Issue 5356 - Update Cargo.lock and bootstrap PBKDF2-SHA512 (#5480)

Description: We've changed our default password storage scheme to PBKDF2-SHA512. Change the bootstrap logic to use the scheme when Rust is enabled. Related: #5356 Reviewed by: @mreynolds389 (Thanks!)
389ds · Oct 8, 2022 · 41c8e41 · 41c8e41
1 parent a929745
commit 41c8e41
Show file tree

Hide file tree

Showing 3 changed files with 73 additions and 80 deletions.
diff --git a/ldap/servers/slapd/config.c b/ldap/servers/slapd/config.c
@@ -40,16 +40,16 @@ char *rel2abspath(char *);
  * see fedse.c instead!
  */
 static char *bootstrap_plugins[] = {
-    "dn: cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config\n"
+#ifdef RUST_ENABLE
+    "dn: cn=PBKDF2-SHA512,cn=Password Storage Schemes,cn=plugins,cn=config\n"
     "objectclass: top\n"
     "objectclass: nsSlapdPlugin\n"
-    "cn: PBKDF2_SHA256\n"
-    "nsslapd-pluginpath: libpwdstorage-plugin\n"
-    "nsslapd-plugininitfunc: pbkdf2_sha256_pwd_storage_scheme_init\n"
+    "cn: PBKDF2-SHA512\n"
+    "nsslapd-pluginpath: libpwdchan-plugin\n"
+    "nsslapd-plugininitfunc: pwdchan_pbkdf2_sha512_plugin_init\n"
     "nsslapd-plugintype: pwdstoragescheme\n"
-    "nsslapd-pluginenabled: on",
+    "nsslapd-pluginenabled: on\n",
 
-#ifdef RUST_ENABLE
     "dn: cn=entryuuid_syntax,cn=plugins,cn=config\n"
     "objectclass: top\n"
     "objectclass: nsSlapdPlugin\n"
@@ -62,6 +62,15 @@ static char *bootstrap_plugins[] = {
     "nsslapd-pluginVersion: none\n"
     "nsslapd-pluginVendor: 389 Project\n"
     "nsslapd-pluginDescription: entryuuid_syntax\n",
+#else
+    "dn: cn=PBKDF2_SHA256,cn=Password Storage Schemes,cn=plugins,cn=config\n"
+    "objectclass: top\n"
+    "objectclass: nsSlapdPlugin\n"
+    "cn: PBKDF2_SHA256\n"
+    "nsslapd-pluginpath: libpwdstorage-plugin\n"
+    "nsslapd-plugininitfunc: pbkdf2_sha256_pwd_storage_scheme_init\n"
+    "nsslapd-plugintype: pwdstoragescheme\n"
+    "nsslapd-pluginenabled: on",
 #endif
 
     NULL

diff --git a/ldap/servers/slapd/fedse.c b/ldap/servers/slapd/fedse.c
@@ -256,19 +256,6 @@ static const char *internal_entries[] =
         "nsslapd-pluginVersion: none\n"
         "nsslapd-pluginVendor: 389 Project\n"
         "nsslapd-pluginDescription: PBKDF2-SHA256\n",
-
-        "dn: cn=PBKDF2-SHA512,cn=Password Storage Schemes,cn=plugins,cn=config\n"
-        "objectclass: top\n"
-        "objectclass: nsSlapdPlugin\n"
-        "cn: PBKDF2-SHA512\n"
-        "nsslapd-pluginpath: libpwdchan-plugin\n"
-        "nsslapd-plugininitfunc: pwdchan_pbkdf2_sha512_plugin_init\n"
-        "nsslapd-plugintype: pwdstoragescheme\n"
-        "nsslapd-pluginenabled: on\n"
-        "nsslapd-pluginId: PBKDF2-SHA512\n"
-        "nsslapd-pluginVersion: none\n"
-        "nsslapd-pluginVendor: 389 Project\n"
-        "nsslapd-pluginDescription: PBKDF2-SHA512\n",
 #endif
 };
 

diff --git a/src/Cargo.lock b/src/Cargo.lock