Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 383851

Summary: >=net-libs/glib-networking-2.29.15 request
Product: Gentoo Linux Reporter: Cedric Sodhi <manday>
Component: New packagesAssignee: Gentoo Linux Gnome Desktop Team <gnome>
Status: RESOLVED FIXED    
Severity: normal CC: graaff, manday
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard:
Package list:
Runtime testing required: ---
Bug Depends on:    
Bug Blocks: 382681    

Description Cedric Sodhi 2011-09-20 18:01:58 UTC 
Current versions of GnuTLS by default fatally fail to negotiate secure pages with a short TLS prime, giving an error, that the prime is expected to be longer. As explained by danw on irc.freenode.net/webkit-gtk:

"libsoup used to talk to gnutls directly, and had a workaround for this problem. when the tls support moved to glib-networking, the workaround went away. it's back as of glib-networking 2.29.15"

This is fatal in that it prevents one completely from viewing a page with no way arround it. glib-networking from 2.9.15 onwards changes the default expected length of the prime to something shorter (256), which is obviously less secure but a must in order to view certain pages (from which the user should not be prevented, just because a library doesnt deem it secure enough).

Reproducible: Always
Comment 1 Alexandre Rostovtsev (RETIRED) gentoo-dev 2011-09-25 21:24:04 UTC 
glib-networking-2.29.18 is in the gnome-next branch of the gnome overlay. I expect that it will be coming to portage with other gnome-3.2 packages after gnome-3.2 is officially released.
Comment 2 Samuli Suominen (RETIRED) gentoo-dev 2011-09-28 10:43:58 UTC 
*glib-networking-2.30.0 (27 Sep 2011)

  27 Sep 2011; Nirbheek Chauhan <nirbheek@gentoo.org>
  +glib-networking-2.30.0.ebuild:
  Bump to 2.30, from the GNOME overlay. Ebuild updates by tetromino.