tce-load -i nettle-dev libtasn1-dev p11-kit-dev texinfo cd gnutls-3.2.21 CC="gcc -flto -fuse-linker-plugin -mtune=generic -Os -pipe" CXX="g++ -flto -fuse-linker-plugin -mtune=generic -Os -pipe" ./configure --prefix=/usr/local --disable-static --localstatedir=/var --with-default-trust-store-file=/usr/local/etc/ssl/certs/ca-certificates.crt --with-unbound-root-key-file=/usr/local/etc/unbound/root.key find . -name Makefile -type f -exec sed -i 's/-g -O2/ /g' {} \; make sudo make install version: 3.2.21 shared 58:12:30 Host/Target system: x86_64-unknown-linux-gnu Build system: x86_64-unknown-linux-gnu Install prefix: /usr/local Compiler: gcc -flto -fuse-linker-plugin -mtune=generic -Os -pipe CFlags: -g -O2 Library types: Shared=yes, Static=no Local libopts: yes Local libtasn1: no Use nettle-mini: no configure: External hardware support: /dev/crypto: no Hardware accel: x86-64 PKCS#11 support: yes TPM support: no configure: Optional features: (note that included applications might not compile properly if features are disabled) DTLS-SRTP support: yes ALPN support: yes OCSP support: yes OpenPGP support: yes SRP support: yes PSK support: yes DHE support: yes ECDHE support: yes Anon auth support: yes Heartbeat support: yes Unicode support: yes Non-SuiteB curves: yes configure: Optional applications: crywrap app: no configure: Optional libraries: Guile wrappers: no C++ library: yes DANE library: no OpenSSL compat: yes configure: System files: Trust store pkcs11: Trust store file: /usr/local/etc/ssl/certs/ca-certificates.crt Blacklist file: CRL file: DNSSEC root key file: /usr/local/etc/unbound/root.key configure: WARNING: *** *** The DNSSEC root key file in /usr/local/etc/unbound/root.key was not found. *** This file is needed for the verification of DNSSEC responses. *** Use the command: unbound-anchor -a "/usr/local/etc/unbound/root.key" *** to generate or update it. ***