2.2.28 doesn't honor --disable-ldap?

Werner Koch wk at gnupg.org
Fri Jun 11 07:50:47 CEST 2021

On Thu, 10 Jun 2021 17:20, Phil Pennock said:

> My package builds pass `--disable-ldap` to the configure line for GnuPG;
> this does not appear to be honored any more?

Sorry, for not having tested this.  LDAP is currently pretty important
to us, so did not even thought about it.  Thanks for reporting, Gniibe
already pushed some fixes.

FWIW: Not for 2.2 but for 3.3 the plan is to move all LDAP stuff to
dirmngr_ldap so that we can get rid of the possible linking of two
different libgcrypt versions or linking to yet another crypto library
(if OpenLDAP is build against Nettle).  The other reason is that we can
properly implement a timeout for LDAP. The OpenPGP LDAP keyserver code
does not yet handle a timeout correcly because OpenLDAP has no way to to
that (e.g. during a connet attempt).  dirmngr_ldap would then run as a
co-process to keep state.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20210611/75a59c53/attachment-0001.sig>

More information about the Gnupg-devel mailing list