[odd: I didn't see your message on pkg-openldap-devel, nor can I find it
in the archive. I wonder if it's stuck in a mod queue somewhere...]
On 03/08/14 03:29 PM, Simon McVittie wrote:
On Tue, 05 Nov 2013 at 15:45:07 +0100, Carlos Alberto Lopez Perez wrote:
On 24/04/12 17:25, Thorsten Glaser wrote:
this bug has been brought to my attention by my boss today.
If I understand the situation correctly, the problem is:
• OpenLDAP links against GnuTLS (gnutls26)
• gnutls26 links against gcrypt, which has the bug
• gnutls28 links against nettle, but also gmp which is LGPLv3+
• OpenLDAP thus can’t link against gnutls28, as it has reverse
dependencies that are not LGPLv3-/GPLv3-compatible
• the package affected is libnss-ldap though
If there isn't any GPLv2 reverse dependency, then OpenLDAP can be just
recompiled to link against gnutls28 and this long standing bug will be
fixed.
As far as I understand it, this became simpler in recent months:
* gnutls28 links against gmp, which was relicensed to "LGPL-3+ or GPL-2+",
making it possible to link GPL-2 (only) code to gnutls28
So would linking OpenLDAP to gnutls28 (#745231, tagged pending) close this
RC bug as a side-effect?
I believe so, yes. For example, with openldap built from what's
currently in git, sudo as an LDAP user works, while in current sid it
still fails like it always has.
thanks,
Ryan
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
