Changes in postlfs/security/gnutls.xml [8558044:3f2db3a6]

File:

• postlfs/security/gnutls.xml (modified) (10 diffs)

postlfs/security/gnutls.xml

@@ -8 +8 @@
   <!ENTITY gnutls-download-ftp  "&gnupg-ftp;/gnutls/v3.7/gnutls-&gnutls-version;.tar.xz">
   <!ENTITY gnutls-download-ftp  " ">
-  <!ENTITY gnutls-md5sum        "95c32a1af583ecfcb280648874c0fbd9">
+  <!ENTITY gnutls-md5sum        "c7b749bae243c341e6be717baf7ffbad">
   <!ENTITY gnutls-size          "5.8 MB">
-  <!ENTITY gnutls-buildsize     "139 MB (add 112 MB for tests)">
-  <!ENTITY gnutls-time          "0.9 SBU (add 2.9 SBU for tests; both using parallelism=4)">
+  <!ENTITY gnutls-buildsize     "167 MB (add 111 MB for tests)">
+  <!ENTITY gnutls-time          "0.9 SBU (add 2.6 SBU for tests; both using parallelism=4)">
 ]>
 
@@ -17 +17 @@
   <?dbhtml filename="gnutls.html"?>
 
-  <sect1info>
-    <date>$Date$</date>
-  </sect1info>
 
   <title>GnuTLS-&gnutls-version;</title>
@@ -35 +32 @@
       layer. Currently the <application>GnuTLS</application> library implements
       the proposed standards by the IETF's TLS working group. Quoting from the
-      TLS protocol specification:
-    </para>
-
-    <para>
-      <quote>The TLS protocol provides communications privacy over the
-      Internet. The protocol allows client/server applications to communicate in
-      a way that is designed to prevent eavesdropping, tampering, or message
-      forgery.</quote>
-    </para>
-
-    <para>
-      <application>GnuTLS</application> provides support for TLS 1.3, TLS 1.2, TLS 1.1,
-      TLS 1.0, and SSL 3.0 protocols, TLS extensions, including server name and max
-      record size. Additionally, the library supports authentication using the
-      SRP protocol, X.509 certificates and OpenPGP keys, along with support for
-      the TLS Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA)
-      extension and X.509 and OpenPGP certificate handling.
-    </para>
-
-    &lfs110a_checked;
+      <ulink url="https://datatracker.ietf.org/doc/rfc8446/">
+        TLS 1.3 protocol specification
+      </ulink>:
+    </para>
+
+    <para>
+      <quote>
+        TLS allows client/server applications to communicate over the Internet
+        in a way that is designed to prevent eavesdropping, tampering, and
+        message forgery.
+      </quote>
+    </para>
+
+    <para>
+      <application>GnuTLS</application> provides support for TLS 1.3, TLS 1.2,
+      TLS 1.1, TLS 1.0, and (optionally) SSL 3.0 protocols. It also supports
+      TLS extensions, including server name and max record size. Additionally,
+      the library supports authentication using the SRP protocol, X.509
+      certificates, and OpenPGP keys, along with support for the TLS
+      Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA)
+      extension, and X.509 and OpenPGP certificate handling.
+    </para>
+
+    &lfs112_checked;
 
     <bridgehead renderas="sect3">Package Information</bridgehead>
@@ -107 +108 @@
     <bridgehead renderas="sect4">Optional</bridgehead>
     <para role="optional">
+      <xref linkend="brotli"/>,
       <xref linkend="doxygen"/>,
       <xref linkend="gtk-doc"/>,
@@ -144 +146 @@
 <screen><userinput>./configure --prefix=/usr \
             --docdir=/usr/share/doc/gnutls-&gnutls-version; \
-            --disable-guile \
             --disable-rpath \
             --with-default-trust-store-pkcs11="pkcs11:" &amp;&amp;
@@ -159 +160 @@
 
 <screen role="root"><userinput>make install</userinput></screen>
-
-    <para>
-      If you passed <option>--enable-gtk-doc</option> to the
+<!--
+    <para>
+      If you passed <option>- -enable-gtk-doc</option> to the
       <command>configure</command> script, the API will automatically be
       installed.  Otherwise, if desired, you can still install the API
@@ -171 +172 @@
 
 <screen role="root"><userinput>make -C doc/reference install-data-local</userinput></screen>
-
+-->
   </sect2>
 
@@ -181 +182 @@
       switch tells gnutls to use the PKCS #11 trust store as the default trust.
       Omit this switch if <xref linkend="p11-kit"/> is not installed.
-    </para>
-
-    <para>
-      <parameter>--disable-guile</parameter>: This switch disables GUILE support,
-      since GnuTLS does not support Guile-2.2.x yet.
     </para>
 
@@ -219 +215 @@
       libunistring, instead of the system one. Use this switch if you have not
       installed <xref linkend="libunistring"/>.
+    </para>
+
+    <para>
+      <option>--disable-guile</option>: If guile is installed, bindings for
+      that languages are built. This prevents building them.
     </para>
 
@@ -237 +238 @@
         </seg>
         <seg>
-          libgnutls.so, libgnutls-dane.so, libgnutlsxx.so, and
-          libgnutls-openssl.so (optional)<!-- disabled , and
-          /usr/lib/guile/2.2/guile-gnutls-v-2.so -->
+          libgnutls.so, libgnutls-dane.so, libgnutlsxx.so,
+          libgnutls-openssl.so (optional), and
+          /usr/lib/guile/3.0/extensions/guile-gnutls-v-2.so
         </seg>
         <seg>
           /usr/include/gnutls,
-          /usr/share/gtk-doc/html/gnutls, and
-<!-- disabled /usr/share/guile/2.2/gnutls -->
+          /usr/lib/guile/3.0/site-ccache/gnutls,
+          /usr/share/guile/site/3.0/gnutls, and
           /usr/share/doc/gnutls-&gnutls-version;
         </seg>