Hello, I'm a founder of HashiCorp and I'd like to explain this.<p>First, this document only applies to enterprise evaluation software. This doesn't apply to our OSS software and this shouldn't be linked anywhere near our OSS except in the context of signing up for an enterprise eval.<p>Most importantly: why is this here? This is NOT a political statement. This is a legal requirement. The encryption we use in Vault is subject to Chinese export control laws and it is illegal for us (by Chinese law) to sell in China.<p>To be able to sell Vault within China we'd have to restrict the encryption that could be used within Vault to government-acceptable versions.<p>We don't do this, therefore it is illegal for us to sell in China. We have to include this line in our enterprise terms.<p>EDIT: Our legal team has updated the copy in our terms to be more explicit. You can read the updated copy in the second paragraph here: <a href="https://www.hashicorp.com/terms-of-evaluation" rel="nofollow">https://www.hashicorp.com/terms-of-evaluation</a>
From Mitchell Hashimoto, the founder of HashiCorp:<p><a href="https://twitter.com/mitchellh/status/1266390186054651905" rel="nofollow">https://twitter.com/mitchellh/status/1266390186054651905</a>
<a href="https://twitter.com/mitchellh/status/1266396356572139526" rel="nofollow">https://twitter.com/mitchellh/status/1266396356572139526</a>
According to the founder they use a Chinese approved encryption scheme for enterprise versions in China.
I wonder what encryption that is.