On Wed, Jun 02 2021, Landry Breuil <landry@openbsd.org> wrote:
> Le Mon, May 31, 2021 at 04:57:49PM +0200, Landry Breuil a écrit :
>> Hi,
>>
>> there's been a new release on github in 2019, after the last one we're
>> still shipping from 2007.. cf
>> https://github.com/threerings/openvpn-auth-ldap/releases/tag/auth-ldap-2.0.4
>>
>> i know nothing to obj-c so i randomly poked thing around until this
>> built fine. runtime testing welcome, as apparently the "modern runtime"
>> patches didnt make it upstream anyway. Remove some patches while here,
>> but dunno if they're needed at runtime.. ccing our objc expert :)
>
> fwiw, after *light* testing with the diff backported to 6.9, it *seems*
> this work:
>
> 2021-06-02 15:59:50 us=135854 172.20.85.209:39294 PLUGIN_CALL: POST /usr/local/lib/openvpn-auth-ldap.so/PLUGIN_AUTH_USER_PASS_VERIFY status=0
> 2021-06-02 15:59:50 us=136495 172.20.85.209:39294 TLS: Username/Password authentication succeeded for username 'breuil'
>
> but i dont have a complicated ldap setup with groups etc.
>
> compared to the previous diff, sthen@ fixed a thinko from my part:
> PKGNAME = openvpn-${GH_TAGNAME}
>
> besides that, i was thinking that maybe it would make sense to move the
> plugin from /usr/local/lib/openvpn-auth-ldap.so to
> /usr/local/lib/openvpn/plugins/auth-ldap.so as that's where openvpn
> stores its plugins, but .. *shrug*
>
> Now looking for okays from the openvpn/obj-c crowd :)
Please don't wait for an ok from me, I know next to nothing to obj-c and
never used the plugin. Thanks for updating this port, though!
--
jca | PGP : 0x1524E7EE / 5135 92C1 AD36 5293 2BDF DDCC 0DFA 74AE 1524 E7EE
No comments:
Post a Comment