Update for openldap-2.6.8-6.fc41.
Changelog
* Thu Dec 05 2024 Simon Pichugin <spichugi@redhat.com> - 2.6.8-6
- Avoid SSL context cleanup during library destruction (rhbz#2330711)
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2024-0e4b20f715
Please login to add feedback.
This update has been submitted for testing by spichugi.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'waiting'.
Any chance of considering the PRs opened against the RPM? Fedora (and EPEL) packages still use SHA1 for password hashing, advertise argon2, but don't implement it etc. Surely, it is not that complicated, right?
This update's test gating status has been changed to 'passed'.
Sorry, I'm not sure I fully understand what you mean... The change https://bugzilla.redhat.com/show_bug.cgi?id=2330711 is a bugfix which generally fixes a crash in libraries that use OpenSSL. You can find more information here: https://github.com/openssl/openssl/issues/25294
I include this patch because OpenSSL expects certain behaviours, and OpenLDAP Upstream doesn't plan on implementing them.
I mean, given that you are patching OpenLDAP as part of its maintenance, there are a number of pull requests opened against it right now, for missing functionality:
https://src.fedoraproject.org/rpms/openldap/pull-requests
There is also a bug that mentions missing argon2, despite being explicitly mentioned as available:
https://bugzilla.redhat.com/show_bug.cgi?id=2229405
So, given you are patching OpenLDAP, maybe go through these, accept/reject them or ask for a rework.
I plan to deal with them soon, but I still haven't had a chance. Most of them concern the OpenLDAP Server package, and I recently had enough capacity to deal with client and library parts only (and even then, CentOS Stream and RHEL were the priority).
Anyway, this release is not about them:)
BTW, the Argon2 issue is the first I'll check when I get time, no worries here! Thank you!
Awesome, thank you!
This update has been pushed to testing.
no regressions noted
This update can be pushed to stable now if the maintainer wishes
Works
This update has been submitted for stable by bodhi.
This update has been pushed to stable.