💾 Archived View for bbs.geminispace.org › s › Gemini › 15700 captured on 2024-03-21 at 15:07:06. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
As a rite of passage I've decided to make a Gemini client in C, and as I'm new to SSL/networking, I have no idea how to handle TOFU or client certificates with mbedTLS. Has anyone else specifically made a gemini client with it?
Or would you recommend that I try to figure out another SSL library? I avoided OpenSSL because the documentation seemed incomprehensible, but mbedTLS' documentation isn't much better.
As an aside, I think I'm gonna avoid C for the server, the amount of rookie mistakes I made while making the client was kinda scary. (I learnt that strncpy doesn't always null-terminate the hard way.)
13 hours ago
I don't have direct experience, but I suggest using OpenSSL:
1- you know OpenSSL is still going to be supported and up-to-date a year or 2 from now.
2- there are lots of examples out there for it, especially for C
3- if you are going to write your server in another language, there are mostly likely going to be openssl bindings, so your knowledge is transferable