Leto
A series of libraries and packages that provide security and crypto functions.
Ephemeral Buffers
- Provide memory buffers that do not get paged to disk
- Memory is zeroed when returned to the pool, disposed or finialized
- Memory is zeroed when the pool is disposed or finialized
- Working set can be increased automatically (on windows only at the moment) as the virtual lock size on windows per process is my default only 2mb in size.
Managed TLS for Pipelines
A interest learning exercise in producing a TLS 1.3 Library based off the experimental "Pipelines" from CoreFXLabs.
Currently supports TLS 1.2 and TLS 1.3 Draft 18, Draft 19 is a WIP.
Thanks to Mint/Tris who I have used to help understand from.
Currently uses OpenSsl 1.1, and Windows CNG for the crypto part and supports
Hello Retry, and standard Handshake.
Now supports/downgrades to TLS 1.3 Correctly
AESxxx-GCM
ChaCha20/Poly
ECDSA certificates
RSA certificates
Key exchanges (All now supported)
Some support for Windows CNG is working, most extensions. Multiple server certificates, secure renegotiation
https://tls13.cetus.io was hosting a site running on it (but the free hosting ran out). It ran for 4 weeks serving the TLS 1.3 spec without any downtime.
- x25519
- x448
- ffdhe8192
- ffdhe6144
- ffdhe4096
- ffdhe3072
- ffdhe2048
- secp521r1
- secp384r1
- secp256r1
This library aims to prove out the use case for Pipelines having a native TLS library and for how TLS 1.3 can be implemented in that library.
Help and submissions are welcome!