Skip to main content

"The #OpenSSL project really seems to be in a dead end for me, it's incompatible with #QUIC and unfixable performance-wise" / Willy Tarreau

mailarchive.ietf.org/arch/msg/…

Re: QUIC (mostly) on top of OpenSSL without patches

Search IETF mail list archives
mailarchive.ietf.org
#OpenSSL #quic
in reply to daniel:// stenberg://

rsalz
rsalz
I'm looking for people to join a fork of OpenSSL to Apache. Please forward for reach. I have a draft proposal I can share.

daniel:// stenberg:// reshared this.

in reply to daniel:// stenberg://

Ondřej Surý
Ondřej Surý
I’m not particularly vested in OpenSSL, but for us (BIND 9), there are two main problems with the competitors: a) missing PKCS#11 support (we dropped native PKCS#11 support for engine/provider), b) license - we need MPL compatible license that doesn’t affect the compiled binaries.
in reply to daniel:// stenberg://

pink
pink

following mastodon.social/@bagder/109624… there is also RusTLS: github.com/rustls/rustls
(which is also funded by @sovtechfund via @ProssimoISRG )


GitHub - rustls/rustls: A modern TLS library in Rust

A modern TLS library in Rust. Contribute to rustls/rustls development by creating an account on GitHub.
GitHub

daniel:// stenberg://

2023-01-03 09:19:03


there's of course this companion book

@Sovereign Tech Agency @Prossimo
in reply to pink

daniel:// stenberg://
daniel:// stenberg://
@pink @sovtechfund @ProssimoISRG curl already supports it. rustls is indeed a worthy effort but still has ways to go.
@pink @Sovereign Tech Agency @Prossimo