From b026907fd563b25d8632ecd3c090fdd18cee09ab Mon Sep 17 00:00:00 2001
From: Julian Rother <julian@jrother.eu>
Date: Thu, 29 Jul 2021 16:04:46 +0200
Subject: [PATCH] Fixed critical control handling in
 SimpleLDAPRequestHandler.handle_search

---
 ldapserver/server.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ldapserver/server.py b/ldapserver/server.py
index a697213..4b6d4bd 100644
--- a/ldapserver/server.py
+++ b/ldapserver/server.py
@@ -395,6 +395,7 @@ class SimpleLDAPRequestHandler(BaseLDAPRequestHandler):
 		raise exceptions.LDAPAuthMethodNotSupported()
 
 	def handle_search(self, op, controls=None):
+		reject_critical_controls(controls)
 		for dn, attributes in self.do_search(op.baseObject, op.scope, op.filter):
 			pattributes = [ldap.PartialAttribute(name, values) for name, values in attributes.items()]
 			if 'subschemaSubentry' not in attributes and self.subschema is not None:
-- 
GitLab