We keep MD5 enabled for now as we need it for TLS 1.0/1.1. Once we
remove that we can reconsider (although, it's also needed for EAP-MD5
and since MD4 is disabled as well, which means EAP-MSCHAPv2 won't
be available, we'd be left with only EAP-GTC for simple username/password
authentication, which nobody else supports).
BOTAN_CONFIG="--without-os-features=threads
--disable-modules=locking_allocator"
fi
- # disable some larger modules we don't need for the tests
+ # disable some larger modules we don't need for the tests and deprecated
+ # ones, except for MD5, which we need for TLS 1.0/1.1
BOTAN_CONFIG="$BOTAN_CONFIG --disable-modules=pkcs11,tls,x509,xmss
+ --disable-deprecated-features --enable-modules=md5
--prefix=$DEPS_PREFIX"
git clone https://github.com/randombit/botan.git $BOTAN_DIR &&
NUM_CPUS := $(shell getconf _NPROCESSORS_ONLN)
# the first two are necessary due to LD, the others to reduce the build time
+# the last one enables MD5, which we need for TLS 1.0/1.1 (and possibly EAP-MD5)
CONFIG_OPTS = \
--without-os-features=threads \
--disable-modules=locking_allocator \
- --disable-modules=pkcs11,tls,x509,xmss
+ --disable-modules=pkcs11,tls,x509,xmss \
+ --disable-deprecated-features \
+ --enable-modules=md5
all: install
projects / thirdparty / strongswan.git / commitdiff
