[gnutls-devel] dane - limited usability die to (indirect) OpenSSL dependency
Nikos Mavrogiannopoulos
nmav at gnutls.org
Fri Feb 28 21:32:14 CET 2014
On 12/28/2013 03:34 PM, Nikos Mavrogiannopoulos wrote:
>> [1] I am aware that there are divided opinions on this subject. e.g.
>> Fedora uses the system library exeption clause for OpenSSL.
>> <https://fedoraproject.org/wiki/Licensing:FAQ?rd=Licensing/FAQ#What.27s_the_deal_with_the_OpenSSL_license.3F>
>> But e.g. Debian has always tried to not ship GPL software linked
>> against OpenSSL and although this might change would not count on it.
> I understand Debian's approach but I cannot think of anything I could do
> in gnutls-dane to solve that. While I'd be happy to drop unbound and use
> another library for dnssec resolving, I know of no other alternatives.
I realized that dnsmasq uses nettle to provide dnssec support. If
someone could make a small library out of it, we could simply switch to
it from unbound.
regards,
Nikos
More information about the Gnutls-devel
mailing list