[gnutls-dev] Re: gnutls vs. openldap problems

Nikos Mavrogiannopoulos nmav at gnutls.org
Fri Aug 12 07:34:23 CEST 2005

Simon Josefsson wrote:
> Matthias Urlichs <smurf at smurf.noris.de> writes:
>>oenldap2 no longer compiles against gnutls.
>>The reason are the gnutls_x509_extract_certificate_* functions.
>>They now only are in gnutls-openssl, which contains GPL code and thus
>>cannot be linked with openldap2. Worse, the license in libextra/openssl.c
>>changed from LGPL to GPL.
>>Please consider reverting this and moving this code from libextra/ to lib/.

> Hi.  Sounds reasonable, except if there is a problem with those APIs.
> They look rather useful to me though.  Nikos, do we want to promote
> other APIs now?  In the same file, there is also
> gnutls_x509_verify_certificate, I wonder if it is good.

No this is an old and deprecated API and should not be used. If you
insist in using it you can just copy it to your code (it was under LGPL
in some versions of gnutls thus you can just copy it from there).


More information about the Gnutls-devel mailing list