I'd still love some Nettle glue, or similar. Alexander does have a point, even if it's hidden among trolls; the Pike SSL code has not seen much tuning over the years, which other crypto toolkits have. Where most other parts have matured over the years, got harmonized naming conventions and evolved with the rest of Pike, Crypto still is pretty much the same, for good and bad.
/ Johan Sundström (a hugging punishment!)
Previous text:
2003-01-28 09:51: Subject: Re: OpenSSL wrapper vs Pike's SSL (Was: Bz2)
Well, ssleay did exist when I wrote the SSL code, of course. But it was huge and really really ugly. Besides the general uglyness, another showstopper back then was that there was no (documented) way of running it in non-blocking mode.
Openssl has probably gotten better in recent years, but I haven't had any reason to look closely at it. As far as I understand, from talking to openssl developers, I think the API is still more or less broken for non-blocking applications.
/ Niels Möller ()