Franck Bui changed bug 1178080
What Removed Added
Status NEW IN_PROGRESS
CC   fbui@suse.com

Comment # 1 on bug 1178080 from 
(In reply to Ludwig Nussel from comment #0)
> Would it be possible to build systemd-resolved with openssl instead?

That should be possible since https://github.com/systemd/systemd/pull/9734.

However I'm not sure it would be a good idea since:

 - gnutls supports "TLS False Start" whereas openssl doesn't
 - gnutls backend is the default and used by all major distros

That would leave TW the only distro using openssl here hence hitting
tricky/security bugs that no other distro has faced before...

So I'm wondering whether it is really worth avoiding to pull libgnutls in in a
minimal system...

You are receiving this mail because: