Implement a full SSL/TLS library

Got an idea for enhancing PureBasic? New command(s) you'd like to see?
infratec
Always Here
Always Here
Posts: 6810
Joined: Sun Sep 07, 2008 12:45 pm
Location: Germany

Implement a full SSL/TLS library

Post by infratec »

Again I came to a point where I can not use PB, since there is no native possibility to use SSL/TLS.

The current problem: I use websockets to communicate with a web page.
In windows with FireFox it is still working (don't know how long) but on macOS with safari ... no way
If the web page uses https all elemnts inside needs to be secured, also websockets so I need wss:// instead of ws://

I also asked chilkat, but they only do the client side.

So I need to go the hard way: at the moment I'm writing a wrapper for mbedTLS
It uses the apache license, so it is also free for commercial applications.
And it is available fo all PB platforms and it is written in plain C. (C99)

So I needed some tweaks to compile it in VS2010 (no C99 supported) for a static lib which I can use in PB.

Such a lib could also be used for direct secured posgres access and ,,,

Such a SSL/TLS lib for PB is needed. (sooner or later, no longer way for networking without the S)
User avatar
HeX0R
Addict
Addict
Posts: 973
Joined: Mon Sep 20, 2004 7:12 am
Location: Hell

Re: Implement a full SSL/TLS library

Post by HeX0R »

I 100% agree, the whole network lib is more or less useless these days.
User avatar
Caronte3D
Addict
Addict
Posts: 1014
Joined: Fri Jan 22, 2016 5:33 pm
Location: Some Universe

Re: Implement a full SSL/TLS library

Post by Caronte3D »

+1
Bitblazer
Enthusiast
Enthusiast
Posts: 730
Joined: Mon Apr 10, 2017 6:17 pm
Location: Germany
Contact:

Re: Implement a full SSL/TLS library

Post by Bitblazer »

+1
webpage - discord chat links -> purebasic GPT4All
hoerbie
Enthusiast
Enthusiast
Posts: 118
Joined: Fri Dec 06, 2013 11:57 am
Location: DE/BY/MUC

Re: Implement a full SSL/TLS library

Post by hoerbie »

+1
And I would like to add: for a fully working SSL/TLS library for using in a PB client and as PB server I would also pay extra
User avatar
Caronte3D
Addict
Addict
Posts: 1014
Joined: Fri Jan 22, 2016 5:33 pm
Location: Some Universe

Re: Implement a full SSL/TLS library

Post by Caronte3D »

hoerbie wrote: Sat Feb 05, 2022 6:43 pm And I would like to add: for a fully working SSL/TLS library for using in a PB client and as PB server I would also pay extra
Me too!
User avatar
USCode
Addict
Addict
Posts: 912
Joined: Wed Mar 24, 2004 11:04 pm
Location: Seattle, USA

Re: Implement a full SSL/TLS library

Post by USCode »

Maybe a fundraiser to sponsor Fred to do the development work and add it to PB?
Maybe he's too busy? :mrgreen:
User avatar
skywalk
Addict
Addict
Posts: 3960
Joined: Wed Dec 23, 2009 10:14 pm
Location: Boston, MA

Re: Implement a full SSL/TLS library

Post by skywalk »

infratec wrote: Sat Feb 05, 2022 11:27 am Again I came to a point where I can not use PB, since there is no native possibility to use SSL/TLS.
~~~
Such a SSL/TLS lib for PB is needed.
Did you have a look at Fossil's approach with OpenSSL?
I agree https is absolutely necessary if not behind a firewall.
With raspberryPI devices as remote servers, this would round out PB v6 quite nicely! 8)
The nice thing about standards is there are so many to choose from. ~ Andrew Tanenbaum
User avatar
NicTheQuick
Addict
Addict
Posts: 1218
Joined: Sun Jun 22, 2003 7:43 pm
Location: Germany, Saarbrücken
Contact:

Re: Implement a full SSL/TLS library

Post by NicTheQuick »

Please don't add SSL/TLS as a static library but use the libraries already installed on the system. Software based on these libraries should keep secure even if it gets no updates for itself.
The english grammar is freeware, you can use it freely - But it's not Open Source, i.e. you can not change it or publish it in altered way.
BarryG
Addict
Addict
Posts: 3268
Joined: Thu Apr 18, 2019 8:17 am

Re: Implement a full SSL/TLS library

Post by BarryG »

+1
infratec
Always Here
Always Here
Posts: 6810
Joined: Sun Sep 07, 2008 12:45 pm
Location: Germany

Re: Implement a full SSL/TLS library

Post by infratec »

NicTheQuick wrote: Mon Feb 07, 2022 3:36 pm Please don't add SSL/TLS as a static library but use the libraries already installed on the system. Software based on these libraries should keep secure even if it gets no updates for itself.
Yes, if you mean Linux or macOS. No if you mean windows.

That's one of the advantages of OpenSource: you can fix it by yourself. (If needed)
How long needs MS to fix something? OpenSSL, for example, gets a lot of more security updates then the windows SSL stuff.
I know this, because we use OPNsense and I see how often they use a new version of OpenSSL. And the reason is not that it is not a good piece
of software. All other major OSs uses OpenSSL as default security stack.
And how good is the MS documentation to implement a secured server with sockets?
And what do I do after 2025 when Win10 gets no updates anymore?
Maybe the 'good programmers' write then software which don't need PCs of the next generation to work at a normal speed.

Especially if security is affected, I trust more an OpenSource solution.
smallgram
New User
New User
Posts: 5
Joined: Mon Jun 22, 2020 7:28 am

Re: Implement a full SSL/TLS library

Post by smallgram »

+1

I would pay for an SSL compatible Network Library.
wayne-c
Enthusiast
Enthusiast
Posts: 334
Joined: Tue Jun 08, 2004 10:29 am
Location: Zurich, Switzerland

Re: Implement a full SSL/TLS library

Post by wayne-c »

+1

Also willing to help fund, as always :-)
As you walk on by, Will you call my name? Or will you walk away?
User avatar
skinkairewalker
Enthusiast
Enthusiast
Posts: 625
Joined: Fri Dec 04, 2015 9:26 pm

Re: Implement a full SSL/TLS library

Post by skinkairewalker »

+1
Seymour Clufley
Addict
Addict
Posts: 1233
Joined: Wed Feb 28, 2007 9:13 am
Location: London

Re: Implement a full SSL/TLS library

Post by Seymour Clufley »

+1
JACK WEBB: "Coding in C is like sculpting a statue using only sandpaper. You can do it, but the result wouldn't be any better. So why bother? Just use the right tools and get the job done."
Post Reply