From: Kurt Zeilenga <kurt@openldap.org>
Date: Thu, 29 Sep 2005 08:05:38 +0000 (+0000)
Subject: cannot ignore old password when setting sasl password
X-Git-Tag: OPENLDAP_REL_ENG_2_2_MP~357
X-Git-Url: https://git.sur5r.net/?a=commitdiff_plain;h=741029dc87bddcc9932d6d4aa80972d4d5d5265b;p=openldap

cannot ignore old password when setting sasl password
---

diff --git a/servers/slapd/passwd.c b/servers/slapd/passwd.c
index f4ac394cd8..5ada68fa92 100644
--- a/servers/slapd/passwd.c
+++ b/servers/slapd/passwd.c
@@ -109,6 +109,12 @@ int passwd_extop(
 	}
 
 	if( op->o_bd == NULL ) {
+		if ( qpw->rs_old.bv_val != NULL ) {
+			rs->sr_text = "unwilling to verify old password";
+			rc = LDAP_UNWILLING_TO_PERFORM;
+			goto error_return;
+		}
+
 #ifdef HAVE_CYRUS_SASL
 		rc = slap_sasl_setpass( op, rs );
 #else