[Webkit-unassigned] [Bug 162913] [GTK][EFL] CryptoDigest implementation depends on GnuTLS with LGPLv3+/GPLv2+ deps
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Oct 5 05:02:31 PDT 2016
https://bugs.webkit.org/show_bug.cgi?id=162913
--- Comment #1 from Olivier Blin <olivier.blin at softathome.com> ---
On #webkitgtk+, we considered the following crypto libraries:
- openssl
* actively maintained
* usually available on desktop and embedded systems
* ASM optimizations
* hardware acceleration and secure certificates management through custom engines
* Apache license is not compatible with GPLv2, unless an exception is added by GPL users
- libgcrypt
* actively maintained
* usually available on Linux systems (pulled by systemd, cryptsetup)
* optimizations: ASM for many platforms (including AArch64), ARMv7/NEON
* requires the small libgpg-error library
* license is OK: library is LGPLv2, only tools are GPLv2
- NSS
* actively maintained
* usually available on desktop systems
* no ASM optimizations for digest and AES (to confirm?)
* requires the NSPR platform abstraction library
* MPL 2.0 license should be ok
- forking coreutils' functions for checksums tools
* license is GPLv2, not usable for WebKitGTK+
- mhash
* no release since end of 2008
* written Nikos Mavroyanopoulos (original GnuTLS author) and Sascha Schumannby
* packaged in Linux distributions, but seldomly used
* license is OK: LGPLv2
- sphlib
* no clear view on maintenance, no public repo
* seldomly used
* written for the French Government
* license is OK, MIT-like
- libtomcrypt
* no activity since 2010
* written in C, no ASM optimizations
* license is OK, public domain
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161005/540babfd/attachment-0001.html>
More information about the webkit-unassigned
mailing list