Update LibCURL to 7.83.1

[fxcoudert]

This will be updated following the merging of JuliaPackaging/Yggdrasil#4942

[giordano]

The new file is missing these two lines, and the failure at the end of the build job I guess is related to this. But I don't know how these two checksums should come from.

[fxcoudert]

I wondered what to do with stdlib/LibCURL.version, but I have how idea how it relates to the rest.

[giordano]

Oh, LibCURL.jl is the standard libraries whose source code is pulled from an external repository:

julia/stdlib/LibCURL.version

Lines 1 to 4 in 86f5501

	LIBCURL_BRANCH = master
	LIBCURL_SHA1 = fd8af649b38ae20c3ff7f5dca53753512ca00376
	LIBCURL_GIT_URL := https://github.com/JuliaWeb/LibCURL.jl.git
	LIBCURL_TAR_URL = https://github.com/api/repos/JuliaWeb/LibCURL.jl/tarball/$1

I guess you may need to simply restore these two lines then.

[fxcoudert]

I have restored the two checksum lines, but running make -f contrib/refresh_checksums.mk -j curl again will remove them, so I am not sure this is the right solution for the long term.

[KristofferC]

Musl error (https://buildkite.com/julialang/julia-master/builds/12338#f932a979-6bf1-41c1-98f2-fb2e20a3f5c2/466-2043) looks real:

LoadError("sysimg.jl", 19, LoadError("/cache/build/default-amdci5-5/julialang/julia-master/usr/share/julia/stdlib/v1.9/Downloads/src/Downloads.jl", 1,
LoadError("/cache/build/default-amdci5-5/julialang/julia-master/usr/share/julia/stdlib/v1.9/Downloads/src/Curl/Curl.jl", 1,
ErrorException("could not load library \"libcurl.so\"\nError loading shared library libgssapi_krb5.so.2:
No such file or directory (needed by /cache/build/default-amdci5-5/julialang/julia-master/usr/bin/../lib/libcurl.so)"))))

[giordano]

@tp2750 was interested in adding support for kerberos, but didn't follow up with adding the stdlib to Julia

[tp2750]

@tp2750 was interested in adding support for kerberos, but didn't follow up with adding the stdlib to Julia

I'm not clear on what I need to do.

My interest is to have a kerberos enabled libCurl in Yggdrasil. Apparently this has some interaction with the libCurl in Julia itself, but honestly I don't have full understanding of these interactions.
I'll be happy to do what is needed, to the best of my abilities.

[fxcoudert]

If I understand well, either kerberos is added to the dependencies of Julia on linux and freebsd (but what is the benefit for that extra dependency), or JuliaPackaging/Yggdrasil#4774 is reverted.

[tp2750]

what is the benefit for that extra dependency

The benefit of having a Kerberos enabled libCurl in Julia is to be able to access web services behind a Kerberos authentication.
We use that a lot in our organization, but apparently it is not a common configuration

After adding Kerberos support to LibPQ.jl I thought it would be equally easy to fix it for libCurl. Apparently this is not the case, as Julia carries it's own copy of libCurl. I will be happy to try and fix this, but I need some guidance, as I do not fully understand how these things interact.

After the merge of JuliaPackaging/Yggdrasil#4774 I did a fresh build of Julia main and could see that Kerberos support in libCurl was working, so I thought all was good.

[fxcoudert]

I do not know what the Julia policy is, or who can make a decision here, but this is blocking the update, while there are 7 known vulnerabilities in curl 7.81.0: https://curl.se/docs/vuln-7.81.0.html

[giordano]

I'll revert kerberos in Yggdrasil to unlock things here, but I won't be able to do it before tomorrow or Saturday.

[fxcoudert]

Thanks @giordano this looks good to go now