From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=0.2 required=5.0 tests=DKIM_ADSP_CUSTOM_MED, DKIM_INVALID,DKIM_SIGNED,FREEMAIL_FROM autolearn=no autolearn_force=no version=3.4.4 Received: (qmail 29136 invoked from network); 23 Jan 2023 16:25:18 -0000 Received: from 9front.inri.net (168.235.81.73) by inbox.vuxu.org with ESMTPUTF8; 23 Jan 2023 16:25:18 -0000 Received: from mail-vk1-f179.google.com ([209.85.221.179]) by 9front; Mon Jan 23 11:23:51 -0500 2023 Received: by mail-vk1-f179.google.com with SMTP id q21so6214855vka.3 for <9front@9front.org>; Mon, 23 Jan 2023 08:23:47 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=to:subject:message-id:date:from:references:in-reply-to:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=Uvs8J9tgBpNHzyigPjJuU7z95XBEU/peJJPtJT5WMf0=; b=ZkqN/J8Ek2XsS+uBCv10orhQn5TQTq3277XgAMzgvEKsIy1dL1zDsn9am2PhzQvau6 OmE5GndeudJRjIt253J02enBn0fHEOfhIKT3DbUEB2Byxbql5F1w0YniobVAzLNfI6Xx pwT6BMu155Tx2z4Q0xd8YX9NWL4Cpsg+4mXkQ54/3GpYBbmQMW3JtQt48UmUSANZYMy7 IT9+uDGGFtqRTsFyDYxGSeohRF224YLo3x0N/VEoDcSg+JD+Jp8G9TZdmPntSSwKKvaB JMjboBf8NsmVNglb59QW62pQAhPUJIghMK2Xi8V/drQRGu6PUrIzkqYYh+CZs4fFeQB/ o9ow== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:references:in-reply-to:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=Uvs8J9tgBpNHzyigPjJuU7z95XBEU/peJJPtJT5WMf0=; b=40YNnL8LJqqLNeVA12hxRx45iF+64kpCgZA14vB55ztUddLXPK4RSEKf96SGTITVt7 RFvZ2EUIy/jdHBQVWW2WhFhMVaimOVOmtuReOn+JLcLJrTgwiGpUfwONQ4J/wB0iNfzD W4DdAyXV93LfgBtjru82QbAtzVCsCMT/xNgWC4g6nYe9PyLcTRKF40HiCJgKN0JSlDsn M0PTZ49Pau8FSx5/MTx1AhDxGVUOpUhVerx4qH/zvIMW5eS3IFiR07eDNHS0Kc7CSfX9 GMJvdhdspiVwy6g3lhmnMzknLbrD423LmfJhjeHtzX6xXFFUstgJOq8uqzp4FKKcxF/n 8JeQ== X-Gm-Message-State: AFqh2krwwXoI+i7IPjG85x1r7/RgQdmFv/usOhZl5ei6gNGto7F8QlpF p+GckrpIcM4z0upq8quUyTzf5wk+LLOAk4XQCkP4TF9b X-Google-Smtp-Source: AMrXdXsX11pzUgJ6CIjylT/vxlM236xidktCmv1CZH6xEVIlmZBzx282rrBq5ADfZ+Py7T4Bii9h4jTRZx1TVASAre4= X-Received: by 2002:a05:6122:1185:b0:3e1:9b14:2c68 with SMTP id x5-20020a056122118500b003e19b142c68mr3270468vkn.37.1674491027411; Mon, 23 Jan 2023 08:23:47 -0800 (PST) MIME-Version: 1.0 Received: by 2002:ab0:5a66:0:0:0:0:0 with HTTP; Mon, 23 Jan 2023 08:23:46 -0800 (PST) In-Reply-To: References: <87988F72F1C2D20B16DE8DA47FB8C262@alice> From: hiro <23hiro@gmail.com> Date: Mon, 23 Jan 2023 17:23:46 +0100 Message-ID: To: 9front@9front.org Content-Type: text/plain; charset="UTF-8" List-ID: <9front.9front.org> List-Help: X-Glyph: ➈ X-Bullshit: virtualized scale-out lifecycle firewall-scale event general-purpose controller Subject: Re: [9front] [PATCH] libsec: add minimal support for the tls renegotiation extension Reply-To: 9front@9front.org Precedence: bulk > I'm not defending their decision. I just fixed the problem > months ago and moved on with my life. I was checking in to see > if you guys still wanted the patch or not. 1) your writeup of this issue is excellent and transparent 2) i agree it's unlikely openssl would listen to us 3) it's pragmatic to implement it and move on. now this sabotage is well summarized on this mailinglist. i think it should also be documented in the code and the commit message. this way, no historian will ever misunderstand the code's existence as a legitimization of openssl's practices. errors happen, they can be reverted. but if the integrity of the openssl developers is damaged, the community will only be able to look at the summation of such events and find the people responsible and prevent their continual involvement in this critical core internet infrastructure. maybe this is not the tipping point. but we'll get there only if we keep awareness high. in the long run it will all have to get addressed. if anybody from here ever meets an openssl in person, we will have something to discuss. i find this kind of practice unthinkable for such an important project. keep up the fight.