[OE-core] [PATCH 1/4] gnutls: improve reproducibility

[Andre McCurdy]

On Fri, Nov 17, 2017 at 5:08 PM, Christopher Larson <kergoth at gmail.com> wrote:
> On Fri, Nov 17, 2017 at 5:23 PM, Bystricky, Juro <juro.bystricky at intel.com>
> wrote:
>> > Is there a configure option we could use (perhaps via
>> > CACHED_CONFIGUREVARS) to achieve the same end result without needing
>> > to run sed on config.h?
>>
>> Sorry Andre, I am not quite sure I understand the question. Do you suggest
>> to have a "config.h"
>> cached somewhere instead of generating the file at build time?
>
> config.h is generally generated from config.h.in by the configure script
> (and the config.h.in is generated in some cases by autoheader), and the
> values of those defines are generally based on autoconf test results, which
> are often cached. By supplying different cached results to those tests, you
> can change the emitted config.h without having to explicitly and manually do
> so.

Yes, exactly that.

Looking at the gnutls configure script, it seems that POSIX_SHELL is
detected using a custom test (rather than using a standard autotools
macro) and doesn't respect any over-rides, so running sed on config.h
may indeed be the easiest approach, but you should confirm that first.

Note also that if POSIX_SHELL is used at all at run-time then setting
it to "bash" is probably not the right approach as gnutls has no
run-time dependency on bash (and so there's no guarantee that bash
will be available in the target rootfs). If POSIX_SHELL is only used
at build time and never gets embedded in the build output then perhaps
completely removing POSIX_SHELL from any headers etc installed by
gnutls may be a better fix than just removing the path?