rpms/cyrus-sasl
6
0
Fork 0
Code Issues Pull Requests Releases Activity

Remove debug log spam in digestmd5 plugin

Browse Source 
ldapmodify, ldappasswd and ldapsearch could log:
DIGEST-MD5 common mech free

This is reproducable with an anonymous ldapsearch.

Backport the upstream patch to remove the debug line.

Resolves: RHEL-82172

Signed-off-by: Rob Crittenden <rcritten@redhat.com>
This commit is contained in:
Rob Crittenden 2025-03-28 12:11:43 -04:00
parent 017d645046
commit 57d3073d4c
2 changed files with 35 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
cyrus-sasl-2.1.27-remove-debug-log-mech-free.patch Normal file
View File

@ -0,0 +1,29 @@
Forwarded: https://github.com/cyrusimap/cyrus-sasl/pull/721
From: Bastian Germann <bage@debian.org>
Date: Thu, 14 Apr 2022 12:28:40 +0200
Subject: plugins/digestmd5: Remove debug log "mech free"
The "DIGEST-MD5 common mech free" debug log message is bothering many users.
It is not really helpful, so drop it.
Fixes #386.
Signed-off-by: Bastian Germann <bage@debian.org>
---
plugins/digestmd5.c | 3 ---
1 file changed, 3 deletions(-)
diff --git a/plugins/digestmd5.c b/plugins/digestmd5.c
index c6b54317..be949dce 100644
--- a/plugins/digestmd5.c
+++ b/plugins/digestmd5.c
@@ -1762,9 +1762,6 @@ static void digestmd5_common_mech_free(void *glob_context,
reauth_cache_t *reauth_cache = my_glob_context->reauth;
size_t n;
- utils->log(utils->conn, SASL_LOG_DEBUG,
- "DIGEST-MD5 common mech free");
-
/* Prevent anybody else from freeing this as well */
my_glob_context->reauth = NULL;

7
cyrus-sasl.spec
View File

@ -9,7 +9,7 @@
Summary: The Cyrus SASL library
Name: cyrus-sasl
Version: 2.1.27
Release: 21%{?dist}
Release: 22%{?dist}
License: BSD with advertising
URL: https://www.cyrusimap.org/sasl/
@ -48,6 +48,7 @@ Patch108: cyrus-sasl-2.1.27-Migration-from-BerkeleyDB.patch
Patch500: cyrus-sasl-2.1.27-coverity.patch
Patch501: cyrus-sasl-2.1.27-cumulative-digestmd5.patch
Patch502: cyrus-sasl-2.1.27-cumulative-ossl3.patch
Patch503: cyrus-sasl-2.1.27-remove-debug-log-mech-free.patch
Patch900: 0001-CVE-2022-24407-Escape-password-for-SQL-insert-update.patch
@ -189,6 +190,7 @@ the GS2 authentication scheme.
%patch500 -p1 -b .coverity
%patch501 -p1 -b .digestmd5
%patch502 -p1 -b .ossl3
%patch503 -p1 -b .logspam
%patch900 -p1 -b .CVE-2022-24407
%build
@ -401,6 +403,9 @@ getent passwd %{username} >/dev/null || useradd -r -g %{username} -d %{homedir}
%{_sbindir}/sasl2-shared-mechlist
%changelog
* Fri Mar 28 2025 Rob Crittenden <rcritten@redhat.com> - 2.1.27-22
- Remove debug log spam in digestmd5 plugin (RHEL-82172)
* Mon Aug 1 2022 Simo Sorce <simo@redhat.com> - 2.1.27-21
- Fix memleak