-
-
Notifications
You must be signed in to change notification settings - Fork 6.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
multissl: make openssl + wolfssl builds work #15596
Conversation
You need wolfSSL from their git master still to do a combo-build with OpenSSL. I presume that will come proper in their next release. |
Yes, I'm testing this with wolfSSL master. This clears the way for the wolfSSL feature when it's released. |
b6c7825
to
ca72e1f
Compare
It seems the way we build wolfSSL in CI isn't going to be
Such distros are Homebrew and Debian AFAIK. |
wolfssl vcpkg have now ech feature. Can you check that it correct and work in the tests? |
Can we add in the curl --version if the ech feature is working or not? |
It's already there if enabled:
|
It not working, while wolfssl vcpkg is compile with:
https://github.com/curl/curl/actions/runs/12034376811/job/33550798676?pr=15438#step:10:36 |
We need add a curl flag to enable ech? |
I now understand: |
Yes, the two options already enabled for BoringSSL. |
I enable only -DUSE_ECH=ON for wolfssl. It have a compilation error. Am I missing something? |
ca72e1f
to
912bd7f
Compare
aef2556
to
7538185
Compare
@vszakats Happy to see you that you back! :) |
Looking forward the feature windows too! |
7538185
to
0f69c10
Compare
0f69c10
to
971cc24
Compare
I dropped the auto-enable logic from this PR and will open it separately once a stable wolfSSL release allows it. It means this PR is ready to merge to fix remaining coexist issues and enable using it with compatible wolfSSL revisions. |
Follow-up to fd067bf curl#15596
Follow-up to fd067bf curl#15596
Follow-up to fd067bf curl#15596
Requires a post wolfSSL v5.7.4, recent master for
OPENSSL_COEXIST
feature, and
CPPFLAGS=-DOPENSSL_COEXIST
.Ref: wolfSSL/wolfssl#8194
OPENSSL_COEXIST
for wolfSSL + OpenSSL #15765OPENSSL_COEXIST
.then add logic to auto-enable
OPENSSL_COEXIST
for wolfSSL.OTHERNAME
andMD5_CTX
collision workaroundsare still necessary. → 20241122-opensslcoexist-expansion wolfSSL/wolfssl#8216