Hi,
Kevin Kofler wrote:
Clemens Lang wrote:
> Note that we’re discussing moving openssl to a src-git approach, so it
> should eventually become much easier to see the relation between upstream
> code and our downstream copy.
At that point, you have the patent-encumbered files in your (src-)git
history. I do not think the src-git approach is legally possible at all
for these packages, at least not based on upstream git.
See Simo’s mail:
we are working towards removing hobbling and replacing with
compilation
switches that clearly and permanently disable questionable material in the
binaries.
HTH,
Clemens
--
Clemens Lang
RHEL Crypto Team
Red Hat