Created by James Westby and last modified
Get this branch:
bzr branch lp:debian/nss-pam-ldapd
Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Related blueprints

Branch information

Ubuntu branches

Recent revisions

38. By Arthur de Jong

fix-ppolicy-expiration-warnings.patch: fix password policy expiration
warnings (closes: #794068)

37. By Arthur de Jong

ensure proper return code of init script (closes: #794686)

36. By Arthur de Jong

* new upstream release:
  - fix a race condition in signal handling during start-up that would
    cause nslcd to exit if a signal (such as SIGUSR1 that can be sent when
    network status changes) is received (closes: #759544)
  - fix signed integer overflow on 32bit systems when using objectSid
    (thanks Geoffrey McRae)
  - allow longer configuration values (thanks Jed Liu)
  - add an nss_getgrent_skipmembers option to disable retrieving group
    members to improve performance in specific environments
  - add an nss_disable_enumeration option to disable full listing of all
    users and groups to improve performance in specific environments
    (thanks Andrew Elble)
* drop avoid-signal-race.patch which is part of 0.9.6
* drop XS-Testsuite from debian/control
* use pathfind from Developer's Reference instead of full path to nslcd and

35. By Arthur de Jong

avoid-signal-race.patch: avoid a signal mask race condition that could
prevent nslcd from starting correctly during boot (closes: #759544)

34. By Arthur de Jong

* new upstream release:
  - handle situation better when server (or firewall) closed the connection
    (thanks Tim Harder)
  - make daemonising a little more robust and try to log more failures
  - fix integer format strings (thanks Jianhai Luan and Patrick McLean)
  - documentation updates (thanks Dalibor Pospíšil)
  - fix range check for search access (thanks David Binderma)
  - fix a bug in the NSS library when encountering IPv6 addresses in
    the hosts map (thanks Mark R Bannister)
  - adjust the Linux OOM (Out-Of-Memory) killer score to avoid killing
    nslcd (thanks Patrick McLean)
* drop use-ip-range-for-tests.patch which is part of 0.9.5
* debian/copyright: copyright year updates
* upgrade to standards-version 3.9.6 (no changes needed)

33. By Arthur de Jong

* use-ip-range-for-tests.patch: use a different IP range for running the
  autopkgtest tests to avoid conflicts in test environments
* debconf translation updates:
  - Norwegian Bokmål by Petter Reinholdtsen (closes: #758693)
* prefer nslcd as nslcd-2 implementation (closes: #760287)
* do not remove PAM profile when another architecture remains (taken from
  the libpam_ldap package)

32. By Arthur de Jong

* debconf translation updates:
  - Portuguese by Américo Monteiro (closes: #751047)
  - French by Christian Perrier (closes: #751100)
  - Japanese by Kenshi Muto (closes: #752515)
  - Russian by Yuri Kozlov (closes: #752550)
  - Dutch by Arthur de Jong
  - Swedish by Martin Bagge (closes: #753691)
    (with corrections by Anders Jonsson)
  - Czech by Miroslav Kure (closes: #753710)
  - Danish by Joe Hansen (closes: #753948)
  - Turkish by Mert Dirik (closes: #754101)
  - Slovak by Slavko (closes: #754284)
  - German by Chris Leick (closes: #754476)
  - Polish by Michał Kułach (closes: #754989)
  - Spanish by Matías A. Bellone (closes: #755037)
  - Italian by Beatrice Torracca (closes: #755282)
* for new installs add tls_cacertfile /etc/ssl/certs/ca-certificates.crt to
  nslcd.conf (closes: #750949)
* provide a debconf prompt for tls_cacertfile if TLS is enabled and reqcert
  is configured (closes: #750949, #661872)
* update autopkgtest tests to dump daemon debug info if tests fail and not
  stop the tests on first failure

31. By Arthur de Jong

* upload to unstable
* new upstream release:
  - also handle password policy information on BIND failure (this makes it
    possible to distinguish between a wrong password and an expired
  - fix mapping the member attribute to an empty string
  - any buffers that may have held passwords are cleared before the memory
    is released
  - increase buffer size for passwords to support extremely long passwords
    (thanks ushi)
  - increase buffer size for DN to support very long names or names with
    non-ASCII characters
  - log an error in almost all places where a defined buffer is not large
    enough to hold the provided data instead of just (sometimes silently)
  - logging improvements (start-up problems, login failures)
* add signature checking option to watch file
* add a debian/upstream/metadata file

30. By Arthur de Jong

* new upstream release:
  - implement an -n switch to not daemonise (by Caleb Callaway)
  - increase password value buffer size (by Bersl)
  - fix for pwdLastSet attribute value handling (thanks Joshua Shire)
  - fix buffer overflow on interrupted read that is hard to trigger (thanks
    John Sullivan)
  - fix a possible crash in the NSS module when retrieving large networks
    entries (thanks Lukas Slebodnik)
  - avoid more broken pipe errors by using a low timeout when aborting reading
    requested information from nslcd (thanks John Sullivan)
  - only log broken pipe errors in debugging mode
  - ignore SIGUSR1 and SIGUSR2 for future compatibility
* drop implement-nofork.patch which is part of 0.8.14
* upgrade to standards-version 3.9.5 (no changes needed)

29. By Arthur de Jong

* implement-nofork.patch: introduce a -n, --nofork option that skips the
  daemonising step on start-up (this is related to Ubuntu bug 806761 and
  may be required to get nslcd working with upstart)
* add init script dependency on $network to ensure that network is up
  before starting nslcd (closes: #726435)
* clean generated manual pages to allow the package to be built tice in
  a row

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.