Bug#777176: pre-approval: unblock: phpldapadmin/1.2.2-5.2

To: Mika Pflüger <debian@mikapflueger.de>, 777176@bugs.debian.org
Subject: Bug#777176: pre-approval: unblock: phpldapadmin/1.2.2-5.2
From: Niels Thykier <niels@thykier.net>
Date: Fri, 06 Feb 2015 22:16:54 +0100
Message-id: <[🔎] 54D52F46.3030804@thykier.net>
Reply-to: Niels Thykier <niels@thykier.net>, 777176@bugs.debian.org
In-reply-to: <[🔎] 20150205221959.3380.90549.reportbug@localhost>
References: <[🔎] 20150205221959.3380.90549.reportbug@localhost>

Control: tags -1 confirmed moreinfo
Control: severity 761637 serious

On 2015-02-05 23:19, Mika Pflüger wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: unblock
> 
> Hi,
> 
> phpldapadmin has bug #761637, which I think is RC for phpldapadmin. The short version is: phpldapadmin is a frontend to manage ldap directories. As a regression from stable, the version in testing crashes if an entry in the managed ldap directory contains a password field. As it is /very/ common to have password fields in ldap entries, this renders the package unusable for a large portion of the user base.
> Fortunately, the fix for this is small, as the issue is already partly fixed by version 1.2.2-5.1 which is already in testing. It was missing:
> * A single line change in the code.
> * An update of the config file
> * A NEWS entry to explain users how to update their config.
> I have prepared a package containing the fix, which can provisionally be found at https://mentors.debian.net/package/phpldapadmin . The meat of the debdiff is:
> 
> [...]
> 
> (the version currently at mentors has a slightly larger debdiff due to quilt refresh'ing of the php-5.5-compat.patch, but with no further real changes).
> 
> If you pre-approve the unblock request, I will write a NEWS entry, seek a sponsor and come back to you. I am using a fixed version at a reasonably busy site for two weeks now.
> 
> One thing to note is that the version currently in testing deviates from the upstream solution, possibly because it predates it. The setting which collides with a php-internal function name ('password_hash' in debian stable) was [incompletely, hence this bug] changed to 'password_hash_custom' in debian, but to 'pla_password_hash' in the 1.2.3 upstream version. That is clearly a suboptimal situation, as this will confuse users and will come back to bite us later. However, I guess changing 'password_hash_custom' to 'pla_password_hash' is a bit intrusive at this stage of the release cycle. If you disagree, I can also prepare a patch which aligns with upstream's choice of bike shed colour.
> 
> Cheers,
> 
> Mika
> 
> unblock phpldapadmin/1.2.2-5.2
> 
> [...]
> 
> 

Hi Mika,

Thanks for contacting us this.

I am inclined to agree that this is regression compared to Wheezy should
be an RC bug.  Please go ahead with the proposed patch for Jessie.  It
would make sense for Stretch to have the upstream version of the fix.

On that note, have you been in contact with the current maintainers?  If
they are not active anymore, perhaps you could consider picking it up,
so we do not have a similar issue at the next release?

Thanks,
~Niels

Reply to:

References:
- Bug#777176: pre-approval: unblock: phpldapadmin/1.2.2-5.2
  - From: Mika Pflüger <debian@mikapflueger.de>

Prev by Date: Bug#777114: [Debian-med-packaging] Bug#777114: RM: gridengine/6.2u5-7.3
Next by Date: Processed: Re: Bug#777176: pre-approval: unblock: phpldapadmin/1.2.2-5.2
Previous by thread: Bug#777176: pre-approval: unblock: phpldapadmin/1.2.2-5.2
Next by thread: Processed: Re: Bug#777176: pre-approval: unblock: phpldapadmin/1.2.2-5.2
Index(es):
- Date
- Thread