this post was submitted on 11 May 2024
43 points (100.0% liked)

Rust

6009 readers
4 users here now

Welcome to the Rust community! This is a place to discuss about the Rust programming language.

Wormhole

[email protected]

Credits

  • The icon is a modified version of the official rust logo (changing the colors to a gradient and black background)

founded 1 year ago
MODERATORS
top 2 comments
sorted by: hot top controversial new old
[โ€“] [email protected] 5 points 6 months ago

This is the best summary I could come up with:


Rustls is the modern TLS library written in the Rust programming language with a large emphasis on memory safety and security.

Via a new "rustls-openssl-compat" OpenSSL compatibility layer started by the Rustls project, this Rust TLS implementation can now work with the Nginx web server.

This layer has been successfully tested with recent versions of Nginx to allow switching from OpenSSL to the memory-safe Rustls by simply swapping out the library.

The announcement this week notes: "After investing heavily in Rustls over the last few years, we now see it as a viable, performant, and memory safe alternative to OpenSSL.

Recent releases have brought pluggable cryptography with FIPS support, performance optimizations, post-quantum key exchange, and numerous other improvements.

In the coming months, we will focus on improving performance in the few areas where Rustls doesn't already surpass OpenSSL and add support for RFC 8879 for certificate compression.


The original article contains 224 words, the summary contains 147 words. Saved 34%. I'm a bot and I'm open source!

[โ€“] onlinepersona 4 points 6 months ago

Wow, this is great news! The C implementation of SSL was at core of Heartbleed, a vulnerability due to unchecked length of packets. Getting something this important in rust is great upgrade.

Anti Commercial-AI license