GnuTLS not supported

[GoogleCodeExporter]

What version/revision number of mod_spdy are you using?

https://dl-ssl.google.com/dl/linux/direct/mod-spdy-beta_current_amd64.deb

What version of Apache are you using, and on what operating system?  (Use
`apache2ctl -v` to check.)

Server version: Apache/2.2.16 (Debian)
Server built:   Apr  1 2012 07:14:38

What other Apache modules are you using?  (Use `apache2ctl -M` to check.)

Loaded Modules:
 core_module (static)
 log_config_module (static)
 logio_module (static)
 mpm_prefork_module (static)
 http_module (static)
 so_module (static)
 alias_module (shared)
 auth_basic_module (shared)
 authn_file_module (shared)
 authz_default_module (shared)
 authz_groupfile_module (shared)
 authz_host_module (shared)
 authz_user_module (shared)
 autoindex_module (shared)
 cgi_module (shared)
 dav_module (shared)
 dav_svn_module (shared)
 authz_svn_module (shared)
 deflate_module (shared)
 dir_module (shared)
 env_module (shared)
 expires_module (shared)
 fcgid_module (shared)
 gnutls_module (shared)
 mime_module (shared)
 negotiation_module (shared)
 php5_module (shared)
 reqtimeout_module (shared)
 rewrite_module (shared)
 setenvif_module (shared)
 spdy_module (shared)
 status_module (shared)

What steps will reproduce the problem?
1. Start Apache server with GnuTLS enabled.
2. Check /var/log/apache2/error.log for error messages related to .

What is the expected result? What do you see instead mod-spdy?

mod-spdy should have been loaded successfully. Instead, it complains that 
mod_ssl is not installed.

Please provide any additional information below.

It seems that mod-spdy currently depends on mod_ssl. However, GnuTLS provides 
HTTP with SSL/TLS as well.

Original issue reported on code.google.com by mburger313@gmail.com on 18 Apr 2012 at 9:06

[GoogleCodeExporter]

Good point.  It would be great for mod_spdy to be able to work with either of 
mod_ssl or mod_gnutls.

Unfortunately, I do not believe this is possible at the moment.  The SPDY 
protocol depends on support for the Next Protocol Negotiation (NPN) TLS 
extension.  OpenSSL (the TLS implementation used by mod_ssl) provides NPN 
support as of version 1.0.1, but as nearly as I can tell, GnuTLS (the TLS 
implementation used by mod_gnutls) does not yet support NPN:
http://lists.gnu.org/archive/html/gnutls-devel/2012-03/msg00103.html

Once there is a GnuTLS release supporting NPN, it would probably be possible to 
patch mod_gnutls to add NPN hooks, as we have done for mod_ssl, and then it 
would probably be possible to get mod_spdy to support mod_gnutls.  However, all 
that may be a ways down the road.

Original comment by mdste...@google.com on 18 Apr 2012 at 2:22

• Changed state: Accepted
• Added labels: Priority-Low
• Removed labels: Priority-Medium

[GoogleCodeExporter]

Original comment by mdste...@google.com on 2 May 2012 at 8:17

• Added labels: Type-Enhancement
• Removed labels: Type-Defect

[GoogleCodeExporter]

I would like to see mod_spdy supporting GnuTLS as well. If mod_spdy would 
support GnuTLS, I would install it on my servers.

Original comment by mawis...@gmail.com on 14 Jun 2012 at 9:57