Re: mbedTLS WAS Re: Pre-RFC: support https out-of-the-box

On Wed, Dec 1, 2021 at 9:03 PM Felipe Gasper <felipe@felipegasper.com> wrote:
>

> > On Dec 1, 2021, at 20:54, Ricardo Signes <perl.p5p@rjbs.manxome.org> wrote:

> > We would only build, test, and install Net::SSLeay if openssl was available.

[or LibreSSL, which Net::SSLeay also supports]

> Would mbedTLS be an option? It’s much smaller/lighter than OpenSSL. Its API is simple and easy to use.

Until CPAN.pm or its dependencies support it, it's irrelevant to the
current discussion.  Same goes for GnuTLS, Apple's CommonCrypto,
Microsoft's Schannel, or any other TLS library out there except
OpenSSL and LibreSSL, which are already supported by Net::SSLeay.  I'm
not saying there is anything wrong with these other various TLS
implementations, but we are not looking for TLS support in the
abstract; we are looking for how to install Perl modules over the
Internet securely, which is realistically not likely to happen unless
we build on the tools we already have.

• Pre-RFC: support https out-of-the-box by Neil Bowers
• Re: Pre-RFC: support https out-of-the-box by Wesley Schwengle via perl5-porters
• Re: Pre-RFC: support https out-of-the-box by Yuki Kimoto
• Re: Pre-RFC: support https out-of-the-box by Tomasz Konojacki
• Re: Pre-RFC: support https out-of-the-box by Paul "LeoNerd" Evans
• Re: Pre-RFC: support https out-of-the-box by Sergey Aleynikov
• Re: Pre-RFC: support https out-of-the-box by Oodler 577 via perl5-porters
• Re: Pre-RFC: support https out-of-the-box by Elvin Aslanov
• Re: Pre-RFC: support https out-of-the-box by Ovid via perl5-porters
• Re: Pre-RFC: support https out-of-the-box by Dan Book
• Re: Pre-RFC: support https out-of-the-box by Martijn Lievaart
• Re: Pre-RFC: support https out-of-the-box by Neil Bowers
• Re: Pre-RFC: support https out-of-the-box by Oodler 577 via perl5-porters
• Re: Pre-RFC: support https out-of-the-box by gregor herrmann
• Re: Pre-RFC: support https out-of-the-box by Elvin Aslanov
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Elvin Aslanov
• Re: Pre-RFC: support https out-of-the-box by Alexander Hartmaier
• Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• Re: Pre-RFC: support https out-of-the-box by Darren Duncan
• Re: Pre-RFC: support https out-of-the-box by Alberto Simões
• Re: Pre-RFC: support https out-of-the-box by Martijn Lievaart
• Re: Pre-RFC: support https out-of-the-box by Oodler 577 via perl5-porters
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Alexander Hartmaier
• Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Arne Johannessen
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: Pre-RFC: support https out-of-the-box by Yuki Kimoto
• Re: Pre-RFC: support https out-of-the-box by Ricardo Signes
• Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• mbedTLS WAS Re: Pre-RFC: support https out-of-the-box by Felipe Gasper
• Re: mbedTLS WAS Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Darren Duncan
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Salvador Fandiño
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Salvador Fandiño
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Salvador Fandiño
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Tomasz Konojacki
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Martijn Lievaart
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Oodler 577 via perl5-porters
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Yuki Kimoto
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Felipe Gasper
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Oodler 577 via perl5-porters
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Paul "LeoNerd" Evans
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Yuki Kimoto
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Nicholas Clark
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Tomasz Konojacki
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Elvin Aslanov
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Tomasz Konojacki
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Tomasz Konojacki
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Andrew Hewus Fresh
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Salvador Fandiño
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Salvador Fandiño
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Nicholas Clark
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Martijn Lievaart
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Oodler 577 via perl5-porters
• Re: OpenSSL alternative support WAS Re: Pre-RFC: supporthttpsout-of-the-box by Martijn Lievaart
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Tom Molesworth via perl5-porters
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Nicholas Clark
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Felipe Gasper
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Emmanuel Seyman
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Craig A. Berry
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Andrew Hewus Fresh
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by James E Keenan
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Paul "LeoNerd" Evans
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Michiel Beijen
• Re: OpenSSL alternative support WAS Re: Pre-RFC: support httpsout-of-the-box by Michiel Beijen
• Re: Pre-RFC: support https out-of-the-box by Yuki Kimoto
• Re: Pre-RFC: support https out-of-the-box by Craig A. Berry
• Re: Pre-RFC: support https out-of-the-box by Yuki Kimoto