Hi, > the OpenSSL ./. GPL problem (if one sees it as a problem) is larger
There may be an alternative for some cases mentioned here. The wolfSSL encryption library is a FIPS-certified, commercial product with a fully usable, although incomplete, OpenSSL compatibility layer. The developers are very friendly toward open-source. One of them uses Ubuntu. Licensed under the GPL (or alternatively proprietary terms), wolfSSL avoids the linking problems OpenSSL has been trying to shed for years. wolfSSL is popular in embedded systems. If you bought an appliance or a car in the past ten years, you are probably using it already. In the enterprise space, MariaDB ships with an older, captive version. For a long time, MySQL relied on it (then called cyaSSL). I do not know if PostgreSQL can use it. Here is a list of projects that have been officially ported. [1] Daniel Stenberg, the creator of cURL, works there. I see the developers from time to time and receive free support. The library has been in Debian for five years. Kind regards Felix Lechner [1] https://www.wolfssl.com/community/