[Buildroot] [PATCH 1/3] package/mbedtls: add BR2_PACKAGE_MBEDTLS_X509_UNSUPPORTED_CRITICAL_EXTENSION
Fabrice Fontaine
fontaine.fabrice at gmail.com
Fri Apr 24 13:20:19 UTC 2020
Hi all,
Le ven. 24 avr. 2020 à 15:11, Nicola Di Lieto
<nicola.dilieto at gmail.com> a écrit :
>
> On Fri, Apr 24, 2020 at 01:48:13PM +0200, Yann E. MORIN wrote:
> >Until then, my opinion is that we should just stop building uacme with
> >embedtls.
>
> Please do not confuse the main binary uacme (which is perfecty OK and
> *does not* require the new TLS extension) with ualpn, a separate and
> optional binary recently added to the uacme distribution to answer
> tls-alpn-01 challenges (which requires the new TLS extension).
>
> Building ualpn should actually be disabled by default in buildroot
> (check BR2_PACKAGE_UACME_UALPN in package/uacme/Config.in)
>
> I propose making BR2_PACKAGE_UACME_UALPN depend on !BR2_PACKAGE_MBEDTLS.
> Would that be acceptable?
I think it should depend on !BR2_PACKAGE_UACME_MBEDTLS (added by the
second patch of this serie).
Otherwise, a user won't be able to select ualpn with a gnutls-enabled
uacme if he has also enabled mbedlts for an other purpose.
>
Best Regards,
Fabrice
More information about the buildroot
mailing list