We use OpenSSL, which is an industry standard but also comes with decades of legacy code for stuff that we don't need, and in some cases shouldn't support at all. We should look at moving to Boring SSL as it's a modern faster SSL library that doesn't include a bunch of stuff we don't need and won't use.
Source CM
We use OpenSSL, which is an industry standard but also comes with decades of legacy code for stuff that we don't need, and in some cases shouldn't support at all. We should look at moving to Boring SSL as it's a modern faster SSL library that doesn't include a bunch of stuff we don't need and won't use.