On Mon, 29 Mar 2010, Faye Gibbins wrote:
> When trying to collect a https address, e.g:
>
> lftp -c "get https://www.example.com/foo.tar.gz -o /tmp/foo.tar.gz"
>
> lftp reports:
>
> fgibbins$ lftp -c "get https://www.example.com/foo.tar.gz -o
> /tmp/foo.tar.gz"
> /usr/lib/libgnutls.so.13: symbol gcry_cipher_setkey, version GCRYPT_1.2
> not defined in file libgcrypt.so.11 with link time reference
> get: https - not supported protocol
> fgibbins$
>
> (Some domain names have been changed to protect the innocent)
>
> Any thoughts on how to fix this?
> PS. According to our yum command we are up to date and have:
>
> gnutls-1.4.1-3.el5_4.8
> lftp-3.7.11-4.el5
> libgcrypt-1.2.3-1
It is broken on SL5.3 as well.
I have libgcrypt-1.2.4-1.el5 but have the same problem on both i386 and
x86_64.
SL5.4 has libgcrypt-1.4.4-5.el5.
Installing that on SL53 seems to fix the problem.
I suspect that the latest gnutls (with the fix for CVE-2009-3555)
is incompatible with libgcrypt-1.2
--
Dr. Andrew C. Aitchison Computer Officer, DPMMS, Cambridge
[log in to unmask]http://www.dpmms.cam.ac.uk/~werdna