On Tue, Jul 06, 2021 at 10:59:18AM +0100, Daniel P. Berrangé wrote: > Originally we preferred to use nettle, over gcrypt because
s/nettle, over gcrypt/nettle over gcrypt,/ > gnutls already links to nettle and thus it minimizes the > dependencies. In retrospect this was the wrong criteria to > optimize for. > > Currently shipping versions of gcrypt have cipher impls that > are massively faster than those in nettle and this is way > more important. The nettle library is also not capable of > enforcing FIPS compliance, since it considers that out of > scope. It merely aims to provide general purpose impls of > algorithms, and usage policy is left upto the layer above, > such as GNUTTLS. GNUTLS > > Signed-off-by: Daniel P. Berrangé <berra...@redhat.com> > --- > meson.build | 22 +++++++++++----------- > 1 file changed, 11 insertions(+), 11 deletions(-) > My meson skills are weak, but the change looks reasonable, and the proof is in building things. Reviewed-by: Eric Blake <ebl...@redhat.com> -- Eric Blake, Principal Software Engineer Red Hat, Inc. +1-919-301-3266 Virtualization: qemu.org | libvirt.org
