Tomas Mraz wrote:
My personal recommendation would be to follow the application's
upstream
recommendation.
This is of course the best approach, as the upstream project will have good reasons to use
a particular crypto foundation for the project.
What we should strive for is to limit the use of crypto to one of
these
three libraries and avoid any additional ones with exception of
libgcrypt for gnupg2.
This assumption ignores the fact that Cryptlib has joined Fedora and has
every right to be included in that list.
https://admin.fedoraproject.org/pkgdb/package/rpms/cryptlib/