While we’re discussing the fate of LibreSSL, it’s worth noting how confusing the names of these packages became. I’d like to take this opportunity to provide a short note on what’s what.<\/p>\n
First of all, SSL<\/abbr> and its successor TLS<\/abbr> are protocols used to implement network connection security. For historical reasons, many libraries carry \u2018SSL\u2019 in their name (OpenSSL, LibreSSL, PolarSSL) but nowadays they all support TLS.<\/p>\n Open<\/strong>SSL<\/a> is the \u2018original\u2019 crypto\/SSL\/TLS library. It is maintained independently of a specific operating system. It provides two main libraries: libcrypto<\/em> and libssl<\/em> (that also implements TLS).<\/p>\n Libre<\/strong>SSL<\/a> is a fork of OpenSSL. It is maintained by Open<\/strong>BSD as part of its base system. However, the upstream also maintains LibreSSL-portable repository that provides build system and portability glue for using it on other systems. LibreSSL provides partially compatible versions of libcrypto<\/em> and libssl<\/em>, and a new libtls<\/em> library. Both libssl and libtls can be used for TLS support in your applications.<\/p>\n Libre<\/strong>TLS<\/a> is a lightweight fork of libtls<\/em> from LibreSSL that builds it against Open<\/strong>SSL. This makes it possible to build programs written for libtls against OpenSSL+LibreTLS instead of LibreSSL.<\/p>\n So, to summarize. Open<\/strong>SSL is the original, while Libre<\/strong>SSL is the Open<\/strong>BSD fork. libtls is the Libre<\/strong>SSL original library, while Libre<\/strong>TLS is its fork for Open<\/strong>SSL. Makes sense, right? And finally, despite the name, they all implement TLS.<\/p>\n","protected":false},"excerpt":{"rendered":" While we’re discussing the fate of LibreSSL, it’s worth noting how confusing the names of these packages became. I’d like to take this opportunity to provide a short note on what’s what. First of all, SSL and its successor TLS are protocols used to implement network connection security. For historical reasons, many libraries carry \u2018SSL\u2019 … Continue reading “OpenSSL, LibreSSL, LibreTLS and all the terminological irony”<\/span><\/a><\/p>\n","protected":false},"author":137,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_publicize_message":"","jetpack_is_tweetstorm":false,"jetpack_publicize_feature_enabled":true},"categories":[3],"tags":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/posts\/1280"}],"collection":[{"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/users\/137"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/comments?post=1280"}],"version-history":[{"count":10,"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/posts\/1280\/revisions"}],"predecessor-version":[{"id":1290,"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/posts\/1280\/revisions\/1290"}],"wp:attachment":[{"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/media?parent=1280"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/categories?post=1280"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.gentoo.org\/mgorny\/wp-json\/wp\/v2\/tags?post=1280"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}