Why do you use OpenSSL and not Rustls?

[umgefahren]

Performance evaluations showed, that OpenSSL has a huge overhead in comparison to Rustls and is much slower. Also OpenSSL often makes issues while cross-compilation.
Was the use of OpenSSL a deliberate design choice and if yes why?

[voidc]

Hey, thanks for showing interest in the library! (and sorry for only noticing this issue now) 🙂 We don't actually use TLS but the underlying cryptographic primitives. Initially we tried to use ring, which is also used by Rustls. Unfortunately, ring only supports AEAD encryption which didn't work well with layered encryption since each layer requires passing a separate tag which would make the total message size dependent on the number of layers. This is why we switched to OpenSSL as it provides lower-level AES primitives.