Should we settle on one SSL implementation?

Pádraig Brady P at draigBrady.com
Mon Oct 22 12:36:06 UTC 2007


Bernardo Innocenti wrote:
> I remember this topic being discussed some time ago,
> but software is fluid and maybe it's time to respin
> the topic.
> 
> It would seem a worthwhile goal to unify SSL/TLS
> implementations like we did for spell checkers.
> Or, if it turns out to be too hard, at least it would
> be nice to their pki files.
> 
> We're now shipping no less than 4 different implementations
> of SSL:
> 
> - openssl (OpenBSD's implementation)
> - nss (Netscape's implementation)
> - gnutls (LGPL implementation)
> - puretls (Java implementation)
> 
> But which one should replace the others?
> 
> It is not clear to me.  Judging from dependencies, OpenSSL,
> NSS and gnutls all seem equally popular in Fedora.

Fedora is consolidating to NSS isn't it?
http://www.redhat.com/archives/fedora-devel-list/2007-August/msg01594.html

Pádraig.




More information about the fedora-devel-list mailing list