It's not so easy...

Posted Feb 17, 2011 5:10 UTC (Thu) by khim (subscriber, #9252)
In reply to: PostgreSQL, OpenSSL, and the GPL by josh
Parent article: PostgreSQL, OpenSSL, and the GPL

If the OpenSSL license really comes down to a single developer objecting, with all other developers not caring about it, then perhaps someone could take the time to document precisely the contributions of that developer for wholesale rewriting?

If only it were so easy. First of all: it's not "a single developer", it's two: Eric A. Young and Tim Hudson. And these are the guys who wrote the whole thing initially! It'll be very-very hard to rip all that code out, believe me. Not impossible, but "rewrite from scratch" will be simpler approach - and it was done quite few times. You only need to pick suitable library...

It's not so easy...

Posted Feb 17, 2011 6:48 UTC (Thu) by josh (subscriber, #17465) [Link]

Fair enough. Sounds like a compatibility layer for GnuTLS or NSS will prove far easier.

It's not so easy...

Posted Feb 18, 2011 5:21 UTC (Fri) by samroberts (subscriber, #46749) [Link]

And they work for RSA, who sells a commercial competitor to OpenSSL. They may have a financial disinterest in making OpenSSL easier to use, its not simply ego-stroking.

The problem with ossl is that horrid and old-school as the C API is (and the command line interface isn't much better), there is a HUGE amount of valuable code in it supporting tons of crypto algorithms and formats with very fast implementations and years and years of interoperability testing and hacks.