[Bug 1178080] systemd-resolved linked against gnutls
https://bugzilla.suse.com/show_bug.cgi?id=1178080 https://bugzilla.suse.com/show_bug.cgi?id=1178080#c1 Franck Bui <fbui@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |IN_PROGRESS CC| |fbui@suse.com --- Comment #1 from Franck Bui <fbui@suse.com> --- (In reply to Ludwig Nussel from comment #0)
Would it be possible to build systemd-resolved with openssl instead?
That should be possible since https://github.com/systemd/systemd/pull/9734. However I'm not sure it would be a good idea since: - gnutls supports "TLS False Start" whereas openssl doesn't - gnutls backend is the default and used by all major distros That would leave TW the only distro using openssl here hence hitting tricky/security bugs that no other distro has faced before... So I'm wondering whether it is really worth avoiding to pull libgnutls in in a minimal system... -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com