Re: Core dump caused by misusing openssl in multithread scenario!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sat, Oct 06, 2012 at 08:14:09PM +0200, Matthias Bolte wrote:
> 2012/10/2 Benjamin Wang (gendwang) <gendwang@xxxxxxxxx>:
> > Hi Daniel,
> >    Is this problem fixed in the latest version? What about the question 2 which related to openssl callbacks in multi-thread?
> 
> As Daniel said, we cannot assume that libcurl was build with OpenSSL
> backend. We would need some way to detect this first.
> 
> Also, wasn't there a license problem with OpenSSL and the (L)GPL? Can
> libvirt legally be used with a libcurl that is linked with OpenSSL?

The OpenSSL vs GPL license compatibility is a subject of much debate
amongst lawyers, so the answer you get depends on who you ask. IANAL,
but my personal reading is that the OpenSSL license is *not* compatible
with the (L)GPL. Thus as a libvirt copyright holder my position is that
libvirt must only be used with a libcurl that links to either NSS or
GNUTLS, and *not* OpenSSL.

Regards,
Daniel
-- 
|: http://berrange.com      -o-    http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org              -o-             http://virt-manager.org :|
|: http://autobuild.org       -o-         http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org       -o-       http://live.gnome.org/gtk-vnc :|

--
libvir-list mailing list
libvir-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/libvir-list


[Index of Archives]     [Virt Tools]     [Libvirt Users]     [Lib OS Info]     [Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]     [Fedora Tools]