[Pkg-openssl-devel] syncing up openssl dev efforts, DEfO making custom packages for ECH support
Hans-Christoph Steiner
hans at guardianproject.info
Thu Aug 31 09:27:39 BST 2023
Kurt Roeckx:
> On Wed, Aug 30, 2023 at 09:33:58PM +0200, Sebastian Andrzej Siewior wrote:
>>
>> Now integrating ECH into the Debian package. This will be tough. I would
>> need to sync with Kurt on this, too. However, if it is not in upstream
>> then it is some out-of-tree that asks to be included. Adding just a
>> cipher would be "easier" since it would be isolated piece of code
>> without any exported symbols. This however is part of every TLS
>> handshake and there critical in terms security and or memory leaks and
>> so on.
>
> I think he wants to provide his own .deb packages, not in Debian, so
> people can test it.
>
> It's my understanding that he's part of the effort to get ECH in
> upstream OpenSSL, and they're still working on the new APIs for it. But
> in the mean time would like to provide .deb packages and might need
> help in making them.
Yes exactly! And we would happily contract with maintainers here, or do the
work ourselves. Or some mix of both.
.hc
--
Signal: +13478504872
PGP fingerprint: EE66 20C7 136B 0D2C 456C 0A4D E9E2 8DEA 00AA 5556
https://keys.openpgp.org/search?q=EE6620C7136B0D2C456C0A4DE9E28DEA00AA5556
More information about the Pkg-openssl-devel
mailing list