[Openmcl-devel] Secure sockets?

Ron Garret ron at awun.net
Fri Nov 30 02:12:24 UTC 2007


I wasn't intending to reinvent that much wheel :-)  We have a totally  
kick-ass FFI now so Lisp bindings to openssl is obviously the way to  
go.  But this is such an obviously useful thing that I figured someone  
else might have done it by now :-)

rg

On Nov 29, 2007, at 5:58 PM, Hamilton Link wrote:

> I don't know of a fully-lisp implementation.  I started down this  
> path once upon a time, and got handshaking etc. working, and then  
> decided that it was the wrong way to do things.  It's time- 
> consuming, it's error-prone, and there are already other people who  
> have paid the price for you.
>
> I think there are two better alternatives to rolling your own.  Give  
> them serious consideration and I think you'll be better off:
>
> - script your apps to use ssl tunneling, and use openssl to do the  
> tunneling (i.e. use a standard ssl implementation to provide local  
> endpoints on localhost on each machine of interest, and then use tcp/ 
> ip streams to talk to those endpoints from lisp)
>
> - wrap a new lisp stream class around an FFI-driven SSL stream  
> implementation (programmatically nicer to handle in a lisp app,  
> harder to circumvent etc. for more work, but still way less work  
> than doing a full SSL implementation and almost certainly less error- 
> prone)
>
> If you do go whole-hog, best of luck.
>
> h
>
> Ron Garret wrote:
>> Does anyone have SSL code for CCL before I reinvent the wheel?
>>
>> rg
>>
>> _______________________________________________
>> Openmcl-devel mailing list
>> Openmcl-devel at clozure.com
>> http://clozure.com/mailman/listinfo/openmcl-devel
>>
>>
>>
>




More information about the Openmcl-devel mailing list