Clemens Lang wrote:
Note that we’re discussing moving openssl to a src-git approach, so
it
should eventually become much easier to see the relation between upstream
code and our downstream copy.
At that point, you have the patent-encumbered files in your (src-)git
history. I do not think the src-git approach is legally possible at all for
these packages, at least not based on upstream git. (You could of course
make your own git history with just code drops of the hobbled tarballs'
contents, but that makes the use of git much less useful.)
Kevin Kofler