Package "openldap"

  openldap (2.5.20+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #2127665)
    - Fixed lloadd handling of starttls critical (ITS#10323)
    - Fixed slapd regression with certain searches (ITS#10307)
    - Fixed slapo-pcache caching behaviors (ITS#10270)
  * pbkdf2 iteration configuration support (LP: #2125685)
    - d/p/lp2125685-pbkdf2-configurable-rounds: make iterations configurable
    - d/p/lp2125685-pbkdf2-fix-iteration-arg: fix iteration argument index
    - d/t/pbkdf2-contrib: test if pbkdf2 hashing rounds are adjustable
  * Enable build of ppm password quality check module (LP: #2121816)
    - d/rules: build ppm password quality module
    - d/p/contrib-makefiles: build patches from 2.6.9+dfsg-1~exp1 (#1039740)
    - d/p/ppm-cross: cross-build patch from 2.6.8+dfsg-1~exp1 (#1079533)
    - d/t/ppm-contrib: test ppm password quality module
      + no attribute checks, since they're first possible with 2.6.2
    - d/control: add dependency on libcrack2-dev for ppm
    - d/slapd-contrib.{examples,install,manpages}: add ppm

 -- Jonas Jelten <email address hidden> Wed, 24 Sep 2025 15:40:37 +0200

  openldap (2.5.19+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #2085192)
    - Fixed libldap GnuTLS incompatible pointer type (ITS#10253)
    - Fixed libldap OpenSSL set_ciphersuite error handling (ITS#10223)
    - Fixed libldap to check for OpenSSL EVP_Digest* failure (ITS#10224)
    - Fixed slapd syncrepl assert during refresh at shutdown (ITS#10232)
    - Fixed slapd-ldap use of multi-precision add for op counters (ITS#10237)
    - Fixed slapd-mdb idl intersection (ITS#10233)
    - Fixed slapd-wt idl intersection (ITS#10233)
    - Fixed slapo-translucent regression with subordinate databases (ITS#10248)
    - Fixed slapo-translucent regression when requesting attributes (ITS#10272)
    - Fixed slappw-argon2 defaults to be more secure (ITS#9827)
  * Dropped:
    - d/p/remove-extraneous-quote-configure-ac.patch
      [Applied in upstream release 2.5.19]

 -- Bryce Harrington <email address hidden> Mon, 21 Apr 2025 16:42:05 -0700

  openldap (2.5.18+dfsg-0ubuntu0.22.04.3) jammy; urgency=medium

  * Fixup TIMEOUT and NETWORK_TIMEOUT options so they work correctly
    when SSL is involved. Before they would never timeout, causing
    hangs on connection failure. Now they timeout as expected.
    (LP: #2090806)
    - d/p/lp2090806-ITS-8047-Fix-TLS-connection-timeout-handling.patch

 -- Matthew Ruffell <email address hidden> Mon, 09 Dec 2024 15:54:19 +1300

  openldap (2.5.18+dfsg-0ubuntu0.22.04.2) jammy; urgency=medium

  * d/p/remove-extraneous-quote-configure-ac.patch: Remove extraneous
    quote from configure.ac, fixing loading of back_perl. (LP: #2072976)

 -- Sergio Durigan Junior <email address hidden> Fri, 12 Jul 2024 17:51:23 -0400

  openldap (2.5.18+dfsg-0ubuntu0.22.04.1) jammy; urgency=medium

  * New upstream version (LP: #2067745).
    - Fixed libldap exit handling with OpenSSL3 again (ITS#9952)
    - Fixed libldap OpenSSL channel binding digest (ITS#10216)
    - Fixed slapd handling of large uid/gids peercred auth (ITS#10211)
    - Fixed slapd-meta with dynlist (ITS#10164)
    - Fixed slapd-meta binds when proxying internal op (ITS#10165)
    - Fixed slapo-accesslog startup initialization (ITS#10170)
    - Fixed slapo-dynlist with abandoned operations (ITS#10044)

 -- Sergio Durigan Junior <email address hidden> Fri, 31 May 2024 11:01:55 -0400