Rusttls now uses a provider interface and the default is aws-ls-rs, a verified Rust implementation. Previously it used ring which used boringSSL for some crypto. They also did lots of perf tuning (I forgot the link), make @djc can give some opinters.
From my semi-naive look at rustls code, I doubt "faster crypto" is really the answer to their faster TLS. It's a stunning achievement.
=> More informations about this toot | View the thread | More toots from rsalz@ioc.exchange
=> View djc@hachyderm.io profile
text/geminiThis content has been proxied by September (3851b).