Author meador.inge
Recipients jcea, meador.inge, naif, pitrou, python-dev
Date 2011-12-21.05:18:25
SpamBayes Score 0.00173664
Marked as misclassified No
Message-id <1324444706.49.0.536796349625.issue13627@psf.upfronthosting.co.za>
In-reply-to
Content
ECC is *not* available in the OpenSSL package provided on RedHat systems.  RedHat intentionally strips it due to patent concerns (http://en.wikipedia.org/wiki/ECC_patents).  Therefore committing this work made it much more difficult to build the ssl module on RedHat systems.

I couldn't find a clear statement of this in any RedHat documentation, but I did find a few references to the stripping in these places:

   * https://bugzilla.redhat.com/show_bug.cgi?format=multiple&id=623483
   * https://www.martineve.com/2011/07/22/using-elliptical-curve-cryptography-in-openssh/
   * https://bugzilla.redhat.com/show_bug.cgi?id=615372

Perhaps we should make these algorithms build conditional?  Are these patent issues of concern to us?
History
Date User Action Args
2011-12-21 05:18:26meador.ingesetrecipients: + meador.inge, jcea, pitrou, python-dev, naif
2011-12-21 05:18:26meador.ingesetmessageid: <1324444706.49.0.536796349625.issue13627@psf.upfronthosting.co.za>
2011-12-21 05:18:25meador.ingelinkissue13627 messages
2011-12-21 05:18:25meador.ingecreate