Le Mon, May 31, 2021 at 04:57:49PM +0200, Landry Breuil a écrit :
> Hi,
>
> there's been a new release on github in 2019, after the last one we're
> still shipping from 2007.. cf
> https://github.com/threerings/openvpn-auth-ldap/releases/tag/auth-ldap-2.0.4
>
> i know nothing to obj-c so i randomly poked thing around until this
> built fine. runtime testing welcome, as apparently the "modern runtime"
> patches didnt make it upstream anyway. Remove some patches while here,
> but dunno if they're needed at runtime.. ccing our objc expert :)
fwiw, after *light* testing with the diff backported to 6.9, it *seems*
this work:
2021-06-02 15:59:50 us=135854 172.20.85.209:39294 PLUGIN_CALL: POST /usr/local/lib/openvpn-auth-ldap.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
2021-06-02 15:59:50 us=136495 172.20.85.209:39294 TLS: Username/Password authentication succeeded for username 'breuil'
but i dont have a complicated ldap setup with groups etc.
compared to the previous diff, sthen@ fixed a thinko from my part:
PKGNAME = openvpn-${GH_TAGNAME}
besides that, i was thinking that maybe it would make sense to move the
plugin from /usr/local/lib/openvpn-auth-ldap.so to
/usr/local/lib/openvpn/plugins/auth-ldap.so as that's where openvpn
stores its plugins, but .. *shrug*
Now looking for okays from the openvpn/obj-c crowd :)
Landry
No comments:
Post a Comment