On Mon, Jul 19, 2010 at 20:59:47 +0200, Christian Kastner wrote: > Hi, > > On 01/-10/-28163 08:59 PM, Alexander Reichle-Schmehl wrote: > >> The authors are: > >> > >> // SHA-1 SSE2 implementation, (C) 2008 Alvaro Salmador > >> (napla...@msn.com), ported from Simon Marechal's SHA-1 MMX > >> // SHA-1 MMX implementation, (C) 2005 Simon Marechal (si...@banquise.net) > >> > >> Missing licence has been forwarded to upstream, see [1] > >> for details > > > > > > FWIW: There seems to be a GPLed version of that code floating arround, > > see for example > > http://pyrit.googlecode.com/svn-history/r150/trunk/pyrit/cpyrit/_cpyrit_cpu_sse2.S. > > However, I couldn't really trace that file back, but perhaps it helps > > nonetheless. > > I'm packaging Pyrit for Debian, that's how I noticed the missing > copyright. I initially traced this file back to aircrack-ng, and thought > the cause was there. > > In the meantime, my upstream has informed me that he had independently > confirmed GPLv3+ with Alvaro prior to inclusion in Pyrit, but I do not > know as of yet the status regarding Simon. > > I pointed my upstream to the aircrack-ng ticket, and will reply here as > soon as I find out more. > Can't these packages use libcrypto (not gpl-compatible, so maybe not the best idea in all cases) or libgcrypt or some other crypto library instead of having their own sha1 implementations?
Cheers, Julien
signature.asc
Description: Digital signature
