https://bugs.openldap.org/show_bug.cgi?id=10149
--- Comment #5 from Ondřej Kuzník ondra@mistotebe.net --- On Sun, Jan 12, 2025 at 10:47:45AM +0000, openldap-its@openldap.org wrote:
Quick ping on this one.
This patch blocks the fixing of secure replication support in 389ds, which is currently limited to a restrictive certificate setup and is in turn fixed in https://github.com/389ds/389-ds-base/pull/6021.
Hi Graham, would you be able to explain in more detail what this provides that cannot be achieved with existing options like LDAP_OPT_X_TLS_CACERT, ...?
Also if you want to open a MR on git.openldap.org, that would make review much easier for all involved but we don't insist on going that route. If you need your Gitlab account to be confirmed, please provide your account name here (and make sure its email matches your Bugzilla email).
Is there an option to have this included in the v2.6.x branch?
As a significant change in library API, I feel it unlikely to land in 2.6 unless it can be shown that it has no impact on existing installations.
Thanks,