cannot ignore old password when setting sasl password

diff --git a/servers/slapd/passwd.c b/servers/slapd/passwd.c
index f4ac394cd8f4587a3432a5e5664005ceb52bd169..5ada68fa927588a9d9b045df1addbd9175b328c6 100644 (file)
--- a/servers/slapd/passwd.c
+++ b/servers/slapd/passwd.c
@@ -109,6 +109,12 @@ int passwd_extop(
        }
 
        if( op->o_bd == NULL ) {
+               if ( qpw->rs_old.bv_val != NULL ) {
+                       rs->sr_text = "unwilling to verify old password";
+                       rc = LDAP_UNWILLING_TO_PERFORM;
+                       goto error_return;
+               }
+
 #ifdef HAVE_CYRUS_SASL
                rc = slap_sasl_setpass( op, rs );
 #else