Changeset 3ee626e for postlfs/security/gnutls.xml
- Timestamp:
- 05/08/2012 07:06:25 PM (12 years ago)
- Branches:
- 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal
- Children:
- 5c409d3
- Parents:
- 7a0533ee
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/gnutls.xml
r7a0533ee r3ee626e 7 7 <!ENTITY gnutls-download-http "http://ftp.gnu.org/gnu/gnutls/gnutls-&gnutls-version;.tar.xz"> 8 8 <!ENTITY gnutls-download-ftp "ftp://ftp.gnu.org/gnu/gnutls/gnutls-&gnutls-version;.tar.xz"> 9 <!ENTITY gnutls-md5sum " 5e87bd73a237749e2acbbb7161f11d5e">10 <!ENTITY gnutls-size "4. 6MB">9 <!ENTITY gnutls-md5sum "05e85d18955edd5c0fe40fbb7ef168bd"> 10 <!ENTITY gnutls-size "4.9 MB"> 11 11 <!ENTITY gnutls-buildsize "120 MB"> 12 12 <!ENTITY gnutls-time "1.6 SBU (including the test suite)"> … … 30 30 <title>Introduction to GnuTLS</title> 31 31 32 <para>The <application>GnuTLS</application> package contains a library and 33 userspace tools which provide a secure layer over a reliable transport 34 layer. Currently the <application>GnuTLS</application> library implements 35 the proposed standards by the IETF's TLS working group. Quoting from the 36 TLS protocol specification:</para> 37 38 <para><quote>The TLS protocol provides communications privacy over the 39 Internet. The protocol allows client/server applications to communicate in 40 a way that is designed to prevent eavesdropping, tampering, or message 41 forgery.</quote></para> 42 43 <para><application>GnuTLS</application> provides support for TLS 1.1, TLS 44 1.0 and SSL 3.0 protocols, TLS extensions, including server name and max 45 record size. Additionally, the library supports authentication using the 46 SRP protocol, X.509 certificates and OpenPGP keys, along with support for 47 the TLS Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA) 48 extension and X.509 and OpenPGP certificate handling.</para> 32 <para> 33 The <application>GnuTLS</application> package contains libraries and 34 userspace tools which provide a secure layer over a reliable transport 35 layer. Currently the <application>GnuTLS</application> library implements 36 the proposed standards by the IETF's TLS working group. Quoting from the 37 TLS protocol specification: 38 </para> 39 40 <para> 41 <quote>The TLS protocol provides communications privacy over the 42 Internet. The protocol allows client/server applications to communicate in 43 a way that is designed to prevent eavesdropping, tampering, or message 44 forgery.</quote> 45 </para> 46 47 <para> 48 <application>GnuTLS</application> provides support for TLS 1.1, TLS 49 1.0 and SSL 3.0 protocols, TLS extensions, including server name and max 50 record size. Additionally, the library supports authentication using the 51 SRP protocol, X.509 certificates and OpenPGP keys, along with support for 52 the TLS Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA) 53 extension and X.509 and OpenPGP certificate handling. 54 </para> 49 55 50 56 &lfs70_checked; … … 53 59 <itemizedlist spacing="compact"> 54 60 <listitem> 55 <para>Download (HTTP): <ulink url="&gnutls-download-http;"/></para> 56 </listitem> 57 <listitem> 58 <para>Download (FTP): <ulink url="&gnutls-download-ftp;"/></para> 59 </listitem> 60 <listitem> 61 <para>Download MD5 sum: &gnutls-md5sum;</para> 62 </listitem> 63 <listitem> 64 <para>Download size: &gnutls-size;</para> 65 </listitem> 66 <listitem> 67 <para>Estimated disk space required: &gnutls-buildsize;</para> 68 </listitem> 69 <listitem> 70 <para>Estimated build time: &gnutls-time;</para> 61 <para> 62 Download (HTTP): <ulink url="&gnutls-download-http;"/> 63 </para> 64 </listitem> 65 <listitem> 66 <para> 67 Download (FTP): <ulink url="&gnutls-download-ftp;"/> 68 </para> 69 </listitem> 70 <listitem> 71 <para> 72 Download MD5 sum: &gnutls-md5sum; 73 </para> 74 </listitem> 75 <listitem> 76 <para> 77 Download size: &gnutls-size; 78 </para> 79 </listitem> 80 <listitem> 81 <para> 82 Estimated disk space required: &gnutls-buildsize; 83 </para> 84 </listitem> 85 <listitem> 86 <para> 87 Estimated build time: &gnutls-time; 88 </para> 71 89 </listitem> 72 90 </itemizedlist> … … 75 93 76 94 <bridgehead renderas="sect4">Required</bridgehead> 77 <para role="required"><xref linkend="nettle"/></para> 95 <para role="required"> 96 <xref linkend="nettle"/> 97 </para> 78 98 79 99 <bridgehead renderas="sect4">Optional</bridgehead> … … 84 104 <xref linkend="libtasn1"/>, 85 105 <xref linkend="p11-kit"/> and 86 <ulink url="http://valgrind.org/">Valgrind</ulink> (used during the test suite)</para> 87 88 <para>Note that if you do not install <xref linkend="libtasn1"/>, an older 89 version shipped in the <application>GnuTLS</application> tarball will be 90 used instead.</para> 106 <ulink url="http://valgrind.org/">Valgrind</ulink> (used during the test suite) 107 </para> 108 109 <para> 110 Note that if you do not install <xref linkend="libtasn1"/>, an older 111 version shipped in the <application>GnuTLS</application> tarball will be 112 used instead. 113 </para> 91 114 92 115 <para condition="html" role="usernotes">User Notes: … … 98 121 <title>Installation of GnuTLS</title> 99 122 100 <para>Install <application>GnuTLS</application> by running the 101 following commands:</para> 123 <para> 124 Install <application>GnuTLS</application> by running the 125 following commands: 126 </para> 102 127 103 128 <screen><userinput>./configure --prefix=/usr && 104 129 make</userinput></screen> 105 130 106 <para>To test the results, issue: <command>make check</command>.</para> 107 108 <para>Now, as the <systemitem class="username">root</systemitem> 109 user:</para> 131 <para> 132 To test the results, issue: <command>make check</command>. 133 </para> 134 135 <para> 136 Now, as the <systemitem class="username">root</systemitem> 137 user: 138 </para> 110 139 111 140 <screen role="root"><userinput>make install && … … 116 145 /usr/share/doc/gnutls-&gnutls-version;</userinput></screen> 117 146 118 <para>If you did not pass the <option>--enable-gtk-doc</option> parameter 119 to the <command>configure</command> script, install the API documentation 120 to the <filename 121 class='directory'>/usr/share/gtk-doc/html/gnutls</filename> directory using 122 the following command as the <systemitem class="username">root</systemitem> 123 user:</para> 147 <para> 148 If you did not pass the <option>--enable-gtk-doc</option> parameter 149 to the <command>configure</command> script, install the API documentation 150 to the <filename class='directory'>/usr/share/gtk-doc/html/gnutls</filename> 151 directory using the following command as the 152 <systemitem class="username">root</systemitem> user: 153 </para> 124 154 125 155 <screen role="root"><userinput>make -C doc/reference install-data-local</userinput></screen> … … 129 159 <sect2 role="commands"> 130 160 <title>Command Explanations</title> 161 162 <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" 163 href="../../xincludes/static-libraries.xml"/> 131 164 132 165 <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" … … 144 177 145 178 <seglistitem> 146 <seg>certtool, crywrap, gnutls-cli, gnutls-cli-debug, gnutls-serv, 147 ocsptool, p11tool, psktool, and srptool</seg> 148 <seg>libgnutls.{so,a}, libgnutls-openssl.{so,a}, and libgnutlsxx.{so,a}</seg> 149 <seg>/usr/include/gnutls, 150 /usr/share/doc/gnutls-&gnutls-version;, and 151 /usr/share/gtk-doc/html/gnutls</seg> 179 <seg> 180 certtool, crywrap, gnutls-cli, gnutls-cli-debug, gnutls-serv, 181 ocsptool, p11tool, psktool, and srptool 182 </seg> 183 <seg> 184 libgnutls.{so,a}, libgnutls-openssl.{so,a}, and libgnutlsxx.{so,a} 185 </seg> 186 <seg> 187 /usr/include/gnutls, 188 /usr/share/doc/gnutls-&gnutls-version; and 189 /usr/share/gtk-doc/html/gnutls 190 </seg> 152 191 </seglistitem> 153 192 </segmentedlist> … … 161 200 <term><command>certtool</command></term> 162 201 <listitem> 163 <para>is used to generate X.509 certificates, certificate requests, 164 and private keys.</para> 202 <para> 203 is used to generate X.509 certificates, certificate requests, 204 and private keys. 205 </para> 165 206 <indexterm zone="gnutls certtool"> 166 207 <primary sortas="b-certtool">certtool</primary> … … 172 213 <term><command>crywrap</command></term> 173 214 <listitem> 174 <para>is a simple wrapper that waits for TLS/SSL connections, and 175 proxies them to an unencrypted location.</para> 215 <para> 216 is a simple wrapper that waits for TLS/SSL connections, and 217 proxies them to an unencrypted location. 218 </para> 176 219 <indexterm zone="gnutls crywrap"> 177 220 <primary sortas="b-crywrap">crywrap</primary> … … 183 226 <term><command>gnutls-cli</command></term> 184 227 <listitem> 185 <para>is a simple client program to set up a TLS connection to some 186 other computer.</para> 228 <para> 229 is a simple client program to set up a TLS connection to some 230 other computer. 231 </para> 187 232 <indexterm zone="gnutls gnutls-cli"> 188 233 <primary sortas="b-gnutls-cli">gnutls-cli</primary> … … 194 239 <term><command>gnutls-cli-debug</command></term> 195 240 <listitem> 196 <para>is a simple client program to set up a TLS connection to some 197 other computer and produces very verbose progress results.</para> 241 <para> 242 is a simple client program to set up a TLS connection to some 243 other computer and produces very verbose progress results. 244 </para> 198 245 <indexterm zone="gnutls gnutls-cli-debug"> 199 246 <primary sortas="b-gnutls-cli-debug">gnutls-cli-debug</primary> … … 205 252 <term><command>gnutls-serv</command></term> 206 253 <listitem> 207 <para>is a simple server program that listens to incoming TLS 208 connections.</para> 254 <para> 255 is a simple server program that listens to incoming TLS 256 connections. 257 </para> 209 258 <indexterm zone="gnutls gnutls-serv"> 210 259 <primary sortas="b-gnutls-serv">gnutls-serv</primary> … … 216 265 <term><command>ocsptool</command></term> 217 266 <listitem> 218 <para>is a program that can parse and print information about 219 OCSP requests/responses, generate requests and verify responses.</para> 267 <para> 268 is a program that can parse and print information about OCSP 269 requests/responses, generate requests and verify responses. 270 </para> 220 271 <indexterm zone="gnutls ocsptool"> 221 272 <primary sortas="b-ocsptool">ocsptool</primary> … … 227 278 <term><command>p11tool</command></term> 228 279 <listitem> 229 <para>is a program that allows handling data from PKCS #11 smart cards 230 and security modules.</para> 280 <para> 281 is a program that allows handling data from PKCS #11 smart cards 282 and security modules. 283 </para> 231 284 <indexterm zone="gnutls p11tool"> 232 285 <primary sortas="b-p11tool">p11tool</primary> … … 238 291 <term><command>psktool</command></term> 239 292 <listitem> 240 <para>is a simple program that generates random keys for use with 241 TLS-PSK.</para> 293 <para> 294 is a simple program that generates random keys for use with TLS-PSK. 295 </para> 242 296 <indexterm zone="gnutls psktool"> 243 297 <primary sortas="b-psktool">psktool</primary> … … 249 303 <term><command>srptool</command></term> 250 304 <listitem> 251 <para>is a simple program that emulates the programs in the Stanford 252 SRP (Secure Remote Password) libraries using GNU TLS.</para> 305 <para> 306 is a simple program that emulates the programs in the Stanford 307 SRP (Secure Remote Password) libraries using GnuTLS. 308 </para> 253 309 <indexterm zone="gnutls srptool"> 254 310 <primary sortas="b-srptool">srptool</primary> … … 260 316 <term><filename class='libraryfile'>libgnutls.{so,a}</filename></term> 261 317 <listitem> 262 <para>contains the core API functions and X.509 certificate 263 API functions.</para> 318 <para> 319 contains the core API functions and X.509 certificate API functions. 320 </para> 264 321 <indexterm zone="gnutls libgnutls"> 265 322 <primary sortas="c-libgnutls">libgnutls.{so,a}</primary>
Note:
See TracChangeset
for help on using the changeset viewer.