On Fri, 19 Feb 2021, Michał Antoniak wrote:
In our project we use the mbedtls library. After our optimizations, the ssl_backend_data structure is 1828 bytes in size. Unfortunately, I don't know about other encryption libraries.
First, they're not "encryption libraries", they're TLS libraries. They do much more than just encryption.
Then: this looks like an area for improvement in the mbedTLS backend as I don't think there's any good reason for this struct to be this big. If you roll up your sleeves and get to work I expect it could be taken down significantly.
To compare, the wolfSSL ssl_backend_data struct is 16 bytes.I'm biased (as this is a product by my employer) but wolfSSL is a way better choice than mbedTLS almost every time, for this and other reasons.
-- / daniel.haxx.se | Commercial curl support up to 24x7 is available! | Private help, bug fixes, support, ports, new features | https://www.wolfssl.com/contact/
------------------------------------------------------------------- Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.html
