I've tidied up the patch which turns this silent error into a more
noisy warning but does not try to fix the underlying issue. The patch
is based on one by Johannes Ernst <johannes.ernst@gmail.com>, as
detailed in the attached patch. (The only other change is to put the
patch into the series file *in the middle* due to problems with the
gnutls changes needing to be last.)
#libtool
no_com_err
runtests_gdb
art_http_scripting
versioned
insecure-negotiation-warning
# this must be the last
curl_links_with_rt
gnutls
curl has already had a new upstream release uploaded, so I'm
building against testing (pbuilder):
Source: curl
Version: 7.21.0-1.1
Distribution: testing-proposed-updates
Urgency: medium
Maintainer: Neil Williams <codehelp@debian.org>
Date: Fri, 17 Dec 2010 21:10:56 +0000
Closes: 594150
Changes:
curl (7.21.0-1.1) testing-proposed-updates; urgency=medium
.
* Non-maintainer upload.
* Backport change by Johannes Ernst to Squeeze to supply
a useful error message if server attempts insecure
renegotiation. (Closes: #594150)
* Target t-p-u because a new upstream release is in sid.
If the patch works as expected (and the build passes the tests which
have proved problematic on this box previously), would a t-p-u upload
like this be a suitable fix for the release?
I'm guessing medium here, quite happy to change that to suit release
team preference.
--
Neil Williams
=============
http://www.linux.codehelp.co.uk/
Attachment:
insecure-negotiation-warning
Description: Binary data
Attachment:
pgpVu776FQhky.pgp
Description: PGP signature