Bug#1072514: libgnutls30: Disabled KTLS support
Andreas Metzler
ametzler at bebt.de
Mon Jan 6 06:54:38 GMT 2025
Control: tags -1 moreinfo
On 2024-09-19 Jakub Ružička <jru at debian.org> wrote:
> Control: reassign -1 libgnutls30
> I'm hopefully reassigning this to a correct package.
> Also CC'ing maintainers for visibility because it's needed in Knot DNS
> (knot package).
> On Mon, 03 Jun 2024 10:30:41 +0200 Daniel Salzman <daniel.salzman at nic.cz> wrote:
>> The GnuTLS library is built with KTLS support disabled. If the
>> `--enable-ktls` configure option is added to CONFIGUREARGS in
>> debian/rules, the library builds successfully. Also, TLS offloading
>> seems to work well.
>> Could you please enable this feature in the package?
Good morning
I get a testsuite error with --enable-ktls:
FAIL: ktls_keyupdate.sh
Afaiui GnuTLS/KTLS requires a kernel patch for key-update support to be
useful. Without it applications will get unexpected errors.
https://gitlab.com/gnutls/gnutls/-/issues/1420
https://gitlab.com/gnutls/gnutls/-/merge_requests/1625
https://fedoraproject.org/wiki/Changes/KTLSSupportForGnuTLS
cu Andreas
--
`What a good friend you are to him, Dr. Maturin. His other friends are
so grateful to you.'
`I sew his ears on from time to time, sure'
More information about the Pkg-gnutls-maint
mailing list