Hello Aron, Thank you for your email. > AFAIK this library is forked from OpenSSL with some extensive > modifications to support new crypto technologies, do you think we need > to involve the Security Team to review whether this package can be > supported during the next stable release cycle? > Also this project has a planned rename, and I'm a bit concerned this > could cause some maintenance burden if the rename is not well > coordinated at the time we accept it into Debian. I think any reviews and oversight are a good thing. In making this ITP, I figured it would cause discussion as it's a "drop-in" replacement for OpenSSL and the libraries have the same name. I wasn't sure if this was directly permitted so the ITP is a good place to have the discussion. The rename would help the name conflict issue, but you're also right about maintenance/path forward becoming more difficult. I welcome your input or guidance on how to proceed. Lance Lin <lqi254@protonmail.com> GPG Fingerprint: 8CAD 1250 8EE0 3A41 7223 03EC 7096 F91E D75D 028F
Attachment:
signature.asc
Description: OpenPGP digital signature