Page MenuHomePhabricator

emile doesn't compile with gnutls
Closed, WontfixPublic


When compiling emile with -Dcrypto=gnutls, the build fails with linking error. Reading reveals that it it links to libcrypto (OpenSSL) unconditionally and doesn't link to libgcrypt/libgnutls at all.

vtorri assigned this task to bu5hm4n.Oct 6 2020, 9:27 PM
vtorri added a subscriber: vtorri.

if it's on BSD, there is a reason explained in top level, line 225

Huh? That comment is about openssl, not gnutls.

yes, and on BSD, only openssl is used, no gnutls.

so if you are on bsd and require gnutls, then there will be a pb

raster added a subscriber: raster.Oct 7 2020, 4:07 AM

well it's obviously saying "no gnutls on freebsd/dragonfly". it';s explicitly disallowing it. switching it on does indeed break the logic so the solution here is.. don't use gnutls on bsd. the is explicily making the decision to use openssl here on this OS.

just fyi... i've been waiting for openssl3 to appear, add in support for that and then remove gnutls support entirely. so long-term... don't expect gnutls to remain as an option. it's just painful to support 2 crypto back-ends making maintenance 2x as much in these areas (actually gnutls code is just ignored - not tested or looked at so i wouldn't trust it anyway). as this is crypto, code that does not get attention and fixes and testing is likely going to cause security issues, so it's best removed.

raster closed this task as Wontfix.Oct 7 2020, 4:07 AM