With crypt(3) password storage scheme enabled, OpenLDAP can receive and
store SHA-256 and SHA-512 password hashes from Samba AD-DC. Without
crypt(3), synchronization of passwords between Samba AD-DC (v4.5 and
above) and OpenLDAP requires use of cleartext passwords.
To use password hashes from Samba, OpenLDAP must be compiled with
--enable-crypt switch. This patch introduces a new configuration
parameter to enable the use of crypt(3) function by OpenLDAP.
Enabling crypt(3) increases the size of slapd binary by 12 bytes on
the x86_64 target and by only 4 bytes on the ipq806x target.
Signed-off-by: Val Kulkov <val.kulkov@gmail.com>
This patch updates OpenLDAP to 2.4.47, introduces new build
parameters and places openldap-server, openldap-utils and
libopenldap under a separate menu item in Network.
OpenLDAP is difficult to find in menuconfig at present. Making
a separate menu item for OpenLDAP for selection of packages and
enabling or disabling build parameters makes better sense.
To have access to the loglevel directive, OpenLDAP must be built
with debugging information. Having access to the loglevel directive
is essential during the initial configuration of OpenLDAP server.
International users may want to enable ICU support to have access
to international characters.
Signed-off-by: Val Kulkov <val.kulkov@gmail.com>
When cross-compiling, the configure script doesn't use /dev/urandom as
entropy source, which would have been the case if we were building it
natively. Instead it tries to use an EGD, which openwrt doesn't supply.
Signed-off-by: Eneas U de Queiroz <cote2004-github@yahoo.com>
fix Makefile chmod (644)
replace MD5SUM with HASH
add PKG_MIRROR_HASH when PKG_SOURCE_PROTO:=git
(PKG_SOURCE_PROTO:=svn tarballs are not reproducible for now)
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
When openldap-server is built within an environment where ICU has been
previously built, the package will pick up this unintended dependency and
fail with the following error:
Package openldap-server is missing dependencies for the following libraries:
libicudata.so.55
libicuuc.so.55
Makefile:148: recipe for target '.../openldap-server_2.4.43-2_mips_34kc.ipk' failed
Since the ICU libraries are extremely big (~12MB) we cannot simply depend on
them so add the necessary autoconfig cache variable to let the ICU presence
test fail in order to inhibit linking against those libraries.
Signed-off-by: Jo-Philipp Wich <jo@mein.io>
Jan Pavlinec