File sudo-1.8.27-ldap-respect-SUDOERS_TIMED.patch of Package sudo.21030
Index: sudo-1.8.27/plugins/sudoers/ldap.c
===================================================================
--- sudo-1.8.27.orig/plugins/sudoers/ldap.c
+++ sudo-1.8.27/plugins/sudoers/ldap.c
@@ -1188,12 +1188,14 @@ ldap_to_sudoers(LDAP *ld, struct ldap_re
goto cleanup;
/* Get sudoNotBefore / sudoNotAfter */
- notbefore = sudo_ldap_get_values_len(ld, entry, "sudoNotBefore", &rc);
- if (rc == LDAP_NO_MEMORY)
+ if (ldap_conf.timed) {
+ notbefore = sudo_ldap_get_values_len(ld, entry, "sudoNotBefore", &rc);
+ if (rc == LDAP_NO_MEMORY)
goto cleanup;
- notafter = sudo_ldap_get_values_len(ld, entry, "sudoNotAfter", &rc);
- if (rc == LDAP_NO_MEMORY)
+ notafter = sudo_ldap_get_values_len(ld, entry, "sudoNotAfter", &rc);
+ if (rc == LDAP_NO_MEMORY)
goto cleanup;
+ }
/* Parse sudoOptions. */
opts = sudo_ldap_get_values_len(ld, entry, "sudoOption", &rc);