1 # Buildsheet autogenerated by ravenadm tool -- Do not edit.
5 KEYWORDS= net databases
7 SDESC[standard]= Lightweight Directory Access Protocol server
8 HOMEPAGE= https://www.openldap.org/
12 SITES[main]= ftp://ftp.openldap.org/pub/OpenLDAP/openldap-release/
13 http://mirror.eu.oneandone.net/software/openldap/openldap-release/
14 ftp://ftp.dti.ad.jp/pub/net/OpenLDAP/openldap-release/
15 DISTFILE[1]= openldap-2.6.3.tgz:main
17 SPKGS[standard]= complete
22 OPTIONS_AVAILABLE= none
23 OPTIONS_STANDARD= none
25 BUILD_DEPENDS= mandoc:single:standard
26 BUILDRUN_DEPENDS= libltdl:single:standard
28 unixODBC:primary:standard
29 EXRUN[client]= openssl11:single:standard
33 USERGROUP_SPKG= server
35 USES= cpe gmake libtool ssl:openssl30
37 FPC_EQUIVALENT= net/openldap24-server
40 CONFIGURE_ARGS= --enable-modules
45 --enable-monitor="mod"
53 --localstatedir=/var/db
60 INSTALL_REQ_TOOLCHAIN= yes
62 PLIST_SUB= OPENLDAP_MAJOR=2.6
65 LDAP_RUN_DIR=/var/run/openldap
66 DATABASEDIR=/var/db/openldap-data
68 SUB_FILES= pkg-message-client
71 SUB_LIST= LDAP_USER=ldap
73 LDAP_RUN_DIR=/var/run/openldap
74 DATABASEDIR=/var/db/openldap-data
77 ${REINPLACE_CMD} -e 's|%LOCALSTATEDIR%/run/|/var/run/openldap/|g' \
78 -e 's/\(moduleload[ ]*back_[a-z]*\)\.la/\1/' -e 's/\# *\(modulepath\)/\1/' -e 's/\# *\(moduleload[ ]*back_bdb\)/\1/' ${WRKSRC}/servers/slapd/slapd.conf
79 ${REINPLACE_CMD} -e 's|^OPT =.*|OPT = ${CFLAGS}|g' \
80 -e 's|^CC =.*|CC = ${CC}|g' \
81 -e 's/\(moduleload[ ]*back_[a-z]*\)\.la/\1/' -e 's/\# *\(modulepath\)/\1/' -e 's/\# *\(moduleload[ ]*back_bdb\)/\1/' ${WRKSRC}/contrib/slapd-modules/*/Makefile \
82 ${WRKSRC}/contrib/slapd-modules/*/*/Makefile
83 ${REINPLACE_CMD} -E -e 's,uuid/uuid.h,xxuuid/uuid.h,g' \
84 ${CONFIGURE_WRKSRC}/${CONFIGURE_SCRIPT}
87 ${MKDIR} ${STAGEDIR}/var/db/openldap-data
90 ${MKDIR} ${STAGEDIR}/var/run/openldap
91 ${MKDIR} ${STAGEDIR}${PREFIX}/libexec/openldap
92 ${MKDIR} ${STAGEDIR}${STD_DOCDIR}
93 ${INSTALL_DATA} ${WRKSRC}/CHANGES ${STAGEDIR}${STD_DOCDIR}
94 for dir in drafts rfc; do \
95 ${MKDIR} ${STAGEDIR}${STD_DOCDIR}/$${dir}; \
96 ${INSTALL_DATA} ${WRKSRC}/doc/$${dir}/* ${STAGEDIR}${STD_DOCDIR}/$${dir}; \
98 # define schemas as samples
99 cd ${STAGEDIR}${PREFIX}/etc/openldap/schema &&\
100 ${FIND} * -name "*.schema" -type f | \
101 ${XARGS} -I {} mv {} {}.sample
102 # rename default to sample
103 cd ${STAGEDIR}${PREFIX}/etc/openldap &&\
104 ${MV} slapd.ldif.default slapd.ldif.sample &&\
105 ${MV} slapd.conf.default slapd.conf.sample
106 # remove /var/db/run directory
107 ${RM} -r ${STAGEDIR}/var/db/run
108 # remove provided slapd.conf
109 ${RM} ${STAGEDIR}${PREFIX}/etc/openldap/slapd.conf
110 ${STRIP_CMD} ${STAGEDIR}${PREFIX}/bin/ldap*
111 ${STRIP_CMD} ${STAGEDIR}${PREFIX}/sbin/slap*
112 ${STRIP_CMD} ${STAGEDIR}${PREFIX}/libexec/openldap/*.so
113 for library in lber ldap; do \
114 ${STRIP_CMD} ${STAGEDIR}${PREFIX}/lib/lib$${library}.so; \
117 [FILE:277:descriptions/desc.server]
118 OpenLDAP is a suite of Lightweight Directory Access Protocol (v3) servers,
119 clients, utilities and development tools.
121 This package includes the following major components:
123 * slapd - a stand-alone LDAP directory server
124 * LDIF tools - data conversion tools for use with slapd
127 [FILE:377:descriptions/desc.client]
128 OpenLDAP is a suite of Lightweight Directory Access Protocol (v3) servers,
129 clients, utilities and development tools.
131 This package includes the following major components:
133 * libldap - a LDAP client library
134 * liblber - a lightweight BER/DER encoding/decoding library
135 * LDAP tools - A collection of command line LDAP utilities
136 * documentation - man pages for all components
140 d2a2a1d71df3d77396b1c16ad7502e674df446e06072b0e5a4e941c3d06c0d46 6474169 openldap-2.6.3.tgz
143 [FILE:2747:manifests/plist.server]
144 @sample etc/openldap/schema/collective.schema.sample
145 @sample etc/openldap/schema/corba.schema.sample
146 @sample etc/openldap/schema/core.schema.sample
147 @sample etc/openldap/schema/cosine.schema.sample
148 @sample etc/openldap/schema/dsee.schema.sample
149 @sample etc/openldap/schema/duaconf.schema.sample
150 @sample etc/openldap/schema/dyngroup.schema.sample
151 @sample etc/openldap/schema/inetorgperson.schema.sample
152 @sample etc/openldap/schema/java.schema.sample
153 @sample etc/openldap/schema/misc.schema.sample
154 @sample etc/openldap/schema/msuser.schema.sample
155 @sample etc/openldap/schema/namedobject.schema.sample
156 @sample etc/openldap/schema/nis.schema.sample
157 @sample etc/openldap/schema/openldap.schema.sample
158 @sample etc/openldap/schema/pmi.schema.sample
159 @sample etc/openldap/slapd.conf.sample
160 @sample etc/openldap/slapd.ldif.sample
161 etc/openldap/slapd.ldif
182 back_ldap.so.%%SOMAJOR%%
183 back_ldap.so.%%SOVERSION%%
185 back_mdb.so.%%SOMAJOR%%
186 back_mdb.so.%%SOVERSION%%
188 back_meta.so.%%SOMAJOR%%
189 back_meta.so.%%SOVERSION%%
191 back_null.so.%%SOMAJOR%%
192 back_null.so.%%SOVERSION%%
194 back_sql.so.%%SOMAJOR%%
195 back_sql.so.%%SOVERSION%%
233 slapo-constraint.5.gz
245 slapo-remoteauth.5.gz
251 slapo-translucent.5.gz
267 @dir(%%LDAP_USER%%,%%LDAP_GROUP%%,775) %%DATABASEDIR%%
268 @dir(%%LDAP_USER%%,%%LDAP_GROUP%%,775) %%LDAP_RUN_DIR%%
271 [FILE:4762:manifests/plist.client]
272 @sample etc/openldap/ldap.conf.sample
299 liblber.so.%%SOMAJOR%%
300 liblber.so.%%SOVERSION%%
303 libldap.so.%%SOMAJOR%%
304 libldap.so.%%SOVERSION%%
323 ber_bvarray_free.3.gz
331 ber_first_element.3.gz
334 ber_get_bitstring.3.gz
342 ber_next_element.3.gz
364 ldap_abandon_ext.3.gz
369 ldap_attributetype2name.3.gz
370 ldap_attributetype2str.3.gz
371 ldap_attributetype_free.3.gz
375 ldap_compare_ext.3.gz
376 ldap_compare_ext_s.3.gz
378 ldap_control_create.3.gz
379 ldap_control_dup.3.gz
380 ldap_control_find.3.gz
381 ldap_control_free.3.gz
383 ldap_controls_dup.3.gz
384 ldap_controls_free.3.gz
385 ldap_count_entries.3.gz
386 ldap_count_messages.3.gz
387 ldap_count_references.3.gz
388 ldap_count_values.3.gz
389 ldap_count_values_len.3.gz
393 ldap_delete_ext_s.3.gz
396 ldap_dn2ad_canonical.3.gz
406 ldap_explode_rdn.3.gz
407 ldap_extended_operation.3.gz
408 ldap_extended_operation_s.3.gz
409 ldap_first_attribute.3.gz
410 ldap_first_entry.3.gz
411 ldap_first_message.3.gz
412 ldap_first_reference.3.gz
413 ldap_free_urldesc.3.gz
414 ldap_get_attribute_ber.3.gz
418 ldap_get_values_len.3.gz
422 ldap_install_tls.3.gz
423 ldap_is_ldap_url.3.gz
424 ldap_matchingrule2name.3.gz
425 ldap_matchingrule2str.3.gz
426 ldap_matchingrule_free.3.gz
435 ldap_modify_ext_s.3.gz
445 ldap_next_attribute.3.gz
447 ldap_next_message.3.gz
448 ldap_next_reference.3.gz
449 ldap_objectclass2name.3.gz
450 ldap_objectclass2str.3.gz
451 ldap_objectclass_free.3.gz
453 ldap_parse_extended_result.3.gz
454 ldap_parse_intermediate.3.gz
455 ldap_parse_reference.3.gz
456 ldap_parse_result.3.gz
457 ldap_parse_sasl_bind_result.3.gz
458 ldap_parse_sort_control.3.gz
459 ldap_parse_vlv_control.3.gz
464 ldap_result2error.3.gz
466 ldap_sasl_bind_s.3.gz
471 ldap_search_ext_s.3.gz
475 ldap_set_rebind_proc.3.gz
476 ldap_set_urllist_proc.3.gz
477 ldap_simple_bind.3.gz
478 ldap_simple_bind_s.3.gz
480 ldap_sort_entries.3.gz
481 ldap_sort_strcasecmp.3.gz
482 ldap_sort_values.3.gz
484 ldap_start_tls_s.3.gz
485 ldap_str2attributetype.3.gz
487 ldap_str2matchingrule.3.gz
488 ldap_str2objectclass.3.gz
492 ldap_syntax2name.3.gz
494 ldap_syntax_free.3.gz
496 ldap_tls_inplace.3.gz
499 ldap_unbind_ext_s.3.gz
504 ldap_value_free_len.3.gz
509 share/man/man8/lloadd.8.gz
512 [FILE:1984:manifests/plist.docs]
513 share/doc/openldap/CHANGES
514 share/doc/openldap/drafts/
516 draft-behera-ldap-password-policy-xx.txt
517 draft-chu-ldap-csn-xx.txt
518 draft-chu-ldap-ldapi-xx.txt
519 draft-chu-ldap-xordered-xx.txt
520 draft-haripriya-dynamicgroup-xx.txt
521 draft-howard-rfc2307bis-xx.txt
522 draft-ietf-ldapext-acl-model-xx.txt
523 draft-ietf-ldapext-ldap-c-api-xx.txt
524 draft-ietf-ldapext-ldapv3-dupent-xx.txt
525 draft-ietf-ldapext-ldapv3-vlv-xx.txt
526 draft-ietf-ldapext-locate-xx.txt
527 draft-joslin-config-schema-xx.txt
528 draft-lachman-laser-ldap-mail-routing-xx.txt
529 draft-legg-ldap-acm-admin-xx.txt
530 draft-legg-ldap-acm-bac-xx.txt
531 draft-legg-ldap-admin-xx.txt
532 draft-legg-ldap-transfer-xx.txt
533 draft-masarati-ldap-deref-xx.txt
534 draft-masarati-ldap-whatfailed-xx.txt
535 draft-sermersheim-ldap-chaining-xx.txt
536 draft-sermersheim-ldap-csn-xx.txt
537 draft-sermersheim-ldap-distproc-xx.txt
538 draft-sermersheim-ldap-subordinate-scope-xx.txt
539 draft-stroeder-namedobject-xx.txt
540 draft-vchu-ldap-pwd-policy-xx.txt
541 draft-wahl-ldap-session-xx.txt
542 draft-zeilenga-ldap-c-api-concurrency-xx.txt
543 draft-zeilenga-ldap-noop-xx.txt
544 draft-zeilenga-ldap-relax.txt
545 share/doc/openldap/rfc/
614 [FILE:439:patches/patch-contrib_slapd-modules_smbk5pwd_Makefile]
615 --- contrib/slapd-modules/smbk5pwd/Makefile.orig 2022-07-14 17:07:29 UTC
616 +++ contrib/slapd-modules/smbk5pwd/Makefile
617 @@ -31,7 +31,7 @@ OPT = -g -O2
618 # Omit DO_KRB5, DO_SAMBA or DO_SHADOW if you don't want to support it.
619 DEFS = -DDO_KRB5 -DDO_SAMBA -DDO_SHADOW
620 INCS = $(LDAP_INC) $(HEIMDAL_INC) $(SSL_INC)
621 -LIBS = $(LDAP_LIB) $(HEIMDAL_LIB) $(SSL_LIB)
622 +LIBS = $(LDAP_LIB) $(SSL_LIB)
624 PROGRAMS = smbk5pwd.la
625 MANPAGES = slapo-smbk5pwd.5
628 [FILE:314:patches/patch-include_ldap__defaults.h]
629 --- include/ldap_defaults.h.orig 2022-07-14 17:07:29 UTC
630 +++ include/ldap_defaults.h
633 /* default ldapi:// socket */
635 -#define LDAPI_SOCK LDAP_RUNDIR LDAP_DIRSEP "run" LDAP_DIRSEP "ldapi"
636 +#define LDAPI_SOCK "/var/run" LDAP_DIRSEP "openldap" LDAP_DIRSEP "ldapi"
642 [FILE:798:patches/patch-libraries_libldap_Makefile.in]
643 --- libraries/libldap/Makefile.in.orig 2022-07-14 17:07:29 UTC
644 +++ libraries/libldap/Makefile.in
645 @@ -86,13 +86,6 @@ install-local: $(CFFILES) FORCE
646 $(LTFINISH) $(DESTDIR)$(libdir)
647 -$(MKDIR) $(DESTDIR)$(sysconfdir)
648 @for i in $(CFFILES); do \
649 - if test ! -f $(DESTDIR)$(sysconfdir)/$$i; then \
650 - echo "installing $$i in $(sysconfdir)"; \
651 - echo "$(INSTALL) $(INSTALLFLAGS) -m 644 $(srcdir)/$$i $(DESTDIR)$(sysconfdir)/$$i"; \
652 - $(INSTALL) $(INSTALLFLAGS) -m 644 $(srcdir)/$$i $(DESTDIR)$(sysconfdir)/$$i; \
654 - echo "PRESERVING EXISTING CONFIGURATION FILE $(sysconfdir)/$$i" ; \
656 - $(INSTALL) $(INSTALLFLAGS) -m 644 $(srcdir)/$$i $(DESTDIR)$(sysconfdir)/$$i.default; \
657 + $(INSTALL) $(INSTALLFLAGS) -m 644 $(srcdir)/$$i $(DESTDIR)$(sysconfdir)/$$i.sample; \
662 [FILE:2574:patches/patch-libraries_libldap_tls_o.c]
663 Fix build with LibreSSL.
665 --- libraries/libldap/tls_o.c.orig 2022-07-14 17:07:29 UTC
666 +++ libraries/libldap/tls_o.c
668 #include <openssl/dh.h>
671 -#if OPENSSL_VERSION_NUMBER >= 0x10100000
672 +#if OPENSSL_VERSION_NUMBER >= 0x10100000 && !(defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
673 #define ASN1_STRING_data(x) ASN1_STRING_get0_data(x)
676 @@ -129,7 +129,7 @@ static void tlso_thr_init( void ) {}
678 #endif /* OpenSSL 1.1 */
680 -#if OPENSSL_VERSION_NUMBER < 0x10100000
681 +#if OPENSSL_VERSION_NUMBER < 0x10100000 || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
683 * OpenSSL 1.1 API and later makes the BIO method concrete types internal.
685 @@ -220,7 +220,7 @@ tlso_init( void )
686 (void) tlso_seed_PRNG( lo->ldo_tls_randfile );
689 -#if OPENSSL_VERSION_NUMBER < 0x10100000
690 +#if OPENSSL_VERSION_NUMBER < 0x10100000 || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
691 SSL_load_error_strings();
693 OpenSSL_add_all_digests();
694 @@ -268,7 +268,7 @@ static void
695 tlso_ctx_ref( tls_ctx *ctx )
697 tlso_ctx *c = (tlso_ctx *)ctx;
698 -#if OPENSSL_VERSION_NUMBER < 0x10100000
699 +#if OPENSSL_VERSION_NUMBER < 0x10100000 || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
700 #define SSL_CTX_up_ref(ctx) CRYPTO_add( &(ctx->references), 1, CRYPTO_LOCK_SSL_CTX )
703 @@ -733,7 +733,7 @@ tlso_session_my_dn( tls_session *sess, s
704 if (!x) return LDAP_INVALID_CREDENTIALS;
706 xn = X509_get_subject_name(x);
707 -#if OPENSSL_VERSION_NUMBER < 0x10100000
708 +#if OPENSSL_VERSION_NUMBER < 0x10100000 || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
709 der_dn->bv_len = i2d_X509_NAME( xn, NULL );
710 der_dn->bv_val = xn->bytes->data;
712 @@ -769,7 +769,7 @@ tlso_session_peer_dn( tls_session *sess,
713 return LDAP_INVALID_CREDENTIALS;
715 xn = X509_get_subject_name(x);
716 -#if OPENSSL_VERSION_NUMBER < 0x10100000
717 +#if OPENSSL_VERSION_NUMBER < 0x10100000 || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
718 der_dn->bv_len = i2d_X509_NAME( xn, NULL );
719 der_dn->bv_val = xn->bytes->data;
721 @@ -1203,7 +1203,7 @@ struct tls_data {
722 Sockbuf_IO_Desc *sbiod;
725 -#if OPENSSL_VERSION_NUMBER < 0x10100000
726 +#if OPENSSL_VERSION_NUMBER < 0x10100000 || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000)
727 #define BIO_set_init(b, x) b->init = x
728 #define BIO_set_data(b, x) b->ptr = x
729 #define BIO_clear_flags(b, x) b->flags &= ~(x)
732 [FILE:973:files/pkg-deinstall-server.in]
737 if [ -f "%%PREFIX%%/etc/openldap/slapd.conf" ]; then
738 DBDIR=`awk '$1 == "directory" {print $2}' "%%PREFIX%%/etc/openldap/slapd.conf"`
744 ${ECHO_CMD} "The OpenLDAP server package has been deleted."
745 ${ECHO_CMD} "If you're *not* upgrading and won't be using"
746 ${ECHO_CMD} "it any longer, you may want to issue the"
747 ${ECHO_CMD} "following commands:"
749 if ([ "${DBDIR}" ] && [ -d "${DBDIR}" ]) || ([ ! "${DBDIR}" ] && [ -d %%DATABASEDIR%% ]); then
750 ${ECHO_CMD} "- to delete the OpenLDAP database permanently (losing all data):"
751 if [ "${DBDIR}" ] && [ -d "${DBDIR}" ]; then
752 ${ECHO_CMD} " rm -Rf ${DBDIR}"
754 ${ECHO_CMD} " rm -Rf %%DATABASEDIR%%"
758 ${ECHO_CMD} "- to remove the OpenLDAP user:"
759 ${ECHO_CMD} " pw userdel ldap"
761 ${ECHO_CMD} "If you are upgrading, don't forget to restart slapd."
767 [FILE:398:files/pkg-message-client.in]
768 ************************************************************
770 The OpenLDAP client package has been successfully installed.
773 %%PREFIX%%/etc/openldap/ldap.conf
774 to change the system-wide client defaults.
776 Try `man ldap.conf' and visit the OpenLDAP FAQ-O-Matic at
777 http://www.OpenLDAP.org/faq/index.cgi?file=3
778 for more information.
780 ************************************************************
783 [FILE:762:files/pkg-message-server.in]
784 ************************************************************
786 The OpenLDAP server package has been successfully installed.
788 In order to run the LDAP server, you need to edit
789 %%PREFIX%%/etc/openldap/slapd.conf
790 to suit your needs and add the following lines to /etc/rc.conf:
792 slapd_flags='-h "ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://0.0.0.0/"'
793 slapd_sockets="/var/run/openldap/ldapi"
795 Then start the server with
796 %%PREFIX%%/etc/rc.d/slapd start
799 Try `man slapd' and the online manual at
800 http://www.OpenLDAP.org/doc/
801 for more information.
803 slapd runs under a non-privileged user id (by default `ldap'),
804 see %%PREFIX%%/etc/rc.d/slapd for more information.
806 ************************************************************
809 [FILE:3528:files/slapd.in]
813 # REQUIRE: FILESYSTEMS ldconfig
818 # Add the following lines to /etc/rc.conf to enable slapd:
821 #slapd_flags='-h "ldapi://%2fvar%2frun%2fopenldap%2fldapi/ ldap://0.0.0.0/"'
822 #slapd_sockets="/var/run/openldap/ldapi"
824 # See slapd(8) for more flags
826 # The `-u' and `-g' flags are automatically extracted from slapd_owner,
827 # by default slapd runs under the non-privileged user id `ldap'. If you
828 # want to run slapd as root, override this in /etc/rc.conf with
830 #slapd_owner="DEFAULT"
832 # To use the cn=config style configuration add the following
833 # line to /etc/rc.conf:
835 #slapd_cn_config="YES"
837 # To specify alternative Kerberos 5 Key Table, add the following
838 # rc.conf(5) configuration:
840 #slapd_krb5_ktname="/path/to/ldap.keytab"
848 # read settings, set defaults
849 load_rc_config ${name}
851 : ${slapd_enable="NO"}
852 if [ -n "${slapd_args+set}" ]; then
853 warn "slapd_args is deprecated, use slapd_flags"
854 : ${slapd_flags="$slapd_args"}
856 : ${slapd_owner="%%LDAP_USER%%:%%LDAP_GROUP%%"}
857 : ${slapd_sockets_mode="666"}
858 : ${slapd_cn_config="NO"}
860 command="%%PREFIX%%/libexec/slapd"
861 pidfile="%%LDAP_RUN_DIR%%/slapd.pid"
863 # set required_dirs, required_files and DATABASEDIR
864 if checkyesno slapd_cn_config; then
865 required_dirs="%%PREFIX%%/etc/openldap/slapd.d"
866 required_files="%%PREFIX%%/etc/openldap/slapd.d/cn=config.ldif"
867 DATABASEDIR=`grep olcDbDirectory %%PREFIX%%/etc/openldap/slapd.d/cn=config/olcDatabase=* | awk '{ print $2 }'`
869 required_files="%%PREFIX%%/etc/openldap/slapd.conf"
870 DATABASEDIR=`awk '$1 == "directory" { print $2 }' "%%PREFIX%%/etc/openldap/slapd.conf" 2>&1 /dev/null`
873 start_precmd=start_precmd
874 start_postcmd=start_postcmd
876 # extract user and group, adjust ownership of directories and database
880 local slapd_ownername slapd_groupname
882 mkdir -p %%LDAP_RUN_DIR%%
884 case "$slapd_owner" in
885 ""|[Nn][Oo][Nn][Ee]|[Dd][Ee][Ff][Aa][Uu][Ll][Tt])
889 for DBDIR in ${DATABASEDIR}; do
890 if [ ! -d "${DBDIR}" ]; then
892 [ -f "%%PREFIX%%/etc/openldap/DB_CONFIG.example" ] && cp "%%PREFIX%%/etc/openldap/DB_CONFIG.example" "${DBDIR}/DB_CONFIG"
894 chown -RL "$slapd_owner" "${DBDIR}"
897 chown "$slapd_owner" "%%LDAP_RUN_DIR%%"
899 if checkyesno slapd_cn_config; then
900 chown -R $slapd_owner "%%PREFIX%%/etc/openldap/slapd.d"
902 chown $slapd_owner "%%PREFIX%%/etc/openldap/slapd.conf"
905 slapd_ownername="${slapd_owner%:*}"
906 slapd_groupname="${slapd_owner#*:}"
908 if [ -n "$slapd_ownername" ]; then
909 rc_flags="$rc_flags -u $slapd_ownername"
911 if [ -n "$slapd_groupname" ]; then
912 rc_flags="$rc_flags -g $slapd_groupname"
914 if [ -n "${slapd_krb5_ktname}" ]; then
915 export KRB5_KTNAME=${slapd_krb5_ktname}
921 # adjust ownership of created unix sockets
927 for socket in $slapd_sockets; do
928 for seconds in 1 2 3 4 5; do
929 [ -e "$socket" ] && break
932 if [ -S "$socket" ]; then
933 case "$slapd_owner" in
934 ""|[Nn][Oo][Nn][Ee]|[Dd][Ee][Ff][Aa][Uu][Ll][Tt])
937 chown "$slapd_owner" "$socket"
940 chmod "$slapd_sockets_mode" "$socket"
942 warn "slapd: Can't find socket $socket"