pam_ldap/patches/pam_ldap-176-exop-modify.patch

   1 When deciding whether or not to try to use ldap_modify to change the user's
   2 password, skip it if we're in "pam_password exop_send_old", just as we would
   3 for "pam_password exop".  Upstream #321.
   4
   5 diff -up pam_ldap-176/pam_ldap.c pam_ldap-176/pam_ldap.c
   6 --- pam_ldap-176/pam_ldap.c     2007-10-04 10:07:32.000000000 -0400
   7 +++ pam_ldap-176/pam_ldap.c     2007-10-04 10:07:40.000000000 -0400
   8 @@ -3025,7 +3025,8 @@ _update_authtok (pam_handle_t *pamh,
   9        break;
  10      }                          /* end switch */
  11
  12 -  if (session->conf->password_type != PASSWORD_EXOP)
  13 +  if ((session->conf->password_type != PASSWORD_EXOP) &&
  14 +      (session->conf->password_type != PASSWORD_EXOP_SEND_OLD))
  15      {
  16        rc = ldap_modify_s (session->ld, session->info->userdn, mods);
  17        if (rc != LDAP_SUCCESS)