Bug 1052958

Summary: Add USE_LDAP_SASL to postfix compile options
Product: [Fedora] Fedora Reporter: Davide Principi <davide.principi>
Component: postfixAssignee: Jaroslav Škarvada <jskarvad>
Status: CLOSED RAWHIDE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: rawhideCC: jskarvad, mstevens
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-02-12 14:33:28 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Compile with USE_LDAP_SASL if both "ldap" and "sasl" options are enabled none

Description Davide Principi 2014-01-14 13:51:35 UTC 
Created attachment 849944 [details]
Compile with USE_LDAP_SASL if both "ldap" and "sasl" options are enabled

Description of problem:

When acting as LDAP client, postfix is missing SASL support.

I tried to rebuild the postfix package with USE_LDAP_SASL flag, but it's missing in postfix.spec file.

From Postfix LDAP_README:
> If you are using OpenLDAP, and the libraries were built with SASL support, you
> can add -DUSE_LDAP_SASL to the CCARGS to enable SASL support. For example:
> 
>          CCARGS="-I/usr/local/include -DHAS_LDAP -DUSE_LDAP_SASL"


Version-Release number of selected component:

I've found this issue some months ago with postfix-2.9.6 from EPEL-6, but the compiler option is still missing in postfix.spec from Fedora.

http://pkgs.fedoraproject.org/cgit/postfix.git/tree/postfix.spec?id=25f5011e85c22c915a5a2f301308e9d0890ea811

How reproducible:

Always

Actual results:

Cant' authenticate using SASL with an LDAP server, from postfix.

Expected results:

Connect to an external LDAP (Active Directory) server with SASL/GSSAPI authentication.

Additional info from our Redmine issue tracker:

https://dev.nethesis.it/projects/nethserver/repository/postfix/revisions/d0f400842f02d60a785ff900e76e4f419e8e2737

To fix the problem I've applied the attached patch.
Comment 1 Jaroslav Škarvada 2014-02-12 14:37:22 UTC 
Thanks for the patch. I am sorry, I quickly copy&pasted the change from the link when making postfix rebase and I forgot to include your credit into the spec, sorry about that.
Comment 2 Jaroslav Škarvada 2014-02-12 14:38:39 UTC 
(In reply to Jaroslav Škarvada from comment #1)
> Thanks for the patch. I am sorry, I quickly copy&pasted the change from the
> link when making postfix rebase and I forgot to include your credit into the
> spec, sorry about that.

I will fix this by next commit.
Comment 3 Morten Stevens 2014-02-12 15:35:37 UTC 
@Davide

Thanks also from me for your patch. I have updated my postfix backports for epel-6 (postfix-2.9.9-1.el6 and postfix-2.10.3-1.el6) with your patch. 

See: http://repos.fedorapeople.org/repos/mstevens/postfix/epel-6/