Preparing Rustls for Wider Adoption

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Rust Cryptography Security Web programming Compiler

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • rustls

    A modern TLS library in Rust

    There's a categorization here (I don't have access to the triage spreadsheet though):

    https://github.com/ctz/rustls/issues/447#issuecomment-820719...

    It seems like there's been the most effort on category 4, the ones that can't be reached but can often be proven away with refactoring and typestate. Removing these ensures that the APIs don't expose Result types to callers unnecessarily.

    Category 1-3 have different severity, but they are all planned to be folded into Result error values.

  • webpki

    WebPKI X.509 Certificate Validation in Rust

    > Bundling this set with Firefox

    I love that they did that; it was actually my idea (https://bugzilla.mozilla.org/show_bug.cgi?id=657228). I believe the list is pretty large and changes frequently and so they download it dynamically.

    > short cut to a "Yes"

    Do they really do that? That's awesome if so. Then they don't even need to ship the roots.

    > I specifically don't like [...] saying "unknown issuer"

    https://github.com/briansmith/webpki/issues/221

    > If std::fs::File::open() gives me Result with an io:Error that claims "File not found" but the underlying OS file open actually failed due to a permission error, you can see why that's a problem right? Even if this hypothetical OS doesn't expose any specific errors, "File not found" is misleading.

    A more accurate analogy: You ask to open "example.txt" without supplying the path, and there is no "example.txt" in the current working directory. You will get "file not found."

    Regardless, I agree we could have a better name than UnknownIssuer for this error.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  • ring

    Safe, fast, small crypto using Rust (by briansmith)

  • hyper

    An HTTP library for Rust (by hyperium)

  • advisory-db

    Security advisory database for Rust crates published through crates.io

  • F#

    Discontinued Please file issues or pull requests here: https://github.com/dotnet/fsharp (by fsharp)

    Straight from https://mitls.org/

    > The stable version of miTLS including the new 0.9 release are written in F#

    With F# being a link to http://fsharp.org/

  • rfcs

    RFCs for changes to Rust

    Word on the block is that there is a RFC to add support for secret types in LLVM, and Rust is waiting for them to also provide it in Rust [0].

    [0]: https://github.com/rust-lang/rfcs/pull/2859

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts