💾 Archived View for gemini.ctrl-c.club › ~phoebos › logs › kisslinux-2022-07-16.txt captured on 2022-07-17 at 02:59:43.
-=-=-=-=-=-=-
[2022-07-16T00:42:46Z] <illiliti> ioraff: perhaps we could investigate bearssl+libtls approach instead of moving back to libressl? [2022-07-16T00:45:39Z] <illiliti> the main repo is quite simple. it should be possible to add libtls support for packages [2022-07-16T00:45:52Z] <illiliti> the only problem is see is that packages in community repo will be broken [2022-07-16T00:47:12Z] <illiliti> i'll will put more thought into this idea after muon is done [2022-07-16T00:49:51Z] <illiliti> i'm also thinking about implementing openssl api on top of bearssl, but that sounds insane tbh [2022-07-16T00:51:08Z] <illiliti> iirc alpine devs also considering this option [2022-07-16T00:51:43Z] <illiliti> they're not happy with openssl too [2022-07-16T02:06:16Z] <ioraff> I don't think bearssl sees enough development to be used for systemwide TLS. I tried using it for awhile where possible, but I ran into some sites only supporting TLS 1.3. [2022-07-16T02:06:27Z] <ioraff> openssl api on top of bearssl does indeed sound insane [2022-07-16T02:22:29Z] <illiliti> argh! i forgot about tls 1.3 [2022-07-16T02:26:12Z] <noocsharp> what depends on openssl that just needs to depend on libtls? [2022-07-16T02:26:57Z] <noocsharp> iirc many packages that depend on openssl do so for its crypto [2022-07-16T04:44:03Z] <testuser[m]12> Hi [2022-07-16T04:50:19Z] <noocsharp> hi