https://bugzilla.redhat.com/show_bug.cgi?id=2364276 Ben Beasley <code@xxxxxxxxxxxxxxxxxx> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |code@xxxxxxxxxxxxxxxxxx --- Comment #2 from Ben Beasley <code@xxxxxxxxxxxxxxxxxx> --- I see some reason for caution here. This bundles mbedtls, which is a TLS implementation, so may require special handling under https://docs.fedoraproject.org/en-US/packaging-guidelines/CryptoPolicies/. As for any bundled library, there should also be a serious effort to patch build.rs to link the system copy at https://src.fedoraproject.org/rpms/mbedtls. Hopefully the differences between the packaged 3.6.3 and the bundled 2.28.9 aren’t too significant. On the bright side, successfully linking the system copy would avoid most of the extra scrutiny that would apply to this package for bundling a crypo implementation. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component https://bugzilla.redhat.com/show_bug.cgi?id=2364276 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202364276%23c2 -- _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
