rpms/freeradius
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Handle connection error in rlm_ldap_cacheable_groupobj

Browse Source
This commit is contained in:
Nikolai Kondrashov 2017-03-30 14:13:46 +03:00
parent cadadd2a61
commit 5b4fff6aff
2 changed files with 34 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
freeradius-Handle-connection-error-in-rlm_ldap_cacheable_groupo.patch Normal file
View File

@ -0,0 +1,30 @@
From bd67f9fc09690f0b3ac195cb9c57d51bd7a7dc23 Mon Sep 17 00:00:00 2001
From: Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com>
Date: Wed, 29 Mar 2017 10:43:14 +0300
Subject: [PATCH] Handle connection error in rlm_ldap_cacheable_groupobj
Closes #1951
(cherry picked from commit 208681c80e1149de888affdb87f34de0c371db50)
---
src/modules/rlm_ldap/groups.c | 2 ++
1 file changed, 2 insertions(+)
diff --git a/src/modules/rlm_ldap/groups.c b/src/modules/rlm_ldap/groups.c
index 12f34da2a..5e0a1819e 100644
--- a/src/modules/rlm_ldap/groups.c
+++ b/src/modules/rlm_ldap/groups.c
@@ -461,8 +461,10 @@ rlm_rcode_t rlm_ldap_cacheable_groupobj(rlm_ldap_t const *inst, REQUEST *request
case LDAP_PROC_NO_RESULT:
RDEBUG2("No cacheable group memberships found in group objects");
+ goto finish;
default:
+ rcode = RLM_MODULE_FAIL;
goto finish;
}
--
2.11.0

4
freeradius.spec
View File

@ -25,6 +25,7 @@ Patch1: freeradius-redhat-config.patch
Patch2: freeradius-Use-system-crypto-policy-by-default.patch
Patch3: freeradius-Relax-OpenSSL-permissions-for-default-key-files.patch
Patch4: freeradius-Fix-some-issues-found-with-static-analyzers.patch
Patch5: freeradius-Handle-connection-error-in-rlm_ldap_cacheable_groupo.patch
%global docdir %{?_pkgdocdir}%{!?_pkgdocdir:%{_docdir}/%{name}-%{version}}
@ -196,6 +197,7 @@ This plugin provides the REST support for the FreeRADIUS server project.
%patch2 -p1
%patch3 -p1
%patch4 -p1
%patch5 -p1
%build
# Force compile/link options, extra security for network facing daemon
@ -801,6 +803,8 @@ exit 0
* Wed Mar 29 2017 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 3.0.13-3
- Explicitly disable rlm_cache_memcached to avoid error when the module's
dependencies are installed, and it is built, but not packaged.
- Prevent segfaults by adding a missing handling of connection errors in
rlm_ldap.
* Wed Mar 15 2017 Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com> - 3.0.13-2
- Fix permissions of default key files in raddb/certs.