<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html;charset=ISO-8859-1">
<title></title>
</head>
<body text="#000000" bgcolor="#ffffff">
<h4>I have drafted a combined answer for current FAQ topics 1.2 <br>
</h4>
<h4>and 1.3. Any comments and suggestions are welcome.<br>
</h4>
<br>
Aleksey<br>
<br>
<h4>1.2. Can I use xmlsec with proprietary application or library? <br>
Can I use xmlsec with a GNU GPL application or library?</h4>
XML Security Library is released under the <a
href="http://www.opensource.org/licenses/mit-license.html">MIT license</a>
which <br>
allows you to link it with proprietary applications as well as with <br>
GPLed code. However, xmlsec library is based on other libraries <br>
and you should look at all the licenses to get the full picture. The <br>
table bellow summarizes my understanding of the situation. You <br>
might want to talk with your lawyer to confirm that it is correct.<br>
<br>
<table cellpadding="2" cellspacing="2" border="1"
style="text-align: left; width: 85%;">
<tbody>
<tr>
<td style="vertical-align: top;"><br>
</td>
<td style="vertical-align: top;">Dependencies<br>
</td>
<td style="vertical-align: top;">Dependencies License<br>
</td>
<td style="vertical-align: top;">Using with proprietary
applications/libraries<br>
</td>
<td style="vertical-align: top;">Using with GPL
applications/libraries<br>
</td>
</tr>
<tr>
<td style="vertical-align: top;">xmlsec-core<br>
</td>
<td style="vertical-align: top;"><a href="http://xmlsoft.org">LibXML2</a>/<a
href="http://xmlsoft.org/XSLT">LibXSLT</a></td>
<td style="vertical-align: top;"><a
href="http://www.opensource.org/licenses/mit-license.html">MIT License</a></td>
<td style="vertical-align: top;">Yes.<br>
</td>
<td style="vertical-align: top;">Yes.<br>
</td>
</tr>
<tr>
<td style="vertical-align: top;">xmlsec-openssl (also requires
xmlsec-core library)<br>
</td>
<td style="vertical-align: top;"><a href="http://www.openssl.org">OpenSSL<br>
</a></td>
<td style="vertical-align: top;">OpenSSL License<br>
</td>
<td style="vertical-align: top;">Yes.<br>
</td>
<td style="vertical-align: top;">May be. <a
href="http://www.openssl.org/support/faq.cgi#LEGAL2">OpenSSL FAQ</a>
states that OpenSSL library is covered by a <a
href="http://www.gnu.org/licenses/gpl-faq.html#WritingFSWithNFLibs">special
GPL exception</a> thus it could be used in GPLed
applications/libraries. However, some people think that this is not
true (<a
href="http://lists.debian.org/debian-legal/2002/debian-legal-200210/msg00173.html">one</a>
and <a
href="http://lists.debian.org/debian-legal/2002/debian-legal-200205/msg00127.html">two</a>).
</td>
</tr>
<tr>
<td style="vertical-align: top;">xmlsec-gnutls (also requires
xmlsec-core library) </td>
<td style="vertical-align: top;"><a
href="http://www.gnu.org/software/gnutls/">GnuTLS</a><br>
</td>
<td style="vertical-align: top;"><a
href="http://www.opensource.org/licenses/gpl-license.php">GPL</a><br>
</td>
<td style="vertical-align: top;">Yes, but the application source
code must be also released under GPL.<br>
</td>
<td style="vertical-align: top;">Yes.<br>
</td>
</tr>
<tr>
<td style="vertical-align: top;">xmlsec-nss (also requires
xmlsec-core library) </td>
<td style="vertical-align: top;"><a
href="http://www.mozilla.org/projects/security/pki/nss/">NSS</a><br>
</td>
<td style="vertical-align: top;"><a
href="http://www.opensource.org/licenses/mozilla1.0.php">Mozilla
Public License</a><br>
</td>
<td style="vertical-align: top;">Yes.<br>
</td>
<td style="vertical-align: top;">Probably yes, but at the time I
am writing this there are some <a
href="http://bugzilla.mozilla.org/show_bug.cgi?id=217162">unresolved
issues</a>.<br>
</td>
</tr>
</tbody>
</table>
<br>
<br>
</body>
</html>