[debian-mysql] Bug#761911: Bug#761911: mariadb-server-core-5.5: MariaDB lacks documentation of OpenSSL exception to GPL

Wed Sep 17 22:11:42 UTC 2014

Excerpts from Otto Kekäläinen's message of 2014-09-17 13:02:46 -0700:
> Hello!
> 
> The copyright file at
> http://anonscm.debian.org/cgit/pkg-mysql/mariadb-5.5.git/tree/debian/copyright
> already includes in the comment a paragraph about "FOSS License
> Exception" and on line 111 OpenSSL is specifically mentioned.
> 
> This is perhaps the wrong format?
> 
> Is this bug report a reminder to yourself to look at the issue some
> day (you have commit rights to the repo and you are the author of the
> above mentioned paragraph) or do you want me to do something? I am
> happy to help, I am not just sure what I am expected to do here.
> 

The above mentioned stuff was about the client libraries, and not about
the server daemon.

Quoting from the copyright file:

 MySQL FOSS License Exception We want free and open source
 software applications under certain licenses to be able to use
 specified GPL-licensed MySQL client libraries despite the fact
 that not all such FOSS licenses are compatible with version
 2 of the GNU General Public License.  Therefore there are
 special exceptions to the terms and conditions of the GPLv2
 as applied to these client libraries, which are identified
 and described in more detail in the FOSS License Exception at
 <http://www.mysql.com/about/legal/licensing/foss-exception.html>.

Note _GPL-licensed MySQL client libraries_.

This does not cover the server process.

> 
> Should I add to line 134 the parapraph below?
> **
>  On Debian based systems the full text of the GNU General Public License version
>  2 can be found in the file `/usr/share/common-licenses/GPL-2`.
>  .
>  In addition, as a special exception, the copyright holders give
>  permission to link the code of portions of this program with the
>  OpenSSL project's "OpenSSL" library (or with modified versions of it
>  that use the same license as the "OpenSSL" library), and distribute
>  the linked executables.  You must obey the GNU General Public License
>  in all respects for all of the code used other than "OpenSSL".  If you
>  modify this file, you may extend this exception to your version of the
>  file, but you are not obligated to do so.  If you do not wish to do
>  so, delete this exception statement from your version.
> **

Where did this text come from?

> 
> About cyassl: I am working on it to find out the correct "-DWITH_SSL=" syntax.

It's entirely possible that it won't work, as YaSSL and CYaSSL are
slightly different, but both implement an OpenSSL compatible API.

We can table that if we have actual copyright holder permission to link
OpenSSL to MariaDB's server process, which I wasn't aware we had.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-mysql-maint/attachments/20140917/d53c38a1/attachment-0001.sig>