NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
b2c193295b
kumquat-buildroot/package/unbound/Config.in
Fabrice Fontaine a66190e5ec package/unbound: select BR2_PACKAGE_LIBOPENSSL_ENGINES 
unbound unconditionally calls the (deprecated) ENGINE_* logic in
libopenssl resulting in a build failure when
!BR2_PACKAGE_LIBOPENSSL_ENGINES since commit
623d3bbe43e9193aa8e3395367d01af59071b859:

sldns/keyraw.c:167:35: error: 'ENGINE_METHOD_ALL' undeclared (first use in this function)
  167 |         if(!ENGINE_set_default(e, ENGINE_METHOD_ALL)) {
      |                                   ^~~~~~~~~~~~~~~~~

Fixes: 623d3bbe43e9193aa8e3395367d01af59071b859
 - http://autobuild.buildroot.org/results/b7782f5ba54543df53a835552632f58d4ad6c082

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
(cherry picked from commit ec7ae882e048ce4ca5c2b72cb884b8d1ef33c6cc)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2024-08-29 18:09:15 +02:00

40 lines
1.2 KiB
Plaintext
Raw Blame History

config BR2_PACKAGE_UNBOUND
bool "unbound"
depends on !BR2_STATIC_LIBS
select BR2_PACKAGE_EXPAT
select BR2_PACKAGE_LIBEVENT
select BR2_PACKAGE_LIBOPENSSL_ENGINES if BR2_PACKAGE_LIBOPENSSL
select BR2_PACKAGE_OPENSSL
help
Unbound is a validating, recursive, and caching DNS resolver.
It supports DNSSEC, QNAME minimisation, DNS-over-TLS and
DNSCrypt.
https://www.unbound.net
if BR2_PACKAGE_UNBOUND
config BR2_PACKAGE_UNBOUND_DNSCRYPT
bool "enable DNSCrypt"
select BR2_PACKAGE_LIBSODIUM
help
DNSCrypt wraps unmodified DNS queries between a client and
a DNS resolver. Default port used is 443 and like with
normal unencrypted DNS, it uses UDP first and falling back
to TCP if response too large.
There is also DNS-over-TLS, a TCP only version
of proposed standard for DNS encryption (RFC 7858).
Default port for DNS-over-TLS is 853 and Unbound has
built-in support for it.
https://tools.ietf.org/html/rfc7858
Note: Neither DNSCrypt or DNS-over-TLS encrypt the SNI.
Here is some suggestions how to handle SNI encryption:
https://tools.ietf.org/html/draft-ietf-tls-sni-encryption-00
endif
comment "unbound needs a toolchain w/ dynamic library"
depends on BR2_STATIC_LIBS
Reference in New Issue View Git Blame Copy Permalink