shell modify with binary values (ITS#7149)
  • Fixed slapo-accesslog deadlock with non-logged write ops (ITS#7088)
  • Fixed slapo-syncprov sessionlog check (ITS#7218)
  • Fixed slapo-syncprov entry leak (ITS#7234)
  • Fixed slapo-syncprov startup initialization (ITS#7235)
  • Build Environment:
  • Fixed test022 to check ldapsearch results (ITS#7228)
  • Fixed test044 when back-monitor is disabled (ITS#7204)
  • Documentation:
  • Fixed slapschema(8) formatting (ITS#7188)
  • Fixed limdb functionality documentation (ITS#7238)
  • Fixed ldap_get_option(3) note inheritance behavior (ITS#7240)

New in version 2.4.28 (December 20th, 2011)

  • Fixed back-mdb out of order slapadd