Changes in postlfs/security/gnutls.xml [8558044:3f2db3a6]
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
postlfs/security/gnutls.xml
r8558044 r3f2db3a6 8 8 <!ENTITY gnutls-download-ftp "&gnupg-ftp;/gnutls/v3.7/gnutls-&gnutls-version;.tar.xz"> 9 9 <!ENTITY gnutls-download-ftp " "> 10 <!ENTITY gnutls-md5sum " 95c32a1af583ecfcb280648874c0fbd9">10 <!ENTITY gnutls-md5sum "c7b749bae243c341e6be717baf7ffbad"> 11 11 <!ENTITY gnutls-size "5.8 MB"> 12 <!ENTITY gnutls-buildsize "1 39 MB (add 112MB for tests)">13 <!ENTITY gnutls-time "0.9 SBU (add 2. 9SBU for tests; both using parallelism=4)">12 <!ENTITY gnutls-buildsize "167 MB (add 111 MB for tests)"> 13 <!ENTITY gnutls-time "0.9 SBU (add 2.6 SBU for tests; both using parallelism=4)"> 14 14 ]> 15 15 … … 17 17 <?dbhtml filename="gnutls.html"?> 18 18 19 <sect1info>20 <date>$Date$</date>21 </sect1info>22 19 23 20 <title>GnuTLS-&gnutls-version;</title> … … 35 32 layer. Currently the <application>GnuTLS</application> library implements 36 33 the proposed standards by the IETF's TLS working group. Quoting from the 37 TLS protocol specification: 38 </para> 39 40 <para> 41 <quote>The TLS protocol provides communications privacy over the 42 Internet. The protocol allows client/server applications to communicate in 43 a way that is designed to prevent eavesdropping, tampering, or message 44 forgery.</quote> 45 </para> 46 47 <para> 48 <application>GnuTLS</application> provides support for TLS 1.3, TLS 1.2, TLS 1.1, 49 TLS 1.0, and SSL 3.0 protocols, TLS extensions, including server name and max 50 record size. Additionally, the library supports authentication using the 51 SRP protocol, X.509 certificates and OpenPGP keys, along with support for 52 the TLS Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA) 53 extension and X.509 and OpenPGP certificate handling. 54 </para> 55 56 &lfs110a_checked; 34 <ulink url="https://datatracker.ietf.org/doc/rfc8446/"> 35 TLS 1.3 protocol specification 36 </ulink>: 37 </para> 38 39 <para> 40 <quote> 41 TLS allows client/server applications to communicate over the Internet 42 in a way that is designed to prevent eavesdropping, tampering, and 43 message forgery. 44 </quote> 45 </para> 46 47 <para> 48 <application>GnuTLS</application> provides support for TLS 1.3, TLS 1.2, 49 TLS 1.1, TLS 1.0, and (optionally) SSL 3.0 protocols. It also supports 50 TLS extensions, including server name and max record size. Additionally, 51 the library supports authentication using the SRP protocol, X.509 52 certificates, and OpenPGP keys, along with support for the TLS 53 Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA) 54 extension, and X.509 and OpenPGP certificate handling. 55 </para> 56 57 &lfs112_checked; 57 58 58 59 <bridgehead renderas="sect3">Package Information</bridgehead> … … 107 108 <bridgehead renderas="sect4">Optional</bridgehead> 108 109 <para role="optional"> 110 <xref linkend="brotli"/>, 109 111 <xref linkend="doxygen"/>, 110 112 <xref linkend="gtk-doc"/>, … … 144 146 <screen><userinput>./configure --prefix=/usr \ 145 147 --docdir=/usr/share/doc/gnutls-&gnutls-version; \ 146 --disable-guile \147 148 --disable-rpath \ 148 149 --with-default-trust-store-pkcs11="pkcs11:" && … … 159 160 160 161 <screen role="root"><userinput>make install</userinput></screen> 161 162 <para> 163 If you passed <option>- -enable-gtk-doc</option> to the162 <!-- 163 <para> 164 If you passed <option>- -enable-gtk-doc</option> to the 164 165 <command>configure</command> script, the API will automatically be 165 166 installed. Otherwise, if desired, you can still install the API … … 171 172 172 173 <screen role="root"><userinput>make -C doc/reference install-data-local</userinput></screen> 173 174 --> 174 175 </sect2> 175 176 … … 181 182 switch tells gnutls to use the PKCS #11 trust store as the default trust. 182 183 Omit this switch if <xref linkend="p11-kit"/> is not installed. 183 </para>184 185 <para>186 <parameter>--disable-guile</parameter>: This switch disables GUILE support,187 since GnuTLS does not support Guile-2.2.x yet.188 184 </para> 189 185 … … 219 215 libunistring, instead of the system one. Use this switch if you have not 220 216 installed <xref linkend="libunistring"/>. 217 </para> 218 219 <para> 220 <option>--disable-guile</option>: If guile is installed, bindings for 221 that languages are built. This prevents building them. 221 222 </para> 222 223 … … 237 238 </seg> 238 239 <seg> 239 libgnutls.so, libgnutls-dane.so, libgnutlsxx.so, and240 libgnutls-openssl.so (optional) <!-- disabled, and241 /usr/lib/guile/ 2.2/guile-gnutls-v-2.so -->240 libgnutls.so, libgnutls-dane.so, libgnutlsxx.so, 241 libgnutls-openssl.so (optional), and 242 /usr/lib/guile/3.0/extensions/guile-gnutls-v-2.so 242 243 </seg> 243 244 <seg> 244 245 /usr/include/gnutls, 245 /usr/ share/gtk-doc/html/gnutls, and246 <!-- disabled /usr/share/guile/2.2/gnutls --> 246 /usr/lib/guile/3.0/site-ccache/gnutls, 247 /usr/share/guile/site/3.0/gnutls, and 247 248 /usr/share/doc/gnutls-&gnutls-version; 248 249 </seg>
Note:
See TracChangeset
for help on using the changeset viewer.