Open oliv3r opened 1 month ago
mbedtls
This should work, I will check out what is going wrong and fix this. It's probably just what the error you have seen suggests: We have to guard all the Pi-hole X.509 features. The webserver is meant to be functional even without TLS.
mbedtls
compile errorsPlease check the version you have installed, FTL is meant to be built against the latest stable release, 3.5.0. I will add an internal check against the minimum supported version to print a clear error message.
Check out the v6.0 documentation draft for a detailed step-by-step to compile mbedtls
from source as system-provided versions tend to be ancient.
Not sure if I want to go down that rabbit hole :) I just did apk add mbedtls-dev
:p (on alpine:latest or alpine:edge)
I did just try installing mbedTLS v3.6.0 and recompiling FTL against it and it worked flawlessly. You could also use Pi-hole's ftl-build
multi-arch containers instead of trying to create your own environment if you prefer.
Anyway, I don't think this is a rabbit hole, it's just the few lines I put up there that needs to be executed. I will soon try to debug this further but alpine:edge
is currently broken concerning gmp
preventing any FTL builds at the moment. I have reported this upstream but resolution is pending.
I'm actually not really trying to set up my own build env, but rather trying to package it for Alpine.
For now, its packaged fine, but for 2.25.2 the patches are needed and for Dev, as you said things are broken.
@oliv3r Please check again with the latest development-v6
. Meanwhile, we changed the C standard from 11 to 17 and made the code compatible with clang
. This involved a huge amount of small fixes and changes. The code does not compile flawlessly using both gcc
and clang
on alpine:latest
.
When building the latest development-v6 branch, mbedtls isn't properly guarded out.
CMake will detect the missing mbed tls and say that it won't compile with TLS; however the webserver will still be compiled regardless, resulting in an obvious missing header error.
Not sure if the lack of TLS should mean: no webserver; or if the webserver could be build without tls.
btw, even adding mbed-tls still bombs, no idea why/how this is caused.