[Twisted-Python] twisted.web HTTPS client certificate
Glyph
glyph at twistedmatrix.com
Sat Jul 17 17:02:46 MDT 2021
> On Jul 14, 2021, at 7:05 AM, Barry Scott <barry.scott at forcepoint.com> wrote:
>
> On Tuesday, 13 July 2021 22:48:18 BST Glyph wrote:
>>
>>> On Jul 13, 2021, at 2:09 AM, Barry Scott <barry.scott at forcepoint.com> wrote:
>>>
>>> On Monday, 12 July 2021 09:27:19 BST Glyph wrote:
>>>> FWIW I would avoid calling the pyOpenSSL APIs for this, since hopefully we'll manage to move away from OpenSSL and at least somewhat abstract away the transition.
>>>
>>> Are you thinking to use the Windows and macOS provided crypto API and only use openssl on Unix systems?
>>>
>>> Barry
>>
>> It would be nice to have a system for backends so that we could do this when certain specific situations call for it (usually related to TLS clients, rather than servers, although having both would be great), but no, the main motivation is to drop OpenSSL entirely in favor of Rustls, as recommended by the ISRG: <https://www.abetterinternet.org/post/preparing-rustls-for-wider-adoption/ <https://www.abetterinternet.org/post/preparing-rustls-for-wider-adoption/>>.
>
> That is a great goal for Twisted.
I'm glad you think so! I think it's a great goal for everybody, really ;-).
-g
More information about the Twisted-Python
mailing list