ITS#9575 Warn when specifying olcPasswordHash in the cn=config entry

author Ondřej Kuzník <ondra@mistotebe.net>

Tue, 15 Jun 2021 15:32:38 +0000 (16:32 +0100)

committer Quanah Gibson-Mount <quanah@openldap.org>

Mon, 21 Jun 2021 15:32:03 +0000 (15:32 +0000)
author Ondřej Kuzník <ondra@mistotebe.net>
Tue, 15 Jun 2021 15:32:38 +0000 (16:32 +0100)
committer Quanah Gibson-Mount <quanah@openldap.org>
Mon, 21 Jun 2021 15:32:03 +0000 (15:32 +0000)
diff --git a/servers/slapd/bconfig.c b/servers/slapd/bconfig.c

index 8a545cad65c1b22c8c8568f37d8bf2b3f3a8b3d3..63d04967f35c1146fe5406177d339caebfd53380 100644 (file)
--- a/servers/slapd/bconfig.c
+++ b/servers/slapd/bconfig.c
@@ -2590,6 +2590,13 @@ config_passwd_hash(ConfigArgs *c) {
                 }
                 return 0;
         }
+       if ( c->table == Cft_Global ) {
+               Debug( LDAP_DEBUG_ANY, "%s: setting password scheme in the global "
+                               "entry is deprecated. The server may refuse to start if "
+                               "it is provided by a loadable module, please move it to "
+                               "the frontend database instead\n",
+                               c->log );
+       }
         for(i = 1; i < c->argc; i++) {
                 if(!lutil_passwd_scheme(c->argv[i])) {
                         snprintf( c->cr_msg, sizeof( c->cr_msg ), "<%s> scheme not available", c->argv[0] );
author	Ondřej Kuzník <ondra@mistotebe.net>
	Tue, 15 Jun 2021 15:32:38 +0000 (16:32 +0100)
committer	Quanah Gibson-Mount <quanah@openldap.org>
	Mon, 21 Jun 2021 15:32:03 +0000 (15:32 +0000)