The State of OpenSSL for pyca/cryptography

https://cryptography.io/en/latest/statements/state-of-openssl/

36•SGran•1h ago

Comments

formerly_proven•49m ago

> Finally, taking an OpenSSL public API and attempting to trace the implementation to see how it is implemented has become an exercise in self-flagellation. Being able to read the source to understand how something works is important both as part of self-improvement in software engineering, but also because as sophisticated consumers there are inevitably things about how an implementation works that aren’t documented, and reading the source gives you ground truth. The number of indirect calls, optional paths, #ifdef, and other obstacles to comprehension is astounding. We cannot overstate the extent to which just reading the OpenSSL source code has become miserable — in a way that both wasn’t true previously, and isn’t true in LibreSSL, BoringSSL, or AWS-LC.

OpenSSL code was not pleasant or easy to read even in v1 though and figuring out what calls into where under which circumstances when e.g. many optimized implementations exist (or will exist, once the many huge perl scripts have generated them) was always a headache with only the code itself. I haven't done this since 3.0 but if it regressed so hard on this as well then it has to be really quite bad.

ak217•35m ago

I have a hacky piece of code that I used with OpenSSL 1.x to inspect the state of digest objects. This was removed from the public API in 3.0 but in the process of finding that out I took a deep dive in the digests API and I can confirm it's incomprehensible. I imagined there must be some deep reason for the indirection but it's good to know the Cryptography maintainers don't think so.

Speaking of which, as a library developer relying on both long established and new Cryptography APIs (like x.509 path validation), I want to say Alex Gaynor and team have done an absolutely terrific job building and maintaining Cryptography. I trust the API design and test methodology of Cryptography and use it as a model to emulate, and I know their work has prevented many vulnerabilities, upleveled the Python ecosystem, and enabled applications that would otherwise be impossible. That's why, when they express an opinion as strong as this one, I'm inclined to trust their judgment.

woodruffw•45m ago

I think this part is really worth engaging with:

> Later, moving public key parsing to our own Rust code made end-to-end X.509 path validation 60% faster — just improving key loading led to a 60% end-to-end improvement, that’s how extreme the overhead of key parsing in OpenSSL was.

> The fact that we are able to achieve better performance doing our own parsing makes clear that doing better is practical. And indeed, our performance is not a result of clever SIMD micro-optimizations, it’s the result of doing simple things that work: we avoid copies, allocations, hash tables, indirect calls, and locks — none of which should be required for parsing basic DER structures.

I was involved in the design/implementation of the X.509 path validation library that PyCA cryptography now uses, and it was nuts to see how much performance was left on the ground by OpenSSL. We went into the design prioritizing ergonomics and safety, and left with a path validation implementation that's both faster and more conformant[1] than what PyCA would have gotten had it bound to OpenSSL's APIs instead.

[1]: https://x509-limbo.com

Avamander•12m ago

I'm glad that they're considering getting rid of OpenSSL as a hard dependency. I've built parts of pyca/cryptography with OpenSSL replaced or stripped out for better debugging. OpenSSL's errors just suck tremendously. It shouldn't be tremendously difficult for them to do it for the entire package.

Though I'd also love to see parts of pyca/cryptography being usable outside of the context of Python, like the X.509 path validation mentioned in other comments here.

Emergent Gravity Is Quantum Entanglement

My Fitbit Buzzed and I Understood Enshittification

What's New in Livewire 4

My AI got a GitHub account

Keybox Might No Longer Work from February 2026

Show HN: I built a local RAG pipeline to index 28 years of my personal data [video]

Show HN: Cutting through AI noise with verified startup traction

Gas Town Emergency User Manual

Cloudflare's broken abuse report system AND lack of staff to review issues

The Mature Optimization Handbook

Local File over Cloud App for Fast Context (2023)

Nick Shirley Exposed Minnesotas Billion Dollar Fraud Scandal [video]

Rams Owner Stan Kroenke Becomes Largest Private Landowner in US with 2.7M Acres

(informed?) Opinion: why boys struggle in class

Modder Runs PC in a Chest Freezer

Anthropic is making a huge mistake

Finding bugs across the Python ecosystem with Claude and property-based testing

Show HN: CockroachDB Daily

Brag Doc

Mike Pompeo says history books should ignore Gaza's victims – Middle East Eye

Soumith Chintala Becomes CTO of Thinking Machines

Show HN: KernDB – Managed Postgres Under EU Jurisdiction (Germany)

Build trams. But build them well

Web Based AI Generated ePub Reader

BBC 1 sound received in Texas, November 1981 [video]

Clawdbot – personal AI assistant in WhatsApp, Telegram, Discord, Slack

The Last Question

Trump says 'anything less' than US control of Greenland is 'unacceptable'

Hegseth wants to integrate Musk's Grok AI into military networks this month

Gnome Mutter 50 Alpha Released with X11 Back End Removed