Issue 4997 - lmpasswd support using gcrypt
Summary: lmpasswd support using gcrypt
Status: VERIFIED FIXED
Alias: None
Product: OpenLDAP
Classification: Unclassified
Component: slapd (show other issues)
Version: unspecified
Hardware: All All
: --- normal
Target Milestone: ---
Assignee: OpenLDAP project
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-06-02 06:31 UTC by rra@debian.org
Modified: 2017-08-30 22:42 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this issue.
Description rra@debian.org 2007-06-02 06:31:23 UTC
Full_Name: Russ Allbery
Version: 2.4 (HEAD)
OS: Debian
URL: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=245341
Submission from: (NULL) (171.66.157.14)


Now that 2.4 has native GnuTLS support, the patch that's been sitting around in
Debian bug #245341 becomes potentially interesting (see the associated URL). 
This is a request to support LAN Manager password hashes when OpenLDAP is built
with GnuTLS instead of OpenSSL, thus requiring using libgcrypt to do the DES
work instead of OpenSSL's DES library.

The patch in that bug almost certainly isn't okay in its current form, but I
wanted to get the ITS filed for this feature request so that there's a record in
the database and just in case someone else feels inspired to bring the patch up
to date and clean it up.  (Unlikely, I know.)  Otherwise, I will probably clean
this patch up for further submission at some point near the 2.4 release (on
which side of it, I'm not sure).

Comment 1 Kurt Zeilenga 2007-06-02 13:44:37 UTC
On Jun 2, 2007, at 6:31 AM, rra@stanford.edu wrote:

> Full_Name: Russ Allbery
> Version: 2.4 (HEAD)
> OS: Debian
> URL: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=245341
> Submission from: (NULL) (171.66.157.14)
>
>
> Now that 2.4 has native GnuTLS support, the patch that's been  
> sitting around in
> Debian bug #245341 becomes potentially interesting (see the  
> associated URL).
> This is a request to support LAN Manager password hashes when  
> OpenLDAP is built
> with GnuTLS instead of OpenSSL, thus requiring using libgcrypt to  
> do the DES
> work instead of OpenSSL's DES library.
>
> The patch in that bug almost certainly isn't okay in its current form,

Note that 3rd party contributions are generally not acceptable (for  
IPR reasons).
That is, we generally require the author(s) of the patch to  
contribute the patch.
If you think this patch is useful, you might suggest to its authors  
that they
contribute it to the Project.  In doing so, it's good to provide a  
link to our
contributing guidelines, http://www.openldap.org/devel/ 
contributing.html.

> but I
> wanted to get the ITS filed for this feature request so that  
> there's a record in
> the database and just in case someone else feels inspired to bring  
> the patch up
> to date and clean it up.  (Unlikely, I know.)  Otherwise, I will  
> probably clean
> this patch up for further submission at some point near the 2.4  
> release (on
> which side of it, I'm not sure).

Without involvement from the authors of this patch, it's better to  
simply
rewrite the feature from scratch.

-- Kurt

Comment 2 rra@debian.org 2007-06-02 16:27:49 UTC
Kurt Zeilenga <kurt@OpenLDAP.org> writes:

> Without involvement from the authors of this patch, it's better to
> simply rewrite the feature from scratch.

No problem.  The patch is conceptually trivial.  I'll plan on
reimplementing it from scratch unless I can contact the original author
(or possibly anyway if it's faster).

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>

Comment 3 Howard Chu 2007-06-13 00:04:18 UTC
moved from Incoming to Software Enhancements
Comment 4 OpenLDAP project 2017-08-30 22:42:17 UTC
LANMAN is obsolete, and will be removed from a future release.  No need to
expand support for it. See also ITS#8639
Comment 5 Quanah Gibson-Mount 2017-08-30 22:42:17 UTC
changed notes
changed state Open to Closed