From 8b95b86ec0117533af69a1112ebd5e3d8a37f3c2 Mon Sep 17 00:00:00 2001
From: Debian OpenLDAP Maintainers <pkg-openldap-devel@lists.alioth.debian.org>
Date: Sat, 14 Jan 2023 00:29:59 +0000
Subject: [PATCH] ldap-conf-tls-cacertdir

Gbp-Pq: Name ldap-conf-tls-cacertdir
---
 doc/man/man5/ldap.conf.5 | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/doc/man/man5/ldap.conf.5 b/doc/man/man5/ldap.conf.5
index df357ab7..7a376764 100644
--- a/doc/man/man5/ldap.conf.5
+++ b/doc/man/man5/ldap.conf.5
@@ -407,13 +407,13 @@ would require TLS 1.1.
 Specifying a minimum that is higher than that supported by the
 OpenLDAP implementation will result in it requiring the
 highest level that it does support.
-This parameter is ignored with GnuTLS.
+This parameter is ignored with GnuTLS. On Debian openldap is linked against GnuTLS.
 .TP
 .B TLS_RANDFILE <filename>
 Specifies the file to obtain random bits from when /dev/[u]random is
 not available. Generally set to the name of the EGD/PRNGD socket.
 The environment variable RANDFILE can also be used to specify the filename.
-This parameter is ignored with GnuTLS.
+This parameter is ignored with GnuTLS. On Debian openldap is linked against GnuTLS.
 .TP
 .B TLS_REQCERT <level>
 Specifies what checks to perform on server certificates in a TLS session.
@@ -475,7 +475,7 @@ Specifies if the Certificate Revocation List (CRL) of the CA should be
 used to verify if the server certificates have not been revoked. This
 requires
 .B TLS_CACERTDIR
-parameter to be set. This parameter is ignored with GnuTLS.
+parameter to be set. This parameter is ignored with GnuTLS. On Debian openldap is linked against GnuTLS.
 .B <level>
 can be specified as one of the following keywords:
 .RS
-- 
2.30.2