WolfSSL

[Rohan Kumar]

On Sat, Oct 23, 2021 at 06:33:02PM +0000, Jonathan McHugh wrote:
>I noticed WolfSSL has TLS 1.3, its other features seem decent too (1/20 
>size OpenSSL, ANSI C).
>
>However, I couldnt find any links on Gemini or HTTP concerning any 
>implementations or tools using it.
>
>Any ideas regarding it?
>
>Would it be worth me developing clients and servers in it? I get the 
>idea that some of the other TLS approaches have a lot of cruft given 
>their scale and predisposition to non-Germini protocols and it would 
>interest me to embed from a bespoke Gemini only compilation.
>
>Would such a project be a ballache?

I think WolfSSL and BearSSL are interesting projects as far as minimal 
TLS implementations go, but I'd personally like to see more love for 
stuff like libtls (simple spinoff of libressl with a much simpler API), 
or Boringssl (extremely well-made TLS lib that also provides the crypto 
primitives for libs like Rust's ring and RusTLS). Libtls would be an 
especially good fit for Gemini software.

Outside of the C and C++ world, lots of programming langs also feature 
pretty good TLSv1.3 libs in their standard libraries; Go has one of the 
best.

-- 
/Seirdy
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 898 bytes
Desc: not available
URL: <https://lists.orbitalfox.eu/archives/gemini/attachments/20211023/a49be322/attachment.sig>