c91359697e
GnuTls implements old, unsafe or unused protocols and cyphers Secure embedded systems shall disable them in order to be certified. This patch allows to select/deselect SSLv2 protocol and gost cipher. Signed-off-by: Erwan GAUTRON <erwan.gautron@bertin.fr> [Peter: default options to 'n', move next to _GNUTLS_TOOLS, explicit --enable] Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
44 lines
1.0 KiB
Plaintext
44 lines
1.0 KiB
Plaintext
config BR2_PACKAGE_GNUTLS
|
|
bool "gnutls"
|
|
# https://gitlab.com/gnutls/gnutls/issues/203
|
|
depends on !BR2_STATIC_LIBS
|
|
# gnulib requires a library that implements wctomb().
|
|
# This is noticed only when linking with libgnutls.so.
|
|
depends on BR2_USE_WCHAR
|
|
select BR2_PACKAGE_LIBTASN1
|
|
select BR2_PACKAGE_NETTLE
|
|
select BR2_PACKAGE_PCRE
|
|
help
|
|
GnuTLS is a secure communications library implementing the SSL
|
|
and TLS protocols and technologies around them.
|
|
|
|
https://www.gnutls.org/
|
|
|
|
if BR2_PACKAGE_GNUTLS
|
|
|
|
config BR2_PACKAGE_GNUTLS_OPENSSL
|
|
bool "OpenSSL compatibility library"
|
|
help
|
|
Install OpenSSL compatibility library.
|
|
|
|
config BR2_PACKAGE_GNUTLS_TOOLS
|
|
bool "install tools"
|
|
help
|
|
Install GnuTLS command line tools for various cryptographic
|
|
tasks.
|
|
|
|
config BR2_PACKAGE_GNUTLS_ENABLE_SSL2
|
|
bool "enable SSLv2"
|
|
help
|
|
Enable SSLv2 protocol.
|
|
|
|
config BR2_PACKAGE_GNUTLS_ENABLE_GOST
|
|
bool "enable GOST"
|
|
help
|
|
Enable GOST cipher.
|
|
|
|
endif
|
|
|
|
comment "gnutls needs a toolchain w/ wchar, dynamic library"
|
|
depends on !BR2_USE_WCHAR || BR2_STATIC_LIBS
|