As reported https://bugs.gentoo.org/show_bug.cgi?id=147800 gnutls-1.4.4 links itself against an existing gnutls-1.2* version if installed. I haven't been able to find the cause of this.
After gnutls-1.4.4 is merged, this is evident by examining: readelf -d /usr/lib/libgnutls-extra.so - 0x00000001 (NEEDED) Shared library: [libgnutls.so.12] (means it linked to previous version 1.2*) - 0x00000001 (NEEDED) Shared library: [libgnutls.so.13] (means its good - this happens when a gnutls-1.4* is installed or no gnutls is previously installed.) gnutls-1.4.4 has an outstanding security bug https://bugs.gentoo.org/show_bug.cgi?id=147682 and bug 147800 needs to be fixed before it can be marked stable. I'm sure the current patch against gnutls-1.4.4 is not needed. I would appreciate it if anyone with a little time on their hands and a willingness to get intimate with the gnutls build process (standard autoconf/automake) would take the time to get it fixed. (note autoconf-2.60 will be required for autoconf changes) Please post any corrections attached to this bug report. If anyone missed my previous plea to do some preliminary testing with gnutls here it is again: ------------------- To participate please: 1. add ~net-libs/gnutls-1.4.4 ~dev-libs/libtasn1-0.3.5 to /etc/portage/package.unmask and /etc/portage/package.keywords files. 2. emerge -1 ~net-libs/gnutls-1.4.4 3. run revdep-rebuild 4. and report bugs on bugs.gentoo.org making them block bug 147682 revdep-rebuild may get the order of the rebuild incorrect so please watch out for this error. -------------------- -- Daniel Black <[EMAIL PROTECTED]> Gentoo Foundation -- [email protected] mailing list
