Buy commercial curl support. We
help you work out your issues, debug your libcurl applications, use the API,
port to new platforms, add new features and more. With a team lead by the
curl founder Daniel himself.
Re: QUIC support query
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Dan Fandrich via curl-library <curl-library_at_lists.haxx.se>
Date: Wed, 6 Nov 2024 17:24:48 -0800
On Wed, Nov 06, 2024 at 04:19:26PM -0800, Ben Greear via curl-library wrote:
> I found the curl document on enabling QUIC, and it has a lot of different ssl library
> options.
>
> https://curl.se/docs/http3.html
>
> Is there any particular combination that is preferred over others?
"Only the ngtcp2 backend is not experimental" so you'll want to start looking
at that one. It in turn lists 7 different TLS back-ends that it supports, of
which 6 of them are also supported by curl. Which of those to use will depend
on your own requirements. Four of them are OpenSSL forks/derivatives so those
have quite similar functionality. There are significant differences in their
licenses, so that's another consideration. Whether you need any recent features
(e.g. the experimental ECH) is another consideration since the forks have
started to diverge. If you need to supported specific cryptographic algorithms,
that might make a difference, although the possible choices there are a lot
more narrow nowadays than before.
The table at https://curl.se/libcurl/c/tls-options.html can help you decide by
seeing which features are provided in each one.
> I hope to be able to compile this
> from Fedora-30 to Fedora-40, at least.
If you're limited to system-provided library dependencies on these OSes, you'll
just have to see which libraries they provide and use one of those. If you
can statically link, you can just about choose any of them.
Dan
Date: Wed, 6 Nov 2024 17:24:48 -0800
On Wed, Nov 06, 2024 at 04:19:26PM -0800, Ben Greear via curl-library wrote:
> I found the curl document on enabling QUIC, and it has a lot of different ssl library
> options.
>
> https://curl.se/docs/http3.html
>
> Is there any particular combination that is preferred over others?
"Only the ngtcp2 backend is not experimental" so you'll want to start looking
at that one. It in turn lists 7 different TLS back-ends that it supports, of
which 6 of them are also supported by curl. Which of those to use will depend
on your own requirements. Four of them are OpenSSL forks/derivatives so those
have quite similar functionality. There are significant differences in their
licenses, so that's another consideration. Whether you need any recent features
(e.g. the experimental ECH) is another consideration since the forks have
started to diverge. If you need to supported specific cryptographic algorithms,
that might make a difference, although the possible choices there are a lot
more narrow nowadays than before.
The table at https://curl.se/libcurl/c/tls-options.html can help you decide by
seeing which features are provided in each one.
> I hope to be able to compile this
> from Fedora-30 to Fedora-40, at least.
If you're limited to system-provided library dependencies on these OSes, you'll
just have to see which libraries they provide and use one of those. If you
can statically link, you can just about choose any of them.
Dan
-- Unsubscribe: https://lists.haxx.se/mailman/listinfo/curl-library Etiquette: https://curl.se/mail/etiquette.htmlReceived on 2024-11-07