A ground up TLS 1.3 client written in C

Name: A ground up TLS 1.3 client written in C
Availability: InStock
Author: theotrama

by theotrama·Feb 24, 2026·3 points·0 comments

Visit Project View on HN

AI Analysis

●●SolidWizardryShip It

Educational TLS 1.3 implementation, useful for learning but production alternatives exist.

Strengths

•Full handshake key derivation from first principles; genuine learning artifact on a hard problem.
•2+ weeks of constraint-driven learning; author's write-up shows real engagement with protocol complexity.
•Validates against xargs.org test vectors—discipline in verification.

Weaknesses

•Client-only, cut corners acknowledged; production should use OpenSSL/BoringSSL/rustls.
•No clear use case beyond education; incremental learning value if reader already knows crypto basics.

Similar Projects

Security●Mid

Visual SSL TLS Handshake Visualizer

Nice visual breakdown of the handshake, but sslscan and testssl.sh already do this better.

Cozy

lemax2

301mo ago

Productivity●●●Banger

I improved my handwritten math OCR (now preserves derivations)

Math OCR that preserves derivation structure, not just transcription—solves a real student pain.

Solve My ProblemEye CandyShip It

mrajatnath

143mo ago

Security●Mid

Using subliminal channels to hide data in TLS handshakes

Uses EdDSA signatures to smuggle arbitrary bytes through TLS handshakes — a classic subliminal-channel trick applied to modern TLS code. The repo includes an actual client/server PoC (https_client.c, https_server.c), a cert generation script, and a bundled wolfSSL build so you can reproduce the experiment. Clever demo, but it reads like research code rather than a hardened tool: there's little on threat modelling, detection, or performance trade-offs.

WizardryNiche Gem

desmoulins

203mo ago

Security●●Solid