Message 108093 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	debatem1
Recipients	daniel.urban, debatem1, eric.araujo, exarkun, gdamjan, giampaolo.rodola, gregory.p.smith, heikki, jsamuel, loewis, mcrute, pitrou
Date	2010-06-18.09:57:33
SpamBayes Score	0.0023324508
Marked as misclassified	No
Message-id	<AANLkTilOF8lK7n-Cj2_pZc74d62OijavVWbx2vuZe3oY@mail.gmail.com>
In-reply-to	<1276853848.3338.22.camel@localhost.localdomain>

Content
On Fri, Jun 18, 2010 at 5:37 AM, Antoine Pitrou <report@bugs.python.org> wrote: > > Antoine Pitrou <pitrou@free.fr> added the comment: > >> I would suggest that we focus on defining and building a >> lower-level interface along the lines of the PEP noted earlier, >> integrating that with evpy, and getting it in shape to go into the >> stdlib. > > That sounds reasonable to me. Great, I'm thinking more-or-less the API proposed in PEP 272- the exception I'm thinking of is that 'strings' should be substituted for 'bytes'- for AES and DES. It gets trickier when talking about public key crypto, though. Perhaps something along the lines of RSA.new(public_key=None, private_key=None,...), with the resulting object supporting encrypt/decrypt/sign/verify operations? > (although I would be also content with the lower-level interface > alone :-)) >> If somebody does, then perhaps a four-tiered >> model makes more sense, with the bottom one being the raw wrappers >> around the various libs, the second from the bottom being >> compatibility shims, and the top two matching the other proposal. > > That sounds much too complicated. If we're likely to have openssl taken out from under us it could save us a lot of hassle to plan for that up front. If not, then why worry, and ISTM we should go the simpler route. Geremy Condra

On Fri, Jun 18, 2010 at 5:37 AM, Antoine Pitrou <report@bugs.python.org> wrote:
>
> Antoine Pitrou <pitrou@free.fr> added the comment:
>
>> I would suggest that we focus on defining and building a
>> lower-level interface along the lines of the PEP noted earlier,
>> integrating that with evpy, and getting it in shape to go into the
>> stdlib.
>
> That sounds reasonable to me.

Great, I'm thinking more-or-less the API proposed in PEP 272- the
exception I'm thinking of is that 'strings' should be substituted for
'bytes'- for AES and DES. It gets trickier when talking about public
key crypto, though. Perhaps something along the lines of
RSA.new(public_key=None, private_key=None,...), with the resulting
object supporting encrypt/decrypt/sign/verify operations?

> (although I would be also content with the lower-level interface
> alone :-))

>> If somebody does, then perhaps a four-tiered
>> model makes more sense, with the bottom one being the raw wrappers
>> around the various libs, the second from the bottom being
>> compatibility shims, and the top two matching the other proposal.
>
> That sounds much too complicated.

If we're likely to have openssl taken out from under us it could save
us a lot of hassle to plan for that up front. If not, then why worry,
and ISTM we should go the simpler route.

Geremy Condra

History
Date	User	Action	Args
2010-06-18 09:57:36	debatem1	set	recipients: + debatem1, loewis, gregory.p.smith, exarkun, pitrou, giampaolo.rodola, gdamjan, heikki, eric.araujo, daniel.urban, mcrute, jsamuel
2010-06-18 09:57:35	debatem1	link	issue8998 messages
2010-06-18 09:57:33	debatem1	create