Changes in postlfs/security/gnutls.xml [3f2db3a6:8558044]

File:

• postlfs/security/gnutls.xml (modified) (10 diffs)

postlfs/security/gnutls.xml

@@ -8 +8 @@
   <!ENTITY gnutls-download-ftp  "&gnupg-ftp;/gnutls/v3.7/gnutls-&gnutls-version;.tar.xz">
   <!ENTITY gnutls-download-ftp  " ">
-  <!ENTITY gnutls-md5sum        "c7b749bae243c341e6be717baf7ffbad">
+  <!ENTITY gnutls-md5sum        "95c32a1af583ecfcb280648874c0fbd9">
   <!ENTITY gnutls-size          "5.8 MB">
-  <!ENTITY gnutls-buildsize     "167 MB (add 111 MB for tests)">
-  <!ENTITY gnutls-time          "0.9 SBU (add 2.6 SBU for tests; both using parallelism=4)">
+  <!ENTITY gnutls-buildsize     "139 MB (add 112 MB for tests)">
+  <!ENTITY gnutls-time          "0.9 SBU (add 2.9 SBU for tests; both using parallelism=4)">
 ]>
 
@@ -17 +17 @@
   <?dbhtml filename="gnutls.html"?>
 
+  <sect1info>
+    <date>$Date$</date>
+  </sect1info>
 
   <title>GnuTLS-&gnutls-version;</title>
@@ -32 +35 @@
       layer. Currently the <application>GnuTLS</application> library implements
       the proposed standards by the IETF's TLS working group. Quoting from the
-      <ulink url="https://datatracker.ietf.org/doc/rfc8446/">
-        TLS 1.3 protocol specification
-      </ulink>:
-    </para>
-
-    <para>
-      <quote>
-        TLS allows client/server applications to communicate over the Internet
-        in a way that is designed to prevent eavesdropping, tampering, and
-        message forgery.
-      </quote>
-    </para>
-
-    <para>
-      <application>GnuTLS</application> provides support for TLS 1.3, TLS 1.2,
-      TLS 1.1, TLS 1.0, and (optionally) SSL 3.0 protocols. It also supports
-      TLS extensions, including server name and max record size. Additionally,
-      the library supports authentication using the SRP protocol, X.509
-      certificates, and OpenPGP keys, along with support for the TLS
-      Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA)
-      extension, and X.509 and OpenPGP certificate handling.
-    </para>
-
-    &lfs112_checked;
+      TLS protocol specification:
+    </para>
+
+    <para>
+      <quote>The TLS protocol provides communications privacy over the
+      Internet. The protocol allows client/server applications to communicate in
+      a way that is designed to prevent eavesdropping, tampering, or message
+      forgery.</quote>
+    </para>
+
+    <para>
+      <application>GnuTLS</application> provides support for TLS 1.3, TLS 1.2, TLS 1.1,
+      TLS 1.0, and SSL 3.0 protocols, TLS extensions, including server name and max
+      record size. Additionally, the library supports authentication using the
+      SRP protocol, X.509 certificates and OpenPGP keys, along with support for
+      the TLS Pre-Shared-Keys (PSK) extension, the Inner Application (TLS/IA)
+      extension and X.509 and OpenPGP certificate handling.
+    </para>
+
+    &lfs110a_checked;
 
     <bridgehead renderas="sect3">Package Information</bridgehead>
@@ -108 +107 @@
     <bridgehead renderas="sect4">Optional</bridgehead>
     <para role="optional">
-      <xref linkend="brotli"/>,
       <xref linkend="doxygen"/>,
       <xref linkend="gtk-doc"/>,
@@ -146 +144 @@
 <screen><userinput>./configure --prefix=/usr \
             --docdir=/usr/share/doc/gnutls-&gnutls-version; \
+            --disable-guile \
             --disable-rpath \
             --with-default-trust-store-pkcs11="pkcs11:" &amp;&amp;
@@ -160 +159 @@
 
 <screen role="root"><userinput>make install</userinput></screen>
-<!--
-    <para>
-      If you passed <option>- -enable-gtk-doc</option> to the
+
+    <para>
+      If you passed <option>--enable-gtk-doc</option> to the
       <command>configure</command> script, the API will automatically be
       installed.  Otherwise, if desired, you can still install the API
@@ -172 +171 @@
 
 <screen role="root"><userinput>make -C doc/reference install-data-local</userinput></screen>
--->
+
   </sect2>
 
@@ -182 +181 @@
       switch tells gnutls to use the PKCS #11 trust store as the default trust.
       Omit this switch if <xref linkend="p11-kit"/> is not installed.
+    </para>
+
+    <para>
+      <parameter>--disable-guile</parameter>: This switch disables GUILE support,
+      since GnuTLS does not support Guile-2.2.x yet.
     </para>
 
@@ -215 +219 @@
       libunistring, instead of the system one. Use this switch if you have not
       installed <xref linkend="libunistring"/>.
-    </para>
-
-    <para>
-      <option>--disable-guile</option>: If guile is installed, bindings for
-      that languages are built. This prevents building them.
     </para>
 
@@ -238 +237 @@
         </seg>
         <seg>
-          libgnutls.so, libgnutls-dane.so, libgnutlsxx.so,
-          libgnutls-openssl.so (optional), and
-          /usr/lib/guile/3.0/extensions/guile-gnutls-v-2.so
+          libgnutls.so, libgnutls-dane.so, libgnutlsxx.so, and
+          libgnutls-openssl.so (optional)<!-- disabled , and
+          /usr/lib/guile/2.2/guile-gnutls-v-2.so -->
         </seg>
         <seg>
           /usr/include/gnutls,
-          /usr/lib/guile/3.0/site-ccache/gnutls,
-          /usr/share/guile/site/3.0/gnutls, and
+          /usr/share/gtk-doc/html/gnutls, and
+<!-- disabled /usr/share/guile/2.2/gnutls -->
           /usr/share/doc/gnutls-&gnutls-version;
         </seg>