Hi, This is to announce an update of SSL-CMUCL, which provides SSL streams for CMUCL by making FFI calls to the OpenSSL libraries. The code hooks into the CMUCL fd-stream functionality, and provides both client and server sockets. Read and write operations are dispatched to SSL_read and SSL_write instead of UNIX:UNIX-READ and UNIX:UNIX-WRITE. The interface is compatible with that in ACL6. Supports SSLv2, SSLv3 and TLSv1.
I originally wrote this in 2001, but the old code didn't work correctly in server mode with Internet Explorer (due to bugs in IE's SSL implementation, that I've now apparently worked around), and performance was awful. The library now works with Mozilla, Firebird, Safari and the few versions of IE that I've tested. Performance is quite reasonable: I get around 60 simple HTTPS transactions per second between two 1 GHz PIII machines running Linux, according to the "siege" benchmarking program. The code is available under GNU LGPL from <URL:http://www.chez.com/emarsden/downloads/> I would appreciate reports of any browser problems. -- Eric Marsden <URL:http://www.laas.fr/~emarsden/>
