[Pkg-gtkpod-devel] New packages uploads to experimental

Sebastien Bacher seb128 at debian.org
Tue Jun 23 12:03:48 BST 2020


Hey there,

Le 23/06/2020 à 12:58, Yves-Alexis Perez a écrit :
>> About the issue at hand, I'm unsure what is the current Debian stands on the
>> OpenSSL license these days. The libssl backend is more tested upstream so it
>> might be worth migrating, but some that also means forcing the OpenSSL
>> license to some dowstream packages which might not be nice.
> Upcoming OpenSSL 3.0.0 has been relicensed to Apache License v2 so it should
> help (but maybe not for GPL-2 stuff) but we're not there yet, so better keep
> to gnutls for now.

Noted for the list, I will do that next time.

For some context the gnutls vs openssl came as part of that Ubuntu report
https://bugs.launchpad.net/ubuntu/+source/libimobiledevice/+bug/1854403

upstream equivalent
https://github.com/libimobiledevice/libimobiledevice/issues/941

The summary is basically
'If I build with gnutls, I can plug in, establish trust and browse
around just fine, but any attempt to copy a file to the device makes no
progress. Sits there at 0% forever.'

I was checking on other distributions and noticed that fedora switched
to build with openssl 'as the gnutls backend keeps breaking' so I was
wondering if we should do the same in Debian (and also Ubuntu)

What's the licensing issue exactly with using openssl there, the library
has a limited set of rdepends, do we expect switching would be an issue
for any of those?


Cheers,
Sebastien Bacher


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-gtkpod-devel/attachments/20200623/120d4433/attachment.html>


More information about the Pkg-gtkpod-devel mailing list