Ubuntu
nut package

NUT License prevents distribution of SSL-enabled builds

Bug #1014347 reported by dobey
16
This bug affects 3 people
Affects Status Importance Assigned to Milestone
nut (Fedora)
Fix Released
Medium
nut (Ubuntu)
Fix Released
Low
Arnaud Quette

Bug Description

Due to NUT being licensed under GPLv2, GPLv3, and GPLv1 or later, and the code for SSL support using OpenSSL, the packages of NUT cannot be distributed with support for SSL communication between client and server. To be able to do so, a special exception to the licenses used in NUT needs to be added, to allow linking with, and distributing, SSL-enabled binaries. An alternative solution is to use a different SSL implementation which is released under a license compatible with the GNU GPL, such as GnuTLS.

ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: nut-client 2.6.3-1ubuntu1.1
ProcVersionSignature: Ubuntu 3.2.0-25.40-generic-pae 3.2.18
Uname: Linux 3.2.0-25-generic-pae i686
NonfreeKernelModules: nvidia
ApportVersion: 2.0.1-0ubuntu8
Architecture: i386
Date: Sun Jun 17 12:10:15 2012
SourcePackage: nut
UpgradeStatus: Upgraded to precise on 2012-01-12 (156 days ago)

Revision history for this message
In , Peter (peter-redhat-bugs) wrote :

nut should be ported to use NSS library for cryptography.
See the tracking bug for details and links on how it could be done.

Revision history for this message
In , Michal (michal-redhat-bugs) wrote :

upstream started to work on this:
http://svn.debian.org/wsvn/nut/branches/ssl-nss-port/

Revision history for this message
dobey (dobey) wrote :
Revision history for this message
Arnaud Quette (aquette) wrote :

We (NUT upstream) are working on fixing this long term issue.
The option we've chosen is to propose a 2nd implementation, beside of OpenSSL, using Mozilla NSS.
There is a branch available, that is currently under heavy testing:
https://github.com/aquette/nut/tree/ssl-nss-port-CFL

This will be available in NUT 2.8.0 (exact release date to be defined)

Changed in nut (Ubuntu):
assignee: nobody → Arnaud Quette (aquette)
status: New → In Progress
Kate Stewart (kate.stewart)
tags: added: rls-q-incoming
James Page (james-page)
Changed in nut (Ubuntu):
importance: Undecided → Low
James Page (james-page)
tags: added: rls-q-notfixing
removed: rls-q-incoming
Revision history for this message
In , Arnaud (arnaud-redhat-bugs) wrote :

This task is now completed upstream:
https://alioth.debian.org/pm/task.php?func=detailtask&project_task_id=456&group_id=30602&group_project_id=315

Revision history for this message
dobey (dobey) wrote :

This seems to have landed in upstream 2.7 at some point, and the packages in Ubuntu are already building with NSS for SSL.

Changed in nut (Ubuntu):
status: In Progress → Fix Released
Revision history for this message
In , Mike (mike-redhat-bugs) wrote :

This bug was accidentally moved from POST to MODIFIED via an error in automation, please see <email address hidden> with any questions

Bug Watch Updater (bug-watch-updater)
Changed in nut (Fedora):
importance: Unknown → Medium
status: Unknown → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.