tech-pkg archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: GSoC 2012 Application

  Hello Miklos,

Homolya Miklós <> writes:

> I'm a graduate student in Computer Engineering in Budapest, Hungary. I
> would like to apply to Google Summer of Code, and I am interested in
> the project to implement TLS (HTTPS) support in net/tnftp.
> I liked very much the classes about network protocols and
> cryptography. I'm quite familiar with TCP, FTP, HTTP and also with TLS
> to some extent. During my course on cryptography, as a team of three,
> we had a project to re-implement BEAST. BEAST was presented last
> summer to successfully exploit the long-known vulnerability in TLS
> 1.0. My part in this project was to sniff network traffic from the
> wire, and restore the continuous stream of encrypted data from
> Ethernet frames in the HTTPS connection.
> When I was a high-school student, I participated twice in the
> International Olympiad in Informatics, winning a silver and a bronze
> medal. At the time I was already using C and C++; last summer I was an
> intern at Morgan Stanley, where I was working on improving internally
> used C++ core libraries at a team of highly regarded
> technology-specialists. Although I mostly used C++ for coding, I know
> exactly which features are present in C, even those which are not in
> C++. I'm also aware of some C idioms, and I'd like to gain practice
> working with plain old C.
> Before I could plan a detailed schedule, I need to know which code can
> be re-used. There are several open source TLS implementations (e.g.
> OpenSSL, GnuTLS). What are the license requirements for such a
> userland application? I thank you in advance for your cooperation.

All the code should be BSD/MIT-licensed, you should not introduce
more conditions than there're already. nbftp is one of the important
parts of pkgsrc and NetBSD, contaging it with GPL-style conditions is
highly unwanted.

OpenSSL is the primary target, thus. GNU TLS isn't needed. Preferrably,
you should leave the possibility of building and using nbftp without
OpenSSL just as it is now.

> P.S. Please CC me, as I'm not on the tech-pkg list.


Home | Main Index | Thread Index | Old Index