[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Proposed OpenSSL linking exception

In the thread "ITP: libressl", the OpenSSL linking exception was
discussed.  This is of great interest to people who would think that
LibreSSL may be a long-term viable fork of OpenSSL, because many
statements of the OpenSSL exception do not explicitly to permit linking
with modified and/or renamed versions of OpenSSL.  It would be better if
their wording did explicitly permit this.

However, as Joey Hess noted, in practice Debian already treats any
OpenSSL linking exception as allowing linking of Debian's modified
version of OpenSSL.
[summarizing https://lists.debian.org/debian-devel/2014/07/msg00564.html]

In any case, your upstream might consider this exception, which "can be
found in at least wget and GnuPG":
| In addition, as a special exception, <copyright holder> gives permission to
| link the code of <project> with the OpenSSL project's "OpenSSL" library (or
| with modified versions of it that use the same license as the "OpenSSL"
| library), and distribute the linked executables. You must obey the GNU General
| Public License in all respects for all of the code used other than "OpenSSL".
| If you modify this file, you may extend this exception to your version of the
| file, but you are not obligated to do so. If you do not wish to do so, delete
| this exception statement from your version.
[from http://mid.gmane.org/20140722013130.GA14673%40gauss.olasd.eu]


Reply to: