Re: ITP: BabaSSL -- BabaSSL is a base library for modern cryptography and communication security protocols.

To: Lance Lin <LQi254@protonmail.com>, 1013132@bugs.debian.org
Cc: "debian-devel@lists.debian.org" <debian-devel@lists.debian.org>
Subject: Re: ITP: BabaSSL -- BabaSSL is a base library for modern cryptography and communication security protocols.
From: Aron Xu <aron@debian.org>
Date: Sat, 18 Jun 2022 12:57:03 +0800
Message-id: <[🔎] CAMr=8w4YSbJxJvdOVyPugR=k-9xNX+PcuXbVmHT7s+jrS9V5fA@mail.gmail.com>
In-reply-to: <[🔎] Gc_zeinSoR6-jicOendOs4pkCI26gF99R3pceW5CKTuY_A5gamptQcLkf_g71Y2Crt7bX2xfgjSmDG5y0own4vGZzArrTC145OpQoOrM5dI=@protonmail.com>
References: <[🔎] Gc_zeinSoR6-jicOendOs4pkCI26gF99R3pceW5CKTuY_A5gamptQcLkf_g71Y2Crt7bX2xfgjSmDG5y0own4vGZzArrTC145OpQoOrM5dI=@protonmail.com>

Hi,

On Sat, Jun 18, 2022 at 12:43 AM Lance Lin <LQi254@protonmail.com> wrote:
>
> Package: wnpp
> Severity: wishlist
> Owner: Lance Lin <lqi254@protonmail.com>
> X-Debbugs-Cc: debian-devel@lists.debian.org, lqi254@protonmail.com
>
> * Package name    : libBabaSSL
>   Version         : 8.3.1
>   Upstream Author : Copyright (c) 2020-2022 Alibaba Digital Economy
> * URL             : https://github.com/BabaSSL/BabaSSL
> * License         : Apache 2.0
>   Programming Lang: C
>   Description     : BabaSSL is a base library for modern cryptography and communication security protocols.
>
> - BabaSSL is a modern cryptographic and secure protocol library developed by the amazing people in Alibaba Digital Economy.
> - BabaSSL provides the following major features:
> -    Support RFC 8998, Chinese SM cipher suites in TLS 1.3 protocol
> -    Support NTLS (formal GM dual-certificate protocol) handshake processing, according to GB/T 38636-2020 TLCP
> -    QUIC API support
> -    Support delegated credentials, according to draft-ietf-tls-subcerts-10
>
> I plan to package and maintain BabaSSL myself.
>

AFAIK this library is forked from OpenSSL with some extensive
modifications to support new crypto technologies, do you think we need
to involve the Security Team to review whether this package can be
supported during the next stable release cycle?

Also this project has a planned rename, and I'm a bit concerned this
could cause some maintenance burden if the rename is not well
coordinated at the time we accept it into Debian.

Regards,
Aron

Reply to:

Follow-Ups:
- Re: Bug#1013132: ITP: BabaSSL -- BabaSSL is a base library for modern cryptography and communication security protocols.
  - From: Lance Lin <LQi254@protonmail.com>

References:
- ITP: BabaSSL -- BabaSSL is a base library for modern cryptography and communication security protocols.
  - From: Lance Lin <LQi254@protonmail.com>

Prev by Date: Bug#1013164: ITP: freenom-dns-updater -- Tool written in Python to update Freenom DNS records
Next by Date: Bug#1013173: ITP: golang-github-invopop-yaml -- better way to marshal and unmarshal YAML in Golang
Previous by thread: ITP: BabaSSL -- BabaSSL is a base library for modern cryptography and communication security protocols.
Next by thread: Re: Bug#1013132: ITP: BabaSSL -- BabaSSL is a base library for modern cryptography and communication security protocols.
Index(es):
- Date
- Thread