Hi,
I'm working on a free and open-source project (GPLv3) that basically creates a VPN. The project is meant to be portable (in terms of platform and architecture).
On Linux and Mac OSX, I use the built-in system "tap/tun" device driver to create a virtual network interface and it works well.
On Windows, I use the TAP driver from OpenVPN, which works perfectly as well. I have the source code of this driver (since OpenVPN is open-source under the terms of GPLv2 - license details here) and I can compile it. However, drivers under latest Windows require signing, and that costs something like $500/year which I can't afford right now.
I can use the compiled OpenVPN driver (the same they use in their product) which was signed by OpenVPN LLC. but I'm not sure this is legal (or correct).
If my project ever gives me $500/year with advertising, I will buy a trusted certificate to sign my own driver, but right now, it isn't really an option.
My english is not native and I'm not sure to understand perfectly the licensing details. I know this is not "Lawyer Overflow" but could you please guys give me your opinion about this ?
In short: Can I ship and use the OpenVPN signed binary driver with my own open-source project ?
Thank you very much.