I got tor build with libressl. it works. Is this a good idea? TY
Hey, On 02/20/15 23:01, Tyrano Sauro wrote:
I got tor build with libressl. it works. Is this a good idea?
yes it is. libressl is a cleaned up version of openssl. The OpenBSD guys removed all that useless crap from the library and fixed a lot of bugs. Running Tor with libressl is a performence and a security improvement. Greetings Leo -- Leo Unglaub
On 20/02/15 23:01, Tyrano Sauro wrote:
I got tor build with libressl. it works. Is this a good idea?
TY
Could you write some more details about how you got this to work? For example, did you link in libressl during the build, did you have to change anything, or did you just drop-in libressl.so (or whatever) to a pre-built tor and have everything work? X -- GPG: 4096R/1318EFAC5FBBDBCE git://github.com/infinity0/pubkeys.git
Hey, On 02/21/15 13:45, Ximin Luo wrote:
Could you write some more details about how you got this to work? For example, did you link in libressl during the build, did you have to change anything, or did you just drop-in libressl.so (or whatever) to a pre-built tor and have everything work?
it's actually quit easy. If you use OpenBSD for example there is already libressl installed. They have keept the same old API from OpenSSL so you could build applications the same way as you did with OpenSSL. They have also added a more modern API called libtls: http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man3/tls_accept_socke... Greetings Leo -- Leo Unglaub Website: https://www.leo-unglaub.net Twitter: https://twitter.com/LeoUnglaub
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 VoidLinux also runs with LibreSSL as it's default libssl provider, and it's xbps build template shows it's a pretty seamless process. https://github.com/voidlinux/void-packages/blob/master/srcpkgs/tor/template Leo Unglaub:
Hey,
On 02/21/15 13:45, Ximin Luo wrote:
Could you write some more details about how you got this to work? For example, did you link in libressl during the build, did you have to change anything, or did you just drop-in libressl.so (or whatever) to a pre-built tor and have everything work?
it's actually quit easy. If you use OpenBSD for example there is already libressl installed. They have keept the same old API from OpenSSL so you could build applications the same way as you did with OpenSSL.
They have also added a more modern API called libtls: http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man3/tls_accept_socke...
Greetings Leo
-----BEGIN PGP SIGNATURE----- iQEcBAEBCgAGBQJU6MvBAAoJEFmpmcH7mQWj99wH/Rcx0nFNcDD1HqqBFxZH5OVY EtbyrEyphE2QYOImG3zVc4GwSnS9OXaZeDL0d1P4JHTdvySqTE1t6RFZaWj57Ddk aaYV9qyK9ZXZonS4+eEUHrQYDi/2R+gITKQrV96U437G99oOsLBoeaYzCKg2cFVj 2gtmQjm4r9HREwlng/J6ORAHjgeY0KfBjC3PbrpNMMGnd5Ylu0ZjWneJbpbawHmD Pqj/yhIlTrGPs4DfWsWmGDRYqJ6PO1pz3SBRw9JjoU6J1Ky9UJ5QgRMUAH77CV96 Raotx34rRfzQ5q1GhXJ41tDLNLUJ/lFuBz89z+MPrR7bZVu6NgQq50eWpZSbwoI= =Afop -----END PGP SIGNATURE-----
Do the configure: --with-openssl-dir=$HOME/libressl \ --enable-static-openssl \ ty From: Ximin Luo <infinity0@torproject.org> To: tor-dev@lists.torproject.org Sent: Saturday, 21 February 2015 7:45 AM Subject: Re: [tor-dev] tor and libressl On 20/02/15 23:01, Tyrano Sauro wrote:
I got tor build with libressl. it works. Is this a good idea?
TY
Could you write some more details about how you got this to work? For example, did you link in libressl during the build, did you have to change anything, or did you just drop-in libressl.so (or whatever) to a pre-built tor and have everything work? X -- GPG: 4096R/1318EFAC5FBBDBCE git://github.com/infinity0/pubkeys.git _______________________________________________ tor-dev mailing list tor-dev@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev
participants (4)
-
cacahuatl -
Leo Unglaub -
Tyrano Sauro -
Ximin Luo