OpenVAS Change Request #35: OpenVAS-Client: Migrate from OpenSSL to GNU/TLS

Status: Voted +7. Done with SVN revision 4941.

Purpose

To have a SSL implementation that allows for easier porting to Windows operating systems.

To get rid of the OpenSSL license implications (exception clause and advertisement clause).

References

(none)

Rationale

Currently, OpenVAS-Client is using OpenSSL library for handling the SSL-based connection to OpenVAS server. OpenSSL is not well supported for Windows.

The OpenVAS server already was migrated from OpenSSL to GNU/TLS a while ago. GNU/TLS is well supported for Windows.

Apart from this, OpenSSL implicates some sort of trouble due to its license. It requires to handle OpenSSL exceptions and to advertise OpenSSL.

Effects

Dependency to GNU/TLS instead of OpenSSL.

Design and Implementation

Best be introduced with a new release cycle (e.g. 2.1).

Changes will be similar to the ones in openvas-server. Ideally, OpenVAS-Client should link libopenvas to use the very same functionality.

History

• 2009-09-15 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>:
  Marked as done.
• 2009-09-09 Michael Wiegand <michael.wiegand@intevation.de>:
  Updated status with voting results.
• 2009-06-11 Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>:
  Initial text.