[Pidgin] #16222: Consider dropping support for either gnutls or libnss

Pidgin trac at pidgin.im
Sun May 4 18:34:10 EDT 2014


#16222: Consider dropping support for either gnutls or libnss
-------------------------------------------------+-------------------------
 Reporter:  MarkDoliner                          |       Owner:  EionRobb
     Type:  task                                 |      Status:  new
Milestone:  3.0.0                                |   Component:
  Version:  2.10.9                               |  unclassified
 Keywords:  tls ssl nss libnss gnutls            |  Resolution:
  certificate certificates x509                  |
-------------------------------------------------+-------------------------
Description changed by MarkDoliner:

Old description:

> We should evaluate whether we still need to provide compatibility with
> both libraries. If it's possible to standardize on one of them then we
> could drop support for the other and reduce the amount of code we
> maintain. It's important for TLS and certificate handling to be correct,
> and reducing the code footprint by half means there's significantly less
> code for us to maintain.
>
> The main consider is whether all operating systems support one or the
> other. I suspect all major Linux distributions package both libraries. Do
> they both work on Windows? Are there any reasons to prefer one over the
> other? Which library is more popular among major apps?
>
> We should also evaluate whether we still need our tls connecting and
> certificate validation to be pluginized. I think most of our PRPLs
> require tls, so there's no great advantage to allowing users to build
> without tls. But maybe Adium wants to be able to use openssl on OS X?
> What about Instantbird?

New description:

 We should evaluate whether we still need to provide compatibility with
 both libraries. If it's possible to standardize on one of them then we
 could drop support for the other and reduce the amount of code we
 maintain. It's important for TLS and certificate handling to be correct,
 and reducing the code footprint by half means there's significantly less
 code for us to maintain.

 The main consideration is whether all operating systems support one or the
 other. I suspect all major Linux distributions package both libraries. Do
 they both work on Windows? Are there any reasons to prefer one over the
 other? Which library is more popular among other major apps?

 We should also evaluate whether we still need our tls connecting and
 certificate validation to be pluginized. I think most of our PRPLs require
 tls, so there's no great advantage to allowing users to build without tls.
 But maybe Adium wants to be able to use openssl on OS X? What about
 Instantbird?

--

-- 
Ticket URL: <https://developer.pidgin.im/ticket/16222#comment:2>
Pidgin <https://pidgin.im>
Pidgin


More information about the Tracker mailing list