Ubuntu
openssl package

Some patents have expired but still openssl package does not support them.

Bug #597984 reported by BWET_AC
24
This bug affects 4 people
Affects Status Importance Assigned to Milestone
openssl (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Binary package hint: openssl

Is it possible to recompile openssl and libssl with enable-IDEA enable-mdc2 and enable-camellia

because:

In http://www.openssl.org/support/faq.html:

FYI: Patent numbers and expiry dates of US patents: MDC-2: 4,908,861 13/03/2007 IDEA: 5,214,703 25/05/2010 RC5: 5,724,428 03/03/2015

therefore:

mdc-2 and IDEA patents expired.

Additionally the cipher "Camellia":

Royalty Free ===> http://en.wikipedia.org/wiki/Camellia_(cipher)

NTT and Mitsubishi have patents and pending patents on the Camellia
 algorithm, but allow use at no charge without requiring an explicit
 licensing agreement: http://info.isl.ntt.co.jp/crypt/eng/info/chiteki.html

In Fedora 13 "Camellia" is enable in default openssl package.

See original description
BWET_AC (drakul55)
description: updated
description: updated
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in openssl (Ubuntu):
status: New → Confirmed
Revision history for this message
Maarten Bezemer (veger) wrote :

Camellia is also enabled in up-to-date Ubuntu packages, the list of ciphers show:
 camellia-128-cbc
 camellia-128-ecb
 camellia-192-cbc
 camellia-192-ecb
 camellia-256-cbc
 camellia-256-ecb

The other two still seems to be disabled...?

Revision history for this message
Adrien Nader (adrien) wrote :

Camellia is available IIRC although it is going away. IDEA already went away in real-world scenarios (but it might be available anyway) and MDC-2 is something I hadn't heard of before now.

I'm marking this as Invalid because there is no single Status meaningful here since this mentions three different algorithms and three different tickets would therefore be needed to properly express the outcome.

Changed in openssl (Ubuntu):
status: Confirmed → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.