[gnutls-devel] GnuTLS | Apps using gnutls log error on kernel 5.12 if built with AF_ALG (#1246)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Sat May 29 12:26:18 CEST 2021

Jan Palus created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1246

Just took gnutls 3.7.2 with `--enable-afalg` for a spin and there seems to be a usability problem. Application started to log cryptic error:
libkcapi - Error: AF_ALG: bind failed (errno: -2)
Few remarks:
* error is harmless since it's about missing cipher in kernel, namely salsa20 which was dropped in kernel 5.12
* preferably error should be logged only with verbose mode, but unfortunately libkcapi does not seem to allow it
* even in verbose mode it would be good if error had some additional info ie that it's salsa20 cipher which failed initialization

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1246
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210529/982402f5/attachment.html>

More information about the Gnutls-devel mailing list