fix update: openldap can't use TLS after fork()

Resolves: #636956
2011-03-18 19:50:00 +01:00 · 2011-03-18 19:50:00 +01:00 · 1f856268f5
commit 1f856268f5
parent 91ac19e61e
3 changed files with 22 additions and 0 deletions
--- a/openldap-nss-nofork.patch
+++ b/openldap-nss-nofork.patch
@ -0,0 +1,19 @@
+fix: OpenLDAP can't use TLS after a fork()
+
+Resolves: #636956
+Upstream ITS: #6862
+Author: Rich Megginson <rmeggins@redhat.com>
+
+--- openldap-2.4.24.orig/libraries/libldap/tls_m.c
+++ openldap-2.4.24/libraries/libldap/tls_m.c
+@@ -2890,7 +2890,9 @@
+ 	 * context in the child.
+ 	 */
+ 	if ( !nofork ) {
+-		PR_SetEnv( "NSS_STRICT_NOFORK=DISABLED" );
+		/* will leak one time */
+		char *noforkenvvar = PL_strdup( "NSS_STRICT_NOFORK=DISABLED" );
+		PR_SetEnv( noforkenvvar );
+ 	}
+ 
+ 	return 0;
--- a/openldap.spec
+++ b/openldap.spec
@ -28,6 +28,7 @@ Patch5: openldap-export-ldif.patch
 Patch6: openldap-smbk5pwd-overlay.patch
 Patch7: openldap-ldaprc-currentdir.patch
 Patch8: openldap-userconfig-setgid.patch
+Patch9: openldap-nss-nofork.patch

 # patches for the evolution library (see README.evolution)
 Patch200: openldap-evolution-ntlm.patch
@ -128,6 +129,7 @@ pushd openldap-%{version}
 %patch6 -p1 -b .smbk5pwd-overlay
 %patch7 -p1 -b .ldaprc-currentdir
 %patch8 -p1 -b .userconfig-setgid
+%patch9 -p1 -b .nss-nofork

 cp %{_datadir}/libtool/config/config.{sub,guess} build/

--- a/1
+++ b/1
@ -7,4 +7,5 @@ openldap-export-ldif.patch
 openldap-smbk5pwd-overlay.patch
 openldap-ldaprc-currentdir.patch
 openldap-userconfig-setgid.patch
+openldap-nss-nofork.patch
 openldap-evolution-ntlm.patch