Rohan Kumar seirdy at seirdy.one
Sat Oct 23 22:45:48 BST 2021
- - - - - - - - - - - - - - - - - - -
On Sat, Oct 23, 2021 at 02:32:59PM -0700, Rohan Kumar wrote:
I think WolfSSL and BearSSL are interesting projects as far as minimal
TLS implementations go, but I'd personally like to see more love for
stuff like libtls (simple spinoff of libressl with a much simpler API),
or Boringssl (extremely well-made TLS lib that also provides the crypto
primitives for libs like Rust's ring and RusTLS). Libtls would be an
especially good fit for Gemini software.
A good primer on libtls from 2017 is over at https://ftp.openbsd.org/papers/linuxconfau2017-libtls/. Many OpenSSL-based distros also ship the "libretls" package, which is a confusingly-named port of libtls from libressl to OpenSSL; this should make it easy to strike a balance between reducing boilerplate and improving packageability/portability.
-- /Seirdy-------------- next part --------------A non-text attachment was scrubbed...Name: signature.ascType: application/pgp-signatureSize: 898 bytesDesc: not availableURL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20211023/a158c452/attachment.sig>