dirmngr: wakes up periodically
Open, NormalPublic


dirmngr wakes up every two seconds, does not much, and then goes back to sleep.

#1805 describes the same problem on gpg-agent

This is also https://bugs.debian.org/507361

dkg added a comment.Nov 15 2016, 1:52 AM

We're shipping these patches in debian unstable as of 2.1.15-9.

werner added a subscriber: werner.Nov 20 2016, 5:19 PM

This has been changed in 2.1.16 to happen only every minute. Along with the
wakeup being done at the full second (as has been agreed upon for other
daemons), this should be more of an annoyance than a real problem.

dkg added a comment.Nov 23 2016, 5:33 PM

In practice, dirmngr from git master still wakes up every few seconds due to the
ldap-reaper thread, even if no connections to ldap have ever happened.

the patch dirmngr-Lazily-launch-ldap-reaper-thread.patch avoids this additional
wakeup at least for those dirmngr instances that have never used LDAP.

dkg added a comment.Nov 23 2016, 5:35 PM

I've updated the patch series here to the series we're using in debian for 2.1.16.

I just pushed the LDAP reaper patch for 2.1.17.

The LDAP stuff is mainly used for CRLs and is often hard to deploy because often
proxies are needed etc. I don't know a public one which is reliable enough for
testing. The one I used mostly was related to certain smartcards but those
cards expire faster than software can be deployed. Fortunately most public CRLs
are available via HTTP.

Another use are LDAP keyservers. I do not know a public service, Some
keyserver operators run them privately and Ireply on them to test GnUPG's support.

Please do not use "checking-upstream-swdb" patch.

Sure, for Debian and other distros the version number is of no use and should
not be used (I am still annoyed by xlockscreen thing). However disabling this
in dirmngr is the wrong approach. It should be disabled in tools which actually
use that service (e.g. KMail). The SWDB file carries more version information
than just GPA and is thus useful for developers who build their own version of
GPA or their own Windows installer. It has also nothing to do with the wakeups.

Having a dirmngr installed which does not work as described is a bad idea.

BTW: although we won't be able to implement key retrieval queueing into dirmngr
(e.g. for use with --auto-key-retrieve) in time for the Debain freeze, we will
add this later so that it may be available in a later point release. Obviously
this needs regualr wakeups to test for network connectivity and to process the

Patch 0001 should be applied to 2.3

gniibe added a subscriber: gniibe.Sep 7 2018, 7:30 AM

Patch 0001 applied to master.