@BRIAN_____ so yeah I started writing this: https://github.com/tarcieri/pkixnames … /cc @sleevi_
@bascule My idea is to do a Rust wrapper around mozilla::pkix and then rewrite mozilla::pkix top-down to make it (obviously-)safely async.
-
-
@BRIAN_____ that's probably the best path for Servo, but maybe not things like hyper or rust-openssl in general... -
@bascule What's a viable near-term alternative? "rm -Rf crypto/xx09* crypto/asn1" is the only thing I'd do w/ the OpenSSL X.509 code, IMO. -
@bascule Not trolling. I've written ~200 patches for BoringSSL, and 1 of the 1st was "Remove PEM, PKCS#8, PKCS#12, X.509, ASN.1, & EVP." -
@BRIAN_____ seems good bro
End of conversation
New conversation -
-
-
@bascule I have mozilla::pkix adapter for using OpenSSL crypto instead of NSS sitting around waiting to find somebody to review it.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.