[
https://issues.apache.org/jira/browse/GEODE-2303?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15828815#comment-15828815
]
Jacob S. Barrett commented on GEODE-2303:
-----------------------------------------
While it is true that we don't ship OpenSSL we are dependent on it for SSL
connections to the server. It is also true that we don't currently link
directly to OpenSSL but we link to ACE_SSL which in turn is dynamically linked
to OpenSSL. What this means for including license statements is an exercise for
the lawyers but should be similar in nature to Apache httpd. Apache httpd
project does not call out OpenSSL in its LICENSE or NOTICE files.
In my previous experiences any use of crypto, directly or indirectly, requires
export control. We should be able to just consider ourselves in the Geode
Project ECCN.
> Review openssl linking
> ----------------------
>
> Key: GEODE-2303
> URL: https://issues.apache.org/jira/browse/GEODE-2303
> Project: Geode
> Issue Type: Sub-task
> Components: native client
> Reporter: Anthony Baker
>
> Since we link to the openssl library, we should assess whether an ECCN is
> required.
> https://www.apache.org/licenses/exports/
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
