[tor-bugs] #8014 [Tor]: nacl library not recognised during tor build

Tor Bug Tracker & Wiki blackhole at torproject.org
Sun Jan 20 02:09:42 UTC 2013 

#8014: nacl library not recognised during tor build
------------------------+---------------------------------------------------
    Reporter:  mr-4     |       Owner:                    
        Type:  defect   |      Status:  closed            
    Priority:  normal   |   Milestone:                    
   Component:  Tor      |     Version:  Tor: 0.2.4.8-alpha
  Resolution:  invalid  |    Keywords:                    
      Parent:           |      Points:                    
Actualpoints:           |  
------------------------+---------------------------------------------------

Comment(by mr-4):

 Replying to [comment:1 rransom]:
 > The Curve25519 implementations included with Tor are considerably faster
 than the reference implementation in NaCl.  Do not try to force Tor to
 link to a copy of NaCl whose build process chose the reference
 implementation of Curve25519.
 I am not trying to "force" anything - I simply wanted to take advantage of
 nacl and wasn't aware that such implementation is included with tor.

 Perhaps the next time you guys type in your changelogs you should point
 this out and make it clear that nacl implementation *is* included with tor
 so that I (and others) won't try to make wild guesses.

 >
 > Also:
 >  * No one should be distributing binary packages of NaCl.  NaCl's build
 process chooses the fastest implementation of a cryptographic primitive
 which works on the processor and OS on which it was built; it can quite
 easily choose one that won't work or has poor performance on a different
 box.
 So, cross-compilation is out of the question then, even if it is done in
 chrooted environment (which 99% of all automated cross-compilation builds
 are)? Very wise indeed (not!). Whoever bright spark decided upon that
 deserves to be shot!

 >  * No one should be distributing packages which claim to be NaCl but
 have some of the pieces removed -- that's a recipe for confusion.  Many of
 the cryptographic primitive implementations in NaCl (as of the last time I
 looked at it) do not come with source code; if your OS distribution has a
 policy against distributing such packages, they shouldn't ship a
 fake/mutilated NaCl package.
 I have no idea whether the nacl package provided with my distro (Fedora)
 is "mutilated" or not - as far as I could tell, the source rpm consists of
 ... sources, there aren't any binaries. So I don't know where you've got
 that idea that my nacl distribution is "mutilated".

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8014#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list