On 11/27/2013 09:16 PM, Jerry James wrote:
> On Wed, Nov 27, 2013 at 10:51 AM, Rex Dieter wrote:
>> Jerry James wrote:
>>
>>> The third option is OpenSSL, whose license is GPL-incompatible, and so
>>> not an option for us.
>>
>> at least in fedora, openssl is considered a "system library" (for gpl
On 11/27/2013 05:46 PM, Dan Williams wrote:
On Wed, 2013-11-27 at 09:27 -0700, Jerry James wrote:
The second option is gnutls, which is various flavors of GPL and LGPL,
and so is fine for us. We did have one developer wonder why gnutls is
preferred over openssl, though. Can anyone answer that
On 11/27/2013 10:46 AM, Dan Williams wrote:
> On Wed, 2013-11-27 at 09:27 -0700, Jerry James wrote:
>> The second option is gnutls, which is various flavors of GPL and LGPL,
>> and so is fine for us. We did have one developer wonder why gnutls is
>> preferred over openssl, though. Can anyone answ
On Wed, Nov 27, 2013 at 10:51 AM, Rex Dieter wrote:
> Jerry James wrote:
>
>> The third option is OpenSSL, whose license is GPL-incompatible, and so
>> not an option for us.
>
> at least in fedora, openssl is considered a "system library" (for gpl
> purposes).
>
> Probably a good idea to consult f
On Wed, Nov 27, 2013 at 9:46 AM, Dan Williams wrote:
> You answered that just below; because OpenSSL is GPL incompatible.
> Since gnutls is LGPL, it can be used in most places openssl can be used,
> *plus* it can be used with GPL software. Obviously, consult your
> lawyers for the specifics of yo
Jerry James wrote:
> The third option is OpenSSL, whose license is GPL-incompatible, and so
> not an option for us.
at least in fedora, openssl is considered a "system library" (for gpl
purposes).
Probably a good idea to consult fedora legal list instead (you'll likely get
a better answer ther
Dan Williams wrote:
libgcrypt is actually just basic crypto, not TLS. gnutls is based on
libgcrypt. So it's not an alternative to anything above for TLS stuff,
but you'll get it anyway if you choose gnutls.
I'd also like to add that GnuTLS 3.x (Fedora 19+) defaults to using nettle
instead of
On Wed, 2013-11-27 at 09:27 -0700, Jerry James wrote:
> For one package for which I am part of upstream, we are talking about
> adding TLS support. The upstream project is GPLv3+. We're looking at
> the preferred list of crypto implementations on
> http://fedoraproject.org/wiki/FedoraCryptoConsol
