[Pkg-openldap-devel] 2.4.7-5 away
Steve Langasek
vorlon at debian.org
Mon Feb 18 09:17:18 UTC 2008
On Mon, Feb 11, 2008 at 11:45:49PM -0800, Russ Allbery wrote:
> Quanah Gibson-Mount <quanah at zimbra.com> writes:
> > 2.4.8 is now ready for testing (not released, of course). I assume that
> > you'll be removing the patch to OpenLDAP for the bug in GnuTLS, and
> > fixing GnuTLS instead?
> Sure, eventually. Immediately right now for the next release, no,
> probably not, as at the very least Simon should get a say in how GnuTLS is
> modified. :)
> > I expect that'd be good for a -6, at least. 2.4.8 obviously won't
> > include patching 2.4.8 for a bug in GnuTLS. ;)
> Right, but we can carry the patch until GnuTLS is fixed. It's not like it
> causes any significant harm (as I understand it) even after GnuTLS is
> fixed.
GnuTLS and OpenLDAP need to agree on the meaning of the "length" returned,
so our patched libldap will again fail to validate alternate subject names
when GnuTLS gets fixed. Dunno whether you're counting that as "significant"
harm. :)
I would like to see the GnuTLS API fix reach Debian ASAP, so we can sidestep
any concerns about partial upgrades to the fixed libgnutls.
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developer http://www.debian.org/
slangasek at ubuntu.com vorlon at debian.org
More information about the Pkg-openldap-devel
mailing list