Make usage of openSSL optional #66
Conversation
stormshield-gt
force-pushed
the
make_usage_of_openssl_optional
branch
2 times, most recently
from
60e9d85 to
466c4fb
Compare
|
Thanks for opening this PR. Could you explain the motivation for why the usage of openssl should be disabled by default? I believe that's the wrong choice for most of our users as that disables support for SSL/TLS postgres connections in libpq. |
stormshield-gt
force-pushed
the
make_usage_of_openssl_optional
branch
from
466c4fb to
0b48f9b
Compare
|
Thanks for the review.
It was for not adding an extra feature flag into [dependencies]
pq-src = { version = "0.3.0", features = ["with-openssl"] }But I guess I was wrong as
All right, I enabled the support for |
stormshield-gt
force-pushed
the
make_usage_of_openssl_optional
branch
from
0b48f9b to
1693f9e
Compare
README.md
Outdated
| Another option to compile `libpq` from source without enabling `openssl` usage is to add the `pq-src` crate with no default features to | ||
| your crate dependencies and not using the `bundled` feature of `pq-sys`: | ||
| ```toml | ||
| [dependencies] | ||
| pq-src = { version = "0.3.0", default-features = false } | ||
| ``` |
There was a problem hiding this comment.
I'm sorry but that won't work as cargo unifies features across your dependency graph. So if you depend on pq-sys with the bundled feature enabled that will automatically enable the default features for pq-src as well (as we have no default-features = false there).
Thinking a bit more about that and given that we want to have openssl by default I think the best solution here is to have a disable-openssl feature on pq-src that can be explicitly enabled and that disables using openssl. The documentation for that feature should be explicit about the fact that this will disable support for SSL/TLS based postgres connections, so this feature likely will break things with non-local postgres installations.
There was a problem hiding this comment.
I believe the feature unification problem can also happen with the disable-openssl feature.
- if a dependency activates the
disable-opensslfeature, someone could lose the support for TLS when compilingpq-src - if a dependency activates the
with-opensslfeature or use default-feature or use thebundledfeature ofpq-sys, someone could become to compileopenssl
In my opinion, it's better to accidentally gain support for TLS than to lose it.
Anyway, I don't feel strongly about this and would be happy to add a disable-openssl feature.
There was a problem hiding this comment.
You are correct that the same unification problem still exists with the disable-openssl approach. That written: I would expect that this is a option that is only set by a top level application crate that want's to control the whole dependency chain. I do not expect that libraries will enable this feature.
In my opinion, it's better to accidentally gain support for TLS than to lose it.
Well that really depends on your motivation. I just know that having an enabled by default feature would be essentially impossible to disable for any user and that an opt-in feature (with-openssl) would require that the vast majority of users explicitly enable that feature. Therefore an explicit opt out seems in my opinion like the best solution.
There was a problem hiding this comment.
I just know that having an enabled by default feature would be essentially impossible to disable for any user
Right now as diesel don't use pq-src directly on regular dependency this is OK, but I agree if a crate that depends on pq-src/pq-sys and is not that cautious, that would be a problem. Basically, a PR would be need to be made to not do so, or to re-export a feature to be able to disable openssl.
Therefore an explicit opt out seems in my opinion like the best solution.
After reading your comment, I also think this might be the best solution, but I don't see how I would implement this, because there is AFAIK no way to disable a dependency based on a feature flag.
So if the disable-openssl feature is activated, I can't disable the dependency on openssl-sys.
I see several solutions
- accept the dependency on
openssl-syseven with thedisable-opensslfeature is activated - let the current implementation as it works with
diesel, but might require other PR to other projects based on the needs
There was a problem hiding this comment.
Ah, yes I totally missed that. This makes things even worse :(
At that point: Mind explaining why you want to build libpq without openssl support at all? Maybe the underlying problem can/should be addressed in a different way?
There was a problem hiding this comment.
At that point: Mind explaining why you want to build libpq without openssl support at all? Maybe the underlying problem can/should be addressed in a different way?
Basically, it's to optimize compile time. We only use diesel in a safe environment that doesn't need HTTPS and so to compile the whole openssl library. On average it adds 1m30 on a compilation from scratch.
Since #60 we are not obligated to compile openssl, but sadly a lot of package managers only provide the version 1 of openssl and not the 3, so it's a pain to get the right version of it in every building environment. If we could just disable openssl it would be perfect, as we rather not pay for a functionality we don't use. Besides the original libpq already provides this functionality, so I guess it makes sense to just reexport it.
Regarding the two proposed solutions:
opensslopt-out throughno-default-features = false(current): after analyzing the download on crate io (here and here),dieselis the only consumer ofpq-sys. So the current solution works for most of the use cases.opensslopt-out through a feature (disable-openssl): I've made a separate commit that implement that version so we can easily compare. Asopenssl-sysonly contains a bunch of symbols, I think most of it will probably be discarded by the linker, so I guess it's OK.
In any case, thanks for taking the time to discuss it
There was a problem hiding this comment.
Thanks for clarifying. Just to double check: Disabling openssl does then not run the build script anymore, right?
|
I think we also need to put a |
README.md
Outdated
| @@ -35,6 +35,12 @@ If pkg-config is being used, it's configuration options will apply. | |||
|
|
|||
| * `buildtime_bindgen`: Run `bindgen` at build-time to generate bindings using installed headers. Not compatible with the `bundled` feature. | |||
| * `bundled`: Build the bundled version of `libpq` from source. | |||
| Another option to compile `libpq` from source without enabling `openssl` usage is to add the `pq-src` crate with `disable-openssl` features to | |||
| your crate dependencies and not using the `bundled` feature of `pq-sys`: | |||
There was a problem hiding this comment.
This comment should be more explicit about what are the implications of enabling this feature. It should more or less literally say, that this disables the SSL support in libpq, so that you cannot connect to database requiring SSL anymore.
There was a problem hiding this comment.
Thanks for the suggestion, I reworded the comment
stormshield-gt
force-pushed
the
make_usage_of_openssl_optional
branch
3 times, most recently
from
aa0f459 to
34f6753
Compare
stormshield-gt
force-pushed
the
make_usage_of_openssl_optional
branch
from
34f6753 to
1159ebd
Compare
|
Thanks for the review, indeed the build script is still run even with #[cfg(not(feature = "diable-openssl")]
extern crate openssl_sysSo the only solution is to make this opt-out through Please let me know what you think. |
There was a problem hiding this comment.
Thanks for the update, this looks ok now. I think that's the best solution we can currently implement.
Thanks again for your patience and the will to try out different solutions. I will try to cut a release in the next few days.
(I've pushed a minor fixup commit)
|
Published as 0.6.2 |
Add the possibility to disable the usage of
opensslwhen buildinglibpqfrom source.