subversion still linked with gnutls
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| subversion (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: subversion
many web servers use https with optional client certificates.
this works fine with subversion: everyone can checkout an open source
project without having to show a client certificate. but if you try to
access a restricted resource (e.g. any modification/write request),
the server asks the client for client certificate. the https stream needs
to renegotiate to show that client cert.
subversion can do that fine, if it is linked with openssl.
it can't do that properly if linked with gnutls. subversion up to 8.04 worked
fine, all subversion packages in 8.10 and 9.04 are broken - even though
the bug for 8.10 was reported shortly after 8.10 release (or even earlier?).
please fix subversion by downgrading to the 8.04 subversion packages
or simply link with openssl. keeping gnutls while it is not fixed, is a huge
regression.
you can easily reproduce the problem with:
LANG=en_EN svn ls https:/
svn: warning: cannot set LC_CTYPE locale
svn: warning: environment variable LANG is en_EN
svn: warning: please check that your locale name is correct
svn: OPTIONS of 'https:/
if necessary I can give you the whole apache conf if needed.
