Hi Wolfgang, Am Freitag 08 Januar 2010 20:23:55 schrieb Wolfgang Rosenauer:

Hi,

I have two new packages which are candidates for Factory. I haven't done submitreqs yet because I would like to have some feedback first.

The packages are

mozldap What's the goal for adding that? To my knowledge most application that can build against mozldap build fine against OpenLDAP as well. There are exception I admit, but those get fewer and fewer. Do you have a special application in mind (apart from Thunderbird and SeaMonkey) ?

- mozldap-tools (depends on svrcore) What's in mozldap-tools? I assume the Netscape/Mozilla incarnation of the ldap(search|add|modify) command line tools?

The Mozilla LDAP C SDK is a set of libraries that allow applications to communicate with LDAP directory servers. These libraries are derived from the University of Michigan and Netscape LDAP libraries. They use Mozilla NSPR and NSS for crypto.

svrcore - libsvrcore0 => Secure PIN handling using NSS crypto svrcore provides applications with several ways to handle secure PIN storage e.g. in an application that must be restarted, but needs the PIN to unlock the private key and other crypto material, without user intervention. svrcore uses the facilities provided by NSS.

License: GPLv2+ | LGPLv2.1+ | MPLv1.1 Project URL: https://wiki.mozilla.org/LDAP_C_SDK

mozldap is already shipped in openSUSE as part of MozillaThunderbird and SeaMonkey. Aren't Thunderbird and SeaMonkey able to build against libldap from OpenLDAP nowadays? I think I read something about that recently. IMO it would be better to do that instead of adding another LDAP library. Remember the trouble we had sometime ago with symbol clashes in the different libraries when nss_ldap is used.

An additional problem with mozldap seems to be, that doesn't seem to get much attention lately. The latest version seems from more than 2 years ago. To my knowledge even the 389DS (former FedoraDS former Redhat DS former Netscape DS former ...) developers have plans to move away from mozldap and use the OpenLDAP libraries. (e.g. the OpenLDAP libs can be built against the NSS crypto libs already).

Currently I don't know of any other "users" of that library in Factory but there is third party software outside which uses it and another user will most likely be added to Contrib soon => 389-ds

So if these would be added to Factory it would be possible to use it from Thunderbird and Seamonkey instead of shipping it multiple times. The downside is, that we have two sets of libraries providing very similar features and many conflicting symbols. This might get confusing.

There is a risk though that necessary updates to Thunderbird or Seamonkey would need a version update of the system library as well. We still could avoid it by readding the internal libraries if needed though. The API itself seems to be pretty mature.

Any feedback if we should add that to Factory and if so do we rip it out of Thunderbird and SeaMonkey? I really would like to hear some thoughts about it. I would really love to see Thunderbird and SeaMonkey linked against the OpenLDAP libs. But it seems there's some more work to do and it doesn't seem clear if the Developers are willing to accept the code:

https://bugzilla.mozilla.org/show_bug.cgi?id=292127#c18 -- Ralf -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org

Hi Wolfgang, Am Freitag 08 Januar 2010 20:23:55 schrieb Wolfgang Rosenauer:

Hi,

I have two new packages which are candidates for Factory. I haven't done submitreqs yet because I would like to have some feedback first.

The packages are

mozldap What's the goal for adding that? To my knowledge most application that can build against mozldap build fine against OpenLDAP as well. There are exception I admit, but those get fewer and fewer. Do you have a special application in mind (apart from Thunderbird and SeaMonkey) ?

- mozldap-tools (depends on svrcore) What's in mozldap-tools? I assume the Netscape/Mozilla incarnation of the ldap(search|add|modify) command line tools?

The Mozilla LDAP C SDK is a set of libraries that allow applications to communicate with LDAP directory servers. These libraries are derived from the University of Michigan and Netscape LDAP libraries. They use Mozilla NSPR and NSS for crypto.

svrcore - libsvrcore0 => Secure PIN handling using NSS crypto svrcore provides applications with several ways to handle secure PIN storage e.g. in an application that must be restarted, but needs the PIN to unlock the private key and other crypto material, without user intervention. svrcore uses the facilities provided by NSS.

License: GPLv2+ | LGPLv2.1+ | MPLv1.1 Project URL: https://wiki.mozilla.org/LDAP_C_SDK

mozldap is already shipped in openSUSE as part of MozillaThunderbird and SeaMonkey. Aren't Thunderbird and SeaMonkey able to build against libldap from OpenLDAP nowadays? I think I read something about that recently. IMO it would be better to do that instead of adding another LDAP library. Remember the trouble we had sometime ago with symbol clashes in the different libraries when nss_ldap is used.

An additional problem with mozldap seems to be, that doesn't seem to get much attention lately. The latest version seems from more than 2 years ago. To my knowledge even the 389DS (former FedoraDS former Redhat DS former Netscape DS former ...) developers have plans to move away from mozldap and use the OpenLDAP libraries. (e.g. the OpenLDAP libs can be built against the NSS crypto libs already).

Currently I don't know of any other "users" of that library in Factory but there is third party software outside which uses it and another user will most likely be added to Contrib soon => 389-ds

So if these would be added to Factory it would be possible to use it from Thunderbird and Seamonkey instead of shipping it multiple times. The downside is, that we have two sets of libraries providing very similar features and many conflicting symbols. This might get confusing.

There is a risk though that necessary updates to Thunderbird or Seamonkey would need a version update of the system library as well. We still could avoid it by readding the internal libraries if needed though. The API itself seems to be pretty mature.

Any feedback if we should add that to Factory and if so do we rip it out of Thunderbird and SeaMonkey? I really would like to hear some thoughts about it. I would really love to see Thunderbird and SeaMonkey linked against the OpenLDAP libs. But it seems there's some more work to do and it doesn't seem clear if the Developers are willing to accept the code:

https://bugzilla.mozilla.org/show_bug.cgi?id=292127#c18 -- Ralf -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org