On Thu, Oct 30, 2014 at 4:48 PM, Giuseppe Scrivano <[email protected]> wrote: > Tim Rühsen <[email protected]> writes: > >> as I wrote to Mike: It is the OpenSSL code within Wget. Wget compiled with >> GnuTLS does not show any problems. > > and this remembers us that maintaining two different backends is not a > good idea. I am for just moving to GNU TLS and forget about OpenSSL. > It is a bit drastic but I think it is a better move for the long term. > And we get rid of the copyright exception as well... > > What you all think?
I think OpenSSL is being used by way too many of our users as a SSL backend and that we should continue to support it. Despite what the project aimed for, GNUTLS has not managed to gain the adoption / popularity that OpenSSL enjoys. In my opinion, we should clean up our code-base and ensure that everything works with a good set of unit tests. Maintaining two backends for OpenSSL and GNUTLS may be difficult, but it is something we must work with. More people use Wget with the OpenSSL backend than the number of people who use Wget on WIndows + VMS. Yet we continue to support those architectures and want to eliminate OpenSSL? Yes, it's hard, but we only need to up the ante and clean up the code base, not run away from the real problem and simply drop OpenSSL. -- Thanking You, Darshit Shah
