Bug#1030716: openldap: password/sha2 produces incorrect SHA256
Quanah Gibson-Mount
quanah at fast-mail.org
Mon Feb 6 18:17:57 GMT 2023
--On Monday, February 6, 2023 2:51 PM -0300 Andreas Hasenack
<andreas at canonical.com> wrote:
> - updating the module to use gnutls or openssl, whatever openldap ends
> up being linked with
This would require rewriting the module, since it currently contains all
the SHA code internally and doesn't rely on an external SSL library.
Contributions welcome upstream, although this module really should just be
phased out (see below).
> - not building/shipping this module
That would break anyone who currently has SHA-512 hashes in their OpenLDAP
instance, so probably not feasible.
People generally should be migrating away from this module to the ARGON2
module instead though.
--Quanah
More information about the Pkg-openldap-devel
mailing list