Re: [gentoo-dev] OpenLDAP 2.3.x removal on October 27, migrate to 2.4.x
On Tue, Oct 14, 2014 at 07:52:03AM +0800, Patrick Lauer wrote: On 10/14/14 05:22, Robin H. Johnson wrote: For compatibility and migration support, we've kept the old OpenLDAP 2.3.x ebuilds in the tree for nearly 5 years. And you better keep them for a while, because some of us are stuck with 2.3, and mixed operation (e.g. master 2.4, slaves 2.3) is not supported. Since for example CentOS 5 is still around and there's no upgrade path, well, some people like me still have to use 2.3 ... CentOS6/7 don't resolve that issue for you? So far you're one user, but that's enough to warrant a news item. I would really like to get the old stuff out of the tree, it's been around a very long time, has security issues, and the 2.3 ebuilds don't comply with newer EAPIs and QA practices (I suspect that probably won't even compile with newer berkdb and gnutls). -- Robin Hugh Johnson Gentoo Linux: Developer, Infrastructure Lead E-Mail : robb...@gentoo.org GnuPG FP : 11ACBA4F 4778E3F6 E4EDF38E B27B944E 34884E85
Re: [gentoo-dev] OpenLDAP 2.3.x removal on October 27, migrate to 2.4.x
On Tuesday 14 October 2014 16:02:20 Robin H. Johnson wrote: On Tue, Oct 14, 2014 at 07:52:03AM +0800, Patrick Lauer wrote: On 10/14/14 05:22, Robin H. Johnson wrote: For compatibility and migration support, we've kept the old OpenLDAP 2.3.x ebuilds in the tree for nearly 5 years. And you better keep them for a while, because some of us are stuck with 2.3, and mixed operation (e.g. master 2.4, slaves 2.3) is not supported. Since for example CentOS 5 is still around and there's no upgrade path, well, some people like me still have to use 2.3 ... CentOS6/7 don't resolve that issue for you? Not an upgrade ... And if I have to reinstall from scratch then it'd be Gentoo, but that's a rather brutal amount of work since there's about 8 years of new features, changes in config files and so on (still on my todo list, but there's other fires burning more brightly) So far you're one user, but that's enough to warrant a news item. I would really like to get the old stuff out of the tree, it's been around a very long time, has security issues, and the 2.3 ebuilds don't comply with newer EAPIs and QA practices (I suspect that probably won't even compile with newer berkdb and gnutls). Well, I'm also stuck with Samba 3.5 because upstream managed to break group permissions with LDAP in really hilarious ways. I don't have a strong objection to having to keep oldcruft in an overlay, but (like Samba) it'd be quite acceptable to have these ebuilds masked indefinitely
[gentoo-dev] OpenLDAP 2.3.x removal on October 27, migrate to 2.4.x
For compatibility and migration support, we've kept the old OpenLDAP 2.3.x ebuilds in the tree for nearly 5 years. OpenLDAP-2.4.x first went to stable 2009/11/04. package.mask has blocked net-nds/openldap-2.4.35 since 2014/03/20. I think the time has come to fully remove 2.3.x series, and the older masked 2.4.x builds, so I strongly encourage everybody to move. The ebuild includes upgrade instructions, as in most major version upgrades you need to dump+restore the database (both OpenLDAP major versions, as well as changing backends or sys-lib/db major versions). Since it's been in package.mask for 6 months without reported bugs complaining about this, I'm not going to announce it via a news item unless there are strong demands to. -- Robin Hugh Johnson Gentoo Linux: Developer, Infrastructure Lead E-Mail : robb...@gentoo.org GnuPG FP : 11ACBA4F 4778E3F6 E4EDF38E B27B944E 34884E85
Re: [gentoo-dev] OpenLDAP 2.3.x removal on October 27, migrate to 2.4.x
On 10/14/14 05:22, Robin H. Johnson wrote: For compatibility and migration support, we've kept the old OpenLDAP 2.3.x ebuilds in the tree for nearly 5 years. And you better keep them for a while, because some of us are stuck with 2.3, and mixed operation (e.g. master 2.4, slaves 2.3) is not supported. Since for example CentOS 5 is still around and there's no upgrade path, well, some people like me still have to use 2.3 ... OpenLDAP-2.4.x first went to stable 2009/11/04. package.mask has blocked net-nds/openldap-2.4.35 since 2014/03/20. I think the time has come to fully remove 2.3.x series, and the older masked 2.4.x builds, so I strongly encourage everybody to move. Move away from other distros? Yes, that's definitely on my todo list, but it's not that easy, especially when it means upgrades to all services involved. The ebuild includes upgrade instructions, as in most major version upgrades you need to dump+restore the database (both OpenLDAP major versions, as well as changing backends or sys-lib/db major versions). Since it's been in package.mask for 6 months without reported bugs complaining about this, I'm not going to announce it via a news item unless there are strong demands to.
