[Openvpn-devel] Add warning about mbed TLS licensing problem

Message ID 20220216135716.6541-1-maximilian.fillinger@foxcrypto.com
State Superseded
Headers show
Series
  • [Openvpn-devel] Add warning about mbed TLS licensing problem
Related show

Commit Message

Max Fillinger Feb. 16, 2022, 1:57 p.m.
Signed-off-by: Max Fillinger <maximilian.fillinger@foxcrypto.com>
---
 README.mbedtls | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

Comments

Илья Шипицин Feb. 16, 2022, 2:45 p.m. | #1
+Support for mbed TLS is likely to be removed in OpenVPN 2.17.

2.7 ?

ср, 16 февр. 2022 г. в 19:13, Max Fillinger <
maximilian.fillinger@foxcrypto.com>:

> Signed-off-by: Max Fillinger <maximilian.fillinger@foxcrypto.com>
> ---
>  README.mbedtls | 17 +++++++++++++++++
>  1 file changed, 17 insertions(+)
>
> diff --git a/README.mbedtls b/README.mbedtls
> index 4875822d..b5604bb8 100644
> --- a/README.mbedtls
> +++ b/README.mbedtls
> @@ -11,6 +11,23 @@ This version depends on mbed TLS 2.0 (and requires at
> least 2.0.0).
>
>  *************************************************************************
>
> +Warning:
> +
> +As of version 2.17, mbed TLS can be licensed *only* under the Apache v2.0
> +license. That license is incompatible with OpenVPN's GPLv2.
> +
> +If you wish to distribute OpenVPN linked with mbed TLS, there are two
> options:
> +
> + * Ensure that your case falls under the system library exception in
> GPLv2, or
> +
> + * Use an earlier version of mbed TLS. Version 2.16.12 is the last release
> +   that may be licensed under GPLv2. Unfortunately, this version is
> +   unsupported and won't receive any more updates.
> +
> +Support for mbed TLS is likely to be removed in OpenVPN 2.17.
> +
> +*************************************************************************
> +
>  Due to limitations in the mbed TLS library, the following features are
> missing
>  in the mbed TLS version of OpenVPN:
>
> --
> 2.20.1
>
>
>
> _______________________________________________
> Openvpn-devel mailing list
> Openvpn-devel@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openvpn-devel
>
<div dir="ltr"><div dir="ltr">+Support for mbed TLS is likely to be removed in OpenVPN 2.17.<br></div><div dir="ltr"><br></div><div dir="ltr">2.7 ?</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">ср, 16 февр. 2022 г. в 19:13, Max Fillinger &lt;<a href="mailto:maximilian.fillinger@foxcrypto.com">maximilian.fillinger@foxcrypto.com</a>&gt;:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Signed-off-by: Max Fillinger &lt;<a href="mailto:maximilian.fillinger@foxcrypto.com" target="_blank">maximilian.fillinger@foxcrypto.com</a>&gt;<br>
---<br>
 README.mbedtls | 17 +++++++++++++++++<br>
 1 file changed, 17 insertions(+)<br>
<br>
diff --git a/README.mbedtls b/README.mbedtls<br>
index 4875822d..b5604bb8 100644<br>
--- a/README.mbedtls<br>
+++ b/README.mbedtls<br>
@@ -11,6 +11,23 @@ This version depends on mbed TLS 2.0 (and requires at least 2.0.0).<br>
<br>
 *************************************************************************<br>
<br>
+Warning:<br>
+<br>
+As of version 2.17, mbed TLS can be licensed *only* under the Apache v2.0<br>
+license. That license is incompatible with OpenVPN&#39;s GPLv2.<br>
+<br>
+If you wish to distribute OpenVPN linked with mbed TLS, there are two options:<br>
+<br>
+ * Ensure that your case falls under the system library exception in GPLv2, or<br>
+<br>
+ * Use an earlier version of mbed TLS. Version 2.16.12 is the last release<br>
+   that may be licensed under GPLv2. Unfortunately, this version is<br>
+   unsupported and won&#39;t receive any more updates.<br>
+<br>
+Support for mbed TLS is likely to be removed in OpenVPN 2.17.<br>
+<br>
+*************************************************************************<br>
+<br>
 Due to limitations in the mbed TLS library, the following features are missing<br>
 in the mbed TLS version of OpenVPN:<br>
<br>
-- <br>
2.20.1<br>
<br>
<br>
<br>
_______________________________________________<br>
Openvpn-devel mailing list<br>
<a href="mailto:Openvpn-devel@lists.sourceforge.net" target="_blank">Openvpn-devel@lists.sourceforge.net</a><br>
<a href="https://lists.sourceforge.net/lists/listinfo/openvpn-devel" rel="noreferrer" target="_blank">https://lists.sourceforge.net/lists/listinfo/openvpn-devel</a><br>
</blockquote></div>
Gert Doering Feb. 16, 2022, 2:50 p.m. | #2
Hi,

On Wed, Feb 16, 2022 at 07:45:20PM +0500, ???????? ?????????????? wrote:
> +Support for mbed TLS is likely to be removed in OpenVPN 2.17.

We have a very long-term planning horizon these days!

gert

Patch

diff --git a/README.mbedtls b/README.mbedtls
index 4875822d..b5604bb8 100644
--- a/README.mbedtls
+++ b/README.mbedtls
@@ -11,6 +11,23 @@  This version depends on mbed TLS 2.0 (and requires at least 2.0.0).
 
 *************************************************************************
 
+Warning:
+
+As of version 2.17, mbed TLS can be licensed *only* under the Apache v2.0
+license. That license is incompatible with OpenVPN's GPLv2.
+
+If you wish to distribute OpenVPN linked with mbed TLS, there are two options:
+
+ * Ensure that your case falls under the system library exception in GPLv2, or
+
+ * Use an earlier version of mbed TLS. Version 2.16.12 is the last release
+   that may be licensed under GPLv2. Unfortunately, this version is
+   unsupported and won't receive any more updates.
+
+Support for mbed TLS is likely to be removed in OpenVPN 2.17.
+
+*************************************************************************
+
 Due to limitations in the mbed TLS library, the following features are missing
 in the mbed TLS version of OpenVPN: